diff options
| author | cvs2svn <admin@example.com> | 2008-09-06 12:15:55 +0000 |
|---|---|---|
| committer | cvs2svn <admin@example.com> | 2008-09-06 12:15:55 +0000 |
| commit | 661df680be771facf5443a396086697851bac36f (patch) | |
| tree | 605abf88d7bd78c7d45c81f0efe3fb6a8d30a6df /src/lib/libssl | |
| parent | f1625f274acf5dcd5601f6cb5e29e233b2a441a3 (diff) | |
| download | openbsd-openssl_0_9_8_h.tar.gz openbsd-openssl_0_9_8_h.tar.bz2 openbsd-openssl_0_9_8_h.zip | |
This commit was manufactured by cvs2git to create tag 'openssl_0_9_8_h'.openssl_0_9_8_h
Diffstat (limited to 'src/lib/libssl')
395 files changed, 60860 insertions, 47615 deletions
diff --git a/src/lib/libssl/src/INSTALL.NW b/src/lib/libssl/src/INSTALL.NW new file mode 100644 index 0000000000..609a7309e1 --- /dev/null +++ b/src/lib/libssl/src/INSTALL.NW | |||
| @@ -0,0 +1,454 @@ | |||
| 1 | |||
| 2 | INSTALLATION ON THE NETWARE PLATFORM | ||
| 3 | ------------------------------------ | ||
| 4 | |||
| 5 | Notes about building OpenSSL for NetWare. | ||
| 6 | |||
| 7 | |||
| 8 | BUILD PLATFORM: | ||
| 9 | --------------- | ||
| 10 | The build scripts (batch files, perl scripts, etc) have been developed and | ||
| 11 | tested on W2K. The scripts should run fine on other Windows platforms | ||
| 12 | (NT, Win9x, WinXP) but they have not been tested. They may require some | ||
| 13 | modifications. | ||
| 14 | |||
| 15 | |||
| 16 | Supported NetWare Platforms - NetWare 5.x, NetWare 6.x: | ||
| 17 | ------------------------------------------------------- | ||
| 18 | OpenSSL can either use the WinSock interfaces introduced in NetWare 5, | ||
| 19 | or the BSD socket interface. Previous versions of NetWare, 4.x and 3.x, | ||
| 20 | are only supported if OpenSSL is build for CLIB and BSD sockets; | ||
| 21 | WinSock builds only support NetWare 5 and up. | ||
| 22 | |||
| 23 | On NetWare there are two c-runtime libraries. There is the legacy CLIB | ||
| 24 | interfaces and the newer LIBC interfaces. Being ANSI-C libraries, the | ||
| 25 | functionality in CLIB and LIBC is similar but the LIBC interfaces are built | ||
| 26 | using Novell Kernal Services (NKS) which is designed to leverage | ||
| 27 | multi-processor environments. | ||
| 28 | |||
| 29 | The NetWare port of OpenSSL can be configured to build using CLIB or LIBC. | ||
| 30 | The CLIB build was developed and tested using NetWare 5.0 sp6.0a. The LIBC | ||
| 31 | build was developed and tested using the NetWare 6.0 FCS. | ||
| 32 | |||
| 33 | The necessary LIBC functionality ships with NetWare 6. However, earlier | ||
| 34 | NetWare 5.x versions will require updates in order to run the OpenSSL LIBC | ||
| 35 | build (NetWare 5.1 SP8 is known to work). | ||
| 36 | |||
| 37 | As of June 2005, the LIBC build can be configured to use BSD sockets instead | ||
| 38 | of WinSock sockets. Call Configure (usually through netware\build.bat) using | ||
| 39 | a target of "netware-libc-bsdsock" instead of "netware-libc". | ||
| 40 | |||
| 41 | As of June 2007, support for CLIB and BSD sockets is also now available | ||
| 42 | using a target of "netware-clib-bsdsock" instead of "netware-clib"; | ||
| 43 | also gcc builds are now supported on both Linux and Win32 (post 0.9.8e). | ||
| 44 | |||
| 45 | REQUIRED TOOLS: | ||
| 46 | --------------- | ||
| 47 | Based upon the configuration and build options used, some or all of the | ||
| 48 | following tools may be required: | ||
| 49 | |||
| 50 | * Perl for Win32 - required (http://www.activestate.com/ActivePerl) | ||
| 51 | Used to run the various perl scripts on the build platform. | ||
| 52 | |||
| 53 | * Perl 5.8.0 for NetWare v3.20 (or later) - required | ||
| 54 | (http://developer.novell.com) Used to run the test script on NetWare | ||
| 55 | after building. | ||
| 56 | |||
| 57 | * Compiler / Linker - required: | ||
| 58 | Metrowerks CodeWarrior PDK 2.1 (or later) for NetWare (commercial): | ||
| 59 | Provides command line tools used for building. | ||
| 60 | Tools: | ||
| 61 | mwccnlm.exe - C/C++ Compiler for NetWare | ||
| 62 | mwldnlm.exe - Linker for NetWare | ||
| 63 | mwasmnlm.exe - x86 assembler for NetWare (if using assembly option) | ||
| 64 | |||
| 65 | gcc / nlmconv Cross-Compiler, available from Novell Forge (free): | ||
| 66 | http://forge.novell.com/modules/xfmod/project/?aunixnw | ||
| 67 | |||
| 68 | * Assemblers - optional: | ||
| 69 | If you intend to build using the assembly options you will need an | ||
| 70 | assembler. Work has been completed to support two assemblers, Metrowerks | ||
| 71 | and NASM. However, during development, a bug was found in the Metrowerks | ||
| 72 | assembler which generates incorrect code. Until this problem is fixed, | ||
| 73 | the Metrowerks assembler cannot be used. | ||
| 74 | |||
| 75 | mwasmnlm.exe - Metrowerks x86 assembler - part of CodeWarrior tools. | ||
| 76 | (version 2.2 Built Aug 23, 1999 - not useable due to code | ||
| 77 | generation bug) | ||
| 78 | |||
| 79 | nasmw.exe - Netwide Assembler NASM | ||
| 80 | version 0.98 was used in development and testing | ||
| 81 | |||
| 82 | * Make Tool - required: | ||
| 83 | In order to build you will need a make tool. Two make tools are | ||
| 84 | supported, GNU make (gmake.exe) or Microsoft nmake.exe. | ||
| 85 | |||
| 86 | make.exe - GNU make for Windows (version 3.75 used for development) | ||
| 87 | http://gnuwin32.sourceforge.net/packages/make.htm | ||
| 88 | |||
| 89 | nmake.exe - Microsoft make (Version 6.00.8168.0 used for development) | ||
| 90 | http://support.microsoft.com/kb/132084/EN-US/ | ||
| 91 | |||
| 92 | * Novell Developer Kit (NDK) - required: (http://developer.novell.com) | ||
| 93 | |||
| 94 | CLIB - BUILDS: | ||
| 95 | |||
| 96 | WinSock2 Developer Components for NetWare: | ||
| 97 | For initial development, the October 27, 2000 version was used. | ||
| 98 | However, future versions should also work. | ||
| 99 | |||
| 100 | NOTE: The WinSock2 components include headers & import files for | ||
| 101 | NetWare, but you will also need the winsock2.h and supporting | ||
| 102 | headers (pshpack4.h, poppack.h, qos.h) delivered in the | ||
| 103 | Microsoft SDK. Note: The winsock2.h support headers may change | ||
| 104 | with various versions of winsock2.h. Check the dependencies | ||
| 105 | section on the NDK WinSock2 download page for the latest | ||
| 106 | information on dependencies. These components are unsupported by | ||
| 107 | Novell. They are provided as a courtesy, but it is strongly | ||
| 108 | suggested that all development be done using LIBC, not CLIB. | ||
| 109 | |||
| 110 | As of June 2005, the WinSock2 components are available at: | ||
| 111 | http://forgeftp.novell.com//ws2comp/ | ||
| 112 | |||
| 113 | |||
| 114 | NLM and NetWare libraries for C (including CLIB and XPlat): | ||
| 115 | If you are going to build a CLIB version of OpenSSL, you will | ||
| 116 | need the CLIB headers and imports. The March, 2001 NDK release or | ||
| 117 | later is recommended. | ||
| 118 | |||
| 119 | Earlier versions should work but haven't been tested. In recent | ||
| 120 | versions the import files have been consolidated and function | ||
| 121 | names moved. This means you may run into link problems | ||
| 122 | (undefined symbols) when using earlier versions. The functions | ||
| 123 | are available in earlier versions, but you will have to modifiy | ||
| 124 | the make files to include additional import files (see | ||
| 125 | openssl\util\pl\netware.pl). | ||
| 126 | |||
| 127 | |||
| 128 | LIBC - BUILDS: | ||
| 129 | |||
| 130 | Libraries for C (LIBC) - LIBC headers and import files | ||
| 131 | If you are going to build a LIBC version of OpenSSL, you will | ||
| 132 | need the LIBC headers and imports. The March 14, 2002 NDK release or | ||
| 133 | later is required. | ||
| 134 | |||
| 135 | NOTE: The LIBC SDK includes the necessary WinSock2 support. | ||
| 136 | It is not necessary to download the WinSock2 NDK when building for | ||
| 137 | LIBC. The LIBC SDK also includes the appropriate BSD socket support | ||
| 138 | if configuring to use BSD sockets. | ||
| 139 | |||
| 140 | |||
| 141 | BUILDING: | ||
| 142 | --------- | ||
| 143 | Before building, you will need to set a few environment variables. You can | ||
| 144 | set them manually or you can modify the "netware\set_env.bat" file. | ||
| 145 | |||
| 146 | The set_env.bat file is a template you can use to set up the path | ||
| 147 | and environment variables you will need to build. Modify the | ||
| 148 | various lines to point to YOUR tools and run set_env.bat. | ||
| 149 | |||
| 150 | netware\set_env.bat <target> [compiler] | ||
| 151 | |||
| 152 | target - "netware-clib" - CLIB NetWare build | ||
| 153 | - "netware-libc" - LIBC NetWare build | ||
| 154 | |||
| 155 | compiler - "gnuc" - GNU GCC Compiler | ||
| 156 | - "codewarrior" - MetroWerks CodeWarrior (default) | ||
| 157 | |||
| 158 | If you don't use set_env.bat, you will need to set up the following | ||
| 159 | environment variables: | ||
| 160 | |||
| 161 | PATH - Set PATH to point to the tools you will use. | ||
| 162 | |||
| 163 | INCLUDE - The location of the NDK include files. | ||
| 164 | |||
| 165 | CLIB ex: set INCLUDE=c:\ndk\nwsdk\include\nlm | ||
| 166 | LIBC ex: set INCLUDE=c:\ndk\libc\include | ||
| 167 | |||
| 168 | PRELUDE - The absolute path of the prelude object to link with. For | ||
| 169 | a CLIB build it is recommended you use the "clibpre.o" files shipped | ||
| 170 | with the Metrowerks PDK for NetWare. For a LIBC build you should | ||
| 171 | use the "libcpre.o" file delivered with the LIBC NDK components. | ||
| 172 | |||
| 173 | CLIB ex: set PRELUDE=c:\ndk\nwsdk\imports\clibpre.o | ||
| 174 | LIBC ex: set PRELUDE=c:\ndk\libc\imports\libcpre.o | ||
| 175 | |||
| 176 | IMPORTS - The locaton of the NDK import files. | ||
| 177 | |||
| 178 | CLIB ex: set IMPORTS=c:\ndk\nwsdk\imports | ||
| 179 | LIBC ex: set IMPORTS=c:\ndk\libc\imports | ||
| 180 | |||
| 181 | |||
| 182 | In order to build, you need to run the Perl scripts to configure the build | ||
| 183 | process and generate a make file. There is a batch file, | ||
| 184 | "netware\build.bat", to automate the process. | ||
| 185 | |||
| 186 | Build.bat runs the build configuration scripts and generates a make file. | ||
| 187 | If an assembly option is specified, it also runs the scripts to generate | ||
| 188 | the assembly code. Always run build.bat from the "openssl" directory. | ||
| 189 | |||
| 190 | netware\build [target] [debug opts] [assembly opts] [configure opts] | ||
| 191 | |||
| 192 | target - "netware-clib" - CLIB NetWare build (WinSock Sockets) | ||
| 193 | - "netware-clib-bsdsock" - CLIB NetWare build (BSD Sockets) | ||
| 194 | - "netware-libc" - LIBC NetWare build (WinSock Sockets) | ||
| 195 | - "netware-libc-bsdsock" - LIBC NetWare build (BSD Sockets) | ||
| 196 | |||
| 197 | debug opts - "debug" - build debug | ||
| 198 | |||
| 199 | assembly opts - "nw-mwasm" - use Metrowerks assembler | ||
| 200 | "nw-nasm" - use NASM assembler | ||
| 201 | "no-asm" - don't use assembly | ||
| 202 | |||
| 203 | configure opts- all unrecognized arguments are passed to the | ||
| 204 | perl 'configure' script. See that script for | ||
| 205 | internal documentation regarding options that | ||
| 206 | are available. | ||
| 207 | |||
| 208 | examples: | ||
| 209 | |||
| 210 | CLIB build, debug, without assembly: | ||
| 211 | netware\build.bat netware-clib debug no-asm | ||
| 212 | |||
| 213 | LIBC build, non-debug, using NASM assembly, add mdc2 support: | ||
| 214 | netware\build.bat netware-libc nw-nasm enable-mdc2 | ||
| 215 | |||
| 216 | LIBC build, BSD sockets, non-debug, without assembly: | ||
| 217 | netware\build.bat netware-libc-bsdsock no-asm | ||
| 218 | |||
| 219 | Running build.bat generates a make file to be processed by your make | ||
| 220 | tool (gmake or nmake): | ||
| 221 | |||
| 222 | CLIB ex: gmake -f netware\nlm_clib_dbg.mak | ||
| 223 | LIBC ex: gmake -f netware\nlm_libc.mak | ||
| 224 | LIBC ex: gmake -f netware\nlm_libc_bsdsock.mak | ||
| 225 | |||
| 226 | |||
| 227 | You can also run the build scripts manually if you do not want to use the | ||
| 228 | build.bat file. Run the following scripts in the "\openssl" | ||
| 229 | subdirectory (in the order listed below): | ||
| 230 | |||
| 231 | perl configure no-asm [other config opts] [netware-clib|netware-libc|netware-libc-bsdsock] | ||
| 232 | configures no assembly build for specified netware environment | ||
| 233 | (CLIB or LIBC). | ||
| 234 | |||
| 235 | perl util\mkfiles.pl >MINFO | ||
| 236 | generates a listing of source files (used by mk1mf) | ||
| 237 | |||
| 238 | perl util\mk1mf.pl no-asm [other config opts] [netware-clib|netware-libc|netware-libc-bsdsock >netware\nlm.mak | ||
| 239 | generates the makefile for NetWare | ||
| 240 | |||
| 241 | gmake -f netware\nlm.mak | ||
| 242 | build with the make tool (nmake.exe also works) | ||
| 243 | |||
| 244 | NOTE: If you are building using the assembly option, you must also run the | ||
| 245 | various Perl scripts to generate the assembly files. See build.bat | ||
| 246 | for an example of running the various assembly scripts. You must use the | ||
| 247 | "no-asm" option to build without assembly. The configure and mk1mf scripts | ||
| 248 | also have various other options. See the scripts for more information. | ||
| 249 | |||
| 250 | |||
| 251 | The output from the build is placed in the following directories: | ||
| 252 | |||
| 253 | CLIB Debug build: | ||
| 254 | out_nw_clib.dbg - static libs & test nlm(s) | ||
| 255 | tmp_nw_clib.dbg - temporary build files | ||
| 256 | outinc_nw_clib - necessary include files | ||
| 257 | |||
| 258 | CLIB Non-debug build: | ||
| 259 | out_nw_clib - static libs & test nlm(s) | ||
| 260 | tmp_nw_clib - temporary build files | ||
| 261 | outinc_nw_clib - necesary include files | ||
| 262 | |||
| 263 | LIBC Debug build: | ||
| 264 | out_nw_libc.dbg - static libs & test nlm(s) | ||
| 265 | tmp_nw_libc.dbg - temporary build files | ||
| 266 | outinc_nw_libc - necessary include files | ||
| 267 | |||
| 268 | LIBC Non-debug build: | ||
| 269 | out_nw_libc - static libs & test nlm(s) | ||
| 270 | tmp_nw_libc - temporary build files | ||
| 271 | outinc_nw_libc - necesary include files | ||
| 272 | |||
| 273 | |||
| 274 | TESTING: | ||
| 275 | -------- | ||
| 276 | The build process creates the OpenSSL static libs ( crypto.lib, ssl.lib, | ||
| 277 | rsaglue.lib ) and several test programs. You should copy the test programs | ||
| 278 | to your NetWare server and run the tests. | ||
| 279 | |||
| 280 | The batch file "netware\cpy_tests.bat" will copy all the necessary files | ||
| 281 | to your server for testing. In order to run the batch file, you need a | ||
| 282 | drive mapped to your target server. It will create an "OpenSSL" directory | ||
| 283 | on the drive and copy the test files to it. CAUTION: If a directory with the | ||
| 284 | name of "OpenSSL" already exists, it will be deleted. | ||
| 285 | |||
| 286 | To run cpy_tests.bat: | ||
| 287 | |||
| 288 | netware\cpy_tests [output directory] [NetWare drive] | ||
| 289 | |||
| 290 | output directory - "out_nw_clib.dbg", "out_nw_libc", etc. | ||
| 291 | NetWare drive - drive letter of mapped drive | ||
| 292 | |||
| 293 | CLIB ex: netware\cpy_tests out_nw_clib m: | ||
| 294 | LIBC ex: netware\cpy_tests out_nw_libc m: | ||
| 295 | |||
| 296 | |||
| 297 | The Perl script, "do_tests.pl", in the "OpenSSL" directory on the server | ||
| 298 | should be used to execute the tests. Before running the script, make sure | ||
| 299 | your SEARCH PATH includes the "OpenSSL" directory. For example, if you | ||
| 300 | copied the files to the "sys:" volume you use the command: | ||
| 301 | |||
| 302 | SEARCH ADD SYS:\OPENSSL | ||
| 303 | |||
| 304 | |||
| 305 | To run do_tests.pl type (at the console prompt): | ||
| 306 | |||
| 307 | perl \openssl\do_tests.pl [options] | ||
| 308 | |||
| 309 | options: | ||
| 310 | -p - pause after executing each test | ||
| 311 | |||
| 312 | The do_tests.pl script generates a log file "\openssl\test_out\tests.log" | ||
| 313 | which should be reviewed for errors. Any errors will be denoted by the word | ||
| 314 | "ERROR" in the log. | ||
| 315 | |||
| 316 | DEVELOPING WITH THE OPENSSL SDK: | ||
| 317 | -------------------------------- | ||
| 318 | Now that everything is built and tested, you are ready to use the OpenSSL | ||
| 319 | libraries in your development. | ||
| 320 | |||
| 321 | There is no real installation procedure, just copy the static libs and | ||
| 322 | headers to your build location. The libs (crypto.lib & ssl.lib) are | ||
| 323 | located in the appropriate "out_nw_XXXX" directory | ||
| 324 | (out_nw_clib, out_nw_libc, etc). | ||
| 325 | |||
| 326 | The headers are located in the appropriate "outinc_nw_XXX" directory | ||
| 327 | (outinc_nw_clib, outinc_nw_libc). | ||
| 328 | |||
| 329 | One suggestion is to create the following directory | ||
| 330 | structure for the OpenSSL SDK: | ||
| 331 | |||
| 332 | \openssl | ||
| 333 | |- bin | ||
| 334 | | |- openssl.nlm | ||
| 335 | | |- (other tests you want) | ||
| 336 | | | ||
| 337 | |- lib | ||
| 338 | | | - crypto.lib | ||
| 339 | | | - ssl.lib | ||
| 340 | | | ||
| 341 | |- include | ||
| 342 | | | - openssl | ||
| 343 | | | | - (all the headers in "outinc_nw\openssl") | ||
| 344 | |||
| 345 | |||
| 346 | The program "openssl.nlm" can be very useful. It has dozens of | ||
| 347 | options and you may want to keep it handy for debugging, testing, etc. | ||
| 348 | |||
| 349 | When building your apps using OpenSSL, define "NETWARE". It is needed by | ||
| 350 | some of the OpenSSL headers. One way to do this is with a compile option, | ||
| 351 | for example "-DNETWARE". | ||
| 352 | |||
| 353 | |||
| 354 | |||
| 355 | NOTES: | ||
| 356 | ------ | ||
| 357 | |||
| 358 | Resource leaks in Tests | ||
| 359 | ------------------------ | ||
| 360 | Some OpenSSL tests do not clean up resources and NetWare reports | ||
| 361 | the resource leaks when the tests unload. If this really bugs you, | ||
| 362 | you can stop the messages by setting the developer option off at the console | ||
| 363 | prompt (set developer option = off). Or better yet, fix the tests to | ||
| 364 | clean up the resources! | ||
| 365 | |||
| 366 | |||
| 367 | Multi-threaded Development | ||
| 368 | --------------------------- | ||
| 369 | The NetWare version of OpenSSL is thread-safe, however multi-threaded | ||
| 370 | applications must provide the necessary locking function callbacks. This | ||
| 371 | is described in doc\threads.doc. The file "openssl-x.x.x\crypto\threads\mttest.c" | ||
| 372 | is a multi-threaded test program and demonstrates the locking functions. | ||
| 373 | |||
| 374 | |||
| 375 | What is openssl2.nlm? | ||
| 376 | --------------------- | ||
| 377 | The openssl program has numerous options and can be used for many different | ||
| 378 | things. Many of the options operate in an interactive mode requiring the | ||
| 379 | user to enter data. Because of this, a default screen is created for the | ||
| 380 | program. However, when running the test script it is not desirable to | ||
| 381 | have a seperate screen. Therefore, the build also creates openssl2.nlm. | ||
| 382 | Openssl2.nlm is functionally identical but uses the console screen. | ||
| 383 | Openssl2 can be used when a non-interactive mode is desired. | ||
| 384 | |||
| 385 | NOTE: There are may other possibilities (command line options, etc) | ||
| 386 | which could have been used to address the screen issue. The openssl2.nlm | ||
| 387 | option was chosen because it impacted only the build not the code. | ||
| 388 | |||
| 389 | |||
| 390 | Why only static libraries? | ||
| 391 | -------------------------- | ||
| 392 | Globals, globals, and more globals. The OpenSSL code uses many global | ||
| 393 | variables that are allocated and initialized when used for the first time. | ||
| 394 | |||
| 395 | On NetWare, most applications (at least historically) run in the kernel. | ||
| 396 | When running in the kernel, there is one instance of global variables. | ||
| 397 | For regular application type NLM(s) this isn't a problem because they are | ||
| 398 | the only ones using the globals. However, for a library NLM (an NLM which | ||
| 399 | exposes functions and has no threads of execution), the globals cause | ||
| 400 | problems. Applications could inadvertently step on each other if they | ||
| 401 | change some globals. Even worse, the first application that triggers a | ||
| 402 | global to be allocated and initialized has the allocated memory charged to | ||
| 403 | itself. Now when that application unloads, NetWare will clean up all the | ||
| 404 | applicaton's memory. The global pointer variables inside OpenSSL now | ||
| 405 | point to freed memory. An abend waiting to happen! | ||
| 406 | |||
| 407 | To work correctly in the kernel, library NLM(s) that use globals need to | ||
| 408 | provide a set of globals (instance data) for each application. Another | ||
| 409 | option is to require the library only be loaded in a protected address | ||
| 410 | space along with the application using it. | ||
| 411 | |||
| 412 | Modifying the OpenSSL code to provide a set of globals (instance data) for | ||
| 413 | each application isn't technically difficult, but due to the large number | ||
| 414 | globals it would require substantial code changes and it wasn't done. Hence, | ||
| 415 | the build currently only builds static libraries which are then linked | ||
| 416 | into each application. | ||
| 417 | |||
| 418 | NOTE: If you are building a library NLM that uses the OpenSSL static | ||
| 419 | libraries, you will still have to deal with the global variable issue. | ||
| 420 | This is because when you link in the OpenSSL code you bring in all the | ||
| 421 | globals. One possible solution for the global pointer variables is to | ||
| 422 | register memory functions with OpenSSL which allocate memory and charge it | ||
| 423 | to your library NLM (see the function CRYPTO_set_mem_functions). However, | ||
| 424 | be aware that now all memory allocated by OpenSSL is charged to your NLM. | ||
| 425 | |||
| 426 | |||
| 427 | CodeWarrior Tools and W2K | ||
| 428 | --------------------------- | ||
| 429 | There have been problems reported with the CodeWarrior Linker | ||
| 430 | (mwldnlm.exe) in the PDK 2.1 for NetWare when running on Windows 2000. The | ||
| 431 | problems cause the link step to fail. The only work around is to obtain an | ||
| 432 | updated linker from Metrowerks. It is expected Metrowerks will release | ||
| 433 | PDK 3.0 (in beta testing at this time - May, 2001) in the near future which | ||
| 434 | will fix these problems. | ||
| 435 | |||
| 436 | |||
| 437 | Makefile "vclean" | ||
| 438 | ------------------ | ||
| 439 | The generated makefile has a "vclean" target which cleans up the build | ||
| 440 | directories. If you have been building successfully and suddenly | ||
| 441 | experience problems, use "vclean" (gmake -f netware\nlm_xxxx.mak vclean) and retry. | ||
| 442 | |||
| 443 | |||
| 444 | "Undefined Symbol" Linker errors | ||
| 445 | -------------------------------- | ||
| 446 | There have been linker errors reported when doing a CLIB build. The problems | ||
| 447 | occur because some versions of the CLIB SDK import files inadvertently | ||
| 448 | left out some symbols. One symbol in particular is "_lrotl". The missing | ||
| 449 | functions are actually delivered in the binaries, but they were left out of | ||
| 450 | the import files. The issues should be fixed in the September 2001 release | ||
| 451 | of the NDK. If you experience the problems you can temporarily | ||
| 452 | work around it by manually adding the missing symbols to your version of | ||
| 453 | "clib.imp". | ||
| 454 | |||
diff --git a/src/lib/libssl/src/INSTALL.W64 b/src/lib/libssl/src/INSTALL.W64 new file mode 100644 index 0000000000..9fa7a19205 --- /dev/null +++ b/src/lib/libssl/src/INSTALL.W64 | |||
| @@ -0,0 +1,66 @@ | |||
| 1 | |||
| 2 | INSTALLATION ON THE WIN64 PLATFORM | ||
| 3 | ---------------------------------- | ||
| 4 | |||
| 5 | Caveat lector | ||
| 6 | ------------- | ||
| 7 | |||
| 8 | As of moment of this writing Win64 support is classified "initial" | ||
| 9 | for the following reasons. | ||
| 10 | |||
| 11 | - No assembler modules are engaged upon initial 0.9.8 release. | ||
| 12 | - API might change within 0.9.8 life-span, *but* in a manner which | ||
| 13 | doesn't break backward binary compatibility. Or in other words, | ||
| 14 | application programs compiled with initial 0.9.8 headers will | ||
| 15 | be expected to work with future minor release .DLL without need | ||
| 16 | to re-compile, even if future minor release features modified API. | ||
| 17 | - Above mentioned API modifications have everything to do with | ||
| 18 | elimination of a number of limitations, which are normally | ||
| 19 | considered inherent to 32-bit platforms. Which in turn is why they | ||
| 20 | are treated as limitations on 64-bit platform such as Win64:-) | ||
| 21 | The current list comprises [but not necessarily limited to]: | ||
| 22 | |||
| 23 | - null-terminated strings may not be longer than 2G-1 bytes, | ||
| 24 | longer strings are treated as zero-length; | ||
| 25 | - dynamically and *internally* allocated chunks can't be larger | ||
| 26 | than 2G-1 bytes; | ||
| 27 | - inability to encrypt/decrypt chunks of data larger than 4GB | ||
| 28 | [it's possibly to *hash* chunks of arbitrary size through]; | ||
| 29 | |||
| 30 | Neither of these is actually big deal and hardly encountered | ||
| 31 | in real-life applications. | ||
| 32 | |||
| 33 | Compiling procedure | ||
| 34 | ------------------- | ||
| 35 | |||
| 36 | You will need Perl. You can run under Cygwin or you can download | ||
| 37 | ActiveState Perl from http://www.activestate.com/ActivePerl. | ||
| 38 | |||
| 39 | You will need Microsoft Platform SDK, available for download at | ||
| 40 | http://www.microsoft.com/msdownload/platformsdk/sdkupdate/. As per | ||
| 41 | April 2005 Platform SDK is equipped with Win64 compilers, as well | ||
| 42 | as assemblers, but it might change in the future. | ||
| 43 | |||
| 44 | To build for Win64/x64: | ||
| 45 | |||
| 46 | > perl Configure VC-WIN64A | ||
| 47 | > ms\do_win64a | ||
| 48 | > nmake -f ms\ntdll.mak | ||
| 49 | > cd out32dll | ||
| 50 | > ..\ms\test | ||
| 51 | |||
| 52 | To build for Win64/IA64: | ||
| 53 | |||
| 54 | > perl Configure VC-WIN64I | ||
| 55 | > ms\do_win64i | ||
| 56 | > nmake -f ms\ntdll.mak | ||
| 57 | > cd out32dll | ||
| 58 | > ..\ms\test | ||
| 59 | |||
| 60 | Naturally test-suite itself has to be executed on the target platform. | ||
| 61 | |||
| 62 | Installation | ||
| 63 | ------------ | ||
| 64 | |||
| 65 | TBD, for now see INSTALL.W32. | ||
| 66 | |||
diff --git a/src/lib/libssl/src/Makefile.shared b/src/lib/libssl/src/Makefile.shared new file mode 100644 index 0000000000..97035a3c01 --- /dev/null +++ b/src/lib/libssl/src/Makefile.shared | |||
| @@ -0,0 +1,609 @@ | |||
| 1 | # | ||
| 2 | # Helper makefile to link shared libraries in a portable way. | ||
| 3 | # This is much simpler than libtool, and hopefully not too error-prone. | ||
| 4 | # | ||
| 5 | # The following variables need to be set on the command line to build | ||
| 6 | # properly | ||
| 7 | |||
| 8 | # CC contains the current compiler. This one MUST be defined | ||
| 9 | CC=cc | ||
| 10 | CFLAGS=$(CFLAG) | ||
| 11 | # LDFLAGS contains flags to be used when temporary object files (when building | ||
| 12 | # shared libraries) are created, or when an application is linked. | ||
| 13 | # SHARED_LDFLAGS contains flags to be used when the shared library is created. | ||
| 14 | LDFLAGS= | ||
| 15 | SHARED_LDFLAGS= | ||
| 16 | |||
| 17 | # LIBNAME contains just the name of the library, without prefix ("lib" | ||
| 18 | # on Unix, "cyg" for certain forms under Cygwin...) or suffix (.a, .so, | ||
| 19 | # .dll, ...). This one MUST have a value when using this makefile to | ||
| 20 | # build shared libraries. | ||
| 21 | # For example, to build libfoo.so, you need to do the following: | ||
| 22 | #LIBNAME=foo | ||
| 23 | LIBNAME= | ||
| 24 | |||
| 25 | # APPNAME contains just the name of the application, without suffix ("" | ||
| 26 | # on Unix, ".exe" on Windows, ...). This one MUST have a value when using | ||
| 27 | # this makefile to build applications. | ||
| 28 | # For example, to build foo, you need to do the following: | ||
| 29 | #APPNAME=foo | ||
| 30 | APPNAME= | ||
| 31 | |||
| 32 | # OBJECTS contains all the object files to link together into the application. | ||
| 33 | # This must contain at least one object file. | ||
| 34 | #OBJECTS=foo.o | ||
| 35 | OBJECTS= | ||
| 36 | |||
| 37 | # LIBEXTRAS contains extra modules to link together with the library. | ||
| 38 | # For example, if a second library, say libbar.a needs to be linked into | ||
| 39 | # libfoo.so, you need to do the following: | ||
| 40 | #LIBEXTRAS=libbar.a | ||
| 41 | # Note that this MUST be used when using the link_o targets, to hold the | ||
| 42 | # names of all object files that go into the target library. | ||
| 43 | LIBEXTRAS= | ||
| 44 | |||
| 45 | # LIBVERSION contains the current version of the library. | ||
| 46 | # For example, to build libfoo.so.1.2, you need to do the following: | ||
| 47 | #LIBVERSION=1.2 | ||
| 48 | LIBVERSION= | ||
| 49 | |||
| 50 | # LIBCOMPATVERSIONS contains the compatibility versions (a list) of | ||
| 51 | # the library. They MUST be in decreasing order. | ||
| 52 | # For example, if libfoo.so.1.2.1 is backward compatible with libfoo.so.1.2 | ||
| 53 | # and libfoo.so.1, you need to do the following: | ||
| 54 | #LIBCOMPATVERSIONS=1.2 1 | ||
| 55 | # Note that on systems that use sonames, the last number will appear as | ||
| 56 | # part of it. | ||
| 57 | # It's also possible, for systems that support it (Tru64, for example), | ||
| 58 | # to add extra compatibility info with more precision, by adding a second | ||
| 59 | # list of versions, separated from the first with a semicolon, like this: | ||
| 60 | #LIBCOMPATVERSIONS=1.2 1;1.2.0 1.1.2 1.1.1 1.1.0 1.0.0 | ||
| 61 | LIBCOMPATVERSIONS= | ||
| 62 | |||
| 63 | # LIBDEPS contains all the flags necessary to cover all necessary | ||
| 64 | # dependencies to other libraries. | ||
| 65 | LIBDEPS= | ||
| 66 | |||
| 67 | #------------------------------------------------------------------------------ | ||
| 68 | # The rest is private to this makefile. | ||
| 69 | |||
| 70 | SET_X=: | ||
| 71 | #SET_X=set -x | ||
| 72 | |||
| 73 | top: | ||
| 74 | echo "Trying to use this makefile interactively? Don't." | ||
| 75 | |||
| 76 | CALC_VERSIONS= \ | ||
| 77 | SHLIB_COMPAT=; SHLIB_SOVER=; \ | ||
| 78 | if [ -n "$(LIBVERSION)$(LIBCOMPATVERSIONS)" ]; then \ | ||
| 79 | prev=""; \ | ||
| 80 | for v in `echo "$(LIBVERSION) $(LIBCOMPATVERSIONS)" | cut -d';' -f1`; do \ | ||
| 81 | SHLIB_SOVER_NODOT=$$v; \ | ||
| 82 | SHLIB_SOVER=.$$v; \ | ||
| 83 | if [ -n "$$prev" ]; then \ | ||
| 84 | SHLIB_COMPAT="$$SHLIB_COMPAT .$$prev"; \ | ||
| 85 | fi; \ | ||
| 86 | prev=$$v; \ | ||
| 87 | done; \ | ||
| 88 | fi | ||
| 89 | |||
| 90 | LINK_APP= \ | ||
| 91 | ( $(SET_X); \ | ||
| 92 | LIBDEPS="$${LIBDEPS:-$(LIBDEPS)}"; \ | ||
| 93 | LDCMD="$${LDCMD:-$(CC)}"; LDFLAGS="$${LDFLAGS:-$(CFLAGS)}"; \ | ||
| 94 | LIBPATH=`for x in $$LIBDEPS; do if echo $$x | grep '^ *-L' > /dev/null 2>&1; then echo $$x | sed -e 's/^ *-L//'; fi; done | uniq`; \ | ||
| 95 | LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \ | ||
| 96 | LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \ | ||
| 97 | $${LDCMD} $${LDFLAGS} -o $${APPNAME:=$(APPNAME)} $(OBJECTS) $${LIBDEPS} ) | ||
| 98 | |||
| 99 | LINK_SO= \ | ||
| 100 | ( $(SET_X); \ | ||
| 101 | LIBDEPS="$${LIBDEPS:-$(LIBDEPS)}"; \ | ||
| 102 | SHAREDCMD="$${SHAREDCMD:-$(CC)}"; \ | ||
| 103 | SHAREDFLAGS="$${SHAREDFLAGS:-$(CFLAGS) $(SHARED_LDFLAGS)}"; \ | ||
| 104 | nm -Pg $$SHOBJECTS | grep ' [BDT] ' | cut -f1 -d' ' > lib$(LIBNAME).exp; \ | ||
| 105 | LIBPATH=`for x in $$LIBDEPS; do if echo $$x | grep '^ *-L' > /dev/null 2>&1; then echo $$x | sed -e 's/^ *-L//'; fi; done | uniq`; \ | ||
| 106 | LIBPATH=`echo $$LIBPATH | sed -e 's/ /:/g'`; \ | ||
| 107 | LD_LIBRARY_PATH=$$LIBPATH:$$LD_LIBRARY_PATH \ | ||
| 108 | $${SHAREDCMD} $${SHAREDFLAGS} \ | ||
| 109 | -o $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX \ | ||
| 110 | $$ALLSYMSFLAGS $$SHOBJECTS $$NOALLSYMSFLAGS $$LIBDEPS \ | ||
| 111 | ) && $(SYMLINK_SO); \ | ||
| 112 | ( $(SET_X); rm -f lib$(LIBNAME).exp ) | ||
| 113 | |||
| 114 | SYMLINK_SO= \ | ||
| 115 | if [ -n "$$INHIBIT_SYMLINKS" ]; then :; else \ | ||
| 116 | prev=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX; \ | ||
| 117 | if [ -n "$$SHLIB_COMPAT" ]; then \ | ||
| 118 | for x in $$SHLIB_COMPAT; do \ | ||
| 119 | ( $(SET_X); rm -f $$SHLIB$$x$$SHLIB_SUFFIX; \ | ||
| 120 | ln -s $$prev $$SHLIB$$x$$SHLIB_SUFFIX ); \ | ||
| 121 | prev=$$SHLIB$$x$$SHLIB_SUFFIX; \ | ||
| 122 | done; \ | ||
| 123 | fi; \ | ||
| 124 | if [ -n "$$SHLIB_SOVER" ]; then \ | ||
| 125 | ( $(SET_X); rm -f $$SHLIB$$SHLIB_SUFFIX; \ | ||
| 126 | ln -s $$prev $$SHLIB$$SHLIB_SUFFIX ); \ | ||
| 127 | fi; \ | ||
| 128 | fi | ||
| 129 | |||
| 130 | LINK_SO_A= SHOBJECTS="lib$(LIBNAME).a $(LIBEXTRAS)"; $(LINK_SO) | ||
| 131 | LINK_SO_O= SHOBJECTS="$(LIBEXTRAS)"; $(LINK_SO) | ||
| 132 | |||
| 133 | LINK_SO_A_VIA_O= \ | ||
| 134 | SHOBJECTS=lib$(LIBNAME).o; \ | ||
| 135 | ALL=$$ALLSYMSFLAGS; ALLSYMSFLAGS=; NOALLSYMSFLAGS=; \ | ||
| 136 | ( $(SET_X); \ | ||
| 137 | ld $(LDFLAGS) -r -o lib$(LIBNAME).o $$ALL lib$(LIBNAME).a $(LIBEXTRAS) ); \ | ||
| 138 | $(LINK_SO) && rm -f $(LIBNAME).o | ||
| 139 | |||
| 140 | LINK_SO_A_UNPACKED= \ | ||
| 141 | UNPACKDIR=link_tmp.$$$$; rm -rf $$UNPACKDIR; mkdir $$UNPACKDIR; \ | ||
| 142 | (cd $$UNPACKDIR; ar x ../lib$(LIBNAME).a) && \ | ||
| 143 | ([ -z "$(LIBEXTRAS)" ] || cp $(LIBEXTRAS) $$UNPACKDIR) && \ | ||
| 144 | SHOBJECTS=$$UNPACKDIR/*.o; \ | ||
| 145 | $(LINK_SO) && rm -rf $$UNPACKDIR | ||
| 146 | |||
| 147 | DETECT_GNU_LD=(${CC} -Wl,-V /dev/null 2>&1 | grep '^GNU ld' )>/dev/null | ||
| 148 | |||
| 149 | DO_GNU_SO=$(CALC_VERSIONS); \ | ||
| 150 | SHLIB=lib$(LIBNAME).so; \ | ||
| 151 | SHLIB_SUFFIX=; \ | ||
| 152 | ALLSYMSFLAGS='-Wl,--whole-archive'; \ | ||
| 153 | NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \ | ||
| 154 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-Bsymbolic -Wl,-soname=$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX" | ||
| 155 | |||
| 156 | DO_GNU_APP=LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBRPATH)" | ||
| 157 | |||
| 158 | #This is rather special. It's a special target with which one can link | ||
| 159 | #applications without bothering with any features that have anything to | ||
| 160 | #do with shared libraries, for example when linking against static | ||
| 161 | #libraries. It's mostly here to avoid a lot of conditionals everywhere | ||
| 162 | #else... | ||
| 163 | link_app.: | ||
| 164 | $(LINK_APP) | ||
| 165 | |||
| 166 | link_o.gnu: | ||
| 167 | @ $(DO_GNU_SO); $(LINK_SO_O) | ||
| 168 | link_a.gnu: | ||
| 169 | @ $(DO_GNU_SO); $(LINK_SO_A) | ||
| 170 | link_app.gnu: | ||
| 171 | @ $(DO_GNU_APP); $(LINK_APP) | ||
| 172 | |||
| 173 | link_o.bsd: | ||
| 174 | @if ${DETECT_GNU_LD}; then $(DO_GNU_SO); else \ | ||
| 175 | $(CALC_VERSIONS); \ | ||
| 176 | SHLIB=lib$(LIBNAME).so; \ | ||
| 177 | SHLIB_SUFFIX=; \ | ||
| 178 | LIBDEPS=" "; \ | ||
| 179 | ALLSYMSFLAGS="-Wl,-Bforcearchive"; \ | ||
| 180 | NOALLSYMSFLAGS=; \ | ||
| 181 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -nostdlib"; \ | ||
| 182 | fi; $(LINK_SO_O) | ||
| 183 | link_a.bsd: | ||
| 184 | @if ${DETECT_GNU_LD}; then $(DO_GNU_SO); else \ | ||
| 185 | $(CALC_VERSIONS); \ | ||
| 186 | SHLIB=lib$(LIBNAME).so; \ | ||
| 187 | SHLIB_SUFFIX=; \ | ||
| 188 | LIBDEPS=" "; \ | ||
| 189 | ALLSYMSFLAGS="-Wl,-Bforcearchive"; \ | ||
| 190 | NOALLSYMSFLAGS=; \ | ||
| 191 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -nostdlib"; \ | ||
| 192 | fi; $(LINK_SO_A) | ||
| 193 | link_app.bsd: | ||
| 194 | @if ${DETECT_GNU_LD}; then $(DO_GNU_APP); else \ | ||
| 195 | LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBPATH)"; \ | ||
| 196 | fi; $(LINK_APP) | ||
| 197 | |||
| 198 | # For Darwin AKA Mac OS/X (dyld) | ||
| 199 | # link_o.darwin produces .so, because we let it use dso_dlfcn module, | ||
| 200 | # which has .so extension hard-coded. One can argue that one should | ||
| 201 | # develop special dso module for MacOS X. At least manual encourages | ||
| 202 | # to use native NSModule(3) API and refers to dlfcn as termporary hack. | ||
| 203 | link_o.darwin: | ||
| 204 | @ $(CALC_VERSIONS); \ | ||
| 205 | SHLIB=lib$(LIBNAME); \ | ||
| 206 | SHLIB_SUFFIX=.so; \ | ||
| 207 | ALLSYMSFLAGS='-all_load'; \ | ||
| 208 | NOALLSYMSFLAGS=''; \ | ||
| 209 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS)"; \ | ||
| 210 | if [ -n "$(LIBVERSION)" ]; then \ | ||
| 211 | SHAREDFLAGS="$$SHAREDFLAGS -current_version $(LIBVERSION)"; \ | ||
| 212 | fi; \ | ||
| 213 | if [ -n "$$SHLIB_SOVER_NODOT" ]; then \ | ||
| 214 | SHAREDFLAGS="$$SHAREDFLAGS -compatibility_version $$SHLIB_SOVER_NODOT"; \ | ||
| 215 | fi; \ | ||
| 216 | $(LINK_SO_O) | ||
| 217 | link_a.darwin: | ||
| 218 | @ $(CALC_VERSIONS); \ | ||
| 219 | SHLIB=lib$(LIBNAME); \ | ||
| 220 | SHLIB_SUFFIX=.dylib; \ | ||
| 221 | ALLSYMSFLAGS='-all_load'; \ | ||
| 222 | NOALLSYMSFLAGS=''; \ | ||
| 223 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS)"; \ | ||
| 224 | if [ -n "$(LIBVERSION)" ]; then \ | ||
| 225 | SHAREDFLAGS="$$SHAREDFLAGS -current_version $(LIBVERSION)"; \ | ||
| 226 | fi; \ | ||
| 227 | if [ -n "$$SHLIB_SOVER_NODOT" ]; then \ | ||
| 228 | SHAREDFLAGS="$$SHAREDFLAGS -compatibility_version $$SHLIB_SOVER_NODOT"; \ | ||
| 229 | fi; \ | ||
| 230 | SHAREDFLAGS="$$SHAREDFLAGS -install_name ${INSTALLTOP}/lib/$$SHLIB${SHLIB_EXT}"; \ | ||
| 231 | $(LINK_SO_A) | ||
| 232 | link_app.darwin: # is there run-path on darwin? | ||
| 233 | $(LINK_APP) | ||
| 234 | |||
| 235 | link_o.cygwin: | ||
| 236 | @ $(CALC_VERSIONS); \ | ||
| 237 | INHIBIT_SYMLINKS=yes; \ | ||
| 238 | SHLIB=cyg$(LIBNAME); \ | ||
| 239 | base=-Wl,--enable-auto-image-base; \ | ||
| 240 | if expr $(PLATFORM) : 'mingw' > /dev/null; then \ | ||
| 241 | SHLIB=$(LIBNAME)eay32; base=; \ | ||
| 242 | fi; \ | ||
| 243 | SHLIB_SUFFIX=.dll; \ | ||
| 244 | LIBVERSION="$(LIBVERSION)"; \ | ||
| 245 | SHLIB_SOVER=${LIBVERSION:+"-$(LIBVERSION)"}; \ | ||
| 246 | ALLSYMSFLAGS='-Wl,--whole-archive'; \ | ||
| 247 | NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \ | ||
| 248 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared $$base -Wl,-Bsymbolic -Wl,--out-implib,lib$(LIBNAME).dll.a"; \ | ||
| 249 | $(LINK_SO_O) | ||
| 250 | link_a.cygwin: | ||
| 251 | @ $(CALC_VERSIONS); \ | ||
| 252 | INHIBIT_SYMLINKS=yes; \ | ||
| 253 | SHLIB=cyg$(LIBNAME); \ | ||
| 254 | base=-Wl,--enable-auto-image-base; \ | ||
| 255 | if expr $(PLATFORM) : 'mingw' > /dev/null; then \ | ||
| 256 | SHLIB=$(LIBNAME)eay32; \ | ||
| 257 | base=; [ $(LIBNAME) = "crypto" ] && base=-Wl,--image-base,0x63000000; \ | ||
| 258 | fi; \ | ||
| 259 | SHLIB_SUFFIX=.dll; \ | ||
| 260 | SHLIB_SOVER=-$(LIBVERSION); \ | ||
| 261 | ALLSYMSFLAGS='-Wl,--whole-archive'; \ | ||
| 262 | NOALLSYMSFLAGS='-Wl,--no-whole-archive'; \ | ||
| 263 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared $$base -Wl,-Bsymbolic -Wl,--out-implib,lib$(LIBNAME).dll.a"; \ | ||
| 264 | [ -f apps/$$SHLIB$$SHLIB_SUFFIX ] && rm apps/$$SHLIB$$SHLIB_SUFFIX; \ | ||
| 265 | [ -f test/$$SHLIB$$SHLIB_SUFFIX ] && rm test/$$SHLIB$$SHLIB_SUFFIX; \ | ||
| 266 | $(LINK_SO_A) || exit 1; \ | ||
| 267 | cp -p $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX apps/; \ | ||
| 268 | cp -p $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX test/ | ||
| 269 | link_app.cygwin: | ||
| 270 | $(LINK_APP) | ||
| 271 | |||
| 272 | link_o.alpha-osf1: | ||
| 273 | @ if ${DETECT_GNU_LD}; then \ | ||
| 274 | $(DO_GNU_SO); \ | ||
| 275 | else \ | ||
| 276 | SHLIB=lib$(LIBNAME).so; \ | ||
| 277 | SHLIB_SUFFIX=; \ | ||
| 278 | SHLIB_HIST=`echo "$(LIBCOMPATVERSIONS)" | cut -d';' -f2 | sed -e 's/ */:/'`; \ | ||
| 279 | if [ -n "$$SHLIB_HIST" ]; then \ | ||
| 280 | SHLIB_HIST="$${SHLIB_HIST}:$(LIBVERSION)"; \ | ||
| 281 | else \ | ||
| 282 | SHLIB_HIST="$(LIBVERSION)"; \ | ||
| 283 | fi; \ | ||
| 284 | SHLIB_SOVER=; \ | ||
| 285 | ALLSYMSFLAGS='-all'; \ | ||
| 286 | NOALLSYMSFLAGS='-none'; \ | ||
| 287 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-B,symbolic"; \ | ||
| 288 | if [ -n "$$SHLIB_HIST" ]; then \ | ||
| 289 | SHAREDFLAGS="$$SHAREDFLAGS -set_version $$SHLIB_HIST"; \ | ||
| 290 | fi; \ | ||
| 291 | fi; \ | ||
| 292 | $(LINK_SO_O) | ||
| 293 | link_a.alpha-osf1: | ||
| 294 | @ if ${DETECT_GNU_LD}; then \ | ||
| 295 | $(DO_GNU_SO); \ | ||
| 296 | else \ | ||
| 297 | SHLIB=lib$(LIBNAME).so; \ | ||
| 298 | SHLIB_SUFFIX=; \ | ||
| 299 | SHLIB_HIST=`echo "$(LIBCOMPATVERSIONS)" | cut -d';' -f2 | sed -e 's/ */:/'`; \ | ||
| 300 | if [ -n "$$SHLIB_HIST" ]; then \ | ||
| 301 | SHLIB_HIST="$${SHLIB_HIST}:$(LIBVERSION)"; \ | ||
| 302 | else \ | ||
| 303 | SHLIB_HIST="$(LIBVERSION)"; \ | ||
| 304 | fi; \ | ||
| 305 | SHLIB_SOVER=; \ | ||
| 306 | ALLSYMSFLAGS='-all'; \ | ||
| 307 | NOALLSYMSFLAGS='-none'; \ | ||
| 308 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-B,symbolic"; \ | ||
| 309 | if [ -n "$$SHLIB_HIST" ]; then \ | ||
| 310 | SHAREDFLAGS="$$SHAREDFLAGS -set_version $$SHLIB_HIST"; \ | ||
| 311 | fi; \ | ||
| 312 | fi; \ | ||
| 313 | $(LINK_SO_A) | ||
| 314 | link_app.alpha-osf1: | ||
| 315 | @if ${DETECT_GNU_LD}; then \ | ||
| 316 | $(DO_GNU_APP); \ | ||
| 317 | else \ | ||
| 318 | LDFLAGS="$(CFLAGS) -rpath $(LIBRPATH)"; \ | ||
| 319 | fi; \ | ||
| 320 | $(LINK_APP) | ||
| 321 | |||
| 322 | link_o.solaris: | ||
| 323 | @ if ${DETECT_GNU_LD}; then \ | ||
| 324 | $(DO_GNU_SO); \ | ||
| 325 | else \ | ||
| 326 | $(CALC_VERSIONS); \ | ||
| 327 | MINUSZ='-z '; \ | ||
| 328 | ($(CC) -v 2>&1 | grep gcc) > /dev/null && MINUSZ='-Wl,-z,'; \ | ||
| 329 | SHLIB=lib$(LIBNAME).so; \ | ||
| 330 | SHLIB_SUFFIX=; \ | ||
| 331 | ALLSYMSFLAGS="$${MINUSZ}allextract"; \ | ||
| 332 | NOALLSYMSFLAGS="$${MINUSZ}defaultextract"; \ | ||
| 333 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -h $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX -Wl,-Bsymbolic"; \ | ||
| 334 | fi; \ | ||
| 335 | $(LINK_SO_O) | ||
| 336 | link_a.solaris: | ||
| 337 | @ if ${DETECT_GNU_LD}; then \ | ||
| 338 | $(DO_GNU_SO); \ | ||
| 339 | else \ | ||
| 340 | $(CALC_VERSIONS); \ | ||
| 341 | MINUSZ='-z '; \ | ||
| 342 | (${CC} -v 2>&1 | grep gcc) > /dev/null && MINUSZ='-Wl,-z,'; \ | ||
| 343 | SHLIB=lib$(LIBNAME).so; \ | ||
| 344 | SHLIB_SUFFIX=;\ | ||
| 345 | ALLSYMSFLAGS="$${MINUSZ}allextract"; \ | ||
| 346 | NOALLSYMSFLAGS="$${MINUSZ}defaultextract"; \ | ||
| 347 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -h $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX -Wl,-Bsymbolic"; \ | ||
| 348 | fi; \ | ||
| 349 | $(LINK_SO_A) | ||
| 350 | link_app.solaris: | ||
| 351 | @ if ${DETECT_GNU_LD}; then \ | ||
| 352 | $(DO_GNU_APP); \ | ||
| 353 | else \ | ||
| 354 | LDFLAGS="$(CFLAGS) -R $(LIBRPATH)"; \ | ||
| 355 | fi; \ | ||
| 356 | $(LINK_APP) | ||
| 357 | |||
| 358 | # OpenServer 5 native compilers used | ||
| 359 | link_o.svr3: | ||
| 360 | @ if ${DETECT_GNU_LD}; then \ | ||
| 361 | $(DO_GNU_SO); \ | ||
| 362 | else \ | ||
| 363 | $(CALC_VERSIONS); \ | ||
| 364 | SHLIB=lib$(LIBNAME).so; \ | ||
| 365 | SHLIB_SUFFIX=; \ | ||
| 366 | ALLSYMSFLAGS=''; \ | ||
| 367 | NOALLSYMSFLAGS=''; \ | ||
| 368 | SHAREDFLAGS="$(CFLAGS) -G -h $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"; \ | ||
| 369 | fi; \ | ||
| 370 | $(LINK_SO_O) | ||
| 371 | link_a.svr3: | ||
| 372 | @ if ${DETECT_GNU_LD}; then \ | ||
| 373 | $(DO_GNU_SO); \ | ||
| 374 | else \ | ||
| 375 | $(CALC_VERSIONS); \ | ||
| 376 | SHLIB=lib$(LIBNAME).so; \ | ||
| 377 | SHLIB_SUFFIX=; \ | ||
| 378 | ALLSYMSFLAGS=''; \ | ||
| 379 | NOALLSYMSFLAGS=''; \ | ||
| 380 | SHAREDFLAGS="$(CFLAGS) -G -h $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"; \ | ||
| 381 | fi; \ | ||
| 382 | $(LINK_SO_A_UNPACKED) | ||
| 383 | link_app.svr3: | ||
| 384 | @${DETECT_GNU_LD} && $(DO_GNU_APP); \ | ||
| 385 | $(LINK_APP) | ||
| 386 | |||
| 387 | # UnixWare 7 and OpenUNIX 8 native compilers used | ||
| 388 | link_o.svr5: | ||
| 389 | @ if ${DETECT_GNU_LD}; then \ | ||
| 390 | $(DO_GNU_SO); \ | ||
| 391 | else \ | ||
| 392 | $(CALC_VERSIONS); \ | ||
| 393 | SHARE_FLAG='-G'; \ | ||
| 394 | ($(CC) -v 2>&1 | grep gcc) > /dev/null && SHARE_FLAG='-shared'; \ | ||
| 395 | SHLIB=lib$(LIBNAME).so; \ | ||
| 396 | SHLIB_SUFFIX=; \ | ||
| 397 | ALLSYMSFLAGS=''; \ | ||
| 398 | NOALLSYMSFLAGS=''; \ | ||
| 399 | SHAREDFLAGS="$(CFLAGS) $${SHARE_FLAG} -h $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"; \ | ||
| 400 | fi; \ | ||
| 401 | $(LINK_SO_O) | ||
| 402 | link_a.svr5: | ||
| 403 | @ if ${DETECT_GNU_LD}; then \ | ||
| 404 | $(DO_GNU_SO); \ | ||
| 405 | else \ | ||
| 406 | $(CALC_VERSIONS); \ | ||
| 407 | SHARE_FLAG='-G'; \ | ||
| 408 | (${CC} -v 2>&1 | grep gcc) > /dev/null && SHARE_FLAG='-shared'; \ | ||
| 409 | SHLIB=lib$(LIBNAME).so; \ | ||
| 410 | SHLIB_SUFFIX=; \ | ||
| 411 | ALLSYMSFLAGS=''; \ | ||
| 412 | NOALLSYMSFLAGS=''; \ | ||
| 413 | SHAREDFLAGS="$(CFLAGS) $${SHARE_FLAG} -h $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX"; \ | ||
| 414 | fi; \ | ||
| 415 | $(LINK_SO_A_UNPACKED) | ||
| 416 | link_app.svr5: | ||
| 417 | @${DETECT_GNU_LD} && $(DO_GNU_APP); \ | ||
| 418 | $(LINK_APP) | ||
| 419 | |||
| 420 | link_o.irix: | ||
| 421 | @ if ${DETECT_GNU_LD}; then \ | ||
| 422 | $(DO_GNU_SO); \ | ||
| 423 | else \ | ||
| 424 | $(CALC_VERSIONS); \ | ||
| 425 | SHLIB=lib$(LIBNAME).so; \ | ||
| 426 | SHLIB_SUFFIX=; \ | ||
| 427 | MINUSWL=""; \ | ||
| 428 | ($(CC) -v 2>&1 | grep gcc) > /dev/null && MINUSWL="-Wl,"; \ | ||
| 429 | ALLSYMSFLAGS="$${MINUSWL}-all"; \ | ||
| 430 | NOALLSYMSFLAGS="$${MINUSWL}-none"; \ | ||
| 431 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-soname,$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX,-B,symbolic"; \ | ||
| 432 | fi; \ | ||
| 433 | $(LINK_SO_O) | ||
| 434 | link_a.irix: | ||
| 435 | @ if ${DETECT_GNU_LD}; then \ | ||
| 436 | $(DO_GNU_SO); \ | ||
| 437 | else \ | ||
| 438 | $(CALC_VERSIONS); \ | ||
| 439 | SHLIB=lib$(LIBNAME).so; \ | ||
| 440 | SHLIB_SUFFIX=; \ | ||
| 441 | MINUSWL=""; \ | ||
| 442 | ($(CC) -v 2>&1 | grep gcc) > /dev/null && MINUSWL="-Wl,"; \ | ||
| 443 | ALLSYMSFLAGS="$${MINUSWL}-all"; \ | ||
| 444 | NOALLSYMSFLAGS="$${MINUSWL}-none"; \ | ||
| 445 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -shared -Wl,-soname,$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX,-B,symbolic"; \ | ||
| 446 | fi; \ | ||
| 447 | $(LINK_SO_A) | ||
| 448 | link_app.irix: | ||
| 449 | @LDFLAGS="$(CFLAGS) -Wl,-rpath,$(LIBRPATH)"; \ | ||
| 450 | $(LINK_APP) | ||
| 451 | |||
| 452 | # 32-bit PA-RISC HP-UX embeds the -L pathname of libs we link with, so | ||
| 453 | # we compensate for it with +cdp ../: and +cdp ./:. Yes, these rewrite | ||
| 454 | # rules imply that we can only link one level down in catalog structure, | ||
| 455 | # but that's what takes place for the moment of this writing. +cdp option | ||
| 456 | # was introduced in HP-UX 11.x and applies in 32-bit PA-RISC link | ||
| 457 | # editor context only [it's simply ignored in other cases, which are all | ||
| 458 | # ELFs by the way]. | ||
| 459 | # | ||
| 460 | link_o.hpux: | ||
| 461 | @if ${DETECT_GNU_LD}; then $(DO_GNU_SO); else \ | ||
| 462 | $(CALC_VERSIONS); \ | ||
| 463 | SHLIB=lib$(LIBNAME).sl; \ | ||
| 464 | expr "$(CFLAGS)" : '.*DSO_DLFCN' > /dev/null && SHLIB=lib$(LIBNAME).so; \ | ||
| 465 | SHLIB_SUFFIX=; \ | ||
| 466 | ALLSYMSFLAGS='-Wl,-Fl'; \ | ||
| 467 | NOALLSYMSFLAGS=''; \ | ||
| 468 | expr $(PLATFORM) : 'hpux64' > /dev/null && ALLSYMSFLAGS='-Wl,+forceload'; \ | ||
| 469 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -Wl,-B,symbolic,+vnocompatwarnings,-z,+s,+h,$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX,+cdp,../:,+cdp,./:"; \ | ||
| 470 | fi; \ | ||
| 471 | rm -f $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX || :; \ | ||
| 472 | $(LINK_SO_O) && chmod a=rx $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX | ||
| 473 | link_a.hpux: | ||
| 474 | @if ${DETECT_GNU_LD}; then $(DO_GNU_SO); else \ | ||
| 475 | $(CALC_VERSIONS); \ | ||
| 476 | SHLIB=lib$(LIBNAME).sl; \ | ||
| 477 | expr $(PLATFORM) : '.*ia64' > /dev/null && SHLIB=lib$(LIBNAME).so; \ | ||
| 478 | SHLIB_SUFFIX=; \ | ||
| 479 | ALLSYMSFLAGS='-Wl,-Fl'; \ | ||
| 480 | NOALLSYMSFLAGS=''; \ | ||
| 481 | expr $(PLATFORM) : 'hpux64' > /dev/null && ALLSYMSFLAGS='-Wl,+forceload'; \ | ||
| 482 | SHAREDFLAGS="$(CFLAGS) $(SHARED_LDFLAGS) -Wl,-B,symbolic,+vnocompatwarnings,-z,+s,+h,$$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX,+cdp,../:,+cdp,./:"; \ | ||
| 483 | fi; \ | ||
| 484 | rm -f $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX || :; \ | ||
| 485 | $(LINK_SO_A) && chmod a=rx $$SHLIB$$SHLIB_SOVER$$SHLIB_SUFFIX | ||
| 486 | link_app.hpux: | ||
| 487 | @if ${DETECT_GNU_LD}; then $(DO_GNU_APP); else \ | ||
| 488 | LDFLAGS="$(CFLAGS) -Wl,+s,+cdp,../:,+cdp,./:,+b,$(LIBRPATH)"; \ | ||
| 489 | fi; \ | ||
| 490 | $(LINK_APP) | ||
| 491 | |||
| 492 | link_o.aix: | ||
| 493 | @ $(CALC_VERSIONS); \ | ||
| 494 | OBJECT_MODE=`expr x$(SHARED_LDFLAGS) : 'x\-[a-z]*\(64\)'` || :; \ | ||
| 495 | OBJECT_MODE=$${OBJECT_MODE:-32}; export OBJECT_MODE; \ | ||
| 496 | SHLIB=lib$(LIBNAME).so; \ | ||
| 497 | SHLIB_SUFFIX=; \ | ||
| 498 | ALLSYMSFLAGS=''; \ | ||
| 499 | NOALLSYMSFLAGS=''; \ | ||
| 500 | SHAREDFLAGS='$(CFLAGS) $(SHARED_LDFLAGS) -Wl,-G,-bexpall,-bnolibpath,-bM:SRE'; \ | ||
| 501 | $(LINK_SO_O); | ||
| 502 | link_a.aix: | ||
| 503 | @ $(CALC_VERSIONS); \ | ||
| 504 | OBJECT_MODE=`expr x$(SHARED_LDFLAGS) : 'x\-[a-z]*\(64\)'` || : ; \ | ||
| 505 | OBJECT_MODE=$${OBJECT_MODE:-32}; export OBJECT_MODE; \ | ||
| 506 | SHLIB=lib$(LIBNAME).so; \ | ||
| 507 | SHLIB_SUFFIX=; \ | ||
| 508 | ALLSYMSFLAGS='-bnogc'; \ | ||
| 509 | NOALLSYMSFLAGS=''; \ | ||
| 510 | SHAREDFLAGS='$(CFLAGS) $(SHARED_LDFLAGS) -Wl,-G,-bexpall,-bnolibpath,-bM:SRE'; \ | ||
| 511 | $(LINK_SO_A_VIA_O) | ||
| 512 | link_app.aix: | ||
| 513 | LDFLAGS="$(CFLAGS) -Wl,-brtl,-blibpath:$(LIBRPATH):$${LIBPATH:-/usr/lib:/lib}"; \ | ||
| 514 | $(LINK_APP) | ||
| 515 | |||
| 516 | link_o.reliantunix: | ||
| 517 | @ $(CALC_VERSIONS); \ | ||
| 518 | SHLIB=lib$(LIBNAME).so; \ | ||
| 519 | SHLIB_SUFFIX=; \ | ||
| 520 | ALLSYMSFLAGS=; \ | ||
| 521 | NOALLSYMSFLAGS=''; \ | ||
| 522 | SHAREDFLAGS='$(CFLAGS) -G'; \ | ||
| 523 | $(LINK_SO_O) | ||
| 524 | link_a.reliantunix: | ||
| 525 | @ $(CALC_VERSIONS); \ | ||
| 526 | SHLIB=lib$(LIBNAME).so; \ | ||
| 527 | SHLIB_SUFFIX=; \ | ||
| 528 | ALLSYMSFLAGS=; \ | ||
| 529 | NOALLSYMSFLAGS=''; \ | ||
| 530 | SHAREDFLAGS='$(CFLAGS) -G'; \ | ||
| 531 | $(LINK_SO_A_UNPACKED) | ||
| 532 | link_app.reliantunix: | ||
| 533 | $(LINK_APP) | ||
| 534 | |||
| 535 | # Targets to build symbolic links when needed | ||
| 536 | symlink.gnu symlink.solaris symlink.svr3 symlink.svr5 symlink.irix \ | ||
| 537 | symlink.aix symlink.reliantunix: | ||
| 538 | @ $(CALC_VERSIONS); \ | ||
| 539 | SHLIB=lib$(LIBNAME).so; \ | ||
| 540 | $(SYMLINK_SO) | ||
| 541 | symlink.darwin: | ||
| 542 | @ $(CALC_VERSIONS); \ | ||
| 543 | SHLIB=lib$(LIBNAME); \ | ||
| 544 | SHLIB_SUFFIX=.dylib; \ | ||
| 545 | $(SYMLINK_SO) | ||
| 546 | symlink.hpux: | ||
| 547 | @ $(CALC_VERSIONS); \ | ||
| 548 | SHLIB=lib$(LIBNAME).sl; \ | ||
| 549 | expr $(PLATFORM) : '.*ia64' > /dev/null && SHLIB=lib$(LIBNAME).so; \ | ||
| 550 | $(SYMLINK_SO) | ||
| 551 | # The following lines means those specific architectures do no symlinks | ||
| 552 | symlink.cygwin symlink.alpha-osf1 symlink.tru64 symlink.tru64-rpath: | ||
| 553 | |||
| 554 | # Compatibility targets | ||
| 555 | link_o.bsd-gcc-shared link_o.linux-shared link_o.gnu-shared: link_o.gnu | ||
| 556 | link_a.bsd-gcc-shared link_a.linux-shared link_a.gnu-shared: link_a.gnu | ||
| 557 | link_app.bsd-gcc-shared link_app.linux-shared link_app.gnu-shared: link_app.gnu | ||
| 558 | symlink.bsd-gcc-shared symlink.bsd-shared symlink.linux-shared symlink.gnu-shared: symlink.gnu | ||
| 559 | link_o.bsd-shared: link_o.bsd | ||
| 560 | link_a.bsd-shared: link_a.bsd | ||
| 561 | link_app.bsd-shared: link_app.bsd | ||
| 562 | link_o.darwin-shared: link_o.darwin | ||
| 563 | link_a.darwin-shared: link_a.darwin | ||
| 564 | link_app.darwin-shared: link_app.darwin | ||
| 565 | symlink.darwin-shared: symlink.darwin | ||
| 566 | link_o.cygwin-shared: link_o.cygwin | ||
| 567 | link_a.cygwin-shared: link_a.cygwin | ||
| 568 | link_app.cygwin-shared: link_app.cygwin | ||
| 569 | symlink.cygwin-shared: symlink.cygwin | ||
| 570 | link_o.alpha-osf1-shared: link_o.alpha-osf1 | ||
| 571 | link_a.alpha-osf1-shared: link_a.alpha-osf1 | ||
| 572 | link_app.alpha-osf1-shared: link_app.alpha-osf1 | ||
| 573 | symlink.alpha-osf1-shared: symlink.alpha-osf1 | ||
| 574 | link_o.tru64-shared: link_o.tru64 | ||
| 575 | link_a.tru64-shared: link_a.tru64 | ||
| 576 | link_app.tru64-shared: link_app.tru64 | ||
| 577 | symlink.tru64-shared: symlink.tru64 | ||
| 578 | link_o.tru64-shared-rpath: link_o.tru64-rpath | ||
| 579 | link_a.tru64-shared-rpath: link_a.tru64-rpath | ||
| 580 | link_app.tru64-shared-rpath: link_app.tru64-rpath | ||
| 581 | symlink.tru64-shared-rpath: symlink.tru64-rpath | ||
| 582 | link_o.solaris-shared: link_o.solaris | ||
| 583 | link_a.solaris-shared: link_a.solaris | ||
| 584 | link_app.solaris-shared: link_app.solaris | ||
| 585 | symlink.solaris-shared: symlink.solaris | ||
| 586 | link_o.svr3-shared: link_o.svr3 | ||
| 587 | link_a.svr3-shared: link_a.svr3 | ||
| 588 | link_app.svr3-shared: link_app.svr3 | ||
| 589 | symlink.svr3-shared: symlink.svr3 | ||
| 590 | link_o.svr5-shared: link_o.svr5 | ||
| 591 | link_a.svr5-shared: link_a.svr5 | ||
| 592 | link_app.svr5-shared: link_app.svr5 | ||
| 593 | symlink.svr5-shared: symlink.svr5 | ||
| 594 | link_o.irix-shared: link_o.irix | ||
| 595 | link_a.irix-shared: link_a.irix | ||
| 596 | link_app.irix-shared: link_app.irix | ||
| 597 | symlink.irix-shared: symlink.irix | ||
| 598 | link_o.hpux-shared: link_o.hpux | ||
| 599 | link_a.hpux-shared: link_a.hpux | ||
| 600 | link_app.hpux-shared: link_app.hpux | ||
| 601 | symlink.hpux-shared: symlink.hpux | ||
| 602 | link_o.aix-shared: link_o.aix | ||
| 603 | link_a.aix-shared: link_a.aix | ||
| 604 | link_app.aix-shared: link_app.aix | ||
| 605 | symlink.aix-shared: symlink.aix | ||
| 606 | link_o.reliantunix-shared: link_o.reliantunix | ||
| 607 | link_a.reliantunix-shared: link_a.reliantunix | ||
| 608 | link_app.reliantunix-shared: link_app.reliantunix | ||
| 609 | symlink.reliantunix-shared: symlink.reliantunix | ||
diff --git a/src/lib/libssl/src/apps/cms.c b/src/lib/libssl/src/apps/cms.c new file mode 100644 index 0000000000..6d227acabe --- /dev/null +++ b/src/lib/libssl/src/apps/cms.c | |||
| @@ -0,0 +1,1347 @@ | |||
| 1 | /* apps/cms.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | /* CMS utility function */ | ||
| 55 | |||
| 56 | #include <stdio.h> | ||
| 57 | #include <string.h> | ||
| 58 | #include "apps.h" | ||
| 59 | |||
| 60 | #ifndef OPENSSL_NO_CMS | ||
| 61 | |||
| 62 | #include <openssl/crypto.h> | ||
| 63 | #include <openssl/pem.h> | ||
| 64 | #include <openssl/err.h> | ||
| 65 | #include <openssl/x509_vfy.h> | ||
| 66 | #include <openssl/x509v3.h> | ||
| 67 | #include <openssl/cms.h> | ||
| 68 | |||
| 69 | #undef PROG | ||
| 70 | #define PROG cms_main | ||
| 71 | static int save_certs(char *signerfile, STACK_OF(X509) *signers); | ||
| 72 | static int cms_cb(int ok, X509_STORE_CTX *ctx); | ||
| 73 | static void receipt_request_print(BIO *out, CMS_ContentInfo *cms); | ||
| 74 | static CMS_ReceiptRequest *make_receipt_request(STACK *rr_to, int rr_allorfirst, | ||
| 75 | STACK *rr_from); | ||
| 76 | |||
| 77 | #define SMIME_OP 0x10 | ||
| 78 | #define SMIME_IP 0x20 | ||
| 79 | #define SMIME_SIGNERS 0x40 | ||
| 80 | #define SMIME_ENCRYPT (1 | SMIME_OP) | ||
| 81 | #define SMIME_DECRYPT (2 | SMIME_IP) | ||
| 82 | #define SMIME_SIGN (3 | SMIME_OP | SMIME_SIGNERS) | ||
| 83 | #define SMIME_VERIFY (4 | SMIME_IP) | ||
| 84 | #define SMIME_CMSOUT (5 | SMIME_IP | SMIME_OP) | ||
| 85 | #define SMIME_RESIGN (6 | SMIME_IP | SMIME_OP | SMIME_SIGNERS) | ||
| 86 | #define SMIME_DATAOUT (7 | SMIME_IP) | ||
| 87 | #define SMIME_DATA_CREATE (8 | SMIME_OP) | ||
| 88 | #define SMIME_DIGEST_VERIFY (9 | SMIME_IP) | ||
| 89 | #define SMIME_DIGEST_CREATE (10 | SMIME_OP) | ||
| 90 | #define SMIME_UNCOMPRESS (11 | SMIME_IP) | ||
| 91 | #define SMIME_COMPRESS (12 | SMIME_OP) | ||
| 92 | #define SMIME_ENCRYPTED_DECRYPT (13 | SMIME_IP) | ||
| 93 | #define SMIME_ENCRYPTED_ENCRYPT (14 | SMIME_OP) | ||
| 94 | #define SMIME_SIGN_RECEIPT (15 | SMIME_IP | SMIME_OP) | ||
| 95 | #define SMIME_VERIFY_RECEIPT (16 | SMIME_IP) | ||
| 96 | |||
| 97 | int MAIN(int, char **); | ||
| 98 | |||
| 99 | int MAIN(int argc, char **argv) | ||
| 100 | { | ||
| 101 | ENGINE *e = NULL; | ||
| 102 | int operation = 0; | ||
| 103 | int ret = 0; | ||
| 104 | char **args; | ||
| 105 | const char *inmode = "r", *outmode = "w"; | ||
| 106 | char *infile = NULL, *outfile = NULL, *rctfile = NULL; | ||
| 107 | char *signerfile = NULL, *recipfile = NULL; | ||
| 108 | STACK *sksigners = NULL, *skkeys = NULL; | ||
| 109 | char *certfile = NULL, *keyfile = NULL, *contfile=NULL; | ||
| 110 | char *certsoutfile = NULL; | ||
| 111 | const EVP_CIPHER *cipher = NULL; | ||
| 112 | CMS_ContentInfo *cms = NULL, *rcms = NULL; | ||
| 113 | X509_STORE *store = NULL; | ||
| 114 | X509 *cert = NULL, *recip = NULL, *signer = NULL; | ||
| 115 | EVP_PKEY *key = NULL; | ||
| 116 | STACK_OF(X509) *encerts = NULL, *other = NULL; | ||
| 117 | BIO *in = NULL, *out = NULL, *indata = NULL, *rctin = NULL; | ||
| 118 | int badarg = 0; | ||
| 119 | int flags = CMS_DETACHED; | ||
| 120 | int rr_print = 0, rr_allorfirst = -1; | ||
| 121 | STACK *rr_to = NULL, *rr_from = NULL; | ||
| 122 | CMS_ReceiptRequest *rr = NULL; | ||
| 123 | char *to = NULL, *from = NULL, *subject = NULL; | ||
| 124 | char *CAfile = NULL, *CApath = NULL; | ||
| 125 | char *passargin = NULL, *passin = NULL; | ||
| 126 | char *inrand = NULL; | ||
| 127 | int need_rand = 0; | ||
| 128 | const EVP_MD *sign_md = NULL; | ||
| 129 | int informat = FORMAT_SMIME, outformat = FORMAT_SMIME; | ||
| 130 | int rctformat = FORMAT_SMIME, keyform = FORMAT_PEM; | ||
| 131 | #ifndef OPENSSL_NO_ENGINE | ||
| 132 | char *engine=NULL; | ||
| 133 | #endif | ||
| 134 | unsigned char *secret_key = NULL, *secret_keyid = NULL; | ||
| 135 | size_t secret_keylen = 0, secret_keyidlen = 0; | ||
| 136 | |||
| 137 | ASN1_OBJECT *econtent_type = NULL; | ||
| 138 | |||
| 139 | X509_VERIFY_PARAM *vpm = NULL; | ||
| 140 | |||
| 141 | args = argv + 1; | ||
| 142 | ret = 1; | ||
| 143 | |||
| 144 | apps_startup(); | ||
| 145 | |||
| 146 | if (bio_err == NULL) | ||
| 147 | { | ||
| 148 | if ((bio_err = BIO_new(BIO_s_file())) != NULL) | ||
| 149 | BIO_set_fp(bio_err, stderr, BIO_NOCLOSE|BIO_FP_TEXT); | ||
| 150 | } | ||
| 151 | |||
| 152 | if (!load_config(bio_err, NULL)) | ||
| 153 | goto end; | ||
| 154 | |||
| 155 | while (!badarg && *args && *args[0] == '-') | ||
| 156 | { | ||
| 157 | if (!strcmp (*args, "-encrypt")) | ||
| 158 | operation = SMIME_ENCRYPT; | ||
| 159 | else if (!strcmp (*args, "-decrypt")) | ||
| 160 | operation = SMIME_DECRYPT; | ||
| 161 | else if (!strcmp (*args, "-sign")) | ||
| 162 | operation = SMIME_SIGN; | ||
| 163 | else if (!strcmp (*args, "-sign_receipt")) | ||
| 164 | operation = SMIME_SIGN_RECEIPT; | ||
| 165 | else if (!strcmp (*args, "-resign")) | ||
| 166 | operation = SMIME_RESIGN; | ||
| 167 | else if (!strcmp (*args, "-verify")) | ||
| 168 | operation = SMIME_VERIFY; | ||
| 169 | else if (!strcmp(*args,"-verify_receipt")) | ||
| 170 | { | ||
| 171 | operation = SMIME_VERIFY_RECEIPT; | ||
| 172 | if (!args[1]) | ||
| 173 | goto argerr; | ||
| 174 | args++; | ||
| 175 | rctfile = *args; | ||
| 176 | } | ||
| 177 | else if (!strcmp (*args, "-cmsout")) | ||
| 178 | operation = SMIME_CMSOUT; | ||
| 179 | else if (!strcmp (*args, "-data_out")) | ||
| 180 | operation = SMIME_DATAOUT; | ||
| 181 | else if (!strcmp (*args, "-data_create")) | ||
| 182 | operation = SMIME_DATA_CREATE; | ||
| 183 | else if (!strcmp (*args, "-digest_verify")) | ||
| 184 | operation = SMIME_DIGEST_VERIFY; | ||
| 185 | else if (!strcmp (*args, "-digest_create")) | ||
| 186 | operation = SMIME_DIGEST_CREATE; | ||
| 187 | else if (!strcmp (*args, "-compress")) | ||
| 188 | operation = SMIME_COMPRESS; | ||
| 189 | else if (!strcmp (*args, "-uncompress")) | ||
| 190 | operation = SMIME_UNCOMPRESS; | ||
| 191 | else if (!strcmp (*args, "-EncryptedData_decrypt")) | ||
| 192 | operation = SMIME_ENCRYPTED_DECRYPT; | ||
| 193 | else if (!strcmp (*args, "-EncryptedData_encrypt")) | ||
| 194 | operation = SMIME_ENCRYPTED_ENCRYPT; | ||
| 195 | #ifndef OPENSSL_NO_DES | ||
| 196 | else if (!strcmp (*args, "-des3")) | ||
| 197 | cipher = EVP_des_ede3_cbc(); | ||
| 198 | else if (!strcmp (*args, "-des")) | ||
| 199 | cipher = EVP_des_cbc(); | ||
| 200 | #endif | ||
| 201 | #ifndef OPENSSL_NO_SEED | ||
| 202 | else if (!strcmp (*args, "-seed")) | ||
| 203 | cipher = EVP_seed_cbc(); | ||
| 204 | #endif | ||
| 205 | #ifndef OPENSSL_NO_RC2 | ||
| 206 | else if (!strcmp (*args, "-rc2-40")) | ||
| 207 | cipher = EVP_rc2_40_cbc(); | ||
| 208 | else if (!strcmp (*args, "-rc2-128")) | ||
| 209 | cipher = EVP_rc2_cbc(); | ||
| 210 | else if (!strcmp (*args, "-rc2-64")) | ||
| 211 | cipher = EVP_rc2_64_cbc(); | ||
| 212 | #endif | ||
| 213 | #ifndef OPENSSL_NO_AES | ||
| 214 | else if (!strcmp(*args,"-aes128")) | ||
| 215 | cipher = EVP_aes_128_cbc(); | ||
| 216 | else if (!strcmp(*args,"-aes192")) | ||
| 217 | cipher = EVP_aes_192_cbc(); | ||
| 218 | else if (!strcmp(*args,"-aes256")) | ||
| 219 | cipher = EVP_aes_256_cbc(); | ||
| 220 | #endif | ||
| 221 | #ifndef OPENSSL_NO_CAMELLIA | ||
| 222 | else if (!strcmp(*args,"-camellia128")) | ||
| 223 | cipher = EVP_camellia_128_cbc(); | ||
| 224 | else if (!strcmp(*args,"-camellia192")) | ||
| 225 | cipher = EVP_camellia_192_cbc(); | ||
| 226 | else if (!strcmp(*args,"-camellia256")) | ||
| 227 | cipher = EVP_camellia_256_cbc(); | ||
| 228 | #endif | ||
| 229 | else if (!strcmp (*args, "-text")) | ||
| 230 | flags |= CMS_TEXT; | ||
| 231 | else if (!strcmp (*args, "-nointern")) | ||
| 232 | flags |= CMS_NOINTERN; | ||
| 233 | else if (!strcmp (*args, "-noverify") | ||
| 234 | || !strcmp (*args, "-no_signer_cert_verify")) | ||
| 235 | flags |= CMS_NO_SIGNER_CERT_VERIFY; | ||
| 236 | else if (!strcmp (*args, "-nocerts")) | ||
| 237 | flags |= CMS_NOCERTS; | ||
| 238 | else if (!strcmp (*args, "-noattr")) | ||
| 239 | flags |= CMS_NOATTR; | ||
| 240 | else if (!strcmp (*args, "-nodetach")) | ||
| 241 | flags &= ~CMS_DETACHED; | ||
| 242 | else if (!strcmp (*args, "-nosmimecap")) | ||
| 243 | flags |= CMS_NOSMIMECAP; | ||
| 244 | else if (!strcmp (*args, "-binary")) | ||
| 245 | flags |= CMS_BINARY; | ||
| 246 | else if (!strcmp (*args, "-keyid")) | ||
| 247 | flags |= CMS_USE_KEYID; | ||
| 248 | else if (!strcmp (*args, "-nosigs")) | ||
| 249 | flags |= CMS_NOSIGS; | ||
| 250 | else if (!strcmp (*args, "-no_content_verify")) | ||
| 251 | flags |= CMS_NO_CONTENT_VERIFY; | ||
| 252 | else if (!strcmp (*args, "-no_attr_verify")) | ||
| 253 | flags |= CMS_NO_ATTR_VERIFY; | ||
| 254 | else if (!strcmp (*args, "-stream")) | ||
| 255 | { | ||
| 256 | args++; | ||
| 257 | continue; | ||
| 258 | } | ||
| 259 | else if (!strcmp (*args, "-indef")) | ||
| 260 | { | ||
| 261 | args++; | ||
| 262 | continue; | ||
| 263 | } | ||
| 264 | else if (!strcmp (*args, "-noindef")) | ||
| 265 | flags &= ~CMS_STREAM; | ||
| 266 | else if (!strcmp (*args, "-nooldmime")) | ||
| 267 | flags |= CMS_NOOLDMIMETYPE; | ||
| 268 | else if (!strcmp (*args, "-crlfeol")) | ||
| 269 | flags |= CMS_CRLFEOL; | ||
| 270 | else if (!strcmp (*args, "-receipt_request_print")) | ||
| 271 | rr_print = 1; | ||
| 272 | else if (!strcmp (*args, "-receipt_request_all")) | ||
| 273 | rr_allorfirst = 0; | ||
| 274 | else if (!strcmp (*args, "-receipt_request_first")) | ||
| 275 | rr_allorfirst = 1; | ||
| 276 | else if (!strcmp(*args,"-receipt_request_from")) | ||
| 277 | { | ||
| 278 | if (!args[1]) | ||
| 279 | goto argerr; | ||
| 280 | args++; | ||
| 281 | if (!rr_from) | ||
| 282 | rr_from = sk_new_null(); | ||
| 283 | sk_push(rr_from, *args); | ||
| 284 | } | ||
| 285 | else if (!strcmp(*args,"-receipt_request_to")) | ||
| 286 | { | ||
| 287 | if (!args[1]) | ||
| 288 | goto argerr; | ||
| 289 | args++; | ||
| 290 | if (!rr_to) | ||
| 291 | rr_to = sk_new_null(); | ||
| 292 | sk_push(rr_to, *args); | ||
| 293 | } | ||
| 294 | else if (!strcmp(*args,"-secretkey")) | ||
| 295 | { | ||
| 296 | long ltmp; | ||
| 297 | if (!args[1]) | ||
| 298 | goto argerr; | ||
| 299 | args++; | ||
| 300 | secret_key = string_to_hex(*args, <mp); | ||
| 301 | if (!secret_key) | ||
| 302 | { | ||
| 303 | BIO_printf(bio_err, "Invalid key %s\n", *args); | ||
| 304 | goto argerr; | ||
| 305 | } | ||
| 306 | secret_keylen = (size_t)ltmp; | ||
| 307 | } | ||
| 308 | else if (!strcmp(*args,"-secretkeyid")) | ||
| 309 | { | ||
| 310 | long ltmp; | ||
| 311 | if (!args[1]) | ||
| 312 | goto argerr; | ||
| 313 | args++; | ||
| 314 | secret_keyid = string_to_hex(*args, <mp); | ||
| 315 | if (!secret_keyid) | ||
| 316 | { | ||
| 317 | BIO_printf(bio_err, "Invalid id %s\n", *args); | ||
| 318 | goto argerr; | ||
| 319 | } | ||
| 320 | secret_keyidlen = (size_t)ltmp; | ||
| 321 | } | ||
| 322 | else if (!strcmp(*args,"-econtent_type")) | ||
| 323 | { | ||
| 324 | if (!args[1]) | ||
| 325 | goto argerr; | ||
| 326 | args++; | ||
| 327 | econtent_type = OBJ_txt2obj(*args, 0); | ||
| 328 | if (!econtent_type) | ||
| 329 | { | ||
| 330 | BIO_printf(bio_err, "Invalid OID %s\n", *args); | ||
| 331 | goto argerr; | ||
| 332 | } | ||
| 333 | } | ||
| 334 | else if (!strcmp(*args,"-rand")) | ||
| 335 | { | ||
| 336 | if (!args[1]) | ||
| 337 | goto argerr; | ||
| 338 | args++; | ||
| 339 | inrand = *args; | ||
| 340 | need_rand = 1; | ||
| 341 | } | ||
| 342 | #ifndef OPENSSL_NO_ENGINE | ||
| 343 | else if (!strcmp(*args,"-engine")) | ||
| 344 | { | ||
| 345 | if (!args[1]) | ||
| 346 | goto argerr; | ||
| 347 | engine = *++args; | ||
| 348 | } | ||
| 349 | #endif | ||
| 350 | else if (!strcmp(*args,"-passin")) | ||
| 351 | { | ||
| 352 | if (!args[1]) | ||
| 353 | goto argerr; | ||
| 354 | passargin = *++args; | ||
| 355 | } | ||
| 356 | else if (!strcmp (*args, "-to")) | ||
| 357 | { | ||
| 358 | if (!args[1]) | ||
| 359 | goto argerr; | ||
| 360 | to = *++args; | ||
| 361 | } | ||
| 362 | else if (!strcmp (*args, "-from")) | ||
| 363 | { | ||
| 364 | if (!args[1]) | ||
| 365 | goto argerr; | ||
| 366 | from = *++args; | ||
| 367 | } | ||
| 368 | else if (!strcmp (*args, "-subject")) | ||
| 369 | { | ||
| 370 | if (!args[1]) | ||
| 371 | goto argerr; | ||
| 372 | subject = *++args; | ||
| 373 | } | ||
| 374 | else if (!strcmp (*args, "-signer")) | ||
| 375 | { | ||
| 376 | if (!args[1]) | ||
| 377 | goto argerr; | ||
| 378 | /* If previous -signer argument add signer to list */ | ||
| 379 | |||
| 380 | if (signerfile) | ||
| 381 | { | ||
| 382 | if (!sksigners) | ||
| 383 | sksigners = sk_new_null(); | ||
| 384 | sk_push(sksigners, signerfile); | ||
| 385 | if (!keyfile) | ||
| 386 | keyfile = signerfile; | ||
| 387 | if (!skkeys) | ||
| 388 | skkeys = sk_new_null(); | ||
| 389 | sk_push(skkeys, keyfile); | ||
| 390 | keyfile = NULL; | ||
| 391 | } | ||
| 392 | signerfile = *++args; | ||
| 393 | } | ||
| 394 | else if (!strcmp (*args, "-recip")) | ||
| 395 | { | ||
| 396 | if (!args[1]) | ||
| 397 | goto argerr; | ||
| 398 | recipfile = *++args; | ||
| 399 | } | ||
| 400 | else if (!strcmp (*args, "-certsout")) | ||
| 401 | { | ||
| 402 | if (!args[1]) | ||
| 403 | goto argerr; | ||
| 404 | certsoutfile = *++args; | ||
| 405 | } | ||
| 406 | else if (!strcmp (*args, "-md")) | ||
| 407 | { | ||
| 408 | if (!args[1]) | ||
| 409 | goto argerr; | ||
| 410 | sign_md = EVP_get_digestbyname(*++args); | ||
| 411 | if (sign_md == NULL) | ||
| 412 | { | ||
| 413 | BIO_printf(bio_err, "Unknown digest %s\n", | ||
| 414 | *args); | ||
| 415 | goto argerr; | ||
| 416 | } | ||
| 417 | } | ||
| 418 | else if (!strcmp (*args, "-inkey")) | ||
| 419 | { | ||
| 420 | if (!args[1]) | ||
| 421 | goto argerr; | ||
| 422 | /* If previous -inkey arument add signer to list */ | ||
| 423 | if (keyfile) | ||
| 424 | { | ||
| 425 | if (!signerfile) | ||
| 426 | { | ||
| 427 | BIO_puts(bio_err, "Illegal -inkey without -signer\n"); | ||
| 428 | goto argerr; | ||
| 429 | } | ||
| 430 | if (!sksigners) | ||
| 431 | sksigners = sk_new_null(); | ||
| 432 | sk_push(sksigners, signerfile); | ||
| 433 | signerfile = NULL; | ||
| 434 | if (!skkeys) | ||
| 435 | skkeys = sk_new_null(); | ||
| 436 | sk_push(skkeys, keyfile); | ||
| 437 | } | ||
| 438 | keyfile = *++args; | ||
| 439 | } | ||
| 440 | else if (!strcmp (*args, "-keyform")) | ||
| 441 | { | ||
| 442 | if (!args[1]) | ||
| 443 | goto argerr; | ||
| 444 | keyform = str2fmt(*++args); | ||
| 445 | } | ||
| 446 | else if (!strcmp (*args, "-rctform")) | ||
| 447 | { | ||
| 448 | if (!args[1]) | ||
| 449 | goto argerr; | ||
| 450 | rctformat = str2fmt(*++args); | ||
| 451 | } | ||
| 452 | else if (!strcmp (*args, "-certfile")) | ||
| 453 | { | ||
| 454 | if (!args[1]) | ||
| 455 | goto argerr; | ||
| 456 | certfile = *++args; | ||
| 457 | } | ||
| 458 | else if (!strcmp (*args, "-CAfile")) | ||
| 459 | { | ||
| 460 | if (!args[1]) | ||
| 461 | goto argerr; | ||
| 462 | CAfile = *++args; | ||
| 463 | } | ||
| 464 | else if (!strcmp (*args, "-CApath")) | ||
| 465 | { | ||
| 466 | if (!args[1]) | ||
| 467 | goto argerr; | ||
| 468 | CApath = *++args; | ||
| 469 | } | ||
| 470 | else if (!strcmp (*args, "-in")) | ||
| 471 | { | ||
| 472 | if (!args[1]) | ||
| 473 | goto argerr; | ||
| 474 | infile = *++args; | ||
| 475 | } | ||
| 476 | else if (!strcmp (*args, "-inform")) | ||
| 477 | { | ||
| 478 | if (!args[1]) | ||
| 479 | goto argerr; | ||
| 480 | informat = str2fmt(*++args); | ||
| 481 | } | ||
| 482 | else if (!strcmp (*args, "-outform")) | ||
| 483 | { | ||
| 484 | if (!args[1]) | ||
| 485 | goto argerr; | ||
| 486 | outformat = str2fmt(*++args); | ||
| 487 | } | ||
| 488 | else if (!strcmp (*args, "-out")) | ||
| 489 | { | ||
| 490 | if (!args[1]) | ||
| 491 | goto argerr; | ||
| 492 | outfile = *++args; | ||
| 493 | } | ||
| 494 | else if (!strcmp (*args, "-content")) | ||
| 495 | { | ||
| 496 | if (!args[1]) | ||
| 497 | goto argerr; | ||
| 498 | contfile = *++args; | ||
| 499 | } | ||
| 500 | else if (args_verify(&args, NULL, &badarg, bio_err, &vpm)) | ||
| 501 | continue; | ||
| 502 | else if ((cipher = EVP_get_cipherbyname(*args + 1)) == NULL) | ||
| 503 | badarg = 1; | ||
| 504 | args++; | ||
| 505 | } | ||
| 506 | |||
| 507 | if (((rr_allorfirst != -1) || rr_from) && !rr_to) | ||
| 508 | { | ||
| 509 | BIO_puts(bio_err, "No Signed Receipts Recipients\n"); | ||
| 510 | goto argerr; | ||
| 511 | } | ||
| 512 | |||
| 513 | if (!(operation & SMIME_SIGNERS) && (rr_to || rr_from)) | ||
| 514 | { | ||
| 515 | BIO_puts(bio_err, "Signed receipts only allowed with -sign\n"); | ||
| 516 | goto argerr; | ||
| 517 | } | ||
| 518 | if (!(operation & SMIME_SIGNERS) && (skkeys || sksigners)) | ||
| 519 | { | ||
| 520 | BIO_puts(bio_err, "Multiple signers or keys not allowed\n"); | ||
| 521 | goto argerr; | ||
| 522 | } | ||
| 523 | |||
| 524 | if (operation & SMIME_SIGNERS) | ||
| 525 | { | ||
| 526 | if (keyfile && !signerfile) | ||
| 527 | { | ||
| 528 | BIO_puts(bio_err, "Illegal -inkey without -signer\n"); | ||
| 529 | goto argerr; | ||
| 530 | } | ||
| 531 | /* Check to see if any final signer needs to be appended */ | ||
| 532 | if (signerfile) | ||
| 533 | { | ||
| 534 | if (!sksigners) | ||
| 535 | sksigners = sk_new_null(); | ||
| 536 | sk_push(sksigners, signerfile); | ||
| 537 | if (!skkeys) | ||
| 538 | skkeys = sk_new_null(); | ||
| 539 | if (!keyfile) | ||
| 540 | keyfile = signerfile; | ||
| 541 | sk_push(skkeys, keyfile); | ||
| 542 | } | ||
| 543 | if (!sksigners) | ||
| 544 | { | ||
| 545 | BIO_printf(bio_err, "No signer certificate specified\n"); | ||
| 546 | badarg = 1; | ||
| 547 | } | ||
| 548 | signerfile = NULL; | ||
| 549 | keyfile = NULL; | ||
| 550 | need_rand = 1; | ||
| 551 | } | ||
| 552 | |||
| 553 | else if (operation == SMIME_DECRYPT) | ||
| 554 | { | ||
| 555 | if (!recipfile && !keyfile && !secret_key) | ||
| 556 | { | ||
| 557 | BIO_printf(bio_err, "No recipient certificate or key specified\n"); | ||
| 558 | badarg = 1; | ||
| 559 | } | ||
| 560 | } | ||
| 561 | else if (operation == SMIME_ENCRYPT) | ||
| 562 | { | ||
| 563 | if (!*args && !secret_key) | ||
| 564 | { | ||
| 565 | BIO_printf(bio_err, "No recipient(s) certificate(s) specified\n"); | ||
| 566 | badarg = 1; | ||
| 567 | } | ||
| 568 | need_rand = 1; | ||
| 569 | } | ||
| 570 | else if (!operation) | ||
| 571 | badarg = 1; | ||
| 572 | |||
| 573 | if (badarg) | ||
| 574 | { | ||
| 575 | argerr: | ||
| 576 | BIO_printf (bio_err, "Usage cms [options] cert.pem ...\n"); | ||
| 577 | BIO_printf (bio_err, "where options are\n"); | ||
| 578 | BIO_printf (bio_err, "-encrypt encrypt message\n"); | ||
| 579 | BIO_printf (bio_err, "-decrypt decrypt encrypted message\n"); | ||
| 580 | BIO_printf (bio_err, "-sign sign message\n"); | ||
| 581 | BIO_printf (bio_err, "-verify verify signed message\n"); | ||
| 582 | BIO_printf (bio_err, "-cmsout output CMS structure\n"); | ||
| 583 | #ifndef OPENSSL_NO_DES | ||
| 584 | BIO_printf (bio_err, "-des3 encrypt with triple DES\n"); | ||
| 585 | BIO_printf (bio_err, "-des encrypt with DES\n"); | ||
| 586 | #endif | ||
| 587 | #ifndef OPENSSL_NO_SEED | ||
| 588 | BIO_printf (bio_err, "-seed encrypt with SEED\n"); | ||
| 589 | #endif | ||
| 590 | #ifndef OPENSSL_NO_RC2 | ||
| 591 | BIO_printf (bio_err, "-rc2-40 encrypt with RC2-40 (default)\n"); | ||
| 592 | BIO_printf (bio_err, "-rc2-64 encrypt with RC2-64\n"); | ||
| 593 | BIO_printf (bio_err, "-rc2-128 encrypt with RC2-128\n"); | ||
| 594 | #endif | ||
| 595 | #ifndef OPENSSL_NO_AES | ||
| 596 | BIO_printf (bio_err, "-aes128, -aes192, -aes256\n"); | ||
| 597 | BIO_printf (bio_err, " encrypt PEM output with cbc aes\n"); | ||
| 598 | #endif | ||
| 599 | #ifndef OPENSSL_NO_CAMELLIA | ||
| 600 | BIO_printf (bio_err, "-camellia128, -camellia192, -camellia256\n"); | ||
| 601 | BIO_printf (bio_err, " encrypt PEM output with cbc camellia\n"); | ||
| 602 | #endif | ||
| 603 | BIO_printf (bio_err, "-nointern don't search certificates in message for signer\n"); | ||
| 604 | BIO_printf (bio_err, "-nosigs don't verify message signature\n"); | ||
| 605 | BIO_printf (bio_err, "-noverify don't verify signers certificate\n"); | ||
| 606 | BIO_printf (bio_err, "-nocerts don't include signers certificate when signing\n"); | ||
| 607 | BIO_printf (bio_err, "-nodetach use opaque signing\n"); | ||
| 608 | BIO_printf (bio_err, "-noattr don't include any signed attributes\n"); | ||
| 609 | BIO_printf (bio_err, "-binary don't translate message to text\n"); | ||
| 610 | BIO_printf (bio_err, "-certfile file other certificates file\n"); | ||
| 611 | BIO_printf (bio_err, "-certsout file certificate output file\n"); | ||
| 612 | BIO_printf (bio_err, "-signer file signer certificate file\n"); | ||
| 613 | BIO_printf (bio_err, "-recip file recipient certificate file for decryption\n"); | ||
| 614 | BIO_printf (bio_err, "-skeyid use subject key identifier\n"); | ||
| 615 | BIO_printf (bio_err, "-in file input file\n"); | ||
| 616 | BIO_printf (bio_err, "-inform arg input format SMIME (default), PEM or DER\n"); | ||
| 617 | BIO_printf (bio_err, "-inkey file input private key (if not signer or recipient)\n"); | ||
| 618 | BIO_printf (bio_err, "-keyform arg input private key format (PEM or ENGINE)\n"); | ||
| 619 | BIO_printf (bio_err, "-out file output file\n"); | ||
| 620 | BIO_printf (bio_err, "-outform arg output format SMIME (default), PEM or DER\n"); | ||
| 621 | BIO_printf (bio_err, "-content file supply or override content for detached signature\n"); | ||
| 622 | BIO_printf (bio_err, "-to addr to address\n"); | ||
| 623 | BIO_printf (bio_err, "-from ad from address\n"); | ||
| 624 | BIO_printf (bio_err, "-subject s subject\n"); | ||
| 625 | BIO_printf (bio_err, "-text include or delete text MIME headers\n"); | ||
| 626 | BIO_printf (bio_err, "-CApath dir trusted certificates directory\n"); | ||
| 627 | BIO_printf (bio_err, "-CAfile file trusted certificates file\n"); | ||
| 628 | BIO_printf (bio_err, "-crl_check check revocation status of signer's certificate using CRLs\n"); | ||
| 629 | BIO_printf (bio_err, "-crl_check_all check revocation status of signer's certificate chain using CRLs\n"); | ||
| 630 | #ifndef OPENSSL_NO_ENGINE | ||
| 631 | BIO_printf (bio_err, "-engine e use engine e, possibly a hardware device.\n"); | ||
| 632 | #endif | ||
| 633 | BIO_printf (bio_err, "-passin arg input file pass phrase source\n"); | ||
| 634 | BIO_printf(bio_err, "-rand file%cfile%c...\n", LIST_SEPARATOR_CHAR, LIST_SEPARATOR_CHAR); | ||
| 635 | BIO_printf(bio_err, " load the file (or the files in the directory) into\n"); | ||
| 636 | BIO_printf(bio_err, " the random number generator\n"); | ||
| 637 | BIO_printf (bio_err, "cert.pem recipient certificate(s) for encryption\n"); | ||
| 638 | goto end; | ||
| 639 | } | ||
| 640 | |||
| 641 | #ifndef OPENSSL_NO_ENGINE | ||
| 642 | e = setup_engine(bio_err, engine, 0); | ||
| 643 | #endif | ||
| 644 | |||
| 645 | if (!app_passwd(bio_err, passargin, NULL, &passin, NULL)) | ||
| 646 | { | ||
| 647 | BIO_printf(bio_err, "Error getting password\n"); | ||
| 648 | goto end; | ||
| 649 | } | ||
| 650 | |||
| 651 | if (need_rand) | ||
| 652 | { | ||
| 653 | app_RAND_load_file(NULL, bio_err, (inrand != NULL)); | ||
| 654 | if (inrand != NULL) | ||
| 655 | BIO_printf(bio_err,"%ld semi-random bytes loaded\n", | ||
| 656 | app_RAND_load_files(inrand)); | ||
| 657 | } | ||
| 658 | |||
| 659 | ret = 2; | ||
| 660 | |||
| 661 | if (!(operation & SMIME_SIGNERS)) | ||
| 662 | flags &= ~CMS_DETACHED; | ||
| 663 | |||
| 664 | if (operation & SMIME_OP) | ||
| 665 | { | ||
| 666 | if (outformat == FORMAT_ASN1) | ||
| 667 | outmode = "wb"; | ||
| 668 | } | ||
| 669 | else | ||
| 670 | { | ||
| 671 | if (flags & CMS_BINARY) | ||
| 672 | outmode = "wb"; | ||
| 673 | } | ||
| 674 | |||
| 675 | if (operation & SMIME_IP) | ||
| 676 | { | ||
| 677 | if (informat == FORMAT_ASN1) | ||
| 678 | inmode = "rb"; | ||
| 679 | } | ||
| 680 | else | ||
| 681 | { | ||
| 682 | if (flags & CMS_BINARY) | ||
| 683 | inmode = "rb"; | ||
| 684 | } | ||
| 685 | |||
| 686 | if (operation == SMIME_ENCRYPT) | ||
| 687 | { | ||
| 688 | if (!cipher) | ||
| 689 | { | ||
| 690 | #ifndef OPENSSL_NO_DES | ||
| 691 | cipher = EVP_des_ede3_cbc(); | ||
| 692 | #else | ||
| 693 | BIO_printf(bio_err, "No cipher selected\n"); | ||
| 694 | goto end; | ||
| 695 | #endif | ||
| 696 | } | ||
| 697 | |||
| 698 | if (secret_key && !secret_keyid) | ||
| 699 | { | ||
| 700 | BIO_printf(bio_err, "No sectre key id\n"); | ||
| 701 | goto end; | ||
| 702 | } | ||
| 703 | |||
| 704 | if (*args) | ||
| 705 | encerts = sk_X509_new_null(); | ||
| 706 | while (*args) | ||
| 707 | { | ||
| 708 | if (!(cert = load_cert(bio_err,*args,FORMAT_PEM, | ||
| 709 | NULL, e, "recipient certificate file"))) | ||
| 710 | goto end; | ||
| 711 | sk_X509_push(encerts, cert); | ||
| 712 | cert = NULL; | ||
| 713 | args++; | ||
| 714 | } | ||
| 715 | } | ||
| 716 | |||
| 717 | if (certfile) | ||
| 718 | { | ||
| 719 | if (!(other = load_certs(bio_err,certfile,FORMAT_PEM, NULL, | ||
| 720 | e, "certificate file"))) | ||
| 721 | { | ||
| 722 | ERR_print_errors(bio_err); | ||
| 723 | goto end; | ||
| 724 | } | ||
| 725 | } | ||
| 726 | |||
| 727 | if (recipfile && (operation == SMIME_DECRYPT)) | ||
| 728 | { | ||
| 729 | if (!(recip = load_cert(bio_err,recipfile,FORMAT_PEM,NULL, | ||
| 730 | e, "recipient certificate file"))) | ||
| 731 | { | ||
| 732 | ERR_print_errors(bio_err); | ||
| 733 | goto end; | ||
| 734 | } | ||
| 735 | } | ||
| 736 | |||
| 737 | if (operation == SMIME_SIGN_RECEIPT) | ||
| 738 | { | ||
| 739 | if (!(signer = load_cert(bio_err,signerfile,FORMAT_PEM,NULL, | ||
| 740 | e, "receipt signer certificate file"))) | ||
| 741 | { | ||
| 742 | ERR_print_errors(bio_err); | ||
| 743 | goto end; | ||
| 744 | } | ||
| 745 | } | ||
| 746 | |||
| 747 | if (operation == SMIME_DECRYPT) | ||
| 748 | { | ||
| 749 | if (!keyfile) | ||
| 750 | keyfile = recipfile; | ||
| 751 | } | ||
| 752 | else if ((operation == SMIME_SIGN) || (operation == SMIME_SIGN_RECEIPT)) | ||
| 753 | { | ||
| 754 | if (!keyfile) | ||
| 755 | keyfile = signerfile; | ||
| 756 | } | ||
| 757 | else keyfile = NULL; | ||
| 758 | |||
| 759 | if (keyfile) | ||
| 760 | { | ||
| 761 | key = load_key(bio_err, keyfile, keyform, 0, passin, e, | ||
| 762 | "signing key file"); | ||
| 763 | if (!key) | ||
| 764 | goto end; | ||
| 765 | } | ||
| 766 | |||
| 767 | if (infile) | ||
| 768 | { | ||
| 769 | if (!(in = BIO_new_file(infile, inmode))) | ||
| 770 | { | ||
| 771 | BIO_printf (bio_err, | ||
| 772 | "Can't open input file %s\n", infile); | ||
| 773 | goto end; | ||
| 774 | } | ||
| 775 | } | ||
| 776 | else | ||
| 777 | in = BIO_new_fp(stdin, BIO_NOCLOSE); | ||
| 778 | |||
| 779 | if (operation & SMIME_IP) | ||
| 780 | { | ||
| 781 | if (informat == FORMAT_SMIME) | ||
| 782 | cms = SMIME_read_CMS(in, &indata); | ||
| 783 | else if (informat == FORMAT_PEM) | ||
| 784 | cms = PEM_read_bio_CMS(in, NULL, NULL, NULL); | ||
| 785 | else if (informat == FORMAT_ASN1) | ||
| 786 | cms = d2i_CMS_bio(in, NULL); | ||
| 787 | else | ||
| 788 | { | ||
| 789 | BIO_printf(bio_err, "Bad input format for CMS file\n"); | ||
| 790 | goto end; | ||
| 791 | } | ||
| 792 | |||
| 793 | if (!cms) | ||
| 794 | { | ||
| 795 | BIO_printf(bio_err, "Error reading S/MIME message\n"); | ||
| 796 | goto end; | ||
| 797 | } | ||
| 798 | if (contfile) | ||
| 799 | { | ||
| 800 | BIO_free(indata); | ||
| 801 | if (!(indata = BIO_new_file(contfile, "rb"))) | ||
| 802 | { | ||
| 803 | BIO_printf(bio_err, "Can't read content file %s\n", contfile); | ||
| 804 | goto end; | ||
| 805 | } | ||
| 806 | } | ||
| 807 | if (certsoutfile) | ||
| 808 | { | ||
| 809 | STACK_OF(X509) *allcerts; | ||
| 810 | allcerts = CMS_get1_certs(cms); | ||
| 811 | if (!save_certs(certsoutfile, allcerts)) | ||
| 812 | { | ||
| 813 | BIO_printf(bio_err, | ||
| 814 | "Error writing certs to %s\n", | ||
| 815 | certsoutfile); | ||
| 816 | ret = 5; | ||
| 817 | goto end; | ||
| 818 | } | ||
| 819 | sk_X509_pop_free(allcerts, X509_free); | ||
| 820 | } | ||
| 821 | } | ||
| 822 | |||
| 823 | if (rctfile) | ||
| 824 | { | ||
| 825 | char *rctmode = (rctformat == FORMAT_ASN1) ? "rb" : "r"; | ||
| 826 | if (!(rctin = BIO_new_file(rctfile, rctmode))) | ||
| 827 | { | ||
| 828 | BIO_printf (bio_err, | ||
| 829 | "Can't open receipt file %s\n", rctfile); | ||
| 830 | goto end; | ||
| 831 | } | ||
| 832 | |||
| 833 | if (rctformat == FORMAT_SMIME) | ||
| 834 | rcms = SMIME_read_CMS(rctin, NULL); | ||
| 835 | else if (rctformat == FORMAT_PEM) | ||
| 836 | rcms = PEM_read_bio_CMS(rctin, NULL, NULL, NULL); | ||
| 837 | else if (rctformat == FORMAT_ASN1) | ||
| 838 | rcms = d2i_CMS_bio(rctin, NULL); | ||
| 839 | else | ||
| 840 | { | ||
| 841 | BIO_printf(bio_err, "Bad input format for receipt\n"); | ||
| 842 | goto end; | ||
| 843 | } | ||
| 844 | |||
| 845 | if (!rcms) | ||
| 846 | { | ||
| 847 | BIO_printf(bio_err, "Error reading receipt\n"); | ||
| 848 | goto end; | ||
| 849 | } | ||
| 850 | } | ||
| 851 | |||
| 852 | if (outfile) | ||
| 853 | { | ||
| 854 | if (!(out = BIO_new_file(outfile, outmode))) | ||
| 855 | { | ||
| 856 | BIO_printf (bio_err, | ||
| 857 | "Can't open output file %s\n", outfile); | ||
| 858 | goto end; | ||
| 859 | } | ||
| 860 | } | ||
| 861 | else | ||
| 862 | { | ||
| 863 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 864 | #ifdef OPENSSL_SYS_VMS | ||
| 865 | { | ||
| 866 | BIO *tmpbio = BIO_new(BIO_f_linebuffer()); | ||
| 867 | out = BIO_push(tmpbio, out); | ||
| 868 | } | ||
| 869 | #endif | ||
| 870 | } | ||
| 871 | |||
| 872 | if ((operation == SMIME_VERIFY) || (operation == SMIME_VERIFY_RECEIPT)) | ||
| 873 | { | ||
| 874 | if (!(store = setup_verify(bio_err, CAfile, CApath))) | ||
| 875 | goto end; | ||
| 876 | X509_STORE_set_verify_cb_func(store, cms_cb); | ||
| 877 | if (vpm) | ||
| 878 | X509_STORE_set1_param(store, vpm); | ||
| 879 | } | ||
| 880 | |||
| 881 | |||
| 882 | ret = 3; | ||
| 883 | |||
| 884 | if (operation == SMIME_DATA_CREATE) | ||
| 885 | { | ||
| 886 | cms = CMS_data_create(in, flags); | ||
| 887 | } | ||
| 888 | else if (operation == SMIME_DIGEST_CREATE) | ||
| 889 | { | ||
| 890 | cms = CMS_digest_create(in, sign_md, flags); | ||
| 891 | } | ||
| 892 | else if (operation == SMIME_COMPRESS) | ||
| 893 | { | ||
| 894 | cms = CMS_compress(in, -1, flags); | ||
| 895 | } | ||
| 896 | else if (operation == SMIME_ENCRYPT) | ||
| 897 | { | ||
| 898 | flags |= CMS_PARTIAL; | ||
| 899 | cms = CMS_encrypt(encerts, in, cipher, flags); | ||
| 900 | if (!cms) | ||
| 901 | goto end; | ||
| 902 | if (secret_key) | ||
| 903 | { | ||
| 904 | if (!CMS_add0_recipient_key(cms, NID_undef, | ||
| 905 | secret_key, secret_keylen, | ||
| 906 | secret_keyid, secret_keyidlen, | ||
| 907 | NULL, NULL, NULL)) | ||
| 908 | goto end; | ||
| 909 | /* NULL these because call absorbs them */ | ||
| 910 | secret_key = NULL; | ||
| 911 | secret_keyid = NULL; | ||
| 912 | } | ||
| 913 | if (!(flags & CMS_STREAM)) | ||
| 914 | { | ||
| 915 | if (!CMS_final(cms, in, NULL, flags)) | ||
| 916 | goto end; | ||
| 917 | } | ||
| 918 | } | ||
| 919 | else if (operation == SMIME_ENCRYPTED_ENCRYPT) | ||
| 920 | { | ||
| 921 | cms = CMS_EncryptedData_encrypt(in, cipher, | ||
| 922 | secret_key, secret_keylen, | ||
| 923 | flags); | ||
| 924 | |||
| 925 | } | ||
| 926 | else if (operation == SMIME_SIGN_RECEIPT) | ||
| 927 | { | ||
| 928 | CMS_ContentInfo *srcms = NULL; | ||
| 929 | STACK_OF(CMS_SignerInfo) *sis; | ||
| 930 | CMS_SignerInfo *si; | ||
| 931 | sis = CMS_get0_SignerInfos(cms); | ||
| 932 | if (!sis) | ||
| 933 | goto end; | ||
| 934 | si = sk_CMS_SignerInfo_value(sis, 0); | ||
| 935 | srcms = CMS_sign_receipt(si, signer, key, other, flags); | ||
| 936 | if (!srcms) | ||
| 937 | goto end; | ||
| 938 | CMS_ContentInfo_free(cms); | ||
| 939 | cms = srcms; | ||
| 940 | } | ||
| 941 | else if (operation & SMIME_SIGNERS) | ||
| 942 | { | ||
| 943 | int i; | ||
| 944 | /* If detached data content we enable streaming if | ||
| 945 | * S/MIME output format. | ||
| 946 | */ | ||
| 947 | if (operation == SMIME_SIGN) | ||
| 948 | { | ||
| 949 | |||
| 950 | if (flags & CMS_DETACHED) | ||
| 951 | { | ||
| 952 | if (outformat == FORMAT_SMIME) | ||
| 953 | flags |= CMS_STREAM; | ||
| 954 | } | ||
| 955 | flags |= CMS_PARTIAL; | ||
| 956 | cms = CMS_sign(NULL, NULL, other, in, flags); | ||
| 957 | if (!cms) | ||
| 958 | goto end; | ||
| 959 | if (econtent_type) | ||
| 960 | CMS_set1_eContentType(cms, econtent_type); | ||
| 961 | |||
| 962 | if (rr_to) | ||
| 963 | { | ||
| 964 | rr = make_receipt_request(rr_to, rr_allorfirst, | ||
| 965 | rr_from); | ||
| 966 | if (!rr) | ||
| 967 | { | ||
| 968 | BIO_puts(bio_err, | ||
| 969 | "Signed Receipt Request Creation Error\n"); | ||
| 970 | goto end; | ||
| 971 | } | ||
| 972 | } | ||
| 973 | } | ||
| 974 | else | ||
| 975 | flags |= CMS_REUSE_DIGEST; | ||
| 976 | for (i = 0; i < sk_num(sksigners); i++) | ||
| 977 | { | ||
| 978 | CMS_SignerInfo *si; | ||
| 979 | signerfile = sk_value(sksigners, i); | ||
| 980 | keyfile = sk_value(skkeys, i); | ||
| 981 | signer = load_cert(bio_err, signerfile,FORMAT_PEM, NULL, | ||
| 982 | e, "signer certificate"); | ||
| 983 | if (!signer) | ||
| 984 | goto end; | ||
| 985 | key = load_key(bio_err, keyfile, keyform, 0, passin, e, | ||
| 986 | "signing key file"); | ||
| 987 | if (!key) | ||
| 988 | goto end; | ||
| 989 | si = CMS_add1_signer(cms, signer, key, sign_md, flags); | ||
| 990 | if (!si) | ||
| 991 | goto end; | ||
| 992 | if (rr && !CMS_add1_ReceiptRequest(si, rr)) | ||
| 993 | goto end; | ||
| 994 | X509_free(signer); | ||
| 995 | signer = NULL; | ||
| 996 | EVP_PKEY_free(key); | ||
| 997 | key = NULL; | ||
| 998 | } | ||
| 999 | /* If not streaming or resigning finalize structure */ | ||
| 1000 | if ((operation == SMIME_SIGN) && !(flags & CMS_STREAM)) | ||
| 1001 | { | ||
| 1002 | if (!CMS_final(cms, in, NULL, flags)) | ||
| 1003 | goto end; | ||
| 1004 | } | ||
| 1005 | } | ||
| 1006 | |||
| 1007 | if (!cms) | ||
| 1008 | { | ||
| 1009 | BIO_printf(bio_err, "Error creating CMS structure\n"); | ||
| 1010 | goto end; | ||
| 1011 | } | ||
| 1012 | |||
| 1013 | ret = 4; | ||
| 1014 | if (operation == SMIME_DECRYPT) | ||
| 1015 | { | ||
| 1016 | |||
| 1017 | if (secret_key) | ||
| 1018 | { | ||
| 1019 | if (!CMS_decrypt_set1_key(cms, | ||
| 1020 | secret_key, secret_keylen, | ||
| 1021 | secret_keyid, secret_keyidlen)) | ||
| 1022 | { | ||
| 1023 | BIO_puts(bio_err, | ||
| 1024 | "Error decrypting CMS using secret key\n"); | ||
| 1025 | goto end; | ||
| 1026 | } | ||
| 1027 | } | ||
| 1028 | |||
| 1029 | if (key) | ||
| 1030 | { | ||
| 1031 | if (!CMS_decrypt_set1_pkey(cms, key, recip)) | ||
| 1032 | { | ||
| 1033 | BIO_puts(bio_err, | ||
| 1034 | "Error decrypting CMS using private key\n"); | ||
| 1035 | goto end; | ||
| 1036 | } | ||
| 1037 | } | ||
| 1038 | |||
| 1039 | if (!CMS_decrypt(cms, NULL, NULL, indata, out, flags)) | ||
| 1040 | { | ||
| 1041 | BIO_printf(bio_err, "Error decrypting CMS structure\n"); | ||
| 1042 | goto end; | ||
| 1043 | } | ||
| 1044 | } | ||
| 1045 | else if (operation == SMIME_DATAOUT) | ||
| 1046 | { | ||
| 1047 | if (!CMS_data(cms, out, flags)) | ||
| 1048 | goto end; | ||
| 1049 | } | ||
| 1050 | else if (operation == SMIME_UNCOMPRESS) | ||
| 1051 | { | ||
| 1052 | if (!CMS_uncompress(cms, indata, out, flags)) | ||
| 1053 | goto end; | ||
| 1054 | } | ||
| 1055 | else if (operation == SMIME_DIGEST_VERIFY) | ||
| 1056 | { | ||
| 1057 | if (CMS_digest_verify(cms, indata, out, flags) > 0) | ||
| 1058 | BIO_printf(bio_err, "Verification successful\n"); | ||
| 1059 | else | ||
| 1060 | { | ||
| 1061 | BIO_printf(bio_err, "Verification failure\n"); | ||
| 1062 | goto end; | ||
| 1063 | } | ||
| 1064 | } | ||
| 1065 | else if (operation == SMIME_ENCRYPTED_DECRYPT) | ||
| 1066 | { | ||
| 1067 | if (!CMS_EncryptedData_decrypt(cms, secret_key, secret_keylen, | ||
| 1068 | indata, out, flags)) | ||
| 1069 | goto end; | ||
| 1070 | } | ||
| 1071 | else if (operation == SMIME_VERIFY) | ||
| 1072 | { | ||
| 1073 | if (CMS_verify(cms, other, store, indata, out, flags) > 0) | ||
| 1074 | BIO_printf(bio_err, "Verification successful\n"); | ||
| 1075 | else | ||
| 1076 | { | ||
| 1077 | BIO_printf(bio_err, "Verification failure\n"); | ||
| 1078 | goto end; | ||
| 1079 | } | ||
| 1080 | if (signerfile) | ||
| 1081 | { | ||
| 1082 | STACK_OF(X509) *signers; | ||
| 1083 | signers = CMS_get0_signers(cms); | ||
| 1084 | if (!save_certs(signerfile, signers)) | ||
| 1085 | { | ||
| 1086 | BIO_printf(bio_err, | ||
| 1087 | "Error writing signers to %s\n", | ||
| 1088 | signerfile); | ||
| 1089 | ret = 5; | ||
| 1090 | goto end; | ||
| 1091 | } | ||
| 1092 | sk_X509_free(signers); | ||
| 1093 | } | ||
| 1094 | if (rr_print) | ||
| 1095 | receipt_request_print(bio_err, cms); | ||
| 1096 | |||
| 1097 | } | ||
| 1098 | else if (operation == SMIME_VERIFY_RECEIPT) | ||
| 1099 | { | ||
| 1100 | if (CMS_verify_receipt(rcms, cms, other, store, flags) > 0) | ||
| 1101 | BIO_printf(bio_err, "Verification successful\n"); | ||
| 1102 | else | ||
| 1103 | { | ||
| 1104 | BIO_printf(bio_err, "Verification failure\n"); | ||
| 1105 | goto end; | ||
| 1106 | } | ||
| 1107 | } | ||
| 1108 | else | ||
| 1109 | { | ||
| 1110 | if (outformat == FORMAT_SMIME) | ||
| 1111 | { | ||
| 1112 | if (to) | ||
| 1113 | BIO_printf(out, "To: %s\n", to); | ||
| 1114 | if (from) | ||
| 1115 | BIO_printf(out, "From: %s\n", from); | ||
| 1116 | if (subject) | ||
| 1117 | BIO_printf(out, "Subject: %s\n", subject); | ||
| 1118 | if (operation == SMIME_RESIGN) | ||
| 1119 | ret = SMIME_write_CMS(out, cms, indata, flags); | ||
| 1120 | else | ||
| 1121 | ret = SMIME_write_CMS(out, cms, in, flags); | ||
| 1122 | } | ||
| 1123 | else if (outformat == FORMAT_PEM) | ||
| 1124 | ret = PEM_write_bio_CMS(out, cms); | ||
| 1125 | else if (outformat == FORMAT_ASN1) | ||
| 1126 | ret = i2d_CMS_bio(out,cms); | ||
| 1127 | else | ||
| 1128 | { | ||
| 1129 | BIO_printf(bio_err, "Bad output format for CMS file\n"); | ||
| 1130 | goto end; | ||
| 1131 | } | ||
| 1132 | if (ret <= 0) | ||
| 1133 | { | ||
| 1134 | ret = 6; | ||
| 1135 | goto end; | ||
| 1136 | } | ||
| 1137 | } | ||
| 1138 | ret = 0; | ||
| 1139 | end: | ||
| 1140 | if (ret) | ||
| 1141 | ERR_print_errors(bio_err); | ||
| 1142 | if (need_rand) | ||
| 1143 | app_RAND_write_file(NULL, bio_err); | ||
| 1144 | sk_X509_pop_free(encerts, X509_free); | ||
| 1145 | sk_X509_pop_free(other, X509_free); | ||
| 1146 | if (vpm) | ||
| 1147 | X509_VERIFY_PARAM_free(vpm); | ||
| 1148 | if (sksigners) | ||
| 1149 | sk_free(sksigners); | ||
| 1150 | if (skkeys) | ||
| 1151 | sk_free(skkeys); | ||
| 1152 | if (secret_key) | ||
| 1153 | OPENSSL_free(secret_key); | ||
| 1154 | if (secret_keyid) | ||
| 1155 | OPENSSL_free(secret_keyid); | ||
| 1156 | if (econtent_type) | ||
| 1157 | ASN1_OBJECT_free(econtent_type); | ||
| 1158 | if (rr) | ||
| 1159 | CMS_ReceiptRequest_free(rr); | ||
| 1160 | if (rr_to) | ||
| 1161 | sk_free(rr_to); | ||
| 1162 | if (rr_from) | ||
| 1163 | sk_free(rr_from); | ||
| 1164 | X509_STORE_free(store); | ||
| 1165 | X509_free(cert); | ||
| 1166 | X509_free(recip); | ||
| 1167 | X509_free(signer); | ||
| 1168 | EVP_PKEY_free(key); | ||
| 1169 | CMS_ContentInfo_free(cms); | ||
| 1170 | CMS_ContentInfo_free(rcms); | ||
| 1171 | BIO_free(rctin); | ||
| 1172 | BIO_free(in); | ||
| 1173 | BIO_free(indata); | ||
| 1174 | BIO_free_all(out); | ||
| 1175 | if (passin) OPENSSL_free(passin); | ||
| 1176 | return (ret); | ||
| 1177 | } | ||
| 1178 | |||
| 1179 | static int save_certs(char *signerfile, STACK_OF(X509) *signers) | ||
| 1180 | { | ||
| 1181 | int i; | ||
| 1182 | BIO *tmp; | ||
| 1183 | if (!signerfile) | ||
| 1184 | return 1; | ||
| 1185 | tmp = BIO_new_file(signerfile, "w"); | ||
| 1186 | if (!tmp) return 0; | ||
| 1187 | for(i = 0; i < sk_X509_num(signers); i++) | ||
| 1188 | PEM_write_bio_X509(tmp, sk_X509_value(signers, i)); | ||
| 1189 | BIO_free(tmp); | ||
| 1190 | return 1; | ||
| 1191 | } | ||
| 1192 | |||
| 1193 | |||
| 1194 | /* Minimal callback just to output policy info (if any) */ | ||
| 1195 | |||
| 1196 | static int cms_cb(int ok, X509_STORE_CTX *ctx) | ||
| 1197 | { | ||
| 1198 | int error; | ||
| 1199 | |||
| 1200 | error = X509_STORE_CTX_get_error(ctx); | ||
| 1201 | |||
| 1202 | if ((error != X509_V_ERR_NO_EXPLICIT_POLICY) | ||
| 1203 | && ((error != X509_V_OK) || (ok != 2))) | ||
| 1204 | return ok; | ||
| 1205 | |||
| 1206 | policies_print(NULL, ctx); | ||
| 1207 | |||
| 1208 | return ok; | ||
| 1209 | |||
| 1210 | } | ||
| 1211 | |||
| 1212 | static void gnames_stack_print(BIO *out, STACK_OF(GENERAL_NAMES) *gns) | ||
| 1213 | { | ||
| 1214 | STACK_OF(GENERAL_NAME) *gens; | ||
| 1215 | GENERAL_NAME *gen; | ||
| 1216 | int i, j; | ||
| 1217 | for (i = 0; i < sk_GENERAL_NAMES_num(gns); i++) | ||
| 1218 | { | ||
| 1219 | gens = sk_GENERAL_NAMES_value(gns, i); | ||
| 1220 | for (j = 0; j < sk_GENERAL_NAME_num(gens); j++) | ||
| 1221 | { | ||
| 1222 | gen = sk_GENERAL_NAME_value(gens, j); | ||
| 1223 | BIO_puts(out, " "); | ||
| 1224 | GENERAL_NAME_print(out, gen); | ||
| 1225 | BIO_puts(out, "\n"); | ||
| 1226 | } | ||
| 1227 | } | ||
| 1228 | return; | ||
| 1229 | } | ||
| 1230 | |||
| 1231 | static void receipt_request_print(BIO *out, CMS_ContentInfo *cms) | ||
| 1232 | { | ||
| 1233 | STACK_OF(CMS_SignerInfo) *sis; | ||
| 1234 | CMS_SignerInfo *si; | ||
| 1235 | CMS_ReceiptRequest *rr; | ||
| 1236 | int allorfirst; | ||
| 1237 | STACK_OF(GENERAL_NAMES) *rto, *rlist; | ||
| 1238 | ASN1_STRING *scid; | ||
| 1239 | int i, rv; | ||
| 1240 | sis = CMS_get0_SignerInfos(cms); | ||
| 1241 | for (i = 0; i < sk_CMS_SignerInfo_num(sis); i++) | ||
| 1242 | { | ||
| 1243 | si = sk_CMS_SignerInfo_value(sis, i); | ||
| 1244 | rv = CMS_get1_ReceiptRequest(si, &rr); | ||
| 1245 | BIO_printf(bio_err, "Signer %d:\n", i + 1); | ||
| 1246 | if (rv == 0) | ||
| 1247 | BIO_puts(bio_err, " No Receipt Request\n"); | ||
| 1248 | else if (rv < 0) | ||
| 1249 | { | ||
| 1250 | BIO_puts(bio_err, " Receipt Request Parse Error\n"); | ||
| 1251 | ERR_print_errors(bio_err); | ||
| 1252 | } | ||
| 1253 | else | ||
| 1254 | { | ||
| 1255 | char *id; | ||
| 1256 | int idlen; | ||
| 1257 | CMS_ReceiptRequest_get0_values(rr, &scid, &allorfirst, | ||
| 1258 | &rlist, &rto); | ||
| 1259 | BIO_puts(out, " Signed Content ID:\n"); | ||
| 1260 | idlen = ASN1_STRING_length(scid); | ||
| 1261 | id = (char *)ASN1_STRING_data(scid); | ||
| 1262 | BIO_dump_indent(out, id, idlen, 4); | ||
| 1263 | BIO_puts(out, " Receipts From"); | ||
| 1264 | if (rlist) | ||
| 1265 | { | ||
| 1266 | BIO_puts(out, " List:\n"); | ||
| 1267 | gnames_stack_print(out, rlist); | ||
| 1268 | } | ||
| 1269 | else if (allorfirst == 1) | ||
| 1270 | BIO_puts(out, ": First Tier\n"); | ||
| 1271 | else if (allorfirst == 0) | ||
| 1272 | BIO_puts(out, ": All\n"); | ||
| 1273 | else | ||
| 1274 | BIO_printf(out, " Unknown (%d)\n", allorfirst); | ||
| 1275 | BIO_puts(out, " Receipts To:\n"); | ||
| 1276 | gnames_stack_print(out, rto); | ||
| 1277 | } | ||
| 1278 | if (rr) | ||
| 1279 | CMS_ReceiptRequest_free(rr); | ||
| 1280 | } | ||
| 1281 | } | ||
| 1282 | |||
| 1283 | static STACK_OF(GENERAL_NAMES) *make_names_stack(STACK *ns) | ||
| 1284 | { | ||
| 1285 | int i; | ||
| 1286 | STACK_OF(GENERAL_NAMES) *ret; | ||
| 1287 | GENERAL_NAMES *gens = NULL; | ||
| 1288 | GENERAL_NAME *gen = NULL; | ||
| 1289 | ret = sk_GENERAL_NAMES_new_null(); | ||
| 1290 | if (!ret) | ||
| 1291 | goto err; | ||
| 1292 | for (i = 0; i < sk_num(ns); i++) | ||
| 1293 | { | ||
| 1294 | CONF_VALUE cnf; | ||
| 1295 | cnf.name = "email"; | ||
| 1296 | cnf.value = sk_value(ns, i); | ||
| 1297 | gen = v2i_GENERAL_NAME(NULL, NULL, &cnf); | ||
| 1298 | if (!gen) | ||
| 1299 | goto err; | ||
| 1300 | gens = GENERAL_NAMES_new(); | ||
| 1301 | if (!gens) | ||
| 1302 | goto err; | ||
| 1303 | if (!sk_GENERAL_NAME_push(gens, gen)) | ||
| 1304 | goto err; | ||
| 1305 | gen = NULL; | ||
| 1306 | if (!sk_GENERAL_NAMES_push(ret, gens)) | ||
| 1307 | goto err; | ||
| 1308 | gens = NULL; | ||
| 1309 | } | ||
| 1310 | |||
| 1311 | return ret; | ||
| 1312 | |||
| 1313 | err: | ||
| 1314 | if (ret) | ||
| 1315 | sk_GENERAL_NAMES_pop_free(ret, GENERAL_NAMES_free); | ||
| 1316 | if (gens) | ||
| 1317 | GENERAL_NAMES_free(gens); | ||
| 1318 | if (gen) | ||
| 1319 | GENERAL_NAME_free(gen); | ||
| 1320 | return NULL; | ||
| 1321 | } | ||
| 1322 | |||
| 1323 | |||
| 1324 | static CMS_ReceiptRequest *make_receipt_request(STACK *rr_to, int rr_allorfirst, | ||
| 1325 | STACK *rr_from) | ||
| 1326 | { | ||
| 1327 | STACK_OF(GENERAL_NAMES) *rct_to, *rct_from; | ||
| 1328 | CMS_ReceiptRequest *rr; | ||
| 1329 | rct_to = make_names_stack(rr_to); | ||
| 1330 | if (!rct_to) | ||
| 1331 | goto err; | ||
| 1332 | if (rr_from) | ||
| 1333 | { | ||
| 1334 | rct_from = make_names_stack(rr_from); | ||
| 1335 | if (!rct_from) | ||
| 1336 | goto err; | ||
| 1337 | } | ||
| 1338 | else | ||
| 1339 | rct_from = NULL; | ||
| 1340 | rr = CMS_ReceiptRequest_create0(NULL, -1, rr_allorfirst, rct_from, | ||
| 1341 | rct_to); | ||
| 1342 | return rr; | ||
| 1343 | err: | ||
| 1344 | return NULL; | ||
| 1345 | } | ||
| 1346 | |||
| 1347 | #endif | ||
diff --git a/src/lib/libssl/src/apps/ec.c b/src/lib/libssl/src/apps/ec.c new file mode 100644 index 0000000000..771e15f357 --- /dev/null +++ b/src/lib/libssl/src/apps/ec.c | |||
| @@ -0,0 +1,403 @@ | |||
| 1 | /* apps/ec.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <openssl/opensslconf.h> | ||
| 60 | #ifndef OPENSSL_NO_EC | ||
| 61 | #include <stdio.h> | ||
| 62 | #include <stdlib.h> | ||
| 63 | #include <string.h> | ||
| 64 | #include "apps.h" | ||
| 65 | #include <openssl/bio.h> | ||
| 66 | #include <openssl/err.h> | ||
| 67 | #include <openssl/evp.h> | ||
| 68 | #include <openssl/pem.h> | ||
| 69 | |||
| 70 | #undef PROG | ||
| 71 | #define PROG ec_main | ||
| 72 | |||
| 73 | /* -inform arg - input format - default PEM (one of DER, NET or PEM) | ||
| 74 | * -outform arg - output format - default PEM | ||
| 75 | * -in arg - input file - default stdin | ||
| 76 | * -out arg - output file - default stdout | ||
| 77 | * -des - encrypt output if PEM format with DES in cbc mode | ||
| 78 | * -text - print a text version | ||
| 79 | * -param_out - print the elliptic curve parameters | ||
| 80 | * -conv_form arg - specifies the point encoding form | ||
| 81 | * -param_enc arg - specifies the parameter encoding | ||
| 82 | */ | ||
| 83 | |||
| 84 | int MAIN(int, char **); | ||
| 85 | |||
| 86 | int MAIN(int argc, char **argv) | ||
| 87 | { | ||
| 88 | #ifndef OPENSSL_NO_ENGINE | ||
| 89 | ENGINE *e = NULL; | ||
| 90 | #endif | ||
| 91 | int ret = 1; | ||
| 92 | EC_KEY *eckey = NULL; | ||
| 93 | const EC_GROUP *group; | ||
| 94 | int i, badops = 0; | ||
| 95 | const EVP_CIPHER *enc = NULL; | ||
| 96 | BIO *in = NULL, *out = NULL; | ||
| 97 | int informat, outformat, text=0, noout=0; | ||
| 98 | int pubin = 0, pubout = 0, param_out = 0; | ||
| 99 | char *infile, *outfile, *prog, *engine; | ||
| 100 | char *passargin = NULL, *passargout = NULL; | ||
| 101 | char *passin = NULL, *passout = NULL; | ||
| 102 | point_conversion_form_t form = POINT_CONVERSION_UNCOMPRESSED; | ||
| 103 | int new_form = 0; | ||
| 104 | int asn1_flag = OPENSSL_EC_NAMED_CURVE; | ||
| 105 | int new_asn1_flag = 0; | ||
| 106 | |||
| 107 | apps_startup(); | ||
| 108 | |||
| 109 | if (bio_err == NULL) | ||
| 110 | if ((bio_err=BIO_new(BIO_s_file())) != NULL) | ||
| 111 | BIO_set_fp(bio_err, stderr, BIO_NOCLOSE|BIO_FP_TEXT); | ||
| 112 | |||
| 113 | if (!load_config(bio_err, NULL)) | ||
| 114 | goto end; | ||
| 115 | |||
| 116 | engine = NULL; | ||
| 117 | infile = NULL; | ||
| 118 | outfile = NULL; | ||
| 119 | informat = FORMAT_PEM; | ||
| 120 | outformat = FORMAT_PEM; | ||
| 121 | |||
| 122 | prog = argv[0]; | ||
| 123 | argc--; | ||
| 124 | argv++; | ||
| 125 | while (argc >= 1) | ||
| 126 | { | ||
| 127 | if (strcmp(*argv,"-inform") == 0) | ||
| 128 | { | ||
| 129 | if (--argc < 1) goto bad; | ||
| 130 | informat=str2fmt(*(++argv)); | ||
| 131 | } | ||
| 132 | else if (strcmp(*argv,"-outform") == 0) | ||
| 133 | { | ||
| 134 | if (--argc < 1) goto bad; | ||
| 135 | outformat=str2fmt(*(++argv)); | ||
| 136 | } | ||
| 137 | else if (strcmp(*argv,"-in") == 0) | ||
| 138 | { | ||
| 139 | if (--argc < 1) goto bad; | ||
| 140 | infile= *(++argv); | ||
| 141 | } | ||
| 142 | else if (strcmp(*argv,"-out") == 0) | ||
| 143 | { | ||
| 144 | if (--argc < 1) goto bad; | ||
| 145 | outfile= *(++argv); | ||
| 146 | } | ||
| 147 | else if (strcmp(*argv,"-passin") == 0) | ||
| 148 | { | ||
| 149 | if (--argc < 1) goto bad; | ||
| 150 | passargin= *(++argv); | ||
| 151 | } | ||
| 152 | else if (strcmp(*argv,"-passout") == 0) | ||
| 153 | { | ||
| 154 | if (--argc < 1) goto bad; | ||
| 155 | passargout= *(++argv); | ||
| 156 | } | ||
| 157 | else if (strcmp(*argv, "-engine") == 0) | ||
| 158 | { | ||
| 159 | if (--argc < 1) goto bad; | ||
| 160 | engine= *(++argv); | ||
| 161 | } | ||
| 162 | else if (strcmp(*argv, "-noout") == 0) | ||
| 163 | noout = 1; | ||
| 164 | else if (strcmp(*argv, "-text") == 0) | ||
| 165 | text = 1; | ||
| 166 | else if (strcmp(*argv, "-conv_form") == 0) | ||
| 167 | { | ||
| 168 | if (--argc < 1) | ||
| 169 | goto bad; | ||
| 170 | ++argv; | ||
| 171 | new_form = 1; | ||
| 172 | if (strcmp(*argv, "compressed") == 0) | ||
| 173 | form = POINT_CONVERSION_COMPRESSED; | ||
| 174 | else if (strcmp(*argv, "uncompressed") == 0) | ||
| 175 | form = POINT_CONVERSION_UNCOMPRESSED; | ||
| 176 | else if (strcmp(*argv, "hybrid") == 0) | ||
| 177 | form = POINT_CONVERSION_HYBRID; | ||
| 178 | else | ||
| 179 | goto bad; | ||
| 180 | } | ||
| 181 | else if (strcmp(*argv, "-param_enc") == 0) | ||
| 182 | { | ||
| 183 | if (--argc < 1) | ||
| 184 | goto bad; | ||
| 185 | ++argv; | ||
| 186 | new_asn1_flag = 1; | ||
| 187 | if (strcmp(*argv, "named_curve") == 0) | ||
| 188 | asn1_flag = OPENSSL_EC_NAMED_CURVE; | ||
| 189 | else if (strcmp(*argv, "explicit") == 0) | ||
| 190 | asn1_flag = 0; | ||
| 191 | else | ||
| 192 | goto bad; | ||
| 193 | } | ||
| 194 | else if (strcmp(*argv, "-param_out") == 0) | ||
| 195 | param_out = 1; | ||
| 196 | else if (strcmp(*argv, "-pubin") == 0) | ||
| 197 | pubin=1; | ||
| 198 | else if (strcmp(*argv, "-pubout") == 0) | ||
| 199 | pubout=1; | ||
| 200 | else if ((enc=EVP_get_cipherbyname(&(argv[0][1]))) == NULL) | ||
| 201 | { | ||
| 202 | BIO_printf(bio_err, "unknown option %s\n", *argv); | ||
| 203 | badops=1; | ||
| 204 | break; | ||
| 205 | } | ||
| 206 | argc--; | ||
| 207 | argv++; | ||
| 208 | } | ||
| 209 | |||
| 210 | if (badops) | ||
| 211 | { | ||
| 212 | bad: | ||
| 213 | BIO_printf(bio_err, "%s [options] <infile >outfile\n", prog); | ||
| 214 | BIO_printf(bio_err, "where options are\n"); | ||
| 215 | BIO_printf(bio_err, " -inform arg input format - " | ||
| 216 | "DER or PEM\n"); | ||
| 217 | BIO_printf(bio_err, " -outform arg output format - " | ||
| 218 | "DER or PEM\n"); | ||
| 219 | BIO_printf(bio_err, " -in arg input file\n"); | ||
| 220 | BIO_printf(bio_err, " -passin arg input file pass " | ||
| 221 | "phrase source\n"); | ||
| 222 | BIO_printf(bio_err, " -out arg output file\n"); | ||
| 223 | BIO_printf(bio_err, " -passout arg output file pass " | ||
| 224 | "phrase source\n"); | ||
| 225 | BIO_printf(bio_err, " -engine e use engine e, " | ||
| 226 | "possibly a hardware device.\n"); | ||
| 227 | BIO_printf(bio_err, " -des encrypt PEM output, " | ||
| 228 | "instead of 'des' every other \n" | ||
| 229 | " cipher " | ||
| 230 | "supported by OpenSSL can be used\n"); | ||
| 231 | BIO_printf(bio_err, " -text print the key\n"); | ||
| 232 | BIO_printf(bio_err, " -noout don't print key out\n"); | ||
| 233 | BIO_printf(bio_err, " -param_out print the elliptic " | ||
| 234 | "curve parameters\n"); | ||
| 235 | BIO_printf(bio_err, " -conv_form arg specifies the " | ||
| 236 | "point conversion form \n"); | ||
| 237 | BIO_printf(bio_err, " possible values:" | ||
| 238 | " compressed\n"); | ||
| 239 | BIO_printf(bio_err, " " | ||
| 240 | " uncompressed (default)\n"); | ||
| 241 | BIO_printf(bio_err, " " | ||
| 242 | " hybrid\n"); | ||
| 243 | BIO_printf(bio_err, " -param_enc arg specifies the way" | ||
| 244 | " the ec parameters are encoded\n"); | ||
| 245 | BIO_printf(bio_err, " in the asn1 der " | ||
| 246 | "encoding\n"); | ||
| 247 | BIO_printf(bio_err, " possible values:" | ||
| 248 | " named_curve (default)\n"); | ||
| 249 | BIO_printf(bio_err," " | ||
| 250 | "explicit\n"); | ||
| 251 | goto end; | ||
| 252 | } | ||
| 253 | |||
| 254 | ERR_load_crypto_strings(); | ||
| 255 | |||
| 256 | #ifndef OPENSSL_NO_ENGINE | ||
| 257 | e = setup_engine(bio_err, engine, 0); | ||
| 258 | #endif | ||
| 259 | |||
| 260 | if(!app_passwd(bio_err, passargin, passargout, &passin, &passout)) | ||
| 261 | { | ||
| 262 | BIO_printf(bio_err, "Error getting passwords\n"); | ||
| 263 | goto end; | ||
| 264 | } | ||
| 265 | |||
| 266 | in = BIO_new(BIO_s_file()); | ||
| 267 | out = BIO_new(BIO_s_file()); | ||
| 268 | if ((in == NULL) || (out == NULL)) | ||
| 269 | { | ||
| 270 | ERR_print_errors(bio_err); | ||
| 271 | goto end; | ||
| 272 | } | ||
| 273 | |||
| 274 | if (infile == NULL) | ||
| 275 | BIO_set_fp(in, stdin, BIO_NOCLOSE); | ||
| 276 | else | ||
| 277 | { | ||
| 278 | if (BIO_read_filename(in, infile) <= 0) | ||
| 279 | { | ||
| 280 | perror(infile); | ||
| 281 | goto end; | ||
| 282 | } | ||
| 283 | } | ||
| 284 | |||
| 285 | BIO_printf(bio_err, "read EC key\n"); | ||
| 286 | if (informat == FORMAT_ASN1) | ||
| 287 | { | ||
| 288 | if (pubin) | ||
| 289 | eckey = d2i_EC_PUBKEY_bio(in, NULL); | ||
| 290 | else | ||
| 291 | eckey = d2i_ECPrivateKey_bio(in, NULL); | ||
| 292 | } | ||
| 293 | else if (informat == FORMAT_PEM) | ||
| 294 | { | ||
| 295 | if (pubin) | ||
| 296 | eckey = PEM_read_bio_EC_PUBKEY(in, NULL, NULL, | ||
| 297 | NULL); | ||
| 298 | else | ||
| 299 | eckey = PEM_read_bio_ECPrivateKey(in, NULL, NULL, | ||
| 300 | passin); | ||
| 301 | } | ||
| 302 | else | ||
| 303 | { | ||
| 304 | BIO_printf(bio_err, "bad input format specified for key\n"); | ||
| 305 | goto end; | ||
| 306 | } | ||
| 307 | if (eckey == NULL) | ||
| 308 | { | ||
| 309 | BIO_printf(bio_err,"unable to load Key\n"); | ||
| 310 | ERR_print_errors(bio_err); | ||
| 311 | goto end; | ||
| 312 | } | ||
| 313 | |||
| 314 | if (outfile == NULL) | ||
| 315 | { | ||
| 316 | BIO_set_fp(out, stdout, BIO_NOCLOSE); | ||
| 317 | #ifdef OPENSSL_SYS_VMS | ||
| 318 | { | ||
| 319 | BIO *tmpbio = BIO_new(BIO_f_linebuffer()); | ||
| 320 | out = BIO_push(tmpbio, out); | ||
| 321 | } | ||
| 322 | #endif | ||
| 323 | } | ||
| 324 | else | ||
| 325 | { | ||
| 326 | if (BIO_write_filename(out, outfile) <= 0) | ||
| 327 | { | ||
| 328 | perror(outfile); | ||
| 329 | goto end; | ||
| 330 | } | ||
| 331 | } | ||
| 332 | |||
| 333 | group = EC_KEY_get0_group(eckey); | ||
| 334 | |||
| 335 | if (new_form) | ||
| 336 | EC_KEY_set_conv_form(eckey, form); | ||
| 337 | |||
| 338 | if (new_asn1_flag) | ||
| 339 | EC_KEY_set_asn1_flag(eckey, asn1_flag); | ||
| 340 | |||
| 341 | if (text) | ||
| 342 | if (!EC_KEY_print(out, eckey, 0)) | ||
| 343 | { | ||
| 344 | perror(outfile); | ||
| 345 | ERR_print_errors(bio_err); | ||
| 346 | goto end; | ||
| 347 | } | ||
| 348 | |||
| 349 | if (noout) | ||
| 350 | { | ||
| 351 | ret = 0; | ||
| 352 | goto end; | ||
| 353 | } | ||
| 354 | |||
| 355 | BIO_printf(bio_err, "writing EC key\n"); | ||
| 356 | if (outformat == FORMAT_ASN1) | ||
| 357 | { | ||
| 358 | if (param_out) | ||
| 359 | i = i2d_ECPKParameters_bio(out, group); | ||
| 360 | else if (pubin || pubout) | ||
| 361 | i = i2d_EC_PUBKEY_bio(out, eckey); | ||
| 362 | else | ||
| 363 | i = i2d_ECPrivateKey_bio(out, eckey); | ||
| 364 | } | ||
| 365 | else if (outformat == FORMAT_PEM) | ||
| 366 | { | ||
| 367 | if (param_out) | ||
| 368 | i = PEM_write_bio_ECPKParameters(out, group); | ||
| 369 | else if (pubin || pubout) | ||
| 370 | i = PEM_write_bio_EC_PUBKEY(out, eckey); | ||
| 371 | else | ||
| 372 | i = PEM_write_bio_ECPrivateKey(out, eckey, enc, | ||
| 373 | NULL, 0, NULL, passout); | ||
| 374 | } | ||
| 375 | else | ||
| 376 | { | ||
| 377 | BIO_printf(bio_err, "bad output format specified for " | ||
| 378 | "outfile\n"); | ||
| 379 | goto end; | ||
| 380 | } | ||
| 381 | |||
| 382 | if (!i) | ||
| 383 | { | ||
| 384 | BIO_printf(bio_err, "unable to write private key\n"); | ||
| 385 | ERR_print_errors(bio_err); | ||
| 386 | } | ||
| 387 | else | ||
| 388 | ret=0; | ||
| 389 | end: | ||
| 390 | if (in) | ||
| 391 | BIO_free(in); | ||
| 392 | if (out) | ||
| 393 | BIO_free_all(out); | ||
| 394 | if (eckey) | ||
| 395 | EC_KEY_free(eckey); | ||
| 396 | if (passin) | ||
| 397 | OPENSSL_free(passin); | ||
| 398 | if (passout) | ||
| 399 | OPENSSL_free(passout); | ||
| 400 | apps_shutdown(); | ||
| 401 | OPENSSL_EXIT(ret); | ||
| 402 | } | ||
| 403 | #endif | ||
diff --git a/src/lib/libssl/src/apps/ecparam.c b/src/lib/libssl/src/apps/ecparam.c new file mode 100644 index 0000000000..4e1fc837ed --- /dev/null +++ b/src/lib/libssl/src/apps/ecparam.c | |||
| @@ -0,0 +1,728 @@ | |||
| 1 | /* apps/ecparam.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | /* ==================================================================== | ||
| 59 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 60 | * | ||
| 61 | * Portions of the attached software ("Contribution") are developed by | ||
| 62 | * SUN MICROSYSTEMS, INC., and are contributed to the OpenSSL project. | ||
| 63 | * | ||
| 64 | * The Contribution is licensed pursuant to the OpenSSL open source | ||
| 65 | * license provided above. | ||
| 66 | * | ||
| 67 | * The elliptic curve binary polynomial software is originally written by | ||
| 68 | * Sheueling Chang Shantz and Douglas Stebila of Sun Microsystems Laboratories. | ||
| 69 | * | ||
| 70 | */ | ||
| 71 | |||
| 72 | #include <openssl/opensslconf.h> | ||
| 73 | #ifndef OPENSSL_NO_EC | ||
| 74 | #include <assert.h> | ||
| 75 | #include <stdio.h> | ||
| 76 | #include <stdlib.h> | ||
| 77 | #include <time.h> | ||
| 78 | #include <string.h> | ||
| 79 | #include "apps.h" | ||
| 80 | #include <openssl/bio.h> | ||
| 81 | #include <openssl/err.h> | ||
| 82 | #include <openssl/bn.h> | ||
| 83 | #include <openssl/ec.h> | ||
| 84 | #include <openssl/x509.h> | ||
| 85 | #include <openssl/pem.h> | ||
| 86 | |||
| 87 | #undef PROG | ||
| 88 | #define PROG ecparam_main | ||
| 89 | |||
| 90 | /* -inform arg - input format - default PEM (DER or PEM) | ||
| 91 | * -outform arg - output format - default PEM | ||
| 92 | * -in arg - input file - default stdin | ||
| 93 | * -out arg - output file - default stdout | ||
| 94 | * -noout - do not print the ec parameter | ||
| 95 | * -text - print the ec parameters in text form | ||
| 96 | * -check - validate the ec parameters | ||
| 97 | * -C - print a 'C' function creating the parameters | ||
| 98 | * -name arg - use the ec parameters with 'short name' name | ||
| 99 | * -list_curves - prints a list of all currently available curve 'short names' | ||
| 100 | * -conv_form arg - specifies the point conversion form | ||
| 101 | * - possible values: compressed | ||
| 102 | * uncompressed (default) | ||
| 103 | * hybrid | ||
| 104 | * -param_enc arg - specifies the way the ec parameters are encoded | ||
| 105 | * in the asn1 der encoding | ||
| 106 | * possible values: named_curve (default) | ||
| 107 | * explicit | ||
| 108 | * -no_seed - if 'explicit' parameters are choosen do not use the seed | ||
| 109 | * -genkey - generate ec key | ||
| 110 | * -rand file - files to use for random number input | ||
| 111 | * -engine e - use engine e, possibly a hardware device | ||
| 112 | */ | ||
| 113 | |||
| 114 | |||
| 115 | static int ecparam_print_var(BIO *,BIGNUM *,const char *,int,unsigned char *); | ||
| 116 | |||
| 117 | int MAIN(int, char **); | ||
| 118 | |||
| 119 | int MAIN(int argc, char **argv) | ||
| 120 | { | ||
| 121 | EC_GROUP *group = NULL; | ||
| 122 | point_conversion_form_t form = POINT_CONVERSION_UNCOMPRESSED; | ||
| 123 | int new_form = 0; | ||
| 124 | int asn1_flag = OPENSSL_EC_NAMED_CURVE; | ||
| 125 | int new_asn1_flag = 0; | ||
| 126 | char *curve_name = NULL, *inrand = NULL; | ||
| 127 | int list_curves = 0, no_seed = 0, check = 0, | ||
| 128 | badops = 0, text = 0, i, need_rand = 0, genkey = 0; | ||
| 129 | char *infile = NULL, *outfile = NULL, *prog; | ||
| 130 | BIO *in = NULL, *out = NULL; | ||
| 131 | int informat, outformat, noout = 0, C = 0, ret = 1; | ||
| 132 | #ifndef OPENSSL_NO_ENGINE | ||
| 133 | ENGINE *e = NULL; | ||
| 134 | #endif | ||
| 135 | char *engine = NULL; | ||
| 136 | |||
| 137 | BIGNUM *ec_p = NULL, *ec_a = NULL, *ec_b = NULL, | ||
| 138 | *ec_gen = NULL, *ec_order = NULL, *ec_cofactor = NULL; | ||
| 139 | unsigned char *buffer = NULL; | ||
| 140 | |||
| 141 | apps_startup(); | ||
| 142 | |||
| 143 | if (bio_err == NULL) | ||
| 144 | if ((bio_err=BIO_new(BIO_s_file())) != NULL) | ||
| 145 | BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT); | ||
| 146 | |||
| 147 | if (!load_config(bio_err, NULL)) | ||
| 148 | goto end; | ||
| 149 | |||
| 150 | informat=FORMAT_PEM; | ||
| 151 | outformat=FORMAT_PEM; | ||
| 152 | |||
| 153 | prog=argv[0]; | ||
| 154 | argc--; | ||
| 155 | argv++; | ||
| 156 | while (argc >= 1) | ||
| 157 | { | ||
| 158 | if (strcmp(*argv,"-inform") == 0) | ||
| 159 | { | ||
| 160 | if (--argc < 1) goto bad; | ||
| 161 | informat=str2fmt(*(++argv)); | ||
| 162 | } | ||
| 163 | else if (strcmp(*argv,"-outform") == 0) | ||
| 164 | { | ||
| 165 | if (--argc < 1) goto bad; | ||
| 166 | outformat=str2fmt(*(++argv)); | ||
| 167 | } | ||
| 168 | else if (strcmp(*argv,"-in") == 0) | ||
| 169 | { | ||
| 170 | if (--argc < 1) goto bad; | ||
| 171 | infile= *(++argv); | ||
| 172 | } | ||
| 173 | else if (strcmp(*argv,"-out") == 0) | ||
| 174 | { | ||
| 175 | if (--argc < 1) goto bad; | ||
| 176 | outfile= *(++argv); | ||
| 177 | } | ||
| 178 | else if (strcmp(*argv,"-text") == 0) | ||
| 179 | text = 1; | ||
| 180 | else if (strcmp(*argv,"-C") == 0) | ||
| 181 | C = 1; | ||
| 182 | else if (strcmp(*argv,"-check") == 0) | ||
| 183 | check = 1; | ||
| 184 | else if (strcmp (*argv, "-name") == 0) | ||
| 185 | { | ||
| 186 | if (--argc < 1) | ||
| 187 | goto bad; | ||
| 188 | curve_name = *(++argv); | ||
| 189 | } | ||
| 190 | else if (strcmp(*argv, "-list_curves") == 0) | ||
| 191 | list_curves = 1; | ||
| 192 | else if (strcmp(*argv, "-conv_form") == 0) | ||
| 193 | { | ||
| 194 | if (--argc < 1) | ||
| 195 | goto bad; | ||
| 196 | ++argv; | ||
| 197 | new_form = 1; | ||
| 198 | if (strcmp(*argv, "compressed") == 0) | ||
| 199 | form = POINT_CONVERSION_COMPRESSED; | ||
| 200 | else if (strcmp(*argv, "uncompressed") == 0) | ||
| 201 | form = POINT_CONVERSION_UNCOMPRESSED; | ||
| 202 | else if (strcmp(*argv, "hybrid") == 0) | ||
| 203 | form = POINT_CONVERSION_HYBRID; | ||
| 204 | else | ||
| 205 | goto bad; | ||
| 206 | } | ||
| 207 | else if (strcmp(*argv, "-param_enc") == 0) | ||
| 208 | { | ||
| 209 | if (--argc < 1) | ||
| 210 | goto bad; | ||
| 211 | ++argv; | ||
| 212 | new_asn1_flag = 1; | ||
| 213 | if (strcmp(*argv, "named_curve") == 0) | ||
| 214 | asn1_flag = OPENSSL_EC_NAMED_CURVE; | ||
| 215 | else if (strcmp(*argv, "explicit") == 0) | ||
| 216 | asn1_flag = 0; | ||
| 217 | else | ||
| 218 | goto bad; | ||
| 219 | } | ||
| 220 | else if (strcmp(*argv, "-no_seed") == 0) | ||
| 221 | no_seed = 1; | ||
| 222 | else if (strcmp(*argv, "-noout") == 0) | ||
| 223 | noout=1; | ||
| 224 | else if (strcmp(*argv,"-genkey") == 0) | ||
| 225 | { | ||
| 226 | genkey=1; | ||
| 227 | need_rand=1; | ||
| 228 | } | ||
| 229 | else if (strcmp(*argv, "-rand") == 0) | ||
| 230 | { | ||
| 231 | if (--argc < 1) goto bad; | ||
| 232 | inrand= *(++argv); | ||
| 233 | need_rand=1; | ||
| 234 | } | ||
| 235 | else if(strcmp(*argv, "-engine") == 0) | ||
| 236 | { | ||
| 237 | if (--argc < 1) goto bad; | ||
| 238 | engine = *(++argv); | ||
| 239 | } | ||
| 240 | else | ||
| 241 | { | ||
| 242 | BIO_printf(bio_err,"unknown option %s\n",*argv); | ||
| 243 | badops=1; | ||
| 244 | break; | ||
| 245 | } | ||
| 246 | argc--; | ||
| 247 | argv++; | ||
| 248 | } | ||
| 249 | |||
| 250 | if (badops) | ||
| 251 | { | ||
| 252 | bad: | ||
| 253 | BIO_printf(bio_err, "%s [options] <infile >outfile\n",prog); | ||
| 254 | BIO_printf(bio_err, "where options are\n"); | ||
| 255 | BIO_printf(bio_err, " -inform arg input format - " | ||
| 256 | "default PEM (DER or PEM)\n"); | ||
| 257 | BIO_printf(bio_err, " -outform arg output format - " | ||
| 258 | "default PEM\n"); | ||
| 259 | BIO_printf(bio_err, " -in arg input file - " | ||
| 260 | "default stdin\n"); | ||
| 261 | BIO_printf(bio_err, " -out arg output file - " | ||
| 262 | "default stdout\n"); | ||
| 263 | BIO_printf(bio_err, " -noout do not print the " | ||
| 264 | "ec parameter\n"); | ||
| 265 | BIO_printf(bio_err, " -text print the ec " | ||
| 266 | "parameters in text form\n"); | ||
| 267 | BIO_printf(bio_err, " -check validate the ec " | ||
| 268 | "parameters\n"); | ||
| 269 | BIO_printf(bio_err, " -C print a 'C' " | ||
| 270 | "function creating the parameters\n"); | ||
| 271 | BIO_printf(bio_err, " -name arg use the " | ||
| 272 | "ec parameters with 'short name' name\n"); | ||
| 273 | BIO_printf(bio_err, " -list_curves prints a list of " | ||
| 274 | "all currently available curve 'short names'\n"); | ||
| 275 | BIO_printf(bio_err, " -conv_form arg specifies the " | ||
| 276 | "point conversion form \n"); | ||
| 277 | BIO_printf(bio_err, " possible values:" | ||
| 278 | " compressed\n"); | ||
| 279 | BIO_printf(bio_err, " " | ||
| 280 | " uncompressed (default)\n"); | ||
| 281 | BIO_printf(bio_err, " " | ||
| 282 | " hybrid\n"); | ||
| 283 | BIO_printf(bio_err, " -param_enc arg specifies the way" | ||
| 284 | " the ec parameters are encoded\n"); | ||
| 285 | BIO_printf(bio_err, " in the asn1 der " | ||
| 286 | "encoding\n"); | ||
| 287 | BIO_printf(bio_err, " possible values:" | ||
| 288 | " named_curve (default)\n"); | ||
| 289 | BIO_printf(bio_err, " " | ||
| 290 | " explicit\n"); | ||
| 291 | BIO_printf(bio_err, " -no_seed if 'explicit'" | ||
| 292 | " parameters are choosen do not" | ||
| 293 | " use the seed\n"); | ||
| 294 | BIO_printf(bio_err, " -genkey generate ec" | ||
| 295 | " key\n"); | ||
| 296 | BIO_printf(bio_err, " -rand file files to use for" | ||
| 297 | " random number input\n"); | ||
| 298 | BIO_printf(bio_err, " -engine e use engine e, " | ||
| 299 | "possibly a hardware device\n"); | ||
| 300 | goto end; | ||
| 301 | } | ||
| 302 | |||
| 303 | ERR_load_crypto_strings(); | ||
| 304 | |||
| 305 | in=BIO_new(BIO_s_file()); | ||
| 306 | out=BIO_new(BIO_s_file()); | ||
| 307 | if ((in == NULL) || (out == NULL)) | ||
| 308 | { | ||
| 309 | ERR_print_errors(bio_err); | ||
| 310 | goto end; | ||
| 311 | } | ||
| 312 | |||
| 313 | if (infile == NULL) | ||
| 314 | BIO_set_fp(in,stdin,BIO_NOCLOSE); | ||
| 315 | else | ||
| 316 | { | ||
| 317 | if (BIO_read_filename(in,infile) <= 0) | ||
| 318 | { | ||
| 319 | perror(infile); | ||
| 320 | goto end; | ||
| 321 | } | ||
| 322 | } | ||
| 323 | if (outfile == NULL) | ||
| 324 | { | ||
| 325 | BIO_set_fp(out,stdout,BIO_NOCLOSE); | ||
| 326 | #ifdef OPENSSL_SYS_VMS | ||
| 327 | { | ||
| 328 | BIO *tmpbio = BIO_new(BIO_f_linebuffer()); | ||
| 329 | out = BIO_push(tmpbio, out); | ||
| 330 | } | ||
| 331 | #endif | ||
| 332 | } | ||
| 333 | else | ||
| 334 | { | ||
| 335 | if (BIO_write_filename(out,outfile) <= 0) | ||
| 336 | { | ||
| 337 | perror(outfile); | ||
| 338 | goto end; | ||
| 339 | } | ||
| 340 | } | ||
| 341 | |||
| 342 | #ifndef OPENSSL_NO_ENGINE | ||
| 343 | e = setup_engine(bio_err, engine, 0); | ||
| 344 | #endif | ||
| 345 | |||
| 346 | if (list_curves) | ||
| 347 | { | ||
| 348 | EC_builtin_curve *curves = NULL; | ||
| 349 | size_t crv_len = 0; | ||
| 350 | size_t n = 0; | ||
| 351 | |||
| 352 | crv_len = EC_get_builtin_curves(NULL, 0); | ||
| 353 | |||
| 354 | curves = OPENSSL_malloc((int)(sizeof(EC_builtin_curve) * crv_len)); | ||
| 355 | |||
| 356 | if (curves == NULL) | ||
| 357 | goto end; | ||
| 358 | |||
| 359 | if (!EC_get_builtin_curves(curves, crv_len)) | ||
| 360 | { | ||
| 361 | OPENSSL_free(curves); | ||
| 362 | goto end; | ||
| 363 | } | ||
| 364 | |||
| 365 | |||
| 366 | for (n = 0; n < crv_len; n++) | ||
| 367 | { | ||
| 368 | const char *comment; | ||
| 369 | const char *sname; | ||
| 370 | comment = curves[n].comment; | ||
| 371 | sname = OBJ_nid2sn(curves[n].nid); | ||
| 372 | if (comment == NULL) | ||
| 373 | comment = "CURVE DESCRIPTION NOT AVAILABLE"; | ||
| 374 | if (sname == NULL) | ||
| 375 | sname = ""; | ||
| 376 | |||
| 377 | BIO_printf(out, " %-10s: ", sname); | ||
| 378 | BIO_printf(out, "%s\n", comment); | ||
| 379 | } | ||
| 380 | |||
| 381 | OPENSSL_free(curves); | ||
| 382 | ret = 0; | ||
| 383 | goto end; | ||
| 384 | } | ||
| 385 | |||
| 386 | if (curve_name != NULL) | ||
| 387 | { | ||
| 388 | int nid; | ||
| 389 | |||
| 390 | /* workaround for the SECG curve names secp192r1 | ||
| 391 | * and secp256r1 (which are the same as the curves | ||
| 392 | * prime192v1 and prime256v1 defined in X9.62) | ||
| 393 | */ | ||
| 394 | if (!strcmp(curve_name, "secp192r1")) | ||
| 395 | { | ||
| 396 | BIO_printf(bio_err, "using curve name prime192v1 " | ||
| 397 | "instead of secp192r1\n"); | ||
| 398 | nid = NID_X9_62_prime192v1; | ||
| 399 | } | ||
| 400 | else if (!strcmp(curve_name, "secp256r1")) | ||
| 401 | { | ||
| 402 | BIO_printf(bio_err, "using curve name prime256v1 " | ||
| 403 | "instead of secp256r1\n"); | ||
| 404 | nid = NID_X9_62_prime256v1; | ||
| 405 | } | ||
| 406 | else | ||
| 407 | nid = OBJ_sn2nid(curve_name); | ||
| 408 | |||
| 409 | if (nid == 0) | ||
| 410 | { | ||
| 411 | BIO_printf(bio_err, "unknown curve name (%s)\n", | ||
| 412 | curve_name); | ||
| 413 | goto end; | ||
| 414 | } | ||
| 415 | |||
| 416 | group = EC_GROUP_new_by_curve_name(nid); | ||
| 417 | if (group == NULL) | ||
| 418 | { | ||
| 419 | BIO_printf(bio_err, "unable to create curve (%s)\n", | ||
| 420 | curve_name); | ||
| 421 | goto end; | ||
| 422 | } | ||
| 423 | EC_GROUP_set_asn1_flag(group, asn1_flag); | ||
| 424 | EC_GROUP_set_point_conversion_form(group, form); | ||
| 425 | } | ||
| 426 | else if (informat == FORMAT_ASN1) | ||
| 427 | { | ||
| 428 | group = d2i_ECPKParameters_bio(in, NULL); | ||
| 429 | } | ||
| 430 | else if (informat == FORMAT_PEM) | ||
| 431 | { | ||
| 432 | group = PEM_read_bio_ECPKParameters(in,NULL,NULL,NULL); | ||
| 433 | } | ||
| 434 | else | ||
| 435 | { | ||
| 436 | BIO_printf(bio_err, "bad input format specified\n"); | ||
| 437 | goto end; | ||
| 438 | } | ||
| 439 | |||
| 440 | if (group == NULL) | ||
| 441 | { | ||
| 442 | BIO_printf(bio_err, | ||
| 443 | "unable to load elliptic curve parameters\n"); | ||
| 444 | ERR_print_errors(bio_err); | ||
| 445 | goto end; | ||
| 446 | } | ||
| 447 | |||
| 448 | if (new_form) | ||
| 449 | EC_GROUP_set_point_conversion_form(group, form); | ||
| 450 | |||
| 451 | if (new_asn1_flag) | ||
| 452 | EC_GROUP_set_asn1_flag(group, asn1_flag); | ||
| 453 | |||
| 454 | if (no_seed) | ||
| 455 | { | ||
| 456 | EC_GROUP_set_seed(group, NULL, 0); | ||
| 457 | } | ||
| 458 | |||
| 459 | if (text) | ||
| 460 | { | ||
| 461 | if (!ECPKParameters_print(out, group, 0)) | ||
| 462 | goto end; | ||
| 463 | } | ||
| 464 | |||
| 465 | if (check) | ||
| 466 | { | ||
| 467 | if (group == NULL) | ||
| 468 | BIO_printf(bio_err, "no elliptic curve parameters\n"); | ||
| 469 | BIO_printf(bio_err, "checking elliptic curve parameters: "); | ||
| 470 | if (!EC_GROUP_check(group, NULL)) | ||
| 471 | { | ||
| 472 | BIO_printf(bio_err, "failed\n"); | ||
| 473 | ERR_print_errors(bio_err); | ||
| 474 | } | ||
| 475 | else | ||
| 476 | BIO_printf(bio_err, "ok\n"); | ||
| 477 | |||
| 478 | } | ||
| 479 | |||
| 480 | if (C) | ||
| 481 | { | ||
| 482 | size_t buf_len = 0, tmp_len = 0; | ||
| 483 | const EC_POINT *point; | ||
| 484 | int is_prime, len = 0; | ||
| 485 | const EC_METHOD *meth = EC_GROUP_method_of(group); | ||
| 486 | |||
| 487 | if ((ec_p = BN_new()) == NULL || (ec_a = BN_new()) == NULL || | ||
| 488 | (ec_b = BN_new()) == NULL || (ec_gen = BN_new()) == NULL || | ||
| 489 | (ec_order = BN_new()) == NULL || | ||
| 490 | (ec_cofactor = BN_new()) == NULL ) | ||
| 491 | { | ||
| 492 | perror("OPENSSL_malloc"); | ||
| 493 | goto end; | ||
| 494 | } | ||
| 495 | |||
| 496 | is_prime = (EC_METHOD_get_field_type(meth) == | ||
| 497 | NID_X9_62_prime_field); | ||
| 498 | |||
| 499 | if (is_prime) | ||
| 500 | { | ||
| 501 | if (!EC_GROUP_get_curve_GFp(group, ec_p, ec_a, | ||
| 502 | ec_b, NULL)) | ||
| 503 | goto end; | ||
| 504 | } | ||
| 505 | else | ||
| 506 | { | ||
| 507 | /* TODO */ | ||
| 508 | goto end; | ||
| 509 | } | ||
| 510 | |||
| 511 | if ((point = EC_GROUP_get0_generator(group)) == NULL) | ||
| 512 | goto end; | ||
| 513 | if (!EC_POINT_point2bn(group, point, | ||
| 514 | EC_GROUP_get_point_conversion_form(group), ec_gen, | ||
| 515 | NULL)) | ||
| 516 | goto end; | ||
| 517 | if (!EC_GROUP_get_order(group, ec_order, NULL)) | ||
| 518 | goto end; | ||
| 519 | if (!EC_GROUP_get_cofactor(group, ec_cofactor, NULL)) | ||
| 520 | goto end; | ||
| 521 | |||
| 522 | if (!ec_p || !ec_a || !ec_b || !ec_gen || | ||
| 523 | !ec_order || !ec_cofactor) | ||
| 524 | goto end; | ||
| 525 | |||
| 526 | len = BN_num_bits(ec_order); | ||
| 527 | |||
| 528 | if ((tmp_len = (size_t)BN_num_bytes(ec_p)) > buf_len) | ||
| 529 | buf_len = tmp_len; | ||
| 530 | if ((tmp_len = (size_t)BN_num_bytes(ec_a)) > buf_len) | ||
| 531 | buf_len = tmp_len; | ||
| 532 | if ((tmp_len = (size_t)BN_num_bytes(ec_b)) > buf_len) | ||
| 533 | buf_len = tmp_len; | ||
| 534 | if ((tmp_len = (size_t)BN_num_bytes(ec_gen)) > buf_len) | ||
| 535 | buf_len = tmp_len; | ||
| 536 | if ((tmp_len = (size_t)BN_num_bytes(ec_order)) > buf_len) | ||
| 537 | buf_len = tmp_len; | ||
| 538 | if ((tmp_len = (size_t)BN_num_bytes(ec_cofactor)) > buf_len) | ||
| 539 | buf_len = tmp_len; | ||
| 540 | |||
| 541 | buffer = (unsigned char *)OPENSSL_malloc(buf_len); | ||
| 542 | |||
| 543 | if (buffer == NULL) | ||
| 544 | { | ||
| 545 | perror("OPENSSL_malloc"); | ||
| 546 | goto end; | ||
| 547 | } | ||
| 548 | |||
| 549 | ecparam_print_var(out, ec_p, "ec_p", len, buffer); | ||
| 550 | ecparam_print_var(out, ec_a, "ec_a", len, buffer); | ||
| 551 | ecparam_print_var(out, ec_b, "ec_b", len, buffer); | ||
| 552 | ecparam_print_var(out, ec_gen, "ec_gen", len, buffer); | ||
| 553 | ecparam_print_var(out, ec_order, "ec_order", len, buffer); | ||
| 554 | ecparam_print_var(out, ec_cofactor, "ec_cofactor", len, | ||
| 555 | buffer); | ||
| 556 | |||
| 557 | BIO_printf(out, "\n\n"); | ||
| 558 | |||
| 559 | BIO_printf(out, "EC_GROUP *get_ec_group_%d(void)\n\t{\n", len); | ||
| 560 | BIO_printf(out, "\tint ok=0;\n"); | ||
| 561 | BIO_printf(out, "\tEC_GROUP *group = NULL;\n"); | ||
| 562 | BIO_printf(out, "\tEC_POINT *point = NULL;\n"); | ||
| 563 | BIO_printf(out, "\tBIGNUM *tmp_1 = NULL, *tmp_2 = NULL, " | ||
| 564 | "*tmp_3 = NULL;\n\n"); | ||
| 565 | BIO_printf(out, "\tif ((tmp_1 = BN_bin2bn(ec_p_%d, " | ||
| 566 | "sizeof(ec_p_%d), NULL)) == NULL)\n\t\t" | ||
| 567 | "goto err;\n", len, len); | ||
| 568 | BIO_printf(out, "\tif ((tmp_2 = BN_bin2bn(ec_a_%d, " | ||
| 569 | "sizeof(ec_a_%d), NULL)) == NULL)\n\t\t" | ||
| 570 | "goto err;\n", len, len); | ||
| 571 | BIO_printf(out, "\tif ((tmp_3 = BN_bin2bn(ec_b_%d, " | ||
| 572 | "sizeof(ec_b_%d), NULL)) == NULL)\n\t\t" | ||
| 573 | "goto err;\n", len, len); | ||
| 574 | if (is_prime) | ||
| 575 | { | ||
| 576 | BIO_printf(out, "\tif ((group = EC_GROUP_new_curve_" | ||
| 577 | "GFp(tmp_1, tmp_2, tmp_3, NULL)) == NULL)" | ||
| 578 | "\n\t\tgoto err;\n\n"); | ||
| 579 | } | ||
| 580 | else | ||
| 581 | { | ||
| 582 | /* TODO */ | ||
| 583 | goto end; | ||
| 584 | } | ||
| 585 | BIO_printf(out, "\t/* build generator */\n"); | ||
| 586 | BIO_printf(out, "\tif ((tmp_1 = BN_bin2bn(ec_gen_%d, " | ||
| 587 | "sizeof(ec_gen_%d), tmp_1)) == NULL)" | ||
| 588 | "\n\t\tgoto err;\n", len, len); | ||
| 589 | BIO_printf(out, "\tpoint = EC_POINT_bn2point(group, tmp_1, " | ||
| 590 | "NULL, NULL);\n"); | ||
| 591 | BIO_printf(out, "\tif (point == NULL)\n\t\tgoto err;\n"); | ||
| 592 | BIO_printf(out, "\tif ((tmp_2 = BN_bin2bn(ec_order_%d, " | ||
| 593 | "sizeof(ec_order_%d), tmp_2)) == NULL)" | ||
| 594 | "\n\t\tgoto err;\n", len, len); | ||
| 595 | BIO_printf(out, "\tif ((tmp_3 = BN_bin2bn(ec_cofactor_%d, " | ||
| 596 | "sizeof(ec_cofactor_%d), tmp_3)) == NULL)" | ||
| 597 | "\n\t\tgoto err;\n", len, len); | ||
| 598 | BIO_printf(out, "\tif (!EC_GROUP_set_generator(group, point," | ||
| 599 | " tmp_2, tmp_3))\n\t\tgoto err;\n"); | ||
| 600 | BIO_printf(out, "\n\tok=1;\n"); | ||
| 601 | BIO_printf(out, "err:\n"); | ||
| 602 | BIO_printf(out, "\tif (tmp_1)\n\t\tBN_free(tmp_1);\n"); | ||
| 603 | BIO_printf(out, "\tif (tmp_2)\n\t\tBN_free(tmp_2);\n"); | ||
| 604 | BIO_printf(out, "\tif (tmp_3)\n\t\tBN_free(tmp_3);\n"); | ||
| 605 | BIO_printf(out, "\tif (point)\n\t\tEC_POINT_free(point);\n"); | ||
| 606 | BIO_printf(out, "\tif (!ok)\n"); | ||
| 607 | BIO_printf(out, "\t\t{\n"); | ||
| 608 | BIO_printf(out, "\t\tEC_GROUP_free(group);\n"); | ||
| 609 | BIO_printf(out, "\t\tgroup = NULL;\n"); | ||
| 610 | BIO_printf(out, "\t\t}\n"); | ||
| 611 | BIO_printf(out, "\treturn(group);\n\t}\n"); | ||
| 612 | } | ||
| 613 | |||
| 614 | if (!noout) | ||
| 615 | { | ||
| 616 | if (outformat == FORMAT_ASN1) | ||
| 617 | i = i2d_ECPKParameters_bio(out, group); | ||
| 618 | else if (outformat == FORMAT_PEM) | ||
| 619 | i = PEM_write_bio_ECPKParameters(out, group); | ||
| 620 | else | ||
| 621 | { | ||
| 622 | BIO_printf(bio_err,"bad output format specified for" | ||
| 623 | " outfile\n"); | ||
| 624 | goto end; | ||
| 625 | } | ||
| 626 | if (!i) | ||
| 627 | { | ||
| 628 | BIO_printf(bio_err, "unable to write elliptic " | ||
| 629 | "curve parameters\n"); | ||
| 630 | ERR_print_errors(bio_err); | ||
| 631 | goto end; | ||
| 632 | } | ||
| 633 | } | ||
| 634 | |||
| 635 | if (need_rand) | ||
| 636 | { | ||
| 637 | app_RAND_load_file(NULL, bio_err, (inrand != NULL)); | ||
| 638 | if (inrand != NULL) | ||
| 639 | BIO_printf(bio_err,"%ld semi-random bytes loaded\n", | ||
| 640 | app_RAND_load_files(inrand)); | ||
| 641 | } | ||
| 642 | |||
| 643 | if (genkey) | ||
| 644 | { | ||
| 645 | EC_KEY *eckey = EC_KEY_new(); | ||
| 646 | |||
| 647 | if (eckey == NULL) | ||
| 648 | goto end; | ||
| 649 | |||
| 650 | assert(need_rand); | ||
| 651 | |||
| 652 | if (EC_KEY_set_group(eckey, group) == 0) | ||
| 653 | goto end; | ||
| 654 | |||
| 655 | if (!EC_KEY_generate_key(eckey)) | ||
| 656 | { | ||
| 657 | EC_KEY_free(eckey); | ||
| 658 | goto end; | ||
| 659 | } | ||
| 660 | if (outformat == FORMAT_ASN1) | ||
| 661 | i = i2d_ECPrivateKey_bio(out, eckey); | ||
| 662 | else if (outformat == FORMAT_PEM) | ||
| 663 | i = PEM_write_bio_ECPrivateKey(out, eckey, NULL, | ||
| 664 | NULL, 0, NULL, NULL); | ||
| 665 | else | ||
| 666 | { | ||
| 667 | BIO_printf(bio_err, "bad output format specified " | ||
| 668 | "for outfile\n"); | ||
| 669 | EC_KEY_free(eckey); | ||
| 670 | goto end; | ||
| 671 | } | ||
| 672 | EC_KEY_free(eckey); | ||
| 673 | } | ||
| 674 | |||
| 675 | if (need_rand) | ||
| 676 | app_RAND_write_file(NULL, bio_err); | ||
| 677 | |||
| 678 | ret=0; | ||
| 679 | end: | ||
| 680 | if (ec_p) | ||
| 681 | BN_free(ec_p); | ||
| 682 | if (ec_a) | ||
| 683 | BN_free(ec_a); | ||
| 684 | if (ec_b) | ||
| 685 | BN_free(ec_b); | ||
| 686 | if (ec_gen) | ||
| 687 | BN_free(ec_gen); | ||
| 688 | if (ec_order) | ||
| 689 | BN_free(ec_order); | ||
| 690 | if (ec_cofactor) | ||
| 691 | BN_free(ec_cofactor); | ||
| 692 | if (buffer) | ||
| 693 | OPENSSL_free(buffer); | ||
| 694 | if (in != NULL) | ||
| 695 | BIO_free(in); | ||
| 696 | if (out != NULL) | ||
| 697 | BIO_free_all(out); | ||
| 698 | if (group != NULL) | ||
| 699 | EC_GROUP_free(group); | ||
| 700 | apps_shutdown(); | ||
| 701 | OPENSSL_EXIT(ret); | ||
| 702 | } | ||
| 703 | |||
| 704 | static int ecparam_print_var(BIO *out, BIGNUM *in, const char *var, | ||
| 705 | int len, unsigned char *buffer) | ||
| 706 | { | ||
| 707 | BIO_printf(out, "static unsigned char %s_%d[] = {", var, len); | ||
| 708 | if (BN_is_zero(in)) | ||
| 709 | BIO_printf(out, "\n\t0x00"); | ||
| 710 | else | ||
| 711 | { | ||
| 712 | int i, l; | ||
| 713 | |||
| 714 | l = BN_bn2bin(in, buffer); | ||
| 715 | for (i=0; i<l-1; i++) | ||
| 716 | { | ||
| 717 | if ((i%12) == 0) | ||
| 718 | BIO_printf(out, "\n\t"); | ||
| 719 | BIO_printf(out, "0x%02X,", buffer[i]); | ||
| 720 | } | ||
| 721 | if ((i%12) == 0) | ||
| 722 | BIO_printf(out, "\n\t"); | ||
| 723 | BIO_printf(out, "0x%02X", buffer[i]); | ||
| 724 | } | ||
| 725 | BIO_printf(out, "\n\t};\n\n"); | ||
| 726 | return 1; | ||
| 727 | } | ||
| 728 | #endif | ||
diff --git a/src/lib/libssl/src/fips/rand/fips_rand.h b/src/lib/libssl/src/apps/timeouts.h index 1286b63ab2..89b5dc76f6 100644 --- a/src/lib/libssl/src/fips/rand/fips_rand.h +++ b/src/lib/libssl/src/apps/timeouts.h | |||
| @@ -1,5 +1,10 @@ | |||
| 1 | /* apps/timeouts.h */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 1 | /* ==================================================================== | 6 | /* ==================================================================== |
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 3 | * | 8 | * |
| 4 | * Redistribution and use in source and binary forms, with or without | 9 | * Redistribution and use in source and binary forms, with or without |
| 5 | * modification, are permitted provided that the following conditions | 10 | * modification, are permitted provided that the following conditions |
| @@ -16,12 +21,12 @@ | |||
| 16 | * 3. All advertising materials mentioning features or use of this | 21 | * 3. All advertising materials mentioning features or use of this |
| 17 | * software must display the following acknowledgment: | 22 | * software must display the following acknowledgment: |
| 18 | * "This product includes software developed by the OpenSSL Project | 23 | * "This product includes software developed by the OpenSSL Project |
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" |
| 20 | * | 25 | * |
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to |
| 22 | * endorse or promote products derived from this software without | 27 | * endorse or promote products derived from this software without |
| 23 | * prior written permission. For written permission, please contact | 28 | * prior written permission. For written permission, please contact |
| 24 | * openssl-core@openssl.org. | 29 | * openssl-core@OpenSSL.org. |
| 25 | * | 30 | * |
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | 31 | * 5. Products derived from this software may not be called "OpenSSL" |
| 27 | * nor may "OpenSSL" appear in their names without prior written | 32 | * nor may "OpenSSL" appear in their names without prior written |
| @@ -30,7 +35,7 @@ | |||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | 35 | * 6. Redistributions of any form whatsoever must retain the following |
| 31 | * acknowledgment: | 36 | * acknowledgment: |
| 32 | * "This product includes software developed by the OpenSSL Project | 37 | * "This product includes software developed by the OpenSSL Project |
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" |
| 34 | * | 39 | * |
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY |
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
| @@ -44,30 +49,19 @@ | |||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. |
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 47 | * | 57 | * |
| 48 | */ | 58 | */ |
| 49 | 59 | ||
| 50 | #ifndef HEADER_FIPS_RAND_H | 60 | #ifndef INCLUDED_TIMEOUTS_H |
| 51 | #define HEADER_FIPS_RAND_H | 61 | #define INCLUDED_TIMEOUTS_H |
| 52 | |||
| 53 | #include "des.h" | ||
| 54 | |||
| 55 | #ifdef OPENSSL_FIPS | ||
| 56 | |||
| 57 | #ifdef __cplusplus | ||
| 58 | extern "C" { | ||
| 59 | #endif | ||
| 60 | |||
| 61 | void FIPS_set_prng_key(const unsigned char k1[8],const unsigned char k2[8]); | ||
| 62 | void FIPS_test_mode(int test,const unsigned char faketime[8]); | ||
| 63 | void FIPS_rand_seed(const void *buf, FIPS_RAND_SIZE_T num); | ||
| 64 | /* NB: this returns true if _partially_ seeded */ | ||
| 65 | int FIPS_rand_seeded(void); | ||
| 66 | 62 | ||
| 67 | RAND_METHOD *FIPS_rand_method(void); | 63 | /* numbers in us */ |
| 64 | #define DGRAM_RCV_TIMEOUT 250000 | ||
| 65 | #define DGRAM_SND_TIMEOUT 250000 | ||
| 68 | 66 | ||
| 69 | #ifdef __cplusplus | 67 | #endif /* ! INCLUDED_TIMEOUTS_H */ |
| 70 | } | ||
| 71 | #endif | ||
| 72 | #endif | ||
| 73 | #endif | ||
diff --git a/src/lib/libssl/src/bugs/VC16.bug b/src/lib/libssl/src/bugs/VC16.bug deleted file mode 100644 index 7815bb5c77..0000000000 --- a/src/lib/libssl/src/bugs/VC16.bug +++ /dev/null | |||
| @@ -1,18 +0,0 @@ | |||
| 1 | Microsoft (R) C/C++ Optimizing Compiler Version 8.00c | ||
| 2 | |||
| 3 | Compile with /O2 chokes the compiler on these files | ||
| 4 | |||
| 5 | crypto\md\md5_dgst.c warning '@(#)reg86.c:1.26', line 1110 | ||
| 6 | crypto\des\ofb64ede.c warning '@(#)grammar.c:1.147', line 168 | ||
| 7 | crypto\des\ofb64enc.c warning '@(#)grammar.c:1.147', line 168 | ||
| 8 | crypto\des\qud_cksm.c warning '@(#)grammar.c:1.147', line 168 | ||
| 9 | crypto\rc2\rc2ofb64.c warning '@(#)grammar.c:1.147', line 168 | ||
| 10 | crypto\objects\obj_dat.c warning '@(#)grammar.c:1.147', line 168 | ||
| 11 | fatal '@(#)grammar.c:1.147', line 168 | ||
| 12 | crypto\objects\obj_lib.c warning '@(#)grammar.c:1.147', line 168 | ||
| 13 | fatal '@(#)grammar.c:1.147', line 168 | ||
| 14 | ssl\ssl_auth.c warning '@(#)grammar.c:1.147', line 168 | ||
| 15 | fatal '@(#)grammar.c:1.147', line 168 | ||
| 16 | |||
| 17 | Turning on /G3 with build flags that worked fine for /G2 came up with | ||
| 18 | divide by zero errors in 'normal' code in speed.c :-( | ||
diff --git a/src/lib/libssl/src/certs/README.RootCerts b/src/lib/libssl/src/certs/README.RootCerts new file mode 100644 index 0000000000..c760b61033 --- /dev/null +++ b/src/lib/libssl/src/certs/README.RootCerts | |||
| @@ -0,0 +1,4 @@ | |||
| 1 | The OpenSSL project does not (any longer) include root CA certificates. | ||
| 2 | |||
| 3 | Please check out the FAQ: | ||
| 4 | * How can I set up a bundle of commercial root CA certificates? | ||
diff --git a/src/lib/libssl/src/certs/RegTP-5R.pem b/src/lib/libssl/src/certs/RegTP-5R.pem deleted file mode 100644 index 9eb79aa17c..0000000000 --- a/src/lib/libssl/src/certs/RegTP-5R.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | issuer= CN=5R-CA 1:PN+0.2.262.1.10.7.20=#130131,O=Regulierungsbeh\C3\88orde f\C3\88ur Telekommunikation und Post,C=DE | ||
| 2 | notBefore=Mar 22 08:55:51 2000 GMT | ||
| 3 | notAfter=Mar 22 08:55:51 2005 GMT | ||
| 4 | subject= CN=5R-CA 1:PN+0.2.262.1.10.7.20=#130131,O=Regulierungsbeh\C3\88orde f\C3\88ur Telekommunikation und Post,C=DE | ||
| 5 | -----BEGIN CERTIFICATE----- | ||
| 6 | MIICaDCCAdSgAwIBAgIDDIOqMAoGBiskAwMBAgUAMG8xCzAJBgNVBAYTAkRFMT0w | ||
| 7 | OwYDVQQKFDRSZWd1bGllcnVuZ3NiZWjIb3JkZSBmyHVyIFRlbGVrb21tdW5pa2F0 | ||
| 8 | aW9uIHVuZCBQb3N0MSEwDAYHAoIGAQoHFBMBMTARBgNVBAMUCjVSLUNBIDE6UE4w | ||
| 9 | IhgPMjAwMDAzMjIwODU1NTFaGA8yMDA1MDMyMjA4NTU1MVowbzELMAkGA1UEBhMC | ||
| 10 | REUxPTA7BgNVBAoUNFJlZ3VsaWVydW5nc2JlaMhvcmRlIGbIdXIgVGVsZWtvbW11 | ||
| 11 | bmlrYXRpb24gdW5kIFBvc3QxITAMBgcCggYBCgcUEwExMBEGA1UEAxQKNVItQ0Eg | ||
| 12 | MTpQTjCBoTANBgkqhkiG9w0BAQEFAAOBjwAwgYsCgYEAih5BUycfBpqKhU8RDsaS | ||
| 13 | vV5AtzWeXQRColL9CH3t0DKnhjKAlJ8iccFtJNv+d3bh8bb9sh0maRSo647xP7hs | ||
| 14 | HTjKgTE4zM5BYNfXvST79OtcMgAzrnDiGjQIIWv8xbfV1MqxxdtZJygrwzRMb9jG | ||
| 15 | CAGoJEymoyzAMNG7tSdBWnUCBQDAAAABoxIwEDAOBgNVHQ8BAf8EBAMCAQYwCgYG | ||
| 16 | KyQDAwECBQADgYEAOaK8ihVSBUcL2IdVBxZYYUKwMz5m7H3zqhN8W9w+iafWudH6 | ||
| 17 | b+aahkbENEwzg3C3v5g8nze7v7ssacQze657LHjP+e7ksUDIgcS4R1pU2eN16bjS | ||
| 18 | P/qGPF3rhrIEHoK5nJULkjkZYTtNiOvmQ/+G70TXDi3Os/TwLlWRvu+7YLM= | ||
| 19 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/RegTP-6R.pem b/src/lib/libssl/src/certs/RegTP-6R.pem deleted file mode 100644 index 4d79c74e5a..0000000000 --- a/src/lib/libssl/src/certs/RegTP-6R.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | issuer= CN=6R-Ca 1:PN+0.2.262.1.10.7.20=#130131,O=Regulierungsbeh\C3\88orde f\C3\88ur Telekommunikation und Post,C=DE | ||
| 2 | notBefore=Feb 1 09:52:17 2001 GMT | ||
| 3 | notAfter=Jun 1 09:52:17 2005 GMT | ||
| 4 | subject= CN=6R-Ca 1:PN+0.2.262.1.10.7.20=#130131,O=Regulierungsbeh\C3\88orde f\C3\88ur Telekommunikation und Post,C=DE | ||
| 5 | -----BEGIN CERTIFICATE----- | ||
| 6 | MIICaDCCAdSgAwIBAgIDMtGNMAoGBiskAwMBAgUAMG8xCzAJBgNVBAYTAkRFMT0w | ||
| 7 | OwYDVQQKFDRSZWd1bGllcnVuZ3NiZWjIb3JkZSBmyHVyIFRlbGVrb21tdW5pa2F0 | ||
| 8 | aW9uIHVuZCBQb3N0MSEwDAYHAoIGAQoHFBMBMTARBgNVBAMUCjZSLUNhIDE6UE4w | ||
| 9 | IhgPMjAwMTAyMDEwOTUyMTdaGA8yMDA1MDYwMTA5NTIxN1owbzELMAkGA1UEBhMC | ||
| 10 | REUxPTA7BgNVBAoUNFJlZ3VsaWVydW5nc2JlaMhvcmRlIGbIdXIgVGVsZWtvbW11 | ||
| 11 | bmlrYXRpb24gdW5kIFBvc3QxITAMBgcCggYBCgcUEwExMBEGA1UEAxQKNlItQ2Eg | ||
| 12 | MTpQTjCBoTANBgkqhkiG9w0BAQEFAAOBjwAwgYsCgYEAg6KrFSTNXKqe+2GKGeW2 | ||
| 13 | wTmbVeflNkp5H/YxA9K1zmEn5XjKm0S0jH4Wfms6ipPlURVaFwTfnB1s++AnJAWf | ||
| 14 | mayaE9BP/pdIY6WtZGgW6aZc32VDMCMKPWyBNyagsJVDmzlakIA5cXBVa7Xqqd3P | ||
| 15 | ew8i2feMnQXcqHfDv02CW88CBQDAAAABoxIwEDAOBgNVHQ8BAf8EBAMCAQYwCgYG | ||
| 16 | KyQDAwECBQADgYEAOkqkUwdaTCt8wcJLA2zLuOwL5ADHMWLhv6gr5zEF+VckA6qe | ||
| 17 | IVLVf8e7fYlRmzQd+5OJcGglCQJLGT+ZplI3Mjnrd4plkoTNKV4iOzBcvJD7K4tn | ||
| 18 | XPvs9wCFcC7QU7PLvc1FDsAlr7e4wyefZRDL+wbqNfI7QZTSF1ubLd9AzeQ= | ||
| 19 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/argena.pem b/src/lib/libssl/src/certs/argena.pem deleted file mode 100644 index db730e38dd..0000000000 --- a/src/lib/libssl/src/certs/argena.pem +++ /dev/null | |||
| @@ -1,39 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIIG0zCCBbugAwIBAgIBADANBgkqhkiG9w0BAQUFADCBzDELMAkGA1UEBhMCQVQx | ||
| 3 | EDAOBgNVBAgTB0F1c3RyaWExDzANBgNVBAcTBlZpZW5uYTE6MDgGA1UEChMxQVJH | ||
| 4 | RSBEQVRFTiAtIEF1c3RyaWFuIFNvY2lldHkgZm9yIERhdGEgUHJvdGVjdGlvbjEl | ||
| 5 | MCMGA1UECxMcQS1DRVJUIENlcnRpZmljYXRpb24gU2VydmljZTEYMBYGA1UEAxMP | ||
| 6 | QS1DRVJUIEFEVkFOQ0VEMR0wGwYJKoZIhvcNAQkBFg5pbmZvQGEtY2VydC5hdDAe | ||
| 7 | Fw0wNDEwMjMxNDE0MTRaFw0xMTEwMjMxNDE0MTRaMIHMMQswCQYDVQQGEwJBVDEQ | ||
| 8 | MA4GA1UECBMHQXVzdHJpYTEPMA0GA1UEBxMGVmllbm5hMTowOAYDVQQKEzFBUkdF | ||
| 9 | IERBVEVOIC0gQXVzdHJpYW4gU29jaWV0eSBmb3IgRGF0YSBQcm90ZWN0aW9uMSUw | ||
| 10 | IwYDVQQLExxBLUNFUlQgQ2VydGlmaWNhdGlvbiBTZXJ2aWNlMRgwFgYDVQQDEw9B | ||
| 11 | LUNFUlQgQURWQU5DRUQxHTAbBgkqhkiG9w0BCQEWDmluZm9AYS1jZXJ0LmF0MIIB | ||
| 12 | IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3euXIy+mnf6BYKbK+QH5k679 | ||
| 13 | tUFqeT8jlZxMew8eNiHuw9KoxWBzL6KksK+5uK7Gatw+sbAYntEGE80P+Jg1hADM | ||
| 14 | e+Fr5V0bc6QS3gkVtfUCW/RIvfMM39oxvmqJmOgPnJU7H6+nmLtsq61tv9kVJi/2 | ||
| 15 | 4Y5wXW3odet72sF57EoG6s78w0BUVLNcMngS9bZZzmdG3/d6JbkGgoNF/8DcgCBJ | ||
| 16 | W/t0JrcIzyppXIOVtUzzOrrU86zuUgT3Rtkl5kjG7DEHpFb9H0fTOY1v8+gRoaO6 | ||
| 17 | 2gA0PCiysgVZjwgVeYe3KAg11nznyleDv198uK3Dc1oXIGYjJx2FpKWUvAuAEwID | ||
| 18 | AQABo4ICvDCCArgwHQYDVR0OBBYEFDd/Pj6ZcWDKJNSRE3nQdCm0qCTYMIH5BgNV | ||
| 19 | HSMEgfEwge6AFDd/Pj6ZcWDKJNSRE3nQdCm0qCTYoYHSpIHPMIHMMQswCQYDVQQG | ||
| 20 | EwJBVDEQMA4GA1UECBMHQXVzdHJpYTEPMA0GA1UEBxMGVmllbm5hMTowOAYDVQQK | ||
| 21 | EzFBUkdFIERBVEVOIC0gQXVzdHJpYW4gU29jaWV0eSBmb3IgRGF0YSBQcm90ZWN0 | ||
| 22 | aW9uMSUwIwYDVQQLExxBLUNFUlQgQ2VydGlmaWNhdGlvbiBTZXJ2aWNlMRgwFgYD | ||
| 23 | VQQDEw9BLUNFUlQgQURWQU5DRUQxHTAbBgkqhkiG9w0BCQEWDmluZm9AYS1jZXJ0 | ||
| 24 | LmF0ggEAMA8GA1UdEwEB/wQFMAMBAf8wCwYDVR0PBAQDAgHmMEcGA1UdJQRAMD4G | ||
| 25 | CCsGAQUFBwMBBggrBgEFBQcDAgYIKwYBBQUHAwMGCCsGAQUFBwMEBggrBgEFBQcD | ||
| 26 | CAYKKwYBBAGCNwoDBDARBglghkgBhvhCAQEEBAMCAP8wUQYDVR0gBEowSDBGBggq | ||
| 27 | KAAYAQEBAzA6MDgGCCsGAQUFBwIBFixodHRwOi8vd3d3LmEtY2VydC5hdC9jZXJ0 | ||
| 28 | aWZpY2F0ZS1wb2xpY3kuaHRtbDA7BglghkgBhvhCAQgELhYsaHR0cDovL3d3dy5h | ||
| 29 | LWNlcnQuYXQvY2VydGlmaWNhdGUtcG9saWN5Lmh0bWwwGQYDVR0RBBIwEIEOaW5m | ||
| 30 | b0BhLWNlcnQuYXQwLwYDVR0SBCgwJoEOaW5mb0BhLWNlcnQuYXSGFGh0dHA6Ly93 | ||
| 31 | d3cuYS1jZXJ0LmF0MEUGA1UdHwQ+MDwwOqA4oDaGNGh0dHBzOi8vc2VjdXJlLmEt | ||
| 32 | Y2VydC5hdC9jZ2ktYmluL2EtY2VydC1hZHZhbmNlZC5jZ2kwDQYJKoZIhvcNAQEF | ||
| 33 | BQADggEBACX1IvgfdG2rvfv35O48vSEvcVaEdlN8USFBHWz3JRAozgzvaBtwHkjK | ||
| 34 | Zwt5l/BWOtjbvHfRjDt7ijlBEcxOOrNC1ffyMHwHrXpvff6YpQ5wnxmIYEQcURiG | ||
| 35 | HMqruEX0WkuDNgSKwefsgXs27eeBauHgNGVcTYH1rmHu/ZyLpLxOyJQ2PCzA1DzW | ||
| 36 | 3rWkIX92ogJ7lTRdWrbxwUL1XGinxnnaQ74+/y0pI9JNEv7ic2tpkweRMpkedaLW | ||
| 37 | msC1+orfKTebsg69aMaCx7o6jNONRmR/7TVaPf8/k6g52cHZ9YWjQvup22b5rWxG | ||
| 38 | J5r5LZ4vCPmF4+T4lutjUYAa/lGuQTg= | ||
| 39 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/argeng.pem b/src/lib/libssl/src/certs/argeng.pem deleted file mode 100644 index 621e30e208..0000000000 --- a/src/lib/libssl/src/certs/argeng.pem +++ /dev/null | |||
| @@ -1,23 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIIDwzCCAyygAwIBAgIBADANBgkqhkiG9w0BAQQFADCBmDELMAkGA1UEBhMCQVQx | ||
| 3 | EDAOBgNVBAgTB0F1c3RyaWExDzANBgNVBAcTBlZpZW5uYTFCMEAGA1UEChM5QXJn | ||
| 4 | ZSBEYXRlbiBPZXN0ZXJyZWljaGlzY2hlIEdlc2VsbHNjaGFmdCBmdWVyIERhdGVu | ||
| 5 | c2NodXR6MSIwIAYJKoZIhvcNAQkBFhNhLWNlcnRAYXJnZWRhdGVuLmF0MB4XDTAx | ||
| 6 | MDIxMjExMzAzMFoXDTA5MDIxMjExMzAzMFowgZgxCzAJBgNVBAYTAkFUMRAwDgYD | ||
| 7 | VQQIEwdBdXN0cmlhMQ8wDQYDVQQHEwZWaWVubmExQjBABgNVBAoTOUFyZ2UgRGF0 | ||
| 8 | ZW4gT2VzdGVycmVpY2hpc2NoZSBHZXNlbGxzY2hhZnQgZnVlciBEYXRlbnNjaHV0 | ||
| 9 | ejEiMCAGCSqGSIb3DQEJARYTYS1jZXJ0QGFyZ2VkYXRlbi5hdDCBnzANBgkqhkiG | ||
| 10 | 9w0BAQEFAAOBjQAwgYkCgYEAwgsHqoNtmmrJ86+e1I4hOVBaL4kokqKN2IPOIL+1 | ||
| 11 | XwY8vfOOUfPEdhWpaC0ldt7VYrksgDiUccgH0FROANWK2GkfKMDzjjXHysR04uEb | ||
| 12 | Om7Kqjqn0nproOGkFG+QvBZgs+Ws+HXNFJA6V76fU4+JXq4452LSK4Lr5YcBquu3 | ||
| 13 | NJECAwEAAaOCARkwggEVMB0GA1UdDgQWBBQ0j59zH/G31zRjgK1y2P//tSAWZjCB | ||
| 14 | xQYDVR0jBIG9MIG6gBQ0j59zH/G31zRjgK1y2P//tSAWZqGBnqSBmzCBmDELMAkG | ||
| 15 | A1UEBhMCQVQxEDAOBgNVBAgTB0F1c3RyaWExDzANBgNVBAcTBlZpZW5uYTFCMEAG | ||
| 16 | A1UEChM5QXJnZSBEYXRlbiBPZXN0ZXJyZWljaGlzY2hlIEdlc2VsbHNjaGFmdCBm | ||
| 17 | dWVyIERhdGVuc2NodXR6MSIwIAYJKoZIhvcNAQkBFhNhLWNlcnRAYXJnZWRhdGVu | ||
| 18 | LmF0ggEAMAwGA1UdEwQFMAMBAf8wCwYDVR0PBAQDAgEGMBEGCWCGSAGG+EIBAQQE | ||
| 19 | AwICBDANBgkqhkiG9w0BAQQFAAOBgQBFuJYncqMYB6gXQS3eDOI90BEHfFTKy/dV | ||
| 20 | AV+K7QdAYikWmqgBheRdPKddJdccPy/Zl/p3ZT7GhDyC5f3wZjcuu8AJ27BNwbCA | ||
| 21 | x54dgxgCNcyPm79nY8MRtEdEpoRGdSsFKJemz6hpXM++MWFciyrRWIIA44XB0Gv3 | ||
| 22 | US0spjsDPQ== | ||
| 23 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/demo/nortelCA.pem b/src/lib/libssl/src/certs/demo/nortelCA.pem deleted file mode 100644 index 207f34ab3a..0000000000 --- a/src/lib/libssl/src/certs/demo/nortelCA.pem +++ /dev/null | |||
| @@ -1,16 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIICajCCAdMCBDGA0QUwDQYJKoZIhvcNAQEEBQAwfTELMAkGA1UEBhMCQ2ExDzAN | ||
| 3 | BgNVBAcTBk5lcGVhbjEeMBwGA1UECxMVTm8gTGlhYmlsaXR5IEFjY2VwdGVkMR8w | ||
| 4 | HQYDVQQKExZGb3IgRGVtbyBQdXJwb3NlcyBPbmx5MRwwGgYDVQQDExNFbnRydXN0 | ||
| 5 | IERlbW8gV2ViIENBMB4XDTk2MDQyNjEzMzUwMVoXDTA2MDQyNjEzMzUwMVowfTEL | ||
| 6 | MAkGA1UEBhMCQ2ExDzANBgNVBAcTBk5lcGVhbjEeMBwGA1UECxMVTm8gTGlhYmls | ||
| 7 | aXR5IEFjY2VwdGVkMR8wHQYDVQQKExZGb3IgRGVtbyBQdXJwb3NlcyBPbmx5MRww | ||
| 8 | GgYDVQQDExNFbnRydXN0IERlbW8gV2ViIENBMIGdMA0GCSqGSIb3DQEBAQUAA4GL | ||
| 9 | ADCBhwKBgQCaroS7O1DA0hm4IefNYU1cx/nqOmzEnk291d1XqznDeF4wEgakbkCc | ||
| 10 | zTKxK791yNpXG5RmngqH7cygDRTHZJ6mfCRn0wGC+AI00F2vYTGqPGRQL1N3lZT0 | ||
| 11 | YDKFC0SQeMMjFIZ1aeQigroFQnHo0VB3zWIMpNkka8PY9lxHZAmWwQIBAzANBgkq | ||
| 12 | hkiG9w0BAQQFAAOBgQBAx0UMVA1s54lMQyXjMX5kj99FJN5itb8bK1Rk+cegPQPF | ||
| 13 | cWO9SEWyEjjBjIkjjzAwBkaEszFsNGxemxtXvwjIm1xEUMTVlPEWTs2qnDvAUA9W | ||
| 14 | YqhWbhH0toGT36236QAsqCZ76rbTRVSSX2BHyJwJMG2tCRv7kRJ//NIgxj3H4w== | ||
| 15 | -----END CERTIFICATE----- | ||
| 16 | |||
diff --git a/src/lib/libssl/src/certs/demo/timCA.pem b/src/lib/libssl/src/certs/demo/timCA.pem deleted file mode 100644 index 9c8d5bf9c6..0000000000 --- a/src/lib/libssl/src/certs/demo/timCA.pem +++ /dev/null | |||
| @@ -1,16 +0,0 @@ | |||
| 1 | Tims test GCI CA | ||
| 2 | |||
| 3 | -----BEGIN CERTIFICATE----- | ||
| 4 | MIIB8DCCAZoCAQAwDQYJKoZIhvcNAQEEBQAwgYIxCzAJBgNVBAYTAkFVMRMwEQYD | ||
| 5 | VQQIEwpRdWVlbnNsYW5kMREwDwYDVQQHEwhCcmlzYmFuZTEaMBgGA1UEChMRQ3J5 | ||
| 6 | cHRTb2Z0IFB0eSBMdGQxFDASBgNVBAsTC2RldmVsb3BtZW50MRkwFwYDVQQDExBD | ||
| 7 | cnlwdFNvZnQgRGV2IENBMB4XDTk3MDMyMjEzMzQwNFoXDTk4MDMyMjEzMzQwNFow | ||
| 8 | gYIxCzAJBgNVBAYTAkFVMRMwEQYDVQQIEwpRdWVlbnNsYW5kMREwDwYDVQQHEwhC | ||
| 9 | cmlzYmFuZTEaMBgGA1UEChMRQ3J5cHRTb2Z0IFB0eSBMdGQxFDASBgNVBAsTC2Rl | ||
| 10 | dmVsb3BtZW50MRkwFwYDVQQDExBDcnlwdFNvZnQgRGV2IENBMFwwDQYJKoZIhvcN | ||
| 11 | AQEBBQADSwAwSAJBAOAOAqogG5QwAmLhzyO4CoRnx/wVy4NZP4dxJy83O1EnL0rw | ||
| 12 | OdsamJKvPOLHgSXo3gDu9uVyvCf/QJmZAmC5ml8CAwEAATANBgkqhkiG9w0BAQQF | ||
| 13 | AANBADRRS/GVdd7rAqRW6SdmgLJduOU2yq3avBu99kRqbp9A/dLu6r6jU+eP4oOA | ||
| 14 | TfdbFZtAAD2Hx9jUtY3tfdrJOb8= | ||
| 15 | -----END CERTIFICATE----- | ||
| 16 | |||
diff --git a/src/lib/libssl/src/certs/demo/tjhCA.pem b/src/lib/libssl/src/certs/demo/tjhCA.pem deleted file mode 100644 index 67bee1b200..0000000000 --- a/src/lib/libssl/src/certs/demo/tjhCA.pem +++ /dev/null | |||
| @@ -1,15 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIICVjCCAgACAQAwDQYJKoZIhvcNAQEEBQAwgbUxCzAJBgNVBAYTAkFVMRMwEQYD | ||
| 3 | VQQIEwpRdWVlbnNsYW5kMREwDwYDVQQHEwhCcmlzYmFuZTEaMBgGA1UEChMRQ3J5 | ||
| 4 | cHRTb2Z0IFB0eSBMdGQxLDAqBgNVBAsTI1dPUlRITEVTUyBDRVJUSUZJQ0FUSU9O | ||
| 5 | IEFVVEhPUklUSUVTMTQwMgYDVQQDEytaRVJPIFZBTFVFIENBIC0gREVNT05TVFJB | ||
| 6 | VElPTiBQVVJQT1NFUyBPTkxZMB4XDTk3MDQwMzEzMjI1NFoXDTk4MDQwMzEzMjI1 | ||
| 7 | NFowgbUxCzAJBgNVBAYTAkFVMRMwEQYDVQQIEwpRdWVlbnNsYW5kMREwDwYDVQQH | ||
| 8 | EwhCcmlzYmFuZTEaMBgGA1UEChMRQ3J5cHRTb2Z0IFB0eSBMdGQxLDAqBgNVBAsT | ||
| 9 | I1dPUlRITEVTUyBDRVJUSUZJQ0FUSU9OIEFVVEhPUklUSUVTMTQwMgYDVQQDEyta | ||
| 10 | RVJPIFZBTFVFIENBIC0gREVNT05TVFJBVElPTiBQVVJQT1NFUyBPTkxZMFwwDQYJ | ||
| 11 | KoZIhvcNAQEBBQADSwAwSAJBAOZ7T7yqP/tyspcko3yPY1y0Cm2EmwNvzW4QgVXR | ||
| 12 | Fjs3HmJ4xtSpXdo6mwcGezL3Abt/aQXaxv9PU8xt+Jr0OFUCAwEAATANBgkqhkiG | ||
| 13 | 9w0BAQQFAANBAOQpYmGgyCqCy1OljgJhCqQOu627oVlHzK1L+t9vBaMfn40AVUR4 | ||
| 14 | WzQVWO31KTgi5vTK1U+3h46fgUWqQ0h+6rU= | ||
| 15 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/demo/vsigntca.pem b/src/lib/libssl/src/certs/demo/vsigntca.pem deleted file mode 100644 index 05acf76e66..0000000000 --- a/src/lib/libssl/src/certs/demo/vsigntca.pem +++ /dev/null | |||
| @@ -1,18 +0,0 @@ | |||
| 1 | subject=/O=VeriSign, Inc/OU=www.verisign.com/repository/TestCPS Incorp. By Ref. Liab. LTD./OU=For VeriSign authorized testing only. No assurances (C)VS1997 | ||
| 2 | notBefore=Mar 4 00:00:00 1997 GMT | ||
| 3 | notAfter=Mar 4 23:59:59 2025 GMT | ||
| 4 | -----BEGIN CERTIFICATE----- | ||
| 5 | MIICTTCCAfcCEEdoCqpuXxnoK27q7d58Qc4wDQYJKoZIhvcNAQEEBQAwgakxFjAU | ||
| 6 | BgNVBAoTDVZlcmlTaWduLCBJbmMxRzBFBgNVBAsTPnd3dy52ZXJpc2lnbi5jb20v | ||
| 7 | cmVwb3NpdG9yeS9UZXN0Q1BTIEluY29ycC4gQnkgUmVmLiBMaWFiLiBMVEQuMUYw | ||
| 8 | RAYDVQQLEz1Gb3IgVmVyaVNpZ24gYXV0aG9yaXplZCB0ZXN0aW5nIG9ubHkuIE5v | ||
| 9 | IGFzc3VyYW5jZXMgKEMpVlMxOTk3MB4XDTk3MDMwNDAwMDAwMFoXDTI1MDMwNDIz | ||
| 10 | NTk1OVowgakxFjAUBgNVBAoTDVZlcmlTaWduLCBJbmMxRzBFBgNVBAsTPnd3dy52 | ||
| 11 | ZXJpc2lnbi5jb20vcmVwb3NpdG9yeS9UZXN0Q1BTIEluY29ycC4gQnkgUmVmLiBM | ||
| 12 | aWFiLiBMVEQuMUYwRAYDVQQLEz1Gb3IgVmVyaVNpZ24gYXV0aG9yaXplZCB0ZXN0 | ||
| 13 | aW5nIG9ubHkuIE5vIGFzc3VyYW5jZXMgKEMpVlMxOTk3MFwwDQYJKoZIhvcNAQEB | ||
| 14 | BQADSwAwSAJBAMak6xImJx44jMKcbkACy5/CyMA2fqXK4PlzTtCxRq5tFkDzne7s | ||
| 15 | cI8oFK/J+gFZNE3bjidDxf07O3JOYG9RGx8CAwEAATANBgkqhkiG9w0BAQQFAANB | ||
| 16 | ADT523tENOKrEheZFpsJx1UUjPrG7TwYc/C4NBHrZI4gZJcKVFIfNulftVS6UMYW | ||
| 17 | ToLEMaUojc3DuNXHG21PDG8= | ||
| 18 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/eng1.pem b/src/lib/libssl/src/certs/eng1.pem deleted file mode 100644 index 7ed8b1b5e6..0000000000 --- a/src/lib/libssl/src/certs/eng1.pem +++ /dev/null | |||
| @@ -1,23 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIID3TCCAsWgAwIBAgIBADANBgkqhkiG9w0BAQUFADCBqDELMAkGA1UEBhMCQ0Ex | ||
| 3 | CzAJBgNVBAgTAk9OMRAwDgYDVQQHEwdUb3JvbnRvMRgwFgYDVQQKEw9CYW5rRW5n | ||
| 4 | aW5lIEluYy4xKTAnBgNVBAsTIENlcnRpZmljYXRpb24gQXV0aG9yaXR5IERpdmlz | ||
| 5 | aW9uMRMwEQYDVQQDEwpiYW5rZW5naW5lMSAwHgYJKoZIhvcNAQkBFhFjYUBiYW5r | ||
| 6 | ZW5naW5lLmNvbTAeFw05ODAxMDEwMDAwMDBaFw0zODAxMTcwMDAwMDBaMIGoMQsw | ||
| 7 | CQYDVQQGEwJDQTELMAkGA1UECBMCT04xEDAOBgNVBAcTB1Rvcm9udG8xGDAWBgNV | ||
| 8 | BAoTD0JhbmtFbmdpbmUgSW5jLjEpMCcGA1UECxMgQ2VydGlmaWNhdGlvbiBBdXRo | ||
| 9 | b3JpdHkgRGl2aXNpb24xEzARBgNVBAMTCmJhbmtlbmdpbmUxIDAeBgkqhkiG9w0B | ||
| 10 | CQEWEWNhQGJhbmtlbmdpbmUuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB | ||
| 11 | CgKCAQEA14LoTUAl1/hEy+Kh1kLHiBdW2zD3V4IhM7xxTVKsYsIH56nr69ATTIxU | ||
| 12 | P36eRzeZ137qt1AxHFjDCidk3m1Ul6l59ProPexdslLLM2npM3f2cteg+toyiYiS | ||
| 13 | EJKjyzIu1xF1j9qzGkymSY/4DsXLZNk9FaczxMk/Ooc6Os1M3AverL4VG4rYIb6f | ||
| 14 | eR32cIKJ9Q1fGuyKk7ipq1XQfPW8a8TgZdbHbe7U9Gk3iasGMHHvpR9Ep3mGbgdT | ||
| 15 | uQ98SBEuIwe1BUCGg/MXpVy48MNXfAMotBgGw4pl9yqSjMni2FB+E9Q9DHFs2RgX | ||
| 16 | MqzKuo8zcPxKx2kZ6Arj8+27dw2clQIDAQABoxAwDjAMBgNVHRMEBTADAQH/MA0G | ||
| 17 | CSqGSIb3DQEBBQUAA4IBAQBauupHX9EhpC/r57d6b5kkeWvognxIP9//TO4iw3qb | ||
| 18 | zIXEkPXmJmwVzlzoKJWqiya+aw19SP0+G6CzsFOBo/9ehmz+hZ8bhYX4MjlWzX5u | ||
| 19 | Tnkhz172j9fOBUmrTVPkcRIs6zjCD5PQAGoBPP1/Zdy2N36lZ0U7lg07Opirj/yJ | ||
| 20 | PSJeM2j0fwIFAroiVckvdT0BVwB6S/cPaAQGPghbbr1YGSmYrMriSv825ILJUfxz | ||
| 21 | rJYunGR9FiY9Ob7+jwJwiZMS4CxSPktutxr/3hOvr1+ALS7IcVakhhA3PuZAJbdH | ||
| 22 | FRclR9qMM8aBnBZmf+Uv3K3uhT+UBzzY654U9Yi1JYnA | ||
| 23 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/eng2.pem b/src/lib/libssl/src/certs/eng2.pem deleted file mode 100644 index 73066309b1..0000000000 --- a/src/lib/libssl/src/certs/eng2.pem +++ /dev/null | |||
| @@ -1,23 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIID3TCCAsWgAwIBAgIBADANBgkqhkiG9w0BAQUFADCBqDELMAkGA1UEBhMCQ0Ex | ||
| 3 | CzAJBgNVBAgTAk9OMRAwDgYDVQQHEwdUb3JvbnRvMRgwFgYDVQQKEw9DZXJ0RW5n | ||
| 4 | aW5lIEluYy4xKTAnBgNVBAsTIENlcnRpZmljYXRpb24gQXV0aG9yaXR5IERpdmlz | ||
| 5 | aW9uMRMwEQYDVQQDEwpjZXJ0ZW5naW5lMSAwHgYJKoZIhvcNAQkBFhFjYUBjZXJ0 | ||
| 6 | ZW5naW5lLmNvbTAeFw05ODAxMDEwMDAwMDBaFw0zODAxMTcwMDAwMDBaMIGoMQsw | ||
| 7 | CQYDVQQGEwJDQTELMAkGA1UECBMCT04xEDAOBgNVBAcTB1Rvcm9udG8xGDAWBgNV | ||
| 8 | BAoTD0NlcnRFbmdpbmUgSW5jLjEpMCcGA1UECxMgQ2VydGlmaWNhdGlvbiBBdXRo | ||
| 9 | b3JpdHkgRGl2aXNpb24xEzARBgNVBAMTCmNlcnRlbmdpbmUxIDAeBgkqhkiG9w0B | ||
| 10 | CQEWEWNhQGNlcnRlbmdpbmUuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB | ||
| 11 | CgKCAQEA7aTXURShaeVt9u/dP3Q2dVib3jTCZvEyc6yfpGgaYWewXWuP4HOSfI4h | ||
| 12 | GZblbpl+dzJc6RjhR+pguIRtbT5FJB8SJGjRqoujBEOQOxtVtc2fjM9Dqh0iOvMW | ||
| 13 | WS6buxHG55GVrHAQaO5HXEScKQBa9ZyNmpSXPTEBrDMej1OAGOkc524/TZrgFPF4 | ||
| 14 | AiJLLkxCcP8NuzUKlW3WzNMSSoCtjkUKy4wjSLlAWCFM0T9Df6/+Z8ZUQTzHoKCD | ||
| 15 | ncH5Qnynd7DlOwKQ2JwwxRhYGiGVTUN0GUq7qA11kW3+vnbFesKQXoF6o2PVx9s2 | ||
| 16 | YXviI2NXXUjZ0pVnsnFCc45Pm8XojwIDAQABoxAwDjAMBgNVHRMEBTADAQH/MA0G | ||
| 17 | CSqGSIb3DQEBBQUAA4IBAQBP/aHOKJ00Akzc9HWM1X30hlWZFBaQi4pqD4Uhk8+p | ||
| 18 | KzzwFP5DRLBOz8TYBbtdXrS6hxVMr2sqWmhVkuyepWhHZazKGyHY/y0FbOXsewAV | ||
| 19 | 1QxxSyx7ve89pCKv4/w0rQcP916iHc8Y/TCpmz7eITa3GId+8H/XTaBi8GBp9X9O | ||
| 20 | w8m25FmEB1NT+eJwefvfdKowjy4tSorKdW/eJspxNuTSRGmUy8G71W5dYvgpAlx6 | ||
| 21 | mdnHyzxEGvRYNNI2bS0ifXgbEFNWqSas9q34ea5KOpkJu8T/KyXfSb6rPOsBSb0t | ||
| 22 | wMowwGtCVH2C4Lw/8zo0EjhMpTOsPaub408PrZ+NQ2bl | ||
| 23 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/eng3.pem b/src/lib/libssl/src/certs/eng3.pem deleted file mode 100644 index 28bcce2dfd..0000000000 --- a/src/lib/libssl/src/certs/eng3.pem +++ /dev/null | |||
| @@ -1,34 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIIF3TCCA8WgAwIBAgIBADANBgkqhkiG9w0BAQUFADCBqDELMAkGA1UEBhMCQ0Ex | ||
| 3 | CzAJBgNVBAgTAk9OMRAwDgYDVQQHEwdUb3JvbnRvMRgwFgYDVQQKEw9Gb3J0RW5n | ||
| 4 | aW5lIEluYy4xKTAnBgNVBAsTIENlcnRpZmljYXRpb24gQXV0aG9yaXR5IERpdmlz | ||
| 5 | aW9uMRMwEQYDVQQDEwpmb3J0ZW5naW5lMSAwHgYJKoZIhvcNAQkBFhFjYUBmb3J0 | ||
| 6 | ZW5naW5lLmNvbTAeFw05ODAxMDEwMDAwMDBaFw0zODAxMTcwMDAwMDBaMIGoMQsw | ||
| 7 | CQYDVQQGEwJDQTELMAkGA1UECBMCT04xEDAOBgNVBAcTB1Rvcm9udG8xGDAWBgNV | ||
| 8 | BAoTD0ZvcnRFbmdpbmUgSW5jLjEpMCcGA1UECxMgQ2VydGlmaWNhdGlvbiBBdXRo | ||
| 9 | b3JpdHkgRGl2aXNpb24xEzARBgNVBAMTCmZvcnRlbmdpbmUxIDAeBgkqhkiG9w0B | ||
| 10 | CQEWEWNhQGZvcnRlbmdpbmUuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC | ||
| 11 | CgKCAgEAyr7GbpwDxx1v3EYbo0gcO+ligEhlDqG2e7u/AbWGoVAqc8+q6auUJUtz | ||
| 12 | 4i7oh0yNadu1o9kpXW+znkgO0zlrgjGskqqMO1ooppzTJdFy/P8gR6x1Iuv3kWtX | ||
| 13 | OuzwPPEjv09LWlhyJsN+oU4ztTVf07I0Q9zYupcoDQ58XKRheI9KdDB2DYSmxywA | ||
| 14 | WSLQwIeG0Qa7gvokeQlpkgkEC7viEecJ3752KXBJHnh7As51mxnlpmG6sDy67Eli | ||
| 15 | HDw5tHETRqbtnscGBjskGQBqR5xt7+QnnthZrN8HJHDoa9zgGephwizhkL44lXLF | ||
| 16 | YK9W5XhFbblw2c+mAcHkokRiwD7CPeIoyD2a/Jcw3n5hegKTlNhd4BFGVF6JR7gF | ||
| 17 | OFk2QfHXit5uthsij9Xhl7WAgQUqLgggD9MphqPf4nY66OZUJV9ZsmB+Qfp8UizB | ||
| 18 | 0WAOegactKVyRqHtRa+KIEXQXNtZgjcmMk9CYkP0nIbKtgKXaH6+9VMHNOryCnFE | ||
| 19 | 7pSsuPUkypncFWCHGSeiFO3w4w4J4csltxBADQzxfRu5KZnlToQN7bVpI/Q31tVX | ||
| 20 | E5bjrJcq6Oj/OTqZ3ID+OqbkUdAg0ggjRKcTgxnLHd/AbMzJ6PsclDDf7cLs0WSl | ||
| 21 | xMxQR/z5bNST1rNtT9rsiv2TOhfvCBxO9AOjBioO8PLO032HTNECAwEAAaMQMA4w | ||
| 22 | DAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQUFAAOCAgEAVyBpPWfT2VOyvVpslGKx | ||
| 23 | 8h0+CWP8cilygGRtZJ5dAJzc//1REAHdvK+TgZ4Foz3dqHhXI+RNN0FpzuWaYMjW | ||
| 24 | ZTS0kAmcOQuGY1Oo4PGlPHI21pNz29oFDTJr0ZmLBJ4JKVsE2soJg55jdk9MZHA7 | ||
| 25 | K//7HH9RsmrWZOE5DZDlrxp6+naixhMwnlPKKisIy9GNZUPqGdUWABMdB/BUVVNl | ||
| 26 | NU5TtWpIXUClMd8a+eoKcItBeYXowkHOBpinPkDX3clFDIUfWiw0Ro08s8SrrFqR | ||
| 27 | 8Szwbrj52Xv1RM56oGqCjnkvJctxihODV7NcpxoAFjIZokDom0q6zPrrTUsLFQov | ||
| 28 | Plovc3w5hmALiDMshaTvE1nm3Psn4yQ+FlRE8epTZrQiIGypZkZC6lcz0mYawueW | ||
| 29 | cThYWGFhVG4ktQzOjjNRsNxopW+W7cF1zQTxiWUDnxIKSj7gtdQ2jiubxEEhfVag | ||
| 30 | r8DMtAccNVTZVURpGi56TptOOuotrTqqC+2GviW4hlxvdvmuQN0OlXlUwzz2Trxc | ||
| 31 | FamNnuA54lZw/8arLtxsFmHrcnPw53+1spumLD0S5UkxHNu40h6LIVpZz3H+0rLz | ||
| 32 | uFofTfiyMjcfK2AyHQTgUCbsrvgNuLDQUbyFGVchdFUkhztX3DhEVnxnnrpY4BVj | ||
| 33 | QdTqWIvw7lGlSuDCjxEQAOc= | ||
| 34 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/eng4.pem b/src/lib/libssl/src/certs/eng4.pem deleted file mode 100644 index 9a7b156226..0000000000 --- a/src/lib/libssl/src/certs/eng4.pem +++ /dev/null | |||
| @@ -1,23 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIID3TCCAsWgAwIBAgIBADANBgkqhkiG9w0BAQUFADCBqDELMAkGA1UEBhMCQ0Ex | ||
| 3 | CzAJBgNVBAgTAk9OMRAwDgYDVQQHEwdUb3JvbnRvMRgwFgYDVQQKEw9NYWlsRW5n | ||
| 4 | aW5lIEluYy4xKTAnBgNVBAsTIENlcnRpZmljYXRpb24gQXV0aG9yaXR5IERpdmlz | ||
| 5 | aW9uMRMwEQYDVQQDEwptYWlsZW5naW5lMSAwHgYJKoZIhvcNAQkBFhFjYUBtYWls | ||
| 6 | ZW5naW5lLmNvbTAeFw05ODAxMDEwMDAwMDBaFw0zODAxMTcwMDAwMDBaMIGoMQsw | ||
| 7 | CQYDVQQGEwJDQTELMAkGA1UECBMCT04xEDAOBgNVBAcTB1Rvcm9udG8xGDAWBgNV | ||
| 8 | BAoTD01haWxFbmdpbmUgSW5jLjEpMCcGA1UECxMgQ2VydGlmaWNhdGlvbiBBdXRo | ||
| 9 | b3JpdHkgRGl2aXNpb24xEzARBgNVBAMTCm1haWxlbmdpbmUxIDAeBgkqhkiG9w0B | ||
| 10 | CQEWEWNhQG1haWxlbmdpbmUuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB | ||
| 11 | CgKCAQEAqXmfsU+lx+NFmn6tN17RTOyaddHqLnr/3rzEDIyT9TN+tF9TG7jmK7lJ | ||
| 12 | Jrj5arQ3nTFaLF8JuND2U1z/cLPw6/TX+1tE3v3CNUDSjaisyUDiUyp3TE8hMMMz | ||
| 13 | zfZQn0JsGgNhhWxqyzjhRQGtKL4+xtn8VsF/8zGgZYke7nlmVKz/FslDFTnNoodL | ||
| 14 | BAEGiu9JQS9qqpbSs20NdZ6LXPL2A4iTjnsNFBW3jIMVIn/JVVyaycU7ue2oFviD | ||
| 15 | vLNpkVZcR7A+jjIdIumOc5VSF0y7y74cQC5YwkR2mLK7UBYDK6NCY3ta/C4M8NsM | ||
| 16 | 0FpmvRl0+A1ivZtVwqI98dxDtp7HeQIDAQABoxAwDjAMBgNVHRMEBTADAQH/MA0G | ||
| 17 | CSqGSIb3DQEBBQUAA4IBAQAjfNn5BCzxylBDakFQGWKE/P43PRibMOEzfd7+DzbY | ||
| 18 | WIekoz3i00DwoH3b6j4gwlDJRAOq4dF6/Pt/uBOHDo/op+ef+9ErmKPd+ehXN9h3 | ||
| 19 | 7QbccTgz7DtVwA4iRlDRLru+JuXzT+OsCHuFZMOLJ+KD2JAGh3W68JjdcLkrlcpt | ||
| 20 | AU0wc5aOHPPfEBdIah8y8QtNzXRVzoBt8zzvgCARkXxTS2u/9QaXR1hML0JtDgQS | ||
| 21 | SdZ6Kd8SN6yzqxD+buYD5sOfJmjBF/n3lqFHNMHnnGXy2TAXZtIAWzffU3A0cGPB | ||
| 22 | N6FZ026a86HbF1X4k+xszhbJu/ikczyuWnCJIg3fTYSD | ||
| 23 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/eng5.pem b/src/lib/libssl/src/certs/eng5.pem deleted file mode 100644 index 3416ccad24..0000000000 --- a/src/lib/libssl/src/certs/eng5.pem +++ /dev/null | |||
| @@ -1,23 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIID6TCCAtGgAwIBAgIBADANBgkqhkiG9w0BAQUFADCBrjELMAkGA1UEBhMCQ0Ex | ||
| 3 | CzAJBgNVBAgTAk9OMRAwDgYDVQQHEwdUb3JvbnRvMRowGAYDVQQKExFUcmFkZXJF | ||
| 4 | bmdpbmUgSW5jLjEpMCcGA1UECxMgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgRGl2 | ||
| 5 | aXNpb24xFTATBgNVBAMTDHRyYWRlcmVuZ2luZTEiMCAGCSqGSIb3DQEJARYTY2FA | ||
| 6 | dHJhZGVyZW5naW5lLmNvbTAeFw05ODAxMDEwMDAwMDBaFw0zODAxMTcwMDAwMDBa | ||
| 7 | MIGuMQswCQYDVQQGEwJDQTELMAkGA1UECBMCT04xEDAOBgNVBAcTB1Rvcm9udG8x | ||
| 8 | GjAYBgNVBAoTEVRyYWRlckVuZ2luZSBJbmMuMSkwJwYDVQQLEyBDZXJ0aWZpY2F0 | ||
| 9 | aW9uIEF1dGhvcml0eSBEaXZpc2lvbjEVMBMGA1UEAxMMdHJhZGVyZW5naW5lMSIw | ||
| 10 | IAYJKoZIhvcNAQkBFhNjYUB0cmFkZXJlbmdpbmUuY29tMIIBIjANBgkqhkiG9w0B | ||
| 11 | AQEFAAOCAQ8AMIIBCgKCAQEAzyX5QE+5SN+zgNn1v3zp9HmP4hQOWW8WuEVItZVP | ||
| 12 | 9bt/xj5NeJd1kyPL/SqnF2qHcL3o/74r0Ga55aKHniwKYgQTlp5ELGfQ568QQeN9 | ||
| 13 | xNIHtUXeStI9zCNZyZC+4YqObdMR/ivKA/WsLfUVMl2lV5JzJJz1BOE0gKEYiEyz | ||
| 14 | gIq5oLzkP/mOXoHRvWSZD2D0eHYIO7ovV2epVFK7g7p+dC4QoeIUEli+GF/Myg88 | ||
| 15 | dV/qmi+Sybck2RLPXa8Nh27/ETVQ7kE1Eafmx7EyCqIhG+5lwJAy3HwHUBwAYuzj | ||
| 16 | iuZz5lD8aQmr8SKuvy3eOH9SVN5wh3YBlrNGwTStkESVLwIDAQABoxAwDjAMBgNV | ||
| 17 | HRMEBTADAQH/MA0GCSqGSIb3DQEBBQUAA4IBAQAWOPAUhZd3x9EQiFJcuxFTMd9q | ||
| 18 | axgcriCzJsM6D96sYGko9xTeLhX/lr1bliVYI5AlupoLXAdMzGHJkOgaTirKjQXr | ||
| 19 | F9nymDdUWKe3TmwGob5016nQlH7qRKvGO3hka0rOGRK2U/2JT/4Qp8iH/DFi6cyM | ||
| 20 | uP0q8n64SAkxZXLzUuFQXqf7U/SNjzb9XJQEIAdjp7eYd3Qb4jDsDcX0FrKMF1aV | ||
| 21 | r0dCDnS7am7WTXPYCDGdSkPgEHEtLYIYH3lZp5sKdVZ9wl4F0WNFkRWRUr7AXPjw | ||
| 22 | 50uLmUNmKCd8JZLMGA1TRNSTi7U9EcrWt0OkMWm74T2WVnAgNsDv2WrWsGfj | ||
| 23 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/ICE-CA.pem b/src/lib/libssl/src/certs/expired/ICE-CA.pem deleted file mode 100644 index 75652366c2..0000000000 --- a/src/lib/libssl/src/certs/expired/ICE-CA.pem +++ /dev/null | |||
| @@ -1,59 +0,0 @@ | |||
| 1 | Certificate: | ||
| 2 | Data: | ||
| 3 | Version: 3 (0x2) | ||
| 4 | Serial Number: 1 (0x1) | ||
| 5 | Signature Algorithm: md5WithRSAEncryption | ||
| 6 | Issuer: O=European ICE-TEL project, OU=V3-Certification Authority | ||
| 7 | Validity | ||
| 8 | Not Before: Apr 2 17:35:53 1997 GMT | ||
| 9 | Not After : Apr 2 17:35:53 1998 GMT | ||
| 10 | Subject: O=European ICE-TEL project, OU=V3-Certification Authority, L=Darmstadt | ||
| 11 | Subject Public Key Info: | ||
| 12 | Public Key Algorithm: rsa | ||
| 13 | RSA Public Key: (512 bit) | ||
| 14 | Modulus (512 bit): | ||
| 15 | 00:82:75:ba:f6:d1:60:b5:f9:15:b3:6a:dd:29:8f: | ||
| 16 | 8b:a4:6f:1a:88:e0:50:43:40:0b:79:41:d5:d3:16: | ||
| 17 | 44:7d:74:65:17:42:06:52:0b:e9:50:c8:10:cd:24: | ||
| 18 | e2:ae:8d:22:30:73:e6:b4:b7:93:1f:e5:6e:a2:ae: | ||
| 19 | 49:11:a5:c9:45 | ||
| 20 | Exponent: 65537 (0x10001) | ||
| 21 | X509v3 extensions: | ||
| 22 | X509v3 Authority Key Identifier: | ||
| 23 | 0.........z.."p......e.. | ||
| 24 | X509v3 Subject Key Identifier: | ||
| 25 | ..~r..:..B.44fu......3 | ||
| 26 | X509v3 Key Usage: critical | ||
| 27 | .... | ||
| 28 | X509v3 Certificate Policies: critical | ||
| 29 | 0.0...*... | ||
| 30 | X509v3 Subject Alternative Name: | ||
| 31 | 0!..secude-support@darmstadt.gmd.de | ||
| 32 | X509v3 Issuer Alternative Name: | ||
| 33 | 0I..ice-tel-ca@darmstadt.gmd.de.*http://www.darmstadt.gmd.de/ice-tel/euroca | ||
| 34 | X509v3 Basic Constraints: critical | ||
| 35 | 0.... | ||
| 36 | X509v3 CRL Distribution Points: | ||
| 37 | 0200...,.*http://www.darmstadt.gmd.de/ice-tel/euroca | ||
| 38 | Signature Algorithm: md5WithRSAEncryption | ||
| 39 | 17:a2:88:b7:99:5a:05:41:e4:13:34:67:e6:1f:3e:26:ec:4b: | ||
| 40 | 69:f9:3e:28:22:be:9d:1c:ab:41:6f:0c:00:85:fe:45:74:f6: | ||
| 41 | 98:f0:ce:9b:65:53:4a:50:42:c7:d4:92:bd:d7:a2:a8:3d:98: | ||
| 42 | 88:73:cd:60:28:79:a3:fc:48:7a | ||
| 43 | -----BEGIN CERTIFICATE----- | ||
| 44 | MIICzDCCAnagAwIBAgIBATANBgkqhkiG9w0BAQQFADBIMSEwHwYDVQQKExhFdXJv | ||
| 45 | cGVhbiBJQ0UtVEVMIHByb2plY3QxIzAhBgNVBAsTGlYzLUNlcnRpZmljYXRpb24g | ||
| 46 | QXV0aG9yaXR5MB4XDTk3MDQwMjE3MzU1M1oXDTk4MDQwMjE3MzU1M1owXDEhMB8G | ||
| 47 | A1UEChMYRXVyb3BlYW4gSUNFLVRFTCBwcm9qZWN0MSMwIQYDVQQLExpWMy1DZXJ0 | ||
| 48 | aWZpY2F0aW9uIEF1dGhvcml0eTESMBAGA1UEBxMJRGFybXN0YWR0MFkwCgYEVQgB | ||
| 49 | AQICAgADSwAwSAJBAIJ1uvbRYLX5FbNq3SmPi6RvGojgUENAC3lB1dMWRH10ZRdC | ||
| 50 | BlIL6VDIEM0k4q6NIjBz5rS3kx/lbqKuSRGlyUUCAwEAAaOCATgwggE0MB8GA1Ud | ||
| 51 | IwQYMBaAFIr3yNUOx3ro1yJw4AuJ1bbsZbzPMB0GA1UdDgQWBBR+cvL4OoacQog0 | ||
| 52 | NGZ1w9T80aIRMzAOBgNVHQ8BAf8EBAMCAfYwFAYDVR0gAQH/BAowCDAGBgQqAwQF | ||
| 53 | MCoGA1UdEQQjMCGBH3NlY3VkZS1zdXBwb3J0QGRhcm1zdGFkdC5nbWQuZGUwUgYD | ||
| 54 | VR0SBEswSYEbaWNlLXRlbC1jYUBkYXJtc3RhZHQuZ21kLmRlhipodHRwOi8vd3d3 | ||
| 55 | LmRhcm1zdGFkdC5nbWQuZGUvaWNlLXRlbC9ldXJvY2EwDwYDVR0TAQH/BAUwAwEB | ||
| 56 | /zA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vd3d3LmRhcm1zdGFkdC5nbWQuZGUv | ||
| 57 | aWNlLXRlbC9ldXJvY2EwDQYJKoZIhvcNAQEEBQADQQAXooi3mVoFQeQTNGfmHz4m | ||
| 58 | 7Etp+T4oIr6dHKtBbwwAhf5FdPaY8M6bZVNKUELH1JK916KoPZiIc81gKHmj/Eh6 | ||
| 59 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/ICE-root.pem b/src/lib/libssl/src/certs/expired/ICE-root.pem deleted file mode 100644 index fa991599c9..0000000000 --- a/src/lib/libssl/src/certs/expired/ICE-root.pem +++ /dev/null | |||
| @@ -1,48 +0,0 @@ | |||
| 1 | Certificate: | ||
| 2 | Data: | ||
| 3 | Version: 3 (0x2) | ||
| 4 | Serial Number: 0 (0x0) | ||
| 5 | Signature Algorithm: md5WithRSAEncryption | ||
| 6 | Issuer: O=European ICE-TEL project, OU=V3-Certification Authority | ||
| 7 | Validity | ||
| 8 | Not Before: Apr 2 17:33:36 1997 GMT | ||
| 9 | Not After : Apr 2 17:33:36 1998 GMT | ||
| 10 | Subject: O=European ICE-TEL project, OU=V3-Certification Authority | ||
| 11 | Subject Public Key Info: | ||
| 12 | Public Key Algorithm: rsa | ||
| 13 | RSA Public Key: (512 bit) | ||
| 14 | Modulus (512 bit): | ||
| 15 | 00:80:3e:eb:ae:47:a9:fe:10:54:0b:81:8b:9c:2b: | ||
| 16 | 82:ab:3a:61:36:65:8b:f3:73:9f:ac:ac:7a:15:a7: | ||
| 17 | 13:8f:b4:c4:ba:a3:0f:bc:a5:58:8d:cc:b1:93:31: | ||
| 18 | 9e:81:9e:8c:19:61:86:fa:52:73:54:d1:97:76:22: | ||
| 19 | e7:c7:9f:41:cd | ||
| 20 | Exponent: 65537 (0x10001) | ||
| 21 | X509v3 extensions: | ||
| 22 | X509v3 Subject Key Identifier: | ||
| 23 | ........z.."p......e.. | ||
| 24 | X509v3 Key Usage: critical | ||
| 25 | .... | ||
| 26 | X509v3 Subject Alternative Name: | ||
| 27 | 0I.*http://www.darmstadt.gmd.de/ice-tel/euroca..ice-tel-ca@darmstadt.gmd.de | ||
| 28 | X509v3 Basic Constraints: critical | ||
| 29 | 0.... | ||
| 30 | Signature Algorithm: md5WithRSAEncryption | ||
| 31 | 76:69:61:db:b7:cf:8b:06:9e:d8:8c:96:53:d2:4d:a8:23:a6: | ||
| 32 | 03:44:e8:8f:24:a5:c0:84:a8:4b:77:d4:2d:2b:7d:37:91:67: | ||
| 33 | f2:2c:ce:02:31:4c:6b:cc:ce:f2:68:a6:11:11:ab:7d:88:b8: | ||
| 34 | 7e:22:9f:25:06:60:bd:79:30:3d | ||
| 35 | -----BEGIN CERTIFICATE----- | ||
| 36 | MIICFjCCAcCgAwIBAgIBADANBgkqhkiG9w0BAQQFADBIMSEwHwYDVQQKExhFdXJv | ||
| 37 | cGVhbiBJQ0UtVEVMIHByb2plY3QxIzAhBgNVBAsTGlYzLUNlcnRpZmljYXRpb24g | ||
| 38 | QXV0aG9yaXR5MB4XDTk3MDQwMjE3MzMzNloXDTk4MDQwMjE3MzMzNlowSDEhMB8G | ||
| 39 | A1UEChMYRXVyb3BlYW4gSUNFLVRFTCBwcm9qZWN0MSMwIQYDVQQLExpWMy1DZXJ0 | ||
| 40 | aWZpY2F0aW9uIEF1dGhvcml0eTBZMAoGBFUIAQECAgIAA0sAMEgCQQCAPuuuR6n+ | ||
| 41 | EFQLgYucK4KrOmE2ZYvzc5+srHoVpxOPtMS6ow+8pViNzLGTMZ6BnowZYYb6UnNU | ||
| 42 | 0Zd2IufHn0HNAgMBAAGjgZcwgZQwHQYDVR0OBBYEFIr3yNUOx3ro1yJw4AuJ1bbs | ||
| 43 | ZbzPMA4GA1UdDwEB/wQEAwIB9jBSBgNVHREESzBJhipodHRwOi8vd3d3LmRhcm1z | ||
| 44 | dGFkdC5nbWQuZGUvaWNlLXRlbC9ldXJvY2GBG2ljZS10ZWwtY2FAZGFybXN0YWR0 | ||
| 45 | LmdtZC5kZTAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBBAUAA0EAdmlh27fP | ||
| 46 | iwae2IyWU9JNqCOmA0TojySlwISoS3fULSt9N5Fn8izOAjFMa8zO8mimERGrfYi4 | ||
| 47 | fiKfJQZgvXkwPQ== | ||
| 48 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/ICE-user.pem b/src/lib/libssl/src/certs/expired/ICE-user.pem deleted file mode 100644 index 28065fd37d..0000000000 --- a/src/lib/libssl/src/certs/expired/ICE-user.pem +++ /dev/null | |||
| @@ -1,63 +0,0 @@ | |||
| 1 | Certificate: | ||
| 2 | Data: | ||
| 3 | Version: 3 (0x2) | ||
| 4 | Serial Number: 1 (0x1) | ||
| 5 | Signature Algorithm: md5WithRSAEncryption | ||
| 6 | Issuer: O=European ICE-TEL project, OU=V3-Certification Authority, L=Darmstadt | ||
| 7 | Validity | ||
| 8 | Not Before: Apr 2 17:35:59 1997 GMT | ||
| 9 | Not After : Apr 2 17:35:59 1998 GMT | ||
| 10 | Subject: O=European ICE-TEL project, OU=V3-Certification Authority, L=Darmstadt, CN=USER | ||
| 11 | Subject Public Key Info: | ||
| 12 | Public Key Algorithm: rsa | ||
| 13 | RSA Public Key: (512 bit) | ||
| 14 | Modulus (512 bit): | ||
| 15 | 00:a8:a8:53:63:49:1b:93:c3:c3:0b:6c:88:11:55: | ||
| 16 | de:7e:6a:e2:f9:52:a0:dc:69:25:c4:c8:bf:55:e1: | ||
| 17 | 31:a8:ce:e4:a9:29:85:99:8a:15:9a:de:f6:2f:e1: | ||
| 18 | b4:50:5f:5e:04:75:a6:f4:76:dc:3c:0e:39:dc:3a: | ||
| 19 | be:3e:a4:61:8b | ||
| 20 | Exponent: 65537 (0x10001) | ||
| 21 | X509v3 extensions: | ||
| 22 | X509v3 Authority Key Identifier: | ||
| 23 | 0...~r..:..B.44fu......3 | ||
| 24 | X509v3 Subject Key Identifier: | ||
| 25 | ...... .*...1.*....... | ||
| 26 | X509v3 Key Usage: critical | ||
| 27 | .... | ||
| 28 | X509v3 Certificate Policies: critical | ||
| 29 | 0.0...*...0....... | ||
| 30 | X509v3 Subject Alternative Name: | ||
| 31 | 0:..user@darmstadt.gmd.de.!http://www.darmstadt.gmd.de/~user | ||
| 32 | X509v3 Issuer Alternative Name: | ||
| 33 | 0....gmdca@gmd.de..http://www.gmd.de..saturn.darmstadt.gmd.de.\1!0...U. | ||
| 34 | ..European ICE-TEL project1#0!..U....V3-Certification Authority1.0...U....Darmstadt..141.12.62.26 | ||
| 35 | X509v3 Basic Constraints: critical | ||
| 36 | 0. | ||
| 37 | X509v3 CRL Distribution Points: | ||
| 38 | 0.0.......gmdca@gmd.de | ||
| 39 | Signature Algorithm: md5WithRSAEncryption | ||
| 40 | 69:0c:e1:b7:a7:f2:d8:fb:e8:69:c0:13:cd:37:ad:21:06:22: | ||
| 41 | 4d:e8:c6:db:f1:04:0b:b7:e0:b3:d6:0c:81:03:ce:c3:6a:3e: | ||
| 42 | c7:e7:24:24:a4:92:64:c2:83:83:06:42:53:0e:6f:09:1e:84: | ||
| 43 | 9a:f7:6f:63:9b:94:99:83:d6:a4 | ||
| 44 | -----BEGIN CERTIFICATE----- | ||
| 45 | MIIDTzCCAvmgAwIBAgIBATANBgkqhkiG9w0BAQQFADBcMSEwHwYDVQQKExhFdXJv | ||
| 46 | cGVhbiBJQ0UtVEVMIHByb2plY3QxIzAhBgNVBAsTGlYzLUNlcnRpZmljYXRpb24g | ||
| 47 | QXV0aG9yaXR5MRIwEAYDVQQHEwlEYXJtc3RhZHQwHhcNOTcwNDAyMTczNTU5WhcN | ||
| 48 | OTgwNDAyMTczNTU5WjBrMSEwHwYDVQQKExhFdXJvcGVhbiBJQ0UtVEVMIHByb2pl | ||
| 49 | Y3QxIzAhBgNVBAsTGlYzLUNlcnRpZmljYXRpb24gQXV0aG9yaXR5MRIwEAYDVQQH | ||
| 50 | EwlEYXJtc3RhZHQxDTALBgNVBAMTBFVTRVIwWTAKBgRVCAEBAgICAANLADBIAkEA | ||
| 51 | qKhTY0kbk8PDC2yIEVXefmri+VKg3GklxMi/VeExqM7kqSmFmYoVmt72L+G0UF9e | ||
| 52 | BHWm9HbcPA453Dq+PqRhiwIDAQABo4IBmDCCAZQwHwYDVR0jBBgwFoAUfnLy+DqG | ||
| 53 | nEKINDRmdcPU/NGiETMwHQYDVR0OBBYEFJfc4B8gjSoRmLUx4Sq/ucIYiMrPMA4G | ||
| 54 | A1UdDwEB/wQEAwIB8DAcBgNVHSABAf8EEjAQMAYGBCoDBAUwBgYECQgHBjBDBgNV | ||
| 55 | HREEPDA6gRV1c2VyQGRhcm1zdGFkdC5nbWQuZGWGIWh0dHA6Ly93d3cuZGFybXN0 | ||
| 56 | YWR0LmdtZC5kZS9+dXNlcjCBsQYDVR0SBIGpMIGmgQxnbWRjYUBnbWQuZGWGEWh0 | ||
| 57 | dHA6Ly93d3cuZ21kLmRlghdzYXR1cm4uZGFybXN0YWR0LmdtZC5kZaRcMSEwHwYD | ||
| 58 | VQQKExhFdXJvcGVhbiBJQ0UtVEVMIHByb2plY3QxIzAhBgNVBAsTGlYzLUNlcnRp | ||
| 59 | ZmljYXRpb24gQXV0aG9yaXR5MRIwEAYDVQQHEwlEYXJtc3RhZHSHDDE0MS4xMi42 | ||
| 60 | Mi4yNjAMBgNVHRMBAf8EAjAAMB0GA1UdHwQWMBQwEqAQoA6BDGdtZGNhQGdtZC5k | ||
| 61 | ZTANBgkqhkiG9w0BAQQFAANBAGkM4ben8tj76GnAE803rSEGIk3oxtvxBAu34LPW | ||
| 62 | DIEDzsNqPsfnJCSkkmTCg4MGQlMObwkehJr3b2OblJmD1qQ= | ||
| 63 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/RegTP-4R.pem b/src/lib/libssl/src/certs/expired/RegTP-4R.pem deleted file mode 100644 index 6f2c6abccd..0000000000 --- a/src/lib/libssl/src/certs/expired/RegTP-4R.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | issuer= CN=4R-CA 1:PN+0.2.262.1.10.7.20=#130131,O=Regulierungsbeh\C3\88orde f\C3\88ur Telekommunikation und Post,C=DE | ||
| 2 | notBefore=Jan 21 16:04:53 1999 GMT | ||
| 3 | notAfter=Jan 21 16:04:53 2004 GMT | ||
| 4 | subject= CN=4R-CA 1:PN+0.2.262.1.10.7.20=#130131,O=Regulierungsbeh\C3\88orde f\C3\88ur Telekommunikation und Post,C=DE | ||
| 5 | -----BEGIN CERTIFICATE----- | ||
| 6 | MIICZzCCAdOgAwIBAgIEOwVn1DAKBgYrJAMDAQIFADBvMQswCQYDVQQGEwJERTE9 | ||
| 7 | MDsGA1UEChQ0UmVndWxpZXJ1bmdzYmVoyG9yZGUgZsh1ciBUZWxla29tbXVuaWth | ||
| 8 | dGlvbiB1bmQgUG9zdDEhMAwGBwKCBgEKBxQTATEwEQYDVQQDFAo0Ui1DQSAxOlBO | ||
| 9 | MCIYDzE5OTkwMTIxMTYwNDUzWhgPMjAwNDAxMjExNjA0NTNaMG8xCzAJBgNVBAYT | ||
| 10 | AkRFMT0wOwYDVQQKFDRSZWd1bGllcnVuZ3NiZWjIb3JkZSBmyHVyIFRlbGVrb21t | ||
| 11 | dW5pa2F0aW9uIHVuZCBQb3N0MSEwDAYHAoIGAQoHFBMBMTARBgNVBAMUCjRSLUNB | ||
| 12 | IDE6UE4wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGAjzHbq2asUlqeWbXTQHso | ||
| 13 | aVF6YIPVH3c/B2cbuy9HJ/lnE6x0asOzM2DGDqi47xkdAxPc0LZ0fxO87rkmz7xs | ||
| 14 | jJObnVrMXpyUSDSp5Y0wqKJdsFdr6mGFOQZteIti8AJnr8xMkwnWVyuOlEXsFe1h | ||
| 15 | 5gxwQXrOcPinE6qu1t/3PmECBMAAAAGjEjAQMA4GA1UdDwEB/wQEAwIBBjAKBgYr | ||
| 16 | JAMDAQIFAAOBgQA+RdocBmA2VV9E5aKPBcp01tdZAvvW9Tve3docArVKR/4/yvSX | ||
| 17 | Z+wvzzk+uu4qBp49HN3nqPYMrzbTmjBFu4ce5fkZ7dHF0W1sSBL0rox5z36Aq2re | ||
| 18 | JjfEOEmSnNe0+opuh4FSVOssXblXTE8lEQU0FhhItgDx2ADnWZibaxLG4w== | ||
| 19 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/factory.pem b/src/lib/libssl/src/certs/expired/factory.pem deleted file mode 100644 index 8e28b391b2..0000000000 --- a/src/lib/libssl/src/certs/expired/factory.pem +++ /dev/null | |||
| @@ -1,15 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIICTTCCAbagAwIBAgIBADANBgkqhkiG9w0BAQQFADBMMQswCQYDVQQGEwJHQjEM | ||
| 3 | MAoGA1UEChMDVUNMMRgwFgYDVQQLEw9JQ0UtVEVMIFByb2plY3QxFTATBgNVBAMT | ||
| 4 | DFRydXN0RmFjdG9yeTAeFw05NzA0MjIxNDM5MTRaFw05ODA0MjIxNDM5MTRaMEwx | ||
| 5 | CzAJBgNVBAYTAkdCMQwwCgYDVQQKEwNVQ0wxGDAWBgNVBAsTD0lDRS1URUwgUHJv | ||
| 6 | amVjdDEVMBMGA1UEAxMMVHJ1c3RGYWN0b3J5MIGcMAoGBFUIAQECAgQAA4GNADCB | ||
| 7 | iQKBgQCEieR8NcXkUW1f0G6aC6u0i8q/98JqS6RxK5YmHIGKCkuTWAUjzLfUa4dt | ||
| 8 | U9igGCjTuxaDqlzEim+t/02pmiBZT9HaX++35MjQPUWmsChcYU5WyzGErXi+rQaw | ||
| 9 | zlwS73zM8qiPj/97lXYycWhgL0VaiDSPxRXEUdWoaGruom4mNQIDAQABo0IwQDAd | ||
| 10 | BgNVHQ4EFgQUHal1LZr7oVg5z6lYzrhTgZRCmcUwDgYDVR0PAQH/BAQDAgH2MA8G | ||
| 11 | A1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEEBQADgYEAfaggfl6FZoioecjv0dq8 | ||
| 12 | /DXo/u11iMZvXn08gjX/zl2b4wtPbShOSY5FhkSm8GeySasz+/Nwb/uzfnIhokWi | ||
| 13 | lfPZHtlCWtXbIy/TN51eJyq04ceDCQDWvLC2enVg9KB+GJ34b5c5VaPRzq8MBxsA | ||
| 14 | S7ELuYGtmYgYm9NZOIr7yU0= | ||
| 15 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/rsa-cca.pem b/src/lib/libssl/src/certs/expired/rsa-cca.pem deleted file mode 100644 index 69f5c1c84c..0000000000 --- a/src/lib/libssl/src/certs/expired/rsa-cca.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | subject=/C=US/O=RSA Data Security, Inc./OU=Commercial Certification Authority | ||
| 2 | issuer= /C=US/O=RSA Data Security, Inc./OU=Commercial Certification Authority | ||
| 3 | notBefore=941104185834Z | ||
| 4 | notAfter =991103185834Z | ||
| 5 | -----BEGIN X509 CERTIFICATE----- | ||
| 6 | |||
| 7 | MIICIzCCAZACBQJBAAAWMA0GCSqGSIb3DQEBAgUAMFwxCzAJBgNVBAYTAlVTMSAw | ||
| 8 | HgYDVQQKExdSU0EgRGF0YSBTZWN1cml0eSwgSW5jLjErMCkGA1UECxMiQ29tbWVy | ||
| 9 | Y2lhbCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw05NDExMDQxODU4MzRaFw05 | ||
| 10 | OTExMDMxODU4MzRaMFwxCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0EgRGF0YSBT | ||
| 11 | ZWN1cml0eSwgSW5jLjErMCkGA1UECxMiQ29tbWVyY2lhbCBDZXJ0aWZpY2F0aW9u | ||
| 12 | IEF1dGhvcml0eTCBmzANBgkqhkiG9w0BAQEFAAOBiQAwgYUCfgCk+4Fie84QJ93o | ||
| 13 | 975sbsZwmdu41QUDaSiCnHJ/lj+O7Kwpkj+KFPhCdr69XQO5kNTQvAayUTNfxMK/ | ||
| 14 | touPmbZiImDd298ggrTKoi8tUO2UMt7gVY3UaOLgTNLNBRYulWZcYVI4HlGogqHE | ||
| 15 | 7yXpCuaLK44xZtn42f29O2nZ6wIDAQABMA0GCSqGSIb3DQEBAgUAA34AdrW2EP4j | ||
| 16 | 9/dZYkuwX5zBaLxJu7NJbyFHXSudVMQAKD+YufKKg5tgf+tQx6sFEC097TgCwaVI | ||
| 17 | 0v5loMC86qYjFmZsGySp8+x5NRhPJsjjr1BKx6cxa9B8GJ1Qv6km+iYrRpwUqbtb | ||
| 18 | MJhCKLVLU7tDCZJAuqiqWqTGtotXTcU= | ||
| 19 | -----END X509 CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/rsa-ssca.pem b/src/lib/libssl/src/certs/expired/rsa-ssca.pem deleted file mode 100644 index c9403212d1..0000000000 --- a/src/lib/libssl/src/certs/expired/rsa-ssca.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | subject=/C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority | ||
| 2 | issuer= /C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority | ||
| 3 | notBefore=941109235417Z | ||
| 4 | notAfter =991231235417Z | ||
| 5 | -----BEGIN X509 CERTIFICATE----- | ||
| 6 | |||
| 7 | MIICKTCCAZYCBQJBAAABMA0GCSqGSIb3DQEBAgUAMF8xCzAJBgNVBAYTAlVTMSAw | ||
| 8 | HgYDVQQKExdSU0EgRGF0YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UECxMlU2VjdXJl | ||
| 9 | IFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw05NDExMDkyMzU0MTda | ||
| 10 | Fw05OTEyMzEyMzU0MTdaMF8xCzAJBgNVBAYTAlVTMSAwHgYDVQQKExdSU0EgRGF0 | ||
| 11 | YSBTZWN1cml0eSwgSW5jLjEuMCwGA1UECxMlU2VjdXJlIFNlcnZlciBDZXJ0aWZp | ||
| 12 | Y2F0aW9uIEF1dGhvcml0eTCBmzANBgkqhkiG9w0BAQEFAAOBiQAwgYUCfgCSznrB | ||
| 13 | roM+WqqJg1esJQF2DK2ujiw3zus1eGRUA+WEQFHJv48I4oqCCNIWhjdV6bEhAq12 | ||
| 14 | aIGaBaJLyUslZiJWbIgHj/eBWW2EB2VwE3F2Ppt3TONQiVaYSLkdpykaEy5KEVmc | ||
| 15 | HhXVSVQsczppgrGXOZxtcGdI5d0t1sgeewIDAQABMA0GCSqGSIb3DQEBAgUAA34A | ||
| 16 | iNHReSHO4ovo+MF9NFM/YYPZtgs4F7boviGNjwC4i1N+RGceIr2XJ+CchcxK9oU7 | ||
| 17 | suK+ktPlDemvXA4MRpX/oRxePug2WHpzpgr4IhFrwwk4fia7c+8AvQKk8xQNMD9h | ||
| 18 | cHsg/jKjn7P0Z1LctO6EjJY2IN6BCINxIYoPnqk= | ||
| 19 | -----END X509 CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/vsign2.pem b/src/lib/libssl/src/certs/expired/vsign2.pem deleted file mode 100644 index d8bdd8c812..0000000000 --- a/src/lib/libssl/src/certs/expired/vsign2.pem +++ /dev/null | |||
| @@ -1,18 +0,0 @@ | |||
| 1 | subject=/C=US/O=VeriSign, Inc./OU=Class 2 Public Primary Certification Authority | ||
| 2 | notBefore=Jan 29 00:00:00 1996 GMT | ||
| 3 | notAfter=Jan 7 23:59:59 2004 GMT | ||
| 4 | -----BEGIN CERTIFICATE----- | ||
| 5 | MIICPTCCAaYCEQC6WslMBTuS1qe2307QU5INMA0GCSqGSIb3DQEBAgUAMF8xCzAJ | ||
| 6 | BgNVBAYTAlVTMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjE3MDUGA1UECxMuQ2xh | ||
| 7 | c3MgMiBQdWJsaWMgUHJpbWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw05 | ||
| 8 | NjAxMjkwMDAwMDBaFw0wNDAxMDcyMzU5NTlaMF8xCzAJBgNVBAYTAlVTMRcwFQYD | ||
| 9 | VQQKEw5WZXJpU2lnbiwgSW5jLjE3MDUGA1UECxMuQ2xhc3MgMiBQdWJsaWMgUHJp | ||
| 10 | bWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTCBnzANBgkqhkiG9w0BAQEFAAOB | ||
| 11 | jQAwgYkCgYEAtlqLow1qI4OAa885h/QhEzMGTCWi7VUSl8WngLn6g8EgoPovFQ18 | ||
| 12 | oWBrfnks+gYPOq72G2+x0v8vKFJfg31LxHq3+GYfgFT8t8KOWUoUV0bRmpO+QZED | ||
| 13 | uxWAk1zr58wIbD8+s0r8/0tsI9VQgiZEGY4jw3HqGSRHBJ51v8imAB8CAwEAATAN | ||
| 14 | BgkqhkiG9w0BAQIFAAOBgQC2AB+TV6QHp0DOZUA/VV7t7/pUSaUw1iF8YYfug5ML | ||
| 15 | v7Qz8pisnwa/TqjOFIFMywROWMPPX+5815pvy0GKt3+BuP+EYcYnQ2UdDOyxAArd | ||
| 16 | G6S7x3ggKLKi3TaVLuFUT79guXdoEZkj6OpS6KoATmdOu5C1RZtG644W78QzWzM9 | ||
| 17 | 1Q== | ||
| 18 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/expired/vsign3.pem b/src/lib/libssl/src/certs/expired/vsign3.pem deleted file mode 100644 index aa5bb4c1f3..0000000000 --- a/src/lib/libssl/src/certs/expired/vsign3.pem +++ /dev/null | |||
| @@ -1,18 +0,0 @@ | |||
| 1 | subject=/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority | ||
| 2 | notBefore=Jan 29 00:00:00 1996 GMT | ||
| 3 | notAfter=Jan 7 23:59:59 2004 GMT | ||
| 4 | -----BEGIN CERTIFICATE----- | ||
| 5 | MIICPTCCAaYCEQDknv3zOugOz6URPhmkJAIyMA0GCSqGSIb3DQEBAgUAMF8xCzAJ | ||
| 6 | BgNVBAYTAlVTMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjE3MDUGA1UECxMuQ2xh | ||
| 7 | c3MgMyBQdWJsaWMgUHJpbWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw05 | ||
| 8 | NjAxMjkwMDAwMDBaFw0wNDAxMDcyMzU5NTlaMF8xCzAJBgNVBAYTAlVTMRcwFQYD | ||
| 9 | VQQKEw5WZXJpU2lnbiwgSW5jLjE3MDUGA1UECxMuQ2xhc3MgMyBQdWJsaWMgUHJp | ||
| 10 | bWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTCBnzANBgkqhkiG9w0BAQEFAAOB | ||
| 11 | jQAwgYkCgYEAyVxZnvIbigEUtBDfBEDb41evakVAj4QMC9Ez2dkRz+4CWB8l9yqo | ||
| 12 | RAWq7AMfeH+ek7maAKojfdashaJjRcdyJ8z0TMZ1cdI5709C8HXfCpDGjiBvmA/4 | ||
| 13 | rCNfcCk2pMmG57GaIMtTpYXnPb59mv4kRTPcdhXtD6JxZExlLoFoRacCAwEAATAN | ||
| 14 | BgkqhkiG9w0BAQIFAAOBgQBhcOwvP579K+ZoVCGwZ3kIDCCWMYoNer62Jt95LCJp | ||
| 15 | STbjl3diYaIy13pUITa6Ask05yXaRDWw0lyAXbOU+Pms7qRgdSoflUkjsUp89LNH | ||
| 16 | ciFbfperVKxi513srpvSybIk+4Kt6WcVS7qqpvCXoPawl1cAyAw8CaCCBLpB2veZ | ||
| 17 | pA== | ||
| 18 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/thawteCb.pem b/src/lib/libssl/src/certs/thawteCb.pem deleted file mode 100644 index 27df192f0d..0000000000 --- a/src/lib/libssl/src/certs/thawteCb.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIIDEzCCAnygAwIBAgIBATANBgkqhkiG9w0BAQQFADCBxDELMAkGA1UEBhMCWkEx | ||
| 3 | FTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMR0wGwYD | ||
| 4 | VQQKExRUaGF3dGUgQ29uc3VsdGluZyBjYzEoMCYGA1UECxMfQ2VydGlmaWNhdGlv | ||
| 5 | biBTZXJ2aWNlcyBEaXZpc2lvbjEZMBcGA1UEAxMQVGhhd3RlIFNlcnZlciBDQTEm | ||
| 6 | MCQGCSqGSIb3DQEJARYXc2VydmVyLWNlcnRzQHRoYXd0ZS5jb20wHhcNOTYwODAx | ||
| 7 | MDAwMDAwWhcNMjAxMjMxMjM1OTU5WjCBxDELMAkGA1UEBhMCWkExFTATBgNVBAgT | ||
| 8 | DFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMR0wGwYDVQQKExRUaGF3 | ||
| 9 | dGUgQ29uc3VsdGluZyBjYzEoMCYGA1UECxMfQ2VydGlmaWNhdGlvbiBTZXJ2aWNl | ||
| 10 | cyBEaXZpc2lvbjEZMBcGA1UEAxMQVGhhd3RlIFNlcnZlciBDQTEmMCQGCSqGSIb3 | ||
| 11 | DQEJARYXc2VydmVyLWNlcnRzQHRoYXd0ZS5jb20wgZ8wDQYJKoZIhvcNAQEBBQAD | ||
| 12 | gY0AMIGJAoGBANOkUG7I/1Zr5s9dtuoMaHVHoqrC2oQl/Kj0R1HahbUgdJSGHg91 | ||
| 13 | yekIYfUGbTBuFRkC6VLAYttNmZ7iagxEOM3+vuNkCXDF/rFrKbYvScg71CcEJRCX | ||
| 14 | L+eQbcAoQpnXTEPew/UhbVSfXcNY4cDk2VuwuNy0e982OsK1ZiIS1ocNAgMBAAGj | ||
| 15 | EzARMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEEBQADgYEAB/pMaVz7lcxG | ||
| 16 | 7oWDTSEwjsrZqG9JGubaUeNgcGyEYRGhGshIPllDfU+VPaGLtwtimHp1it2ITk6e | ||
| 17 | QNuozDJ0uW8NxuOzRAvZim+aKZuZGCg70eNAKJpaPNW15yAbi8qkq43pUdniTCxZ | ||
| 18 | qdq5snUb9kLy78fyGPmJvKP/iiMucEc= | ||
| 19 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/thawteCp.pem b/src/lib/libssl/src/certs/thawteCp.pem deleted file mode 100644 index 51285e33c2..0000000000 --- a/src/lib/libssl/src/certs/thawteCp.pem +++ /dev/null | |||
| @@ -1,19 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIIDJzCCApCgAwIBAgIBATANBgkqhkiG9w0BAQQFADCBzjELMAkGA1UEBhMCWkEx | ||
| 3 | FTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJQ2FwZSBUb3duMR0wGwYD | ||
| 4 | VQQKExRUaGF3dGUgQ29uc3VsdGluZyBjYzEoMCYGA1UECxMfQ2VydGlmaWNhdGlv | ||
| 5 | biBTZXJ2aWNlcyBEaXZpc2lvbjEhMB8GA1UEAxMYVGhhd3RlIFByZW1pdW0gU2Vy | ||
| 6 | dmVyIENBMSgwJgYJKoZIhvcNAQkBFhlwcmVtaXVtLXNlcnZlckB0aGF3dGUuY29t | ||
| 7 | MB4XDTk2MDgwMTAwMDAwMFoXDTIwMTIzMTIzNTk1OVowgc4xCzAJBgNVBAYTAlpB | ||
| 8 | MRUwEwYDVQQIEwxXZXN0ZXJuIENhcGUxEjAQBgNVBAcTCUNhcGUgVG93bjEdMBsG | ||
| 9 | A1UEChMUVGhhd3RlIENvbnN1bHRpbmcgY2MxKDAmBgNVBAsTH0NlcnRpZmljYXRp | ||
| 10 | b24gU2VydmljZXMgRGl2aXNpb24xITAfBgNVBAMTGFRoYXd0ZSBQcmVtaXVtIFNl | ||
| 11 | cnZlciBDQTEoMCYGCSqGSIb3DQEJARYZcHJlbWl1bS1zZXJ2ZXJAdGhhd3RlLmNv | ||
| 12 | bTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA0jY2aovXwlue2oFBYo847kkE | ||
| 13 | VdbQ7xwblRZH7xhINTpS9CtqBo87L+pW46+GjZ4X9560ZXUCTe/LCaIhUdib0GfQ | ||
| 14 | ug2SBhRz1JPLlyoAnFxODLz6FVL88kRu2hFKbgifLy3j+ao6hnO2RlNYyIkFvYMR | ||
| 15 | uHM/qgeN9EJN50CdHDcCAwEAAaMTMBEwDwYDVR0TAQH/BAUwAwEB/zANBgkqhkiG | ||
| 16 | 9w0BAQQFAAOBgQAmSCwWwlj66BZ0DKqqX1Q/8tfJeGBeXm43YyJ3Nn6yF8Q0ufUI | ||
| 17 | hfzJATj/Tb7yFkJD57taRvvBxhEf8UqwKEbJw8RCfbz6q1lu1bdRiBHjpIUZa4JM | ||
| 18 | pAwSremkrj/xw0llmozFyD4lt5SZu5IycQfwhl7tUCemDaYj+bvLpgcUQg== | ||
| 19 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/vsign1.pem b/src/lib/libssl/src/certs/vsign1.pem deleted file mode 100644 index 277894d1ff..0000000000 --- a/src/lib/libssl/src/certs/vsign1.pem +++ /dev/null | |||
| @@ -1,17 +0,0 @@ | |||
| 1 | subject=/C=US/O=VeriSign, Inc./OU=Class 1 Public Primary Certification Authority | ||
| 2 | notBefore=Jan 29 00:00:00 1996 GMT | ||
| 3 | notAfter=Jan 7 23:59:59 2020 GMT | ||
| 4 | -----BEGIN CERTIFICATE----- | ||
| 5 | MIICPDCCAaUCEDJQM89Q0VbzXIGtZVxPyCUwDQYJKoZIhvcNAQECBQAwXzELMAkG | ||
| 6 | A1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMTcwNQYDVQQLEy5DbGFz | ||
| 7 | cyAxIFB1YmxpYyBQcmltYXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTk2 | ||
| 8 | MDEyOTAwMDAwMFoXDTIwMDEwNzIzNTk1OVowXzELMAkGA1UEBhMCVVMxFzAVBgNV | ||
| 9 | BAoTDlZlcmlTaWduLCBJbmMuMTcwNQYDVQQLEy5DbGFzcyAxIFB1YmxpYyBQcmlt | ||
| 10 | YXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIGfMA0GCSqGSIb3DQEBAQUAA4GN | ||
| 11 | ADCBiQKBgQDlGb9to1ZhLZlIcfZn3rmN67eehoAKkQ76OCWvRoiC5XOooJskXQ0f | ||
| 12 | zGVuDLDQVoQYh5oGmxChc9+0WDlrbsH2FdWoqD+qEgaNMax/sDTXjzRniAnNFBHi | ||
| 13 | TkVWaR94AoDa3EeRKbs2yWNcxeDXLYd7obcysHswuiovMaruo2fa2wIDAQABMA0G | ||
| 14 | CSqGSIb3DQEBAgUAA4GBAEtEZmBoZOSYG/OwcuaViXzde7OVwB0u2NgZ0C00PcZQ | ||
| 15 | mhCGjKo/O6gE/DdSlcPZydvN8oYGxLEb8IKIMEKOF1AcZHq4PplJdJf8rAJD+5YM | ||
| 16 | VgQlDHx8h50kp9jwMim1pN9dokzFFjKoQvZFprY2ueC/ZTaTwtLXa9zeWdaiNfhF | ||
| 17 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/vsign3.pem b/src/lib/libssl/src/certs/vsign3.pem deleted file mode 100644 index 4b8c0251cb..0000000000 --- a/src/lib/libssl/src/certs/vsign3.pem +++ /dev/null | |||
| @@ -1,17 +0,0 @@ | |||
| 1 | subject=/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority | ||
| 2 | notBefore=Jan 29 00:00:00 1996 GMT | ||
| 3 | notAfter=Aug 1 23:59:59 2028 GMT | ||
| 4 | -----BEGIN CERTIFICATE----- | ||
| 5 | MIICPDCCAaUCEHC65B0Q2Sk0tjjKewPMur8wDQYJKoZIhvcNAQECBQAwXzELMAkG | ||
| 6 | A1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMTcwNQYDVQQLEy5DbGFz | ||
| 7 | cyAzIFB1YmxpYyBQcmltYXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTk2 | ||
| 8 | MDEyOTAwMDAwMFoXDTI4MDgwMTIzNTk1OVowXzELMAkGA1UEBhMCVVMxFzAVBgNV | ||
| 9 | BAoTDlZlcmlTaWduLCBJbmMuMTcwNQYDVQQLEy5DbGFzcyAzIFB1YmxpYyBQcmlt | ||
| 10 | YXJ5IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIGfMA0GCSqGSIb3DQEBAQUAA4GN | ||
| 11 | ADCBiQKBgQDJXFme8huKARS0EN8EQNvjV69qRUCPhAwL0TPZ2RHP7gJYHyX3KqhE | ||
| 12 | BarsAx94f56TuZoAqiN91qyFomNFx3InzPRMxnVx0jnvT0Lwdd8KkMaOIG+YD/is | ||
| 13 | I19wKTakyYbnsZogy1Olhec9vn2a/iRFM9x2Fe0PonFkTGUugWhFpwIDAQABMA0G | ||
| 14 | CSqGSIb3DQEBAgUAA4GBALtMEivPLCYATxQT3ab7/AoRhIzzKBxnki98tsX63/Do | ||
| 15 | lbwdj2wsqFHMc9ikwFPwTtYmwHYBV4GSXiHx0bH/59AhWM1pF+NEHJwZRDmJXNyc | ||
| 16 | AA9WjQKZ7aKQRUzkuxCkPfAyAw7xzvjoyVGM5mKf5p/AfbdynMk2OmufTqj/ZA1k | ||
| 17 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/vsignss.pem b/src/lib/libssl/src/certs/vsignss.pem deleted file mode 100644 index 5de48bfcf9..0000000000 --- a/src/lib/libssl/src/certs/vsignss.pem +++ /dev/null | |||
| @@ -1,17 +0,0 @@ | |||
| 1 | subject=/C=US/O=RSA Data Security, Inc./OU=Secure Server Certification Authority | ||
| 2 | notBefore=Nov 9 00:00:00 1994 GMT | ||
| 3 | notAfter=Jan 7 23:59:59 2010 GMT | ||
| 4 | -----BEGIN CERTIFICATE----- | ||
| 5 | MIICNDCCAaECEAKtZn5ORf5eV288mBle3cAwDQYJKoZIhvcNAQECBQAwXzELMAkG | ||
| 6 | A1UEBhMCVVMxIDAeBgNVBAoTF1JTQSBEYXRhIFNlY3VyaXR5LCBJbmMuMS4wLAYD | ||
| 7 | VQQLEyVTZWN1cmUgU2VydmVyIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTk0 | ||
| 8 | MTEwOTAwMDAwMFoXDTEwMDEwNzIzNTk1OVowXzELMAkGA1UEBhMCVVMxIDAeBgNV | ||
| 9 | BAoTF1JTQSBEYXRhIFNlY3VyaXR5LCBJbmMuMS4wLAYDVQQLEyVTZWN1cmUgU2Vy | ||
| 10 | dmVyIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIGbMA0GCSqGSIb3DQEBAQUAA4GJ | ||
| 11 | ADCBhQJ+AJLOesGugz5aqomDV6wlAXYMra6OLDfO6zV4ZFQD5YRAUcm/jwjiioII | ||
| 12 | 0haGN1XpsSECrXZogZoFokvJSyVmIlZsiAeP94FZbYQHZXATcXY+m3dM41CJVphI | ||
| 13 | uR2nKRoTLkoRWZweFdVJVCxzOmmCsZc5nG1wZ0jl3S3WyB57AgMBAAEwDQYJKoZI | ||
| 14 | hvcNAQECBQADfgBl3X7hsuyw4jrg7HFGmhkRuNPHoLQDQCYCPgmc4RKz0Vr2N6W3 | ||
| 15 | YQO2WxZpO8ZECAyIUwxrl0nHPjXcbLm7qt9cuzovk2C2qUtN8iD3zV9/ZHuO3ABc | ||
| 16 | 1/p3yjkWWW8O6tO1g39NTUJWdrTJXwT4OPjr0l91X817/OWOgHz8UA== | ||
| 17 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/certs/wellsfgo.pem b/src/lib/libssl/src/certs/wellsfgo.pem deleted file mode 100644 index 2ba88cdda7..0000000000 --- a/src/lib/libssl/src/certs/wellsfgo.pem +++ /dev/null | |||
| @@ -1,23 +0,0 @@ | |||
| 1 | -----BEGIN CERTIFICATE----- | ||
| 2 | MIID5TCCAs2gAwIBAgIEOeSXnjANBgkqhkiG9w0BAQUFADCBgjELMAkGA1UEBhMC | ||
| 3 | VVMxFDASBgNVBAoTC1dlbGxzIEZhcmdvMSwwKgYDVQQLEyNXZWxscyBGYXJnbyBD | ||
| 4 | ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEvMC0GA1UEAxMmV2VsbHMgRmFyZ28gUm9v | ||
| 5 | dCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkwHhcNMDAxMDExMTY0MTI4WhcNMjEwMTE0 | ||
| 6 | MTY0MTI4WjCBgjELMAkGA1UEBhMCVVMxFDASBgNVBAoTC1dlbGxzIEZhcmdvMSww | ||
| 7 | KgYDVQQLEyNXZWxscyBGYXJnbyBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEvMC0G | ||
| 8 | A1UEAxMmV2VsbHMgRmFyZ28gUm9vdCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkwggEi | ||
| 9 | MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVqDM7Jvk0/82bfuUER84A4n13 | ||
| 10 | 5zHCLielTWi5MbqNQ1mXx3Oqfz1cQJ4F5aHiidlMuD+b+Qy0yGIZLEWukR5zcUHE | ||
| 11 | SxP9cMIlrCL1dQu3U+SlK93OvRw6esP3E48mVJwWa2uv+9iWsWCaSOAlIiR5NM4O | ||
| 12 | JgALTqv9i86C1y8IcGjBqAr5dE8Hq6T54oN+J3N0Prj5OEL8pahbSCOz6+MlsoCu | ||
| 13 | ltQKnMJ4msZoGK43YjdeUXWoWGPAUe5AeH6orxqg4bB4nVCMe+ez/I4jsNtlAHCE | ||
| 14 | AQgAFG5Uhpq6zPk3EPbg3oQtnaSFN9OH4xXQwReQfhkhahKpdv0SAulPIV4XAgMB | ||
| 15 | AAGjYTBfMA8GA1UdEwEB/wQFMAMBAf8wTAYDVR0gBEUwQzBBBgtghkgBhvt7hwcB | ||
| 16 | CzAyMDAGCCsGAQUFBwIBFiRodHRwOi8vd3d3LndlbGxzZmFyZ28uY29tL2NlcnRw | ||
| 17 | b2xpY3kwDQYJKoZIhvcNAQEFBQADggEBANIn3ZwKdyu7IvICtUpKkfnRLb7kuxpo | ||
| 18 | 7w6kAOnu5+/u9vnldKTC2FJYxHT7zmu1Oyl5GFrvm+0fazbuSCUlFLZWohDo7qd/ | ||
| 19 | 0D+j0MNdJu4HzMPBJCGHHt8qElNvQRbn7a6U+oxy+hNH8Dx+rn0ROhPs7fpvcmR7 | ||
| 20 | nX1/Jv16+yWt6j4pf0zjAFcysLPp7VMX2YuyFA4w6OXVE8Zkr8QA1dhYJPz1j+zx | ||
| 21 | x32l2w8n0cbyQIjmH/ZhqPRCyLk306m+LFZ4wnKbWV01QIroTmMatukgalHizqSQ | ||
| 22 | 33ZwmVxwQ023tqcZZE6St8WRPH9IFmV7Fv3L/PvZ1dZPIWU7Sn9Ho/s= | ||
| 23 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/crypto/LPdir_nyi.c b/src/lib/libssl/src/crypto/LPdir_nyi.c new file mode 100644 index 0000000000..6c1a50e6a8 --- /dev/null +++ b/src/lib/libssl/src/crypto/LPdir_nyi.c | |||
| @@ -0,0 +1,42 @@ | |||
| 1 | /* $LP: LPlib/source/LPdir_win.c,v 1.1 2004/06/14 10:07:56 _cvs_levitte Exp $ */ | ||
| 2 | /* | ||
| 3 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 4 | * All rights reserved. | ||
| 5 | * | ||
| 6 | * Redistribution and use in source and binary forms, with or without | ||
| 7 | * modification, are permitted provided that the following conditions | ||
| 8 | * are met: | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in the | ||
| 13 | * documentation and/or other materials provided with the distribution. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND | ||
| 16 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 17 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 18 | * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE | ||
| 19 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 20 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 21 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 22 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 23 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 24 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 25 | * SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | |||
| 28 | #ifndef LPDIR_H | ||
| 29 | #include "LPdir.h" | ||
| 30 | #endif | ||
| 31 | |||
| 32 | struct LP_dir_context_st { void *dummy; }; | ||
| 33 | const char *LP_find_file(LP_DIR_CTX **ctx, const char *directory) | ||
| 34 | { | ||
| 35 | errno = EINVAL; | ||
| 36 | return 0; | ||
| 37 | } | ||
| 38 | int LP_find_file_end(LP_DIR_CTX **ctx) | ||
| 39 | { | ||
| 40 | errno = EINVAL; | ||
| 41 | return 0; | ||
| 42 | } | ||
diff --git a/src/lib/libssl/src/crypto/LPdir_unix.c b/src/lib/libssl/src/crypto/LPdir_unix.c new file mode 100644 index 0000000000..b004cd99e8 --- /dev/null +++ b/src/lib/libssl/src/crypto/LPdir_unix.c | |||
| @@ -0,0 +1,127 @@ | |||
| 1 | /* $LP: LPlib/source/LPdir_unix.c,v 1.11 2004/09/23 22:07:22 _cvs_levitte Exp $ */ | ||
| 2 | /* | ||
| 3 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 4 | * All rights reserved. | ||
| 5 | * | ||
| 6 | * Redistribution and use in source and binary forms, with or without | ||
| 7 | * modification, are permitted provided that the following conditions | ||
| 8 | * are met: | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in the | ||
| 13 | * documentation and/or other materials provided with the distribution. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS | ||
| 16 | * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT | ||
| 17 | * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR | ||
| 18 | * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | ||
| 19 | * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 20 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT | ||
| 21 | * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | ||
| 22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | ||
| 23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | ||
| 24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE | ||
| 25 | * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | |||
| 28 | #include <stddef.h> | ||
| 29 | #include <stdlib.h> | ||
| 30 | #include <limits.h> | ||
| 31 | #include <string.h> | ||
| 32 | #include <sys/types.h> | ||
| 33 | #include <dirent.h> | ||
| 34 | #include <errno.h> | ||
| 35 | #ifndef LPDIR_H | ||
| 36 | #include "LPdir.h" | ||
| 37 | #endif | ||
| 38 | |||
| 39 | /* The POSIXly macro for the maximum number of characters in a file path | ||
| 40 | is NAME_MAX. However, some operating systems use PATH_MAX instead. | ||
| 41 | Therefore, it seems natural to first check for PATH_MAX and use that, | ||
| 42 | and if it doesn't exist, use NAME_MAX. */ | ||
| 43 | #if defined(PATH_MAX) | ||
| 44 | # define LP_ENTRY_SIZE PATH_MAX | ||
| 45 | #elif defined(NAME_MAX) | ||
| 46 | # define LP_ENTRY_SIZE NAME_MAX | ||
| 47 | #endif | ||
| 48 | |||
| 49 | /* Of course, there's the possibility that neither PATH_MAX nor NAME_MAX | ||
| 50 | exist. It's also possible that NAME_MAX exists but is define to a | ||
| 51 | very small value (HP-UX offers 14), so we need to check if we got a | ||
| 52 | result, and if it meets a minimum standard, and create or change it | ||
| 53 | if not. */ | ||
| 54 | #if !defined(LP_ENTRY_SIZE) || LP_ENTRY_SIZE<255 | ||
| 55 | # undef LP_ENTRY_SIZE | ||
| 56 | # define LP_ENTRY_SIZE 255 | ||
| 57 | #endif | ||
| 58 | |||
| 59 | struct LP_dir_context_st | ||
| 60 | { | ||
| 61 | DIR *dir; | ||
| 62 | char entry_name[LP_ENTRY_SIZE+1]; | ||
| 63 | }; | ||
| 64 | |||
| 65 | const char *LP_find_file(LP_DIR_CTX **ctx, const char *directory) | ||
| 66 | { | ||
| 67 | struct dirent *direntry = NULL; | ||
| 68 | |||
| 69 | if (ctx == NULL || directory == NULL) | ||
| 70 | { | ||
| 71 | errno = EINVAL; | ||
| 72 | return 0; | ||
| 73 | } | ||
| 74 | |||
| 75 | errno = 0; | ||
| 76 | if (*ctx == NULL) | ||
| 77 | { | ||
| 78 | *ctx = (LP_DIR_CTX *)malloc(sizeof(LP_DIR_CTX)); | ||
| 79 | if (*ctx == NULL) | ||
| 80 | { | ||
| 81 | errno = ENOMEM; | ||
| 82 | return 0; | ||
| 83 | } | ||
| 84 | memset(*ctx, '\0', sizeof(LP_DIR_CTX)); | ||
| 85 | |||
| 86 | (*ctx)->dir = opendir(directory); | ||
| 87 | if ((*ctx)->dir == NULL) | ||
| 88 | { | ||
| 89 | int save_errno = errno; /* Probably not needed, but I'm paranoid */ | ||
| 90 | free(*ctx); | ||
| 91 | *ctx = NULL; | ||
| 92 | errno = save_errno; | ||
| 93 | return 0; | ||
| 94 | } | ||
| 95 | } | ||
| 96 | |||
| 97 | direntry = readdir((*ctx)->dir); | ||
| 98 | if (direntry == NULL) | ||
| 99 | { | ||
| 100 | return 0; | ||
| 101 | } | ||
| 102 | |||
| 103 | strncpy((*ctx)->entry_name, direntry->d_name, sizeof((*ctx)->entry_name) - 1); | ||
| 104 | (*ctx)->entry_name[sizeof((*ctx)->entry_name) - 1] = '\0'; | ||
| 105 | return (*ctx)->entry_name; | ||
| 106 | } | ||
| 107 | |||
| 108 | int LP_find_file_end(LP_DIR_CTX **ctx) | ||
| 109 | { | ||
| 110 | if (ctx != NULL && *ctx != NULL) | ||
| 111 | { | ||
| 112 | int ret = closedir((*ctx)->dir); | ||
| 113 | |||
| 114 | free(*ctx); | ||
| 115 | switch (ret) | ||
| 116 | { | ||
| 117 | case 0: | ||
| 118 | return 1; | ||
| 119 | case -1: | ||
| 120 | return 0; | ||
| 121 | default: | ||
| 122 | break; | ||
| 123 | } | ||
| 124 | } | ||
| 125 | errno = EINVAL; | ||
| 126 | return 0; | ||
| 127 | } | ||
diff --git a/src/lib/libssl/src/crypto/LPdir_vms.c b/src/lib/libssl/src/crypto/LPdir_vms.c new file mode 100644 index 0000000000..85b427a623 --- /dev/null +++ b/src/lib/libssl/src/crypto/LPdir_vms.c | |||
| @@ -0,0 +1,199 @@ | |||
| 1 | /* $LP: LPlib/source/LPdir_vms.c,v 1.20 2004/08/26 13:36:05 _cvs_levitte Exp $ */ | ||
| 2 | /* | ||
| 3 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 4 | * All rights reserved. | ||
| 5 | * | ||
| 6 | * Redistribution and use in source and binary forms, with or without | ||
| 7 | * modification, are permitted provided that the following conditions | ||
| 8 | * are met: | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in the | ||
| 13 | * documentation and/or other materials provided with the distribution. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS | ||
| 16 | * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT | ||
| 17 | * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR | ||
| 18 | * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | ||
| 19 | * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 20 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT | ||
| 21 | * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | ||
| 22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | ||
| 23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | ||
| 24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE | ||
| 25 | * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | |||
| 28 | #include <stddef.h> | ||
| 29 | #include <stdlib.h> | ||
| 30 | #include <string.h> | ||
| 31 | #include <errno.h> | ||
| 32 | #include <descrip.h> | ||
| 33 | #include <namdef.h> | ||
| 34 | #include <rmsdef.h> | ||
| 35 | #include <libfildef.h> | ||
| 36 | #include <lib$routines.h> | ||
| 37 | #include <strdef.h> | ||
| 38 | #include <str$routines.h> | ||
| 39 | #include <stsdef.h> | ||
| 40 | #ifndef LPDIR_H | ||
| 41 | #include "LPdir.h" | ||
| 42 | #endif | ||
| 43 | |||
| 44 | /* Because some compiler options hide this macor */ | ||
| 45 | #ifndef EVMSERR | ||
| 46 | #define EVMSERR 65535 /* error for non-translatable VMS errors */ | ||
| 47 | #endif | ||
| 48 | |||
| 49 | struct LP_dir_context_st | ||
| 50 | { | ||
| 51 | unsigned long VMS_context; | ||
| 52 | #ifdef NAML$C_MAXRSS | ||
| 53 | char filespec[NAML$C_MAXRSS+1]; | ||
| 54 | char result[NAML$C_MAXRSS+1]; | ||
| 55 | #else | ||
| 56 | char filespec[256]; | ||
| 57 | char result[256]; | ||
| 58 | #endif | ||
| 59 | struct dsc$descriptor_d filespec_dsc; | ||
| 60 | struct dsc$descriptor_d result_dsc; | ||
| 61 | }; | ||
| 62 | |||
| 63 | const char *LP_find_file(LP_DIR_CTX **ctx, const char *directory) | ||
| 64 | { | ||
| 65 | int status; | ||
| 66 | char *p, *r; | ||
| 67 | size_t l; | ||
| 68 | unsigned long flags = 0; | ||
| 69 | #ifdef NAML$C_MAXRSS | ||
| 70 | flags |= LIB$M_FIL_LONG_NAMES; | ||
| 71 | #endif | ||
| 72 | |||
| 73 | if (ctx == NULL || directory == NULL) | ||
| 74 | { | ||
| 75 | errno = EINVAL; | ||
| 76 | return 0; | ||
| 77 | } | ||
| 78 | |||
| 79 | errno = 0; | ||
| 80 | if (*ctx == NULL) | ||
| 81 | { | ||
| 82 | size_t filespeclen = strlen(directory); | ||
| 83 | char *filespec = NULL; | ||
| 84 | |||
| 85 | /* MUST be a VMS directory specification! Let's estimate if it is. */ | ||
| 86 | if (directory[filespeclen-1] != ']' | ||
| 87 | && directory[filespeclen-1] != '>' | ||
| 88 | && directory[filespeclen-1] != ':') | ||
| 89 | { | ||
| 90 | errno = EINVAL; | ||
| 91 | return 0; | ||
| 92 | } | ||
| 93 | |||
| 94 | filespeclen += 4; /* "*.*;" */ | ||
| 95 | |||
| 96 | if (filespeclen > | ||
| 97 | #ifdef NAML$C_MAXRSS | ||
| 98 | NAML$C_MAXRSS | ||
| 99 | #else | ||
| 100 | 255 | ||
| 101 | #endif | ||
| 102 | ) | ||
| 103 | { | ||
| 104 | errno = ENAMETOOLONG; | ||
| 105 | return 0; | ||
| 106 | } | ||
| 107 | |||
| 108 | *ctx = (LP_DIR_CTX *)malloc(sizeof(LP_DIR_CTX)); | ||
| 109 | if (*ctx == NULL) | ||
| 110 | { | ||
| 111 | errno = ENOMEM; | ||
| 112 | return 0; | ||
| 113 | } | ||
| 114 | memset(*ctx, '\0', sizeof(LP_DIR_CTX)); | ||
| 115 | |||
| 116 | strcpy((*ctx)->filespec,directory); | ||
| 117 | strcat((*ctx)->filespec,"*.*;"); | ||
| 118 | (*ctx)->filespec_dsc.dsc$w_length = filespeclen; | ||
| 119 | (*ctx)->filespec_dsc.dsc$b_dtype = DSC$K_DTYPE_T; | ||
| 120 | (*ctx)->filespec_dsc.dsc$b_class = DSC$K_CLASS_S; | ||
| 121 | (*ctx)->filespec_dsc.dsc$a_pointer = (*ctx)->filespec; | ||
| 122 | (*ctx)->result_dsc.dsc$w_length = 0; | ||
| 123 | (*ctx)->result_dsc.dsc$b_dtype = DSC$K_DTYPE_T; | ||
| 124 | (*ctx)->result_dsc.dsc$b_class = DSC$K_CLASS_D; | ||
| 125 | (*ctx)->result_dsc.dsc$a_pointer = 0; | ||
| 126 | } | ||
| 127 | |||
| 128 | (*ctx)->result_dsc.dsc$w_length = 0; | ||
| 129 | (*ctx)->result_dsc.dsc$b_dtype = DSC$K_DTYPE_T; | ||
| 130 | (*ctx)->result_dsc.dsc$b_class = DSC$K_CLASS_D; | ||
| 131 | (*ctx)->result_dsc.dsc$a_pointer = 0; | ||
| 132 | |||
| 133 | status = lib$find_file(&(*ctx)->filespec_dsc, &(*ctx)->result_dsc, | ||
| 134 | &(*ctx)->VMS_context, 0, 0, 0, &flags); | ||
| 135 | |||
| 136 | if (status == RMS$_NMF) | ||
| 137 | { | ||
| 138 | errno = 0; | ||
| 139 | vaxc$errno = status; | ||
| 140 | return NULL; | ||
| 141 | } | ||
| 142 | |||
| 143 | if(!$VMS_STATUS_SUCCESS(status)) | ||
| 144 | { | ||
| 145 | errno = EVMSERR; | ||
| 146 | vaxc$errno = status; | ||
| 147 | return NULL; | ||
| 148 | } | ||
| 149 | |||
| 150 | /* Quick, cheap and dirty way to discard any device and directory, | ||
| 151 | since we only want file names */ | ||
| 152 | l = (*ctx)->result_dsc.dsc$w_length; | ||
| 153 | p = (*ctx)->result_dsc.dsc$a_pointer; | ||
| 154 | r = p; | ||
| 155 | for (; *p; p++) | ||
| 156 | { | ||
| 157 | if (*p == '^' && p[1] != '\0') /* Take care of ODS-5 escapes */ | ||
| 158 | { | ||
| 159 | p++; | ||
| 160 | } | ||
| 161 | else if (*p == ':' || *p == '>' || *p == ']') | ||
| 162 | { | ||
| 163 | l -= p + 1 - r; | ||
| 164 | r = p + 1; | ||
| 165 | } | ||
| 166 | else if (*p == ';') | ||
| 167 | { | ||
| 168 | l = p - r; | ||
| 169 | break; | ||
| 170 | } | ||
| 171 | } | ||
| 172 | |||
| 173 | strncpy((*ctx)->result, r, l); | ||
| 174 | (*ctx)->result[l] = '\0'; | ||
| 175 | str$free1_dx(&(*ctx)->result_dsc); | ||
| 176 | |||
| 177 | return (*ctx)->result; | ||
| 178 | } | ||
| 179 | |||
| 180 | int LP_find_file_end(LP_DIR_CTX **ctx) | ||
| 181 | { | ||
| 182 | if (ctx != NULL && *ctx != NULL) | ||
| 183 | { | ||
| 184 | int status = lib$find_file_end(&(*ctx)->VMS_context); | ||
| 185 | |||
| 186 | free(*ctx); | ||
| 187 | |||
| 188 | if(!$VMS_STATUS_SUCCESS(status)) | ||
| 189 | { | ||
| 190 | errno = EVMSERR; | ||
| 191 | vaxc$errno = status; | ||
| 192 | return 0; | ||
| 193 | } | ||
| 194 | return 1; | ||
| 195 | } | ||
| 196 | errno = EINVAL; | ||
| 197 | return 0; | ||
| 198 | } | ||
| 199 | |||
diff --git a/src/lib/libssl/src/crypto/LPdir_win.c b/src/lib/libssl/src/crypto/LPdir_win.c new file mode 100644 index 0000000000..09b475beed --- /dev/null +++ b/src/lib/libssl/src/crypto/LPdir_win.c | |||
| @@ -0,0 +1,155 @@ | |||
| 1 | /* $LP: LPlib/source/LPdir_win.c,v 1.10 2004/08/26 13:36:05 _cvs_levitte Exp $ */ | ||
| 2 | /* | ||
| 3 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 4 | * All rights reserved. | ||
| 5 | * | ||
| 6 | * Redistribution and use in source and binary forms, with or without | ||
| 7 | * modification, are permitted provided that the following conditions | ||
| 8 | * are met: | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in the | ||
| 13 | * documentation and/or other materials provided with the distribution. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS | ||
| 16 | * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT | ||
| 17 | * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR | ||
| 18 | * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | ||
| 19 | * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 20 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT | ||
| 21 | * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | ||
| 22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | ||
| 23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | ||
| 24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE | ||
| 25 | * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | #include <windows.h> | ||
| 28 | #include <tchar.h> | ||
| 29 | #ifndef LPDIR_H | ||
| 30 | #include "LPdir.h" | ||
| 31 | #endif | ||
| 32 | |||
| 33 | /* We're most likely overcautious here, but let's reserve for | ||
| 34 | broken WinCE headers and explicitly opt for UNICODE call. | ||
| 35 | Keep in mind that our WinCE builds are compiled with -DUNICODE | ||
| 36 | [as well as -D_UNICODE]. */ | ||
| 37 | #if defined(LP_SYS_WINCE) && !defined(FindFirstFile) | ||
| 38 | # define FindFirstFile FindFirstFileW | ||
| 39 | #endif | ||
| 40 | #if defined(LP_SYS_WINCE) && !defined(FindFirstFile) | ||
| 41 | # define FindNextFile FindNextFileW | ||
| 42 | #endif | ||
| 43 | |||
| 44 | #ifndef NAME_MAX | ||
| 45 | #define NAME_MAX 255 | ||
| 46 | #endif | ||
| 47 | |||
| 48 | struct LP_dir_context_st | ||
| 49 | { | ||
| 50 | WIN32_FIND_DATA ctx; | ||
| 51 | HANDLE handle; | ||
| 52 | char entry_name[NAME_MAX+1]; | ||
| 53 | }; | ||
| 54 | |||
| 55 | const char *LP_find_file(LP_DIR_CTX **ctx, const char *directory) | ||
| 56 | { | ||
| 57 | struct dirent *direntry = NULL; | ||
| 58 | |||
| 59 | if (ctx == NULL || directory == NULL) | ||
| 60 | { | ||
| 61 | errno = EINVAL; | ||
| 62 | return 0; | ||
| 63 | } | ||
| 64 | |||
| 65 | errno = 0; | ||
| 66 | if (*ctx == NULL) | ||
| 67 | { | ||
| 68 | *ctx = (LP_DIR_CTX *)malloc(sizeof(LP_DIR_CTX)); | ||
| 69 | if (*ctx == NULL) | ||
| 70 | { | ||
| 71 | errno = ENOMEM; | ||
| 72 | return 0; | ||
| 73 | } | ||
| 74 | memset(*ctx, '\0', sizeof(LP_DIR_CTX)); | ||
| 75 | |||
| 76 | if (sizeof(TCHAR) != sizeof(char)) | ||
| 77 | { | ||
| 78 | TCHAR *wdir = NULL; | ||
| 79 | /* len_0 denotes string length *with* trailing 0 */ | ||
| 80 | size_t index = 0,len_0 = strlen(directory) + 1; | ||
| 81 | |||
| 82 | wdir = (TCHAR *)malloc(len_0 * sizeof(TCHAR)); | ||
| 83 | if (wdir == NULL) | ||
| 84 | { | ||
| 85 | free(*ctx); | ||
| 86 | *ctx = NULL; | ||
| 87 | errno = ENOMEM; | ||
| 88 | return 0; | ||
| 89 | } | ||
| 90 | |||
| 91 | #ifdef LP_MULTIBYTE_AVAILABLE | ||
| 92 | if (!MultiByteToWideChar(CP_ACP, 0, directory, len_0, (WCHAR *)wdir, len_0)) | ||
| 93 | #endif | ||
| 94 | for (index = 0; index < len_0; index++) | ||
| 95 | wdir[index] = (TCHAR)directory[index]; | ||
| 96 | |||
| 97 | (*ctx)->handle = FindFirstFile(wdir, &(*ctx)->ctx); | ||
| 98 | |||
| 99 | free(wdir); | ||
| 100 | } | ||
| 101 | else | ||
| 102 | (*ctx)->handle = FindFirstFile((TCHAR *)directory, &(*ctx)->ctx); | ||
| 103 | |||
| 104 | if ((*ctx)->handle == INVALID_HANDLE_VALUE) | ||
| 105 | { | ||
| 106 | free(*ctx); | ||
| 107 | *ctx = NULL; | ||
| 108 | errno = EINVAL; | ||
| 109 | return 0; | ||
| 110 | } | ||
| 111 | } | ||
| 112 | else | ||
| 113 | { | ||
| 114 | if (FindNextFile((*ctx)->handle, &(*ctx)->ctx) == FALSE) | ||
| 115 | { | ||
| 116 | return 0; | ||
| 117 | } | ||
| 118 | } | ||
| 119 | |||
| 120 | if (sizeof(TCHAR) != sizeof(char)) | ||
| 121 | { | ||
| 122 | TCHAR *wdir = (*ctx)->ctx.cFileName; | ||
| 123 | size_t index, len_0 = 0; | ||
| 124 | |||
| 125 | while (wdir[len_0] && len_0 < (sizeof((*ctx)->entry_name) - 1)) len_0++; | ||
| 126 | len_0++; | ||
| 127 | |||
| 128 | #ifdef LP_MULTIBYTE_AVAILABLE | ||
| 129 | if (!WideCharToMultiByte(CP_ACP, 0, (WCHAR *)wdir, len_0, (*ctx)->entry_name, | ||
| 130 | sizeof((*ctx)->entry_name), NULL, 0)) | ||
| 131 | #endif | ||
| 132 | for (index = 0; index < len_0; index++) | ||
| 133 | (*ctx)->entry_name[index] = (char)wdir[index]; | ||
| 134 | } | ||
| 135 | else | ||
| 136 | strncpy((*ctx)->entry_name, (const char *)(*ctx)->ctx.cFileName, | ||
| 137 | sizeof((*ctx)->entry_name)-1); | ||
| 138 | |||
| 139 | (*ctx)->entry_name[sizeof((*ctx)->entry_name)-1] = '\0'; | ||
| 140 | |||
| 141 | return (*ctx)->entry_name; | ||
| 142 | } | ||
| 143 | |||
| 144 | int LP_find_file_end(LP_DIR_CTX **ctx) | ||
| 145 | { | ||
| 146 | if (ctx != NULL && *ctx != NULL) | ||
| 147 | { | ||
| 148 | FindClose((*ctx)->handle); | ||
| 149 | free(*ctx); | ||
| 150 | *ctx = NULL; | ||
| 151 | return 1; | ||
| 152 | } | ||
| 153 | errno = EINVAL; | ||
| 154 | return 0; | ||
| 155 | } | ||
diff --git a/src/lib/libssl/src/crypto/LPdir_win32.c b/src/lib/libssl/src/crypto/LPdir_win32.c new file mode 100644 index 0000000000..e39872da52 --- /dev/null +++ b/src/lib/libssl/src/crypto/LPdir_win32.c | |||
| @@ -0,0 +1,30 @@ | |||
| 1 | /* $LP: LPlib/source/LPdir_win32.c,v 1.3 2004/08/26 13:36:05 _cvs_levitte Exp $ */ | ||
| 2 | /* | ||
| 3 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 4 | * All rights reserved. | ||
| 5 | * | ||
| 6 | * Redistribution and use in source and binary forms, with or without | ||
| 7 | * modification, are permitted provided that the following conditions | ||
| 8 | * are met: | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in the | ||
| 13 | * documentation and/or other materials provided with the distribution. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS | ||
| 16 | * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT | ||
| 17 | * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR | ||
| 18 | * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | ||
| 19 | * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 20 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT | ||
| 21 | * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | ||
| 22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | ||
| 23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | ||
| 24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE | ||
| 25 | * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | |||
| 28 | #define LP_SYS_WIN32 | ||
| 29 | #define LP_MULTIBYTE_AVAILABLE | ||
| 30 | #include "LPdir_win.c" | ||
diff --git a/src/lib/libssl/src/crypto/LPdir_wince.c b/src/lib/libssl/src/crypto/LPdir_wince.c new file mode 100644 index 0000000000..ab0e1e6f4f --- /dev/null +++ b/src/lib/libssl/src/crypto/LPdir_wince.c | |||
| @@ -0,0 +1,31 @@ | |||
| 1 | /* $LP: LPlib/source/LPdir_wince.c,v 1.3 2004/08/26 13:36:05 _cvs_levitte Exp $ */ | ||
| 2 | /* | ||
| 3 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 4 | * All rights reserved. | ||
| 5 | * | ||
| 6 | * Redistribution and use in source and binary forms, with or without | ||
| 7 | * modification, are permitted provided that the following conditions | ||
| 8 | * are met: | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in the | ||
| 13 | * documentation and/or other materials provided with the distribution. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS | ||
| 16 | * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT | ||
| 17 | * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR | ||
| 18 | * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT | ||
| 19 | * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 20 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT | ||
| 21 | * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, | ||
| 22 | * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY | ||
| 23 | * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | ||
| 24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE | ||
| 25 | * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | |||
| 28 | #define LP_SYS_WINCE | ||
| 29 | /* We might want to define LP_MULTIBYTE_AVAILABLE here. It's currently | ||
| 30 | under investigation what the exact conditions would be */ | ||
| 31 | #include "LPdir_win.c" | ||
diff --git a/src/lib/libssl/src/crypto/aes/aes_ige.c b/src/lib/libssl/src/crypto/aes/aes_ige.c new file mode 100644 index 0000000000..45d7096181 --- /dev/null +++ b/src/lib/libssl/src/crypto/aes/aes_ige.c | |||
| @@ -0,0 +1,323 @@ | |||
| 1 | /* crypto/aes/aes_ige.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #include "cryptlib.h" | ||
| 53 | |||
| 54 | #include <openssl/aes.h> | ||
| 55 | #include "aes_locl.h" | ||
| 56 | |||
| 57 | #define N_WORDS (AES_BLOCK_SIZE / sizeof(unsigned long)) | ||
| 58 | typedef struct { | ||
| 59 | unsigned long data[N_WORDS]; | ||
| 60 | } aes_block_t; | ||
| 61 | |||
| 62 | /* XXX: probably some better way to do this */ | ||
| 63 | #if defined(__i386__) || defined(__x86_64__) | ||
| 64 | #define UNALIGNED_MEMOPS_ARE_FAST 1 | ||
| 65 | #else | ||
| 66 | #define UNALIGNED_MEMOPS_ARE_FAST 0 | ||
| 67 | #endif | ||
| 68 | |||
| 69 | #if UNALIGNED_MEMOPS_ARE_FAST | ||
| 70 | #define load_block(d, s) (d) = *(const aes_block_t *)(s) | ||
| 71 | #define store_block(d, s) *(aes_block_t *)(d) = (s) | ||
| 72 | #else | ||
| 73 | #define load_block(d, s) memcpy((d).data, (s), AES_BLOCK_SIZE) | ||
| 74 | #define store_block(d, s) memcpy((d), (s).data, AES_BLOCK_SIZE) | ||
| 75 | #endif | ||
| 76 | |||
| 77 | /* N.B. The IV for this mode is _twice_ the block size */ | ||
| 78 | |||
| 79 | void AES_ige_encrypt(const unsigned char *in, unsigned char *out, | ||
| 80 | const unsigned long length, const AES_KEY *key, | ||
| 81 | unsigned char *ivec, const int enc) | ||
| 82 | { | ||
| 83 | unsigned long n; | ||
| 84 | unsigned long len; | ||
| 85 | |||
| 86 | OPENSSL_assert(in && out && key && ivec); | ||
| 87 | OPENSSL_assert((AES_ENCRYPT == enc)||(AES_DECRYPT == enc)); | ||
| 88 | OPENSSL_assert((length%AES_BLOCK_SIZE) == 0); | ||
| 89 | |||
| 90 | len = length / AES_BLOCK_SIZE; | ||
| 91 | |||
| 92 | if (AES_ENCRYPT == enc) | ||
| 93 | { | ||
| 94 | if (in != out && | ||
| 95 | (UNALIGNED_MEMOPS_ARE_FAST || ((size_t)in|(size_t)out|(size_t)ivec)%sizeof(long)==0)) | ||
| 96 | { | ||
| 97 | aes_block_t *ivp = (aes_block_t *)ivec; | ||
| 98 | aes_block_t *iv2p = (aes_block_t *)(ivec + AES_BLOCK_SIZE); | ||
| 99 | |||
| 100 | while (len) | ||
| 101 | { | ||
| 102 | aes_block_t *inp = (aes_block_t *)in; | ||
| 103 | aes_block_t *outp = (aes_block_t *)out; | ||
| 104 | |||
| 105 | for(n=0 ; n < N_WORDS; ++n) | ||
| 106 | outp->data[n] = inp->data[n] ^ ivp->data[n]; | ||
| 107 | AES_encrypt((unsigned char *)outp->data, (unsigned char *)outp->data, key); | ||
| 108 | for(n=0 ; n < N_WORDS; ++n) | ||
| 109 | outp->data[n] ^= iv2p->data[n]; | ||
| 110 | ivp = outp; | ||
| 111 | iv2p = inp; | ||
| 112 | --len; | ||
| 113 | in += AES_BLOCK_SIZE; | ||
| 114 | out += AES_BLOCK_SIZE; | ||
| 115 | } | ||
| 116 | memcpy(ivec, ivp->data, AES_BLOCK_SIZE); | ||
| 117 | memcpy(ivec + AES_BLOCK_SIZE, iv2p->data, AES_BLOCK_SIZE); | ||
| 118 | } | ||
| 119 | else | ||
| 120 | { | ||
| 121 | aes_block_t tmp, tmp2; | ||
| 122 | aes_block_t iv; | ||
| 123 | aes_block_t iv2; | ||
| 124 | |||
| 125 | load_block(iv, ivec); | ||
| 126 | load_block(iv2, ivec + AES_BLOCK_SIZE); | ||
| 127 | |||
| 128 | while (len) | ||
| 129 | { | ||
| 130 | load_block(tmp, in); | ||
| 131 | for(n=0 ; n < N_WORDS; ++n) | ||
| 132 | tmp2.data[n] = tmp.data[n] ^ iv.data[n]; | ||
| 133 | AES_encrypt((unsigned char *)tmp2.data, (unsigned char *)tmp2.data, key); | ||
| 134 | for(n=0 ; n < N_WORDS; ++n) | ||
| 135 | tmp2.data[n] ^= iv2.data[n]; | ||
| 136 | store_block(out, tmp2); | ||
| 137 | iv = tmp2; | ||
| 138 | iv2 = tmp; | ||
| 139 | --len; | ||
| 140 | in += AES_BLOCK_SIZE; | ||
| 141 | out += AES_BLOCK_SIZE; | ||
| 142 | } | ||
| 143 | memcpy(ivec, iv.data, AES_BLOCK_SIZE); | ||
| 144 | memcpy(ivec + AES_BLOCK_SIZE, iv2.data, AES_BLOCK_SIZE); | ||
| 145 | } | ||
| 146 | } | ||
| 147 | else | ||
| 148 | { | ||
| 149 | if (in != out && | ||
| 150 | (UNALIGNED_MEMOPS_ARE_FAST || ((size_t)in|(size_t)out|(size_t)ivec)%sizeof(long)==0)) | ||
| 151 | { | ||
| 152 | aes_block_t *ivp = (aes_block_t *)ivec; | ||
| 153 | aes_block_t *iv2p = (aes_block_t *)(ivec + AES_BLOCK_SIZE); | ||
| 154 | |||
| 155 | while (len) | ||
| 156 | { | ||
| 157 | aes_block_t tmp; | ||
| 158 | aes_block_t *inp = (aes_block_t *)in; | ||
| 159 | aes_block_t *outp = (aes_block_t *)out; | ||
| 160 | |||
| 161 | for(n=0 ; n < N_WORDS; ++n) | ||
| 162 | tmp.data[n] = inp->data[n] ^ iv2p->data[n]; | ||
| 163 | AES_decrypt((unsigned char *)tmp.data, (unsigned char *)outp->data, key); | ||
| 164 | for(n=0 ; n < N_WORDS; ++n) | ||
| 165 | outp->data[n] ^= ivp->data[n]; | ||
| 166 | ivp = inp; | ||
| 167 | iv2p = outp; | ||
| 168 | --len; | ||
| 169 | in += AES_BLOCK_SIZE; | ||
| 170 | out += AES_BLOCK_SIZE; | ||
| 171 | } | ||
| 172 | memcpy(ivec, ivp->data, AES_BLOCK_SIZE); | ||
| 173 | memcpy(ivec + AES_BLOCK_SIZE, iv2p->data, AES_BLOCK_SIZE); | ||
| 174 | } | ||
| 175 | else | ||
| 176 | { | ||
| 177 | aes_block_t tmp, tmp2; | ||
| 178 | aes_block_t iv; | ||
| 179 | aes_block_t iv2; | ||
| 180 | |||
| 181 | load_block(iv, ivec); | ||
| 182 | load_block(iv2, ivec + AES_BLOCK_SIZE); | ||
| 183 | |||
| 184 | while (len) | ||
| 185 | { | ||
| 186 | load_block(tmp, in); | ||
| 187 | tmp2 = tmp; | ||
| 188 | for(n=0 ; n < N_WORDS; ++n) | ||
| 189 | tmp.data[n] ^= iv2.data[n]; | ||
| 190 | AES_decrypt((unsigned char *)tmp.data, (unsigned char *)tmp.data, key); | ||
| 191 | for(n=0 ; n < N_WORDS; ++n) | ||
| 192 | tmp.data[n] ^= iv.data[n]; | ||
| 193 | store_block(out, tmp); | ||
| 194 | iv = tmp2; | ||
| 195 | iv2 = tmp; | ||
| 196 | --len; | ||
| 197 | in += AES_BLOCK_SIZE; | ||
| 198 | out += AES_BLOCK_SIZE; | ||
| 199 | } | ||
| 200 | memcpy(ivec, iv.data, AES_BLOCK_SIZE); | ||
| 201 | memcpy(ivec + AES_BLOCK_SIZE, iv2.data, AES_BLOCK_SIZE); | ||
| 202 | } | ||
| 203 | } | ||
| 204 | } | ||
| 205 | |||
| 206 | /* | ||
| 207 | * Note that its effectively impossible to do biIGE in anything other | ||
| 208 | * than a single pass, so no provision is made for chaining. | ||
| 209 | */ | ||
| 210 | |||
| 211 | /* N.B. The IV for this mode is _four times_ the block size */ | ||
| 212 | |||
| 213 | void AES_bi_ige_encrypt(const unsigned char *in, unsigned char *out, | ||
| 214 | const unsigned long length, const AES_KEY *key, | ||
| 215 | const AES_KEY *key2, const unsigned char *ivec, | ||
| 216 | const int enc) | ||
| 217 | { | ||
| 218 | unsigned long n; | ||
| 219 | unsigned long len = length; | ||
| 220 | unsigned char tmp[AES_BLOCK_SIZE]; | ||
| 221 | unsigned char tmp2[AES_BLOCK_SIZE]; | ||
| 222 | unsigned char tmp3[AES_BLOCK_SIZE]; | ||
| 223 | unsigned char prev[AES_BLOCK_SIZE]; | ||
| 224 | const unsigned char *iv; | ||
| 225 | const unsigned char *iv2; | ||
| 226 | |||
| 227 | OPENSSL_assert(in && out && key && ivec); | ||
| 228 | OPENSSL_assert((AES_ENCRYPT == enc)||(AES_DECRYPT == enc)); | ||
| 229 | OPENSSL_assert((length%AES_BLOCK_SIZE) == 0); | ||
| 230 | |||
| 231 | if (AES_ENCRYPT == enc) | ||
| 232 | { | ||
| 233 | /* XXX: Do a separate case for when in != out (strictly should | ||
| 234 | check for overlap, too) */ | ||
| 235 | |||
| 236 | /* First the forward pass */ | ||
| 237 | iv = ivec; | ||
| 238 | iv2 = ivec + AES_BLOCK_SIZE; | ||
| 239 | while (len >= AES_BLOCK_SIZE) | ||
| 240 | { | ||
| 241 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 242 | out[n] = in[n] ^ iv[n]; | ||
| 243 | AES_encrypt(out, out, key); | ||
| 244 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 245 | out[n] ^= iv2[n]; | ||
| 246 | iv = out; | ||
| 247 | memcpy(prev, in, AES_BLOCK_SIZE); | ||
| 248 | iv2 = prev; | ||
| 249 | len -= AES_BLOCK_SIZE; | ||
| 250 | in += AES_BLOCK_SIZE; | ||
| 251 | out += AES_BLOCK_SIZE; | ||
| 252 | } | ||
| 253 | |||
| 254 | /* And now backwards */ | ||
| 255 | iv = ivec + AES_BLOCK_SIZE*2; | ||
| 256 | iv2 = ivec + AES_BLOCK_SIZE*3; | ||
| 257 | len = length; | ||
| 258 | while(len >= AES_BLOCK_SIZE) | ||
| 259 | { | ||
| 260 | out -= AES_BLOCK_SIZE; | ||
| 261 | /* XXX: reduce copies by alternating between buffers */ | ||
| 262 | memcpy(tmp, out, AES_BLOCK_SIZE); | ||
| 263 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 264 | out[n] ^= iv[n]; | ||
| 265 | /* hexdump(stdout, "out ^ iv", out, AES_BLOCK_SIZE); */ | ||
| 266 | AES_encrypt(out, out, key); | ||
| 267 | /* hexdump(stdout,"enc", out, AES_BLOCK_SIZE); */ | ||
| 268 | /* hexdump(stdout,"iv2", iv2, AES_BLOCK_SIZE); */ | ||
| 269 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 270 | out[n] ^= iv2[n]; | ||
| 271 | /* hexdump(stdout,"out", out, AES_BLOCK_SIZE); */ | ||
| 272 | iv = out; | ||
| 273 | memcpy(prev, tmp, AES_BLOCK_SIZE); | ||
| 274 | iv2 = prev; | ||
| 275 | len -= AES_BLOCK_SIZE; | ||
| 276 | } | ||
| 277 | } | ||
| 278 | else | ||
| 279 | { | ||
| 280 | /* First backwards */ | ||
| 281 | iv = ivec + AES_BLOCK_SIZE*2; | ||
| 282 | iv2 = ivec + AES_BLOCK_SIZE*3; | ||
| 283 | in += length; | ||
| 284 | out += length; | ||
| 285 | while (len >= AES_BLOCK_SIZE) | ||
| 286 | { | ||
| 287 | in -= AES_BLOCK_SIZE; | ||
| 288 | out -= AES_BLOCK_SIZE; | ||
| 289 | memcpy(tmp, in, AES_BLOCK_SIZE); | ||
| 290 | memcpy(tmp2, in, AES_BLOCK_SIZE); | ||
| 291 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 292 | tmp[n] ^= iv2[n]; | ||
| 293 | AES_decrypt(tmp, out, key); | ||
| 294 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 295 | out[n] ^= iv[n]; | ||
| 296 | memcpy(tmp3, tmp2, AES_BLOCK_SIZE); | ||
| 297 | iv = tmp3; | ||
| 298 | iv2 = out; | ||
| 299 | len -= AES_BLOCK_SIZE; | ||
| 300 | } | ||
| 301 | |||
| 302 | /* And now forwards */ | ||
| 303 | iv = ivec; | ||
| 304 | iv2 = ivec + AES_BLOCK_SIZE; | ||
| 305 | len = length; | ||
| 306 | while (len >= AES_BLOCK_SIZE) | ||
| 307 | { | ||
| 308 | memcpy(tmp, out, AES_BLOCK_SIZE); | ||
| 309 | memcpy(tmp2, out, AES_BLOCK_SIZE); | ||
| 310 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 311 | tmp[n] ^= iv2[n]; | ||
| 312 | AES_decrypt(tmp, out, key); | ||
| 313 | for(n=0 ; n < AES_BLOCK_SIZE ; ++n) | ||
| 314 | out[n] ^= iv[n]; | ||
| 315 | memcpy(tmp3, tmp2, AES_BLOCK_SIZE); | ||
| 316 | iv = tmp3; | ||
| 317 | iv2 = out; | ||
| 318 | len -= AES_BLOCK_SIZE; | ||
| 319 | in += AES_BLOCK_SIZE; | ||
| 320 | out += AES_BLOCK_SIZE; | ||
| 321 | } | ||
| 322 | } | ||
| 323 | } | ||
diff --git a/src/lib/libssl/src/crypto/aes/aes_wrap.c b/src/lib/libssl/src/crypto/aes/aes_wrap.c new file mode 100644 index 0000000000..9feacd65d8 --- /dev/null +++ b/src/lib/libssl/src/crypto/aes/aes_wrap.c | |||
| @@ -0,0 +1,259 @@ | |||
| 1 | /* crypto/aes/aes_wrap.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/aes.h> | ||
| 56 | #include <openssl/bio.h> | ||
| 57 | |||
| 58 | static const unsigned char default_iv[] = { | ||
| 59 | 0xA6, 0xA6, 0xA6, 0xA6, 0xA6, 0xA6, 0xA6, 0xA6, | ||
| 60 | }; | ||
| 61 | |||
| 62 | int AES_wrap_key(AES_KEY *key, const unsigned char *iv, | ||
| 63 | unsigned char *out, | ||
| 64 | const unsigned char *in, unsigned int inlen) | ||
| 65 | { | ||
| 66 | unsigned char *A, B[16], *R; | ||
| 67 | unsigned int i, j, t; | ||
| 68 | if ((inlen & 0x7) || (inlen < 8)) | ||
| 69 | return -1; | ||
| 70 | A = B; | ||
| 71 | t = 1; | ||
| 72 | memcpy(out + 8, in, inlen); | ||
| 73 | if (!iv) | ||
| 74 | iv = default_iv; | ||
| 75 | |||
| 76 | memcpy(A, iv, 8); | ||
| 77 | |||
| 78 | for (j = 0; j < 6; j++) | ||
| 79 | { | ||
| 80 | R = out + 8; | ||
| 81 | for (i = 0; i < inlen; i += 8, t++, R += 8) | ||
| 82 | { | ||
| 83 | memcpy(B + 8, R, 8); | ||
| 84 | AES_encrypt(B, B, key); | ||
| 85 | A[7] ^= (unsigned char)(t & 0xff); | ||
| 86 | if (t > 0xff) | ||
| 87 | { | ||
| 88 | A[6] ^= (unsigned char)((t & 0xff) >> 8); | ||
| 89 | A[5] ^= (unsigned char)((t & 0xff) >> 16); | ||
| 90 | A[4] ^= (unsigned char)((t & 0xff) >> 24); | ||
| 91 | } | ||
| 92 | memcpy(R, B + 8, 8); | ||
| 93 | } | ||
| 94 | } | ||
| 95 | memcpy(out, A, 8); | ||
| 96 | return inlen + 8; | ||
| 97 | } | ||
| 98 | |||
| 99 | int AES_unwrap_key(AES_KEY *key, const unsigned char *iv, | ||
| 100 | unsigned char *out, | ||
| 101 | const unsigned char *in, unsigned int inlen) | ||
| 102 | { | ||
| 103 | unsigned char *A, B[16], *R; | ||
| 104 | unsigned int i, j, t; | ||
| 105 | inlen -= 8; | ||
| 106 | if (inlen & 0x7) | ||
| 107 | return -1; | ||
| 108 | if (inlen < 8) | ||
| 109 | return -1; | ||
| 110 | A = B; | ||
| 111 | t = 6 * (inlen >> 3); | ||
| 112 | memcpy(A, in, 8); | ||
| 113 | memcpy(out, in + 8, inlen); | ||
| 114 | for (j = 0; j < 6; j++) | ||
| 115 | { | ||
| 116 | R = out + inlen - 8; | ||
| 117 | for (i = 0; i < inlen; i += 8, t--, R -= 8) | ||
| 118 | { | ||
| 119 | A[7] ^= (unsigned char)(t & 0xff); | ||
| 120 | if (t > 0xff) | ||
| 121 | { | ||
| 122 | A[6] ^= (unsigned char)((t & 0xff) >> 8); | ||
| 123 | A[5] ^= (unsigned char)((t & 0xff) >> 16); | ||
| 124 | A[4] ^= (unsigned char)((t & 0xff) >> 24); | ||
| 125 | } | ||
| 126 | memcpy(B + 8, R, 8); | ||
| 127 | AES_decrypt(B, B, key); | ||
| 128 | memcpy(R, B + 8, 8); | ||
| 129 | } | ||
| 130 | } | ||
| 131 | if (!iv) | ||
| 132 | iv = default_iv; | ||
| 133 | if (memcmp(A, iv, 8)) | ||
| 134 | { | ||
| 135 | OPENSSL_cleanse(out, inlen); | ||
| 136 | return 0; | ||
| 137 | } | ||
| 138 | return inlen; | ||
| 139 | } | ||
| 140 | |||
| 141 | #ifdef AES_WRAP_TEST | ||
| 142 | |||
| 143 | int AES_wrap_unwrap_test(const unsigned char *kek, int keybits, | ||
| 144 | const unsigned char *iv, | ||
| 145 | const unsigned char *eout, | ||
| 146 | const unsigned char *key, int keylen) | ||
| 147 | { | ||
| 148 | unsigned char *otmp = NULL, *ptmp = NULL; | ||
| 149 | int r, ret = 0; | ||
| 150 | AES_KEY wctx; | ||
| 151 | otmp = OPENSSL_malloc(keylen + 8); | ||
| 152 | ptmp = OPENSSL_malloc(keylen); | ||
| 153 | if (!otmp || !ptmp) | ||
| 154 | return 0; | ||
| 155 | if (AES_set_encrypt_key(kek, keybits, &wctx)) | ||
| 156 | goto err; | ||
| 157 | r = AES_wrap_key(&wctx, iv, otmp, key, keylen); | ||
| 158 | if (r <= 0) | ||
| 159 | goto err; | ||
| 160 | |||
| 161 | if (eout && memcmp(eout, otmp, keylen)) | ||
| 162 | goto err; | ||
| 163 | |||
| 164 | if (AES_set_decrypt_key(kek, keybits, &wctx)) | ||
| 165 | goto err; | ||
| 166 | r = AES_unwrap_key(&wctx, iv, ptmp, otmp, r); | ||
| 167 | |||
| 168 | if (memcmp(key, ptmp, keylen)) | ||
| 169 | goto err; | ||
| 170 | |||
| 171 | ret = 1; | ||
| 172 | |||
| 173 | err: | ||
| 174 | if (otmp) | ||
| 175 | OPENSSL_free(otmp); | ||
| 176 | if (ptmp) | ||
| 177 | OPENSSL_free(ptmp); | ||
| 178 | |||
| 179 | return ret; | ||
| 180 | |||
| 181 | } | ||
| 182 | |||
| 183 | |||
| 184 | |||
| 185 | int main(int argc, char **argv) | ||
| 186 | { | ||
| 187 | |||
| 188 | static const unsigned char kek[] = { | ||
| 189 | 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 190 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, | ||
| 191 | 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 192 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f | ||
| 193 | }; | ||
| 194 | |||
| 195 | static const unsigned char key[] = { | ||
| 196 | 0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77, | ||
| 197 | 0x88, 0x99, 0xaa, 0xbb, 0xcc, 0xdd, 0xee, 0xff, | ||
| 198 | 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 199 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f | ||
| 200 | }; | ||
| 201 | |||
| 202 | static const unsigned char e1[] = { | ||
| 203 | 0x1f, 0xa6, 0x8b, 0x0a, 0x81, 0x12, 0xb4, 0x47, | ||
| 204 | 0xae, 0xf3, 0x4b, 0xd8, 0xfb, 0x5a, 0x7b, 0x82, | ||
| 205 | 0x9d, 0x3e, 0x86, 0x23, 0x71, 0xd2, 0xcf, 0xe5 | ||
| 206 | }; | ||
| 207 | |||
| 208 | static const unsigned char e2[] = { | ||
| 209 | 0x96, 0x77, 0x8b, 0x25, 0xae, 0x6c, 0xa4, 0x35, | ||
| 210 | 0xf9, 0x2b, 0x5b, 0x97, 0xc0, 0x50, 0xae, 0xd2, | ||
| 211 | 0x46, 0x8a, 0xb8, 0xa1, 0x7a, 0xd8, 0x4e, 0x5d | ||
| 212 | }; | ||
| 213 | |||
| 214 | static const unsigned char e3[] = { | ||
| 215 | 0x64, 0xe8, 0xc3, 0xf9, 0xce, 0x0f, 0x5b, 0xa2, | ||
| 216 | 0x63, 0xe9, 0x77, 0x79, 0x05, 0x81, 0x8a, 0x2a, | ||
| 217 | 0x93, 0xc8, 0x19, 0x1e, 0x7d, 0x6e, 0x8a, 0xe7 | ||
| 218 | }; | ||
| 219 | |||
| 220 | static const unsigned char e4[] = { | ||
| 221 | 0x03, 0x1d, 0x33, 0x26, 0x4e, 0x15, 0xd3, 0x32, | ||
| 222 | 0x68, 0xf2, 0x4e, 0xc2, 0x60, 0x74, 0x3e, 0xdc, | ||
| 223 | 0xe1, 0xc6, 0xc7, 0xdd, 0xee, 0x72, 0x5a, 0x93, | ||
| 224 | 0x6b, 0xa8, 0x14, 0x91, 0x5c, 0x67, 0x62, 0xd2 | ||
| 225 | }; | ||
| 226 | |||
| 227 | static const unsigned char e5[] = { | ||
| 228 | 0xa8, 0xf9, 0xbc, 0x16, 0x12, 0xc6, 0x8b, 0x3f, | ||
| 229 | 0xf6, 0xe6, 0xf4, 0xfb, 0xe3, 0x0e, 0x71, 0xe4, | ||
| 230 | 0x76, 0x9c, 0x8b, 0x80, 0xa3, 0x2c, 0xb8, 0x95, | ||
| 231 | 0x8c, 0xd5, 0xd1, 0x7d, 0x6b, 0x25, 0x4d, 0xa1 | ||
| 232 | }; | ||
| 233 | |||
| 234 | static const unsigned char e6[] = { | ||
| 235 | 0x28, 0xc9, 0xf4, 0x04, 0xc4, 0xb8, 0x10, 0xf4, | ||
| 236 | 0xcb, 0xcc, 0xb3, 0x5c, 0xfb, 0x87, 0xf8, 0x26, | ||
| 237 | 0x3f, 0x57, 0x86, 0xe2, 0xd8, 0x0e, 0xd3, 0x26, | ||
| 238 | 0xcb, 0xc7, 0xf0, 0xe7, 0x1a, 0x99, 0xf4, 0x3b, | ||
| 239 | 0xfb, 0x98, 0x8b, 0x9b, 0x7a, 0x02, 0xdd, 0x21 | ||
| 240 | }; | ||
| 241 | |||
| 242 | AES_KEY wctx, xctx; | ||
| 243 | int ret; | ||
| 244 | ret = AES_wrap_unwrap_test(kek, 128, NULL, e1, key, 16); | ||
| 245 | fprintf(stderr, "Key test result %d\n", ret); | ||
| 246 | ret = AES_wrap_unwrap_test(kek, 192, NULL, e2, key, 16); | ||
| 247 | fprintf(stderr, "Key test result %d\n", ret); | ||
| 248 | ret = AES_wrap_unwrap_test(kek, 256, NULL, e3, key, 16); | ||
| 249 | fprintf(stderr, "Key test result %d\n", ret); | ||
| 250 | ret = AES_wrap_unwrap_test(kek, 192, NULL, e4, key, 24); | ||
| 251 | fprintf(stderr, "Key test result %d\n", ret); | ||
| 252 | ret = AES_wrap_unwrap_test(kek, 256, NULL, e5, key, 24); | ||
| 253 | fprintf(stderr, "Key test result %d\n", ret); | ||
| 254 | ret = AES_wrap_unwrap_test(kek, 256, NULL, e6, key, 32); | ||
| 255 | fprintf(stderr, "Key test result %d\n", ret); | ||
| 256 | } | ||
| 257 | |||
| 258 | |||
| 259 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/aes/asm/aes-586.pl b/src/lib/libssl/src/crypto/aes/asm/aes-586.pl new file mode 100644 index 0000000000..89fa261794 --- /dev/null +++ b/src/lib/libssl/src/crypto/aes/asm/aes-586.pl | |||
| @@ -0,0 +1,1532 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | # | ||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. Rights for redistribution and usage in source and binary | ||
| 6 | # forms are granted according to the OpenSSL license. | ||
| 7 | # ==================================================================== | ||
| 8 | # | ||
| 9 | # Version 3.6. | ||
| 10 | # | ||
| 11 | # You might fail to appreciate this module performance from the first | ||
| 12 | # try. If compared to "vanilla" linux-ia32-icc target, i.e. considered | ||
| 13 | # to be *the* best Intel C compiler without -KPIC, performance appears | ||
| 14 | # to be virtually identical... But try to re-configure with shared | ||
| 15 | # library support... Aha! Intel compiler "suddenly" lags behind by 30% | ||
| 16 | # [on P4, more on others]:-) And if compared to position-independent | ||
| 17 | # code generated by GNU C, this code performs *more* than *twice* as | ||
| 18 | # fast! Yes, all this buzz about PIC means that unlike other hand- | ||
| 19 | # coded implementations, this one was explicitly designed to be safe | ||
| 20 | # to use even in shared library context... This also means that this | ||
| 21 | # code isn't necessarily absolutely fastest "ever," because in order | ||
| 22 | # to achieve position independence an extra register has to be | ||
| 23 | # off-loaded to stack, which affects the benchmark result. | ||
| 24 | # | ||
| 25 | # Special note about instruction choice. Do you recall RC4_INT code | ||
| 26 | # performing poorly on P4? It might be the time to figure out why. | ||
| 27 | # RC4_INT code implies effective address calculations in base+offset*4 | ||
| 28 | # form. Trouble is that it seems that offset scaling turned to be | ||
| 29 | # critical path... At least eliminating scaling resulted in 2.8x RC4 | ||
| 30 | # performance improvement [as you might recall]. As AES code is hungry | ||
| 31 | # for scaling too, I [try to] avoid the latter by favoring off-by-2 | ||
| 32 | # shifts and masking the result with 0xFF<<2 instead of "boring" 0xFF. | ||
| 33 | # | ||
| 34 | # As was shown by Dean Gaudet <dean@arctic.org>, the above note turned | ||
| 35 | # void. Performance improvement with off-by-2 shifts was observed on | ||
| 36 | # intermediate implementation, which was spilling yet another register | ||
| 37 | # to stack... Final offset*4 code below runs just a tad faster on P4, | ||
| 38 | # but exhibits up to 10% improvement on other cores. | ||
| 39 | # | ||
| 40 | # Second version is "monolithic" replacement for aes_core.c, which in | ||
| 41 | # addition to AES_[de|en]crypt implements AES_set_[de|en]cryption_key. | ||
| 42 | # This made it possible to implement little-endian variant of the | ||
| 43 | # algorithm without modifying the base C code. Motivating factor for | ||
| 44 | # the undertaken effort was that it appeared that in tight IA-32 | ||
| 45 | # register window little-endian flavor could achieve slightly higher | ||
| 46 | # Instruction Level Parallelism, and it indeed resulted in up to 15% | ||
| 47 | # better performance on most recent µ-archs... | ||
| 48 | # | ||
| 49 | # Third version adds AES_cbc_encrypt implementation, which resulted in | ||
| 50 | # up to 40% performance imrovement of CBC benchmark results. 40% was | ||
| 51 | # observed on P4 core, where "overall" imrovement coefficient, i.e. if | ||
| 52 | # compared to PIC generated by GCC and in CBC mode, was observed to be | ||
| 53 | # as large as 4x:-) CBC performance is virtually identical to ECB now | ||
| 54 | # and on some platforms even better, e.g. 17.6 "small" cycles/byte on | ||
| 55 | # Opteron, because certain function prologues and epilogues are | ||
| 56 | # effectively taken out of the loop... | ||
| 57 | # | ||
| 58 | # Version 3.2 implements compressed tables and prefetch of these tables | ||
| 59 | # in CBC[!] mode. Former means that 3/4 of table references are now | ||
| 60 | # misaligned, which unfortunately has negative impact on elder IA-32 | ||
| 61 | # implementations, Pentium suffered 30% penalty, PIII - 10%. | ||
| 62 | # | ||
| 63 | # Version 3.3 avoids L1 cache aliasing between stack frame and | ||
| 64 | # S-boxes, and 3.4 - L1 cache aliasing even between key schedule. The | ||
| 65 | # latter is achieved by copying the key schedule to controlled place in | ||
| 66 | # stack. This unfortunately has rather strong impact on small block CBC | ||
| 67 | # performance, ~2x deterioration on 16-byte block if compared to 3.3. | ||
| 68 | # | ||
| 69 | # Version 3.5 checks if there is L1 cache aliasing between user-supplied | ||
| 70 | # key schedule and S-boxes and abstains from copying the former if | ||
| 71 | # there is no. This allows end-user to consciously retain small block | ||
| 72 | # performance by aligning key schedule in specific manner. | ||
| 73 | # | ||
| 74 | # Version 3.6 compresses Td4 to 256 bytes and prefetches it in ECB. | ||
| 75 | # | ||
| 76 | # Current ECB performance numbers for 128-bit key in CPU cycles per | ||
| 77 | # processed byte [measure commonly used by AES benchmarkers] are: | ||
| 78 | # | ||
| 79 | # small footprint fully unrolled | ||
| 80 | # P4 24 22 | ||
| 81 | # AMD K8 20 19 | ||
| 82 | # PIII 25 23 | ||
| 83 | # Pentium 81 78 | ||
| 84 | |||
| 85 | push(@INC,"perlasm","../../perlasm"); | ||
| 86 | require "x86asm.pl"; | ||
| 87 | |||
| 88 | &asm_init($ARGV[0],"aes-586.pl",$ARGV[$#ARGV] eq "386"); | ||
| 89 | |||
| 90 | $s0="eax"; | ||
| 91 | $s1="ebx"; | ||
| 92 | $s2="ecx"; | ||
| 93 | $s3="edx"; | ||
| 94 | $key="edi"; | ||
| 95 | $acc="esi"; | ||
| 96 | |||
| 97 | $compromise=0; # $compromise=128 abstains from copying key | ||
| 98 | # schedule to stack when encrypting inputs | ||
| 99 | # shorter than 128 bytes at the cost of | ||
| 100 | # risksing aliasing with S-boxes. In return | ||
| 101 | # you get way better, up to +70%, small block | ||
| 102 | # performance. | ||
| 103 | $small_footprint=1; # $small_footprint=1 code is ~5% slower [on | ||
| 104 | # recent µ-archs], but ~5 times smaller! | ||
| 105 | # I favor compact code to minimize cache | ||
| 106 | # contention and in hope to "collect" 5% back | ||
| 107 | # in real-life applications... | ||
| 108 | $vertical_spin=0; # shift "verticaly" defaults to 0, because of | ||
| 109 | # its proof-of-concept status... | ||
| 110 | |||
| 111 | # Note that there is no decvert(), as well as last encryption round is | ||
| 112 | # performed with "horizontal" shifts. This is because this "vertical" | ||
| 113 | # implementation [one which groups shifts on a given $s[i] to form a | ||
| 114 | # "column," unlike "horizontal" one, which groups shifts on different | ||
| 115 | # $s[i] to form a "row"] is work in progress. It was observed to run | ||
| 116 | # few percents faster on Intel cores, but not AMD. On AMD K8 core it's | ||
| 117 | # whole 12% slower:-( So we face a trade-off... Shall it be resolved | ||
| 118 | # some day? Till then the code is considered experimental and by | ||
| 119 | # default remains dormant... | ||
| 120 | |||
| 121 | sub encvert() | ||
| 122 | { my ($te,@s) = @_; | ||
| 123 | my $v0 = $acc, $v1 = $key; | ||
| 124 | |||
| 125 | &mov ($v0,$s[3]); # copy s3 | ||
| 126 | &mov (&DWP(4,"esp"),$s[2]); # save s2 | ||
| 127 | &mov ($v1,$s[0]); # copy s0 | ||
| 128 | &mov (&DWP(8,"esp"),$s[1]); # save s1 | ||
| 129 | |||
| 130 | &movz ($s[2],&HB($s[0])); | ||
| 131 | &and ($s[0],0xFF); | ||
| 132 | &mov ($s[0],&DWP(0,$te,$s[0],8)); # s0>>0 | ||
| 133 | &shr ($v1,16); | ||
| 134 | &mov ($s[3],&DWP(3,$te,$s[2],8)); # s0>>8 | ||
| 135 | &movz ($s[1],&HB($v1)); | ||
| 136 | &and ($v1,0xFF); | ||
| 137 | &mov ($s[2],&DWP(2,$te,$v1,8)); # s0>>16 | ||
| 138 | &mov ($v1,$v0); | ||
| 139 | &mov ($s[1],&DWP(1,$te,$s[1],8)); # s0>>24 | ||
| 140 | |||
| 141 | &and ($v0,0xFF); | ||
| 142 | &xor ($s[3],&DWP(0,$te,$v0,8)); # s3>>0 | ||
| 143 | &movz ($v0,&HB($v1)); | ||
| 144 | &shr ($v1,16); | ||
| 145 | &xor ($s[2],&DWP(3,$te,$v0,8)); # s3>>8 | ||
| 146 | &movz ($v0,&HB($v1)); | ||
| 147 | &and ($v1,0xFF); | ||
| 148 | &xor ($s[1],&DWP(2,$te,$v1,8)); # s3>>16 | ||
| 149 | &mov ($v1,&DWP(4,"esp")); # restore s2 | ||
| 150 | &xor ($s[0],&DWP(1,$te,$v0,8)); # s3>>24 | ||
| 151 | |||
| 152 | &mov ($v0,$v1); | ||
| 153 | &and ($v1,0xFF); | ||
| 154 | &xor ($s[2],&DWP(0,$te,$v1,8)); # s2>>0 | ||
| 155 | &movz ($v1,&HB($v0)); | ||
| 156 | &shr ($v0,16); | ||
| 157 | &xor ($s[1],&DWP(3,$te,$v1,8)); # s2>>8 | ||
| 158 | &movz ($v1,&HB($v0)); | ||
| 159 | &and ($v0,0xFF); | ||
| 160 | &xor ($s[0],&DWP(2,$te,$v0,8)); # s2>>16 | ||
| 161 | &mov ($v0,&DWP(8,"esp")); # restore s1 | ||
| 162 | &xor ($s[3],&DWP(1,$te,$v1,8)); # s2>>24 | ||
| 163 | |||
| 164 | &mov ($v1,$v0); | ||
| 165 | &and ($v0,0xFF); | ||
| 166 | &xor ($s[1],&DWP(0,$te,$v0,8)); # s1>>0 | ||
| 167 | &movz ($v0,&HB($v1)); | ||
| 168 | &shr ($v1,16); | ||
| 169 | &xor ($s[0],&DWP(3,$te,$v0,8)); # s1>>8 | ||
| 170 | &movz ($v0,&HB($v1)); | ||
| 171 | &and ($v1,0xFF); | ||
| 172 | &xor ($s[3],&DWP(2,$te,$v1,8)); # s1>>16 | ||
| 173 | &mov ($key,&DWP(12,"esp")); # reincarnate v1 as key | ||
| 174 | &xor ($s[2],&DWP(1,$te,$v0,8)); # s1>>24 | ||
| 175 | } | ||
| 176 | |||
| 177 | sub encstep() | ||
| 178 | { my ($i,$te,@s) = @_; | ||
| 179 | my $tmp = $key; | ||
| 180 | my $out = $i==3?$s[0]:$acc; | ||
| 181 | |||
| 182 | # lines marked with #%e?x[i] denote "reordered" instructions... | ||
| 183 | if ($i==3) { &mov ($key,&DWP(12,"esp")); }##%edx | ||
| 184 | else { &mov ($out,$s[0]); | ||
| 185 | &and ($out,0xFF); } | ||
| 186 | if ($i==1) { &shr ($s[0],16); }#%ebx[1] | ||
| 187 | if ($i==2) { &shr ($s[0],24); }#%ecx[2] | ||
| 188 | &mov ($out,&DWP(0,$te,$out,8)); | ||
| 189 | |||
| 190 | if ($i==3) { $tmp=$s[1]; }##%eax | ||
| 191 | &movz ($tmp,&HB($s[1])); | ||
| 192 | &xor ($out,&DWP(3,$te,$tmp,8)); | ||
| 193 | |||
| 194 | if ($i==3) { $tmp=$s[2]; &mov ($s[1],&DWP(4,"esp")); }##%ebx | ||
| 195 | else { &mov ($tmp,$s[2]); | ||
| 196 | &shr ($tmp,16); } | ||
| 197 | if ($i==2) { &and ($s[1],0xFF); }#%edx[2] | ||
| 198 | &and ($tmp,0xFF); | ||
| 199 | &xor ($out,&DWP(2,$te,$tmp,8)); | ||
| 200 | |||
| 201 | if ($i==3) { $tmp=$s[3]; &mov ($s[2],&DWP(8,"esp")); }##%ecx | ||
| 202 | elsif($i==2){ &movz ($tmp,&HB($s[3])); }#%ebx[2] | ||
| 203 | else { &mov ($tmp,$s[3]); | ||
| 204 | &shr ($tmp,24) } | ||
| 205 | &xor ($out,&DWP(1,$te,$tmp,8)); | ||
| 206 | if ($i<2) { &mov (&DWP(4+4*$i,"esp"),$out); } | ||
| 207 | if ($i==3) { &mov ($s[3],$acc); } | ||
| 208 | &comment(); | ||
| 209 | } | ||
| 210 | |||
| 211 | sub enclast() | ||
| 212 | { my ($i,$te,@s)=@_; | ||
| 213 | my $tmp = $key; | ||
| 214 | my $out = $i==3?$s[0]:$acc; | ||
| 215 | |||
| 216 | if ($i==3) { &mov ($key,&DWP(12,"esp")); }##%edx | ||
| 217 | else { &mov ($out,$s[0]); } | ||
| 218 | &and ($out,0xFF); | ||
| 219 | if ($i==1) { &shr ($s[0],16); }#%ebx[1] | ||
| 220 | if ($i==2) { &shr ($s[0],24); }#%ecx[2] | ||
| 221 | &mov ($out,&DWP(2,$te,$out,8)); | ||
| 222 | &and ($out,0x000000ff); | ||
| 223 | |||
| 224 | if ($i==3) { $tmp=$s[1]; }##%eax | ||
| 225 | &movz ($tmp,&HB($s[1])); | ||
| 226 | &mov ($tmp,&DWP(0,$te,$tmp,8)); | ||
| 227 | &and ($tmp,0x0000ff00); | ||
| 228 | &xor ($out,$tmp); | ||
| 229 | |||
| 230 | if ($i==3) { $tmp=$s[2]; &mov ($s[1],&DWP(4,"esp")); }##%ebx | ||
| 231 | else { mov ($tmp,$s[2]); | ||
| 232 | &shr ($tmp,16); } | ||
| 233 | if ($i==2) { &and ($s[1],0xFF); }#%edx[2] | ||
| 234 | &and ($tmp,0xFF); | ||
| 235 | &mov ($tmp,&DWP(0,$te,$tmp,8)); | ||
| 236 | &and ($tmp,0x00ff0000); | ||
| 237 | &xor ($out,$tmp); | ||
| 238 | |||
| 239 | if ($i==3) { $tmp=$s[3]; &mov ($s[2],&DWP(8,"esp")); }##%ecx | ||
| 240 | elsif($i==2){ &movz ($tmp,&HB($s[3])); }#%ebx[2] | ||
| 241 | else { &mov ($tmp,$s[3]); | ||
| 242 | &shr ($tmp,24); } | ||
| 243 | &mov ($tmp,&DWP(2,$te,$tmp,8)); | ||
| 244 | &and ($tmp,0xff000000); | ||
| 245 | &xor ($out,$tmp); | ||
| 246 | if ($i<2) { &mov (&DWP(4+4*$i,"esp"),$out); } | ||
| 247 | if ($i==3) { &mov ($s[3],$acc); } | ||
| 248 | } | ||
| 249 | |||
| 250 | sub _data_word() { my $i; while(defined($i=shift)) { &data_word($i,$i); } } | ||
| 251 | |||
| 252 | &public_label("AES_Te"); | ||
| 253 | &function_begin_B("_x86_AES_encrypt"); | ||
| 254 | if ($vertical_spin) { | ||
| 255 | # I need high parts of volatile registers to be accessible... | ||
| 256 | &exch ($s1="edi",$key="ebx"); | ||
| 257 | &mov ($s2="esi",$acc="ecx"); | ||
| 258 | } | ||
| 259 | |||
| 260 | # note that caller is expected to allocate stack frame for me! | ||
| 261 | &mov (&DWP(12,"esp"),$key); # save key | ||
| 262 | |||
| 263 | &xor ($s0,&DWP(0,$key)); # xor with key | ||
| 264 | &xor ($s1,&DWP(4,$key)); | ||
| 265 | &xor ($s2,&DWP(8,$key)); | ||
| 266 | &xor ($s3,&DWP(12,$key)); | ||
| 267 | |||
| 268 | &mov ($acc,&DWP(240,$key)); # load key->rounds | ||
| 269 | |||
| 270 | if ($small_footprint) { | ||
| 271 | &lea ($acc,&DWP(-2,$acc,$acc)); | ||
| 272 | &lea ($acc,&DWP(0,$key,$acc,8)); | ||
| 273 | &mov (&DWP(16,"esp"),$acc); # end of key schedule | ||
| 274 | &align (4); | ||
| 275 | &set_label("loop"); | ||
| 276 | if ($vertical_spin) { | ||
| 277 | &encvert("ebp",$s0,$s1,$s2,$s3); | ||
| 278 | } else { | ||
| 279 | &encstep(0,"ebp",$s0,$s1,$s2,$s3); | ||
| 280 | &encstep(1,"ebp",$s1,$s2,$s3,$s0); | ||
| 281 | &encstep(2,"ebp",$s2,$s3,$s0,$s1); | ||
| 282 | &encstep(3,"ebp",$s3,$s0,$s1,$s2); | ||
| 283 | } | ||
| 284 | &add ($key,16); # advance rd_key | ||
| 285 | &xor ($s0,&DWP(0,$key)); | ||
| 286 | &xor ($s1,&DWP(4,$key)); | ||
| 287 | &xor ($s2,&DWP(8,$key)); | ||
| 288 | &xor ($s3,&DWP(12,$key)); | ||
| 289 | &cmp ($key,&DWP(16,"esp")); | ||
| 290 | &mov (&DWP(12,"esp"),$key); | ||
| 291 | &jb (&label("loop")); | ||
| 292 | } | ||
| 293 | else { | ||
| 294 | &cmp ($acc,10); | ||
| 295 | &jle (&label("10rounds")); | ||
| 296 | &cmp ($acc,12); | ||
| 297 | &jle (&label("12rounds")); | ||
| 298 | |||
| 299 | &set_label("14rounds"); | ||
| 300 | for ($i=1;$i<3;$i++) { | ||
| 301 | if ($vertical_spin) { | ||
| 302 | &encvert("ebp",$s0,$s1,$s2,$s3); | ||
| 303 | } else { | ||
| 304 | &encstep(0,"ebp",$s0,$s1,$s2,$s3); | ||
| 305 | &encstep(1,"ebp",$s1,$s2,$s3,$s0); | ||
| 306 | &encstep(2,"ebp",$s2,$s3,$s0,$s1); | ||
| 307 | &encstep(3,"ebp",$s3,$s0,$s1,$s2); | ||
| 308 | } | ||
| 309 | &xor ($s0,&DWP(16*$i+0,$key)); | ||
| 310 | &xor ($s1,&DWP(16*$i+4,$key)); | ||
| 311 | &xor ($s2,&DWP(16*$i+8,$key)); | ||
| 312 | &xor ($s3,&DWP(16*$i+12,$key)); | ||
| 313 | } | ||
| 314 | &add ($key,32); | ||
| 315 | &mov (&DWP(12,"esp"),$key); # advance rd_key | ||
| 316 | &set_label("12rounds"); | ||
| 317 | for ($i=1;$i<3;$i++) { | ||
| 318 | if ($vertical_spin) { | ||
| 319 | &encvert("ebp",$s0,$s1,$s2,$s3); | ||
| 320 | } else { | ||
| 321 | &encstep(0,"ebp",$s0,$s1,$s2,$s3); | ||
| 322 | &encstep(1,"ebp",$s1,$s2,$s3,$s0); | ||
| 323 | &encstep(2,"ebp",$s2,$s3,$s0,$s1); | ||
| 324 | &encstep(3,"ebp",$s3,$s0,$s1,$s2); | ||
| 325 | } | ||
| 326 | &xor ($s0,&DWP(16*$i+0,$key)); | ||
| 327 | &xor ($s1,&DWP(16*$i+4,$key)); | ||
| 328 | &xor ($s2,&DWP(16*$i+8,$key)); | ||
| 329 | &xor ($s3,&DWP(16*$i+12,$key)); | ||
| 330 | } | ||
| 331 | &add ($key,32); | ||
| 332 | &mov (&DWP(12,"esp"),$key); # advance rd_key | ||
| 333 | &set_label("10rounds"); | ||
| 334 | for ($i=1;$i<10;$i++) { | ||
| 335 | if ($vertical_spin) { | ||
| 336 | &encvert("ebp",$s0,$s1,$s2,$s3); | ||
| 337 | } else { | ||
| 338 | &encstep(0,"ebp",$s0,$s1,$s2,$s3); | ||
| 339 | &encstep(1,"ebp",$s1,$s2,$s3,$s0); | ||
| 340 | &encstep(2,"ebp",$s2,$s3,$s0,$s1); | ||
| 341 | &encstep(3,"ebp",$s3,$s0,$s1,$s2); | ||
| 342 | } | ||
| 343 | &xor ($s0,&DWP(16*$i+0,$key)); | ||
| 344 | &xor ($s1,&DWP(16*$i+4,$key)); | ||
| 345 | &xor ($s2,&DWP(16*$i+8,$key)); | ||
| 346 | &xor ($s3,&DWP(16*$i+12,$key)); | ||
| 347 | } | ||
| 348 | } | ||
| 349 | |||
| 350 | if ($vertical_spin) { | ||
| 351 | # "reincarnate" some registers for "horizontal" spin... | ||
| 352 | &mov ($s1="ebx",$key="edi"); | ||
| 353 | &mov ($s2="ecx",$acc="esi"); | ||
| 354 | } | ||
| 355 | &enclast(0,"ebp",$s0,$s1,$s2,$s3); | ||
| 356 | &enclast(1,"ebp",$s1,$s2,$s3,$s0); | ||
| 357 | &enclast(2,"ebp",$s2,$s3,$s0,$s1); | ||
| 358 | &enclast(3,"ebp",$s3,$s0,$s1,$s2); | ||
| 359 | |||
| 360 | &add ($key,$small_footprint?16:160); | ||
| 361 | &xor ($s0,&DWP(0,$key)); | ||
| 362 | &xor ($s1,&DWP(4,$key)); | ||
| 363 | &xor ($s2,&DWP(8,$key)); | ||
| 364 | &xor ($s3,&DWP(12,$key)); | ||
| 365 | |||
| 366 | &ret (); | ||
| 367 | |||
| 368 | &set_label("AES_Te",64); # Yes! I keep it in the code segment! | ||
| 369 | &_data_word(0xa56363c6, 0x847c7cf8, 0x997777ee, 0x8d7b7bf6); | ||
| 370 | &_data_word(0x0df2f2ff, 0xbd6b6bd6, 0xb16f6fde, 0x54c5c591); | ||
| 371 | &_data_word(0x50303060, 0x03010102, 0xa96767ce, 0x7d2b2b56); | ||
| 372 | &_data_word(0x19fefee7, 0x62d7d7b5, 0xe6abab4d, 0x9a7676ec); | ||
| 373 | &_data_word(0x45caca8f, 0x9d82821f, 0x40c9c989, 0x877d7dfa); | ||
| 374 | &_data_word(0x15fafaef, 0xeb5959b2, 0xc947478e, 0x0bf0f0fb); | ||
| 375 | &_data_word(0xecadad41, 0x67d4d4b3, 0xfda2a25f, 0xeaafaf45); | ||
| 376 | &_data_word(0xbf9c9c23, 0xf7a4a453, 0x967272e4, 0x5bc0c09b); | ||
| 377 | &_data_word(0xc2b7b775, 0x1cfdfde1, 0xae93933d, 0x6a26264c); | ||
| 378 | &_data_word(0x5a36366c, 0x413f3f7e, 0x02f7f7f5, 0x4fcccc83); | ||
| 379 | &_data_word(0x5c343468, 0xf4a5a551, 0x34e5e5d1, 0x08f1f1f9); | ||
| 380 | &_data_word(0x937171e2, 0x73d8d8ab, 0x53313162, 0x3f15152a); | ||
| 381 | &_data_word(0x0c040408, 0x52c7c795, 0x65232346, 0x5ec3c39d); | ||
| 382 | &_data_word(0x28181830, 0xa1969637, 0x0f05050a, 0xb59a9a2f); | ||
| 383 | &_data_word(0x0907070e, 0x36121224, 0x9b80801b, 0x3de2e2df); | ||
| 384 | &_data_word(0x26ebebcd, 0x6927274e, 0xcdb2b27f, 0x9f7575ea); | ||
| 385 | &_data_word(0x1b090912, 0x9e83831d, 0x742c2c58, 0x2e1a1a34); | ||
| 386 | &_data_word(0x2d1b1b36, 0xb26e6edc, 0xee5a5ab4, 0xfba0a05b); | ||
| 387 | &_data_word(0xf65252a4, 0x4d3b3b76, 0x61d6d6b7, 0xceb3b37d); | ||
| 388 | &_data_word(0x7b292952, 0x3ee3e3dd, 0x712f2f5e, 0x97848413); | ||
| 389 | &_data_word(0xf55353a6, 0x68d1d1b9, 0x00000000, 0x2cededc1); | ||
| 390 | &_data_word(0x60202040, 0x1ffcfce3, 0xc8b1b179, 0xed5b5bb6); | ||
| 391 | &_data_word(0xbe6a6ad4, 0x46cbcb8d, 0xd9bebe67, 0x4b393972); | ||
| 392 | &_data_word(0xde4a4a94, 0xd44c4c98, 0xe85858b0, 0x4acfcf85); | ||
| 393 | &_data_word(0x6bd0d0bb, 0x2aefefc5, 0xe5aaaa4f, 0x16fbfbed); | ||
| 394 | &_data_word(0xc5434386, 0xd74d4d9a, 0x55333366, 0x94858511); | ||
| 395 | &_data_word(0xcf45458a, 0x10f9f9e9, 0x06020204, 0x817f7ffe); | ||
| 396 | &_data_word(0xf05050a0, 0x443c3c78, 0xba9f9f25, 0xe3a8a84b); | ||
| 397 | &_data_word(0xf35151a2, 0xfea3a35d, 0xc0404080, 0x8a8f8f05); | ||
| 398 | &_data_word(0xad92923f, 0xbc9d9d21, 0x48383870, 0x04f5f5f1); | ||
| 399 | &_data_word(0xdfbcbc63, 0xc1b6b677, 0x75dadaaf, 0x63212142); | ||
| 400 | &_data_word(0x30101020, 0x1affffe5, 0x0ef3f3fd, 0x6dd2d2bf); | ||
| 401 | &_data_word(0x4ccdcd81, 0x140c0c18, 0x35131326, 0x2fececc3); | ||
| 402 | &_data_word(0xe15f5fbe, 0xa2979735, 0xcc444488, 0x3917172e); | ||
| 403 | &_data_word(0x57c4c493, 0xf2a7a755, 0x827e7efc, 0x473d3d7a); | ||
| 404 | &_data_word(0xac6464c8, 0xe75d5dba, 0x2b191932, 0x957373e6); | ||
| 405 | &_data_word(0xa06060c0, 0x98818119, 0xd14f4f9e, 0x7fdcdca3); | ||
| 406 | &_data_word(0x66222244, 0x7e2a2a54, 0xab90903b, 0x8388880b); | ||
| 407 | &_data_word(0xca46468c, 0x29eeeec7, 0xd3b8b86b, 0x3c141428); | ||
| 408 | &_data_word(0x79dedea7, 0xe25e5ebc, 0x1d0b0b16, 0x76dbdbad); | ||
| 409 | &_data_word(0x3be0e0db, 0x56323264, 0x4e3a3a74, 0x1e0a0a14); | ||
| 410 | &_data_word(0xdb494992, 0x0a06060c, 0x6c242448, 0xe45c5cb8); | ||
| 411 | &_data_word(0x5dc2c29f, 0x6ed3d3bd, 0xefacac43, 0xa66262c4); | ||
| 412 | &_data_word(0xa8919139, 0xa4959531, 0x37e4e4d3, 0x8b7979f2); | ||
| 413 | &_data_word(0x32e7e7d5, 0x43c8c88b, 0x5937376e, 0xb76d6dda); | ||
| 414 | &_data_word(0x8c8d8d01, 0x64d5d5b1, 0xd24e4e9c, 0xe0a9a949); | ||
| 415 | &_data_word(0xb46c6cd8, 0xfa5656ac, 0x07f4f4f3, 0x25eaeacf); | ||
| 416 | &_data_word(0xaf6565ca, 0x8e7a7af4, 0xe9aeae47, 0x18080810); | ||
| 417 | &_data_word(0xd5baba6f, 0x887878f0, 0x6f25254a, 0x722e2e5c); | ||
| 418 | &_data_word(0x241c1c38, 0xf1a6a657, 0xc7b4b473, 0x51c6c697); | ||
| 419 | &_data_word(0x23e8e8cb, 0x7cdddda1, 0x9c7474e8, 0x211f1f3e); | ||
| 420 | &_data_word(0xdd4b4b96, 0xdcbdbd61, 0x868b8b0d, 0x858a8a0f); | ||
| 421 | &_data_word(0x907070e0, 0x423e3e7c, 0xc4b5b571, 0xaa6666cc); | ||
| 422 | &_data_word(0xd8484890, 0x05030306, 0x01f6f6f7, 0x120e0e1c); | ||
| 423 | &_data_word(0xa36161c2, 0x5f35356a, 0xf95757ae, 0xd0b9b969); | ||
| 424 | &_data_word(0x91868617, 0x58c1c199, 0x271d1d3a, 0xb99e9e27); | ||
| 425 | &_data_word(0x38e1e1d9, 0x13f8f8eb, 0xb398982b, 0x33111122); | ||
| 426 | &_data_word(0xbb6969d2, 0x70d9d9a9, 0x898e8e07, 0xa7949433); | ||
| 427 | &_data_word(0xb69b9b2d, 0x221e1e3c, 0x92878715, 0x20e9e9c9); | ||
| 428 | &_data_word(0x49cece87, 0xff5555aa, 0x78282850, 0x7adfdfa5); | ||
| 429 | &_data_word(0x8f8c8c03, 0xf8a1a159, 0x80898909, 0x170d0d1a); | ||
| 430 | &_data_word(0xdabfbf65, 0x31e6e6d7, 0xc6424284, 0xb86868d0); | ||
| 431 | &_data_word(0xc3414182, 0xb0999929, 0x772d2d5a, 0x110f0f1e); | ||
| 432 | &_data_word(0xcbb0b07b, 0xfc5454a8, 0xd6bbbb6d, 0x3a16162c); | ||
| 433 | #rcon: | ||
| 434 | &data_word(0x00000001, 0x00000002, 0x00000004, 0x00000008); | ||
| 435 | &data_word(0x00000010, 0x00000020, 0x00000040, 0x00000080); | ||
| 436 | &data_word(0x0000001b, 0x00000036, 0, 0, 0, 0, 0, 0); | ||
| 437 | &function_end_B("_x86_AES_encrypt"); | ||
| 438 | |||
| 439 | # void AES_encrypt (const void *inp,void *out,const AES_KEY *key); | ||
| 440 | &public_label("AES_Te"); | ||
| 441 | &function_begin("AES_encrypt"); | ||
| 442 | &mov ($acc,&wparam(0)); # load inp | ||
| 443 | &mov ($key,&wparam(2)); # load key | ||
| 444 | |||
| 445 | &mov ($s0,"esp"); | ||
| 446 | &sub ("esp",24); | ||
| 447 | &and ("esp",-64); | ||
| 448 | &add ("esp",4); | ||
| 449 | &mov (&DWP(16,"esp"),$s0); | ||
| 450 | |||
| 451 | &call (&label("pic_point")); # make it PIC! | ||
| 452 | &set_label("pic_point"); | ||
| 453 | &blindpop("ebp"); | ||
| 454 | &lea ("ebp",&DWP(&label("AES_Te")."-".&label("pic_point"),"ebp")); | ||
| 455 | |||
| 456 | &mov ($s0,&DWP(0,$acc)); # load input data | ||
| 457 | &mov ($s1,&DWP(4,$acc)); | ||
| 458 | &mov ($s2,&DWP(8,$acc)); | ||
| 459 | &mov ($s3,&DWP(12,$acc)); | ||
| 460 | |||
| 461 | &call ("_x86_AES_encrypt"); | ||
| 462 | |||
| 463 | &mov ("esp",&DWP(16,"esp")); | ||
| 464 | |||
| 465 | &mov ($acc,&wparam(1)); # load out | ||
| 466 | &mov (&DWP(0,$acc),$s0); # write output data | ||
| 467 | &mov (&DWP(4,$acc),$s1); | ||
| 468 | &mov (&DWP(8,$acc),$s2); | ||
| 469 | &mov (&DWP(12,$acc),$s3); | ||
| 470 | &function_end("AES_encrypt"); | ||
| 471 | |||
| 472 | #------------------------------------------------------------------# | ||
| 473 | |||
| 474 | sub decstep() | ||
| 475 | { my ($i,$td,@s) = @_; | ||
| 476 | my $tmp = $key; | ||
| 477 | my $out = $i==3?$s[0]:$acc; | ||
| 478 | |||
| 479 | # no instructions are reordered, as performance appears | ||
| 480 | # optimal... or rather that all attempts to reorder didn't | ||
| 481 | # result in better performance [which by the way is not a | ||
| 482 | # bit lower than ecryption]. | ||
| 483 | if($i==3) { &mov ($key,&DWP(12,"esp")); } | ||
| 484 | else { &mov ($out,$s[0]); } | ||
| 485 | &and ($out,0xFF); | ||
| 486 | &mov ($out,&DWP(0,$td,$out,8)); | ||
| 487 | |||
| 488 | if ($i==3) { $tmp=$s[1]; } | ||
| 489 | &movz ($tmp,&HB($s[1])); | ||
| 490 | &xor ($out,&DWP(3,$td,$tmp,8)); | ||
| 491 | |||
| 492 | if ($i==3) { $tmp=$s[2]; &mov ($s[1],$acc); } | ||
| 493 | else { &mov ($tmp,$s[2]); } | ||
| 494 | &shr ($tmp,16); | ||
| 495 | &and ($tmp,0xFF); | ||
| 496 | &xor ($out,&DWP(2,$td,$tmp,8)); | ||
| 497 | |||
| 498 | if ($i==3) { $tmp=$s[3]; &mov ($s[2],&DWP(8,"esp")); } | ||
| 499 | else { &mov ($tmp,$s[3]); } | ||
| 500 | &shr ($tmp,24); | ||
| 501 | &xor ($out,&DWP(1,$td,$tmp,8)); | ||
| 502 | if ($i<2) { &mov (&DWP(4+4*$i,"esp"),$out); } | ||
| 503 | if ($i==3) { &mov ($s[3],&DWP(4,"esp")); } | ||
| 504 | &comment(); | ||
| 505 | } | ||
| 506 | |||
| 507 | sub declast() | ||
| 508 | { my ($i,$td,@s)=@_; | ||
| 509 | my $tmp = $key; | ||
| 510 | my $out = $i==3?$s[0]:$acc; | ||
| 511 | |||
| 512 | if($i==3) { &mov ($key,&DWP(12,"esp")); } | ||
| 513 | else { &mov ($out,$s[0]); } | ||
| 514 | &and ($out,0xFF); | ||
| 515 | &movz ($out,&BP(2048,$td,$out,1)); | ||
| 516 | |||
| 517 | if ($i==3) { $tmp=$s[1]; } | ||
| 518 | &movz ($tmp,&HB($s[1])); | ||
| 519 | &movz ($tmp,&BP(2048,$td,$tmp,1)); | ||
| 520 | &shl ($tmp,8); | ||
| 521 | &xor ($out,$tmp); | ||
| 522 | |||
| 523 | if ($i==3) { $tmp=$s[2]; &mov ($s[1],$acc); } | ||
| 524 | else { mov ($tmp,$s[2]); } | ||
| 525 | &shr ($tmp,16); | ||
| 526 | &and ($tmp,0xFF); | ||
| 527 | &movz ($tmp,&BP(2048,$td,$tmp,1)); | ||
| 528 | &shl ($tmp,16); | ||
| 529 | &xor ($out,$tmp); | ||
| 530 | |||
| 531 | if ($i==3) { $tmp=$s[3]; &mov ($s[2],&DWP(8,"esp")); } | ||
| 532 | else { &mov ($tmp,$s[3]); } | ||
| 533 | &shr ($tmp,24); | ||
| 534 | &movz ($tmp,&BP(2048,$td,$tmp,1)); | ||
| 535 | &shl ($tmp,24); | ||
| 536 | &xor ($out,$tmp); | ||
| 537 | if ($i<2) { &mov (&DWP(4+4*$i,"esp"),$out); } | ||
| 538 | if ($i==3) { &mov ($s[3],&DWP(4,"esp")); } | ||
| 539 | } | ||
| 540 | |||
| 541 | &public_label("AES_Td"); | ||
| 542 | &function_begin_B("_x86_AES_decrypt"); | ||
| 543 | # note that caller is expected to allocate stack frame for me! | ||
| 544 | &mov (&DWP(12,"esp"),$key); # save key | ||
| 545 | |||
| 546 | &xor ($s0,&DWP(0,$key)); # xor with key | ||
| 547 | &xor ($s1,&DWP(4,$key)); | ||
| 548 | &xor ($s2,&DWP(8,$key)); | ||
| 549 | &xor ($s3,&DWP(12,$key)); | ||
| 550 | |||
| 551 | &mov ($acc,&DWP(240,$key)); # load key->rounds | ||
| 552 | |||
| 553 | if ($small_footprint) { | ||
| 554 | &lea ($acc,&DWP(-2,$acc,$acc)); | ||
| 555 | &lea ($acc,&DWP(0,$key,$acc,8)); | ||
| 556 | &mov (&DWP(16,"esp"),$acc); # end of key schedule | ||
| 557 | &align (4); | ||
| 558 | &set_label("loop"); | ||
| 559 | &decstep(0,"ebp",$s0,$s3,$s2,$s1); | ||
| 560 | &decstep(1,"ebp",$s1,$s0,$s3,$s2); | ||
| 561 | &decstep(2,"ebp",$s2,$s1,$s0,$s3); | ||
| 562 | &decstep(3,"ebp",$s3,$s2,$s1,$s0); | ||
| 563 | &add ($key,16); # advance rd_key | ||
| 564 | &xor ($s0,&DWP(0,$key)); | ||
| 565 | &xor ($s1,&DWP(4,$key)); | ||
| 566 | &xor ($s2,&DWP(8,$key)); | ||
| 567 | &xor ($s3,&DWP(12,$key)); | ||
| 568 | &cmp ($key,&DWP(16,"esp")); | ||
| 569 | &mov (&DWP(12,"esp"),$key); | ||
| 570 | &jb (&label("loop")); | ||
| 571 | } | ||
| 572 | else { | ||
| 573 | &cmp ($acc,10); | ||
| 574 | &jle (&label("10rounds")); | ||
| 575 | &cmp ($acc,12); | ||
| 576 | &jle (&label("12rounds")); | ||
| 577 | |||
| 578 | &set_label("14rounds"); | ||
| 579 | for ($i=1;$i<3;$i++) { | ||
| 580 | &decstep(0,"ebp",$s0,$s3,$s2,$s1); | ||
| 581 | &decstep(1,"ebp",$s1,$s0,$s3,$s2); | ||
| 582 | &decstep(2,"ebp",$s2,$s1,$s0,$s3); | ||
| 583 | &decstep(3,"ebp",$s3,$s2,$s1,$s0); | ||
| 584 | &xor ($s0,&DWP(16*$i+0,$key)); | ||
| 585 | &xor ($s1,&DWP(16*$i+4,$key)); | ||
| 586 | &xor ($s2,&DWP(16*$i+8,$key)); | ||
| 587 | &xor ($s3,&DWP(16*$i+12,$key)); | ||
| 588 | } | ||
| 589 | &add ($key,32); | ||
| 590 | &mov (&DWP(12,"esp"),$key); # advance rd_key | ||
| 591 | &set_label("12rounds"); | ||
| 592 | for ($i=1;$i<3;$i++) { | ||
| 593 | &decstep(0,"ebp",$s0,$s3,$s2,$s1); | ||
| 594 | &decstep(1,"ebp",$s1,$s0,$s3,$s2); | ||
| 595 | &decstep(2,"ebp",$s2,$s1,$s0,$s3); | ||
| 596 | &decstep(3,"ebp",$s3,$s2,$s1,$s0); | ||
| 597 | &xor ($s0,&DWP(16*$i+0,$key)); | ||
| 598 | &xor ($s1,&DWP(16*$i+4,$key)); | ||
| 599 | &xor ($s2,&DWP(16*$i+8,$key)); | ||
| 600 | &xor ($s3,&DWP(16*$i+12,$key)); | ||
| 601 | } | ||
| 602 | &add ($key,32); | ||
| 603 | &mov (&DWP(12,"esp"),$key); # advance rd_key | ||
| 604 | &set_label("10rounds"); | ||
| 605 | for ($i=1;$i<10;$i++) { | ||
| 606 | &decstep(0,"ebp",$s0,$s3,$s2,$s1); | ||
| 607 | &decstep(1,"ebp",$s1,$s0,$s3,$s2); | ||
| 608 | &decstep(2,"ebp",$s2,$s1,$s0,$s3); | ||
| 609 | &decstep(3,"ebp",$s3,$s2,$s1,$s0); | ||
| 610 | &xor ($s0,&DWP(16*$i+0,$key)); | ||
| 611 | &xor ($s1,&DWP(16*$i+4,$key)); | ||
| 612 | &xor ($s2,&DWP(16*$i+8,$key)); | ||
| 613 | &xor ($s3,&DWP(16*$i+12,$key)); | ||
| 614 | } | ||
| 615 | } | ||
| 616 | |||
| 617 | &declast(0,"ebp",$s0,$s3,$s2,$s1); | ||
| 618 | &declast(1,"ebp",$s1,$s0,$s3,$s2); | ||
| 619 | &declast(2,"ebp",$s2,$s1,$s0,$s3); | ||
| 620 | &declast(3,"ebp",$s3,$s2,$s1,$s0); | ||
| 621 | |||
| 622 | &add ($key,$small_footprint?16:160); | ||
| 623 | &xor ($s0,&DWP(0,$key)); | ||
| 624 | &xor ($s1,&DWP(4,$key)); | ||
| 625 | &xor ($s2,&DWP(8,$key)); | ||
| 626 | &xor ($s3,&DWP(12,$key)); | ||
| 627 | |||
| 628 | &ret (); | ||
| 629 | |||
| 630 | &set_label("AES_Td",64); # Yes! I keep it in the code segment! | ||
| 631 | &_data_word(0x50a7f451, 0x5365417e, 0xc3a4171a, 0x965e273a); | ||
| 632 | &_data_word(0xcb6bab3b, 0xf1459d1f, 0xab58faac, 0x9303e34b); | ||
| 633 | &_data_word(0x55fa3020, 0xf66d76ad, 0x9176cc88, 0x254c02f5); | ||
| 634 | &_data_word(0xfcd7e54f, 0xd7cb2ac5, 0x80443526, 0x8fa362b5); | ||
| 635 | &_data_word(0x495ab1de, 0x671bba25, 0x980eea45, 0xe1c0fe5d); | ||
| 636 | &_data_word(0x02752fc3, 0x12f04c81, 0xa397468d, 0xc6f9d36b); | ||
| 637 | &_data_word(0xe75f8f03, 0x959c9215, 0xeb7a6dbf, 0xda595295); | ||
| 638 | &_data_word(0x2d83bed4, 0xd3217458, 0x2969e049, 0x44c8c98e); | ||
| 639 | &_data_word(0x6a89c275, 0x78798ef4, 0x6b3e5899, 0xdd71b927); | ||
| 640 | &_data_word(0xb64fe1be, 0x17ad88f0, 0x66ac20c9, 0xb43ace7d); | ||
| 641 | &_data_word(0x184adf63, 0x82311ae5, 0x60335197, 0x457f5362); | ||
| 642 | &_data_word(0xe07764b1, 0x84ae6bbb, 0x1ca081fe, 0x942b08f9); | ||
| 643 | &_data_word(0x58684870, 0x19fd458f, 0x876cde94, 0xb7f87b52); | ||
| 644 | &_data_word(0x23d373ab, 0xe2024b72, 0x578f1fe3, 0x2aab5566); | ||
| 645 | &_data_word(0x0728ebb2, 0x03c2b52f, 0x9a7bc586, 0xa50837d3); | ||
| 646 | &_data_word(0xf2872830, 0xb2a5bf23, 0xba6a0302, 0x5c8216ed); | ||
| 647 | &_data_word(0x2b1ccf8a, 0x92b479a7, 0xf0f207f3, 0xa1e2694e); | ||
| 648 | &_data_word(0xcdf4da65, 0xd5be0506, 0x1f6234d1, 0x8afea6c4); | ||
| 649 | &_data_word(0x9d532e34, 0xa055f3a2, 0x32e18a05, 0x75ebf6a4); | ||
| 650 | &_data_word(0x39ec830b, 0xaaef6040, 0x069f715e, 0x51106ebd); | ||
| 651 | &_data_word(0xf98a213e, 0x3d06dd96, 0xae053edd, 0x46bde64d); | ||
| 652 | &_data_word(0xb58d5491, 0x055dc471, 0x6fd40604, 0xff155060); | ||
| 653 | &_data_word(0x24fb9819, 0x97e9bdd6, 0xcc434089, 0x779ed967); | ||
| 654 | &_data_word(0xbd42e8b0, 0x888b8907, 0x385b19e7, 0xdbeec879); | ||
| 655 | &_data_word(0x470a7ca1, 0xe90f427c, 0xc91e84f8, 0x00000000); | ||
| 656 | &_data_word(0x83868009, 0x48ed2b32, 0xac70111e, 0x4e725a6c); | ||
| 657 | &_data_word(0xfbff0efd, 0x5638850f, 0x1ed5ae3d, 0x27392d36); | ||
| 658 | &_data_word(0x64d90f0a, 0x21a65c68, 0xd1545b9b, 0x3a2e3624); | ||
| 659 | &_data_word(0xb1670a0c, 0x0fe75793, 0xd296eeb4, 0x9e919b1b); | ||
| 660 | &_data_word(0x4fc5c080, 0xa220dc61, 0x694b775a, 0x161a121c); | ||
| 661 | &_data_word(0x0aba93e2, 0xe52aa0c0, 0x43e0223c, 0x1d171b12); | ||
| 662 | &_data_word(0x0b0d090e, 0xadc78bf2, 0xb9a8b62d, 0xc8a91e14); | ||
| 663 | &_data_word(0x8519f157, 0x4c0775af, 0xbbdd99ee, 0xfd607fa3); | ||
| 664 | &_data_word(0x9f2601f7, 0xbcf5725c, 0xc53b6644, 0x347efb5b); | ||
| 665 | &_data_word(0x7629438b, 0xdcc623cb, 0x68fcedb6, 0x63f1e4b8); | ||
| 666 | &_data_word(0xcadc31d7, 0x10856342, 0x40229713, 0x2011c684); | ||
| 667 | &_data_word(0x7d244a85, 0xf83dbbd2, 0x1132f9ae, 0x6da129c7); | ||
| 668 | &_data_word(0x4b2f9e1d, 0xf330b2dc, 0xec52860d, 0xd0e3c177); | ||
| 669 | &_data_word(0x6c16b32b, 0x99b970a9, 0xfa489411, 0x2264e947); | ||
| 670 | &_data_word(0xc48cfca8, 0x1a3ff0a0, 0xd82c7d56, 0xef903322); | ||
| 671 | &_data_word(0xc74e4987, 0xc1d138d9, 0xfea2ca8c, 0x360bd498); | ||
| 672 | &_data_word(0xcf81f5a6, 0x28de7aa5, 0x268eb7da, 0xa4bfad3f); | ||
| 673 | &_data_word(0xe49d3a2c, 0x0d927850, 0x9bcc5f6a, 0x62467e54); | ||
| 674 | &_data_word(0xc2138df6, 0xe8b8d890, 0x5ef7392e, 0xf5afc382); | ||
| 675 | &_data_word(0xbe805d9f, 0x7c93d069, 0xa92dd56f, 0xb31225cf); | ||
| 676 | &_data_word(0x3b99acc8, 0xa77d1810, 0x6e639ce8, 0x7bbb3bdb); | ||
| 677 | &_data_word(0x097826cd, 0xf418596e, 0x01b79aec, 0xa89a4f83); | ||
| 678 | &_data_word(0x656e95e6, 0x7ee6ffaa, 0x08cfbc21, 0xe6e815ef); | ||
| 679 | &_data_word(0xd99be7ba, 0xce366f4a, 0xd4099fea, 0xd67cb029); | ||
| 680 | &_data_word(0xafb2a431, 0x31233f2a, 0x3094a5c6, 0xc066a235); | ||
| 681 | &_data_word(0x37bc4e74, 0xa6ca82fc, 0xb0d090e0, 0x15d8a733); | ||
| 682 | &_data_word(0x4a9804f1, 0xf7daec41, 0x0e50cd7f, 0x2ff69117); | ||
| 683 | &_data_word(0x8dd64d76, 0x4db0ef43, 0x544daacc, 0xdf0496e4); | ||
| 684 | &_data_word(0xe3b5d19e, 0x1b886a4c, 0xb81f2cc1, 0x7f516546); | ||
| 685 | &_data_word(0x04ea5e9d, 0x5d358c01, 0x737487fa, 0x2e410bfb); | ||
| 686 | &_data_word(0x5a1d67b3, 0x52d2db92, 0x335610e9, 0x1347d66d); | ||
| 687 | &_data_word(0x8c61d79a, 0x7a0ca137, 0x8e14f859, 0x893c13eb); | ||
| 688 | &_data_word(0xee27a9ce, 0x35c961b7, 0xede51ce1, 0x3cb1477a); | ||
| 689 | &_data_word(0x59dfd29c, 0x3f73f255, 0x79ce1418, 0xbf37c773); | ||
| 690 | &_data_word(0xeacdf753, 0x5baafd5f, 0x146f3ddf, 0x86db4478); | ||
| 691 | &_data_word(0x81f3afca, 0x3ec468b9, 0x2c342438, 0x5f40a3c2); | ||
| 692 | &_data_word(0x72c31d16, 0x0c25e2bc, 0x8b493c28, 0x41950dff); | ||
| 693 | &_data_word(0x7101a839, 0xdeb30c08, 0x9ce4b4d8, 0x90c15664); | ||
| 694 | &_data_word(0x6184cb7b, 0x70b632d5, 0x745c6c48, 0x4257b8d0); | ||
| 695 | #Td4: | ||
| 696 | &data_byte(0x52, 0x09, 0x6a, 0xd5, 0x30, 0x36, 0xa5, 0x38); | ||
| 697 | &data_byte(0xbf, 0x40, 0xa3, 0x9e, 0x81, 0xf3, 0xd7, 0xfb); | ||
| 698 | &data_byte(0x7c, 0xe3, 0x39, 0x82, 0x9b, 0x2f, 0xff, 0x87); | ||
| 699 | &data_byte(0x34, 0x8e, 0x43, 0x44, 0xc4, 0xde, 0xe9, 0xcb); | ||
| 700 | &data_byte(0x54, 0x7b, 0x94, 0x32, 0xa6, 0xc2, 0x23, 0x3d); | ||
| 701 | &data_byte(0xee, 0x4c, 0x95, 0x0b, 0x42, 0xfa, 0xc3, 0x4e); | ||
| 702 | &data_byte(0x08, 0x2e, 0xa1, 0x66, 0x28, 0xd9, 0x24, 0xb2); | ||
| 703 | &data_byte(0x76, 0x5b, 0xa2, 0x49, 0x6d, 0x8b, 0xd1, 0x25); | ||
| 704 | &data_byte(0x72, 0xf8, 0xf6, 0x64, 0x86, 0x68, 0x98, 0x16); | ||
| 705 | &data_byte(0xd4, 0xa4, 0x5c, 0xcc, 0x5d, 0x65, 0xb6, 0x92); | ||
| 706 | &data_byte(0x6c, 0x70, 0x48, 0x50, 0xfd, 0xed, 0xb9, 0xda); | ||
| 707 | &data_byte(0x5e, 0x15, 0x46, 0x57, 0xa7, 0x8d, 0x9d, 0x84); | ||
| 708 | &data_byte(0x90, 0xd8, 0xab, 0x00, 0x8c, 0xbc, 0xd3, 0x0a); | ||
| 709 | &data_byte(0xf7, 0xe4, 0x58, 0x05, 0xb8, 0xb3, 0x45, 0x06); | ||
| 710 | &data_byte(0xd0, 0x2c, 0x1e, 0x8f, 0xca, 0x3f, 0x0f, 0x02); | ||
| 711 | &data_byte(0xc1, 0xaf, 0xbd, 0x03, 0x01, 0x13, 0x8a, 0x6b); | ||
| 712 | &data_byte(0x3a, 0x91, 0x11, 0x41, 0x4f, 0x67, 0xdc, 0xea); | ||
| 713 | &data_byte(0x97, 0xf2, 0xcf, 0xce, 0xf0, 0xb4, 0xe6, 0x73); | ||
| 714 | &data_byte(0x96, 0xac, 0x74, 0x22, 0xe7, 0xad, 0x35, 0x85); | ||
| 715 | &data_byte(0xe2, 0xf9, 0x37, 0xe8, 0x1c, 0x75, 0xdf, 0x6e); | ||
| 716 | &data_byte(0x47, 0xf1, 0x1a, 0x71, 0x1d, 0x29, 0xc5, 0x89); | ||
| 717 | &data_byte(0x6f, 0xb7, 0x62, 0x0e, 0xaa, 0x18, 0xbe, 0x1b); | ||
| 718 | &data_byte(0xfc, 0x56, 0x3e, 0x4b, 0xc6, 0xd2, 0x79, 0x20); | ||
| 719 | &data_byte(0x9a, 0xdb, 0xc0, 0xfe, 0x78, 0xcd, 0x5a, 0xf4); | ||
| 720 | &data_byte(0x1f, 0xdd, 0xa8, 0x33, 0x88, 0x07, 0xc7, 0x31); | ||
| 721 | &data_byte(0xb1, 0x12, 0x10, 0x59, 0x27, 0x80, 0xec, 0x5f); | ||
| 722 | &data_byte(0x60, 0x51, 0x7f, 0xa9, 0x19, 0xb5, 0x4a, 0x0d); | ||
| 723 | &data_byte(0x2d, 0xe5, 0x7a, 0x9f, 0x93, 0xc9, 0x9c, 0xef); | ||
| 724 | &data_byte(0xa0, 0xe0, 0x3b, 0x4d, 0xae, 0x2a, 0xf5, 0xb0); | ||
| 725 | &data_byte(0xc8, 0xeb, 0xbb, 0x3c, 0x83, 0x53, 0x99, 0x61); | ||
| 726 | &data_byte(0x17, 0x2b, 0x04, 0x7e, 0xba, 0x77, 0xd6, 0x26); | ||
| 727 | &data_byte(0xe1, 0x69, 0x14, 0x63, 0x55, 0x21, 0x0c, 0x7d); | ||
| 728 | &function_end_B("_x86_AES_decrypt"); | ||
| 729 | |||
| 730 | # void AES_decrypt (const void *inp,void *out,const AES_KEY *key); | ||
| 731 | &public_label("AES_Td"); | ||
| 732 | &function_begin("AES_decrypt"); | ||
| 733 | &mov ($acc,&wparam(0)); # load inp | ||
| 734 | &mov ($key,&wparam(2)); # load key | ||
| 735 | |||
| 736 | &mov ($s0,"esp"); | ||
| 737 | &sub ("esp",24); | ||
| 738 | &and ("esp",-64); | ||
| 739 | &add ("esp",4); | ||
| 740 | &mov (&DWP(16,"esp"),$s0); | ||
| 741 | |||
| 742 | &call (&label("pic_point")); # make it PIC! | ||
| 743 | &set_label("pic_point"); | ||
| 744 | &blindpop("ebp"); | ||
| 745 | &lea ("ebp",&DWP(&label("AES_Td")."-".&label("pic_point"),"ebp")); | ||
| 746 | |||
| 747 | # prefetch Td4 | ||
| 748 | &lea ("ebp",&DWP(2048+128,"ebp")); | ||
| 749 | &mov ($s0,&DWP(0-128,"ebp")); | ||
| 750 | &mov ($s1,&DWP(32-128,"ebp")); | ||
| 751 | &mov ($s2,&DWP(64-128,"ebp")); | ||
| 752 | &mov ($s3,&DWP(96-128,"ebp")); | ||
| 753 | &mov ($s0,&DWP(128-128,"ebp")); | ||
| 754 | &mov ($s1,&DWP(160-128,"ebp")); | ||
| 755 | &mov ($s2,&DWP(192-128,"ebp")); | ||
| 756 | &mov ($s3,&DWP(224-128,"ebp")); | ||
| 757 | &lea ("ebp",&DWP(-2048-128,"ebp")); | ||
| 758 | |||
| 759 | &mov ($s0,&DWP(0,$acc)); # load input data | ||
| 760 | &mov ($s1,&DWP(4,$acc)); | ||
| 761 | &mov ($s2,&DWP(8,$acc)); | ||
| 762 | &mov ($s3,&DWP(12,$acc)); | ||
| 763 | |||
| 764 | &call ("_x86_AES_decrypt"); | ||
| 765 | |||
| 766 | &mov ("esp",&DWP(16,"esp")); | ||
| 767 | |||
| 768 | &mov ($acc,&wparam(1)); # load out | ||
| 769 | &mov (&DWP(0,$acc),$s0); # write output data | ||
| 770 | &mov (&DWP(4,$acc),$s1); | ||
| 771 | &mov (&DWP(8,$acc),$s2); | ||
| 772 | &mov (&DWP(12,$acc),$s3); | ||
| 773 | &function_end("AES_decrypt"); | ||
| 774 | |||
| 775 | # void AES_cbc_encrypt (const void char *inp, unsigned char *out, | ||
| 776 | # size_t length, const AES_KEY *key, | ||
| 777 | # unsigned char *ivp,const int enc); | ||
| 778 | { | ||
| 779 | # stack frame layout | ||
| 780 | # -4(%esp) 0(%esp) return address | ||
| 781 | # 0(%esp) 4(%esp) tmp1 | ||
| 782 | # 4(%esp) 8(%esp) tmp2 | ||
| 783 | # 8(%esp) 12(%esp) key | ||
| 784 | # 12(%esp) 16(%esp) end of key schedule | ||
| 785 | my $_esp=&DWP(16,"esp"); #saved %esp | ||
| 786 | my $_inp=&DWP(20,"esp"); #copy of wparam(0) | ||
| 787 | my $_out=&DWP(24,"esp"); #copy of wparam(1) | ||
| 788 | my $_len=&DWP(28,"esp"); #copy of wparam(2) | ||
| 789 | my $_key=&DWP(32,"esp"); #copy of wparam(3) | ||
| 790 | my $_ivp=&DWP(36,"esp"); #copy of wparam(4) | ||
| 791 | my $_tmp=&DWP(40,"esp"); #volatile variable | ||
| 792 | my $ivec=&DWP(44,"esp"); #ivec[16] | ||
| 793 | my $aes_key=&DWP(60,"esp"); #copy of aes_key | ||
| 794 | my $mark=&DWP(60+240,"esp"); #copy of aes_key->rounds | ||
| 795 | |||
| 796 | &public_label("AES_Te"); | ||
| 797 | &public_label("AES_Td"); | ||
| 798 | &function_begin("AES_cbc_encrypt"); | ||
| 799 | &mov ($s2 eq "ecx"? $s2 : "",&wparam(2)); # load len | ||
| 800 | &cmp ($s2,0); | ||
| 801 | &je (&label("enc_out")); | ||
| 802 | |||
| 803 | &call (&label("pic_point")); # make it PIC! | ||
| 804 | &set_label("pic_point"); | ||
| 805 | &blindpop("ebp"); | ||
| 806 | |||
| 807 | &pushf (); | ||
| 808 | &cld (); | ||
| 809 | |||
| 810 | &cmp (&wparam(5),0); | ||
| 811 | &je (&label("DECRYPT")); | ||
| 812 | |||
| 813 | &lea ("ebp",&DWP(&label("AES_Te")."-".&label("pic_point"),"ebp")); | ||
| 814 | |||
| 815 | # allocate aligned stack frame... | ||
| 816 | &lea ($key,&DWP(-64-244,"esp")); | ||
| 817 | &and ($key,-64); | ||
| 818 | |||
| 819 | # ... and make sure it doesn't alias with AES_Te modulo 4096 | ||
| 820 | &mov ($s0,"ebp"); | ||
| 821 | &lea ($s1,&DWP(2048,"ebp")); | ||
| 822 | &mov ($s3,$key); | ||
| 823 | &and ($s0,0xfff); # s = %ebp&0xfff | ||
| 824 | &and ($s1,0xfff); # e = (%ebp+2048)&0xfff | ||
| 825 | &and ($s3,0xfff); # p = %esp&0xfff | ||
| 826 | |||
| 827 | &cmp ($s3,$s1); # if (p>=e) %esp =- (p-e); | ||
| 828 | &jb (&label("te_break_out")); | ||
| 829 | &sub ($s3,$s1); | ||
| 830 | &sub ($key,$s3); | ||
| 831 | &jmp (&label("te_ok")); | ||
| 832 | &set_label("te_break_out"); # else %esp -= (p-s)&0xfff + framesz; | ||
| 833 | &sub ($s3,$s0); | ||
| 834 | &and ($s3,0xfff); | ||
| 835 | &add ($s3,64+256); | ||
| 836 | &sub ($key,$s3); | ||
| 837 | &align (4); | ||
| 838 | &set_label("te_ok"); | ||
| 839 | |||
| 840 | &mov ($s0,&wparam(0)); # load inp | ||
| 841 | &mov ($s1,&wparam(1)); # load out | ||
| 842 | &mov ($s3,&wparam(3)); # load key | ||
| 843 | &mov ($acc,&wparam(4)); # load ivp | ||
| 844 | |||
| 845 | &exch ("esp",$key); | ||
| 846 | &add ("esp",4); # reserve for return address! | ||
| 847 | &mov ($_esp,$key); # save %esp | ||
| 848 | |||
| 849 | &mov ($_inp,$s0); # save copy of inp | ||
| 850 | &mov ($_out,$s1); # save copy of out | ||
| 851 | &mov ($_len,$s2); # save copy of len | ||
| 852 | &mov ($_key,$s3); # save copy of key | ||
| 853 | &mov ($_ivp,$acc); # save copy of ivp | ||
| 854 | |||
| 855 | &mov ($mark,0); # copy of aes_key->rounds = 0; | ||
| 856 | if ($compromise) { | ||
| 857 | &cmp ($s2,$compromise); | ||
| 858 | &jb (&label("skip_ecopy")); | ||
| 859 | } | ||
| 860 | # do we copy key schedule to stack? | ||
| 861 | &mov ($s1 eq "ebx" ? $s1 : "",$s3); | ||
| 862 | &mov ($s2 eq "ecx" ? $s2 : "",244/4); | ||
| 863 | &sub ($s1,"ebp"); | ||
| 864 | &mov ("esi",$s3); | ||
| 865 | &and ($s1,0xfff); | ||
| 866 | &lea ("edi",$aes_key); | ||
| 867 | &cmp ($s1,2048); | ||
| 868 | &jb (&label("do_ecopy")); | ||
| 869 | &cmp ($s1,4096-244); | ||
| 870 | &jb (&label("skip_ecopy")); | ||
| 871 | &align (4); | ||
| 872 | &set_label("do_ecopy"); | ||
| 873 | &mov ($_key,"edi"); | ||
| 874 | &data_word(0xA5F3F689); # rep movsd | ||
| 875 | &set_label("skip_ecopy"); | ||
| 876 | |||
| 877 | &mov ($acc,$s0); | ||
| 878 | &mov ($key,16); | ||
| 879 | &align (4); | ||
| 880 | &set_label("prefetch_te"); | ||
| 881 | &mov ($s0,&DWP(0,"ebp")); | ||
| 882 | &mov ($s1,&DWP(32,"ebp")); | ||
| 883 | &mov ($s2,&DWP(64,"ebp")); | ||
| 884 | &mov ($s3,&DWP(96,"ebp")); | ||
| 885 | &lea ("ebp",&DWP(128,"ebp")); | ||
| 886 | &dec ($key); | ||
| 887 | &jnz (&label("prefetch_te")); | ||
| 888 | &sub ("ebp",2048); | ||
| 889 | |||
| 890 | &mov ($s2,$_len); | ||
| 891 | &mov ($key,$_ivp); | ||
| 892 | &test ($s2,0xFFFFFFF0); | ||
| 893 | &jz (&label("enc_tail")); # short input... | ||
| 894 | |||
| 895 | &mov ($s0,&DWP(0,$key)); # load iv | ||
| 896 | &mov ($s1,&DWP(4,$key)); | ||
| 897 | |||
| 898 | &align (4); | ||
| 899 | &set_label("enc_loop"); | ||
| 900 | &mov ($s2,&DWP(8,$key)); | ||
| 901 | &mov ($s3,&DWP(12,$key)); | ||
| 902 | |||
| 903 | &xor ($s0,&DWP(0,$acc)); # xor input data | ||
| 904 | &xor ($s1,&DWP(4,$acc)); | ||
| 905 | &xor ($s2,&DWP(8,$acc)); | ||
| 906 | &xor ($s3,&DWP(12,$acc)); | ||
| 907 | |||
| 908 | &mov ($key,$_key); # load key | ||
| 909 | &call ("_x86_AES_encrypt"); | ||
| 910 | |||
| 911 | &mov ($acc,$_inp); # load inp | ||
| 912 | &mov ($key,$_out); # load out | ||
| 913 | |||
| 914 | &mov (&DWP(0,$key),$s0); # save output data | ||
| 915 | &mov (&DWP(4,$key),$s1); | ||
| 916 | &mov (&DWP(8,$key),$s2); | ||
| 917 | &mov (&DWP(12,$key),$s3); | ||
| 918 | |||
| 919 | &mov ($s2,$_len); # load len | ||
| 920 | |||
| 921 | &lea ($acc,&DWP(16,$acc)); | ||
| 922 | &mov ($_inp,$acc); # save inp | ||
| 923 | |||
| 924 | &lea ($s3,&DWP(16,$key)); | ||
| 925 | &mov ($_out,$s3); # save out | ||
| 926 | |||
| 927 | &sub ($s2,16); | ||
| 928 | &test ($s2,0xFFFFFFF0); | ||
| 929 | &mov ($_len,$s2); # save len | ||
| 930 | &jnz (&label("enc_loop")); | ||
| 931 | &test ($s2,15); | ||
| 932 | &jnz (&label("enc_tail")); | ||
| 933 | &mov ($acc,$_ivp); # load ivp | ||
| 934 | &mov ($s2,&DWP(8,$key)); # restore last dwords | ||
| 935 | &mov ($s3,&DWP(12,$key)); | ||
| 936 | &mov (&DWP(0,$acc),$s0); # save ivec | ||
| 937 | &mov (&DWP(4,$acc),$s1); | ||
| 938 | &mov (&DWP(8,$acc),$s2); | ||
| 939 | &mov (&DWP(12,$acc),$s3); | ||
| 940 | |||
| 941 | &cmp ($mark,0); # was the key schedule copied? | ||
| 942 | &mov ("edi",$_key); | ||
| 943 | &je (&label("skip_ezero")); | ||
| 944 | # zero copy of key schedule | ||
| 945 | &mov ("ecx",240/4); | ||
| 946 | &xor ("eax","eax"); | ||
| 947 | &align (4); | ||
| 948 | &data_word(0xABF3F689); # rep stosd | ||
| 949 | &set_label("skip_ezero") | ||
| 950 | &mov ("esp",$_esp); | ||
| 951 | &popf (); | ||
| 952 | &set_label("enc_out"); | ||
| 953 | &function_end_A(); | ||
| 954 | &pushf (); # kludge, never executed | ||
| 955 | |||
| 956 | &align (4); | ||
| 957 | &set_label("enc_tail"); | ||
| 958 | &push ($key eq "edi" ? $key : ""); # push ivp | ||
| 959 | &mov ($key,$_out); # load out | ||
| 960 | &mov ($s1,16); | ||
| 961 | &sub ($s1,$s2); | ||
| 962 | &cmp ($key,$acc); # compare with inp | ||
| 963 | &je (&label("enc_in_place")); | ||
| 964 | &align (4); | ||
| 965 | &data_word(0xA4F3F689); # rep movsb # copy input | ||
| 966 | &jmp (&label("enc_skip_in_place")); | ||
| 967 | &set_label("enc_in_place"); | ||
| 968 | &lea ($key,&DWP(0,$key,$s2)); | ||
| 969 | &set_label("enc_skip_in_place"); | ||
| 970 | &mov ($s2,$s1); | ||
| 971 | &xor ($s0,$s0); | ||
| 972 | &align (4); | ||
| 973 | &data_word(0xAAF3F689); # rep stosb # zero tail | ||
| 974 | &pop ($key); # pop ivp | ||
| 975 | |||
| 976 | &mov ($acc,$_out); # output as input | ||
| 977 | &mov ($s0,&DWP(0,$key)); | ||
| 978 | &mov ($s1,&DWP(4,$key)); | ||
| 979 | &mov ($_len,16); # len=16 | ||
| 980 | &jmp (&label("enc_loop")); # one more spin... | ||
| 981 | |||
| 982 | #----------------------------- DECRYPT -----------------------------# | ||
| 983 | &align (4); | ||
| 984 | &set_label("DECRYPT"); | ||
| 985 | &lea ("ebp",&DWP(&label("AES_Td")."-".&label("pic_point"),"ebp")); | ||
| 986 | |||
| 987 | # allocate aligned stack frame... | ||
| 988 | &lea ($key,&DWP(-64-244,"esp")); | ||
| 989 | &and ($key,-64); | ||
| 990 | |||
| 991 | # ... and make sure it doesn't alias with AES_Td modulo 4096 | ||
| 992 | &mov ($s0,"ebp"); | ||
| 993 | &lea ($s1,&DWP(2048+256,"ebp")); | ||
| 994 | &mov ($s3,$key); | ||
| 995 | &and ($s0,0xfff); # s = %ebp&0xfff | ||
| 996 | &and ($s1,0xfff); # e = (%ebp+2048+256)&0xfff | ||
| 997 | &and ($s3,0xfff); # p = %esp&0xfff | ||
| 998 | |||
| 999 | &cmp ($s3,$s1); # if (p>=e) %esp =- (p-e); | ||
| 1000 | &jb (&label("td_break_out")); | ||
| 1001 | &sub ($s3,$s1); | ||
| 1002 | &sub ($key,$s3); | ||
| 1003 | &jmp (&label("td_ok")); | ||
| 1004 | &set_label("td_break_out"); # else %esp -= (p-s)&0xfff + framesz; | ||
| 1005 | &sub ($s3,$s0); | ||
| 1006 | &and ($s3,0xfff); | ||
| 1007 | &add ($s3,64+256); | ||
| 1008 | &sub ($key,$s3); | ||
| 1009 | &align (4); | ||
| 1010 | &set_label("td_ok"); | ||
| 1011 | |||
| 1012 | &mov ($s0,&wparam(0)); # load inp | ||
| 1013 | &mov ($s1,&wparam(1)); # load out | ||
| 1014 | &mov ($s3,&wparam(3)); # load key | ||
| 1015 | &mov ($acc,&wparam(4)); # load ivp | ||
| 1016 | |||
| 1017 | &exch ("esp",$key); | ||
| 1018 | &add ("esp",4); # reserve for return address! | ||
| 1019 | &mov ($_esp,$key); # save %esp | ||
| 1020 | |||
| 1021 | &mov ($_inp,$s0); # save copy of inp | ||
| 1022 | &mov ($_out,$s1); # save copy of out | ||
| 1023 | &mov ($_len,$s2); # save copy of len | ||
| 1024 | &mov ($_key,$s3); # save copy of key | ||
| 1025 | &mov ($_ivp,$acc); # save copy of ivp | ||
| 1026 | |||
| 1027 | &mov ($mark,0); # copy of aes_key->rounds = 0; | ||
| 1028 | if ($compromise) { | ||
| 1029 | &cmp ($s2,$compromise); | ||
| 1030 | &jb (&label("skip_dcopy")); | ||
| 1031 | } | ||
| 1032 | # do we copy key schedule to stack? | ||
| 1033 | &mov ($s1 eq "ebx" ? $s1 : "",$s3); | ||
| 1034 | &mov ($s2 eq "ecx" ? $s2 : "",244/4); | ||
| 1035 | &sub ($s1,"ebp"); | ||
| 1036 | &mov ("esi",$s3); | ||
| 1037 | &and ($s1,0xfff); | ||
| 1038 | &lea ("edi",$aes_key); | ||
| 1039 | &cmp ($s1,2048+256); | ||
| 1040 | &jb (&label("do_dcopy")); | ||
| 1041 | &cmp ($s1,4096-244); | ||
| 1042 | &jb (&label("skip_dcopy")); | ||
| 1043 | &align (4); | ||
| 1044 | &set_label("do_dcopy"); | ||
| 1045 | &mov ($_key,"edi"); | ||
| 1046 | &data_word(0xA5F3F689); # rep movsd | ||
| 1047 | &set_label("skip_dcopy"); | ||
| 1048 | |||
| 1049 | &mov ($acc,$s0); | ||
| 1050 | &mov ($key,18); | ||
| 1051 | &align (4); | ||
| 1052 | &set_label("prefetch_td"); | ||
| 1053 | &mov ($s0,&DWP(0,"ebp")); | ||
| 1054 | &mov ($s1,&DWP(32,"ebp")); | ||
| 1055 | &mov ($s2,&DWP(64,"ebp")); | ||
| 1056 | &mov ($s3,&DWP(96,"ebp")); | ||
| 1057 | &lea ("ebp",&DWP(128,"ebp")); | ||
| 1058 | &dec ($key); | ||
| 1059 | &jnz (&label("prefetch_td")); | ||
| 1060 | &sub ("ebp",2048+256); | ||
| 1061 | |||
| 1062 | &cmp ($acc,$_out); | ||
| 1063 | &je (&label("dec_in_place")); # in-place processing... | ||
| 1064 | |||
| 1065 | &mov ($key,$_ivp); # load ivp | ||
| 1066 | &mov ($_tmp,$key); | ||
| 1067 | |||
| 1068 | &align (4); | ||
| 1069 | &set_label("dec_loop"); | ||
| 1070 | &mov ($s0,&DWP(0,$acc)); # read input | ||
| 1071 | &mov ($s1,&DWP(4,$acc)); | ||
| 1072 | &mov ($s2,&DWP(8,$acc)); | ||
| 1073 | &mov ($s3,&DWP(12,$acc)); | ||
| 1074 | |||
| 1075 | &mov ($key,$_key); # load key | ||
| 1076 | &call ("_x86_AES_decrypt"); | ||
| 1077 | |||
| 1078 | &mov ($key,$_tmp); # load ivp | ||
| 1079 | &mov ($acc,$_len); # load len | ||
| 1080 | &xor ($s0,&DWP(0,$key)); # xor iv | ||
| 1081 | &xor ($s1,&DWP(4,$key)); | ||
| 1082 | &xor ($s2,&DWP(8,$key)); | ||
| 1083 | &xor ($s3,&DWP(12,$key)); | ||
| 1084 | |||
| 1085 | &sub ($acc,16); | ||
| 1086 | &jc (&label("dec_partial")); | ||
| 1087 | &mov ($_len,$acc); # save len | ||
| 1088 | &mov ($acc,$_inp); # load inp | ||
| 1089 | &mov ($key,$_out); # load out | ||
| 1090 | |||
| 1091 | &mov (&DWP(0,$key),$s0); # write output | ||
| 1092 | &mov (&DWP(4,$key),$s1); | ||
| 1093 | &mov (&DWP(8,$key),$s2); | ||
| 1094 | &mov (&DWP(12,$key),$s3); | ||
| 1095 | |||
| 1096 | &mov ($_tmp,$acc); # save ivp | ||
| 1097 | &lea ($acc,&DWP(16,$acc)); | ||
| 1098 | &mov ($_inp,$acc); # save inp | ||
| 1099 | |||
| 1100 | &lea ($key,&DWP(16,$key)); | ||
| 1101 | &mov ($_out,$key); # save out | ||
| 1102 | |||
| 1103 | &jnz (&label("dec_loop")); | ||
| 1104 | &mov ($key,$_tmp); # load temp ivp | ||
| 1105 | &set_label("dec_end"); | ||
| 1106 | &mov ($acc,$_ivp); # load user ivp | ||
| 1107 | &mov ($s0,&DWP(0,$key)); # load iv | ||
| 1108 | &mov ($s1,&DWP(4,$key)); | ||
| 1109 | &mov ($s2,&DWP(8,$key)); | ||
| 1110 | &mov ($s3,&DWP(12,$key)); | ||
| 1111 | &mov (&DWP(0,$acc),$s0); # copy back to user | ||
| 1112 | &mov (&DWP(4,$acc),$s1); | ||
| 1113 | &mov (&DWP(8,$acc),$s2); | ||
| 1114 | &mov (&DWP(12,$acc),$s3); | ||
| 1115 | &jmp (&label("dec_out")); | ||
| 1116 | |||
| 1117 | &align (4); | ||
| 1118 | &set_label("dec_partial"); | ||
| 1119 | &lea ($key,$ivec); | ||
| 1120 | &mov (&DWP(0,$key),$s0); # dump output to stack | ||
| 1121 | &mov (&DWP(4,$key),$s1); | ||
| 1122 | &mov (&DWP(8,$key),$s2); | ||
| 1123 | &mov (&DWP(12,$key),$s3); | ||
| 1124 | &lea ($s2 eq "ecx" ? $s2 : "",&DWP(16,$acc)); | ||
| 1125 | &mov ($acc eq "esi" ? $acc : "",$key); | ||
| 1126 | &mov ($key eq "edi" ? $key : "",$_out); # load out | ||
| 1127 | &data_word(0xA4F3F689); # rep movsb # copy output | ||
| 1128 | &mov ($key,$_inp); # use inp as temp ivp | ||
| 1129 | &jmp (&label("dec_end")); | ||
| 1130 | |||
| 1131 | &align (4); | ||
| 1132 | &set_label("dec_in_place"); | ||
| 1133 | &set_label("dec_in_place_loop"); | ||
| 1134 | &lea ($key,$ivec); | ||
| 1135 | &mov ($s0,&DWP(0,$acc)); # read input | ||
| 1136 | &mov ($s1,&DWP(4,$acc)); | ||
| 1137 | &mov ($s2,&DWP(8,$acc)); | ||
| 1138 | &mov ($s3,&DWP(12,$acc)); | ||
| 1139 | |||
| 1140 | &mov (&DWP(0,$key),$s0); # copy to temp | ||
| 1141 | &mov (&DWP(4,$key),$s1); | ||
| 1142 | &mov (&DWP(8,$key),$s2); | ||
| 1143 | &mov (&DWP(12,$key),$s3); | ||
| 1144 | |||
| 1145 | &mov ($key,$_key); # load key | ||
| 1146 | &call ("_x86_AES_decrypt"); | ||
| 1147 | |||
| 1148 | &mov ($key,$_ivp); # load ivp | ||
| 1149 | &mov ($acc,$_out); # load out | ||
| 1150 | &xor ($s0,&DWP(0,$key)); # xor iv | ||
| 1151 | &xor ($s1,&DWP(4,$key)); | ||
| 1152 | &xor ($s2,&DWP(8,$key)); | ||
| 1153 | &xor ($s3,&DWP(12,$key)); | ||
| 1154 | |||
| 1155 | &mov (&DWP(0,$acc),$s0); # write output | ||
| 1156 | &mov (&DWP(4,$acc),$s1); | ||
| 1157 | &mov (&DWP(8,$acc),$s2); | ||
| 1158 | &mov (&DWP(12,$acc),$s3); | ||
| 1159 | |||
| 1160 | &lea ($acc,&DWP(16,$acc)); | ||
| 1161 | &mov ($_out,$acc); # save out | ||
| 1162 | |||
| 1163 | &lea ($acc,$ivec); | ||
| 1164 | &mov ($s0,&DWP(0,$acc)); # read temp | ||
| 1165 | &mov ($s1,&DWP(4,$acc)); | ||
| 1166 | &mov ($s2,&DWP(8,$acc)); | ||
| 1167 | &mov ($s3,&DWP(12,$acc)); | ||
| 1168 | |||
| 1169 | &mov (&DWP(0,$key),$s0); # copy iv | ||
| 1170 | &mov (&DWP(4,$key),$s1); | ||
| 1171 | &mov (&DWP(8,$key),$s2); | ||
| 1172 | &mov (&DWP(12,$key),$s3); | ||
| 1173 | |||
| 1174 | &mov ($acc,$_inp); # load inp | ||
| 1175 | |||
| 1176 | &lea ($acc,&DWP(16,$acc)); | ||
| 1177 | &mov ($_inp,$acc); # save inp | ||
| 1178 | |||
| 1179 | &mov ($s2,$_len); # load len | ||
| 1180 | &sub ($s2,16); | ||
| 1181 | &jc (&label("dec_in_place_partial")); | ||
| 1182 | &mov ($_len,$s2); # save len | ||
| 1183 | &jnz (&label("dec_in_place_loop")); | ||
| 1184 | &jmp (&label("dec_out")); | ||
| 1185 | |||
| 1186 | &align (4); | ||
| 1187 | &set_label("dec_in_place_partial"); | ||
| 1188 | # one can argue if this is actually required... | ||
| 1189 | &mov ($key eq "edi" ? $key : "",$_out); | ||
| 1190 | &lea ($acc eq "esi" ? $acc : "",$ivec); | ||
| 1191 | &lea ($key,&DWP(0,$key,$s2)); | ||
| 1192 | &lea ($acc,&DWP(16,$acc,$s2)); | ||
| 1193 | &neg ($s2 eq "ecx" ? $s2 : ""); | ||
| 1194 | &data_word(0xA4F3F689); # rep movsb # restore tail | ||
| 1195 | |||
| 1196 | &align (4); | ||
| 1197 | &set_label("dec_out"); | ||
| 1198 | &cmp ($mark,0); # was the key schedule copied? | ||
| 1199 | &mov ("edi",$_key); | ||
| 1200 | &je (&label("skip_dzero")); | ||
| 1201 | # zero copy of key schedule | ||
| 1202 | &mov ("ecx",240/4); | ||
| 1203 | &xor ("eax","eax"); | ||
| 1204 | &align (4); | ||
| 1205 | &data_word(0xABF3F689); # rep stosd | ||
| 1206 | &set_label("skip_dzero") | ||
| 1207 | &mov ("esp",$_esp); | ||
| 1208 | &popf (); | ||
| 1209 | &function_end("AES_cbc_encrypt"); | ||
| 1210 | } | ||
| 1211 | |||
| 1212 | #------------------------------------------------------------------# | ||
| 1213 | |||
| 1214 | sub enckey() | ||
| 1215 | { | ||
| 1216 | &movz ("esi",&LB("edx")); # rk[i]>>0 | ||
| 1217 | &mov ("ebx",&DWP(2,"ebp","esi",8)); | ||
| 1218 | &movz ("esi",&HB("edx")); # rk[i]>>8 | ||
| 1219 | &and ("ebx",0xFF000000); | ||
| 1220 | &xor ("eax","ebx"); | ||
| 1221 | |||
| 1222 | &mov ("ebx",&DWP(2,"ebp","esi",8)); | ||
| 1223 | &shr ("edx",16); | ||
| 1224 | &and ("ebx",0x000000FF); | ||
| 1225 | &movz ("esi",&LB("edx")); # rk[i]>>16 | ||
| 1226 | &xor ("eax","ebx"); | ||
| 1227 | |||
| 1228 | &mov ("ebx",&DWP(0,"ebp","esi",8)); | ||
| 1229 | &movz ("esi",&HB("edx")); # rk[i]>>24 | ||
| 1230 | &and ("ebx",0x0000FF00); | ||
| 1231 | &xor ("eax","ebx"); | ||
| 1232 | |||
| 1233 | &mov ("ebx",&DWP(0,"ebp","esi",8)); | ||
| 1234 | &and ("ebx",0x00FF0000); | ||
| 1235 | &xor ("eax","ebx"); | ||
| 1236 | |||
| 1237 | &xor ("eax",&DWP(2048,"ebp","ecx",4)); # rcon | ||
| 1238 | } | ||
| 1239 | |||
| 1240 | # int AES_set_encrypt_key(const unsigned char *userKey, const int bits, | ||
| 1241 | # AES_KEY *key) | ||
| 1242 | &public_label("AES_Te"); | ||
| 1243 | &function_begin("AES_set_encrypt_key"); | ||
| 1244 | &mov ("esi",&wparam(0)); # user supplied key | ||
| 1245 | &mov ("edi",&wparam(2)); # private key schedule | ||
| 1246 | |||
| 1247 | &test ("esi",-1); | ||
| 1248 | &jz (&label("badpointer")); | ||
| 1249 | &test ("edi",-1); | ||
| 1250 | &jz (&label("badpointer")); | ||
| 1251 | |||
| 1252 | &call (&label("pic_point")); | ||
| 1253 | &set_label("pic_point"); | ||
| 1254 | &blindpop("ebp"); | ||
| 1255 | &lea ("ebp",&DWP(&label("AES_Te")."-".&label("pic_point"),"ebp")); | ||
| 1256 | |||
| 1257 | &mov ("ecx",&wparam(1)); # number of bits in key | ||
| 1258 | &cmp ("ecx",128); | ||
| 1259 | &je (&label("10rounds")); | ||
| 1260 | &cmp ("ecx",192); | ||
| 1261 | &je (&label("12rounds")); | ||
| 1262 | &cmp ("ecx",256); | ||
| 1263 | &je (&label("14rounds")); | ||
| 1264 | &mov ("eax",-2); # invalid number of bits | ||
| 1265 | &jmp (&label("exit")); | ||
| 1266 | |||
| 1267 | &set_label("10rounds"); | ||
| 1268 | &mov ("eax",&DWP(0,"esi")); # copy first 4 dwords | ||
| 1269 | &mov ("ebx",&DWP(4,"esi")); | ||
| 1270 | &mov ("ecx",&DWP(8,"esi")); | ||
| 1271 | &mov ("edx",&DWP(12,"esi")); | ||
| 1272 | &mov (&DWP(0,"edi"),"eax"); | ||
| 1273 | &mov (&DWP(4,"edi"),"ebx"); | ||
| 1274 | &mov (&DWP(8,"edi"),"ecx"); | ||
| 1275 | &mov (&DWP(12,"edi"),"edx"); | ||
| 1276 | |||
| 1277 | &xor ("ecx","ecx"); | ||
| 1278 | &jmp (&label("10shortcut")); | ||
| 1279 | |||
| 1280 | &align (4); | ||
| 1281 | &set_label("10loop"); | ||
| 1282 | &mov ("eax",&DWP(0,"edi")); # rk[0] | ||
| 1283 | &mov ("edx",&DWP(12,"edi")); # rk[3] | ||
| 1284 | &set_label("10shortcut"); | ||
| 1285 | &enckey (); | ||
| 1286 | |||
| 1287 | &mov (&DWP(16,"edi"),"eax"); # rk[4] | ||
| 1288 | &xor ("eax",&DWP(4,"edi")); | ||
| 1289 | &mov (&DWP(20,"edi"),"eax"); # rk[5] | ||
| 1290 | &xor ("eax",&DWP(8,"edi")); | ||
| 1291 | &mov (&DWP(24,"edi"),"eax"); # rk[6] | ||
| 1292 | &xor ("eax",&DWP(12,"edi")); | ||
| 1293 | &mov (&DWP(28,"edi"),"eax"); # rk[7] | ||
| 1294 | &inc ("ecx"); | ||
| 1295 | &add ("edi",16); | ||
| 1296 | &cmp ("ecx",10); | ||
| 1297 | &jl (&label("10loop")); | ||
| 1298 | |||
| 1299 | &mov (&DWP(80,"edi"),10); # setup number of rounds | ||
| 1300 | &xor ("eax","eax"); | ||
| 1301 | &jmp (&label("exit")); | ||
| 1302 | |||
| 1303 | &set_label("12rounds"); | ||
| 1304 | &mov ("eax",&DWP(0,"esi")); # copy first 6 dwords | ||
| 1305 | &mov ("ebx",&DWP(4,"esi")); | ||
| 1306 | &mov ("ecx",&DWP(8,"esi")); | ||
| 1307 | &mov ("edx",&DWP(12,"esi")); | ||
| 1308 | &mov (&DWP(0,"edi"),"eax"); | ||
| 1309 | &mov (&DWP(4,"edi"),"ebx"); | ||
| 1310 | &mov (&DWP(8,"edi"),"ecx"); | ||
| 1311 | &mov (&DWP(12,"edi"),"edx"); | ||
| 1312 | &mov ("ecx",&DWP(16,"esi")); | ||
| 1313 | &mov ("edx",&DWP(20,"esi")); | ||
| 1314 | &mov (&DWP(16,"edi"),"ecx"); | ||
| 1315 | &mov (&DWP(20,"edi"),"edx"); | ||
| 1316 | |||
| 1317 | &xor ("ecx","ecx"); | ||
| 1318 | &jmp (&label("12shortcut")); | ||
| 1319 | |||
| 1320 | &align (4); | ||
| 1321 | &set_label("12loop"); | ||
| 1322 | &mov ("eax",&DWP(0,"edi")); # rk[0] | ||
| 1323 | &mov ("edx",&DWP(20,"edi")); # rk[5] | ||
| 1324 | &set_label("12shortcut"); | ||
| 1325 | &enckey (); | ||
| 1326 | |||
| 1327 | &mov (&DWP(24,"edi"),"eax"); # rk[6] | ||
| 1328 | &xor ("eax",&DWP(4,"edi")); | ||
| 1329 | &mov (&DWP(28,"edi"),"eax"); # rk[7] | ||
| 1330 | &xor ("eax",&DWP(8,"edi")); | ||
| 1331 | &mov (&DWP(32,"edi"),"eax"); # rk[8] | ||
| 1332 | &xor ("eax",&DWP(12,"edi")); | ||
| 1333 | &mov (&DWP(36,"edi"),"eax"); # rk[9] | ||
| 1334 | |||
| 1335 | &cmp ("ecx",7); | ||
| 1336 | &je (&label("12break")); | ||
| 1337 | &inc ("ecx"); | ||
| 1338 | |||
| 1339 | &xor ("eax",&DWP(16,"edi")); | ||
| 1340 | &mov (&DWP(40,"edi"),"eax"); # rk[10] | ||
| 1341 | &xor ("eax",&DWP(20,"edi")); | ||
| 1342 | &mov (&DWP(44,"edi"),"eax"); # rk[11] | ||
| 1343 | |||
| 1344 | &add ("edi",24); | ||
| 1345 | &jmp (&label("12loop")); | ||
| 1346 | |||
| 1347 | &set_label("12break"); | ||
| 1348 | &mov (&DWP(72,"edi"),12); # setup number of rounds | ||
| 1349 | &xor ("eax","eax"); | ||
| 1350 | &jmp (&label("exit")); | ||
| 1351 | |||
| 1352 | &set_label("14rounds"); | ||
| 1353 | &mov ("eax",&DWP(0,"esi")); # copy first 8 dwords | ||
| 1354 | &mov ("ebx",&DWP(4,"esi")); | ||
| 1355 | &mov ("ecx",&DWP(8,"esi")); | ||
| 1356 | &mov ("edx",&DWP(12,"esi")); | ||
| 1357 | &mov (&DWP(0,"edi"),"eax"); | ||
| 1358 | &mov (&DWP(4,"edi"),"ebx"); | ||
| 1359 | &mov (&DWP(8,"edi"),"ecx"); | ||
| 1360 | &mov (&DWP(12,"edi"),"edx"); | ||
| 1361 | &mov ("eax",&DWP(16,"esi")); | ||
| 1362 | &mov ("ebx",&DWP(20,"esi")); | ||
| 1363 | &mov ("ecx",&DWP(24,"esi")); | ||
| 1364 | &mov ("edx",&DWP(28,"esi")); | ||
| 1365 | &mov (&DWP(16,"edi"),"eax"); | ||
| 1366 | &mov (&DWP(20,"edi"),"ebx"); | ||
| 1367 | &mov (&DWP(24,"edi"),"ecx"); | ||
| 1368 | &mov (&DWP(28,"edi"),"edx"); | ||
| 1369 | |||
| 1370 | &xor ("ecx","ecx"); | ||
| 1371 | &jmp (&label("14shortcut")); | ||
| 1372 | |||
| 1373 | &align (4); | ||
| 1374 | &set_label("14loop"); | ||
| 1375 | &mov ("edx",&DWP(28,"edi")); # rk[7] | ||
| 1376 | &set_label("14shortcut"); | ||
| 1377 | &mov ("eax",&DWP(0,"edi")); # rk[0] | ||
| 1378 | |||
| 1379 | &enckey (); | ||
| 1380 | |||
| 1381 | &mov (&DWP(32,"edi"),"eax"); # rk[8] | ||
| 1382 | &xor ("eax",&DWP(4,"edi")); | ||
| 1383 | &mov (&DWP(36,"edi"),"eax"); # rk[9] | ||
| 1384 | &xor ("eax",&DWP(8,"edi")); | ||
| 1385 | &mov (&DWP(40,"edi"),"eax"); # rk[10] | ||
| 1386 | &xor ("eax",&DWP(12,"edi")); | ||
| 1387 | &mov (&DWP(44,"edi"),"eax"); # rk[11] | ||
| 1388 | |||
| 1389 | &cmp ("ecx",6); | ||
| 1390 | &je (&label("14break")); | ||
| 1391 | &inc ("ecx"); | ||
| 1392 | |||
| 1393 | &mov ("edx","eax"); | ||
| 1394 | &mov ("eax",&DWP(16,"edi")); # rk[4] | ||
| 1395 | &movz ("esi",&LB("edx")); # rk[11]>>0 | ||
| 1396 | &mov ("ebx",&DWP(2,"ebp","esi",8)); | ||
| 1397 | &movz ("esi",&HB("edx")); # rk[11]>>8 | ||
| 1398 | &and ("ebx",0x000000FF); | ||
| 1399 | &xor ("eax","ebx"); | ||
| 1400 | |||
| 1401 | &mov ("ebx",&DWP(0,"ebp","esi",8)); | ||
| 1402 | &shr ("edx",16); | ||
| 1403 | &and ("ebx",0x0000FF00); | ||
| 1404 | &movz ("esi",&LB("edx")); # rk[11]>>16 | ||
| 1405 | &xor ("eax","ebx"); | ||
| 1406 | |||
| 1407 | &mov ("ebx",&DWP(0,"ebp","esi",8)); | ||
| 1408 | &movz ("esi",&HB("edx")); # rk[11]>>24 | ||
| 1409 | &and ("ebx",0x00FF0000); | ||
| 1410 | &xor ("eax","ebx"); | ||
| 1411 | |||
| 1412 | &mov ("ebx",&DWP(2,"ebp","esi",8)); | ||
| 1413 | &and ("ebx",0xFF000000); | ||
| 1414 | &xor ("eax","ebx"); | ||
| 1415 | |||
| 1416 | &mov (&DWP(48,"edi"),"eax"); # rk[12] | ||
| 1417 | &xor ("eax",&DWP(20,"edi")); | ||
| 1418 | &mov (&DWP(52,"edi"),"eax"); # rk[13] | ||
| 1419 | &xor ("eax",&DWP(24,"edi")); | ||
| 1420 | &mov (&DWP(56,"edi"),"eax"); # rk[14] | ||
| 1421 | &xor ("eax",&DWP(28,"edi")); | ||
| 1422 | &mov (&DWP(60,"edi"),"eax"); # rk[15] | ||
| 1423 | |||
| 1424 | &add ("edi",32); | ||
| 1425 | &jmp (&label("14loop")); | ||
| 1426 | |||
| 1427 | &set_label("14break"); | ||
| 1428 | &mov (&DWP(48,"edi"),14); # setup number of rounds | ||
| 1429 | &xor ("eax","eax"); | ||
| 1430 | &jmp (&label("exit")); | ||
| 1431 | |||
| 1432 | &set_label("badpointer"); | ||
| 1433 | &mov ("eax",-1); | ||
| 1434 | &set_label("exit"); | ||
| 1435 | &function_end("AES_set_encrypt_key"); | ||
| 1436 | |||
| 1437 | sub deckey() | ||
| 1438 | { my ($i,$ptr,$te,$td) = @_; | ||
| 1439 | |||
| 1440 | &mov ("eax",&DWP($i,$ptr)); | ||
| 1441 | &mov ("edx","eax"); | ||
| 1442 | &movz ("ebx",&HB("eax")); | ||
| 1443 | &shr ("edx",16); | ||
| 1444 | &and ("eax",0xFF); | ||
| 1445 | &movz ("eax",&BP(2,$te,"eax",8)); | ||
| 1446 | &movz ("ebx",&BP(2,$te,"ebx",8)); | ||
| 1447 | &mov ("eax",&DWP(0,$td,"eax",8)); | ||
| 1448 | &xor ("eax",&DWP(3,$td,"ebx",8)); | ||
| 1449 | &movz ("ebx",&HB("edx")); | ||
| 1450 | &and ("edx",0xFF); | ||
| 1451 | &movz ("edx",&BP(2,$te,"edx",8)); | ||
| 1452 | &movz ("ebx",&BP(2,$te,"ebx",8)); | ||
| 1453 | &xor ("eax",&DWP(2,$td,"edx",8)); | ||
| 1454 | &xor ("eax",&DWP(1,$td,"ebx",8)); | ||
| 1455 | &mov (&DWP($i,$ptr),"eax"); | ||
| 1456 | } | ||
| 1457 | |||
| 1458 | # int AES_set_decrypt_key(const unsigned char *userKey, const int bits, | ||
| 1459 | # AES_KEY *key) | ||
| 1460 | &public_label("AES_Td"); | ||
| 1461 | &public_label("AES_Te"); | ||
| 1462 | &function_begin_B("AES_set_decrypt_key"); | ||
| 1463 | &mov ("eax",&wparam(0)); | ||
| 1464 | &mov ("ecx",&wparam(1)); | ||
| 1465 | &mov ("edx",&wparam(2)); | ||
| 1466 | &sub ("esp",12); | ||
| 1467 | &mov (&DWP(0,"esp"),"eax"); | ||
| 1468 | &mov (&DWP(4,"esp"),"ecx"); | ||
| 1469 | &mov (&DWP(8,"esp"),"edx"); | ||
| 1470 | &call ("AES_set_encrypt_key"); | ||
| 1471 | &add ("esp",12); | ||
| 1472 | &cmp ("eax",0); | ||
| 1473 | &je (&label("proceed")); | ||
| 1474 | &ret (); | ||
| 1475 | |||
| 1476 | &set_label("proceed"); | ||
| 1477 | &push ("ebp"); | ||
| 1478 | &push ("ebx"); | ||
| 1479 | &push ("esi"); | ||
| 1480 | &push ("edi"); | ||
| 1481 | |||
| 1482 | &mov ("esi",&wparam(2)); | ||
| 1483 | &mov ("ecx",&DWP(240,"esi")); # pull number of rounds | ||
| 1484 | &lea ("ecx",&DWP(0,"","ecx",4)); | ||
| 1485 | &lea ("edi",&DWP(0,"esi","ecx",4)); # pointer to last chunk | ||
| 1486 | |||
| 1487 | &align (4); | ||
| 1488 | &set_label("invert"); # invert order of chunks | ||
| 1489 | &mov ("eax",&DWP(0,"esi")); | ||
| 1490 | &mov ("ebx",&DWP(4,"esi")); | ||
| 1491 | &mov ("ecx",&DWP(0,"edi")); | ||
| 1492 | &mov ("edx",&DWP(4,"edi")); | ||
| 1493 | &mov (&DWP(0,"edi"),"eax"); | ||
| 1494 | &mov (&DWP(4,"edi"),"ebx"); | ||
| 1495 | &mov (&DWP(0,"esi"),"ecx"); | ||
| 1496 | &mov (&DWP(4,"esi"),"edx"); | ||
| 1497 | &mov ("eax",&DWP(8,"esi")); | ||
| 1498 | &mov ("ebx",&DWP(12,"esi")); | ||
| 1499 | &mov ("ecx",&DWP(8,"edi")); | ||
| 1500 | &mov ("edx",&DWP(12,"edi")); | ||
| 1501 | &mov (&DWP(8,"edi"),"eax"); | ||
| 1502 | &mov (&DWP(12,"edi"),"ebx"); | ||
| 1503 | &mov (&DWP(8,"esi"),"ecx"); | ||
| 1504 | &mov (&DWP(12,"esi"),"edx"); | ||
| 1505 | &add ("esi",16); | ||
| 1506 | &sub ("edi",16); | ||
| 1507 | &cmp ("esi","edi"); | ||
| 1508 | &jne (&label("invert")); | ||
| 1509 | |||
| 1510 | &call (&label("pic_point")); | ||
| 1511 | &set_label("pic_point"); | ||
| 1512 | blindpop("ebp"); | ||
| 1513 | &lea ("edi",&DWP(&label("AES_Td")."-".&label("pic_point"),"ebp")); | ||
| 1514 | &lea ("ebp",&DWP(&label("AES_Te")."-".&label("pic_point"),"ebp")); | ||
| 1515 | |||
| 1516 | &mov ("esi",&wparam(2)); | ||
| 1517 | &mov ("ecx",&DWP(240,"esi")); # pull number of rounds | ||
| 1518 | &dec ("ecx"); | ||
| 1519 | &align (4); | ||
| 1520 | &set_label("permute"); # permute the key schedule | ||
| 1521 | &add ("esi",16); | ||
| 1522 | &deckey (0,"esi","ebp","edi"); | ||
| 1523 | &deckey (4,"esi","ebp","edi"); | ||
| 1524 | &deckey (8,"esi","ebp","edi"); | ||
| 1525 | &deckey (12,"esi","ebp","edi"); | ||
| 1526 | &dec ("ecx"); | ||
| 1527 | &jnz (&label("permute")); | ||
| 1528 | |||
| 1529 | &xor ("eax","eax"); # return success | ||
| 1530 | &function_end("AES_set_decrypt_key"); | ||
| 1531 | |||
| 1532 | &asm_finish(); | ||
diff --git a/src/lib/libssl/src/crypto/aes/asm/aes-ia64.S b/src/lib/libssl/src/crypto/aes/asm/aes-ia64.S new file mode 100644 index 0000000000..7f6c4c3662 --- /dev/null +++ b/src/lib/libssl/src/crypto/aes/asm/aes-ia64.S | |||
| @@ -0,0 +1,1123 @@ | |||
| 1 | // ==================================================================== | ||
| 2 | // Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 3 | // project. Rights for redistribution and usage in source and binary | ||
| 4 | // forms are granted according to the OpenSSL license. | ||
| 5 | // ==================================================================== | ||
| 6 | // | ||
| 7 | // What's wrong with compiler generated code? Compiler never uses | ||
| 8 | // variable 'shr' which is pairable with 'extr'/'dep' instructions. | ||
| 9 | // Then it uses 'zxt' which is an I-type, but can be replaced with | ||
| 10 | // 'and' which in turn can be assigned to M-port [there're double as | ||
| 11 | // much M-ports as there're I-ports on Itanium 2]. By sacrificing few | ||
| 12 | // registers for small constants (255, 24 and 16) to be used with | ||
| 13 | // 'shr' and 'and' instructions I can achieve better ILP, Intruction | ||
| 14 | // Level Parallelism, and performance. This code outperforms GCC 3.3 | ||
| 15 | // generated code by over factor of 2 (two), GCC 3.4 - by 70% and | ||
| 16 | // HP C - by 40%. Measured best-case scenario, i.e. aligned | ||
| 17 | // big-endian input, ECB timing on Itanium 2 is (18 + 13*rounds) | ||
| 18 | // ticks per block, or 9.25 CPU cycles per byte for 128 bit key. | ||
| 19 | |||
| 20 | // Version 1.2 mitigates the hazard of cache-timing attacks by | ||
| 21 | // a) compressing S-boxes from 8KB to 2KB+256B, b) scheduling | ||
| 22 | // references to S-boxes for L2 cache latency, c) prefetching T[ed]4 | ||
| 23 | // prior last round. As result performance dropped to (26 + 15*rounds) | ||
| 24 | // ticks per block or 11 cycles per byte processed with 128-bit key. | ||
| 25 | // This is ~16% deterioration. For reference Itanium 2 L1 cache has | ||
| 26 | // 64 bytes line size and L2 - 128 bytes... | ||
| 27 | |||
| 28 | .ident "aes-ia64.S, version 1.2" | ||
| 29 | .ident "IA-64 ISA artwork by Andy Polyakov <appro@fy.chalmers.se>" | ||
| 30 | .explicit | ||
| 31 | .text | ||
| 32 | |||
| 33 | rk0=r8; rk1=r9; | ||
| 34 | |||
| 35 | pfssave=r2; | ||
| 36 | lcsave=r10; | ||
| 37 | prsave=r3; | ||
| 38 | maskff=r11; | ||
| 39 | twenty4=r14; | ||
| 40 | sixteen=r15; | ||
| 41 | |||
| 42 | te00=r16; te11=r17; te22=r18; te33=r19; | ||
| 43 | te01=r20; te12=r21; te23=r22; te30=r23; | ||
| 44 | te02=r24; te13=r25; te20=r26; te31=r27; | ||
| 45 | te03=r28; te10=r29; te21=r30; te32=r31; | ||
| 46 | |||
| 47 | // these are rotating... | ||
| 48 | t0=r32; s0=r33; | ||
| 49 | t1=r34; s1=r35; | ||
| 50 | t2=r36; s2=r37; | ||
| 51 | t3=r38; s3=r39; | ||
| 52 | |||
| 53 | te0=r40; te1=r41; te2=r42; te3=r43; | ||
| 54 | |||
| 55 | #if defined(_HPUX_SOURCE) && !defined(_LP64) | ||
| 56 | # define ADDP addp4 | ||
| 57 | #else | ||
| 58 | # define ADDP add | ||
| 59 | #endif | ||
| 60 | |||
| 61 | // Offsets from Te0 | ||
| 62 | #define TE0 0 | ||
| 63 | #define TE2 2 | ||
| 64 | #if defined(_HPUX_SOURCE) || defined(B_ENDIAN) | ||
| 65 | #define TE1 3 | ||
| 66 | #define TE3 1 | ||
| 67 | #else | ||
| 68 | #define TE1 1 | ||
| 69 | #define TE3 3 | ||
| 70 | #endif | ||
| 71 | |||
| 72 | // This implies that AES_KEY comprises 32-bit key schedule elements | ||
| 73 | // even on LP64 platforms. | ||
| 74 | #ifndef KSZ | ||
| 75 | # define KSZ 4 | ||
| 76 | # define LDKEY ld4 | ||
| 77 | #endif | ||
| 78 | |||
| 79 | .proc _ia64_AES_encrypt# | ||
| 80 | // Input: rk0-rk1 | ||
| 81 | // te0 | ||
| 82 | // te3 as AES_KEY->rounds!!! | ||
| 83 | // s0-s3 | ||
| 84 | // maskff,twenty4,sixteen | ||
| 85 | // Output: r16,r20,r24,r28 as s0-s3 | ||
| 86 | // Clobber: r16-r31,rk0-rk1,r32-r43 | ||
| 87 | .align 32 | ||
| 88 | _ia64_AES_encrypt: | ||
| 89 | .prologue | ||
| 90 | .altrp b6 | ||
| 91 | .body | ||
| 92 | { .mmi; alloc r16=ar.pfs,12,0,0,8 | ||
| 93 | LDKEY t0=[rk0],2*KSZ | ||
| 94 | mov pr.rot=1<<16 } | ||
| 95 | { .mmi; LDKEY t1=[rk1],2*KSZ | ||
| 96 | add te1=TE1,te0 | ||
| 97 | add te3=-3,te3 };; | ||
| 98 | { .mib; LDKEY t2=[rk0],2*KSZ | ||
| 99 | mov ar.ec=2 } | ||
| 100 | { .mib; LDKEY t3=[rk1],2*KSZ | ||
| 101 | add te2=TE2,te0 | ||
| 102 | brp.loop.imp .Le_top,.Le_end-16 };; | ||
| 103 | |||
| 104 | { .mmi; xor s0=s0,t0 | ||
| 105 | xor s1=s1,t1 | ||
| 106 | mov ar.lc=te3 } | ||
| 107 | { .mmi; xor s2=s2,t2 | ||
| 108 | xor s3=s3,t3 | ||
| 109 | add te3=TE3,te0 };; | ||
| 110 | |||
| 111 | .align 32 | ||
| 112 | .Le_top: | ||
| 113 | { .mmi; (p0) LDKEY t0=[rk0],2*KSZ // 0/0:rk[0] | ||
| 114 | (p0) and te33=s3,maskff // 0/0:s3&0xff | ||
| 115 | (p0) extr.u te22=s2,8,8 } // 0/0:s2>>8&0xff | ||
| 116 | { .mmi; (p0) LDKEY t1=[rk1],2*KSZ // 0/1:rk[1] | ||
| 117 | (p0) and te30=s0,maskff // 0/1:s0&0xff | ||
| 118 | (p0) shr.u te00=s0,twenty4 };; // 0/0:s0>>24 | ||
| 119 | { .mmi; (p0) LDKEY t2=[rk0],2*KSZ // 1/2:rk[2] | ||
| 120 | (p0) shladd te33=te33,3,te3 // 1/0:te0+s0>>24 | ||
| 121 | (p0) extr.u te23=s3,8,8 } // 1/1:s3>>8&0xff | ||
| 122 | { .mmi; (p0) LDKEY t3=[rk1],2*KSZ // 1/3:rk[3] | ||
| 123 | (p0) shladd te30=te30,3,te3 // 1/1:te3+s0 | ||
| 124 | (p0) shr.u te01=s1,twenty4 };; // 1/1:s1>>24 | ||
| 125 | { .mmi; (p0) ld4 te33=[te33] // 2/0:te3[s3&0xff] | ||
| 126 | (p0) shladd te22=te22,3,te2 // 2/0:te2+s2>>8&0xff | ||
| 127 | (p0) extr.u te20=s0,8,8 } // 2/2:s0>>8&0xff | ||
| 128 | { .mmi; (p0) ld4 te30=[te30] // 2/1:te3[s0] | ||
| 129 | (p0) shladd te23=te23,3,te2 // 2/1:te2+s3>>8 | ||
| 130 | (p0) shr.u te02=s2,twenty4 };; // 2/2:s2>>24 | ||
| 131 | { .mmi; (p0) ld4 te22=[te22] // 3/0:te2[s2>>8] | ||
| 132 | (p0) shladd te20=te20,3,te2 // 3/2:te2+s0>>8 | ||
| 133 | (p0) extr.u te21=s1,8,8 } // 3/3:s1>>8&0xff | ||
| 134 | { .mmi; (p0) ld4 te23=[te23] // 3/1:te2[s3>>8] | ||
| 135 | (p0) shladd te00=te00,3,te0 // 3/0:te0+s0>>24 | ||
| 136 | (p0) shr.u te03=s3,twenty4 };; // 3/3:s3>>24 | ||
| 137 | { .mmi; (p0) ld4 te20=[te20] // 4/2:te2[s0>>8] | ||
| 138 | (p0) shladd te21=te21,3,te2 // 4/3:te3+s2 | ||
| 139 | (p0) extr.u te11=s1,16,8 } // 4/0:s1>>16&0xff | ||
| 140 | { .mmi; (p0) ld4 te00=[te00] // 4/0:te0[s0>>24] | ||
| 141 | (p0) shladd te01=te01,3,te0 // 4/1:te0+s1>>24 | ||
| 142 | (p0) shr.u te13=s3,sixteen };; // 4/2:s3>>16 | ||
| 143 | { .mmi; (p0) ld4 te21=[te21] // 5/3:te2[s1>>8] | ||
| 144 | (p0) shladd te11=te11,3,te1 // 5/0:te1+s1>>16 | ||
| 145 | (p0) extr.u te12=s2,16,8 } // 5/1:s2>>16&0xff | ||
| 146 | { .mmi; (p0) ld4 te01=[te01] // 5/1:te0[s1>>24] | ||
| 147 | (p0) shladd te02=te02,3,te0 // 5/2:te0+s2>>24 | ||
| 148 | (p0) and te31=s1,maskff };; // 5/2:s1&0xff | ||
| 149 | { .mmi; (p0) ld4 te11=[te11] // 6/0:te1[s1>>16] | ||
| 150 | (p0) shladd te12=te12,3,te1 // 6/1:te1+s2>>16 | ||
| 151 | (p0) extr.u te10=s0,16,8 } // 6/3:s0>>16&0xff | ||
| 152 | { .mmi; (p0) ld4 te02=[te02] // 6/2:te0[s2>>24] | ||
| 153 | (p0) shladd te03=te03,3,te0 // 6/3:te1+s0>>16 | ||
| 154 | (p0) and te32=s2,maskff };; // 6/3:s2&0xff | ||
| 155 | |||
| 156 | { .mmi; (p0) ld4 te12=[te12] // 7/1:te1[s2>>16] | ||
| 157 | (p0) shladd te31=te31,3,te3 // 7/2:te3+s1&0xff | ||
| 158 | (p0) and te13=te13,maskff} // 7/2:s3>>16&0xff | ||
| 159 | { .mmi; (p0) ld4 te03=[te03] // 7/3:te0[s3>>24] | ||
| 160 | (p0) shladd te32=te32,3,te3 // 7/3:te3+s2 | ||
| 161 | (p0) xor t0=t0,te33 };; // 7/0: | ||
| 162 | { .mmi; (p0) ld4 te31=[te31] // 8/2:te3[s1] | ||
| 163 | (p0) shladd te13=te13,3,te1 // 8/2:te1+s3>>16 | ||
| 164 | (p0) xor t0=t0,te22 } // 8/0: | ||
| 165 | { .mmi; (p0) ld4 te32=[te32] // 8/3:te3[s2] | ||
| 166 | (p0) shladd te10=te10,3,te1 // 8/3:te1+s0>>16 | ||
| 167 | (p0) xor t1=t1,te30 };; // 8/1: | ||
| 168 | { .mmi; (p0) ld4 te13=[te13] // 9/2:te1[s3>>16] | ||
| 169 | (p0) ld4 te10=[te10] // 9/3:te1[s0>>16] | ||
| 170 | (p0) xor t0=t0,te00 };; // 9/0: !L2 scheduling | ||
| 171 | { .mmi; (p0) xor t1=t1,te23 // 10[9]/1: | ||
| 172 | (p0) xor t2=t2,te20 // 10[9]/2: | ||
| 173 | (p0) xor t3=t3,te21 };; // 10[9]/3: | ||
| 174 | { .mmi; (p0) xor t0=t0,te11 // 11[10]/0:done! | ||
| 175 | (p0) xor t1=t1,te01 // 11[10]/1: | ||
| 176 | (p0) xor t2=t2,te02 };; // 11[10]/2: !L2 scheduling | ||
| 177 | { .mmi; (p0) xor t3=t3,te03 // 12[10]/3: | ||
| 178 | (p16) cmp.eq p0,p17=r0,r0 };; // 12[10]/clear (p17) | ||
| 179 | { .mmi; (p0) xor t1=t1,te12 // 13[11]/1:done! | ||
| 180 | (p0) xor t2=t2,te31 // 13[11]/2: | ||
| 181 | (p0) xor t3=t3,te32 } // 13[11]/3: | ||
| 182 | { .mmi; (p17) add te0=2048,te0 // 13[11]/ | ||
| 183 | (p17) add te1=2048+64-TE1,te1};; // 13[11]/ | ||
| 184 | { .mib; (p0) xor t2=t2,te13 // 14[12]/2:done! | ||
| 185 | (p17) add te2=2048+128-TE2,te2} // 14[12]/ | ||
| 186 | { .mib; (p0) xor t3=t3,te10 // 14[12]/3:done! | ||
| 187 | (p17) add te3=2048+192-TE3,te3 // 14[12]/ | ||
| 188 | br.ctop.sptk .Le_top };; | ||
| 189 | .Le_end: | ||
| 190 | |||
| 191 | |||
| 192 | { .mmi; ld8 te12=[te0] // prefetch Te4 | ||
| 193 | ld8 te31=[te1] } | ||
| 194 | { .mmi; ld8 te10=[te2] | ||
| 195 | ld8 te32=[te3] } | ||
| 196 | |||
| 197 | { .mmi; LDKEY t0=[rk0],2*KSZ // 0/0:rk[0] | ||
| 198 | and te33=s3,maskff // 0/0:s3&0xff | ||
| 199 | extr.u te22=s2,8,8 } // 0/0:s2>>8&0xff | ||
| 200 | { .mmi; LDKEY t1=[rk1],2*KSZ // 0/1:rk[1] | ||
| 201 | and te30=s0,maskff // 0/1:s0&0xff | ||
| 202 | shr.u te00=s0,twenty4 };; // 0/0:s0>>24 | ||
| 203 | { .mmi; LDKEY t2=[rk0],2*KSZ // 1/2:rk[2] | ||
| 204 | add te33=te33,te0 // 1/0:te0+s0>>24 | ||
| 205 | extr.u te23=s3,8,8 } // 1/1:s3>>8&0xff | ||
| 206 | { .mmi; LDKEY t3=[rk1],2*KSZ // 1/3:rk[3] | ||
| 207 | add te30=te30,te0 // 1/1:te0+s0 | ||
| 208 | shr.u te01=s1,twenty4 };; // 1/1:s1>>24 | ||
| 209 | { .mmi; ld1 te33=[te33] // 2/0:te0[s3&0xff] | ||
| 210 | add te22=te22,te0 // 2/0:te0+s2>>8&0xff | ||
| 211 | extr.u te20=s0,8,8 } // 2/2:s0>>8&0xff | ||
| 212 | { .mmi; ld1 te30=[te30] // 2/1:te0[s0] | ||
| 213 | add te23=te23,te0 // 2/1:te0+s3>>8 | ||
| 214 | shr.u te02=s2,twenty4 };; // 2/2:s2>>24 | ||
| 215 | { .mmi; ld1 te22=[te22] // 3/0:te0[s2>>8] | ||
| 216 | add te20=te20,te0 // 3/2:te0+s0>>8 | ||
| 217 | extr.u te21=s1,8,8 } // 3/3:s1>>8&0xff | ||
| 218 | { .mmi; ld1 te23=[te23] // 3/1:te0[s3>>8] | ||
| 219 | add te00=te00,te0 // 3/0:te0+s0>>24 | ||
| 220 | shr.u te03=s3,twenty4 };; // 3/3:s3>>24 | ||
| 221 | { .mmi; ld1 te20=[te20] // 4/2:te0[s0>>8] | ||
| 222 | add te21=te21,te0 // 4/3:te0+s2 | ||
| 223 | extr.u te11=s1,16,8 } // 4/0:s1>>16&0xff | ||
| 224 | { .mmi; ld1 te00=[te00] // 4/0:te0[s0>>24] | ||
| 225 | add te01=te01,te0 // 4/1:te0+s1>>24 | ||
| 226 | shr.u te13=s3,sixteen };; // 4/2:s3>>16 | ||
| 227 | { .mmi; ld1 te21=[te21] // 5/3:te0[s1>>8] | ||
| 228 | add te11=te11,te0 // 5/0:te0+s1>>16 | ||
| 229 | extr.u te12=s2,16,8 } // 5/1:s2>>16&0xff | ||
| 230 | { .mmi; ld1 te01=[te01] // 5/1:te0[s1>>24] | ||
| 231 | add te02=te02,te0 // 5/2:te0+s2>>24 | ||
| 232 | and te31=s1,maskff };; // 5/2:s1&0xff | ||
| 233 | { .mmi; ld1 te11=[te11] // 6/0:te0[s1>>16] | ||
| 234 | add te12=te12,te0 // 6/1:te0+s2>>16 | ||
| 235 | extr.u te10=s0,16,8 } // 6/3:s0>>16&0xff | ||
| 236 | { .mmi; ld1 te02=[te02] // 6/2:te0[s2>>24] | ||
| 237 | add te03=te03,te0 // 6/3:te0+s0>>16 | ||
| 238 | and te32=s2,maskff };; // 6/3:s2&0xff | ||
| 239 | |||
| 240 | { .mmi; ld1 te12=[te12] // 7/1:te0[s2>>16] | ||
| 241 | add te31=te31,te0 // 7/2:te0+s1&0xff | ||
| 242 | dep te33=te22,te33,8,8} // 7/0: | ||
| 243 | { .mmi; ld1 te03=[te03] // 7/3:te0[s3>>24] | ||
| 244 | add te32=te32,te0 // 7/3:te0+s2 | ||
| 245 | and te13=te13,maskff};; // 7/2:s3>>16&0xff | ||
| 246 | { .mmi; ld1 te31=[te31] // 8/2:te0[s1] | ||
| 247 | add te13=te13,te0 // 8/2:te0+s3>>16 | ||
| 248 | dep te30=te23,te30,8,8} // 8/1: | ||
| 249 | { .mmi; ld1 te32=[te32] // 8/3:te0[s2] | ||
| 250 | add te10=te10,te0 // 8/3:te0+s0>>16 | ||
| 251 | shl te00=te00,twenty4};; // 8/0: | ||
| 252 | { .mii; ld1 te13=[te13] // 9/2:te0[s3>>16] | ||
| 253 | dep te33=te11,te33,16,8 // 9/0: | ||
| 254 | shl te01=te01,twenty4};; // 9/1: | ||
| 255 | { .mii; ld1 te10=[te10] // 10/3:te0[s0>>16] | ||
| 256 | dep te31=te20,te31,8,8 // 10/2: | ||
| 257 | shl te02=te02,twenty4};; // 10/2: | ||
| 258 | { .mii; xor t0=t0,te33 // 11/0: | ||
| 259 | dep te32=te21,te32,8,8 // 11/3: | ||
| 260 | shl te12=te12,sixteen};; // 11/1: | ||
| 261 | { .mii; xor r16=t0,te00 // 12/0:done! | ||
| 262 | dep te31=te13,te31,16,8 // 12/2: | ||
| 263 | shl te03=te03,twenty4};; // 12/3: | ||
| 264 | { .mmi; xor t1=t1,te01 // 13/1: | ||
| 265 | xor t2=t2,te02 // 13/2: | ||
| 266 | dep te32=te10,te32,16,8};; // 13/3: | ||
| 267 | { .mmi; xor t1=t1,te30 // 14/1: | ||
| 268 | xor r24=t2,te31 // 14/2:done! | ||
| 269 | xor t3=t3,te32 };; // 14/3: | ||
| 270 | { .mib; xor r20=t1,te12 // 15/1:done! | ||
| 271 | xor r28=t3,te03 // 15/3:done! | ||
| 272 | br.ret.sptk b6 };; | ||
| 273 | .endp _ia64_AES_encrypt# | ||
| 274 | |||
| 275 | // void AES_encrypt (const void *in,void *out,const AES_KEY *key); | ||
| 276 | .global AES_encrypt# | ||
| 277 | .proc AES_encrypt# | ||
| 278 | .align 32 | ||
| 279 | AES_encrypt: | ||
| 280 | .prologue | ||
| 281 | .save ar.pfs,pfssave | ||
| 282 | { .mmi; alloc pfssave=ar.pfs,3,1,12,0 | ||
| 283 | and out0=3,in0 | ||
| 284 | mov r3=ip } | ||
| 285 | { .mmi; ADDP in0=0,in0 | ||
| 286 | mov loc0=psr.um | ||
| 287 | ADDP out11=KSZ*60,in2 };; // &AES_KEY->rounds | ||
| 288 | |||
| 289 | { .mmi; ld4 out11=[out11] // AES_KEY->rounds | ||
| 290 | add out8=(AES_Te#-AES_encrypt#),r3 // Te0 | ||
| 291 | .save pr,prsave | ||
| 292 | mov prsave=pr } | ||
| 293 | { .mmi; rum 1<<3 // clear um.ac | ||
| 294 | .save ar.lc,lcsave | ||
| 295 | mov lcsave=ar.lc };; | ||
| 296 | |||
| 297 | .body | ||
| 298 | #if defined(_HPUX_SOURCE) // HPUX is big-endian, cut 15+15 cycles... | ||
| 299 | { .mib; cmp.ne p6,p0=out0,r0 | ||
| 300 | add out0=4,in0 | ||
| 301 | (p6) br.dpnt.many .Le_i_unaligned };; | ||
| 302 | |||
| 303 | { .mmi; ld4 out1=[in0],8 // s0 | ||
| 304 | and out9=3,in1 | ||
| 305 | mov twenty4=24 } | ||
| 306 | { .mmi; ld4 out3=[out0],8 // s1 | ||
| 307 | ADDP rk0=0,in2 | ||
| 308 | mov sixteen=16 };; | ||
| 309 | { .mmi; ld4 out5=[in0] // s2 | ||
| 310 | cmp.ne p6,p0=out9,r0 | ||
| 311 | mov maskff=0xff } | ||
| 312 | { .mmb; ld4 out7=[out0] // s3 | ||
| 313 | ADDP rk1=KSZ,in2 | ||
| 314 | br.call.sptk.many b6=_ia64_AES_encrypt };; | ||
| 315 | |||
| 316 | { .mib; ADDP in0=4,in1 | ||
| 317 | ADDP in1=0,in1 | ||
| 318 | (p6) br.spnt .Le_o_unaligned };; | ||
| 319 | |||
| 320 | { .mii; mov psr.um=loc0 | ||
| 321 | mov ar.pfs=pfssave | ||
| 322 | mov ar.lc=lcsave };; | ||
| 323 | { .mmi; st4 [in1]=r16,8 // s0 | ||
| 324 | st4 [in0]=r20,8 // s1 | ||
| 325 | mov pr=prsave,0x1ffff };; | ||
| 326 | { .mmb; st4 [in1]=r24 // s2 | ||
| 327 | st4 [in0]=r28 // s3 | ||
| 328 | br.ret.sptk.many b0 };; | ||
| 329 | #endif | ||
| 330 | |||
| 331 | .align 32 | ||
| 332 | .Le_i_unaligned: | ||
| 333 | { .mmi; add out0=1,in0 | ||
| 334 | add out2=2,in0 | ||
| 335 | add out4=3,in0 };; | ||
| 336 | { .mmi; ld1 r16=[in0],4 | ||
| 337 | ld1 r17=[out0],4 }//;; | ||
| 338 | { .mmi; ld1 r18=[out2],4 | ||
| 339 | ld1 out1=[out4],4 };; // s0 | ||
| 340 | { .mmi; ld1 r20=[in0],4 | ||
| 341 | ld1 r21=[out0],4 }//;; | ||
| 342 | { .mmi; ld1 r22=[out2],4 | ||
| 343 | ld1 out3=[out4],4 };; // s1 | ||
| 344 | { .mmi; ld1 r24=[in0],4 | ||
| 345 | ld1 r25=[out0],4 }//;; | ||
| 346 | { .mmi; ld1 r26=[out2],4 | ||
| 347 | ld1 out5=[out4],4 };; // s2 | ||
| 348 | { .mmi; ld1 r28=[in0] | ||
| 349 | ld1 r29=[out0] }//;; | ||
| 350 | { .mmi; ld1 r30=[out2] | ||
| 351 | ld1 out7=[out4] };; // s3 | ||
| 352 | |||
| 353 | { .mii; | ||
| 354 | dep out1=r16,out1,24,8 //;; | ||
| 355 | dep out3=r20,out3,24,8 }//;; | ||
| 356 | { .mii; ADDP rk0=0,in2 | ||
| 357 | dep out5=r24,out5,24,8 //;; | ||
| 358 | dep out7=r28,out7,24,8 };; | ||
| 359 | { .mii; ADDP rk1=KSZ,in2 | ||
| 360 | dep out1=r17,out1,16,8 //;; | ||
| 361 | dep out3=r21,out3,16,8 }//;; | ||
| 362 | { .mii; mov twenty4=24 | ||
| 363 | dep out5=r25,out5,16,8 //;; | ||
| 364 | dep out7=r29,out7,16,8 };; | ||
| 365 | { .mii; mov sixteen=16 | ||
| 366 | dep out1=r18,out1,8,8 //;; | ||
| 367 | dep out3=r22,out3,8,8 }//;; | ||
| 368 | { .mii; mov maskff=0xff | ||
| 369 | dep out5=r26,out5,8,8 //;; | ||
| 370 | dep out7=r30,out7,8,8 };; | ||
| 371 | |||
| 372 | { .mib; br.call.sptk.many b6=_ia64_AES_encrypt };; | ||
| 373 | |||
| 374 | .Le_o_unaligned: | ||
| 375 | { .mii; ADDP out0=0,in1 | ||
| 376 | extr.u r17=r16,8,8 // s0 | ||
| 377 | shr.u r19=r16,twenty4 }//;; | ||
| 378 | { .mii; ADDP out1=1,in1 | ||
| 379 | extr.u r18=r16,16,8 | ||
| 380 | shr.u r23=r20,twenty4 }//;; // s1 | ||
| 381 | { .mii; ADDP out2=2,in1 | ||
| 382 | extr.u r21=r20,8,8 | ||
| 383 | shr.u r22=r20,sixteen }//;; | ||
| 384 | { .mii; ADDP out3=3,in1 | ||
| 385 | extr.u r25=r24,8,8 // s2 | ||
| 386 | shr.u r27=r24,twenty4 };; | ||
| 387 | { .mii; st1 [out3]=r16,4 | ||
| 388 | extr.u r26=r24,16,8 | ||
| 389 | shr.u r31=r28,twenty4 }//;; // s3 | ||
| 390 | { .mii; st1 [out2]=r17,4 | ||
| 391 | extr.u r29=r28,8,8 | ||
| 392 | shr.u r30=r28,sixteen }//;; | ||
| 393 | |||
| 394 | { .mmi; st1 [out1]=r18,4 | ||
| 395 | st1 [out0]=r19,4 };; | ||
| 396 | { .mmi; st1 [out3]=r20,4 | ||
| 397 | st1 [out2]=r21,4 }//;; | ||
| 398 | { .mmi; st1 [out1]=r22,4 | ||
| 399 | st1 [out0]=r23,4 };; | ||
| 400 | { .mmi; st1 [out3]=r24,4 | ||
| 401 | st1 [out2]=r25,4 | ||
| 402 | mov pr=prsave,0x1ffff }//;; | ||
| 403 | { .mmi; st1 [out1]=r26,4 | ||
| 404 | st1 [out0]=r27,4 | ||
| 405 | mov ar.pfs=pfssave };; | ||
| 406 | { .mmi; st1 [out3]=r28 | ||
| 407 | st1 [out2]=r29 | ||
| 408 | mov ar.lc=lcsave }//;; | ||
| 409 | { .mmi; st1 [out1]=r30 | ||
| 410 | st1 [out0]=r31 } | ||
| 411 | { .mfb; mov psr.um=loc0 // restore user mask | ||
| 412 | br.ret.sptk.many b0 };; | ||
| 413 | .endp AES_encrypt# | ||
| 414 | |||
| 415 | // *AES_decrypt are autogenerated by the following script: | ||
| 416 | #if 0 | ||
| 417 | #!/usr/bin/env perl | ||
| 418 | print "// *AES_decrypt are autogenerated by the following script:\n#if 0\n"; | ||
| 419 | open(PROG,'<'.$0); while(<PROG>) { print; } close(PROG); | ||
| 420 | print "#endif\n"; | ||
| 421 | while(<>) { | ||
| 422 | $process=1 if (/\.proc\s+_ia64_AES_encrypt/); | ||
| 423 | next if (!$process); | ||
| 424 | |||
| 425 | #s/te00=s0/td00=s0/; s/te00/td00/g; | ||
| 426 | s/te11=s1/td13=s3/; s/te11/td13/g; | ||
| 427 | #s/te22=s2/td22=s2/; s/te22/td22/g; | ||
| 428 | s/te33=s3/td31=s1/; s/te33/td31/g; | ||
| 429 | |||
| 430 | #s/te01=s1/td01=s1/; s/te01/td01/g; | ||
| 431 | s/te12=s2/td10=s0/; s/te12/td10/g; | ||
| 432 | #s/te23=s3/td23=s3/; s/te23/td23/g; | ||
| 433 | s/te30=s0/td32=s2/; s/te30/td32/g; | ||
| 434 | |||
| 435 | #s/te02=s2/td02=s2/; s/te02/td02/g; | ||
| 436 | s/te13=s3/td11=s1/; s/te13/td11/g; | ||
| 437 | #s/te20=s0/td20=s0/; s/te20/td20/g; | ||
| 438 | s/te31=s1/td33=s3/; s/te31/td33/g; | ||
| 439 | |||
| 440 | #s/te03=s3/td03=s3/; s/te03/td03/g; | ||
| 441 | s/te10=s0/td12=s2/; s/te10/td12/g; | ||
| 442 | #s/te21=s1/td21=s1/; s/te21/td21/g; | ||
| 443 | s/te32=s2/td30=s0/; s/te32/td30/g; | ||
| 444 | |||
| 445 | s/td/te/g; | ||
| 446 | |||
| 447 | s/AES_encrypt/AES_decrypt/g; | ||
| 448 | s/\.Le_/.Ld_/g; | ||
| 449 | s/AES_Te#/AES_Td#/g; | ||
| 450 | |||
| 451 | print; | ||
| 452 | |||
| 453 | exit if (/\.endp\s+AES_decrypt/); | ||
| 454 | } | ||
| 455 | #endif | ||
| 456 | .proc _ia64_AES_decrypt# | ||
| 457 | // Input: rk0-rk1 | ||
| 458 | // te0 | ||
| 459 | // te3 as AES_KEY->rounds!!! | ||
| 460 | // s0-s3 | ||
| 461 | // maskff,twenty4,sixteen | ||
| 462 | // Output: r16,r20,r24,r28 as s0-s3 | ||
| 463 | // Clobber: r16-r31,rk0-rk1,r32-r43 | ||
| 464 | .align 32 | ||
| 465 | _ia64_AES_decrypt: | ||
| 466 | .prologue | ||
| 467 | .altrp b6 | ||
| 468 | .body | ||
| 469 | { .mmi; alloc r16=ar.pfs,12,0,0,8 | ||
| 470 | LDKEY t0=[rk0],2*KSZ | ||
| 471 | mov pr.rot=1<<16 } | ||
| 472 | { .mmi; LDKEY t1=[rk1],2*KSZ | ||
| 473 | add te1=TE1,te0 | ||
| 474 | add te3=-3,te3 };; | ||
| 475 | { .mib; LDKEY t2=[rk0],2*KSZ | ||
| 476 | mov ar.ec=2 } | ||
| 477 | { .mib; LDKEY t3=[rk1],2*KSZ | ||
| 478 | add te2=TE2,te0 | ||
| 479 | brp.loop.imp .Ld_top,.Ld_end-16 };; | ||
| 480 | |||
| 481 | { .mmi; xor s0=s0,t0 | ||
| 482 | xor s1=s1,t1 | ||
| 483 | mov ar.lc=te3 } | ||
| 484 | { .mmi; xor s2=s2,t2 | ||
| 485 | xor s3=s3,t3 | ||
| 486 | add te3=TE3,te0 };; | ||
| 487 | |||
| 488 | .align 32 | ||
| 489 | .Ld_top: | ||
| 490 | { .mmi; (p0) LDKEY t0=[rk0],2*KSZ // 0/0:rk[0] | ||
| 491 | (p0) and te31=s1,maskff // 0/0:s3&0xff | ||
| 492 | (p0) extr.u te22=s2,8,8 } // 0/0:s2>>8&0xff | ||
| 493 | { .mmi; (p0) LDKEY t1=[rk1],2*KSZ // 0/1:rk[1] | ||
| 494 | (p0) and te32=s2,maskff // 0/1:s0&0xff | ||
| 495 | (p0) shr.u te00=s0,twenty4 };; // 0/0:s0>>24 | ||
| 496 | { .mmi; (p0) LDKEY t2=[rk0],2*KSZ // 1/2:rk[2] | ||
| 497 | (p0) shladd te31=te31,3,te3 // 1/0:te0+s0>>24 | ||
| 498 | (p0) extr.u te23=s3,8,8 } // 1/1:s3>>8&0xff | ||
| 499 | { .mmi; (p0) LDKEY t3=[rk1],2*KSZ // 1/3:rk[3] | ||
| 500 | (p0) shladd te32=te32,3,te3 // 1/1:te3+s0 | ||
| 501 | (p0) shr.u te01=s1,twenty4 };; // 1/1:s1>>24 | ||
| 502 | { .mmi; (p0) ld4 te31=[te31] // 2/0:te3[s3&0xff] | ||
| 503 | (p0) shladd te22=te22,3,te2 // 2/0:te2+s2>>8&0xff | ||
| 504 | (p0) extr.u te20=s0,8,8 } // 2/2:s0>>8&0xff | ||
| 505 | { .mmi; (p0) ld4 te32=[te32] // 2/1:te3[s0] | ||
| 506 | (p0) shladd te23=te23,3,te2 // 2/1:te2+s3>>8 | ||
| 507 | (p0) shr.u te02=s2,twenty4 };; // 2/2:s2>>24 | ||
| 508 | { .mmi; (p0) ld4 te22=[te22] // 3/0:te2[s2>>8] | ||
| 509 | (p0) shladd te20=te20,3,te2 // 3/2:te2+s0>>8 | ||
| 510 | (p0) extr.u te21=s1,8,8 } // 3/3:s1>>8&0xff | ||
| 511 | { .mmi; (p0) ld4 te23=[te23] // 3/1:te2[s3>>8] | ||
| 512 | (p0) shladd te00=te00,3,te0 // 3/0:te0+s0>>24 | ||
| 513 | (p0) shr.u te03=s3,twenty4 };; // 3/3:s3>>24 | ||
| 514 | { .mmi; (p0) ld4 te20=[te20] // 4/2:te2[s0>>8] | ||
| 515 | (p0) shladd te21=te21,3,te2 // 4/3:te3+s2 | ||
| 516 | (p0) extr.u te13=s3,16,8 } // 4/0:s1>>16&0xff | ||
| 517 | { .mmi; (p0) ld4 te00=[te00] // 4/0:te0[s0>>24] | ||
| 518 | (p0) shladd te01=te01,3,te0 // 4/1:te0+s1>>24 | ||
| 519 | (p0) shr.u te11=s1,sixteen };; // 4/2:s3>>16 | ||
| 520 | { .mmi; (p0) ld4 te21=[te21] // 5/3:te2[s1>>8] | ||
| 521 | (p0) shladd te13=te13,3,te1 // 5/0:te1+s1>>16 | ||
| 522 | (p0) extr.u te10=s0,16,8 } // 5/1:s2>>16&0xff | ||
| 523 | { .mmi; (p0) ld4 te01=[te01] // 5/1:te0[s1>>24] | ||
| 524 | (p0) shladd te02=te02,3,te0 // 5/2:te0+s2>>24 | ||
| 525 | (p0) and te33=s3,maskff };; // 5/2:s1&0xff | ||
| 526 | { .mmi; (p0) ld4 te13=[te13] // 6/0:te1[s1>>16] | ||
| 527 | (p0) shladd te10=te10,3,te1 // 6/1:te1+s2>>16 | ||
| 528 | (p0) extr.u te12=s2,16,8 } // 6/3:s0>>16&0xff | ||
| 529 | { .mmi; (p0) ld4 te02=[te02] // 6/2:te0[s2>>24] | ||
| 530 | (p0) shladd te03=te03,3,te0 // 6/3:te1+s0>>16 | ||
| 531 | (p0) and te30=s0,maskff };; // 6/3:s2&0xff | ||
| 532 | |||
| 533 | { .mmi; (p0) ld4 te10=[te10] // 7/1:te1[s2>>16] | ||
| 534 | (p0) shladd te33=te33,3,te3 // 7/2:te3+s1&0xff | ||
| 535 | (p0) and te11=te11,maskff} // 7/2:s3>>16&0xff | ||
| 536 | { .mmi; (p0) ld4 te03=[te03] // 7/3:te0[s3>>24] | ||
| 537 | (p0) shladd te30=te30,3,te3 // 7/3:te3+s2 | ||
| 538 | (p0) xor t0=t0,te31 };; // 7/0: | ||
| 539 | { .mmi; (p0) ld4 te33=[te33] // 8/2:te3[s1] | ||
| 540 | (p0) shladd te11=te11,3,te1 // 8/2:te1+s3>>16 | ||
| 541 | (p0) xor t0=t0,te22 } // 8/0: | ||
| 542 | { .mmi; (p0) ld4 te30=[te30] // 8/3:te3[s2] | ||
| 543 | (p0) shladd te12=te12,3,te1 // 8/3:te1+s0>>16 | ||
| 544 | (p0) xor t1=t1,te32 };; // 8/1: | ||
| 545 | { .mmi; (p0) ld4 te11=[te11] // 9/2:te1[s3>>16] | ||
| 546 | (p0) ld4 te12=[te12] // 9/3:te1[s0>>16] | ||
| 547 | (p0) xor t0=t0,te00 };; // 9/0: !L2 scheduling | ||
| 548 | { .mmi; (p0) xor t1=t1,te23 // 10[9]/1: | ||
| 549 | (p0) xor t2=t2,te20 // 10[9]/2: | ||
| 550 | (p0) xor t3=t3,te21 };; // 10[9]/3: | ||
| 551 | { .mmi; (p0) xor t0=t0,te13 // 11[10]/0:done! | ||
| 552 | (p0) xor t1=t1,te01 // 11[10]/1: | ||
| 553 | (p0) xor t2=t2,te02 };; // 11[10]/2: !L2 scheduling | ||
| 554 | { .mmi; (p0) xor t3=t3,te03 // 12[10]/3: | ||
| 555 | (p16) cmp.eq p0,p17=r0,r0 };; // 12[10]/clear (p17) | ||
| 556 | { .mmi; (p0) xor t1=t1,te10 // 13[11]/1:done! | ||
| 557 | (p0) xor t2=t2,te33 // 13[11]/2: | ||
| 558 | (p0) xor t3=t3,te30 } // 13[11]/3: | ||
| 559 | { .mmi; (p17) add te0=2048,te0 // 13[11]/ | ||
| 560 | (p17) add te1=2048+64-TE1,te1};; // 13[11]/ | ||
| 561 | { .mib; (p0) xor t2=t2,te11 // 14[12]/2:done! | ||
| 562 | (p17) add te2=2048+128-TE2,te2} // 14[12]/ | ||
| 563 | { .mib; (p0) xor t3=t3,te12 // 14[12]/3:done! | ||
| 564 | (p17) add te3=2048+192-TE3,te3 // 14[12]/ | ||
| 565 | br.ctop.sptk .Ld_top };; | ||
| 566 | .Ld_end: | ||
| 567 | |||
| 568 | |||
| 569 | { .mmi; ld8 te10=[te0] // prefetch Td4 | ||
| 570 | ld8 te33=[te1] } | ||
| 571 | { .mmi; ld8 te12=[te2] | ||
| 572 | ld8 te30=[te3] } | ||
| 573 | |||
| 574 | { .mmi; LDKEY t0=[rk0],2*KSZ // 0/0:rk[0] | ||
| 575 | and te31=s1,maskff // 0/0:s3&0xff | ||
| 576 | extr.u te22=s2,8,8 } // 0/0:s2>>8&0xff | ||
| 577 | { .mmi; LDKEY t1=[rk1],2*KSZ // 0/1:rk[1] | ||
| 578 | and te32=s2,maskff // 0/1:s0&0xff | ||
| 579 | shr.u te00=s0,twenty4 };; // 0/0:s0>>24 | ||
| 580 | { .mmi; LDKEY t2=[rk0],2*KSZ // 1/2:rk[2] | ||
| 581 | add te31=te31,te0 // 1/0:te0+s0>>24 | ||
| 582 | extr.u te23=s3,8,8 } // 1/1:s3>>8&0xff | ||
| 583 | { .mmi; LDKEY t3=[rk1],2*KSZ // 1/3:rk[3] | ||
| 584 | add te32=te32,te0 // 1/1:te0+s0 | ||
| 585 | shr.u te01=s1,twenty4 };; // 1/1:s1>>24 | ||
| 586 | { .mmi; ld1 te31=[te31] // 2/0:te0[s3&0xff] | ||
| 587 | add te22=te22,te0 // 2/0:te0+s2>>8&0xff | ||
| 588 | extr.u te20=s0,8,8 } // 2/2:s0>>8&0xff | ||
| 589 | { .mmi; ld1 te32=[te32] // 2/1:te0[s0] | ||
| 590 | add te23=te23,te0 // 2/1:te0+s3>>8 | ||
| 591 | shr.u te02=s2,twenty4 };; // 2/2:s2>>24 | ||
| 592 | { .mmi; ld1 te22=[te22] // 3/0:te0[s2>>8] | ||
| 593 | add te20=te20,te0 // 3/2:te0+s0>>8 | ||
| 594 | extr.u te21=s1,8,8 } // 3/3:s1>>8&0xff | ||
| 595 | { .mmi; ld1 te23=[te23] // 3/1:te0[s3>>8] | ||
| 596 | add te00=te00,te0 // 3/0:te0+s0>>24 | ||
| 597 | shr.u te03=s3,twenty4 };; // 3/3:s3>>24 | ||
| 598 | { .mmi; ld1 te20=[te20] // 4/2:te0[s0>>8] | ||
| 599 | add te21=te21,te0 // 4/3:te0+s2 | ||
| 600 | extr.u te13=s3,16,8 } // 4/0:s1>>16&0xff | ||
| 601 | { .mmi; ld1 te00=[te00] // 4/0:te0[s0>>24] | ||
| 602 | add te01=te01,te0 // 4/1:te0+s1>>24 | ||
| 603 | shr.u te11=s1,sixteen };; // 4/2:s3>>16 | ||
| 604 | { .mmi; ld1 te21=[te21] // 5/3:te0[s1>>8] | ||
| 605 | add te13=te13,te0 // 5/0:te0+s1>>16 | ||
| 606 | extr.u te10=s0,16,8 } // 5/1:s2>>16&0xff | ||
| 607 | { .mmi; ld1 te01=[te01] // 5/1:te0[s1>>24] | ||
| 608 | add te02=te02,te0 // 5/2:te0+s2>>24 | ||
| 609 | and te33=s3,maskff };; // 5/2:s1&0xff | ||
| 610 | { .mmi; ld1 te13=[te13] // 6/0:te0[s1>>16] | ||
| 611 | add te10=te10,te0 // 6/1:te0+s2>>16 | ||
| 612 | extr.u te12=s2,16,8 } // 6/3:s0>>16&0xff | ||
| 613 | { .mmi; ld1 te02=[te02] // 6/2:te0[s2>>24] | ||
| 614 | add te03=te03,te0 // 6/3:te0+s0>>16 | ||
| 615 | and te30=s0,maskff };; // 6/3:s2&0xff | ||
| 616 | |||
| 617 | { .mmi; ld1 te10=[te10] // 7/1:te0[s2>>16] | ||
| 618 | add te33=te33,te0 // 7/2:te0+s1&0xff | ||
| 619 | dep te31=te22,te31,8,8} // 7/0: | ||
| 620 | { .mmi; ld1 te03=[te03] // 7/3:te0[s3>>24] | ||
| 621 | add te30=te30,te0 // 7/3:te0+s2 | ||
| 622 | and te11=te11,maskff};; // 7/2:s3>>16&0xff | ||
| 623 | { .mmi; ld1 te33=[te33] // 8/2:te0[s1] | ||
| 624 | add te11=te11,te0 // 8/2:te0+s3>>16 | ||
| 625 | dep te32=te23,te32,8,8} // 8/1: | ||
| 626 | { .mmi; ld1 te30=[te30] // 8/3:te0[s2] | ||
| 627 | add te12=te12,te0 // 8/3:te0+s0>>16 | ||
| 628 | shl te00=te00,twenty4};; // 8/0: | ||
| 629 | { .mii; ld1 te11=[te11] // 9/2:te0[s3>>16] | ||
| 630 | dep te31=te13,te31,16,8 // 9/0: | ||
| 631 | shl te01=te01,twenty4};; // 9/1: | ||
| 632 | { .mii; ld1 te12=[te12] // 10/3:te0[s0>>16] | ||
| 633 | dep te33=te20,te33,8,8 // 10/2: | ||
| 634 | shl te02=te02,twenty4};; // 10/2: | ||
| 635 | { .mii; xor t0=t0,te31 // 11/0: | ||
| 636 | dep te30=te21,te30,8,8 // 11/3: | ||
| 637 | shl te10=te10,sixteen};; // 11/1: | ||
| 638 | { .mii; xor r16=t0,te00 // 12/0:done! | ||
| 639 | dep te33=te11,te33,16,8 // 12/2: | ||
| 640 | shl te03=te03,twenty4};; // 12/3: | ||
| 641 | { .mmi; xor t1=t1,te01 // 13/1: | ||
| 642 | xor t2=t2,te02 // 13/2: | ||
| 643 | dep te30=te12,te30,16,8};; // 13/3: | ||
| 644 | { .mmi; xor t1=t1,te32 // 14/1: | ||
| 645 | xor r24=t2,te33 // 14/2:done! | ||
| 646 | xor t3=t3,te30 };; // 14/3: | ||
| 647 | { .mib; xor r20=t1,te10 // 15/1:done! | ||
| 648 | xor r28=t3,te03 // 15/3:done! | ||
| 649 | br.ret.sptk b6 };; | ||
| 650 | .endp _ia64_AES_decrypt# | ||
| 651 | |||
| 652 | // void AES_decrypt (const void *in,void *out,const AES_KEY *key); | ||
| 653 | .global AES_decrypt# | ||
| 654 | .proc AES_decrypt# | ||
| 655 | .align 32 | ||
| 656 | AES_decrypt: | ||
| 657 | .prologue | ||
| 658 | .save ar.pfs,pfssave | ||
| 659 | { .mmi; alloc pfssave=ar.pfs,3,1,12,0 | ||
| 660 | and out0=3,in0 | ||
| 661 | mov r3=ip } | ||
| 662 | { .mmi; ADDP in0=0,in0 | ||
| 663 | mov loc0=psr.um | ||
| 664 | ADDP out11=KSZ*60,in2 };; // &AES_KEY->rounds | ||
| 665 | |||
| 666 | { .mmi; ld4 out11=[out11] // AES_KEY->rounds | ||
| 667 | add out8=(AES_Td#-AES_decrypt#),r3 // Te0 | ||
| 668 | .save pr,prsave | ||
| 669 | mov prsave=pr } | ||
| 670 | { .mmi; rum 1<<3 // clear um.ac | ||
| 671 | .save ar.lc,lcsave | ||
| 672 | mov lcsave=ar.lc };; | ||
| 673 | |||
| 674 | .body | ||
| 675 | #if defined(_HPUX_SOURCE) // HPUX is big-endian, cut 15+15 cycles... | ||
| 676 | { .mib; cmp.ne p6,p0=out0,r0 | ||
| 677 | add out0=4,in0 | ||
| 678 | (p6) br.dpnt.many .Ld_i_unaligned };; | ||
| 679 | |||
| 680 | { .mmi; ld4 out1=[in0],8 // s0 | ||
| 681 | and out9=3,in1 | ||
| 682 | mov twenty4=24 } | ||
| 683 | { .mmi; ld4 out3=[out0],8 // s1 | ||
| 684 | ADDP rk0=0,in2 | ||
| 685 | mov sixteen=16 };; | ||
| 686 | { .mmi; ld4 out5=[in0] // s2 | ||
| 687 | cmp.ne p6,p0=out9,r0 | ||
| 688 | mov maskff=0xff } | ||
| 689 | { .mmb; ld4 out7=[out0] // s3 | ||
| 690 | ADDP rk1=KSZ,in2 | ||
| 691 | br.call.sptk.many b6=_ia64_AES_decrypt };; | ||
| 692 | |||
| 693 | { .mib; ADDP in0=4,in1 | ||
| 694 | ADDP in1=0,in1 | ||
| 695 | (p6) br.spnt .Ld_o_unaligned };; | ||
| 696 | |||
| 697 | { .mii; mov psr.um=loc0 | ||
| 698 | mov ar.pfs=pfssave | ||
| 699 | mov ar.lc=lcsave };; | ||
| 700 | { .mmi; st4 [in1]=r16,8 // s0 | ||
| 701 | st4 [in0]=r20,8 // s1 | ||
| 702 | mov pr=prsave,0x1ffff };; | ||
| 703 | { .mmb; st4 [in1]=r24 // s2 | ||
| 704 | st4 [in0]=r28 // s3 | ||
| 705 | br.ret.sptk.many b0 };; | ||
| 706 | #endif | ||
| 707 | |||
| 708 | .align 32 | ||
| 709 | .Ld_i_unaligned: | ||
| 710 | { .mmi; add out0=1,in0 | ||
| 711 | add out2=2,in0 | ||
| 712 | add out4=3,in0 };; | ||
| 713 | { .mmi; ld1 r16=[in0],4 | ||
| 714 | ld1 r17=[out0],4 }//;; | ||
| 715 | { .mmi; ld1 r18=[out2],4 | ||
| 716 | ld1 out1=[out4],4 };; // s0 | ||
| 717 | { .mmi; ld1 r20=[in0],4 | ||
| 718 | ld1 r21=[out0],4 }//;; | ||
| 719 | { .mmi; ld1 r22=[out2],4 | ||
| 720 | ld1 out3=[out4],4 };; // s1 | ||
| 721 | { .mmi; ld1 r24=[in0],4 | ||
| 722 | ld1 r25=[out0],4 }//;; | ||
| 723 | { .mmi; ld1 r26=[out2],4 | ||
| 724 | ld1 out5=[out4],4 };; // s2 | ||
| 725 | { .mmi; ld1 r28=[in0] | ||
| 726 | ld1 r29=[out0] }//;; | ||
| 727 | { .mmi; ld1 r30=[out2] | ||
| 728 | ld1 out7=[out4] };; // s3 | ||
| 729 | |||
| 730 | { .mii; | ||
| 731 | dep out1=r16,out1,24,8 //;; | ||
| 732 | dep out3=r20,out3,24,8 }//;; | ||
| 733 | { .mii; ADDP rk0=0,in2 | ||
| 734 | dep out5=r24,out5,24,8 //;; | ||
| 735 | dep out7=r28,out7,24,8 };; | ||
| 736 | { .mii; ADDP rk1=KSZ,in2 | ||
| 737 | dep out1=r17,out1,16,8 //;; | ||
| 738 | dep out3=r21,out3,16,8 }//;; | ||
| 739 | { .mii; mov twenty4=24 | ||
| 740 | dep out5=r25,out5,16,8 //;; | ||
| 741 | dep out7=r29,out7,16,8 };; | ||
| 742 | { .mii; mov sixteen=16 | ||
| 743 | dep out1=r18,out1,8,8 //;; | ||
| 744 | dep out3=r22,out3,8,8 }//;; | ||
| 745 | { .mii; mov maskff=0xff | ||
| 746 | dep out5=r26,out5,8,8 //;; | ||
| 747 | dep out7=r30,out7,8,8 };; | ||
| 748 | |||
| 749 | { .mib; br.call.sptk.many b6=_ia64_AES_decrypt };; | ||
| 750 | |||
| 751 | .Ld_o_unaligned: | ||
| 752 | { .mii; ADDP out0=0,in1 | ||
| 753 | extr.u r17=r16,8,8 // s0 | ||
| 754 | shr.u r19=r16,twenty4 }//;; | ||
| 755 | { .mii; ADDP out1=1,in1 | ||
| 756 | extr.u r18=r16,16,8 | ||
| 757 | shr.u r23=r20,twenty4 }//;; // s1 | ||
| 758 | { .mii; ADDP out2=2,in1 | ||
| 759 | extr.u r21=r20,8,8 | ||
| 760 | shr.u r22=r20,sixteen }//;; | ||
| 761 | { .mii; ADDP out3=3,in1 | ||
| 762 | extr.u r25=r24,8,8 // s2 | ||
| 763 | shr.u r27=r24,twenty4 };; | ||
| 764 | { .mii; st1 [out3]=r16,4 | ||
| 765 | extr.u r26=r24,16,8 | ||
| 766 | shr.u r31=r28,twenty4 }//;; // s3 | ||
| 767 | { .mii; st1 [out2]=r17,4 | ||
| 768 | extr.u r29=r28,8,8 | ||
| 769 | shr.u r30=r28,sixteen }//;; | ||
| 770 | |||
| 771 | { .mmi; st1 [out1]=r18,4 | ||
| 772 | st1 [out0]=r19,4 };; | ||
| 773 | { .mmi; st1 [out3]=r20,4 | ||
| 774 | st1 [out2]=r21,4 }//;; | ||
| 775 | { .mmi; st1 [out1]=r22,4 | ||
| 776 | st1 [out0]=r23,4 };; | ||
| 777 | { .mmi; st1 [out3]=r24,4 | ||
| 778 | st1 [out2]=r25,4 | ||
| 779 | mov pr=prsave,0x1ffff }//;; | ||
| 780 | { .mmi; st1 [out1]=r26,4 | ||
| 781 | st1 [out0]=r27,4 | ||
| 782 | mov ar.pfs=pfssave };; | ||
| 783 | { .mmi; st1 [out3]=r28 | ||
| 784 | st1 [out2]=r29 | ||
| 785 | mov ar.lc=lcsave }//;; | ||
| 786 | { .mmi; st1 [out1]=r30 | ||
| 787 | st1 [out0]=r31 } | ||
| 788 | { .mfb; mov psr.um=loc0 // restore user mask | ||
| 789 | br.ret.sptk.many b0 };; | ||
| 790 | .endp AES_decrypt# | ||
| 791 | |||
| 792 | // leave it in .text segment... | ||
| 793 | .align 64 | ||
| 794 | .global AES_Te# | ||
| 795 | .type AES_Te#,@object | ||
| 796 | AES_Te: data4 0xc66363a5,0xc66363a5, 0xf87c7c84,0xf87c7c84 | ||
| 797 | data4 0xee777799,0xee777799, 0xf67b7b8d,0xf67b7b8d | ||
| 798 | data4 0xfff2f20d,0xfff2f20d, 0xd66b6bbd,0xd66b6bbd | ||
| 799 | data4 0xde6f6fb1,0xde6f6fb1, 0x91c5c554,0x91c5c554 | ||
| 800 | data4 0x60303050,0x60303050, 0x02010103,0x02010103 | ||
| 801 | data4 0xce6767a9,0xce6767a9, 0x562b2b7d,0x562b2b7d | ||
| 802 | data4 0xe7fefe19,0xe7fefe19, 0xb5d7d762,0xb5d7d762 | ||
| 803 | data4 0x4dababe6,0x4dababe6, 0xec76769a,0xec76769a | ||
| 804 | data4 0x8fcaca45,0x8fcaca45, 0x1f82829d,0x1f82829d | ||
| 805 | data4 0x89c9c940,0x89c9c940, 0xfa7d7d87,0xfa7d7d87 | ||
| 806 | data4 0xeffafa15,0xeffafa15, 0xb25959eb,0xb25959eb | ||
| 807 | data4 0x8e4747c9,0x8e4747c9, 0xfbf0f00b,0xfbf0f00b | ||
| 808 | data4 0x41adadec,0x41adadec, 0xb3d4d467,0xb3d4d467 | ||
| 809 | data4 0x5fa2a2fd,0x5fa2a2fd, 0x45afafea,0x45afafea | ||
| 810 | data4 0x239c9cbf,0x239c9cbf, 0x53a4a4f7,0x53a4a4f7 | ||
| 811 | data4 0xe4727296,0xe4727296, 0x9bc0c05b,0x9bc0c05b | ||
| 812 | data4 0x75b7b7c2,0x75b7b7c2, 0xe1fdfd1c,0xe1fdfd1c | ||
| 813 | data4 0x3d9393ae,0x3d9393ae, 0x4c26266a,0x4c26266a | ||
| 814 | data4 0x6c36365a,0x6c36365a, 0x7e3f3f41,0x7e3f3f41 | ||
| 815 | data4 0xf5f7f702,0xf5f7f702, 0x83cccc4f,0x83cccc4f | ||
| 816 | data4 0x6834345c,0x6834345c, 0x51a5a5f4,0x51a5a5f4 | ||
| 817 | data4 0xd1e5e534,0xd1e5e534, 0xf9f1f108,0xf9f1f108 | ||
| 818 | data4 0xe2717193,0xe2717193, 0xabd8d873,0xabd8d873 | ||
| 819 | data4 0x62313153,0x62313153, 0x2a15153f,0x2a15153f | ||
| 820 | data4 0x0804040c,0x0804040c, 0x95c7c752,0x95c7c752 | ||
| 821 | data4 0x46232365,0x46232365, 0x9dc3c35e,0x9dc3c35e | ||
| 822 | data4 0x30181828,0x30181828, 0x379696a1,0x379696a1 | ||
| 823 | data4 0x0a05050f,0x0a05050f, 0x2f9a9ab5,0x2f9a9ab5 | ||
| 824 | data4 0x0e070709,0x0e070709, 0x24121236,0x24121236 | ||
| 825 | data4 0x1b80809b,0x1b80809b, 0xdfe2e23d,0xdfe2e23d | ||
| 826 | data4 0xcdebeb26,0xcdebeb26, 0x4e272769,0x4e272769 | ||
| 827 | data4 0x7fb2b2cd,0x7fb2b2cd, 0xea75759f,0xea75759f | ||
| 828 | data4 0x1209091b,0x1209091b, 0x1d83839e,0x1d83839e | ||
| 829 | data4 0x582c2c74,0x582c2c74, 0x341a1a2e,0x341a1a2e | ||
| 830 | data4 0x361b1b2d,0x361b1b2d, 0xdc6e6eb2,0xdc6e6eb2 | ||
| 831 | data4 0xb45a5aee,0xb45a5aee, 0x5ba0a0fb,0x5ba0a0fb | ||
| 832 | data4 0xa45252f6,0xa45252f6, 0x763b3b4d,0x763b3b4d | ||
| 833 | data4 0xb7d6d661,0xb7d6d661, 0x7db3b3ce,0x7db3b3ce | ||
| 834 | data4 0x5229297b,0x5229297b, 0xdde3e33e,0xdde3e33e | ||
| 835 | data4 0x5e2f2f71,0x5e2f2f71, 0x13848497,0x13848497 | ||
| 836 | data4 0xa65353f5,0xa65353f5, 0xb9d1d168,0xb9d1d168 | ||
| 837 | data4 0x00000000,0x00000000, 0xc1eded2c,0xc1eded2c | ||
| 838 | data4 0x40202060,0x40202060, 0xe3fcfc1f,0xe3fcfc1f | ||
| 839 | data4 0x79b1b1c8,0x79b1b1c8, 0xb65b5bed,0xb65b5bed | ||
| 840 | data4 0xd46a6abe,0xd46a6abe, 0x8dcbcb46,0x8dcbcb46 | ||
| 841 | data4 0x67bebed9,0x67bebed9, 0x7239394b,0x7239394b | ||
| 842 | data4 0x944a4ade,0x944a4ade, 0x984c4cd4,0x984c4cd4 | ||
| 843 | data4 0xb05858e8,0xb05858e8, 0x85cfcf4a,0x85cfcf4a | ||
| 844 | data4 0xbbd0d06b,0xbbd0d06b, 0xc5efef2a,0xc5efef2a | ||
| 845 | data4 0x4faaaae5,0x4faaaae5, 0xedfbfb16,0xedfbfb16 | ||
| 846 | data4 0x864343c5,0x864343c5, 0x9a4d4dd7,0x9a4d4dd7 | ||
| 847 | data4 0x66333355,0x66333355, 0x11858594,0x11858594 | ||
| 848 | data4 0x8a4545cf,0x8a4545cf, 0xe9f9f910,0xe9f9f910 | ||
| 849 | data4 0x04020206,0x04020206, 0xfe7f7f81,0xfe7f7f81 | ||
| 850 | data4 0xa05050f0,0xa05050f0, 0x783c3c44,0x783c3c44 | ||
| 851 | data4 0x259f9fba,0x259f9fba, 0x4ba8a8e3,0x4ba8a8e3 | ||
| 852 | data4 0xa25151f3,0xa25151f3, 0x5da3a3fe,0x5da3a3fe | ||
| 853 | data4 0x804040c0,0x804040c0, 0x058f8f8a,0x058f8f8a | ||
| 854 | data4 0x3f9292ad,0x3f9292ad, 0x219d9dbc,0x219d9dbc | ||
| 855 | data4 0x70383848,0x70383848, 0xf1f5f504,0xf1f5f504 | ||
| 856 | data4 0x63bcbcdf,0x63bcbcdf, 0x77b6b6c1,0x77b6b6c1 | ||
| 857 | data4 0xafdada75,0xafdada75, 0x42212163,0x42212163 | ||
| 858 | data4 0x20101030,0x20101030, 0xe5ffff1a,0xe5ffff1a | ||
| 859 | data4 0xfdf3f30e,0xfdf3f30e, 0xbfd2d26d,0xbfd2d26d | ||
| 860 | data4 0x81cdcd4c,0x81cdcd4c, 0x180c0c14,0x180c0c14 | ||
| 861 | data4 0x26131335,0x26131335, 0xc3ecec2f,0xc3ecec2f | ||
| 862 | data4 0xbe5f5fe1,0xbe5f5fe1, 0x359797a2,0x359797a2 | ||
| 863 | data4 0x884444cc,0x884444cc, 0x2e171739,0x2e171739 | ||
| 864 | data4 0x93c4c457,0x93c4c457, 0x55a7a7f2,0x55a7a7f2 | ||
| 865 | data4 0xfc7e7e82,0xfc7e7e82, 0x7a3d3d47,0x7a3d3d47 | ||
| 866 | data4 0xc86464ac,0xc86464ac, 0xba5d5de7,0xba5d5de7 | ||
| 867 | data4 0x3219192b,0x3219192b, 0xe6737395,0xe6737395 | ||
| 868 | data4 0xc06060a0,0xc06060a0, 0x19818198,0x19818198 | ||
| 869 | data4 0x9e4f4fd1,0x9e4f4fd1, 0xa3dcdc7f,0xa3dcdc7f | ||
| 870 | data4 0x44222266,0x44222266, 0x542a2a7e,0x542a2a7e | ||
| 871 | data4 0x3b9090ab,0x3b9090ab, 0x0b888883,0x0b888883 | ||
| 872 | data4 0x8c4646ca,0x8c4646ca, 0xc7eeee29,0xc7eeee29 | ||
| 873 | data4 0x6bb8b8d3,0x6bb8b8d3, 0x2814143c,0x2814143c | ||
| 874 | data4 0xa7dede79,0xa7dede79, 0xbc5e5ee2,0xbc5e5ee2 | ||
| 875 | data4 0x160b0b1d,0x160b0b1d, 0xaddbdb76,0xaddbdb76 | ||
| 876 | data4 0xdbe0e03b,0xdbe0e03b, 0x64323256,0x64323256 | ||
| 877 | data4 0x743a3a4e,0x743a3a4e, 0x140a0a1e,0x140a0a1e | ||
| 878 | data4 0x924949db,0x924949db, 0x0c06060a,0x0c06060a | ||
| 879 | data4 0x4824246c,0x4824246c, 0xb85c5ce4,0xb85c5ce4 | ||
| 880 | data4 0x9fc2c25d,0x9fc2c25d, 0xbdd3d36e,0xbdd3d36e | ||
| 881 | data4 0x43acacef,0x43acacef, 0xc46262a6,0xc46262a6 | ||
| 882 | data4 0x399191a8,0x399191a8, 0x319595a4,0x319595a4 | ||
| 883 | data4 0xd3e4e437,0xd3e4e437, 0xf279798b,0xf279798b | ||
| 884 | data4 0xd5e7e732,0xd5e7e732, 0x8bc8c843,0x8bc8c843 | ||
| 885 | data4 0x6e373759,0x6e373759, 0xda6d6db7,0xda6d6db7 | ||
| 886 | data4 0x018d8d8c,0x018d8d8c, 0xb1d5d564,0xb1d5d564 | ||
| 887 | data4 0x9c4e4ed2,0x9c4e4ed2, 0x49a9a9e0,0x49a9a9e0 | ||
| 888 | data4 0xd86c6cb4,0xd86c6cb4, 0xac5656fa,0xac5656fa | ||
| 889 | data4 0xf3f4f407,0xf3f4f407, 0xcfeaea25,0xcfeaea25 | ||
| 890 | data4 0xca6565af,0xca6565af, 0xf47a7a8e,0xf47a7a8e | ||
| 891 | data4 0x47aeaee9,0x47aeaee9, 0x10080818,0x10080818 | ||
| 892 | data4 0x6fbabad5,0x6fbabad5, 0xf0787888,0xf0787888 | ||
| 893 | data4 0x4a25256f,0x4a25256f, 0x5c2e2e72,0x5c2e2e72 | ||
| 894 | data4 0x381c1c24,0x381c1c24, 0x57a6a6f1,0x57a6a6f1 | ||
| 895 | data4 0x73b4b4c7,0x73b4b4c7, 0x97c6c651,0x97c6c651 | ||
| 896 | data4 0xcbe8e823,0xcbe8e823, 0xa1dddd7c,0xa1dddd7c | ||
| 897 | data4 0xe874749c,0xe874749c, 0x3e1f1f21,0x3e1f1f21 | ||
| 898 | data4 0x964b4bdd,0x964b4bdd, 0x61bdbddc,0x61bdbddc | ||
| 899 | data4 0x0d8b8b86,0x0d8b8b86, 0x0f8a8a85,0x0f8a8a85 | ||
| 900 | data4 0xe0707090,0xe0707090, 0x7c3e3e42,0x7c3e3e42 | ||
| 901 | data4 0x71b5b5c4,0x71b5b5c4, 0xcc6666aa,0xcc6666aa | ||
| 902 | data4 0x904848d8,0x904848d8, 0x06030305,0x06030305 | ||
| 903 | data4 0xf7f6f601,0xf7f6f601, 0x1c0e0e12,0x1c0e0e12 | ||
| 904 | data4 0xc26161a3,0xc26161a3, 0x6a35355f,0x6a35355f | ||
| 905 | data4 0xae5757f9,0xae5757f9, 0x69b9b9d0,0x69b9b9d0 | ||
| 906 | data4 0x17868691,0x17868691, 0x99c1c158,0x99c1c158 | ||
| 907 | data4 0x3a1d1d27,0x3a1d1d27, 0x279e9eb9,0x279e9eb9 | ||
| 908 | data4 0xd9e1e138,0xd9e1e138, 0xebf8f813,0xebf8f813 | ||
| 909 | data4 0x2b9898b3,0x2b9898b3, 0x22111133,0x22111133 | ||
| 910 | data4 0xd26969bb,0xd26969bb, 0xa9d9d970,0xa9d9d970 | ||
| 911 | data4 0x078e8e89,0x078e8e89, 0x339494a7,0x339494a7 | ||
| 912 | data4 0x2d9b9bb6,0x2d9b9bb6, 0x3c1e1e22,0x3c1e1e22 | ||
| 913 | data4 0x15878792,0x15878792, 0xc9e9e920,0xc9e9e920 | ||
| 914 | data4 0x87cece49,0x87cece49, 0xaa5555ff,0xaa5555ff | ||
| 915 | data4 0x50282878,0x50282878, 0xa5dfdf7a,0xa5dfdf7a | ||
| 916 | data4 0x038c8c8f,0x038c8c8f, 0x59a1a1f8,0x59a1a1f8 | ||
| 917 | data4 0x09898980,0x09898980, 0x1a0d0d17,0x1a0d0d17 | ||
| 918 | data4 0x65bfbfda,0x65bfbfda, 0xd7e6e631,0xd7e6e631 | ||
| 919 | data4 0x844242c6,0x844242c6, 0xd06868b8,0xd06868b8 | ||
| 920 | data4 0x824141c3,0x824141c3, 0x299999b0,0x299999b0 | ||
| 921 | data4 0x5a2d2d77,0x5a2d2d77, 0x1e0f0f11,0x1e0f0f11 | ||
| 922 | data4 0x7bb0b0cb,0x7bb0b0cb, 0xa85454fc,0xa85454fc | ||
| 923 | data4 0x6dbbbbd6,0x6dbbbbd6, 0x2c16163a,0x2c16163a | ||
| 924 | // Te4: | ||
| 925 | data1 0x63, 0x7c, 0x77, 0x7b, 0xf2, 0x6b, 0x6f, 0xc5 | ||
| 926 | data1 0x30, 0x01, 0x67, 0x2b, 0xfe, 0xd7, 0xab, 0x76 | ||
| 927 | data1 0xca, 0x82, 0xc9, 0x7d, 0xfa, 0x59, 0x47, 0xf0 | ||
| 928 | data1 0xad, 0xd4, 0xa2, 0xaf, 0x9c, 0xa4, 0x72, 0xc0 | ||
| 929 | data1 0xb7, 0xfd, 0x93, 0x26, 0x36, 0x3f, 0xf7, 0xcc | ||
| 930 | data1 0x34, 0xa5, 0xe5, 0xf1, 0x71, 0xd8, 0x31, 0x15 | ||
| 931 | data1 0x04, 0xc7, 0x23, 0xc3, 0x18, 0x96, 0x05, 0x9a | ||
| 932 | data1 0x07, 0x12, 0x80, 0xe2, 0xeb, 0x27, 0xb2, 0x75 | ||
| 933 | data1 0x09, 0x83, 0x2c, 0x1a, 0x1b, 0x6e, 0x5a, 0xa0 | ||
| 934 | data1 0x52, 0x3b, 0xd6, 0xb3, 0x29, 0xe3, 0x2f, 0x84 | ||
| 935 | data1 0x53, 0xd1, 0x00, 0xed, 0x20, 0xfc, 0xb1, 0x5b | ||
| 936 | data1 0x6a, 0xcb, 0xbe, 0x39, 0x4a, 0x4c, 0x58, 0xcf | ||
| 937 | data1 0xd0, 0xef, 0xaa, 0xfb, 0x43, 0x4d, 0x33, 0x85 | ||
| 938 | data1 0x45, 0xf9, 0x02, 0x7f, 0x50, 0x3c, 0x9f, 0xa8 | ||
| 939 | data1 0x51, 0xa3, 0x40, 0x8f, 0x92, 0x9d, 0x38, 0xf5 | ||
| 940 | data1 0xbc, 0xb6, 0xda, 0x21, 0x10, 0xff, 0xf3, 0xd2 | ||
| 941 | data1 0xcd, 0x0c, 0x13, 0xec, 0x5f, 0x97, 0x44, 0x17 | ||
| 942 | data1 0xc4, 0xa7, 0x7e, 0x3d, 0x64, 0x5d, 0x19, 0x73 | ||
| 943 | data1 0x60, 0x81, 0x4f, 0xdc, 0x22, 0x2a, 0x90, 0x88 | ||
| 944 | data1 0x46, 0xee, 0xb8, 0x14, 0xde, 0x5e, 0x0b, 0xdb | ||
| 945 | data1 0xe0, 0x32, 0x3a, 0x0a, 0x49, 0x06, 0x24, 0x5c | ||
| 946 | data1 0xc2, 0xd3, 0xac, 0x62, 0x91, 0x95, 0xe4, 0x79 | ||
| 947 | data1 0xe7, 0xc8, 0x37, 0x6d, 0x8d, 0xd5, 0x4e, 0xa9 | ||
| 948 | data1 0x6c, 0x56, 0xf4, 0xea, 0x65, 0x7a, 0xae, 0x08 | ||
| 949 | data1 0xba, 0x78, 0x25, 0x2e, 0x1c, 0xa6, 0xb4, 0xc6 | ||
| 950 | data1 0xe8, 0xdd, 0x74, 0x1f, 0x4b, 0xbd, 0x8b, 0x8a | ||
| 951 | data1 0x70, 0x3e, 0xb5, 0x66, 0x48, 0x03, 0xf6, 0x0e | ||
| 952 | data1 0x61, 0x35, 0x57, 0xb9, 0x86, 0xc1, 0x1d, 0x9e | ||
| 953 | data1 0xe1, 0xf8, 0x98, 0x11, 0x69, 0xd9, 0x8e, 0x94 | ||
| 954 | data1 0x9b, 0x1e, 0x87, 0xe9, 0xce, 0x55, 0x28, 0xdf | ||
| 955 | data1 0x8c, 0xa1, 0x89, 0x0d, 0xbf, 0xe6, 0x42, 0x68 | ||
| 956 | data1 0x41, 0x99, 0x2d, 0x0f, 0xb0, 0x54, 0xbb, 0x16 | ||
| 957 | .size AES_Te#,2048+256 // HP-UX assembler fails to ".-AES_Te#" | ||
| 958 | |||
| 959 | .align 64 | ||
| 960 | .global AES_Td# | ||
| 961 | .type AES_Td#,@object | ||
| 962 | AES_Td: data4 0x51f4a750,0x51f4a750, 0x7e416553,0x7e416553 | ||
| 963 | data4 0x1a17a4c3,0x1a17a4c3, 0x3a275e96,0x3a275e96 | ||
| 964 | data4 0x3bab6bcb,0x3bab6bcb, 0x1f9d45f1,0x1f9d45f1 | ||
| 965 | data4 0xacfa58ab,0xacfa58ab, 0x4be30393,0x4be30393 | ||
| 966 | data4 0x2030fa55,0x2030fa55, 0xad766df6,0xad766df6 | ||
| 967 | data4 0x88cc7691,0x88cc7691, 0xf5024c25,0xf5024c25 | ||
| 968 | data4 0x4fe5d7fc,0x4fe5d7fc, 0xc52acbd7,0xc52acbd7 | ||
| 969 | data4 0x26354480,0x26354480, 0xb562a38f,0xb562a38f | ||
| 970 | data4 0xdeb15a49,0xdeb15a49, 0x25ba1b67,0x25ba1b67 | ||
| 971 | data4 0x45ea0e98,0x45ea0e98, 0x5dfec0e1,0x5dfec0e1 | ||
| 972 | data4 0xc32f7502,0xc32f7502, 0x814cf012,0x814cf012 | ||
| 973 | data4 0x8d4697a3,0x8d4697a3, 0x6bd3f9c6,0x6bd3f9c6 | ||
| 974 | data4 0x038f5fe7,0x038f5fe7, 0x15929c95,0x15929c95 | ||
| 975 | data4 0xbf6d7aeb,0xbf6d7aeb, 0x955259da,0x955259da | ||
| 976 | data4 0xd4be832d,0xd4be832d, 0x587421d3,0x587421d3 | ||
| 977 | data4 0x49e06929,0x49e06929, 0x8ec9c844,0x8ec9c844 | ||
| 978 | data4 0x75c2896a,0x75c2896a, 0xf48e7978,0xf48e7978 | ||
| 979 | data4 0x99583e6b,0x99583e6b, 0x27b971dd,0x27b971dd | ||
| 980 | data4 0xbee14fb6,0xbee14fb6, 0xf088ad17,0xf088ad17 | ||
| 981 | data4 0xc920ac66,0xc920ac66, 0x7dce3ab4,0x7dce3ab4 | ||
| 982 | data4 0x63df4a18,0x63df4a18, 0xe51a3182,0xe51a3182 | ||
| 983 | data4 0x97513360,0x97513360, 0x62537f45,0x62537f45 | ||
| 984 | data4 0xb16477e0,0xb16477e0, 0xbb6bae84,0xbb6bae84 | ||
| 985 | data4 0xfe81a01c,0xfe81a01c, 0xf9082b94,0xf9082b94 | ||
| 986 | data4 0x70486858,0x70486858, 0x8f45fd19,0x8f45fd19 | ||
| 987 | data4 0x94de6c87,0x94de6c87, 0x527bf8b7,0x527bf8b7 | ||
| 988 | data4 0xab73d323,0xab73d323, 0x724b02e2,0x724b02e2 | ||
| 989 | data4 0xe31f8f57,0xe31f8f57, 0x6655ab2a,0x6655ab2a | ||
| 990 | data4 0xb2eb2807,0xb2eb2807, 0x2fb5c203,0x2fb5c203 | ||
| 991 | data4 0x86c57b9a,0x86c57b9a, 0xd33708a5,0xd33708a5 | ||
| 992 | data4 0x302887f2,0x302887f2, 0x23bfa5b2,0x23bfa5b2 | ||
| 993 | data4 0x02036aba,0x02036aba, 0xed16825c,0xed16825c | ||
| 994 | data4 0x8acf1c2b,0x8acf1c2b, 0xa779b492,0xa779b492 | ||
| 995 | data4 0xf307f2f0,0xf307f2f0, 0x4e69e2a1,0x4e69e2a1 | ||
| 996 | data4 0x65daf4cd,0x65daf4cd, 0x0605bed5,0x0605bed5 | ||
| 997 | data4 0xd134621f,0xd134621f, 0xc4a6fe8a,0xc4a6fe8a | ||
| 998 | data4 0x342e539d,0x342e539d, 0xa2f355a0,0xa2f355a0 | ||
| 999 | data4 0x058ae132,0x058ae132, 0xa4f6eb75,0xa4f6eb75 | ||
| 1000 | data4 0x0b83ec39,0x0b83ec39, 0x4060efaa,0x4060efaa | ||
| 1001 | data4 0x5e719f06,0x5e719f06, 0xbd6e1051,0xbd6e1051 | ||
| 1002 | data4 0x3e218af9,0x3e218af9, 0x96dd063d,0x96dd063d | ||
| 1003 | data4 0xdd3e05ae,0xdd3e05ae, 0x4de6bd46,0x4de6bd46 | ||
| 1004 | data4 0x91548db5,0x91548db5, 0x71c45d05,0x71c45d05 | ||
| 1005 | data4 0x0406d46f,0x0406d46f, 0x605015ff,0x605015ff | ||
| 1006 | data4 0x1998fb24,0x1998fb24, 0xd6bde997,0xd6bde997 | ||
| 1007 | data4 0x894043cc,0x894043cc, 0x67d99e77,0x67d99e77 | ||
| 1008 | data4 0xb0e842bd,0xb0e842bd, 0x07898b88,0x07898b88 | ||
| 1009 | data4 0xe7195b38,0xe7195b38, 0x79c8eedb,0x79c8eedb | ||
| 1010 | data4 0xa17c0a47,0xa17c0a47, 0x7c420fe9,0x7c420fe9 | ||
| 1011 | data4 0xf8841ec9,0xf8841ec9, 0x00000000,0x00000000 | ||
| 1012 | data4 0x09808683,0x09808683, 0x322bed48,0x322bed48 | ||
| 1013 | data4 0x1e1170ac,0x1e1170ac, 0x6c5a724e,0x6c5a724e | ||
| 1014 | data4 0xfd0efffb,0xfd0efffb, 0x0f853856,0x0f853856 | ||
| 1015 | data4 0x3daed51e,0x3daed51e, 0x362d3927,0x362d3927 | ||
| 1016 | data4 0x0a0fd964,0x0a0fd964, 0x685ca621,0x685ca621 | ||
| 1017 | data4 0x9b5b54d1,0x9b5b54d1, 0x24362e3a,0x24362e3a | ||
| 1018 | data4 0x0c0a67b1,0x0c0a67b1, 0x9357e70f,0x9357e70f | ||
| 1019 | data4 0xb4ee96d2,0xb4ee96d2, 0x1b9b919e,0x1b9b919e | ||
| 1020 | data4 0x80c0c54f,0x80c0c54f, 0x61dc20a2,0x61dc20a2 | ||
| 1021 | data4 0x5a774b69,0x5a774b69, 0x1c121a16,0x1c121a16 | ||
| 1022 | data4 0xe293ba0a,0xe293ba0a, 0xc0a02ae5,0xc0a02ae5 | ||
| 1023 | data4 0x3c22e043,0x3c22e043, 0x121b171d,0x121b171d | ||
| 1024 | data4 0x0e090d0b,0x0e090d0b, 0xf28bc7ad,0xf28bc7ad | ||
| 1025 | data4 0x2db6a8b9,0x2db6a8b9, 0x141ea9c8,0x141ea9c8 | ||
| 1026 | data4 0x57f11985,0x57f11985, 0xaf75074c,0xaf75074c | ||
| 1027 | data4 0xee99ddbb,0xee99ddbb, 0xa37f60fd,0xa37f60fd | ||
| 1028 | data4 0xf701269f,0xf701269f, 0x5c72f5bc,0x5c72f5bc | ||
| 1029 | data4 0x44663bc5,0x44663bc5, 0x5bfb7e34,0x5bfb7e34 | ||
| 1030 | data4 0x8b432976,0x8b432976, 0xcb23c6dc,0xcb23c6dc | ||
| 1031 | data4 0xb6edfc68,0xb6edfc68, 0xb8e4f163,0xb8e4f163 | ||
| 1032 | data4 0xd731dcca,0xd731dcca, 0x42638510,0x42638510 | ||
| 1033 | data4 0x13972240,0x13972240, 0x84c61120,0x84c61120 | ||
| 1034 | data4 0x854a247d,0x854a247d, 0xd2bb3df8,0xd2bb3df8 | ||
| 1035 | data4 0xaef93211,0xaef93211, 0xc729a16d,0xc729a16d | ||
| 1036 | data4 0x1d9e2f4b,0x1d9e2f4b, 0xdcb230f3,0xdcb230f3 | ||
| 1037 | data4 0x0d8652ec,0x0d8652ec, 0x77c1e3d0,0x77c1e3d0 | ||
| 1038 | data4 0x2bb3166c,0x2bb3166c, 0xa970b999,0xa970b999 | ||
| 1039 | data4 0x119448fa,0x119448fa, 0x47e96422,0x47e96422 | ||
| 1040 | data4 0xa8fc8cc4,0xa8fc8cc4, 0xa0f03f1a,0xa0f03f1a | ||
| 1041 | data4 0x567d2cd8,0x567d2cd8, 0x223390ef,0x223390ef | ||
| 1042 | data4 0x87494ec7,0x87494ec7, 0xd938d1c1,0xd938d1c1 | ||
| 1043 | data4 0x8ccaa2fe,0x8ccaa2fe, 0x98d40b36,0x98d40b36 | ||
| 1044 | data4 0xa6f581cf,0xa6f581cf, 0xa57ade28,0xa57ade28 | ||
| 1045 | data4 0xdab78e26,0xdab78e26, 0x3fadbfa4,0x3fadbfa4 | ||
| 1046 | data4 0x2c3a9de4,0x2c3a9de4, 0x5078920d,0x5078920d | ||
| 1047 | data4 0x6a5fcc9b,0x6a5fcc9b, 0x547e4662,0x547e4662 | ||
| 1048 | data4 0xf68d13c2,0xf68d13c2, 0x90d8b8e8,0x90d8b8e8 | ||
| 1049 | data4 0x2e39f75e,0x2e39f75e, 0x82c3aff5,0x82c3aff5 | ||
| 1050 | data4 0x9f5d80be,0x9f5d80be, 0x69d0937c,0x69d0937c | ||
| 1051 | data4 0x6fd52da9,0x6fd52da9, 0xcf2512b3,0xcf2512b3 | ||
| 1052 | data4 0xc8ac993b,0xc8ac993b, 0x10187da7,0x10187da7 | ||
| 1053 | data4 0xe89c636e,0xe89c636e, 0xdb3bbb7b,0xdb3bbb7b | ||
| 1054 | data4 0xcd267809,0xcd267809, 0x6e5918f4,0x6e5918f4 | ||
| 1055 | data4 0xec9ab701,0xec9ab701, 0x834f9aa8,0x834f9aa8 | ||
| 1056 | data4 0xe6956e65,0xe6956e65, 0xaaffe67e,0xaaffe67e | ||
| 1057 | data4 0x21bccf08,0x21bccf08, 0xef15e8e6,0xef15e8e6 | ||
| 1058 | data4 0xbae79bd9,0xbae79bd9, 0x4a6f36ce,0x4a6f36ce | ||
| 1059 | data4 0xea9f09d4,0xea9f09d4, 0x29b07cd6,0x29b07cd6 | ||
| 1060 | data4 0x31a4b2af,0x31a4b2af, 0x2a3f2331,0x2a3f2331 | ||
| 1061 | data4 0xc6a59430,0xc6a59430, 0x35a266c0,0x35a266c0 | ||
| 1062 | data4 0x744ebc37,0x744ebc37, 0xfc82caa6,0xfc82caa6 | ||
| 1063 | data4 0xe090d0b0,0xe090d0b0, 0x33a7d815,0x33a7d815 | ||
| 1064 | data4 0xf104984a,0xf104984a, 0x41ecdaf7,0x41ecdaf7 | ||
| 1065 | data4 0x7fcd500e,0x7fcd500e, 0x1791f62f,0x1791f62f | ||
| 1066 | data4 0x764dd68d,0x764dd68d, 0x43efb04d,0x43efb04d | ||
| 1067 | data4 0xccaa4d54,0xccaa4d54, 0xe49604df,0xe49604df | ||
| 1068 | data4 0x9ed1b5e3,0x9ed1b5e3, 0x4c6a881b,0x4c6a881b | ||
| 1069 | data4 0xc12c1fb8,0xc12c1fb8, 0x4665517f,0x4665517f | ||
| 1070 | data4 0x9d5eea04,0x9d5eea04, 0x018c355d,0x018c355d | ||
| 1071 | data4 0xfa877473,0xfa877473, 0xfb0b412e,0xfb0b412e | ||
| 1072 | data4 0xb3671d5a,0xb3671d5a, 0x92dbd252,0x92dbd252 | ||
| 1073 | data4 0xe9105633,0xe9105633, 0x6dd64713,0x6dd64713 | ||
| 1074 | data4 0x9ad7618c,0x9ad7618c, 0x37a10c7a,0x37a10c7a | ||
| 1075 | data4 0x59f8148e,0x59f8148e, 0xeb133c89,0xeb133c89 | ||
| 1076 | data4 0xcea927ee,0xcea927ee, 0xb761c935,0xb761c935 | ||
| 1077 | data4 0xe11ce5ed,0xe11ce5ed, 0x7a47b13c,0x7a47b13c | ||
| 1078 | data4 0x9cd2df59,0x9cd2df59, 0x55f2733f,0x55f2733f | ||
| 1079 | data4 0x1814ce79,0x1814ce79, 0x73c737bf,0x73c737bf | ||
| 1080 | data4 0x53f7cdea,0x53f7cdea, 0x5ffdaa5b,0x5ffdaa5b | ||
| 1081 | data4 0xdf3d6f14,0xdf3d6f14, 0x7844db86,0x7844db86 | ||
| 1082 | data4 0xcaaff381,0xcaaff381, 0xb968c43e,0xb968c43e | ||
| 1083 | data4 0x3824342c,0x3824342c, 0xc2a3405f,0xc2a3405f | ||
| 1084 | data4 0x161dc372,0x161dc372, 0xbce2250c,0xbce2250c | ||
| 1085 | data4 0x283c498b,0x283c498b, 0xff0d9541,0xff0d9541 | ||
| 1086 | data4 0x39a80171,0x39a80171, 0x080cb3de,0x080cb3de | ||
| 1087 | data4 0xd8b4e49c,0xd8b4e49c, 0x6456c190,0x6456c190 | ||
| 1088 | data4 0x7bcb8461,0x7bcb8461, 0xd532b670,0xd532b670 | ||
| 1089 | data4 0x486c5c74,0x486c5c74, 0xd0b85742,0xd0b85742 | ||
| 1090 | // Td4: | ||
| 1091 | data1 0x52, 0x09, 0x6a, 0xd5, 0x30, 0x36, 0xa5, 0x38 | ||
| 1092 | data1 0xbf, 0x40, 0xa3, 0x9e, 0x81, 0xf3, 0xd7, 0xfb | ||
| 1093 | data1 0x7c, 0xe3, 0x39, 0x82, 0x9b, 0x2f, 0xff, 0x87 | ||
| 1094 | data1 0x34, 0x8e, 0x43, 0x44, 0xc4, 0xde, 0xe9, 0xcb | ||
| 1095 | data1 0x54, 0x7b, 0x94, 0x32, 0xa6, 0xc2, 0x23, 0x3d | ||
| 1096 | data1 0xee, 0x4c, 0x95, 0x0b, 0x42, 0xfa, 0xc3, 0x4e | ||
| 1097 | data1 0x08, 0x2e, 0xa1, 0x66, 0x28, 0xd9, 0x24, 0xb2 | ||
| 1098 | data1 0x76, 0x5b, 0xa2, 0x49, 0x6d, 0x8b, 0xd1, 0x25 | ||
| 1099 | data1 0x72, 0xf8, 0xf6, 0x64, 0x86, 0x68, 0x98, 0x16 | ||
| 1100 | data1 0xd4, 0xa4, 0x5c, 0xcc, 0x5d, 0x65, 0xb6, 0x92 | ||
| 1101 | data1 0x6c, 0x70, 0x48, 0x50, 0xfd, 0xed, 0xb9, 0xda | ||
| 1102 | data1 0x5e, 0x15, 0x46, 0x57, 0xa7, 0x8d, 0x9d, 0x84 | ||
| 1103 | data1 0x90, 0xd8, 0xab, 0x00, 0x8c, 0xbc, 0xd3, 0x0a | ||
| 1104 | data1 0xf7, 0xe4, 0x58, 0x05, 0xb8, 0xb3, 0x45, 0x06 | ||
| 1105 | data1 0xd0, 0x2c, 0x1e, 0x8f, 0xca, 0x3f, 0x0f, 0x02 | ||
| 1106 | data1 0xc1, 0xaf, 0xbd, 0x03, 0x01, 0x13, 0x8a, 0x6b | ||
| 1107 | data1 0x3a, 0x91, 0x11, 0x41, 0x4f, 0x67, 0xdc, 0xea | ||
| 1108 | data1 0x97, 0xf2, 0xcf, 0xce, 0xf0, 0xb4, 0xe6, 0x73 | ||
| 1109 | data1 0x96, 0xac, 0x74, 0x22, 0xe7, 0xad, 0x35, 0x85 | ||
| 1110 | data1 0xe2, 0xf9, 0x37, 0xe8, 0x1c, 0x75, 0xdf, 0x6e | ||
| 1111 | data1 0x47, 0xf1, 0x1a, 0x71, 0x1d, 0x29, 0xc5, 0x89 | ||
| 1112 | data1 0x6f, 0xb7, 0x62, 0x0e, 0xaa, 0x18, 0xbe, 0x1b | ||
| 1113 | data1 0xfc, 0x56, 0x3e, 0x4b, 0xc6, 0xd2, 0x79, 0x20 | ||
| 1114 | data1 0x9a, 0xdb, 0xc0, 0xfe, 0x78, 0xcd, 0x5a, 0xf4 | ||
| 1115 | data1 0x1f, 0xdd, 0xa8, 0x33, 0x88, 0x07, 0xc7, 0x31 | ||
| 1116 | data1 0xb1, 0x12, 0x10, 0x59, 0x27, 0x80, 0xec, 0x5f | ||
| 1117 | data1 0x60, 0x51, 0x7f, 0xa9, 0x19, 0xb5, 0x4a, 0x0d | ||
| 1118 | data1 0x2d, 0xe5, 0x7a, 0x9f, 0x93, 0xc9, 0x9c, 0xef | ||
| 1119 | data1 0xa0, 0xe0, 0x3b, 0x4d, 0xae, 0x2a, 0xf5, 0xb0 | ||
| 1120 | data1 0xc8, 0xeb, 0xbb, 0x3c, 0x83, 0x53, 0x99, 0x61 | ||
| 1121 | data1 0x17, 0x2b, 0x04, 0x7e, 0xba, 0x77, 0xd6, 0x26 | ||
| 1122 | data1 0xe1, 0x69, 0x14, 0x63, 0x55, 0x21, 0x0c, 0x7d | ||
| 1123 | .size AES_Td#,2048+256 // HP-UX assembler fails to ".-AES_Td#" | ||
diff --git a/src/lib/libssl/src/crypto/aes/asm/aes-x86_64.pl b/src/lib/libssl/src/crypto/aes/asm/aes-x86_64.pl new file mode 100755 index 0000000000..44e0bf8cae --- /dev/null +++ b/src/lib/libssl/src/crypto/aes/asm/aes-x86_64.pl | |||
| @@ -0,0 +1,1578 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | # | ||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. Rights for redistribution and usage in source and binary | ||
| 6 | # forms are granted according to the OpenSSL license. | ||
| 7 | # ==================================================================== | ||
| 8 | # | ||
| 9 | # Version 1.2. | ||
| 10 | # | ||
| 11 | # aes-*-cbc benchmarks are improved by >70% [compared to gcc 3.3.2 on | ||
| 12 | # Opteron 240 CPU] plus all the bells-n-whistles from 32-bit version | ||
| 13 | # [you'll notice a lot of resemblance], such as compressed S-boxes | ||
| 14 | # in little-endian byte order, prefetch of these tables in CBC mode, | ||
| 15 | # as well as avoiding L1 cache aliasing between stack frame and key | ||
| 16 | # schedule and already mentioned tables, compressed Td4... | ||
| 17 | # | ||
| 18 | # Performance in number of cycles per processed byte for 128-bit key: | ||
| 19 | # | ||
| 20 | # ECB CBC encrypt | ||
| 21 | # AMD64 13.7 13.0(*) | ||
| 22 | # EM64T 20.2 18.6(*) | ||
| 23 | # | ||
| 24 | # (*) CBC benchmarks are better than ECB thanks to custom ABI used | ||
| 25 | # by the private block encryption function. | ||
| 26 | |||
| 27 | $verticalspin=1; # unlike 32-bit version $verticalspin performs | ||
| 28 | # ~15% better on both AMD and Intel cores | ||
| 29 | $output=shift; | ||
| 30 | open STDOUT,"| $^X ../perlasm/x86_64-xlate.pl $output"; | ||
| 31 | |||
| 32 | $code=".text\n"; | ||
| 33 | |||
| 34 | $s0="%eax"; | ||
| 35 | $s1="%ebx"; | ||
| 36 | $s2="%ecx"; | ||
| 37 | $s3="%edx"; | ||
| 38 | $acc0="%esi"; | ||
| 39 | $acc1="%edi"; | ||
| 40 | $acc2="%ebp"; | ||
| 41 | $inp="%r8"; | ||
| 42 | $out="%r9"; | ||
| 43 | $t0="%r10d"; | ||
| 44 | $t1="%r11d"; | ||
| 45 | $t2="%r12d"; | ||
| 46 | $rnds="%r13d"; | ||
| 47 | $sbox="%r14"; | ||
| 48 | $key="%r15"; | ||
| 49 | |||
| 50 | sub hi() { my $r=shift; $r =~ s/%[er]([a-d])x/%\1h/; $r; } | ||
| 51 | sub lo() { my $r=shift; $r =~ s/%[er]([a-d])x/%\1l/; | ||
| 52 | $r =~ s/%[er]([sd]i)/%\1l/; | ||
| 53 | $r =~ s/%(r[0-9]+)[d]?/%\1b/; $r; } | ||
| 54 | sub _data_word() | ||
| 55 | { my $i; | ||
| 56 | while(defined($i=shift)) { $code.=sprintf".long\t0x%08x,0x%08x\n",$i,$i; } | ||
| 57 | } | ||
| 58 | sub data_word() | ||
| 59 | { my $i; | ||
| 60 | my $last=pop(@_); | ||
| 61 | $code.=".long\t"; | ||
| 62 | while(defined($i=shift)) { $code.=sprintf"0x%08x,",$i; } | ||
| 63 | $code.=sprintf"0x%08x\n",$last; | ||
| 64 | } | ||
| 65 | |||
| 66 | sub data_byte() | ||
| 67 | { my $i; | ||
| 68 | my $last=pop(@_); | ||
| 69 | $code.=".byte\t"; | ||
| 70 | while(defined($i=shift)) { $code.=sprintf"0x%02x,",$i&0xff; } | ||
| 71 | $code.=sprintf"0x%02x\n",$last&0xff; | ||
| 72 | } | ||
| 73 | |||
| 74 | sub encvert() | ||
| 75 | { my $t3="%r8d"; # zaps $inp! | ||
| 76 | |||
| 77 | $code.=<<___; | ||
| 78 | # favor 3-way issue Opteron pipeline... | ||
| 79 | movzb `&lo("$s0")`,$acc0 | ||
| 80 | movzb `&lo("$s1")`,$acc1 | ||
| 81 | movzb `&lo("$s2")`,$acc2 | ||
| 82 | mov 0($sbox,$acc0,8),$t0 | ||
| 83 | mov 0($sbox,$acc1,8),$t1 | ||
| 84 | mov 0($sbox,$acc2,8),$t2 | ||
| 85 | |||
| 86 | movzb `&hi("$s1")`,$acc0 | ||
| 87 | movzb `&hi("$s2")`,$acc1 | ||
| 88 | movzb `&lo("$s3")`,$acc2 | ||
| 89 | xor 3($sbox,$acc0,8),$t0 | ||
| 90 | xor 3($sbox,$acc1,8),$t1 | ||
| 91 | mov 0($sbox,$acc2,8),$t3 | ||
| 92 | |||
| 93 | movzb `&hi("$s3")`,$acc0 | ||
| 94 | shr \$16,$s2 | ||
| 95 | movzb `&hi("$s0")`,$acc2 | ||
| 96 | xor 3($sbox,$acc0,8),$t2 | ||
| 97 | shr \$16,$s3 | ||
| 98 | xor 3($sbox,$acc2,8),$t3 | ||
| 99 | |||
| 100 | shr \$16,$s1 | ||
| 101 | lea 16($key),$key | ||
| 102 | shr \$16,$s0 | ||
| 103 | |||
| 104 | movzb `&lo("$s2")`,$acc0 | ||
| 105 | movzb `&lo("$s3")`,$acc1 | ||
| 106 | movzb `&lo("$s0")`,$acc2 | ||
| 107 | xor 2($sbox,$acc0,8),$t0 | ||
| 108 | xor 2($sbox,$acc1,8),$t1 | ||
| 109 | xor 2($sbox,$acc2,8),$t2 | ||
| 110 | |||
| 111 | movzb `&hi("$s3")`,$acc0 | ||
| 112 | movzb `&hi("$s0")`,$acc1 | ||
| 113 | movzb `&lo("$s1")`,$acc2 | ||
| 114 | xor 1($sbox,$acc0,8),$t0 | ||
| 115 | xor 1($sbox,$acc1,8),$t1 | ||
| 116 | xor 2($sbox,$acc2,8),$t3 | ||
| 117 | |||
| 118 | mov 12($key),$s3 | ||
| 119 | movzb `&hi("$s1")`,$acc1 | ||
| 120 | movzb `&hi("$s2")`,$acc2 | ||
| 121 | mov 0($key),$s0 | ||
| 122 | xor 1($sbox,$acc1,8),$t2 | ||
| 123 | xor 1($sbox,$acc2,8),$t3 | ||
| 124 | |||
| 125 | mov 4($key),$s1 | ||
| 126 | mov 8($key),$s2 | ||
| 127 | xor $t0,$s0 | ||
| 128 | xor $t1,$s1 | ||
| 129 | xor $t2,$s2 | ||
| 130 | xor $t3,$s3 | ||
| 131 | ___ | ||
| 132 | } | ||
| 133 | |||
| 134 | sub enclastvert() | ||
| 135 | { my $t3="%r8d"; # zaps $inp! | ||
| 136 | |||
| 137 | $code.=<<___; | ||
| 138 | movzb `&lo("$s0")`,$acc0 | ||
| 139 | movzb `&lo("$s1")`,$acc1 | ||
| 140 | movzb `&lo("$s2")`,$acc2 | ||
| 141 | mov 2($sbox,$acc0,8),$t0 | ||
| 142 | mov 2($sbox,$acc1,8),$t1 | ||
| 143 | mov 2($sbox,$acc2,8),$t2 | ||
| 144 | |||
| 145 | and \$0x000000ff,$t0 | ||
| 146 | and \$0x000000ff,$t1 | ||
| 147 | and \$0x000000ff,$t2 | ||
| 148 | |||
| 149 | movzb `&lo("$s3")`,$acc0 | ||
| 150 | movzb `&hi("$s1")`,$acc1 | ||
| 151 | movzb `&hi("$s2")`,$acc2 | ||
| 152 | mov 2($sbox,$acc0,8),$t3 | ||
| 153 | mov 0($sbox,$acc1,8),$acc1 #$t0 | ||
| 154 | mov 0($sbox,$acc2,8),$acc2 #$t1 | ||
| 155 | |||
| 156 | and \$0x000000ff,$t3 | ||
| 157 | and \$0x0000ff00,$acc1 | ||
| 158 | and \$0x0000ff00,$acc2 | ||
| 159 | |||
| 160 | xor $acc1,$t0 | ||
| 161 | xor $acc2,$t1 | ||
| 162 | shr \$16,$s2 | ||
| 163 | |||
| 164 | movzb `&hi("$s3")`,$acc0 | ||
| 165 | movzb `&hi("$s0")`,$acc1 | ||
| 166 | shr \$16,$s3 | ||
| 167 | mov 0($sbox,$acc0,8),$acc0 #$t2 | ||
| 168 | mov 0($sbox,$acc1,8),$acc1 #$t3 | ||
| 169 | |||
| 170 | and \$0x0000ff00,$acc0 | ||
| 171 | and \$0x0000ff00,$acc1 | ||
| 172 | shr \$16,$s1 | ||
| 173 | xor $acc0,$t2 | ||
| 174 | xor $acc1,$t3 | ||
| 175 | shr \$16,$s0 | ||
| 176 | |||
| 177 | movzb `&lo("$s2")`,$acc0 | ||
| 178 | movzb `&lo("$s3")`,$acc1 | ||
| 179 | movzb `&lo("$s0")`,$acc2 | ||
| 180 | mov 0($sbox,$acc0,8),$acc0 #$t0 | ||
| 181 | mov 0($sbox,$acc1,8),$acc1 #$t1 | ||
| 182 | mov 0($sbox,$acc2,8),$acc2 #$t2 | ||
| 183 | |||
| 184 | and \$0x00ff0000,$acc0 | ||
| 185 | and \$0x00ff0000,$acc1 | ||
| 186 | and \$0x00ff0000,$acc2 | ||
| 187 | |||
| 188 | xor $acc0,$t0 | ||
| 189 | xor $acc1,$t1 | ||
| 190 | xor $acc2,$t2 | ||
| 191 | |||
| 192 | movzb `&lo("$s1")`,$acc0 | ||
| 193 | movzb `&hi("$s3")`,$acc1 | ||
| 194 | movzb `&hi("$s0")`,$acc2 | ||
| 195 | mov 0($sbox,$acc0,8),$acc0 #$t3 | ||
| 196 | mov 2($sbox,$acc1,8),$acc1 #$t0 | ||
| 197 | mov 2($sbox,$acc2,8),$acc2 #$t1 | ||
| 198 | |||
| 199 | and \$0x00ff0000,$acc0 | ||
| 200 | and \$0xff000000,$acc1 | ||
| 201 | and \$0xff000000,$acc2 | ||
| 202 | |||
| 203 | xor $acc0,$t3 | ||
| 204 | xor $acc1,$t0 | ||
| 205 | xor $acc2,$t1 | ||
| 206 | |||
| 207 | movzb `&hi("$s1")`,$acc0 | ||
| 208 | movzb `&hi("$s2")`,$acc1 | ||
| 209 | mov 16+12($key),$s3 | ||
| 210 | mov 2($sbox,$acc0,8),$acc0 #$t2 | ||
| 211 | mov 2($sbox,$acc1,8),$acc1 #$t3 | ||
| 212 | mov 16+0($key),$s0 | ||
| 213 | |||
| 214 | and \$0xff000000,$acc0 | ||
| 215 | and \$0xff000000,$acc1 | ||
| 216 | |||
| 217 | xor $acc0,$t2 | ||
| 218 | xor $acc1,$t3 | ||
| 219 | |||
| 220 | mov 16+4($key),$s1 | ||
| 221 | mov 16+8($key),$s2 | ||
| 222 | xor $t0,$s0 | ||
| 223 | xor $t1,$s1 | ||
| 224 | xor $t2,$s2 | ||
| 225 | xor $t3,$s3 | ||
| 226 | ___ | ||
| 227 | } | ||
| 228 | |||
| 229 | sub encstep() | ||
| 230 | { my ($i,@s) = @_; | ||
| 231 | my $tmp0=$acc0; | ||
| 232 | my $tmp1=$acc1; | ||
| 233 | my $tmp2=$acc2; | ||
| 234 | my $out=($t0,$t1,$t2,$s[0])[$i]; | ||
| 235 | |||
| 236 | if ($i==3) { | ||
| 237 | $tmp0=$s[1]; | ||
| 238 | $tmp1=$s[2]; | ||
| 239 | $tmp2=$s[3]; | ||
| 240 | } | ||
| 241 | $code.=" movzb ".&lo($s[0]).",$out\n"; | ||
| 242 | $code.=" mov $s[2],$tmp1\n" if ($i!=3); | ||
| 243 | $code.=" lea 16($key),$key\n" if ($i==0); | ||
| 244 | |||
| 245 | $code.=" movzb ".&hi($s[1]).",$tmp0\n"; | ||
| 246 | $code.=" mov 0($sbox,$out,8),$out\n"; | ||
| 247 | |||
| 248 | $code.=" shr \$16,$tmp1\n"; | ||
| 249 | $code.=" mov $s[3],$tmp2\n" if ($i!=3); | ||
| 250 | $code.=" xor 3($sbox,$tmp0,8),$out\n"; | ||
| 251 | |||
| 252 | $code.=" movzb ".&lo($tmp1).",$tmp1\n"; | ||
| 253 | $code.=" shr \$24,$tmp2\n"; | ||
| 254 | $code.=" xor 4*$i($key),$out\n"; | ||
| 255 | |||
| 256 | $code.=" xor 2($sbox,$tmp1,8),$out\n"; | ||
| 257 | $code.=" xor 1($sbox,$tmp2,8),$out\n"; | ||
| 258 | |||
| 259 | $code.=" mov $t0,$s[1]\n" if ($i==3); | ||
| 260 | $code.=" mov $t1,$s[2]\n" if ($i==3); | ||
| 261 | $code.=" mov $t2,$s[3]\n" if ($i==3); | ||
| 262 | $code.="\n"; | ||
| 263 | } | ||
| 264 | |||
| 265 | sub enclast() | ||
| 266 | { my ($i,@s)=@_; | ||
| 267 | my $tmp0=$acc0; | ||
| 268 | my $tmp1=$acc1; | ||
| 269 | my $tmp2=$acc2; | ||
| 270 | my $out=($t0,$t1,$t2,$s[0])[$i]; | ||
| 271 | |||
| 272 | if ($i==3) { | ||
| 273 | $tmp0=$s[1]; | ||
| 274 | $tmp1=$s[2]; | ||
| 275 | $tmp2=$s[3]; | ||
| 276 | } | ||
| 277 | $code.=" movzb ".&lo($s[0]).",$out\n"; | ||
| 278 | $code.=" mov $s[2],$tmp1\n" if ($i!=3); | ||
| 279 | |||
| 280 | $code.=" mov 2($sbox,$out,8),$out\n"; | ||
| 281 | $code.=" shr \$16,$tmp1\n"; | ||
| 282 | $code.=" mov $s[3],$tmp2\n" if ($i!=3); | ||
| 283 | |||
| 284 | $code.=" and \$0x000000ff,$out\n"; | ||
| 285 | $code.=" movzb ".&hi($s[1]).",$tmp0\n"; | ||
| 286 | $code.=" movzb ".&lo($tmp1).",$tmp1\n"; | ||
| 287 | $code.=" shr \$24,$tmp2\n"; | ||
| 288 | |||
| 289 | $code.=" mov 0($sbox,$tmp0,8),$tmp0\n"; | ||
| 290 | $code.=" mov 0($sbox,$tmp1,8),$tmp1\n"; | ||
| 291 | $code.=" mov 2($sbox,$tmp2,8),$tmp2\n"; | ||
| 292 | |||
| 293 | $code.=" and \$0x0000ff00,$tmp0\n"; | ||
| 294 | $code.=" and \$0x00ff0000,$tmp1\n"; | ||
| 295 | $code.=" and \$0xff000000,$tmp2\n"; | ||
| 296 | |||
| 297 | $code.=" xor $tmp0,$out\n"; | ||
| 298 | $code.=" mov $t0,$s[1]\n" if ($i==3); | ||
| 299 | $code.=" xor $tmp1,$out\n"; | ||
| 300 | $code.=" mov $t1,$s[2]\n" if ($i==3); | ||
| 301 | $code.=" xor $tmp2,$out\n"; | ||
| 302 | $code.=" mov $t2,$s[3]\n" if ($i==3); | ||
| 303 | $code.="\n"; | ||
| 304 | } | ||
| 305 | |||
| 306 | $code.=<<___; | ||
| 307 | .type _x86_64_AES_encrypt,\@abi-omnipotent | ||
| 308 | .align 16 | ||
| 309 | _x86_64_AES_encrypt: | ||
| 310 | xor 0($key),$s0 # xor with key | ||
| 311 | xor 4($key),$s1 | ||
| 312 | xor 8($key),$s2 | ||
| 313 | xor 12($key),$s3 | ||
| 314 | |||
| 315 | mov 240($key),$rnds # load key->rounds | ||
| 316 | sub \$1,$rnds | ||
| 317 | jmp .Lenc_loop | ||
| 318 | .align 16 | ||
| 319 | .Lenc_loop: | ||
| 320 | ___ | ||
| 321 | if ($verticalspin) { &encvert(); } | ||
| 322 | else { &encstep(0,$s0,$s1,$s2,$s3); | ||
| 323 | &encstep(1,$s1,$s2,$s3,$s0); | ||
| 324 | &encstep(2,$s2,$s3,$s0,$s1); | ||
| 325 | &encstep(3,$s3,$s0,$s1,$s2); | ||
| 326 | } | ||
| 327 | $code.=<<___; | ||
| 328 | sub \$1,$rnds | ||
| 329 | jnz .Lenc_loop | ||
| 330 | ___ | ||
| 331 | if ($verticalspin) { &enclastvert(); } | ||
| 332 | else { &enclast(0,$s0,$s1,$s2,$s3); | ||
| 333 | &enclast(1,$s1,$s2,$s3,$s0); | ||
| 334 | &enclast(2,$s2,$s3,$s0,$s1); | ||
| 335 | &enclast(3,$s3,$s0,$s1,$s2); | ||
| 336 | $code.=<<___; | ||
| 337 | xor 16+0($key),$s0 # xor with key | ||
| 338 | xor 16+4($key),$s1 | ||
| 339 | xor 16+8($key),$s2 | ||
| 340 | xor 16+12($key),$s3 | ||
| 341 | ___ | ||
| 342 | } | ||
| 343 | $code.=<<___; | ||
| 344 | .byte 0xf3,0xc3 # rep ret | ||
| 345 | .size _x86_64_AES_encrypt,.-_x86_64_AES_encrypt | ||
| 346 | ___ | ||
| 347 | |||
| 348 | # void AES_encrypt (const void *inp,void *out,const AES_KEY *key); | ||
| 349 | $code.=<<___; | ||
| 350 | .globl AES_encrypt | ||
| 351 | .type AES_encrypt,\@function,3 | ||
| 352 | .align 16 | ||
| 353 | AES_encrypt: | ||
| 354 | push %rbx | ||
| 355 | push %rbp | ||
| 356 | push %r12 | ||
| 357 | push %r13 | ||
| 358 | push %r14 | ||
| 359 | push %r15 | ||
| 360 | |||
| 361 | mov %rdx,$key | ||
| 362 | mov %rdi,$inp | ||
| 363 | mov %rsi,$out | ||
| 364 | |||
| 365 | .picmeup $sbox | ||
| 366 | lea AES_Te-.($sbox),$sbox | ||
| 367 | |||
| 368 | mov 0($inp),$s0 | ||
| 369 | mov 4($inp),$s1 | ||
| 370 | mov 8($inp),$s2 | ||
| 371 | mov 12($inp),$s3 | ||
| 372 | |||
| 373 | call _x86_64_AES_encrypt | ||
| 374 | |||
| 375 | mov $s0,0($out) | ||
| 376 | mov $s1,4($out) | ||
| 377 | mov $s2,8($out) | ||
| 378 | mov $s3,12($out) | ||
| 379 | |||
| 380 | pop %r15 | ||
| 381 | pop %r14 | ||
| 382 | pop %r13 | ||
| 383 | pop %r12 | ||
| 384 | pop %rbp | ||
| 385 | pop %rbx | ||
| 386 | ret | ||
| 387 | .size AES_encrypt,.-AES_encrypt | ||
| 388 | ___ | ||
| 389 | |||
| 390 | #------------------------------------------------------------------# | ||
| 391 | |||
| 392 | sub decvert() | ||
| 393 | { my $t3="%r8d"; # zaps $inp! | ||
| 394 | |||
| 395 | $code.=<<___; | ||
| 396 | # favor 3-way issue Opteron pipeline... | ||
| 397 | movzb `&lo("$s0")`,$acc0 | ||
| 398 | movzb `&lo("$s1")`,$acc1 | ||
| 399 | movzb `&lo("$s2")`,$acc2 | ||
| 400 | mov 0($sbox,$acc0,8),$t0 | ||
| 401 | mov 0($sbox,$acc1,8),$t1 | ||
| 402 | mov 0($sbox,$acc2,8),$t2 | ||
| 403 | |||
| 404 | movzb `&hi("$s3")`,$acc0 | ||
| 405 | movzb `&hi("$s0")`,$acc1 | ||
| 406 | movzb `&lo("$s3")`,$acc2 | ||
| 407 | xor 3($sbox,$acc0,8),$t0 | ||
| 408 | xor 3($sbox,$acc1,8),$t1 | ||
| 409 | mov 0($sbox,$acc2,8),$t3 | ||
| 410 | |||
| 411 | movzb `&hi("$s1")`,$acc0 | ||
| 412 | shr \$16,$s0 | ||
| 413 | movzb `&hi("$s2")`,$acc2 | ||
| 414 | xor 3($sbox,$acc0,8),$t2 | ||
| 415 | shr \$16,$s3 | ||
| 416 | xor 3($sbox,$acc2,8),$t3 | ||
| 417 | |||
| 418 | shr \$16,$s1 | ||
| 419 | lea 16($key),$key | ||
| 420 | shr \$16,$s2 | ||
| 421 | |||
| 422 | movzb `&lo("$s2")`,$acc0 | ||
| 423 | movzb `&lo("$s3")`,$acc1 | ||
| 424 | movzb `&lo("$s0")`,$acc2 | ||
| 425 | xor 2($sbox,$acc0,8),$t0 | ||
| 426 | xor 2($sbox,$acc1,8),$t1 | ||
| 427 | xor 2($sbox,$acc2,8),$t2 | ||
| 428 | |||
| 429 | movzb `&hi("$s1")`,$acc0 | ||
| 430 | movzb `&hi("$s2")`,$acc1 | ||
| 431 | movzb `&lo("$s1")`,$acc2 | ||
| 432 | xor 1($sbox,$acc0,8),$t0 | ||
| 433 | xor 1($sbox,$acc1,8),$t1 | ||
| 434 | xor 2($sbox,$acc2,8),$t3 | ||
| 435 | |||
| 436 | movzb `&hi("$s3")`,$acc0 | ||
| 437 | mov 12($key),$s3 | ||
| 438 | movzb `&hi("$s0")`,$acc2 | ||
| 439 | xor 1($sbox,$acc0,8),$t2 | ||
| 440 | mov 0($key),$s0 | ||
| 441 | xor 1($sbox,$acc2,8),$t3 | ||
| 442 | |||
| 443 | xor $t0,$s0 | ||
| 444 | mov 4($key),$s1 | ||
| 445 | mov 8($key),$s2 | ||
| 446 | xor $t2,$s2 | ||
| 447 | xor $t1,$s1 | ||
| 448 | xor $t3,$s3 | ||
| 449 | ___ | ||
| 450 | } | ||
| 451 | |||
| 452 | sub declastvert() | ||
| 453 | { my $t3="%r8d"; # zaps $inp! | ||
| 454 | |||
| 455 | $code.=<<___; | ||
| 456 | movzb `&lo("$s0")`,$acc0 | ||
| 457 | movzb `&lo("$s1")`,$acc1 | ||
| 458 | movzb `&lo("$s2")`,$acc2 | ||
| 459 | movzb 2048($sbox,$acc0,1),$t0 | ||
| 460 | movzb 2048($sbox,$acc1,1),$t1 | ||
| 461 | movzb 2048($sbox,$acc2,1),$t2 | ||
| 462 | |||
| 463 | movzb `&lo("$s3")`,$acc0 | ||
| 464 | movzb `&hi("$s3")`,$acc1 | ||
| 465 | movzb `&hi("$s0")`,$acc2 | ||
| 466 | movzb 2048($sbox,$acc0,1),$t3 | ||
| 467 | movzb 2048($sbox,$acc1,1),$acc1 #$t0 | ||
| 468 | movzb 2048($sbox,$acc2,1),$acc2 #$t1 | ||
| 469 | |||
| 470 | shl \$8,$acc1 | ||
| 471 | shl \$8,$acc2 | ||
| 472 | |||
| 473 | xor $acc1,$t0 | ||
| 474 | xor $acc2,$t1 | ||
| 475 | shr \$16,$s3 | ||
| 476 | |||
| 477 | movzb `&hi("$s1")`,$acc0 | ||
| 478 | movzb `&hi("$s2")`,$acc1 | ||
| 479 | shr \$16,$s0 | ||
| 480 | movzb 2048($sbox,$acc0,1),$acc0 #$t2 | ||
| 481 | movzb 2048($sbox,$acc1,1),$acc1 #$t3 | ||
| 482 | |||
| 483 | shl \$8,$acc0 | ||
| 484 | shl \$8,$acc1 | ||
| 485 | shr \$16,$s1 | ||
| 486 | xor $acc0,$t2 | ||
| 487 | xor $acc1,$t3 | ||
| 488 | shr \$16,$s2 | ||
| 489 | |||
| 490 | movzb `&lo("$s2")`,$acc0 | ||
| 491 | movzb `&lo("$s3")`,$acc1 | ||
| 492 | movzb `&lo("$s0")`,$acc2 | ||
| 493 | movzb 2048($sbox,$acc0,1),$acc0 #$t0 | ||
| 494 | movzb 2048($sbox,$acc1,1),$acc1 #$t1 | ||
| 495 | movzb 2048($sbox,$acc2,1),$acc2 #$t2 | ||
| 496 | |||
| 497 | shl \$16,$acc0 | ||
| 498 | shl \$16,$acc1 | ||
| 499 | shl \$16,$acc2 | ||
| 500 | |||
| 501 | xor $acc0,$t0 | ||
| 502 | xor $acc1,$t1 | ||
| 503 | xor $acc2,$t2 | ||
| 504 | |||
| 505 | movzb `&lo("$s1")`,$acc0 | ||
| 506 | movzb `&hi("$s1")`,$acc1 | ||
| 507 | movzb `&hi("$s2")`,$acc2 | ||
| 508 | movzb 2048($sbox,$acc0,1),$acc0 #$t3 | ||
| 509 | movzb 2048($sbox,$acc1,1),$acc1 #$t0 | ||
| 510 | movzb 2048($sbox,$acc2,1),$acc2 #$t1 | ||
| 511 | |||
| 512 | shl \$16,$acc0 | ||
| 513 | shl \$24,$acc1 | ||
| 514 | shl \$24,$acc2 | ||
| 515 | |||
| 516 | xor $acc0,$t3 | ||
| 517 | xor $acc1,$t0 | ||
| 518 | xor $acc2,$t1 | ||
| 519 | |||
| 520 | movzb `&hi("$s3")`,$acc0 | ||
| 521 | movzb `&hi("$s0")`,$acc1 | ||
| 522 | mov 16+12($key),$s3 | ||
| 523 | movzb 2048($sbox,$acc0,1),$acc0 #$t2 | ||
| 524 | movzb 2048($sbox,$acc1,1),$acc1 #$t3 | ||
| 525 | mov 16+0($key),$s0 | ||
| 526 | |||
| 527 | shl \$24,$acc0 | ||
| 528 | shl \$24,$acc1 | ||
| 529 | |||
| 530 | xor $acc0,$t2 | ||
| 531 | xor $acc1,$t3 | ||
| 532 | |||
| 533 | mov 16+4($key),$s1 | ||
| 534 | mov 16+8($key),$s2 | ||
| 535 | xor $t0,$s0 | ||
| 536 | xor $t1,$s1 | ||
| 537 | xor $t2,$s2 | ||
| 538 | xor $t3,$s3 | ||
| 539 | ___ | ||
| 540 | } | ||
| 541 | |||
| 542 | sub decstep() | ||
| 543 | { my ($i,@s) = @_; | ||
| 544 | my $tmp0=$acc0; | ||
| 545 | my $tmp1=$acc1; | ||
| 546 | my $tmp2=$acc2; | ||
| 547 | my $out=($t0,$t1,$t2,$s[0])[$i]; | ||
| 548 | |||
| 549 | $code.=" mov $s[0],$out\n" if ($i!=3); | ||
| 550 | $tmp1=$s[2] if ($i==3); | ||
| 551 | $code.=" mov $s[2],$tmp1\n" if ($i!=3); | ||
| 552 | $code.=" and \$0xFF,$out\n"; | ||
| 553 | |||
| 554 | $code.=" mov 0($sbox,$out,8),$out\n"; | ||
| 555 | $code.=" shr \$16,$tmp1\n"; | ||
| 556 | $tmp2=$s[3] if ($i==3); | ||
| 557 | $code.=" mov $s[3],$tmp2\n" if ($i!=3); | ||
| 558 | |||
| 559 | $tmp0=$s[1] if ($i==3); | ||
| 560 | $code.=" movzb ".&hi($s[1]).",$tmp0\n"; | ||
| 561 | $code.=" and \$0xFF,$tmp1\n"; | ||
| 562 | $code.=" shr \$24,$tmp2\n"; | ||
| 563 | |||
| 564 | $code.=" xor 3($sbox,$tmp0,8),$out\n"; | ||
| 565 | $code.=" xor 2($sbox,$tmp1,8),$out\n"; | ||
| 566 | $code.=" xor 1($sbox,$tmp2,8),$out\n"; | ||
| 567 | |||
| 568 | $code.=" mov $t2,$s[1]\n" if ($i==3); | ||
| 569 | $code.=" mov $t1,$s[2]\n" if ($i==3); | ||
| 570 | $code.=" mov $t0,$s[3]\n" if ($i==3); | ||
| 571 | $code.="\n"; | ||
| 572 | } | ||
| 573 | |||
| 574 | sub declast() | ||
| 575 | { my ($i,@s)=@_; | ||
| 576 | my $tmp0=$acc0; | ||
| 577 | my $tmp1=$acc1; | ||
| 578 | my $tmp2=$acc2; | ||
| 579 | my $out=($t0,$t1,$t2,$s[0])[$i]; | ||
| 580 | |||
| 581 | $code.=" mov $s[0],$out\n" if ($i!=3); | ||
| 582 | $tmp1=$s[2] if ($i==3); | ||
| 583 | $code.=" mov $s[2],$tmp1\n" if ($i!=3); | ||
| 584 | $code.=" and \$0xFF,$out\n"; | ||
| 585 | |||
| 586 | $code.=" movzb 2048($sbox,$out,1),$out\n"; | ||
| 587 | $code.=" shr \$16,$tmp1\n"; | ||
| 588 | $tmp2=$s[3] if ($i==3); | ||
| 589 | $code.=" mov $s[3],$tmp2\n" if ($i!=3); | ||
| 590 | |||
| 591 | $tmp0=$s[1] if ($i==3); | ||
| 592 | $code.=" movzb ".&hi($s[1]).",$tmp0\n"; | ||
| 593 | $code.=" and \$0xFF,$tmp1\n"; | ||
| 594 | $code.=" shr \$24,$tmp2\n"; | ||
| 595 | |||
| 596 | $code.=" movzb 2048($sbox,$tmp0,1),$tmp0\n"; | ||
| 597 | $code.=" movzb 2048($sbox,$tmp1,1),$tmp1\n"; | ||
| 598 | $code.=" movzb 2048($sbox,$tmp2,1),$tmp2\n"; | ||
| 599 | |||
| 600 | $code.=" shl \$8,$tmp0\n"; | ||
| 601 | $code.=" shl \$16,$tmp1\n"; | ||
| 602 | $code.=" shl \$24,$tmp2\n"; | ||
| 603 | |||
| 604 | $code.=" xor $tmp0,$out\n"; | ||
| 605 | $code.=" mov $t2,$s[1]\n" if ($i==3); | ||
| 606 | $code.=" xor $tmp1,$out\n"; | ||
| 607 | $code.=" mov $t1,$s[2]\n" if ($i==3); | ||
| 608 | $code.=" xor $tmp2,$out\n"; | ||
| 609 | $code.=" mov $t0,$s[3]\n" if ($i==3); | ||
| 610 | $code.="\n"; | ||
| 611 | } | ||
| 612 | |||
| 613 | $code.=<<___; | ||
| 614 | .type _x86_64_AES_decrypt,\@abi-omnipotent | ||
| 615 | .align 16 | ||
| 616 | _x86_64_AES_decrypt: | ||
| 617 | xor 0($key),$s0 # xor with key | ||
| 618 | xor 4($key),$s1 | ||
| 619 | xor 8($key),$s2 | ||
| 620 | xor 12($key),$s3 | ||
| 621 | |||
| 622 | mov 240($key),$rnds # load key->rounds | ||
| 623 | sub \$1,$rnds | ||
| 624 | jmp .Ldec_loop | ||
| 625 | .align 16 | ||
| 626 | .Ldec_loop: | ||
| 627 | ___ | ||
| 628 | if ($verticalspin) { &decvert(); } | ||
| 629 | else { &decstep(0,$s0,$s3,$s2,$s1); | ||
| 630 | &decstep(1,$s1,$s0,$s3,$s2); | ||
| 631 | &decstep(2,$s2,$s1,$s0,$s3); | ||
| 632 | &decstep(3,$s3,$s2,$s1,$s0); | ||
| 633 | $code.=<<___; | ||
| 634 | lea 16($key),$key | ||
| 635 | xor 0($key),$s0 # xor with key | ||
| 636 | xor 4($key),$s1 | ||
| 637 | xor 8($key),$s2 | ||
| 638 | xor 12($key),$s3 | ||
| 639 | ___ | ||
| 640 | } | ||
| 641 | $code.=<<___; | ||
| 642 | sub \$1,$rnds | ||
| 643 | jnz .Ldec_loop | ||
| 644 | ___ | ||
| 645 | if ($verticalspin) { &declastvert(); } | ||
| 646 | else { &declast(0,$s0,$s3,$s2,$s1); | ||
| 647 | &declast(1,$s1,$s0,$s3,$s2); | ||
| 648 | &declast(2,$s2,$s1,$s0,$s3); | ||
| 649 | &declast(3,$s3,$s2,$s1,$s0); | ||
| 650 | $code.=<<___; | ||
| 651 | xor 16+0($key),$s0 # xor with key | ||
| 652 | xor 16+4($key),$s1 | ||
| 653 | xor 16+8($key),$s2 | ||
| 654 | xor 16+12($key),$s3 | ||
| 655 | ___ | ||
| 656 | } | ||
| 657 | $code.=<<___; | ||
| 658 | .byte 0xf3,0xc3 # rep ret | ||
| 659 | .size _x86_64_AES_decrypt,.-_x86_64_AES_decrypt | ||
| 660 | ___ | ||
| 661 | |||
| 662 | # void AES_decrypt (const void *inp,void *out,const AES_KEY *key); | ||
| 663 | $code.=<<___; | ||
| 664 | .globl AES_decrypt | ||
| 665 | .type AES_decrypt,\@function,3 | ||
| 666 | .align 16 | ||
| 667 | AES_decrypt: | ||
| 668 | push %rbx | ||
| 669 | push %rbp | ||
| 670 | push %r12 | ||
| 671 | push %r13 | ||
| 672 | push %r14 | ||
| 673 | push %r15 | ||
| 674 | |||
| 675 | mov %rdx,$key | ||
| 676 | mov %rdi,$inp | ||
| 677 | mov %rsi,$out | ||
| 678 | |||
| 679 | .picmeup $sbox | ||
| 680 | lea AES_Td-.($sbox),$sbox | ||
| 681 | |||
| 682 | # prefetch Td4 | ||
| 683 | lea 2048+128($sbox),$sbox; | ||
| 684 | mov 0-128($sbox),$s0 | ||
| 685 | mov 32-128($sbox),$s1 | ||
| 686 | mov 64-128($sbox),$s2 | ||
| 687 | mov 96-128($sbox),$s3 | ||
| 688 | mov 128-128($sbox),$s0 | ||
| 689 | mov 160-128($sbox),$s1 | ||
| 690 | mov 192-128($sbox),$s2 | ||
| 691 | mov 224-128($sbox),$s3 | ||
| 692 | lea -2048-128($sbox),$sbox; | ||
| 693 | |||
| 694 | mov 0($inp),$s0 | ||
| 695 | mov 4($inp),$s1 | ||
| 696 | mov 8($inp),$s2 | ||
| 697 | mov 12($inp),$s3 | ||
| 698 | |||
| 699 | call _x86_64_AES_decrypt | ||
| 700 | |||
| 701 | mov $s0,0($out) | ||
| 702 | mov $s1,4($out) | ||
| 703 | mov $s2,8($out) | ||
| 704 | mov $s3,12($out) | ||
| 705 | |||
| 706 | pop %r15 | ||
| 707 | pop %r14 | ||
| 708 | pop %r13 | ||
| 709 | pop %r12 | ||
| 710 | pop %rbp | ||
| 711 | pop %rbx | ||
| 712 | ret | ||
| 713 | .size AES_decrypt,.-AES_decrypt | ||
| 714 | ___ | ||
| 715 | #------------------------------------------------------------------# | ||
| 716 | |||
| 717 | sub enckey() | ||
| 718 | { | ||
| 719 | $code.=<<___; | ||
| 720 | movz %dl,%esi # rk[i]>>0 | ||
| 721 | mov 2(%rbp,%rsi,8),%ebx | ||
| 722 | movz %dh,%esi # rk[i]>>8 | ||
| 723 | and \$0xFF000000,%ebx | ||
| 724 | xor %ebx,%eax | ||
| 725 | |||
| 726 | mov 2(%rbp,%rsi,8),%ebx | ||
| 727 | shr \$16,%edx | ||
| 728 | and \$0x000000FF,%ebx | ||
| 729 | movz %dl,%esi # rk[i]>>16 | ||
| 730 | xor %ebx,%eax | ||
| 731 | |||
| 732 | mov 0(%rbp,%rsi,8),%ebx | ||
| 733 | movz %dh,%esi # rk[i]>>24 | ||
| 734 | and \$0x0000FF00,%ebx | ||
| 735 | xor %ebx,%eax | ||
| 736 | |||
| 737 | mov 0(%rbp,%rsi,8),%ebx | ||
| 738 | and \$0x00FF0000,%ebx | ||
| 739 | xor %ebx,%eax | ||
| 740 | |||
| 741 | xor 2048(%rbp,%rcx,4),%eax # rcon | ||
| 742 | ___ | ||
| 743 | } | ||
| 744 | |||
| 745 | # int AES_set_encrypt_key(const unsigned char *userKey, const int bits, | ||
| 746 | # AES_KEY *key) | ||
| 747 | $code.=<<___; | ||
| 748 | .globl AES_set_encrypt_key | ||
| 749 | .type AES_set_encrypt_key,\@function,3 | ||
| 750 | .align 16 | ||
| 751 | AES_set_encrypt_key: | ||
| 752 | push %rbx | ||
| 753 | push %rbp | ||
| 754 | |||
| 755 | mov %esi,%ecx # %ecx=bits | ||
| 756 | mov %rdi,%rsi # %rsi=userKey | ||
| 757 | mov %rdx,%rdi # %rdi=key | ||
| 758 | |||
| 759 | test \$-1,%rsi | ||
| 760 | jz .Lbadpointer | ||
| 761 | test \$-1,%rdi | ||
| 762 | jz .Lbadpointer | ||
| 763 | |||
| 764 | .picmeup %rbp | ||
| 765 | lea AES_Te-.(%rbp),%rbp | ||
| 766 | |||
| 767 | cmp \$128,%ecx | ||
| 768 | je .L10rounds | ||
| 769 | cmp \$192,%ecx | ||
| 770 | je .L12rounds | ||
| 771 | cmp \$256,%ecx | ||
| 772 | je .L14rounds | ||
| 773 | mov \$-2,%rax # invalid number of bits | ||
| 774 | jmp .Lexit | ||
| 775 | |||
| 776 | .L10rounds: | ||
| 777 | mov 0(%rsi),%eax # copy first 4 dwords | ||
| 778 | mov 4(%rsi),%ebx | ||
| 779 | mov 8(%rsi),%ecx | ||
| 780 | mov 12(%rsi),%edx | ||
| 781 | mov %eax,0(%rdi) | ||
| 782 | mov %ebx,4(%rdi) | ||
| 783 | mov %ecx,8(%rdi) | ||
| 784 | mov %edx,12(%rdi) | ||
| 785 | |||
| 786 | xor %ecx,%ecx | ||
| 787 | jmp .L10shortcut | ||
| 788 | .align 4 | ||
| 789 | .L10loop: | ||
| 790 | mov 0(%rdi),%eax # rk[0] | ||
| 791 | mov 12(%rdi),%edx # rk[3] | ||
| 792 | .L10shortcut: | ||
| 793 | ___ | ||
| 794 | &enckey (); | ||
| 795 | $code.=<<___; | ||
| 796 | mov %eax,16(%rdi) # rk[4] | ||
| 797 | xor 4(%rdi),%eax | ||
| 798 | mov %eax,20(%rdi) # rk[5] | ||
| 799 | xor 8(%rdi),%eax | ||
| 800 | mov %eax,24(%rdi) # rk[6] | ||
| 801 | xor 12(%rdi),%eax | ||
| 802 | mov %eax,28(%rdi) # rk[7] | ||
| 803 | add \$1,%ecx | ||
| 804 | lea 16(%rdi),%rdi | ||
| 805 | cmp \$10,%ecx | ||
| 806 | jl .L10loop | ||
| 807 | |||
| 808 | movl \$10,80(%rdi) # setup number of rounds | ||
| 809 | xor %rax,%rax | ||
| 810 | jmp .Lexit | ||
| 811 | |||
| 812 | .L12rounds: | ||
| 813 | mov 0(%rsi),%eax # copy first 6 dwords | ||
| 814 | mov 4(%rsi),%ebx | ||
| 815 | mov 8(%rsi),%ecx | ||
| 816 | mov 12(%rsi),%edx | ||
| 817 | mov %eax,0(%rdi) | ||
| 818 | mov %ebx,4(%rdi) | ||
| 819 | mov %ecx,8(%rdi) | ||
| 820 | mov %edx,12(%rdi) | ||
| 821 | mov 16(%rsi),%ecx | ||
| 822 | mov 20(%rsi),%edx | ||
| 823 | mov %ecx,16(%rdi) | ||
| 824 | mov %edx,20(%rdi) | ||
| 825 | |||
| 826 | xor %ecx,%ecx | ||
| 827 | jmp .L12shortcut | ||
| 828 | .align 4 | ||
| 829 | .L12loop: | ||
| 830 | mov 0(%rdi),%eax # rk[0] | ||
| 831 | mov 20(%rdi),%edx # rk[5] | ||
| 832 | .L12shortcut: | ||
| 833 | ___ | ||
| 834 | &enckey (); | ||
| 835 | $code.=<<___; | ||
| 836 | mov %eax,24(%rdi) # rk[6] | ||
| 837 | xor 4(%rdi),%eax | ||
| 838 | mov %eax,28(%rdi) # rk[7] | ||
| 839 | xor 8(%rdi),%eax | ||
| 840 | mov %eax,32(%rdi) # rk[8] | ||
| 841 | xor 12(%rdi),%eax | ||
| 842 | mov %eax,36(%rdi) # rk[9] | ||
| 843 | |||
| 844 | cmp \$7,%ecx | ||
| 845 | je .L12break | ||
| 846 | add \$1,%ecx | ||
| 847 | |||
| 848 | xor 16(%rdi),%eax | ||
| 849 | mov %eax,40(%rdi) # rk[10] | ||
| 850 | xor 20(%rdi),%eax | ||
| 851 | mov %eax,44(%rdi) # rk[11] | ||
| 852 | |||
| 853 | lea 24(%rdi),%rdi | ||
| 854 | jmp .L12loop | ||
| 855 | .L12break: | ||
| 856 | movl \$12,72(%rdi) # setup number of rounds | ||
| 857 | xor %rax,%rax | ||
| 858 | jmp .Lexit | ||
| 859 | |||
| 860 | .L14rounds: | ||
| 861 | mov 0(%rsi),%eax # copy first 8 dwords | ||
| 862 | mov 4(%rsi),%ebx | ||
| 863 | mov 8(%rsi),%ecx | ||
| 864 | mov 12(%rsi),%edx | ||
| 865 | mov %eax,0(%rdi) | ||
| 866 | mov %ebx,4(%rdi) | ||
| 867 | mov %ecx,8(%rdi) | ||
| 868 | mov %edx,12(%rdi) | ||
| 869 | mov 16(%rsi),%eax | ||
| 870 | mov 20(%rsi),%ebx | ||
| 871 | mov 24(%rsi),%ecx | ||
| 872 | mov 28(%rsi),%edx | ||
| 873 | mov %eax,16(%rdi) | ||
| 874 | mov %ebx,20(%rdi) | ||
| 875 | mov %ecx,24(%rdi) | ||
| 876 | mov %edx,28(%rdi) | ||
| 877 | |||
| 878 | xor %ecx,%ecx | ||
| 879 | jmp .L14shortcut | ||
| 880 | .align 4 | ||
| 881 | .L14loop: | ||
| 882 | mov 28(%rdi),%edx # rk[4] | ||
| 883 | .L14shortcut: | ||
| 884 | mov 0(%rdi),%eax # rk[0] | ||
| 885 | ___ | ||
| 886 | &enckey (); | ||
| 887 | $code.=<<___; | ||
| 888 | mov %eax,32(%rdi) # rk[8] | ||
| 889 | xor 4(%rdi),%eax | ||
| 890 | mov %eax,36(%rdi) # rk[9] | ||
| 891 | xor 8(%rdi),%eax | ||
| 892 | mov %eax,40(%rdi) # rk[10] | ||
| 893 | xor 12(%rdi),%eax | ||
| 894 | mov %eax,44(%rdi) # rk[11] | ||
| 895 | |||
| 896 | cmp \$6,%ecx | ||
| 897 | je .L14break | ||
| 898 | add \$1,%ecx | ||
| 899 | |||
| 900 | mov %eax,%edx | ||
| 901 | mov 16(%rdi),%eax # rk[4] | ||
| 902 | movz %dl,%esi # rk[11]>>0 | ||
| 903 | mov 2(%rbp,%rsi,8),%ebx | ||
| 904 | movz %dh,%esi # rk[11]>>8 | ||
| 905 | and \$0x000000FF,%ebx | ||
| 906 | xor %ebx,%eax | ||
| 907 | |||
| 908 | mov 0(%rbp,%rsi,8),%ebx | ||
| 909 | shr \$16,%edx | ||
| 910 | and \$0x0000FF00,%ebx | ||
| 911 | movz %dl,%esi # rk[11]>>16 | ||
| 912 | xor %ebx,%eax | ||
| 913 | |||
| 914 | mov 0(%rbp,%rsi,8),%ebx | ||
| 915 | movz %dh,%esi # rk[11]>>24 | ||
| 916 | and \$0x00FF0000,%ebx | ||
| 917 | xor %ebx,%eax | ||
| 918 | |||
| 919 | mov 2(%rbp,%rsi,8),%ebx | ||
| 920 | and \$0xFF000000,%ebx | ||
| 921 | xor %ebx,%eax | ||
| 922 | |||
| 923 | mov %eax,48(%rdi) # rk[12] | ||
| 924 | xor 20(%rdi),%eax | ||
| 925 | mov %eax,52(%rdi) # rk[13] | ||
| 926 | xor 24(%rdi),%eax | ||
| 927 | mov %eax,56(%rdi) # rk[14] | ||
| 928 | xor 28(%rdi),%eax | ||
| 929 | mov %eax,60(%rdi) # rk[15] | ||
| 930 | |||
| 931 | lea 32(%rdi),%rdi | ||
| 932 | jmp .L14loop | ||
| 933 | .L14break: | ||
| 934 | movl \$14,48(%rdi) # setup number of rounds | ||
| 935 | xor %rax,%rax | ||
| 936 | jmp .Lexit | ||
| 937 | |||
| 938 | .Lbadpointer: | ||
| 939 | mov \$-1,%rax | ||
| 940 | .Lexit: | ||
| 941 | pop %rbp | ||
| 942 | pop %rbx | ||
| 943 | ret | ||
| 944 | .size AES_set_encrypt_key,.-AES_set_encrypt_key | ||
| 945 | ___ | ||
| 946 | |||
| 947 | sub deckey() | ||
| 948 | { my ($i,$ptr,$te,$td) = @_; | ||
| 949 | $code.=<<___; | ||
| 950 | mov $i($ptr),%eax | ||
| 951 | mov %eax,%edx | ||
| 952 | movz %ah,%ebx | ||
| 953 | shr \$16,%edx | ||
| 954 | and \$0xFF,%eax | ||
| 955 | movzb 2($te,%rax,8),%rax | ||
| 956 | movzb 2($te,%rbx,8),%rbx | ||
| 957 | mov 0($td,%rax,8),%eax | ||
| 958 | xor 3($td,%rbx,8),%eax | ||
| 959 | movzb %dh,%ebx | ||
| 960 | and \$0xFF,%edx | ||
| 961 | movzb 2($te,%rdx,8),%rdx | ||
| 962 | movzb 2($te,%rbx,8),%rbx | ||
| 963 | xor 2($td,%rdx,8),%eax | ||
| 964 | xor 1($td,%rbx,8),%eax | ||
| 965 | mov %eax,$i($ptr) | ||
| 966 | ___ | ||
| 967 | } | ||
| 968 | |||
| 969 | # int AES_set_decrypt_key(const unsigned char *userKey, const int bits, | ||
| 970 | # AES_KEY *key) | ||
| 971 | $code.=<<___; | ||
| 972 | .globl AES_set_decrypt_key | ||
| 973 | .type AES_set_decrypt_key,\@function,3 | ||
| 974 | .align 16 | ||
| 975 | AES_set_decrypt_key: | ||
| 976 | push %rdx | ||
| 977 | call AES_set_encrypt_key | ||
| 978 | cmp \$0,%eax | ||
| 979 | je .Lproceed | ||
| 980 | lea 24(%rsp),%rsp | ||
| 981 | ret | ||
| 982 | .Lproceed: | ||
| 983 | mov (%rsp),%r8 # restore key schedule | ||
| 984 | mov %rbx,(%rsp) | ||
| 985 | |||
| 986 | mov 240(%r8),%ecx # pull number of rounds | ||
| 987 | xor %rdi,%rdi | ||
| 988 | lea (%rdi,%rcx,4),%rcx | ||
| 989 | mov %r8,%rsi | ||
| 990 | lea (%r8,%rcx,4),%rdi # pointer to last chunk | ||
| 991 | .align 4 | ||
| 992 | .Linvert: | ||
| 993 | mov 0(%rsi),%rax | ||
| 994 | mov 8(%rsi),%rbx | ||
| 995 | mov 0(%rdi),%rcx | ||
| 996 | mov 8(%rdi),%rdx | ||
| 997 | mov %rax,0(%rdi) | ||
| 998 | mov %rbx,8(%rdi) | ||
| 999 | mov %rcx,0(%rsi) | ||
| 1000 | mov %rdx,8(%rsi) | ||
| 1001 | lea 16(%rsi),%rsi | ||
| 1002 | lea -16(%rdi),%rdi | ||
| 1003 | cmp %rsi,%rdi | ||
| 1004 | jne .Linvert | ||
| 1005 | |||
| 1006 | .picmeup %r9 | ||
| 1007 | lea AES_Td-.(%r9),%rdi | ||
| 1008 | lea AES_Te-AES_Td(%rdi),%r9 | ||
| 1009 | |||
| 1010 | mov %r8,%rsi | ||
| 1011 | mov 240(%r8),%ecx # pull number of rounds | ||
| 1012 | sub \$1,%ecx | ||
| 1013 | .align 4 | ||
| 1014 | .Lpermute: | ||
| 1015 | lea 16(%rsi),%rsi | ||
| 1016 | ___ | ||
| 1017 | &deckey (0,"%rsi","%r9","%rdi"); | ||
| 1018 | &deckey (4,"%rsi","%r9","%rdi"); | ||
| 1019 | &deckey (8,"%rsi","%r9","%rdi"); | ||
| 1020 | &deckey (12,"%rsi","%r9","%rdi"); | ||
| 1021 | $code.=<<___; | ||
| 1022 | sub \$1,%ecx | ||
| 1023 | jnz .Lpermute | ||
| 1024 | |||
| 1025 | xor %rax,%rax | ||
| 1026 | pop %rbx | ||
| 1027 | ret | ||
| 1028 | .size AES_set_decrypt_key,.-AES_set_decrypt_key | ||
| 1029 | ___ | ||
| 1030 | |||
| 1031 | # void AES_cbc_encrypt (const void char *inp, unsigned char *out, | ||
| 1032 | # size_t length, const AES_KEY *key, | ||
| 1033 | # unsigned char *ivp,const int enc); | ||
| 1034 | { | ||
| 1035 | # stack frame layout | ||
| 1036 | # -8(%rsp) return address | ||
| 1037 | my $_rsp="0(%rsp)"; # saved %rsp | ||
| 1038 | my $_len="8(%rsp)"; # copy of 3rd parameter, length | ||
| 1039 | my $_key="16(%rsp)"; # copy of 4th parameter, key | ||
| 1040 | my $_ivp="24(%rsp)"; # copy of 5th parameter, ivp | ||
| 1041 | my $keyp="32(%rsp)"; # one to pass as $key | ||
| 1042 | my $ivec="40(%rsp)"; # ivec[16] | ||
| 1043 | my $aes_key="56(%rsp)"; # copy of aes_key | ||
| 1044 | my $mark="56+240(%rsp)"; # copy of aes_key->rounds | ||
| 1045 | |||
| 1046 | $code.=<<___; | ||
| 1047 | .globl AES_cbc_encrypt | ||
| 1048 | .type AES_cbc_encrypt,\@function,6 | ||
| 1049 | .align 16 | ||
| 1050 | AES_cbc_encrypt: | ||
| 1051 | cmp \$0,%rdx # check length | ||
| 1052 | je .Lcbc_just_ret | ||
| 1053 | push %rbx | ||
| 1054 | push %rbp | ||
| 1055 | push %r12 | ||
| 1056 | push %r13 | ||
| 1057 | push %r14 | ||
| 1058 | push %r15 | ||
| 1059 | pushfq | ||
| 1060 | cld | ||
| 1061 | mov %r9d,%r9d # clear upper half of enc | ||
| 1062 | |||
| 1063 | .picmeup $sbox | ||
| 1064 | .Lcbc_pic_point: | ||
| 1065 | |||
| 1066 | cmp \$0,%r9 | ||
| 1067 | je .LDECRYPT | ||
| 1068 | |||
| 1069 | lea AES_Te-.Lcbc_pic_point($sbox),$sbox | ||
| 1070 | |||
| 1071 | # allocate aligned stack frame... | ||
| 1072 | lea -64-248(%rsp),$key | ||
| 1073 | and \$-64,$key | ||
| 1074 | |||
| 1075 | # ... and make it doesn't alias with AES_Te modulo 4096 | ||
| 1076 | mov $sbox,%r10 | ||
| 1077 | lea 2048($sbox),%r11 | ||
| 1078 | mov $key,%r12 | ||
| 1079 | and \$0xFFF,%r10 # s = $sbox&0xfff | ||
| 1080 | and \$0xFFF,%r11 # e = ($sbox+2048)&0xfff | ||
| 1081 | and \$0xFFF,%r12 # p = %rsp&0xfff | ||
| 1082 | |||
| 1083 | cmp %r11,%r12 # if (p=>e) %rsp =- (p-e); | ||
| 1084 | jb .Lcbc_te_break_out | ||
| 1085 | sub %r11,%r12 | ||
| 1086 | sub %r12,$key | ||
| 1087 | jmp .Lcbc_te_ok | ||
| 1088 | .Lcbc_te_break_out: # else %rsp -= (p-s)&0xfff + framesz | ||
| 1089 | sub %r10,%r12 | ||
| 1090 | and \$0xFFF,%r12 | ||
| 1091 | add \$320,%r12 | ||
| 1092 | sub %r12,$key | ||
| 1093 | .align 4 | ||
| 1094 | .Lcbc_te_ok: | ||
| 1095 | |||
| 1096 | xchg %rsp,$key | ||
| 1097 | add \$8,%rsp # reserve for return address! | ||
| 1098 | mov $key,$_rsp # save %rsp | ||
| 1099 | mov %rdx,$_len # save copy of len | ||
| 1100 | mov %rcx,$_key # save copy of key | ||
| 1101 | mov %r8,$_ivp # save copy of ivp | ||
| 1102 | movl \$0,$mark # copy of aes_key->rounds = 0; | ||
| 1103 | mov %r8,%rbp # rearrange input arguments | ||
| 1104 | mov %rsi,$out | ||
| 1105 | mov %rdi,$inp | ||
| 1106 | mov %rcx,$key | ||
| 1107 | |||
| 1108 | # do we copy key schedule to stack? | ||
| 1109 | mov $key,%r10 | ||
| 1110 | sub $sbox,%r10 | ||
| 1111 | and \$0xfff,%r10 | ||
| 1112 | cmp \$2048,%r10 | ||
| 1113 | jb .Lcbc_do_ecopy | ||
| 1114 | cmp \$4096-248,%r10 | ||
| 1115 | jb .Lcbc_skip_ecopy | ||
| 1116 | .align 4 | ||
| 1117 | .Lcbc_do_ecopy: | ||
| 1118 | mov $key,%rsi | ||
| 1119 | lea $aes_key,%rdi | ||
| 1120 | lea $aes_key,$key | ||
| 1121 | mov \$240/8,%ecx | ||
| 1122 | .long 0x90A548F3 # rep movsq | ||
| 1123 | mov (%rsi),%eax # copy aes_key->rounds | ||
| 1124 | mov %eax,(%rdi) | ||
| 1125 | .Lcbc_skip_ecopy: | ||
| 1126 | mov $key,$keyp # save key pointer | ||
| 1127 | |||
| 1128 | mov \$16,%ecx | ||
| 1129 | .align 4 | ||
| 1130 | .Lcbc_prefetch_te: | ||
| 1131 | mov 0($sbox),%r10 | ||
| 1132 | mov 32($sbox),%r11 | ||
| 1133 | mov 64($sbox),%r12 | ||
| 1134 | mov 96($sbox),%r13 | ||
| 1135 | lea 128($sbox),$sbox | ||
| 1136 | sub \$1,%ecx | ||
| 1137 | jnz .Lcbc_prefetch_te | ||
| 1138 | sub \$2048,$sbox | ||
| 1139 | |||
| 1140 | test \$-16,%rdx # check upon length | ||
| 1141 | mov %rdx,%r10 | ||
| 1142 | mov 0(%rbp),$s0 # load iv | ||
| 1143 | mov 4(%rbp),$s1 | ||
| 1144 | mov 8(%rbp),$s2 | ||
| 1145 | mov 12(%rbp),$s3 | ||
| 1146 | jz .Lcbc_enc_tail # short input... | ||
| 1147 | |||
| 1148 | .align 4 | ||
| 1149 | .Lcbc_enc_loop: | ||
| 1150 | xor 0($inp),$s0 | ||
| 1151 | xor 4($inp),$s1 | ||
| 1152 | xor 8($inp),$s2 | ||
| 1153 | xor 12($inp),$s3 | ||
| 1154 | mov $inp,$ivec # if ($verticalspin) save inp | ||
| 1155 | |||
| 1156 | mov $keyp,$key # restore key | ||
| 1157 | call _x86_64_AES_encrypt | ||
| 1158 | |||
| 1159 | mov $ivec,$inp # if ($verticalspin) restore inp | ||
| 1160 | mov $s0,0($out) | ||
| 1161 | mov $s1,4($out) | ||
| 1162 | mov $s2,8($out) | ||
| 1163 | mov $s3,12($out) | ||
| 1164 | |||
| 1165 | mov $_len,%r10 | ||
| 1166 | lea 16($inp),$inp | ||
| 1167 | lea 16($out),$out | ||
| 1168 | sub \$16,%r10 | ||
| 1169 | test \$-16,%r10 | ||
| 1170 | mov %r10,$_len | ||
| 1171 | jnz .Lcbc_enc_loop | ||
| 1172 | test \$15,%r10 | ||
| 1173 | jnz .Lcbc_enc_tail | ||
| 1174 | mov $_ivp,%rbp # restore ivp | ||
| 1175 | mov $s0,0(%rbp) # save ivec | ||
| 1176 | mov $s1,4(%rbp) | ||
| 1177 | mov $s2,8(%rbp) | ||
| 1178 | mov $s3,12(%rbp) | ||
| 1179 | |||
| 1180 | .align 4 | ||
| 1181 | .Lcbc_cleanup: | ||
| 1182 | cmpl \$0,$mark # was the key schedule copied? | ||
| 1183 | lea $aes_key,%rdi | ||
| 1184 | mov $_rsp,%rsp | ||
| 1185 | je .Lcbc_exit | ||
| 1186 | mov \$240/8,%ecx | ||
| 1187 | xor %rax,%rax | ||
| 1188 | .long 0x90AB48F3 # rep stosq | ||
| 1189 | .Lcbc_exit: | ||
| 1190 | popfq | ||
| 1191 | pop %r15 | ||
| 1192 | pop %r14 | ||
| 1193 | pop %r13 | ||
| 1194 | pop %r12 | ||
| 1195 | pop %rbp | ||
| 1196 | pop %rbx | ||
| 1197 | .Lcbc_just_ret: | ||
| 1198 | ret | ||
| 1199 | .align 4 | ||
| 1200 | .Lcbc_enc_tail: | ||
| 1201 | cmp $inp,$out | ||
| 1202 | je .Lcbc_enc_in_place | ||
| 1203 | mov %r10,%rcx | ||
| 1204 | mov $inp,%rsi | ||
| 1205 | mov $out,%rdi | ||
| 1206 | .long 0xF689A4F3 # rep movsb | ||
| 1207 | .Lcbc_enc_in_place: | ||
| 1208 | mov \$16,%rcx # zero tail | ||
| 1209 | sub %r10,%rcx | ||
| 1210 | xor %rax,%rax | ||
| 1211 | .long 0xF689AAF3 # rep stosb | ||
| 1212 | mov $out,$inp # this is not a mistake! | ||
| 1213 | movq \$16,$_len # len=16 | ||
| 1214 | jmp .Lcbc_enc_loop # one more spin... | ||
| 1215 | #----------------------------- DECRYPT -----------------------------# | ||
| 1216 | .align 16 | ||
| 1217 | .LDECRYPT: | ||
| 1218 | lea AES_Td-.Lcbc_pic_point($sbox),$sbox | ||
| 1219 | |||
| 1220 | # allocate aligned stack frame... | ||
| 1221 | lea -64-248(%rsp),$key | ||
| 1222 | and \$-64,$key | ||
| 1223 | |||
| 1224 | # ... and make it doesn't alias with AES_Td modulo 4096 | ||
| 1225 | mov $sbox,%r10 | ||
| 1226 | lea 2304($sbox),%r11 | ||
| 1227 | mov $key,%r12 | ||
| 1228 | and \$0xFFF,%r10 # s = $sbox&0xfff | ||
| 1229 | and \$0xFFF,%r11 # e = ($sbox+2048+256)&0xfff | ||
| 1230 | and \$0xFFF,%r12 # p = %rsp&0xfff | ||
| 1231 | |||
| 1232 | cmp %r11,%r12 # if (p=>e) %rsp =- (p-e); | ||
| 1233 | jb .Lcbc_td_break_out | ||
| 1234 | sub %r11,%r12 | ||
| 1235 | sub %r12,$key | ||
| 1236 | jmp .Lcbc_td_ok | ||
| 1237 | .Lcbc_td_break_out: # else %rsp -= (p-s)&0xfff + framesz | ||
| 1238 | sub %r10,%r12 | ||
| 1239 | and \$0xFFF,%r12 | ||
| 1240 | add \$320,%r12 | ||
| 1241 | sub %r12,$key | ||
| 1242 | .align 4 | ||
| 1243 | .Lcbc_td_ok: | ||
| 1244 | |||
| 1245 | xchg %rsp,$key | ||
| 1246 | add \$8,%rsp # reserve for return address! | ||
| 1247 | mov $key,$_rsp # save %rsp | ||
| 1248 | mov %rdx,$_len # save copy of len | ||
| 1249 | mov %rcx,$_key # save copy of key | ||
| 1250 | mov %r8,$_ivp # save copy of ivp | ||
| 1251 | movl \$0,$mark # copy of aes_key->rounds = 0; | ||
| 1252 | mov %r8,%rbp # rearrange input arguments | ||
| 1253 | mov %rsi,$out | ||
| 1254 | mov %rdi,$inp | ||
| 1255 | mov %rcx,$key | ||
| 1256 | |||
| 1257 | # do we copy key schedule to stack? | ||
| 1258 | mov $key,%r10 | ||
| 1259 | sub $sbox,%r10 | ||
| 1260 | and \$0xfff,%r10 | ||
| 1261 | cmp \$2304,%r10 | ||
| 1262 | jb .Lcbc_do_dcopy | ||
| 1263 | cmp \$4096-248,%r10 | ||
| 1264 | jb .Lcbc_skip_dcopy | ||
| 1265 | .align 4 | ||
| 1266 | .Lcbc_do_dcopy: | ||
| 1267 | mov $key,%rsi | ||
| 1268 | lea $aes_key,%rdi | ||
| 1269 | lea $aes_key,$key | ||
| 1270 | mov \$240/8,%ecx | ||
| 1271 | .long 0x90A548F3 # rep movsq | ||
| 1272 | mov (%rsi),%eax # copy aes_key->rounds | ||
| 1273 | mov %eax,(%rdi) | ||
| 1274 | .Lcbc_skip_dcopy: | ||
| 1275 | mov $key,$keyp # save key pointer | ||
| 1276 | |||
| 1277 | mov \$18,%ecx | ||
| 1278 | .align 4 | ||
| 1279 | .Lcbc_prefetch_td: | ||
| 1280 | mov 0($sbox),%r10 | ||
| 1281 | mov 32($sbox),%r11 | ||
| 1282 | mov 64($sbox),%r12 | ||
| 1283 | mov 96($sbox),%r13 | ||
| 1284 | lea 128($sbox),$sbox | ||
| 1285 | sub \$1,%ecx | ||
| 1286 | jnz .Lcbc_prefetch_td | ||
| 1287 | sub \$2304,$sbox | ||
| 1288 | |||
| 1289 | cmp $inp,$out | ||
| 1290 | je .Lcbc_dec_in_place | ||
| 1291 | |||
| 1292 | mov %rbp,$ivec | ||
| 1293 | .align 4 | ||
| 1294 | .Lcbc_dec_loop: | ||
| 1295 | mov 0($inp),$s0 # read input | ||
| 1296 | mov 4($inp),$s1 | ||
| 1297 | mov 8($inp),$s2 | ||
| 1298 | mov 12($inp),$s3 | ||
| 1299 | mov $inp,8+$ivec # if ($verticalspin) save inp | ||
| 1300 | |||
| 1301 | mov $keyp,$key # restore key | ||
| 1302 | call _x86_64_AES_decrypt | ||
| 1303 | |||
| 1304 | mov $ivec,%rbp # load ivp | ||
| 1305 | mov 8+$ivec,$inp # if ($verticalspin) restore inp | ||
| 1306 | xor 0(%rbp),$s0 # xor iv | ||
| 1307 | xor 4(%rbp),$s1 | ||
| 1308 | xor 8(%rbp),$s2 | ||
| 1309 | xor 12(%rbp),$s3 | ||
| 1310 | mov $inp,%rbp # current input, next iv | ||
| 1311 | |||
| 1312 | mov $_len,%r10 # load len | ||
| 1313 | sub \$16,%r10 | ||
| 1314 | jc .Lcbc_dec_partial | ||
| 1315 | mov %r10,$_len # update len | ||
| 1316 | mov %rbp,$ivec # update ivp | ||
| 1317 | |||
| 1318 | mov $s0,0($out) # write output | ||
| 1319 | mov $s1,4($out) | ||
| 1320 | mov $s2,8($out) | ||
| 1321 | mov $s3,12($out) | ||
| 1322 | |||
| 1323 | lea 16($inp),$inp | ||
| 1324 | lea 16($out),$out | ||
| 1325 | jnz .Lcbc_dec_loop | ||
| 1326 | .Lcbc_dec_end: | ||
| 1327 | mov $_ivp,%r12 # load user ivp | ||
| 1328 | mov 0(%rbp),%r10 # load iv | ||
| 1329 | mov 8(%rbp),%r11 | ||
| 1330 | mov %r10,0(%r12) # copy back to user | ||
| 1331 | mov %r11,8(%r12) | ||
| 1332 | jmp .Lcbc_cleanup | ||
| 1333 | |||
| 1334 | .align 4 | ||
| 1335 | .Lcbc_dec_partial: | ||
| 1336 | mov $s0,0+$ivec # dump output to stack | ||
| 1337 | mov $s1,4+$ivec | ||
| 1338 | mov $s2,8+$ivec | ||
| 1339 | mov $s3,12+$ivec | ||
| 1340 | mov $out,%rdi | ||
| 1341 | lea $ivec,%rsi | ||
| 1342 | mov \$16,%rcx | ||
| 1343 | add %r10,%rcx # number of bytes to copy | ||
| 1344 | .long 0xF689A4F3 # rep movsb | ||
| 1345 | jmp .Lcbc_dec_end | ||
| 1346 | |||
| 1347 | .align 16 | ||
| 1348 | .Lcbc_dec_in_place: | ||
| 1349 | mov 0($inp),$s0 # load input | ||
| 1350 | mov 4($inp),$s1 | ||
| 1351 | mov 8($inp),$s2 | ||
| 1352 | mov 12($inp),$s3 | ||
| 1353 | |||
| 1354 | mov $inp,$ivec # if ($verticalspin) save inp | ||
| 1355 | mov $keyp,$key | ||
| 1356 | call _x86_64_AES_decrypt | ||
| 1357 | |||
| 1358 | mov $ivec,$inp # if ($verticalspin) restore inp | ||
| 1359 | mov $_ivp,%rbp | ||
| 1360 | xor 0(%rbp),$s0 | ||
| 1361 | xor 4(%rbp),$s1 | ||
| 1362 | xor 8(%rbp),$s2 | ||
| 1363 | xor 12(%rbp),$s3 | ||
| 1364 | |||
| 1365 | mov 0($inp),%r10 # copy input to iv | ||
| 1366 | mov 8($inp),%r11 | ||
| 1367 | mov %r10,0(%rbp) | ||
| 1368 | mov %r11,8(%rbp) | ||
| 1369 | |||
| 1370 | mov $s0,0($out) # save output [zaps input] | ||
| 1371 | mov $s1,4($out) | ||
| 1372 | mov $s2,8($out) | ||
| 1373 | mov $s3,12($out) | ||
| 1374 | |||
| 1375 | mov $_len,%rcx | ||
| 1376 | lea 16($inp),$inp | ||
| 1377 | lea 16($out),$out | ||
| 1378 | sub \$16,%rcx | ||
| 1379 | jc .Lcbc_dec_in_place_partial | ||
| 1380 | mov %rcx,$_len | ||
| 1381 | jnz .Lcbc_dec_in_place | ||
| 1382 | jmp .Lcbc_cleanup | ||
| 1383 | |||
| 1384 | .align 4 | ||
| 1385 | .Lcbc_dec_in_place_partial: | ||
| 1386 | # one can argue if this is actually required | ||
| 1387 | lea ($out,%rcx),%rdi | ||
| 1388 | lea (%rbp,%rcx),%rsi | ||
| 1389 | neg %rcx | ||
| 1390 | .long 0xF689A4F3 # rep movsb # restore tail | ||
| 1391 | jmp .Lcbc_cleanup | ||
| 1392 | .size AES_cbc_encrypt,.-AES_cbc_encrypt | ||
| 1393 | ___ | ||
| 1394 | } | ||
| 1395 | |||
| 1396 | $code.=<<___; | ||
| 1397 | .globl AES_Te | ||
| 1398 | .align 64 | ||
| 1399 | AES_Te: | ||
| 1400 | ___ | ||
| 1401 | &_data_word(0xa56363c6, 0x847c7cf8, 0x997777ee, 0x8d7b7bf6); | ||
| 1402 | &_data_word(0x0df2f2ff, 0xbd6b6bd6, 0xb16f6fde, 0x54c5c591); | ||
| 1403 | &_data_word(0x50303060, 0x03010102, 0xa96767ce, 0x7d2b2b56); | ||
| 1404 | &_data_word(0x19fefee7, 0x62d7d7b5, 0xe6abab4d, 0x9a7676ec); | ||
| 1405 | &_data_word(0x45caca8f, 0x9d82821f, 0x40c9c989, 0x877d7dfa); | ||
| 1406 | &_data_word(0x15fafaef, 0xeb5959b2, 0xc947478e, 0x0bf0f0fb); | ||
| 1407 | &_data_word(0xecadad41, 0x67d4d4b3, 0xfda2a25f, 0xeaafaf45); | ||
| 1408 | &_data_word(0xbf9c9c23, 0xf7a4a453, 0x967272e4, 0x5bc0c09b); | ||
| 1409 | &_data_word(0xc2b7b775, 0x1cfdfde1, 0xae93933d, 0x6a26264c); | ||
| 1410 | &_data_word(0x5a36366c, 0x413f3f7e, 0x02f7f7f5, 0x4fcccc83); | ||
| 1411 | &_data_word(0x5c343468, 0xf4a5a551, 0x34e5e5d1, 0x08f1f1f9); | ||
| 1412 | &_data_word(0x937171e2, 0x73d8d8ab, 0x53313162, 0x3f15152a); | ||
| 1413 | &_data_word(0x0c040408, 0x52c7c795, 0x65232346, 0x5ec3c39d); | ||
| 1414 | &_data_word(0x28181830, 0xa1969637, 0x0f05050a, 0xb59a9a2f); | ||
| 1415 | &_data_word(0x0907070e, 0x36121224, 0x9b80801b, 0x3de2e2df); | ||
| 1416 | &_data_word(0x26ebebcd, 0x6927274e, 0xcdb2b27f, 0x9f7575ea); | ||
| 1417 | &_data_word(0x1b090912, 0x9e83831d, 0x742c2c58, 0x2e1a1a34); | ||
| 1418 | &_data_word(0x2d1b1b36, 0xb26e6edc, 0xee5a5ab4, 0xfba0a05b); | ||
| 1419 | &_data_word(0xf65252a4, 0x4d3b3b76, 0x61d6d6b7, 0xceb3b37d); | ||
| 1420 | &_data_word(0x7b292952, 0x3ee3e3dd, 0x712f2f5e, 0x97848413); | ||
| 1421 | &_data_word(0xf55353a6, 0x68d1d1b9, 0x00000000, 0x2cededc1); | ||
| 1422 | &_data_word(0x60202040, 0x1ffcfce3, 0xc8b1b179, 0xed5b5bb6); | ||
| 1423 | &_data_word(0xbe6a6ad4, 0x46cbcb8d, 0xd9bebe67, 0x4b393972); | ||
| 1424 | &_data_word(0xde4a4a94, 0xd44c4c98, 0xe85858b0, 0x4acfcf85); | ||
| 1425 | &_data_word(0x6bd0d0bb, 0x2aefefc5, 0xe5aaaa4f, 0x16fbfbed); | ||
| 1426 | &_data_word(0xc5434386, 0xd74d4d9a, 0x55333366, 0x94858511); | ||
| 1427 | &_data_word(0xcf45458a, 0x10f9f9e9, 0x06020204, 0x817f7ffe); | ||
| 1428 | &_data_word(0xf05050a0, 0x443c3c78, 0xba9f9f25, 0xe3a8a84b); | ||
| 1429 | &_data_word(0xf35151a2, 0xfea3a35d, 0xc0404080, 0x8a8f8f05); | ||
| 1430 | &_data_word(0xad92923f, 0xbc9d9d21, 0x48383870, 0x04f5f5f1); | ||
| 1431 | &_data_word(0xdfbcbc63, 0xc1b6b677, 0x75dadaaf, 0x63212142); | ||
| 1432 | &_data_word(0x30101020, 0x1affffe5, 0x0ef3f3fd, 0x6dd2d2bf); | ||
| 1433 | &_data_word(0x4ccdcd81, 0x140c0c18, 0x35131326, 0x2fececc3); | ||
| 1434 | &_data_word(0xe15f5fbe, 0xa2979735, 0xcc444488, 0x3917172e); | ||
| 1435 | &_data_word(0x57c4c493, 0xf2a7a755, 0x827e7efc, 0x473d3d7a); | ||
| 1436 | &_data_word(0xac6464c8, 0xe75d5dba, 0x2b191932, 0x957373e6); | ||
| 1437 | &_data_word(0xa06060c0, 0x98818119, 0xd14f4f9e, 0x7fdcdca3); | ||
| 1438 | &_data_word(0x66222244, 0x7e2a2a54, 0xab90903b, 0x8388880b); | ||
| 1439 | &_data_word(0xca46468c, 0x29eeeec7, 0xd3b8b86b, 0x3c141428); | ||
| 1440 | &_data_word(0x79dedea7, 0xe25e5ebc, 0x1d0b0b16, 0x76dbdbad); | ||
| 1441 | &_data_word(0x3be0e0db, 0x56323264, 0x4e3a3a74, 0x1e0a0a14); | ||
| 1442 | &_data_word(0xdb494992, 0x0a06060c, 0x6c242448, 0xe45c5cb8); | ||
| 1443 | &_data_word(0x5dc2c29f, 0x6ed3d3bd, 0xefacac43, 0xa66262c4); | ||
| 1444 | &_data_word(0xa8919139, 0xa4959531, 0x37e4e4d3, 0x8b7979f2); | ||
| 1445 | &_data_word(0x32e7e7d5, 0x43c8c88b, 0x5937376e, 0xb76d6dda); | ||
| 1446 | &_data_word(0x8c8d8d01, 0x64d5d5b1, 0xd24e4e9c, 0xe0a9a949); | ||
| 1447 | &_data_word(0xb46c6cd8, 0xfa5656ac, 0x07f4f4f3, 0x25eaeacf); | ||
| 1448 | &_data_word(0xaf6565ca, 0x8e7a7af4, 0xe9aeae47, 0x18080810); | ||
| 1449 | &_data_word(0xd5baba6f, 0x887878f0, 0x6f25254a, 0x722e2e5c); | ||
| 1450 | &_data_word(0x241c1c38, 0xf1a6a657, 0xc7b4b473, 0x51c6c697); | ||
| 1451 | &_data_word(0x23e8e8cb, 0x7cdddda1, 0x9c7474e8, 0x211f1f3e); | ||
| 1452 | &_data_word(0xdd4b4b96, 0xdcbdbd61, 0x868b8b0d, 0x858a8a0f); | ||
| 1453 | &_data_word(0x907070e0, 0x423e3e7c, 0xc4b5b571, 0xaa6666cc); | ||
| 1454 | &_data_word(0xd8484890, 0x05030306, 0x01f6f6f7, 0x120e0e1c); | ||
| 1455 | &_data_word(0xa36161c2, 0x5f35356a, 0xf95757ae, 0xd0b9b969); | ||
| 1456 | &_data_word(0x91868617, 0x58c1c199, 0x271d1d3a, 0xb99e9e27); | ||
| 1457 | &_data_word(0x38e1e1d9, 0x13f8f8eb, 0xb398982b, 0x33111122); | ||
| 1458 | &_data_word(0xbb6969d2, 0x70d9d9a9, 0x898e8e07, 0xa7949433); | ||
| 1459 | &_data_word(0xb69b9b2d, 0x221e1e3c, 0x92878715, 0x20e9e9c9); | ||
| 1460 | &_data_word(0x49cece87, 0xff5555aa, 0x78282850, 0x7adfdfa5); | ||
| 1461 | &_data_word(0x8f8c8c03, 0xf8a1a159, 0x80898909, 0x170d0d1a); | ||
| 1462 | &_data_word(0xdabfbf65, 0x31e6e6d7, 0xc6424284, 0xb86868d0); | ||
| 1463 | &_data_word(0xc3414182, 0xb0999929, 0x772d2d5a, 0x110f0f1e); | ||
| 1464 | &_data_word(0xcbb0b07b, 0xfc5454a8, 0xd6bbbb6d, 0x3a16162c); | ||
| 1465 | #rcon: | ||
| 1466 | $code.=<<___; | ||
| 1467 | .long 0x00000001, 0x00000002, 0x00000004, 0x00000008 | ||
| 1468 | .long 0x00000010, 0x00000020, 0x00000040, 0x00000080 | ||
| 1469 | .long 0x0000001b, 0x00000036, 0, 0, 0, 0, 0, 0 | ||
| 1470 | ___ | ||
| 1471 | $code.=<<___; | ||
| 1472 | .globl AES_Td | ||
| 1473 | .align 64 | ||
| 1474 | AES_Td: | ||
| 1475 | ___ | ||
| 1476 | &_data_word(0x50a7f451, 0x5365417e, 0xc3a4171a, 0x965e273a); | ||
| 1477 | &_data_word(0xcb6bab3b, 0xf1459d1f, 0xab58faac, 0x9303e34b); | ||
| 1478 | &_data_word(0x55fa3020, 0xf66d76ad, 0x9176cc88, 0x254c02f5); | ||
| 1479 | &_data_word(0xfcd7e54f, 0xd7cb2ac5, 0x80443526, 0x8fa362b5); | ||
| 1480 | &_data_word(0x495ab1de, 0x671bba25, 0x980eea45, 0xe1c0fe5d); | ||
| 1481 | &_data_word(0x02752fc3, 0x12f04c81, 0xa397468d, 0xc6f9d36b); | ||
| 1482 | &_data_word(0xe75f8f03, 0x959c9215, 0xeb7a6dbf, 0xda595295); | ||
| 1483 | &_data_word(0x2d83bed4, 0xd3217458, 0x2969e049, 0x44c8c98e); | ||
| 1484 | &_data_word(0x6a89c275, 0x78798ef4, 0x6b3e5899, 0xdd71b927); | ||
| 1485 | &_data_word(0xb64fe1be, 0x17ad88f0, 0x66ac20c9, 0xb43ace7d); | ||
| 1486 | &_data_word(0x184adf63, 0x82311ae5, 0x60335197, 0x457f5362); | ||
| 1487 | &_data_word(0xe07764b1, 0x84ae6bbb, 0x1ca081fe, 0x942b08f9); | ||
| 1488 | &_data_word(0x58684870, 0x19fd458f, 0x876cde94, 0xb7f87b52); | ||
| 1489 | &_data_word(0x23d373ab, 0xe2024b72, 0x578f1fe3, 0x2aab5566); | ||
| 1490 | &_data_word(0x0728ebb2, 0x03c2b52f, 0x9a7bc586, 0xa50837d3); | ||
| 1491 | &_data_word(0xf2872830, 0xb2a5bf23, 0xba6a0302, 0x5c8216ed); | ||
| 1492 | &_data_word(0x2b1ccf8a, 0x92b479a7, 0xf0f207f3, 0xa1e2694e); | ||
| 1493 | &_data_word(0xcdf4da65, 0xd5be0506, 0x1f6234d1, 0x8afea6c4); | ||
| 1494 | &_data_word(0x9d532e34, 0xa055f3a2, 0x32e18a05, 0x75ebf6a4); | ||
| 1495 | &_data_word(0x39ec830b, 0xaaef6040, 0x069f715e, 0x51106ebd); | ||
| 1496 | &_data_word(0xf98a213e, 0x3d06dd96, 0xae053edd, 0x46bde64d); | ||
| 1497 | &_data_word(0xb58d5491, 0x055dc471, 0x6fd40604, 0xff155060); | ||
| 1498 | &_data_word(0x24fb9819, 0x97e9bdd6, 0xcc434089, 0x779ed967); | ||
| 1499 | &_data_word(0xbd42e8b0, 0x888b8907, 0x385b19e7, 0xdbeec879); | ||
| 1500 | &_data_word(0x470a7ca1, 0xe90f427c, 0xc91e84f8, 0x00000000); | ||
| 1501 | &_data_word(0x83868009, 0x48ed2b32, 0xac70111e, 0x4e725a6c); | ||
| 1502 | &_data_word(0xfbff0efd, 0x5638850f, 0x1ed5ae3d, 0x27392d36); | ||
| 1503 | &_data_word(0x64d90f0a, 0x21a65c68, 0xd1545b9b, 0x3a2e3624); | ||
| 1504 | &_data_word(0xb1670a0c, 0x0fe75793, 0xd296eeb4, 0x9e919b1b); | ||
| 1505 | &_data_word(0x4fc5c080, 0xa220dc61, 0x694b775a, 0x161a121c); | ||
| 1506 | &_data_word(0x0aba93e2, 0xe52aa0c0, 0x43e0223c, 0x1d171b12); | ||
| 1507 | &_data_word(0x0b0d090e, 0xadc78bf2, 0xb9a8b62d, 0xc8a91e14); | ||
| 1508 | &_data_word(0x8519f157, 0x4c0775af, 0xbbdd99ee, 0xfd607fa3); | ||
| 1509 | &_data_word(0x9f2601f7, 0xbcf5725c, 0xc53b6644, 0x347efb5b); | ||
| 1510 | &_data_word(0x7629438b, 0xdcc623cb, 0x68fcedb6, 0x63f1e4b8); | ||
| 1511 | &_data_word(0xcadc31d7, 0x10856342, 0x40229713, 0x2011c684); | ||
| 1512 | &_data_word(0x7d244a85, 0xf83dbbd2, 0x1132f9ae, 0x6da129c7); | ||
| 1513 | &_data_word(0x4b2f9e1d, 0xf330b2dc, 0xec52860d, 0xd0e3c177); | ||
| 1514 | &_data_word(0x6c16b32b, 0x99b970a9, 0xfa489411, 0x2264e947); | ||
| 1515 | &_data_word(0xc48cfca8, 0x1a3ff0a0, 0xd82c7d56, 0xef903322); | ||
| 1516 | &_data_word(0xc74e4987, 0xc1d138d9, 0xfea2ca8c, 0x360bd498); | ||
| 1517 | &_data_word(0xcf81f5a6, 0x28de7aa5, 0x268eb7da, 0xa4bfad3f); | ||
| 1518 | &_data_word(0xe49d3a2c, 0x0d927850, 0x9bcc5f6a, 0x62467e54); | ||
| 1519 | &_data_word(0xc2138df6, 0xe8b8d890, 0x5ef7392e, 0xf5afc382); | ||
| 1520 | &_data_word(0xbe805d9f, 0x7c93d069, 0xa92dd56f, 0xb31225cf); | ||
| 1521 | &_data_word(0x3b99acc8, 0xa77d1810, 0x6e639ce8, 0x7bbb3bdb); | ||
| 1522 | &_data_word(0x097826cd, 0xf418596e, 0x01b79aec, 0xa89a4f83); | ||
| 1523 | &_data_word(0x656e95e6, 0x7ee6ffaa, 0x08cfbc21, 0xe6e815ef); | ||
| 1524 | &_data_word(0xd99be7ba, 0xce366f4a, 0xd4099fea, 0xd67cb029); | ||
| 1525 | &_data_word(0xafb2a431, 0x31233f2a, 0x3094a5c6, 0xc066a235); | ||
| 1526 | &_data_word(0x37bc4e74, 0xa6ca82fc, 0xb0d090e0, 0x15d8a733); | ||
| 1527 | &_data_word(0x4a9804f1, 0xf7daec41, 0x0e50cd7f, 0x2ff69117); | ||
| 1528 | &_data_word(0x8dd64d76, 0x4db0ef43, 0x544daacc, 0xdf0496e4); | ||
| 1529 | &_data_word(0xe3b5d19e, 0x1b886a4c, 0xb81f2cc1, 0x7f516546); | ||
| 1530 | &_data_word(0x04ea5e9d, 0x5d358c01, 0x737487fa, 0x2e410bfb); | ||
| 1531 | &_data_word(0x5a1d67b3, 0x52d2db92, 0x335610e9, 0x1347d66d); | ||
| 1532 | &_data_word(0x8c61d79a, 0x7a0ca137, 0x8e14f859, 0x893c13eb); | ||
| 1533 | &_data_word(0xee27a9ce, 0x35c961b7, 0xede51ce1, 0x3cb1477a); | ||
| 1534 | &_data_word(0x59dfd29c, 0x3f73f255, 0x79ce1418, 0xbf37c773); | ||
| 1535 | &_data_word(0xeacdf753, 0x5baafd5f, 0x146f3ddf, 0x86db4478); | ||
| 1536 | &_data_word(0x81f3afca, 0x3ec468b9, 0x2c342438, 0x5f40a3c2); | ||
| 1537 | &_data_word(0x72c31d16, 0x0c25e2bc, 0x8b493c28, 0x41950dff); | ||
| 1538 | &_data_word(0x7101a839, 0xdeb30c08, 0x9ce4b4d8, 0x90c15664); | ||
| 1539 | &_data_word(0x6184cb7b, 0x70b632d5, 0x745c6c48, 0x4257b8d0); | ||
| 1540 | #Td4: | ||
| 1541 | &data_byte(0x52, 0x09, 0x6a, 0xd5, 0x30, 0x36, 0xa5, 0x38); | ||
| 1542 | &data_byte(0xbf, 0x40, 0xa3, 0x9e, 0x81, 0xf3, 0xd7, 0xfb); | ||
| 1543 | &data_byte(0x7c, 0xe3, 0x39, 0x82, 0x9b, 0x2f, 0xff, 0x87); | ||
| 1544 | &data_byte(0x34, 0x8e, 0x43, 0x44, 0xc4, 0xde, 0xe9, 0xcb); | ||
| 1545 | &data_byte(0x54, 0x7b, 0x94, 0x32, 0xa6, 0xc2, 0x23, 0x3d); | ||
| 1546 | &data_byte(0xee, 0x4c, 0x95, 0x0b, 0x42, 0xfa, 0xc3, 0x4e); | ||
| 1547 | &data_byte(0x08, 0x2e, 0xa1, 0x66, 0x28, 0xd9, 0x24, 0xb2); | ||
| 1548 | &data_byte(0x76, 0x5b, 0xa2, 0x49, 0x6d, 0x8b, 0xd1, 0x25); | ||
| 1549 | &data_byte(0x72, 0xf8, 0xf6, 0x64, 0x86, 0x68, 0x98, 0x16); | ||
| 1550 | &data_byte(0xd4, 0xa4, 0x5c, 0xcc, 0x5d, 0x65, 0xb6, 0x92); | ||
| 1551 | &data_byte(0x6c, 0x70, 0x48, 0x50, 0xfd, 0xed, 0xb9, 0xda); | ||
| 1552 | &data_byte(0x5e, 0x15, 0x46, 0x57, 0xa7, 0x8d, 0x9d, 0x84); | ||
| 1553 | &data_byte(0x90, 0xd8, 0xab, 0x00, 0x8c, 0xbc, 0xd3, 0x0a); | ||
| 1554 | &data_byte(0xf7, 0xe4, 0x58, 0x05, 0xb8, 0xb3, 0x45, 0x06); | ||
| 1555 | &data_byte(0xd0, 0x2c, 0x1e, 0x8f, 0xca, 0x3f, 0x0f, 0x02); | ||
| 1556 | &data_byte(0xc1, 0xaf, 0xbd, 0x03, 0x01, 0x13, 0x8a, 0x6b); | ||
| 1557 | &data_byte(0x3a, 0x91, 0x11, 0x41, 0x4f, 0x67, 0xdc, 0xea); | ||
| 1558 | &data_byte(0x97, 0xf2, 0xcf, 0xce, 0xf0, 0xb4, 0xe6, 0x73); | ||
| 1559 | &data_byte(0x96, 0xac, 0x74, 0x22, 0xe7, 0xad, 0x35, 0x85); | ||
| 1560 | &data_byte(0xe2, 0xf9, 0x37, 0xe8, 0x1c, 0x75, 0xdf, 0x6e); | ||
| 1561 | &data_byte(0x47, 0xf1, 0x1a, 0x71, 0x1d, 0x29, 0xc5, 0x89); | ||
| 1562 | &data_byte(0x6f, 0xb7, 0x62, 0x0e, 0xaa, 0x18, 0xbe, 0x1b); | ||
| 1563 | &data_byte(0xfc, 0x56, 0x3e, 0x4b, 0xc6, 0xd2, 0x79, 0x20); | ||
| 1564 | &data_byte(0x9a, 0xdb, 0xc0, 0xfe, 0x78, 0xcd, 0x5a, 0xf4); | ||
| 1565 | &data_byte(0x1f, 0xdd, 0xa8, 0x33, 0x88, 0x07, 0xc7, 0x31); | ||
| 1566 | &data_byte(0xb1, 0x12, 0x10, 0x59, 0x27, 0x80, 0xec, 0x5f); | ||
| 1567 | &data_byte(0x60, 0x51, 0x7f, 0xa9, 0x19, 0xb5, 0x4a, 0x0d); | ||
| 1568 | &data_byte(0x2d, 0xe5, 0x7a, 0x9f, 0x93, 0xc9, 0x9c, 0xef); | ||
| 1569 | &data_byte(0xa0, 0xe0, 0x3b, 0x4d, 0xae, 0x2a, 0xf5, 0xb0); | ||
| 1570 | &data_byte(0xc8, 0xeb, 0xbb, 0x3c, 0x83, 0x53, 0x99, 0x61); | ||
| 1571 | &data_byte(0x17, 0x2b, 0x04, 0x7e, 0xba, 0x77, 0xd6, 0x26); | ||
| 1572 | &data_byte(0xe1, 0x69, 0x14, 0x63, 0x55, 0x21, 0x0c, 0x7d); | ||
| 1573 | |||
| 1574 | $code =~ s/\`([^\`]*)\`/eval($1)/gem; | ||
| 1575 | |||
| 1576 | print $code; | ||
| 1577 | |||
| 1578 | close STDOUT; | ||
diff --git a/src/lib/libssl/src/crypto/asn1/asn1_gen.c b/src/lib/libssl/src/crypto/asn1/asn1_gen.c new file mode 100644 index 0000000000..26c832781e --- /dev/null +++ b/src/lib/libssl/src/crypto/asn1/asn1_gen.c | |||
| @@ -0,0 +1,848 @@ | |||
| 1 | /* asn1_gen.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2002. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2002 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "cryptlib.h" | ||
| 60 | #include <openssl/asn1.h> | ||
| 61 | #include <openssl/x509v3.h> | ||
| 62 | |||
| 63 | #define ASN1_GEN_FLAG 0x10000 | ||
| 64 | #define ASN1_GEN_FLAG_IMP (ASN1_GEN_FLAG|1) | ||
| 65 | #define ASN1_GEN_FLAG_EXP (ASN1_GEN_FLAG|2) | ||
| 66 | #define ASN1_GEN_FLAG_TAG (ASN1_GEN_FLAG|3) | ||
| 67 | #define ASN1_GEN_FLAG_BITWRAP (ASN1_GEN_FLAG|4) | ||
| 68 | #define ASN1_GEN_FLAG_OCTWRAP (ASN1_GEN_FLAG|5) | ||
| 69 | #define ASN1_GEN_FLAG_SEQWRAP (ASN1_GEN_FLAG|6) | ||
| 70 | #define ASN1_GEN_FLAG_SETWRAP (ASN1_GEN_FLAG|7) | ||
| 71 | #define ASN1_GEN_FLAG_FORMAT (ASN1_GEN_FLAG|8) | ||
| 72 | |||
| 73 | #define ASN1_GEN_STR(str,val) {str, sizeof(str) - 1, val} | ||
| 74 | |||
| 75 | #define ASN1_FLAG_EXP_MAX 20 | ||
| 76 | |||
| 77 | /* Input formats */ | ||
| 78 | |||
| 79 | /* ASCII: default */ | ||
| 80 | #define ASN1_GEN_FORMAT_ASCII 1 | ||
| 81 | /* UTF8 */ | ||
| 82 | #define ASN1_GEN_FORMAT_UTF8 2 | ||
| 83 | /* Hex */ | ||
| 84 | #define ASN1_GEN_FORMAT_HEX 3 | ||
| 85 | /* List of bits */ | ||
| 86 | #define ASN1_GEN_FORMAT_BITLIST 4 | ||
| 87 | |||
| 88 | |||
| 89 | struct tag_name_st | ||
| 90 | { | ||
| 91 | const char *strnam; | ||
| 92 | int len; | ||
| 93 | int tag; | ||
| 94 | }; | ||
| 95 | |||
| 96 | typedef struct | ||
| 97 | { | ||
| 98 | int exp_tag; | ||
| 99 | int exp_class; | ||
| 100 | int exp_constructed; | ||
| 101 | int exp_pad; | ||
| 102 | long exp_len; | ||
| 103 | } tag_exp_type; | ||
| 104 | |||
| 105 | typedef struct | ||
| 106 | { | ||
| 107 | int imp_tag; | ||
| 108 | int imp_class; | ||
| 109 | int utype; | ||
| 110 | int format; | ||
| 111 | const char *str; | ||
| 112 | tag_exp_type exp_list[ASN1_FLAG_EXP_MAX]; | ||
| 113 | int exp_count; | ||
| 114 | } tag_exp_arg; | ||
| 115 | |||
| 116 | static int bitstr_cb(const char *elem, int len, void *bitstr); | ||
| 117 | static int asn1_cb(const char *elem, int len, void *bitstr); | ||
| 118 | static int append_exp(tag_exp_arg *arg, int exp_tag, int exp_class, int exp_constructed, int exp_pad, int imp_ok); | ||
| 119 | static int parse_tagging(const char *vstart, int vlen, int *ptag, int *pclass); | ||
| 120 | static ASN1_TYPE *asn1_multi(int utype, const char *section, X509V3_CTX *cnf); | ||
| 121 | static ASN1_TYPE *asn1_str2type(const char *str, int format, int utype); | ||
| 122 | static int asn1_str2tag(const char *tagstr, int len); | ||
| 123 | |||
| 124 | ASN1_TYPE *ASN1_generate_nconf(char *str, CONF *nconf) | ||
| 125 | { | ||
| 126 | X509V3_CTX cnf; | ||
| 127 | |||
| 128 | if (!nconf) | ||
| 129 | return ASN1_generate_v3(str, NULL); | ||
| 130 | |||
| 131 | X509V3_set_nconf(&cnf, nconf); | ||
| 132 | return ASN1_generate_v3(str, &cnf); | ||
| 133 | } | ||
| 134 | |||
| 135 | ASN1_TYPE *ASN1_generate_v3(char *str, X509V3_CTX *cnf) | ||
| 136 | { | ||
| 137 | ASN1_TYPE *ret; | ||
| 138 | tag_exp_arg asn1_tags; | ||
| 139 | tag_exp_type *etmp; | ||
| 140 | |||
| 141 | int i, len; | ||
| 142 | |||
| 143 | unsigned char *orig_der = NULL, *new_der = NULL; | ||
| 144 | const unsigned char *cpy_start; | ||
| 145 | unsigned char *p; | ||
| 146 | const unsigned char *cp; | ||
| 147 | int cpy_len; | ||
| 148 | long hdr_len; | ||
| 149 | int hdr_constructed = 0, hdr_tag, hdr_class; | ||
| 150 | int r; | ||
| 151 | |||
| 152 | asn1_tags.imp_tag = -1; | ||
| 153 | asn1_tags.imp_class = -1; | ||
| 154 | asn1_tags.format = ASN1_GEN_FORMAT_ASCII; | ||
| 155 | asn1_tags.exp_count = 0; | ||
| 156 | if (CONF_parse_list(str, ',', 1, asn1_cb, &asn1_tags) != 0) | ||
| 157 | return NULL; | ||
| 158 | |||
| 159 | if ((asn1_tags.utype == V_ASN1_SEQUENCE) || (asn1_tags.utype == V_ASN1_SET)) | ||
| 160 | { | ||
| 161 | if (!cnf) | ||
| 162 | { | ||
| 163 | ASN1err(ASN1_F_ASN1_GENERATE_V3, ASN1_R_SEQUENCE_OR_SET_NEEDS_CONFIG); | ||
| 164 | return NULL; | ||
| 165 | } | ||
| 166 | ret = asn1_multi(asn1_tags.utype, asn1_tags.str, cnf); | ||
| 167 | } | ||
| 168 | else | ||
| 169 | ret = asn1_str2type(asn1_tags.str, asn1_tags.format, asn1_tags.utype); | ||
| 170 | |||
| 171 | if (!ret) | ||
| 172 | return NULL; | ||
| 173 | |||
| 174 | /* If no tagging return base type */ | ||
| 175 | if ((asn1_tags.imp_tag == -1) && (asn1_tags.exp_count == 0)) | ||
| 176 | return ret; | ||
| 177 | |||
| 178 | /* Generate the encoding */ | ||
| 179 | cpy_len = i2d_ASN1_TYPE(ret, &orig_der); | ||
| 180 | ASN1_TYPE_free(ret); | ||
| 181 | ret = NULL; | ||
| 182 | /* Set point to start copying for modified encoding */ | ||
| 183 | cpy_start = orig_der; | ||
| 184 | |||
| 185 | /* Do we need IMPLICIT tagging? */ | ||
| 186 | if (asn1_tags.imp_tag != -1) | ||
| 187 | { | ||
| 188 | /* If IMPLICIT we will replace the underlying tag */ | ||
| 189 | /* Skip existing tag+len */ | ||
| 190 | r = ASN1_get_object(&cpy_start, &hdr_len, &hdr_tag, &hdr_class, cpy_len); | ||
| 191 | if (r & 0x80) | ||
| 192 | goto err; | ||
| 193 | /* Update copy length */ | ||
| 194 | cpy_len -= cpy_start - orig_der; | ||
| 195 | /* For IMPLICIT tagging the length should match the | ||
| 196 | * original length and constructed flag should be | ||
| 197 | * consistent. | ||
| 198 | */ | ||
| 199 | if (r & 0x1) | ||
| 200 | { | ||
| 201 | /* Indefinite length constructed */ | ||
| 202 | hdr_constructed = 2; | ||
| 203 | hdr_len = 0; | ||
| 204 | } | ||
| 205 | else | ||
| 206 | /* Just retain constructed flag */ | ||
| 207 | hdr_constructed = r & V_ASN1_CONSTRUCTED; | ||
| 208 | /* Work out new length with IMPLICIT tag: ignore constructed | ||
| 209 | * because it will mess up if indefinite length | ||
| 210 | */ | ||
| 211 | len = ASN1_object_size(0, hdr_len, asn1_tags.imp_tag); | ||
| 212 | } | ||
| 213 | else | ||
| 214 | len = cpy_len; | ||
| 215 | |||
| 216 | /* Work out length in any EXPLICIT, starting from end */ | ||
| 217 | |||
| 218 | for(i = 0, etmp = asn1_tags.exp_list + asn1_tags.exp_count - 1; i < asn1_tags.exp_count; i++, etmp--) | ||
| 219 | { | ||
| 220 | /* Content length: number of content octets + any padding */ | ||
| 221 | len += etmp->exp_pad; | ||
| 222 | etmp->exp_len = len; | ||
| 223 | /* Total object length: length including new header */ | ||
| 224 | len = ASN1_object_size(0, len, etmp->exp_tag); | ||
| 225 | } | ||
| 226 | |||
| 227 | /* Allocate buffer for new encoding */ | ||
| 228 | |||
| 229 | new_der = OPENSSL_malloc(len); | ||
| 230 | |||
| 231 | /* Generate tagged encoding */ | ||
| 232 | |||
| 233 | p = new_der; | ||
| 234 | |||
| 235 | /* Output explicit tags first */ | ||
| 236 | |||
| 237 | for (i = 0, etmp = asn1_tags.exp_list; i < asn1_tags.exp_count; i++, etmp++) | ||
| 238 | { | ||
| 239 | ASN1_put_object(&p, etmp->exp_constructed, etmp->exp_len, | ||
| 240 | etmp->exp_tag, etmp->exp_class); | ||
| 241 | if (etmp->exp_pad) | ||
| 242 | *p++ = 0; | ||
| 243 | } | ||
| 244 | |||
| 245 | /* If IMPLICIT, output tag */ | ||
| 246 | |||
| 247 | if (asn1_tags.imp_tag != -1) | ||
| 248 | ASN1_put_object(&p, hdr_constructed, hdr_len, | ||
| 249 | asn1_tags.imp_tag, asn1_tags.imp_class); | ||
| 250 | |||
| 251 | /* Copy across original encoding */ | ||
| 252 | memcpy(p, cpy_start, cpy_len); | ||
| 253 | |||
| 254 | cp = new_der; | ||
| 255 | |||
| 256 | /* Obtain new ASN1_TYPE structure */ | ||
| 257 | ret = d2i_ASN1_TYPE(NULL, &cp, len); | ||
| 258 | |||
| 259 | err: | ||
| 260 | if (orig_der) | ||
| 261 | OPENSSL_free(orig_der); | ||
| 262 | if (new_der) | ||
| 263 | OPENSSL_free(new_der); | ||
| 264 | |||
| 265 | return ret; | ||
| 266 | |||
| 267 | } | ||
| 268 | |||
| 269 | static int asn1_cb(const char *elem, int len, void *bitstr) | ||
| 270 | { | ||
| 271 | tag_exp_arg *arg = bitstr; | ||
| 272 | int i; | ||
| 273 | int utype; | ||
| 274 | int vlen = 0; | ||
| 275 | const char *p, *vstart = NULL; | ||
| 276 | |||
| 277 | int tmp_tag, tmp_class; | ||
| 278 | |||
| 279 | for(i = 0, p = elem; i < len; p++, i++) | ||
| 280 | { | ||
| 281 | /* Look for the ':' in name value pairs */ | ||
| 282 | if (*p == ':') | ||
| 283 | { | ||
| 284 | vstart = p + 1; | ||
| 285 | vlen = len - (vstart - elem); | ||
| 286 | len = p - elem; | ||
| 287 | break; | ||
| 288 | } | ||
| 289 | } | ||
| 290 | |||
| 291 | utype = asn1_str2tag(elem, len); | ||
| 292 | |||
| 293 | if (utype == -1) | ||
| 294 | { | ||
| 295 | ASN1err(ASN1_F_ASN1_CB, ASN1_R_UNKNOWN_TAG); | ||
| 296 | ERR_add_error_data(2, "tag=", elem); | ||
| 297 | return -1; | ||
| 298 | } | ||
| 299 | |||
| 300 | /* If this is not a modifier mark end of string and exit */ | ||
| 301 | if (!(utype & ASN1_GEN_FLAG)) | ||
| 302 | { | ||
| 303 | arg->utype = utype; | ||
| 304 | arg->str = vstart; | ||
| 305 | /* If no value and not end of string, error */ | ||
| 306 | if (!vstart && elem[len]) | ||
| 307 | { | ||
| 308 | ASN1err(ASN1_F_ASN1_CB, ASN1_R_MISSING_VALUE); | ||
| 309 | return -1; | ||
| 310 | } | ||
| 311 | return 0; | ||
| 312 | } | ||
| 313 | |||
| 314 | switch(utype) | ||
| 315 | { | ||
| 316 | |||
| 317 | case ASN1_GEN_FLAG_IMP: | ||
| 318 | /* Check for illegal multiple IMPLICIT tagging */ | ||
| 319 | if (arg->imp_tag != -1) | ||
| 320 | { | ||
| 321 | ASN1err(ASN1_F_ASN1_CB, ASN1_R_ILLEGAL_NESTED_TAGGING); | ||
| 322 | return -1; | ||
| 323 | } | ||
| 324 | if (!parse_tagging(vstart, vlen, &arg->imp_tag, &arg->imp_class)) | ||
| 325 | return -1; | ||
| 326 | break; | ||
| 327 | |||
| 328 | case ASN1_GEN_FLAG_EXP: | ||
| 329 | |||
| 330 | if (!parse_tagging(vstart, vlen, &tmp_tag, &tmp_class)) | ||
| 331 | return -1; | ||
| 332 | if (!append_exp(arg, tmp_tag, tmp_class, 1, 0, 0)) | ||
| 333 | return -1; | ||
| 334 | break; | ||
| 335 | |||
| 336 | case ASN1_GEN_FLAG_SEQWRAP: | ||
| 337 | if (!append_exp(arg, V_ASN1_SEQUENCE, V_ASN1_UNIVERSAL, 1, 0, 1)) | ||
| 338 | return -1; | ||
| 339 | break; | ||
| 340 | |||
| 341 | case ASN1_GEN_FLAG_SETWRAP: | ||
| 342 | if (!append_exp(arg, V_ASN1_SET, V_ASN1_UNIVERSAL, 1, 0, 1)) | ||
| 343 | return -1; | ||
| 344 | break; | ||
| 345 | |||
| 346 | case ASN1_GEN_FLAG_BITWRAP: | ||
| 347 | if (!append_exp(arg, V_ASN1_BIT_STRING, V_ASN1_UNIVERSAL, 0, 1, 1)) | ||
| 348 | return -1; | ||
| 349 | break; | ||
| 350 | |||
| 351 | case ASN1_GEN_FLAG_OCTWRAP: | ||
| 352 | if (!append_exp(arg, V_ASN1_OCTET_STRING, V_ASN1_UNIVERSAL, 0, 0, 1)) | ||
| 353 | return -1; | ||
| 354 | break; | ||
| 355 | |||
| 356 | case ASN1_GEN_FLAG_FORMAT: | ||
| 357 | if (!strncmp(vstart, "ASCII", 5)) | ||
| 358 | arg->format = ASN1_GEN_FORMAT_ASCII; | ||
| 359 | else if (!strncmp(vstart, "UTF8", 4)) | ||
| 360 | arg->format = ASN1_GEN_FORMAT_UTF8; | ||
| 361 | else if (!strncmp(vstart, "HEX", 3)) | ||
| 362 | arg->format = ASN1_GEN_FORMAT_HEX; | ||
| 363 | else if (!strncmp(vstart, "BITLIST", 3)) | ||
| 364 | arg->format = ASN1_GEN_FORMAT_BITLIST; | ||
| 365 | else | ||
| 366 | { | ||
| 367 | ASN1err(ASN1_F_ASN1_CB, ASN1_R_UNKOWN_FORMAT); | ||
| 368 | return -1; | ||
| 369 | } | ||
| 370 | break; | ||
| 371 | |||
| 372 | } | ||
| 373 | |||
| 374 | return 1; | ||
| 375 | |||
| 376 | } | ||
| 377 | |||
| 378 | static int parse_tagging(const char *vstart, int vlen, int *ptag, int *pclass) | ||
| 379 | { | ||
| 380 | char erch[2]; | ||
| 381 | long tag_num; | ||
| 382 | char *eptr; | ||
| 383 | if (!vstart) | ||
| 384 | return 0; | ||
| 385 | tag_num = strtoul(vstart, &eptr, 10); | ||
| 386 | /* Check we haven't gone past max length: should be impossible */ | ||
| 387 | if (eptr && *eptr && (eptr > vstart + vlen)) | ||
| 388 | return 0; | ||
| 389 | if (tag_num < 0) | ||
| 390 | { | ||
| 391 | ASN1err(ASN1_F_PARSE_TAGGING, ASN1_R_INVALID_NUMBER); | ||
| 392 | return 0; | ||
| 393 | } | ||
| 394 | *ptag = tag_num; | ||
| 395 | /* If we have non numeric characters, parse them */ | ||
| 396 | if (eptr) | ||
| 397 | vlen -= eptr - vstart; | ||
| 398 | else | ||
| 399 | vlen = 0; | ||
| 400 | if (vlen) | ||
| 401 | { | ||
| 402 | switch (*eptr) | ||
| 403 | { | ||
| 404 | |||
| 405 | case 'U': | ||
| 406 | *pclass = V_ASN1_UNIVERSAL; | ||
| 407 | break; | ||
| 408 | |||
| 409 | case 'A': | ||
| 410 | *pclass = V_ASN1_APPLICATION; | ||
| 411 | break; | ||
| 412 | |||
| 413 | case 'P': | ||
| 414 | *pclass = V_ASN1_PRIVATE; | ||
| 415 | break; | ||
| 416 | |||
| 417 | case 'C': | ||
| 418 | *pclass = V_ASN1_CONTEXT_SPECIFIC; | ||
| 419 | break; | ||
| 420 | |||
| 421 | default: | ||
| 422 | erch[0] = *eptr; | ||
| 423 | erch[1] = 0; | ||
| 424 | ASN1err(ASN1_F_PARSE_TAGGING, ASN1_R_INVALID_MODIFIER); | ||
| 425 | ERR_add_error_data(2, "Char=", erch); | ||
| 426 | return 0; | ||
| 427 | break; | ||
| 428 | |||
| 429 | } | ||
| 430 | } | ||
| 431 | else | ||
| 432 | *pclass = V_ASN1_CONTEXT_SPECIFIC; | ||
| 433 | |||
| 434 | return 1; | ||
| 435 | |||
| 436 | } | ||
| 437 | |||
| 438 | /* Handle multiple types: SET and SEQUENCE */ | ||
| 439 | |||
| 440 | static ASN1_TYPE *asn1_multi(int utype, const char *section, X509V3_CTX *cnf) | ||
| 441 | { | ||
| 442 | ASN1_TYPE *ret = NULL, *typ = NULL; | ||
| 443 | STACK_OF(ASN1_TYPE) *sk = NULL; | ||
| 444 | STACK_OF(CONF_VALUE) *sect = NULL; | ||
| 445 | unsigned char *der = NULL, *p; | ||
| 446 | int derlen; | ||
| 447 | int i, is_set; | ||
| 448 | sk = sk_ASN1_TYPE_new_null(); | ||
| 449 | if (section) | ||
| 450 | { | ||
| 451 | if (!cnf) | ||
| 452 | goto bad; | ||
| 453 | sect = X509V3_get_section(cnf, (char *)section); | ||
| 454 | if (!sect) | ||
| 455 | goto bad; | ||
| 456 | for (i = 0; i < sk_CONF_VALUE_num(sect); i++) | ||
| 457 | { | ||
| 458 | typ = ASN1_generate_v3(sk_CONF_VALUE_value(sect, i)->value, cnf); | ||
| 459 | if (!typ) | ||
| 460 | goto bad; | ||
| 461 | sk_ASN1_TYPE_push(sk, typ); | ||
| 462 | typ = NULL; | ||
| 463 | } | ||
| 464 | } | ||
| 465 | |||
| 466 | /* Now we has a STACK of the components, convert to the correct form */ | ||
| 467 | |||
| 468 | if (utype == V_ASN1_SET) | ||
| 469 | is_set = 1; | ||
| 470 | else | ||
| 471 | is_set = 0; | ||
| 472 | |||
| 473 | |||
| 474 | derlen = i2d_ASN1_SET_OF_ASN1_TYPE(sk, NULL, i2d_ASN1_TYPE, utype, | ||
| 475 | V_ASN1_UNIVERSAL, is_set); | ||
| 476 | der = OPENSSL_malloc(derlen); | ||
| 477 | p = der; | ||
| 478 | i2d_ASN1_SET_OF_ASN1_TYPE(sk, &p, i2d_ASN1_TYPE, utype, | ||
| 479 | V_ASN1_UNIVERSAL, is_set); | ||
| 480 | |||
| 481 | if (!(ret = ASN1_TYPE_new())) | ||
| 482 | goto bad; | ||
| 483 | |||
| 484 | if (!(ret->value.asn1_string = ASN1_STRING_type_new(utype))) | ||
| 485 | goto bad; | ||
| 486 | |||
| 487 | ret->type = utype; | ||
| 488 | |||
| 489 | ret->value.asn1_string->data = der; | ||
| 490 | ret->value.asn1_string->length = derlen; | ||
| 491 | |||
| 492 | der = NULL; | ||
| 493 | |||
| 494 | bad: | ||
| 495 | |||
| 496 | if (der) | ||
| 497 | OPENSSL_free(der); | ||
| 498 | |||
| 499 | if (sk) | ||
| 500 | sk_ASN1_TYPE_pop_free(sk, ASN1_TYPE_free); | ||
| 501 | if (typ) | ||
| 502 | ASN1_TYPE_free(typ); | ||
| 503 | if (sect) | ||
| 504 | X509V3_section_free(cnf, sect); | ||
| 505 | |||
| 506 | return ret; | ||
| 507 | } | ||
| 508 | |||
| 509 | static int append_exp(tag_exp_arg *arg, int exp_tag, int exp_class, int exp_constructed, int exp_pad, int imp_ok) | ||
| 510 | { | ||
| 511 | tag_exp_type *exp_tmp; | ||
| 512 | /* Can only have IMPLICIT if permitted */ | ||
| 513 | if ((arg->imp_tag != -1) && !imp_ok) | ||
| 514 | { | ||
| 515 | ASN1err(ASN1_F_APPEND_EXP, ASN1_R_ILLEGAL_IMPLICIT_TAG); | ||
| 516 | return 0; | ||
| 517 | } | ||
| 518 | |||
| 519 | if (arg->exp_count == ASN1_FLAG_EXP_MAX) | ||
| 520 | { | ||
| 521 | ASN1err(ASN1_F_APPEND_EXP, ASN1_R_DEPTH_EXCEEDED); | ||
| 522 | return 0; | ||
| 523 | } | ||
| 524 | |||
| 525 | exp_tmp = &arg->exp_list[arg->exp_count++]; | ||
| 526 | |||
| 527 | /* If IMPLICIT set tag to implicit value then | ||
| 528 | * reset implicit tag since it has been used. | ||
| 529 | */ | ||
| 530 | if (arg->imp_tag != -1) | ||
| 531 | { | ||
| 532 | exp_tmp->exp_tag = arg->imp_tag; | ||
| 533 | exp_tmp->exp_class = arg->imp_class; | ||
| 534 | arg->imp_tag = -1; | ||
| 535 | arg->imp_class = -1; | ||
| 536 | } | ||
| 537 | else | ||
| 538 | { | ||
| 539 | exp_tmp->exp_tag = exp_tag; | ||
| 540 | exp_tmp->exp_class = exp_class; | ||
| 541 | } | ||
| 542 | exp_tmp->exp_constructed = exp_constructed; | ||
| 543 | exp_tmp->exp_pad = exp_pad; | ||
| 544 | |||
| 545 | return 1; | ||
| 546 | } | ||
| 547 | |||
| 548 | |||
| 549 | static int asn1_str2tag(const char *tagstr, int len) | ||
| 550 | { | ||
| 551 | unsigned int i; | ||
| 552 | static struct tag_name_st *tntmp, tnst [] = { | ||
| 553 | ASN1_GEN_STR("BOOL", V_ASN1_BOOLEAN), | ||
| 554 | ASN1_GEN_STR("BOOLEAN", V_ASN1_BOOLEAN), | ||
| 555 | ASN1_GEN_STR("NULL", V_ASN1_NULL), | ||
| 556 | ASN1_GEN_STR("INT", V_ASN1_INTEGER), | ||
| 557 | ASN1_GEN_STR("INTEGER", V_ASN1_INTEGER), | ||
| 558 | ASN1_GEN_STR("ENUM", V_ASN1_ENUMERATED), | ||
| 559 | ASN1_GEN_STR("ENUMERATED", V_ASN1_ENUMERATED), | ||
| 560 | ASN1_GEN_STR("OID", V_ASN1_OBJECT), | ||
| 561 | ASN1_GEN_STR("OBJECT", V_ASN1_OBJECT), | ||
| 562 | ASN1_GEN_STR("UTCTIME", V_ASN1_UTCTIME), | ||
| 563 | ASN1_GEN_STR("UTC", V_ASN1_UTCTIME), | ||
| 564 | ASN1_GEN_STR("GENERALIZEDTIME", V_ASN1_GENERALIZEDTIME), | ||
| 565 | ASN1_GEN_STR("GENTIME", V_ASN1_GENERALIZEDTIME), | ||
| 566 | ASN1_GEN_STR("OCT", V_ASN1_OCTET_STRING), | ||
| 567 | ASN1_GEN_STR("OCTETSTRING", V_ASN1_OCTET_STRING), | ||
| 568 | ASN1_GEN_STR("BITSTR", V_ASN1_BIT_STRING), | ||
| 569 | ASN1_GEN_STR("BITSTRING", V_ASN1_BIT_STRING), | ||
| 570 | ASN1_GEN_STR("UNIVERSALSTRING", V_ASN1_UNIVERSALSTRING), | ||
| 571 | ASN1_GEN_STR("UNIV", V_ASN1_UNIVERSALSTRING), | ||
| 572 | ASN1_GEN_STR("IA5", V_ASN1_IA5STRING), | ||
| 573 | ASN1_GEN_STR("IA5STRING", V_ASN1_IA5STRING), | ||
| 574 | ASN1_GEN_STR("UTF8", V_ASN1_UTF8STRING), | ||
| 575 | ASN1_GEN_STR("UTF8String", V_ASN1_UTF8STRING), | ||
| 576 | ASN1_GEN_STR("BMP", V_ASN1_BMPSTRING), | ||
| 577 | ASN1_GEN_STR("BMPSTRING", V_ASN1_BMPSTRING), | ||
| 578 | ASN1_GEN_STR("VISIBLESTRING", V_ASN1_VISIBLESTRING), | ||
| 579 | ASN1_GEN_STR("VISIBLE", V_ASN1_VISIBLESTRING), | ||
| 580 | ASN1_GEN_STR("PRINTABLESTRING", V_ASN1_PRINTABLESTRING), | ||
| 581 | ASN1_GEN_STR("PRINTABLE", V_ASN1_PRINTABLESTRING), | ||
| 582 | ASN1_GEN_STR("T61", V_ASN1_T61STRING), | ||
| 583 | ASN1_GEN_STR("T61STRING", V_ASN1_T61STRING), | ||
| 584 | ASN1_GEN_STR("TELETEXSTRING", V_ASN1_T61STRING), | ||
| 585 | ASN1_GEN_STR("GeneralString", V_ASN1_GENERALSTRING), | ||
| 586 | ASN1_GEN_STR("GENSTR", V_ASN1_GENERALSTRING), | ||
| 587 | |||
| 588 | /* Special cases */ | ||
| 589 | ASN1_GEN_STR("SEQUENCE", V_ASN1_SEQUENCE), | ||
| 590 | ASN1_GEN_STR("SEQ", V_ASN1_SEQUENCE), | ||
| 591 | ASN1_GEN_STR("SET", V_ASN1_SET), | ||
| 592 | /* type modifiers */ | ||
| 593 | /* Explicit tag */ | ||
| 594 | ASN1_GEN_STR("EXP", ASN1_GEN_FLAG_EXP), | ||
| 595 | ASN1_GEN_STR("EXPLICIT", ASN1_GEN_FLAG_EXP), | ||
| 596 | /* Implicit tag */ | ||
| 597 | ASN1_GEN_STR("IMP", ASN1_GEN_FLAG_IMP), | ||
| 598 | ASN1_GEN_STR("IMPLICIT", ASN1_GEN_FLAG_IMP), | ||
| 599 | /* OCTET STRING wrapper */ | ||
| 600 | ASN1_GEN_STR("OCTWRAP", ASN1_GEN_FLAG_OCTWRAP), | ||
| 601 | /* SEQUENCE wrapper */ | ||
| 602 | ASN1_GEN_STR("SEQWRAP", ASN1_GEN_FLAG_SEQWRAP), | ||
| 603 | /* SET wrapper */ | ||
| 604 | ASN1_GEN_STR("SETWRAP", ASN1_GEN_FLAG_SETWRAP), | ||
| 605 | /* BIT STRING wrapper */ | ||
| 606 | ASN1_GEN_STR("BITWRAP", ASN1_GEN_FLAG_BITWRAP), | ||
| 607 | ASN1_GEN_STR("FORM", ASN1_GEN_FLAG_FORMAT), | ||
| 608 | ASN1_GEN_STR("FORMAT", ASN1_GEN_FLAG_FORMAT), | ||
| 609 | }; | ||
| 610 | |||
| 611 | if (len == -1) | ||
| 612 | len = strlen(tagstr); | ||
| 613 | |||
| 614 | tntmp = tnst; | ||
| 615 | for (i = 0; i < sizeof(tnst) / sizeof(struct tag_name_st); i++, tntmp++) | ||
| 616 | { | ||
| 617 | if ((len == tntmp->len) && !strncmp(tntmp->strnam, tagstr, len)) | ||
| 618 | return tntmp->tag; | ||
| 619 | } | ||
| 620 | |||
| 621 | return -1; | ||
| 622 | } | ||
| 623 | |||
| 624 | static ASN1_TYPE *asn1_str2type(const char *str, int format, int utype) | ||
| 625 | { | ||
| 626 | ASN1_TYPE *atmp = NULL; | ||
| 627 | |||
| 628 | CONF_VALUE vtmp; | ||
| 629 | |||
| 630 | unsigned char *rdata; | ||
| 631 | long rdlen; | ||
| 632 | |||
| 633 | int no_unused = 1; | ||
| 634 | |||
| 635 | if (!(atmp = ASN1_TYPE_new())) | ||
| 636 | { | ||
| 637 | ASN1err(ASN1_F_ASN1_STR2TYPE, ERR_R_MALLOC_FAILURE); | ||
| 638 | return NULL; | ||
| 639 | } | ||
| 640 | |||
| 641 | if (!str) | ||
| 642 | str = ""; | ||
| 643 | |||
| 644 | switch(utype) | ||
| 645 | { | ||
| 646 | |||
| 647 | case V_ASN1_NULL: | ||
| 648 | if (str && *str) | ||
| 649 | { | ||
| 650 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_NULL_VALUE); | ||
| 651 | goto bad_form; | ||
| 652 | } | ||
| 653 | break; | ||
| 654 | |||
| 655 | case V_ASN1_BOOLEAN: | ||
| 656 | if (format != ASN1_GEN_FORMAT_ASCII) | ||
| 657 | { | ||
| 658 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_NOT_ASCII_FORMAT); | ||
| 659 | goto bad_form; | ||
| 660 | } | ||
| 661 | vtmp.name = NULL; | ||
| 662 | vtmp.section = NULL; | ||
| 663 | vtmp.value = (char *)str; | ||
| 664 | if (!X509V3_get_value_bool(&vtmp, &atmp->value.boolean)) | ||
| 665 | { | ||
| 666 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_BOOLEAN); | ||
| 667 | goto bad_str; | ||
| 668 | } | ||
| 669 | break; | ||
| 670 | |||
| 671 | case V_ASN1_INTEGER: | ||
| 672 | case V_ASN1_ENUMERATED: | ||
| 673 | if (format != ASN1_GEN_FORMAT_ASCII) | ||
| 674 | { | ||
| 675 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_INTEGER_NOT_ASCII_FORMAT); | ||
| 676 | goto bad_form; | ||
| 677 | } | ||
| 678 | if (!(atmp->value.integer = s2i_ASN1_INTEGER(NULL, (char *)str))) | ||
| 679 | { | ||
| 680 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_INTEGER); | ||
| 681 | goto bad_str; | ||
| 682 | } | ||
| 683 | break; | ||
| 684 | |||
| 685 | case V_ASN1_OBJECT: | ||
| 686 | if (format != ASN1_GEN_FORMAT_ASCII) | ||
| 687 | { | ||
| 688 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_OBJECT_NOT_ASCII_FORMAT); | ||
| 689 | goto bad_form; | ||
| 690 | } | ||
| 691 | if (!(atmp->value.object = OBJ_txt2obj(str, 0))) | ||
| 692 | { | ||
| 693 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_OBJECT); | ||
| 694 | goto bad_str; | ||
| 695 | } | ||
| 696 | break; | ||
| 697 | |||
| 698 | case V_ASN1_UTCTIME: | ||
| 699 | case V_ASN1_GENERALIZEDTIME: | ||
| 700 | if (format != ASN1_GEN_FORMAT_ASCII) | ||
| 701 | { | ||
| 702 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_TIME_NOT_ASCII_FORMAT); | ||
| 703 | goto bad_form; | ||
| 704 | } | ||
| 705 | if (!(atmp->value.asn1_string = ASN1_STRING_new())) | ||
| 706 | { | ||
| 707 | ASN1err(ASN1_F_ASN1_STR2TYPE, ERR_R_MALLOC_FAILURE); | ||
| 708 | goto bad_str; | ||
| 709 | } | ||
| 710 | if (!ASN1_STRING_set(atmp->value.asn1_string, str, -1)) | ||
| 711 | { | ||
| 712 | ASN1err(ASN1_F_ASN1_STR2TYPE, ERR_R_MALLOC_FAILURE); | ||
| 713 | goto bad_str; | ||
| 714 | } | ||
| 715 | atmp->value.asn1_string->type = utype; | ||
| 716 | if (!ASN1_TIME_check(atmp->value.asn1_string)) | ||
| 717 | { | ||
| 718 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_TIME_VALUE); | ||
| 719 | goto bad_str; | ||
| 720 | } | ||
| 721 | |||
| 722 | break; | ||
| 723 | |||
| 724 | case V_ASN1_BMPSTRING: | ||
| 725 | case V_ASN1_PRINTABLESTRING: | ||
| 726 | case V_ASN1_IA5STRING: | ||
| 727 | case V_ASN1_T61STRING: | ||
| 728 | case V_ASN1_UTF8STRING: | ||
| 729 | case V_ASN1_VISIBLESTRING: | ||
| 730 | case V_ASN1_UNIVERSALSTRING: | ||
| 731 | case V_ASN1_GENERALSTRING: | ||
| 732 | |||
| 733 | if (format == ASN1_GEN_FORMAT_ASCII) | ||
| 734 | format = MBSTRING_ASC; | ||
| 735 | else if (format == ASN1_GEN_FORMAT_UTF8) | ||
| 736 | format = MBSTRING_UTF8; | ||
| 737 | else | ||
| 738 | { | ||
| 739 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_FORMAT); | ||
| 740 | goto bad_form; | ||
| 741 | } | ||
| 742 | |||
| 743 | |||
| 744 | if (ASN1_mbstring_copy(&atmp->value.asn1_string, (unsigned char *)str, | ||
| 745 | -1, format, ASN1_tag2bit(utype)) <= 0) | ||
| 746 | { | ||
| 747 | ASN1err(ASN1_F_ASN1_STR2TYPE, ERR_R_MALLOC_FAILURE); | ||
| 748 | goto bad_str; | ||
| 749 | } | ||
| 750 | |||
| 751 | |||
| 752 | break; | ||
| 753 | |||
| 754 | case V_ASN1_BIT_STRING: | ||
| 755 | |||
| 756 | case V_ASN1_OCTET_STRING: | ||
| 757 | |||
| 758 | if (!(atmp->value.asn1_string = ASN1_STRING_new())) | ||
| 759 | { | ||
| 760 | ASN1err(ASN1_F_ASN1_STR2TYPE, ERR_R_MALLOC_FAILURE); | ||
| 761 | goto bad_form; | ||
| 762 | } | ||
| 763 | |||
| 764 | if (format == ASN1_GEN_FORMAT_HEX) | ||
| 765 | { | ||
| 766 | |||
| 767 | if (!(rdata = string_to_hex((char *)str, &rdlen))) | ||
| 768 | { | ||
| 769 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_HEX); | ||
| 770 | goto bad_str; | ||
| 771 | } | ||
| 772 | |||
| 773 | atmp->value.asn1_string->data = rdata; | ||
| 774 | atmp->value.asn1_string->length = rdlen; | ||
| 775 | atmp->value.asn1_string->type = utype; | ||
| 776 | |||
| 777 | } | ||
| 778 | else if (format == ASN1_GEN_FORMAT_ASCII) | ||
| 779 | ASN1_STRING_set(atmp->value.asn1_string, str, -1); | ||
| 780 | else if ((format == ASN1_GEN_FORMAT_BITLIST) && (utype == V_ASN1_BIT_STRING)) | ||
| 781 | { | ||
| 782 | if (!CONF_parse_list(str, ',', 1, bitstr_cb, atmp->value.bit_string)) | ||
| 783 | { | ||
| 784 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_LIST_ERROR); | ||
| 785 | goto bad_str; | ||
| 786 | } | ||
| 787 | no_unused = 0; | ||
| 788 | |||
| 789 | } | ||
| 790 | else | ||
| 791 | { | ||
| 792 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_ILLEGAL_BITSTRING_FORMAT); | ||
| 793 | goto bad_form; | ||
| 794 | } | ||
| 795 | |||
| 796 | if ((utype == V_ASN1_BIT_STRING) && no_unused) | ||
| 797 | { | ||
| 798 | atmp->value.asn1_string->flags | ||
| 799 | &= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); | ||
| 800 | atmp->value.asn1_string->flags | ||
| 801 | |= ASN1_STRING_FLAG_BITS_LEFT; | ||
| 802 | } | ||
| 803 | |||
| 804 | |||
| 805 | break; | ||
| 806 | |||
| 807 | default: | ||
| 808 | ASN1err(ASN1_F_ASN1_STR2TYPE, ASN1_R_UNSUPPORTED_TYPE); | ||
| 809 | goto bad_str; | ||
| 810 | break; | ||
| 811 | } | ||
| 812 | |||
| 813 | |||
| 814 | atmp->type = utype; | ||
| 815 | return atmp; | ||
| 816 | |||
| 817 | |||
| 818 | bad_str: | ||
| 819 | ERR_add_error_data(2, "string=", str); | ||
| 820 | bad_form: | ||
| 821 | |||
| 822 | ASN1_TYPE_free(atmp); | ||
| 823 | return NULL; | ||
| 824 | |||
| 825 | } | ||
| 826 | |||
| 827 | static int bitstr_cb(const char *elem, int len, void *bitstr) | ||
| 828 | { | ||
| 829 | long bitnum; | ||
| 830 | char *eptr; | ||
| 831 | if (!elem) | ||
| 832 | return 0; | ||
| 833 | bitnum = strtoul(elem, &eptr, 10); | ||
| 834 | if (eptr && *eptr && (eptr != elem + len)) | ||
| 835 | return 0; | ||
| 836 | if (bitnum < 0) | ||
| 837 | { | ||
| 838 | ASN1err(ASN1_F_BITSTR_CB, ASN1_R_INVALID_NUMBER); | ||
| 839 | return 0; | ||
| 840 | } | ||
| 841 | if (!ASN1_BIT_STRING_set_bit(bitstr, bitnum, 1)) | ||
| 842 | { | ||
| 843 | ASN1err(ASN1_F_BITSTR_CB, ERR_R_MALLOC_FAILURE); | ||
| 844 | return 0; | ||
| 845 | } | ||
| 846 | return 1; | ||
| 847 | } | ||
| 848 | |||
diff --git a/src/lib/libssl/src/crypto/asn1/asn_mime.c b/src/lib/libssl/src/crypto/asn1/asn_mime.c new file mode 100644 index 0000000000..fe7c4ec7ab --- /dev/null +++ b/src/lib/libssl/src/crypto/asn1/asn_mime.c | |||
| @@ -0,0 +1,874 @@ | |||
| 1 | /* asn_mime.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1999-2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | */ | ||
| 54 | |||
| 55 | #include <stdio.h> | ||
| 56 | #include <ctype.h> | ||
| 57 | #include "cryptlib.h" | ||
| 58 | #include <openssl/rand.h> | ||
| 59 | #include <openssl/x509.h> | ||
| 60 | #include <openssl/asn1.h> | ||
| 61 | #include <openssl/asn1t.h> | ||
| 62 | |||
| 63 | /* Generalised MIME like utilities for streaming ASN1. Although many | ||
| 64 | * have a PKCS7/CMS like flavour others are more general purpose. | ||
| 65 | */ | ||
| 66 | |||
| 67 | /* MIME format structures | ||
| 68 | * Note that all are translated to lower case apart from | ||
| 69 | * parameter values. Quotes are stripped off | ||
| 70 | */ | ||
| 71 | |||
| 72 | typedef struct { | ||
| 73 | char *param_name; /* Param name e.g. "micalg" */ | ||
| 74 | char *param_value; /* Param value e.g. "sha1" */ | ||
| 75 | } MIME_PARAM; | ||
| 76 | |||
| 77 | DECLARE_STACK_OF(MIME_PARAM) | ||
| 78 | IMPLEMENT_STACK_OF(MIME_PARAM) | ||
| 79 | |||
| 80 | typedef struct { | ||
| 81 | char *name; /* Name of line e.g. "content-type" */ | ||
| 82 | char *value; /* Value of line e.g. "text/plain" */ | ||
| 83 | STACK_OF(MIME_PARAM) *params; /* Zero or more parameters */ | ||
| 84 | } MIME_HEADER; | ||
| 85 | |||
| 86 | DECLARE_STACK_OF(MIME_HEADER) | ||
| 87 | IMPLEMENT_STACK_OF(MIME_HEADER) | ||
| 88 | |||
| 89 | static char * strip_ends(char *name); | ||
| 90 | static char * strip_start(char *name); | ||
| 91 | static char * strip_end(char *name); | ||
| 92 | static MIME_HEADER *mime_hdr_new(char *name, char *value); | ||
| 93 | static int mime_hdr_addparam(MIME_HEADER *mhdr, char *name, char *value); | ||
| 94 | static STACK_OF(MIME_HEADER) *mime_parse_hdr(BIO *bio); | ||
| 95 | static int mime_hdr_cmp(const MIME_HEADER * const *a, | ||
| 96 | const MIME_HEADER * const *b); | ||
| 97 | static int mime_param_cmp(const MIME_PARAM * const *a, | ||
| 98 | const MIME_PARAM * const *b); | ||
| 99 | static void mime_param_free(MIME_PARAM *param); | ||
| 100 | static int mime_bound_check(char *line, int linelen, char *bound, int blen); | ||
| 101 | static int multi_split(BIO *bio, char *bound, STACK_OF(BIO) **ret); | ||
| 102 | static int strip_eol(char *linebuf, int *plen); | ||
| 103 | static MIME_HEADER *mime_hdr_find(STACK_OF(MIME_HEADER) *hdrs, char *name); | ||
| 104 | static MIME_PARAM *mime_param_find(MIME_HEADER *hdr, char *name); | ||
| 105 | static void mime_hdr_free(MIME_HEADER *hdr); | ||
| 106 | |||
| 107 | #define MAX_SMLEN 1024 | ||
| 108 | #define mime_debug(x) /* x */ | ||
| 109 | |||
| 110 | /* Base 64 read and write of ASN1 structure */ | ||
| 111 | |||
| 112 | static int B64_write_ASN1(BIO *out, ASN1_VALUE *val, BIO *in, int flags, | ||
| 113 | const ASN1_ITEM *it) | ||
| 114 | { | ||
| 115 | BIO *b64; | ||
| 116 | int r; | ||
| 117 | b64 = BIO_new(BIO_f_base64()); | ||
| 118 | if(!b64) | ||
| 119 | { | ||
| 120 | ASN1err(ASN1_F_B64_WRITE_ASN1,ERR_R_MALLOC_FAILURE); | ||
| 121 | return 0; | ||
| 122 | } | ||
| 123 | /* prepend the b64 BIO so all data is base64 encoded. | ||
| 124 | */ | ||
| 125 | out = BIO_push(b64, out); | ||
| 126 | r = ASN1_item_i2d_bio(it, out, val); | ||
| 127 | (void)BIO_flush(out); | ||
| 128 | BIO_pop(out); | ||
| 129 | BIO_free(b64); | ||
| 130 | return r; | ||
| 131 | } | ||
| 132 | |||
| 133 | static ASN1_VALUE *b64_read_asn1(BIO *bio, const ASN1_ITEM *it) | ||
| 134 | { | ||
| 135 | BIO *b64; | ||
| 136 | ASN1_VALUE *val; | ||
| 137 | if(!(b64 = BIO_new(BIO_f_base64()))) { | ||
| 138 | ASN1err(ASN1_F_B64_READ_ASN1,ERR_R_MALLOC_FAILURE); | ||
| 139 | return 0; | ||
| 140 | } | ||
| 141 | bio = BIO_push(b64, bio); | ||
| 142 | val = ASN1_item_d2i_bio(it, bio, NULL); | ||
| 143 | if(!val) | ||
| 144 | ASN1err(ASN1_F_B64_READ_ASN1,ASN1_R_DECODE_ERROR); | ||
| 145 | (void)BIO_flush(bio); | ||
| 146 | bio = BIO_pop(bio); | ||
| 147 | BIO_free(b64); | ||
| 148 | return val; | ||
| 149 | } | ||
| 150 | |||
| 151 | /* Generate the MIME "micalg" parameter from RFC3851, RFC4490 */ | ||
| 152 | |||
| 153 | static int asn1_write_micalg(BIO *out, STACK_OF(X509_ALGOR) *mdalgs) | ||
| 154 | { | ||
| 155 | const EVP_MD *md; | ||
| 156 | int i, have_unknown = 0, write_comma, md_nid; | ||
| 157 | have_unknown = 0; | ||
| 158 | write_comma = 0; | ||
| 159 | for (i = 0; i < sk_X509_ALGOR_num(mdalgs); i++) | ||
| 160 | { | ||
| 161 | if (write_comma) | ||
| 162 | BIO_write(out, ",", 1); | ||
| 163 | write_comma = 1; | ||
| 164 | md_nid = OBJ_obj2nid(sk_X509_ALGOR_value(mdalgs, i)->algorithm); | ||
| 165 | md = EVP_get_digestbynid(md_nid); | ||
| 166 | switch(md_nid) | ||
| 167 | { | ||
| 168 | case NID_sha1: | ||
| 169 | BIO_puts(out, "sha1"); | ||
| 170 | break; | ||
| 171 | |||
| 172 | case NID_md5: | ||
| 173 | BIO_puts(out, "md5"); | ||
| 174 | break; | ||
| 175 | |||
| 176 | case NID_sha256: | ||
| 177 | BIO_puts(out, "sha-256"); | ||
| 178 | break; | ||
| 179 | |||
| 180 | case NID_sha384: | ||
| 181 | BIO_puts(out, "sha-384"); | ||
| 182 | break; | ||
| 183 | |||
| 184 | case NID_sha512: | ||
| 185 | BIO_puts(out, "sha-512"); | ||
| 186 | break; | ||
| 187 | |||
| 188 | default: | ||
| 189 | if (have_unknown) | ||
| 190 | write_comma = 0; | ||
| 191 | else | ||
| 192 | { | ||
| 193 | BIO_puts(out, "unknown"); | ||
| 194 | have_unknown = 1; | ||
| 195 | } | ||
| 196 | break; | ||
| 197 | |||
| 198 | } | ||
| 199 | } | ||
| 200 | |||
| 201 | return 1; | ||
| 202 | |||
| 203 | } | ||
| 204 | |||
| 205 | /* SMIME sender */ | ||
| 206 | |||
| 207 | int int_smime_write_ASN1(BIO *bio, ASN1_VALUE *val, BIO *data, int flags, | ||
| 208 | int ctype_nid, int econt_nid, | ||
| 209 | STACK_OF(X509_ALGOR) *mdalgs, | ||
| 210 | asn1_output_data_fn *data_fn, | ||
| 211 | const ASN1_ITEM *it) | ||
| 212 | { | ||
| 213 | char bound[33], c; | ||
| 214 | int i; | ||
| 215 | const char *mime_prefix, *mime_eol, *cname = "smime.p7m"; | ||
| 216 | const char *msg_type=NULL; | ||
| 217 | if (flags & SMIME_OLDMIME) | ||
| 218 | mime_prefix = "application/x-pkcs7-"; | ||
| 219 | else | ||
| 220 | mime_prefix = "application/pkcs7-"; | ||
| 221 | |||
| 222 | if (flags & SMIME_CRLFEOL) | ||
| 223 | mime_eol = "\r\n"; | ||
| 224 | else | ||
| 225 | mime_eol = "\n"; | ||
| 226 | if((flags & SMIME_DETACHED) && data) { | ||
| 227 | /* We want multipart/signed */ | ||
| 228 | /* Generate a random boundary */ | ||
| 229 | RAND_pseudo_bytes((unsigned char *)bound, 32); | ||
| 230 | for(i = 0; i < 32; i++) { | ||
| 231 | c = bound[i] & 0xf; | ||
| 232 | if(c < 10) c += '0'; | ||
| 233 | else c += 'A' - 10; | ||
| 234 | bound[i] = c; | ||
| 235 | } | ||
| 236 | bound[32] = 0; | ||
| 237 | BIO_printf(bio, "MIME-Version: 1.0%s", mime_eol); | ||
| 238 | BIO_printf(bio, "Content-Type: multipart/signed;"); | ||
| 239 | BIO_printf(bio, " protocol=\"%ssignature\";", mime_prefix); | ||
| 240 | BIO_puts(bio, " micalg=\""); | ||
| 241 | asn1_write_micalg(bio, mdalgs); | ||
| 242 | BIO_printf(bio, "\"; boundary=\"----%s\"%s%s", | ||
| 243 | bound, mime_eol, mime_eol); | ||
| 244 | BIO_printf(bio, "This is an S/MIME signed message%s%s", | ||
| 245 | mime_eol, mime_eol); | ||
| 246 | /* Now write out the first part */ | ||
| 247 | BIO_printf(bio, "------%s%s", bound, mime_eol); | ||
| 248 | if (!data_fn(bio, data, val, flags, it)) | ||
| 249 | return 0; | ||
| 250 | BIO_printf(bio, "%s------%s%s", mime_eol, bound, mime_eol); | ||
| 251 | |||
| 252 | /* Headers for signature */ | ||
| 253 | |||
| 254 | BIO_printf(bio, "Content-Type: %ssignature;", mime_prefix); | ||
| 255 | BIO_printf(bio, " name=\"smime.p7s\"%s", mime_eol); | ||
| 256 | BIO_printf(bio, "Content-Transfer-Encoding: base64%s", | ||
| 257 | mime_eol); | ||
| 258 | BIO_printf(bio, "Content-Disposition: attachment;"); | ||
| 259 | BIO_printf(bio, " filename=\"smime.p7s\"%s%s", | ||
| 260 | mime_eol, mime_eol); | ||
| 261 | B64_write_ASN1(bio, val, NULL, 0, it); | ||
| 262 | BIO_printf(bio,"%s------%s--%s%s", mime_eol, bound, | ||
| 263 | mime_eol, mime_eol); | ||
| 264 | return 1; | ||
| 265 | } | ||
| 266 | |||
| 267 | /* Determine smime-type header */ | ||
| 268 | |||
| 269 | if (ctype_nid == NID_pkcs7_enveloped) | ||
| 270 | msg_type = "enveloped-data"; | ||
| 271 | else if (ctype_nid == NID_pkcs7_signed) | ||
| 272 | { | ||
| 273 | if (econt_nid == NID_id_smime_ct_receipt) | ||
| 274 | msg_type = "signed-receipt"; | ||
| 275 | else if (sk_X509_ALGOR_num(mdalgs) >= 0) | ||
| 276 | msg_type = "signed-data"; | ||
| 277 | else | ||
| 278 | msg_type = "certs-only"; | ||
| 279 | } | ||
| 280 | else if (ctype_nid == NID_id_smime_ct_compressedData) | ||
| 281 | { | ||
| 282 | msg_type = "compressed-data"; | ||
| 283 | cname = "smime.p7z"; | ||
| 284 | } | ||
| 285 | /* MIME headers */ | ||
| 286 | BIO_printf(bio, "MIME-Version: 1.0%s", mime_eol); | ||
| 287 | BIO_printf(bio, "Content-Disposition: attachment;"); | ||
| 288 | BIO_printf(bio, " filename=\"%s\"%s", cname, mime_eol); | ||
| 289 | BIO_printf(bio, "Content-Type: %smime;", mime_prefix); | ||
| 290 | if (msg_type) | ||
| 291 | BIO_printf(bio, " smime-type=%s;", msg_type); | ||
| 292 | BIO_printf(bio, " name=\"%s\"%s", cname, mime_eol); | ||
| 293 | BIO_printf(bio, "Content-Transfer-Encoding: base64%s%s", | ||
| 294 | mime_eol, mime_eol); | ||
| 295 | if (!B64_write_ASN1(bio, val, data, flags, it)) | ||
| 296 | return 0; | ||
| 297 | BIO_printf(bio, "%s", mime_eol); | ||
| 298 | return 1; | ||
| 299 | } | ||
| 300 | |||
| 301 | #if 0 | ||
| 302 | |||
| 303 | /* Handle output of ASN1 data */ | ||
| 304 | |||
| 305 | |||
| 306 | static int asn1_output_data(BIO *out, BIO *data, ASN1_VALUE *val, int flags, | ||
| 307 | const ASN1_ITEM *it) | ||
| 308 | { | ||
| 309 | BIO *tmpbio; | ||
| 310 | const ASN1_AUX *aux = it->funcs; | ||
| 311 | ASN1_STREAM_ARG sarg; | ||
| 312 | |||
| 313 | if (!(flags & SMIME_DETACHED)) | ||
| 314 | { | ||
| 315 | SMIME_crlf_copy(data, out, flags); | ||
| 316 | return 1; | ||
| 317 | } | ||
| 318 | |||
| 319 | if (!aux || !aux->asn1_cb) | ||
| 320 | { | ||
| 321 | ASN1err(ASN1_F_ASN1_OUTPUT_DATA, | ||
| 322 | ASN1_R_STREAMING_NOT_SUPPORTED); | ||
| 323 | return 0; | ||
| 324 | } | ||
| 325 | |||
| 326 | sarg.out = out; | ||
| 327 | sarg.ndef_bio = NULL; | ||
| 328 | sarg.boundary = NULL; | ||
| 329 | |||
| 330 | /* Let ASN1 code prepend any needed BIOs */ | ||
| 331 | |||
| 332 | if (aux->asn1_cb(ASN1_OP_DETACHED_PRE, &val, it, &sarg) <= 0) | ||
| 333 | return 0; | ||
| 334 | |||
| 335 | /* Copy data across, passing through filter BIOs for processing */ | ||
| 336 | SMIME_crlf_copy(data, sarg.ndef_bio, flags); | ||
| 337 | |||
| 338 | /* Finalize structure */ | ||
| 339 | if (aux->asn1_cb(ASN1_OP_DETACHED_POST, &val, it, &sarg) <= 0) | ||
| 340 | return 0; | ||
| 341 | |||
| 342 | /* Now remove any digests prepended to the BIO */ | ||
| 343 | |||
| 344 | while (sarg.ndef_bio != out) | ||
| 345 | { | ||
| 346 | tmpbio = BIO_pop(sarg.ndef_bio); | ||
| 347 | BIO_free(sarg.ndef_bio); | ||
| 348 | sarg.ndef_bio = tmpbio; | ||
| 349 | } | ||
| 350 | |||
| 351 | return 1; | ||
| 352 | |||
| 353 | } | ||
| 354 | |||
| 355 | #endif | ||
| 356 | |||
| 357 | /* SMIME reader: handle multipart/signed and opaque signing. | ||
| 358 | * in multipart case the content is placed in a memory BIO | ||
| 359 | * pointed to by "bcont". In opaque this is set to NULL | ||
| 360 | */ | ||
| 361 | |||
| 362 | ASN1_VALUE *SMIME_read_ASN1(BIO *bio, BIO **bcont, const ASN1_ITEM *it) | ||
| 363 | { | ||
| 364 | BIO *asnin; | ||
| 365 | STACK_OF(MIME_HEADER) *headers = NULL; | ||
| 366 | STACK_OF(BIO) *parts = NULL; | ||
| 367 | MIME_HEADER *hdr; | ||
| 368 | MIME_PARAM *prm; | ||
| 369 | ASN1_VALUE *val; | ||
| 370 | int ret; | ||
| 371 | |||
| 372 | if(bcont) *bcont = NULL; | ||
| 373 | |||
| 374 | if (!(headers = mime_parse_hdr(bio))) { | ||
| 375 | ASN1err(ASN1_F_SMIME_READ_ASN1,ASN1_R_MIME_PARSE_ERROR); | ||
| 376 | return NULL; | ||
| 377 | } | ||
| 378 | |||
| 379 | if(!(hdr = mime_hdr_find(headers, "content-type")) || !hdr->value) { | ||
| 380 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 381 | ASN1err(ASN1_F_SMIME_READ_ASN1, ASN1_R_NO_CONTENT_TYPE); | ||
| 382 | return NULL; | ||
| 383 | } | ||
| 384 | |||
| 385 | /* Handle multipart/signed */ | ||
| 386 | |||
| 387 | if(!strcmp(hdr->value, "multipart/signed")) { | ||
| 388 | /* Split into two parts */ | ||
| 389 | prm = mime_param_find(hdr, "boundary"); | ||
| 390 | if(!prm || !prm->param_value) { | ||
| 391 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 392 | ASN1err(ASN1_F_SMIME_READ_ASN1, ASN1_R_NO_MULTIPART_BOUNDARY); | ||
| 393 | return NULL; | ||
| 394 | } | ||
| 395 | ret = multi_split(bio, prm->param_value, &parts); | ||
| 396 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 397 | if(!ret || (sk_BIO_num(parts) != 2) ) { | ||
| 398 | ASN1err(ASN1_F_SMIME_READ_ASN1, ASN1_R_NO_MULTIPART_BODY_FAILURE); | ||
| 399 | sk_BIO_pop_free(parts, BIO_vfree); | ||
| 400 | return NULL; | ||
| 401 | } | ||
| 402 | |||
| 403 | /* Parse the signature piece */ | ||
| 404 | asnin = sk_BIO_value(parts, 1); | ||
| 405 | |||
| 406 | if (!(headers = mime_parse_hdr(asnin))) { | ||
| 407 | ASN1err(ASN1_F_SMIME_READ_ASN1,ASN1_R_MIME_SIG_PARSE_ERROR); | ||
| 408 | sk_BIO_pop_free(parts, BIO_vfree); | ||
| 409 | return NULL; | ||
| 410 | } | ||
| 411 | |||
| 412 | /* Get content type */ | ||
| 413 | |||
| 414 | if(!(hdr = mime_hdr_find(headers, "content-type")) || | ||
| 415 | !hdr->value) { | ||
| 416 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 417 | ASN1err(ASN1_F_SMIME_READ_ASN1, ASN1_R_NO_SIG_CONTENT_TYPE); | ||
| 418 | return NULL; | ||
| 419 | } | ||
| 420 | |||
| 421 | if(strcmp(hdr->value, "application/x-pkcs7-signature") && | ||
| 422 | strcmp(hdr->value, "application/pkcs7-signature")) { | ||
| 423 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 424 | ASN1err(ASN1_F_SMIME_READ_ASN1,ASN1_R_SIG_INVALID_MIME_TYPE); | ||
| 425 | ERR_add_error_data(2, "type: ", hdr->value); | ||
| 426 | sk_BIO_pop_free(parts, BIO_vfree); | ||
| 427 | return NULL; | ||
| 428 | } | ||
| 429 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 430 | /* Read in ASN1 */ | ||
| 431 | if(!(val = b64_read_asn1(asnin, it))) { | ||
| 432 | ASN1err(ASN1_F_SMIME_READ_ASN1,ASN1_R_ASN1_SIG_PARSE_ERROR); | ||
| 433 | sk_BIO_pop_free(parts, BIO_vfree); | ||
| 434 | return NULL; | ||
| 435 | } | ||
| 436 | |||
| 437 | if(bcont) { | ||
| 438 | *bcont = sk_BIO_value(parts, 0); | ||
| 439 | BIO_free(asnin); | ||
| 440 | sk_BIO_free(parts); | ||
| 441 | } else sk_BIO_pop_free(parts, BIO_vfree); | ||
| 442 | return val; | ||
| 443 | } | ||
| 444 | |||
| 445 | /* OK, if not multipart/signed try opaque signature */ | ||
| 446 | |||
| 447 | if (strcmp (hdr->value, "application/x-pkcs7-mime") && | ||
| 448 | strcmp (hdr->value, "application/pkcs7-mime")) { | ||
| 449 | ASN1err(ASN1_F_SMIME_READ_ASN1,ASN1_R_INVALID_MIME_TYPE); | ||
| 450 | ERR_add_error_data(2, "type: ", hdr->value); | ||
| 451 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 452 | return NULL; | ||
| 453 | } | ||
| 454 | |||
| 455 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 456 | |||
| 457 | if(!(val = b64_read_asn1(bio, it))) { | ||
| 458 | ASN1err(ASN1_F_SMIME_READ_ASN1, ASN1_R_ASN1_PARSE_ERROR); | ||
| 459 | return NULL; | ||
| 460 | } | ||
| 461 | return val; | ||
| 462 | |||
| 463 | } | ||
| 464 | |||
| 465 | /* Copy text from one BIO to another making the output CRLF at EOL */ | ||
| 466 | int SMIME_crlf_copy(BIO *in, BIO *out, int flags) | ||
| 467 | { | ||
| 468 | BIO *bf; | ||
| 469 | char eol; | ||
| 470 | int len; | ||
| 471 | char linebuf[MAX_SMLEN]; | ||
| 472 | /* Buffer output so we don't write one line at a time. This is | ||
| 473 | * useful when streaming as we don't end up with one OCTET STRING | ||
| 474 | * per line. | ||
| 475 | */ | ||
| 476 | bf = BIO_new(BIO_f_buffer()); | ||
| 477 | if (!bf) | ||
| 478 | return 0; | ||
| 479 | out = BIO_push(bf, out); | ||
| 480 | if(flags & SMIME_BINARY) | ||
| 481 | { | ||
| 482 | while((len = BIO_read(in, linebuf, MAX_SMLEN)) > 0) | ||
| 483 | BIO_write(out, linebuf, len); | ||
| 484 | } | ||
| 485 | else | ||
| 486 | { | ||
| 487 | if(flags & SMIME_TEXT) | ||
| 488 | BIO_printf(out, "Content-Type: text/plain\r\n\r\n"); | ||
| 489 | while ((len = BIO_gets(in, linebuf, MAX_SMLEN)) > 0) | ||
| 490 | { | ||
| 491 | eol = strip_eol(linebuf, &len); | ||
| 492 | if (len) | ||
| 493 | BIO_write(out, linebuf, len); | ||
| 494 | if(eol) BIO_write(out, "\r\n", 2); | ||
| 495 | } | ||
| 496 | } | ||
| 497 | (void)BIO_flush(out); | ||
| 498 | BIO_pop(out); | ||
| 499 | BIO_free(bf); | ||
| 500 | return 1; | ||
| 501 | } | ||
| 502 | |||
| 503 | /* Strip off headers if they are text/plain */ | ||
| 504 | int SMIME_text(BIO *in, BIO *out) | ||
| 505 | { | ||
| 506 | char iobuf[4096]; | ||
| 507 | int len; | ||
| 508 | STACK_OF(MIME_HEADER) *headers; | ||
| 509 | MIME_HEADER *hdr; | ||
| 510 | |||
| 511 | if (!(headers = mime_parse_hdr(in))) { | ||
| 512 | ASN1err(ASN1_F_SMIME_TEXT,ASN1_R_MIME_PARSE_ERROR); | ||
| 513 | return 0; | ||
| 514 | } | ||
| 515 | if(!(hdr = mime_hdr_find(headers, "content-type")) || !hdr->value) { | ||
| 516 | ASN1err(ASN1_F_SMIME_TEXT,ASN1_R_MIME_NO_CONTENT_TYPE); | ||
| 517 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 518 | return 0; | ||
| 519 | } | ||
| 520 | if (strcmp (hdr->value, "text/plain")) { | ||
| 521 | ASN1err(ASN1_F_SMIME_TEXT,ASN1_R_INVALID_MIME_TYPE); | ||
| 522 | ERR_add_error_data(2, "type: ", hdr->value); | ||
| 523 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 524 | return 0; | ||
| 525 | } | ||
| 526 | sk_MIME_HEADER_pop_free(headers, mime_hdr_free); | ||
| 527 | while ((len = BIO_read(in, iobuf, sizeof(iobuf))) > 0) | ||
| 528 | BIO_write(out, iobuf, len); | ||
| 529 | return 1; | ||
| 530 | } | ||
| 531 | |||
| 532 | /* Split a multipart/XXX message body into component parts: result is | ||
| 533 | * canonical parts in a STACK of bios | ||
| 534 | */ | ||
| 535 | |||
| 536 | static int multi_split(BIO *bio, char *bound, STACK_OF(BIO) **ret) | ||
| 537 | { | ||
| 538 | char linebuf[MAX_SMLEN]; | ||
| 539 | int len, blen; | ||
| 540 | int eol = 0, next_eol = 0; | ||
| 541 | BIO *bpart = NULL; | ||
| 542 | STACK_OF(BIO) *parts; | ||
| 543 | char state, part, first; | ||
| 544 | |||
| 545 | blen = strlen(bound); | ||
| 546 | part = 0; | ||
| 547 | state = 0; | ||
| 548 | first = 1; | ||
| 549 | parts = sk_BIO_new_null(); | ||
| 550 | *ret = parts; | ||
| 551 | while ((len = BIO_gets(bio, linebuf, MAX_SMLEN)) > 0) { | ||
| 552 | state = mime_bound_check(linebuf, len, bound, blen); | ||
| 553 | if(state == 1) { | ||
| 554 | first = 1; | ||
| 555 | part++; | ||
| 556 | } else if(state == 2) { | ||
| 557 | sk_BIO_push(parts, bpart); | ||
| 558 | return 1; | ||
| 559 | } else if(part) { | ||
| 560 | /* Strip CR+LF from linebuf */ | ||
| 561 | next_eol = strip_eol(linebuf, &len); | ||
| 562 | if(first) { | ||
| 563 | first = 0; | ||
| 564 | if(bpart) sk_BIO_push(parts, bpart); | ||
| 565 | bpart = BIO_new(BIO_s_mem()); | ||
| 566 | BIO_set_mem_eof_return(bpart, 0); | ||
| 567 | } else if (eol) | ||
| 568 | BIO_write(bpart, "\r\n", 2); | ||
| 569 | eol = next_eol; | ||
| 570 | if (len) | ||
| 571 | BIO_write(bpart, linebuf, len); | ||
| 572 | } | ||
| 573 | } | ||
| 574 | return 0; | ||
| 575 | } | ||
| 576 | |||
| 577 | /* This is the big one: parse MIME header lines up to message body */ | ||
| 578 | |||
| 579 | #define MIME_INVALID 0 | ||
| 580 | #define MIME_START 1 | ||
| 581 | #define MIME_TYPE 2 | ||
| 582 | #define MIME_NAME 3 | ||
| 583 | #define MIME_VALUE 4 | ||
| 584 | #define MIME_QUOTE 5 | ||
| 585 | #define MIME_COMMENT 6 | ||
| 586 | |||
| 587 | |||
| 588 | static STACK_OF(MIME_HEADER) *mime_parse_hdr(BIO *bio) | ||
| 589 | { | ||
| 590 | char *p, *q, c; | ||
| 591 | char *ntmp; | ||
| 592 | char linebuf[MAX_SMLEN]; | ||
| 593 | MIME_HEADER *mhdr = NULL; | ||
| 594 | STACK_OF(MIME_HEADER) *headers; | ||
| 595 | int len, state, save_state = 0; | ||
| 596 | |||
| 597 | headers = sk_MIME_HEADER_new(mime_hdr_cmp); | ||
| 598 | while ((len = BIO_gets(bio, linebuf, MAX_SMLEN)) > 0) { | ||
| 599 | /* If whitespace at line start then continuation line */ | ||
| 600 | if(mhdr && isspace((unsigned char)linebuf[0])) state = MIME_NAME; | ||
| 601 | else state = MIME_START; | ||
| 602 | ntmp = NULL; | ||
| 603 | /* Go through all characters */ | ||
| 604 | for(p = linebuf, q = linebuf; (c = *p) && (c!='\r') && (c!='\n'); p++) { | ||
| 605 | |||
| 606 | /* State machine to handle MIME headers | ||
| 607 | * if this looks horrible that's because it *is* | ||
| 608 | */ | ||
| 609 | |||
| 610 | switch(state) { | ||
| 611 | case MIME_START: | ||
| 612 | if(c == ':') { | ||
| 613 | state = MIME_TYPE; | ||
| 614 | *p = 0; | ||
| 615 | ntmp = strip_ends(q); | ||
| 616 | q = p + 1; | ||
| 617 | } | ||
| 618 | break; | ||
| 619 | |||
| 620 | case MIME_TYPE: | ||
| 621 | if(c == ';') { | ||
| 622 | mime_debug("Found End Value\n"); | ||
| 623 | *p = 0; | ||
| 624 | mhdr = mime_hdr_new(ntmp, strip_ends(q)); | ||
| 625 | sk_MIME_HEADER_push(headers, mhdr); | ||
| 626 | ntmp = NULL; | ||
| 627 | q = p + 1; | ||
| 628 | state = MIME_NAME; | ||
| 629 | } else if(c == '(') { | ||
| 630 | save_state = state; | ||
| 631 | state = MIME_COMMENT; | ||
| 632 | } | ||
| 633 | break; | ||
| 634 | |||
| 635 | case MIME_COMMENT: | ||
| 636 | if(c == ')') { | ||
| 637 | state = save_state; | ||
| 638 | } | ||
| 639 | break; | ||
| 640 | |||
| 641 | case MIME_NAME: | ||
| 642 | if(c == '=') { | ||
| 643 | state = MIME_VALUE; | ||
| 644 | *p = 0; | ||
| 645 | ntmp = strip_ends(q); | ||
| 646 | q = p + 1; | ||
| 647 | } | ||
| 648 | break ; | ||
| 649 | |||
| 650 | case MIME_VALUE: | ||
| 651 | if(c == ';') { | ||
| 652 | state = MIME_NAME; | ||
| 653 | *p = 0; | ||
| 654 | mime_hdr_addparam(mhdr, ntmp, strip_ends(q)); | ||
| 655 | ntmp = NULL; | ||
| 656 | q = p + 1; | ||
| 657 | } else if (c == '"') { | ||
| 658 | mime_debug("Found Quote\n"); | ||
| 659 | state = MIME_QUOTE; | ||
| 660 | } else if(c == '(') { | ||
| 661 | save_state = state; | ||
| 662 | state = MIME_COMMENT; | ||
| 663 | } | ||
| 664 | break; | ||
| 665 | |||
| 666 | case MIME_QUOTE: | ||
| 667 | if(c == '"') { | ||
| 668 | mime_debug("Found Match Quote\n"); | ||
| 669 | state = MIME_VALUE; | ||
| 670 | } | ||
| 671 | break; | ||
| 672 | } | ||
| 673 | } | ||
| 674 | |||
| 675 | if(state == MIME_TYPE) { | ||
| 676 | mhdr = mime_hdr_new(ntmp, strip_ends(q)); | ||
| 677 | sk_MIME_HEADER_push(headers, mhdr); | ||
| 678 | } else if(state == MIME_VALUE) | ||
| 679 | mime_hdr_addparam(mhdr, ntmp, strip_ends(q)); | ||
| 680 | if(p == linebuf) break; /* Blank line means end of headers */ | ||
| 681 | } | ||
| 682 | |||
| 683 | return headers; | ||
| 684 | |||
| 685 | } | ||
| 686 | |||
| 687 | static char *strip_ends(char *name) | ||
| 688 | { | ||
| 689 | return strip_end(strip_start(name)); | ||
| 690 | } | ||
| 691 | |||
| 692 | /* Strip a parameter of whitespace from start of param */ | ||
| 693 | static char *strip_start(char *name) | ||
| 694 | { | ||
| 695 | char *p, c; | ||
| 696 | /* Look for first non white space or quote */ | ||
| 697 | for(p = name; (c = *p) ;p++) { | ||
| 698 | if(c == '"') { | ||
| 699 | /* Next char is start of string if non null */ | ||
| 700 | if(p[1]) return p + 1; | ||
| 701 | /* Else null string */ | ||
| 702 | return NULL; | ||
| 703 | } | ||
| 704 | if(!isspace((unsigned char)c)) return p; | ||
| 705 | } | ||
| 706 | return NULL; | ||
| 707 | } | ||
| 708 | |||
| 709 | /* As above but strip from end of string : maybe should handle brackets? */ | ||
| 710 | static char *strip_end(char *name) | ||
| 711 | { | ||
| 712 | char *p, c; | ||
| 713 | if(!name) return NULL; | ||
| 714 | /* Look for first non white space or quote */ | ||
| 715 | for(p = name + strlen(name) - 1; p >= name ;p--) { | ||
| 716 | c = *p; | ||
| 717 | if(c == '"') { | ||
| 718 | if(p - 1 == name) return NULL; | ||
| 719 | *p = 0; | ||
| 720 | return name; | ||
| 721 | } | ||
| 722 | if(isspace((unsigned char)c)) *p = 0; | ||
| 723 | else return name; | ||
| 724 | } | ||
| 725 | return NULL; | ||
| 726 | } | ||
| 727 | |||
| 728 | static MIME_HEADER *mime_hdr_new(char *name, char *value) | ||
| 729 | { | ||
| 730 | MIME_HEADER *mhdr; | ||
| 731 | char *tmpname, *tmpval, *p; | ||
| 732 | int c; | ||
| 733 | if(name) { | ||
| 734 | if(!(tmpname = BUF_strdup(name))) return NULL; | ||
| 735 | for(p = tmpname ; *p; p++) { | ||
| 736 | c = *p; | ||
| 737 | if(isupper(c)) { | ||
| 738 | c = tolower(c); | ||
| 739 | *p = c; | ||
| 740 | } | ||
| 741 | } | ||
| 742 | } else tmpname = NULL; | ||
| 743 | if(value) { | ||
| 744 | if(!(tmpval = BUF_strdup(value))) return NULL; | ||
| 745 | for(p = tmpval ; *p; p++) { | ||
| 746 | c = *p; | ||
| 747 | if(isupper(c)) { | ||
| 748 | c = tolower(c); | ||
| 749 | *p = c; | ||
| 750 | } | ||
| 751 | } | ||
| 752 | } else tmpval = NULL; | ||
| 753 | mhdr = (MIME_HEADER *) OPENSSL_malloc(sizeof(MIME_HEADER)); | ||
| 754 | if(!mhdr) return NULL; | ||
| 755 | mhdr->name = tmpname; | ||
| 756 | mhdr->value = tmpval; | ||
| 757 | if(!(mhdr->params = sk_MIME_PARAM_new(mime_param_cmp))) return NULL; | ||
| 758 | return mhdr; | ||
| 759 | } | ||
| 760 | |||
| 761 | static int mime_hdr_addparam(MIME_HEADER *mhdr, char *name, char *value) | ||
| 762 | { | ||
| 763 | char *tmpname, *tmpval, *p; | ||
| 764 | int c; | ||
| 765 | MIME_PARAM *mparam; | ||
| 766 | if(name) { | ||
| 767 | tmpname = BUF_strdup(name); | ||
| 768 | if(!tmpname) return 0; | ||
| 769 | for(p = tmpname ; *p; p++) { | ||
| 770 | c = *p; | ||
| 771 | if(isupper(c)) { | ||
| 772 | c = tolower(c); | ||
| 773 | *p = c; | ||
| 774 | } | ||
| 775 | } | ||
| 776 | } else tmpname = NULL; | ||
| 777 | if(value) { | ||
| 778 | tmpval = BUF_strdup(value); | ||
| 779 | if(!tmpval) return 0; | ||
| 780 | } else tmpval = NULL; | ||
| 781 | /* Parameter values are case sensitive so leave as is */ | ||
| 782 | mparam = (MIME_PARAM *) OPENSSL_malloc(sizeof(MIME_PARAM)); | ||
| 783 | if(!mparam) return 0; | ||
| 784 | mparam->param_name = tmpname; | ||
| 785 | mparam->param_value = tmpval; | ||
| 786 | sk_MIME_PARAM_push(mhdr->params, mparam); | ||
| 787 | return 1; | ||
| 788 | } | ||
| 789 | |||
| 790 | static int mime_hdr_cmp(const MIME_HEADER * const *a, | ||
| 791 | const MIME_HEADER * const *b) | ||
| 792 | { | ||
| 793 | return(strcmp((*a)->name, (*b)->name)); | ||
| 794 | } | ||
| 795 | |||
| 796 | static int mime_param_cmp(const MIME_PARAM * const *a, | ||
| 797 | const MIME_PARAM * const *b) | ||
| 798 | { | ||
| 799 | return(strcmp((*a)->param_name, (*b)->param_name)); | ||
| 800 | } | ||
| 801 | |||
| 802 | /* Find a header with a given name (if possible) */ | ||
| 803 | |||
| 804 | static MIME_HEADER *mime_hdr_find(STACK_OF(MIME_HEADER) *hdrs, char *name) | ||
| 805 | { | ||
| 806 | MIME_HEADER htmp; | ||
| 807 | int idx; | ||
| 808 | htmp.name = name; | ||
| 809 | idx = sk_MIME_HEADER_find(hdrs, &htmp); | ||
| 810 | if(idx < 0) return NULL; | ||
| 811 | return sk_MIME_HEADER_value(hdrs, idx); | ||
| 812 | } | ||
| 813 | |||
| 814 | static MIME_PARAM *mime_param_find(MIME_HEADER *hdr, char *name) | ||
| 815 | { | ||
| 816 | MIME_PARAM param; | ||
| 817 | int idx; | ||
| 818 | param.param_name = name; | ||
| 819 | idx = sk_MIME_PARAM_find(hdr->params, ¶m); | ||
| 820 | if(idx < 0) return NULL; | ||
| 821 | return sk_MIME_PARAM_value(hdr->params, idx); | ||
| 822 | } | ||
| 823 | |||
| 824 | static void mime_hdr_free(MIME_HEADER *hdr) | ||
| 825 | { | ||
| 826 | if(hdr->name) OPENSSL_free(hdr->name); | ||
| 827 | if(hdr->value) OPENSSL_free(hdr->value); | ||
| 828 | if(hdr->params) sk_MIME_PARAM_pop_free(hdr->params, mime_param_free); | ||
| 829 | OPENSSL_free(hdr); | ||
| 830 | } | ||
| 831 | |||
| 832 | static void mime_param_free(MIME_PARAM *param) | ||
| 833 | { | ||
| 834 | if(param->param_name) OPENSSL_free(param->param_name); | ||
| 835 | if(param->param_value) OPENSSL_free(param->param_value); | ||
| 836 | OPENSSL_free(param); | ||
| 837 | } | ||
| 838 | |||
| 839 | /* Check for a multipart boundary. Returns: | ||
| 840 | * 0 : no boundary | ||
| 841 | * 1 : part boundary | ||
| 842 | * 2 : final boundary | ||
| 843 | */ | ||
| 844 | static int mime_bound_check(char *line, int linelen, char *bound, int blen) | ||
| 845 | { | ||
| 846 | if(linelen == -1) linelen = strlen(line); | ||
| 847 | if(blen == -1) blen = strlen(bound); | ||
| 848 | /* Quickly eliminate if line length too short */ | ||
| 849 | if(blen + 2 > linelen) return 0; | ||
| 850 | /* Check for part boundary */ | ||
| 851 | if(!strncmp(line, "--", 2) && !strncmp(line + 2, bound, blen)) { | ||
| 852 | if(!strncmp(line + blen + 2, "--", 2)) return 2; | ||
| 853 | else return 1; | ||
| 854 | } | ||
| 855 | return 0; | ||
| 856 | } | ||
| 857 | |||
| 858 | static int strip_eol(char *linebuf, int *plen) | ||
| 859 | { | ||
| 860 | int len = *plen; | ||
| 861 | char *p, c; | ||
| 862 | int is_eol = 0; | ||
| 863 | p = linebuf + len - 1; | ||
| 864 | for (p = linebuf + len - 1; len > 0; len--, p--) | ||
| 865 | { | ||
| 866 | c = *p; | ||
| 867 | if (c == '\n') | ||
| 868 | is_eol = 1; | ||
| 869 | else if (c != '\r') | ||
| 870 | break; | ||
| 871 | } | ||
| 872 | *plen = len; | ||
| 873 | return is_eol; | ||
| 874 | } | ||
diff --git a/src/lib/libssl/src/crypto/bio/bio_lcl.h b/src/lib/libssl/src/crypto/bio/bio_lcl.h new file mode 100644 index 0000000000..dba2919d43 --- /dev/null +++ b/src/lib/libssl/src/crypto/bio/bio_lcl.h | |||
| @@ -0,0 +1,28 @@ | |||
| 1 | #include <openssl/bio.h> | ||
| 2 | |||
| 3 | #if BIO_FLAGS_UPLINK==0 | ||
| 4 | /* Shortcut UPLINK calls on most platforms... */ | ||
| 5 | #define UP_stdin stdin | ||
| 6 | #define UP_stdout stdout | ||
| 7 | #define UP_stderr stderr | ||
| 8 | #define UP_fprintf fprintf | ||
| 9 | #define UP_fgets fgets | ||
| 10 | #define UP_fread fread | ||
| 11 | #define UP_fwrite fwrite | ||
| 12 | #undef UP_fsetmod | ||
| 13 | #define UP_feof feof | ||
| 14 | #define UP_fclose fclose | ||
| 15 | |||
| 16 | #define UP_fopen fopen | ||
| 17 | #define UP_fseek fseek | ||
| 18 | #define UP_ftell ftell | ||
| 19 | #define UP_fflush fflush | ||
| 20 | #define UP_ferror ferror | ||
| 21 | #define UP_fileno fileno | ||
| 22 | |||
| 23 | #define UP_open open | ||
| 24 | #define UP_read read | ||
| 25 | #define UP_write write | ||
| 26 | #define UP_lseek lseek | ||
| 27 | #define UP_close close | ||
| 28 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/bio/bss_dgram.c b/src/lib/libssl/src/crypto/bio/bss_dgram.c new file mode 100644 index 0000000000..ea2c3fff63 --- /dev/null +++ b/src/lib/libssl/src/crypto/bio/bss_dgram.c | |||
| @@ -0,0 +1,488 @@ | |||
| 1 | /* crypto/bio/bio_dgram.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #ifndef OPENSSL_NO_DGRAM | ||
| 61 | |||
| 62 | #include <stdio.h> | ||
| 63 | #include <errno.h> | ||
| 64 | #define USE_SOCKETS | ||
| 65 | #include "cryptlib.h" | ||
| 66 | |||
| 67 | #include <openssl/bio.h> | ||
| 68 | |||
| 69 | #define IP_MTU 14 /* linux is lame */ | ||
| 70 | |||
| 71 | #ifdef WATT32 | ||
| 72 | #define sock_write SockWrite /* Watt-32 uses same names */ | ||
| 73 | #define sock_read SockRead | ||
| 74 | #define sock_puts SockPuts | ||
| 75 | #endif | ||
| 76 | |||
| 77 | static int dgram_write(BIO *h, const char *buf, int num); | ||
| 78 | static int dgram_read(BIO *h, char *buf, int size); | ||
| 79 | static int dgram_puts(BIO *h, const char *str); | ||
| 80 | static long dgram_ctrl(BIO *h, int cmd, long arg1, void *arg2); | ||
| 81 | static int dgram_new(BIO *h); | ||
| 82 | static int dgram_free(BIO *data); | ||
| 83 | static int dgram_clear(BIO *bio); | ||
| 84 | |||
| 85 | int BIO_dgram_should_retry(int s); | ||
| 86 | |||
| 87 | static BIO_METHOD methods_dgramp= | ||
| 88 | { | ||
| 89 | BIO_TYPE_DGRAM, | ||
| 90 | "datagram socket", | ||
| 91 | dgram_write, | ||
| 92 | dgram_read, | ||
| 93 | dgram_puts, | ||
| 94 | NULL, /* dgram_gets, */ | ||
| 95 | dgram_ctrl, | ||
| 96 | dgram_new, | ||
| 97 | dgram_free, | ||
| 98 | NULL, | ||
| 99 | }; | ||
| 100 | |||
| 101 | typedef struct bio_dgram_data_st | ||
| 102 | { | ||
| 103 | struct sockaddr peer; | ||
| 104 | unsigned int connected; | ||
| 105 | unsigned int _errno; | ||
| 106 | unsigned int mtu; | ||
| 107 | } bio_dgram_data; | ||
| 108 | |||
| 109 | BIO_METHOD *BIO_s_datagram(void) | ||
| 110 | { | ||
| 111 | return(&methods_dgramp); | ||
| 112 | } | ||
| 113 | |||
| 114 | BIO *BIO_new_dgram(int fd, int close_flag) | ||
| 115 | { | ||
| 116 | BIO *ret; | ||
| 117 | |||
| 118 | ret=BIO_new(BIO_s_datagram()); | ||
| 119 | if (ret == NULL) return(NULL); | ||
| 120 | BIO_set_fd(ret,fd,close_flag); | ||
| 121 | return(ret); | ||
| 122 | } | ||
| 123 | |||
| 124 | static int dgram_new(BIO *bi) | ||
| 125 | { | ||
| 126 | bio_dgram_data *data = NULL; | ||
| 127 | |||
| 128 | bi->init=0; | ||
| 129 | bi->num=0; | ||
| 130 | data = OPENSSL_malloc(sizeof(bio_dgram_data)); | ||
| 131 | if (data == NULL) | ||
| 132 | return 0; | ||
| 133 | memset(data, 0x00, sizeof(bio_dgram_data)); | ||
| 134 | bi->ptr = data; | ||
| 135 | |||
| 136 | bi->flags=0; | ||
| 137 | return(1); | ||
| 138 | } | ||
| 139 | |||
| 140 | static int dgram_free(BIO *a) | ||
| 141 | { | ||
| 142 | bio_dgram_data *data; | ||
| 143 | |||
| 144 | if (a == NULL) return(0); | ||
| 145 | if ( ! dgram_clear(a)) | ||
| 146 | return 0; | ||
| 147 | |||
| 148 | data = (bio_dgram_data *)a->ptr; | ||
| 149 | if(data != NULL) OPENSSL_free(data); | ||
| 150 | |||
| 151 | return(1); | ||
| 152 | } | ||
| 153 | |||
| 154 | static int dgram_clear(BIO *a) | ||
| 155 | { | ||
| 156 | if (a == NULL) return(0); | ||
| 157 | if (a->shutdown) | ||
| 158 | { | ||
| 159 | if (a->init) | ||
| 160 | { | ||
| 161 | SHUTDOWN2(a->num); | ||
| 162 | } | ||
| 163 | a->init=0; | ||
| 164 | a->flags=0; | ||
| 165 | } | ||
| 166 | return(1); | ||
| 167 | } | ||
| 168 | |||
| 169 | static int dgram_read(BIO *b, char *out, int outl) | ||
| 170 | { | ||
| 171 | int ret=0; | ||
| 172 | bio_dgram_data *data = (bio_dgram_data *)b->ptr; | ||
| 173 | |||
| 174 | struct sockaddr peer; | ||
| 175 | int peerlen = sizeof(peer); | ||
| 176 | |||
| 177 | if (out != NULL) | ||
| 178 | { | ||
| 179 | clear_socket_error(); | ||
| 180 | memset(&peer, 0x00, peerlen); | ||
| 181 | /* Last arg in recvfrom is signed on some platforms and | ||
| 182 | * unsigned on others. It is of type socklen_t on some | ||
| 183 | * but this is not universal. Cast to (void *) to avoid | ||
| 184 | * compiler warnings. | ||
| 185 | */ | ||
| 186 | ret=recvfrom(b->num,out,outl,0,&peer,(void *)&peerlen); | ||
| 187 | |||
| 188 | if ( ! data->connected && ret > 0) | ||
| 189 | BIO_ctrl(b, BIO_CTRL_DGRAM_CONNECT, 0, &peer); | ||
| 190 | |||
| 191 | BIO_clear_retry_flags(b); | ||
| 192 | if (ret <= 0) | ||
| 193 | { | ||
| 194 | if (BIO_dgram_should_retry(ret)) | ||
| 195 | { | ||
| 196 | BIO_set_retry_read(b); | ||
| 197 | data->_errno = get_last_socket_error(); | ||
| 198 | } | ||
| 199 | } | ||
| 200 | } | ||
| 201 | return(ret); | ||
| 202 | } | ||
| 203 | |||
| 204 | static int dgram_write(BIO *b, const char *in, int inl) | ||
| 205 | { | ||
| 206 | int ret; | ||
| 207 | bio_dgram_data *data = (bio_dgram_data *)b->ptr; | ||
| 208 | clear_socket_error(); | ||
| 209 | |||
| 210 | if ( data->connected ) | ||
| 211 | ret=writesocket(b->num,in,inl); | ||
| 212 | else | ||
| 213 | #if defined(NETWARE_CLIB) && defined(NETWARE_BSDSOCK) | ||
| 214 | ret=sendto(b->num, (char *)in, inl, 0, &data->peer, sizeof(data->peer)); | ||
| 215 | #else | ||
| 216 | ret=sendto(b->num, in, inl, 0, &data->peer, sizeof(data->peer)); | ||
| 217 | #endif | ||
| 218 | |||
| 219 | BIO_clear_retry_flags(b); | ||
| 220 | if (ret <= 0) | ||
| 221 | { | ||
| 222 | if (BIO_sock_should_retry(ret)) | ||
| 223 | { | ||
| 224 | BIO_set_retry_write(b); | ||
| 225 | data->_errno = get_last_socket_error(); | ||
| 226 | |||
| 227 | #if 0 /* higher layers are responsible for querying MTU, if necessary */ | ||
| 228 | if ( data->_errno == EMSGSIZE) | ||
| 229 | /* retrieve the new MTU */ | ||
| 230 | BIO_ctrl(b, BIO_CTRL_DGRAM_QUERY_MTU, 0, NULL); | ||
| 231 | #endif | ||
| 232 | } | ||
| 233 | } | ||
| 234 | return(ret); | ||
| 235 | } | ||
| 236 | |||
| 237 | static long dgram_ctrl(BIO *b, int cmd, long num, void *ptr) | ||
| 238 | { | ||
| 239 | long ret=1; | ||
| 240 | int *ip; | ||
| 241 | struct sockaddr *to = NULL; | ||
| 242 | bio_dgram_data *data = NULL; | ||
| 243 | long sockopt_val = 0; | ||
| 244 | unsigned int sockopt_len = 0; | ||
| 245 | |||
| 246 | data = (bio_dgram_data *)b->ptr; | ||
| 247 | |||
| 248 | switch (cmd) | ||
| 249 | { | ||
| 250 | case BIO_CTRL_RESET: | ||
| 251 | num=0; | ||
| 252 | case BIO_C_FILE_SEEK: | ||
| 253 | ret=0; | ||
| 254 | break; | ||
| 255 | case BIO_C_FILE_TELL: | ||
| 256 | case BIO_CTRL_INFO: | ||
| 257 | ret=0; | ||
| 258 | break; | ||
| 259 | case BIO_C_SET_FD: | ||
| 260 | dgram_clear(b); | ||
| 261 | b->num= *((int *)ptr); | ||
| 262 | b->shutdown=(int)num; | ||
| 263 | b->init=1; | ||
| 264 | break; | ||
| 265 | case BIO_C_GET_FD: | ||
| 266 | if (b->init) | ||
| 267 | { | ||
| 268 | ip=(int *)ptr; | ||
| 269 | if (ip != NULL) *ip=b->num; | ||
| 270 | ret=b->num; | ||
| 271 | } | ||
| 272 | else | ||
| 273 | ret= -1; | ||
| 274 | break; | ||
| 275 | case BIO_CTRL_GET_CLOSE: | ||
| 276 | ret=b->shutdown; | ||
| 277 | break; | ||
| 278 | case BIO_CTRL_SET_CLOSE: | ||
| 279 | b->shutdown=(int)num; | ||
| 280 | break; | ||
| 281 | case BIO_CTRL_PENDING: | ||
| 282 | case BIO_CTRL_WPENDING: | ||
| 283 | ret=0; | ||
| 284 | break; | ||
| 285 | case BIO_CTRL_DUP: | ||
| 286 | case BIO_CTRL_FLUSH: | ||
| 287 | ret=1; | ||
| 288 | break; | ||
| 289 | case BIO_CTRL_DGRAM_CONNECT: | ||
| 290 | to = (struct sockaddr *)ptr; | ||
| 291 | #if 0 | ||
| 292 | if (connect(b->num, to, sizeof(struct sockaddr)) < 0) | ||
| 293 | { perror("connect"); ret = 0; } | ||
| 294 | else | ||
| 295 | { | ||
| 296 | #endif | ||
| 297 | memcpy(&(data->peer),to, sizeof(struct sockaddr)); | ||
| 298 | #if 0 | ||
| 299 | } | ||
| 300 | #endif | ||
| 301 | break; | ||
| 302 | /* (Linux)kernel sets DF bit on outgoing IP packets */ | ||
| 303 | #ifdef IP_MTU_DISCOVER | ||
| 304 | case BIO_CTRL_DGRAM_MTU_DISCOVER: | ||
| 305 | sockopt_val = IP_PMTUDISC_DO; | ||
| 306 | if ((ret = setsockopt(b->num, IPPROTO_IP, IP_MTU_DISCOVER, | ||
| 307 | &sockopt_val, sizeof(sockopt_val))) < 0) | ||
| 308 | perror("setsockopt"); | ||
| 309 | break; | ||
| 310 | #endif | ||
| 311 | case BIO_CTRL_DGRAM_QUERY_MTU: | ||
| 312 | sockopt_len = sizeof(sockopt_val); | ||
| 313 | if ((ret = getsockopt(b->num, IPPROTO_IP, IP_MTU, (void *)&sockopt_val, | ||
| 314 | &sockopt_len)) < 0 || sockopt_val < 0) | ||
| 315 | { ret = 0; } | ||
| 316 | else | ||
| 317 | { | ||
| 318 | data->mtu = sockopt_val; | ||
| 319 | ret = data->mtu; | ||
| 320 | } | ||
| 321 | break; | ||
| 322 | case BIO_CTRL_DGRAM_GET_MTU: | ||
| 323 | return data->mtu; | ||
| 324 | break; | ||
| 325 | case BIO_CTRL_DGRAM_SET_MTU: | ||
| 326 | data->mtu = num; | ||
| 327 | ret = num; | ||
| 328 | break; | ||
| 329 | case BIO_CTRL_DGRAM_SET_CONNECTED: | ||
| 330 | to = (struct sockaddr *)ptr; | ||
| 331 | |||
| 332 | if ( to != NULL) | ||
| 333 | { | ||
| 334 | data->connected = 1; | ||
| 335 | memcpy(&(data->peer),to, sizeof(struct sockaddr)); | ||
| 336 | } | ||
| 337 | else | ||
| 338 | { | ||
| 339 | data->connected = 0; | ||
| 340 | memset(&(data->peer), 0x00, sizeof(struct sockaddr)); | ||
| 341 | } | ||
| 342 | break; | ||
| 343 | case BIO_CTRL_DGRAM_SET_PEER: | ||
| 344 | to = (struct sockaddr *) ptr; | ||
| 345 | |||
| 346 | memcpy(&(data->peer), to, sizeof(struct sockaddr)); | ||
| 347 | break; | ||
| 348 | case BIO_CTRL_DGRAM_SET_RECV_TIMEOUT: | ||
| 349 | if ( setsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO, ptr, | ||
| 350 | sizeof(struct timeval)) < 0) | ||
| 351 | { perror("setsockopt"); ret = -1; } | ||
| 352 | break; | ||
| 353 | case BIO_CTRL_DGRAM_GET_RECV_TIMEOUT: | ||
| 354 | if ( getsockopt(b->num, SOL_SOCKET, SO_RCVTIMEO, | ||
| 355 | ptr, (void *)&ret) < 0) | ||
| 356 | { perror("getsockopt"); ret = -1; } | ||
| 357 | break; | ||
| 358 | case BIO_CTRL_DGRAM_SET_SEND_TIMEOUT: | ||
| 359 | if ( setsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO, ptr, | ||
| 360 | sizeof(struct timeval)) < 0) | ||
| 361 | { perror("setsockopt"); ret = -1; } | ||
| 362 | break; | ||
| 363 | case BIO_CTRL_DGRAM_GET_SEND_TIMEOUT: | ||
| 364 | if ( getsockopt(b->num, SOL_SOCKET, SO_SNDTIMEO, | ||
| 365 | ptr, (void *)&ret) < 0) | ||
| 366 | { perror("getsockopt"); ret = -1; } | ||
| 367 | break; | ||
| 368 | case BIO_CTRL_DGRAM_GET_SEND_TIMER_EXP: | ||
| 369 | /* fall-through */ | ||
| 370 | case BIO_CTRL_DGRAM_GET_RECV_TIMER_EXP: | ||
| 371 | if ( data->_errno == EAGAIN) | ||
| 372 | { | ||
| 373 | ret = 1; | ||
| 374 | data->_errno = 0; | ||
| 375 | } | ||
| 376 | else | ||
| 377 | ret = 0; | ||
| 378 | break; | ||
| 379 | #ifdef EMSGSIZE | ||
| 380 | case BIO_CTRL_DGRAM_MTU_EXCEEDED: | ||
| 381 | if ( data->_errno == EMSGSIZE) | ||
| 382 | { | ||
| 383 | ret = 1; | ||
| 384 | data->_errno = 0; | ||
| 385 | } | ||
| 386 | else | ||
| 387 | ret = 0; | ||
| 388 | break; | ||
| 389 | #endif | ||
| 390 | default: | ||
| 391 | ret=0; | ||
| 392 | break; | ||
| 393 | } | ||
| 394 | return(ret); | ||
| 395 | } | ||
| 396 | |||
| 397 | static int dgram_puts(BIO *bp, const char *str) | ||
| 398 | { | ||
| 399 | int n,ret; | ||
| 400 | |||
| 401 | n=strlen(str); | ||
| 402 | ret=dgram_write(bp,str,n); | ||
| 403 | return(ret); | ||
| 404 | } | ||
| 405 | |||
| 406 | int BIO_dgram_should_retry(int i) | ||
| 407 | { | ||
| 408 | int err; | ||
| 409 | |||
| 410 | if ((i == 0) || (i == -1)) | ||
| 411 | { | ||
| 412 | err=get_last_socket_error(); | ||
| 413 | |||
| 414 | #if defined(OPENSSL_SYS_WINDOWS) && 0 /* more microsoft stupidity? perhaps not? Ben 4/1/99 */ | ||
| 415 | if ((i == -1) && (err == 0)) | ||
| 416 | return(1); | ||
| 417 | #endif | ||
| 418 | |||
| 419 | return(BIO_dgram_non_fatal_error(err)); | ||
| 420 | } | ||
| 421 | return(0); | ||
| 422 | } | ||
| 423 | |||
| 424 | int BIO_dgram_non_fatal_error(int err) | ||
| 425 | { | ||
| 426 | switch (err) | ||
| 427 | { | ||
| 428 | #if defined(OPENSSL_SYS_WINDOWS) | ||
| 429 | # if defined(WSAEWOULDBLOCK) | ||
| 430 | case WSAEWOULDBLOCK: | ||
| 431 | # endif | ||
| 432 | |||
| 433 | # if 0 /* This appears to always be an error */ | ||
| 434 | # if defined(WSAENOTCONN) | ||
| 435 | case WSAENOTCONN: | ||
| 436 | # endif | ||
| 437 | # endif | ||
| 438 | #endif | ||
| 439 | |||
| 440 | #ifdef EWOULDBLOCK | ||
| 441 | # ifdef WSAEWOULDBLOCK | ||
| 442 | # if WSAEWOULDBLOCK != EWOULDBLOCK | ||
| 443 | case EWOULDBLOCK: | ||
| 444 | # endif | ||
| 445 | # else | ||
| 446 | case EWOULDBLOCK: | ||
| 447 | # endif | ||
| 448 | #endif | ||
| 449 | |||
| 450 | #if defined(ENOTCONN) | ||
| 451 | case ENOTCONN: | ||
| 452 | #endif | ||
| 453 | |||
| 454 | #ifdef EINTR | ||
| 455 | case EINTR: | ||
| 456 | #endif | ||
| 457 | |||
| 458 | #ifdef EAGAIN | ||
| 459 | #if EWOULDBLOCK != EAGAIN | ||
| 460 | case EAGAIN: | ||
| 461 | # endif | ||
| 462 | #endif | ||
| 463 | |||
| 464 | #ifdef EPROTO | ||
| 465 | case EPROTO: | ||
| 466 | #endif | ||
| 467 | |||
| 468 | #ifdef EINPROGRESS | ||
| 469 | case EINPROGRESS: | ||
| 470 | #endif | ||
| 471 | |||
| 472 | #ifdef EALREADY | ||
| 473 | case EALREADY: | ||
| 474 | #endif | ||
| 475 | |||
| 476 | /* DF bit set, and packet larger than MTU */ | ||
| 477 | #ifdef EMSGSIZE | ||
| 478 | case EMSGSIZE: | ||
| 479 | #endif | ||
| 480 | |||
| 481 | return(1); | ||
| 482 | /* break; */ | ||
| 483 | default: | ||
| 484 | break; | ||
| 485 | } | ||
| 486 | return(0); | ||
| 487 | } | ||
| 488 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.s b/src/lib/libssl/src/crypto/bn/asm/alpha.s deleted file mode 100644 index 555ff0b92d..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.s +++ /dev/null | |||
| @@ -1,3199 +0,0 @@ | |||
| 1 | # DEC Alpha assember | ||
| 2 | # The bn_div_words is actually gcc output but the other parts are hand done. | ||
| 3 | # Thanks to tzeruch@ceddec.com for sending me the gcc output for | ||
| 4 | # bn_div_words. | ||
| 5 | # I've gone back and re-done most of routines. | ||
| 6 | # The key thing to remeber for the 164 CPU is that while a | ||
| 7 | # multiply operation takes 8 cycles, another one can only be issued | ||
| 8 | # after 4 cycles have elapsed. I've done modification to help | ||
| 9 | # improve this. Also, normally, a ld instruction will not be available | ||
| 10 | # for about 3 cycles. | ||
| 11 | .file 1 "bn_asm.c" | ||
| 12 | .set noat | ||
| 13 | gcc2_compiled.: | ||
| 14 | __gnu_compiled_c: | ||
| 15 | .text | ||
| 16 | .align 3 | ||
| 17 | .globl bn_mul_add_words | ||
| 18 | .ent bn_mul_add_words | ||
| 19 | bn_mul_add_words: | ||
| 20 | bn_mul_add_words..ng: | ||
| 21 | .frame $30,0,$26,0 | ||
| 22 | .prologue 0 | ||
| 23 | .align 5 | ||
| 24 | subq $18,4,$18 | ||
| 25 | bis $31,$31,$0 | ||
| 26 | blt $18,$43 # if we are -1, -2, -3 or -4 goto tail code | ||
| 27 | ldq $20,0($17) # 1 1 | ||
| 28 | ldq $1,0($16) # 1 1 | ||
| 29 | .align 3 | ||
| 30 | $42: | ||
| 31 | mulq $20,$19,$5 # 1 2 1 ###### | ||
| 32 | ldq $21,8($17) # 2 1 | ||
| 33 | ldq $2,8($16) # 2 1 | ||
| 34 | umulh $20,$19,$20 # 1 2 ###### | ||
| 35 | ldq $27,16($17) # 3 1 | ||
| 36 | ldq $3,16($16) # 3 1 | ||
| 37 | mulq $21,$19,$6 # 2 2 1 ###### | ||
| 38 | ldq $28,24($17) # 4 1 | ||
| 39 | addq $1,$5,$1 # 1 2 2 | ||
| 40 | ldq $4,24($16) # 4 1 | ||
| 41 | umulh $21,$19,$21 # 2 2 ###### | ||
| 42 | cmpult $1,$5,$22 # 1 2 3 1 | ||
| 43 | addq $20,$22,$20 # 1 3 1 | ||
| 44 | addq $1,$0,$1 # 1 2 3 1 | ||
| 45 | mulq $27,$19,$7 # 3 2 1 ###### | ||
| 46 | cmpult $1,$0,$0 # 1 2 3 2 | ||
| 47 | addq $2,$6,$2 # 2 2 2 | ||
| 48 | addq $20,$0,$0 # 1 3 2 | ||
| 49 | cmpult $2,$6,$23 # 2 2 3 1 | ||
| 50 | addq $21,$23,$21 # 2 3 1 | ||
| 51 | umulh $27,$19,$27 # 3 2 ###### | ||
| 52 | addq $2,$0,$2 # 2 2 3 1 | ||
| 53 | cmpult $2,$0,$0 # 2 2 3 2 | ||
| 54 | subq $18,4,$18 | ||
| 55 | mulq $28,$19,$8 # 4 2 1 ###### | ||
| 56 | addq $21,$0,$0 # 2 3 2 | ||
| 57 | addq $3,$7,$3 # 3 2 2 | ||
| 58 | addq $16,32,$16 | ||
| 59 | cmpult $3,$7,$24 # 3 2 3 1 | ||
| 60 | stq $1,-32($16) # 1 2 4 | ||
| 61 | umulh $28,$19,$28 # 4 2 ###### | ||
| 62 | addq $27,$24,$27 # 3 3 1 | ||
| 63 | addq $3,$0,$3 # 3 2 3 1 | ||
| 64 | stq $2,-24($16) # 2 2 4 | ||
| 65 | cmpult $3,$0,$0 # 3 2 3 2 | ||
| 66 | stq $3,-16($16) # 3 2 4 | ||
| 67 | addq $4,$8,$4 # 4 2 2 | ||
| 68 | addq $27,$0,$0 # 3 3 2 | ||
| 69 | cmpult $4,$8,$25 # 4 2 3 1 | ||
| 70 | addq $17,32,$17 | ||
| 71 | addq $28,$25,$28 # 4 3 1 | ||
| 72 | addq $4,$0,$4 # 4 2 3 1 | ||
| 73 | cmpult $4,$0,$0 # 4 2 3 2 | ||
| 74 | stq $4,-8($16) # 4 2 4 | ||
| 75 | addq $28,$0,$0 # 4 3 2 | ||
| 76 | blt $18,$43 | ||
| 77 | |||
| 78 | ldq $20,0($17) # 1 1 | ||
| 79 | ldq $1,0($16) # 1 1 | ||
| 80 | |||
| 81 | br $42 | ||
| 82 | |||
| 83 | .align 4 | ||
| 84 | $45: | ||
| 85 | ldq $20,0($17) # 4 1 | ||
| 86 | ldq $1,0($16) # 4 1 | ||
| 87 | mulq $20,$19,$5 # 4 2 1 | ||
| 88 | subq $18,1,$18 | ||
| 89 | addq $16,8,$16 | ||
| 90 | addq $17,8,$17 | ||
| 91 | umulh $20,$19,$20 # 4 2 | ||
| 92 | addq $1,$5,$1 # 4 2 2 | ||
| 93 | cmpult $1,$5,$22 # 4 2 3 1 | ||
| 94 | addq $20,$22,$20 # 4 3 1 | ||
| 95 | addq $1,$0,$1 # 4 2 3 1 | ||
| 96 | cmpult $1,$0,$0 # 4 2 3 2 | ||
| 97 | addq $20,$0,$0 # 4 3 2 | ||
| 98 | stq $1,-8($16) # 4 2 4 | ||
| 99 | bgt $18,$45 | ||
| 100 | ret $31,($26),1 # else exit | ||
| 101 | |||
| 102 | .align 4 | ||
| 103 | $43: | ||
| 104 | addq $18,4,$18 | ||
| 105 | bgt $18,$45 # goto tail code | ||
| 106 | ret $31,($26),1 # else exit | ||
| 107 | |||
| 108 | .end bn_mul_add_words | ||
| 109 | .align 3 | ||
| 110 | .globl bn_mul_words | ||
| 111 | .ent bn_mul_words | ||
| 112 | bn_mul_words: | ||
| 113 | bn_mul_words..ng: | ||
| 114 | .frame $30,0,$26,0 | ||
| 115 | .prologue 0 | ||
| 116 | .align 5 | ||
| 117 | subq $18,4,$18 | ||
| 118 | bis $31,$31,$0 | ||
| 119 | blt $18,$143 # if we are -1, -2, -3 or -4 goto tail code | ||
| 120 | ldq $20,0($17) # 1 1 | ||
| 121 | .align 3 | ||
| 122 | $142: | ||
| 123 | |||
| 124 | mulq $20,$19,$5 # 1 2 1 ##### | ||
| 125 | ldq $21,8($17) # 2 1 | ||
| 126 | ldq $27,16($17) # 3 1 | ||
| 127 | umulh $20,$19,$20 # 1 2 ##### | ||
| 128 | ldq $28,24($17) # 4 1 | ||
| 129 | mulq $21,$19,$6 # 2 2 1 ##### | ||
| 130 | addq $5,$0,$5 # 1 2 3 1 | ||
| 131 | subq $18,4,$18 | ||
| 132 | cmpult $5,$0,$0 # 1 2 3 2 | ||
| 133 | umulh $21,$19,$21 # 2 2 ##### | ||
| 134 | addq $20,$0,$0 # 1 3 2 | ||
| 135 | addq $17,32,$17 | ||
| 136 | addq $6,$0,$6 # 2 2 3 1 | ||
| 137 | mulq $27,$19,$7 # 3 2 1 ##### | ||
| 138 | cmpult $6,$0,$0 # 2 2 3 2 | ||
| 139 | addq $21,$0,$0 # 2 3 2 | ||
| 140 | addq $16,32,$16 | ||
| 141 | umulh $27,$19,$27 # 3 2 ##### | ||
| 142 | stq $5,-32($16) # 1 2 4 | ||
| 143 | mulq $28,$19,$8 # 4 2 1 ##### | ||
| 144 | addq $7,$0,$7 # 3 2 3 1 | ||
| 145 | stq $6,-24($16) # 2 2 4 | ||
| 146 | cmpult $7,$0,$0 # 3 2 3 2 | ||
| 147 | umulh $28,$19,$28 # 4 2 ##### | ||
| 148 | addq $27,$0,$0 # 3 3 2 | ||
| 149 | stq $7,-16($16) # 3 2 4 | ||
| 150 | addq $8,$0,$8 # 4 2 3 1 | ||
| 151 | cmpult $8,$0,$0 # 4 2 3 2 | ||
| 152 | |||
| 153 | addq $28,$0,$0 # 4 3 2 | ||
| 154 | |||
| 155 | stq $8,-8($16) # 4 2 4 | ||
| 156 | |||
| 157 | blt $18,$143 | ||
| 158 | |||
| 159 | ldq $20,0($17) # 1 1 | ||
| 160 | |||
| 161 | br $142 | ||
| 162 | |||
| 163 | .align 4 | ||
| 164 | $145: | ||
| 165 | ldq $20,0($17) # 4 1 | ||
| 166 | mulq $20,$19,$5 # 4 2 1 | ||
| 167 | subq $18,1,$18 | ||
| 168 | umulh $20,$19,$20 # 4 2 | ||
| 169 | addq $5,$0,$5 # 4 2 3 1 | ||
| 170 | addq $16,8,$16 | ||
| 171 | cmpult $5,$0,$0 # 4 2 3 2 | ||
| 172 | addq $17,8,$17 | ||
| 173 | addq $20,$0,$0 # 4 3 2 | ||
| 174 | stq $5,-8($16) # 4 2 4 | ||
| 175 | |||
| 176 | bgt $18,$145 | ||
| 177 | ret $31,($26),1 # else exit | ||
| 178 | |||
| 179 | .align 4 | ||
| 180 | $143: | ||
| 181 | addq $18,4,$18 | ||
| 182 | bgt $18,$145 # goto tail code | ||
| 183 | ret $31,($26),1 # else exit | ||
| 184 | |||
| 185 | .end bn_mul_words | ||
| 186 | .align 3 | ||
| 187 | .globl bn_sqr_words | ||
| 188 | .ent bn_sqr_words | ||
| 189 | bn_sqr_words: | ||
| 190 | bn_sqr_words..ng: | ||
| 191 | .frame $30,0,$26,0 | ||
| 192 | .prologue 0 | ||
| 193 | |||
| 194 | subq $18,4,$18 | ||
| 195 | blt $18,$543 # if we are -1, -2, -3 or -4 goto tail code | ||
| 196 | ldq $20,0($17) # 1 1 | ||
| 197 | .align 3 | ||
| 198 | $542: | ||
| 199 | mulq $20,$20,$5 ###### | ||
| 200 | ldq $21,8($17) # 1 1 | ||
| 201 | subq $18,4 | ||
| 202 | umulh $20,$20,$1 ###### | ||
| 203 | ldq $27,16($17) # 1 1 | ||
| 204 | mulq $21,$21,$6 ###### | ||
| 205 | ldq $28,24($17) # 1 1 | ||
| 206 | stq $5,0($16) # r[0] | ||
| 207 | umulh $21,$21,$2 ###### | ||
| 208 | stq $1,8($16) # r[1] | ||
| 209 | mulq $27,$27,$7 ###### | ||
| 210 | stq $6,16($16) # r[0] | ||
| 211 | umulh $27,$27,$3 ###### | ||
| 212 | stq $2,24($16) # r[1] | ||
| 213 | mulq $28,$28,$8 ###### | ||
| 214 | stq $7,32($16) # r[0] | ||
| 215 | umulh $28,$28,$4 ###### | ||
| 216 | stq $3,40($16) # r[1] | ||
| 217 | |||
| 218 | addq $16,64,$16 | ||
| 219 | addq $17,32,$17 | ||
| 220 | stq $8,-16($16) # r[0] | ||
| 221 | stq $4,-8($16) # r[1] | ||
| 222 | |||
| 223 | blt $18,$543 | ||
| 224 | ldq $20,0($17) # 1 1 | ||
| 225 | br $542 | ||
| 226 | |||
| 227 | $442: | ||
| 228 | ldq $20,0($17) # a[0] | ||
| 229 | mulq $20,$20,$5 # a[0]*w low part r2 | ||
| 230 | addq $16,16,$16 | ||
| 231 | addq $17,8,$17 | ||
| 232 | subq $18,1,$18 | ||
| 233 | umulh $20,$20,$1 # a[0]*w high part r3 | ||
| 234 | stq $5,-16($16) # r[0] | ||
| 235 | stq $1,-8($16) # r[1] | ||
| 236 | |||
| 237 | bgt $18,$442 | ||
| 238 | ret $31,($26),1 # else exit | ||
| 239 | |||
| 240 | .align 4 | ||
| 241 | $543: | ||
| 242 | addq $18,4,$18 | ||
| 243 | bgt $18,$442 # goto tail code | ||
| 244 | ret $31,($26),1 # else exit | ||
| 245 | .end bn_sqr_words | ||
| 246 | |||
| 247 | .align 3 | ||
| 248 | .globl bn_add_words | ||
| 249 | .ent bn_add_words | ||
| 250 | bn_add_words: | ||
| 251 | bn_add_words..ng: | ||
| 252 | .frame $30,0,$26,0 | ||
| 253 | .prologue 0 | ||
| 254 | |||
| 255 | subq $19,4,$19 | ||
| 256 | bis $31,$31,$0 # carry = 0 | ||
| 257 | blt $19,$900 | ||
| 258 | ldq $5,0($17) # a[0] | ||
| 259 | ldq $1,0($18) # b[1] | ||
| 260 | .align 3 | ||
| 261 | $901: | ||
| 262 | addq $1,$5,$1 # r=a+b; | ||
| 263 | ldq $6,8($17) # a[1] | ||
| 264 | cmpult $1,$5,$22 # did we overflow? | ||
| 265 | ldq $2,8($18) # b[1] | ||
| 266 | addq $1,$0,$1 # c+= overflow | ||
| 267 | ldq $7,16($17) # a[2] | ||
| 268 | cmpult $1,$0,$0 # overflow? | ||
| 269 | ldq $3,16($18) # b[2] | ||
| 270 | addq $0,$22,$0 | ||
| 271 | ldq $8,24($17) # a[3] | ||
| 272 | addq $2,$6,$2 # r=a+b; | ||
| 273 | ldq $4,24($18) # b[3] | ||
| 274 | cmpult $2,$6,$23 # did we overflow? | ||
| 275 | addq $3,$7,$3 # r=a+b; | ||
| 276 | addq $2,$0,$2 # c+= overflow | ||
| 277 | cmpult $3,$7,$24 # did we overflow? | ||
| 278 | cmpult $2,$0,$0 # overflow? | ||
| 279 | addq $4,$8,$4 # r=a+b; | ||
| 280 | addq $0,$23,$0 | ||
| 281 | cmpult $4,$8,$25 # did we overflow? | ||
| 282 | addq $3,$0,$3 # c+= overflow | ||
| 283 | stq $1,0($16) # r[0]=c | ||
| 284 | cmpult $3,$0,$0 # overflow? | ||
| 285 | stq $2,8($16) # r[1]=c | ||
| 286 | addq $0,$24,$0 | ||
| 287 | stq $3,16($16) # r[2]=c | ||
| 288 | addq $4,$0,$4 # c+= overflow | ||
| 289 | subq $19,4,$19 # loop-- | ||
| 290 | cmpult $4,$0,$0 # overflow? | ||
| 291 | addq $17,32,$17 # a++ | ||
| 292 | addq $0,$25,$0 | ||
| 293 | stq $4,24($16) # r[3]=c | ||
| 294 | addq $18,32,$18 # b++ | ||
| 295 | addq $16,32,$16 # r++ | ||
| 296 | |||
| 297 | blt $19,$900 | ||
| 298 | ldq $5,0($17) # a[0] | ||
| 299 | ldq $1,0($18) # b[1] | ||
| 300 | br $901 | ||
| 301 | .align 4 | ||
| 302 | $945: | ||
| 303 | ldq $5,0($17) # a[0] | ||
| 304 | ldq $1,0($18) # b[1] | ||
| 305 | addq $1,$5,$1 # r=a+b; | ||
| 306 | subq $19,1,$19 # loop-- | ||
| 307 | addq $1,$0,$1 # c+= overflow | ||
| 308 | addq $17,8,$17 # a++ | ||
| 309 | cmpult $1,$5,$22 # did we overflow? | ||
| 310 | cmpult $1,$0,$0 # overflow? | ||
| 311 | addq $18,8,$18 # b++ | ||
| 312 | stq $1,0($16) # r[0]=c | ||
| 313 | addq $0,$22,$0 | ||
| 314 | addq $16,8,$16 # r++ | ||
| 315 | |||
| 316 | bgt $19,$945 | ||
| 317 | ret $31,($26),1 # else exit | ||
| 318 | |||
| 319 | $900: | ||
| 320 | addq $19,4,$19 | ||
| 321 | bgt $19,$945 # goto tail code | ||
| 322 | ret $31,($26),1 # else exit | ||
| 323 | .end bn_add_words | ||
| 324 | |||
| 325 | # | ||
| 326 | # What follows was taken directly from the C compiler with a few | ||
| 327 | # hacks to redo the lables. | ||
| 328 | # | ||
| 329 | .text | ||
| 330 | .align 3 | ||
| 331 | .globl bn_div_words | ||
| 332 | .ent bn_div_words | ||
| 333 | bn_div_words: | ||
| 334 | ldgp $29,0($27) | ||
| 335 | bn_div_words..ng: | ||
| 336 | lda $30,-48($30) | ||
| 337 | .frame $30,48,$26,0 | ||
| 338 | stq $26,0($30) | ||
| 339 | stq $9,8($30) | ||
| 340 | stq $10,16($30) | ||
| 341 | stq $11,24($30) | ||
| 342 | stq $12,32($30) | ||
| 343 | stq $13,40($30) | ||
| 344 | .mask 0x4003e00,-48 | ||
| 345 | .prologue 1 | ||
| 346 | bis $16,$16,$9 | ||
| 347 | bis $17,$17,$10 | ||
| 348 | bis $18,$18,$11 | ||
| 349 | bis $31,$31,$13 | ||
| 350 | bis $31,2,$12 | ||
| 351 | bne $11,$119 | ||
| 352 | lda $0,-1 | ||
| 353 | br $31,$136 | ||
| 354 | .align 4 | ||
| 355 | $119: | ||
| 356 | bis $11,$11,$16 | ||
| 357 | jsr $26,BN_num_bits_word | ||
| 358 | ldgp $29,0($26) | ||
| 359 | subq $0,64,$1 | ||
| 360 | beq $1,$120 | ||
| 361 | bis $31,1,$1 | ||
| 362 | sll $1,$0,$1 | ||
| 363 | cmpule $9,$1,$1 | ||
| 364 | bne $1,$120 | ||
| 365 | # lda $16,_IO_stderr_ | ||
| 366 | # lda $17,$C32 | ||
| 367 | # bis $0,$0,$18 | ||
| 368 | # jsr $26,fprintf | ||
| 369 | # ldgp $29,0($26) | ||
| 370 | jsr $26,abort | ||
| 371 | ldgp $29,0($26) | ||
| 372 | .align 4 | ||
| 373 | $120: | ||
| 374 | bis $31,64,$3 | ||
| 375 | cmpult $9,$11,$2 | ||
| 376 | subq $3,$0,$1 | ||
| 377 | addl $1,$31,$0 | ||
| 378 | subq $9,$11,$1 | ||
| 379 | cmoveq $2,$1,$9 | ||
| 380 | beq $0,$122 | ||
| 381 | zapnot $0,15,$2 | ||
| 382 | subq $3,$0,$1 | ||
| 383 | sll $11,$2,$11 | ||
| 384 | sll $9,$2,$3 | ||
| 385 | srl $10,$1,$1 | ||
| 386 | sll $10,$2,$10 | ||
| 387 | bis $3,$1,$9 | ||
| 388 | $122: | ||
| 389 | srl $11,32,$5 | ||
| 390 | zapnot $11,15,$6 | ||
| 391 | lda $7,-1 | ||
| 392 | .align 5 | ||
| 393 | $123: | ||
| 394 | srl $9,32,$1 | ||
| 395 | subq $1,$5,$1 | ||
| 396 | bne $1,$126 | ||
| 397 | zapnot $7,15,$27 | ||
| 398 | br $31,$127 | ||
| 399 | .align 4 | ||
| 400 | $126: | ||
| 401 | bis $9,$9,$24 | ||
| 402 | bis $5,$5,$25 | ||
| 403 | divqu $24,$25,$27 | ||
| 404 | $127: | ||
| 405 | srl $10,32,$4 | ||
| 406 | .align 5 | ||
| 407 | $128: | ||
| 408 | mulq $27,$5,$1 | ||
| 409 | subq $9,$1,$3 | ||
| 410 | zapnot $3,240,$1 | ||
| 411 | bne $1,$129 | ||
| 412 | mulq $6,$27,$2 | ||
| 413 | sll $3,32,$1 | ||
| 414 | addq $1,$4,$1 | ||
| 415 | cmpule $2,$1,$2 | ||
| 416 | bne $2,$129 | ||
| 417 | subq $27,1,$27 | ||
| 418 | br $31,$128 | ||
| 419 | .align 4 | ||
| 420 | $129: | ||
| 421 | mulq $27,$6,$1 | ||
| 422 | mulq $27,$5,$4 | ||
| 423 | srl $1,32,$3 | ||
| 424 | sll $1,32,$1 | ||
| 425 | addq $4,$3,$4 | ||
| 426 | cmpult $10,$1,$2 | ||
| 427 | subq $10,$1,$10 | ||
| 428 | addq $2,$4,$2 | ||
| 429 | cmpult $9,$2,$1 | ||
| 430 | bis $2,$2,$4 | ||
| 431 | beq $1,$134 | ||
| 432 | addq $9,$11,$9 | ||
| 433 | subq $27,1,$27 | ||
| 434 | $134: | ||
| 435 | subl $12,1,$12 | ||
| 436 | subq $9,$4,$9 | ||
| 437 | beq $12,$124 | ||
| 438 | sll $27,32,$13 | ||
| 439 | sll $9,32,$2 | ||
| 440 | srl $10,32,$1 | ||
| 441 | sll $10,32,$10 | ||
| 442 | bis $2,$1,$9 | ||
| 443 | br $31,$123 | ||
| 444 | .align 4 | ||
| 445 | $124: | ||
| 446 | bis $13,$27,$0 | ||
| 447 | $136: | ||
| 448 | ldq $26,0($30) | ||
| 449 | ldq $9,8($30) | ||
| 450 | ldq $10,16($30) | ||
| 451 | ldq $11,24($30) | ||
| 452 | ldq $12,32($30) | ||
| 453 | ldq $13,40($30) | ||
| 454 | addq $30,48,$30 | ||
| 455 | ret $31,($26),1 | ||
| 456 | .end bn_div_words | ||
| 457 | |||
| 458 | .set noat | ||
| 459 | .text | ||
| 460 | .align 3 | ||
| 461 | .globl bn_sub_words | ||
| 462 | .ent bn_sub_words | ||
| 463 | bn_sub_words: | ||
| 464 | bn_sub_words..ng: | ||
| 465 | .frame $30,0,$26,0 | ||
| 466 | .prologue 0 | ||
| 467 | |||
| 468 | subq $19, 4, $19 | ||
| 469 | bis $31, $31, $0 | ||
| 470 | blt $19, $100 | ||
| 471 | ldq $1, 0($17) | ||
| 472 | ldq $2, 0($18) | ||
| 473 | $101: | ||
| 474 | ldq $3, 8($17) | ||
| 475 | cmpult $1, $2, $4 | ||
| 476 | ldq $5, 8($18) | ||
| 477 | subq $1, $2, $1 | ||
| 478 | ldq $6, 16($17) | ||
| 479 | cmpult $1, $0, $2 | ||
| 480 | ldq $7, 16($18) | ||
| 481 | subq $1, $0, $23 | ||
| 482 | ldq $8, 24($17) | ||
| 483 | addq $2, $4, $0 | ||
| 484 | cmpult $3, $5, $24 | ||
| 485 | subq $3, $5, $3 | ||
| 486 | ldq $22, 24($18) | ||
| 487 | cmpult $3, $0, $5 | ||
| 488 | subq $3, $0, $25 | ||
| 489 | addq $5, $24, $0 | ||
| 490 | cmpult $6, $7, $27 | ||
| 491 | subq $6, $7, $6 | ||
| 492 | stq $23, 0($16) | ||
| 493 | cmpult $6, $0, $7 | ||
| 494 | subq $6, $0, $28 | ||
| 495 | addq $7, $27, $0 | ||
| 496 | cmpult $8, $22, $21 | ||
| 497 | subq $8, $22, $8 | ||
| 498 | stq $25, 8($16) | ||
| 499 | cmpult $8, $0, $22 | ||
| 500 | subq $8, $0, $20 | ||
| 501 | addq $22, $21, $0 | ||
| 502 | stq $28, 16($16) | ||
| 503 | subq $19, 4, $19 | ||
| 504 | stq $20, 24($16) | ||
| 505 | addq $17, 32, $17 | ||
| 506 | addq $18, 32, $18 | ||
| 507 | addq $16, 32, $16 | ||
| 508 | blt $19, $100 | ||
| 509 | ldq $1, 0($17) | ||
| 510 | ldq $2, 0($18) | ||
| 511 | br $101 | ||
| 512 | $102: | ||
| 513 | ldq $1, 0($17) | ||
| 514 | ldq $2, 0($18) | ||
| 515 | cmpult $1, $2, $27 | ||
| 516 | subq $1, $2, $1 | ||
| 517 | cmpult $1, $0, $2 | ||
| 518 | subq $1, $0, $1 | ||
| 519 | stq $1, 0($16) | ||
| 520 | addq $2, $27, $0 | ||
| 521 | addq $17, 8, $17 | ||
| 522 | addq $18, 8, $18 | ||
| 523 | addq $16, 8, $16 | ||
| 524 | subq $19, 1, $19 | ||
| 525 | bgt $19, $102 | ||
| 526 | ret $31,($26),1 | ||
| 527 | $100: | ||
| 528 | addq $19, 4, $19 | ||
| 529 | bgt $19, $102 | ||
| 530 | $103: | ||
| 531 | ret $31,($26),1 | ||
| 532 | .end bn_sub_words | ||
| 533 | .text | ||
| 534 | .align 3 | ||
| 535 | .globl bn_mul_comba4 | ||
| 536 | .ent bn_mul_comba4 | ||
| 537 | bn_mul_comba4: | ||
| 538 | bn_mul_comba4..ng: | ||
| 539 | .frame $30,0,$26,0 | ||
| 540 | .prologue 0 | ||
| 541 | |||
| 542 | ldq $0, 0($17) | ||
| 543 | ldq $1, 0($18) | ||
| 544 | ldq $2, 8($17) | ||
| 545 | ldq $3, 8($18) | ||
| 546 | ldq $4, 16($17) | ||
| 547 | ldq $5, 16($18) | ||
| 548 | ldq $6, 24($17) | ||
| 549 | ldq $7, 24($18) | ||
| 550 | bis $31, $31, $23 | ||
| 551 | mulq $0, $1, $8 | ||
| 552 | umulh $0, $1, $22 | ||
| 553 | stq $8, 0($16) | ||
| 554 | bis $31, $31, $8 | ||
| 555 | mulq $0, $3, $24 | ||
| 556 | umulh $0, $3, $25 | ||
| 557 | addq $22, $24, $22 | ||
| 558 | cmpult $22, $24, $27 | ||
| 559 | addq $27, $25, $25 | ||
| 560 | addq $23, $25, $23 | ||
| 561 | cmpult $23, $25, $28 | ||
| 562 | addq $8, $28, $8 | ||
| 563 | mulq $2, $1, $21 | ||
| 564 | umulh $2, $1, $20 | ||
| 565 | addq $22, $21, $22 | ||
| 566 | cmpult $22, $21, $19 | ||
| 567 | addq $19, $20, $20 | ||
| 568 | addq $23, $20, $23 | ||
| 569 | cmpult $23, $20, $17 | ||
| 570 | addq $8, $17, $8 | ||
| 571 | stq $22, 8($16) | ||
| 572 | bis $31, $31, $22 | ||
| 573 | mulq $2, $3, $18 | ||
| 574 | umulh $2, $3, $24 | ||
| 575 | addq $23, $18, $23 | ||
| 576 | cmpult $23, $18, $27 | ||
| 577 | addq $27, $24, $24 | ||
| 578 | addq $8, $24, $8 | ||
| 579 | cmpult $8, $24, $25 | ||
| 580 | addq $22, $25, $22 | ||
| 581 | mulq $0, $5, $28 | ||
| 582 | umulh $0, $5, $21 | ||
| 583 | addq $23, $28, $23 | ||
| 584 | cmpult $23, $28, $19 | ||
| 585 | addq $19, $21, $21 | ||
| 586 | addq $8, $21, $8 | ||
| 587 | cmpult $8, $21, $20 | ||
| 588 | addq $22, $20, $22 | ||
| 589 | mulq $4, $1, $17 | ||
| 590 | umulh $4, $1, $18 | ||
| 591 | addq $23, $17, $23 | ||
| 592 | cmpult $23, $17, $27 | ||
| 593 | addq $27, $18, $18 | ||
| 594 | addq $8, $18, $8 | ||
| 595 | cmpult $8, $18, $24 | ||
| 596 | addq $22, $24, $22 | ||
| 597 | stq $23, 16($16) | ||
| 598 | bis $31, $31, $23 | ||
| 599 | mulq $0, $7, $25 | ||
| 600 | umulh $0, $7, $28 | ||
| 601 | addq $8, $25, $8 | ||
| 602 | cmpult $8, $25, $19 | ||
| 603 | addq $19, $28, $28 | ||
| 604 | addq $22, $28, $22 | ||
| 605 | cmpult $22, $28, $21 | ||
| 606 | addq $23, $21, $23 | ||
| 607 | mulq $2, $5, $20 | ||
| 608 | umulh $2, $5, $17 | ||
| 609 | addq $8, $20, $8 | ||
| 610 | cmpult $8, $20, $27 | ||
| 611 | addq $27, $17, $17 | ||
| 612 | addq $22, $17, $22 | ||
| 613 | cmpult $22, $17, $18 | ||
| 614 | addq $23, $18, $23 | ||
| 615 | mulq $4, $3, $24 | ||
| 616 | umulh $4, $3, $25 | ||
| 617 | addq $8, $24, $8 | ||
| 618 | cmpult $8, $24, $19 | ||
| 619 | addq $19, $25, $25 | ||
| 620 | addq $22, $25, $22 | ||
| 621 | cmpult $22, $25, $28 | ||
| 622 | addq $23, $28, $23 | ||
| 623 | mulq $6, $1, $21 | ||
| 624 | umulh $6, $1, $0 | ||
| 625 | addq $8, $21, $8 | ||
| 626 | cmpult $8, $21, $20 | ||
| 627 | addq $20, $0, $0 | ||
| 628 | addq $22, $0, $22 | ||
| 629 | cmpult $22, $0, $27 | ||
| 630 | addq $23, $27, $23 | ||
| 631 | stq $8, 24($16) | ||
| 632 | bis $31, $31, $8 | ||
| 633 | mulq $2, $7, $17 | ||
| 634 | umulh $2, $7, $18 | ||
| 635 | addq $22, $17, $22 | ||
| 636 | cmpult $22, $17, $24 | ||
| 637 | addq $24, $18, $18 | ||
| 638 | addq $23, $18, $23 | ||
| 639 | cmpult $23, $18, $19 | ||
| 640 | addq $8, $19, $8 | ||
| 641 | mulq $4, $5, $25 | ||
| 642 | umulh $4, $5, $28 | ||
| 643 | addq $22, $25, $22 | ||
| 644 | cmpult $22, $25, $21 | ||
| 645 | addq $21, $28, $28 | ||
| 646 | addq $23, $28, $23 | ||
| 647 | cmpult $23, $28, $20 | ||
| 648 | addq $8, $20, $8 | ||
| 649 | mulq $6, $3, $0 | ||
| 650 | umulh $6, $3, $27 | ||
| 651 | addq $22, $0, $22 | ||
| 652 | cmpult $22, $0, $1 | ||
| 653 | addq $1, $27, $27 | ||
| 654 | addq $23, $27, $23 | ||
| 655 | cmpult $23, $27, $17 | ||
| 656 | addq $8, $17, $8 | ||
| 657 | stq $22, 32($16) | ||
| 658 | bis $31, $31, $22 | ||
| 659 | mulq $4, $7, $24 | ||
| 660 | umulh $4, $7, $18 | ||
| 661 | addq $23, $24, $23 | ||
| 662 | cmpult $23, $24, $19 | ||
| 663 | addq $19, $18, $18 | ||
| 664 | addq $8, $18, $8 | ||
| 665 | cmpult $8, $18, $2 | ||
| 666 | addq $22, $2, $22 | ||
| 667 | mulq $6, $5, $25 | ||
| 668 | umulh $6, $5, $21 | ||
| 669 | addq $23, $25, $23 | ||
| 670 | cmpult $23, $25, $28 | ||
| 671 | addq $28, $21, $21 | ||
| 672 | addq $8, $21, $8 | ||
| 673 | cmpult $8, $21, $20 | ||
| 674 | addq $22, $20, $22 | ||
| 675 | stq $23, 40($16) | ||
| 676 | bis $31, $31, $23 | ||
| 677 | mulq $6, $7, $0 | ||
| 678 | umulh $6, $7, $1 | ||
| 679 | addq $8, $0, $8 | ||
| 680 | cmpult $8, $0, $27 | ||
| 681 | addq $27, $1, $1 | ||
| 682 | addq $22, $1, $22 | ||
| 683 | cmpult $22, $1, $17 | ||
| 684 | addq $23, $17, $23 | ||
| 685 | stq $8, 48($16) | ||
| 686 | stq $22, 56($16) | ||
| 687 | ret $31,($26),1 | ||
| 688 | .end bn_mul_comba4 | ||
| 689 | .text | ||
| 690 | .align 3 | ||
| 691 | .globl bn_mul_comba8 | ||
| 692 | .ent bn_mul_comba8 | ||
| 693 | bn_mul_comba8: | ||
| 694 | bn_mul_comba8..ng: | ||
| 695 | .frame $30,0,$26,0 | ||
| 696 | .prologue 0 | ||
| 697 | ldq $1, 0($17) | ||
| 698 | ldq $2, 0($18) | ||
| 699 | zapnot $1, 15, $7 | ||
| 700 | srl $2, 32, $8 | ||
| 701 | mulq $8, $7, $22 | ||
| 702 | srl $1, 32, $6 | ||
| 703 | zapnot $2, 15, $5 | ||
| 704 | mulq $5, $6, $4 | ||
| 705 | mulq $7, $5, $24 | ||
| 706 | addq $22, $4, $22 | ||
| 707 | cmpult $22, $4, $1 | ||
| 708 | mulq $6, $8, $3 | ||
| 709 | beq $1, $173 | ||
| 710 | bis $31, 1, $1 | ||
| 711 | sll $1, 32, $1 | ||
| 712 | addq $3, $1, $3 | ||
| 713 | $173: | ||
| 714 | sll $22, 32, $4 | ||
| 715 | addq $24, $4, $24 | ||
| 716 | stq $24, 0($16) | ||
| 717 | ldq $2, 0($17) | ||
| 718 | ldq $1, 8($18) | ||
| 719 | zapnot $2, 15, $7 | ||
| 720 | srl $1, 32, $8 | ||
| 721 | mulq $8, $7, $25 | ||
| 722 | zapnot $1, 15, $5 | ||
| 723 | mulq $7, $5, $0 | ||
| 724 | srl $2, 32, $6 | ||
| 725 | mulq $5, $6, $23 | ||
| 726 | mulq $6, $8, $6 | ||
| 727 | srl $22, 32, $1 | ||
| 728 | cmpult $24, $4, $2 | ||
| 729 | addq $3, $1, $3 | ||
| 730 | addq $2, $3, $22 | ||
| 731 | addq $25, $23, $25 | ||
| 732 | cmpult $25, $23, $1 | ||
| 733 | bis $31, 1, $2 | ||
| 734 | beq $1, $177 | ||
| 735 | sll $2, 32, $1 | ||
| 736 | addq $6, $1, $6 | ||
| 737 | $177: | ||
| 738 | sll $25, 32, $23 | ||
| 739 | ldq $1, 0($18) | ||
| 740 | addq $0, $23, $0 | ||
| 741 | bis $0, $0, $7 | ||
| 742 | ldq $3, 8($17) | ||
| 743 | addq $22, $7, $22 | ||
| 744 | srl $1, 32, $8 | ||
| 745 | cmpult $22, $7, $4 | ||
| 746 | zapnot $3, 15, $7 | ||
| 747 | mulq $8, $7, $28 | ||
| 748 | zapnot $1, 15, $5 | ||
| 749 | mulq $7, $5, $21 | ||
| 750 | srl $25, 32, $1 | ||
| 751 | cmpult $0, $23, $2 | ||
| 752 | addq $6, $1, $6 | ||
| 753 | addq $2, $6, $6 | ||
| 754 | addq $4, $6, $24 | ||
| 755 | srl $3, 32, $6 | ||
| 756 | mulq $5, $6, $2 | ||
| 757 | mulq $6, $8, $6 | ||
| 758 | addq $28, $2, $28 | ||
| 759 | cmpult $28, $2, $1 | ||
| 760 | bis $31, 1, $2 | ||
| 761 | beq $1, $181 | ||
| 762 | sll $2, 32, $1 | ||
| 763 | addq $6, $1, $6 | ||
| 764 | $181: | ||
| 765 | sll $28, 32, $2 | ||
| 766 | addq $21, $2, $21 | ||
| 767 | bis $21, $21, $7 | ||
| 768 | addq $22, $7, $22 | ||
| 769 | stq $22, 8($16) | ||
| 770 | ldq $3, 16($17) | ||
| 771 | ldq $1, 0($18) | ||
| 772 | cmpult $22, $7, $4 | ||
| 773 | zapnot $3, 15, $7 | ||
| 774 | srl $1, 32, $8 | ||
| 775 | mulq $8, $7, $22 | ||
| 776 | zapnot $1, 15, $5 | ||
| 777 | mulq $7, $5, $20 | ||
| 778 | srl $28, 32, $1 | ||
| 779 | cmpult $21, $2, $2 | ||
| 780 | addq $6, $1, $6 | ||
| 781 | addq $2, $6, $6 | ||
| 782 | addq $4, $6, $6 | ||
| 783 | addq $24, $6, $24 | ||
| 784 | cmpult $24, $6, $23 | ||
| 785 | srl $3, 32, $6 | ||
| 786 | mulq $5, $6, $2 | ||
| 787 | mulq $6, $8, $6 | ||
| 788 | addq $22, $2, $22 | ||
| 789 | cmpult $22, $2, $1 | ||
| 790 | bis $31, 1, $2 | ||
| 791 | beq $1, $185 | ||
| 792 | sll $2, 32, $1 | ||
| 793 | addq $6, $1, $6 | ||
| 794 | $185: | ||
| 795 | sll $22, 32, $2 | ||
| 796 | ldq $1, 8($18) | ||
| 797 | addq $20, $2, $20 | ||
| 798 | bis $20, $20, $7 | ||
| 799 | ldq $4, 8($17) | ||
| 800 | addq $24, $7, $24 | ||
| 801 | srl $1, 32, $8 | ||
| 802 | cmpult $24, $7, $3 | ||
| 803 | zapnot $4, 15, $7 | ||
| 804 | mulq $8, $7, $25 | ||
| 805 | zapnot $1, 15, $5 | ||
| 806 | mulq $7, $5, $0 | ||
| 807 | srl $22, 32, $1 | ||
| 808 | cmpult $20, $2, $2 | ||
| 809 | addq $6, $1, $6 | ||
| 810 | addq $2, $6, $6 | ||
| 811 | addq $3, $6, $6 | ||
| 812 | addq $23, $6, $23 | ||
| 813 | cmpult $23, $6, $22 | ||
| 814 | srl $4, 32, $6 | ||
| 815 | mulq $5, $6, $5 | ||
| 816 | bis $31, 1, $21 | ||
| 817 | addq $25, $5, $25 | ||
| 818 | cmpult $25, $5, $1 | ||
| 819 | mulq $6, $8, $6 | ||
| 820 | beq $1, $189 | ||
| 821 | sll $21, 32, $1 | ||
| 822 | addq $6, $1, $6 | ||
| 823 | $189: | ||
| 824 | sll $25, 32, $5 | ||
| 825 | ldq $2, 16($18) | ||
| 826 | addq $0, $5, $0 | ||
| 827 | bis $0, $0, $7 | ||
| 828 | ldq $4, 0($17) | ||
| 829 | addq $24, $7, $24 | ||
| 830 | srl $2, 32, $8 | ||
| 831 | cmpult $24, $7, $3 | ||
| 832 | zapnot $4, 15, $7 | ||
| 833 | mulq $8, $7, $28 | ||
| 834 | srl $25, 32, $1 | ||
| 835 | addq $6, $1, $6 | ||
| 836 | cmpult $0, $5, $1 | ||
| 837 | zapnot $2, 15, $5 | ||
| 838 | addq $1, $6, $6 | ||
| 839 | addq $3, $6, $6 | ||
| 840 | addq $23, $6, $23 | ||
| 841 | cmpult $23, $6, $1 | ||
| 842 | srl $4, 32, $6 | ||
| 843 | mulq $5, $6, $25 | ||
| 844 | mulq $7, $5, $2 | ||
| 845 | addq $1, $22, $22 | ||
| 846 | addq $28, $25, $28 | ||
| 847 | cmpult $28, $25, $1 | ||
| 848 | mulq $6, $8, $6 | ||
| 849 | beq $1, $193 | ||
| 850 | sll $21, 32, $1 | ||
| 851 | addq $6, $1, $6 | ||
| 852 | $193: | ||
| 853 | sll $28, 32, $25 | ||
| 854 | addq $2, $25, $2 | ||
| 855 | bis $2, $2, $7 | ||
| 856 | addq $24, $7, $24 | ||
| 857 | stq $24, 16($16) | ||
| 858 | ldq $4, 0($17) | ||
| 859 | ldq $5, 24($18) | ||
| 860 | cmpult $24, $7, $3 | ||
| 861 | zapnot $4, 15, $7 | ||
| 862 | srl $5, 32, $8 | ||
| 863 | mulq $8, $7, $0 | ||
| 864 | srl $28, 32, $1 | ||
| 865 | cmpult $2, $25, $2 | ||
| 866 | addq $6, $1, $6 | ||
| 867 | addq $2, $6, $6 | ||
| 868 | addq $3, $6, $6 | ||
| 869 | addq $23, $6, $23 | ||
| 870 | cmpult $23, $6, $1 | ||
| 871 | srl $4, 32, $6 | ||
| 872 | zapnot $5, 15, $5 | ||
| 873 | mulq $5, $6, $24 | ||
| 874 | mulq $7, $5, $2 | ||
| 875 | addq $1, $22, $22 | ||
| 876 | addq $0, $24, $0 | ||
| 877 | cmpult $0, $24, $1 | ||
| 878 | mulq $6, $8, $6 | ||
| 879 | beq $1, $197 | ||
| 880 | sll $21, 32, $1 | ||
| 881 | addq $6, $1, $6 | ||
| 882 | $197: | ||
| 883 | sll $0, 32, $24 | ||
| 884 | ldq $1, 16($18) | ||
| 885 | addq $2, $24, $2 | ||
| 886 | bis $2, $2, $7 | ||
| 887 | ldq $4, 8($17) | ||
| 888 | addq $23, $7, $23 | ||
| 889 | srl $1, 32, $8 | ||
| 890 | cmpult $23, $7, $3 | ||
| 891 | zapnot $4, 15, $7 | ||
| 892 | mulq $8, $7, $25 | ||
| 893 | zapnot $1, 15, $5 | ||
| 894 | mulq $7, $5, $21 | ||
| 895 | srl $0, 32, $1 | ||
| 896 | cmpult $2, $24, $2 | ||
| 897 | addq $6, $1, $6 | ||
| 898 | addq $2, $6, $6 | ||
| 899 | addq $3, $6, $6 | ||
| 900 | addq $22, $6, $22 | ||
| 901 | cmpult $22, $6, $24 | ||
| 902 | srl $4, 32, $6 | ||
| 903 | mulq $5, $6, $5 | ||
| 904 | bis $31, 1, $20 | ||
| 905 | addq $25, $5, $25 | ||
| 906 | cmpult $25, $5, $1 | ||
| 907 | mulq $6, $8, $6 | ||
| 908 | beq $1, $201 | ||
| 909 | sll $20, 32, $1 | ||
| 910 | addq $6, $1, $6 | ||
| 911 | $201: | ||
| 912 | sll $25, 32, $5 | ||
| 913 | ldq $2, 8($18) | ||
| 914 | addq $21, $5, $21 | ||
| 915 | bis $21, $21, $7 | ||
| 916 | ldq $4, 16($17) | ||
| 917 | addq $23, $7, $23 | ||
| 918 | srl $2, 32, $8 | ||
| 919 | cmpult $23, $7, $3 | ||
| 920 | zapnot $4, 15, $7 | ||
| 921 | mulq $8, $7, $28 | ||
| 922 | srl $25, 32, $1 | ||
| 923 | addq $6, $1, $6 | ||
| 924 | cmpult $21, $5, $1 | ||
| 925 | zapnot $2, 15, $5 | ||
| 926 | addq $1, $6, $6 | ||
| 927 | addq $3, $6, $6 | ||
| 928 | addq $22, $6, $22 | ||
| 929 | cmpult $22, $6, $1 | ||
| 930 | srl $4, 32, $6 | ||
| 931 | mulq $5, $6, $25 | ||
| 932 | mulq $7, $5, $5 | ||
| 933 | addq $1, $24, $24 | ||
| 934 | addq $28, $25, $28 | ||
| 935 | cmpult $28, $25, $1 | ||
| 936 | mulq $6, $8, $6 | ||
| 937 | beq $1, $205 | ||
| 938 | sll $20, 32, $1 | ||
| 939 | addq $6, $1, $6 | ||
| 940 | $205: | ||
| 941 | sll $28, 32, $25 | ||
| 942 | ldq $2, 0($18) | ||
| 943 | addq $5, $25, $5 | ||
| 944 | bis $5, $5, $7 | ||
| 945 | ldq $4, 24($17) | ||
| 946 | addq $23, $7, $23 | ||
| 947 | srl $2, 32, $8 | ||
| 948 | cmpult $23, $7, $3 | ||
| 949 | zapnot $4, 15, $7 | ||
| 950 | mulq $8, $7, $0 | ||
| 951 | srl $28, 32, $1 | ||
| 952 | addq $6, $1, $6 | ||
| 953 | cmpult $5, $25, $1 | ||
| 954 | zapnot $2, 15, $5 | ||
| 955 | addq $1, $6, $6 | ||
| 956 | addq $3, $6, $6 | ||
| 957 | addq $22, $6, $22 | ||
| 958 | cmpult $22, $6, $1 | ||
| 959 | srl $4, 32, $6 | ||
| 960 | mulq $5, $6, $25 | ||
| 961 | mulq $7, $5, $2 | ||
| 962 | addq $1, $24, $24 | ||
| 963 | addq $0, $25, $0 | ||
| 964 | cmpult $0, $25, $1 | ||
| 965 | mulq $6, $8, $6 | ||
| 966 | beq $1, $209 | ||
| 967 | sll $20, 32, $1 | ||
| 968 | addq $6, $1, $6 | ||
| 969 | $209: | ||
| 970 | sll $0, 32, $25 | ||
| 971 | addq $2, $25, $2 | ||
| 972 | bis $2, $2, $7 | ||
| 973 | addq $23, $7, $23 | ||
| 974 | stq $23, 24($16) | ||
| 975 | ldq $4, 32($17) | ||
| 976 | ldq $5, 0($18) | ||
| 977 | cmpult $23, $7, $3 | ||
| 978 | zapnot $4, 15, $7 | ||
| 979 | srl $5, 32, $8 | ||
| 980 | mulq $8, $7, $28 | ||
| 981 | srl $0, 32, $1 | ||
| 982 | cmpult $2, $25, $2 | ||
| 983 | addq $6, $1, $6 | ||
| 984 | addq $2, $6, $6 | ||
| 985 | addq $3, $6, $6 | ||
| 986 | addq $22, $6, $22 | ||
| 987 | cmpult $22, $6, $1 | ||
| 988 | srl $4, 32, $6 | ||
| 989 | zapnot $5, 15, $5 | ||
| 990 | mulq $5, $6, $23 | ||
| 991 | mulq $7, $5, $2 | ||
| 992 | addq $1, $24, $24 | ||
| 993 | addq $28, $23, $28 | ||
| 994 | cmpult $28, $23, $1 | ||
| 995 | mulq $6, $8, $6 | ||
| 996 | beq $1, $213 | ||
| 997 | sll $20, 32, $1 | ||
| 998 | addq $6, $1, $6 | ||
| 999 | $213: | ||
| 1000 | sll $28, 32, $23 | ||
| 1001 | ldq $1, 8($18) | ||
| 1002 | addq $2, $23, $2 | ||
| 1003 | bis $2, $2, $7 | ||
| 1004 | ldq $4, 24($17) | ||
| 1005 | addq $22, $7, $22 | ||
| 1006 | srl $1, 32, $8 | ||
| 1007 | cmpult $22, $7, $3 | ||
| 1008 | zapnot $4, 15, $7 | ||
| 1009 | mulq $8, $7, $25 | ||
| 1010 | zapnot $1, 15, $5 | ||
| 1011 | mulq $7, $5, $0 | ||
| 1012 | srl $28, 32, $1 | ||
| 1013 | cmpult $2, $23, $2 | ||
| 1014 | addq $6, $1, $6 | ||
| 1015 | addq $2, $6, $6 | ||
| 1016 | addq $3, $6, $6 | ||
| 1017 | addq $24, $6, $24 | ||
| 1018 | cmpult $24, $6, $23 | ||
| 1019 | srl $4, 32, $6 | ||
| 1020 | mulq $5, $6, $5 | ||
| 1021 | bis $31, 1, $21 | ||
| 1022 | addq $25, $5, $25 | ||
| 1023 | cmpult $25, $5, $1 | ||
| 1024 | mulq $6, $8, $6 | ||
| 1025 | beq $1, $217 | ||
| 1026 | sll $21, 32, $1 | ||
| 1027 | addq $6, $1, $6 | ||
| 1028 | $217: | ||
| 1029 | sll $25, 32, $5 | ||
| 1030 | ldq $2, 16($18) | ||
| 1031 | addq $0, $5, $0 | ||
| 1032 | bis $0, $0, $7 | ||
| 1033 | ldq $4, 16($17) | ||
| 1034 | addq $22, $7, $22 | ||
| 1035 | srl $2, 32, $8 | ||
| 1036 | cmpult $22, $7, $3 | ||
| 1037 | zapnot $4, 15, $7 | ||
| 1038 | mulq $8, $7, $28 | ||
| 1039 | srl $25, 32, $1 | ||
| 1040 | addq $6, $1, $6 | ||
| 1041 | cmpult $0, $5, $1 | ||
| 1042 | zapnot $2, 15, $5 | ||
| 1043 | addq $1, $6, $6 | ||
| 1044 | addq $3, $6, $6 | ||
| 1045 | addq $24, $6, $24 | ||
| 1046 | cmpult $24, $6, $1 | ||
| 1047 | srl $4, 32, $6 | ||
| 1048 | mulq $5, $6, $25 | ||
| 1049 | mulq $7, $5, $5 | ||
| 1050 | addq $1, $23, $23 | ||
| 1051 | addq $28, $25, $28 | ||
| 1052 | cmpult $28, $25, $1 | ||
| 1053 | mulq $6, $8, $6 | ||
| 1054 | beq $1, $221 | ||
| 1055 | sll $21, 32, $1 | ||
| 1056 | addq $6, $1, $6 | ||
| 1057 | $221: | ||
| 1058 | sll $28, 32, $25 | ||
| 1059 | ldq $2, 24($18) | ||
| 1060 | addq $5, $25, $5 | ||
| 1061 | bis $5, $5, $7 | ||
| 1062 | ldq $4, 8($17) | ||
| 1063 | addq $22, $7, $22 | ||
| 1064 | srl $2, 32, $8 | ||
| 1065 | cmpult $22, $7, $3 | ||
| 1066 | zapnot $4, 15, $7 | ||
| 1067 | mulq $8, $7, $0 | ||
| 1068 | srl $28, 32, $1 | ||
| 1069 | addq $6, $1, $6 | ||
| 1070 | cmpult $5, $25, $1 | ||
| 1071 | zapnot $2, 15, $5 | ||
| 1072 | addq $1, $6, $6 | ||
| 1073 | addq $3, $6, $6 | ||
| 1074 | addq $24, $6, $24 | ||
| 1075 | cmpult $24, $6, $1 | ||
| 1076 | srl $4, 32, $6 | ||
| 1077 | mulq $5, $6, $25 | ||
| 1078 | mulq $7, $5, $5 | ||
| 1079 | addq $1, $23, $23 | ||
| 1080 | addq $0, $25, $0 | ||
| 1081 | cmpult $0, $25, $1 | ||
| 1082 | mulq $6, $8, $6 | ||
| 1083 | beq $1, $225 | ||
| 1084 | sll $21, 32, $1 | ||
| 1085 | addq $6, $1, $6 | ||
| 1086 | $225: | ||
| 1087 | sll $0, 32, $25 | ||
| 1088 | ldq $2, 32($18) | ||
| 1089 | addq $5, $25, $5 | ||
| 1090 | bis $5, $5, $7 | ||
| 1091 | ldq $4, 0($17) | ||
| 1092 | addq $22, $7, $22 | ||
| 1093 | srl $2, 32, $8 | ||
| 1094 | cmpult $22, $7, $3 | ||
| 1095 | zapnot $4, 15, $7 | ||
| 1096 | mulq $8, $7, $28 | ||
| 1097 | srl $0, 32, $1 | ||
| 1098 | addq $6, $1, $6 | ||
| 1099 | cmpult $5, $25, $1 | ||
| 1100 | zapnot $2, 15, $5 | ||
| 1101 | addq $1, $6, $6 | ||
| 1102 | addq $3, $6, $6 | ||
| 1103 | addq $24, $6, $24 | ||
| 1104 | cmpult $24, $6, $1 | ||
| 1105 | srl $4, 32, $6 | ||
| 1106 | mulq $5, $6, $25 | ||
| 1107 | mulq $7, $5, $2 | ||
| 1108 | addq $1, $23, $23 | ||
| 1109 | addq $28, $25, $28 | ||
| 1110 | cmpult $28, $25, $1 | ||
| 1111 | mulq $6, $8, $6 | ||
| 1112 | beq $1, $229 | ||
| 1113 | sll $21, 32, $1 | ||
| 1114 | addq $6, $1, $6 | ||
| 1115 | $229: | ||
| 1116 | sll $28, 32, $25 | ||
| 1117 | addq $2, $25, $2 | ||
| 1118 | bis $2, $2, $7 | ||
| 1119 | addq $22, $7, $22 | ||
| 1120 | stq $22, 32($16) | ||
| 1121 | ldq $4, 0($17) | ||
| 1122 | ldq $5, 40($18) | ||
| 1123 | cmpult $22, $7, $3 | ||
| 1124 | zapnot $4, 15, $7 | ||
| 1125 | srl $5, 32, $8 | ||
| 1126 | mulq $8, $7, $0 | ||
| 1127 | srl $28, 32, $1 | ||
| 1128 | cmpult $2, $25, $2 | ||
| 1129 | addq $6, $1, $6 | ||
| 1130 | addq $2, $6, $6 | ||
| 1131 | addq $3, $6, $6 | ||
| 1132 | addq $24, $6, $24 | ||
| 1133 | cmpult $24, $6, $1 | ||
| 1134 | srl $4, 32, $6 | ||
| 1135 | zapnot $5, 15, $5 | ||
| 1136 | mulq $5, $6, $22 | ||
| 1137 | mulq $7, $5, $2 | ||
| 1138 | addq $1, $23, $23 | ||
| 1139 | addq $0, $22, $0 | ||
| 1140 | cmpult $0, $22, $1 | ||
| 1141 | mulq $6, $8, $6 | ||
| 1142 | beq $1, $233 | ||
| 1143 | sll $21, 32, $1 | ||
| 1144 | addq $6, $1, $6 | ||
| 1145 | $233: | ||
| 1146 | sll $0, 32, $22 | ||
| 1147 | ldq $1, 32($18) | ||
| 1148 | addq $2, $22, $2 | ||
| 1149 | bis $2, $2, $7 | ||
| 1150 | ldq $4, 8($17) | ||
| 1151 | addq $24, $7, $24 | ||
| 1152 | srl $1, 32, $8 | ||
| 1153 | cmpult $24, $7, $3 | ||
| 1154 | zapnot $4, 15, $7 | ||
| 1155 | mulq $8, $7, $25 | ||
| 1156 | zapnot $1, 15, $5 | ||
| 1157 | mulq $7, $5, $21 | ||
| 1158 | srl $0, 32, $1 | ||
| 1159 | cmpult $2, $22, $2 | ||
| 1160 | addq $6, $1, $6 | ||
| 1161 | addq $2, $6, $6 | ||
| 1162 | addq $3, $6, $6 | ||
| 1163 | addq $23, $6, $23 | ||
| 1164 | cmpult $23, $6, $22 | ||
| 1165 | srl $4, 32, $6 | ||
| 1166 | mulq $5, $6, $5 | ||
| 1167 | bis $31, 1, $20 | ||
| 1168 | addq $25, $5, $25 | ||
| 1169 | cmpult $25, $5, $1 | ||
| 1170 | mulq $6, $8, $6 | ||
| 1171 | beq $1, $237 | ||
| 1172 | sll $20, 32, $1 | ||
| 1173 | addq $6, $1, $6 | ||
| 1174 | $237: | ||
| 1175 | sll $25, 32, $5 | ||
| 1176 | ldq $2, 24($18) | ||
| 1177 | addq $21, $5, $21 | ||
| 1178 | bis $21, $21, $7 | ||
| 1179 | ldq $4, 16($17) | ||
| 1180 | addq $24, $7, $24 | ||
| 1181 | srl $2, 32, $8 | ||
| 1182 | cmpult $24, $7, $3 | ||
| 1183 | zapnot $4, 15, $7 | ||
| 1184 | mulq $8, $7, $28 | ||
| 1185 | srl $25, 32, $1 | ||
| 1186 | addq $6, $1, $6 | ||
| 1187 | cmpult $21, $5, $1 | ||
| 1188 | zapnot $2, 15, $5 | ||
| 1189 | addq $1, $6, $6 | ||
| 1190 | addq $3, $6, $6 | ||
| 1191 | addq $23, $6, $23 | ||
| 1192 | cmpult $23, $6, $1 | ||
| 1193 | srl $4, 32, $6 | ||
| 1194 | mulq $5, $6, $25 | ||
| 1195 | mulq $7, $5, $5 | ||
| 1196 | addq $1, $22, $22 | ||
| 1197 | addq $28, $25, $28 | ||
| 1198 | cmpult $28, $25, $1 | ||
| 1199 | mulq $6, $8, $6 | ||
| 1200 | beq $1, $241 | ||
| 1201 | sll $20, 32, $1 | ||
| 1202 | addq $6, $1, $6 | ||
| 1203 | $241: | ||
| 1204 | sll $28, 32, $25 | ||
| 1205 | ldq $2, 16($18) | ||
| 1206 | addq $5, $25, $5 | ||
| 1207 | bis $5, $5, $7 | ||
| 1208 | ldq $4, 24($17) | ||
| 1209 | addq $24, $7, $24 | ||
| 1210 | srl $2, 32, $8 | ||
| 1211 | cmpult $24, $7, $3 | ||
| 1212 | zapnot $4, 15, $7 | ||
| 1213 | mulq $8, $7, $0 | ||
| 1214 | srl $28, 32, $1 | ||
| 1215 | addq $6, $1, $6 | ||
| 1216 | cmpult $5, $25, $1 | ||
| 1217 | zapnot $2, 15, $5 | ||
| 1218 | addq $1, $6, $6 | ||
| 1219 | addq $3, $6, $6 | ||
| 1220 | addq $23, $6, $23 | ||
| 1221 | cmpult $23, $6, $1 | ||
| 1222 | srl $4, 32, $6 | ||
| 1223 | mulq $5, $6, $25 | ||
| 1224 | mulq $7, $5, $5 | ||
| 1225 | addq $1, $22, $22 | ||
| 1226 | addq $0, $25, $0 | ||
| 1227 | cmpult $0, $25, $1 | ||
| 1228 | mulq $6, $8, $6 | ||
| 1229 | beq $1, $245 | ||
| 1230 | sll $20, 32, $1 | ||
| 1231 | addq $6, $1, $6 | ||
| 1232 | $245: | ||
| 1233 | sll $0, 32, $25 | ||
| 1234 | ldq $2, 8($18) | ||
| 1235 | addq $5, $25, $5 | ||
| 1236 | bis $5, $5, $7 | ||
| 1237 | ldq $4, 32($17) | ||
| 1238 | addq $24, $7, $24 | ||
| 1239 | srl $2, 32, $8 | ||
| 1240 | cmpult $24, $7, $3 | ||
| 1241 | zapnot $4, 15, $7 | ||
| 1242 | mulq $8, $7, $28 | ||
| 1243 | srl $0, 32, $1 | ||
| 1244 | addq $6, $1, $6 | ||
| 1245 | cmpult $5, $25, $1 | ||
| 1246 | zapnot $2, 15, $5 | ||
| 1247 | addq $1, $6, $6 | ||
| 1248 | addq $3, $6, $6 | ||
| 1249 | addq $23, $6, $23 | ||
| 1250 | cmpult $23, $6, $1 | ||
| 1251 | srl $4, 32, $6 | ||
| 1252 | mulq $5, $6, $25 | ||
| 1253 | mulq $7, $5, $5 | ||
| 1254 | addq $1, $22, $22 | ||
| 1255 | addq $28, $25, $28 | ||
| 1256 | cmpult $28, $25, $1 | ||
| 1257 | mulq $6, $8, $6 | ||
| 1258 | beq $1, $249 | ||
| 1259 | sll $20, 32, $1 | ||
| 1260 | addq $6, $1, $6 | ||
| 1261 | $249: | ||
| 1262 | sll $28, 32, $25 | ||
| 1263 | ldq $2, 0($18) | ||
| 1264 | addq $5, $25, $5 | ||
| 1265 | bis $5, $5, $7 | ||
| 1266 | ldq $4, 40($17) | ||
| 1267 | addq $24, $7, $24 | ||
| 1268 | srl $2, 32, $8 | ||
| 1269 | cmpult $24, $7, $3 | ||
| 1270 | zapnot $4, 15, $7 | ||
| 1271 | mulq $8, $7, $0 | ||
| 1272 | srl $28, 32, $1 | ||
| 1273 | addq $6, $1, $6 | ||
| 1274 | cmpult $5, $25, $1 | ||
| 1275 | zapnot $2, 15, $5 | ||
| 1276 | addq $1, $6, $6 | ||
| 1277 | addq $3, $6, $6 | ||
| 1278 | addq $23, $6, $23 | ||
| 1279 | cmpult $23, $6, $1 | ||
| 1280 | srl $4, 32, $6 | ||
| 1281 | mulq $5, $6, $25 | ||
| 1282 | mulq $7, $5, $2 | ||
| 1283 | addq $1, $22, $22 | ||
| 1284 | addq $0, $25, $0 | ||
| 1285 | cmpult $0, $25, $1 | ||
| 1286 | mulq $6, $8, $6 | ||
| 1287 | beq $1, $253 | ||
| 1288 | sll $20, 32, $1 | ||
| 1289 | addq $6, $1, $6 | ||
| 1290 | $253: | ||
| 1291 | sll $0, 32, $25 | ||
| 1292 | addq $2, $25, $2 | ||
| 1293 | bis $2, $2, $7 | ||
| 1294 | addq $24, $7, $24 | ||
| 1295 | stq $24, 40($16) | ||
| 1296 | ldq $4, 48($17) | ||
| 1297 | ldq $5, 0($18) | ||
| 1298 | cmpult $24, $7, $3 | ||
| 1299 | zapnot $4, 15, $7 | ||
| 1300 | srl $5, 32, $8 | ||
| 1301 | mulq $8, $7, $28 | ||
| 1302 | srl $0, 32, $1 | ||
| 1303 | cmpult $2, $25, $2 | ||
| 1304 | addq $6, $1, $6 | ||
| 1305 | addq $2, $6, $6 | ||
| 1306 | addq $3, $6, $6 | ||
| 1307 | addq $23, $6, $23 | ||
| 1308 | cmpult $23, $6, $1 | ||
| 1309 | srl $4, 32, $6 | ||
| 1310 | zapnot $5, 15, $5 | ||
| 1311 | mulq $5, $6, $24 | ||
| 1312 | mulq $7, $5, $2 | ||
| 1313 | addq $1, $22, $22 | ||
| 1314 | addq $28, $24, $28 | ||
| 1315 | cmpult $28, $24, $1 | ||
| 1316 | mulq $6, $8, $6 | ||
| 1317 | beq $1, $257 | ||
| 1318 | sll $20, 32, $1 | ||
| 1319 | addq $6, $1, $6 | ||
| 1320 | $257: | ||
| 1321 | sll $28, 32, $24 | ||
| 1322 | ldq $1, 8($18) | ||
| 1323 | addq $2, $24, $2 | ||
| 1324 | bis $2, $2, $7 | ||
| 1325 | ldq $4, 40($17) | ||
| 1326 | addq $23, $7, $23 | ||
| 1327 | srl $1, 32, $8 | ||
| 1328 | cmpult $23, $7, $3 | ||
| 1329 | zapnot $4, 15, $7 | ||
| 1330 | mulq $8, $7, $25 | ||
| 1331 | zapnot $1, 15, $5 | ||
| 1332 | mulq $7, $5, $0 | ||
| 1333 | srl $28, 32, $1 | ||
| 1334 | cmpult $2, $24, $2 | ||
| 1335 | addq $6, $1, $6 | ||
| 1336 | addq $2, $6, $6 | ||
| 1337 | addq $3, $6, $6 | ||
| 1338 | addq $22, $6, $22 | ||
| 1339 | cmpult $22, $6, $24 | ||
| 1340 | srl $4, 32, $6 | ||
| 1341 | mulq $5, $6, $5 | ||
| 1342 | bis $31, 1, $21 | ||
| 1343 | addq $25, $5, $25 | ||
| 1344 | cmpult $25, $5, $1 | ||
| 1345 | mulq $6, $8, $6 | ||
| 1346 | beq $1, $261 | ||
| 1347 | sll $21, 32, $1 | ||
| 1348 | addq $6, $1, $6 | ||
| 1349 | $261: | ||
| 1350 | sll $25, 32, $5 | ||
| 1351 | ldq $2, 16($18) | ||
| 1352 | addq $0, $5, $0 | ||
| 1353 | bis $0, $0, $7 | ||
| 1354 | ldq $4, 32($17) | ||
| 1355 | addq $23, $7, $23 | ||
| 1356 | srl $2, 32, $8 | ||
| 1357 | cmpult $23, $7, $3 | ||
| 1358 | zapnot $4, 15, $7 | ||
| 1359 | mulq $8, $7, $28 | ||
| 1360 | srl $25, 32, $1 | ||
| 1361 | addq $6, $1, $6 | ||
| 1362 | cmpult $0, $5, $1 | ||
| 1363 | zapnot $2, 15, $5 | ||
| 1364 | addq $1, $6, $6 | ||
| 1365 | addq $3, $6, $6 | ||
| 1366 | addq $22, $6, $22 | ||
| 1367 | cmpult $22, $6, $1 | ||
| 1368 | srl $4, 32, $6 | ||
| 1369 | mulq $5, $6, $25 | ||
| 1370 | mulq $7, $5, $5 | ||
| 1371 | addq $1, $24, $24 | ||
| 1372 | addq $28, $25, $28 | ||
| 1373 | cmpult $28, $25, $1 | ||
| 1374 | mulq $6, $8, $6 | ||
| 1375 | beq $1, $265 | ||
| 1376 | sll $21, 32, $1 | ||
| 1377 | addq $6, $1, $6 | ||
| 1378 | $265: | ||
| 1379 | sll $28, 32, $25 | ||
| 1380 | ldq $2, 24($18) | ||
| 1381 | addq $5, $25, $5 | ||
| 1382 | bis $5, $5, $7 | ||
| 1383 | ldq $4, 24($17) | ||
| 1384 | addq $23, $7, $23 | ||
| 1385 | srl $2, 32, $8 | ||
| 1386 | cmpult $23, $7, $3 | ||
| 1387 | zapnot $4, 15, $7 | ||
| 1388 | mulq $8, $7, $0 | ||
| 1389 | srl $28, 32, $1 | ||
| 1390 | addq $6, $1, $6 | ||
| 1391 | cmpult $5, $25, $1 | ||
| 1392 | zapnot $2, 15, $5 | ||
| 1393 | addq $1, $6, $6 | ||
| 1394 | addq $3, $6, $6 | ||
| 1395 | addq $22, $6, $22 | ||
| 1396 | cmpult $22, $6, $1 | ||
| 1397 | srl $4, 32, $6 | ||
| 1398 | mulq $5, $6, $25 | ||
| 1399 | mulq $7, $5, $5 | ||
| 1400 | addq $1, $24, $24 | ||
| 1401 | addq $0, $25, $0 | ||
| 1402 | cmpult $0, $25, $1 | ||
| 1403 | mulq $6, $8, $6 | ||
| 1404 | beq $1, $269 | ||
| 1405 | sll $21, 32, $1 | ||
| 1406 | addq $6, $1, $6 | ||
| 1407 | $269: | ||
| 1408 | sll $0, 32, $25 | ||
| 1409 | ldq $2, 32($18) | ||
| 1410 | addq $5, $25, $5 | ||
| 1411 | bis $5, $5, $7 | ||
| 1412 | ldq $4, 16($17) | ||
| 1413 | addq $23, $7, $23 | ||
| 1414 | srl $2, 32, $8 | ||
| 1415 | cmpult $23, $7, $3 | ||
| 1416 | zapnot $4, 15, $7 | ||
| 1417 | mulq $8, $7, $28 | ||
| 1418 | srl $0, 32, $1 | ||
| 1419 | addq $6, $1, $6 | ||
| 1420 | cmpult $5, $25, $1 | ||
| 1421 | zapnot $2, 15, $5 | ||
| 1422 | addq $1, $6, $6 | ||
| 1423 | addq $3, $6, $6 | ||
| 1424 | addq $22, $6, $22 | ||
| 1425 | cmpult $22, $6, $1 | ||
| 1426 | srl $4, 32, $6 | ||
| 1427 | mulq $5, $6, $25 | ||
| 1428 | mulq $7, $5, $5 | ||
| 1429 | addq $1, $24, $24 | ||
| 1430 | addq $28, $25, $28 | ||
| 1431 | cmpult $28, $25, $1 | ||
| 1432 | mulq $6, $8, $6 | ||
| 1433 | beq $1, $273 | ||
| 1434 | sll $21, 32, $1 | ||
| 1435 | addq $6, $1, $6 | ||
| 1436 | $273: | ||
| 1437 | sll $28, 32, $25 | ||
| 1438 | ldq $2, 40($18) | ||
| 1439 | addq $5, $25, $5 | ||
| 1440 | bis $5, $5, $7 | ||
| 1441 | ldq $4, 8($17) | ||
| 1442 | addq $23, $7, $23 | ||
| 1443 | srl $2, 32, $8 | ||
| 1444 | cmpult $23, $7, $3 | ||
| 1445 | zapnot $4, 15, $7 | ||
| 1446 | mulq $8, $7, $0 | ||
| 1447 | srl $28, 32, $1 | ||
| 1448 | addq $6, $1, $6 | ||
| 1449 | cmpult $5, $25, $1 | ||
| 1450 | zapnot $2, 15, $5 | ||
| 1451 | addq $1, $6, $6 | ||
| 1452 | addq $3, $6, $6 | ||
| 1453 | addq $22, $6, $22 | ||
| 1454 | cmpult $22, $6, $1 | ||
| 1455 | srl $4, 32, $6 | ||
| 1456 | mulq $5, $6, $25 | ||
| 1457 | mulq $7, $5, $5 | ||
| 1458 | addq $1, $24, $24 | ||
| 1459 | addq $0, $25, $0 | ||
| 1460 | cmpult $0, $25, $1 | ||
| 1461 | mulq $6, $8, $6 | ||
| 1462 | beq $1, $277 | ||
| 1463 | sll $21, 32, $1 | ||
| 1464 | addq $6, $1, $6 | ||
| 1465 | $277: | ||
| 1466 | sll $0, 32, $25 | ||
| 1467 | ldq $2, 48($18) | ||
| 1468 | addq $5, $25, $5 | ||
| 1469 | bis $5, $5, $7 | ||
| 1470 | ldq $4, 0($17) | ||
| 1471 | addq $23, $7, $23 | ||
| 1472 | srl $2, 32, $8 | ||
| 1473 | cmpult $23, $7, $3 | ||
| 1474 | zapnot $4, 15, $7 | ||
| 1475 | mulq $8, $7, $28 | ||
| 1476 | srl $0, 32, $1 | ||
| 1477 | addq $6, $1, $6 | ||
| 1478 | cmpult $5, $25, $1 | ||
| 1479 | zapnot $2, 15, $5 | ||
| 1480 | addq $1, $6, $6 | ||
| 1481 | addq $3, $6, $6 | ||
| 1482 | addq $22, $6, $22 | ||
| 1483 | cmpult $22, $6, $1 | ||
| 1484 | srl $4, 32, $6 | ||
| 1485 | mulq $5, $6, $25 | ||
| 1486 | mulq $7, $5, $2 | ||
| 1487 | addq $1, $24, $24 | ||
| 1488 | addq $28, $25, $28 | ||
| 1489 | cmpult $28, $25, $1 | ||
| 1490 | mulq $6, $8, $6 | ||
| 1491 | beq $1, $281 | ||
| 1492 | sll $21, 32, $1 | ||
| 1493 | addq $6, $1, $6 | ||
| 1494 | $281: | ||
| 1495 | sll $28, 32, $25 | ||
| 1496 | addq $2, $25, $2 | ||
| 1497 | bis $2, $2, $7 | ||
| 1498 | addq $23, $7, $23 | ||
| 1499 | stq $23, 48($16) | ||
| 1500 | ldq $4, 0($17) | ||
| 1501 | ldq $5, 56($18) | ||
| 1502 | cmpult $23, $7, $3 | ||
| 1503 | zapnot $4, 15, $7 | ||
| 1504 | srl $5, 32, $8 | ||
| 1505 | mulq $8, $7, $0 | ||
| 1506 | srl $28, 32, $1 | ||
| 1507 | cmpult $2, $25, $2 | ||
| 1508 | addq $6, $1, $6 | ||
| 1509 | addq $2, $6, $6 | ||
| 1510 | addq $3, $6, $6 | ||
| 1511 | addq $22, $6, $22 | ||
| 1512 | cmpult $22, $6, $1 | ||
| 1513 | srl $4, 32, $6 | ||
| 1514 | zapnot $5, 15, $5 | ||
| 1515 | mulq $5, $6, $23 | ||
| 1516 | mulq $7, $5, $2 | ||
| 1517 | addq $1, $24, $24 | ||
| 1518 | addq $0, $23, $0 | ||
| 1519 | cmpult $0, $23, $1 | ||
| 1520 | mulq $6, $8, $6 | ||
| 1521 | beq $1, $285 | ||
| 1522 | sll $21, 32, $1 | ||
| 1523 | addq $6, $1, $6 | ||
| 1524 | $285: | ||
| 1525 | sll $0, 32, $23 | ||
| 1526 | ldq $1, 48($18) | ||
| 1527 | addq $2, $23, $2 | ||
| 1528 | bis $2, $2, $7 | ||
| 1529 | ldq $4, 8($17) | ||
| 1530 | addq $22, $7, $22 | ||
| 1531 | srl $1, 32, $8 | ||
| 1532 | cmpult $22, $7, $3 | ||
| 1533 | zapnot $4, 15, $7 | ||
| 1534 | mulq $8, $7, $25 | ||
| 1535 | zapnot $1, 15, $5 | ||
| 1536 | mulq $7, $5, $21 | ||
| 1537 | srl $0, 32, $1 | ||
| 1538 | cmpult $2, $23, $2 | ||
| 1539 | addq $6, $1, $6 | ||
| 1540 | addq $2, $6, $6 | ||
| 1541 | addq $3, $6, $6 | ||
| 1542 | addq $24, $6, $24 | ||
| 1543 | cmpult $24, $6, $23 | ||
| 1544 | srl $4, 32, $6 | ||
| 1545 | mulq $5, $6, $5 | ||
| 1546 | bis $31, 1, $20 | ||
| 1547 | addq $25, $5, $25 | ||
| 1548 | cmpult $25, $5, $1 | ||
| 1549 | mulq $6, $8, $6 | ||
| 1550 | beq $1, $289 | ||
| 1551 | sll $20, 32, $1 | ||
| 1552 | addq $6, $1, $6 | ||
| 1553 | $289: | ||
| 1554 | sll $25, 32, $5 | ||
| 1555 | ldq $2, 40($18) | ||
| 1556 | addq $21, $5, $21 | ||
| 1557 | bis $21, $21, $7 | ||
| 1558 | ldq $4, 16($17) | ||
| 1559 | addq $22, $7, $22 | ||
| 1560 | srl $2, 32, $8 | ||
| 1561 | cmpult $22, $7, $3 | ||
| 1562 | zapnot $4, 15, $7 | ||
| 1563 | mulq $8, $7, $28 | ||
| 1564 | srl $25, 32, $1 | ||
| 1565 | addq $6, $1, $6 | ||
| 1566 | cmpult $21, $5, $1 | ||
| 1567 | zapnot $2, 15, $5 | ||
| 1568 | addq $1, $6, $6 | ||
| 1569 | addq $3, $6, $6 | ||
| 1570 | addq $24, $6, $24 | ||
| 1571 | cmpult $24, $6, $1 | ||
| 1572 | srl $4, 32, $6 | ||
| 1573 | mulq $5, $6, $25 | ||
| 1574 | mulq $7, $5, $5 | ||
| 1575 | addq $1, $23, $23 | ||
| 1576 | addq $28, $25, $28 | ||
| 1577 | cmpult $28, $25, $1 | ||
| 1578 | mulq $6, $8, $6 | ||
| 1579 | beq $1, $293 | ||
| 1580 | sll $20, 32, $1 | ||
| 1581 | addq $6, $1, $6 | ||
| 1582 | $293: | ||
| 1583 | sll $28, 32, $25 | ||
| 1584 | ldq $2, 32($18) | ||
| 1585 | addq $5, $25, $5 | ||
| 1586 | bis $5, $5, $7 | ||
| 1587 | ldq $4, 24($17) | ||
| 1588 | addq $22, $7, $22 | ||
| 1589 | srl $2, 32, $8 | ||
| 1590 | cmpult $22, $7, $3 | ||
| 1591 | zapnot $4, 15, $7 | ||
| 1592 | mulq $8, $7, $0 | ||
| 1593 | srl $28, 32, $1 | ||
| 1594 | addq $6, $1, $6 | ||
| 1595 | cmpult $5, $25, $1 | ||
| 1596 | zapnot $2, 15, $5 | ||
| 1597 | addq $1, $6, $6 | ||
| 1598 | addq $3, $6, $6 | ||
| 1599 | addq $24, $6, $24 | ||
| 1600 | cmpult $24, $6, $1 | ||
| 1601 | srl $4, 32, $6 | ||
| 1602 | mulq $5, $6, $25 | ||
| 1603 | mulq $7, $5, $5 | ||
| 1604 | addq $1, $23, $23 | ||
| 1605 | addq $0, $25, $0 | ||
| 1606 | cmpult $0, $25, $1 | ||
| 1607 | mulq $6, $8, $6 | ||
| 1608 | beq $1, $297 | ||
| 1609 | sll $20, 32, $1 | ||
| 1610 | addq $6, $1, $6 | ||
| 1611 | $297: | ||
| 1612 | sll $0, 32, $25 | ||
| 1613 | ldq $2, 24($18) | ||
| 1614 | addq $5, $25, $5 | ||
| 1615 | bis $5, $5, $7 | ||
| 1616 | ldq $4, 32($17) | ||
| 1617 | addq $22, $7, $22 | ||
| 1618 | srl $2, 32, $8 | ||
| 1619 | cmpult $22, $7, $3 | ||
| 1620 | zapnot $4, 15, $7 | ||
| 1621 | mulq $8, $7, $28 | ||
| 1622 | srl $0, 32, $1 | ||
| 1623 | addq $6, $1, $6 | ||
| 1624 | cmpult $5, $25, $1 | ||
| 1625 | zapnot $2, 15, $5 | ||
| 1626 | addq $1, $6, $6 | ||
| 1627 | addq $3, $6, $6 | ||
| 1628 | addq $24, $6, $24 | ||
| 1629 | cmpult $24, $6, $1 | ||
| 1630 | srl $4, 32, $6 | ||
| 1631 | mulq $5, $6, $25 | ||
| 1632 | mulq $7, $5, $5 | ||
| 1633 | addq $1, $23, $23 | ||
| 1634 | addq $28, $25, $28 | ||
| 1635 | cmpult $28, $25, $1 | ||
| 1636 | mulq $6, $8, $6 | ||
| 1637 | beq $1, $301 | ||
| 1638 | sll $20, 32, $1 | ||
| 1639 | addq $6, $1, $6 | ||
| 1640 | $301: | ||
| 1641 | sll $28, 32, $25 | ||
| 1642 | ldq $2, 16($18) | ||
| 1643 | addq $5, $25, $5 | ||
| 1644 | bis $5, $5, $7 | ||
| 1645 | ldq $4, 40($17) | ||
| 1646 | addq $22, $7, $22 | ||
| 1647 | srl $2, 32, $8 | ||
| 1648 | cmpult $22, $7, $3 | ||
| 1649 | zapnot $4, 15, $7 | ||
| 1650 | mulq $8, $7, $0 | ||
| 1651 | srl $28, 32, $1 | ||
| 1652 | addq $6, $1, $6 | ||
| 1653 | cmpult $5, $25, $1 | ||
| 1654 | zapnot $2, 15, $5 | ||
| 1655 | addq $1, $6, $6 | ||
| 1656 | addq $3, $6, $6 | ||
| 1657 | addq $24, $6, $24 | ||
| 1658 | cmpult $24, $6, $1 | ||
| 1659 | srl $4, 32, $6 | ||
| 1660 | mulq $5, $6, $25 | ||
| 1661 | mulq $7, $5, $5 | ||
| 1662 | addq $1, $23, $23 | ||
| 1663 | addq $0, $25, $0 | ||
| 1664 | cmpult $0, $25, $1 | ||
| 1665 | mulq $6, $8, $6 | ||
| 1666 | beq $1, $305 | ||
| 1667 | sll $20, 32, $1 | ||
| 1668 | addq $6, $1, $6 | ||
| 1669 | $305: | ||
| 1670 | sll $0, 32, $25 | ||
| 1671 | ldq $2, 8($18) | ||
| 1672 | addq $5, $25, $5 | ||
| 1673 | bis $5, $5, $7 | ||
| 1674 | ldq $4, 48($17) | ||
| 1675 | addq $22, $7, $22 | ||
| 1676 | srl $2, 32, $8 | ||
| 1677 | cmpult $22, $7, $3 | ||
| 1678 | zapnot $4, 15, $7 | ||
| 1679 | mulq $8, $7, $28 | ||
| 1680 | srl $0, 32, $1 | ||
| 1681 | addq $6, $1, $6 | ||
| 1682 | cmpult $5, $25, $1 | ||
| 1683 | zapnot $2, 15, $5 | ||
| 1684 | addq $1, $6, $6 | ||
| 1685 | addq $3, $6, $6 | ||
| 1686 | addq $24, $6, $24 | ||
| 1687 | cmpult $24, $6, $1 | ||
| 1688 | srl $4, 32, $6 | ||
| 1689 | mulq $5, $6, $25 | ||
| 1690 | mulq $7, $5, $5 | ||
| 1691 | addq $1, $23, $23 | ||
| 1692 | addq $28, $25, $28 | ||
| 1693 | cmpult $28, $25, $1 | ||
| 1694 | mulq $6, $8, $6 | ||
| 1695 | beq $1, $309 | ||
| 1696 | sll $20, 32, $1 | ||
| 1697 | addq $6, $1, $6 | ||
| 1698 | $309: | ||
| 1699 | sll $28, 32, $25 | ||
| 1700 | ldq $2, 0($18) | ||
| 1701 | addq $5, $25, $5 | ||
| 1702 | bis $5, $5, $7 | ||
| 1703 | ldq $4, 56($17) | ||
| 1704 | addq $22, $7, $22 | ||
| 1705 | srl $2, 32, $8 | ||
| 1706 | cmpult $22, $7, $3 | ||
| 1707 | zapnot $4, 15, $7 | ||
| 1708 | mulq $8, $7, $0 | ||
| 1709 | srl $28, 32, $1 | ||
| 1710 | addq $6, $1, $6 | ||
| 1711 | cmpult $5, $25, $1 | ||
| 1712 | zapnot $2, 15, $5 | ||
| 1713 | addq $1, $6, $6 | ||
| 1714 | addq $3, $6, $6 | ||
| 1715 | addq $24, $6, $24 | ||
| 1716 | cmpult $24, $6, $1 | ||
| 1717 | srl $4, 32, $6 | ||
| 1718 | mulq $5, $6, $25 | ||
| 1719 | mulq $7, $5, $2 | ||
| 1720 | addq $1, $23, $23 | ||
| 1721 | addq $0, $25, $0 | ||
| 1722 | cmpult $0, $25, $1 | ||
| 1723 | mulq $6, $8, $6 | ||
| 1724 | beq $1, $313 | ||
| 1725 | sll $20, 32, $1 | ||
| 1726 | addq $6, $1, $6 | ||
| 1727 | $313: | ||
| 1728 | sll $0, 32, $25 | ||
| 1729 | addq $2, $25, $2 | ||
| 1730 | bis $2, $2, $7 | ||
| 1731 | addq $22, $7, $22 | ||
| 1732 | stq $22, 56($16) | ||
| 1733 | ldq $4, 56($17) | ||
| 1734 | ldq $5, 8($18) | ||
| 1735 | cmpult $22, $7, $3 | ||
| 1736 | zapnot $4, 15, $7 | ||
| 1737 | srl $5, 32, $8 | ||
| 1738 | mulq $8, $7, $28 | ||
| 1739 | srl $0, 32, $1 | ||
| 1740 | cmpult $2, $25, $2 | ||
| 1741 | addq $6, $1, $6 | ||
| 1742 | addq $2, $6, $6 | ||
| 1743 | addq $3, $6, $6 | ||
| 1744 | addq $24, $6, $24 | ||
| 1745 | cmpult $24, $6, $1 | ||
| 1746 | srl $4, 32, $6 | ||
| 1747 | zapnot $5, 15, $5 | ||
| 1748 | mulq $5, $6, $22 | ||
| 1749 | mulq $7, $5, $2 | ||
| 1750 | addq $1, $23, $23 | ||
| 1751 | addq $28, $22, $28 | ||
| 1752 | cmpult $28, $22, $1 | ||
| 1753 | mulq $6, $8, $6 | ||
| 1754 | beq $1, $317 | ||
| 1755 | sll $20, 32, $1 | ||
| 1756 | addq $6, $1, $6 | ||
| 1757 | $317: | ||
| 1758 | sll $28, 32, $22 | ||
| 1759 | ldq $1, 16($18) | ||
| 1760 | addq $2, $22, $2 | ||
| 1761 | bis $2, $2, $7 | ||
| 1762 | ldq $4, 48($17) | ||
| 1763 | addq $24, $7, $24 | ||
| 1764 | srl $1, 32, $8 | ||
| 1765 | cmpult $24, $7, $3 | ||
| 1766 | zapnot $4, 15, $7 | ||
| 1767 | mulq $8, $7, $25 | ||
| 1768 | zapnot $1, 15, $5 | ||
| 1769 | mulq $7, $5, $0 | ||
| 1770 | srl $28, 32, $1 | ||
| 1771 | cmpult $2, $22, $2 | ||
| 1772 | addq $6, $1, $6 | ||
| 1773 | addq $2, $6, $6 | ||
| 1774 | addq $3, $6, $6 | ||
| 1775 | addq $23, $6, $23 | ||
| 1776 | cmpult $23, $6, $22 | ||
| 1777 | srl $4, 32, $6 | ||
| 1778 | mulq $5, $6, $5 | ||
| 1779 | bis $31, 1, $21 | ||
| 1780 | addq $25, $5, $25 | ||
| 1781 | cmpult $25, $5, $1 | ||
| 1782 | mulq $6, $8, $6 | ||
| 1783 | beq $1, $321 | ||
| 1784 | sll $21, 32, $1 | ||
| 1785 | addq $6, $1, $6 | ||
| 1786 | $321: | ||
| 1787 | sll $25, 32, $5 | ||
| 1788 | ldq $2, 24($18) | ||
| 1789 | addq $0, $5, $0 | ||
| 1790 | bis $0, $0, $7 | ||
| 1791 | ldq $4, 40($17) | ||
| 1792 | addq $24, $7, $24 | ||
| 1793 | srl $2, 32, $8 | ||
| 1794 | cmpult $24, $7, $3 | ||
| 1795 | zapnot $4, 15, $7 | ||
| 1796 | mulq $8, $7, $28 | ||
| 1797 | srl $25, 32, $1 | ||
| 1798 | addq $6, $1, $6 | ||
| 1799 | cmpult $0, $5, $1 | ||
| 1800 | zapnot $2, 15, $5 | ||
| 1801 | addq $1, $6, $6 | ||
| 1802 | addq $3, $6, $6 | ||
| 1803 | addq $23, $6, $23 | ||
| 1804 | cmpult $23, $6, $1 | ||
| 1805 | srl $4, 32, $6 | ||
| 1806 | mulq $5, $6, $25 | ||
| 1807 | mulq $7, $5, $5 | ||
| 1808 | addq $1, $22, $22 | ||
| 1809 | addq $28, $25, $28 | ||
| 1810 | cmpult $28, $25, $1 | ||
| 1811 | mulq $6, $8, $6 | ||
| 1812 | beq $1, $325 | ||
| 1813 | sll $21, 32, $1 | ||
| 1814 | addq $6, $1, $6 | ||
| 1815 | $325: | ||
| 1816 | sll $28, 32, $25 | ||
| 1817 | ldq $2, 32($18) | ||
| 1818 | addq $5, $25, $5 | ||
| 1819 | bis $5, $5, $7 | ||
| 1820 | ldq $4, 32($17) | ||
| 1821 | addq $24, $7, $24 | ||
| 1822 | srl $2, 32, $8 | ||
| 1823 | cmpult $24, $7, $3 | ||
| 1824 | zapnot $4, 15, $7 | ||
| 1825 | mulq $8, $7, $0 | ||
| 1826 | srl $28, 32, $1 | ||
| 1827 | addq $6, $1, $6 | ||
| 1828 | cmpult $5, $25, $1 | ||
| 1829 | zapnot $2, 15, $5 | ||
| 1830 | addq $1, $6, $6 | ||
| 1831 | addq $3, $6, $6 | ||
| 1832 | addq $23, $6, $23 | ||
| 1833 | cmpult $23, $6, $1 | ||
| 1834 | srl $4, 32, $6 | ||
| 1835 | mulq $5, $6, $25 | ||
| 1836 | mulq $7, $5, $5 | ||
| 1837 | addq $1, $22, $22 | ||
| 1838 | addq $0, $25, $0 | ||
| 1839 | cmpult $0, $25, $1 | ||
| 1840 | mulq $6, $8, $6 | ||
| 1841 | beq $1, $329 | ||
| 1842 | sll $21, 32, $1 | ||
| 1843 | addq $6, $1, $6 | ||
| 1844 | $329: | ||
| 1845 | sll $0, 32, $25 | ||
| 1846 | ldq $2, 40($18) | ||
| 1847 | addq $5, $25, $5 | ||
| 1848 | bis $5, $5, $7 | ||
| 1849 | ldq $4, 24($17) | ||
| 1850 | addq $24, $7, $24 | ||
| 1851 | srl $2, 32, $8 | ||
| 1852 | cmpult $24, $7, $3 | ||
| 1853 | zapnot $4, 15, $7 | ||
| 1854 | mulq $8, $7, $28 | ||
| 1855 | srl $0, 32, $1 | ||
| 1856 | addq $6, $1, $6 | ||
| 1857 | cmpult $5, $25, $1 | ||
| 1858 | zapnot $2, 15, $5 | ||
| 1859 | addq $1, $6, $6 | ||
| 1860 | addq $3, $6, $6 | ||
| 1861 | addq $23, $6, $23 | ||
| 1862 | cmpult $23, $6, $1 | ||
| 1863 | srl $4, 32, $6 | ||
| 1864 | mulq $5, $6, $25 | ||
| 1865 | mulq $7, $5, $5 | ||
| 1866 | addq $1, $22, $22 | ||
| 1867 | addq $28, $25, $28 | ||
| 1868 | cmpult $28, $25, $1 | ||
| 1869 | mulq $6, $8, $6 | ||
| 1870 | beq $1, $333 | ||
| 1871 | sll $21, 32, $1 | ||
| 1872 | addq $6, $1, $6 | ||
| 1873 | $333: | ||
| 1874 | sll $28, 32, $25 | ||
| 1875 | ldq $2, 48($18) | ||
| 1876 | addq $5, $25, $5 | ||
| 1877 | bis $5, $5, $7 | ||
| 1878 | ldq $4, 16($17) | ||
| 1879 | addq $24, $7, $24 | ||
| 1880 | srl $2, 32, $8 | ||
| 1881 | cmpult $24, $7, $3 | ||
| 1882 | zapnot $4, 15, $7 | ||
| 1883 | mulq $8, $7, $0 | ||
| 1884 | srl $28, 32, $1 | ||
| 1885 | addq $6, $1, $6 | ||
| 1886 | cmpult $5, $25, $1 | ||
| 1887 | zapnot $2, 15, $5 | ||
| 1888 | addq $1, $6, $6 | ||
| 1889 | addq $3, $6, $6 | ||
| 1890 | addq $23, $6, $23 | ||
| 1891 | cmpult $23, $6, $1 | ||
| 1892 | srl $4, 32, $6 | ||
| 1893 | mulq $5, $6, $25 | ||
| 1894 | mulq $7, $5, $5 | ||
| 1895 | addq $1, $22, $22 | ||
| 1896 | addq $0, $25, $0 | ||
| 1897 | cmpult $0, $25, $1 | ||
| 1898 | mulq $6, $8, $6 | ||
| 1899 | beq $1, $337 | ||
| 1900 | sll $21, 32, $1 | ||
| 1901 | addq $6, $1, $6 | ||
| 1902 | $337: | ||
| 1903 | sll $0, 32, $25 | ||
| 1904 | ldq $2, 56($18) | ||
| 1905 | addq $5, $25, $5 | ||
| 1906 | bis $5, $5, $7 | ||
| 1907 | ldq $4, 8($17) | ||
| 1908 | addq $24, $7, $24 | ||
| 1909 | srl $2, 32, $8 | ||
| 1910 | cmpult $24, $7, $3 | ||
| 1911 | zapnot $4, 15, $7 | ||
| 1912 | mulq $8, $7, $28 | ||
| 1913 | srl $0, 32, $1 | ||
| 1914 | addq $6, $1, $6 | ||
| 1915 | cmpult $5, $25, $1 | ||
| 1916 | zapnot $2, 15, $5 | ||
| 1917 | addq $1, $6, $6 | ||
| 1918 | addq $3, $6, $6 | ||
| 1919 | addq $23, $6, $23 | ||
| 1920 | cmpult $23, $6, $1 | ||
| 1921 | srl $4, 32, $6 | ||
| 1922 | mulq $5, $6, $25 | ||
| 1923 | mulq $7, $5, $2 | ||
| 1924 | addq $1, $22, $22 | ||
| 1925 | addq $28, $25, $28 | ||
| 1926 | cmpult $28, $25, $1 | ||
| 1927 | mulq $6, $8, $6 | ||
| 1928 | beq $1, $341 | ||
| 1929 | sll $21, 32, $1 | ||
| 1930 | addq $6, $1, $6 | ||
| 1931 | $341: | ||
| 1932 | sll $28, 32, $25 | ||
| 1933 | addq $2, $25, $2 | ||
| 1934 | bis $2, $2, $7 | ||
| 1935 | addq $24, $7, $24 | ||
| 1936 | stq $24, 64($16) | ||
| 1937 | ldq $4, 16($17) | ||
| 1938 | ldq $5, 56($18) | ||
| 1939 | cmpult $24, $7, $3 | ||
| 1940 | zapnot $4, 15, $7 | ||
| 1941 | srl $5, 32, $8 | ||
| 1942 | mulq $8, $7, $0 | ||
| 1943 | srl $28, 32, $1 | ||
| 1944 | cmpult $2, $25, $2 | ||
| 1945 | addq $6, $1, $6 | ||
| 1946 | addq $2, $6, $6 | ||
| 1947 | addq $3, $6, $6 | ||
| 1948 | addq $23, $6, $23 | ||
| 1949 | cmpult $23, $6, $1 | ||
| 1950 | srl $4, 32, $6 | ||
| 1951 | zapnot $5, 15, $5 | ||
| 1952 | mulq $5, $6, $24 | ||
| 1953 | mulq $7, $5, $2 | ||
| 1954 | addq $1, $22, $22 | ||
| 1955 | addq $0, $24, $0 | ||
| 1956 | cmpult $0, $24, $1 | ||
| 1957 | mulq $6, $8, $6 | ||
| 1958 | beq $1, $345 | ||
| 1959 | sll $21, 32, $1 | ||
| 1960 | addq $6, $1, $6 | ||
| 1961 | $345: | ||
| 1962 | sll $0, 32, $24 | ||
| 1963 | ldq $1, 48($18) | ||
| 1964 | addq $2, $24, $2 | ||
| 1965 | bis $2, $2, $7 | ||
| 1966 | ldq $4, 24($17) | ||
| 1967 | addq $23, $7, $23 | ||
| 1968 | srl $1, 32, $8 | ||
| 1969 | cmpult $23, $7, $3 | ||
| 1970 | zapnot $4, 15, $7 | ||
| 1971 | mulq $8, $7, $25 | ||
| 1972 | zapnot $1, 15, $5 | ||
| 1973 | mulq $7, $5, $21 | ||
| 1974 | srl $0, 32, $1 | ||
| 1975 | cmpult $2, $24, $2 | ||
| 1976 | addq $6, $1, $6 | ||
| 1977 | addq $2, $6, $6 | ||
| 1978 | addq $3, $6, $6 | ||
| 1979 | addq $22, $6, $22 | ||
| 1980 | cmpult $22, $6, $24 | ||
| 1981 | srl $4, 32, $6 | ||
| 1982 | mulq $5, $6, $5 | ||
| 1983 | bis $31, 1, $20 | ||
| 1984 | addq $25, $5, $25 | ||
| 1985 | cmpult $25, $5, $1 | ||
| 1986 | mulq $6, $8, $6 | ||
| 1987 | beq $1, $349 | ||
| 1988 | sll $20, 32, $1 | ||
| 1989 | addq $6, $1, $6 | ||
| 1990 | $349: | ||
| 1991 | sll $25, 32, $5 | ||
| 1992 | ldq $2, 40($18) | ||
| 1993 | addq $21, $5, $21 | ||
| 1994 | bis $21, $21, $7 | ||
| 1995 | ldq $4, 32($17) | ||
| 1996 | addq $23, $7, $23 | ||
| 1997 | srl $2, 32, $8 | ||
| 1998 | cmpult $23, $7, $3 | ||
| 1999 | zapnot $4, 15, $7 | ||
| 2000 | mulq $8, $7, $28 | ||
| 2001 | srl $25, 32, $1 | ||
| 2002 | addq $6, $1, $6 | ||
| 2003 | cmpult $21, $5, $1 | ||
| 2004 | zapnot $2, 15, $5 | ||
| 2005 | addq $1, $6, $6 | ||
| 2006 | addq $3, $6, $6 | ||
| 2007 | addq $22, $6, $22 | ||
| 2008 | cmpult $22, $6, $1 | ||
| 2009 | srl $4, 32, $6 | ||
| 2010 | mulq $5, $6, $25 | ||
| 2011 | mulq $7, $5, $5 | ||
| 2012 | addq $1, $24, $24 | ||
| 2013 | addq $28, $25, $28 | ||
| 2014 | cmpult $28, $25, $1 | ||
| 2015 | mulq $6, $8, $6 | ||
| 2016 | beq $1, $353 | ||
| 2017 | sll $20, 32, $1 | ||
| 2018 | addq $6, $1, $6 | ||
| 2019 | $353: | ||
| 2020 | sll $28, 32, $25 | ||
| 2021 | ldq $2, 32($18) | ||
| 2022 | addq $5, $25, $5 | ||
| 2023 | bis $5, $5, $7 | ||
| 2024 | ldq $4, 40($17) | ||
| 2025 | addq $23, $7, $23 | ||
| 2026 | srl $2, 32, $8 | ||
| 2027 | cmpult $23, $7, $3 | ||
| 2028 | zapnot $4, 15, $7 | ||
| 2029 | mulq $8, $7, $0 | ||
| 2030 | srl $28, 32, $1 | ||
| 2031 | addq $6, $1, $6 | ||
| 2032 | cmpult $5, $25, $1 | ||
| 2033 | zapnot $2, 15, $5 | ||
| 2034 | addq $1, $6, $6 | ||
| 2035 | addq $3, $6, $6 | ||
| 2036 | addq $22, $6, $22 | ||
| 2037 | cmpult $22, $6, $1 | ||
| 2038 | srl $4, 32, $6 | ||
| 2039 | mulq $5, $6, $25 | ||
| 2040 | mulq $7, $5, $5 | ||
| 2041 | addq $1, $24, $24 | ||
| 2042 | addq $0, $25, $0 | ||
| 2043 | cmpult $0, $25, $1 | ||
| 2044 | mulq $6, $8, $6 | ||
| 2045 | beq $1, $357 | ||
| 2046 | sll $20, 32, $1 | ||
| 2047 | addq $6, $1, $6 | ||
| 2048 | $357: | ||
| 2049 | sll $0, 32, $25 | ||
| 2050 | ldq $2, 24($18) | ||
| 2051 | addq $5, $25, $5 | ||
| 2052 | bis $5, $5, $7 | ||
| 2053 | ldq $4, 48($17) | ||
| 2054 | addq $23, $7, $23 | ||
| 2055 | srl $2, 32, $8 | ||
| 2056 | cmpult $23, $7, $3 | ||
| 2057 | zapnot $4, 15, $7 | ||
| 2058 | mulq $8, $7, $28 | ||
| 2059 | srl $0, 32, $1 | ||
| 2060 | addq $6, $1, $6 | ||
| 2061 | cmpult $5, $25, $1 | ||
| 2062 | zapnot $2, 15, $5 | ||
| 2063 | addq $1, $6, $6 | ||
| 2064 | addq $3, $6, $6 | ||
| 2065 | addq $22, $6, $22 | ||
| 2066 | cmpult $22, $6, $1 | ||
| 2067 | srl $4, 32, $6 | ||
| 2068 | mulq $5, $6, $25 | ||
| 2069 | mulq $7, $5, $5 | ||
| 2070 | addq $1, $24, $24 | ||
| 2071 | addq $28, $25, $28 | ||
| 2072 | cmpult $28, $25, $1 | ||
| 2073 | mulq $6, $8, $6 | ||
| 2074 | beq $1, $361 | ||
| 2075 | sll $20, 32, $1 | ||
| 2076 | addq $6, $1, $6 | ||
| 2077 | $361: | ||
| 2078 | sll $28, 32, $25 | ||
| 2079 | ldq $2, 16($18) | ||
| 2080 | addq $5, $25, $5 | ||
| 2081 | bis $5, $5, $7 | ||
| 2082 | ldq $4, 56($17) | ||
| 2083 | addq $23, $7, $23 | ||
| 2084 | srl $2, 32, $8 | ||
| 2085 | cmpult $23, $7, $3 | ||
| 2086 | zapnot $4, 15, $7 | ||
| 2087 | mulq $8, $7, $0 | ||
| 2088 | srl $28, 32, $1 | ||
| 2089 | addq $6, $1, $6 | ||
| 2090 | cmpult $5, $25, $1 | ||
| 2091 | zapnot $2, 15, $5 | ||
| 2092 | addq $1, $6, $6 | ||
| 2093 | addq $3, $6, $6 | ||
| 2094 | addq $22, $6, $22 | ||
| 2095 | cmpult $22, $6, $1 | ||
| 2096 | srl $4, 32, $6 | ||
| 2097 | mulq $5, $6, $25 | ||
| 2098 | mulq $7, $5, $2 | ||
| 2099 | addq $1, $24, $24 | ||
| 2100 | addq $0, $25, $0 | ||
| 2101 | cmpult $0, $25, $1 | ||
| 2102 | mulq $6, $8, $6 | ||
| 2103 | beq $1, $365 | ||
| 2104 | sll $20, 32, $1 | ||
| 2105 | addq $6, $1, $6 | ||
| 2106 | $365: | ||
| 2107 | sll $0, 32, $25 | ||
| 2108 | addq $2, $25, $2 | ||
| 2109 | bis $2, $2, $7 | ||
| 2110 | addq $23, $7, $23 | ||
| 2111 | stq $23, 72($16) | ||
| 2112 | ldq $4, 56($17) | ||
| 2113 | ldq $5, 24($18) | ||
| 2114 | cmpult $23, $7, $3 | ||
| 2115 | zapnot $4, 15, $7 | ||
| 2116 | srl $5, 32, $8 | ||
| 2117 | mulq $8, $7, $28 | ||
| 2118 | srl $0, 32, $1 | ||
| 2119 | cmpult $2, $25, $2 | ||
| 2120 | addq $6, $1, $6 | ||
| 2121 | addq $2, $6, $6 | ||
| 2122 | addq $3, $6, $6 | ||
| 2123 | addq $22, $6, $22 | ||
| 2124 | cmpult $22, $6, $1 | ||
| 2125 | srl $4, 32, $6 | ||
| 2126 | zapnot $5, 15, $5 | ||
| 2127 | mulq $5, $6, $23 | ||
| 2128 | mulq $7, $5, $2 | ||
| 2129 | addq $1, $24, $24 | ||
| 2130 | addq $28, $23, $28 | ||
| 2131 | cmpult $28, $23, $1 | ||
| 2132 | mulq $6, $8, $6 | ||
| 2133 | beq $1, $369 | ||
| 2134 | sll $20, 32, $1 | ||
| 2135 | addq $6, $1, $6 | ||
| 2136 | $369: | ||
| 2137 | sll $28, 32, $23 | ||
| 2138 | ldq $1, 32($18) | ||
| 2139 | addq $2, $23, $2 | ||
| 2140 | bis $2, $2, $7 | ||
| 2141 | ldq $4, 48($17) | ||
| 2142 | addq $22, $7, $22 | ||
| 2143 | srl $1, 32, $8 | ||
| 2144 | cmpult $22, $7, $3 | ||
| 2145 | zapnot $4, 15, $7 | ||
| 2146 | mulq $8, $7, $25 | ||
| 2147 | zapnot $1, 15, $5 | ||
| 2148 | mulq $7, $5, $0 | ||
| 2149 | srl $28, 32, $1 | ||
| 2150 | cmpult $2, $23, $2 | ||
| 2151 | addq $6, $1, $6 | ||
| 2152 | addq $2, $6, $6 | ||
| 2153 | addq $3, $6, $6 | ||
| 2154 | addq $24, $6, $24 | ||
| 2155 | cmpult $24, $6, $23 | ||
| 2156 | srl $4, 32, $6 | ||
| 2157 | mulq $5, $6, $5 | ||
| 2158 | bis $31, 1, $21 | ||
| 2159 | addq $25, $5, $25 | ||
| 2160 | cmpult $25, $5, $1 | ||
| 2161 | mulq $6, $8, $6 | ||
| 2162 | beq $1, $373 | ||
| 2163 | sll $21, 32, $1 | ||
| 2164 | addq $6, $1, $6 | ||
| 2165 | $373: | ||
| 2166 | sll $25, 32, $5 | ||
| 2167 | ldq $2, 40($18) | ||
| 2168 | addq $0, $5, $0 | ||
| 2169 | bis $0, $0, $7 | ||
| 2170 | ldq $4, 40($17) | ||
| 2171 | addq $22, $7, $22 | ||
| 2172 | srl $2, 32, $8 | ||
| 2173 | cmpult $22, $7, $3 | ||
| 2174 | zapnot $4, 15, $7 | ||
| 2175 | mulq $8, $7, $28 | ||
| 2176 | srl $25, 32, $1 | ||
| 2177 | addq $6, $1, $6 | ||
| 2178 | cmpult $0, $5, $1 | ||
| 2179 | zapnot $2, 15, $5 | ||
| 2180 | addq $1, $6, $6 | ||
| 2181 | addq $3, $6, $6 | ||
| 2182 | addq $24, $6, $24 | ||
| 2183 | cmpult $24, $6, $1 | ||
| 2184 | srl $4, 32, $6 | ||
| 2185 | mulq $5, $6, $25 | ||
| 2186 | mulq $7, $5, $5 | ||
| 2187 | addq $1, $23, $23 | ||
| 2188 | addq $28, $25, $28 | ||
| 2189 | cmpult $28, $25, $1 | ||
| 2190 | mulq $6, $8, $6 | ||
| 2191 | beq $1, $377 | ||
| 2192 | sll $21, 32, $1 | ||
| 2193 | addq $6, $1, $6 | ||
| 2194 | $377: | ||
| 2195 | sll $28, 32, $25 | ||
| 2196 | ldq $2, 48($18) | ||
| 2197 | addq $5, $25, $5 | ||
| 2198 | bis $5, $5, $7 | ||
| 2199 | ldq $4, 32($17) | ||
| 2200 | addq $22, $7, $22 | ||
| 2201 | srl $2, 32, $8 | ||
| 2202 | cmpult $22, $7, $3 | ||
| 2203 | zapnot $4, 15, $7 | ||
| 2204 | mulq $8, $7, $0 | ||
| 2205 | srl $28, 32, $1 | ||
| 2206 | addq $6, $1, $6 | ||
| 2207 | cmpult $5, $25, $1 | ||
| 2208 | zapnot $2, 15, $5 | ||
| 2209 | addq $1, $6, $6 | ||
| 2210 | addq $3, $6, $6 | ||
| 2211 | addq $24, $6, $24 | ||
| 2212 | cmpult $24, $6, $1 | ||
| 2213 | srl $4, 32, $6 | ||
| 2214 | mulq $5, $6, $25 | ||
| 2215 | mulq $7, $5, $5 | ||
| 2216 | addq $1, $23, $23 | ||
| 2217 | addq $0, $25, $0 | ||
| 2218 | cmpult $0, $25, $1 | ||
| 2219 | mulq $6, $8, $6 | ||
| 2220 | beq $1, $381 | ||
| 2221 | sll $21, 32, $1 | ||
| 2222 | addq $6, $1, $6 | ||
| 2223 | $381: | ||
| 2224 | sll $0, 32, $25 | ||
| 2225 | ldq $2, 56($18) | ||
| 2226 | addq $5, $25, $5 | ||
| 2227 | bis $5, $5, $7 | ||
| 2228 | ldq $4, 24($17) | ||
| 2229 | addq $22, $7, $22 | ||
| 2230 | srl $2, 32, $8 | ||
| 2231 | cmpult $22, $7, $3 | ||
| 2232 | zapnot $4, 15, $7 | ||
| 2233 | mulq $8, $7, $28 | ||
| 2234 | srl $0, 32, $1 | ||
| 2235 | addq $6, $1, $6 | ||
| 2236 | cmpult $5, $25, $1 | ||
| 2237 | zapnot $2, 15, $5 | ||
| 2238 | addq $1, $6, $6 | ||
| 2239 | addq $3, $6, $6 | ||
| 2240 | addq $24, $6, $24 | ||
| 2241 | cmpult $24, $6, $1 | ||
| 2242 | srl $4, 32, $6 | ||
| 2243 | mulq $5, $6, $25 | ||
| 2244 | mulq $7, $5, $2 | ||
| 2245 | addq $1, $23, $23 | ||
| 2246 | addq $28, $25, $28 | ||
| 2247 | cmpult $28, $25, $1 | ||
| 2248 | mulq $6, $8, $6 | ||
| 2249 | beq $1, $385 | ||
| 2250 | sll $21, 32, $1 | ||
| 2251 | addq $6, $1, $6 | ||
| 2252 | $385: | ||
| 2253 | sll $28, 32, $25 | ||
| 2254 | addq $2, $25, $2 | ||
| 2255 | bis $2, $2, $7 | ||
| 2256 | addq $22, $7, $22 | ||
| 2257 | stq $22, 80($16) | ||
| 2258 | ldq $4, 32($17) | ||
| 2259 | ldq $5, 56($18) | ||
| 2260 | cmpult $22, $7, $3 | ||
| 2261 | zapnot $4, 15, $7 | ||
| 2262 | srl $5, 32, $8 | ||
| 2263 | mulq $8, $7, $0 | ||
| 2264 | srl $28, 32, $1 | ||
| 2265 | cmpult $2, $25, $2 | ||
| 2266 | addq $6, $1, $6 | ||
| 2267 | addq $2, $6, $6 | ||
| 2268 | addq $3, $6, $6 | ||
| 2269 | addq $24, $6, $24 | ||
| 2270 | cmpult $24, $6, $1 | ||
| 2271 | srl $4, 32, $6 | ||
| 2272 | zapnot $5, 15, $5 | ||
| 2273 | mulq $5, $6, $22 | ||
| 2274 | mulq $7, $5, $2 | ||
| 2275 | addq $1, $23, $23 | ||
| 2276 | addq $0, $22, $0 | ||
| 2277 | cmpult $0, $22, $1 | ||
| 2278 | mulq $6, $8, $6 | ||
| 2279 | beq $1, $389 | ||
| 2280 | sll $21, 32, $1 | ||
| 2281 | addq $6, $1, $6 | ||
| 2282 | $389: | ||
| 2283 | sll $0, 32, $22 | ||
| 2284 | ldq $1, 48($18) | ||
| 2285 | addq $2, $22, $2 | ||
| 2286 | bis $2, $2, $7 | ||
| 2287 | ldq $4, 40($17) | ||
| 2288 | addq $24, $7, $24 | ||
| 2289 | srl $1, 32, $8 | ||
| 2290 | cmpult $24, $7, $3 | ||
| 2291 | zapnot $4, 15, $7 | ||
| 2292 | mulq $8, $7, $25 | ||
| 2293 | zapnot $1, 15, $5 | ||
| 2294 | mulq $7, $5, $21 | ||
| 2295 | srl $0, 32, $1 | ||
| 2296 | cmpult $2, $22, $2 | ||
| 2297 | addq $6, $1, $6 | ||
| 2298 | addq $2, $6, $6 | ||
| 2299 | addq $3, $6, $6 | ||
| 2300 | addq $23, $6, $23 | ||
| 2301 | cmpult $23, $6, $22 | ||
| 2302 | srl $4, 32, $6 | ||
| 2303 | mulq $5, $6, $5 | ||
| 2304 | bis $31, 1, $20 | ||
| 2305 | addq $25, $5, $25 | ||
| 2306 | cmpult $25, $5, $1 | ||
| 2307 | mulq $6, $8, $6 | ||
| 2308 | beq $1, $393 | ||
| 2309 | sll $20, 32, $1 | ||
| 2310 | addq $6, $1, $6 | ||
| 2311 | $393: | ||
| 2312 | sll $25, 32, $5 | ||
| 2313 | ldq $2, 40($18) | ||
| 2314 | addq $21, $5, $21 | ||
| 2315 | bis $21, $21, $7 | ||
| 2316 | ldq $4, 48($17) | ||
| 2317 | addq $24, $7, $24 | ||
| 2318 | srl $2, 32, $8 | ||
| 2319 | cmpult $24, $7, $3 | ||
| 2320 | zapnot $4, 15, $7 | ||
| 2321 | mulq $8, $7, $28 | ||
| 2322 | srl $25, 32, $1 | ||
| 2323 | addq $6, $1, $6 | ||
| 2324 | cmpult $21, $5, $1 | ||
| 2325 | zapnot $2, 15, $5 | ||
| 2326 | addq $1, $6, $6 | ||
| 2327 | addq $3, $6, $6 | ||
| 2328 | addq $23, $6, $23 | ||
| 2329 | cmpult $23, $6, $1 | ||
| 2330 | srl $4, 32, $6 | ||
| 2331 | mulq $5, $6, $25 | ||
| 2332 | mulq $7, $5, $5 | ||
| 2333 | addq $1, $22, $22 | ||
| 2334 | addq $28, $25, $28 | ||
| 2335 | cmpult $28, $25, $1 | ||
| 2336 | mulq $6, $8, $6 | ||
| 2337 | beq $1, $397 | ||
| 2338 | sll $20, 32, $1 | ||
| 2339 | addq $6, $1, $6 | ||
| 2340 | $397: | ||
| 2341 | sll $28, 32, $25 | ||
| 2342 | ldq $2, 32($18) | ||
| 2343 | addq $5, $25, $5 | ||
| 2344 | bis $5, $5, $7 | ||
| 2345 | ldq $4, 56($17) | ||
| 2346 | addq $24, $7, $24 | ||
| 2347 | srl $2, 32, $8 | ||
| 2348 | cmpult $24, $7, $3 | ||
| 2349 | zapnot $4, 15, $7 | ||
| 2350 | mulq $8, $7, $21 | ||
| 2351 | srl $28, 32, $1 | ||
| 2352 | addq $6, $1, $6 | ||
| 2353 | cmpult $5, $25, $1 | ||
| 2354 | zapnot $2, 15, $5 | ||
| 2355 | addq $1, $6, $6 | ||
| 2356 | addq $3, $6, $6 | ||
| 2357 | addq $23, $6, $23 | ||
| 2358 | cmpult $23, $6, $1 | ||
| 2359 | srl $4, 32, $6 | ||
| 2360 | mulq $5, $6, $25 | ||
| 2361 | mulq $7, $5, $2 | ||
| 2362 | addq $1, $22, $22 | ||
| 2363 | addq $21, $25, $21 | ||
| 2364 | cmpult $21, $25, $1 | ||
| 2365 | mulq $6, $8, $6 | ||
| 2366 | beq $1, $401 | ||
| 2367 | sll $20, 32, $1 | ||
| 2368 | addq $6, $1, $6 | ||
| 2369 | $401: | ||
| 2370 | sll $21, 32, $25 | ||
| 2371 | addq $2, $25, $2 | ||
| 2372 | bis $2, $2, $7 | ||
| 2373 | addq $24, $7, $24 | ||
| 2374 | stq $24, 88($16) | ||
| 2375 | ldq $4, 56($17) | ||
| 2376 | ldq $5, 40($18) | ||
| 2377 | cmpult $24, $7, $3 | ||
| 2378 | zapnot $4, 15, $7 | ||
| 2379 | srl $5, 32, $8 | ||
| 2380 | mulq $8, $7, $0 | ||
| 2381 | srl $21, 32, $1 | ||
| 2382 | cmpult $2, $25, $2 | ||
| 2383 | addq $6, $1, $6 | ||
| 2384 | addq $2, $6, $6 | ||
| 2385 | addq $3, $6, $6 | ||
| 2386 | addq $23, $6, $23 | ||
| 2387 | cmpult $23, $6, $1 | ||
| 2388 | srl $4, 32, $6 | ||
| 2389 | zapnot $5, 15, $5 | ||
| 2390 | mulq $5, $6, $24 | ||
| 2391 | mulq $7, $5, $5 | ||
| 2392 | addq $1, $22, $22 | ||
| 2393 | addq $0, $24, $0 | ||
| 2394 | cmpult $0, $24, $1 | ||
| 2395 | mulq $6, $8, $6 | ||
| 2396 | beq $1, $405 | ||
| 2397 | sll $20, 32, $1 | ||
| 2398 | addq $6, $1, $6 | ||
| 2399 | $405: | ||
| 2400 | sll $0, 32, $24 | ||
| 2401 | ldq $2, 48($18) | ||
| 2402 | addq $5, $24, $5 | ||
| 2403 | bis $5, $5, $7 | ||
| 2404 | ldq $4, 48($17) | ||
| 2405 | addq $23, $7, $23 | ||
| 2406 | srl $2, 32, $8 | ||
| 2407 | cmpult $23, $7, $3 | ||
| 2408 | zapnot $4, 15, $7 | ||
| 2409 | mulq $8, $7, $28 | ||
| 2410 | srl $0, 32, $1 | ||
| 2411 | addq $6, $1, $6 | ||
| 2412 | cmpult $5, $24, $1 | ||
| 2413 | zapnot $2, 15, $5 | ||
| 2414 | addq $1, $6, $6 | ||
| 2415 | addq $3, $6, $6 | ||
| 2416 | addq $22, $6, $22 | ||
| 2417 | cmpult $22, $6, $24 | ||
| 2418 | srl $4, 32, $6 | ||
| 2419 | mulq $5, $6, $25 | ||
| 2420 | mulq $7, $5, $5 | ||
| 2421 | addq $28, $25, $28 | ||
| 2422 | cmpult $28, $25, $1 | ||
| 2423 | mulq $6, $8, $6 | ||
| 2424 | beq $1, $409 | ||
| 2425 | sll $20, 32, $1 | ||
| 2426 | addq $6, $1, $6 | ||
| 2427 | $409: | ||
| 2428 | sll $28, 32, $25 | ||
| 2429 | ldq $2, 56($18) | ||
| 2430 | addq $5, $25, $5 | ||
| 2431 | bis $5, $5, $7 | ||
| 2432 | ldq $4, 40($17) | ||
| 2433 | addq $23, $7, $23 | ||
| 2434 | srl $2, 32, $8 | ||
| 2435 | cmpult $23, $7, $3 | ||
| 2436 | zapnot $4, 15, $7 | ||
| 2437 | mulq $8, $7, $0 | ||
| 2438 | srl $28, 32, $1 | ||
| 2439 | addq $6, $1, $6 | ||
| 2440 | cmpult $5, $25, $1 | ||
| 2441 | zapnot $2, 15, $5 | ||
| 2442 | addq $1, $6, $6 | ||
| 2443 | addq $3, $6, $6 | ||
| 2444 | addq $22, $6, $22 | ||
| 2445 | cmpult $22, $6, $1 | ||
| 2446 | srl $4, 32, $6 | ||
| 2447 | mulq $5, $6, $25 | ||
| 2448 | mulq $7, $5, $2 | ||
| 2449 | addq $1, $24, $24 | ||
| 2450 | addq $0, $25, $0 | ||
| 2451 | cmpult $0, $25, $1 | ||
| 2452 | mulq $6, $8, $6 | ||
| 2453 | beq $1, $413 | ||
| 2454 | sll $20, 32, $1 | ||
| 2455 | addq $6, $1, $6 | ||
| 2456 | $413: | ||
| 2457 | sll $0, 32, $25 | ||
| 2458 | addq $2, $25, $2 | ||
| 2459 | bis $2, $2, $7 | ||
| 2460 | addq $23, $7, $23 | ||
| 2461 | stq $23, 96($16) | ||
| 2462 | ldq $4, 48($17) | ||
| 2463 | ldq $5, 56($18) | ||
| 2464 | cmpult $23, $7, $3 | ||
| 2465 | zapnot $4, 15, $7 | ||
| 2466 | srl $5, 32, $8 | ||
| 2467 | mulq $8, $7, $28 | ||
| 2468 | srl $0, 32, $1 | ||
| 2469 | cmpult $2, $25, $2 | ||
| 2470 | addq $6, $1, $6 | ||
| 2471 | addq $2, $6, $6 | ||
| 2472 | addq $3, $6, $6 | ||
| 2473 | addq $22, $6, $22 | ||
| 2474 | cmpult $22, $6, $1 | ||
| 2475 | srl $4, 32, $6 | ||
| 2476 | zapnot $5, 15, $5 | ||
| 2477 | mulq $5, $6, $23 | ||
| 2478 | mulq $7, $5, $5 | ||
| 2479 | addq $1, $24, $24 | ||
| 2480 | addq $28, $23, $28 | ||
| 2481 | cmpult $28, $23, $1 | ||
| 2482 | mulq $6, $8, $6 | ||
| 2483 | beq $1, $417 | ||
| 2484 | sll $20, 32, $1 | ||
| 2485 | addq $6, $1, $6 | ||
| 2486 | $417: | ||
| 2487 | sll $28, 32, $23 | ||
| 2488 | ldq $2, 48($18) | ||
| 2489 | addq $5, $23, $5 | ||
| 2490 | bis $5, $5, $7 | ||
| 2491 | ldq $4, 56($17) | ||
| 2492 | addq $22, $7, $22 | ||
| 2493 | srl $2, 32, $8 | ||
| 2494 | cmpult $22, $7, $3 | ||
| 2495 | zapnot $4, 15, $7 | ||
| 2496 | mulq $8, $7, $0 | ||
| 2497 | srl $28, 32, $1 | ||
| 2498 | addq $6, $1, $6 | ||
| 2499 | cmpult $5, $23, $1 | ||
| 2500 | zapnot $2, 15, $5 | ||
| 2501 | addq $1, $6, $6 | ||
| 2502 | addq $3, $6, $6 | ||
| 2503 | addq $24, $6, $24 | ||
| 2504 | cmpult $24, $6, $23 | ||
| 2505 | srl $4, 32, $6 | ||
| 2506 | mulq $5, $6, $25 | ||
| 2507 | mulq $7, $5, $2 | ||
| 2508 | addq $0, $25, $0 | ||
| 2509 | cmpult $0, $25, $1 | ||
| 2510 | mulq $6, $8, $6 | ||
| 2511 | beq $1, $421 | ||
| 2512 | sll $20, 32, $1 | ||
| 2513 | addq $6, $1, $6 | ||
| 2514 | $421: | ||
| 2515 | sll $0, 32, $25 | ||
| 2516 | addq $2, $25, $2 | ||
| 2517 | bis $2, $2, $7 | ||
| 2518 | addq $22, $7, $22 | ||
| 2519 | stq $22, 104($16) | ||
| 2520 | ldq $4, 56($17) | ||
| 2521 | ldq $5, 56($18) | ||
| 2522 | cmpult $22, $7, $3 | ||
| 2523 | zapnot $4, 15, $7 | ||
| 2524 | srl $5, 32, $8 | ||
| 2525 | mulq $8, $7, $28 | ||
| 2526 | srl $0, 32, $1 | ||
| 2527 | cmpult $2, $25, $2 | ||
| 2528 | addq $6, $1, $6 | ||
| 2529 | addq $2, $6, $6 | ||
| 2530 | addq $3, $6, $6 | ||
| 2531 | addq $24, $6, $24 | ||
| 2532 | cmpult $24, $6, $1 | ||
| 2533 | srl $4, 32, $6 | ||
| 2534 | zapnot $5, 15, $5 | ||
| 2535 | mulq $5, $6, $22 | ||
| 2536 | mulq $7, $5, $2 | ||
| 2537 | addq $1, $23, $23 | ||
| 2538 | addq $28, $22, $28 | ||
| 2539 | cmpult $28, $22, $1 | ||
| 2540 | mulq $6, $8, $3 | ||
| 2541 | beq $1, $425 | ||
| 2542 | sll $20, 32, $1 | ||
| 2543 | addq $3, $1, $3 | ||
| 2544 | $425: | ||
| 2545 | sll $28, 32, $22 | ||
| 2546 | srl $28, 32, $1 | ||
| 2547 | addq $2, $22, $2 | ||
| 2548 | addq $3, $1, $3 | ||
| 2549 | bis $2, $2, $7 | ||
| 2550 | addq $24, $7, $24 | ||
| 2551 | cmpult $7, $22, $1 | ||
| 2552 | cmpult $24, $7, $2 | ||
| 2553 | addq $1, $3, $6 | ||
| 2554 | addq $2, $6, $6 | ||
| 2555 | stq $24, 112($16) | ||
| 2556 | addq $23, $6, $23 | ||
| 2557 | stq $23, 120($16) | ||
| 2558 | ret $31, ($26), 1 | ||
| 2559 | .end bn_mul_comba8 | ||
| 2560 | .text | ||
| 2561 | .align 3 | ||
| 2562 | .globl bn_sqr_comba4 | ||
| 2563 | .ent bn_sqr_comba4 | ||
| 2564 | bn_sqr_comba4: | ||
| 2565 | bn_sqr_comba4..ng: | ||
| 2566 | .frame $30,0,$26,0 | ||
| 2567 | .prologue 0 | ||
| 2568 | |||
| 2569 | ldq $0, 0($17) | ||
| 2570 | ldq $1, 8($17) | ||
| 2571 | ldq $2, 16($17) | ||
| 2572 | ldq $3, 24($17) | ||
| 2573 | bis $31, $31, $6 | ||
| 2574 | mulq $0, $0, $4 | ||
| 2575 | umulh $0, $0, $5 | ||
| 2576 | stq $4, 0($16) | ||
| 2577 | bis $31, $31, $4 | ||
| 2578 | mulq $0, $1, $7 | ||
| 2579 | umulh $0, $1, $8 | ||
| 2580 | cmplt $7, $31, $22 | ||
| 2581 | cmplt $8, $31, $23 | ||
| 2582 | addq $7, $7, $7 | ||
| 2583 | addq $8, $8, $8 | ||
| 2584 | addq $8, $22, $8 | ||
| 2585 | addq $4, $23, $4 | ||
| 2586 | addq $5, $7, $5 | ||
| 2587 | addq $6, $8, $6 | ||
| 2588 | cmpult $5, $7, $24 | ||
| 2589 | cmpult $6, $8, $25 | ||
| 2590 | addq $6, $24, $6 | ||
| 2591 | addq $4, $25, $4 | ||
| 2592 | stq $5, 8($16) | ||
| 2593 | bis $31, $31, $5 | ||
| 2594 | mulq $1, $1, $27 | ||
| 2595 | umulh $1, $1, $28 | ||
| 2596 | addq $6, $27, $6 | ||
| 2597 | addq $4, $28, $4 | ||
| 2598 | cmpult $6, $27, $21 | ||
| 2599 | cmpult $4, $28, $20 | ||
| 2600 | addq $4, $21, $4 | ||
| 2601 | addq $5, $20, $5 | ||
| 2602 | mulq $2, $0, $19 | ||
| 2603 | umulh $2, $0, $18 | ||
| 2604 | cmplt $19, $31, $17 | ||
| 2605 | cmplt $18, $31, $22 | ||
| 2606 | addq $19, $19, $19 | ||
| 2607 | addq $18, $18, $18 | ||
| 2608 | addq $18, $17, $18 | ||
| 2609 | addq $5, $22, $5 | ||
| 2610 | addq $6, $19, $6 | ||
| 2611 | addq $4, $18, $4 | ||
| 2612 | cmpult $6, $19, $23 | ||
| 2613 | cmpult $4, $18, $7 | ||
| 2614 | addq $4, $23, $4 | ||
| 2615 | addq $5, $7, $5 | ||
| 2616 | stq $6, 16($16) | ||
| 2617 | bis $31, $31, $6 | ||
| 2618 | mulq $3, $0, $8 | ||
| 2619 | umulh $3, $0, $24 | ||
| 2620 | cmplt $8, $31, $25 | ||
| 2621 | cmplt $24, $31, $27 | ||
| 2622 | addq $8, $8, $8 | ||
| 2623 | addq $24, $24, $24 | ||
| 2624 | addq $24, $25, $24 | ||
| 2625 | addq $6, $27, $6 | ||
| 2626 | addq $4, $8, $4 | ||
| 2627 | addq $5, $24, $5 | ||
| 2628 | cmpult $4, $8, $28 | ||
| 2629 | cmpult $5, $24, $21 | ||
| 2630 | addq $5, $28, $5 | ||
| 2631 | addq $6, $21, $6 | ||
| 2632 | mulq $2, $1, $20 | ||
| 2633 | umulh $2, $1, $17 | ||
| 2634 | cmplt $20, $31, $22 | ||
| 2635 | cmplt $17, $31, $19 | ||
| 2636 | addq $20, $20, $20 | ||
| 2637 | addq $17, $17, $17 | ||
| 2638 | addq $17, $22, $17 | ||
| 2639 | addq $6, $19, $6 | ||
| 2640 | addq $4, $20, $4 | ||
| 2641 | addq $5, $17, $5 | ||
| 2642 | cmpult $4, $20, $18 | ||
| 2643 | cmpult $5, $17, $23 | ||
| 2644 | addq $5, $18, $5 | ||
| 2645 | addq $6, $23, $6 | ||
| 2646 | stq $4, 24($16) | ||
| 2647 | bis $31, $31, $4 | ||
| 2648 | mulq $2, $2, $7 | ||
| 2649 | umulh $2, $2, $25 | ||
| 2650 | addq $5, $7, $5 | ||
| 2651 | addq $6, $25, $6 | ||
| 2652 | cmpult $5, $7, $27 | ||
| 2653 | cmpult $6, $25, $8 | ||
| 2654 | addq $6, $27, $6 | ||
| 2655 | addq $4, $8, $4 | ||
| 2656 | mulq $3, $1, $24 | ||
| 2657 | umulh $3, $1, $28 | ||
| 2658 | cmplt $24, $31, $21 | ||
| 2659 | cmplt $28, $31, $22 | ||
| 2660 | addq $24, $24, $24 | ||
| 2661 | addq $28, $28, $28 | ||
| 2662 | addq $28, $21, $28 | ||
| 2663 | addq $4, $22, $4 | ||
| 2664 | addq $5, $24, $5 | ||
| 2665 | addq $6, $28, $6 | ||
| 2666 | cmpult $5, $24, $19 | ||
| 2667 | cmpult $6, $28, $20 | ||
| 2668 | addq $6, $19, $6 | ||
| 2669 | addq $4, $20, $4 | ||
| 2670 | stq $5, 32($16) | ||
| 2671 | bis $31, $31, $5 | ||
| 2672 | mulq $3, $2, $17 | ||
| 2673 | umulh $3, $2, $18 | ||
| 2674 | cmplt $17, $31, $23 | ||
| 2675 | cmplt $18, $31, $7 | ||
| 2676 | addq $17, $17, $17 | ||
| 2677 | addq $18, $18, $18 | ||
| 2678 | addq $18, $23, $18 | ||
| 2679 | addq $5, $7, $5 | ||
| 2680 | addq $6, $17, $6 | ||
| 2681 | addq $4, $18, $4 | ||
| 2682 | cmpult $6, $17, $25 | ||
| 2683 | cmpult $4, $18, $27 | ||
| 2684 | addq $4, $25, $4 | ||
| 2685 | addq $5, $27, $5 | ||
| 2686 | stq $6, 40($16) | ||
| 2687 | bis $31, $31, $6 | ||
| 2688 | mulq $3, $3, $8 | ||
| 2689 | umulh $3, $3, $21 | ||
| 2690 | addq $4, $8, $4 | ||
| 2691 | addq $5, $21, $5 | ||
| 2692 | cmpult $4, $8, $22 | ||
| 2693 | cmpult $5, $21, $24 | ||
| 2694 | addq $5, $22, $5 | ||
| 2695 | addq $6, $24, $6 | ||
| 2696 | stq $4, 48($16) | ||
| 2697 | stq $5, 56($16) | ||
| 2698 | ret $31,($26),1 | ||
| 2699 | .end bn_sqr_comba4 | ||
| 2700 | .text | ||
| 2701 | .align 3 | ||
| 2702 | .globl bn_sqr_comba8 | ||
| 2703 | .ent bn_sqr_comba8 | ||
| 2704 | bn_sqr_comba8: | ||
| 2705 | bn_sqr_comba8..ng: | ||
| 2706 | .frame $30,0,$26,0 | ||
| 2707 | .prologue 0 | ||
| 2708 | |||
| 2709 | ldq $0, 0($17) | ||
| 2710 | ldq $1, 8($17) | ||
| 2711 | ldq $2, 16($17) | ||
| 2712 | ldq $3, 24($17) | ||
| 2713 | ldq $4, 32($17) | ||
| 2714 | ldq $5, 40($17) | ||
| 2715 | ldq $6, 48($17) | ||
| 2716 | ldq $7, 56($17) | ||
| 2717 | bis $31, $31, $23 | ||
| 2718 | mulq $0, $0, $8 | ||
| 2719 | umulh $0, $0, $22 | ||
| 2720 | stq $8, 0($16) | ||
| 2721 | bis $31, $31, $8 | ||
| 2722 | mulq $1, $0, $24 | ||
| 2723 | umulh $1, $0, $25 | ||
| 2724 | cmplt $24, $31, $27 | ||
| 2725 | cmplt $25, $31, $28 | ||
| 2726 | addq $24, $24, $24 | ||
| 2727 | addq $25, $25, $25 | ||
| 2728 | addq $25, $27, $25 | ||
| 2729 | addq $8, $28, $8 | ||
| 2730 | addq $22, $24, $22 | ||
| 2731 | addq $23, $25, $23 | ||
| 2732 | cmpult $22, $24, $21 | ||
| 2733 | cmpult $23, $25, $20 | ||
| 2734 | addq $23, $21, $23 | ||
| 2735 | addq $8, $20, $8 | ||
| 2736 | stq $22, 8($16) | ||
| 2737 | bis $31, $31, $22 | ||
| 2738 | mulq $1, $1, $19 | ||
| 2739 | umulh $1, $1, $18 | ||
| 2740 | addq $23, $19, $23 | ||
| 2741 | addq $8, $18, $8 | ||
| 2742 | cmpult $23, $19, $17 | ||
| 2743 | cmpult $8, $18, $27 | ||
| 2744 | addq $8, $17, $8 | ||
| 2745 | addq $22, $27, $22 | ||
| 2746 | mulq $2, $0, $28 | ||
| 2747 | umulh $2, $0, $24 | ||
| 2748 | cmplt $28, $31, $25 | ||
| 2749 | cmplt $24, $31, $21 | ||
| 2750 | addq $28, $28, $28 | ||
| 2751 | addq $24, $24, $24 | ||
| 2752 | addq $24, $25, $24 | ||
| 2753 | addq $22, $21, $22 | ||
| 2754 | addq $23, $28, $23 | ||
| 2755 | addq $8, $24, $8 | ||
| 2756 | cmpult $23, $28, $20 | ||
| 2757 | cmpult $8, $24, $19 | ||
| 2758 | addq $8, $20, $8 | ||
| 2759 | addq $22, $19, $22 | ||
| 2760 | stq $23, 16($16) | ||
| 2761 | bis $31, $31, $23 | ||
| 2762 | mulq $2, $1, $18 | ||
| 2763 | umulh $2, $1, $17 | ||
| 2764 | cmplt $18, $31, $27 | ||
| 2765 | cmplt $17, $31, $25 | ||
| 2766 | addq $18, $18, $18 | ||
| 2767 | addq $17, $17, $17 | ||
| 2768 | addq $17, $27, $17 | ||
| 2769 | addq $23, $25, $23 | ||
| 2770 | addq $8, $18, $8 | ||
| 2771 | addq $22, $17, $22 | ||
| 2772 | cmpult $8, $18, $21 | ||
| 2773 | cmpult $22, $17, $28 | ||
| 2774 | addq $22, $21, $22 | ||
| 2775 | addq $23, $28, $23 | ||
| 2776 | mulq $3, $0, $24 | ||
| 2777 | umulh $3, $0, $20 | ||
| 2778 | cmplt $24, $31, $19 | ||
| 2779 | cmplt $20, $31, $27 | ||
| 2780 | addq $24, $24, $24 | ||
| 2781 | addq $20, $20, $20 | ||
| 2782 | addq $20, $19, $20 | ||
| 2783 | addq $23, $27, $23 | ||
| 2784 | addq $8, $24, $8 | ||
| 2785 | addq $22, $20, $22 | ||
| 2786 | cmpult $8, $24, $25 | ||
| 2787 | cmpult $22, $20, $18 | ||
| 2788 | addq $22, $25, $22 | ||
| 2789 | addq $23, $18, $23 | ||
| 2790 | stq $8, 24($16) | ||
| 2791 | bis $31, $31, $8 | ||
| 2792 | mulq $2, $2, $17 | ||
| 2793 | umulh $2, $2, $21 | ||
| 2794 | addq $22, $17, $22 | ||
| 2795 | addq $23, $21, $23 | ||
| 2796 | cmpult $22, $17, $28 | ||
| 2797 | cmpult $23, $21, $19 | ||
| 2798 | addq $23, $28, $23 | ||
| 2799 | addq $8, $19, $8 | ||
| 2800 | mulq $3, $1, $27 | ||
| 2801 | umulh $3, $1, $24 | ||
| 2802 | cmplt $27, $31, $20 | ||
| 2803 | cmplt $24, $31, $25 | ||
| 2804 | addq $27, $27, $27 | ||
| 2805 | addq $24, $24, $24 | ||
| 2806 | addq $24, $20, $24 | ||
| 2807 | addq $8, $25, $8 | ||
| 2808 | addq $22, $27, $22 | ||
| 2809 | addq $23, $24, $23 | ||
| 2810 | cmpult $22, $27, $18 | ||
| 2811 | cmpult $23, $24, $17 | ||
| 2812 | addq $23, $18, $23 | ||
| 2813 | addq $8, $17, $8 | ||
| 2814 | mulq $4, $0, $21 | ||
| 2815 | umulh $4, $0, $28 | ||
| 2816 | cmplt $21, $31, $19 | ||
| 2817 | cmplt $28, $31, $20 | ||
| 2818 | addq $21, $21, $21 | ||
| 2819 | addq $28, $28, $28 | ||
| 2820 | addq $28, $19, $28 | ||
| 2821 | addq $8, $20, $8 | ||
| 2822 | addq $22, $21, $22 | ||
| 2823 | addq $23, $28, $23 | ||
| 2824 | cmpult $22, $21, $25 | ||
| 2825 | cmpult $23, $28, $27 | ||
| 2826 | addq $23, $25, $23 | ||
| 2827 | addq $8, $27, $8 | ||
| 2828 | stq $22, 32($16) | ||
| 2829 | bis $31, $31, $22 | ||
| 2830 | mulq $3, $2, $24 | ||
| 2831 | umulh $3, $2, $18 | ||
| 2832 | cmplt $24, $31, $17 | ||
| 2833 | cmplt $18, $31, $19 | ||
| 2834 | addq $24, $24, $24 | ||
| 2835 | addq $18, $18, $18 | ||
| 2836 | addq $18, $17, $18 | ||
| 2837 | addq $22, $19, $22 | ||
| 2838 | addq $23, $24, $23 | ||
| 2839 | addq $8, $18, $8 | ||
| 2840 | cmpult $23, $24, $20 | ||
| 2841 | cmpult $8, $18, $21 | ||
| 2842 | addq $8, $20, $8 | ||
| 2843 | addq $22, $21, $22 | ||
| 2844 | mulq $4, $1, $28 | ||
| 2845 | umulh $4, $1, $25 | ||
| 2846 | cmplt $28, $31, $27 | ||
| 2847 | cmplt $25, $31, $17 | ||
| 2848 | addq $28, $28, $28 | ||
| 2849 | addq $25, $25, $25 | ||
| 2850 | addq $25, $27, $25 | ||
| 2851 | addq $22, $17, $22 | ||
| 2852 | addq $23, $28, $23 | ||
| 2853 | addq $8, $25, $8 | ||
| 2854 | cmpult $23, $28, $19 | ||
| 2855 | cmpult $8, $25, $24 | ||
| 2856 | addq $8, $19, $8 | ||
| 2857 | addq $22, $24, $22 | ||
| 2858 | mulq $5, $0, $18 | ||
| 2859 | umulh $5, $0, $20 | ||
| 2860 | cmplt $18, $31, $21 | ||
| 2861 | cmplt $20, $31, $27 | ||
| 2862 | addq $18, $18, $18 | ||
| 2863 | addq $20, $20, $20 | ||
| 2864 | addq $20, $21, $20 | ||
| 2865 | addq $22, $27, $22 | ||
| 2866 | addq $23, $18, $23 | ||
| 2867 | addq $8, $20, $8 | ||
| 2868 | cmpult $23, $18, $17 | ||
| 2869 | cmpult $8, $20, $28 | ||
| 2870 | addq $8, $17, $8 | ||
| 2871 | addq $22, $28, $22 | ||
| 2872 | stq $23, 40($16) | ||
| 2873 | bis $31, $31, $23 | ||
| 2874 | mulq $3, $3, $25 | ||
| 2875 | umulh $3, $3, $19 | ||
| 2876 | addq $8, $25, $8 | ||
| 2877 | addq $22, $19, $22 | ||
| 2878 | cmpult $8, $25, $24 | ||
| 2879 | cmpult $22, $19, $21 | ||
| 2880 | addq $22, $24, $22 | ||
| 2881 | addq $23, $21, $23 | ||
| 2882 | mulq $4, $2, $27 | ||
| 2883 | umulh $4, $2, $18 | ||
| 2884 | cmplt $27, $31, $20 | ||
| 2885 | cmplt $18, $31, $17 | ||
| 2886 | addq $27, $27, $27 | ||
| 2887 | addq $18, $18, $18 | ||
| 2888 | addq $18, $20, $18 | ||
| 2889 | addq $23, $17, $23 | ||
| 2890 | addq $8, $27, $8 | ||
| 2891 | addq $22, $18, $22 | ||
| 2892 | cmpult $8, $27, $28 | ||
| 2893 | cmpult $22, $18, $25 | ||
| 2894 | addq $22, $28, $22 | ||
| 2895 | addq $23, $25, $23 | ||
| 2896 | mulq $5, $1, $19 | ||
| 2897 | umulh $5, $1, $24 | ||
| 2898 | cmplt $19, $31, $21 | ||
| 2899 | cmplt $24, $31, $20 | ||
| 2900 | addq $19, $19, $19 | ||
| 2901 | addq $24, $24, $24 | ||
| 2902 | addq $24, $21, $24 | ||
| 2903 | addq $23, $20, $23 | ||
| 2904 | addq $8, $19, $8 | ||
| 2905 | addq $22, $24, $22 | ||
| 2906 | cmpult $8, $19, $17 | ||
| 2907 | cmpult $22, $24, $27 | ||
| 2908 | addq $22, $17, $22 | ||
| 2909 | addq $23, $27, $23 | ||
| 2910 | mulq $6, $0, $18 | ||
| 2911 | umulh $6, $0, $28 | ||
| 2912 | cmplt $18, $31, $25 | ||
| 2913 | cmplt $28, $31, $21 | ||
| 2914 | addq $18, $18, $18 | ||
| 2915 | addq $28, $28, $28 | ||
| 2916 | addq $28, $25, $28 | ||
| 2917 | addq $23, $21, $23 | ||
| 2918 | addq $8, $18, $8 | ||
| 2919 | addq $22, $28, $22 | ||
| 2920 | cmpult $8, $18, $20 | ||
| 2921 | cmpult $22, $28, $19 | ||
| 2922 | addq $22, $20, $22 | ||
| 2923 | addq $23, $19, $23 | ||
| 2924 | stq $8, 48($16) | ||
| 2925 | bis $31, $31, $8 | ||
| 2926 | mulq $4, $3, $24 | ||
| 2927 | umulh $4, $3, $17 | ||
| 2928 | cmplt $24, $31, $27 | ||
| 2929 | cmplt $17, $31, $25 | ||
| 2930 | addq $24, $24, $24 | ||
| 2931 | addq $17, $17, $17 | ||
| 2932 | addq $17, $27, $17 | ||
| 2933 | addq $8, $25, $8 | ||
| 2934 | addq $22, $24, $22 | ||
| 2935 | addq $23, $17, $23 | ||
| 2936 | cmpult $22, $24, $21 | ||
| 2937 | cmpult $23, $17, $18 | ||
| 2938 | addq $23, $21, $23 | ||
| 2939 | addq $8, $18, $8 | ||
| 2940 | mulq $5, $2, $28 | ||
| 2941 | umulh $5, $2, $20 | ||
| 2942 | cmplt $28, $31, $19 | ||
| 2943 | cmplt $20, $31, $27 | ||
| 2944 | addq $28, $28, $28 | ||
| 2945 | addq $20, $20, $20 | ||
| 2946 | addq $20, $19, $20 | ||
| 2947 | addq $8, $27, $8 | ||
| 2948 | addq $22, $28, $22 | ||
| 2949 | addq $23, $20, $23 | ||
| 2950 | cmpult $22, $28, $25 | ||
| 2951 | cmpult $23, $20, $24 | ||
| 2952 | addq $23, $25, $23 | ||
| 2953 | addq $8, $24, $8 | ||
| 2954 | mulq $6, $1, $17 | ||
| 2955 | umulh $6, $1, $21 | ||
| 2956 | cmplt $17, $31, $18 | ||
| 2957 | cmplt $21, $31, $19 | ||
| 2958 | addq $17, $17, $17 | ||
| 2959 | addq $21, $21, $21 | ||
| 2960 | addq $21, $18, $21 | ||
| 2961 | addq $8, $19, $8 | ||
| 2962 | addq $22, $17, $22 | ||
| 2963 | addq $23, $21, $23 | ||
| 2964 | cmpult $22, $17, $27 | ||
| 2965 | cmpult $23, $21, $28 | ||
| 2966 | addq $23, $27, $23 | ||
| 2967 | addq $8, $28, $8 | ||
| 2968 | mulq $7, $0, $20 | ||
| 2969 | umulh $7, $0, $25 | ||
| 2970 | cmplt $20, $31, $24 | ||
| 2971 | cmplt $25, $31, $18 | ||
| 2972 | addq $20, $20, $20 | ||
| 2973 | addq $25, $25, $25 | ||
| 2974 | addq $25, $24, $25 | ||
| 2975 | addq $8, $18, $8 | ||
| 2976 | addq $22, $20, $22 | ||
| 2977 | addq $23, $25, $23 | ||
| 2978 | cmpult $22, $20, $19 | ||
| 2979 | cmpult $23, $25, $17 | ||
| 2980 | addq $23, $19, $23 | ||
| 2981 | addq $8, $17, $8 | ||
| 2982 | stq $22, 56($16) | ||
| 2983 | bis $31, $31, $22 | ||
| 2984 | mulq $4, $4, $21 | ||
| 2985 | umulh $4, $4, $27 | ||
| 2986 | addq $23, $21, $23 | ||
| 2987 | addq $8, $27, $8 | ||
| 2988 | cmpult $23, $21, $28 | ||
| 2989 | cmpult $8, $27, $24 | ||
| 2990 | addq $8, $28, $8 | ||
| 2991 | addq $22, $24, $22 | ||
| 2992 | mulq $5, $3, $18 | ||
| 2993 | umulh $5, $3, $20 | ||
| 2994 | cmplt $18, $31, $25 | ||
| 2995 | cmplt $20, $31, $19 | ||
| 2996 | addq $18, $18, $18 | ||
| 2997 | addq $20, $20, $20 | ||
| 2998 | addq $20, $25, $20 | ||
| 2999 | addq $22, $19, $22 | ||
| 3000 | addq $23, $18, $23 | ||
| 3001 | addq $8, $20, $8 | ||
| 3002 | cmpult $23, $18, $17 | ||
| 3003 | cmpult $8, $20, $21 | ||
| 3004 | addq $8, $17, $8 | ||
| 3005 | addq $22, $21, $22 | ||
| 3006 | mulq $6, $2, $27 | ||
| 3007 | umulh $6, $2, $28 | ||
| 3008 | cmplt $27, $31, $24 | ||
| 3009 | cmplt $28, $31, $25 | ||
| 3010 | addq $27, $27, $27 | ||
| 3011 | addq $28, $28, $28 | ||
| 3012 | addq $28, $24, $28 | ||
| 3013 | addq $22, $25, $22 | ||
| 3014 | addq $23, $27, $23 | ||
| 3015 | addq $8, $28, $8 | ||
| 3016 | cmpult $23, $27, $19 | ||
| 3017 | cmpult $8, $28, $18 | ||
| 3018 | addq $8, $19, $8 | ||
| 3019 | addq $22, $18, $22 | ||
| 3020 | mulq $7, $1, $20 | ||
| 3021 | umulh $7, $1, $17 | ||
| 3022 | cmplt $20, $31, $21 | ||
| 3023 | cmplt $17, $31, $24 | ||
| 3024 | addq $20, $20, $20 | ||
| 3025 | addq $17, $17, $17 | ||
| 3026 | addq $17, $21, $17 | ||
| 3027 | addq $22, $24, $22 | ||
| 3028 | addq $23, $20, $23 | ||
| 3029 | addq $8, $17, $8 | ||
| 3030 | cmpult $23, $20, $25 | ||
| 3031 | cmpult $8, $17, $27 | ||
| 3032 | addq $8, $25, $8 | ||
| 3033 | addq $22, $27, $22 | ||
| 3034 | stq $23, 64($16) | ||
| 3035 | bis $31, $31, $23 | ||
| 3036 | mulq $5, $4, $28 | ||
| 3037 | umulh $5, $4, $19 | ||
| 3038 | cmplt $28, $31, $18 | ||
| 3039 | cmplt $19, $31, $21 | ||
| 3040 | addq $28, $28, $28 | ||
| 3041 | addq $19, $19, $19 | ||
| 3042 | addq $19, $18, $19 | ||
| 3043 | addq $23, $21, $23 | ||
| 3044 | addq $8, $28, $8 | ||
| 3045 | addq $22, $19, $22 | ||
| 3046 | cmpult $8, $28, $24 | ||
| 3047 | cmpult $22, $19, $20 | ||
| 3048 | addq $22, $24, $22 | ||
| 3049 | addq $23, $20, $23 | ||
| 3050 | mulq $6, $3, $17 | ||
| 3051 | umulh $6, $3, $25 | ||
| 3052 | cmplt $17, $31, $27 | ||
| 3053 | cmplt $25, $31, $18 | ||
| 3054 | addq $17, $17, $17 | ||
| 3055 | addq $25, $25, $25 | ||
| 3056 | addq $25, $27, $25 | ||
| 3057 | addq $23, $18, $23 | ||
| 3058 | addq $8, $17, $8 | ||
| 3059 | addq $22, $25, $22 | ||
| 3060 | cmpult $8, $17, $21 | ||
| 3061 | cmpult $22, $25, $28 | ||
| 3062 | addq $22, $21, $22 | ||
| 3063 | addq $23, $28, $23 | ||
| 3064 | mulq $7, $2, $19 | ||
| 3065 | umulh $7, $2, $24 | ||
| 3066 | cmplt $19, $31, $20 | ||
| 3067 | cmplt $24, $31, $27 | ||
| 3068 | addq $19, $19, $19 | ||
| 3069 | addq $24, $24, $24 | ||
| 3070 | addq $24, $20, $24 | ||
| 3071 | addq $23, $27, $23 | ||
| 3072 | addq $8, $19, $8 | ||
| 3073 | addq $22, $24, $22 | ||
| 3074 | cmpult $8, $19, $18 | ||
| 3075 | cmpult $22, $24, $17 | ||
| 3076 | addq $22, $18, $22 | ||
| 3077 | addq $23, $17, $23 | ||
| 3078 | stq $8, 72($16) | ||
| 3079 | bis $31, $31, $8 | ||
| 3080 | mulq $5, $5, $25 | ||
| 3081 | umulh $5, $5, $21 | ||
| 3082 | addq $22, $25, $22 | ||
| 3083 | addq $23, $21, $23 | ||
| 3084 | cmpult $22, $25, $28 | ||
| 3085 | cmpult $23, $21, $20 | ||
| 3086 | addq $23, $28, $23 | ||
| 3087 | addq $8, $20, $8 | ||
| 3088 | mulq $6, $4, $27 | ||
| 3089 | umulh $6, $4, $19 | ||
| 3090 | cmplt $27, $31, $24 | ||
| 3091 | cmplt $19, $31, $18 | ||
| 3092 | addq $27, $27, $27 | ||
| 3093 | addq $19, $19, $19 | ||
| 3094 | addq $19, $24, $19 | ||
| 3095 | addq $8, $18, $8 | ||
| 3096 | addq $22, $27, $22 | ||
| 3097 | addq $23, $19, $23 | ||
| 3098 | cmpult $22, $27, $17 | ||
| 3099 | cmpult $23, $19, $25 | ||
| 3100 | addq $23, $17, $23 | ||
| 3101 | addq $8, $25, $8 | ||
| 3102 | mulq $7, $3, $21 | ||
| 3103 | umulh $7, $3, $28 | ||
| 3104 | cmplt $21, $31, $20 | ||
| 3105 | cmplt $28, $31, $24 | ||
| 3106 | addq $21, $21, $21 | ||
| 3107 | addq $28, $28, $28 | ||
| 3108 | addq $28, $20, $28 | ||
| 3109 | addq $8, $24, $8 | ||
| 3110 | addq $22, $21, $22 | ||
| 3111 | addq $23, $28, $23 | ||
| 3112 | cmpult $22, $21, $18 | ||
| 3113 | cmpult $23, $28, $27 | ||
| 3114 | addq $23, $18, $23 | ||
| 3115 | addq $8, $27, $8 | ||
| 3116 | stq $22, 80($16) | ||
| 3117 | bis $31, $31, $22 | ||
| 3118 | mulq $6, $5, $19 | ||
| 3119 | umulh $6, $5, $17 | ||
| 3120 | cmplt $19, $31, $25 | ||
| 3121 | cmplt $17, $31, $20 | ||
| 3122 | addq $19, $19, $19 | ||
| 3123 | addq $17, $17, $17 | ||
| 3124 | addq $17, $25, $17 | ||
| 3125 | addq $22, $20, $22 | ||
| 3126 | addq $23, $19, $23 | ||
| 3127 | addq $8, $17, $8 | ||
| 3128 | cmpult $23, $19, $24 | ||
| 3129 | cmpult $8, $17, $21 | ||
| 3130 | addq $8, $24, $8 | ||
| 3131 | addq $22, $21, $22 | ||
| 3132 | mulq $7, $4, $28 | ||
| 3133 | umulh $7, $4, $18 | ||
| 3134 | cmplt $28, $31, $27 | ||
| 3135 | cmplt $18, $31, $25 | ||
| 3136 | addq $28, $28, $28 | ||
| 3137 | addq $18, $18, $18 | ||
| 3138 | addq $18, $27, $18 | ||
| 3139 | addq $22, $25, $22 | ||
| 3140 | addq $23, $28, $23 | ||
| 3141 | addq $8, $18, $8 | ||
| 3142 | cmpult $23, $28, $20 | ||
| 3143 | cmpult $8, $18, $19 | ||
| 3144 | addq $8, $20, $8 | ||
| 3145 | addq $22, $19, $22 | ||
| 3146 | stq $23, 88($16) | ||
| 3147 | bis $31, $31, $23 | ||
| 3148 | mulq $6, $6, $17 | ||
| 3149 | umulh $6, $6, $24 | ||
| 3150 | addq $8, $17, $8 | ||
| 3151 | addq $22, $24, $22 | ||
| 3152 | cmpult $8, $17, $21 | ||
| 3153 | cmpult $22, $24, $27 | ||
| 3154 | addq $22, $21, $22 | ||
| 3155 | addq $23, $27, $23 | ||
| 3156 | mulq $7, $5, $25 | ||
| 3157 | umulh $7, $5, $28 | ||
| 3158 | cmplt $25, $31, $18 | ||
| 3159 | cmplt $28, $31, $20 | ||
| 3160 | addq $25, $25, $25 | ||
| 3161 | addq $28, $28, $28 | ||
| 3162 | addq $28, $18, $28 | ||
| 3163 | addq $23, $20, $23 | ||
| 3164 | addq $8, $25, $8 | ||
| 3165 | addq $22, $28, $22 | ||
| 3166 | cmpult $8, $25, $19 | ||
| 3167 | cmpult $22, $28, $17 | ||
| 3168 | addq $22, $19, $22 | ||
| 3169 | addq $23, $17, $23 | ||
| 3170 | stq $8, 96($16) | ||
| 3171 | bis $31, $31, $8 | ||
| 3172 | mulq $7, $6, $24 | ||
| 3173 | umulh $7, $6, $21 | ||
| 3174 | cmplt $24, $31, $27 | ||
| 3175 | cmplt $21, $31, $18 | ||
| 3176 | addq $24, $24, $24 | ||
| 3177 | addq $21, $21, $21 | ||
| 3178 | addq $21, $27, $21 | ||
| 3179 | addq $8, $18, $8 | ||
| 3180 | addq $22, $24, $22 | ||
| 3181 | addq $23, $21, $23 | ||
| 3182 | cmpult $22, $24, $20 | ||
| 3183 | cmpult $23, $21, $25 | ||
| 3184 | addq $23, $20, $23 | ||
| 3185 | addq $8, $25, $8 | ||
| 3186 | stq $22, 104($16) | ||
| 3187 | bis $31, $31, $22 | ||
| 3188 | mulq $7, $7, $28 | ||
| 3189 | umulh $7, $7, $19 | ||
| 3190 | addq $23, $28, $23 | ||
| 3191 | addq $8, $19, $8 | ||
| 3192 | cmpult $23, $28, $17 | ||
| 3193 | cmpult $8, $19, $27 | ||
| 3194 | addq $8, $17, $8 | ||
| 3195 | addq $22, $27, $22 | ||
| 3196 | stq $23, 112($16) | ||
| 3197 | stq $8, 120($16) | ||
| 3198 | ret $31,($26),1 | ||
| 3199 | .end bn_sqr_comba8 | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.s.works b/src/lib/libssl/src/crypto/bn/asm/alpha.s.works deleted file mode 100644 index ee6c587809..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.s.works +++ /dev/null | |||
| @@ -1,533 +0,0 @@ | |||
| 1 | |||
| 2 | # DEC Alpha assember | ||
| 3 | # The bn_div64 is actually gcc output but the other parts are hand done. | ||
| 4 | # Thanks to tzeruch@ceddec.com for sending me the gcc output for | ||
| 5 | # bn_div64. | ||
| 6 | # I've gone back and re-done most of routines. | ||
| 7 | # The key thing to remeber for the 164 CPU is that while a | ||
| 8 | # multiply operation takes 8 cycles, another one can only be issued | ||
| 9 | # after 4 cycles have elapsed. I've done modification to help | ||
| 10 | # improve this. Also, normally, a ld instruction will not be available | ||
| 11 | # for about 3 cycles. | ||
| 12 | .file 1 "bn_asm.c" | ||
| 13 | .set noat | ||
| 14 | gcc2_compiled.: | ||
| 15 | __gnu_compiled_c: | ||
| 16 | .text | ||
| 17 | .align 3 | ||
| 18 | .globl bn_mul_add_words | ||
| 19 | .ent bn_mul_add_words | ||
| 20 | bn_mul_add_words: | ||
| 21 | bn_mul_add_words..ng: | ||
| 22 | .frame $30,0,$26,0 | ||
| 23 | .prologue 0 | ||
| 24 | .align 5 | ||
| 25 | subq $18,4,$18 | ||
| 26 | bis $31,$31,$0 | ||
| 27 | blt $18,$43 # if we are -1, -2, -3 or -4 goto tail code | ||
| 28 | ldq $20,0($17) # 1 1 | ||
| 29 | ldq $1,0($16) # 1 1 | ||
| 30 | .align 3 | ||
| 31 | $42: | ||
| 32 | mulq $20,$19,$5 # 1 2 1 ###### | ||
| 33 | ldq $21,8($17) # 2 1 | ||
| 34 | ldq $2,8($16) # 2 1 | ||
| 35 | umulh $20,$19,$20 # 1 2 ###### | ||
| 36 | ldq $27,16($17) # 3 1 | ||
| 37 | ldq $3,16($16) # 3 1 | ||
| 38 | mulq $21,$19,$6 # 2 2 1 ###### | ||
| 39 | ldq $28,24($17) # 4 1 | ||
| 40 | addq $1,$5,$1 # 1 2 2 | ||
| 41 | ldq $4,24($16) # 4 1 | ||
| 42 | umulh $21,$19,$21 # 2 2 ###### | ||
| 43 | cmpult $1,$5,$22 # 1 2 3 1 | ||
| 44 | addq $20,$22,$20 # 1 3 1 | ||
| 45 | addq $1,$0,$1 # 1 2 3 1 | ||
| 46 | mulq $27,$19,$7 # 3 2 1 ###### | ||
| 47 | cmpult $1,$0,$0 # 1 2 3 2 | ||
| 48 | addq $2,$6,$2 # 2 2 2 | ||
| 49 | addq $20,$0,$0 # 1 3 2 | ||
| 50 | cmpult $2,$6,$23 # 2 2 3 1 | ||
| 51 | addq $21,$23,$21 # 2 3 1 | ||
| 52 | umulh $27,$19,$27 # 3 2 ###### | ||
| 53 | addq $2,$0,$2 # 2 2 3 1 | ||
| 54 | cmpult $2,$0,$0 # 2 2 3 2 | ||
| 55 | subq $18,4,$18 | ||
| 56 | mulq $28,$19,$8 # 4 2 1 ###### | ||
| 57 | addq $21,$0,$0 # 2 3 2 | ||
| 58 | addq $3,$7,$3 # 3 2 2 | ||
| 59 | addq $16,32,$16 | ||
| 60 | cmpult $3,$7,$24 # 3 2 3 1 | ||
| 61 | stq $1,-32($16) # 1 2 4 | ||
| 62 | umulh $28,$19,$28 # 4 2 ###### | ||
| 63 | addq $27,$24,$27 # 3 3 1 | ||
| 64 | addq $3,$0,$3 # 3 2 3 1 | ||
| 65 | stq $2,-24($16) # 2 2 4 | ||
| 66 | cmpult $3,$0,$0 # 3 2 3 2 | ||
| 67 | stq $3,-16($16) # 3 2 4 | ||
| 68 | addq $4,$8,$4 # 4 2 2 | ||
| 69 | addq $27,$0,$0 # 3 3 2 | ||
| 70 | cmpult $4,$8,$25 # 4 2 3 1 | ||
| 71 | addq $17,32,$17 | ||
| 72 | addq $28,$25,$28 # 4 3 1 | ||
| 73 | addq $4,$0,$4 # 4 2 3 1 | ||
| 74 | cmpult $4,$0,$0 # 4 2 3 2 | ||
| 75 | stq $4,-8($16) # 4 2 4 | ||
| 76 | addq $28,$0,$0 # 4 3 2 | ||
| 77 | blt $18,$43 | ||
| 78 | |||
| 79 | ldq $20,0($17) # 1 1 | ||
| 80 | ldq $1,0($16) # 1 1 | ||
| 81 | |||
| 82 | br $42 | ||
| 83 | |||
| 84 | .align 4 | ||
| 85 | $45: | ||
| 86 | ldq $20,0($17) # 4 1 | ||
| 87 | ldq $1,0($16) # 4 1 | ||
| 88 | mulq $20,$19,$5 # 4 2 1 | ||
| 89 | subq $18,1,$18 | ||
| 90 | addq $16,8,$16 | ||
| 91 | addq $17,8,$17 | ||
| 92 | umulh $20,$19,$20 # 4 2 | ||
| 93 | addq $1,$5,$1 # 4 2 2 | ||
| 94 | cmpult $1,$5,$22 # 4 2 3 1 | ||
| 95 | addq $20,$22,$20 # 4 3 1 | ||
| 96 | addq $1,$0,$1 # 4 2 3 1 | ||
| 97 | cmpult $1,$0,$0 # 4 2 3 2 | ||
| 98 | addq $20,$0,$0 # 4 3 2 | ||
| 99 | stq $1,-8($16) # 4 2 4 | ||
| 100 | bgt $18,$45 | ||
| 101 | ret $31,($26),1 # else exit | ||
| 102 | |||
| 103 | .align 4 | ||
| 104 | $43: | ||
| 105 | addq $18,4,$18 | ||
| 106 | bgt $18,$45 # goto tail code | ||
| 107 | ret $31,($26),1 # else exit | ||
| 108 | |||
| 109 | .end bn_mul_add_words | ||
| 110 | .align 3 | ||
| 111 | .globl bn_mul_words | ||
| 112 | .ent bn_mul_words | ||
| 113 | bn_mul_words: | ||
| 114 | bn_mul_words..ng: | ||
| 115 | .frame $30,0,$26,0 | ||
| 116 | .prologue 0 | ||
| 117 | .align 5 | ||
| 118 | subq $18,4,$18 | ||
| 119 | bis $31,$31,$0 | ||
| 120 | blt $18,$143 # if we are -1, -2, -3 or -4 goto tail code | ||
| 121 | ldq $20,0($17) # 1 1 | ||
| 122 | .align 3 | ||
| 123 | $142: | ||
| 124 | |||
| 125 | mulq $20,$19,$5 # 1 2 1 ##### | ||
| 126 | ldq $21,8($17) # 2 1 | ||
| 127 | ldq $27,16($17) # 3 1 | ||
| 128 | umulh $20,$19,$20 # 1 2 ##### | ||
| 129 | ldq $28,24($17) # 4 1 | ||
| 130 | mulq $21,$19,$6 # 2 2 1 ##### | ||
| 131 | addq $5,$0,$5 # 1 2 3 1 | ||
| 132 | subq $18,4,$18 | ||
| 133 | cmpult $5,$0,$0 # 1 2 3 2 | ||
| 134 | umulh $21,$19,$21 # 2 2 ##### | ||
| 135 | addq $20,$0,$0 # 1 3 2 | ||
| 136 | addq $17,32,$17 | ||
| 137 | addq $6,$0,$6 # 2 2 3 1 | ||
| 138 | mulq $27,$19,$7 # 3 2 1 ##### | ||
| 139 | cmpult $6,$0,$0 # 2 2 3 2 | ||
| 140 | addq $21,$0,$0 # 2 3 2 | ||
| 141 | addq $16,32,$16 | ||
| 142 | umulh $27,$19,$27 # 3 2 ##### | ||
| 143 | stq $5,-32($16) # 1 2 4 | ||
| 144 | mulq $28,$19,$8 # 4 2 1 ##### | ||
| 145 | addq $7,$0,$7 # 3 2 3 1 | ||
| 146 | stq $6,-24($16) # 2 2 4 | ||
| 147 | cmpult $7,$0,$0 # 3 2 3 2 | ||
| 148 | umulh $28,$19,$28 # 4 2 ##### | ||
| 149 | addq $27,$0,$0 # 3 3 2 | ||
| 150 | stq $7,-16($16) # 3 2 4 | ||
| 151 | addq $8,$0,$8 # 4 2 3 1 | ||
| 152 | cmpult $8,$0,$0 # 4 2 3 2 | ||
| 153 | |||
| 154 | addq $28,$0,$0 # 4 3 2 | ||
| 155 | |||
| 156 | stq $8,-8($16) # 4 2 4 | ||
| 157 | |||
| 158 | blt $18,$143 | ||
| 159 | |||
| 160 | ldq $20,0($17) # 1 1 | ||
| 161 | |||
| 162 | br $142 | ||
| 163 | |||
| 164 | .align 4 | ||
| 165 | $145: | ||
| 166 | ldq $20,0($17) # 4 1 | ||
| 167 | mulq $20,$19,$5 # 4 2 1 | ||
| 168 | subq $18,1,$18 | ||
| 169 | umulh $20,$19,$20 # 4 2 | ||
| 170 | addq $5,$0,$5 # 4 2 3 1 | ||
| 171 | addq $16,8,$16 | ||
| 172 | cmpult $5,$0,$0 # 4 2 3 2 | ||
| 173 | addq $17,8,$17 | ||
| 174 | addq $20,$0,$0 # 4 3 2 | ||
| 175 | stq $5,-8($16) # 4 2 4 | ||
| 176 | |||
| 177 | bgt $18,$145 | ||
| 178 | ret $31,($26),1 # else exit | ||
| 179 | |||
| 180 | .align 4 | ||
| 181 | $143: | ||
| 182 | addq $18,4,$18 | ||
| 183 | bgt $18,$145 # goto tail code | ||
| 184 | ret $31,($26),1 # else exit | ||
| 185 | |||
| 186 | .end bn_mul_words | ||
| 187 | .align 3 | ||
| 188 | .globl bn_sqr_words | ||
| 189 | .ent bn_sqr_words | ||
| 190 | bn_sqr_words: | ||
| 191 | bn_sqr_words..ng: | ||
| 192 | .frame $30,0,$26,0 | ||
| 193 | .prologue 0 | ||
| 194 | |||
| 195 | subq $18,4,$18 | ||
| 196 | blt $18,$543 # if we are -1, -2, -3 or -4 goto tail code | ||
| 197 | ldq $20,0($17) # 1 1 | ||
| 198 | .align 3 | ||
| 199 | $542: | ||
| 200 | mulq $20,$20,$5 ###### | ||
| 201 | ldq $21,8($17) # 1 1 | ||
| 202 | subq $18,4 | ||
| 203 | umulh $20,$20,$1 ###### | ||
| 204 | ldq $27,16($17) # 1 1 | ||
| 205 | mulq $21,$21,$6 ###### | ||
| 206 | ldq $28,24($17) # 1 1 | ||
| 207 | stq $5,0($16) # r[0] | ||
| 208 | umulh $21,$21,$2 ###### | ||
| 209 | stq $1,8($16) # r[1] | ||
| 210 | mulq $27,$27,$7 ###### | ||
| 211 | stq $6,16($16) # r[0] | ||
| 212 | umulh $27,$27,$3 ###### | ||
| 213 | stq $2,24($16) # r[1] | ||
| 214 | mulq $28,$28,$8 ###### | ||
| 215 | stq $7,32($16) # r[0] | ||
| 216 | umulh $28,$28,$4 ###### | ||
| 217 | stq $3,40($16) # r[1] | ||
| 218 | |||
| 219 | addq $16,64,$16 | ||
| 220 | addq $17,32,$17 | ||
| 221 | stq $8,-16($16) # r[0] | ||
| 222 | stq $4,-8($16) # r[1] | ||
| 223 | |||
| 224 | blt $18,$543 | ||
| 225 | ldq $20,0($17) # 1 1 | ||
| 226 | br $542 | ||
| 227 | |||
| 228 | $442: | ||
| 229 | ldq $20,0($17) # a[0] | ||
| 230 | mulq $20,$20,$5 # a[0]*w low part r2 | ||
| 231 | addq $16,16,$16 | ||
| 232 | addq $17,8,$17 | ||
| 233 | subq $18,1,$18 | ||
| 234 | umulh $20,$20,$1 # a[0]*w high part r3 | ||
| 235 | stq $5,-16($16) # r[0] | ||
| 236 | stq $1,-8($16) # r[1] | ||
| 237 | |||
| 238 | bgt $18,$442 | ||
| 239 | ret $31,($26),1 # else exit | ||
| 240 | |||
| 241 | .align 4 | ||
| 242 | $543: | ||
| 243 | addq $18,4,$18 | ||
| 244 | bgt $18,$442 # goto tail code | ||
| 245 | ret $31,($26),1 # else exit | ||
| 246 | .end bn_sqr_words | ||
| 247 | |||
| 248 | .align 3 | ||
| 249 | .globl bn_add_words | ||
| 250 | .ent bn_add_words | ||
| 251 | bn_add_words: | ||
| 252 | bn_add_words..ng: | ||
| 253 | .frame $30,0,$26,0 | ||
| 254 | .prologue 0 | ||
| 255 | |||
| 256 | subq $19,4,$19 | ||
| 257 | bis $31,$31,$0 # carry = 0 | ||
| 258 | blt $19,$900 | ||
| 259 | ldq $5,0($17) # a[0] | ||
| 260 | ldq $1,0($18) # b[1] | ||
| 261 | .align 3 | ||
| 262 | $901: | ||
| 263 | addq $1,$5,$1 # r=a+b; | ||
| 264 | ldq $6,8($17) # a[1] | ||
| 265 | cmpult $1,$5,$22 # did we overflow? | ||
| 266 | ldq $2,8($18) # b[1] | ||
| 267 | addq $1,$0,$1 # c+= overflow | ||
| 268 | ldq $7,16($17) # a[2] | ||
| 269 | cmpult $1,$0,$0 # overflow? | ||
| 270 | ldq $3,16($18) # b[2] | ||
| 271 | addq $0,$22,$0 | ||
| 272 | ldq $8,24($17) # a[3] | ||
| 273 | addq $2,$6,$2 # r=a+b; | ||
| 274 | ldq $4,24($18) # b[3] | ||
| 275 | cmpult $2,$6,$23 # did we overflow? | ||
| 276 | addq $3,$7,$3 # r=a+b; | ||
| 277 | addq $2,$0,$2 # c+= overflow | ||
| 278 | cmpult $3,$7,$24 # did we overflow? | ||
| 279 | cmpult $2,$0,$0 # overflow? | ||
| 280 | addq $4,$8,$4 # r=a+b; | ||
| 281 | addq $0,$23,$0 | ||
| 282 | cmpult $4,$8,$25 # did we overflow? | ||
| 283 | addq $3,$0,$3 # c+= overflow | ||
| 284 | stq $1,0($16) # r[0]=c | ||
| 285 | cmpult $3,$0,$0 # overflow? | ||
| 286 | stq $2,8($16) # r[1]=c | ||
| 287 | addq $0,$24,$0 | ||
| 288 | stq $3,16($16) # r[2]=c | ||
| 289 | addq $4,$0,$4 # c+= overflow | ||
| 290 | subq $19,4,$19 # loop-- | ||
| 291 | cmpult $4,$0,$0 # overflow? | ||
| 292 | addq $17,32,$17 # a++ | ||
| 293 | addq $0,$25,$0 | ||
| 294 | stq $4,24($16) # r[3]=c | ||
| 295 | addq $18,32,$18 # b++ | ||
| 296 | addq $16,32,$16 # r++ | ||
| 297 | |||
| 298 | blt $19,$900 | ||
| 299 | ldq $5,0($17) # a[0] | ||
| 300 | ldq $1,0($18) # b[1] | ||
| 301 | br $901 | ||
| 302 | .align 4 | ||
| 303 | $945: | ||
| 304 | ldq $5,0($17) # a[0] | ||
| 305 | ldq $1,0($18) # b[1] | ||
| 306 | addq $1,$5,$1 # r=a+b; | ||
| 307 | subq $19,1,$19 # loop-- | ||
| 308 | addq $1,$0,$1 # c+= overflow | ||
| 309 | addq $17,8,$17 # a++ | ||
| 310 | cmpult $1,$5,$22 # did we overflow? | ||
| 311 | cmpult $1,$0,$0 # overflow? | ||
| 312 | addq $18,8,$18 # b++ | ||
| 313 | stq $1,0($16) # r[0]=c | ||
| 314 | addq $0,$22,$0 | ||
| 315 | addq $16,8,$16 # r++ | ||
| 316 | |||
| 317 | bgt $19,$945 | ||
| 318 | ret $31,($26),1 # else exit | ||
| 319 | |||
| 320 | $900: | ||
| 321 | addq $19,4,$19 | ||
| 322 | bgt $19,$945 # goto tail code | ||
| 323 | ret $31,($26),1 # else exit | ||
| 324 | .end bn_add_words | ||
| 325 | |||
| 326 | # | ||
| 327 | # What follows was taken directly from the C compiler with a few | ||
| 328 | # hacks to redo the lables. | ||
| 329 | # | ||
| 330 | .text | ||
| 331 | .align 3 | ||
| 332 | .globl bn_div64 | ||
| 333 | .ent bn_div64 | ||
| 334 | bn_div64: | ||
| 335 | ldgp $29,0($27) | ||
| 336 | bn_div64..ng: | ||
| 337 | lda $30,-48($30) | ||
| 338 | .frame $30,48,$26,0 | ||
| 339 | stq $26,0($30) | ||
| 340 | stq $9,8($30) | ||
| 341 | stq $10,16($30) | ||
| 342 | stq $11,24($30) | ||
| 343 | stq $12,32($30) | ||
| 344 | stq $13,40($30) | ||
| 345 | .mask 0x4003e00,-48 | ||
| 346 | .prologue 1 | ||
| 347 | bis $16,$16,$9 | ||
| 348 | bis $17,$17,$10 | ||
| 349 | bis $18,$18,$11 | ||
| 350 | bis $31,$31,$13 | ||
| 351 | bis $31,2,$12 | ||
| 352 | bne $11,$119 | ||
| 353 | lda $0,-1 | ||
| 354 | br $31,$136 | ||
| 355 | .align 4 | ||
| 356 | $119: | ||
| 357 | bis $11,$11,$16 | ||
| 358 | jsr $26,BN_num_bits_word | ||
| 359 | ldgp $29,0($26) | ||
| 360 | subq $0,64,$1 | ||
| 361 | beq $1,$120 | ||
| 362 | bis $31,1,$1 | ||
| 363 | sll $1,$0,$1 | ||
| 364 | cmpule $9,$1,$1 | ||
| 365 | bne $1,$120 | ||
| 366 | # lda $16,_IO_stderr_ | ||
| 367 | # lda $17,$C32 | ||
| 368 | # bis $0,$0,$18 | ||
| 369 | # jsr $26,fprintf | ||
| 370 | # ldgp $29,0($26) | ||
| 371 | jsr $26,abort | ||
| 372 | ldgp $29,0($26) | ||
| 373 | .align 4 | ||
| 374 | $120: | ||
| 375 | bis $31,64,$3 | ||
| 376 | cmpult $9,$11,$2 | ||
| 377 | subq $3,$0,$1 | ||
| 378 | addl $1,$31,$0 | ||
| 379 | subq $9,$11,$1 | ||
| 380 | cmoveq $2,$1,$9 | ||
| 381 | beq $0,$122 | ||
| 382 | zapnot $0,15,$2 | ||
| 383 | subq $3,$0,$1 | ||
| 384 | sll $11,$2,$11 | ||
| 385 | sll $9,$2,$3 | ||
| 386 | srl $10,$1,$1 | ||
| 387 | sll $10,$2,$10 | ||
| 388 | bis $3,$1,$9 | ||
| 389 | $122: | ||
| 390 | srl $11,32,$5 | ||
| 391 | zapnot $11,15,$6 | ||
| 392 | lda $7,-1 | ||
| 393 | .align 5 | ||
| 394 | $123: | ||
| 395 | srl $9,32,$1 | ||
| 396 | subq $1,$5,$1 | ||
| 397 | bne $1,$126 | ||
| 398 | zapnot $7,15,$27 | ||
| 399 | br $31,$127 | ||
| 400 | .align 4 | ||
| 401 | $126: | ||
| 402 | bis $9,$9,$24 | ||
| 403 | bis $5,$5,$25 | ||
| 404 | divqu $24,$25,$27 | ||
| 405 | $127: | ||
| 406 | srl $10,32,$4 | ||
| 407 | .align 5 | ||
| 408 | $128: | ||
| 409 | mulq $27,$5,$1 | ||
| 410 | subq $9,$1,$3 | ||
| 411 | zapnot $3,240,$1 | ||
| 412 | bne $1,$129 | ||
| 413 | mulq $6,$27,$2 | ||
| 414 | sll $3,32,$1 | ||
| 415 | addq $1,$4,$1 | ||
| 416 | cmpule $2,$1,$2 | ||
| 417 | bne $2,$129 | ||
| 418 | subq $27,1,$27 | ||
| 419 | br $31,$128 | ||
| 420 | .align 4 | ||
| 421 | $129: | ||
| 422 | mulq $27,$6,$1 | ||
| 423 | mulq $27,$5,$4 | ||
| 424 | srl $1,32,$3 | ||
| 425 | sll $1,32,$1 | ||
| 426 | addq $4,$3,$4 | ||
| 427 | cmpult $10,$1,$2 | ||
| 428 | subq $10,$1,$10 | ||
| 429 | addq $2,$4,$2 | ||
| 430 | cmpult $9,$2,$1 | ||
| 431 | bis $2,$2,$4 | ||
| 432 | beq $1,$134 | ||
| 433 | addq $9,$11,$9 | ||
| 434 | subq $27,1,$27 | ||
| 435 | $134: | ||
| 436 | subl $12,1,$12 | ||
| 437 | subq $9,$4,$9 | ||
| 438 | beq $12,$124 | ||
| 439 | sll $27,32,$13 | ||
| 440 | sll $9,32,$2 | ||
| 441 | srl $10,32,$1 | ||
| 442 | sll $10,32,$10 | ||
| 443 | bis $2,$1,$9 | ||
| 444 | br $31,$123 | ||
| 445 | .align 4 | ||
| 446 | $124: | ||
| 447 | bis $13,$27,$0 | ||
| 448 | $136: | ||
| 449 | ldq $26,0($30) | ||
| 450 | ldq $9,8($30) | ||
| 451 | ldq $10,16($30) | ||
| 452 | ldq $11,24($30) | ||
| 453 | ldq $12,32($30) | ||
| 454 | ldq $13,40($30) | ||
| 455 | addq $30,48,$30 | ||
| 456 | ret $31,($26),1 | ||
| 457 | .end bn_div64 | ||
| 458 | |||
| 459 | .set noat | ||
| 460 | .text | ||
| 461 | .align 3 | ||
| 462 | .globl bn_sub_words | ||
| 463 | .ent bn_sub_words | ||
| 464 | bn_sub_words: | ||
| 465 | bn_sub_words..ng: | ||
| 466 | .frame $30,0,$26,0 | ||
| 467 | .prologue 0 | ||
| 468 | |||
| 469 | subq $19, 4, $19 | ||
| 470 | bis $31, $31, $0 | ||
| 471 | blt $19, $100 | ||
| 472 | ldq $1, 0($17) | ||
| 473 | ldq $2, 0($18) | ||
| 474 | $101: | ||
| 475 | ldq $3, 8($17) | ||
| 476 | cmpult $1, $2, $4 | ||
| 477 | ldq $5, 8($18) | ||
| 478 | subq $1, $2, $1 | ||
| 479 | ldq $6, 16($17) | ||
| 480 | cmpult $1, $0, $2 | ||
| 481 | ldq $7, 16($18) | ||
| 482 | subq $1, $0, $23 | ||
| 483 | ldq $8, 24($17) | ||
| 484 | addq $2, $4, $0 | ||
| 485 | cmpult $3, $5, $24 | ||
| 486 | subq $3, $5, $3 | ||
| 487 | ldq $22, 24($18) | ||
| 488 | cmpult $3, $0, $5 | ||
| 489 | subq $3, $0, $25 | ||
| 490 | addq $5, $24, $0 | ||
| 491 | cmpult $6, $7, $27 | ||
| 492 | subq $6, $7, $6 | ||
| 493 | stq $23, 0($16) | ||
| 494 | cmpult $6, $0, $7 | ||
| 495 | subq $6, $0, $28 | ||
| 496 | addq $7, $27, $0 | ||
| 497 | cmpult $8, $22, $21 | ||
| 498 | subq $8, $22, $8 | ||
| 499 | stq $25, 8($16) | ||
| 500 | cmpult $8, $0, $22 | ||
| 501 | subq $8, $0, $20 | ||
| 502 | addq $22, $21, $0 | ||
| 503 | stq $28, 16($16) | ||
| 504 | subq $19, 4, $19 | ||
| 505 | stq $20, 24($16) | ||
| 506 | addq $17, 32, $17 | ||
| 507 | addq $18, 32, $18 | ||
| 508 | addq $16, 32, $16 | ||
| 509 | blt $19, $100 | ||
| 510 | ldq $1, 0($17) | ||
| 511 | ldq $2, 0($18) | ||
| 512 | br $101 | ||
| 513 | $102: | ||
| 514 | ldq $1, 0($17) | ||
| 515 | ldq $2, 0($18) | ||
| 516 | cmpult $1, $2, $27 | ||
| 517 | subq $1, $2, $1 | ||
| 518 | cmpult $1, $0, $2 | ||
| 519 | subq $1, $0, $1 | ||
| 520 | stq $1, 0($16) | ||
| 521 | addq $2, $27, $0 | ||
| 522 | addq $17, 8, $17 | ||
| 523 | addq $18, 8, $18 | ||
| 524 | addq $16, 8, $16 | ||
| 525 | subq $19, 1, $19 | ||
| 526 | bgt $19, $102 | ||
| 527 | ret $31,($26),1 | ||
| 528 | $100: | ||
| 529 | addq $19, 4, $19 | ||
| 530 | bgt $19, $102 | ||
| 531 | $103: | ||
| 532 | ret $31,($26),1 | ||
| 533 | .end bn_sub_words | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/add.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/add.pl deleted file mode 100644 index 4dc76e6b69..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/add.pl +++ /dev/null | |||
| @@ -1,119 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_add_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $bp=&wparam(2); | ||
| 15 | $count=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | &br(&label("finish")); | ||
| 23 | &blt($count,&label("finish")); | ||
| 24 | |||
| 25 | ($a0,$b0)=&NR(2); | ||
| 26 | &ld($a0,&QWPw(0,$ap)); | ||
| 27 | &ld($b0,&QWPw(0,$bp)); | ||
| 28 | |||
| 29 | ########################################################## | ||
| 30 | &set_label("loop"); | ||
| 31 | |||
| 32 | ($a1)=&NR(1); &ld($a1,&QWPw(1,$ap)); | ||
| 33 | ($b1)=&NR(1); &ld($b1,&QWPw(1,$bp)); | ||
| 34 | ($a2)=&NR(1); &ld($a2,&QWPw(2,$ap)); | ||
| 35 | ($b2)=&NR(1); &ld($b2,&QWPw(2,$bp)); | ||
| 36 | ($a3)=&NR(1); &ld($a3,&QWPw(3,$ap)); | ||
| 37 | ($b3)=&NR(1); &ld($b3,&QWPw(3,$bp)); | ||
| 38 | |||
| 39 | ($o0,$t0)=&NR(2); | ||
| 40 | &add($a0,$b0,$o0); | ||
| 41 | &cmpult($o0,$b0,$t0); | ||
| 42 | &add($o0,$cc,$o0); | ||
| 43 | &cmpult($o0,$cc,$cc); | ||
| 44 | &add($cc,$t0,$cc); &FR($t0); | ||
| 45 | |||
| 46 | ($t1,$o1)=&NR(2); | ||
| 47 | |||
| 48 | &add($a1,$b1,$o1); &FR($a1); | ||
| 49 | &cmpult($o1,$b1,$t1); &FR($b1); | ||
| 50 | &add($o1,$cc,$o1); | ||
| 51 | &cmpult($o1,$cc,$cc); | ||
| 52 | &add($cc,$t1,$cc); &FR($t1); | ||
| 53 | |||
| 54 | ($t2,$o2)=&NR(2); | ||
| 55 | |||
| 56 | &add($a2,$b2,$o2); &FR($a2); | ||
| 57 | &cmpult($o2,$b2,$t2); &FR($b2); | ||
| 58 | &add($o2,$cc,$o2); | ||
| 59 | &cmpult($o2,$cc,$cc); | ||
| 60 | &add($cc,$t2,$cc); &FR($t2); | ||
| 61 | |||
| 62 | ($t3,$o3)=&NR(2); | ||
| 63 | |||
| 64 | &add($a3,$b3,$o3); &FR($a3); | ||
| 65 | &cmpult($o3,$b3,$t3); &FR($b3); | ||
| 66 | &add($o3,$cc,$o3); | ||
| 67 | &cmpult($o3,$cc,$cc); | ||
| 68 | &add($cc,$t3,$cc); &FR($t3); | ||
| 69 | |||
| 70 | &st($o0,&QWPw(0,$rp)); &FR($o0); | ||
| 71 | &st($o1,&QWPw(0,$rp)); &FR($o1); | ||
| 72 | &st($o2,&QWPw(0,$rp)); &FR($o2); | ||
| 73 | &st($o3,&QWPw(0,$rp)); &FR($o3); | ||
| 74 | |||
| 75 | &sub($count,4,$count); # count-=4 | ||
| 76 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 77 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 78 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 79 | |||
| 80 | &blt($count,&label("finish")); | ||
| 81 | &ld($a0,&QWPw(0,$ap)); | ||
| 82 | &ld($b0,&QWPw(0,$bp)); | ||
| 83 | &br(&label("loop")); | ||
| 84 | ################################################## | ||
| 85 | # Do the last 0..3 words | ||
| 86 | |||
| 87 | ($t0,$o0)=&NR(2); | ||
| 88 | &set_label("last_loop"); | ||
| 89 | |||
| 90 | &ld($a0,&QWPw(0,$ap)); # get a | ||
| 91 | &ld($b0,&QWPw(0,$bp)); # get b | ||
| 92 | |||
| 93 | &add($a0,$b0,$o0); | ||
| 94 | &cmpult($o0,$b0,$t0); # will we borrow? | ||
| 95 | &add($o0,$cc,$o0); # will we borrow? | ||
| 96 | &cmpult($o0,$cc,$cc); # will we borrow? | ||
| 97 | &add($cc,$t0,$cc); # add the borrows | ||
| 98 | &st($o0,&QWPw(0,$rp)); # save | ||
| 99 | |||
| 100 | &add($ap,$QWS,$ap); | ||
| 101 | &add($bp,$QWS,$bp); | ||
| 102 | &add($rp,$QWS,$rp); | ||
| 103 | &sub($count,1,$count); | ||
| 104 | &bgt($count,&label("last_loop")); | ||
| 105 | &function_end_A($name); | ||
| 106 | |||
| 107 | ###################################################### | ||
| 108 | &set_label("finish"); | ||
| 109 | &add($count,4,$count); | ||
| 110 | &bgt($count,&label("last_loop")); | ||
| 111 | |||
| 112 | &FR($o0,$t0,$a0,$b0); | ||
| 113 | &set_label("end"); | ||
| 114 | &function_end($name); | ||
| 115 | |||
| 116 | &fin_pool; | ||
| 117 | } | ||
| 118 | |||
| 119 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/div.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/div.pl deleted file mode 100644 index 7ec144377f..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/div.pl +++ /dev/null | |||
| @@ -1,144 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | |||
| 3 | sub bn_div64 | ||
| 4 | { | ||
| 5 | local($data)=<<'EOF'; | ||
| 6 | # | ||
| 7 | # What follows was taken directly from the C compiler with a few | ||
| 8 | # hacks to redo the lables. | ||
| 9 | # | ||
| 10 | .text | ||
| 11 | .set noreorder | ||
| 12 | .set volatile | ||
| 13 | .align 3 | ||
| 14 | .globl bn_div64 | ||
| 15 | .ent bn_div64 | ||
| 16 | bn_div64: | ||
| 17 | ldgp $29,0($27) | ||
| 18 | bn_div64..ng: | ||
| 19 | lda $30,-48($30) | ||
| 20 | .frame $30,48,$26,0 | ||
| 21 | stq $26,0($30) | ||
| 22 | stq $9,8($30) | ||
| 23 | stq $10,16($30) | ||
| 24 | stq $11,24($30) | ||
| 25 | stq $12,32($30) | ||
| 26 | stq $13,40($30) | ||
| 27 | .mask 0x4003e00,-48 | ||
| 28 | .prologue 1 | ||
| 29 | bis $16,$16,$9 | ||
| 30 | bis $17,$17,$10 | ||
| 31 | bis $18,$18,$11 | ||
| 32 | bis $31,$31,$13 | ||
| 33 | bis $31,2,$12 | ||
| 34 | bne $11,$9119 | ||
| 35 | lda $0,-1 | ||
| 36 | br $31,$9136 | ||
| 37 | .align 4 | ||
| 38 | $9119: | ||
| 39 | bis $11,$11,$16 | ||
| 40 | jsr $26,BN_num_bits_word | ||
| 41 | ldgp $29,0($26) | ||
| 42 | subq $0,64,$1 | ||
| 43 | beq $1,$9120 | ||
| 44 | bis $31,1,$1 | ||
| 45 | sll $1,$0,$1 | ||
| 46 | cmpule $9,$1,$1 | ||
| 47 | bne $1,$9120 | ||
| 48 | # lda $16,_IO_stderr_ | ||
| 49 | # lda $17,$C32 | ||
| 50 | # bis $0,$0,$18 | ||
| 51 | # jsr $26,fprintf | ||
| 52 | # ldgp $29,0($26) | ||
| 53 | jsr $26,abort | ||
| 54 | ldgp $29,0($26) | ||
| 55 | .align 4 | ||
| 56 | $9120: | ||
| 57 | bis $31,64,$3 | ||
| 58 | cmpult $9,$11,$2 | ||
| 59 | subq $3,$0,$1 | ||
| 60 | addl $1,$31,$0 | ||
| 61 | subq $9,$11,$1 | ||
| 62 | cmoveq $2,$1,$9 | ||
| 63 | beq $0,$9122 | ||
| 64 | zapnot $0,15,$2 | ||
| 65 | subq $3,$0,$1 | ||
| 66 | sll $11,$2,$11 | ||
| 67 | sll $9,$2,$3 | ||
| 68 | srl $10,$1,$1 | ||
| 69 | sll $10,$2,$10 | ||
| 70 | bis $3,$1,$9 | ||
| 71 | $9122: | ||
| 72 | srl $11,32,$5 | ||
| 73 | zapnot $11,15,$6 | ||
| 74 | lda $7,-1 | ||
| 75 | .align 5 | ||
| 76 | $9123: | ||
| 77 | srl $9,32,$1 | ||
| 78 | subq $1,$5,$1 | ||
| 79 | bne $1,$9126 | ||
| 80 | zapnot $7,15,$27 | ||
| 81 | br $31,$9127 | ||
| 82 | .align 4 | ||
| 83 | $9126: | ||
| 84 | bis $9,$9,$24 | ||
| 85 | bis $5,$5,$25 | ||
| 86 | divqu $24,$25,$27 | ||
| 87 | $9127: | ||
| 88 | srl $10,32,$4 | ||
| 89 | .align 5 | ||
| 90 | $9128: | ||
| 91 | mulq $27,$5,$1 | ||
| 92 | subq $9,$1,$3 | ||
| 93 | zapnot $3,240,$1 | ||
| 94 | bne $1,$9129 | ||
| 95 | mulq $6,$27,$2 | ||
| 96 | sll $3,32,$1 | ||
| 97 | addq $1,$4,$1 | ||
| 98 | cmpule $2,$1,$2 | ||
| 99 | bne $2,$9129 | ||
| 100 | subq $27,1,$27 | ||
| 101 | br $31,$9128 | ||
| 102 | .align 4 | ||
| 103 | $9129: | ||
| 104 | mulq $27,$6,$1 | ||
| 105 | mulq $27,$5,$4 | ||
| 106 | srl $1,32,$3 | ||
| 107 | sll $1,32,$1 | ||
| 108 | addq $4,$3,$4 | ||
| 109 | cmpult $10,$1,$2 | ||
| 110 | subq $10,$1,$10 | ||
| 111 | addq $2,$4,$2 | ||
| 112 | cmpult $9,$2,$1 | ||
| 113 | bis $2,$2,$4 | ||
| 114 | beq $1,$9134 | ||
| 115 | addq $9,$11,$9 | ||
| 116 | subq $27,1,$27 | ||
| 117 | $9134: | ||
| 118 | subl $12,1,$12 | ||
| 119 | subq $9,$4,$9 | ||
| 120 | beq $12,$9124 | ||
| 121 | sll $27,32,$13 | ||
| 122 | sll $9,32,$2 | ||
| 123 | srl $10,32,$1 | ||
| 124 | sll $10,32,$10 | ||
| 125 | bis $2,$1,$9 | ||
| 126 | br $31,$9123 | ||
| 127 | .align 4 | ||
| 128 | $9124: | ||
| 129 | bis $13,$27,$0 | ||
| 130 | $9136: | ||
| 131 | ldq $26,0($30) | ||
| 132 | ldq $9,8($30) | ||
| 133 | ldq $10,16($30) | ||
| 134 | ldq $11,24($30) | ||
| 135 | ldq $12,32($30) | ||
| 136 | ldq $13,40($30) | ||
| 137 | addq $30,48,$30 | ||
| 138 | ret $31,($26),1 | ||
| 139 | .end bn_div64 | ||
| 140 | EOF | ||
| 141 | &asm_add($data); | ||
| 142 | } | ||
| 143 | |||
| 144 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul.pl deleted file mode 100644 index b182bae452..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul.pl +++ /dev/null | |||
| @@ -1,116 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_mul_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r,$couny); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $count=&wparam(2); | ||
| 15 | $word=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | &br(&label("finish")); | ||
| 23 | &blt($count,&label("finish")); | ||
| 24 | |||
| 25 | ($a0,$r0)=&NR(2); | ||
| 26 | &ld($a0,&QWPw(0,$ap)); | ||
| 27 | &ld($r0,&QWPw(0,$rp)); | ||
| 28 | |||
| 29 | $a=<<'EOF'; | ||
| 30 | ########################################################## | ||
| 31 | &set_label("loop"); | ||
| 32 | |||
| 33 | ($a1)=&NR(1); &ld($a1,&QWPw(1,$ap)); | ||
| 34 | ($b1)=&NR(1); &ld($b1,&QWPw(1,$bp)); | ||
| 35 | ($a2)=&NR(1); &ld($a2,&QWPw(2,$ap)); | ||
| 36 | ($b2)=&NR(1); &ld($b2,&QWPw(2,$bp)); | ||
| 37 | ($a3)=&NR(1); &ld($a3,&QWPw(3,$ap)); | ||
| 38 | ($b3)=&NR(1); &ld($b3,&QWPw(3,$bp)); | ||
| 39 | |||
| 40 | ($o0,$t0)=&NR(2); | ||
| 41 | &add($a0,$b0,$o0); | ||
| 42 | &cmpult($o0,$b0,$t0); | ||
| 43 | &add($o0,$cc,$o0); | ||
| 44 | &cmpult($o0,$cc,$cc); | ||
| 45 | &add($cc,$t0,$cc); &FR($t0); | ||
| 46 | |||
| 47 | ($t1,$o1)=&NR(2); | ||
| 48 | |||
| 49 | &add($a1,$b1,$o1); &FR($a1); | ||
| 50 | &cmpult($o1,$b1,$t1); &FR($b1); | ||
| 51 | &add($o1,$cc,$o1); | ||
| 52 | &cmpult($o1,$cc,$cc); | ||
| 53 | &add($cc,$t1,$cc); &FR($t1); | ||
| 54 | |||
| 55 | ($t2,$o2)=&NR(2); | ||
| 56 | |||
| 57 | &add($a2,$b2,$o2); &FR($a2); | ||
| 58 | &cmpult($o2,$b2,$t2); &FR($b2); | ||
| 59 | &add($o2,$cc,$o2); | ||
| 60 | &cmpult($o2,$cc,$cc); | ||
| 61 | &add($cc,$t2,$cc); &FR($t2); | ||
| 62 | |||
| 63 | ($t3,$o3)=&NR(2); | ||
| 64 | |||
| 65 | &add($a3,$b3,$o3); &FR($a3); | ||
| 66 | &cmpult($o3,$b3,$t3); &FR($b3); | ||
| 67 | &add($o3,$cc,$o3); | ||
| 68 | &cmpult($o3,$cc,$cc); | ||
| 69 | &add($cc,$t3,$cc); &FR($t3); | ||
| 70 | |||
| 71 | &st($o0,&QWPw(0,$rp)); &FR($o0); | ||
| 72 | &st($o1,&QWPw(0,$rp)); &FR($o1); | ||
| 73 | &st($o2,&QWPw(0,$rp)); &FR($o2); | ||
| 74 | &st($o3,&QWPw(0,$rp)); &FR($o3); | ||
| 75 | |||
| 76 | &sub($count,4,$count); # count-=4 | ||
| 77 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 78 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 79 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 80 | |||
| 81 | &blt($count,&label("finish")); | ||
| 82 | &ld($a0,&QWPw(0,$ap)); | ||
| 83 | &ld($b0,&QWPw(0,$bp)); | ||
| 84 | &br(&label("loop")); | ||
| 85 | EOF | ||
| 86 | ################################################## | ||
| 87 | # Do the last 0..3 words | ||
| 88 | |||
| 89 | &set_label("last_loop"); | ||
| 90 | |||
| 91 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); # get a | ||
| 92 | &mul($a0,$word,($l0)=&NR(1)); | ||
| 93 | &add($ap,$QWS,$ap); | ||
| 94 | &muh($a0,$word,($h0)=&NR(1)); &FR($a0); | ||
| 95 | &add($l0,$cc,$l0); | ||
| 96 | &add($rp,$QWS,$rp); | ||
| 97 | &sub($count,1,$count); | ||
| 98 | &cmpult($l0,$cc,$cc); | ||
| 99 | &st($l0,&QWPw(-1,$rp)); &FR($l0); | ||
| 100 | &add($h0,$cc,$cc); &FR($h0); | ||
| 101 | |||
| 102 | &bgt($count,&label("last_loop")); | ||
| 103 | &function_end_A($name); | ||
| 104 | |||
| 105 | ###################################################### | ||
| 106 | &set_label("finish"); | ||
| 107 | &add($count,4,$count); | ||
| 108 | &bgt($count,&label("last_loop")); | ||
| 109 | |||
| 110 | &set_label("end"); | ||
| 111 | &function_end($name); | ||
| 112 | |||
| 113 | &fin_pool; | ||
| 114 | } | ||
| 115 | |||
| 116 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_add.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_add.pl deleted file mode 100644 index e37f6315fb..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_add.pl +++ /dev/null | |||
| @@ -1,120 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_mul_add_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r,$couny); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $count=&wparam(2); | ||
| 15 | $word=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | &br(&label("finish")); | ||
| 23 | &blt($count,&label("finish")); | ||
| 24 | |||
| 25 | ($a0,$r0)=&NR(2); | ||
| 26 | &ld($a0,&QWPw(0,$ap)); | ||
| 27 | &ld($r0,&QWPw(0,$rp)); | ||
| 28 | |||
| 29 | $a=<<'EOF'; | ||
| 30 | ########################################################## | ||
| 31 | &set_label("loop"); | ||
| 32 | |||
| 33 | ($a1)=&NR(1); &ld($a1,&QWPw(1,$ap)); | ||
| 34 | ($b1)=&NR(1); &ld($b1,&QWPw(1,$bp)); | ||
| 35 | ($a2)=&NR(1); &ld($a2,&QWPw(2,$ap)); | ||
| 36 | ($b2)=&NR(1); &ld($b2,&QWPw(2,$bp)); | ||
| 37 | ($a3)=&NR(1); &ld($a3,&QWPw(3,$ap)); | ||
| 38 | ($b3)=&NR(1); &ld($b3,&QWPw(3,$bp)); | ||
| 39 | |||
| 40 | ($o0,$t0)=&NR(2); | ||
| 41 | &add($a0,$b0,$o0); | ||
| 42 | &cmpult($o0,$b0,$t0); | ||
| 43 | &add($o0,$cc,$o0); | ||
| 44 | &cmpult($o0,$cc,$cc); | ||
| 45 | &add($cc,$t0,$cc); &FR($t0); | ||
| 46 | |||
| 47 | ($t1,$o1)=&NR(2); | ||
| 48 | |||
| 49 | &add($a1,$b1,$o1); &FR($a1); | ||
| 50 | &cmpult($o1,$b1,$t1); &FR($b1); | ||
| 51 | &add($o1,$cc,$o1); | ||
| 52 | &cmpult($o1,$cc,$cc); | ||
| 53 | &add($cc,$t1,$cc); &FR($t1); | ||
| 54 | |||
| 55 | ($t2,$o2)=&NR(2); | ||
| 56 | |||
| 57 | &add($a2,$b2,$o2); &FR($a2); | ||
| 58 | &cmpult($o2,$b2,$t2); &FR($b2); | ||
| 59 | &add($o2,$cc,$o2); | ||
| 60 | &cmpult($o2,$cc,$cc); | ||
| 61 | &add($cc,$t2,$cc); &FR($t2); | ||
| 62 | |||
| 63 | ($t3,$o3)=&NR(2); | ||
| 64 | |||
| 65 | &add($a3,$b3,$o3); &FR($a3); | ||
| 66 | &cmpult($o3,$b3,$t3); &FR($b3); | ||
| 67 | &add($o3,$cc,$o3); | ||
| 68 | &cmpult($o3,$cc,$cc); | ||
| 69 | &add($cc,$t3,$cc); &FR($t3); | ||
| 70 | |||
| 71 | &st($o0,&QWPw(0,$rp)); &FR($o0); | ||
| 72 | &st($o1,&QWPw(0,$rp)); &FR($o1); | ||
| 73 | &st($o2,&QWPw(0,$rp)); &FR($o2); | ||
| 74 | &st($o3,&QWPw(0,$rp)); &FR($o3); | ||
| 75 | |||
| 76 | &sub($count,4,$count); # count-=4 | ||
| 77 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 78 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 79 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 80 | |||
| 81 | &blt($count,&label("finish")); | ||
| 82 | &ld($a0,&QWPw(0,$ap)); | ||
| 83 | &ld($b0,&QWPw(0,$bp)); | ||
| 84 | &br(&label("loop")); | ||
| 85 | EOF | ||
| 86 | ################################################## | ||
| 87 | # Do the last 0..3 words | ||
| 88 | |||
| 89 | &set_label("last_loop"); | ||
| 90 | |||
| 91 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); # get a | ||
| 92 | &ld(($r0)=&NR(1),&QWPw(0,$rp)); # get b | ||
| 93 | &mul($a0,$word,($l0)=&NR(1)); | ||
| 94 | &sub($count,1,$count); | ||
| 95 | &add($ap,$QWS,$ap); | ||
| 96 | &muh($a0,$word,($h0)=&NR(1)); &FR($a0); | ||
| 97 | &add($r0,$l0,$r0); | ||
| 98 | &add($rp,$QWS,$rp); | ||
| 99 | &cmpult($r0,$l0,($t0)=&NR(1)); &FR($l0); | ||
| 100 | &add($r0,$cc,$r0); | ||
| 101 | &add($h0,$t0,$h0); &FR($t0); | ||
| 102 | &cmpult($r0,$cc,$cc); | ||
| 103 | &st($r0,&QWPw(-1,$rp)); &FR($r0); | ||
| 104 | &add($h0,$cc,$cc); &FR($h0); | ||
| 105 | |||
| 106 | &bgt($count,&label("last_loop")); | ||
| 107 | &function_end_A($name); | ||
| 108 | |||
| 109 | ###################################################### | ||
| 110 | &set_label("finish"); | ||
| 111 | &add($count,4,$count); | ||
| 112 | &bgt($count,&label("last_loop")); | ||
| 113 | |||
| 114 | &set_label("end"); | ||
| 115 | &function_end($name); | ||
| 116 | |||
| 117 | &fin_pool; | ||
| 118 | } | ||
| 119 | |||
| 120 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c4.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c4.pl deleted file mode 100644 index 5efd201281..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c4.pl +++ /dev/null | |||
| @@ -1,213 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub mul_add_c | ||
| 5 | { | ||
| 6 | local($a,$b,$c0,$c1,$c2)=@_; | ||
| 7 | local($l1,$h1,$t1,$t2); | ||
| 8 | |||
| 9 | &mul($a,$b,($l1)=&NR(1)); | ||
| 10 | &muh($a,$b,($h1)=&NR(1)); | ||
| 11 | &add($c0,$l1,$c0); | ||
| 12 | &cmpult($c0,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 13 | &add($t1,$h1,$h1); &FR($t1); | ||
| 14 | &add($c1,$h1,$c1); | ||
| 15 | &cmpult($c1,$h1,($t2)=&NR(1)); &FR($h1); | ||
| 16 | &add($c2,$t2,$c2); &FR($t2); | ||
| 17 | } | ||
| 18 | |||
| 19 | sub bn_mul_comba4 | ||
| 20 | { | ||
| 21 | local($name)=@_; | ||
| 22 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 23 | |||
| 24 | $cnt=1; | ||
| 25 | &init_pool(3); | ||
| 26 | |||
| 27 | $rp=&wparam(0); | ||
| 28 | $ap=&wparam(1); | ||
| 29 | $bp=&wparam(2); | ||
| 30 | |||
| 31 | &function_begin($name,""); | ||
| 32 | |||
| 33 | &comment(""); | ||
| 34 | |||
| 35 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 36 | &ld(($b[0])=&NR(1),&QWPw(0,$bp)); | ||
| 37 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 38 | &ld(($b[1])=&NR(1),&QWPw(1,$bp)); | ||
| 39 | &mul($a[0],$b[0],($r00)=&NR(1)); | ||
| 40 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 41 | &ld(($b[2])=&NR(1),&QWPw(2,$bp)); | ||
| 42 | &muh($a[0],$b[0],($r01)=&NR(1)); | ||
| 43 | &FR($ap); &ld(($a[3])=&NR(1),&QWPw(3,$ap)); | ||
| 44 | &FR($bp); &ld(($b[3])=&NR(1),&QWPw(3,$bp)); | ||
| 45 | &mul($a[0],$b[1],($r02)=&NR(1)); | ||
| 46 | |||
| 47 | ($R,$H1,$H2)=&NR(3); | ||
| 48 | |||
| 49 | &st($r00,&QWPw(0,$rp)); &FR($r00); | ||
| 50 | |||
| 51 | &mov("zero",$R); | ||
| 52 | &mul($a[1],$b[0],($r03)=&NR(1)); | ||
| 53 | |||
| 54 | &mov("zero",$H1); | ||
| 55 | &mov("zero",$H0); | ||
| 56 | &add($R,$r01,$R); | ||
| 57 | &muh($a[0],$b[1],($r04)=&NR(1)); | ||
| 58 | &cmpult($R,$r01,($t01)=&NR(1)); &FR($r01); | ||
| 59 | &add($R,$r02,$R); | ||
| 60 | &add($H1,$t01,$H1) &FR($t01); | ||
| 61 | &muh($a[1],$b[0],($r05)=&NR(1)); | ||
| 62 | &cmpult($R,$r02,($t02)=&NR(1)); &FR($r02); | ||
| 63 | &add($R,$r03,$R); | ||
| 64 | &add($H2,$t02,$H2) &FR($t02); | ||
| 65 | &mul($a[0],$b[2],($r06)=&NR(1)); | ||
| 66 | &cmpult($R,$r03,($t03)=&NR(1)); &FR($r03); | ||
| 67 | &add($H1,$t03,$H1) &FR($t03); | ||
| 68 | &st($R,&QWPw(1,$rp)); | ||
| 69 | &add($H1,$H2,$R); | ||
| 70 | |||
| 71 | &mov("zero",$H1); | ||
| 72 | &add($R,$r04,$R); | ||
| 73 | &mov("zero",$H2); | ||
| 74 | &mul($a[1],$b[1],($r07)=&NR(1)); | ||
| 75 | &cmpult($R,$r04,($t04)=&NR(1)); &FR($r04); | ||
| 76 | &add($R,$r05,$R); | ||
| 77 | &add($H1,$t04,$H1) &FR($t04); | ||
| 78 | &mul($a[2],$b[0],($r08)=&NR(1)); | ||
| 79 | &cmpult($R,$r05,($t05)=&NR(1)); &FR($r05); | ||
| 80 | &add($R,$r01,$R); | ||
| 81 | &add($H2,$t05,$H2) &FR($t05); | ||
| 82 | &muh($a[0],$b[2],($r09)=&NR(1)); | ||
| 83 | &cmpult($R,$r06,($t06)=&NR(1)); &FR($r06); | ||
| 84 | &add($R,$r07,$R); | ||
| 85 | &add($H1,$t06,$H1) &FR($t06); | ||
| 86 | &muh($a[1],$b[1],($r10)=&NR(1)); | ||
| 87 | &cmpult($R,$r07,($t07)=&NR(1)); &FR($r07); | ||
| 88 | &add($R,$r08,$R); | ||
| 89 | &add($H2,$t07,$H2) &FR($t07); | ||
| 90 | &muh($a[2],$b[0],($r11)=&NR(1)); | ||
| 91 | &cmpult($R,$r08,($t08)=&NR(1)); &FR($r08); | ||
| 92 | &add($H1,$t08,$H1) &FR($t08); | ||
| 93 | &st($R,&QWPw(2,$rp)); | ||
| 94 | &add($H1,$H2,$R); | ||
| 95 | |||
| 96 | &mov("zero",$H1); | ||
| 97 | &add($R,$r09,$R); | ||
| 98 | &mov("zero",$H2); | ||
| 99 | &mul($a[0],$b[3],($r12)=&NR(1)); | ||
| 100 | &cmpult($R,$r09,($t09)=&NR(1)); &FR($r09); | ||
| 101 | &add($R,$r10,$R); | ||
| 102 | &add($H1,$t09,$H1) &FR($t09); | ||
| 103 | &mul($a[1],$b[2],($r13)=&NR(1)); | ||
| 104 | &cmpult($R,$r10,($t10)=&NR(1)); &FR($r10); | ||
| 105 | &add($R,$r11,$R); | ||
| 106 | &add($H1,$t10,$H1) &FR($t10); | ||
| 107 | &mul($a[2],$b[1],($r14)=&NR(1)); | ||
| 108 | &cmpult($R,$r11,($t11)=&NR(1)); &FR($r11); | ||
| 109 | &add($R,$r12,$R); | ||
| 110 | &add($H1,$t11,$H1) &FR($t11); | ||
| 111 | &mul($a[3],$b[0],($r15)=&NR(1)); | ||
| 112 | &cmpult($R,$r12,($t12)=&NR(1)); &FR($r12); | ||
| 113 | &add($R,$r13,$R); | ||
| 114 | &add($H1,$t12,$H1) &FR($t12); | ||
| 115 | &muh($a[0],$b[3],($r16)=&NR(1)); | ||
| 116 | &cmpult($R,$r13,($t13)=&NR(1)); &FR($r13); | ||
| 117 | &add($R,$r14,$R); | ||
| 118 | &add($H1,$t13,$H1) &FR($t13); | ||
| 119 | &muh($a[1],$b[2],($r17)=&NR(1)); | ||
| 120 | &cmpult($R,$r14,($t14)=&NR(1)); &FR($r14); | ||
| 121 | &add($R,$r15,$R); | ||
| 122 | &add($H1,$t14,$H1) &FR($t14); | ||
| 123 | &muh($a[2],$b[1],($r18)=&NR(1)); | ||
| 124 | &cmpult($R,$r15,($t15)=&NR(1)); &FR($r15); | ||
| 125 | &add($H1,$t15,$H1) &FR($t15); | ||
| 126 | &st($R,&QWPw(3,$rp)); | ||
| 127 | &add($H1,$H2,$R); | ||
| 128 | |||
| 129 | &mov("zero",$H1); | ||
| 130 | &add($R,$r16,$R); | ||
| 131 | &mov("zero",$H2); | ||
| 132 | &muh($a[3],$b[0],($r19)=&NR(1)); | ||
| 133 | &cmpult($R,$r16,($t16)=&NR(1)); &FR($r16); | ||
| 134 | &add($R,$r17,$R); | ||
| 135 | &add($H1,$t16,$H1) &FR($t16); | ||
| 136 | &mul($a[1],$b[3],($r20)=&NR(1)); | ||
| 137 | &cmpult($R,$r17,($t17)=&NR(1)); &FR($r17); | ||
| 138 | &add($R,$r18,$R); | ||
| 139 | &add($H1,$t17,$H1) &FR($t17); | ||
| 140 | &mul($a[2],$b[2],($r21)=&NR(1)); | ||
| 141 | &cmpult($R,$r18,($t18)=&NR(1)); &FR($r18); | ||
| 142 | &add($R,$r19,$R); | ||
| 143 | &add($H1,$t18,$H1) &FR($t18); | ||
| 144 | &mul($a[3],$b[1],($r22)=&NR(1)); | ||
| 145 | &cmpult($R,$r19,($t19)=&NR(1)); &FR($r19); | ||
| 146 | &add($R,$r20,$R); | ||
| 147 | &add($H1,$t19,$H1) &FR($t19); | ||
| 148 | &muh($a[1],$b[3],($r23)=&NR(1)); | ||
| 149 | &cmpult($R,$r20,($t20)=&NR(1)); &FR($r20); | ||
| 150 | &add($R,$r21,$R); | ||
| 151 | &add($H1,$t20,$H1) &FR($t20); | ||
| 152 | &muh($a[2],$b[2],($r24)=&NR(1)); | ||
| 153 | &cmpult($R,$r21,($t21)=&NR(1)); &FR($r21); | ||
| 154 | &add($R,$r22,$R); | ||
| 155 | &add($H1,$t21,$H1) &FR($t21); | ||
| 156 | &muh($a[3],$b[1],($r25)=&NR(1)); | ||
| 157 | &cmpult($R,$r22,($t22)=&NR(1)); &FR($r22); | ||
| 158 | &add($H1,$t22,$H1) &FR($t22); | ||
| 159 | &st($R,&QWPw(4,$rp)); | ||
| 160 | &add($H1,$H2,$R); | ||
| 161 | |||
| 162 | &mov("zero",$H1); | ||
| 163 | &add($R,$r23,$R); | ||
| 164 | &mov("zero",$H2); | ||
| 165 | &mul($a[2],$b[3],($r26)=&NR(1)); | ||
| 166 | &cmpult($R,$r23,($t23)=&NR(1)); &FR($r23); | ||
| 167 | &add($R,$r24,$R); | ||
| 168 | &add($H1,$t23,$H1) &FR($t23); | ||
| 169 | &mul($a[3],$b[2],($r27)=&NR(1)); | ||
| 170 | &cmpult($R,$r24,($t24)=&NR(1)); &FR($r24); | ||
| 171 | &add($R,$r25,$R); | ||
| 172 | &add($H1,$t24,$H1) &FR($t24); | ||
| 173 | &muh($a[2],$b[3],($r28)=&NR(1)); | ||
| 174 | &cmpult($R,$r25,($t25)=&NR(1)); &FR($r25); | ||
| 175 | &add($R,$r26,$R); | ||
| 176 | &add($H1,$t25,$H1) &FR($t25); | ||
| 177 | &muh($a[3],$b[2],($r29)=&NR(1)); | ||
| 178 | &cmpult($R,$r26,($t26)=&NR(1)); &FR($r26); | ||
| 179 | &add($R,$r27,$R); | ||
| 180 | &add($H1,$t26,$H1) &FR($t26); | ||
| 181 | &mul($a[3],$b[3],($r30)=&NR(1)); | ||
| 182 | &cmpult($R,$r27,($t27)=&NR(1)); &FR($r27); | ||
| 183 | &add($H1,$t27,$H1) &FR($t27); | ||
| 184 | &st($R,&QWPw(5,$rp)); | ||
| 185 | &add($H1,$H2,$R); | ||
| 186 | |||
| 187 | &mov("zero",$H1); | ||
| 188 | &add($R,$r28,$R); | ||
| 189 | &mov("zero",$H2); | ||
| 190 | &muh($a[3],$b[3],($r31)=&NR(1)); | ||
| 191 | &cmpult($R,$r28,($t28)=&NR(1)); &FR($r28); | ||
| 192 | &add($R,$r29,$R); | ||
| 193 | &add($H1,$t28,$H1) &FR($t28); | ||
| 194 | ############ | ||
| 195 | &cmpult($R,$r29,($t29)=&NR(1)); &FR($r29); | ||
| 196 | &add($R,$r30,$R); | ||
| 197 | &add($H1,$t29,$H1) &FR($t29); | ||
| 198 | ############ | ||
| 199 | &cmpult($R,$r30,($t30)=&NR(1)); &FR($r30); | ||
| 200 | &add($H1,$t30,$H1) &FR($t30); | ||
| 201 | &st($R,&QWPw(6,$rp)); | ||
| 202 | &add($H1,$H2,$R); | ||
| 203 | |||
| 204 | &add($R,$r31,$R); &FR($r31); | ||
| 205 | &st($R,&QWPw(7,$rp)); | ||
| 206 | |||
| 207 | &FR($R,$H1,$H2); | ||
| 208 | &function_end($name); | ||
| 209 | |||
| 210 | &fin_pool; | ||
| 211 | } | ||
| 212 | |||
| 213 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c4.works.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c4.works.pl deleted file mode 100644 index 79d86dd25c..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c4.works.pl +++ /dev/null | |||
| @@ -1,98 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub mul_add_c | ||
| 5 | { | ||
| 6 | local($a,$b,$c0,$c1,$c2)=@_; | ||
| 7 | local($l1,$h1,$t1,$t2); | ||
| 8 | |||
| 9 | print STDERR "count=$cnt\n"; $cnt++; | ||
| 10 | &mul($a,$b,($l1)=&NR(1)); | ||
| 11 | &muh($a,$b,($h1)=&NR(1)); | ||
| 12 | &add($c0,$l1,$c0); | ||
| 13 | &cmpult($c0,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 14 | &add($t1,$h1,$h1); &FR($t1); | ||
| 15 | &add($c1,$h1,$c1); | ||
| 16 | &cmpult($c1,$h1,($t2)=&NR(1)); &FR($h1); | ||
| 17 | &add($c2,$t2,$c2); &FR($t2); | ||
| 18 | } | ||
| 19 | |||
| 20 | sub bn_mul_comba4 | ||
| 21 | { | ||
| 22 | local($name)=@_; | ||
| 23 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 24 | |||
| 25 | $cnt=1; | ||
| 26 | &init_pool(3); | ||
| 27 | |||
| 28 | $rp=&wparam(0); | ||
| 29 | $ap=&wparam(1); | ||
| 30 | $bp=&wparam(2); | ||
| 31 | |||
| 32 | &function_begin($name,""); | ||
| 33 | |||
| 34 | &comment(""); | ||
| 35 | |||
| 36 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 37 | &ld(($b[0])=&NR(1),&QWPw(0,$bp)); | ||
| 38 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 39 | &ld(($b[1])=&NR(1),&QWPw(1,$bp)); | ||
| 40 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 41 | &ld(($b[2])=&NR(1),&QWPw(2,$bp)); | ||
| 42 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); &FR($ap); | ||
| 43 | &ld(($b[3])=&NR(1),&QWPw(3,$bp)); &FR($bp); | ||
| 44 | |||
| 45 | ($c0,$c1,$c2)=&NR(3); | ||
| 46 | &mov("zero",$c2); | ||
| 47 | &mul($a[0],$b[0],$c0); | ||
| 48 | &muh($a[0],$b[0],$c1); | ||
| 49 | &st($c0,&QWPw(0,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 50 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 51 | &mov("zero",$c2); | ||
| 52 | |||
| 53 | &mul_add_c($a[0],$b[1],$c0,$c1,$c2); | ||
| 54 | &mul_add_c($a[1],$b[0],$c0,$c1,$c2); | ||
| 55 | &st($c0,&QWPw(1,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 56 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 57 | &mov("zero",$c2); | ||
| 58 | |||
| 59 | &mul_add_c($a[1],$b[1],$c0,$c1,$c2); | ||
| 60 | &mul_add_c($a[0],$b[2],$c0,$c1,$c2); | ||
| 61 | &mul_add_c($a[2],$b[0],$c0,$c1,$c2); | ||
| 62 | &st($c0,&QWPw(2,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 63 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 64 | &mov("zero",$c2); | ||
| 65 | |||
| 66 | &mul_add_c($a[0],$b[3],$c0,$c1,$c2); &FR($a[0]); | ||
| 67 | &mul_add_c($a[1],$b[2],$c0,$c1,$c2); | ||
| 68 | &mul_add_c($a[2],$b[1],$c0,$c1,$c2); | ||
| 69 | &mul_add_c($a[3],$b[0],$c0,$c1,$c2); &FR($b[0]); | ||
| 70 | &st($c0,&QWPw(3,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 71 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 72 | &mov("zero",$c2); | ||
| 73 | |||
| 74 | &mul_add_c($a[1],$b[3],$c0,$c1,$c2); &FR($a[1]); | ||
| 75 | &mul_add_c($a[2],$b[2],$c0,$c1,$c2); | ||
| 76 | &mul_add_c($a[3],$b[1],$c0,$c1,$c2); &FR($b[1]); | ||
| 77 | &st($c0,&QWPw(4,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 78 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 79 | &mov("zero",$c2); | ||
| 80 | |||
| 81 | &mul_add_c($a[2],$b[3],$c0,$c1,$c2); &FR($a[2]); | ||
| 82 | &mul_add_c($a[3],$b[2],$c0,$c1,$c2); &FR($b[2]); | ||
| 83 | &st($c0,&QWPw(5,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 84 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 85 | &mov("zero",$c2); | ||
| 86 | |||
| 87 | &mul_add_c($a[3],$b[3],$c0,$c1,$c2); &FR($a[3],$b[3]); | ||
| 88 | &st($c0,&QWPw(6,$rp)); | ||
| 89 | &st($c1,&QWPw(7,$rp)); | ||
| 90 | |||
| 91 | &FR($c0,$c1,$c2); | ||
| 92 | |||
| 93 | &function_end($name); | ||
| 94 | |||
| 95 | &fin_pool; | ||
| 96 | } | ||
| 97 | |||
| 98 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c8.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c8.pl deleted file mode 100644 index 525ca7494b..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/mul_c8.pl +++ /dev/null | |||
| @@ -1,177 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_mul_comba8 | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 8 | |||
| 9 | $cnt=1; | ||
| 10 | &init_pool(3); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $bp=&wparam(2); | ||
| 15 | |||
| 16 | &function_begin($name,""); | ||
| 17 | |||
| 18 | &comment(""); | ||
| 19 | |||
| 20 | &stack_push(2); | ||
| 21 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 22 | &ld(($b[0])=&NR(1),&QWPw(0,$bp)); | ||
| 23 | &st($reg_s0,&swtmp(0)); &FR($reg_s0); | ||
| 24 | &st($reg_s1,&swtmp(1)); &FR($reg_s1); | ||
| 25 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 26 | &ld(($b[1])=&NR(1),&QWPw(1,$bp)); | ||
| 27 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 28 | &ld(($b[2])=&NR(1),&QWPw(2,$bp)); | ||
| 29 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); | ||
| 30 | &ld(($b[3])=&NR(1),&QWPw(3,$bp)); | ||
| 31 | &ld(($a[4])=&NR(1),&QWPw(1,$ap)); | ||
| 32 | &ld(($b[4])=&NR(1),&QWPw(1,$bp)); | ||
| 33 | &ld(($a[5])=&NR(1),&QWPw(1,$ap)); | ||
| 34 | &ld(($b[5])=&NR(1),&QWPw(1,$bp)); | ||
| 35 | &ld(($a[6])=&NR(1),&QWPw(1,$ap)); | ||
| 36 | &ld(($b[6])=&NR(1),&QWPw(1,$bp)); | ||
| 37 | &ld(($a[7])=&NR(1),&QWPw(1,$ap)); &FR($ap); | ||
| 38 | &ld(($b[7])=&NR(1),&QWPw(1,$bp)); &FR($bp); | ||
| 39 | |||
| 40 | ($c0,$c1,$c2)=&NR(3); | ||
| 41 | &mov("zero",$c2); | ||
| 42 | &mul($a[0],$b[0],$c0); | ||
| 43 | &muh($a[0],$b[0],$c1); | ||
| 44 | &st($c0,&QWPw(0,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 45 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 46 | &mov("zero",$c2); | ||
| 47 | |||
| 48 | &mul_add_c($a[0],$b[1],$c0,$c1,$c2); | ||
| 49 | &mul_add_c($a[1],$b[0],$c0,$c1,$c2); | ||
| 50 | &st($c0,&QWPw(1,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 51 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 52 | &mov("zero",$c2); | ||
| 53 | |||
| 54 | &mul_add_c($a[0],$b[2],$c0,$c1,$c2); | ||
| 55 | &mul_add_c($a[1],$b[1],$c0,$c1,$c2); | ||
| 56 | &mul_add_c($a[2],$b[0],$c0,$c1,$c2); | ||
| 57 | &st($c0,&QWPw(2,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 58 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 59 | &mov("zero",$c2); | ||
| 60 | |||
| 61 | &mul_add_c($a[0],$b[3],$c0,$c1,$c2); | ||
| 62 | &mul_add_c($a[1],$b[2],$c0,$c1,$c2); | ||
| 63 | &mul_add_c($a[2],$b[1],$c0,$c1,$c2); | ||
| 64 | &mul_add_c($a[3],$b[0],$c0,$c1,$c2); | ||
| 65 | &st($c0,&QWPw(3,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 66 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 67 | &mov("zero",$c2); | ||
| 68 | |||
| 69 | &mul_add_c($a[0],$b[4],$c0,$c1,$c2); | ||
| 70 | &mul_add_c($a[1],$b[3],$c0,$c1,$c2); | ||
| 71 | &mul_add_c($a[2],$b[2],$c0,$c1,$c2); | ||
| 72 | &mul_add_c($a[3],$b[1],$c0,$c1,$c2); | ||
| 73 | &mul_add_c($a[4],$b[0],$c0,$c1,$c2); | ||
| 74 | &st($c0,&QWPw(4,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 75 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 76 | &mov("zero",$c2); | ||
| 77 | |||
| 78 | &mul_add_c($a[0],$b[5],$c0,$c1,$c2); | ||
| 79 | &mul_add_c($a[1],$b[4],$c0,$c1,$c2); | ||
| 80 | &mul_add_c($a[2],$b[3],$c0,$c1,$c2); | ||
| 81 | &mul_add_c($a[3],$b[2],$c0,$c1,$c2); | ||
| 82 | &mul_add_c($a[4],$b[1],$c0,$c1,$c2); | ||
| 83 | &mul_add_c($a[5],$b[0],$c0,$c1,$c2); | ||
| 84 | &st($c0,&QWPw(5,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 85 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 86 | &mov("zero",$c2); | ||
| 87 | |||
| 88 | &mul_add_c($a[0],$b[6],$c0,$c1,$c2); | ||
| 89 | &mul_add_c($a[1],$b[5],$c0,$c1,$c2); | ||
| 90 | &mul_add_c($a[2],$b[4],$c0,$c1,$c2); | ||
| 91 | &mul_add_c($a[3],$b[3],$c0,$c1,$c2); | ||
| 92 | &mul_add_c($a[4],$b[2],$c0,$c1,$c2); | ||
| 93 | &mul_add_c($a[5],$b[1],$c0,$c1,$c2); | ||
| 94 | &mul_add_c($a[6],$b[0],$c0,$c1,$c2); | ||
| 95 | &st($c0,&QWPw(6,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 96 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 97 | &mov("zero",$c2); | ||
| 98 | |||
| 99 | &mul_add_c($a[0],$b[7],$c0,$c1,$c2); &FR($a[0]); | ||
| 100 | &mul_add_c($a[1],$b[6],$c0,$c1,$c2); | ||
| 101 | &mul_add_c($a[2],$b[5],$c0,$c1,$c2); | ||
| 102 | &mul_add_c($a[3],$b[4],$c0,$c1,$c2); | ||
| 103 | &mul_add_c($a[4],$b[3],$c0,$c1,$c2); | ||
| 104 | &mul_add_c($a[5],$b[2],$c0,$c1,$c2); | ||
| 105 | &mul_add_c($a[6],$b[1],$c0,$c1,$c2); | ||
| 106 | &mul_add_c($a[7],$b[0],$c0,$c1,$c2); &FR($b[0]); | ||
| 107 | &st($c0,&QWPw(7,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 108 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 109 | &mov("zero",$c2); | ||
| 110 | |||
| 111 | &mul_add_c($a[1],$b[7],$c0,$c1,$c2); &FR($a[1]); | ||
| 112 | &mul_add_c($a[2],$b[6],$c0,$c1,$c2); | ||
| 113 | &mul_add_c($a[3],$b[5],$c0,$c1,$c2); | ||
| 114 | &mul_add_c($a[4],$b[4],$c0,$c1,$c2); | ||
| 115 | &mul_add_c($a[5],$b[3],$c0,$c1,$c2); | ||
| 116 | &mul_add_c($a[6],$b[2],$c0,$c1,$c2); | ||
| 117 | &mul_add_c($a[7],$b[1],$c0,$c1,$c2); &FR($b[1]); | ||
| 118 | &st($c0,&QWPw(8,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 119 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 120 | &mov("zero",$c2); | ||
| 121 | |||
| 122 | &mul_add_c($a[2],$b[7],$c0,$c1,$c2); &FR($a[2]); | ||
| 123 | &mul_add_c($a[3],$b[6],$c0,$c1,$c2); | ||
| 124 | &mul_add_c($a[4],$b[5],$c0,$c1,$c2); | ||
| 125 | &mul_add_c($a[5],$b[4],$c0,$c1,$c2); | ||
| 126 | &mul_add_c($a[6],$b[3],$c0,$c1,$c2); | ||
| 127 | &mul_add_c($a[7],$b[2],$c0,$c1,$c2); &FR($b[2]); | ||
| 128 | &st($c0,&QWPw(9,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 129 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 130 | &mov("zero",$c2); | ||
| 131 | |||
| 132 | &mul_add_c($a[3],$b[7],$c0,$c1,$c2); &FR($a[3]); | ||
| 133 | &mul_add_c($a[4],$b[6],$c0,$c1,$c2); | ||
| 134 | &mul_add_c($a[5],$b[5],$c0,$c1,$c2); | ||
| 135 | &mul_add_c($a[6],$b[4],$c0,$c1,$c2); | ||
| 136 | &mul_add_c($a[7],$b[3],$c0,$c1,$c2); &FR($b[3]); | ||
| 137 | &st($c0,&QWPw(10,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 138 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 139 | &mov("zero",$c2); | ||
| 140 | |||
| 141 | &mul_add_c($a[4],$b[7],$c0,$c1,$c2); &FR($a[4]); | ||
| 142 | &mul_add_c($a[5],$b[6],$c0,$c1,$c2); | ||
| 143 | &mul_add_c($a[6],$b[5],$c0,$c1,$c2); | ||
| 144 | &mul_add_c($a[7],$b[4],$c0,$c1,$c2); &FR($b[4]); | ||
| 145 | &st($c0,&QWPw(11,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 146 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 147 | &mov("zero",$c2); | ||
| 148 | |||
| 149 | &mul_add_c($a[5],$b[7],$c0,$c1,$c2); &FR($a[5]); | ||
| 150 | &mul_add_c($a[6],$b[6],$c0,$c1,$c2); | ||
| 151 | &mul_add_c($a[7],$b[5],$c0,$c1,$c2); &FR($b[5]); | ||
| 152 | &st($c0,&QWPw(12,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 153 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 154 | &mov("zero",$c2); | ||
| 155 | |||
| 156 | &mul_add_c($a[6],$b[7],$c0,$c1,$c2); &FR($a[6]); | ||
| 157 | &mul_add_c($a[7],$b[6],$c0,$c1,$c2); &FR($b[6]); | ||
| 158 | &st($c0,&QWPw(13,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 159 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 160 | &mov("zero",$c2); | ||
| 161 | |||
| 162 | &mul_add_c($a[7],$b[7],$c0,$c1,$c2); &FR($a[7],$b[7]); | ||
| 163 | &st($c0,&QWPw(14,$rp)); | ||
| 164 | &st($c1,&QWPw(15,$rp)); | ||
| 165 | |||
| 166 | &FR($c0,$c1,$c2); | ||
| 167 | |||
| 168 | &ld($reg_s0,&swtmp(0)); | ||
| 169 | &ld($reg_s1,&swtmp(1)); | ||
| 170 | &stack_pop(2); | ||
| 171 | |||
| 172 | &function_end($name); | ||
| 173 | |||
| 174 | &fin_pool; | ||
| 175 | } | ||
| 176 | |||
| 177 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr.pl deleted file mode 100644 index a55b696906..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr.pl +++ /dev/null | |||
| @@ -1,113 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_sqr_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r,$couny); | ||
| 8 | |||
| 9 | &init_pool(3); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $count=&wparam(2); | ||
| 15 | |||
| 16 | &function_begin($name,""); | ||
| 17 | |||
| 18 | &comment(""); | ||
| 19 | &sub($count,4,$count); | ||
| 20 | &mov("zero",$cc); | ||
| 21 | &br(&label("finish")); | ||
| 22 | &blt($count,&label("finish")); | ||
| 23 | |||
| 24 | ($a0,$r0)=&NR(2); | ||
| 25 | &ld($a0,&QWPw(0,$ap)); | ||
| 26 | &ld($r0,&QWPw(0,$rp)); | ||
| 27 | |||
| 28 | $a=<<'EOF'; | ||
| 29 | ########################################################## | ||
| 30 | &set_label("loop"); | ||
| 31 | |||
| 32 | ($a1)=&NR(1); &ld($a1,&QWPw(1,$ap)); | ||
| 33 | ($b1)=&NR(1); &ld($b1,&QWPw(1,$bp)); | ||
| 34 | ($a2)=&NR(1); &ld($a2,&QWPw(2,$ap)); | ||
| 35 | ($b2)=&NR(1); &ld($b2,&QWPw(2,$bp)); | ||
| 36 | ($a3)=&NR(1); &ld($a3,&QWPw(3,$ap)); | ||
| 37 | ($b3)=&NR(1); &ld($b3,&QWPw(3,$bp)); | ||
| 38 | |||
| 39 | ($o0,$t0)=&NR(2); | ||
| 40 | &add($a0,$b0,$o0); | ||
| 41 | &cmpult($o0,$b0,$t0); | ||
| 42 | &add($o0,$cc,$o0); | ||
| 43 | &cmpult($o0,$cc,$cc); | ||
| 44 | &add($cc,$t0,$cc); &FR($t0); | ||
| 45 | |||
| 46 | ($t1,$o1)=&NR(2); | ||
| 47 | |||
| 48 | &add($a1,$b1,$o1); &FR($a1); | ||
| 49 | &cmpult($o1,$b1,$t1); &FR($b1); | ||
| 50 | &add($o1,$cc,$o1); | ||
| 51 | &cmpult($o1,$cc,$cc); | ||
| 52 | &add($cc,$t1,$cc); &FR($t1); | ||
| 53 | |||
| 54 | ($t2,$o2)=&NR(2); | ||
| 55 | |||
| 56 | &add($a2,$b2,$o2); &FR($a2); | ||
| 57 | &cmpult($o2,$b2,$t2); &FR($b2); | ||
| 58 | &add($o2,$cc,$o2); | ||
| 59 | &cmpult($o2,$cc,$cc); | ||
| 60 | &add($cc,$t2,$cc); &FR($t2); | ||
| 61 | |||
| 62 | ($t3,$o3)=&NR(2); | ||
| 63 | |||
| 64 | &add($a3,$b3,$o3); &FR($a3); | ||
| 65 | &cmpult($o3,$b3,$t3); &FR($b3); | ||
| 66 | &add($o3,$cc,$o3); | ||
| 67 | &cmpult($o3,$cc,$cc); | ||
| 68 | &add($cc,$t3,$cc); &FR($t3); | ||
| 69 | |||
| 70 | &st($o0,&QWPw(0,$rp)); &FR($o0); | ||
| 71 | &st($o1,&QWPw(0,$rp)); &FR($o1); | ||
| 72 | &st($o2,&QWPw(0,$rp)); &FR($o2); | ||
| 73 | &st($o3,&QWPw(0,$rp)); &FR($o3); | ||
| 74 | |||
| 75 | &sub($count,4,$count); # count-=4 | ||
| 76 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 77 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 78 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 79 | |||
| 80 | &blt($count,&label("finish")); | ||
| 81 | &ld($a0,&QWPw(0,$ap)); | ||
| 82 | &ld($b0,&QWPw(0,$bp)); | ||
| 83 | &br(&label("loop")); | ||
| 84 | EOF | ||
| 85 | ################################################## | ||
| 86 | # Do the last 0..3 words | ||
| 87 | |||
| 88 | &set_label("last_loop"); | ||
| 89 | |||
| 90 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); # get a | ||
| 91 | &mul($a0,$a0,($l0)=&NR(1)); | ||
| 92 | &add($ap,$QWS,$ap); | ||
| 93 | &add($rp,2*$QWS,$rp); | ||
| 94 | &sub($count,1,$count); | ||
| 95 | &muh($a0,$a0,($h0)=&NR(1)); &FR($a0); | ||
| 96 | &st($l0,&QWPw(-2,$rp)); &FR($l0); | ||
| 97 | &st($h0,&QWPw(-1,$rp)); &FR($h0); | ||
| 98 | |||
| 99 | &bgt($count,&label("last_loop")); | ||
| 100 | &function_end_A($name); | ||
| 101 | |||
| 102 | ###################################################### | ||
| 103 | &set_label("finish"); | ||
| 104 | &add($count,4,$count); | ||
| 105 | &bgt($count,&label("last_loop")); | ||
| 106 | |||
| 107 | &set_label("end"); | ||
| 108 | &function_end($name); | ||
| 109 | |||
| 110 | &fin_pool; | ||
| 111 | } | ||
| 112 | |||
| 113 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr_c4.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr_c4.pl deleted file mode 100644 index bf33f5b503..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr_c4.pl +++ /dev/null | |||
| @@ -1,109 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub sqr_add_c | ||
| 5 | { | ||
| 6 | local($a,$c0,$c1,$c2)=@_; | ||
| 7 | local($l1,$h1,$t1,$t2); | ||
| 8 | |||
| 9 | &mul($a,$a,($l1)=&NR(1)); | ||
| 10 | &muh($a,$a,($h1)=&NR(1)); | ||
| 11 | &add($c0,$l1,$c0); | ||
| 12 | &add($c1,$h1,$c1); | ||
| 13 | &cmpult($c0,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 14 | &cmpult($c1,$h1,($t2)=&NR(1)); &FR($h1); | ||
| 15 | &add($c1,$t1,$c1); &FR($t1); | ||
| 16 | &add($c2,$t2,$c2); &FR($t2); | ||
| 17 | } | ||
| 18 | |||
| 19 | sub sqr_add_c2 | ||
| 20 | { | ||
| 21 | local($a,$b,$c0,$c1,$c2)=@_; | ||
| 22 | local($l1,$h1,$t1,$t2); | ||
| 23 | |||
| 24 | &mul($a,$b,($l1)=&NR(1)); | ||
| 25 | &muh($a,$b,($h1)=&NR(1)); | ||
| 26 | &cmplt($l1,"zero",($lc1)=&NR(1)); | ||
| 27 | &cmplt($h1,"zero",($hc1)=&NR(1)); | ||
| 28 | &add($l1,$l1,$l1); | ||
| 29 | &add($h1,$h1,$h1); | ||
| 30 | &add($h1,$lc1,$h1); &FR($lc1); | ||
| 31 | &add($c2,$hc1,$c2); &FR($hc1); | ||
| 32 | |||
| 33 | &add($c0,$l1,$c0); | ||
| 34 | &add($c1,$h1,$c1); | ||
| 35 | &cmpult($c0,$l1,($lc1)=&NR(1)); &FR($l1); | ||
| 36 | &cmpult($c1,$h1,($hc1)=&NR(1)); &FR($h1); | ||
| 37 | |||
| 38 | &add($c1,$lc1,$c1); &FR($lc1); | ||
| 39 | &add($c2,$hc1,$c2); &FR($hc1); | ||
| 40 | } | ||
| 41 | |||
| 42 | |||
| 43 | sub bn_sqr_comba4 | ||
| 44 | { | ||
| 45 | local($name)=@_; | ||
| 46 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 47 | |||
| 48 | $cnt=1; | ||
| 49 | &init_pool(2); | ||
| 50 | |||
| 51 | $rp=&wparam(0); | ||
| 52 | $ap=&wparam(1); | ||
| 53 | |||
| 54 | &function_begin($name,""); | ||
| 55 | |||
| 56 | &comment(""); | ||
| 57 | |||
| 58 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 59 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 60 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 61 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); &FR($ap); | ||
| 62 | |||
| 63 | ($c0,$c1,$c2)=&NR(3); | ||
| 64 | |||
| 65 | &mov("zero",$c2); | ||
| 66 | &mul($a[0],$a[0],$c0); | ||
| 67 | &muh($a[0],$a[0],$c1); | ||
| 68 | &st($c0,&QWPw(0,$rp)); | ||
| 69 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 70 | &mov("zero",$c2); | ||
| 71 | |||
| 72 | &sqr_add_c2($a[0],$a[1],$c0,$c1,$c2); | ||
| 73 | &st($c0,&QWPw(1,$rp)); | ||
| 74 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 75 | &mov("zero",$c2); | ||
| 76 | |||
| 77 | &sqr_add_c($a[1],$c0,$c1,$c2); | ||
| 78 | &sqr_add_c2($a[2],$a[0],$c0,$c1,$c2); | ||
| 79 | &st($c0,&QWPw(2,$rp)); | ||
| 80 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 81 | &mov("zero",$c2); | ||
| 82 | |||
| 83 | &sqr_add_c2($a[3],$a[0],$c0,$c1,$c2); | ||
| 84 | &sqr_add_c2($a[2],$a[1],$c0,$c1,$c2); | ||
| 85 | &st($c0,&QWPw(3,$rp)); | ||
| 86 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 87 | &mov("zero",$c2); | ||
| 88 | |||
| 89 | &sqr_add_c($a[2],$c0,$c1,$c2); | ||
| 90 | &sqr_add_c2($a[3],$a[1],$c0,$c1,$c2); | ||
| 91 | &st($c0,&QWPw(4,$rp)); | ||
| 92 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 93 | &mov("zero",$c2); | ||
| 94 | |||
| 95 | &sqr_add_c2($a[3],$a[2],$c0,$c1,$c2); | ||
| 96 | &st($c0,&QWPw(5,$rp)); | ||
| 97 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 98 | &mov("zero",$c2); | ||
| 99 | |||
| 100 | &sqr_add_c($a[3],$c0,$c1,$c2); | ||
| 101 | &st($c0,&QWPw(6,$rp)); | ||
| 102 | &st($c1,&QWPw(7,$rp)); | ||
| 103 | |||
| 104 | &function_end($name); | ||
| 105 | |||
| 106 | &fin_pool; | ||
| 107 | } | ||
| 108 | |||
| 109 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr_c8.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr_c8.pl deleted file mode 100644 index b4afe085f1..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sqr_c8.pl +++ /dev/null | |||
| @@ -1,132 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_sqr_comba8 | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 8 | |||
| 9 | $cnt=1; | ||
| 10 | &init_pool(2); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | |||
| 15 | &function_begin($name,""); | ||
| 16 | |||
| 17 | &comment(""); | ||
| 18 | |||
| 19 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 20 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 21 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 22 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); | ||
| 23 | &ld(($a[4])=&NR(1),&QWPw(4,$ap)); | ||
| 24 | &ld(($a[5])=&NR(1),&QWPw(5,$ap)); | ||
| 25 | &ld(($a[6])=&NR(1),&QWPw(6,$ap)); | ||
| 26 | &ld(($a[7])=&NR(1),&QWPw(7,$ap)); &FR($ap); | ||
| 27 | |||
| 28 | ($c0,$c1,$c2)=&NR(3); | ||
| 29 | |||
| 30 | &mov("zero",$c2); | ||
| 31 | &mul($a[0],$a[0],$c0); | ||
| 32 | &muh($a[0],$a[0],$c1); | ||
| 33 | &st($c0,&QWPw(0,$rp)); | ||
| 34 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 35 | &mov("zero",$c2); | ||
| 36 | |||
| 37 | &sqr_add_c2($a[1],$a[0],$c0,$c1,$c2); | ||
| 38 | &st($c0,&QWPw(1,$rp)); | ||
| 39 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 40 | &mov("zero",$c2); | ||
| 41 | |||
| 42 | &sqr_add_c($a[1],$c0,$c1,$c2); | ||
| 43 | &sqr_add_c2($a[2],$a[0],$c0,$c1,$c2); | ||
| 44 | &st($c0,&QWPw(2,$rp)); | ||
| 45 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 46 | &mov("zero",$c2); | ||
| 47 | |||
| 48 | &sqr_add_c2($a[2],$a[1],$c0,$c1,$c2); | ||
| 49 | &sqr_add_c2($a[3],$a[0],$c0,$c1,$c2); | ||
| 50 | &st($c0,&QWPw(3,$rp)); | ||
| 51 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 52 | &mov("zero",$c2); | ||
| 53 | |||
| 54 | &sqr_add_c($a[2],$c0,$c1,$c2); | ||
| 55 | &sqr_add_c2($a[3],$a[1],$c0,$c1,$c2); | ||
| 56 | &sqr_add_c2($a[4],$a[0],$c0,$c1,$c2); | ||
| 57 | &st($c0,&QWPw(4,$rp)); | ||
| 58 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 59 | &mov("zero",$c2); | ||
| 60 | |||
| 61 | &sqr_add_c2($a[3],$a[2],$c0,$c1,$c2); | ||
| 62 | &sqr_add_c2($a[4],$a[1],$c0,$c1,$c2); | ||
| 63 | &sqr_add_c2($a[5],$a[0],$c0,$c1,$c2); | ||
| 64 | &st($c0,&QWPw(5,$rp)); | ||
| 65 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 66 | &mov("zero",$c2); | ||
| 67 | |||
| 68 | &sqr_add_c($a[3],$c0,$c1,$c2); | ||
| 69 | &sqr_add_c2($a[4],$a[2],$c0,$c1,$c2); | ||
| 70 | &sqr_add_c2($a[5],$a[1],$c0,$c1,$c2); | ||
| 71 | &sqr_add_c2($a[6],$a[0],$c0,$c1,$c2); | ||
| 72 | &st($c0,&QWPw(6,$rp)); | ||
| 73 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 74 | &mov("zero",$c2); | ||
| 75 | |||
| 76 | &sqr_add_c2($a[4],$a[3],$c0,$c1,$c2); | ||
| 77 | &sqr_add_c2($a[5],$a[2],$c0,$c1,$c2); | ||
| 78 | &sqr_add_c2($a[6],$a[1],$c0,$c1,$c2); | ||
| 79 | &sqr_add_c2($a[7],$a[0],$c0,$c1,$c2); | ||
| 80 | &st($c0,&QWPw(7,$rp)); | ||
| 81 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 82 | &mov("zero",$c2); | ||
| 83 | |||
| 84 | &sqr_add_c($a[4],$c0,$c1,$c2); | ||
| 85 | &sqr_add_c2($a[5],$a[3],$c0,$c1,$c2); | ||
| 86 | &sqr_add_c2($a[6],$a[2],$c0,$c1,$c2); | ||
| 87 | &sqr_add_c2($a[7],$a[1],$c0,$c1,$c2); | ||
| 88 | &st($c0,&QWPw(8,$rp)); | ||
| 89 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 90 | &mov("zero",$c2); | ||
| 91 | |||
| 92 | &sqr_add_c2($a[5],$a[4],$c0,$c1,$c2); | ||
| 93 | &sqr_add_c2($a[6],$a[3],$c0,$c1,$c2); | ||
| 94 | &sqr_add_c2($a[7],$a[2],$c0,$c1,$c2); | ||
| 95 | &st($c0,&QWPw(9,$rp)); | ||
| 96 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 97 | &mov("zero",$c2); | ||
| 98 | |||
| 99 | &sqr_add_c($a[5],$c0,$c1,$c2); | ||
| 100 | &sqr_add_c2($a[6],$a[4],$c0,$c1,$c2); | ||
| 101 | &sqr_add_c2($a[7],$a[3],$c0,$c1,$c2); | ||
| 102 | &st($c0,&QWPw(10,$rp)); | ||
| 103 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 104 | &mov("zero",$c2); | ||
| 105 | |||
| 106 | &sqr_add_c2($a[6],$a[5],$c0,$c1,$c2); | ||
| 107 | &sqr_add_c2($a[7],$a[4],$c0,$c1,$c2); | ||
| 108 | &st($c0,&QWPw(11,$rp)); | ||
| 109 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 110 | &mov("zero",$c2); | ||
| 111 | |||
| 112 | &sqr_add_c($a[6],$c0,$c1,$c2); | ||
| 113 | &sqr_add_c2($a[7],$a[5],$c0,$c1,$c2); | ||
| 114 | &st($c0,&QWPw(12,$rp)); | ||
| 115 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 116 | &mov("zero",$c2); | ||
| 117 | |||
| 118 | &sqr_add_c2($a[7],$a[6],$c0,$c1,$c2); | ||
| 119 | &st($c0,&QWPw(13,$rp)); | ||
| 120 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 121 | &mov("zero",$c2); | ||
| 122 | |||
| 123 | &sqr_add_c($a[7],$c0,$c1,$c2); | ||
| 124 | &st($c0,&QWPw(14,$rp)); | ||
| 125 | &st($c1,&QWPw(15,$rp)); | ||
| 126 | |||
| 127 | &function_end($name); | ||
| 128 | |||
| 129 | &fin_pool; | ||
| 130 | } | ||
| 131 | |||
| 132 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sub.pl b/src/lib/libssl/src/crypto/bn/asm/alpha.works/sub.pl deleted file mode 100644 index d998da5c21..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha.works/sub.pl +++ /dev/null | |||
| @@ -1,108 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_sub_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $bp=&wparam(2); | ||
| 15 | $count=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | &blt($count,&label("finish")); | ||
| 23 | |||
| 24 | ($a0,$b0)=&NR(2); | ||
| 25 | &ld($a0,&QWPw(0,$ap)); | ||
| 26 | &ld($b0,&QWPw(0,$bp)); | ||
| 27 | |||
| 28 | ########################################################## | ||
| 29 | &set_label("loop"); | ||
| 30 | |||
| 31 | ($a1,$tmp,$b1,$a2,$b2,$a3,$b3,$o0)=&NR(8); | ||
| 32 | &ld($a1,&QWPw(1,$ap)); | ||
| 33 | &cmpult($a0,$b0,$tmp); # will we borrow? | ||
| 34 | &ld($b1,&QWPw(1,$bp)); | ||
| 35 | &sub($a0,$b0,$a0); # do the subtract | ||
| 36 | &ld($a2,&QWPw(2,$ap)); | ||
| 37 | &cmpult($a0,$cc,$b0); # will we borrow? | ||
| 38 | &ld($b2,&QWPw(2,$bp)); | ||
| 39 | &sub($a0,$cc,$o0); # will we borrow? | ||
| 40 | &ld($a3,&QWPw(3,$ap)); | ||
| 41 | &add($b0,$tmp,$cc); ($t1,$o1)=&NR(2); &FR($tmp); | ||
| 42 | |||
| 43 | &cmpult($a1,$b1,$t1); # will we borrow? | ||
| 44 | &sub($a1,$b1,$a1); # do the subtract | ||
| 45 | &ld($b3,&QWPw(3,$bp)); | ||
| 46 | &cmpult($a1,$cc,$b1); # will we borrow? | ||
| 47 | &sub($a1,$cc,$o1); # will we borrow? | ||
| 48 | &add($b1,$t1,$cc); ($tmp,$o2)=&NR(2); &FR($t1,$a1,$b1); | ||
| 49 | |||
| 50 | &cmpult($a2,$b2,$tmp); # will we borrow? | ||
| 51 | &sub($a2,$b2,$a2); # do the subtract | ||
| 52 | &st($o0,&QWPw(0,$rp)); &FR($o0); # save | ||
| 53 | &cmpult($a2,$cc,$b2); # will we borrow? | ||
| 54 | &sub($a2,$cc,$o2); # will we borrow? | ||
| 55 | &add($b2,$tmp,$cc); ($t3,$o3)=&NR(2); &FR($tmp,$a2,$b2); | ||
| 56 | |||
| 57 | &cmpult($a3,$b3,$t3); # will we borrow? | ||
| 58 | &sub($a3,$b3,$a3); # do the subtract | ||
| 59 | &st($o1,&QWPw(1,$rp)); &FR($o1); | ||
| 60 | &cmpult($a3,$cc,$b3); # will we borrow? | ||
| 61 | &sub($a3,$cc,$o3); # will we borrow? | ||
| 62 | &add($b3,$t3,$cc); &FR($t3,$a3,$b3); | ||
| 63 | |||
| 64 | &st($o2,&QWPw(2,$rp)); &FR($o2); | ||
| 65 | &sub($count,4,$count); # count-=4 | ||
| 66 | &st($o3,&QWPw(3,$rp)); &FR($o3); | ||
| 67 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 68 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 69 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 70 | |||
| 71 | &blt($count,&label("finish")); | ||
| 72 | &ld($a0,&QWPw(0,$ap)); | ||
| 73 | &ld($b0,&QWPw(0,$bp)); | ||
| 74 | &br(&label("loop")); | ||
| 75 | ################################################## | ||
| 76 | # Do the last 0..3 words | ||
| 77 | |||
| 78 | &set_label("last_loop"); | ||
| 79 | |||
| 80 | &ld($a0,&QWPw(0,$ap)); # get a | ||
| 81 | &ld($b0,&QWPw(0,$bp)); # get b | ||
| 82 | &cmpult($a0,$b0,$tmp); # will we borrow? | ||
| 83 | &sub($a0,$b0,$a0); # do the subtract | ||
| 84 | &cmpult($a0,$cc,$b0); # will we borrow? | ||
| 85 | &sub($a0,$cc,$a0); # will we borrow? | ||
| 86 | &st($a0,&QWPw(0,$rp)); # save | ||
| 87 | &add($b0,$tmp,$cc); # add the borrows | ||
| 88 | |||
| 89 | &add($ap,$QWS,$ap); | ||
| 90 | &add($bp,$QWS,$bp); | ||
| 91 | &add($rp,$QWS,$rp); | ||
| 92 | &sub($count,1,$count); | ||
| 93 | &bgt($count,&label("last_loop")); | ||
| 94 | &function_end_A($name); | ||
| 95 | |||
| 96 | ###################################################### | ||
| 97 | &set_label("finish"); | ||
| 98 | &add($count,4,$count); | ||
| 99 | &bgt($count,&label("last_loop")); | ||
| 100 | |||
| 101 | &FR($a0,$b0); | ||
| 102 | &set_label("end"); | ||
| 103 | &function_end($name); | ||
| 104 | |||
| 105 | &fin_pool; | ||
| 106 | } | ||
| 107 | |||
| 108 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/add.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/add.pl deleted file mode 100644 index 13bf516428..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/add.pl +++ /dev/null | |||
| @@ -1,118 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_add_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $bp=&wparam(2); | ||
| 15 | $count=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | &blt($count,&label("finish")); | ||
| 23 | |||
| 24 | ($a0,$b0)=&NR(2); | ||
| 25 | |||
| 26 | ########################################################## | ||
| 27 | &set_label("loop"); | ||
| 28 | |||
| 29 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); | ||
| 30 | &ld(($b0)=&NR(1),&QWPw(0,$bp)); | ||
| 31 | &ld(($a1)=&NR(1),&QWPw(1,$ap)); | ||
| 32 | &ld(($b1)=&NR(1),&QWPw(1,$bp)); | ||
| 33 | |||
| 34 | ($o0,$t0)=&NR(2); | ||
| 35 | &add($a0,$b0,$o0); | ||
| 36 | &ld(($a2)=&NR(1),&QWPw(2,$ap)); | ||
| 37 | &cmpult($o0,$b0,$t0); | ||
| 38 | &add($o0,$cc,$o0); | ||
| 39 | &cmpult($o0,$cc,$cc); | ||
| 40 | &ld(($b2)=&NR(1),&QWPw(2,$bp)); | ||
| 41 | &add($cc,$t0,$cc); &FR($t0); | ||
| 42 | |||
| 43 | ($t1,$o1)=&NR(2); | ||
| 44 | |||
| 45 | &add($a1,$b1,$o1); &FR($a1); | ||
| 46 | &cmpult($o1,$b1,$t1); &FR($b1); | ||
| 47 | &add($o1,$cc,$o1); | ||
| 48 | &cmpult($o1,$cc,$cc); | ||
| 49 | &ld(($a3)=&NR(1),&QWPw(3,$ap)); | ||
| 50 | &add($cc,$t1,$cc); &FR($t1); | ||
| 51 | |||
| 52 | ($t2,$o2)=&NR(2); | ||
| 53 | |||
| 54 | &add($a2,$b2,$o2); &FR($a2); | ||
| 55 | &cmpult($o2,$b2,$t2); &FR($b2); | ||
| 56 | &add($o2,$cc,$o2); | ||
| 57 | &cmpult($o2,$cc,$cc); | ||
| 58 | &ld(($b3)=&NR(1),&QWPw(3,$bp)); | ||
| 59 | &st($o0,&QWPw(0,$rp)); &FR($o0); | ||
| 60 | &add($cc,$t2,$cc); &FR($t2); | ||
| 61 | |||
| 62 | ($t3,$o3)=&NR(2); | ||
| 63 | |||
| 64 | &st($o1,&QWPw(0,$rp)); &FR($o1); | ||
| 65 | &add($a3,$b3,$o3); &FR($a3); | ||
| 66 | &cmpult($o3,$b3,$t3); &FR($b3); | ||
| 67 | &add($o3,$cc,$o3); | ||
| 68 | &st($o2,&QWPw(0,$rp)); &FR($o2); | ||
| 69 | &cmpult($o3,$cc,$cc); | ||
| 70 | &st($o3,&QWPw(0,$rp)); &FR($o3); | ||
| 71 | &add($cc,$t3,$cc); &FR($t3); | ||
| 72 | |||
| 73 | |||
| 74 | &sub($count,4,$count); # count-=4 | ||
| 75 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 76 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 77 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 78 | |||
| 79 | ### | ||
| 80 | &bge($count,&label("loop")); | ||
| 81 | ### | ||
| 82 | &br(&label("finish")); | ||
| 83 | ################################################## | ||
| 84 | # Do the last 0..3 words | ||
| 85 | |||
| 86 | ($t0,$o0)=&NR(2); | ||
| 87 | &set_label("last_loop"); | ||
| 88 | |||
| 89 | &ld($a0,&QWPw(0,$ap)); # get a | ||
| 90 | &ld($b0,&QWPw(0,$bp)); # get b | ||
| 91 | &add($ap,$QWS,$ap); | ||
| 92 | &add($bp,$QWS,$bp); | ||
| 93 | &add($a0,$b0,$o0); | ||
| 94 | &sub($count,1,$count); | ||
| 95 | &cmpult($o0,$b0,$t0); # will we borrow? | ||
| 96 | &add($o0,$cc,$o0); # will we borrow? | ||
| 97 | &cmpult($o0,$cc,$cc); # will we borrow? | ||
| 98 | &add($rp,$QWS,$rp); | ||
| 99 | &st($o0,&QWPw(-1,$rp)); # save | ||
| 100 | &add($cc,$t0,$cc); # add the borrows | ||
| 101 | |||
| 102 | ### | ||
| 103 | &bgt($count,&label("last_loop")); | ||
| 104 | &function_end_A($name); | ||
| 105 | |||
| 106 | ###################################################### | ||
| 107 | &set_label("finish"); | ||
| 108 | &add($count,4,$count); | ||
| 109 | &bgt($count,&label("last_loop")); | ||
| 110 | |||
| 111 | &FR($o0,$t0,$a0,$b0); | ||
| 112 | &set_label("end"); | ||
| 113 | &function_end($name); | ||
| 114 | |||
| 115 | &fin_pool; | ||
| 116 | } | ||
| 117 | |||
| 118 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/div.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/div.pl deleted file mode 100644 index e9e680897a..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/div.pl +++ /dev/null | |||
| @@ -1,144 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | |||
| 3 | sub bn_div_words | ||
| 4 | { | ||
| 5 | local($data)=<<'EOF'; | ||
| 6 | # | ||
| 7 | # What follows was taken directly from the C compiler with a few | ||
| 8 | # hacks to redo the lables. | ||
| 9 | # | ||
| 10 | .text | ||
| 11 | .set noreorder | ||
| 12 | .set volatile | ||
| 13 | .align 3 | ||
| 14 | .globl bn_div_words | ||
| 15 | .ent bn_div_words | ||
| 16 | bn_div_words | ||
| 17 | ldgp $29,0($27) | ||
| 18 | bn_div_words.ng: | ||
| 19 | lda $30,-48($30) | ||
| 20 | .frame $30,48,$26,0 | ||
| 21 | stq $26,0($30) | ||
| 22 | stq $9,8($30) | ||
| 23 | stq $10,16($30) | ||
| 24 | stq $11,24($30) | ||
| 25 | stq $12,32($30) | ||
| 26 | stq $13,40($30) | ||
| 27 | .mask 0x4003e00,-48 | ||
| 28 | .prologue 1 | ||
| 29 | bis $16,$16,$9 | ||
| 30 | bis $17,$17,$10 | ||
| 31 | bis $18,$18,$11 | ||
| 32 | bis $31,$31,$13 | ||
| 33 | bis $31,2,$12 | ||
| 34 | bne $11,$9119 | ||
| 35 | lda $0,-1 | ||
| 36 | br $31,$9136 | ||
| 37 | .align 4 | ||
| 38 | $9119: | ||
| 39 | bis $11,$11,$16 | ||
| 40 | jsr $26,BN_num_bits_word | ||
| 41 | ldgp $29,0($26) | ||
| 42 | subq $0,64,$1 | ||
| 43 | beq $1,$9120 | ||
| 44 | bis $31,1,$1 | ||
| 45 | sll $1,$0,$1 | ||
| 46 | cmpule $9,$1,$1 | ||
| 47 | bne $1,$9120 | ||
| 48 | # lda $16,_IO_stderr_ | ||
| 49 | # lda $17,$C32 | ||
| 50 | # bis $0,$0,$18 | ||
| 51 | # jsr $26,fprintf | ||
| 52 | # ldgp $29,0($26) | ||
| 53 | jsr $26,abort | ||
| 54 | ldgp $29,0($26) | ||
| 55 | .align 4 | ||
| 56 | $9120: | ||
| 57 | bis $31,64,$3 | ||
| 58 | cmpult $9,$11,$2 | ||
| 59 | subq $3,$0,$1 | ||
| 60 | addl $1,$31,$0 | ||
| 61 | subq $9,$11,$1 | ||
| 62 | cmoveq $2,$1,$9 | ||
| 63 | beq $0,$9122 | ||
| 64 | zapnot $0,15,$2 | ||
| 65 | subq $3,$0,$1 | ||
| 66 | sll $11,$2,$11 | ||
| 67 | sll $9,$2,$3 | ||
| 68 | srl $10,$1,$1 | ||
| 69 | sll $10,$2,$10 | ||
| 70 | bis $3,$1,$9 | ||
| 71 | $9122: | ||
| 72 | srl $11,32,$5 | ||
| 73 | zapnot $11,15,$6 | ||
| 74 | lda $7,-1 | ||
| 75 | .align 5 | ||
| 76 | $9123: | ||
| 77 | srl $9,32,$1 | ||
| 78 | subq $1,$5,$1 | ||
| 79 | bne $1,$9126 | ||
| 80 | zapnot $7,15,$27 | ||
| 81 | br $31,$9127 | ||
| 82 | .align 4 | ||
| 83 | $9126: | ||
| 84 | bis $9,$9,$24 | ||
| 85 | bis $5,$5,$25 | ||
| 86 | divqu $24,$25,$27 | ||
| 87 | $9127: | ||
| 88 | srl $10,32,$4 | ||
| 89 | .align 5 | ||
| 90 | $9128: | ||
| 91 | mulq $27,$5,$1 | ||
| 92 | subq $9,$1,$3 | ||
| 93 | zapnot $3,240,$1 | ||
| 94 | bne $1,$9129 | ||
| 95 | mulq $6,$27,$2 | ||
| 96 | sll $3,32,$1 | ||
| 97 | addq $1,$4,$1 | ||
| 98 | cmpule $2,$1,$2 | ||
| 99 | bne $2,$9129 | ||
| 100 | subq $27,1,$27 | ||
| 101 | br $31,$9128 | ||
| 102 | .align 4 | ||
| 103 | $9129: | ||
| 104 | mulq $27,$6,$1 | ||
| 105 | mulq $27,$5,$4 | ||
| 106 | srl $1,32,$3 | ||
| 107 | sll $1,32,$1 | ||
| 108 | addq $4,$3,$4 | ||
| 109 | cmpult $10,$1,$2 | ||
| 110 | subq $10,$1,$10 | ||
| 111 | addq $2,$4,$2 | ||
| 112 | cmpult $9,$2,$1 | ||
| 113 | bis $2,$2,$4 | ||
| 114 | beq $1,$9134 | ||
| 115 | addq $9,$11,$9 | ||
| 116 | subq $27,1,$27 | ||
| 117 | $9134: | ||
| 118 | subl $12,1,$12 | ||
| 119 | subq $9,$4,$9 | ||
| 120 | beq $12,$9124 | ||
| 121 | sll $27,32,$13 | ||
| 122 | sll $9,32,$2 | ||
| 123 | srl $10,32,$1 | ||
| 124 | sll $10,32,$10 | ||
| 125 | bis $2,$1,$9 | ||
| 126 | br $31,$9123 | ||
| 127 | .align 4 | ||
| 128 | $9124: | ||
| 129 | bis $13,$27,$0 | ||
| 130 | $9136: | ||
| 131 | ldq $26,0($30) | ||
| 132 | ldq $9,8($30) | ||
| 133 | ldq $10,16($30) | ||
| 134 | ldq $11,24($30) | ||
| 135 | ldq $12,32($30) | ||
| 136 | ldq $13,40($30) | ||
| 137 | addq $30,48,$30 | ||
| 138 | ret $31,($26),1 | ||
| 139 | .end bn_div_words | ||
| 140 | EOF | ||
| 141 | &asm_add($data); | ||
| 142 | } | ||
| 143 | |||
| 144 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/mul.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/mul.pl deleted file mode 100644 index 76c926566c..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/mul.pl +++ /dev/null | |||
| @@ -1,104 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_mul_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r,$couny); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $count=&wparam(2); | ||
| 15 | $word=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | ### | ||
| 23 | &blt($count,&label("finish")); | ||
| 24 | |||
| 25 | ($a0)=&NR(1); &ld($a0,&QWPw(0,$ap)); | ||
| 26 | |||
| 27 | &set_label("loop"); | ||
| 28 | |||
| 29 | ($a1)=&NR(1); &ld($a1,&QWPw(1,$ap)); | ||
| 30 | ($a2)=&NR(1); &ld($a2,&QWPw(2,$ap)); | ||
| 31 | |||
| 32 | &muh($a0,$word,($h0)=&NR(1)); &FR($a0); | ||
| 33 | ($a3)=&NR(1); &ld($a3,&QWPw(3,$ap)); | ||
| 34 | ### wait 8 | ||
| 35 | &mul($a0,$word,($l0)=&NR(1)); &FR($a0); | ||
| 36 | ### wait 8 | ||
| 37 | &muh($a1,$word,($h1)=&NR(1)); &FR($a1); | ||
| 38 | &add($l0,$cc,$l0); ### wait 8 | ||
| 39 | &mul($a1,$word,($l1)=&NR(1)); &FR($a1); | ||
| 40 | &cmpult($l0,$cc,$cc); ### wait 8 | ||
| 41 | &muh($a2,$word,($h2)=&NR(1)); &FR($a2); | ||
| 42 | &add($h0,$cc,$cc); &FR($h0); ### wait 8 | ||
| 43 | &mul($a2,$word,($l2)=&NR(1)); &FR($a2); | ||
| 44 | &add($l1,$cc,$l1); ### wait 8 | ||
| 45 | &st($l0,&QWPw(0,$rp)); &FR($l0); | ||
| 46 | &cmpult($l1,$cc,$cc); ### wait 8 | ||
| 47 | &muh($a3,$word,($h3)=&NR(1)); &FR($a3); | ||
| 48 | &add($h1,$cc,$cc); &FR($h1); | ||
| 49 | &mul($a3,$word,($l3)=&NR(1)); &FR($a3); | ||
| 50 | &add($l2,$cc,$l2); | ||
| 51 | &st($l1,&QWPw(1,$rp)); &FR($l1); | ||
| 52 | &cmpult($l2,$cc,$cc); | ||
| 53 | &add($h2,$cc,$cc); &FR($h2); | ||
| 54 | &sub($count,4,$count); # count-=4 | ||
| 55 | &st($l2,&QWPw(2,$rp)); &FR($l2); | ||
| 56 | &add($l3,$cc,$l3); | ||
| 57 | &cmpult($l3,$cc,$cc); | ||
| 58 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 59 | &add($h3,$cc,$cc); &FR($h3); | ||
| 60 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 61 | &st($l3,&QWPw(3,$rp)); &FR($l3); | ||
| 62 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 63 | ### | ||
| 64 | &blt($count,&label("finish")); | ||
| 65 | ($a0)=&NR(1); &ld($a0,&QWPw(0,$ap)); | ||
| 66 | &br(&label("finish")); | ||
| 67 | ################################################## | ||
| 68 | |||
| 69 | ################################################## | ||
| 70 | # Do the last 0..3 words | ||
| 71 | |||
| 72 | &set_label("last_loop"); | ||
| 73 | |||
| 74 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); # get a | ||
| 75 | ### | ||
| 76 | ### | ||
| 77 | ### | ||
| 78 | &muh($a0,$word,($h0)=&NR(1)); | ||
| 79 | ### Wait 8 for next mul issue | ||
| 80 | &mul($a0,$word,($l0)=&NR(1)); &FR($a0) | ||
| 81 | &add($ap,$QWS,$ap); | ||
| 82 | ### Loose 12 until result is available | ||
| 83 | &add($rp,$QWS,$rp); | ||
| 84 | &sub($count,1,$count); | ||
| 85 | &add($l0,$cc,$l0); | ||
| 86 | ### | ||
| 87 | &st($l0,&QWPw(-1,$rp)); &FR($l0); | ||
| 88 | &cmpult($l0,$cc,$cc); | ||
| 89 | &add($h0,$cc,$cc); &FR($h0); | ||
| 90 | &bgt($count,&label("last_loop")); | ||
| 91 | &function_end_A($name); | ||
| 92 | |||
| 93 | ###################################################### | ||
| 94 | &set_label("finish"); | ||
| 95 | &add($count,4,$count); | ||
| 96 | &bgt($count,&label("last_loop")); | ||
| 97 | |||
| 98 | &set_label("end"); | ||
| 99 | &function_end($name); | ||
| 100 | |||
| 101 | &fin_pool; | ||
| 102 | } | ||
| 103 | |||
| 104 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_add.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/mul_add.pl deleted file mode 100644 index 0d6df69bc4..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_add.pl +++ /dev/null | |||
| @@ -1,123 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_mul_add_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r,$couny); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $count=&wparam(2); | ||
| 15 | $word=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | ### | ||
| 23 | &blt($count,&label("finish")); | ||
| 24 | |||
| 25 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); | ||
| 26 | |||
| 27 | $a=<<'EOF'; | ||
| 28 | ########################################################## | ||
| 29 | &set_label("loop"); | ||
| 30 | |||
| 31 | &ld(($r0)=&NR(1),&QWPw(0,$rp)); | ||
| 32 | &ld(($a1)=&NR(1),&QWPw(1,$ap)); | ||
| 33 | &muh($a0,$word,($h0)=&NR(1)); | ||
| 34 | &ld(($r1)=&NR(1),&QWPw(1,$rp)); | ||
| 35 | &ld(($a2)=&NR(1),&QWPw(2,$ap)); | ||
| 36 | ### | ||
| 37 | &mul($a0,$word,($l0)=&NR(1)); &FR($a0); | ||
| 38 | &ld(($r2)=&NR(1),&QWPw(2,$rp)); | ||
| 39 | &muh($a1,$word,($h1)=&NR(1)); | ||
| 40 | &ld(($a3)=&NR(1),&QWPw(3,$ap)); | ||
| 41 | &mul($a1,$word,($l1)=&NR(1)); &FR($a1); | ||
| 42 | &ld(($r3)=&NR(1),&QWPw(3,$rp)); | ||
| 43 | &add($r0,$l0,$r0); | ||
| 44 | &add($r1,$l1,$r1); | ||
| 45 | &cmpult($r0,$l0,($t0)=&NR(1)); &FR($l0); | ||
| 46 | &cmpult($r1,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 47 | &muh($a2,$word,($h2)=&NR(1)); | ||
| 48 | &add($r0,$cc,$r0); | ||
| 49 | &add($h0,$t0,$h0); &FR($t0); | ||
| 50 | &cmpult($r0,$cc,$cc); | ||
| 51 | &add($h1,$t1,$h1); &FR($t1); | ||
| 52 | &add($h0,$cc,$cc); &FR($h0); | ||
| 53 | &mul($a2,$word,($l2)=&NR(1)); &FR($a2); | ||
| 54 | &add($r1,$cc,$r1); | ||
| 55 | &cmpult($r1,$cc,$cc); | ||
| 56 | &add($r2,$l2,$r2); | ||
| 57 | &add($h1,$cc,$cc); &FR($h1); | ||
| 58 | &cmpult($r2,$l2,($t2)=&NR(1)); &FR($l2); | ||
| 59 | &muh($a3,$word,($h3)=&NR(1)); | ||
| 60 | &add($r2,$cc,$r2); | ||
| 61 | &st($r0,&QWPw(0,$rp)); &FR($r0); | ||
| 62 | &add($h2,$t2,$h2); &FR($t2); | ||
| 63 | &st($r1,&QWPw(1,$rp)); &FR($r1); | ||
| 64 | &cmpult($r2,$cc,$cc); | ||
| 65 | &mul($a3,$word,($l3)=&NR(1)); &FR($a3); | ||
| 66 | &add($h2,$cc,$cc); &FR($h2); | ||
| 67 | &st($r2,&QWPw(2,$rp)); &FR($r2); | ||
| 68 | &sub($count,4,$count); # count-=4 | ||
| 69 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 70 | &add($r3,$l3,$r3); | ||
| 71 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 72 | &cmpult($r3,$l3,($t3)=&NR(1)); &FR($l3); | ||
| 73 | &add($r3,$cc,$r3); | ||
| 74 | &add($h3,$t3,$h3); &FR($t3); | ||
| 75 | &cmpult($r3,$cc,$cc); | ||
| 76 | &st($r3,&QWPw(-1,$rp)); &FR($r3); | ||
| 77 | &add($h3,$cc,$cc); &FR($h3); | ||
| 78 | |||
| 79 | ### | ||
| 80 | &blt($count,&label("finish")); | ||
| 81 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); | ||
| 82 | &br(&label("loop")); | ||
| 83 | EOF | ||
| 84 | ################################################## | ||
| 85 | # Do the last 0..3 words | ||
| 86 | |||
| 87 | &set_label("last_loop"); | ||
| 88 | |||
| 89 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); # get a | ||
| 90 | &ld(($r0)=&NR(1),&QWPw(0,$rp)); # get b | ||
| 91 | ### | ||
| 92 | ### | ||
| 93 | &muh($a0,$word,($h0)=&NR(1)); &FR($a0); | ||
| 94 | ### wait 8 | ||
| 95 | &mul($a0,$word,($l0)=&NR(1)); &FR($a0); | ||
| 96 | &add($rp,$QWS,$rp); | ||
| 97 | &add($ap,$QWS,$ap); | ||
| 98 | &sub($count,1,$count); | ||
| 99 | ### wait 3 until l0 is available | ||
| 100 | &add($r0,$l0,$r0); | ||
| 101 | ### | ||
| 102 | &cmpult($r0,$l0,($t0)=&NR(1)); &FR($l0); | ||
| 103 | &add($r0,$cc,$r0); | ||
| 104 | &add($h0,$t0,$h0); &FR($t0); | ||
| 105 | &cmpult($r0,$cc,$cc); | ||
| 106 | &add($h0,$cc,$cc); &FR($h0); | ||
| 107 | |||
| 108 | &st($r0,&QWPw(-1,$rp)); &FR($r0); | ||
| 109 | &bgt($count,&label("last_loop")); | ||
| 110 | &function_end_A($name); | ||
| 111 | |||
| 112 | ###################################################### | ||
| 113 | &set_label("finish"); | ||
| 114 | &add($count,4,$count); | ||
| 115 | &bgt($count,&label("last_loop")); | ||
| 116 | |||
| 117 | &set_label("end"); | ||
| 118 | &function_end($name); | ||
| 119 | |||
| 120 | &fin_pool; | ||
| 121 | } | ||
| 122 | |||
| 123 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c4.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c4.pl deleted file mode 100644 index 9cc876ded4..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c4.pl +++ /dev/null | |||
| @@ -1,215 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | # upto | ||
| 5 | |||
| 6 | sub mul_add_c | ||
| 7 | { | ||
| 8 | local($a,$b,$c0,$c1,$c2)=@_; | ||
| 9 | local($l1,$h1,$t1,$t2); | ||
| 10 | |||
| 11 | &mul($a,$b,($l1)=&NR(1)); | ||
| 12 | &muh($a,$b,($h1)=&NR(1)); | ||
| 13 | &add($c0,$l1,$c0); | ||
| 14 | &cmpult($c0,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 15 | &add($t1,$h1,$h1); &FR($t1); | ||
| 16 | &add($c1,$h1,$c1); | ||
| 17 | &cmpult($c1,$h1,($t2)=&NR(1)); &FR($h1); | ||
| 18 | &add($c2,$t2,$c2); &FR($t2); | ||
| 19 | } | ||
| 20 | |||
| 21 | sub bn_mul_comba4 | ||
| 22 | { | ||
| 23 | local($name)=@_; | ||
| 24 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 25 | |||
| 26 | $cnt=1; | ||
| 27 | &init_pool(3); | ||
| 28 | |||
| 29 | $rp=&wparam(0); | ||
| 30 | $ap=&wparam(1); | ||
| 31 | $bp=&wparam(2); | ||
| 32 | |||
| 33 | &function_begin($name,""); | ||
| 34 | |||
| 35 | &comment(""); | ||
| 36 | |||
| 37 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 38 | &ld(($b[0])=&NR(1),&QWPw(0,$bp)); | ||
| 39 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 40 | &ld(($b[1])=&NR(1),&QWPw(1,$bp)); | ||
| 41 | &mul($a[0],$b[0],($r00)=&NR(1)); | ||
| 42 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 43 | &ld(($b[2])=&NR(1),&QWPw(2,$bp)); | ||
| 44 | &muh($a[0],$b[0],($r01)=&NR(1)); | ||
| 45 | &FR($ap); &ld(($a[3])=&NR(1),&QWPw(3,$ap)); | ||
| 46 | &FR($bp); &ld(($b[3])=&NR(1),&QWPw(3,$bp)); | ||
| 47 | &mul($a[0],$b[1],($r02)=&NR(1)); | ||
| 48 | |||
| 49 | ($R,$H1,$H2)=&NR(3); | ||
| 50 | |||
| 51 | &st($r00,&QWPw(0,$rp)); &FR($r00); | ||
| 52 | |||
| 53 | &mov("zero",$R); | ||
| 54 | &mul($a[1],$b[0],($r03)=&NR(1)); | ||
| 55 | |||
| 56 | &mov("zero",$H1); | ||
| 57 | &mov("zero",$H0); | ||
| 58 | &add($R,$r01,$R); | ||
| 59 | &muh($a[0],$b[1],($r04)=&NR(1)); | ||
| 60 | &cmpult($R,$r01,($t01)=&NR(1)); &FR($r01); | ||
| 61 | &add($R,$r02,$R); | ||
| 62 | &add($H1,$t01,$H1) &FR($t01); | ||
| 63 | &muh($a[1],$b[0],($r05)=&NR(1)); | ||
| 64 | &cmpult($R,$r02,($t02)=&NR(1)); &FR($r02); | ||
| 65 | &add($R,$r03,$R); | ||
| 66 | &add($H2,$t02,$H2) &FR($t02); | ||
| 67 | &mul($a[0],$b[2],($r06)=&NR(1)); | ||
| 68 | &cmpult($R,$r03,($t03)=&NR(1)); &FR($r03); | ||
| 69 | &add($H1,$t03,$H1) &FR($t03); | ||
| 70 | &st($R,&QWPw(1,$rp)); | ||
| 71 | &add($H1,$H2,$R); | ||
| 72 | |||
| 73 | &mov("zero",$H1); | ||
| 74 | &add($R,$r04,$R); | ||
| 75 | &mov("zero",$H2); | ||
| 76 | &mul($a[1],$b[1],($r07)=&NR(1)); | ||
| 77 | &cmpult($R,$r04,($t04)=&NR(1)); &FR($r04); | ||
| 78 | &add($R,$r05,$R); | ||
| 79 | &add($H1,$t04,$H1) &FR($t04); | ||
| 80 | &mul($a[2],$b[0],($r08)=&NR(1)); | ||
| 81 | &cmpult($R,$r05,($t05)=&NR(1)); &FR($r05); | ||
| 82 | &add($R,$r01,$R); | ||
| 83 | &add($H2,$t05,$H2) &FR($t05); | ||
| 84 | &muh($a[0],$b[2],($r09)=&NR(1)); | ||
| 85 | &cmpult($R,$r06,($t06)=&NR(1)); &FR($r06); | ||
| 86 | &add($R,$r07,$R); | ||
| 87 | &add($H1,$t06,$H1) &FR($t06); | ||
| 88 | &muh($a[1],$b[1],($r10)=&NR(1)); | ||
| 89 | &cmpult($R,$r07,($t07)=&NR(1)); &FR($r07); | ||
| 90 | &add($R,$r08,$R); | ||
| 91 | &add($H2,$t07,$H2) &FR($t07); | ||
| 92 | &muh($a[2],$b[0],($r11)=&NR(1)); | ||
| 93 | &cmpult($R,$r08,($t08)=&NR(1)); &FR($r08); | ||
| 94 | &add($H1,$t08,$H1) &FR($t08); | ||
| 95 | &st($R,&QWPw(2,$rp)); | ||
| 96 | &add($H1,$H2,$R); | ||
| 97 | |||
| 98 | &mov("zero",$H1); | ||
| 99 | &add($R,$r09,$R); | ||
| 100 | &mov("zero",$H2); | ||
| 101 | &mul($a[0],$b[3],($r12)=&NR(1)); | ||
| 102 | &cmpult($R,$r09,($t09)=&NR(1)); &FR($r09); | ||
| 103 | &add($R,$r10,$R); | ||
| 104 | &add($H1,$t09,$H1) &FR($t09); | ||
| 105 | &mul($a[1],$b[2],($r13)=&NR(1)); | ||
| 106 | &cmpult($R,$r10,($t10)=&NR(1)); &FR($r10); | ||
| 107 | &add($R,$r11,$R); | ||
| 108 | &add($H1,$t10,$H1) &FR($t10); | ||
| 109 | &mul($a[2],$b[1],($r14)=&NR(1)); | ||
| 110 | &cmpult($R,$r11,($t11)=&NR(1)); &FR($r11); | ||
| 111 | &add($R,$r12,$R); | ||
| 112 | &add($H1,$t11,$H1) &FR($t11); | ||
| 113 | &mul($a[3],$b[0],($r15)=&NR(1)); | ||
| 114 | &cmpult($R,$r12,($t12)=&NR(1)); &FR($r12); | ||
| 115 | &add($R,$r13,$R); | ||
| 116 | &add($H1,$t12,$H1) &FR($t12); | ||
| 117 | &muh($a[0],$b[3],($r16)=&NR(1)); | ||
| 118 | &cmpult($R,$r13,($t13)=&NR(1)); &FR($r13); | ||
| 119 | &add($R,$r14,$R); | ||
| 120 | &add($H1,$t13,$H1) &FR($t13); | ||
| 121 | &muh($a[1],$b[2],($r17)=&NR(1)); | ||
| 122 | &cmpult($R,$r14,($t14)=&NR(1)); &FR($r14); | ||
| 123 | &add($R,$r15,$R); | ||
| 124 | &add($H1,$t14,$H1) &FR($t14); | ||
| 125 | &muh($a[2],$b[1],($r18)=&NR(1)); | ||
| 126 | &cmpult($R,$r15,($t15)=&NR(1)); &FR($r15); | ||
| 127 | &add($H1,$t15,$H1) &FR($t15); | ||
| 128 | &st($R,&QWPw(3,$rp)); | ||
| 129 | &add($H1,$H2,$R); | ||
| 130 | |||
| 131 | &mov("zero",$H1); | ||
| 132 | &add($R,$r16,$R); | ||
| 133 | &mov("zero",$H2); | ||
| 134 | &muh($a[3],$b[0],($r19)=&NR(1)); | ||
| 135 | &cmpult($R,$r16,($t16)=&NR(1)); &FR($r16); | ||
| 136 | &add($R,$r17,$R); | ||
| 137 | &add($H1,$t16,$H1) &FR($t16); | ||
| 138 | &mul($a[1],$b[3],($r20)=&NR(1)); | ||
| 139 | &cmpult($R,$r17,($t17)=&NR(1)); &FR($r17); | ||
| 140 | &add($R,$r18,$R); | ||
| 141 | &add($H1,$t17,$H1) &FR($t17); | ||
| 142 | &mul($a[2],$b[2],($r21)=&NR(1)); | ||
| 143 | &cmpult($R,$r18,($t18)=&NR(1)); &FR($r18); | ||
| 144 | &add($R,$r19,$R); | ||
| 145 | &add($H1,$t18,$H1) &FR($t18); | ||
| 146 | &mul($a[3],$b[1],($r22)=&NR(1)); | ||
| 147 | &cmpult($R,$r19,($t19)=&NR(1)); &FR($r19); | ||
| 148 | &add($R,$r20,$R); | ||
| 149 | &add($H1,$t19,$H1) &FR($t19); | ||
| 150 | &muh($a[1],$b[3],($r23)=&NR(1)); | ||
| 151 | &cmpult($R,$r20,($t20)=&NR(1)); &FR($r20); | ||
| 152 | &add($R,$r21,$R); | ||
| 153 | &add($H1,$t20,$H1) &FR($t20); | ||
| 154 | &muh($a[2],$b[2],($r24)=&NR(1)); | ||
| 155 | &cmpult($R,$r21,($t21)=&NR(1)); &FR($r21); | ||
| 156 | &add($R,$r22,$R); | ||
| 157 | &add($H1,$t21,$H1) &FR($t21); | ||
| 158 | &muh($a[3],$b[1],($r25)=&NR(1)); | ||
| 159 | &cmpult($R,$r22,($t22)=&NR(1)); &FR($r22); | ||
| 160 | &add($H1,$t22,$H1) &FR($t22); | ||
| 161 | &st($R,&QWPw(4,$rp)); | ||
| 162 | &add($H1,$H2,$R); | ||
| 163 | |||
| 164 | &mov("zero",$H1); | ||
| 165 | &add($R,$r23,$R); | ||
| 166 | &mov("zero",$H2); | ||
| 167 | &mul($a[2],$b[3],($r26)=&NR(1)); | ||
| 168 | &cmpult($R,$r23,($t23)=&NR(1)); &FR($r23); | ||
| 169 | &add($R,$r24,$R); | ||
| 170 | &add($H1,$t23,$H1) &FR($t23); | ||
| 171 | &mul($a[3],$b[2],($r27)=&NR(1)); | ||
| 172 | &cmpult($R,$r24,($t24)=&NR(1)); &FR($r24); | ||
| 173 | &add($R,$r25,$R); | ||
| 174 | &add($H1,$t24,$H1) &FR($t24); | ||
| 175 | &muh($a[2],$b[3],($r28)=&NR(1)); | ||
| 176 | &cmpult($R,$r25,($t25)=&NR(1)); &FR($r25); | ||
| 177 | &add($R,$r26,$R); | ||
| 178 | &add($H1,$t25,$H1) &FR($t25); | ||
| 179 | &muh($a[3],$b[2],($r29)=&NR(1)); | ||
| 180 | &cmpult($R,$r26,($t26)=&NR(1)); &FR($r26); | ||
| 181 | &add($R,$r27,$R); | ||
| 182 | &add($H1,$t26,$H1) &FR($t26); | ||
| 183 | &mul($a[3],$b[3],($r30)=&NR(1)); | ||
| 184 | &cmpult($R,$r27,($t27)=&NR(1)); &FR($r27); | ||
| 185 | &add($H1,$t27,$H1) &FR($t27); | ||
| 186 | &st($R,&QWPw(5,$rp)); | ||
| 187 | &add($H1,$H2,$R); | ||
| 188 | |||
| 189 | &mov("zero",$H1); | ||
| 190 | &add($R,$r28,$R); | ||
| 191 | &mov("zero",$H2); | ||
| 192 | &muh($a[3],$b[3],($r31)=&NR(1)); | ||
| 193 | &cmpult($R,$r28,($t28)=&NR(1)); &FR($r28); | ||
| 194 | &add($R,$r29,$R); | ||
| 195 | &add($H1,$t28,$H1) &FR($t28); | ||
| 196 | ############ | ||
| 197 | &cmpult($R,$r29,($t29)=&NR(1)); &FR($r29); | ||
| 198 | &add($R,$r30,$R); | ||
| 199 | &add($H1,$t29,$H1) &FR($t29); | ||
| 200 | ############ | ||
| 201 | &cmpult($R,$r30,($t30)=&NR(1)); &FR($r30); | ||
| 202 | &add($H1,$t30,$H1) &FR($t30); | ||
| 203 | &st($R,&QWPw(6,$rp)); | ||
| 204 | &add($H1,$H2,$R); | ||
| 205 | |||
| 206 | &add($R,$r31,$R); &FR($r31); | ||
| 207 | &st($R,&QWPw(7,$rp)); | ||
| 208 | |||
| 209 | &FR($R,$H1,$H2); | ||
| 210 | &function_end($name); | ||
| 211 | |||
| 212 | &fin_pool; | ||
| 213 | } | ||
| 214 | |||
| 215 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c4.works.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c4.works.pl deleted file mode 100644 index 79d86dd25c..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c4.works.pl +++ /dev/null | |||
| @@ -1,98 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub mul_add_c | ||
| 5 | { | ||
| 6 | local($a,$b,$c0,$c1,$c2)=@_; | ||
| 7 | local($l1,$h1,$t1,$t2); | ||
| 8 | |||
| 9 | print STDERR "count=$cnt\n"; $cnt++; | ||
| 10 | &mul($a,$b,($l1)=&NR(1)); | ||
| 11 | &muh($a,$b,($h1)=&NR(1)); | ||
| 12 | &add($c0,$l1,$c0); | ||
| 13 | &cmpult($c0,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 14 | &add($t1,$h1,$h1); &FR($t1); | ||
| 15 | &add($c1,$h1,$c1); | ||
| 16 | &cmpult($c1,$h1,($t2)=&NR(1)); &FR($h1); | ||
| 17 | &add($c2,$t2,$c2); &FR($t2); | ||
| 18 | } | ||
| 19 | |||
| 20 | sub bn_mul_comba4 | ||
| 21 | { | ||
| 22 | local($name)=@_; | ||
| 23 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 24 | |||
| 25 | $cnt=1; | ||
| 26 | &init_pool(3); | ||
| 27 | |||
| 28 | $rp=&wparam(0); | ||
| 29 | $ap=&wparam(1); | ||
| 30 | $bp=&wparam(2); | ||
| 31 | |||
| 32 | &function_begin($name,""); | ||
| 33 | |||
| 34 | &comment(""); | ||
| 35 | |||
| 36 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 37 | &ld(($b[0])=&NR(1),&QWPw(0,$bp)); | ||
| 38 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 39 | &ld(($b[1])=&NR(1),&QWPw(1,$bp)); | ||
| 40 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 41 | &ld(($b[2])=&NR(1),&QWPw(2,$bp)); | ||
| 42 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); &FR($ap); | ||
| 43 | &ld(($b[3])=&NR(1),&QWPw(3,$bp)); &FR($bp); | ||
| 44 | |||
| 45 | ($c0,$c1,$c2)=&NR(3); | ||
| 46 | &mov("zero",$c2); | ||
| 47 | &mul($a[0],$b[0],$c0); | ||
| 48 | &muh($a[0],$b[0],$c1); | ||
| 49 | &st($c0,&QWPw(0,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 50 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 51 | &mov("zero",$c2); | ||
| 52 | |||
| 53 | &mul_add_c($a[0],$b[1],$c0,$c1,$c2); | ||
| 54 | &mul_add_c($a[1],$b[0],$c0,$c1,$c2); | ||
| 55 | &st($c0,&QWPw(1,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 56 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 57 | &mov("zero",$c2); | ||
| 58 | |||
| 59 | &mul_add_c($a[1],$b[1],$c0,$c1,$c2); | ||
| 60 | &mul_add_c($a[0],$b[2],$c0,$c1,$c2); | ||
| 61 | &mul_add_c($a[2],$b[0],$c0,$c1,$c2); | ||
| 62 | &st($c0,&QWPw(2,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 63 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 64 | &mov("zero",$c2); | ||
| 65 | |||
| 66 | &mul_add_c($a[0],$b[3],$c0,$c1,$c2); &FR($a[0]); | ||
| 67 | &mul_add_c($a[1],$b[2],$c0,$c1,$c2); | ||
| 68 | &mul_add_c($a[2],$b[1],$c0,$c1,$c2); | ||
| 69 | &mul_add_c($a[3],$b[0],$c0,$c1,$c2); &FR($b[0]); | ||
| 70 | &st($c0,&QWPw(3,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 71 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 72 | &mov("zero",$c2); | ||
| 73 | |||
| 74 | &mul_add_c($a[1],$b[3],$c0,$c1,$c2); &FR($a[1]); | ||
| 75 | &mul_add_c($a[2],$b[2],$c0,$c1,$c2); | ||
| 76 | &mul_add_c($a[3],$b[1],$c0,$c1,$c2); &FR($b[1]); | ||
| 77 | &st($c0,&QWPw(4,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 78 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 79 | &mov("zero",$c2); | ||
| 80 | |||
| 81 | &mul_add_c($a[2],$b[3],$c0,$c1,$c2); &FR($a[2]); | ||
| 82 | &mul_add_c($a[3],$b[2],$c0,$c1,$c2); &FR($b[2]); | ||
| 83 | &st($c0,&QWPw(5,$rp)); &FR($c0); ($c0)=&NR($c0); | ||
| 84 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 85 | &mov("zero",$c2); | ||
| 86 | |||
| 87 | &mul_add_c($a[3],$b[3],$c0,$c1,$c2); &FR($a[3],$b[3]); | ||
| 88 | &st($c0,&QWPw(6,$rp)); | ||
| 89 | &st($c1,&QWPw(7,$rp)); | ||
| 90 | |||
| 91 | &FR($c0,$c1,$c2); | ||
| 92 | |||
| 93 | &function_end($name); | ||
| 94 | |||
| 95 | &fin_pool; | ||
| 96 | } | ||
| 97 | |||
| 98 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c8.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c8.pl deleted file mode 100644 index 525ca7494b..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/mul_c8.pl +++ /dev/null | |||
| @@ -1,177 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_mul_comba8 | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 8 | |||
| 9 | $cnt=1; | ||
| 10 | &init_pool(3); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $bp=&wparam(2); | ||
| 15 | |||
| 16 | &function_begin($name,""); | ||
| 17 | |||
| 18 | &comment(""); | ||
| 19 | |||
| 20 | &stack_push(2); | ||
| 21 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 22 | &ld(($b[0])=&NR(1),&QWPw(0,$bp)); | ||
| 23 | &st($reg_s0,&swtmp(0)); &FR($reg_s0); | ||
| 24 | &st($reg_s1,&swtmp(1)); &FR($reg_s1); | ||
| 25 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 26 | &ld(($b[1])=&NR(1),&QWPw(1,$bp)); | ||
| 27 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 28 | &ld(($b[2])=&NR(1),&QWPw(2,$bp)); | ||
| 29 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); | ||
| 30 | &ld(($b[3])=&NR(1),&QWPw(3,$bp)); | ||
| 31 | &ld(($a[4])=&NR(1),&QWPw(1,$ap)); | ||
| 32 | &ld(($b[4])=&NR(1),&QWPw(1,$bp)); | ||
| 33 | &ld(($a[5])=&NR(1),&QWPw(1,$ap)); | ||
| 34 | &ld(($b[5])=&NR(1),&QWPw(1,$bp)); | ||
| 35 | &ld(($a[6])=&NR(1),&QWPw(1,$ap)); | ||
| 36 | &ld(($b[6])=&NR(1),&QWPw(1,$bp)); | ||
| 37 | &ld(($a[7])=&NR(1),&QWPw(1,$ap)); &FR($ap); | ||
| 38 | &ld(($b[7])=&NR(1),&QWPw(1,$bp)); &FR($bp); | ||
| 39 | |||
| 40 | ($c0,$c1,$c2)=&NR(3); | ||
| 41 | &mov("zero",$c2); | ||
| 42 | &mul($a[0],$b[0],$c0); | ||
| 43 | &muh($a[0],$b[0],$c1); | ||
| 44 | &st($c0,&QWPw(0,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 45 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 46 | &mov("zero",$c2); | ||
| 47 | |||
| 48 | &mul_add_c($a[0],$b[1],$c0,$c1,$c2); | ||
| 49 | &mul_add_c($a[1],$b[0],$c0,$c1,$c2); | ||
| 50 | &st($c0,&QWPw(1,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 51 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 52 | &mov("zero",$c2); | ||
| 53 | |||
| 54 | &mul_add_c($a[0],$b[2],$c0,$c1,$c2); | ||
| 55 | &mul_add_c($a[1],$b[1],$c0,$c1,$c2); | ||
| 56 | &mul_add_c($a[2],$b[0],$c0,$c1,$c2); | ||
| 57 | &st($c0,&QWPw(2,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 58 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 59 | &mov("zero",$c2); | ||
| 60 | |||
| 61 | &mul_add_c($a[0],$b[3],$c0,$c1,$c2); | ||
| 62 | &mul_add_c($a[1],$b[2],$c0,$c1,$c2); | ||
| 63 | &mul_add_c($a[2],$b[1],$c0,$c1,$c2); | ||
| 64 | &mul_add_c($a[3],$b[0],$c0,$c1,$c2); | ||
| 65 | &st($c0,&QWPw(3,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 66 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 67 | &mov("zero",$c2); | ||
| 68 | |||
| 69 | &mul_add_c($a[0],$b[4],$c0,$c1,$c2); | ||
| 70 | &mul_add_c($a[1],$b[3],$c0,$c1,$c2); | ||
| 71 | &mul_add_c($a[2],$b[2],$c0,$c1,$c2); | ||
| 72 | &mul_add_c($a[3],$b[1],$c0,$c1,$c2); | ||
| 73 | &mul_add_c($a[4],$b[0],$c0,$c1,$c2); | ||
| 74 | &st($c0,&QWPw(4,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 75 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 76 | &mov("zero",$c2); | ||
| 77 | |||
| 78 | &mul_add_c($a[0],$b[5],$c0,$c1,$c2); | ||
| 79 | &mul_add_c($a[1],$b[4],$c0,$c1,$c2); | ||
| 80 | &mul_add_c($a[2],$b[3],$c0,$c1,$c2); | ||
| 81 | &mul_add_c($a[3],$b[2],$c0,$c1,$c2); | ||
| 82 | &mul_add_c($a[4],$b[1],$c0,$c1,$c2); | ||
| 83 | &mul_add_c($a[5],$b[0],$c0,$c1,$c2); | ||
| 84 | &st($c0,&QWPw(5,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 85 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 86 | &mov("zero",$c2); | ||
| 87 | |||
| 88 | &mul_add_c($a[0],$b[6],$c0,$c1,$c2); | ||
| 89 | &mul_add_c($a[1],$b[5],$c0,$c1,$c2); | ||
| 90 | &mul_add_c($a[2],$b[4],$c0,$c1,$c2); | ||
| 91 | &mul_add_c($a[3],$b[3],$c0,$c1,$c2); | ||
| 92 | &mul_add_c($a[4],$b[2],$c0,$c1,$c2); | ||
| 93 | &mul_add_c($a[5],$b[1],$c0,$c1,$c2); | ||
| 94 | &mul_add_c($a[6],$b[0],$c0,$c1,$c2); | ||
| 95 | &st($c0,&QWPw(6,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 96 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 97 | &mov("zero",$c2); | ||
| 98 | |||
| 99 | &mul_add_c($a[0],$b[7],$c0,$c1,$c2); &FR($a[0]); | ||
| 100 | &mul_add_c($a[1],$b[6],$c0,$c1,$c2); | ||
| 101 | &mul_add_c($a[2],$b[5],$c0,$c1,$c2); | ||
| 102 | &mul_add_c($a[3],$b[4],$c0,$c1,$c2); | ||
| 103 | &mul_add_c($a[4],$b[3],$c0,$c1,$c2); | ||
| 104 | &mul_add_c($a[5],$b[2],$c0,$c1,$c2); | ||
| 105 | &mul_add_c($a[6],$b[1],$c0,$c1,$c2); | ||
| 106 | &mul_add_c($a[7],$b[0],$c0,$c1,$c2); &FR($b[0]); | ||
| 107 | &st($c0,&QWPw(7,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 108 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 109 | &mov("zero",$c2); | ||
| 110 | |||
| 111 | &mul_add_c($a[1],$b[7],$c0,$c1,$c2); &FR($a[1]); | ||
| 112 | &mul_add_c($a[2],$b[6],$c0,$c1,$c2); | ||
| 113 | &mul_add_c($a[3],$b[5],$c0,$c1,$c2); | ||
| 114 | &mul_add_c($a[4],$b[4],$c0,$c1,$c2); | ||
| 115 | &mul_add_c($a[5],$b[3],$c0,$c1,$c2); | ||
| 116 | &mul_add_c($a[6],$b[2],$c0,$c1,$c2); | ||
| 117 | &mul_add_c($a[7],$b[1],$c0,$c1,$c2); &FR($b[1]); | ||
| 118 | &st($c0,&QWPw(8,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 119 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 120 | &mov("zero",$c2); | ||
| 121 | |||
| 122 | &mul_add_c($a[2],$b[7],$c0,$c1,$c2); &FR($a[2]); | ||
| 123 | &mul_add_c($a[3],$b[6],$c0,$c1,$c2); | ||
| 124 | &mul_add_c($a[4],$b[5],$c0,$c1,$c2); | ||
| 125 | &mul_add_c($a[5],$b[4],$c0,$c1,$c2); | ||
| 126 | &mul_add_c($a[6],$b[3],$c0,$c1,$c2); | ||
| 127 | &mul_add_c($a[7],$b[2],$c0,$c1,$c2); &FR($b[2]); | ||
| 128 | &st($c0,&QWPw(9,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 129 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 130 | &mov("zero",$c2); | ||
| 131 | |||
| 132 | &mul_add_c($a[3],$b[7],$c0,$c1,$c2); &FR($a[3]); | ||
| 133 | &mul_add_c($a[4],$b[6],$c0,$c1,$c2); | ||
| 134 | &mul_add_c($a[5],$b[5],$c0,$c1,$c2); | ||
| 135 | &mul_add_c($a[6],$b[4],$c0,$c1,$c2); | ||
| 136 | &mul_add_c($a[7],$b[3],$c0,$c1,$c2); &FR($b[3]); | ||
| 137 | &st($c0,&QWPw(10,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 138 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 139 | &mov("zero",$c2); | ||
| 140 | |||
| 141 | &mul_add_c($a[4],$b[7],$c0,$c1,$c2); &FR($a[4]); | ||
| 142 | &mul_add_c($a[5],$b[6],$c0,$c1,$c2); | ||
| 143 | &mul_add_c($a[6],$b[5],$c0,$c1,$c2); | ||
| 144 | &mul_add_c($a[7],$b[4],$c0,$c1,$c2); &FR($b[4]); | ||
| 145 | &st($c0,&QWPw(11,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 146 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 147 | &mov("zero",$c2); | ||
| 148 | |||
| 149 | &mul_add_c($a[5],$b[7],$c0,$c1,$c2); &FR($a[5]); | ||
| 150 | &mul_add_c($a[6],$b[6],$c0,$c1,$c2); | ||
| 151 | &mul_add_c($a[7],$b[5],$c0,$c1,$c2); &FR($b[5]); | ||
| 152 | &st($c0,&QWPw(12,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 153 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 154 | &mov("zero",$c2); | ||
| 155 | |||
| 156 | &mul_add_c($a[6],$b[7],$c0,$c1,$c2); &FR($a[6]); | ||
| 157 | &mul_add_c($a[7],$b[6],$c0,$c1,$c2); &FR($b[6]); | ||
| 158 | &st($c0,&QWPw(13,$rp)); &FR($c0); ($c0)=&NR(1); | ||
| 159 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 160 | &mov("zero",$c2); | ||
| 161 | |||
| 162 | &mul_add_c($a[7],$b[7],$c0,$c1,$c2); &FR($a[7],$b[7]); | ||
| 163 | &st($c0,&QWPw(14,$rp)); | ||
| 164 | &st($c1,&QWPw(15,$rp)); | ||
| 165 | |||
| 166 | &FR($c0,$c1,$c2); | ||
| 167 | |||
| 168 | &ld($reg_s0,&swtmp(0)); | ||
| 169 | &ld($reg_s1,&swtmp(1)); | ||
| 170 | &stack_pop(2); | ||
| 171 | |||
| 172 | &function_end($name); | ||
| 173 | |||
| 174 | &fin_pool; | ||
| 175 | } | ||
| 176 | |||
| 177 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/sqr.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/sqr.pl deleted file mode 100644 index a55b696906..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/sqr.pl +++ /dev/null | |||
| @@ -1,113 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_sqr_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r,$couny); | ||
| 8 | |||
| 9 | &init_pool(3); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $count=&wparam(2); | ||
| 15 | |||
| 16 | &function_begin($name,""); | ||
| 17 | |||
| 18 | &comment(""); | ||
| 19 | &sub($count,4,$count); | ||
| 20 | &mov("zero",$cc); | ||
| 21 | &br(&label("finish")); | ||
| 22 | &blt($count,&label("finish")); | ||
| 23 | |||
| 24 | ($a0,$r0)=&NR(2); | ||
| 25 | &ld($a0,&QWPw(0,$ap)); | ||
| 26 | &ld($r0,&QWPw(0,$rp)); | ||
| 27 | |||
| 28 | $a=<<'EOF'; | ||
| 29 | ########################################################## | ||
| 30 | &set_label("loop"); | ||
| 31 | |||
| 32 | ($a1)=&NR(1); &ld($a1,&QWPw(1,$ap)); | ||
| 33 | ($b1)=&NR(1); &ld($b1,&QWPw(1,$bp)); | ||
| 34 | ($a2)=&NR(1); &ld($a2,&QWPw(2,$ap)); | ||
| 35 | ($b2)=&NR(1); &ld($b2,&QWPw(2,$bp)); | ||
| 36 | ($a3)=&NR(1); &ld($a3,&QWPw(3,$ap)); | ||
| 37 | ($b3)=&NR(1); &ld($b3,&QWPw(3,$bp)); | ||
| 38 | |||
| 39 | ($o0,$t0)=&NR(2); | ||
| 40 | &add($a0,$b0,$o0); | ||
| 41 | &cmpult($o0,$b0,$t0); | ||
| 42 | &add($o0,$cc,$o0); | ||
| 43 | &cmpult($o0,$cc,$cc); | ||
| 44 | &add($cc,$t0,$cc); &FR($t0); | ||
| 45 | |||
| 46 | ($t1,$o1)=&NR(2); | ||
| 47 | |||
| 48 | &add($a1,$b1,$o1); &FR($a1); | ||
| 49 | &cmpult($o1,$b1,$t1); &FR($b1); | ||
| 50 | &add($o1,$cc,$o1); | ||
| 51 | &cmpult($o1,$cc,$cc); | ||
| 52 | &add($cc,$t1,$cc); &FR($t1); | ||
| 53 | |||
| 54 | ($t2,$o2)=&NR(2); | ||
| 55 | |||
| 56 | &add($a2,$b2,$o2); &FR($a2); | ||
| 57 | &cmpult($o2,$b2,$t2); &FR($b2); | ||
| 58 | &add($o2,$cc,$o2); | ||
| 59 | &cmpult($o2,$cc,$cc); | ||
| 60 | &add($cc,$t2,$cc); &FR($t2); | ||
| 61 | |||
| 62 | ($t3,$o3)=&NR(2); | ||
| 63 | |||
| 64 | &add($a3,$b3,$o3); &FR($a3); | ||
| 65 | &cmpult($o3,$b3,$t3); &FR($b3); | ||
| 66 | &add($o3,$cc,$o3); | ||
| 67 | &cmpult($o3,$cc,$cc); | ||
| 68 | &add($cc,$t3,$cc); &FR($t3); | ||
| 69 | |||
| 70 | &st($o0,&QWPw(0,$rp)); &FR($o0); | ||
| 71 | &st($o1,&QWPw(0,$rp)); &FR($o1); | ||
| 72 | &st($o2,&QWPw(0,$rp)); &FR($o2); | ||
| 73 | &st($o3,&QWPw(0,$rp)); &FR($o3); | ||
| 74 | |||
| 75 | &sub($count,4,$count); # count-=4 | ||
| 76 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 77 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 78 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 79 | |||
| 80 | &blt($count,&label("finish")); | ||
| 81 | &ld($a0,&QWPw(0,$ap)); | ||
| 82 | &ld($b0,&QWPw(0,$bp)); | ||
| 83 | &br(&label("loop")); | ||
| 84 | EOF | ||
| 85 | ################################################## | ||
| 86 | # Do the last 0..3 words | ||
| 87 | |||
| 88 | &set_label("last_loop"); | ||
| 89 | |||
| 90 | &ld(($a0)=&NR(1),&QWPw(0,$ap)); # get a | ||
| 91 | &mul($a0,$a0,($l0)=&NR(1)); | ||
| 92 | &add($ap,$QWS,$ap); | ||
| 93 | &add($rp,2*$QWS,$rp); | ||
| 94 | &sub($count,1,$count); | ||
| 95 | &muh($a0,$a0,($h0)=&NR(1)); &FR($a0); | ||
| 96 | &st($l0,&QWPw(-2,$rp)); &FR($l0); | ||
| 97 | &st($h0,&QWPw(-1,$rp)); &FR($h0); | ||
| 98 | |||
| 99 | &bgt($count,&label("last_loop")); | ||
| 100 | &function_end_A($name); | ||
| 101 | |||
| 102 | ###################################################### | ||
| 103 | &set_label("finish"); | ||
| 104 | &add($count,4,$count); | ||
| 105 | &bgt($count,&label("last_loop")); | ||
| 106 | |||
| 107 | &set_label("end"); | ||
| 108 | &function_end($name); | ||
| 109 | |||
| 110 | &fin_pool; | ||
| 111 | } | ||
| 112 | |||
| 113 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/sqr_c4.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/sqr_c4.pl deleted file mode 100644 index bf33f5b503..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/sqr_c4.pl +++ /dev/null | |||
| @@ -1,109 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub sqr_add_c | ||
| 5 | { | ||
| 6 | local($a,$c0,$c1,$c2)=@_; | ||
| 7 | local($l1,$h1,$t1,$t2); | ||
| 8 | |||
| 9 | &mul($a,$a,($l1)=&NR(1)); | ||
| 10 | &muh($a,$a,($h1)=&NR(1)); | ||
| 11 | &add($c0,$l1,$c0); | ||
| 12 | &add($c1,$h1,$c1); | ||
| 13 | &cmpult($c0,$l1,($t1)=&NR(1)); &FR($l1); | ||
| 14 | &cmpult($c1,$h1,($t2)=&NR(1)); &FR($h1); | ||
| 15 | &add($c1,$t1,$c1); &FR($t1); | ||
| 16 | &add($c2,$t2,$c2); &FR($t2); | ||
| 17 | } | ||
| 18 | |||
| 19 | sub sqr_add_c2 | ||
| 20 | { | ||
| 21 | local($a,$b,$c0,$c1,$c2)=@_; | ||
| 22 | local($l1,$h1,$t1,$t2); | ||
| 23 | |||
| 24 | &mul($a,$b,($l1)=&NR(1)); | ||
| 25 | &muh($a,$b,($h1)=&NR(1)); | ||
| 26 | &cmplt($l1,"zero",($lc1)=&NR(1)); | ||
| 27 | &cmplt($h1,"zero",($hc1)=&NR(1)); | ||
| 28 | &add($l1,$l1,$l1); | ||
| 29 | &add($h1,$h1,$h1); | ||
| 30 | &add($h1,$lc1,$h1); &FR($lc1); | ||
| 31 | &add($c2,$hc1,$c2); &FR($hc1); | ||
| 32 | |||
| 33 | &add($c0,$l1,$c0); | ||
| 34 | &add($c1,$h1,$c1); | ||
| 35 | &cmpult($c0,$l1,($lc1)=&NR(1)); &FR($l1); | ||
| 36 | &cmpult($c1,$h1,($hc1)=&NR(1)); &FR($h1); | ||
| 37 | |||
| 38 | &add($c1,$lc1,$c1); &FR($lc1); | ||
| 39 | &add($c2,$hc1,$c2); &FR($hc1); | ||
| 40 | } | ||
| 41 | |||
| 42 | |||
| 43 | sub bn_sqr_comba4 | ||
| 44 | { | ||
| 45 | local($name)=@_; | ||
| 46 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 47 | |||
| 48 | $cnt=1; | ||
| 49 | &init_pool(2); | ||
| 50 | |||
| 51 | $rp=&wparam(0); | ||
| 52 | $ap=&wparam(1); | ||
| 53 | |||
| 54 | &function_begin($name,""); | ||
| 55 | |||
| 56 | &comment(""); | ||
| 57 | |||
| 58 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 59 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 60 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 61 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); &FR($ap); | ||
| 62 | |||
| 63 | ($c0,$c1,$c2)=&NR(3); | ||
| 64 | |||
| 65 | &mov("zero",$c2); | ||
| 66 | &mul($a[0],$a[0],$c0); | ||
| 67 | &muh($a[0],$a[0],$c1); | ||
| 68 | &st($c0,&QWPw(0,$rp)); | ||
| 69 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 70 | &mov("zero",$c2); | ||
| 71 | |||
| 72 | &sqr_add_c2($a[0],$a[1],$c0,$c1,$c2); | ||
| 73 | &st($c0,&QWPw(1,$rp)); | ||
| 74 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 75 | &mov("zero",$c2); | ||
| 76 | |||
| 77 | &sqr_add_c($a[1],$c0,$c1,$c2); | ||
| 78 | &sqr_add_c2($a[2],$a[0],$c0,$c1,$c2); | ||
| 79 | &st($c0,&QWPw(2,$rp)); | ||
| 80 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 81 | &mov("zero",$c2); | ||
| 82 | |||
| 83 | &sqr_add_c2($a[3],$a[0],$c0,$c1,$c2); | ||
| 84 | &sqr_add_c2($a[2],$a[1],$c0,$c1,$c2); | ||
| 85 | &st($c0,&QWPw(3,$rp)); | ||
| 86 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 87 | &mov("zero",$c2); | ||
| 88 | |||
| 89 | &sqr_add_c($a[2],$c0,$c1,$c2); | ||
| 90 | &sqr_add_c2($a[3],$a[1],$c0,$c1,$c2); | ||
| 91 | &st($c0,&QWPw(4,$rp)); | ||
| 92 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 93 | &mov("zero",$c2); | ||
| 94 | |||
| 95 | &sqr_add_c2($a[3],$a[2],$c0,$c1,$c2); | ||
| 96 | &st($c0,&QWPw(5,$rp)); | ||
| 97 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 98 | &mov("zero",$c2); | ||
| 99 | |||
| 100 | &sqr_add_c($a[3],$c0,$c1,$c2); | ||
| 101 | &st($c0,&QWPw(6,$rp)); | ||
| 102 | &st($c1,&QWPw(7,$rp)); | ||
| 103 | |||
| 104 | &function_end($name); | ||
| 105 | |||
| 106 | &fin_pool; | ||
| 107 | } | ||
| 108 | |||
| 109 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/sqr_c8.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/sqr_c8.pl deleted file mode 100644 index b4afe085f1..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/sqr_c8.pl +++ /dev/null | |||
| @@ -1,132 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_sqr_comba8 | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local(@a,@b,$r,$c0,$c1,$c2); | ||
| 8 | |||
| 9 | $cnt=1; | ||
| 10 | &init_pool(2); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | |||
| 15 | &function_begin($name,""); | ||
| 16 | |||
| 17 | &comment(""); | ||
| 18 | |||
| 19 | &ld(($a[0])=&NR(1),&QWPw(0,$ap)); | ||
| 20 | &ld(($a[1])=&NR(1),&QWPw(1,$ap)); | ||
| 21 | &ld(($a[2])=&NR(1),&QWPw(2,$ap)); | ||
| 22 | &ld(($a[3])=&NR(1),&QWPw(3,$ap)); | ||
| 23 | &ld(($a[4])=&NR(1),&QWPw(4,$ap)); | ||
| 24 | &ld(($a[5])=&NR(1),&QWPw(5,$ap)); | ||
| 25 | &ld(($a[6])=&NR(1),&QWPw(6,$ap)); | ||
| 26 | &ld(($a[7])=&NR(1),&QWPw(7,$ap)); &FR($ap); | ||
| 27 | |||
| 28 | ($c0,$c1,$c2)=&NR(3); | ||
| 29 | |||
| 30 | &mov("zero",$c2); | ||
| 31 | &mul($a[0],$a[0],$c0); | ||
| 32 | &muh($a[0],$a[0],$c1); | ||
| 33 | &st($c0,&QWPw(0,$rp)); | ||
| 34 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 35 | &mov("zero",$c2); | ||
| 36 | |||
| 37 | &sqr_add_c2($a[1],$a[0],$c0,$c1,$c2); | ||
| 38 | &st($c0,&QWPw(1,$rp)); | ||
| 39 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 40 | &mov("zero",$c2); | ||
| 41 | |||
| 42 | &sqr_add_c($a[1],$c0,$c1,$c2); | ||
| 43 | &sqr_add_c2($a[2],$a[0],$c0,$c1,$c2); | ||
| 44 | &st($c0,&QWPw(2,$rp)); | ||
| 45 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 46 | &mov("zero",$c2); | ||
| 47 | |||
| 48 | &sqr_add_c2($a[2],$a[1],$c0,$c1,$c2); | ||
| 49 | &sqr_add_c2($a[3],$a[0],$c0,$c1,$c2); | ||
| 50 | &st($c0,&QWPw(3,$rp)); | ||
| 51 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 52 | &mov("zero",$c2); | ||
| 53 | |||
| 54 | &sqr_add_c($a[2],$c0,$c1,$c2); | ||
| 55 | &sqr_add_c2($a[3],$a[1],$c0,$c1,$c2); | ||
| 56 | &sqr_add_c2($a[4],$a[0],$c0,$c1,$c2); | ||
| 57 | &st($c0,&QWPw(4,$rp)); | ||
| 58 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 59 | &mov("zero",$c2); | ||
| 60 | |||
| 61 | &sqr_add_c2($a[3],$a[2],$c0,$c1,$c2); | ||
| 62 | &sqr_add_c2($a[4],$a[1],$c0,$c1,$c2); | ||
| 63 | &sqr_add_c2($a[5],$a[0],$c0,$c1,$c2); | ||
| 64 | &st($c0,&QWPw(5,$rp)); | ||
| 65 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 66 | &mov("zero",$c2); | ||
| 67 | |||
| 68 | &sqr_add_c($a[3],$c0,$c1,$c2); | ||
| 69 | &sqr_add_c2($a[4],$a[2],$c0,$c1,$c2); | ||
| 70 | &sqr_add_c2($a[5],$a[1],$c0,$c1,$c2); | ||
| 71 | &sqr_add_c2($a[6],$a[0],$c0,$c1,$c2); | ||
| 72 | &st($c0,&QWPw(6,$rp)); | ||
| 73 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 74 | &mov("zero",$c2); | ||
| 75 | |||
| 76 | &sqr_add_c2($a[4],$a[3],$c0,$c1,$c2); | ||
| 77 | &sqr_add_c2($a[5],$a[2],$c0,$c1,$c2); | ||
| 78 | &sqr_add_c2($a[6],$a[1],$c0,$c1,$c2); | ||
| 79 | &sqr_add_c2($a[7],$a[0],$c0,$c1,$c2); | ||
| 80 | &st($c0,&QWPw(7,$rp)); | ||
| 81 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 82 | &mov("zero",$c2); | ||
| 83 | |||
| 84 | &sqr_add_c($a[4],$c0,$c1,$c2); | ||
| 85 | &sqr_add_c2($a[5],$a[3],$c0,$c1,$c2); | ||
| 86 | &sqr_add_c2($a[6],$a[2],$c0,$c1,$c2); | ||
| 87 | &sqr_add_c2($a[7],$a[1],$c0,$c1,$c2); | ||
| 88 | &st($c0,&QWPw(8,$rp)); | ||
| 89 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 90 | &mov("zero",$c2); | ||
| 91 | |||
| 92 | &sqr_add_c2($a[5],$a[4],$c0,$c1,$c2); | ||
| 93 | &sqr_add_c2($a[6],$a[3],$c0,$c1,$c2); | ||
| 94 | &sqr_add_c2($a[7],$a[2],$c0,$c1,$c2); | ||
| 95 | &st($c0,&QWPw(9,$rp)); | ||
| 96 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 97 | &mov("zero",$c2); | ||
| 98 | |||
| 99 | &sqr_add_c($a[5],$c0,$c1,$c2); | ||
| 100 | &sqr_add_c2($a[6],$a[4],$c0,$c1,$c2); | ||
| 101 | &sqr_add_c2($a[7],$a[3],$c0,$c1,$c2); | ||
| 102 | &st($c0,&QWPw(10,$rp)); | ||
| 103 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 104 | &mov("zero",$c2); | ||
| 105 | |||
| 106 | &sqr_add_c2($a[6],$a[5],$c0,$c1,$c2); | ||
| 107 | &sqr_add_c2($a[7],$a[4],$c0,$c1,$c2); | ||
| 108 | &st($c0,&QWPw(11,$rp)); | ||
| 109 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 110 | &mov("zero",$c2); | ||
| 111 | |||
| 112 | &sqr_add_c($a[6],$c0,$c1,$c2); | ||
| 113 | &sqr_add_c2($a[7],$a[5],$c0,$c1,$c2); | ||
| 114 | &st($c0,&QWPw(12,$rp)); | ||
| 115 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 116 | &mov("zero",$c2); | ||
| 117 | |||
| 118 | &sqr_add_c2($a[7],$a[6],$c0,$c1,$c2); | ||
| 119 | &st($c0,&QWPw(13,$rp)); | ||
| 120 | ($c0,$c1,$c2)=($c1,$c2,$c0); | ||
| 121 | &mov("zero",$c2); | ||
| 122 | |||
| 123 | &sqr_add_c($a[7],$c0,$c1,$c2); | ||
| 124 | &st($c0,&QWPw(14,$rp)); | ||
| 125 | &st($c1,&QWPw(15,$rp)); | ||
| 126 | |||
| 127 | &function_end($name); | ||
| 128 | |||
| 129 | &fin_pool; | ||
| 130 | } | ||
| 131 | |||
| 132 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/alpha/sub.pl b/src/lib/libssl/src/crypto/bn/asm/alpha/sub.pl deleted file mode 100644 index d998da5c21..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/alpha/sub.pl +++ /dev/null | |||
| @@ -1,108 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # alpha assember | ||
| 3 | |||
| 4 | sub bn_sub_words | ||
| 5 | { | ||
| 6 | local($name)=@_; | ||
| 7 | local($cc,$a,$b,$r); | ||
| 8 | |||
| 9 | &init_pool(4); | ||
| 10 | ($cc)=GR("r0"); | ||
| 11 | |||
| 12 | $rp=&wparam(0); | ||
| 13 | $ap=&wparam(1); | ||
| 14 | $bp=&wparam(2); | ||
| 15 | $count=&wparam(3); | ||
| 16 | |||
| 17 | &function_begin($name,""); | ||
| 18 | |||
| 19 | &comment(""); | ||
| 20 | &sub($count,4,$count); | ||
| 21 | &mov("zero",$cc); | ||
| 22 | &blt($count,&label("finish")); | ||
| 23 | |||
| 24 | ($a0,$b0)=&NR(2); | ||
| 25 | &ld($a0,&QWPw(0,$ap)); | ||
| 26 | &ld($b0,&QWPw(0,$bp)); | ||
| 27 | |||
| 28 | ########################################################## | ||
| 29 | &set_label("loop"); | ||
| 30 | |||
| 31 | ($a1,$tmp,$b1,$a2,$b2,$a3,$b3,$o0)=&NR(8); | ||
| 32 | &ld($a1,&QWPw(1,$ap)); | ||
| 33 | &cmpult($a0,$b0,$tmp); # will we borrow? | ||
| 34 | &ld($b1,&QWPw(1,$bp)); | ||
| 35 | &sub($a0,$b0,$a0); # do the subtract | ||
| 36 | &ld($a2,&QWPw(2,$ap)); | ||
| 37 | &cmpult($a0,$cc,$b0); # will we borrow? | ||
| 38 | &ld($b2,&QWPw(2,$bp)); | ||
| 39 | &sub($a0,$cc,$o0); # will we borrow? | ||
| 40 | &ld($a3,&QWPw(3,$ap)); | ||
| 41 | &add($b0,$tmp,$cc); ($t1,$o1)=&NR(2); &FR($tmp); | ||
| 42 | |||
| 43 | &cmpult($a1,$b1,$t1); # will we borrow? | ||
| 44 | &sub($a1,$b1,$a1); # do the subtract | ||
| 45 | &ld($b3,&QWPw(3,$bp)); | ||
| 46 | &cmpult($a1,$cc,$b1); # will we borrow? | ||
| 47 | &sub($a1,$cc,$o1); # will we borrow? | ||
| 48 | &add($b1,$t1,$cc); ($tmp,$o2)=&NR(2); &FR($t1,$a1,$b1); | ||
| 49 | |||
| 50 | &cmpult($a2,$b2,$tmp); # will we borrow? | ||
| 51 | &sub($a2,$b2,$a2); # do the subtract | ||
| 52 | &st($o0,&QWPw(0,$rp)); &FR($o0); # save | ||
| 53 | &cmpult($a2,$cc,$b2); # will we borrow? | ||
| 54 | &sub($a2,$cc,$o2); # will we borrow? | ||
| 55 | &add($b2,$tmp,$cc); ($t3,$o3)=&NR(2); &FR($tmp,$a2,$b2); | ||
| 56 | |||
| 57 | &cmpult($a3,$b3,$t3); # will we borrow? | ||
| 58 | &sub($a3,$b3,$a3); # do the subtract | ||
| 59 | &st($o1,&QWPw(1,$rp)); &FR($o1); | ||
| 60 | &cmpult($a3,$cc,$b3); # will we borrow? | ||
| 61 | &sub($a3,$cc,$o3); # will we borrow? | ||
| 62 | &add($b3,$t3,$cc); &FR($t3,$a3,$b3); | ||
| 63 | |||
| 64 | &st($o2,&QWPw(2,$rp)); &FR($o2); | ||
| 65 | &sub($count,4,$count); # count-=4 | ||
| 66 | &st($o3,&QWPw(3,$rp)); &FR($o3); | ||
| 67 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 68 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 69 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 70 | |||
| 71 | &blt($count,&label("finish")); | ||
| 72 | &ld($a0,&QWPw(0,$ap)); | ||
| 73 | &ld($b0,&QWPw(0,$bp)); | ||
| 74 | &br(&label("loop")); | ||
| 75 | ################################################## | ||
| 76 | # Do the last 0..3 words | ||
| 77 | |||
| 78 | &set_label("last_loop"); | ||
| 79 | |||
| 80 | &ld($a0,&QWPw(0,$ap)); # get a | ||
| 81 | &ld($b0,&QWPw(0,$bp)); # get b | ||
| 82 | &cmpult($a0,$b0,$tmp); # will we borrow? | ||
| 83 | &sub($a0,$b0,$a0); # do the subtract | ||
| 84 | &cmpult($a0,$cc,$b0); # will we borrow? | ||
| 85 | &sub($a0,$cc,$a0); # will we borrow? | ||
| 86 | &st($a0,&QWPw(0,$rp)); # save | ||
| 87 | &add($b0,$tmp,$cc); # add the borrows | ||
| 88 | |||
| 89 | &add($ap,$QWS,$ap); | ||
| 90 | &add($bp,$QWS,$bp); | ||
| 91 | &add($rp,$QWS,$rp); | ||
| 92 | &sub($count,1,$count); | ||
| 93 | &bgt($count,&label("last_loop")); | ||
| 94 | &function_end_A($name); | ||
| 95 | |||
| 96 | ###################################################### | ||
| 97 | &set_label("finish"); | ||
| 98 | &add($count,4,$count); | ||
| 99 | &bgt($count,&label("last_loop")); | ||
| 100 | |||
| 101 | &FR($a0,$b0); | ||
| 102 | &set_label("end"); | ||
| 103 | &function_end($name); | ||
| 104 | |||
| 105 | &fin_pool; | ||
| 106 | } | ||
| 107 | |||
| 108 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/bn-alpha.pl b/src/lib/libssl/src/crypto/bn/asm/bn-alpha.pl deleted file mode 100644 index 302edf2376..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/bn-alpha.pl +++ /dev/null | |||
| @@ -1,571 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # I have this in perl so I can use more usefull register names and then convert | ||
| 3 | # them into alpha registers. | ||
| 4 | # | ||
| 5 | |||
| 6 | $d=&data(); | ||
| 7 | $d =~ s/CC/0/g; | ||
| 8 | $d =~ s/R1/1/g; | ||
| 9 | $d =~ s/R2/2/g; | ||
| 10 | $d =~ s/R3/3/g; | ||
| 11 | $d =~ s/R4/4/g; | ||
| 12 | $d =~ s/L1/5/g; | ||
| 13 | $d =~ s/L2/6/g; | ||
| 14 | $d =~ s/L3/7/g; | ||
| 15 | $d =~ s/L4/8/g; | ||
| 16 | $d =~ s/O1/22/g; | ||
| 17 | $d =~ s/O2/23/g; | ||
| 18 | $d =~ s/O3/24/g; | ||
| 19 | $d =~ s/O4/25/g; | ||
| 20 | $d =~ s/A1/20/g; | ||
| 21 | $d =~ s/A2/21/g; | ||
| 22 | $d =~ s/A3/27/g; | ||
| 23 | $d =~ s/A4/28/g; | ||
| 24 | if (0){ | ||
| 25 | } | ||
| 26 | |||
| 27 | print $d; | ||
| 28 | |||
| 29 | sub data | ||
| 30 | { | ||
| 31 | local($data)=<<'EOF'; | ||
| 32 | |||
| 33 | # DEC Alpha assember | ||
| 34 | # The bn_div_words is actually gcc output but the other parts are hand done. | ||
| 35 | # Thanks to tzeruch@ceddec.com for sending me the gcc output for | ||
| 36 | # bn_div_words. | ||
| 37 | # I've gone back and re-done most of routines. | ||
| 38 | # The key thing to remeber for the 164 CPU is that while a | ||
| 39 | # multiply operation takes 8 cycles, another one can only be issued | ||
| 40 | # after 4 cycles have elapsed. I've done modification to help | ||
| 41 | # improve this. Also, normally, a ld instruction will not be available | ||
| 42 | # for about 3 cycles. | ||
| 43 | .file 1 "bn_asm.c" | ||
| 44 | .set noat | ||
| 45 | gcc2_compiled.: | ||
| 46 | __gnu_compiled_c: | ||
| 47 | .text | ||
| 48 | .align 3 | ||
| 49 | .globl bn_mul_add_words | ||
| 50 | .ent bn_mul_add_words | ||
| 51 | bn_mul_add_words: | ||
| 52 | bn_mul_add_words..ng: | ||
| 53 | .frame $30,0,$26,0 | ||
| 54 | .prologue 0 | ||
| 55 | .align 5 | ||
| 56 | subq $18,4,$18 | ||
| 57 | bis $31,$31,$CC | ||
| 58 | blt $18,$43 # if we are -1, -2, -3 or -4 goto tail code | ||
| 59 | ldq $A1,0($17) # 1 1 | ||
| 60 | ldq $R1,0($16) # 1 1 | ||
| 61 | .align 3 | ||
| 62 | $42: | ||
| 63 | mulq $A1,$19,$L1 # 1 2 1 ###### | ||
| 64 | ldq $A2,8($17) # 2 1 | ||
| 65 | ldq $R2,8($16) # 2 1 | ||
| 66 | umulh $A1,$19,$A1 # 1 2 ###### | ||
| 67 | ldq $A3,16($17) # 3 1 | ||
| 68 | ldq $R3,16($16) # 3 1 | ||
| 69 | mulq $A2,$19,$L2 # 2 2 1 ###### | ||
| 70 | ldq $A4,24($17) # 4 1 | ||
| 71 | addq $R1,$L1,$R1 # 1 2 2 | ||
| 72 | ldq $R4,24($16) # 4 1 | ||
| 73 | umulh $A2,$19,$A2 # 2 2 ###### | ||
| 74 | cmpult $R1,$L1,$O1 # 1 2 3 1 | ||
| 75 | addq $A1,$O1,$A1 # 1 3 1 | ||
| 76 | addq $R1,$CC,$R1 # 1 2 3 1 | ||
| 77 | mulq $A3,$19,$L3 # 3 2 1 ###### | ||
| 78 | cmpult $R1,$CC,$CC # 1 2 3 2 | ||
| 79 | addq $R2,$L2,$R2 # 2 2 2 | ||
| 80 | addq $A1,$CC,$CC # 1 3 2 | ||
| 81 | cmpult $R2,$L2,$O2 # 2 2 3 1 | ||
| 82 | addq $A2,$O2,$A2 # 2 3 1 | ||
| 83 | umulh $A3,$19,$A3 # 3 2 ###### | ||
| 84 | addq $R2,$CC,$R2 # 2 2 3 1 | ||
| 85 | cmpult $R2,$CC,$CC # 2 2 3 2 | ||
| 86 | subq $18,4,$18 | ||
| 87 | mulq $A4,$19,$L4 # 4 2 1 ###### | ||
| 88 | addq $A2,$CC,$CC # 2 3 2 | ||
| 89 | addq $R3,$L3,$R3 # 3 2 2 | ||
| 90 | addq $16,32,$16 | ||
| 91 | cmpult $R3,$L3,$O3 # 3 2 3 1 | ||
| 92 | stq $R1,-32($16) # 1 2 4 | ||
| 93 | umulh $A4,$19,$A4 # 4 2 ###### | ||
| 94 | addq $A3,$O3,$A3 # 3 3 1 | ||
| 95 | addq $R3,$CC,$R3 # 3 2 3 1 | ||
| 96 | stq $R2,-24($16) # 2 2 4 | ||
| 97 | cmpult $R3,$CC,$CC # 3 2 3 2 | ||
| 98 | stq $R3,-16($16) # 3 2 4 | ||
| 99 | addq $R4,$L4,$R4 # 4 2 2 | ||
| 100 | addq $A3,$CC,$CC # 3 3 2 | ||
| 101 | cmpult $R4,$L4,$O4 # 4 2 3 1 | ||
| 102 | addq $17,32,$17 | ||
| 103 | addq $A4,$O4,$A4 # 4 3 1 | ||
| 104 | addq $R4,$CC,$R4 # 4 2 3 1 | ||
| 105 | cmpult $R4,$CC,$CC # 4 2 3 2 | ||
| 106 | stq $R4,-8($16) # 4 2 4 | ||
| 107 | addq $A4,$CC,$CC # 4 3 2 | ||
| 108 | blt $18,$43 | ||
| 109 | |||
| 110 | ldq $A1,0($17) # 1 1 | ||
| 111 | ldq $R1,0($16) # 1 1 | ||
| 112 | |||
| 113 | br $42 | ||
| 114 | |||
| 115 | .align 4 | ||
| 116 | $45: | ||
| 117 | ldq $A1,0($17) # 4 1 | ||
| 118 | ldq $R1,0($16) # 4 1 | ||
| 119 | mulq $A1,$19,$L1 # 4 2 1 | ||
| 120 | subq $18,1,$18 | ||
| 121 | addq $16,8,$16 | ||
| 122 | addq $17,8,$17 | ||
| 123 | umulh $A1,$19,$A1 # 4 2 | ||
| 124 | addq $R1,$L1,$R1 # 4 2 2 | ||
| 125 | cmpult $R1,$L1,$O1 # 4 2 3 1 | ||
| 126 | addq $A1,$O1,$A1 # 4 3 1 | ||
| 127 | addq $R1,$CC,$R1 # 4 2 3 1 | ||
| 128 | cmpult $R1,$CC,$CC # 4 2 3 2 | ||
| 129 | addq $A1,$CC,$CC # 4 3 2 | ||
| 130 | stq $R1,-8($16) # 4 2 4 | ||
| 131 | bgt $18,$45 | ||
| 132 | ret $31,($26),1 # else exit | ||
| 133 | |||
| 134 | .align 4 | ||
| 135 | $43: | ||
| 136 | addq $18,4,$18 | ||
| 137 | bgt $18,$45 # goto tail code | ||
| 138 | ret $31,($26),1 # else exit | ||
| 139 | |||
| 140 | .end bn_mul_add_words | ||
| 141 | .align 3 | ||
| 142 | .globl bn_mul_words | ||
| 143 | .ent bn_mul_words | ||
| 144 | bn_mul_words: | ||
| 145 | bn_mul_words..ng: | ||
| 146 | .frame $30,0,$26,0 | ||
| 147 | .prologue 0 | ||
| 148 | .align 5 | ||
| 149 | subq $18,4,$18 | ||
| 150 | bis $31,$31,$CC | ||
| 151 | blt $18,$143 # if we are -1, -2, -3 or -4 goto tail code | ||
| 152 | ldq $A1,0($17) # 1 1 | ||
| 153 | .align 3 | ||
| 154 | $142: | ||
| 155 | |||
| 156 | mulq $A1,$19,$L1 # 1 2 1 ##### | ||
| 157 | ldq $A2,8($17) # 2 1 | ||
| 158 | ldq $A3,16($17) # 3 1 | ||
| 159 | umulh $A1,$19,$A1 # 1 2 ##### | ||
| 160 | ldq $A4,24($17) # 4 1 | ||
| 161 | mulq $A2,$19,$L2 # 2 2 1 ##### | ||
| 162 | addq $L1,$CC,$L1 # 1 2 3 1 | ||
| 163 | subq $18,4,$18 | ||
| 164 | cmpult $L1,$CC,$CC # 1 2 3 2 | ||
| 165 | umulh $A2,$19,$A2 # 2 2 ##### | ||
| 166 | addq $A1,$CC,$CC # 1 3 2 | ||
| 167 | addq $17,32,$17 | ||
| 168 | addq $L2,$CC,$L2 # 2 2 3 1 | ||
| 169 | mulq $A3,$19,$L3 # 3 2 1 ##### | ||
| 170 | cmpult $L2,$CC,$CC # 2 2 3 2 | ||
| 171 | addq $A2,$CC,$CC # 2 3 2 | ||
| 172 | addq $16,32,$16 | ||
| 173 | umulh $A3,$19,$A3 # 3 2 ##### | ||
| 174 | stq $L1,-32($16) # 1 2 4 | ||
| 175 | mulq $A4,$19,$L4 # 4 2 1 ##### | ||
| 176 | addq $L3,$CC,$L3 # 3 2 3 1 | ||
| 177 | stq $L2,-24($16) # 2 2 4 | ||
| 178 | cmpult $L3,$CC,$CC # 3 2 3 2 | ||
| 179 | umulh $A4,$19,$A4 # 4 2 ##### | ||
| 180 | addq $A3,$CC,$CC # 3 3 2 | ||
| 181 | stq $L3,-16($16) # 3 2 4 | ||
| 182 | addq $L4,$CC,$L4 # 4 2 3 1 | ||
| 183 | cmpult $L4,$CC,$CC # 4 2 3 2 | ||
| 184 | |||
| 185 | addq $A4,$CC,$CC # 4 3 2 | ||
| 186 | |||
| 187 | stq $L4,-8($16) # 4 2 4 | ||
| 188 | |||
| 189 | blt $18,$143 | ||
| 190 | |||
| 191 | ldq $A1,0($17) # 1 1 | ||
| 192 | |||
| 193 | br $142 | ||
| 194 | |||
| 195 | .align 4 | ||
| 196 | $145: | ||
| 197 | ldq $A1,0($17) # 4 1 | ||
| 198 | mulq $A1,$19,$L1 # 4 2 1 | ||
| 199 | subq $18,1,$18 | ||
| 200 | umulh $A1,$19,$A1 # 4 2 | ||
| 201 | addq $L1,$CC,$L1 # 4 2 3 1 | ||
| 202 | addq $16,8,$16 | ||
| 203 | cmpult $L1,$CC,$CC # 4 2 3 2 | ||
| 204 | addq $17,8,$17 | ||
| 205 | addq $A1,$CC,$CC # 4 3 2 | ||
| 206 | stq $L1,-8($16) # 4 2 4 | ||
| 207 | |||
| 208 | bgt $18,$145 | ||
| 209 | ret $31,($26),1 # else exit | ||
| 210 | |||
| 211 | .align 4 | ||
| 212 | $143: | ||
| 213 | addq $18,4,$18 | ||
| 214 | bgt $18,$145 # goto tail code | ||
| 215 | ret $31,($26),1 # else exit | ||
| 216 | |||
| 217 | .end bn_mul_words | ||
| 218 | .align 3 | ||
| 219 | .globl bn_sqr_words | ||
| 220 | .ent bn_sqr_words | ||
| 221 | bn_sqr_words: | ||
| 222 | bn_sqr_words..ng: | ||
| 223 | .frame $30,0,$26,0 | ||
| 224 | .prologue 0 | ||
| 225 | |||
| 226 | subq $18,4,$18 | ||
| 227 | blt $18,$543 # if we are -1, -2, -3 or -4 goto tail code | ||
| 228 | ldq $A1,0($17) # 1 1 | ||
| 229 | .align 3 | ||
| 230 | $542: | ||
| 231 | mulq $A1,$A1,$L1 ###### | ||
| 232 | ldq $A2,8($17) # 1 1 | ||
| 233 | subq $18,4 | ||
| 234 | umulh $A1,$A1,$R1 ###### | ||
| 235 | ldq $A3,16($17) # 1 1 | ||
| 236 | mulq $A2,$A2,$L2 ###### | ||
| 237 | ldq $A4,24($17) # 1 1 | ||
| 238 | stq $L1,0($16) # r[0] | ||
| 239 | umulh $A2,$A2,$R2 ###### | ||
| 240 | stq $R1,8($16) # r[1] | ||
| 241 | mulq $A3,$A3,$L3 ###### | ||
| 242 | stq $L2,16($16) # r[0] | ||
| 243 | umulh $A3,$A3,$R3 ###### | ||
| 244 | stq $R2,24($16) # r[1] | ||
| 245 | mulq $A4,$A4,$L4 ###### | ||
| 246 | stq $L3,32($16) # r[0] | ||
| 247 | umulh $A4,$A4,$R4 ###### | ||
| 248 | stq $R3,40($16) # r[1] | ||
| 249 | |||
| 250 | addq $16,64,$16 | ||
| 251 | addq $17,32,$17 | ||
| 252 | stq $L4,-16($16) # r[0] | ||
| 253 | stq $R4,-8($16) # r[1] | ||
| 254 | |||
| 255 | blt $18,$543 | ||
| 256 | ldq $A1,0($17) # 1 1 | ||
| 257 | br $542 | ||
| 258 | |||
| 259 | $442: | ||
| 260 | ldq $A1,0($17) # a[0] | ||
| 261 | mulq $A1,$A1,$L1 # a[0]*w low part r2 | ||
| 262 | addq $16,16,$16 | ||
| 263 | addq $17,8,$17 | ||
| 264 | subq $18,1,$18 | ||
| 265 | umulh $A1,$A1,$R1 # a[0]*w high part r3 | ||
| 266 | stq $L1,-16($16) # r[0] | ||
| 267 | stq $R1,-8($16) # r[1] | ||
| 268 | |||
| 269 | bgt $18,$442 | ||
| 270 | ret $31,($26),1 # else exit | ||
| 271 | |||
| 272 | .align 4 | ||
| 273 | $543: | ||
| 274 | addq $18,4,$18 | ||
| 275 | bgt $18,$442 # goto tail code | ||
| 276 | ret $31,($26),1 # else exit | ||
| 277 | .end bn_sqr_words | ||
| 278 | |||
| 279 | .align 3 | ||
| 280 | .globl bn_add_words | ||
| 281 | .ent bn_add_words | ||
| 282 | bn_add_words: | ||
| 283 | bn_add_words..ng: | ||
| 284 | .frame $30,0,$26,0 | ||
| 285 | .prologue 0 | ||
| 286 | |||
| 287 | subq $19,4,$19 | ||
| 288 | bis $31,$31,$CC # carry = 0 | ||
| 289 | blt $19,$900 | ||
| 290 | ldq $L1,0($17) # a[0] | ||
| 291 | ldq $R1,0($18) # b[1] | ||
| 292 | .align 3 | ||
| 293 | $901: | ||
| 294 | addq $R1,$L1,$R1 # r=a+b; | ||
| 295 | ldq $L2,8($17) # a[1] | ||
| 296 | cmpult $R1,$L1,$O1 # did we overflow? | ||
| 297 | ldq $R2,8($18) # b[1] | ||
| 298 | addq $R1,$CC,$R1 # c+= overflow | ||
| 299 | ldq $L3,16($17) # a[2] | ||
| 300 | cmpult $R1,$CC,$CC # overflow? | ||
| 301 | ldq $R3,16($18) # b[2] | ||
| 302 | addq $CC,$O1,$CC | ||
| 303 | ldq $L4,24($17) # a[3] | ||
| 304 | addq $R2,$L2,$R2 # r=a+b; | ||
| 305 | ldq $R4,24($18) # b[3] | ||
| 306 | cmpult $R2,$L2,$O2 # did we overflow? | ||
| 307 | addq $R3,$L3,$R3 # r=a+b; | ||
| 308 | addq $R2,$CC,$R2 # c+= overflow | ||
| 309 | cmpult $R3,$L3,$O3 # did we overflow? | ||
| 310 | cmpult $R2,$CC,$CC # overflow? | ||
| 311 | addq $R4,$L4,$R4 # r=a+b; | ||
| 312 | addq $CC,$O2,$CC | ||
| 313 | cmpult $R4,$L4,$O4 # did we overflow? | ||
| 314 | addq $R3,$CC,$R3 # c+= overflow | ||
| 315 | stq $R1,0($16) # r[0]=c | ||
| 316 | cmpult $R3,$CC,$CC # overflow? | ||
| 317 | stq $R2,8($16) # r[1]=c | ||
| 318 | addq $CC,$O3,$CC | ||
| 319 | stq $R3,16($16) # r[2]=c | ||
| 320 | addq $R4,$CC,$R4 # c+= overflow | ||
| 321 | subq $19,4,$19 # loop-- | ||
| 322 | cmpult $R4,$CC,$CC # overflow? | ||
| 323 | addq $17,32,$17 # a++ | ||
| 324 | addq $CC,$O4,$CC | ||
| 325 | stq $R4,24($16) # r[3]=c | ||
| 326 | addq $18,32,$18 # b++ | ||
| 327 | addq $16,32,$16 # r++ | ||
| 328 | |||
| 329 | blt $19,$900 | ||
| 330 | ldq $L1,0($17) # a[0] | ||
| 331 | ldq $R1,0($18) # b[1] | ||
| 332 | br $901 | ||
| 333 | .align 4 | ||
| 334 | $945: | ||
| 335 | ldq $L1,0($17) # a[0] | ||
| 336 | ldq $R1,0($18) # b[1] | ||
| 337 | addq $R1,$L1,$R1 # r=a+b; | ||
| 338 | subq $19,1,$19 # loop-- | ||
| 339 | addq $R1,$CC,$R1 # c+= overflow | ||
| 340 | addq $17,8,$17 # a++ | ||
| 341 | cmpult $R1,$L1,$O1 # did we overflow? | ||
| 342 | cmpult $R1,$CC,$CC # overflow? | ||
| 343 | addq $18,8,$18 # b++ | ||
| 344 | stq $R1,0($16) # r[0]=c | ||
| 345 | addq $CC,$O1,$CC | ||
| 346 | addq $16,8,$16 # r++ | ||
| 347 | |||
| 348 | bgt $19,$945 | ||
| 349 | ret $31,($26),1 # else exit | ||
| 350 | |||
| 351 | $900: | ||
| 352 | addq $19,4,$19 | ||
| 353 | bgt $19,$945 # goto tail code | ||
| 354 | ret $31,($26),1 # else exit | ||
| 355 | .end bn_add_words | ||
| 356 | |||
| 357 | .align 3 | ||
| 358 | .globl bn_sub_words | ||
| 359 | .ent bn_sub_words | ||
| 360 | bn_sub_words: | ||
| 361 | bn_sub_words..ng: | ||
| 362 | .frame $30,0,$26,0 | ||
| 363 | .prologue 0 | ||
| 364 | |||
| 365 | subq $19,4,$19 | ||
| 366 | bis $31,$31,$CC # carry = 0 | ||
| 367 | br $800 | ||
| 368 | blt $19,$800 | ||
| 369 | ldq $L1,0($17) # a[0] | ||
| 370 | ldq $R1,0($18) # b[1] | ||
| 371 | .align 3 | ||
| 372 | $801: | ||
| 373 | addq $R1,$L1,$R1 # r=a+b; | ||
| 374 | ldq $L2,8($17) # a[1] | ||
| 375 | cmpult $R1,$L1,$O1 # did we overflow? | ||
| 376 | ldq $R2,8($18) # b[1] | ||
| 377 | addq $R1,$CC,$R1 # c+= overflow | ||
| 378 | ldq $L3,16($17) # a[2] | ||
| 379 | cmpult $R1,$CC,$CC # overflow? | ||
| 380 | ldq $R3,16($18) # b[2] | ||
| 381 | addq $CC,$O1,$CC | ||
| 382 | ldq $L4,24($17) # a[3] | ||
| 383 | addq $R2,$L2,$R2 # r=a+b; | ||
| 384 | ldq $R4,24($18) # b[3] | ||
| 385 | cmpult $R2,$L2,$O2 # did we overflow? | ||
| 386 | addq $R3,$L3,$R3 # r=a+b; | ||
| 387 | addq $R2,$CC,$R2 # c+= overflow | ||
| 388 | cmpult $R3,$L3,$O3 # did we overflow? | ||
| 389 | cmpult $R2,$CC,$CC # overflow? | ||
| 390 | addq $R4,$L4,$R4 # r=a+b; | ||
| 391 | addq $CC,$O2,$CC | ||
| 392 | cmpult $R4,$L4,$O4 # did we overflow? | ||
| 393 | addq $R3,$CC,$R3 # c+= overflow | ||
| 394 | stq $R1,0($16) # r[0]=c | ||
| 395 | cmpult $R3,$CC,$CC # overflow? | ||
| 396 | stq $R2,8($16) # r[1]=c | ||
| 397 | addq $CC,$O3,$CC | ||
| 398 | stq $R3,16($16) # r[2]=c | ||
| 399 | addq $R4,$CC,$R4 # c+= overflow | ||
| 400 | subq $19,4,$19 # loop-- | ||
| 401 | cmpult $R4,$CC,$CC # overflow? | ||
| 402 | addq $17,32,$17 # a++ | ||
| 403 | addq $CC,$O4,$CC | ||
| 404 | stq $R4,24($16) # r[3]=c | ||
| 405 | addq $18,32,$18 # b++ | ||
| 406 | addq $16,32,$16 # r++ | ||
| 407 | |||
| 408 | blt $19,$800 | ||
| 409 | ldq $L1,0($17) # a[0] | ||
| 410 | ldq $R1,0($18) # b[1] | ||
| 411 | br $801 | ||
| 412 | .align 4 | ||
| 413 | $845: | ||
| 414 | ldq $L1,0($17) # a[0] | ||
| 415 | ldq $R1,0($18) # b[1] | ||
| 416 | cmpult $L1,$R1,$O1 # will we borrow? | ||
| 417 | subq $L1,$R1,$R1 # r=a-b; | ||
| 418 | subq $19,1,$19 # loop-- | ||
| 419 | cmpult $R1,$CC,$O2 # will we borrow? | ||
| 420 | subq $R1,$CC,$R1 # c+= overflow | ||
| 421 | addq $17,8,$17 # a++ | ||
| 422 | addq $18,8,$18 # b++ | ||
| 423 | stq $R1,0($16) # r[0]=c | ||
| 424 | addq $O2,$O1,$CC | ||
| 425 | addq $16,8,$16 # r++ | ||
| 426 | |||
| 427 | bgt $19,$845 | ||
| 428 | ret $31,($26),1 # else exit | ||
| 429 | |||
| 430 | $800: | ||
| 431 | addq $19,4,$19 | ||
| 432 | bgt $19,$845 # goto tail code | ||
| 433 | ret $31,($26),1 # else exit | ||
| 434 | .end bn_sub_words | ||
| 435 | |||
| 436 | # | ||
| 437 | # What follows was taken directly from the C compiler with a few | ||
| 438 | # hacks to redo the lables. | ||
| 439 | # | ||
| 440 | .text | ||
| 441 | .align 3 | ||
| 442 | .globl bn_div_words | ||
| 443 | .ent bn_div_words | ||
| 444 | bn_div_words: | ||
| 445 | ldgp $29,0($27) | ||
| 446 | bn_div_words..ng: | ||
| 447 | lda $30,-48($30) | ||
| 448 | .frame $30,48,$26,0 | ||
| 449 | stq $26,0($30) | ||
| 450 | stq $9,8($30) | ||
| 451 | stq $10,16($30) | ||
| 452 | stq $11,24($30) | ||
| 453 | stq $12,32($30) | ||
| 454 | stq $13,40($30) | ||
| 455 | .mask 0x4003e00,-48 | ||
| 456 | .prologue 1 | ||
| 457 | bis $16,$16,$9 | ||
| 458 | bis $17,$17,$10 | ||
| 459 | bis $18,$18,$11 | ||
| 460 | bis $31,$31,$13 | ||
| 461 | bis $31,2,$12 | ||
| 462 | bne $11,$119 | ||
| 463 | lda $0,-1 | ||
| 464 | br $31,$136 | ||
| 465 | .align 4 | ||
| 466 | $119: | ||
| 467 | bis $11,$11,$16 | ||
| 468 | jsr $26,BN_num_bits_word | ||
| 469 | ldgp $29,0($26) | ||
| 470 | subq $0,64,$1 | ||
| 471 | beq $1,$120 | ||
| 472 | bis $31,1,$1 | ||
| 473 | sll $1,$0,$1 | ||
| 474 | cmpule $9,$1,$1 | ||
| 475 | bne $1,$120 | ||
| 476 | # lda $16,_IO_stderr_ | ||
| 477 | # lda $17,$C32 | ||
| 478 | # bis $0,$0,$18 | ||
| 479 | # jsr $26,fprintf | ||
| 480 | # ldgp $29,0($26) | ||
| 481 | jsr $26,abort | ||
| 482 | ldgp $29,0($26) | ||
| 483 | .align 4 | ||
| 484 | $120: | ||
| 485 | bis $31,64,$3 | ||
| 486 | cmpult $9,$11,$2 | ||
| 487 | subq $3,$0,$1 | ||
| 488 | addl $1,$31,$0 | ||
| 489 | subq $9,$11,$1 | ||
| 490 | cmoveq $2,$1,$9 | ||
| 491 | beq $0,$122 | ||
| 492 | zapnot $0,15,$2 | ||
| 493 | subq $3,$0,$1 | ||
| 494 | sll $11,$2,$11 | ||
| 495 | sll $9,$2,$3 | ||
| 496 | srl $10,$1,$1 | ||
| 497 | sll $10,$2,$10 | ||
| 498 | bis $3,$1,$9 | ||
| 499 | $122: | ||
| 500 | srl $11,32,$5 | ||
| 501 | zapnot $11,15,$6 | ||
| 502 | lda $7,-1 | ||
| 503 | .align 5 | ||
| 504 | $123: | ||
| 505 | srl $9,32,$1 | ||
| 506 | subq $1,$5,$1 | ||
| 507 | bne $1,$126 | ||
| 508 | zapnot $7,15,$27 | ||
| 509 | br $31,$127 | ||
| 510 | .align 4 | ||
| 511 | $126: | ||
| 512 | bis $9,$9,$24 | ||
| 513 | bis $5,$5,$25 | ||
| 514 | divqu $24,$25,$27 | ||
| 515 | $127: | ||
| 516 | srl $10,32,$4 | ||
| 517 | .align 5 | ||
| 518 | $128: | ||
| 519 | mulq $27,$5,$1 | ||
| 520 | subq $9,$1,$3 | ||
| 521 | zapnot $3,240,$1 | ||
| 522 | bne $1,$129 | ||
| 523 | mulq $6,$27,$2 | ||
| 524 | sll $3,32,$1 | ||
| 525 | addq $1,$4,$1 | ||
| 526 | cmpule $2,$1,$2 | ||
| 527 | bne $2,$129 | ||
| 528 | subq $27,1,$27 | ||
| 529 | br $31,$128 | ||
| 530 | .align 4 | ||
| 531 | $129: | ||
| 532 | mulq $27,$6,$1 | ||
| 533 | mulq $27,$5,$4 | ||
| 534 | srl $1,32,$3 | ||
| 535 | sll $1,32,$1 | ||
| 536 | addq $4,$3,$4 | ||
| 537 | cmpult $10,$1,$2 | ||
| 538 | subq $10,$1,$10 | ||
| 539 | addq $2,$4,$2 | ||
| 540 | cmpult $9,$2,$1 | ||
| 541 | bis $2,$2,$4 | ||
| 542 | beq $1,$134 | ||
| 543 | addq $9,$11,$9 | ||
| 544 | subq $27,1,$27 | ||
| 545 | $134: | ||
| 546 | subl $12,1,$12 | ||
| 547 | subq $9,$4,$9 | ||
| 548 | beq $12,$124 | ||
| 549 | sll $27,32,$13 | ||
| 550 | sll $9,32,$2 | ||
| 551 | srl $10,32,$1 | ||
| 552 | sll $10,32,$10 | ||
| 553 | bis $2,$1,$9 | ||
| 554 | br $31,$123 | ||
| 555 | .align 4 | ||
| 556 | $124: | ||
| 557 | bis $13,$27,$0 | ||
| 558 | $136: | ||
| 559 | ldq $26,0($30) | ||
| 560 | ldq $9,8($30) | ||
| 561 | ldq $10,16($30) | ||
| 562 | ldq $11,24($30) | ||
| 563 | ldq $12,32($30) | ||
| 564 | ldq $13,40($30) | ||
| 565 | addq $30,48,$30 | ||
| 566 | ret $31,($26),1 | ||
| 567 | .end bn_div_words | ||
| 568 | EOF | ||
| 569 | return($data); | ||
| 570 | } | ||
| 571 | |||
diff --git a/src/lib/libssl/src/crypto/bn/asm/ca.pl b/src/lib/libssl/src/crypto/bn/asm/ca.pl deleted file mode 100644 index c1ce67a6b4..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/ca.pl +++ /dev/null | |||
| @@ -1,33 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # I have this in perl so I can use more usefull register names and then convert | ||
| 3 | # them into alpha registers. | ||
| 4 | # | ||
| 5 | |||
| 6 | push(@INC,"perlasm","../../perlasm"); | ||
| 7 | require "alpha.pl"; | ||
| 8 | require "alpha/mul_add.pl"; | ||
| 9 | require "alpha/mul.pl"; | ||
| 10 | require "alpha/sqr.pl"; | ||
| 11 | require "alpha/add.pl"; | ||
| 12 | require "alpha/sub.pl"; | ||
| 13 | require "alpha/mul_c8.pl"; | ||
| 14 | require "alpha/mul_c4.pl"; | ||
| 15 | require "alpha/sqr_c4.pl"; | ||
| 16 | require "alpha/sqr_c8.pl"; | ||
| 17 | require "alpha/div.pl"; | ||
| 18 | |||
| 19 | &asm_init($ARGV[0],$0); | ||
| 20 | |||
| 21 | &bn_mul_words("bn_mul_words"); | ||
| 22 | &bn_sqr_words("bn_sqr_words"); | ||
| 23 | &bn_mul_add_words("bn_mul_add_words"); | ||
| 24 | &bn_add_words("bn_add_words"); | ||
| 25 | &bn_sub_words("bn_sub_words"); | ||
| 26 | &bn_div_words("bn_div_words"); | ||
| 27 | &bn_mul_comba8("bn_mul_comba8"); | ||
| 28 | &bn_mul_comba4("bn_mul_comba4"); | ||
| 29 | &bn_sqr_comba4("bn_sqr_comba4"); | ||
| 30 | &bn_sqr_comba8("bn_sqr_comba8"); | ||
| 31 | |||
| 32 | &asm_finish(); | ||
| 33 | |||
diff --git a/src/lib/libssl/src/crypto/bn/asm/co-alpha.pl b/src/lib/libssl/src/crypto/bn/asm/co-alpha.pl deleted file mode 100644 index 67dad3e3d5..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/co-alpha.pl +++ /dev/null | |||
| @@ -1,116 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # I have this in perl so I can use more usefull register names and then convert | ||
| 3 | # them into alpha registers. | ||
| 4 | # | ||
| 5 | |||
| 6 | push(@INC,"perlasm","../../perlasm"); | ||
| 7 | require "alpha.pl"; | ||
| 8 | |||
| 9 | &asm_init($ARGV[0],$0); | ||
| 10 | |||
| 11 | print &bn_sub_words("bn_sub_words"); | ||
| 12 | |||
| 13 | &asm_finish(); | ||
| 14 | |||
| 15 | sub bn_sub_words | ||
| 16 | { | ||
| 17 | local($name)=@_; | ||
| 18 | local($cc,$a,$b,$r); | ||
| 19 | |||
| 20 | $cc="r0"; | ||
| 21 | $a0="r1"; $b0="r5"; $r0="r9"; $tmp="r13"; | ||
| 22 | $a1="r2"; $b1="r6"; $r1="r10"; $t1="r14"; | ||
| 23 | $a2="r3"; $b2="r7"; $r2="r11"; | ||
| 24 | $a3="r4"; $b3="r8"; $r3="r12"; $t3="r15"; | ||
| 25 | |||
| 26 | $rp=&wparam(0); | ||
| 27 | $ap=&wparam(1); | ||
| 28 | $bp=&wparam(2); | ||
| 29 | $count=&wparam(3); | ||
| 30 | |||
| 31 | &function_begin($name,""); | ||
| 32 | |||
| 33 | &comment(""); | ||
| 34 | &sub($count,4,$count); | ||
| 35 | &mov("zero",$cc); | ||
| 36 | &blt($count,&label("finish")); | ||
| 37 | |||
| 38 | &ld($a0,&QWPw(0,$ap)); | ||
| 39 | &ld($b0,&QWPw(0,$bp)); | ||
| 40 | |||
| 41 | ########################################################## | ||
| 42 | &set_label("loop"); | ||
| 43 | |||
| 44 | &ld($a1,&QWPw(1,$ap)); | ||
| 45 | &cmpult($a0,$b0,$tmp); # will we borrow? | ||
| 46 | &ld($b1,&QWPw(1,$bp)); | ||
| 47 | &sub($a0,$b0,$a0); # do the subtract | ||
| 48 | &ld($a2,&QWPw(2,$ap)); | ||
| 49 | &cmpult($a0,$cc,$b0); # will we borrow? | ||
| 50 | &ld($b2,&QWPw(2,$bp)); | ||
| 51 | &sub($a0,$cc,$a0); # will we borrow? | ||
| 52 | &ld($a3,&QWPw(3,$ap)); | ||
| 53 | &add($b0,$tmp,$cc); # add the borrows | ||
| 54 | |||
| 55 | &cmpult($a1,$b1,$t1); # will we borrow? | ||
| 56 | &sub($a1,$b1,$a1); # do the subtract | ||
| 57 | &ld($b3,&QWPw(3,$bp)); | ||
| 58 | &cmpult($a1,$cc,$b1); # will we borrow? | ||
| 59 | &sub($a1,$cc,$a1); # will we borrow? | ||
| 60 | &add($b1,$t1,$cc); # add the borrows | ||
| 61 | |||
| 62 | &cmpult($a2,$b2,$tmp); # will we borrow? | ||
| 63 | &sub($a2,$b2,$a2); # do the subtract | ||
| 64 | &st($a0,&QWPw(0,$rp)); # save | ||
| 65 | &cmpult($a2,$cc,$b2); # will we borrow? | ||
| 66 | &sub($a2,$cc,$a2); # will we borrow? | ||
| 67 | &add($b2,$tmp,$cc); # add the borrows | ||
| 68 | |||
| 69 | &cmpult($a3,$b3,$t3); # will we borrow? | ||
| 70 | &sub($a3,$b3,$a3); # do the subtract | ||
| 71 | &st($a1,&QWPw(1,$rp)); # save | ||
| 72 | &cmpult($a3,$cc,$b3); # will we borrow? | ||
| 73 | &sub($a3,$cc,$a3); # will we borrow? | ||
| 74 | &add($b3,$t3,$cc); # add the borrows | ||
| 75 | |||
| 76 | &st($a2,&QWPw(2,$rp)); # save | ||
| 77 | &sub($count,4,$count); # count-=4 | ||
| 78 | &st($a3,&QWPw(3,$rp)); # save | ||
| 79 | &add($ap,4*$QWS,$ap); # count+=4 | ||
| 80 | &add($bp,4*$QWS,$bp); # count+=4 | ||
| 81 | &add($rp,4*$QWS,$rp); # count+=4 | ||
| 82 | |||
| 83 | &blt($count,&label("finish")); | ||
| 84 | &ld($a0,&QWPw(0,$ap)); | ||
| 85 | &ld($b0,&QWPw(0,$bp)); | ||
| 86 | &br(&label("loop")); | ||
| 87 | ################################################## | ||
| 88 | # Do the last 0..3 words | ||
| 89 | |||
| 90 | &set_label("last_loop"); | ||
| 91 | |||
| 92 | &ld($a0,&QWPw(0,$ap)); # get a | ||
| 93 | &ld($b0,&QWPw(0,$bp)); # get b | ||
| 94 | &cmpult($a0,$b0,$tmp); # will we borrow? | ||
| 95 | &sub($a0,$b0,$a0); # do the subtract | ||
| 96 | &cmpult($a0,$cc,$b0); # will we borrow? | ||
| 97 | &sub($a0,$cc,$a0); # will we borrow? | ||
| 98 | &st($a0,&QWPw(0,$rp)); # save | ||
| 99 | &add($b0,$tmp,$cc); # add the borrows | ||
| 100 | |||
| 101 | &add($ap,$QWS,$ap); | ||
| 102 | &add($bp,$QWS,$bp); | ||
| 103 | &add($rp,$QWS,$rp); | ||
| 104 | &sub($count,1,$count); | ||
| 105 | &bgt($count,&label("last_loop")); | ||
| 106 | &function_end_A($name); | ||
| 107 | |||
| 108 | ###################################################### | ||
| 109 | &set_label("finish"); | ||
| 110 | &add($count,4,$count); | ||
| 111 | &bgt($count,&label("last_loop")); | ||
| 112 | |||
| 113 | &set_label("end"); | ||
| 114 | &function_end($name); | ||
| 115 | } | ||
| 116 | |||
diff --git a/src/lib/libssl/src/crypto/bn/asm/mips1.s b/src/lib/libssl/src/crypto/bn/asm/mips1.s deleted file mode 100644 index 44fa1254c7..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/mips1.s +++ /dev/null | |||
| @@ -1,539 +0,0 @@ | |||
| 1 | /* This assember is for R2000/R3000 machines, or higher ones that do | ||
| 2 | * no want to do any 64 bit arithmatic. | ||
| 3 | * Make sure that the SSLeay bignum library is compiled with | ||
| 4 | * THIRTY_TWO_BIT set. | ||
| 5 | * This must either be compiled with the system CC, or, if you use GNU gas, | ||
| 6 | * cc -E mips1.s|gas -o mips1.o | ||
| 7 | */ | ||
| 8 | .set reorder | ||
| 9 | .set noat | ||
| 10 | |||
| 11 | #define R1 $1 | ||
| 12 | #define CC $2 | ||
| 13 | #define R2 $3 | ||
| 14 | #define R3 $8 | ||
| 15 | #define R4 $9 | ||
| 16 | #define L1 $10 | ||
| 17 | #define L2 $11 | ||
| 18 | #define L3 $12 | ||
| 19 | #define L4 $13 | ||
| 20 | #define H1 $14 | ||
| 21 | #define H2 $15 | ||
| 22 | #define H3 $24 | ||
| 23 | #define H4 $25 | ||
| 24 | |||
| 25 | #define P1 $4 | ||
| 26 | #define P2 $5 | ||
| 27 | #define P3 $6 | ||
| 28 | #define P4 $7 | ||
| 29 | |||
| 30 | .align 2 | ||
| 31 | .ent bn_mul_add_words | ||
| 32 | .globl bn_mul_add_words | ||
| 33 | .text | ||
| 34 | bn_mul_add_words: | ||
| 35 | .frame $sp,0,$31 | ||
| 36 | .mask 0x00000000,0 | ||
| 37 | .fmask 0x00000000,0 | ||
| 38 | |||
| 39 | #blt P3,4,$lab34 | ||
| 40 | |||
| 41 | subu R1,P3,4 | ||
| 42 | move CC,$0 | ||
| 43 | bltz R1,$lab34 | ||
| 44 | $lab2: | ||
| 45 | lw R1,0(P1) | ||
| 46 | lw L1,0(P2) | ||
| 47 | lw R2,4(P1) | ||
| 48 | lw L2,4(P2) | ||
| 49 | lw R3,8(P1) | ||
| 50 | lw L3,8(P2) | ||
| 51 | lw R4,12(P1) | ||
| 52 | lw L4,12(P2) | ||
| 53 | multu L1,P4 | ||
| 54 | addu R1,R1,CC | ||
| 55 | mflo L1 | ||
| 56 | sltu CC,R1,CC | ||
| 57 | addu R1,R1,L1 | ||
| 58 | mfhi H1 | ||
| 59 | sltu L1,R1,L1 | ||
| 60 | sw R1,0(P1) | ||
| 61 | addu CC,CC,L1 | ||
| 62 | multu L2,P4 | ||
| 63 | addu CC,H1,CC | ||
| 64 | mflo L2 | ||
| 65 | addu R2,R2,CC | ||
| 66 | sltu CC,R2,CC | ||
| 67 | mfhi H2 | ||
| 68 | addu R2,R2,L2 | ||
| 69 | addu P2,P2,16 | ||
| 70 | sltu L2,R2,L2 | ||
| 71 | sw R2,4(P1) | ||
| 72 | addu CC,CC,L2 | ||
| 73 | multu L3,P4 | ||
| 74 | addu CC,H2,CC | ||
| 75 | mflo L3 | ||
| 76 | addu R3,R3,CC | ||
| 77 | sltu CC,R3,CC | ||
| 78 | mfhi H3 | ||
| 79 | addu R3,R3,L3 | ||
| 80 | addu P1,P1,16 | ||
| 81 | sltu L3,R3,L3 | ||
| 82 | sw R3,-8(P1) | ||
| 83 | addu CC,CC,L3 | ||
| 84 | multu L4,P4 | ||
| 85 | addu CC,H3,CC | ||
| 86 | mflo L4 | ||
| 87 | addu R4,R4,CC | ||
| 88 | sltu CC,R4,CC | ||
| 89 | mfhi H4 | ||
| 90 | addu R4,R4,L4 | ||
| 91 | subu P3,P3,4 | ||
| 92 | sltu L4,R4,L4 | ||
| 93 | addu CC,CC,L4 | ||
| 94 | addu CC,H4,CC | ||
| 95 | |||
| 96 | subu R1,P3,4 | ||
| 97 | sw R4,-4(P1) # delay slot | ||
| 98 | bgez R1,$lab2 | ||
| 99 | |||
| 100 | bleu P3,0,$lab3 | ||
| 101 | .align 2 | ||
| 102 | $lab33: | ||
| 103 | lw L1,0(P2) | ||
| 104 | lw R1,0(P1) | ||
| 105 | multu L1,P4 | ||
| 106 | addu R1,R1,CC | ||
| 107 | sltu CC,R1,CC | ||
| 108 | addu P1,P1,4 | ||
| 109 | mflo L1 | ||
| 110 | mfhi H1 | ||
| 111 | addu R1,R1,L1 | ||
| 112 | addu P2,P2,4 | ||
| 113 | sltu L1,R1,L1 | ||
| 114 | subu P3,P3,1 | ||
| 115 | addu CC,CC,L1 | ||
| 116 | sw R1,-4(P1) | ||
| 117 | addu CC,H1,CC | ||
| 118 | bgtz P3,$lab33 | ||
| 119 | j $31 | ||
| 120 | .align 2 | ||
| 121 | $lab3: | ||
| 122 | j $31 | ||
| 123 | .align 2 | ||
| 124 | $lab34: | ||
| 125 | bgt P3,0,$lab33 | ||
| 126 | j $31 | ||
| 127 | .end bn_mul_add_words | ||
| 128 | |||
| 129 | .align 2 | ||
| 130 | # Program Unit: bn_mul_words | ||
| 131 | .ent bn_mul_words | ||
| 132 | .globl bn_mul_words | ||
| 133 | .text | ||
| 134 | bn_mul_words: | ||
| 135 | .frame $sp,0,$31 | ||
| 136 | .mask 0x00000000,0 | ||
| 137 | .fmask 0x00000000,0 | ||
| 138 | |||
| 139 | subu P3,P3,4 | ||
| 140 | move CC,$0 | ||
| 141 | bltz P3,$lab45 | ||
| 142 | $lab44: | ||
| 143 | lw L1,0(P2) | ||
| 144 | lw L2,4(P2) | ||
| 145 | lw L3,8(P2) | ||
| 146 | lw L4,12(P2) | ||
| 147 | multu L1,P4 | ||
| 148 | subu P3,P3,4 | ||
| 149 | mflo L1 | ||
| 150 | mfhi H1 | ||
| 151 | addu L1,L1,CC | ||
| 152 | multu L2,P4 | ||
| 153 | sltu CC,L1,CC | ||
| 154 | sw L1,0(P1) | ||
| 155 | addu CC,H1,CC | ||
| 156 | mflo L2 | ||
| 157 | mfhi H2 | ||
| 158 | addu L2,L2,CC | ||
| 159 | multu L3,P4 | ||
| 160 | sltu CC,L2,CC | ||
| 161 | sw L2,4(P1) | ||
| 162 | addu CC,H2,CC | ||
| 163 | mflo L3 | ||
| 164 | mfhi H3 | ||
| 165 | addu L3,L3,CC | ||
| 166 | multu L4,P4 | ||
| 167 | sltu CC,L3,CC | ||
| 168 | sw L3,8(P1) | ||
| 169 | addu CC,H3,CC | ||
| 170 | mflo L4 | ||
| 171 | mfhi H4 | ||
| 172 | addu L4,L4,CC | ||
| 173 | addu P1,P1,16 | ||
| 174 | sltu CC,L4,CC | ||
| 175 | addu P2,P2,16 | ||
| 176 | addu CC,H4,CC | ||
| 177 | sw L4,-4(P1) | ||
| 178 | |||
| 179 | bgez P3,$lab44 | ||
| 180 | b $lab45 | ||
| 181 | $lab46: | ||
| 182 | lw L1,0(P2) | ||
| 183 | addu P1,P1,4 | ||
| 184 | multu L1,P4 | ||
| 185 | addu P2,P2,4 | ||
| 186 | mflo L1 | ||
| 187 | mfhi H1 | ||
| 188 | addu L1,L1,CC | ||
| 189 | subu P3,P3,1 | ||
| 190 | sltu CC,L1,CC | ||
| 191 | sw L1,-4(P1) | ||
| 192 | addu CC,H1,CC | ||
| 193 | bgtz P3,$lab46 | ||
| 194 | j $31 | ||
| 195 | $lab45: | ||
| 196 | addu P3,P3,4 | ||
| 197 | bgtz P3,$lab46 | ||
| 198 | j $31 | ||
| 199 | .align 2 | ||
| 200 | .end bn_mul_words | ||
| 201 | |||
| 202 | # Program Unit: bn_sqr_words | ||
| 203 | .ent bn_sqr_words | ||
| 204 | .globl bn_sqr_words | ||
| 205 | .text | ||
| 206 | bn_sqr_words: | ||
| 207 | .frame $sp,0,$31 | ||
| 208 | .mask 0x00000000,0 | ||
| 209 | .fmask 0x00000000,0 | ||
| 210 | |||
| 211 | subu P3,P3,4 | ||
| 212 | bltz P3,$lab55 | ||
| 213 | $lab54: | ||
| 214 | lw L1,0(P2) | ||
| 215 | lw L2,4(P2) | ||
| 216 | lw L3,8(P2) | ||
| 217 | lw L4,12(P2) | ||
| 218 | |||
| 219 | multu L1,L1 | ||
| 220 | subu P3,P3,4 | ||
| 221 | mflo L1 | ||
| 222 | mfhi H1 | ||
| 223 | sw L1,0(P1) | ||
| 224 | sw H1,4(P1) | ||
| 225 | |||
| 226 | multu L2,L2 | ||
| 227 | addu P1,P1,32 | ||
| 228 | mflo L2 | ||
| 229 | mfhi H2 | ||
| 230 | sw L2,-24(P1) | ||
| 231 | sw H2,-20(P1) | ||
| 232 | |||
| 233 | multu L3,L3 | ||
| 234 | addu P2,P2,16 | ||
| 235 | mflo L3 | ||
| 236 | mfhi H3 | ||
| 237 | sw L3,-16(P1) | ||
| 238 | sw H3,-12(P1) | ||
| 239 | |||
| 240 | multu L4,L4 | ||
| 241 | |||
| 242 | mflo L4 | ||
| 243 | mfhi H4 | ||
| 244 | sw L4,-8(P1) | ||
| 245 | sw H4,-4(P1) | ||
| 246 | |||
| 247 | bgtz P3,$lab54 | ||
| 248 | b $lab55 | ||
| 249 | $lab56: | ||
| 250 | lw L1,0(P2) | ||
| 251 | addu P1,P1,8 | ||
| 252 | multu L1,L1 | ||
| 253 | addu P2,P2,4 | ||
| 254 | subu P3,P3,1 | ||
| 255 | mflo L1 | ||
| 256 | mfhi H1 | ||
| 257 | sw L1,-8(P1) | ||
| 258 | sw H1,-4(P1) | ||
| 259 | |||
| 260 | bgtz P3,$lab56 | ||
| 261 | j $31 | ||
| 262 | $lab55: | ||
| 263 | addu P3,P3,4 | ||
| 264 | bgtz P3,$lab56 | ||
| 265 | j $31 | ||
| 266 | .align 2 | ||
| 267 | .end bn_sqr_words | ||
| 268 | |||
| 269 | # Program Unit: bn_add_words | ||
| 270 | .ent bn_add_words | ||
| 271 | .globl bn_add_words | ||
| 272 | .text | ||
| 273 | bn_add_words: # 0x590 | ||
| 274 | .frame $sp,0,$31 | ||
| 275 | .mask 0x00000000,0 | ||
| 276 | .fmask 0x00000000,0 | ||
| 277 | |||
| 278 | subu P4,P4,4 | ||
| 279 | move CC,$0 | ||
| 280 | bltz P4,$lab65 | ||
| 281 | $lab64: | ||
| 282 | lw L1,0(P2) | ||
| 283 | lw R1,0(P3) | ||
| 284 | lw L2,4(P2) | ||
| 285 | lw R2,4(P3) | ||
| 286 | |||
| 287 | addu L1,L1,CC | ||
| 288 | lw L3,8(P2) | ||
| 289 | sltu CC,L1,CC | ||
| 290 | addu L1,L1,R1 | ||
| 291 | sltu R1,L1,R1 | ||
| 292 | lw R3,8(P3) | ||
| 293 | addu CC,CC,R1 | ||
| 294 | lw L4,12(P2) | ||
| 295 | |||
| 296 | addu L2,L2,CC | ||
| 297 | lw R4,12(P3) | ||
| 298 | sltu CC,L2,CC | ||
| 299 | addu L2,L2,R2 | ||
| 300 | sltu R2,L2,R2 | ||
| 301 | sw L1,0(P1) | ||
| 302 | addu CC,CC,R2 | ||
| 303 | addu P1,P1,16 | ||
| 304 | addu L3,L3,CC | ||
| 305 | sw L2,-12(P1) | ||
| 306 | |||
| 307 | sltu CC,L3,CC | ||
| 308 | addu L3,L3,R3 | ||
| 309 | sltu R3,L3,R3 | ||
| 310 | addu P2,P2,16 | ||
| 311 | addu CC,CC,R3 | ||
| 312 | |||
| 313 | addu L4,L4,CC | ||
| 314 | addu P3,P3,16 | ||
| 315 | sltu CC,L4,CC | ||
| 316 | addu L4,L4,R4 | ||
| 317 | subu P4,P4,4 | ||
| 318 | sltu R4,L4,R4 | ||
| 319 | sw L3,-8(P1) | ||
| 320 | addu CC,CC,R4 | ||
| 321 | sw L4,-4(P1) | ||
| 322 | |||
| 323 | bgtz P4,$lab64 | ||
| 324 | b $lab65 | ||
| 325 | $lab66: | ||
| 326 | lw L1,0(P2) | ||
| 327 | lw R1,0(P3) | ||
| 328 | addu L1,L1,CC | ||
| 329 | addu P1,P1,4 | ||
| 330 | sltu CC,L1,CC | ||
| 331 | addu P2,P2,4 | ||
| 332 | addu P3,P3,4 | ||
| 333 | addu L1,L1,R1 | ||
| 334 | subu P4,P4,1 | ||
| 335 | sltu R1,L1,R1 | ||
| 336 | sw L1,-4(P1) | ||
| 337 | addu CC,CC,R1 | ||
| 338 | |||
| 339 | bgtz P4,$lab66 | ||
| 340 | j $31 | ||
| 341 | $lab65: | ||
| 342 | addu P4,P4,4 | ||
| 343 | bgtz P4,$lab66 | ||
| 344 | j $31 | ||
| 345 | .end bn_add_words | ||
| 346 | |||
| 347 | # Program Unit: bn_div64 | ||
| 348 | .set at | ||
| 349 | .set reorder | ||
| 350 | .text | ||
| 351 | .align 2 | ||
| 352 | .globl bn_div64 | ||
| 353 | # 321 { | ||
| 354 | .ent bn_div64 2 | ||
| 355 | bn_div64: | ||
| 356 | subu $sp, 64 | ||
| 357 | sw $31, 56($sp) | ||
| 358 | sw $16, 48($sp) | ||
| 359 | .mask 0x80010000, -56 | ||
| 360 | .frame $sp, 64, $31 | ||
| 361 | move $9, $4 | ||
| 362 | move $12, $5 | ||
| 363 | move $16, $6 | ||
| 364 | # 322 BN_ULONG dh,dl,q,ret=0,th,tl,t; | ||
| 365 | move $31, $0 | ||
| 366 | # 323 int i,count=2; | ||
| 367 | li $13, 2 | ||
| 368 | # 324 | ||
| 369 | # 325 if (d == 0) return(BN_MASK2); | ||
| 370 | bne $16, 0, $80 | ||
| 371 | li $2, -1 | ||
| 372 | b $93 | ||
| 373 | $80: | ||
| 374 | # 326 | ||
| 375 | # 327 i=BN_num_bits_word(d); | ||
| 376 | move $4, $16 | ||
| 377 | sw $31, 16($sp) | ||
| 378 | sw $9, 24($sp) | ||
| 379 | sw $12, 32($sp) | ||
| 380 | sw $13, 40($sp) | ||
| 381 | .livereg 0x800ff0e,0xfff | ||
| 382 | jal BN_num_bits_word | ||
| 383 | li $4, 32 | ||
| 384 | lw $31, 16($sp) | ||
| 385 | lw $9, 24($sp) | ||
| 386 | lw $12, 32($sp) | ||
| 387 | lw $13, 40($sp) | ||
| 388 | move $3, $2 | ||
| 389 | # 328 if ((i != BN_BITS2) && (h > (BN_ULONG)1<<i)) | ||
| 390 | beq $2, $4, $81 | ||
| 391 | li $14, 1 | ||
| 392 | sll $15, $14, $2 | ||
| 393 | bleu $9, $15, $81 | ||
| 394 | # 329 { | ||
| 395 | # 330 #if !defined(NO_STDIO) && !defined(WIN16) | ||
| 396 | # 331 fprintf(stderr,"Division would overflow (%d)\n",i); | ||
| 397 | # 332 #endif | ||
| 398 | # 333 abort(); | ||
| 399 | sw $3, 8($sp) | ||
| 400 | sw $9, 24($sp) | ||
| 401 | sw $12, 32($sp) | ||
| 402 | sw $13, 40($sp) | ||
| 403 | sw $31, 26($sp) | ||
| 404 | .livereg 0xff0e,0xfff | ||
| 405 | jal abort | ||
| 406 | lw $3, 8($sp) | ||
| 407 | li $4, 32 | ||
| 408 | lw $9, 24($sp) | ||
| 409 | lw $12, 32($sp) | ||
| 410 | lw $13, 40($sp) | ||
| 411 | lw $31, 26($sp) | ||
| 412 | # 334 } | ||
| 413 | $81: | ||
| 414 | # 335 i=BN_BITS2-i; | ||
| 415 | subu $3, $4, $3 | ||
| 416 | # 336 if (h >= d) h-=d; | ||
| 417 | bltu $9, $16, $82 | ||
| 418 | subu $9, $9, $16 | ||
| 419 | $82: | ||
| 420 | # 337 | ||
| 421 | # 338 if (i) | ||
| 422 | beq $3, 0, $83 | ||
| 423 | # 339 { | ||
| 424 | # 340 d<<=i; | ||
| 425 | sll $16, $16, $3 | ||
| 426 | # 341 h=(h<<i)|(l>>(BN_BITS2-i)); | ||
| 427 | sll $24, $9, $3 | ||
| 428 | subu $25, $4, $3 | ||
| 429 | srl $14, $12, $25 | ||
| 430 | or $9, $24, $14 | ||
| 431 | # 342 l<<=i; | ||
| 432 | sll $12, $12, $3 | ||
| 433 | # 343 } | ||
| 434 | $83: | ||
| 435 | # 344 dh=(d&BN_MASK2h)>>BN_BITS4; | ||
| 436 | # 345 dl=(d&BN_MASK2l); | ||
| 437 | and $8, $16, -65536 | ||
| 438 | srl $8, $8, 16 | ||
| 439 | and $10, $16, 65535 | ||
| 440 | li $6, -65536 | ||
| 441 | $84: | ||
| 442 | # 346 for (;;) | ||
| 443 | # 347 { | ||
| 444 | # 348 if ((h>>BN_BITS4) == dh) | ||
| 445 | srl $15, $9, 16 | ||
| 446 | bne $8, $15, $85 | ||
| 447 | # 349 q=BN_MASK2l; | ||
| 448 | li $5, 65535 | ||
| 449 | b $86 | ||
| 450 | $85: | ||
| 451 | # 350 else | ||
| 452 | # 351 q=h/dh; | ||
| 453 | divu $5, $9, $8 | ||
| 454 | $86: | ||
| 455 | # 352 | ||
| 456 | # 353 for (;;) | ||
| 457 | # 354 { | ||
| 458 | # 355 t=(h-q*dh); | ||
| 459 | mul $4, $5, $8 | ||
| 460 | subu $2, $9, $4 | ||
| 461 | move $3, $2 | ||
| 462 | # 356 if ((t&BN_MASK2h) || | ||
| 463 | # 357 ((dl*q) <= ( | ||
| 464 | # 358 (t<<BN_BITS4)+ | ||
| 465 | # 359 ((l&BN_MASK2h)>>BN_BITS4)))) | ||
| 466 | and $25, $2, $6 | ||
| 467 | bne $25, $0, $87 | ||
| 468 | mul $24, $10, $5 | ||
| 469 | sll $14, $3, 16 | ||
| 470 | and $15, $12, $6 | ||
| 471 | srl $25, $15, 16 | ||
| 472 | addu $15, $14, $25 | ||
| 473 | bgtu $24, $15, $88 | ||
| 474 | $87: | ||
| 475 | # 360 break; | ||
| 476 | mul $3, $10, $5 | ||
| 477 | b $89 | ||
| 478 | $88: | ||
| 479 | # 361 q--; | ||
| 480 | addu $5, $5, -1 | ||
| 481 | # 362 } | ||
| 482 | b $86 | ||
| 483 | $89: | ||
| 484 | # 363 th=q*dh; | ||
| 485 | # 364 tl=q*dl; | ||
| 486 | # 365 t=(tl>>BN_BITS4); | ||
| 487 | # 366 tl=(tl<<BN_BITS4)&BN_MASK2h; | ||
| 488 | sll $14, $3, 16 | ||
| 489 | and $2, $14, $6 | ||
| 490 | move $11, $2 | ||
| 491 | # 367 th+=t; | ||
| 492 | srl $25, $3, 16 | ||
| 493 | addu $7, $4, $25 | ||
| 494 | # 368 | ||
| 495 | # 369 if (l < tl) th++; | ||
| 496 | bgeu $12, $2, $90 | ||
| 497 | addu $7, $7, 1 | ||
| 498 | $90: | ||
| 499 | # 370 l-=tl; | ||
| 500 | subu $12, $12, $11 | ||
| 501 | # 371 if (h < th) | ||
| 502 | bgeu $9, $7, $91 | ||
| 503 | # 372 { | ||
| 504 | # 373 h+=d; | ||
| 505 | addu $9, $9, $16 | ||
| 506 | # 374 q--; | ||
| 507 | addu $5, $5, -1 | ||
| 508 | # 375 } | ||
| 509 | $91: | ||
| 510 | # 376 h-=th; | ||
| 511 | subu $9, $9, $7 | ||
| 512 | # 377 | ||
| 513 | # 378 if (--count == 0) break; | ||
| 514 | addu $13, $13, -1 | ||
| 515 | beq $13, 0, $92 | ||
| 516 | # 379 | ||
| 517 | # 380 ret=q<<BN_BITS4; | ||
| 518 | sll $31, $5, 16 | ||
| 519 | # 381 h=((h<<BN_BITS4)|(l>>BN_BITS4))&BN_MASK2; | ||
| 520 | sll $24, $9, 16 | ||
| 521 | srl $15, $12, 16 | ||
| 522 | or $9, $24, $15 | ||
| 523 | # 382 l=(l&BN_MASK2l)<<BN_BITS4; | ||
| 524 | and $12, $12, 65535 | ||
| 525 | sll $12, $12, 16 | ||
| 526 | # 383 } | ||
| 527 | b $84 | ||
| 528 | $92: | ||
| 529 | # 384 ret|=q; | ||
| 530 | or $31, $31, $5 | ||
| 531 | # 385 return(ret); | ||
| 532 | move $2, $31 | ||
| 533 | $93: | ||
| 534 | lw $16, 48($sp) | ||
| 535 | lw $31, 56($sp) | ||
| 536 | addu $sp, 64 | ||
| 537 | j $31 | ||
| 538 | .end bn_div64 | ||
| 539 | |||
diff --git a/src/lib/libssl/src/crypto/bn/asm/pa-risc.s b/src/lib/libssl/src/crypto/bn/asm/pa-risc.s deleted file mode 100644 index 775130a191..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/pa-risc.s +++ /dev/null | |||
| @@ -1,710 +0,0 @@ | |||
| 1 | .SPACE $PRIVATE$ | ||
| 2 | .SUBSPA $DATA$,QUAD=1,ALIGN=8,ACCESS=31 | ||
| 3 | .SUBSPA $BSS$,QUAD=1,ALIGN=8,ACCESS=31,ZERO,SORT=82 | ||
| 4 | .SPACE $TEXT$ | ||
| 5 | .SUBSPA $LIT$,QUAD=0,ALIGN=8,ACCESS=44 | ||
| 6 | .SUBSPA $CODE$,QUAD=0,ALIGN=8,ACCESS=44,CODE_ONLY | ||
| 7 | .IMPORT $global$,DATA | ||
| 8 | .IMPORT $$dyncall,MILLICODE | ||
| 9 | ; gcc_compiled.: | ||
| 10 | .SPACE $TEXT$ | ||
| 11 | .SUBSPA $CODE$ | ||
| 12 | |||
| 13 | .align 4 | ||
| 14 | .EXPORT bn_mul_add_words,ENTRY,PRIV_LEV=3,ARGW0=GR,ARGW1=GR,ARGW2=GR,ARGW3=GR,RTNVAL=GR | ||
| 15 | bn_mul_add_words | ||
| 16 | .PROC | ||
| 17 | .CALLINFO FRAME=0,CALLS,SAVE_RP | ||
| 18 | .ENTRY | ||
| 19 | stw %r2,-20(0,%r30) | ||
| 20 | ldi 0,%r28 | ||
| 21 | extru %r23,31,16,%r2 | ||
| 22 | stw %r2,-16(0,%r30) | ||
| 23 | extru %r23,15,16,%r23 | ||
| 24 | ldil L'65536,%r31 | ||
| 25 | fldws -16(0,%r30),%fr11R | ||
| 26 | stw %r23,-16(0,%r30) | ||
| 27 | ldo 12(%r25),%r29 | ||
| 28 | ldo 12(%r26),%r23 | ||
| 29 | fldws -16(0,%r30),%fr11L | ||
| 30 | L$0002 | ||
| 31 | ldw 0(0,%r25),%r19 | ||
| 32 | extru %r19,31,16,%r20 | ||
| 33 | stw %r20,-16(0,%r30) | ||
| 34 | extru %r19,15,16,%r19 | ||
| 35 | fldws -16(0,%r30),%fr22L | ||
| 36 | stw %r19,-16(0,%r30) | ||
| 37 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 38 | fldws -16(0,%r30),%fr22L | ||
| 39 | fstws %fr8R,-16(0,%r30) | ||
| 40 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 41 | ldw -16(0,%r30),%r2 | ||
| 42 | stw %r20,-16(0,%r30) | ||
| 43 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 44 | fldws -16(0,%r30),%fr22L | ||
| 45 | fstws %fr10R,-16(0,%r30) | ||
| 46 | copy %r2,%r22 | ||
| 47 | ldw -16(0,%r30),%r2 | ||
| 48 | fstws %fr9R,-16(0,%r30) | ||
| 49 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 50 | copy %r2,%r19 | ||
| 51 | ldw -16(0,%r30),%r2 | ||
| 52 | fstws %fr8R,-16(0,%r30) | ||
| 53 | copy %r2,%r20 | ||
| 54 | ldw -16(0,%r30),%r2 | ||
| 55 | addl %r2,%r19,%r21 | ||
| 56 | comclr,<<= %r19,%r21,0 | ||
| 57 | addl %r20,%r31,%r20 | ||
| 58 | L$0005 | ||
| 59 | extru %r21,15,16,%r19 | ||
| 60 | addl %r20,%r19,%r20 | ||
| 61 | zdep %r21,15,16,%r19 | ||
| 62 | addl %r22,%r19,%r22 | ||
| 63 | comclr,<<= %r19,%r22,0 | ||
| 64 | addi,tr 1,%r20,%r19 | ||
| 65 | copy %r20,%r19 | ||
| 66 | addl %r22,%r28,%r20 | ||
| 67 | comclr,<<= %r28,%r20,0 | ||
| 68 | addi 1,%r19,%r19 | ||
| 69 | ldw 0(0,%r26),%r28 | ||
| 70 | addl %r20,%r28,%r20 | ||
| 71 | comclr,<<= %r28,%r20,0 | ||
| 72 | addi,tr 1,%r19,%r28 | ||
| 73 | copy %r19,%r28 | ||
| 74 | addib,= -1,%r24,L$0003 | ||
| 75 | stw %r20,0(0,%r26) | ||
| 76 | ldw -8(0,%r29),%r19 | ||
| 77 | extru %r19,31,16,%r20 | ||
| 78 | stw %r20,-16(0,%r30) | ||
| 79 | extru %r19,15,16,%r19 | ||
| 80 | fldws -16(0,%r30),%fr22L | ||
| 81 | stw %r19,-16(0,%r30) | ||
| 82 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 83 | fldws -16(0,%r30),%fr22L | ||
| 84 | fstws %fr8R,-16(0,%r30) | ||
| 85 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 86 | ldw -16(0,%r30),%r2 | ||
| 87 | stw %r20,-16(0,%r30) | ||
| 88 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 89 | fldws -16(0,%r30),%fr22L | ||
| 90 | fstws %fr10R,-16(0,%r30) | ||
| 91 | copy %r2,%r22 | ||
| 92 | ldw -16(0,%r30),%r2 | ||
| 93 | fstws %fr9R,-16(0,%r30) | ||
| 94 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 95 | copy %r2,%r19 | ||
| 96 | ldw -16(0,%r30),%r2 | ||
| 97 | fstws %fr8R,-16(0,%r30) | ||
| 98 | copy %r2,%r20 | ||
| 99 | ldw -16(0,%r30),%r2 | ||
| 100 | addl %r2,%r19,%r21 | ||
| 101 | comclr,<<= %r19,%r21,0 | ||
| 102 | addl %r20,%r31,%r20 | ||
| 103 | L$0010 | ||
| 104 | extru %r21,15,16,%r19 | ||
| 105 | addl %r20,%r19,%r20 | ||
| 106 | zdep %r21,15,16,%r19 | ||
| 107 | addl %r22,%r19,%r22 | ||
| 108 | comclr,<<= %r19,%r22,0 | ||
| 109 | addi,tr 1,%r20,%r19 | ||
| 110 | copy %r20,%r19 | ||
| 111 | addl %r22,%r28,%r20 | ||
| 112 | comclr,<<= %r28,%r20,0 | ||
| 113 | addi 1,%r19,%r19 | ||
| 114 | ldw -8(0,%r23),%r28 | ||
| 115 | addl %r20,%r28,%r20 | ||
| 116 | comclr,<<= %r28,%r20,0 | ||
| 117 | addi,tr 1,%r19,%r28 | ||
| 118 | copy %r19,%r28 | ||
| 119 | addib,= -1,%r24,L$0003 | ||
| 120 | stw %r20,-8(0,%r23) | ||
| 121 | ldw -4(0,%r29),%r19 | ||
| 122 | extru %r19,31,16,%r20 | ||
| 123 | stw %r20,-16(0,%r30) | ||
| 124 | extru %r19,15,16,%r19 | ||
| 125 | fldws -16(0,%r30),%fr22L | ||
| 126 | stw %r19,-16(0,%r30) | ||
| 127 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 128 | fldws -16(0,%r30),%fr22L | ||
| 129 | fstws %fr8R,-16(0,%r30) | ||
| 130 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 131 | ldw -16(0,%r30),%r2 | ||
| 132 | stw %r20,-16(0,%r30) | ||
| 133 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 134 | fldws -16(0,%r30),%fr22L | ||
| 135 | fstws %fr10R,-16(0,%r30) | ||
| 136 | copy %r2,%r22 | ||
| 137 | ldw -16(0,%r30),%r2 | ||
| 138 | fstws %fr9R,-16(0,%r30) | ||
| 139 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 140 | copy %r2,%r19 | ||
| 141 | ldw -16(0,%r30),%r2 | ||
| 142 | fstws %fr8R,-16(0,%r30) | ||
| 143 | copy %r2,%r20 | ||
| 144 | ldw -16(0,%r30),%r2 | ||
| 145 | addl %r2,%r19,%r21 | ||
| 146 | comclr,<<= %r19,%r21,0 | ||
| 147 | addl %r20,%r31,%r20 | ||
| 148 | L$0015 | ||
| 149 | extru %r21,15,16,%r19 | ||
| 150 | addl %r20,%r19,%r20 | ||
| 151 | zdep %r21,15,16,%r19 | ||
| 152 | addl %r22,%r19,%r22 | ||
| 153 | comclr,<<= %r19,%r22,0 | ||
| 154 | addi,tr 1,%r20,%r19 | ||
| 155 | copy %r20,%r19 | ||
| 156 | addl %r22,%r28,%r20 | ||
| 157 | comclr,<<= %r28,%r20,0 | ||
| 158 | addi 1,%r19,%r19 | ||
| 159 | ldw -4(0,%r23),%r28 | ||
| 160 | addl %r20,%r28,%r20 | ||
| 161 | comclr,<<= %r28,%r20,0 | ||
| 162 | addi,tr 1,%r19,%r28 | ||
| 163 | copy %r19,%r28 | ||
| 164 | addib,= -1,%r24,L$0003 | ||
| 165 | stw %r20,-4(0,%r23) | ||
| 166 | ldw 0(0,%r29),%r19 | ||
| 167 | extru %r19,31,16,%r20 | ||
| 168 | stw %r20,-16(0,%r30) | ||
| 169 | extru %r19,15,16,%r19 | ||
| 170 | fldws -16(0,%r30),%fr22L | ||
| 171 | stw %r19,-16(0,%r30) | ||
| 172 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 173 | fldws -16(0,%r30),%fr22L | ||
| 174 | fstws %fr8R,-16(0,%r30) | ||
| 175 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 176 | ldw -16(0,%r30),%r2 | ||
| 177 | stw %r20,-16(0,%r30) | ||
| 178 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 179 | fldws -16(0,%r30),%fr22L | ||
| 180 | fstws %fr10R,-16(0,%r30) | ||
| 181 | copy %r2,%r22 | ||
| 182 | ldw -16(0,%r30),%r2 | ||
| 183 | fstws %fr9R,-16(0,%r30) | ||
| 184 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 185 | copy %r2,%r19 | ||
| 186 | ldw -16(0,%r30),%r2 | ||
| 187 | fstws %fr8R,-16(0,%r30) | ||
| 188 | copy %r2,%r20 | ||
| 189 | ldw -16(0,%r30),%r2 | ||
| 190 | addl %r2,%r19,%r21 | ||
| 191 | comclr,<<= %r19,%r21,0 | ||
| 192 | addl %r20,%r31,%r20 | ||
| 193 | L$0020 | ||
| 194 | extru %r21,15,16,%r19 | ||
| 195 | addl %r20,%r19,%r20 | ||
| 196 | zdep %r21,15,16,%r19 | ||
| 197 | addl %r22,%r19,%r22 | ||
| 198 | comclr,<<= %r19,%r22,0 | ||
| 199 | addi,tr 1,%r20,%r19 | ||
| 200 | copy %r20,%r19 | ||
| 201 | addl %r22,%r28,%r20 | ||
| 202 | comclr,<<= %r28,%r20,0 | ||
| 203 | addi 1,%r19,%r19 | ||
| 204 | ldw 0(0,%r23),%r28 | ||
| 205 | addl %r20,%r28,%r20 | ||
| 206 | comclr,<<= %r28,%r20,0 | ||
| 207 | addi,tr 1,%r19,%r28 | ||
| 208 | copy %r19,%r28 | ||
| 209 | addib,= -1,%r24,L$0003 | ||
| 210 | stw %r20,0(0,%r23) | ||
| 211 | ldo 16(%r29),%r29 | ||
| 212 | ldo 16(%r25),%r25 | ||
| 213 | ldo 16(%r23),%r23 | ||
| 214 | bl L$0002,0 | ||
| 215 | ldo 16(%r26),%r26 | ||
| 216 | L$0003 | ||
| 217 | ldw -20(0,%r30),%r2 | ||
| 218 | bv,n 0(%r2) | ||
| 219 | .EXIT | ||
| 220 | .PROCEND | ||
| 221 | .align 4 | ||
| 222 | .EXPORT bn_mul_words,ENTRY,PRIV_LEV=3,ARGW0=GR,ARGW1=GR,ARGW2=GR,ARGW3=GR,RTNVAL=GR | ||
| 223 | bn_mul_words | ||
| 224 | .PROC | ||
| 225 | .CALLINFO FRAME=0,CALLS,SAVE_RP | ||
| 226 | .ENTRY | ||
| 227 | stw %r2,-20(0,%r30) | ||
| 228 | ldi 0,%r28 | ||
| 229 | extru %r23,31,16,%r2 | ||
| 230 | stw %r2,-16(0,%r30) | ||
| 231 | extru %r23,15,16,%r23 | ||
| 232 | ldil L'65536,%r31 | ||
| 233 | fldws -16(0,%r30),%fr11R | ||
| 234 | stw %r23,-16(0,%r30) | ||
| 235 | ldo 12(%r26),%r29 | ||
| 236 | ldo 12(%r25),%r23 | ||
| 237 | fldws -16(0,%r30),%fr11L | ||
| 238 | L$0026 | ||
| 239 | ldw 0(0,%r25),%r19 | ||
| 240 | extru %r19,31,16,%r20 | ||
| 241 | stw %r20,-16(0,%r30) | ||
| 242 | extru %r19,15,16,%r19 | ||
| 243 | fldws -16(0,%r30),%fr22L | ||
| 244 | stw %r19,-16(0,%r30) | ||
| 245 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 246 | fldws -16(0,%r30),%fr22L | ||
| 247 | fstws %fr8R,-16(0,%r30) | ||
| 248 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 249 | ldw -16(0,%r30),%r2 | ||
| 250 | stw %r20,-16(0,%r30) | ||
| 251 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 252 | fldws -16(0,%r30),%fr22L | ||
| 253 | fstws %fr10R,-16(0,%r30) | ||
| 254 | copy %r2,%r22 | ||
| 255 | ldw -16(0,%r30),%r2 | ||
| 256 | fstws %fr9R,-16(0,%r30) | ||
| 257 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 258 | copy %r2,%r19 | ||
| 259 | ldw -16(0,%r30),%r2 | ||
| 260 | fstws %fr8R,-16(0,%r30) | ||
| 261 | copy %r2,%r20 | ||
| 262 | ldw -16(0,%r30),%r2 | ||
| 263 | addl %r2,%r19,%r21 | ||
| 264 | comclr,<<= %r19,%r21,0 | ||
| 265 | addl %r20,%r31,%r20 | ||
| 266 | L$0029 | ||
| 267 | extru %r21,15,16,%r19 | ||
| 268 | addl %r20,%r19,%r20 | ||
| 269 | zdep %r21,15,16,%r19 | ||
| 270 | addl %r22,%r19,%r22 | ||
| 271 | comclr,<<= %r19,%r22,0 | ||
| 272 | addi,tr 1,%r20,%r19 | ||
| 273 | copy %r20,%r19 | ||
| 274 | addl %r22,%r28,%r20 | ||
| 275 | comclr,<<= %r28,%r20,0 | ||
| 276 | addi,tr 1,%r19,%r28 | ||
| 277 | copy %r19,%r28 | ||
| 278 | addib,= -1,%r24,L$0027 | ||
| 279 | stw %r20,0(0,%r26) | ||
| 280 | ldw -8(0,%r23),%r19 | ||
| 281 | extru %r19,31,16,%r20 | ||
| 282 | stw %r20,-16(0,%r30) | ||
| 283 | extru %r19,15,16,%r19 | ||
| 284 | fldws -16(0,%r30),%fr22L | ||
| 285 | stw %r19,-16(0,%r30) | ||
| 286 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 287 | fldws -16(0,%r30),%fr22L | ||
| 288 | fstws %fr8R,-16(0,%r30) | ||
| 289 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 290 | ldw -16(0,%r30),%r2 | ||
| 291 | stw %r20,-16(0,%r30) | ||
| 292 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 293 | fldws -16(0,%r30),%fr22L | ||
| 294 | fstws %fr10R,-16(0,%r30) | ||
| 295 | copy %r2,%r22 | ||
| 296 | ldw -16(0,%r30),%r2 | ||
| 297 | fstws %fr9R,-16(0,%r30) | ||
| 298 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 299 | copy %r2,%r19 | ||
| 300 | ldw -16(0,%r30),%r2 | ||
| 301 | fstws %fr8R,-16(0,%r30) | ||
| 302 | copy %r2,%r20 | ||
| 303 | ldw -16(0,%r30),%r2 | ||
| 304 | addl %r2,%r19,%r21 | ||
| 305 | comclr,<<= %r19,%r21,0 | ||
| 306 | addl %r20,%r31,%r20 | ||
| 307 | L$0033 | ||
| 308 | extru %r21,15,16,%r19 | ||
| 309 | addl %r20,%r19,%r20 | ||
| 310 | zdep %r21,15,16,%r19 | ||
| 311 | addl %r22,%r19,%r22 | ||
| 312 | comclr,<<= %r19,%r22,0 | ||
| 313 | addi,tr 1,%r20,%r19 | ||
| 314 | copy %r20,%r19 | ||
| 315 | addl %r22,%r28,%r20 | ||
| 316 | comclr,<<= %r28,%r20,0 | ||
| 317 | addi,tr 1,%r19,%r28 | ||
| 318 | copy %r19,%r28 | ||
| 319 | addib,= -1,%r24,L$0027 | ||
| 320 | stw %r20,-8(0,%r29) | ||
| 321 | ldw -4(0,%r23),%r19 | ||
| 322 | extru %r19,31,16,%r20 | ||
| 323 | stw %r20,-16(0,%r30) | ||
| 324 | extru %r19,15,16,%r19 | ||
| 325 | fldws -16(0,%r30),%fr22L | ||
| 326 | stw %r19,-16(0,%r30) | ||
| 327 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 328 | fldws -16(0,%r30),%fr22L | ||
| 329 | fstws %fr8R,-16(0,%r30) | ||
| 330 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 331 | ldw -16(0,%r30),%r2 | ||
| 332 | stw %r20,-16(0,%r30) | ||
| 333 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 334 | fldws -16(0,%r30),%fr22L | ||
| 335 | fstws %fr10R,-16(0,%r30) | ||
| 336 | copy %r2,%r22 | ||
| 337 | ldw -16(0,%r30),%r2 | ||
| 338 | fstws %fr9R,-16(0,%r30) | ||
| 339 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 340 | copy %r2,%r19 | ||
| 341 | ldw -16(0,%r30),%r2 | ||
| 342 | fstws %fr8R,-16(0,%r30) | ||
| 343 | copy %r2,%r20 | ||
| 344 | ldw -16(0,%r30),%r2 | ||
| 345 | addl %r2,%r19,%r21 | ||
| 346 | comclr,<<= %r19,%r21,0 | ||
| 347 | addl %r20,%r31,%r20 | ||
| 348 | L$0037 | ||
| 349 | extru %r21,15,16,%r19 | ||
| 350 | addl %r20,%r19,%r20 | ||
| 351 | zdep %r21,15,16,%r19 | ||
| 352 | addl %r22,%r19,%r22 | ||
| 353 | comclr,<<= %r19,%r22,0 | ||
| 354 | addi,tr 1,%r20,%r19 | ||
| 355 | copy %r20,%r19 | ||
| 356 | addl %r22,%r28,%r20 | ||
| 357 | comclr,<<= %r28,%r20,0 | ||
| 358 | addi,tr 1,%r19,%r28 | ||
| 359 | copy %r19,%r28 | ||
| 360 | addib,= -1,%r24,L$0027 | ||
| 361 | stw %r20,-4(0,%r29) | ||
| 362 | ldw 0(0,%r23),%r19 | ||
| 363 | extru %r19,31,16,%r20 | ||
| 364 | stw %r20,-16(0,%r30) | ||
| 365 | extru %r19,15,16,%r19 | ||
| 366 | fldws -16(0,%r30),%fr22L | ||
| 367 | stw %r19,-16(0,%r30) | ||
| 368 | xmpyu %fr22L,%fr11R,%fr8 | ||
| 369 | fldws -16(0,%r30),%fr22L | ||
| 370 | fstws %fr8R,-16(0,%r30) | ||
| 371 | xmpyu %fr11R,%fr22L,%fr10 | ||
| 372 | ldw -16(0,%r30),%r2 | ||
| 373 | stw %r20,-16(0,%r30) | ||
| 374 | xmpyu %fr22L,%fr11L,%fr9 | ||
| 375 | fldws -16(0,%r30),%fr22L | ||
| 376 | fstws %fr10R,-16(0,%r30) | ||
| 377 | copy %r2,%r22 | ||
| 378 | ldw -16(0,%r30),%r2 | ||
| 379 | fstws %fr9R,-16(0,%r30) | ||
| 380 | xmpyu %fr11L,%fr22L,%fr8 | ||
| 381 | copy %r2,%r19 | ||
| 382 | ldw -16(0,%r30),%r2 | ||
| 383 | fstws %fr8R,-16(0,%r30) | ||
| 384 | copy %r2,%r20 | ||
| 385 | ldw -16(0,%r30),%r2 | ||
| 386 | addl %r2,%r19,%r21 | ||
| 387 | comclr,<<= %r19,%r21,0 | ||
| 388 | addl %r20,%r31,%r20 | ||
| 389 | L$0041 | ||
| 390 | extru %r21,15,16,%r19 | ||
| 391 | addl %r20,%r19,%r20 | ||
| 392 | zdep %r21,15,16,%r19 | ||
| 393 | addl %r22,%r19,%r22 | ||
| 394 | comclr,<<= %r19,%r22,0 | ||
| 395 | addi,tr 1,%r20,%r19 | ||
| 396 | copy %r20,%r19 | ||
| 397 | addl %r22,%r28,%r20 | ||
| 398 | comclr,<<= %r28,%r20,0 | ||
| 399 | addi,tr 1,%r19,%r28 | ||
| 400 | copy %r19,%r28 | ||
| 401 | addib,= -1,%r24,L$0027 | ||
| 402 | stw %r20,0(0,%r29) | ||
| 403 | ldo 16(%r23),%r23 | ||
| 404 | ldo 16(%r25),%r25 | ||
| 405 | ldo 16(%r29),%r29 | ||
| 406 | bl L$0026,0 | ||
| 407 | ldo 16(%r26),%r26 | ||
| 408 | L$0027 | ||
| 409 | ldw -20(0,%r30),%r2 | ||
| 410 | bv,n 0(%r2) | ||
| 411 | .EXIT | ||
| 412 | .PROCEND | ||
| 413 | .align 4 | ||
| 414 | .EXPORT bn_sqr_words,ENTRY,PRIV_LEV=3,ARGW0=GR,ARGW1=GR,ARGW2=GR | ||
| 415 | bn_sqr_words | ||
| 416 | .PROC | ||
| 417 | .CALLINFO FRAME=0,NO_CALLS | ||
| 418 | .ENTRY | ||
| 419 | ldo 28(%r26),%r23 | ||
| 420 | ldo 12(%r25),%r28 | ||
| 421 | L$0046 | ||
| 422 | ldw 0(0,%r25),%r21 | ||
| 423 | extru %r21,31,16,%r22 | ||
| 424 | stw %r22,-16(0,%r30) | ||
| 425 | extru %r21,15,16,%r21 | ||
| 426 | fldws -16(0,%r30),%fr10L | ||
| 427 | stw %r21,-16(0,%r30) | ||
| 428 | fldws -16(0,%r30),%fr10R | ||
| 429 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 430 | fstws %fr8R,-16(0,%r30) | ||
| 431 | ldw -16(0,%r30),%r29 | ||
| 432 | stw %r22,-16(0,%r30) | ||
| 433 | fldws -16(0,%r30),%fr10R | ||
| 434 | stw %r21,-16(0,%r30) | ||
| 435 | copy %r29,%r19 | ||
| 436 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 437 | fldws -16(0,%r30),%fr10L | ||
| 438 | stw %r21,-16(0,%r30) | ||
| 439 | fldws -16(0,%r30),%fr10R | ||
| 440 | fstws %fr8R,-16(0,%r30) | ||
| 441 | extru %r19,16,17,%r20 | ||
| 442 | zdep %r19,14,15,%r19 | ||
| 443 | ldw -16(0,%r30),%r29 | ||
| 444 | xmpyu %fr10L,%fr10R,%fr9 | ||
| 445 | addl %r29,%r19,%r22 | ||
| 446 | stw %r22,0(0,%r26) | ||
| 447 | fstws %fr9R,-16(0,%r30) | ||
| 448 | ldw -16(0,%r30),%r29 | ||
| 449 | addl %r29,%r20,%r21 | ||
| 450 | comclr,<<= %r19,%r22,0 | ||
| 451 | addi 1,%r21,%r21 | ||
| 452 | addib,= -1,%r24,L$0057 | ||
| 453 | stw %r21,-24(0,%r23) | ||
| 454 | ldw -8(0,%r28),%r21 | ||
| 455 | extru %r21,31,16,%r22 | ||
| 456 | stw %r22,-16(0,%r30) | ||
| 457 | extru %r21,15,16,%r21 | ||
| 458 | fldws -16(0,%r30),%fr10L | ||
| 459 | stw %r21,-16(0,%r30) | ||
| 460 | fldws -16(0,%r30),%fr10R | ||
| 461 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 462 | fstws %fr8R,-16(0,%r30) | ||
| 463 | ldw -16(0,%r30),%r29 | ||
| 464 | stw %r22,-16(0,%r30) | ||
| 465 | fldws -16(0,%r30),%fr10R | ||
| 466 | stw %r21,-16(0,%r30) | ||
| 467 | copy %r29,%r19 | ||
| 468 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 469 | fldws -16(0,%r30),%fr10L | ||
| 470 | stw %r21,-16(0,%r30) | ||
| 471 | fldws -16(0,%r30),%fr10R | ||
| 472 | fstws %fr8R,-16(0,%r30) | ||
| 473 | extru %r19,16,17,%r20 | ||
| 474 | zdep %r19,14,15,%r19 | ||
| 475 | ldw -16(0,%r30),%r29 | ||
| 476 | xmpyu %fr10L,%fr10R,%fr9 | ||
| 477 | addl %r29,%r19,%r22 | ||
| 478 | stw %r22,-20(0,%r23) | ||
| 479 | fstws %fr9R,-16(0,%r30) | ||
| 480 | ldw -16(0,%r30),%r29 | ||
| 481 | addl %r29,%r20,%r21 | ||
| 482 | comclr,<<= %r19,%r22,0 | ||
| 483 | addi 1,%r21,%r21 | ||
| 484 | addib,= -1,%r24,L$0057 | ||
| 485 | stw %r21,-16(0,%r23) | ||
| 486 | ldw -4(0,%r28),%r21 | ||
| 487 | extru %r21,31,16,%r22 | ||
| 488 | stw %r22,-16(0,%r30) | ||
| 489 | extru %r21,15,16,%r21 | ||
| 490 | fldws -16(0,%r30),%fr10L | ||
| 491 | stw %r21,-16(0,%r30) | ||
| 492 | fldws -16(0,%r30),%fr10R | ||
| 493 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 494 | fstws %fr8R,-16(0,%r30) | ||
| 495 | ldw -16(0,%r30),%r29 | ||
| 496 | stw %r22,-16(0,%r30) | ||
| 497 | fldws -16(0,%r30),%fr10R | ||
| 498 | stw %r21,-16(0,%r30) | ||
| 499 | copy %r29,%r19 | ||
| 500 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 501 | fldws -16(0,%r30),%fr10L | ||
| 502 | stw %r21,-16(0,%r30) | ||
| 503 | fldws -16(0,%r30),%fr10R | ||
| 504 | fstws %fr8R,-16(0,%r30) | ||
| 505 | extru %r19,16,17,%r20 | ||
| 506 | zdep %r19,14,15,%r19 | ||
| 507 | ldw -16(0,%r30),%r29 | ||
| 508 | xmpyu %fr10L,%fr10R,%fr9 | ||
| 509 | addl %r29,%r19,%r22 | ||
| 510 | stw %r22,-12(0,%r23) | ||
| 511 | fstws %fr9R,-16(0,%r30) | ||
| 512 | ldw -16(0,%r30),%r29 | ||
| 513 | addl %r29,%r20,%r21 | ||
| 514 | comclr,<<= %r19,%r22,0 | ||
| 515 | addi 1,%r21,%r21 | ||
| 516 | addib,= -1,%r24,L$0057 | ||
| 517 | stw %r21,-8(0,%r23) | ||
| 518 | ldw 0(0,%r28),%r21 | ||
| 519 | extru %r21,31,16,%r22 | ||
| 520 | stw %r22,-16(0,%r30) | ||
| 521 | extru %r21,15,16,%r21 | ||
| 522 | fldws -16(0,%r30),%fr10L | ||
| 523 | stw %r21,-16(0,%r30) | ||
| 524 | fldws -16(0,%r30),%fr10R | ||
| 525 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 526 | fstws %fr8R,-16(0,%r30) | ||
| 527 | ldw -16(0,%r30),%r29 | ||
| 528 | stw %r22,-16(0,%r30) | ||
| 529 | fldws -16(0,%r30),%fr10R | ||
| 530 | stw %r21,-16(0,%r30) | ||
| 531 | copy %r29,%r19 | ||
| 532 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 533 | fldws -16(0,%r30),%fr10L | ||
| 534 | stw %r21,-16(0,%r30) | ||
| 535 | fldws -16(0,%r30),%fr10R | ||
| 536 | fstws %fr8R,-16(0,%r30) | ||
| 537 | extru %r19,16,17,%r20 | ||
| 538 | zdep %r19,14,15,%r19 | ||
| 539 | ldw -16(0,%r30),%r29 | ||
| 540 | xmpyu %fr10L,%fr10R,%fr9 | ||
| 541 | addl %r29,%r19,%r22 | ||
| 542 | stw %r22,-4(0,%r23) | ||
| 543 | fstws %fr9R,-16(0,%r30) | ||
| 544 | ldw -16(0,%r30),%r29 | ||
| 545 | addl %r29,%r20,%r21 | ||
| 546 | comclr,<<= %r19,%r22,0 | ||
| 547 | addi 1,%r21,%r21 | ||
| 548 | addib,= -1,%r24,L$0057 | ||
| 549 | stw %r21,0(0,%r23) | ||
| 550 | ldo 16(%r28),%r28 | ||
| 551 | ldo 16(%r25),%r25 | ||
| 552 | ldo 32(%r23),%r23 | ||
| 553 | bl L$0046,0 | ||
| 554 | ldo 32(%r26),%r26 | ||
| 555 | L$0057 | ||
| 556 | bv,n 0(%r2) | ||
| 557 | .EXIT | ||
| 558 | .PROCEND | ||
| 559 | .IMPORT BN_num_bits_word,CODE | ||
| 560 | .IMPORT fprintf,CODE | ||
| 561 | .IMPORT __iob,DATA | ||
| 562 | .SPACE $TEXT$ | ||
| 563 | .SUBSPA $LIT$ | ||
| 564 | |||
| 565 | .align 4 | ||
| 566 | L$C0000 | ||
| 567 | .STRING "Division would overflow\x0a\x00" | ||
| 568 | .IMPORT abort,CODE | ||
| 569 | .SPACE $TEXT$ | ||
| 570 | .SUBSPA $CODE$ | ||
| 571 | |||
| 572 | .align 4 | ||
| 573 | .EXPORT bn_div64,ENTRY,PRIV_LEV=3,ARGW0=GR,ARGW1=GR,ARGW2=GR,RTNVAL=GR | ||
| 574 | bn_div64 | ||
| 575 | .PROC | ||
| 576 | .CALLINFO FRAME=128,CALLS,SAVE_RP,ENTRY_GR=8 | ||
| 577 | .ENTRY | ||
| 578 | stw %r2,-20(0,%r30) | ||
| 579 | stwm %r8,128(0,%r30) | ||
| 580 | stw %r7,-124(0,%r30) | ||
| 581 | stw %r4,-112(0,%r30) | ||
| 582 | stw %r3,-108(0,%r30) | ||
| 583 | copy %r26,%r3 | ||
| 584 | copy %r25,%r4 | ||
| 585 | stw %r6,-120(0,%r30) | ||
| 586 | ldi 0,%r7 | ||
| 587 | stw %r5,-116(0,%r30) | ||
| 588 | movb,<> %r24,%r5,L$0059 | ||
| 589 | ldi 2,%r6 | ||
| 590 | bl L$0076,0 | ||
| 591 | ldi -1,%r28 | ||
| 592 | L$0059 | ||
| 593 | .CALL ARGW0=GR | ||
| 594 | bl BN_num_bits_word,%r2 | ||
| 595 | copy %r5,%r26 | ||
| 596 | ldi 32,%r19 | ||
| 597 | comb,= %r19,%r28,L$0060 | ||
| 598 | subi 31,%r28,%r19 | ||
| 599 | mtsar %r19 | ||
| 600 | zvdepi 1,32,%r19 | ||
| 601 | comb,>>= %r19,%r3,L$0060 | ||
| 602 | addil LR'__iob-$global$+32,%r27 | ||
| 603 | ldo RR'__iob-$global$+32(%r1),%r26 | ||
| 604 | ldil LR'L$C0000,%r25 | ||
| 605 | .CALL ARGW0=GR,ARGW1=GR | ||
| 606 | bl fprintf,%r2 | ||
| 607 | ldo RR'L$C0000(%r25),%r25 | ||
| 608 | .CALL | ||
| 609 | bl abort,%r2 | ||
| 610 | nop | ||
| 611 | L$0060 | ||
| 612 | comb,>> %r5,%r3,L$0061 | ||
| 613 | subi 32,%r28,%r28 | ||
| 614 | sub %r3,%r5,%r3 | ||
| 615 | L$0061 | ||
| 616 | comib,= 0,%r28,L$0062 | ||
| 617 | subi 31,%r28,%r19 | ||
| 618 | mtsar %r19 | ||
| 619 | zvdep %r5,32,%r5 | ||
| 620 | zvdep %r3,32,%r21 | ||
| 621 | subi 32,%r28,%r20 | ||
| 622 | mtsar %r20 | ||
| 623 | vshd 0,%r4,%r20 | ||
| 624 | or %r21,%r20,%r3 | ||
| 625 | mtsar %r19 | ||
| 626 | zvdep %r4,32,%r4 | ||
| 627 | L$0062 | ||
| 628 | extru %r5,15,16,%r23 | ||
| 629 | extru %r5,31,16,%r28 | ||
| 630 | L$0063 | ||
| 631 | extru %r3,15,16,%r19 | ||
| 632 | comb,<> %r23,%r19,L$0066 | ||
| 633 | copy %r3,%r26 | ||
| 634 | bl L$0067,0 | ||
| 635 | zdepi -1,31,16,%r29 | ||
| 636 | L$0066 | ||
| 637 | .IMPORT $$divU,MILLICODE | ||
| 638 | bl $$divU,%r31 | ||
| 639 | copy %r23,%r25 | ||
| 640 | L$0067 | ||
| 641 | stw %r29,-16(0,%r30) | ||
| 642 | fldws -16(0,%r30),%fr10L | ||
| 643 | stw %r28,-16(0,%r30) | ||
| 644 | fldws -16(0,%r30),%fr10R | ||
| 645 | stw %r23,-16(0,%r30) | ||
| 646 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 647 | fldws -16(0,%r30),%fr10R | ||
| 648 | fstws %fr8R,-16(0,%r30) | ||
| 649 | xmpyu %fr10L,%fr10R,%fr9 | ||
| 650 | ldw -16(0,%r30),%r8 | ||
| 651 | fstws %fr9R,-16(0,%r30) | ||
| 652 | copy %r8,%r22 | ||
| 653 | ldw -16(0,%r30),%r8 | ||
| 654 | extru %r4,15,16,%r24 | ||
| 655 | copy %r8,%r21 | ||
| 656 | L$0068 | ||
| 657 | sub %r3,%r21,%r20 | ||
| 658 | copy %r20,%r19 | ||
| 659 | depi 0,31,16,%r19 | ||
| 660 | comib,<> 0,%r19,L$0069 | ||
| 661 | zdep %r20,15,16,%r19 | ||
| 662 | addl %r19,%r24,%r19 | ||
| 663 | comb,>>= %r19,%r22,L$0069 | ||
| 664 | sub %r22,%r28,%r22 | ||
| 665 | sub %r21,%r23,%r21 | ||
| 666 | bl L$0068,0 | ||
| 667 | ldo -1(%r29),%r29 | ||
| 668 | L$0069 | ||
| 669 | stw %r29,-16(0,%r30) | ||
| 670 | fldws -16(0,%r30),%fr10L | ||
| 671 | stw %r28,-16(0,%r30) | ||
| 672 | fldws -16(0,%r30),%fr10R | ||
| 673 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 674 | fstws %fr8R,-16(0,%r30) | ||
| 675 | ldw -16(0,%r30),%r8 | ||
| 676 | stw %r23,-16(0,%r30) | ||
| 677 | fldws -16(0,%r30),%fr10R | ||
| 678 | copy %r8,%r19 | ||
| 679 | xmpyu %fr10L,%fr10R,%fr8 | ||
| 680 | fstws %fr8R,-16(0,%r30) | ||
| 681 | extru %r19,15,16,%r20 | ||
| 682 | ldw -16(0,%r30),%r8 | ||
| 683 | zdep %r19,15,16,%r19 | ||
| 684 | addl %r8,%r20,%r20 | ||
| 685 | comclr,<<= %r19,%r4,0 | ||
| 686 | addi 1,%r20,%r20 | ||
| 687 | comb,<<= %r20,%r3,L$0074 | ||
| 688 | sub %r4,%r19,%r4 | ||
| 689 | addl %r3,%r5,%r3 | ||
| 690 | ldo -1(%r29),%r29 | ||
| 691 | L$0074 | ||
| 692 | addib,= -1,%r6,L$0064 | ||
| 693 | sub %r3,%r20,%r3 | ||
| 694 | zdep %r29,15,16,%r7 | ||
| 695 | shd %r3,%r4,16,%r3 | ||
| 696 | bl L$0063,0 | ||
| 697 | zdep %r4,15,16,%r4 | ||
| 698 | L$0064 | ||
| 699 | or %r7,%r29,%r28 | ||
| 700 | L$0076 | ||
| 701 | ldw -148(0,%r30),%r2 | ||
| 702 | ldw -124(0,%r30),%r7 | ||
| 703 | ldw -120(0,%r30),%r6 | ||
| 704 | ldw -116(0,%r30),%r5 | ||
| 705 | ldw -112(0,%r30),%r4 | ||
| 706 | ldw -108(0,%r30),%r3 | ||
| 707 | bv 0(%r2) | ||
| 708 | ldwm -128(0,%r30),%r8 | ||
| 709 | .EXIT | ||
| 710 | .PROCEND | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/r3000.s b/src/lib/libssl/src/crypto/bn/asm/r3000.s deleted file mode 100644 index e95269afa3..0000000000 --- a/src/lib/libssl/src/crypto/bn/asm/r3000.s +++ /dev/null | |||
| @@ -1,646 +0,0 @@ | |||
| 1 | .file 1 "../bn_mulw.c" | ||
| 2 | .set nobopt | ||
| 3 | .option pic2 | ||
| 4 | |||
| 5 | # GNU C 2.6.3 [AL 1.1, MM 40] SGI running IRIX 5.0 compiled by GNU C | ||
| 6 | |||
| 7 | # Cc1 defaults: | ||
| 8 | # -mabicalls | ||
| 9 | |||
| 10 | # Cc1 arguments (-G value = 0, Cpu = 3000, ISA = 1): | ||
| 11 | # -quiet -dumpbase -O2 -o | ||
| 12 | |||
| 13 | gcc2_compiled.: | ||
| 14 | __gnu_compiled_c: | ||
| 15 | .rdata | ||
| 16 | |||
| 17 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 18 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x34,0x39,0x20 | ||
| 19 | .byte 0x24,0x0 | ||
| 20 | |||
| 21 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 22 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x33,0x34,0x20 | ||
| 23 | .byte 0x24,0x0 | ||
| 24 | |||
| 25 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 26 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x35,0x20,0x24 | ||
| 27 | .byte 0x0 | ||
| 28 | |||
| 29 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 30 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x38,0x20,0x24 | ||
| 31 | .byte 0x0 | ||
| 32 | |||
| 33 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 34 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x32,0x33,0x20 | ||
| 35 | .byte 0x24,0x0 | ||
| 36 | |||
| 37 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 38 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x37,0x38,0x20 | ||
| 39 | .byte 0x24,0x0 | ||
| 40 | |||
| 41 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 42 | .byte 0x6e,0x3a,0x20,0x33,0x2e,0x37,0x30,0x20 | ||
| 43 | .byte 0x24,0x0 | ||
| 44 | |||
| 45 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 46 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x32,0x20,0x24 | ||
| 47 | .byte 0x0 | ||
| 48 | |||
| 49 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 50 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x34,0x20,0x24 | ||
| 51 | .byte 0x0 | ||
| 52 | |||
| 53 | .byte 0x24,0x52,0x65,0x76,0x69,0x73,0x69,0x6f | ||
| 54 | .byte 0x6e,0x3a,0x20,0x31,0x2e,0x38,0x20,0x24 | ||
| 55 | .byte 0x0 | ||
| 56 | .text | ||
| 57 | .align 2 | ||
| 58 | .globl bn_mul_add_words | ||
| 59 | .ent bn_mul_add_words | ||
| 60 | bn_mul_add_words: | ||
| 61 | .frame $sp,0,$31 # vars= 0, regs= 0/0, args= 0, extra= 0 | ||
| 62 | .mask 0x00000000,0 | ||
| 63 | .fmask 0x00000000,0 | ||
| 64 | .set noreorder | ||
| 65 | .cpload $25 | ||
| 66 | .set reorder | ||
| 67 | move $12,$4 | ||
| 68 | move $14,$5 | ||
| 69 | move $9,$6 | ||
| 70 | move $13,$7 | ||
| 71 | move $8,$0 | ||
| 72 | addu $10,$12,12 | ||
| 73 | addu $11,$14,12 | ||
| 74 | $L2: | ||
| 75 | lw $6,0($14) | ||
| 76 | #nop | ||
| 77 | multu $13,$6 | ||
| 78 | mfhi $6 | ||
| 79 | mflo $7 | ||
| 80 | #nop | ||
| 81 | move $5,$8 | ||
| 82 | move $4,$0 | ||
| 83 | lw $3,0($12) | ||
| 84 | addu $9,$9,-1 | ||
| 85 | move $2,$0 | ||
| 86 | addu $7,$7,$3 | ||
| 87 | sltu $8,$7,$3 | ||
| 88 | addu $6,$6,$2 | ||
| 89 | addu $6,$6,$8 | ||
| 90 | addu $7,$7,$5 | ||
| 91 | sltu $2,$7,$5 | ||
| 92 | addu $6,$6,$4 | ||
| 93 | addu $6,$6,$2 | ||
| 94 | srl $3,$6,0 | ||
| 95 | move $2,$0 | ||
| 96 | move $8,$3 | ||
| 97 | .set noreorder | ||
| 98 | .set nomacro | ||
| 99 | beq $9,$0,$L3 | ||
| 100 | sw $7,0($12) | ||
| 101 | .set macro | ||
| 102 | .set reorder | ||
| 103 | |||
| 104 | lw $6,-8($11) | ||
| 105 | #nop | ||
| 106 | multu $13,$6 | ||
| 107 | mfhi $6 | ||
| 108 | mflo $7 | ||
| 109 | #nop | ||
| 110 | move $5,$8 | ||
| 111 | move $4,$0 | ||
| 112 | lw $3,-8($10) | ||
| 113 | addu $9,$9,-1 | ||
| 114 | move $2,$0 | ||
| 115 | addu $7,$7,$3 | ||
| 116 | sltu $8,$7,$3 | ||
| 117 | addu $6,$6,$2 | ||
| 118 | addu $6,$6,$8 | ||
| 119 | addu $7,$7,$5 | ||
| 120 | sltu $2,$7,$5 | ||
| 121 | addu $6,$6,$4 | ||
| 122 | addu $6,$6,$2 | ||
| 123 | srl $3,$6,0 | ||
| 124 | move $2,$0 | ||
| 125 | move $8,$3 | ||
| 126 | .set noreorder | ||
| 127 | .set nomacro | ||
| 128 | beq $9,$0,$L3 | ||
| 129 | sw $7,-8($10) | ||
| 130 | .set macro | ||
| 131 | .set reorder | ||
| 132 | |||
| 133 | lw $6,-4($11) | ||
| 134 | #nop | ||
| 135 | multu $13,$6 | ||
| 136 | mfhi $6 | ||
| 137 | mflo $7 | ||
| 138 | #nop | ||
| 139 | move $5,$8 | ||
| 140 | move $4,$0 | ||
| 141 | lw $3,-4($10) | ||
| 142 | addu $9,$9,-1 | ||
| 143 | move $2,$0 | ||
| 144 | addu $7,$7,$3 | ||
| 145 | sltu $8,$7,$3 | ||
| 146 | addu $6,$6,$2 | ||
| 147 | addu $6,$6,$8 | ||
| 148 | addu $7,$7,$5 | ||
| 149 | sltu $2,$7,$5 | ||
| 150 | addu $6,$6,$4 | ||
| 151 | addu $6,$6,$2 | ||
| 152 | srl $3,$6,0 | ||
| 153 | move $2,$0 | ||
| 154 | move $8,$3 | ||
| 155 | .set noreorder | ||
| 156 | .set nomacro | ||
| 157 | beq $9,$0,$L3 | ||
| 158 | sw $7,-4($10) | ||
| 159 | .set macro | ||
| 160 | .set reorder | ||
| 161 | |||
| 162 | lw $6,0($11) | ||
| 163 | #nop | ||
| 164 | multu $13,$6 | ||
| 165 | mfhi $6 | ||
| 166 | mflo $7 | ||
| 167 | #nop | ||
| 168 | move $5,$8 | ||
| 169 | move $4,$0 | ||
| 170 | lw $3,0($10) | ||
| 171 | addu $9,$9,-1 | ||
| 172 | move $2,$0 | ||
| 173 | addu $7,$7,$3 | ||
| 174 | sltu $8,$7,$3 | ||
| 175 | addu $6,$6,$2 | ||
| 176 | addu $6,$6,$8 | ||
| 177 | addu $7,$7,$5 | ||
| 178 | sltu $2,$7,$5 | ||
| 179 | addu $6,$6,$4 | ||
| 180 | addu $6,$6,$2 | ||
| 181 | srl $3,$6,0 | ||
| 182 | move $2,$0 | ||
| 183 | move $8,$3 | ||
| 184 | .set noreorder | ||
| 185 | .set nomacro | ||
| 186 | beq $9,$0,$L3 | ||
| 187 | sw $7,0($10) | ||
| 188 | .set macro | ||
| 189 | .set reorder | ||
| 190 | |||
| 191 | addu $11,$11,16 | ||
| 192 | addu $14,$14,16 | ||
| 193 | addu $10,$10,16 | ||
| 194 | .set noreorder | ||
| 195 | .set nomacro | ||
| 196 | j $L2 | ||
| 197 | addu $12,$12,16 | ||
| 198 | .set macro | ||
| 199 | .set reorder | ||
| 200 | |||
| 201 | $L3: | ||
| 202 | .set noreorder | ||
| 203 | .set nomacro | ||
| 204 | j $31 | ||
| 205 | move $2,$8 | ||
| 206 | .set macro | ||
| 207 | .set reorder | ||
| 208 | |||
| 209 | .end bn_mul_add_words | ||
| 210 | .align 2 | ||
| 211 | .globl bn_mul_words | ||
| 212 | .ent bn_mul_words | ||
| 213 | bn_mul_words: | ||
| 214 | .frame $sp,0,$31 # vars= 0, regs= 0/0, args= 0, extra= 0 | ||
| 215 | .mask 0x00000000,0 | ||
| 216 | .fmask 0x00000000,0 | ||
| 217 | .set noreorder | ||
| 218 | .cpload $25 | ||
| 219 | .set reorder | ||
| 220 | move $11,$4 | ||
| 221 | move $12,$5 | ||
| 222 | move $8,$6 | ||
| 223 | move $6,$0 | ||
| 224 | addu $10,$11,12 | ||
| 225 | addu $9,$12,12 | ||
| 226 | $L10: | ||
| 227 | lw $4,0($12) | ||
| 228 | #nop | ||
| 229 | multu $7,$4 | ||
| 230 | mfhi $4 | ||
| 231 | mflo $5 | ||
| 232 | #nop | ||
| 233 | move $3,$6 | ||
| 234 | move $2,$0 | ||
| 235 | addu $8,$8,-1 | ||
| 236 | addu $5,$5,$3 | ||
| 237 | sltu $6,$5,$3 | ||
| 238 | addu $4,$4,$2 | ||
| 239 | addu $4,$4,$6 | ||
| 240 | srl $3,$4,0 | ||
| 241 | move $2,$0 | ||
| 242 | move $6,$3 | ||
| 243 | .set noreorder | ||
| 244 | .set nomacro | ||
| 245 | beq $8,$0,$L11 | ||
| 246 | sw $5,0($11) | ||
| 247 | .set macro | ||
| 248 | .set reorder | ||
| 249 | |||
| 250 | lw $4,-8($9) | ||
| 251 | #nop | ||
| 252 | multu $7,$4 | ||
| 253 | mfhi $4 | ||
| 254 | mflo $5 | ||
| 255 | #nop | ||
| 256 | move $3,$6 | ||
| 257 | move $2,$0 | ||
| 258 | addu $8,$8,-1 | ||
| 259 | addu $5,$5,$3 | ||
| 260 | sltu $6,$5,$3 | ||
| 261 | addu $4,$4,$2 | ||
| 262 | addu $4,$4,$6 | ||
| 263 | srl $3,$4,0 | ||
| 264 | move $2,$0 | ||
| 265 | move $6,$3 | ||
| 266 | .set noreorder | ||
| 267 | .set nomacro | ||
| 268 | beq $8,$0,$L11 | ||
| 269 | sw $5,-8($10) | ||
| 270 | .set macro | ||
| 271 | .set reorder | ||
| 272 | |||
| 273 | lw $4,-4($9) | ||
| 274 | #nop | ||
| 275 | multu $7,$4 | ||
| 276 | mfhi $4 | ||
| 277 | mflo $5 | ||
| 278 | #nop | ||
| 279 | move $3,$6 | ||
| 280 | move $2,$0 | ||
| 281 | addu $8,$8,-1 | ||
| 282 | addu $5,$5,$3 | ||
| 283 | sltu $6,$5,$3 | ||
| 284 | addu $4,$4,$2 | ||
| 285 | addu $4,$4,$6 | ||
| 286 | srl $3,$4,0 | ||
| 287 | move $2,$0 | ||
| 288 | move $6,$3 | ||
| 289 | .set noreorder | ||
| 290 | .set nomacro | ||
| 291 | beq $8,$0,$L11 | ||
| 292 | sw $5,-4($10) | ||
| 293 | .set macro | ||
| 294 | .set reorder | ||
| 295 | |||
| 296 | lw $4,0($9) | ||
| 297 | #nop | ||
| 298 | multu $7,$4 | ||
| 299 | mfhi $4 | ||
| 300 | mflo $5 | ||
| 301 | #nop | ||
| 302 | move $3,$6 | ||
| 303 | move $2,$0 | ||
| 304 | addu $8,$8,-1 | ||
| 305 | addu $5,$5,$3 | ||
| 306 | sltu $6,$5,$3 | ||
| 307 | addu $4,$4,$2 | ||
| 308 | addu $4,$4,$6 | ||
| 309 | srl $3,$4,0 | ||
| 310 | move $2,$0 | ||
| 311 | move $6,$3 | ||
| 312 | .set noreorder | ||
| 313 | .set nomacro | ||
| 314 | beq $8,$0,$L11 | ||
| 315 | sw $5,0($10) | ||
| 316 | .set macro | ||
| 317 | .set reorder | ||
| 318 | |||
| 319 | addu $9,$9,16 | ||
| 320 | addu $12,$12,16 | ||
| 321 | addu $10,$10,16 | ||
| 322 | .set noreorder | ||
| 323 | .set nomacro | ||
| 324 | j $L10 | ||
| 325 | addu $11,$11,16 | ||
| 326 | .set macro | ||
| 327 | .set reorder | ||
| 328 | |||
| 329 | $L11: | ||
| 330 | .set noreorder | ||
| 331 | .set nomacro | ||
| 332 | j $31 | ||
| 333 | move $2,$6 | ||
| 334 | .set macro | ||
| 335 | .set reorder | ||
| 336 | |||
| 337 | .end bn_mul_words | ||
| 338 | .align 2 | ||
| 339 | .globl bn_sqr_words | ||
| 340 | .ent bn_sqr_words | ||
| 341 | bn_sqr_words: | ||
| 342 | .frame $sp,0,$31 # vars= 0, regs= 0/0, args= 0, extra= 0 | ||
| 343 | .mask 0x00000000,0 | ||
| 344 | .fmask 0x00000000,0 | ||
| 345 | .set noreorder | ||
| 346 | .cpload $25 | ||
| 347 | .set reorder | ||
| 348 | move $9,$4 | ||
| 349 | addu $7,$9,28 | ||
| 350 | addu $8,$5,12 | ||
| 351 | $L18: | ||
| 352 | lw $2,0($5) | ||
| 353 | #nop | ||
| 354 | multu $2,$2 | ||
| 355 | mfhi $2 | ||
| 356 | mflo $3 | ||
| 357 | #nop | ||
| 358 | addu $6,$6,-1 | ||
| 359 | sw $3,0($9) | ||
| 360 | srl $3,$2,0 | ||
| 361 | move $2,$0 | ||
| 362 | .set noreorder | ||
| 363 | .set nomacro | ||
| 364 | beq $6,$0,$L19 | ||
| 365 | sw $3,-24($7) | ||
| 366 | .set macro | ||
| 367 | .set reorder | ||
| 368 | |||
| 369 | lw $2,-8($8) | ||
| 370 | #nop | ||
| 371 | multu $2,$2 | ||
| 372 | mfhi $2 | ||
| 373 | mflo $3 | ||
| 374 | #nop | ||
| 375 | addu $6,$6,-1 | ||
| 376 | sw $3,-20($7) | ||
| 377 | srl $3,$2,0 | ||
| 378 | move $2,$0 | ||
| 379 | .set noreorder | ||
| 380 | .set nomacro | ||
| 381 | beq $6,$0,$L19 | ||
| 382 | sw $3,-16($7) | ||
| 383 | .set macro | ||
| 384 | .set reorder | ||
| 385 | |||
| 386 | lw $2,-4($8) | ||
| 387 | #nop | ||
| 388 | multu $2,$2 | ||
| 389 | mfhi $2 | ||
| 390 | mflo $3 | ||
| 391 | #nop | ||
| 392 | addu $6,$6,-1 | ||
| 393 | sw $3,-12($7) | ||
| 394 | srl $3,$2,0 | ||
| 395 | move $2,$0 | ||
| 396 | .set noreorder | ||
| 397 | .set nomacro | ||
| 398 | beq $6,$0,$L19 | ||
| 399 | sw $3,-8($7) | ||
| 400 | .set macro | ||
| 401 | .set reorder | ||
| 402 | |||
| 403 | lw $2,0($8) | ||
| 404 | #nop | ||
| 405 | multu $2,$2 | ||
| 406 | mfhi $2 | ||
| 407 | mflo $3 | ||
| 408 | #nop | ||
| 409 | addu $6,$6,-1 | ||
| 410 | sw $3,-4($7) | ||
| 411 | srl $3,$2,0 | ||
| 412 | move $2,$0 | ||
| 413 | .set noreorder | ||
| 414 | .set nomacro | ||
| 415 | beq $6,$0,$L19 | ||
| 416 | sw $3,0($7) | ||
| 417 | .set macro | ||
| 418 | .set reorder | ||
| 419 | |||
| 420 | addu $8,$8,16 | ||
| 421 | addu $5,$5,16 | ||
| 422 | addu $7,$7,32 | ||
| 423 | .set noreorder | ||
| 424 | .set nomacro | ||
| 425 | j $L18 | ||
| 426 | addu $9,$9,32 | ||
| 427 | .set macro | ||
| 428 | .set reorder | ||
| 429 | |||
| 430 | $L19: | ||
| 431 | j $31 | ||
| 432 | .end bn_sqr_words | ||
| 433 | .rdata | ||
| 434 | .align 2 | ||
| 435 | $LC0: | ||
| 436 | |||
| 437 | .byte 0x44,0x69,0x76,0x69,0x73,0x69,0x6f,0x6e | ||
| 438 | .byte 0x20,0x77,0x6f,0x75,0x6c,0x64,0x20,0x6f | ||
| 439 | .byte 0x76,0x65,0x72,0x66,0x6c,0x6f,0x77,0xa | ||
| 440 | .byte 0x0 | ||
| 441 | .text | ||
| 442 | .align 2 | ||
| 443 | .globl bn_div64 | ||
| 444 | .ent bn_div64 | ||
| 445 | bn_div64: | ||
| 446 | .frame $sp,56,$31 # vars= 0, regs= 7/0, args= 16, extra= 8 | ||
| 447 | .mask 0x901f0000,-8 | ||
| 448 | .fmask 0x00000000,0 | ||
| 449 | .set noreorder | ||
| 450 | .cpload $25 | ||
| 451 | .set reorder | ||
| 452 | subu $sp,$sp,56 | ||
| 453 | .cprestore 16 | ||
| 454 | sw $16,24($sp) | ||
| 455 | move $16,$4 | ||
| 456 | sw $17,28($sp) | ||
| 457 | move $17,$5 | ||
| 458 | sw $18,32($sp) | ||
| 459 | move $18,$6 | ||
| 460 | sw $20,40($sp) | ||
| 461 | move $20,$0 | ||
| 462 | sw $19,36($sp) | ||
| 463 | li $19,0x00000002 # 2 | ||
| 464 | sw $31,48($sp) | ||
| 465 | .set noreorder | ||
| 466 | .set nomacro | ||
| 467 | bne $18,$0,$L26 | ||
| 468 | sw $28,44($sp) | ||
| 469 | .set macro | ||
| 470 | .set reorder | ||
| 471 | |||
| 472 | .set noreorder | ||
| 473 | .set nomacro | ||
| 474 | j $L43 | ||
| 475 | li $2,-1 # 0xffffffff | ||
| 476 | .set macro | ||
| 477 | .set reorder | ||
| 478 | |||
| 479 | $L26: | ||
| 480 | move $4,$18 | ||
| 481 | jal BN_num_bits_word | ||
| 482 | move $4,$2 | ||
| 483 | li $2,0x00000020 # 32 | ||
| 484 | .set noreorder | ||
| 485 | .set nomacro | ||
| 486 | beq $4,$2,$L27 | ||
| 487 | li $2,0x00000001 # 1 | ||
| 488 | .set macro | ||
| 489 | .set reorder | ||
| 490 | |||
| 491 | sll $2,$2,$4 | ||
| 492 | sltu $2,$2,$16 | ||
| 493 | .set noreorder | ||
| 494 | .set nomacro | ||
| 495 | beq $2,$0,$L44 | ||
| 496 | li $5,0x00000020 # 32 | ||
| 497 | .set macro | ||
| 498 | .set reorder | ||
| 499 | |||
| 500 | la $4,__iob+32 | ||
| 501 | la $5,$LC0 | ||
| 502 | jal fprintf | ||
| 503 | jal abort | ||
| 504 | $L27: | ||
| 505 | li $5,0x00000020 # 32 | ||
| 506 | $L44: | ||
| 507 | sltu $2,$16,$18 | ||
| 508 | .set noreorder | ||
| 509 | .set nomacro | ||
| 510 | bne $2,$0,$L28 | ||
| 511 | subu $4,$5,$4 | ||
| 512 | .set macro | ||
| 513 | .set reorder | ||
| 514 | |||
| 515 | subu $16,$16,$18 | ||
| 516 | $L28: | ||
| 517 | .set noreorder | ||
| 518 | .set nomacro | ||
| 519 | beq $4,$0,$L29 | ||
| 520 | li $10,-65536 # 0xffff0000 | ||
| 521 | .set macro | ||
| 522 | .set reorder | ||
| 523 | |||
| 524 | sll $18,$18,$4 | ||
| 525 | sll $3,$16,$4 | ||
| 526 | subu $2,$5,$4 | ||
| 527 | srl $2,$17,$2 | ||
| 528 | or $16,$3,$2 | ||
| 529 | sll $17,$17,$4 | ||
| 530 | $L29: | ||
| 531 | srl $7,$18,16 | ||
| 532 | andi $9,$18,0xffff | ||
| 533 | $L30: | ||
| 534 | srl $2,$16,16 | ||
| 535 | .set noreorder | ||
| 536 | .set nomacro | ||
| 537 | beq $2,$7,$L34 | ||
| 538 | li $6,0x0000ffff # 65535 | ||
| 539 | .set macro | ||
| 540 | .set reorder | ||
| 541 | |||
| 542 | divu $6,$16,$7 | ||
| 543 | $L34: | ||
| 544 | mult $6,$9 | ||
| 545 | mflo $5 | ||
| 546 | #nop | ||
| 547 | #nop | ||
| 548 | mult $6,$7 | ||
| 549 | and $2,$17,$10 | ||
| 550 | srl $8,$2,16 | ||
| 551 | mflo $4 | ||
| 552 | $L35: | ||
| 553 | subu $3,$16,$4 | ||
| 554 | and $2,$3,$10 | ||
| 555 | .set noreorder | ||
| 556 | .set nomacro | ||
| 557 | bne $2,$0,$L36 | ||
| 558 | sll $2,$3,16 | ||
| 559 | .set macro | ||
| 560 | .set reorder | ||
| 561 | |||
| 562 | addu $2,$2,$8 | ||
| 563 | sltu $2,$2,$5 | ||
| 564 | .set noreorder | ||
| 565 | .set nomacro | ||
| 566 | beq $2,$0,$L36 | ||
| 567 | subu $5,$5,$9 | ||
| 568 | .set macro | ||
| 569 | .set reorder | ||
| 570 | |||
| 571 | subu $4,$4,$7 | ||
| 572 | .set noreorder | ||
| 573 | .set nomacro | ||
| 574 | j $L35 | ||
| 575 | addu $6,$6,-1 | ||
| 576 | .set macro | ||
| 577 | .set reorder | ||
| 578 | |||
| 579 | $L36: | ||
| 580 | mult $6,$7 | ||
| 581 | mflo $5 | ||
| 582 | #nop | ||
| 583 | #nop | ||
| 584 | mult $6,$9 | ||
| 585 | mflo $4 | ||
| 586 | #nop | ||
| 587 | #nop | ||
| 588 | srl $3,$4,16 | ||
| 589 | sll $2,$4,16 | ||
| 590 | and $4,$2,$10 | ||
| 591 | sltu $2,$17,$4 | ||
| 592 | .set noreorder | ||
| 593 | .set nomacro | ||
| 594 | beq $2,$0,$L40 | ||
| 595 | addu $5,$5,$3 | ||
| 596 | .set macro | ||
| 597 | .set reorder | ||
| 598 | |||
| 599 | addu $5,$5,1 | ||
| 600 | $L40: | ||
| 601 | sltu $2,$16,$5 | ||
| 602 | .set noreorder | ||
| 603 | .set nomacro | ||
| 604 | beq $2,$0,$L41 | ||
| 605 | subu $17,$17,$4 | ||
| 606 | .set macro | ||
| 607 | .set reorder | ||
| 608 | |||
| 609 | addu $16,$16,$18 | ||
| 610 | addu $6,$6,-1 | ||
| 611 | $L41: | ||
| 612 | addu $19,$19,-1 | ||
| 613 | .set noreorder | ||
| 614 | .set nomacro | ||
| 615 | beq $19,$0,$L31 | ||
| 616 | subu $16,$16,$5 | ||
| 617 | .set macro | ||
| 618 | .set reorder | ||
| 619 | |||
| 620 | sll $20,$6,16 | ||
| 621 | sll $3,$16,16 | ||
| 622 | srl $2,$17,16 | ||
| 623 | or $16,$3,$2 | ||
| 624 | .set noreorder | ||
| 625 | .set nomacro | ||
| 626 | j $L30 | ||
| 627 | sll $17,$17,16 | ||
| 628 | .set macro | ||
| 629 | .set reorder | ||
| 630 | |||
| 631 | $L31: | ||
| 632 | or $2,$20,$6 | ||
| 633 | $L43: | ||
| 634 | lw $31,48($sp) | ||
| 635 | lw $20,40($sp) | ||
| 636 | lw $19,36($sp) | ||
| 637 | lw $18,32($sp) | ||
| 638 | lw $17,28($sp) | ||
| 639 | lw $16,24($sp) | ||
| 640 | addu $sp,$sp,56 | ||
| 641 | j $31 | ||
| 642 | .end bn_div64 | ||
| 643 | |||
| 644 | .globl abort .text | ||
| 645 | .globl fprintf .text | ||
| 646 | .globl BN_num_bits_word .text | ||
diff --git a/src/lib/libssl/src/crypto/bn/asm/x86_64-mont.pl b/src/lib/libssl/src/crypto/bn/asm/x86_64-mont.pl new file mode 100755 index 0000000000..c43b69592a --- /dev/null +++ b/src/lib/libssl/src/crypto/bn/asm/x86_64-mont.pl | |||
| @@ -0,0 +1,214 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | |||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. The module is, however, dual licensed under OpenSSL and | ||
| 6 | # CRYPTOGAMS licenses depending on where you obtain it. For further | ||
| 7 | # details see http://www.openssl.org/~appro/cryptogams/. | ||
| 8 | # ==================================================================== | ||
| 9 | |||
| 10 | # October 2005. | ||
| 11 | # | ||
| 12 | # Montgomery multiplication routine for x86_64. While it gives modest | ||
| 13 | # 9% improvement of rsa4096 sign on Opteron, rsa512 sign runs more | ||
| 14 | # than twice, >2x, as fast. Most common rsa1024 sign is improved by | ||
| 15 | # respectful 50%. It remains to be seen if loop unrolling and | ||
| 16 | # dedicated squaring routine can provide further improvement... | ||
| 17 | |||
| 18 | $output=shift; | ||
| 19 | |||
| 20 | $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1; | ||
| 21 | ( $xlate="${dir}x86_64-xlate.pl" and -f $xlate ) or | ||
| 22 | ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or | ||
| 23 | die "can't locate x86_64-xlate.pl"; | ||
| 24 | |||
| 25 | open STDOUT,"| $^X $xlate $output"; | ||
| 26 | |||
| 27 | # int bn_mul_mont( | ||
| 28 | $rp="%rdi"; # BN_ULONG *rp, | ||
| 29 | $ap="%rsi"; # const BN_ULONG *ap, | ||
| 30 | $bp="%rdx"; # const BN_ULONG *bp, | ||
| 31 | $np="%rcx"; # const BN_ULONG *np, | ||
| 32 | $n0="%r8"; # const BN_ULONG *n0, | ||
| 33 | $num="%r9"; # int num); | ||
| 34 | $lo0="%r10"; | ||
| 35 | $hi0="%r11"; | ||
| 36 | $bp="%r12"; # reassign $bp | ||
| 37 | $hi1="%r13"; | ||
| 38 | $i="%r14"; | ||
| 39 | $j="%r15"; | ||
| 40 | $m0="%rbx"; | ||
| 41 | $m1="%rbp"; | ||
| 42 | |||
| 43 | $code=<<___; | ||
| 44 | .text | ||
| 45 | |||
| 46 | .globl bn_mul_mont | ||
| 47 | .type bn_mul_mont,\@function,6 | ||
| 48 | .align 16 | ||
| 49 | bn_mul_mont: | ||
| 50 | push %rbx | ||
| 51 | push %rbp | ||
| 52 | push %r12 | ||
| 53 | push %r13 | ||
| 54 | push %r14 | ||
| 55 | push %r15 | ||
| 56 | |||
| 57 | mov ${num}d,${num}d | ||
| 58 | lea 2($num),%rax | ||
| 59 | mov %rsp,%rbp | ||
| 60 | neg %rax | ||
| 61 | lea (%rsp,%rax,8),%rsp # tp=alloca(8*(num+2)) | ||
| 62 | and \$-1024,%rsp # minimize TLB usage | ||
| 63 | |||
| 64 | mov %rbp,8(%rsp,$num,8) # tp[num+1]=%rsp | ||
| 65 | mov %rdx,$bp # $bp reassigned, remember? | ||
| 66 | |||
| 67 | mov ($n0),$n0 # pull n0[0] value | ||
| 68 | |||
| 69 | xor $i,$i # i=0 | ||
| 70 | xor $j,$j # j=0 | ||
| 71 | |||
| 72 | mov ($bp),$m0 # m0=bp[0] | ||
| 73 | mov ($ap),%rax | ||
| 74 | mulq $m0 # ap[0]*bp[0] | ||
| 75 | mov %rax,$lo0 | ||
| 76 | mov %rdx,$hi0 | ||
| 77 | |||
| 78 | imulq $n0,%rax # "tp[0]"*n0 | ||
| 79 | mov %rax,$m1 | ||
| 80 | |||
| 81 | mulq ($np) # np[0]*m1 | ||
| 82 | add $lo0,%rax # discarded | ||
| 83 | adc \$0,%rdx | ||
| 84 | mov %rdx,$hi1 | ||
| 85 | |||
| 86 | lea 1($j),$j # j++ | ||
| 87 | .L1st: | ||
| 88 | mov ($ap,$j,8),%rax | ||
| 89 | mulq $m0 # ap[j]*bp[0] | ||
| 90 | add $hi0,%rax | ||
| 91 | adc \$0,%rdx | ||
| 92 | mov %rax,$lo0 | ||
| 93 | mov ($np,$j,8),%rax | ||
| 94 | mov %rdx,$hi0 | ||
| 95 | |||
| 96 | mulq $m1 # np[j]*m1 | ||
| 97 | add $hi1,%rax | ||
| 98 | lea 1($j),$j # j++ | ||
| 99 | adc \$0,%rdx | ||
| 100 | add $lo0,%rax # np[j]*m1+ap[j]*bp[0] | ||
| 101 | adc \$0,%rdx | ||
| 102 | mov %rax,-16(%rsp,$j,8) # tp[j-1] | ||
| 103 | cmp $num,$j | ||
| 104 | mov %rdx,$hi1 | ||
| 105 | jl .L1st | ||
| 106 | |||
| 107 | xor %rdx,%rdx | ||
| 108 | add $hi0,$hi1 | ||
| 109 | adc \$0,%rdx | ||
| 110 | mov $hi1,-8(%rsp,$num,8) | ||
| 111 | mov %rdx,(%rsp,$num,8) # store upmost overflow bit | ||
| 112 | |||
| 113 | lea 1($i),$i # i++ | ||
| 114 | .align 4 | ||
| 115 | .Louter: | ||
| 116 | xor $j,$j # j=0 | ||
| 117 | |||
| 118 | mov ($bp,$i,8),$m0 # m0=bp[i] | ||
| 119 | mov ($ap),%rax # ap[0] | ||
| 120 | mulq $m0 # ap[0]*bp[i] | ||
| 121 | add (%rsp),%rax # ap[0]*bp[i]+tp[0] | ||
| 122 | adc \$0,%rdx | ||
| 123 | mov %rax,$lo0 | ||
| 124 | mov %rdx,$hi0 | ||
| 125 | |||
| 126 | imulq $n0,%rax # tp[0]*n0 | ||
| 127 | mov %rax,$m1 | ||
| 128 | |||
| 129 | mulq ($np,$j,8) # np[0]*m1 | ||
| 130 | add $lo0,%rax # discarded | ||
| 131 | mov 8(%rsp),$lo0 # tp[1] | ||
| 132 | adc \$0,%rdx | ||
| 133 | mov %rdx,$hi1 | ||
| 134 | |||
| 135 | lea 1($j),$j # j++ | ||
| 136 | .align 4 | ||
| 137 | .Linner: | ||
| 138 | mov ($ap,$j,8),%rax | ||
| 139 | mulq $m0 # ap[j]*bp[i] | ||
| 140 | add $hi0,%rax | ||
| 141 | adc \$0,%rdx | ||
| 142 | add %rax,$lo0 # ap[j]*bp[i]+tp[j] | ||
| 143 | mov ($np,$j,8),%rax | ||
| 144 | adc \$0,%rdx | ||
| 145 | mov %rdx,$hi0 | ||
| 146 | |||
| 147 | mulq $m1 # np[j]*m1 | ||
| 148 | add $hi1,%rax | ||
| 149 | lea 1($j),$j # j++ | ||
| 150 | adc \$0,%rdx | ||
| 151 | add $lo0,%rax # np[j]*m1+ap[j]*bp[i]+tp[j] | ||
| 152 | adc \$0,%rdx | ||
| 153 | mov (%rsp,$j,8),$lo0 | ||
| 154 | cmp $num,$j | ||
| 155 | mov %rax,-16(%rsp,$j,8) # tp[j-1] | ||
| 156 | mov %rdx,$hi1 | ||
| 157 | jl .Linner | ||
| 158 | |||
| 159 | xor %rdx,%rdx | ||
| 160 | add $hi0,$hi1 | ||
| 161 | adc \$0,%rdx | ||
| 162 | add $lo0,$hi1 # pull upmost overflow bit | ||
| 163 | adc \$0,%rdx | ||
| 164 | mov $hi1,-8(%rsp,$num,8) | ||
| 165 | mov %rdx,(%rsp,$num,8) # store upmost overflow bit | ||
| 166 | |||
| 167 | lea 1($i),$i # i++ | ||
| 168 | cmp $num,$i | ||
| 169 | jl .Louter | ||
| 170 | |||
| 171 | lea (%rsp),$ap # borrow ap for tp | ||
| 172 | lea -1($num),$j # j=num-1 | ||
| 173 | |||
| 174 | mov ($ap),%rax # tp[0] | ||
| 175 | xor $i,$i # i=0 and clear CF! | ||
| 176 | jmp .Lsub | ||
| 177 | .align 16 | ||
| 178 | .Lsub: sbb ($np,$i,8),%rax | ||
| 179 | mov %rax,($rp,$i,8) # rp[i]=tp[i]-np[i] | ||
| 180 | dec $j # doesn't affect CF! | ||
| 181 | mov 8($ap,$i,8),%rax # tp[i+1] | ||
| 182 | lea 1($i),$i # i++ | ||
| 183 | jge .Lsub | ||
| 184 | |||
| 185 | sbb \$0,%rax # handle upmost overflow bit | ||
| 186 | and %rax,$ap | ||
| 187 | not %rax | ||
| 188 | mov $rp,$np | ||
| 189 | and %rax,$np | ||
| 190 | lea -1($num),$j | ||
| 191 | or $np,$ap # ap=borrow?tp:rp | ||
| 192 | .align 16 | ||
| 193 | .Lcopy: # copy or in-place refresh | ||
| 194 | mov ($ap,$j,8),%rax | ||
| 195 | mov %rax,($rp,$j,8) # rp[i]=tp[i] | ||
| 196 | mov $i,(%rsp,$j,8) # zap temporary vector | ||
| 197 | dec $j | ||
| 198 | jge .Lcopy | ||
| 199 | |||
| 200 | mov 8(%rsp,$num,8),%rsp # restore %rsp | ||
| 201 | mov \$1,%rax | ||
| 202 | pop %r15 | ||
| 203 | pop %r14 | ||
| 204 | pop %r13 | ||
| 205 | pop %r12 | ||
| 206 | pop %rbp | ||
| 207 | pop %rbx | ||
| 208 | ret | ||
| 209 | .size bn_mul_mont,.-bn_mul_mont | ||
| 210 | .asciz "Montgomery Multiplication for x86_64, CRYPTOGAMS by <appro\@openssl.org>" | ||
| 211 | ___ | ||
| 212 | |||
| 213 | print $code; | ||
| 214 | close STDOUT; | ||
diff --git a/src/lib/libssl/src/crypto/bn/bn_const.c b/src/lib/libssl/src/crypto/bn/bn_const.c new file mode 100644 index 0000000000..eb60a25b3c --- /dev/null +++ b/src/lib/libssl/src/crypto/bn/bn_const.c | |||
| @@ -0,0 +1,402 @@ | |||
| 1 | /* crypto/bn/knownprimes.c */ | ||
| 2 | /* Insert boilerplate */ | ||
| 3 | |||
| 4 | #include "bn.h" | ||
| 5 | |||
| 6 | /* "First Oakley Default Group" from RFC2409, section 6.1. | ||
| 7 | * | ||
| 8 | * The prime is: 2^768 - 2 ^704 - 1 + 2^64 * { [2^638 pi] + 149686 } | ||
| 9 | * | ||
| 10 | * RFC2409 specifies a generator of 2. | ||
| 11 | * RFC2412 specifies a generator of of 22. | ||
| 12 | */ | ||
| 13 | |||
| 14 | BIGNUM *get_rfc2409_prime_768(BIGNUM *bn) | ||
| 15 | { | ||
| 16 | static const unsigned char RFC2409_PRIME_768[]={ | ||
| 17 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 18 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 19 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 20 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 21 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 22 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 23 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 24 | 0xA6,0x3A,0x36,0x20,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF, | ||
| 25 | }; | ||
| 26 | return BN_bin2bn(RFC2409_PRIME_768,sizeof(RFC2409_PRIME_768),bn); | ||
| 27 | } | ||
| 28 | |||
| 29 | /* "Second Oakley Default Group" from RFC2409, section 6.2. | ||
| 30 | * | ||
| 31 | * The prime is: 2^1024 - 2^960 - 1 + 2^64 * { [2^894 pi] + 129093 }. | ||
| 32 | * | ||
| 33 | * RFC2409 specifies a generator of 2. | ||
| 34 | * RFC2412 specifies a generator of 22. | ||
| 35 | */ | ||
| 36 | |||
| 37 | BIGNUM *get_rfc2409_prime_1024(BIGNUM *bn) | ||
| 38 | { | ||
| 39 | static const unsigned char RFC2409_PRIME_1024[]={ | ||
| 40 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 41 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 42 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 43 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 44 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 45 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 46 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 47 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 48 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 49 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE6,0x53,0x81, | ||
| 50 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF, | ||
| 51 | }; | ||
| 52 | return BN_bin2bn(RFC2409_PRIME_1024,sizeof(RFC2409_PRIME_1024),bn); | ||
| 53 | } | ||
| 54 | |||
| 55 | /* "1536-bit MODP Group" from RFC3526, Section 2. | ||
| 56 | * | ||
| 57 | * The prime is: 2^1536 - 2^1472 - 1 + 2^64 * { [2^1406 pi] + 741804 } | ||
| 58 | * | ||
| 59 | * RFC3526 specifies a generator of 2. | ||
| 60 | * RFC2312 specifies a generator of 22. | ||
| 61 | */ | ||
| 62 | |||
| 63 | BIGNUM *get_rfc3526_prime_1536(BIGNUM *bn) | ||
| 64 | { | ||
| 65 | static const unsigned char RFC3526_PRIME_1536[]={ | ||
| 66 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 67 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 68 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 69 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 70 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 71 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 72 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 73 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 74 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 75 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE4,0x5B,0x3D, | ||
| 76 | 0xC2,0x00,0x7C,0xB8,0xA1,0x63,0xBF,0x05,0x98,0xDA,0x48,0x36, | ||
| 77 | 0x1C,0x55,0xD3,0x9A,0x69,0x16,0x3F,0xA8,0xFD,0x24,0xCF,0x5F, | ||
| 78 | 0x83,0x65,0x5D,0x23,0xDC,0xA3,0xAD,0x96,0x1C,0x62,0xF3,0x56, | ||
| 79 | 0x20,0x85,0x52,0xBB,0x9E,0xD5,0x29,0x07,0x70,0x96,0x96,0x6D, | ||
| 80 | 0x67,0x0C,0x35,0x4E,0x4A,0xBC,0x98,0x04,0xF1,0x74,0x6C,0x08, | ||
| 81 | 0xCA,0x23,0x73,0x27,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF, | ||
| 82 | }; | ||
| 83 | return BN_bin2bn(RFC3526_PRIME_1536,sizeof(RFC3526_PRIME_1536),bn); | ||
| 84 | } | ||
| 85 | |||
| 86 | /* "2048-bit MODP Group" from RFC3526, Section 3. | ||
| 87 | * | ||
| 88 | * The prime is: 2^2048 - 2^1984 - 1 + 2^64 * { [2^1918 pi] + 124476 } | ||
| 89 | * | ||
| 90 | * RFC3526 specifies a generator of 2. | ||
| 91 | */ | ||
| 92 | |||
| 93 | BIGNUM *get_rfc3526_prime_2048(BIGNUM *bn) | ||
| 94 | { | ||
| 95 | static const unsigned char RFC3526_PRIME_2048[]={ | ||
| 96 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 97 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 98 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 99 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 100 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 101 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 102 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 103 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 104 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 105 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE4,0x5B,0x3D, | ||
| 106 | 0xC2,0x00,0x7C,0xB8,0xA1,0x63,0xBF,0x05,0x98,0xDA,0x48,0x36, | ||
| 107 | 0x1C,0x55,0xD3,0x9A,0x69,0x16,0x3F,0xA8,0xFD,0x24,0xCF,0x5F, | ||
| 108 | 0x83,0x65,0x5D,0x23,0xDC,0xA3,0xAD,0x96,0x1C,0x62,0xF3,0x56, | ||
| 109 | 0x20,0x85,0x52,0xBB,0x9E,0xD5,0x29,0x07,0x70,0x96,0x96,0x6D, | ||
| 110 | 0x67,0x0C,0x35,0x4E,0x4A,0xBC,0x98,0x04,0xF1,0x74,0x6C,0x08, | ||
| 111 | 0xCA,0x18,0x21,0x7C,0x32,0x90,0x5E,0x46,0x2E,0x36,0xCE,0x3B, | ||
| 112 | 0xE3,0x9E,0x77,0x2C,0x18,0x0E,0x86,0x03,0x9B,0x27,0x83,0xA2, | ||
| 113 | 0xEC,0x07,0xA2,0x8F,0xB5,0xC5,0x5D,0xF0,0x6F,0x4C,0x52,0xC9, | ||
| 114 | 0xDE,0x2B,0xCB,0xF6,0x95,0x58,0x17,0x18,0x39,0x95,0x49,0x7C, | ||
| 115 | 0xEA,0x95,0x6A,0xE5,0x15,0xD2,0x26,0x18,0x98,0xFA,0x05,0x10, | ||
| 116 | 0x15,0x72,0x8E,0x5A,0x8A,0xAC,0xAA,0x68,0xFF,0xFF,0xFF,0xFF, | ||
| 117 | 0xFF,0xFF,0xFF,0xFF, | ||
| 118 | }; | ||
| 119 | return BN_bin2bn(RFC3526_PRIME_2048,sizeof(RFC3526_PRIME_2048),bn); | ||
| 120 | } | ||
| 121 | |||
| 122 | /* "3072-bit MODP Group" from RFC3526, Section 4. | ||
| 123 | * | ||
| 124 | * The prime is: 2^3072 - 2^3008 - 1 + 2^64 * { [2^2942 pi] + 1690314 } | ||
| 125 | * | ||
| 126 | * RFC3526 specifies a generator of 2. | ||
| 127 | */ | ||
| 128 | |||
| 129 | BIGNUM *get_rfc3526_prime_3072(BIGNUM *bn) | ||
| 130 | { | ||
| 131 | static const unsigned char RFC3526_PRIME_3072[]={ | ||
| 132 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 133 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 134 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 135 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 136 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 137 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 138 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 139 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 140 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 141 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE4,0x5B,0x3D, | ||
| 142 | 0xC2,0x00,0x7C,0xB8,0xA1,0x63,0xBF,0x05,0x98,0xDA,0x48,0x36, | ||
| 143 | 0x1C,0x55,0xD3,0x9A,0x69,0x16,0x3F,0xA8,0xFD,0x24,0xCF,0x5F, | ||
| 144 | 0x83,0x65,0x5D,0x23,0xDC,0xA3,0xAD,0x96,0x1C,0x62,0xF3,0x56, | ||
| 145 | 0x20,0x85,0x52,0xBB,0x9E,0xD5,0x29,0x07,0x70,0x96,0x96,0x6D, | ||
| 146 | 0x67,0x0C,0x35,0x4E,0x4A,0xBC,0x98,0x04,0xF1,0x74,0x6C,0x08, | ||
| 147 | 0xCA,0x18,0x21,0x7C,0x32,0x90,0x5E,0x46,0x2E,0x36,0xCE,0x3B, | ||
| 148 | 0xE3,0x9E,0x77,0x2C,0x18,0x0E,0x86,0x03,0x9B,0x27,0x83,0xA2, | ||
| 149 | 0xEC,0x07,0xA2,0x8F,0xB5,0xC5,0x5D,0xF0,0x6F,0x4C,0x52,0xC9, | ||
| 150 | 0xDE,0x2B,0xCB,0xF6,0x95,0x58,0x17,0x18,0x39,0x95,0x49,0x7C, | ||
| 151 | 0xEA,0x95,0x6A,0xE5,0x15,0xD2,0x26,0x18,0x98,0xFA,0x05,0x10, | ||
| 152 | 0x15,0x72,0x8E,0x5A,0x8A,0xAA,0xC4,0x2D,0xAD,0x33,0x17,0x0D, | ||
| 153 | 0x04,0x50,0x7A,0x33,0xA8,0x55,0x21,0xAB,0xDF,0x1C,0xBA,0x64, | ||
| 154 | 0xEC,0xFB,0x85,0x04,0x58,0xDB,0xEF,0x0A,0x8A,0xEA,0x71,0x57, | ||
| 155 | 0x5D,0x06,0x0C,0x7D,0xB3,0x97,0x0F,0x85,0xA6,0xE1,0xE4,0xC7, | ||
| 156 | 0xAB,0xF5,0xAE,0x8C,0xDB,0x09,0x33,0xD7,0x1E,0x8C,0x94,0xE0, | ||
| 157 | 0x4A,0x25,0x61,0x9D,0xCE,0xE3,0xD2,0x26,0x1A,0xD2,0xEE,0x6B, | ||
| 158 | 0xF1,0x2F,0xFA,0x06,0xD9,0x8A,0x08,0x64,0xD8,0x76,0x02,0x73, | ||
| 159 | 0x3E,0xC8,0x6A,0x64,0x52,0x1F,0x2B,0x18,0x17,0x7B,0x20,0x0C, | ||
| 160 | 0xBB,0xE1,0x17,0x57,0x7A,0x61,0x5D,0x6C,0x77,0x09,0x88,0xC0, | ||
| 161 | 0xBA,0xD9,0x46,0xE2,0x08,0xE2,0x4F,0xA0,0x74,0xE5,0xAB,0x31, | ||
| 162 | 0x43,0xDB,0x5B,0xFC,0xE0,0xFD,0x10,0x8E,0x4B,0x82,0xD1,0x20, | ||
| 163 | 0xA9,0x3A,0xD2,0xCA,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF, | ||
| 164 | }; | ||
| 165 | return BN_bin2bn(RFC3526_PRIME_3072,sizeof(RFC3526_PRIME_3072),bn); | ||
| 166 | } | ||
| 167 | |||
| 168 | /* "4096-bit MODP Group" from RFC3526, Section 5. | ||
| 169 | * | ||
| 170 | * The prime is: 2^4096 - 2^4032 - 1 + 2^64 * { [2^3966 pi] + 240904 } | ||
| 171 | * | ||
| 172 | * RFC3526 specifies a generator of 2. | ||
| 173 | */ | ||
| 174 | |||
| 175 | BIGNUM *get_rfc3526_prime_4096(BIGNUM *bn) | ||
| 176 | { | ||
| 177 | static const unsigned char RFC3526_PRIME_4096[]={ | ||
| 178 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 179 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 180 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 181 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 182 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 183 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 184 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 185 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 186 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 187 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE4,0x5B,0x3D, | ||
| 188 | 0xC2,0x00,0x7C,0xB8,0xA1,0x63,0xBF,0x05,0x98,0xDA,0x48,0x36, | ||
| 189 | 0x1C,0x55,0xD3,0x9A,0x69,0x16,0x3F,0xA8,0xFD,0x24,0xCF,0x5F, | ||
| 190 | 0x83,0x65,0x5D,0x23,0xDC,0xA3,0xAD,0x96,0x1C,0x62,0xF3,0x56, | ||
| 191 | 0x20,0x85,0x52,0xBB,0x9E,0xD5,0x29,0x07,0x70,0x96,0x96,0x6D, | ||
| 192 | 0x67,0x0C,0x35,0x4E,0x4A,0xBC,0x98,0x04,0xF1,0x74,0x6C,0x08, | ||
| 193 | 0xCA,0x18,0x21,0x7C,0x32,0x90,0x5E,0x46,0x2E,0x36,0xCE,0x3B, | ||
| 194 | 0xE3,0x9E,0x77,0x2C,0x18,0x0E,0x86,0x03,0x9B,0x27,0x83,0xA2, | ||
| 195 | 0xEC,0x07,0xA2,0x8F,0xB5,0xC5,0x5D,0xF0,0x6F,0x4C,0x52,0xC9, | ||
| 196 | 0xDE,0x2B,0xCB,0xF6,0x95,0x58,0x17,0x18,0x39,0x95,0x49,0x7C, | ||
| 197 | 0xEA,0x95,0x6A,0xE5,0x15,0xD2,0x26,0x18,0x98,0xFA,0x05,0x10, | ||
| 198 | 0x15,0x72,0x8E,0x5A,0x8A,0xAA,0xC4,0x2D,0xAD,0x33,0x17,0x0D, | ||
| 199 | 0x04,0x50,0x7A,0x33,0xA8,0x55,0x21,0xAB,0xDF,0x1C,0xBA,0x64, | ||
| 200 | 0xEC,0xFB,0x85,0x04,0x58,0xDB,0xEF,0x0A,0x8A,0xEA,0x71,0x57, | ||
| 201 | 0x5D,0x06,0x0C,0x7D,0xB3,0x97,0x0F,0x85,0xA6,0xE1,0xE4,0xC7, | ||
| 202 | 0xAB,0xF5,0xAE,0x8C,0xDB,0x09,0x33,0xD7,0x1E,0x8C,0x94,0xE0, | ||
| 203 | 0x4A,0x25,0x61,0x9D,0xCE,0xE3,0xD2,0x26,0x1A,0xD2,0xEE,0x6B, | ||
| 204 | 0xF1,0x2F,0xFA,0x06,0xD9,0x8A,0x08,0x64,0xD8,0x76,0x02,0x73, | ||
| 205 | 0x3E,0xC8,0x6A,0x64,0x52,0x1F,0x2B,0x18,0x17,0x7B,0x20,0x0C, | ||
| 206 | 0xBB,0xE1,0x17,0x57,0x7A,0x61,0x5D,0x6C,0x77,0x09,0x88,0xC0, | ||
| 207 | 0xBA,0xD9,0x46,0xE2,0x08,0xE2,0x4F,0xA0,0x74,0xE5,0xAB,0x31, | ||
| 208 | 0x43,0xDB,0x5B,0xFC,0xE0,0xFD,0x10,0x8E,0x4B,0x82,0xD1,0x20, | ||
| 209 | 0xA9,0x21,0x08,0x01,0x1A,0x72,0x3C,0x12,0xA7,0x87,0xE6,0xD7, | ||
| 210 | 0x88,0x71,0x9A,0x10,0xBD,0xBA,0x5B,0x26,0x99,0xC3,0x27,0x18, | ||
| 211 | 0x6A,0xF4,0xE2,0x3C,0x1A,0x94,0x68,0x34,0xB6,0x15,0x0B,0xDA, | ||
| 212 | 0x25,0x83,0xE9,0xCA,0x2A,0xD4,0x4C,0xE8,0xDB,0xBB,0xC2,0xDB, | ||
| 213 | 0x04,0xDE,0x8E,0xF9,0x2E,0x8E,0xFC,0x14,0x1F,0xBE,0xCA,0xA6, | ||
| 214 | 0x28,0x7C,0x59,0x47,0x4E,0x6B,0xC0,0x5D,0x99,0xB2,0x96,0x4F, | ||
| 215 | 0xA0,0x90,0xC3,0xA2,0x23,0x3B,0xA1,0x86,0x51,0x5B,0xE7,0xED, | ||
| 216 | 0x1F,0x61,0x29,0x70,0xCE,0xE2,0xD7,0xAF,0xB8,0x1B,0xDD,0x76, | ||
| 217 | 0x21,0x70,0x48,0x1C,0xD0,0x06,0x91,0x27,0xD5,0xB0,0x5A,0xA9, | ||
| 218 | 0x93,0xB4,0xEA,0x98,0x8D,0x8F,0xDD,0xC1,0x86,0xFF,0xB7,0xDC, | ||
| 219 | 0x90,0xA6,0xC0,0x8F,0x4D,0xF4,0x35,0xC9,0x34,0x06,0x31,0x99, | ||
| 220 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF, | ||
| 221 | }; | ||
| 222 | return BN_bin2bn(RFC3526_PRIME_4096,sizeof(RFC3526_PRIME_4096),bn); | ||
| 223 | } | ||
| 224 | |||
| 225 | /* "6144-bit MODP Group" from RFC3526, Section 6. | ||
| 226 | * | ||
| 227 | * The prime is: 2^6144 - 2^6080 - 1 + 2^64 * { [2^6014 pi] + 929484 } | ||
| 228 | * | ||
| 229 | * RFC3526 specifies a generator of 2. | ||
| 230 | */ | ||
| 231 | |||
| 232 | BIGNUM *get_rfc3526_prime_6144(BIGNUM *bn) | ||
| 233 | { | ||
| 234 | static const unsigned char RFC3526_PRIME_6144[]={ | ||
| 235 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 236 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 237 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 238 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 239 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 240 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 241 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 242 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 243 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 244 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE4,0x5B,0x3D, | ||
| 245 | 0xC2,0x00,0x7C,0xB8,0xA1,0x63,0xBF,0x05,0x98,0xDA,0x48,0x36, | ||
| 246 | 0x1C,0x55,0xD3,0x9A,0x69,0x16,0x3F,0xA8,0xFD,0x24,0xCF,0x5F, | ||
| 247 | 0x83,0x65,0x5D,0x23,0xDC,0xA3,0xAD,0x96,0x1C,0x62,0xF3,0x56, | ||
| 248 | 0x20,0x85,0x52,0xBB,0x9E,0xD5,0x29,0x07,0x70,0x96,0x96,0x6D, | ||
| 249 | 0x67,0x0C,0x35,0x4E,0x4A,0xBC,0x98,0x04,0xF1,0x74,0x6C,0x08, | ||
| 250 | 0xCA,0x18,0x21,0x7C,0x32,0x90,0x5E,0x46,0x2E,0x36,0xCE,0x3B, | ||
| 251 | 0xE3,0x9E,0x77,0x2C,0x18,0x0E,0x86,0x03,0x9B,0x27,0x83,0xA2, | ||
| 252 | 0xEC,0x07,0xA2,0x8F,0xB5,0xC5,0x5D,0xF0,0x6F,0x4C,0x52,0xC9, | ||
| 253 | 0xDE,0x2B,0xCB,0xF6,0x95,0x58,0x17,0x18,0x39,0x95,0x49,0x7C, | ||
| 254 | 0xEA,0x95,0x6A,0xE5,0x15,0xD2,0x26,0x18,0x98,0xFA,0x05,0x10, | ||
| 255 | 0x15,0x72,0x8E,0x5A,0x8A,0xAA,0xC4,0x2D,0xAD,0x33,0x17,0x0D, | ||
| 256 | 0x04,0x50,0x7A,0x33,0xA8,0x55,0x21,0xAB,0xDF,0x1C,0xBA,0x64, | ||
| 257 | 0xEC,0xFB,0x85,0x04,0x58,0xDB,0xEF,0x0A,0x8A,0xEA,0x71,0x57, | ||
| 258 | 0x5D,0x06,0x0C,0x7D,0xB3,0x97,0x0F,0x85,0xA6,0xE1,0xE4,0xC7, | ||
| 259 | 0xAB,0xF5,0xAE,0x8C,0xDB,0x09,0x33,0xD7,0x1E,0x8C,0x94,0xE0, | ||
| 260 | 0x4A,0x25,0x61,0x9D,0xCE,0xE3,0xD2,0x26,0x1A,0xD2,0xEE,0x6B, | ||
| 261 | 0xF1,0x2F,0xFA,0x06,0xD9,0x8A,0x08,0x64,0xD8,0x76,0x02,0x73, | ||
| 262 | 0x3E,0xC8,0x6A,0x64,0x52,0x1F,0x2B,0x18,0x17,0x7B,0x20,0x0C, | ||
| 263 | 0xBB,0xE1,0x17,0x57,0x7A,0x61,0x5D,0x6C,0x77,0x09,0x88,0xC0, | ||
| 264 | 0xBA,0xD9,0x46,0xE2,0x08,0xE2,0x4F,0xA0,0x74,0xE5,0xAB,0x31, | ||
| 265 | 0x43,0xDB,0x5B,0xFC,0xE0,0xFD,0x10,0x8E,0x4B,0x82,0xD1,0x20, | ||
| 266 | 0xA9,0x21,0x08,0x01,0x1A,0x72,0x3C,0x12,0xA7,0x87,0xE6,0xD7, | ||
| 267 | 0x88,0x71,0x9A,0x10,0xBD,0xBA,0x5B,0x26,0x99,0xC3,0x27,0x18, | ||
| 268 | 0x6A,0xF4,0xE2,0x3C,0x1A,0x94,0x68,0x34,0xB6,0x15,0x0B,0xDA, | ||
| 269 | 0x25,0x83,0xE9,0xCA,0x2A,0xD4,0x4C,0xE8,0xDB,0xBB,0xC2,0xDB, | ||
| 270 | 0x04,0xDE,0x8E,0xF9,0x2E,0x8E,0xFC,0x14,0x1F,0xBE,0xCA,0xA6, | ||
| 271 | 0x28,0x7C,0x59,0x47,0x4E,0x6B,0xC0,0x5D,0x99,0xB2,0x96,0x4F, | ||
| 272 | 0xA0,0x90,0xC3,0xA2,0x23,0x3B,0xA1,0x86,0x51,0x5B,0xE7,0xED, | ||
| 273 | 0x1F,0x61,0x29,0x70,0xCE,0xE2,0xD7,0xAF,0xB8,0x1B,0xDD,0x76, | ||
| 274 | 0x21,0x70,0x48,0x1C,0xD0,0x06,0x91,0x27,0xD5,0xB0,0x5A,0xA9, | ||
| 275 | 0x93,0xB4,0xEA,0x98,0x8D,0x8F,0xDD,0xC1,0x86,0xFF,0xB7,0xDC, | ||
| 276 | 0x90,0xA6,0xC0,0x8F,0x4D,0xF4,0x35,0xC9,0x34,0x02,0x84,0x92, | ||
| 277 | 0x36,0xC3,0xFA,0xB4,0xD2,0x7C,0x70,0x26,0xC1,0xD4,0xDC,0xB2, | ||
| 278 | 0x60,0x26,0x46,0xDE,0xC9,0x75,0x1E,0x76,0x3D,0xBA,0x37,0xBD, | ||
| 279 | 0xF8,0xFF,0x94,0x06,0xAD,0x9E,0x53,0x0E,0xE5,0xDB,0x38,0x2F, | ||
| 280 | 0x41,0x30,0x01,0xAE,0xB0,0x6A,0x53,0xED,0x90,0x27,0xD8,0x31, | ||
| 281 | 0x17,0x97,0x27,0xB0,0x86,0x5A,0x89,0x18,0xDA,0x3E,0xDB,0xEB, | ||
| 282 | 0xCF,0x9B,0x14,0xED,0x44,0xCE,0x6C,0xBA,0xCE,0xD4,0xBB,0x1B, | ||
| 283 | 0xDB,0x7F,0x14,0x47,0xE6,0xCC,0x25,0x4B,0x33,0x20,0x51,0x51, | ||
| 284 | 0x2B,0xD7,0xAF,0x42,0x6F,0xB8,0xF4,0x01,0x37,0x8C,0xD2,0xBF, | ||
| 285 | 0x59,0x83,0xCA,0x01,0xC6,0x4B,0x92,0xEC,0xF0,0x32,0xEA,0x15, | ||
| 286 | 0xD1,0x72,0x1D,0x03,0xF4,0x82,0xD7,0xCE,0x6E,0x74,0xFE,0xF6, | ||
| 287 | 0xD5,0x5E,0x70,0x2F,0x46,0x98,0x0C,0x82,0xB5,0xA8,0x40,0x31, | ||
| 288 | 0x90,0x0B,0x1C,0x9E,0x59,0xE7,0xC9,0x7F,0xBE,0xC7,0xE8,0xF3, | ||
| 289 | 0x23,0xA9,0x7A,0x7E,0x36,0xCC,0x88,0xBE,0x0F,0x1D,0x45,0xB7, | ||
| 290 | 0xFF,0x58,0x5A,0xC5,0x4B,0xD4,0x07,0xB2,0x2B,0x41,0x54,0xAA, | ||
| 291 | 0xCC,0x8F,0x6D,0x7E,0xBF,0x48,0xE1,0xD8,0x14,0xCC,0x5E,0xD2, | ||
| 292 | 0x0F,0x80,0x37,0xE0,0xA7,0x97,0x15,0xEE,0xF2,0x9B,0xE3,0x28, | ||
| 293 | 0x06,0xA1,0xD5,0x8B,0xB7,0xC5,0xDA,0x76,0xF5,0x50,0xAA,0x3D, | ||
| 294 | 0x8A,0x1F,0xBF,0xF0,0xEB,0x19,0xCC,0xB1,0xA3,0x13,0xD5,0x5C, | ||
| 295 | 0xDA,0x56,0xC9,0xEC,0x2E,0xF2,0x96,0x32,0x38,0x7F,0xE8,0xD7, | ||
| 296 | 0x6E,0x3C,0x04,0x68,0x04,0x3E,0x8F,0x66,0x3F,0x48,0x60,0xEE, | ||
| 297 | 0x12,0xBF,0x2D,0x5B,0x0B,0x74,0x74,0xD6,0xE6,0x94,0xF9,0x1E, | ||
| 298 | 0x6D,0xCC,0x40,0x24,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF, | ||
| 299 | }; | ||
| 300 | return BN_bin2bn(RFC3526_PRIME_6144,sizeof(RFC3526_PRIME_6144),bn); | ||
| 301 | } | ||
| 302 | |||
| 303 | /* "8192-bit MODP Group" from RFC3526, Section 7. | ||
| 304 | * | ||
| 305 | * The prime is: 2^8192 - 2^8128 - 1 + 2^64 * { [2^8062 pi] + 4743158 } | ||
| 306 | * | ||
| 307 | * RFC3526 specifies a generator of 2. | ||
| 308 | */ | ||
| 309 | |||
| 310 | BIGNUM *get_rfc3526_prime_8192(BIGNUM *bn) | ||
| 311 | { | ||
| 312 | static const unsigned char RFC3526_PRIME_8192[]={ | ||
| 313 | 0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xFF,0xC9,0x0F,0xDA,0xA2, | ||
| 314 | 0x21,0x68,0xC2,0x34,0xC4,0xC6,0x62,0x8B,0x80,0xDC,0x1C,0xD1, | ||
| 315 | 0x29,0x02,0x4E,0x08,0x8A,0x67,0xCC,0x74,0x02,0x0B,0xBE,0xA6, | ||
| 316 | 0x3B,0x13,0x9B,0x22,0x51,0x4A,0x08,0x79,0x8E,0x34,0x04,0xDD, | ||
| 317 | 0xEF,0x95,0x19,0xB3,0xCD,0x3A,0x43,0x1B,0x30,0x2B,0x0A,0x6D, | ||
| 318 | 0xF2,0x5F,0x14,0x37,0x4F,0xE1,0x35,0x6D,0x6D,0x51,0xC2,0x45, | ||
| 319 | 0xE4,0x85,0xB5,0x76,0x62,0x5E,0x7E,0xC6,0xF4,0x4C,0x42,0xE9, | ||
| 320 | 0xA6,0x37,0xED,0x6B,0x0B,0xFF,0x5C,0xB6,0xF4,0x06,0xB7,0xED, | ||
| 321 | 0xEE,0x38,0x6B,0xFB,0x5A,0x89,0x9F,0xA5,0xAE,0x9F,0x24,0x11, | ||
| 322 | 0x7C,0x4B,0x1F,0xE6,0x49,0x28,0x66,0x51,0xEC,0xE4,0x5B,0x3D, | ||
| 323 | 0xC2,0x00,0x7C,0xB8,0xA1,0x63,0xBF,0x05,0x98,0xDA,0x48,0x36, | ||
| 324 | 0x1C,0x55,0xD3,0x9A,0x69,0x16,0x3F,0xA8,0xFD,0x24,0xCF,0x5F, | ||
| 325 | 0x83,0x65,0x5D,0x23,0xDC,0xA3,0xAD,0x96,0x1C,0x62,0xF3,0x56, | ||
| 326 | 0x20,0x85,0x52,0xBB,0x9E,0xD5,0x29,0x07,0x70,0x96,0x96,0x6D, | ||
| 327 | 0x67,0x0C,0x35,0x4E,0x4A,0xBC,0x98,0x04,0xF1,0x74,0x6C,0x08, | ||
| 328 | 0xCA,0x18,0x21,0x7C,0x32,0x90,0x5E,0x46,0x2E,0x36,0xCE,0x3B, | ||
| 329 | 0xE3,0x9E,0x77,0x2C,0x18,0x0E,0x86,0x03,0x9B,0x27,0x83,0xA2, | ||
| 330 | 0xEC,0x07,0xA2,0x8F,0xB5,0xC5,0x5D,0xF0,0x6F,0x4C,0x52,0xC9, | ||
| 331 | 0xDE,0x2B,0xCB,0xF6,0x95,0x58,0x17,0x18,0x39,0x95,0x49,0x7C, | ||
| 332 | 0xEA,0x95,0x6A,0xE5,0x15,0xD2,0x26,0x18,0x98,0xFA,0x05,0x10, | ||
| 333 | 0x15,0x72,0x8E,0x5A,0x8A,0xAA,0xC4,0x2D,0xAD,0x33,0x17,0x0D, | ||
| 334 | 0x04,0x50,0x7A,0x33,0xA8,0x55,0x21,0xAB,0xDF,0x1C,0xBA,0x64, | ||
| 335 | 0xEC,0xFB,0x85,0x04,0x58,0xDB,0xEF,0x0A,0x8A,0xEA,0x71,0x57, | ||
| 336 | 0x5D,0x06,0x0C,0x7D,0xB3,0x97,0x0F,0x85,0xA6,0xE1,0xE4,0xC7, | ||
| 337 | 0xAB,0xF5,0xAE,0x8C,0xDB,0x09,0x33,0xD7,0x1E,0x8C,0x94,0xE0, | ||
| 338 | 0x4A,0x25,0x61,0x9D,0xCE,0xE3,0xD2,0x26,0x1A,0xD2,0xEE,0x6B, | ||
| 339 | 0xF1,0x2F,0xFA,0x06,0xD9,0x8A,0x08,0x64,0xD8,0x76,0x02,0x73, | ||
| 340 | 0x3E,0xC8,0x6A,0x64,0x52,0x1F,0x2B,0x18,0x17,0x7B,0x20,0x0C, | ||
| 341 | 0xBB,0xE1,0x17,0x57,0x7A,0x61,0x5D,0x6C,0x77,0x09,0x88,0xC0, | ||
| 342 | 0xBA,0xD9,0x46,0xE2,0x08,0xE2,0x4F,0xA0,0x74,0xE5,0xAB,0x31, | ||
| 343 | 0x43,0xDB,0x5B,0xFC,0xE0,0xFD,0x10,0x8E,0x4B,0x82,0xD1,0x20, | ||
| 344 | 0xA9,0x21,0x08,0x01,0x1A,0x72,0x3C,0x12,0xA7,0x87,0xE6,0xD7, | ||
| 345 | 0x88,0x71,0x9A,0x10,0xBD,0xBA,0x5B,0x26,0x99,0xC3,0x27,0x18, | ||
| 346 | 0x6A,0xF4,0xE2,0x3C,0x1A,0x94,0x68,0x34,0xB6,0x15,0x0B,0xDA, | ||
| 347 | 0x25,0x83,0xE9,0xCA,0x2A,0xD4,0x4C,0xE8,0xDB,0xBB,0xC2,0xDB, | ||
| 348 | 0x04,0xDE,0x8E,0xF9,0x2E,0x8E,0xFC,0x14,0x1F,0xBE,0xCA,0xA6, | ||
| 349 | 0x28,0x7C,0x59,0x47,0x4E,0x6B,0xC0,0x5D,0x99,0xB2,0x96,0x4F, | ||
| 350 | 0xA0,0x90,0xC3,0xA2,0x23,0x3B,0xA1,0x86,0x51,0x5B,0xE7,0xED, | ||
| 351 | 0x1F,0x61,0x29,0x70,0xCE,0xE2,0xD7,0xAF,0xB8,0x1B,0xDD,0x76, | ||
| 352 | 0x21,0x70,0x48,0x1C,0xD0,0x06,0x91,0x27,0xD5,0xB0,0x5A,0xA9, | ||
| 353 | 0x93,0xB4,0xEA,0x98,0x8D,0x8F,0xDD,0xC1,0x86,0xFF,0xB7,0xDC, | ||
| 354 | 0x90,0xA6,0xC0,0x8F,0x4D,0xF4,0x35,0xC9,0x34,0x02,0x84,0x92, | ||
| 355 | 0x36,0xC3,0xFA,0xB4,0xD2,0x7C,0x70,0x26,0xC1,0xD4,0xDC,0xB2, | ||
| 356 | 0x60,0x26,0x46,0xDE,0xC9,0x75,0x1E,0x76,0x3D,0xBA,0x37,0xBD, | ||
| 357 | 0xF8,0xFF,0x94,0x06,0xAD,0x9E,0x53,0x0E,0xE5,0xDB,0x38,0x2F, | ||
| 358 | 0x41,0x30,0x01,0xAE,0xB0,0x6A,0x53,0xED,0x90,0x27,0xD8,0x31, | ||
| 359 | 0x17,0x97,0x27,0xB0,0x86,0x5A,0x89,0x18,0xDA,0x3E,0xDB,0xEB, | ||
| 360 | 0xCF,0x9B,0x14,0xED,0x44,0xCE,0x6C,0xBA,0xCE,0xD4,0xBB,0x1B, | ||
| 361 | 0xDB,0x7F,0x14,0x47,0xE6,0xCC,0x25,0x4B,0x33,0x20,0x51,0x51, | ||
| 362 | 0x2B,0xD7,0xAF,0x42,0x6F,0xB8,0xF4,0x01,0x37,0x8C,0xD2,0xBF, | ||
| 363 | 0x59,0x83,0xCA,0x01,0xC6,0x4B,0x92,0xEC,0xF0,0x32,0xEA,0x15, | ||
| 364 | 0xD1,0x72,0x1D,0x03,0xF4,0x82,0xD7,0xCE,0x6E,0x74,0xFE,0xF6, | ||
| 365 | 0xD5,0x5E,0x70,0x2F,0x46,0x98,0x0C,0x82,0xB5,0xA8,0x40,0x31, | ||
| 366 | 0x90,0x0B,0x1C,0x9E,0x59,0xE7,0xC9,0x7F,0xBE,0xC7,0xE8,0xF3, | ||
| 367 | 0x23,0xA9,0x7A,0x7E,0x36,0xCC,0x88,0xBE,0x0F,0x1D,0x45,0xB7, | ||
| 368 | 0xFF,0x58,0x5A,0xC5,0x4B,0xD4,0x07,0xB2,0x2B,0x41,0x54,0xAA, | ||
| 369 | 0xCC,0x8F,0x6D,0x7E,0xBF,0x48,0xE1,0xD8,0x14,0xCC,0x5E,0xD2, | ||
| 370 | 0x0F,0x80,0x37,0xE0,0xA7,0x97,0x15,0xEE,0xF2,0x9B,0xE3,0x28, | ||
| 371 | 0x06,0xA1,0xD5,0x8B,0xB7,0xC5,0xDA,0x76,0xF5,0x50,0xAA,0x3D, | ||
| 372 | 0x8A,0x1F,0xBF,0xF0,0xEB,0x19,0xCC,0xB1,0xA3,0x13,0xD5,0x5C, | ||
| 373 | 0xDA,0x56,0xC9,0xEC,0x2E,0xF2,0x96,0x32,0x38,0x7F,0xE8,0xD7, | ||
| 374 | 0x6E,0x3C,0x04,0x68,0x04,0x3E,0x8F,0x66,0x3F,0x48,0x60,0xEE, | ||
| 375 | 0x12,0xBF,0x2D,0x5B,0x0B,0x74,0x74,0xD6,0xE6,0x94,0xF9,0x1E, | ||
| 376 | 0x6D,0xBE,0x11,0x59,0x74,0xA3,0x92,0x6F,0x12,0xFE,0xE5,0xE4, | ||
| 377 | 0x38,0x77,0x7C,0xB6,0xA9,0x32,0xDF,0x8C,0xD8,0xBE,0xC4,0xD0, | ||
| 378 | 0x73,0xB9,0x31,0xBA,0x3B,0xC8,0x32,0xB6,0x8D,0x9D,0xD3,0x00, | ||
| 379 | 0x74,0x1F,0xA7,0xBF,0x8A,0xFC,0x47,0xED,0x25,0x76,0xF6,0x93, | ||
| 380 | 0x6B,0xA4,0x24,0x66,0x3A,0xAB,0x63,0x9C,0x5A,0xE4,0xF5,0x68, | ||
| 381 | 0x34,0x23,0xB4,0x74,0x2B,0xF1,0xC9,0x78,0x23,0x8F,0x16,0xCB, | ||
| 382 | 0xE3,0x9D,0x65,0x2D,0xE3,0xFD,0xB8,0xBE,0xFC,0x84,0x8A,0xD9, | ||
| 383 | 0x22,0x22,0x2E,0x04,0xA4,0x03,0x7C,0x07,0x13,0xEB,0x57,0xA8, | ||
| 384 | 0x1A,0x23,0xF0,0xC7,0x34,0x73,0xFC,0x64,0x6C,0xEA,0x30,0x6B, | ||
| 385 | 0x4B,0xCB,0xC8,0x86,0x2F,0x83,0x85,0xDD,0xFA,0x9D,0x4B,0x7F, | ||
| 386 | 0xA2,0xC0,0x87,0xE8,0x79,0x68,0x33,0x03,0xED,0x5B,0xDD,0x3A, | ||
| 387 | 0x06,0x2B,0x3C,0xF5,0xB3,0xA2,0x78,0xA6,0x6D,0x2A,0x13,0xF8, | ||
| 388 | 0x3F,0x44,0xF8,0x2D,0xDF,0x31,0x0E,0xE0,0x74,0xAB,0x6A,0x36, | ||
| 389 | 0x45,0x97,0xE8,0x99,0xA0,0x25,0x5D,0xC1,0x64,0xF3,0x1C,0xC5, | ||
| 390 | 0x08,0x46,0x85,0x1D,0xF9,0xAB,0x48,0x19,0x5D,0xED,0x7E,0xA1, | ||
| 391 | 0xB1,0xD5,0x10,0xBD,0x7E,0xE7,0x4D,0x73,0xFA,0xF3,0x6B,0xC3, | ||
| 392 | 0x1E,0xCF,0xA2,0x68,0x35,0x90,0x46,0xF4,0xEB,0x87,0x9F,0x92, | ||
| 393 | 0x40,0x09,0x43,0x8B,0x48,0x1C,0x6C,0xD7,0x88,0x9A,0x00,0x2E, | ||
| 394 | 0xD5,0xEE,0x38,0x2B,0xC9,0x19,0x0D,0xA6,0xFC,0x02,0x6E,0x47, | ||
| 395 | 0x95,0x58,0xE4,0x47,0x56,0x77,0xE9,0xAA,0x9E,0x30,0x50,0xE2, | ||
| 396 | 0x76,0x56,0x94,0xDF,0xC8,0x1F,0x56,0xE8,0x80,0xB9,0x6E,0x71, | ||
| 397 | 0x60,0xC9,0x80,0xDD,0x98,0xED,0xD3,0xDF,0xFF,0xFF,0xFF,0xFF, | ||
| 398 | 0xFF,0xFF,0xFF,0xFF, | ||
| 399 | }; | ||
| 400 | return BN_bin2bn(RFC3526_PRIME_8192,sizeof(RFC3526_PRIME_8192),bn); | ||
| 401 | } | ||
| 402 | |||
diff --git a/src/lib/libssl/src/crypto/bn/bn_depr.c b/src/lib/libssl/src/crypto/bn/bn_depr.c new file mode 100644 index 0000000000..27535e4fca --- /dev/null +++ b/src/lib/libssl/src/crypto/bn/bn_depr.c | |||
| @@ -0,0 +1,112 @@ | |||
| 1 | /* crypto/bn/bn_depr.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* Support for deprecated functions goes here - static linkage will only slurp | ||
| 57 | * this code if applications are using them directly. */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <time.h> | ||
| 61 | #include "cryptlib.h" | ||
| 62 | #include "bn_lcl.h" | ||
| 63 | #include <openssl/rand.h> | ||
| 64 | |||
| 65 | static void *dummy=&dummy; | ||
| 66 | |||
| 67 | #ifndef OPENSSL_NO_DEPRECATED | ||
| 68 | BIGNUM *BN_generate_prime(BIGNUM *ret, int bits, int safe, | ||
| 69 | const BIGNUM *add, const BIGNUM *rem, | ||
| 70 | void (*callback)(int,int,void *), void *cb_arg) | ||
| 71 | { | ||
| 72 | BN_GENCB cb; | ||
| 73 | BIGNUM *rnd=NULL; | ||
| 74 | int found = 0; | ||
| 75 | |||
| 76 | BN_GENCB_set_old(&cb, callback, cb_arg); | ||
| 77 | |||
| 78 | if (ret == NULL) | ||
| 79 | { | ||
| 80 | if ((rnd=BN_new()) == NULL) goto err; | ||
| 81 | } | ||
| 82 | else | ||
| 83 | rnd=ret; | ||
| 84 | if(!BN_generate_prime_ex(rnd, bits, safe, add, rem, &cb)) | ||
| 85 | goto err; | ||
| 86 | |||
| 87 | /* we have a prime :-) */ | ||
| 88 | found = 1; | ||
| 89 | err: | ||
| 90 | if (!found && (ret == NULL) && (rnd != NULL)) BN_free(rnd); | ||
| 91 | return(found ? rnd : NULL); | ||
| 92 | } | ||
| 93 | |||
| 94 | int BN_is_prime(const BIGNUM *a, int checks, void (*callback)(int,int,void *), | ||
| 95 | BN_CTX *ctx_passed, void *cb_arg) | ||
| 96 | { | ||
| 97 | BN_GENCB cb; | ||
| 98 | BN_GENCB_set_old(&cb, callback, cb_arg); | ||
| 99 | return BN_is_prime_ex(a, checks, ctx_passed, &cb); | ||
| 100 | } | ||
| 101 | |||
| 102 | int BN_is_prime_fasttest(const BIGNUM *a, int checks, | ||
| 103 | void (*callback)(int,int,void *), | ||
| 104 | BN_CTX *ctx_passed, void *cb_arg, | ||
| 105 | int do_trial_division) | ||
| 106 | { | ||
| 107 | BN_GENCB cb; | ||
| 108 | BN_GENCB_set_old(&cb, callback, cb_arg); | ||
| 109 | return BN_is_prime_fasttest_ex(a, checks, ctx_passed, | ||
| 110 | do_trial_division, &cb); | ||
| 111 | } | ||
| 112 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/bn/bn_gf2m.c b/src/lib/libssl/src/crypto/bn/bn_gf2m.c new file mode 100644 index 0000000000..6a793857e1 --- /dev/null +++ b/src/lib/libssl/src/crypto/bn/bn_gf2m.c | |||
| @@ -0,0 +1,1091 @@ | |||
| 1 | /* crypto/bn/bn_gf2m.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * In addition, Sun covenants to all licensees who provide a reciprocal | ||
| 13 | * covenant with respect to their own patents if any, not to sue under | ||
| 14 | * current and future patent claims necessarily infringed by the making, | ||
| 15 | * using, practicing, selling, offering for sale and/or otherwise | ||
| 16 | * disposing of the ECC Code as delivered hereunder (or portions thereof), | ||
| 17 | * provided that such covenant shall not apply: | ||
| 18 | * 1) for code that a licensee deletes from the ECC Code; | ||
| 19 | * 2) separates from the ECC Code; or | ||
| 20 | * 3) for infringements caused by: | ||
| 21 | * i) the modification of the ECC Code or | ||
| 22 | * ii) the combination of the ECC Code with other software or | ||
| 23 | * devices where such combination causes the infringement. | ||
| 24 | * | ||
| 25 | * The software is originally written by Sheueling Chang Shantz and | ||
| 26 | * Douglas Stebila of Sun Microsystems Laboratories. | ||
| 27 | * | ||
| 28 | */ | ||
| 29 | |||
| 30 | /* NOTE: This file is licensed pursuant to the OpenSSL license below | ||
| 31 | * and may be modified; but after modifications, the above covenant | ||
| 32 | * may no longer apply! In such cases, the corresponding paragraph | ||
| 33 | * ["In addition, Sun covenants ... causes the infringement."] and | ||
| 34 | * this note can be edited out; but please keep the Sun copyright | ||
| 35 | * notice and attribution. */ | ||
| 36 | |||
| 37 | /* ==================================================================== | ||
| 38 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 39 | * | ||
| 40 | * Redistribution and use in source and binary forms, with or without | ||
| 41 | * modification, are permitted provided that the following conditions | ||
| 42 | * are met: | ||
| 43 | * | ||
| 44 | * 1. Redistributions of source code must retain the above copyright | ||
| 45 | * notice, this list of conditions and the following disclaimer. | ||
| 46 | * | ||
| 47 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 48 | * notice, this list of conditions and the following disclaimer in | ||
| 49 | * the documentation and/or other materials provided with the | ||
| 50 | * distribution. | ||
| 51 | * | ||
| 52 | * 3. All advertising materials mentioning features or use of this | ||
| 53 | * software must display the following acknowledgment: | ||
| 54 | * "This product includes software developed by the OpenSSL Project | ||
| 55 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 56 | * | ||
| 57 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 58 | * endorse or promote products derived from this software without | ||
| 59 | * prior written permission. For written permission, please contact | ||
| 60 | * openssl-core@openssl.org. | ||
| 61 | * | ||
| 62 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 63 | * nor may "OpenSSL" appear in their names without prior written | ||
| 64 | * permission of the OpenSSL Project. | ||
| 65 | * | ||
| 66 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 67 | * acknowledgment: | ||
| 68 | * "This product includes software developed by the OpenSSL Project | ||
| 69 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 70 | * | ||
| 71 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 72 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 73 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 74 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 75 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 76 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 77 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 78 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 79 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 80 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 81 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 82 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 83 | * ==================================================================== | ||
| 84 | * | ||
| 85 | * This product includes cryptographic software written by Eric Young | ||
| 86 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 87 | * Hudson (tjh@cryptsoft.com). | ||
| 88 | * | ||
| 89 | */ | ||
| 90 | |||
| 91 | #include <assert.h> | ||
| 92 | #include <limits.h> | ||
| 93 | #include <stdio.h> | ||
| 94 | #include "cryptlib.h" | ||
| 95 | #include "bn_lcl.h" | ||
| 96 | |||
| 97 | /* Maximum number of iterations before BN_GF2m_mod_solve_quad_arr should fail. */ | ||
| 98 | #define MAX_ITERATIONS 50 | ||
| 99 | |||
| 100 | static const BN_ULONG SQR_tb[16] = | ||
| 101 | { 0, 1, 4, 5, 16, 17, 20, 21, | ||
| 102 | 64, 65, 68, 69, 80, 81, 84, 85 }; | ||
| 103 | /* Platform-specific macros to accelerate squaring. */ | ||
| 104 | #if defined(SIXTY_FOUR_BIT) || defined(SIXTY_FOUR_BIT_LONG) | ||
| 105 | #define SQR1(w) \ | ||
| 106 | SQR_tb[(w) >> 60 & 0xF] << 56 | SQR_tb[(w) >> 56 & 0xF] << 48 | \ | ||
| 107 | SQR_tb[(w) >> 52 & 0xF] << 40 | SQR_tb[(w) >> 48 & 0xF] << 32 | \ | ||
| 108 | SQR_tb[(w) >> 44 & 0xF] << 24 | SQR_tb[(w) >> 40 & 0xF] << 16 | \ | ||
| 109 | SQR_tb[(w) >> 36 & 0xF] << 8 | SQR_tb[(w) >> 32 & 0xF] | ||
| 110 | #define SQR0(w) \ | ||
| 111 | SQR_tb[(w) >> 28 & 0xF] << 56 | SQR_tb[(w) >> 24 & 0xF] << 48 | \ | ||
| 112 | SQR_tb[(w) >> 20 & 0xF] << 40 | SQR_tb[(w) >> 16 & 0xF] << 32 | \ | ||
| 113 | SQR_tb[(w) >> 12 & 0xF] << 24 | SQR_tb[(w) >> 8 & 0xF] << 16 | \ | ||
| 114 | SQR_tb[(w) >> 4 & 0xF] << 8 | SQR_tb[(w) & 0xF] | ||
| 115 | #endif | ||
| 116 | #ifdef THIRTY_TWO_BIT | ||
| 117 | #define SQR1(w) \ | ||
| 118 | SQR_tb[(w) >> 28 & 0xF] << 24 | SQR_tb[(w) >> 24 & 0xF] << 16 | \ | ||
| 119 | SQR_tb[(w) >> 20 & 0xF] << 8 | SQR_tb[(w) >> 16 & 0xF] | ||
| 120 | #define SQR0(w) \ | ||
| 121 | SQR_tb[(w) >> 12 & 0xF] << 24 | SQR_tb[(w) >> 8 & 0xF] << 16 | \ | ||
| 122 | SQR_tb[(w) >> 4 & 0xF] << 8 | SQR_tb[(w) & 0xF] | ||
| 123 | #endif | ||
| 124 | #ifdef SIXTEEN_BIT | ||
| 125 | #define SQR1(w) \ | ||
| 126 | SQR_tb[(w) >> 12 & 0xF] << 8 | SQR_tb[(w) >> 8 & 0xF] | ||
| 127 | #define SQR0(w) \ | ||
| 128 | SQR_tb[(w) >> 4 & 0xF] << 8 | SQR_tb[(w) & 0xF] | ||
| 129 | #endif | ||
| 130 | #ifdef EIGHT_BIT | ||
| 131 | #define SQR1(w) \ | ||
| 132 | SQR_tb[(w) >> 4 & 0xF] | ||
| 133 | #define SQR0(w) \ | ||
| 134 | SQR_tb[(w) & 15] | ||
| 135 | #endif | ||
| 136 | |||
| 137 | /* Product of two polynomials a, b each with degree < BN_BITS2 - 1, | ||
| 138 | * result is a polynomial r with degree < 2 * BN_BITS - 1 | ||
| 139 | * The caller MUST ensure that the variables have the right amount | ||
| 140 | * of space allocated. | ||
| 141 | */ | ||
| 142 | #ifdef EIGHT_BIT | ||
| 143 | static void bn_GF2m_mul_1x1(BN_ULONG *r1, BN_ULONG *r0, const BN_ULONG a, const BN_ULONG b) | ||
| 144 | { | ||
| 145 | register BN_ULONG h, l, s; | ||
| 146 | BN_ULONG tab[4], top1b = a >> 7; | ||
| 147 | register BN_ULONG a1, a2; | ||
| 148 | |||
| 149 | a1 = a & (0x7F); a2 = a1 << 1; | ||
| 150 | |||
| 151 | tab[0] = 0; tab[1] = a1; tab[2] = a2; tab[3] = a1^a2; | ||
| 152 | |||
| 153 | s = tab[b & 0x3]; l = s; | ||
| 154 | s = tab[b >> 2 & 0x3]; l ^= s << 2; h = s >> 6; | ||
| 155 | s = tab[b >> 4 & 0x3]; l ^= s << 4; h ^= s >> 4; | ||
| 156 | s = tab[b >> 6 ]; l ^= s << 6; h ^= s >> 2; | ||
| 157 | |||
| 158 | /* compensate for the top bit of a */ | ||
| 159 | |||
| 160 | if (top1b & 01) { l ^= b << 7; h ^= b >> 1; } | ||
| 161 | |||
| 162 | *r1 = h; *r0 = l; | ||
| 163 | } | ||
| 164 | #endif | ||
| 165 | #ifdef SIXTEEN_BIT | ||
| 166 | static void bn_GF2m_mul_1x1(BN_ULONG *r1, BN_ULONG *r0, const BN_ULONG a, const BN_ULONG b) | ||
| 167 | { | ||
| 168 | register BN_ULONG h, l, s; | ||
| 169 | BN_ULONG tab[4], top1b = a >> 15; | ||
| 170 | register BN_ULONG a1, a2; | ||
| 171 | |||
| 172 | a1 = a & (0x7FFF); a2 = a1 << 1; | ||
| 173 | |||
| 174 | tab[0] = 0; tab[1] = a1; tab[2] = a2; tab[3] = a1^a2; | ||
| 175 | |||
| 176 | s = tab[b & 0x3]; l = s; | ||
| 177 | s = tab[b >> 2 & 0x3]; l ^= s << 2; h = s >> 14; | ||
| 178 | s = tab[b >> 4 & 0x3]; l ^= s << 4; h ^= s >> 12; | ||
| 179 | s = tab[b >> 6 & 0x3]; l ^= s << 6; h ^= s >> 10; | ||
| 180 | s = tab[b >> 8 & 0x3]; l ^= s << 8; h ^= s >> 8; | ||
| 181 | s = tab[b >>10 & 0x3]; l ^= s << 10; h ^= s >> 6; | ||
| 182 | s = tab[b >>12 & 0x3]; l ^= s << 12; h ^= s >> 4; | ||
| 183 | s = tab[b >>14 ]; l ^= s << 14; h ^= s >> 2; | ||
| 184 | |||
| 185 | /* compensate for the top bit of a */ | ||
| 186 | |||
| 187 | if (top1b & 01) { l ^= b << 15; h ^= b >> 1; } | ||
| 188 | |||
| 189 | *r1 = h; *r0 = l; | ||
| 190 | } | ||
| 191 | #endif | ||
| 192 | #ifdef THIRTY_TWO_BIT | ||
| 193 | static void bn_GF2m_mul_1x1(BN_ULONG *r1, BN_ULONG *r0, const BN_ULONG a, const BN_ULONG b) | ||
| 194 | { | ||
| 195 | register BN_ULONG h, l, s; | ||
| 196 | BN_ULONG tab[8], top2b = a >> 30; | ||
| 197 | register BN_ULONG a1, a2, a4; | ||
| 198 | |||
| 199 | a1 = a & (0x3FFFFFFF); a2 = a1 << 1; a4 = a2 << 1; | ||
| 200 | |||
| 201 | tab[0] = 0; tab[1] = a1; tab[2] = a2; tab[3] = a1^a2; | ||
| 202 | tab[4] = a4; tab[5] = a1^a4; tab[6] = a2^a4; tab[7] = a1^a2^a4; | ||
| 203 | |||
| 204 | s = tab[b & 0x7]; l = s; | ||
| 205 | s = tab[b >> 3 & 0x7]; l ^= s << 3; h = s >> 29; | ||
| 206 | s = tab[b >> 6 & 0x7]; l ^= s << 6; h ^= s >> 26; | ||
| 207 | s = tab[b >> 9 & 0x7]; l ^= s << 9; h ^= s >> 23; | ||
| 208 | s = tab[b >> 12 & 0x7]; l ^= s << 12; h ^= s >> 20; | ||
| 209 | s = tab[b >> 15 & 0x7]; l ^= s << 15; h ^= s >> 17; | ||
| 210 | s = tab[b >> 18 & 0x7]; l ^= s << 18; h ^= s >> 14; | ||
| 211 | s = tab[b >> 21 & 0x7]; l ^= s << 21; h ^= s >> 11; | ||
| 212 | s = tab[b >> 24 & 0x7]; l ^= s << 24; h ^= s >> 8; | ||
| 213 | s = tab[b >> 27 & 0x7]; l ^= s << 27; h ^= s >> 5; | ||
| 214 | s = tab[b >> 30 ]; l ^= s << 30; h ^= s >> 2; | ||
| 215 | |||
| 216 | /* compensate for the top two bits of a */ | ||
| 217 | |||
| 218 | if (top2b & 01) { l ^= b << 30; h ^= b >> 2; } | ||
| 219 | if (top2b & 02) { l ^= b << 31; h ^= b >> 1; } | ||
| 220 | |||
| 221 | *r1 = h; *r0 = l; | ||
| 222 | } | ||
| 223 | #endif | ||
| 224 | #if defined(SIXTY_FOUR_BIT) || defined(SIXTY_FOUR_BIT_LONG) | ||
| 225 | static void bn_GF2m_mul_1x1(BN_ULONG *r1, BN_ULONG *r0, const BN_ULONG a, const BN_ULONG b) | ||
| 226 | { | ||
| 227 | register BN_ULONG h, l, s; | ||
| 228 | BN_ULONG tab[16], top3b = a >> 61; | ||
| 229 | register BN_ULONG a1, a2, a4, a8; | ||
| 230 | |||
| 231 | a1 = a & (0x1FFFFFFFFFFFFFFFULL); a2 = a1 << 1; a4 = a2 << 1; a8 = a4 << 1; | ||
| 232 | |||
| 233 | tab[ 0] = 0; tab[ 1] = a1; tab[ 2] = a2; tab[ 3] = a1^a2; | ||
| 234 | tab[ 4] = a4; tab[ 5] = a1^a4; tab[ 6] = a2^a4; tab[ 7] = a1^a2^a4; | ||
| 235 | tab[ 8] = a8; tab[ 9] = a1^a8; tab[10] = a2^a8; tab[11] = a1^a2^a8; | ||
| 236 | tab[12] = a4^a8; tab[13] = a1^a4^a8; tab[14] = a2^a4^a8; tab[15] = a1^a2^a4^a8; | ||
| 237 | |||
| 238 | s = tab[b & 0xF]; l = s; | ||
| 239 | s = tab[b >> 4 & 0xF]; l ^= s << 4; h = s >> 60; | ||
| 240 | s = tab[b >> 8 & 0xF]; l ^= s << 8; h ^= s >> 56; | ||
| 241 | s = tab[b >> 12 & 0xF]; l ^= s << 12; h ^= s >> 52; | ||
| 242 | s = tab[b >> 16 & 0xF]; l ^= s << 16; h ^= s >> 48; | ||
| 243 | s = tab[b >> 20 & 0xF]; l ^= s << 20; h ^= s >> 44; | ||
| 244 | s = tab[b >> 24 & 0xF]; l ^= s << 24; h ^= s >> 40; | ||
| 245 | s = tab[b >> 28 & 0xF]; l ^= s << 28; h ^= s >> 36; | ||
| 246 | s = tab[b >> 32 & 0xF]; l ^= s << 32; h ^= s >> 32; | ||
| 247 | s = tab[b >> 36 & 0xF]; l ^= s << 36; h ^= s >> 28; | ||
| 248 | s = tab[b >> 40 & 0xF]; l ^= s << 40; h ^= s >> 24; | ||
| 249 | s = tab[b >> 44 & 0xF]; l ^= s << 44; h ^= s >> 20; | ||
| 250 | s = tab[b >> 48 & 0xF]; l ^= s << 48; h ^= s >> 16; | ||
| 251 | s = tab[b >> 52 & 0xF]; l ^= s << 52; h ^= s >> 12; | ||
| 252 | s = tab[b >> 56 & 0xF]; l ^= s << 56; h ^= s >> 8; | ||
| 253 | s = tab[b >> 60 ]; l ^= s << 60; h ^= s >> 4; | ||
| 254 | |||
| 255 | /* compensate for the top three bits of a */ | ||
| 256 | |||
| 257 | if (top3b & 01) { l ^= b << 61; h ^= b >> 3; } | ||
| 258 | if (top3b & 02) { l ^= b << 62; h ^= b >> 2; } | ||
| 259 | if (top3b & 04) { l ^= b << 63; h ^= b >> 1; } | ||
| 260 | |||
| 261 | *r1 = h; *r0 = l; | ||
| 262 | } | ||
| 263 | #endif | ||
| 264 | |||
| 265 | /* Product of two polynomials a, b each with degree < 2 * BN_BITS2 - 1, | ||
| 266 | * result is a polynomial r with degree < 4 * BN_BITS2 - 1 | ||
| 267 | * The caller MUST ensure that the variables have the right amount | ||
| 268 | * of space allocated. | ||
| 269 | */ | ||
| 270 | static void bn_GF2m_mul_2x2(BN_ULONG *r, const BN_ULONG a1, const BN_ULONG a0, const BN_ULONG b1, const BN_ULONG b0) | ||
| 271 | { | ||
| 272 | BN_ULONG m1, m0; | ||
| 273 | /* r[3] = h1, r[2] = h0; r[1] = l1; r[0] = l0 */ | ||
| 274 | bn_GF2m_mul_1x1(r+3, r+2, a1, b1); | ||
| 275 | bn_GF2m_mul_1x1(r+1, r, a0, b0); | ||
| 276 | bn_GF2m_mul_1x1(&m1, &m0, a0 ^ a1, b0 ^ b1); | ||
| 277 | /* Correction on m1 ^= l1 ^ h1; m0 ^= l0 ^ h0; */ | ||
| 278 | r[2] ^= m1 ^ r[1] ^ r[3]; /* h0 ^= m1 ^ l1 ^ h1; */ | ||
| 279 | r[1] = r[3] ^ r[2] ^ r[0] ^ m1 ^ m0; /* l1 ^= l0 ^ h0 ^ m0; */ | ||
| 280 | } | ||
| 281 | |||
| 282 | |||
| 283 | /* Add polynomials a and b and store result in r; r could be a or b, a and b | ||
| 284 | * could be equal; r is the bitwise XOR of a and b. | ||
| 285 | */ | ||
| 286 | int BN_GF2m_add(BIGNUM *r, const BIGNUM *a, const BIGNUM *b) | ||
| 287 | { | ||
| 288 | int i; | ||
| 289 | const BIGNUM *at, *bt; | ||
| 290 | |||
| 291 | bn_check_top(a); | ||
| 292 | bn_check_top(b); | ||
| 293 | |||
| 294 | if (a->top < b->top) { at = b; bt = a; } | ||
| 295 | else { at = a; bt = b; } | ||
| 296 | |||
| 297 | bn_wexpand(r, at->top); | ||
| 298 | |||
| 299 | for (i = 0; i < bt->top; i++) | ||
| 300 | { | ||
| 301 | r->d[i] = at->d[i] ^ bt->d[i]; | ||
| 302 | } | ||
| 303 | for (; i < at->top; i++) | ||
| 304 | { | ||
| 305 | r->d[i] = at->d[i]; | ||
| 306 | } | ||
| 307 | |||
| 308 | r->top = at->top; | ||
| 309 | bn_correct_top(r); | ||
| 310 | |||
| 311 | return 1; | ||
| 312 | } | ||
| 313 | |||
| 314 | |||
| 315 | /* Some functions allow for representation of the irreducible polynomials | ||
| 316 | * as an int[], say p. The irreducible f(t) is then of the form: | ||
| 317 | * t^p[0] + t^p[1] + ... + t^p[k] | ||
| 318 | * where m = p[0] > p[1] > ... > p[k] = 0. | ||
| 319 | */ | ||
| 320 | |||
| 321 | |||
| 322 | /* Performs modular reduction of a and store result in r. r could be a. */ | ||
| 323 | int BN_GF2m_mod_arr(BIGNUM *r, const BIGNUM *a, const unsigned int p[]) | ||
| 324 | { | ||
| 325 | int j, k; | ||
| 326 | int n, dN, d0, d1; | ||
| 327 | BN_ULONG zz, *z; | ||
| 328 | |||
| 329 | bn_check_top(a); | ||
| 330 | |||
| 331 | if (!p[0]) | ||
| 332 | { | ||
| 333 | /* reduction mod 1 => return 0 */ | ||
| 334 | BN_zero(r); | ||
| 335 | return 1; | ||
| 336 | } | ||
| 337 | |||
| 338 | /* Since the algorithm does reduction in the r value, if a != r, copy | ||
| 339 | * the contents of a into r so we can do reduction in r. | ||
| 340 | */ | ||
| 341 | if (a != r) | ||
| 342 | { | ||
| 343 | if (!bn_wexpand(r, a->top)) return 0; | ||
| 344 | for (j = 0; j < a->top; j++) | ||
| 345 | { | ||
| 346 | r->d[j] = a->d[j]; | ||
| 347 | } | ||
| 348 | r->top = a->top; | ||
| 349 | } | ||
| 350 | z = r->d; | ||
| 351 | |||
| 352 | /* start reduction */ | ||
| 353 | dN = p[0] / BN_BITS2; | ||
| 354 | for (j = r->top - 1; j > dN;) | ||
| 355 | { | ||
| 356 | zz = z[j]; | ||
| 357 | if (z[j] == 0) { j--; continue; } | ||
| 358 | z[j] = 0; | ||
| 359 | |||
| 360 | for (k = 1; p[k] != 0; k++) | ||
| 361 | { | ||
| 362 | /* reducing component t^p[k] */ | ||
| 363 | n = p[0] - p[k]; | ||
| 364 | d0 = n % BN_BITS2; d1 = BN_BITS2 - d0; | ||
| 365 | n /= BN_BITS2; | ||
| 366 | z[j-n] ^= (zz>>d0); | ||
| 367 | if (d0) z[j-n-1] ^= (zz<<d1); | ||
| 368 | } | ||
| 369 | |||
| 370 | /* reducing component t^0 */ | ||
| 371 | n = dN; | ||
| 372 | d0 = p[0] % BN_BITS2; | ||
| 373 | d1 = BN_BITS2 - d0; | ||
| 374 | z[j-n] ^= (zz >> d0); | ||
| 375 | if (d0) z[j-n-1] ^= (zz << d1); | ||
| 376 | } | ||
| 377 | |||
| 378 | /* final round of reduction */ | ||
| 379 | while (j == dN) | ||
| 380 | { | ||
| 381 | |||
| 382 | d0 = p[0] % BN_BITS2; | ||
| 383 | zz = z[dN] >> d0; | ||
| 384 | if (zz == 0) break; | ||
| 385 | d1 = BN_BITS2 - d0; | ||
| 386 | |||
| 387 | if (d0) z[dN] = (z[dN] << d1) >> d1; /* clear up the top d1 bits */ | ||
| 388 | z[0] ^= zz; /* reduction t^0 component */ | ||
| 389 | |||
| 390 | for (k = 1; p[k] != 0; k++) | ||
| 391 | { | ||
| 392 | BN_ULONG tmp_ulong; | ||
| 393 | |||
| 394 | /* reducing component t^p[k]*/ | ||
| 395 | n = p[k] / BN_BITS2; | ||
| 396 | d0 = p[k] % BN_BITS2; | ||
| 397 | d1 = BN_BITS2 - d0; | ||
| 398 | z[n] ^= (zz << d0); | ||
| 399 | tmp_ulong = zz >> d1; | ||
| 400 | if (d0 && tmp_ulong) | ||
| 401 | z[n+1] ^= tmp_ulong; | ||
| 402 | } | ||
| 403 | |||
| 404 | |||
| 405 | } | ||
| 406 | |||
| 407 | bn_correct_top(r); | ||
| 408 | return 1; | ||
| 409 | } | ||
| 410 | |||
| 411 | /* Performs modular reduction of a by p and store result in r. r could be a. | ||
| 412 | * | ||
| 413 | * This function calls down to the BN_GF2m_mod_arr implementation; this wrapper | ||
| 414 | * function is only provided for convenience; for best performance, use the | ||
| 415 | * BN_GF2m_mod_arr function. | ||
| 416 | */ | ||
| 417 | int BN_GF2m_mod(BIGNUM *r, const BIGNUM *a, const BIGNUM *p) | ||
| 418 | { | ||
| 419 | int ret = 0; | ||
| 420 | const int max = BN_num_bits(p); | ||
| 421 | unsigned int *arr=NULL; | ||
| 422 | bn_check_top(a); | ||
| 423 | bn_check_top(p); | ||
| 424 | if ((arr = (unsigned int *)OPENSSL_malloc(sizeof(unsigned int) * max)) == NULL) goto err; | ||
| 425 | ret = BN_GF2m_poly2arr(p, arr, max); | ||
| 426 | if (!ret || ret > max) | ||
| 427 | { | ||
| 428 | BNerr(BN_F_BN_GF2M_MOD,BN_R_INVALID_LENGTH); | ||
| 429 | goto err; | ||
| 430 | } | ||
| 431 | ret = BN_GF2m_mod_arr(r, a, arr); | ||
| 432 | bn_check_top(r); | ||
| 433 | err: | ||
| 434 | if (arr) OPENSSL_free(arr); | ||
| 435 | return ret; | ||
| 436 | } | ||
| 437 | |||
| 438 | |||
| 439 | /* Compute the product of two polynomials a and b, reduce modulo p, and store | ||
| 440 | * the result in r. r could be a or b; a could be b. | ||
| 441 | */ | ||
| 442 | int BN_GF2m_mod_mul_arr(BIGNUM *r, const BIGNUM *a, const BIGNUM *b, const unsigned int p[], BN_CTX *ctx) | ||
| 443 | { | ||
| 444 | int zlen, i, j, k, ret = 0; | ||
| 445 | BIGNUM *s; | ||
| 446 | BN_ULONG x1, x0, y1, y0, zz[4]; | ||
| 447 | |||
| 448 | bn_check_top(a); | ||
| 449 | bn_check_top(b); | ||
| 450 | |||
| 451 | if (a == b) | ||
| 452 | { | ||
| 453 | return BN_GF2m_mod_sqr_arr(r, a, p, ctx); | ||
| 454 | } | ||
| 455 | |||
| 456 | BN_CTX_start(ctx); | ||
| 457 | if ((s = BN_CTX_get(ctx)) == NULL) goto err; | ||
| 458 | |||
| 459 | zlen = a->top + b->top + 4; | ||
| 460 | if (!bn_wexpand(s, zlen)) goto err; | ||
| 461 | s->top = zlen; | ||
| 462 | |||
| 463 | for (i = 0; i < zlen; i++) s->d[i] = 0; | ||
| 464 | |||
| 465 | for (j = 0; j < b->top; j += 2) | ||
| 466 | { | ||
| 467 | y0 = b->d[j]; | ||
| 468 | y1 = ((j+1) == b->top) ? 0 : b->d[j+1]; | ||
| 469 | for (i = 0; i < a->top; i += 2) | ||
| 470 | { | ||
| 471 | x0 = a->d[i]; | ||
| 472 | x1 = ((i+1) == a->top) ? 0 : a->d[i+1]; | ||
| 473 | bn_GF2m_mul_2x2(zz, x1, x0, y1, y0); | ||
| 474 | for (k = 0; k < 4; k++) s->d[i+j+k] ^= zz[k]; | ||
| 475 | } | ||
| 476 | } | ||
| 477 | |||
| 478 | bn_correct_top(s); | ||
| 479 | if (BN_GF2m_mod_arr(r, s, p)) | ||
| 480 | ret = 1; | ||
| 481 | bn_check_top(r); | ||
| 482 | |||
| 483 | err: | ||
| 484 | BN_CTX_end(ctx); | ||
| 485 | return ret; | ||
| 486 | } | ||
| 487 | |||
| 488 | /* Compute the product of two polynomials a and b, reduce modulo p, and store | ||
| 489 | * the result in r. r could be a or b; a could equal b. | ||
| 490 | * | ||
| 491 | * This function calls down to the BN_GF2m_mod_mul_arr implementation; this wrapper | ||
| 492 | * function is only provided for convenience; for best performance, use the | ||
| 493 | * BN_GF2m_mod_mul_arr function. | ||
| 494 | */ | ||
| 495 | int BN_GF2m_mod_mul(BIGNUM *r, const BIGNUM *a, const BIGNUM *b, const BIGNUM *p, BN_CTX *ctx) | ||
| 496 | { | ||
| 497 | int ret = 0; | ||
| 498 | const int max = BN_num_bits(p); | ||
| 499 | unsigned int *arr=NULL; | ||
| 500 | bn_check_top(a); | ||
| 501 | bn_check_top(b); | ||
| 502 | bn_check_top(p); | ||
| 503 | if ((arr = (unsigned int *)OPENSSL_malloc(sizeof(unsigned int) * max)) == NULL) goto err; | ||
| 504 | ret = BN_GF2m_poly2arr(p, arr, max); | ||
| 505 | if (!ret || ret > max) | ||
| 506 | { | ||
| 507 | BNerr(BN_F_BN_GF2M_MOD_MUL,BN_R_INVALID_LENGTH); | ||
| 508 | goto err; | ||
| 509 | } | ||
| 510 | ret = BN_GF2m_mod_mul_arr(r, a, b, arr, ctx); | ||
| 511 | bn_check_top(r); | ||
| 512 | err: | ||
| 513 | if (arr) OPENSSL_free(arr); | ||
| 514 | return ret; | ||
| 515 | } | ||
| 516 | |||
| 517 | |||
| 518 | /* Square a, reduce the result mod p, and store it in a. r could be a. */ | ||
| 519 | int BN_GF2m_mod_sqr_arr(BIGNUM *r, const BIGNUM *a, const unsigned int p[], BN_CTX *ctx) | ||
| 520 | { | ||
| 521 | int i, ret = 0; | ||
| 522 | BIGNUM *s; | ||
| 523 | |||
| 524 | bn_check_top(a); | ||
| 525 | BN_CTX_start(ctx); | ||
| 526 | if ((s = BN_CTX_get(ctx)) == NULL) return 0; | ||
| 527 | if (!bn_wexpand(s, 2 * a->top)) goto err; | ||
| 528 | |||
| 529 | for (i = a->top - 1; i >= 0; i--) | ||
| 530 | { | ||
| 531 | s->d[2*i+1] = SQR1(a->d[i]); | ||
| 532 | s->d[2*i ] = SQR0(a->d[i]); | ||
| 533 | } | ||
| 534 | |||
| 535 | s->top = 2 * a->top; | ||
| 536 | bn_correct_top(s); | ||
| 537 | if (!BN_GF2m_mod_arr(r, s, p)) goto err; | ||
| 538 | bn_check_top(r); | ||
| 539 | ret = 1; | ||
| 540 | err: | ||
| 541 | BN_CTX_end(ctx); | ||
| 542 | return ret; | ||
| 543 | } | ||
| 544 | |||
| 545 | /* Square a, reduce the result mod p, and store it in a. r could be a. | ||
| 546 | * | ||
| 547 | * This function calls down to the BN_GF2m_mod_sqr_arr implementation; this wrapper | ||
| 548 | * function is only provided for convenience; for best performance, use the | ||
| 549 | * BN_GF2m_mod_sqr_arr function. | ||
| 550 | */ | ||
| 551 | int BN_GF2m_mod_sqr(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx) | ||
| 552 | { | ||
| 553 | int ret = 0; | ||
| 554 | const int max = BN_num_bits(p); | ||
| 555 | unsigned int *arr=NULL; | ||
| 556 | |||
| 557 | bn_check_top(a); | ||
| 558 | bn_check_top(p); | ||
| 559 | if ((arr = (unsigned int *)OPENSSL_malloc(sizeof(unsigned int) * max)) == NULL) goto err; | ||
| 560 | ret = BN_GF2m_poly2arr(p, arr, max); | ||
| 561 | if (!ret || ret > max) | ||
| 562 | { | ||
| 563 | BNerr(BN_F_BN_GF2M_MOD_SQR,BN_R_INVALID_LENGTH); | ||
| 564 | goto err; | ||
| 565 | } | ||
| 566 | ret = BN_GF2m_mod_sqr_arr(r, a, arr, ctx); | ||
| 567 | bn_check_top(r); | ||
| 568 | err: | ||
| 569 | if (arr) OPENSSL_free(arr); | ||
| 570 | return ret; | ||
| 571 | } | ||
| 572 | |||
| 573 | |||
| 574 | /* Invert a, reduce modulo p, and store the result in r. r could be a. | ||
| 575 | * Uses Modified Almost Inverse Algorithm (Algorithm 10) from | ||
| 576 | * Hankerson, D., Hernandez, J.L., and Menezes, A. "Software Implementation | ||
| 577 | * of Elliptic Curve Cryptography Over Binary Fields". | ||
| 578 | */ | ||
| 579 | int BN_GF2m_mod_inv(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx) | ||
| 580 | { | ||
| 581 | BIGNUM *b, *c, *u, *v, *tmp; | ||
| 582 | int ret = 0; | ||
| 583 | |||
| 584 | bn_check_top(a); | ||
| 585 | bn_check_top(p); | ||
| 586 | |||
| 587 | BN_CTX_start(ctx); | ||
| 588 | |||
| 589 | b = BN_CTX_get(ctx); | ||
| 590 | c = BN_CTX_get(ctx); | ||
| 591 | u = BN_CTX_get(ctx); | ||
| 592 | v = BN_CTX_get(ctx); | ||
| 593 | if (v == NULL) goto err; | ||
| 594 | |||
| 595 | if (!BN_one(b)) goto err; | ||
| 596 | if (!BN_GF2m_mod(u, a, p)) goto err; | ||
| 597 | if (!BN_copy(v, p)) goto err; | ||
| 598 | |||
| 599 | if (BN_is_zero(u)) goto err; | ||
| 600 | |||
| 601 | while (1) | ||
| 602 | { | ||
| 603 | while (!BN_is_odd(u)) | ||
| 604 | { | ||
| 605 | if (!BN_rshift1(u, u)) goto err; | ||
| 606 | if (BN_is_odd(b)) | ||
| 607 | { | ||
| 608 | if (!BN_GF2m_add(b, b, p)) goto err; | ||
| 609 | } | ||
| 610 | if (!BN_rshift1(b, b)) goto err; | ||
| 611 | } | ||
| 612 | |||
| 613 | if (BN_abs_is_word(u, 1)) break; | ||
| 614 | |||
| 615 | if (BN_num_bits(u) < BN_num_bits(v)) | ||
| 616 | { | ||
| 617 | tmp = u; u = v; v = tmp; | ||
| 618 | tmp = b; b = c; c = tmp; | ||
| 619 | } | ||
| 620 | |||
| 621 | if (!BN_GF2m_add(u, u, v)) goto err; | ||
| 622 | if (!BN_GF2m_add(b, b, c)) goto err; | ||
| 623 | } | ||
| 624 | |||
| 625 | |||
| 626 | if (!BN_copy(r, b)) goto err; | ||
| 627 | bn_check_top(r); | ||
| 628 | ret = 1; | ||
| 629 | |||
| 630 | err: | ||
| 631 | BN_CTX_end(ctx); | ||
| 632 | return ret; | ||
| 633 | } | ||
| 634 | |||
| 635 | /* Invert xx, reduce modulo p, and store the result in r. r could be xx. | ||
| 636 | * | ||
| 637 | * This function calls down to the BN_GF2m_mod_inv implementation; this wrapper | ||
| 638 | * function is only provided for convenience; for best performance, use the | ||
| 639 | * BN_GF2m_mod_inv function. | ||
| 640 | */ | ||
| 641 | int BN_GF2m_mod_inv_arr(BIGNUM *r, const BIGNUM *xx, const unsigned int p[], BN_CTX *ctx) | ||
| 642 | { | ||
| 643 | BIGNUM *field; | ||
| 644 | int ret = 0; | ||
| 645 | |||
| 646 | bn_check_top(xx); | ||
| 647 | BN_CTX_start(ctx); | ||
| 648 | if ((field = BN_CTX_get(ctx)) == NULL) goto err; | ||
| 649 | if (!BN_GF2m_arr2poly(p, field)) goto err; | ||
| 650 | |||
| 651 | ret = BN_GF2m_mod_inv(r, xx, field, ctx); | ||
| 652 | bn_check_top(r); | ||
| 653 | |||
| 654 | err: | ||
| 655 | BN_CTX_end(ctx); | ||
| 656 | return ret; | ||
| 657 | } | ||
| 658 | |||
| 659 | |||
| 660 | #ifndef OPENSSL_SUN_GF2M_DIV | ||
| 661 | /* Divide y by x, reduce modulo p, and store the result in r. r could be x | ||
| 662 | * or y, x could equal y. | ||
| 663 | */ | ||
| 664 | int BN_GF2m_mod_div(BIGNUM *r, const BIGNUM *y, const BIGNUM *x, const BIGNUM *p, BN_CTX *ctx) | ||
| 665 | { | ||
| 666 | BIGNUM *xinv = NULL; | ||
| 667 | int ret = 0; | ||
| 668 | |||
| 669 | bn_check_top(y); | ||
| 670 | bn_check_top(x); | ||
| 671 | bn_check_top(p); | ||
| 672 | |||
| 673 | BN_CTX_start(ctx); | ||
| 674 | xinv = BN_CTX_get(ctx); | ||
| 675 | if (xinv == NULL) goto err; | ||
| 676 | |||
| 677 | if (!BN_GF2m_mod_inv(xinv, x, p, ctx)) goto err; | ||
| 678 | if (!BN_GF2m_mod_mul(r, y, xinv, p, ctx)) goto err; | ||
| 679 | bn_check_top(r); | ||
| 680 | ret = 1; | ||
| 681 | |||
| 682 | err: | ||
| 683 | BN_CTX_end(ctx); | ||
| 684 | return ret; | ||
| 685 | } | ||
| 686 | #else | ||
| 687 | /* Divide y by x, reduce modulo p, and store the result in r. r could be x | ||
| 688 | * or y, x could equal y. | ||
| 689 | * Uses algorithm Modular_Division_GF(2^m) from | ||
| 690 | * Chang-Shantz, S. "From Euclid's GCD to Montgomery Multiplication to | ||
| 691 | * the Great Divide". | ||
| 692 | */ | ||
| 693 | int BN_GF2m_mod_div(BIGNUM *r, const BIGNUM *y, const BIGNUM *x, const BIGNUM *p, BN_CTX *ctx) | ||
| 694 | { | ||
| 695 | BIGNUM *a, *b, *u, *v; | ||
| 696 | int ret = 0; | ||
| 697 | |||
| 698 | bn_check_top(y); | ||
| 699 | bn_check_top(x); | ||
| 700 | bn_check_top(p); | ||
| 701 | |||
| 702 | BN_CTX_start(ctx); | ||
| 703 | |||
| 704 | a = BN_CTX_get(ctx); | ||
| 705 | b = BN_CTX_get(ctx); | ||
| 706 | u = BN_CTX_get(ctx); | ||
| 707 | v = BN_CTX_get(ctx); | ||
| 708 | if (v == NULL) goto err; | ||
| 709 | |||
| 710 | /* reduce x and y mod p */ | ||
| 711 | if (!BN_GF2m_mod(u, y, p)) goto err; | ||
| 712 | if (!BN_GF2m_mod(a, x, p)) goto err; | ||
| 713 | if (!BN_copy(b, p)) goto err; | ||
| 714 | |||
| 715 | while (!BN_is_odd(a)) | ||
| 716 | { | ||
| 717 | if (!BN_rshift1(a, a)) goto err; | ||
| 718 | if (BN_is_odd(u)) if (!BN_GF2m_add(u, u, p)) goto err; | ||
| 719 | if (!BN_rshift1(u, u)) goto err; | ||
| 720 | } | ||
| 721 | |||
| 722 | do | ||
| 723 | { | ||
| 724 | if (BN_GF2m_cmp(b, a) > 0) | ||
| 725 | { | ||
| 726 | if (!BN_GF2m_add(b, b, a)) goto err; | ||
| 727 | if (!BN_GF2m_add(v, v, u)) goto err; | ||
| 728 | do | ||
| 729 | { | ||
| 730 | if (!BN_rshift1(b, b)) goto err; | ||
| 731 | if (BN_is_odd(v)) if (!BN_GF2m_add(v, v, p)) goto err; | ||
| 732 | if (!BN_rshift1(v, v)) goto err; | ||
| 733 | } while (!BN_is_odd(b)); | ||
| 734 | } | ||
| 735 | else if (BN_abs_is_word(a, 1)) | ||
| 736 | break; | ||
| 737 | else | ||
| 738 | { | ||
| 739 | if (!BN_GF2m_add(a, a, b)) goto err; | ||
| 740 | if (!BN_GF2m_add(u, u, v)) goto err; | ||
| 741 | do | ||
| 742 | { | ||
| 743 | if (!BN_rshift1(a, a)) goto err; | ||
| 744 | if (BN_is_odd(u)) if (!BN_GF2m_add(u, u, p)) goto err; | ||
| 745 | if (!BN_rshift1(u, u)) goto err; | ||
| 746 | } while (!BN_is_odd(a)); | ||
| 747 | } | ||
| 748 | } while (1); | ||
| 749 | |||
| 750 | if (!BN_copy(r, u)) goto err; | ||
| 751 | bn_check_top(r); | ||
| 752 | ret = 1; | ||
| 753 | |||
| 754 | err: | ||
| 755 | BN_CTX_end(ctx); | ||
| 756 | return ret; | ||
| 757 | } | ||
| 758 | #endif | ||
| 759 | |||
| 760 | /* Divide yy by xx, reduce modulo p, and store the result in r. r could be xx | ||
| 761 | * or yy, xx could equal yy. | ||
| 762 | * | ||
| 763 | * This function calls down to the BN_GF2m_mod_div implementation; this wrapper | ||
| 764 | * function is only provided for convenience; for best performance, use the | ||
| 765 | * BN_GF2m_mod_div function. | ||
| 766 | */ | ||
| 767 | int BN_GF2m_mod_div_arr(BIGNUM *r, const BIGNUM *yy, const BIGNUM *xx, const unsigned int p[], BN_CTX *ctx) | ||
| 768 | { | ||
| 769 | BIGNUM *field; | ||
| 770 | int ret = 0; | ||
| 771 | |||
| 772 | bn_check_top(yy); | ||
| 773 | bn_check_top(xx); | ||
| 774 | |||
| 775 | BN_CTX_start(ctx); | ||
| 776 | if ((field = BN_CTX_get(ctx)) == NULL) goto err; | ||
| 777 | if (!BN_GF2m_arr2poly(p, field)) goto err; | ||
| 778 | |||
| 779 | ret = BN_GF2m_mod_div(r, yy, xx, field, ctx); | ||
| 780 | bn_check_top(r); | ||
| 781 | |||
| 782 | err: | ||
| 783 | BN_CTX_end(ctx); | ||
| 784 | return ret; | ||
| 785 | } | ||
| 786 | |||
| 787 | |||
| 788 | /* Compute the bth power of a, reduce modulo p, and store | ||
| 789 | * the result in r. r could be a. | ||
| 790 | * Uses simple square-and-multiply algorithm A.5.1 from IEEE P1363. | ||
| 791 | */ | ||
| 792 | int BN_GF2m_mod_exp_arr(BIGNUM *r, const BIGNUM *a, const BIGNUM *b, const unsigned int p[], BN_CTX *ctx) | ||
| 793 | { | ||
| 794 | int ret = 0, i, n; | ||
| 795 | BIGNUM *u; | ||
| 796 | |||
| 797 | bn_check_top(a); | ||
| 798 | bn_check_top(b); | ||
| 799 | |||
| 800 | if (BN_is_zero(b)) | ||
| 801 | return(BN_one(r)); | ||
| 802 | |||
| 803 | if (BN_abs_is_word(b, 1)) | ||
| 804 | return (BN_copy(r, a) != NULL); | ||
| 805 | |||
| 806 | BN_CTX_start(ctx); | ||
| 807 | if ((u = BN_CTX_get(ctx)) == NULL) goto err; | ||
| 808 | |||
| 809 | if (!BN_GF2m_mod_arr(u, a, p)) goto err; | ||
| 810 | |||
| 811 | n = BN_num_bits(b) - 1; | ||
| 812 | for (i = n - 1; i >= 0; i--) | ||
| 813 | { | ||
| 814 | if (!BN_GF2m_mod_sqr_arr(u, u, p, ctx)) goto err; | ||
| 815 | if (BN_is_bit_set(b, i)) | ||
| 816 | { | ||
| 817 | if (!BN_GF2m_mod_mul_arr(u, u, a, p, ctx)) goto err; | ||
| 818 | } | ||
| 819 | } | ||
| 820 | if (!BN_copy(r, u)) goto err; | ||
| 821 | bn_check_top(r); | ||
| 822 | ret = 1; | ||
| 823 | err: | ||
| 824 | BN_CTX_end(ctx); | ||
| 825 | return ret; | ||
| 826 | } | ||
| 827 | |||
| 828 | /* Compute the bth power of a, reduce modulo p, and store | ||
| 829 | * the result in r. r could be a. | ||
| 830 | * | ||
| 831 | * This function calls down to the BN_GF2m_mod_exp_arr implementation; this wrapper | ||
| 832 | * function is only provided for convenience; for best performance, use the | ||
| 833 | * BN_GF2m_mod_exp_arr function. | ||
| 834 | */ | ||
| 835 | int BN_GF2m_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *b, const BIGNUM *p, BN_CTX *ctx) | ||
| 836 | { | ||
| 837 | int ret = 0; | ||
| 838 | const int max = BN_num_bits(p); | ||
| 839 | unsigned int *arr=NULL; | ||
| 840 | bn_check_top(a); | ||
| 841 | bn_check_top(b); | ||
| 842 | bn_check_top(p); | ||
| 843 | if ((arr = (unsigned int *)OPENSSL_malloc(sizeof(unsigned int) * max)) == NULL) goto err; | ||
| 844 | ret = BN_GF2m_poly2arr(p, arr, max); | ||
| 845 | if (!ret || ret > max) | ||
| 846 | { | ||
| 847 | BNerr(BN_F_BN_GF2M_MOD_EXP,BN_R_INVALID_LENGTH); | ||
| 848 | goto err; | ||
| 849 | } | ||
| 850 | ret = BN_GF2m_mod_exp_arr(r, a, b, arr, ctx); | ||
| 851 | bn_check_top(r); | ||
| 852 | err: | ||
| 853 | if (arr) OPENSSL_free(arr); | ||
| 854 | return ret; | ||
| 855 | } | ||
| 856 | |||
| 857 | /* Compute the square root of a, reduce modulo p, and store | ||
| 858 | * the result in r. r could be a. | ||
| 859 | * Uses exponentiation as in algorithm A.4.1 from IEEE P1363. | ||
| 860 | */ | ||
| 861 | int BN_GF2m_mod_sqrt_arr(BIGNUM *r, const BIGNUM *a, const unsigned int p[], BN_CTX *ctx) | ||
| 862 | { | ||
| 863 | int ret = 0; | ||
| 864 | BIGNUM *u; | ||
| 865 | |||
| 866 | bn_check_top(a); | ||
| 867 | |||
| 868 | if (!p[0]) | ||
| 869 | { | ||
| 870 | /* reduction mod 1 => return 0 */ | ||
| 871 | BN_zero(r); | ||
| 872 | return 1; | ||
| 873 | } | ||
| 874 | |||
| 875 | BN_CTX_start(ctx); | ||
| 876 | if ((u = BN_CTX_get(ctx)) == NULL) goto err; | ||
| 877 | |||
| 878 | if (!BN_set_bit(u, p[0] - 1)) goto err; | ||
| 879 | ret = BN_GF2m_mod_exp_arr(r, a, u, p, ctx); | ||
| 880 | bn_check_top(r); | ||
| 881 | |||
| 882 | err: | ||
| 883 | BN_CTX_end(ctx); | ||
| 884 | return ret; | ||
| 885 | } | ||
| 886 | |||
| 887 | /* Compute the square root of a, reduce modulo p, and store | ||
| 888 | * the result in r. r could be a. | ||
| 889 | * | ||
| 890 | * This function calls down to the BN_GF2m_mod_sqrt_arr implementation; this wrapper | ||
| 891 | * function is only provided for convenience; for best performance, use the | ||
| 892 | * BN_GF2m_mod_sqrt_arr function. | ||
| 893 | */ | ||
| 894 | int BN_GF2m_mod_sqrt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx) | ||
| 895 | { | ||
| 896 | int ret = 0; | ||
| 897 | const int max = BN_num_bits(p); | ||
| 898 | unsigned int *arr=NULL; | ||
| 899 | bn_check_top(a); | ||
| 900 | bn_check_top(p); | ||
| 901 | if ((arr = (unsigned int *)OPENSSL_malloc(sizeof(unsigned int) * max)) == NULL) goto err; | ||
| 902 | ret = BN_GF2m_poly2arr(p, arr, max); | ||
| 903 | if (!ret || ret > max) | ||
| 904 | { | ||
| 905 | BNerr(BN_F_BN_GF2M_MOD_SQRT,BN_R_INVALID_LENGTH); | ||
| 906 | goto err; | ||
| 907 | } | ||
| 908 | ret = BN_GF2m_mod_sqrt_arr(r, a, arr, ctx); | ||
| 909 | bn_check_top(r); | ||
| 910 | err: | ||
| 911 | if (arr) OPENSSL_free(arr); | ||
| 912 | return ret; | ||
| 913 | } | ||
| 914 | |||
| 915 | /* Find r such that r^2 + r = a mod p. r could be a. If no r exists returns 0. | ||
| 916 | * Uses algorithms A.4.7 and A.4.6 from IEEE P1363. | ||
| 917 | */ | ||
| 918 | int BN_GF2m_mod_solve_quad_arr(BIGNUM *r, const BIGNUM *a_, const unsigned int p[], BN_CTX *ctx) | ||
| 919 | { | ||
| 920 | int ret = 0, count = 0; | ||
| 921 | unsigned int j; | ||
| 922 | BIGNUM *a, *z, *rho, *w, *w2, *tmp; | ||
| 923 | |||
| 924 | bn_check_top(a_); | ||
| 925 | |||
| 926 | if (!p[0]) | ||
| 927 | { | ||
| 928 | /* reduction mod 1 => return 0 */ | ||
| 929 | BN_zero(r); | ||
| 930 | return 1; | ||
| 931 | } | ||
| 932 | |||
| 933 | BN_CTX_start(ctx); | ||
| 934 | a = BN_CTX_get(ctx); | ||
| 935 | z = BN_CTX_get(ctx); | ||
| 936 | w = BN_CTX_get(ctx); | ||
| 937 | if (w == NULL) goto err; | ||
| 938 | |||
| 939 | if (!BN_GF2m_mod_arr(a, a_, p)) goto err; | ||
| 940 | |||
| 941 | if (BN_is_zero(a)) | ||
| 942 | { | ||
| 943 | BN_zero(r); | ||
| 944 | ret = 1; | ||
| 945 | goto err; | ||
| 946 | } | ||
| 947 | |||
| 948 | if (p[0] & 0x1) /* m is odd */ | ||
| 949 | { | ||
| 950 | /* compute half-trace of a */ | ||
| 951 | if (!BN_copy(z, a)) goto err; | ||
| 952 | for (j = 1; j <= (p[0] - 1) / 2; j++) | ||
| 953 | { | ||
| 954 | if (!BN_GF2m_mod_sqr_arr(z, z, p, ctx)) goto err; | ||
| 955 | if (!BN_GF2m_mod_sqr_arr(z, z, p, ctx)) goto err; | ||
| 956 | if (!BN_GF2m_add(z, z, a)) goto err; | ||
| 957 | } | ||
| 958 | |||
| 959 | } | ||
| 960 | else /* m is even */ | ||
| 961 | { | ||
| 962 | rho = BN_CTX_get(ctx); | ||
| 963 | w2 = BN_CTX_get(ctx); | ||
| 964 | tmp = BN_CTX_get(ctx); | ||
| 965 | if (tmp == NULL) goto err; | ||
| 966 | do | ||
| 967 | { | ||
| 968 | if (!BN_rand(rho, p[0], 0, 0)) goto err; | ||
| 969 | if (!BN_GF2m_mod_arr(rho, rho, p)) goto err; | ||
| 970 | BN_zero(z); | ||
| 971 | if (!BN_copy(w, rho)) goto err; | ||
| 972 | for (j = 1; j <= p[0] - 1; j++) | ||
| 973 | { | ||
| 974 | if (!BN_GF2m_mod_sqr_arr(z, z, p, ctx)) goto err; | ||
| 975 | if (!BN_GF2m_mod_sqr_arr(w2, w, p, ctx)) goto err; | ||
| 976 | if (!BN_GF2m_mod_mul_arr(tmp, w2, a, p, ctx)) goto err; | ||
| 977 | if (!BN_GF2m_add(z, z, tmp)) goto err; | ||
| 978 | if (!BN_GF2m_add(w, w2, rho)) goto err; | ||
| 979 | } | ||
| 980 | count++; | ||
| 981 | } while (BN_is_zero(w) && (count < MAX_ITERATIONS)); | ||
| 982 | if (BN_is_zero(w)) | ||
| 983 | { | ||
| 984 | BNerr(BN_F_BN_GF2M_MOD_SOLVE_QUAD_ARR,BN_R_TOO_MANY_ITERATIONS); | ||
| 985 | goto err; | ||
| 986 | } | ||
| 987 | } | ||
| 988 | |||
| 989 | if (!BN_GF2m_mod_sqr_arr(w, z, p, ctx)) goto err; | ||
| 990 | if (!BN_GF2m_add(w, z, w)) goto err; | ||
| 991 | if (BN_GF2m_cmp(w, a)) | ||
| 992 | { | ||
| 993 | BNerr(BN_F_BN_GF2M_MOD_SOLVE_QUAD_ARR, BN_R_NO_SOLUTION); | ||
| 994 | goto err; | ||
| 995 | } | ||
| 996 | |||
| 997 | if (!BN_copy(r, z)) goto err; | ||
| 998 | bn_check_top(r); | ||
| 999 | |||
| 1000 | ret = 1; | ||
| 1001 | |||
| 1002 | err: | ||
| 1003 | BN_CTX_end(ctx); | ||
| 1004 | return ret; | ||
| 1005 | } | ||
| 1006 | |||
| 1007 | /* Find r such that r^2 + r = a mod p. r could be a. If no r exists returns 0. | ||
| 1008 | * | ||
| 1009 | * This function calls down to the BN_GF2m_mod_solve_quad_arr implementation; this wrapper | ||
| 1010 | * function is only provided for convenience; for best performance, use the | ||
| 1011 | * BN_GF2m_mod_solve_quad_arr function. | ||
| 1012 | */ | ||
| 1013 | int BN_GF2m_mod_solve_quad(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, BN_CTX *ctx) | ||
| 1014 | { | ||
| 1015 | int ret = 0; | ||
| 1016 | const int max = BN_num_bits(p); | ||
| 1017 | unsigned int *arr=NULL; | ||
| 1018 | bn_check_top(a); | ||
| 1019 | bn_check_top(p); | ||
| 1020 | if ((arr = (unsigned int *)OPENSSL_malloc(sizeof(unsigned int) * | ||
| 1021 | max)) == NULL) goto err; | ||
| 1022 | ret = BN_GF2m_poly2arr(p, arr, max); | ||
| 1023 | if (!ret || ret > max) | ||
| 1024 | { | ||
| 1025 | BNerr(BN_F_BN_GF2M_MOD_SOLVE_QUAD,BN_R_INVALID_LENGTH); | ||
| 1026 | goto err; | ||
| 1027 | } | ||
| 1028 | ret = BN_GF2m_mod_solve_quad_arr(r, a, arr, ctx); | ||
| 1029 | bn_check_top(r); | ||
| 1030 | err: | ||
| 1031 | if (arr) OPENSSL_free(arr); | ||
| 1032 | return ret; | ||
| 1033 | } | ||
| 1034 | |||
| 1035 | /* Convert the bit-string representation of a polynomial | ||
| 1036 | * ( \sum_{i=0}^n a_i * x^i , where a_0 is *not* zero) into an array | ||
| 1037 | * of integers corresponding to the bits with non-zero coefficient. | ||
| 1038 | * Up to max elements of the array will be filled. Return value is total | ||
| 1039 | * number of coefficients that would be extracted if array was large enough. | ||
| 1040 | */ | ||
| 1041 | int BN_GF2m_poly2arr(const BIGNUM *a, unsigned int p[], int max) | ||
| 1042 | { | ||
| 1043 | int i, j, k = 0; | ||
| 1044 | BN_ULONG mask; | ||
| 1045 | |||
| 1046 | if (BN_is_zero(a) || !BN_is_bit_set(a, 0)) | ||
| 1047 | /* a_0 == 0 => return error (the unsigned int array | ||
| 1048 | * must be terminated by 0) | ||
| 1049 | */ | ||
| 1050 | return 0; | ||
| 1051 | |||
| 1052 | for (i = a->top - 1; i >= 0; i--) | ||
| 1053 | { | ||
| 1054 | if (!a->d[i]) | ||
| 1055 | /* skip word if a->d[i] == 0 */ | ||
| 1056 | continue; | ||
| 1057 | mask = BN_TBIT; | ||
| 1058 | for (j = BN_BITS2 - 1; j >= 0; j--) | ||
| 1059 | { | ||
| 1060 | if (a->d[i] & mask) | ||
| 1061 | { | ||
| 1062 | if (k < max) p[k] = BN_BITS2 * i + j; | ||
| 1063 | k++; | ||
| 1064 | } | ||
| 1065 | mask >>= 1; | ||
| 1066 | } | ||
| 1067 | } | ||
| 1068 | |||
| 1069 | return k; | ||
| 1070 | } | ||
| 1071 | |||
| 1072 | /* Convert the coefficient array representation of a polynomial to a | ||
| 1073 | * bit-string. The array must be terminated by 0. | ||
| 1074 | */ | ||
| 1075 | int BN_GF2m_arr2poly(const unsigned int p[], BIGNUM *a) | ||
| 1076 | { | ||
| 1077 | int i; | ||
| 1078 | |||
| 1079 | bn_check_top(a); | ||
| 1080 | BN_zero(a); | ||
| 1081 | for (i = 0; p[i] != 0; i++) | ||
| 1082 | { | ||
| 1083 | if (BN_set_bit(a, p[i]) == 0) | ||
| 1084 | return 0; | ||
| 1085 | } | ||
| 1086 | BN_set_bit(a, 0); | ||
| 1087 | bn_check_top(a); | ||
| 1088 | |||
| 1089 | return 1; | ||
| 1090 | } | ||
| 1091 | |||
diff --git a/src/lib/libssl/src/crypto/bn/bn_nist.c b/src/lib/libssl/src/crypto/bn/bn_nist.c new file mode 100644 index 0000000000..e14232fdbb --- /dev/null +++ b/src/lib/libssl/src/crypto/bn/bn_nist.c | |||
| @@ -0,0 +1,692 @@ | |||
| 1 | /* crypto/bn/bn_nist.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "bn_lcl.h" | ||
| 60 | #include "cryptlib.h" | ||
| 61 | |||
| 62 | #define BN_NIST_192_TOP (192+BN_BITS2-1)/BN_BITS2 | ||
| 63 | #define BN_NIST_224_TOP (224+BN_BITS2-1)/BN_BITS2 | ||
| 64 | #define BN_NIST_256_TOP (256+BN_BITS2-1)/BN_BITS2 | ||
| 65 | #define BN_NIST_384_TOP (384+BN_BITS2-1)/BN_BITS2 | ||
| 66 | #define BN_NIST_521_TOP (521+BN_BITS2-1)/BN_BITS2 | ||
| 67 | |||
| 68 | #if BN_BITS2 == 64 | ||
| 69 | static const BN_ULONG _nist_p_192[] = | ||
| 70 | {0xFFFFFFFFFFFFFFFFULL,0xFFFFFFFFFFFFFFFEULL, | ||
| 71 | 0xFFFFFFFFFFFFFFFFULL}; | ||
| 72 | static const BN_ULONG _nist_p_224[] = | ||
| 73 | {0x0000000000000001ULL,0xFFFFFFFF00000000ULL, | ||
| 74 | 0xFFFFFFFFFFFFFFFFULL,0x00000000FFFFFFFFULL}; | ||
| 75 | static const BN_ULONG _nist_p_256[] = | ||
| 76 | {0xFFFFFFFFFFFFFFFFULL,0x00000000FFFFFFFFULL, | ||
| 77 | 0x0000000000000000ULL,0xFFFFFFFF00000001ULL}; | ||
| 78 | static const BN_ULONG _nist_p_384[] = | ||
| 79 | {0x00000000FFFFFFFFULL,0xFFFFFFFF00000000ULL, | ||
| 80 | 0xFFFFFFFFFFFFFFFEULL,0xFFFFFFFFFFFFFFFFULL, | ||
| 81 | 0xFFFFFFFFFFFFFFFFULL,0xFFFFFFFFFFFFFFFFULL}; | ||
| 82 | static const BN_ULONG _nist_p_521[] = | ||
| 83 | {0xFFFFFFFFFFFFFFFFULL,0xFFFFFFFFFFFFFFFFULL, | ||
| 84 | 0xFFFFFFFFFFFFFFFFULL,0xFFFFFFFFFFFFFFFFULL, | ||
| 85 | 0xFFFFFFFFFFFFFFFFULL,0xFFFFFFFFFFFFFFFFULL, | ||
| 86 | 0xFFFFFFFFFFFFFFFFULL,0xFFFFFFFFFFFFFFFFULL, | ||
| 87 | 0x00000000000001FFULL}; | ||
| 88 | #elif BN_BITS2 == 32 | ||
| 89 | static const BN_ULONG _nist_p_192[] = {0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFE, | ||
| 90 | 0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF}; | ||
| 91 | static const BN_ULONG _nist_p_224[] = {0x00000001,0x00000000,0x00000000, | ||
| 92 | 0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF}; | ||
| 93 | static const BN_ULONG _nist_p_256[] = {0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF, | ||
| 94 | 0x00000000,0x00000000,0x00000000,0x00000001,0xFFFFFFFF}; | ||
| 95 | static const BN_ULONG _nist_p_384[] = {0xFFFFFFFF,0x00000000,0x00000000, | ||
| 96 | 0xFFFFFFFF,0xFFFFFFFE,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF, | ||
| 97 | 0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF}; | ||
| 98 | static const BN_ULONG _nist_p_521[] = {0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF, | ||
| 99 | 0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF, | ||
| 100 | 0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF,0xFFFFFFFF, | ||
| 101 | 0xFFFFFFFF,0x000001FF}; | ||
| 102 | #endif | ||
| 103 | |||
| 104 | const BIGNUM *BN_get0_nist_prime_192(void) | ||
| 105 | { | ||
| 106 | static BIGNUM const_nist_192 = { (BN_ULONG *)_nist_p_192, | ||
| 107 | BN_NIST_192_TOP, BN_NIST_192_TOP, 0, BN_FLG_STATIC_DATA }; | ||
| 108 | return &const_nist_192; | ||
| 109 | } | ||
| 110 | |||
| 111 | const BIGNUM *BN_get0_nist_prime_224(void) | ||
| 112 | { | ||
| 113 | static BIGNUM const_nist_224 = { (BN_ULONG *)_nist_p_224, | ||
| 114 | BN_NIST_224_TOP, BN_NIST_224_TOP, 0, BN_FLG_STATIC_DATA }; | ||
| 115 | return &const_nist_224; | ||
| 116 | } | ||
| 117 | |||
| 118 | const BIGNUM *BN_get0_nist_prime_256(void) | ||
| 119 | { | ||
| 120 | static BIGNUM const_nist_256 = { (BN_ULONG *)_nist_p_256, | ||
| 121 | BN_NIST_256_TOP, BN_NIST_256_TOP, 0, BN_FLG_STATIC_DATA }; | ||
| 122 | return &const_nist_256; | ||
| 123 | } | ||
| 124 | |||
| 125 | const BIGNUM *BN_get0_nist_prime_384(void) | ||
| 126 | { | ||
| 127 | static BIGNUM const_nist_384 = { (BN_ULONG *)_nist_p_384, | ||
| 128 | BN_NIST_384_TOP, BN_NIST_384_TOP, 0, BN_FLG_STATIC_DATA }; | ||
| 129 | return &const_nist_384; | ||
| 130 | } | ||
| 131 | |||
| 132 | const BIGNUM *BN_get0_nist_prime_521(void) | ||
| 133 | { | ||
| 134 | static BIGNUM const_nist_521 = { (BN_ULONG *)_nist_p_521, | ||
| 135 | BN_NIST_521_TOP, BN_NIST_521_TOP, 0, BN_FLG_STATIC_DATA }; | ||
| 136 | return &const_nist_521; | ||
| 137 | } | ||
| 138 | |||
| 139 | #define BN_NIST_ADD_ONE(a) while (!(*(a)=(*(a)+1)&BN_MASK2)) ++(a); | ||
| 140 | |||
| 141 | static void nist_cp_bn_0(BN_ULONG *buf, BN_ULONG *a, int top, int max) | ||
| 142 | { | ||
| 143 | int i; | ||
| 144 | BN_ULONG *_tmp1 = (buf), *_tmp2 = (a); | ||
| 145 | for (i = (top); i != 0; i--) | ||
| 146 | *_tmp1++ = *_tmp2++; | ||
| 147 | for (i = (max) - (top); i != 0; i--) | ||
| 148 | *_tmp1++ = (BN_ULONG) 0; | ||
| 149 | } | ||
| 150 | |||
| 151 | static void nist_cp_bn(BN_ULONG *buf, BN_ULONG *a, int top) | ||
| 152 | { | ||
| 153 | int i; | ||
| 154 | BN_ULONG *_tmp1 = (buf), *_tmp2 = (a); | ||
| 155 | for (i = (top); i != 0; i--) | ||
| 156 | *_tmp1++ = *_tmp2++; | ||
| 157 | } | ||
| 158 | |||
| 159 | #if BN_BITS2 == 64 | ||
| 160 | #define bn_cp_64(to, n, from, m) (to)[n] = (m>=0)?((from)[m]):0; | ||
| 161 | #define bn_64_set_0(to, n) (to)[n] = (BN_ULONG)0; | ||
| 162 | /* TBD */ | ||
| 163 | #define bn_cp_32(to, n, from, m) (to)[n] = (m>=0)?((from)[m]):0; | ||
| 164 | #define bn_32_set_0(to, n) (to)[n] = (BN_ULONG)0; | ||
| 165 | #else | ||
| 166 | #define bn_cp_64(to, n, from, m) \ | ||
| 167 | { \ | ||
| 168 | bn_cp_32(to, (n)*2, from, (m)*2); \ | ||
| 169 | bn_cp_32(to, (n)*2+1, from, (m)*2+1); \ | ||
| 170 | } | ||
| 171 | #define bn_64_set_0(to, n) \ | ||
| 172 | { \ | ||
| 173 | bn_32_set_0(to, (n)*2); \ | ||
| 174 | bn_32_set_0(to, (n)*2+1); \ | ||
| 175 | } | ||
| 176 | #if BN_BITS2 == 32 | ||
| 177 | #define bn_cp_32(to, n, from, m) (to)[n] = (m>=0)?((from)[m]):0; | ||
| 178 | #define bn_32_set_0(to, n) (to)[n] = (BN_ULONG)0; | ||
| 179 | #endif | ||
| 180 | #endif /* BN_BITS2 != 64 */ | ||
| 181 | |||
| 182 | |||
| 183 | #define nist_set_192(to, from, a1, a2, a3) \ | ||
| 184 | { \ | ||
| 185 | if (a3 != 0) bn_cp_64(to, 0, from, (a3) - 3) else bn_64_set_0(to, 0)\ | ||
| 186 | bn_cp_64(to, 1, from, (a2) - 3) \ | ||
| 187 | if (a1 != 0) bn_cp_64(to, 2, from, (a1) - 3) else bn_64_set_0(to, 2)\ | ||
| 188 | } | ||
| 189 | |||
| 190 | int BN_nist_mod_192(BIGNUM *r, const BIGNUM *a, const BIGNUM *field, | ||
| 191 | BN_CTX *ctx) | ||
| 192 | { | ||
| 193 | int top = a->top, i; | ||
| 194 | int carry; | ||
| 195 | register BN_ULONG *r_d, *a_d = a->d; | ||
| 196 | BN_ULONG t_d[BN_NIST_192_TOP], | ||
| 197 | buf[BN_NIST_192_TOP], | ||
| 198 | c_d[BN_NIST_192_TOP], | ||
| 199 | *res; | ||
| 200 | size_t mask; | ||
| 201 | |||
| 202 | i = BN_ucmp(field, a); | ||
| 203 | if (i == 0) | ||
| 204 | { | ||
| 205 | BN_zero(r); | ||
| 206 | return 1; | ||
| 207 | } | ||
| 208 | else if (i > 0) | ||
| 209 | return (r == a) ? 1 : (BN_copy(r ,a) != NULL); | ||
| 210 | |||
| 211 | if (top == BN_NIST_192_TOP) | ||
| 212 | return BN_usub(r, a, field); | ||
| 213 | |||
| 214 | if (r != a) | ||
| 215 | { | ||
| 216 | if (!bn_wexpand(r, BN_NIST_192_TOP)) | ||
| 217 | return 0; | ||
| 218 | r_d = r->d; | ||
| 219 | nist_cp_bn(r_d, a_d, BN_NIST_192_TOP); | ||
| 220 | } | ||
| 221 | else | ||
| 222 | r_d = a_d; | ||
| 223 | |||
| 224 | nist_cp_bn_0(buf, a_d + BN_NIST_192_TOP, top - BN_NIST_192_TOP, BN_NIST_192_TOP); | ||
| 225 | |||
| 226 | nist_set_192(t_d, buf, 0, 3, 3); | ||
| 227 | carry = bn_add_words(r_d, r_d, t_d, BN_NIST_192_TOP); | ||
| 228 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_192,BN_NIST_192_TOP); | ||
| 229 | mask = ~mask | (0-(size_t)carry); | ||
| 230 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 231 | |||
| 232 | nist_set_192(t_d, buf, 4, 4, 0); | ||
| 233 | carry = bn_add_words(r_d, res, t_d, BN_NIST_192_TOP); | ||
| 234 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_192,BN_NIST_192_TOP); | ||
| 235 | mask = ~mask | (0-(size_t)carry); | ||
| 236 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 237 | |||
| 238 | nist_set_192(t_d, buf, 5, 5, 5) | ||
| 239 | carry = bn_add_words(r_d, res, t_d, BN_NIST_192_TOP); | ||
| 240 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_192,BN_NIST_192_TOP); | ||
| 241 | mask = ~mask | (0-(size_t)carry); | ||
| 242 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 243 | |||
| 244 | nist_cp_bn(r_d, res, BN_NIST_192_TOP); | ||
| 245 | r->top = BN_NIST_192_TOP; | ||
| 246 | bn_correct_top(r); | ||
| 247 | |||
| 248 | return 1; | ||
| 249 | } | ||
| 250 | |||
| 251 | #define nist_set_224(to, from, a1, a2, a3, a4, a5, a6, a7) \ | ||
| 252 | { \ | ||
| 253 | if (a7 != 0) bn_cp_32(to, 0, from, (a7) - 7) else bn_32_set_0(to, 0)\ | ||
| 254 | if (a6 != 0) bn_cp_32(to, 1, from, (a6) - 7) else bn_32_set_0(to, 1)\ | ||
| 255 | if (a5 != 0) bn_cp_32(to, 2, from, (a5) - 7) else bn_32_set_0(to, 2)\ | ||
| 256 | if (a4 != 0) bn_cp_32(to, 3, from, (a4) - 7) else bn_32_set_0(to, 3)\ | ||
| 257 | if (a3 != 0) bn_cp_32(to, 4, from, (a3) - 7) else bn_32_set_0(to, 4)\ | ||
| 258 | if (a2 != 0) bn_cp_32(to, 5, from, (a2) - 7) else bn_32_set_0(to, 5)\ | ||
| 259 | if (a1 != 0) bn_cp_32(to, 6, from, (a1) - 7) else bn_32_set_0(to, 6)\ | ||
| 260 | } | ||
| 261 | |||
| 262 | int BN_nist_mod_224(BIGNUM *r, const BIGNUM *a, const BIGNUM *field, | ||
| 263 | BN_CTX *ctx) | ||
| 264 | { | ||
| 265 | #if BN_BITS2 == 32 | ||
| 266 | int top = a->top, i; | ||
| 267 | int carry; | ||
| 268 | BN_ULONG *r_d, *a_d = a->d; | ||
| 269 | BN_ULONG t_d[BN_NIST_224_TOP], | ||
| 270 | buf[BN_NIST_224_TOP], | ||
| 271 | c_d[BN_NIST_224_TOP], | ||
| 272 | *res; | ||
| 273 | size_t mask; | ||
| 274 | |||
| 275 | i = BN_ucmp(field, a); | ||
| 276 | if (i == 0) | ||
| 277 | { | ||
| 278 | BN_zero(r); | ||
| 279 | return 1; | ||
| 280 | } | ||
| 281 | else if (i > 0) | ||
| 282 | return (r == a)? 1 : (BN_copy(r ,a) != NULL); | ||
| 283 | |||
| 284 | if (top == BN_NIST_224_TOP) | ||
| 285 | return BN_usub(r, a, field); | ||
| 286 | |||
| 287 | if (r != a) | ||
| 288 | { | ||
| 289 | if (!bn_wexpand(r, BN_NIST_224_TOP)) | ||
| 290 | return 0; | ||
| 291 | r_d = r->d; | ||
| 292 | nist_cp_bn(r_d, a_d, BN_NIST_224_TOP); | ||
| 293 | } | ||
| 294 | else | ||
| 295 | r_d = a_d; | ||
| 296 | |||
| 297 | nist_cp_bn_0(buf, a_d + BN_NIST_224_TOP, top - BN_NIST_224_TOP, BN_NIST_224_TOP); | ||
| 298 | |||
| 299 | nist_set_224(t_d, buf, 10, 9, 8, 7, 0, 0, 0); | ||
| 300 | carry = bn_add_words(r_d, r_d, t_d, BN_NIST_224_TOP); | ||
| 301 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_224,BN_NIST_224_TOP); | ||
| 302 | mask = ~mask | (0-(size_t)carry); | ||
| 303 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 304 | |||
| 305 | nist_set_224(t_d, buf, 0, 13, 12, 11, 0, 0, 0); | ||
| 306 | carry = bn_add_words(r_d, res, t_d, BN_NIST_224_TOP); | ||
| 307 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_224,BN_NIST_224_TOP); | ||
| 308 | mask = ~mask | (0-(size_t)carry); | ||
| 309 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 310 | |||
| 311 | nist_set_224(t_d, buf, 13, 12, 11, 10, 9, 8, 7); | ||
| 312 | #if BRANCH_FREE | ||
| 313 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_224_TOP); | ||
| 314 | bn_add_words(c_d,r_d,_nist_p_224,BN_NIST_224_TOP); | ||
| 315 | mask = 0-(size_t)carry; | ||
| 316 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 317 | #else | ||
| 318 | if (bn_sub_words(r_d, res, t_d, BN_NIST_224_TOP)) | ||
| 319 | bn_add_words(r_d,r_d,_nist_p_224,BN_NIST_224_TOP); | ||
| 320 | #endif | ||
| 321 | nist_set_224(t_d, buf, 0, 0, 0, 0, 13, 12, 11); | ||
| 322 | #if BRANCH_FREE | ||
| 323 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_224_TOP); | ||
| 324 | bn_add_words(c_d,r_d,_nist_p_224,BN_NIST_224_TOP); | ||
| 325 | mask = 0-(size_t)carry; | ||
| 326 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 327 | |||
| 328 | nist_cp_bn(r_d, res, BN_NIST_224_TOP); | ||
| 329 | #else | ||
| 330 | if (bn_sub_words(r_d, r_d, t_d, BN_NIST_224_TOP)) | ||
| 331 | bn_add_words(r_d,r_d,_nist_p_224,BN_NIST_224_TOP); | ||
| 332 | #endif | ||
| 333 | r->top = BN_NIST_224_TOP; | ||
| 334 | bn_correct_top(r); | ||
| 335 | |||
| 336 | return 1; | ||
| 337 | #else /* BN_BITS!=32 */ | ||
| 338 | return 0; | ||
| 339 | #endif | ||
| 340 | } | ||
| 341 | |||
| 342 | #define nist_set_256(to, from, a1, a2, a3, a4, a5, a6, a7, a8) \ | ||
| 343 | { \ | ||
| 344 | if (a8 != 0) bn_cp_32(to, 0, from, (a8) - 8) else bn_32_set_0(to, 0)\ | ||
| 345 | if (a7 != 0) bn_cp_32(to, 1, from, (a7) - 8) else bn_32_set_0(to, 1)\ | ||
| 346 | if (a6 != 0) bn_cp_32(to, 2, from, (a6) - 8) else bn_32_set_0(to, 2)\ | ||
| 347 | if (a5 != 0) bn_cp_32(to, 3, from, (a5) - 8) else bn_32_set_0(to, 3)\ | ||
| 348 | if (a4 != 0) bn_cp_32(to, 4, from, (a4) - 8) else bn_32_set_0(to, 4)\ | ||
| 349 | if (a3 != 0) bn_cp_32(to, 5, from, (a3) - 8) else bn_32_set_0(to, 5)\ | ||
| 350 | if (a2 != 0) bn_cp_32(to, 6, from, (a2) - 8) else bn_32_set_0(to, 6)\ | ||
| 351 | if (a1 != 0) bn_cp_32(to, 7, from, (a1) - 8) else bn_32_set_0(to, 7)\ | ||
| 352 | } | ||
| 353 | |||
| 354 | int BN_nist_mod_256(BIGNUM *r, const BIGNUM *a, const BIGNUM *field, | ||
| 355 | BN_CTX *ctx) | ||
| 356 | { | ||
| 357 | #if BN_BITS2 == 32 | ||
| 358 | int i, top = a->top; | ||
| 359 | int carry = 0; | ||
| 360 | register BN_ULONG *a_d = a->d, *r_d; | ||
| 361 | BN_ULONG t_d[BN_NIST_256_TOP], | ||
| 362 | buf[BN_NIST_256_TOP], | ||
| 363 | c_d[BN_NIST_256_TOP], | ||
| 364 | *res; | ||
| 365 | size_t mask; | ||
| 366 | |||
| 367 | i = BN_ucmp(field, a); | ||
| 368 | if (i == 0) | ||
| 369 | { | ||
| 370 | BN_zero(r); | ||
| 371 | return 1; | ||
| 372 | } | ||
| 373 | else if (i > 0) | ||
| 374 | return (r == a)? 1 : (BN_copy(r ,a) != NULL); | ||
| 375 | |||
| 376 | if (top == BN_NIST_256_TOP) | ||
| 377 | return BN_usub(r, a, field); | ||
| 378 | |||
| 379 | if (r != a) | ||
| 380 | { | ||
| 381 | if (!bn_wexpand(r, BN_NIST_256_TOP)) | ||
| 382 | return 0; | ||
| 383 | r_d = r->d; | ||
| 384 | nist_cp_bn(r_d, a_d, BN_NIST_256_TOP); | ||
| 385 | } | ||
| 386 | else | ||
| 387 | r_d = a_d; | ||
| 388 | |||
| 389 | nist_cp_bn_0(buf, a_d + BN_NIST_256_TOP, top - BN_NIST_256_TOP, BN_NIST_256_TOP); | ||
| 390 | |||
| 391 | /*S1*/ | ||
| 392 | nist_set_256(t_d, buf, 15, 14, 13, 12, 11, 0, 0, 0); | ||
| 393 | /*S2*/ | ||
| 394 | nist_set_256(c_d,buf, 0, 15, 14, 13, 12, 0, 0, 0); | ||
| 395 | carry = bn_add_words(t_d, t_d, c_d, BN_NIST_256_TOP); | ||
| 396 | mask = 0-(size_t)bn_sub_words(c_d,t_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 397 | mask = ~mask | (0-(size_t)carry); | ||
| 398 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)t_d&~mask)); | ||
| 399 | |||
| 400 | carry = bn_add_words(t_d, res, res, BN_NIST_256_TOP); | ||
| 401 | mask = 0-(size_t)bn_sub_words(c_d,t_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 402 | mask = ~mask | (0-(size_t)carry); | ||
| 403 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)t_d&~mask)); | ||
| 404 | |||
| 405 | carry = bn_add_words(r_d, r_d, res, BN_NIST_256_TOP); | ||
| 406 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 407 | mask = ~mask | (0-(size_t)carry); | ||
| 408 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 409 | |||
| 410 | /*S3*/ | ||
| 411 | nist_set_256(t_d, buf, 15, 14, 0, 0, 0, 10, 9, 8); | ||
| 412 | carry = bn_add_words(r_d, res, t_d, BN_NIST_256_TOP); | ||
| 413 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 414 | mask = ~mask | (0-(size_t)carry); | ||
| 415 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 416 | |||
| 417 | /*S4*/ | ||
| 418 | nist_set_256(t_d, buf, 8, 13, 15, 14, 13, 11, 10, 9); | ||
| 419 | carry = bn_add_words(r_d, res, t_d, BN_NIST_256_TOP); | ||
| 420 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 421 | mask = ~mask | (0-(size_t)carry); | ||
| 422 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 423 | |||
| 424 | /*D1*/ | ||
| 425 | nist_set_256(t_d, buf, 10, 8, 0, 0, 0, 13, 12, 11); | ||
| 426 | #if BRANCH_FREE | ||
| 427 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_256_TOP); | ||
| 428 | bn_add_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 429 | mask = 0-(size_t)carry; | ||
| 430 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 431 | #else | ||
| 432 | if (bn_sub_words(r_d, res, t_d, BN_NIST_256_TOP)) | ||
| 433 | bn_add_words(r_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 434 | #endif | ||
| 435 | /*D2*/ | ||
| 436 | nist_set_256(t_d, buf, 11, 9, 0, 0, 15, 14, 13, 12); | ||
| 437 | #if BRANCH_FREE | ||
| 438 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_256_TOP); | ||
| 439 | bn_add_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 440 | mask = 0-(size_t)carry; | ||
| 441 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 442 | #else | ||
| 443 | if (bn_sub_words(r_d, r_d, t_d, BN_NIST_256_TOP)) | ||
| 444 | bn_add_words(r_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 445 | #endif | ||
| 446 | /*D3*/ | ||
| 447 | nist_set_256(t_d, buf, 12, 0, 10, 9, 8, 15, 14, 13); | ||
| 448 | #if BRANCH_FREE | ||
| 449 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_256_TOP); | ||
| 450 | bn_add_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 451 | mask = 0-(size_t)carry; | ||
| 452 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 453 | #else | ||
| 454 | if (bn_sub_words(r_d, r_d, t_d, BN_NIST_256_TOP)) | ||
| 455 | bn_add_words(r_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 456 | #endif | ||
| 457 | /*D4*/ | ||
| 458 | nist_set_256(t_d, buf, 13, 0, 11, 10, 9, 0, 15, 14); | ||
| 459 | #if BRANCH_FREE | ||
| 460 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_256_TOP); | ||
| 461 | bn_add_words(c_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 462 | mask = 0-(size_t)carry; | ||
| 463 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 464 | |||
| 465 | nist_cp_bn(r_d, res, BN_NIST_384_TOP); | ||
| 466 | #else | ||
| 467 | if (bn_sub_words(r_d, r_d, t_d, BN_NIST_256_TOP)) | ||
| 468 | bn_add_words(r_d,r_d,_nist_p_256,BN_NIST_256_TOP); | ||
| 469 | #endif | ||
| 470 | r->top = BN_NIST_256_TOP; | ||
| 471 | bn_correct_top(r); | ||
| 472 | |||
| 473 | return 1; | ||
| 474 | #else /* BN_BITS!=32 */ | ||
| 475 | return 0; | ||
| 476 | #endif | ||
| 477 | } | ||
| 478 | |||
| 479 | #define nist_set_384(to,from,a1,a2,a3,a4,a5,a6,a7,a8,a9,a10,a11,a12) \ | ||
| 480 | { \ | ||
| 481 | if (a12 != 0) bn_cp_32(to, 0, from, (a12) - 12) else bn_32_set_0(to, 0)\ | ||
| 482 | if (a11 != 0) bn_cp_32(to, 1, from, (a11) - 12) else bn_32_set_0(to, 1)\ | ||
| 483 | if (a10 != 0) bn_cp_32(to, 2, from, (a10) - 12) else bn_32_set_0(to, 2)\ | ||
| 484 | if (a9 != 0) bn_cp_32(to, 3, from, (a9) - 12) else bn_32_set_0(to, 3)\ | ||
| 485 | if (a8 != 0) bn_cp_32(to, 4, from, (a8) - 12) else bn_32_set_0(to, 4)\ | ||
| 486 | if (a7 != 0) bn_cp_32(to, 5, from, (a7) - 12) else bn_32_set_0(to, 5)\ | ||
| 487 | if (a6 != 0) bn_cp_32(to, 6, from, (a6) - 12) else bn_32_set_0(to, 6)\ | ||
| 488 | if (a5 != 0) bn_cp_32(to, 7, from, (a5) - 12) else bn_32_set_0(to, 7)\ | ||
| 489 | if (a4 != 0) bn_cp_32(to, 8, from, (a4) - 12) else bn_32_set_0(to, 8)\ | ||
| 490 | if (a3 != 0) bn_cp_32(to, 9, from, (a3) - 12) else bn_32_set_0(to, 9)\ | ||
| 491 | if (a2 != 0) bn_cp_32(to, 10, from, (a2) - 12) else bn_32_set_0(to, 10)\ | ||
| 492 | if (a1 != 0) bn_cp_32(to, 11, from, (a1) - 12) else bn_32_set_0(to, 11)\ | ||
| 493 | } | ||
| 494 | |||
| 495 | int BN_nist_mod_384(BIGNUM *r, const BIGNUM *a, const BIGNUM *field, | ||
| 496 | BN_CTX *ctx) | ||
| 497 | { | ||
| 498 | #if BN_BITS2 == 32 | ||
| 499 | int i, top = a->top; | ||
| 500 | int carry = 0; | ||
| 501 | register BN_ULONG *r_d, *a_d = a->d; | ||
| 502 | BN_ULONG t_d[BN_NIST_384_TOP], | ||
| 503 | buf[BN_NIST_384_TOP], | ||
| 504 | c_d[BN_NIST_384_TOP], | ||
| 505 | *res; | ||
| 506 | size_t mask; | ||
| 507 | |||
| 508 | i = BN_ucmp(field, a); | ||
| 509 | if (i == 0) | ||
| 510 | { | ||
| 511 | BN_zero(r); | ||
| 512 | return 1; | ||
| 513 | } | ||
| 514 | else if (i > 0) | ||
| 515 | return (r == a)? 1 : (BN_copy(r ,a) != NULL); | ||
| 516 | |||
| 517 | if (top == BN_NIST_384_TOP) | ||
| 518 | return BN_usub(r, a, field); | ||
| 519 | |||
| 520 | if (r != a) | ||
| 521 | { | ||
| 522 | if (!bn_wexpand(r, BN_NIST_384_TOP)) | ||
| 523 | return 0; | ||
| 524 | r_d = r->d; | ||
| 525 | nist_cp_bn(r_d, a_d, BN_NIST_384_TOP); | ||
| 526 | } | ||
| 527 | else | ||
| 528 | r_d = a_d; | ||
| 529 | |||
| 530 | nist_cp_bn_0(buf, a_d + BN_NIST_384_TOP, top - BN_NIST_384_TOP, BN_NIST_384_TOP); | ||
| 531 | |||
| 532 | /*S1*/ | ||
| 533 | nist_set_256(t_d, buf, 0, 0, 0, 0, 0, 23-4, 22-4, 21-4); | ||
| 534 | /* left shift */ | ||
| 535 | { | ||
| 536 | register BN_ULONG *ap,t,c; | ||
| 537 | ap = t_d; | ||
| 538 | c=0; | ||
| 539 | for (i = 3; i != 0; --i) | ||
| 540 | { | ||
| 541 | t= *ap; | ||
| 542 | *(ap++)=((t<<1)|c)&BN_MASK2; | ||
| 543 | c=(t & BN_TBIT)?1:0; | ||
| 544 | } | ||
| 545 | *ap=c; | ||
| 546 | } | ||
| 547 | carry = bn_add_words(r_d+(128/BN_BITS2), r_d+(128/BN_BITS2), | ||
| 548 | t_d, BN_NIST_256_TOP); | ||
| 549 | /* | ||
| 550 | * we need if (result>=modulus) subtract(result,modulus); | ||
| 551 | * in n-bit space this can be expressed as | ||
| 552 | * if (carry || result>=modulus) subtract(result,modulus); | ||
| 553 | * the catch is that comparison implies subtraction and | ||
| 554 | * therefore one can write tmp=subtract(result,modulus); | ||
| 555 | * and then if(carry || !borrow) result=tmp; this's what | ||
| 556 | * happens below, but without explicit if:-) a. | ||
| 557 | */ | ||
| 558 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 559 | mask = ~mask | (0-(size_t)carry); | ||
| 560 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 561 | |||
| 562 | /*S2 */ | ||
| 563 | carry = bn_add_words(r_d, res, buf, BN_NIST_384_TOP); | ||
| 564 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 565 | mask = ~mask | (0-(size_t)carry); | ||
| 566 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 567 | |||
| 568 | /*S3*/ | ||
| 569 | nist_set_384(t_d,buf,20,19,18,17,16,15,14,13,12,23,22,21); | ||
| 570 | carry = bn_add_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 571 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 572 | mask = ~mask | (0-(size_t)carry); | ||
| 573 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 574 | |||
| 575 | /*S4*/ | ||
| 576 | nist_set_384(t_d,buf,19,18,17,16,15,14,13,12,20,0,23,0); | ||
| 577 | carry = bn_add_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 578 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 579 | mask = ~mask | (0-(size_t)carry); | ||
| 580 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 581 | |||
| 582 | /*S5*/ | ||
| 583 | nist_set_384(t_d, buf,0,0,0,0,23,22,21,20,0,0,0,0); | ||
| 584 | carry = bn_add_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 585 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 586 | mask = ~mask | (0-(size_t)carry); | ||
| 587 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 588 | |||
| 589 | /*S6*/ | ||
| 590 | nist_set_384(t_d,buf,0,0,0,0,0,0,23,22,21,0,0,20); | ||
| 591 | carry = bn_add_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 592 | mask = 0-(size_t)bn_sub_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 593 | mask = ~mask | (0-(size_t)carry); | ||
| 594 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 595 | |||
| 596 | /*D1*/ | ||
| 597 | nist_set_384(t_d,buf,22,21,20,19,18,17,16,15,14,13,12,23); | ||
| 598 | #if BRANCH_FREE | ||
| 599 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 600 | bn_add_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 601 | mask = 0-(size_t)carry; | ||
| 602 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 603 | #else | ||
| 604 | if (bn_sub_words(r_d, res, t_d, BN_NIST_384_TOP)) | ||
| 605 | bn_add_words(r_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 606 | #endif | ||
| 607 | /*D2*/ | ||
| 608 | nist_set_384(t_d,buf,0,0,0,0,0,0,0,23,22,21,20,0); | ||
| 609 | #if BRANCH_FREE | ||
| 610 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 611 | bn_add_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 612 | mask = 0-(size_t)carry; | ||
| 613 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 614 | #else | ||
| 615 | if (bn_sub_words(r_d, r_d, t_d, BN_NIST_384_TOP)) | ||
| 616 | bn_add_words(r_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 617 | #endif | ||
| 618 | /*D3*/ | ||
| 619 | nist_set_384(t_d,buf,0,0,0,0,0,0,0,23,23,0,0,0); | ||
| 620 | #if BRANCH_FREE | ||
| 621 | carry = bn_sub_words(r_d, res, t_d, BN_NIST_384_TOP); | ||
| 622 | bn_add_words(c_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 623 | mask = 0-(size_t)carry; | ||
| 624 | res = (BN_ULONG *)(((size_t)c_d&mask) | ((size_t)r_d&~mask)); | ||
| 625 | |||
| 626 | nist_cp_bn(r_d, res, BN_NIST_384_TOP); | ||
| 627 | #else | ||
| 628 | if (bn_sub_words(r_d, r_d, t_d, BN_NIST_384_TOP)) | ||
| 629 | bn_add_words(r_d,r_d,_nist_p_384,BN_NIST_384_TOP); | ||
| 630 | #endif | ||
| 631 | r->top = BN_NIST_384_TOP; | ||
| 632 | bn_correct_top(r); | ||
| 633 | |||
| 634 | return 1; | ||
| 635 | #else /* BN_BITS!=32 */ | ||
| 636 | return 0; | ||
| 637 | #endif | ||
| 638 | } | ||
| 639 | |||
| 640 | int BN_nist_mod_521(BIGNUM *r, const BIGNUM *a, const BIGNUM *field, | ||
| 641 | BN_CTX *ctx) | ||
| 642 | { | ||
| 643 | #if BN_BITS2 == 64 | ||
| 644 | #define BN_NIST_521_TOP_MASK (BN_ULONG)0x1FF | ||
| 645 | #elif BN_BITS2 == 32 | ||
| 646 | #define BN_NIST_521_TOP_MASK (BN_ULONG)0x1FF | ||
| 647 | #endif | ||
| 648 | int top, ret = 0; | ||
| 649 | BN_ULONG *r_d; | ||
| 650 | BIGNUM *tmp; | ||
| 651 | |||
| 652 | /* check whether a reduction is necessary */ | ||
| 653 | top = a->top; | ||
| 654 | if (top < BN_NIST_521_TOP || ( top == BN_NIST_521_TOP && | ||
| 655 | (!(a->d[BN_NIST_521_TOP-1] & ~(BN_NIST_521_TOP_MASK))))) | ||
| 656 | return (r == a)? 1 : (BN_copy(r ,a) != NULL); | ||
| 657 | |||
| 658 | BN_CTX_start(ctx); | ||
| 659 | tmp = BN_CTX_get(ctx); | ||
| 660 | if (!tmp) | ||
| 661 | goto err; | ||
| 662 | |||
| 663 | if (!bn_wexpand(tmp, BN_NIST_521_TOP)) | ||
| 664 | goto err; | ||
| 665 | nist_cp_bn(tmp->d, a->d, BN_NIST_521_TOP); | ||
| 666 | |||
| 667 | tmp->top = BN_NIST_521_TOP; | ||
| 668 | tmp->d[BN_NIST_521_TOP-1] &= BN_NIST_521_TOP_MASK; | ||
| 669 | bn_correct_top(tmp); | ||
| 670 | |||
| 671 | if (!BN_rshift(r, a, 521)) | ||
| 672 | goto err; | ||
| 673 | |||
| 674 | if (!BN_uadd(r, tmp, r)) | ||
| 675 | goto err; | ||
| 676 | top = r->top; | ||
| 677 | r_d = r->d; | ||
| 678 | if (top == BN_NIST_521_TOP && | ||
| 679 | (r_d[BN_NIST_521_TOP-1] & ~(BN_NIST_521_TOP_MASK))) | ||
| 680 | { | ||
| 681 | BN_NIST_ADD_ONE(r_d) | ||
| 682 | r->d[BN_NIST_521_TOP-1] &= BN_NIST_521_TOP_MASK; | ||
| 683 | } | ||
| 684 | bn_correct_top(r); | ||
| 685 | |||
| 686 | ret = 1; | ||
| 687 | err: | ||
| 688 | BN_CTX_end(ctx); | ||
| 689 | |||
| 690 | bn_check_top(r); | ||
| 691 | return ret; | ||
| 692 | } | ||
diff --git a/src/lib/libssl/src/crypto/camellia/Makefile b/src/lib/libssl/src/crypto/camellia/Makefile new file mode 100644 index 0000000000..1579de5ce5 --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/Makefile | |||
| @@ -0,0 +1,103 @@ | |||
| 1 | # | ||
| 2 | # crypto/camellia/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= camellia | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | CPP= $(CC) -E | ||
| 9 | INCLUDES= | ||
| 10 | CFLAG=-g | ||
| 11 | MAKEFILE= Makefile | ||
| 12 | AR= ar r | ||
| 13 | |||
| 14 | CAMELLIA_ASM_OBJ= | ||
| 15 | |||
| 16 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 17 | ASFLAGS= $(INCLUDES) $(ASFLAG) | ||
| 18 | AFLAGS= $(ASFLAGS) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | #TEST=camelliatest.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=camellia.c cmll_misc.c cmll_ecb.c cmll_cbc.c cmll_ofb.c \ | ||
| 26 | cmll_cfb.c cmll_ctr.c | ||
| 27 | |||
| 28 | LIBOBJ= camellia.o cmll_misc.o cmll_ecb.o cmll_cbc.o cmll_ofb.o \ | ||
| 29 | cmll_cfb.o cmll_ctr.o $(CAMELLIA_ASM_OBJ) | ||
| 30 | |||
| 31 | SRC= $(LIBSRC) | ||
| 32 | |||
| 33 | EXHEADER= camellia.h | ||
| 34 | HEADER= cmll_locl.h $(EXHEADER) | ||
| 35 | |||
| 36 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 37 | |||
| 38 | top: | ||
| 39 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 40 | |||
| 41 | all: lib | ||
| 42 | |||
| 43 | lib: $(LIBOBJ) | ||
| 44 | $(AR) $(LIB) $(LIBOBJ) | ||
| 45 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 46 | @touch lib | ||
| 47 | |||
| 48 | $(LIBOBJ): $(LIBSRC) | ||
| 49 | |||
| 50 | |||
| 51 | files: | ||
| 52 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 53 | |||
| 54 | links: | ||
| 55 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 56 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 57 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 58 | |||
| 59 | install: | ||
| 60 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 61 | @headerlist="$(EXHEADER)"; for i in $$headerlist ; \ | ||
| 62 | do \ | ||
| 63 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 64 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 65 | done; | ||
| 66 | |||
| 67 | tags: | ||
| 68 | ctags $(SRC) | ||
| 69 | |||
| 70 | tests: | ||
| 71 | |||
| 72 | lint: | ||
| 73 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 74 | |||
| 75 | depend: | ||
| 76 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 77 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 78 | |||
| 79 | dclean: | ||
| 80 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 81 | mv -f Makefile.new $(MAKEFILE) | ||
| 82 | |||
| 83 | clean: | ||
| 84 | rm -f *.s *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 85 | |||
| 86 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 87 | |||
| 88 | camellia.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 89 | camellia.o: camellia.c camellia.h cmll_locl.h | ||
| 90 | cmll_cbc.o: ../../include/openssl/camellia.h ../../include/openssl/e_os2.h | ||
| 91 | cmll_cbc.o: ../../include/openssl/opensslconf.h cmll_cbc.c cmll_locl.h | ||
| 92 | cmll_cfb.o: ../../e_os.h ../../include/openssl/camellia.h | ||
| 93 | cmll_cfb.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 94 | cmll_cfb.o: cmll_cfb.c cmll_locl.h | ||
| 95 | cmll_ctr.o: ../../include/openssl/camellia.h ../../include/openssl/e_os2.h | ||
| 96 | cmll_ctr.o: ../../include/openssl/opensslconf.h cmll_ctr.c cmll_locl.h | ||
| 97 | cmll_ecb.o: ../../include/openssl/camellia.h ../../include/openssl/e_os2.h | ||
| 98 | cmll_ecb.o: ../../include/openssl/opensslconf.h cmll_ecb.c cmll_locl.h | ||
| 99 | cmll_misc.o: ../../include/openssl/camellia.h ../../include/openssl/e_os2.h | ||
| 100 | cmll_misc.o: ../../include/openssl/opensslconf.h | ||
| 101 | cmll_misc.o: ../../include/openssl/opensslv.h cmll_locl.h cmll_misc.c | ||
| 102 | cmll_ofb.o: ../../include/openssl/camellia.h ../../include/openssl/e_os2.h | ||
| 103 | cmll_ofb.o: ../../include/openssl/opensslconf.h cmll_locl.h cmll_ofb.c | ||
diff --git a/src/lib/libssl/src/crypto/camellia/camellia.c b/src/lib/libssl/src/crypto/camellia/camellia.c new file mode 100644 index 0000000000..491c26b39e --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/camellia.c | |||
| @@ -0,0 +1,1624 @@ | |||
| 1 | /* crypto/camellia/camellia.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2006 NTT (Nippon Telegraph and Telephone Corporation) . | ||
| 4 | * ALL RIGHTS RESERVED. | ||
| 5 | * | ||
| 6 | * Intellectual Property information for Camellia: | ||
| 7 | * http://info.isl.ntt.co.jp/crypt/eng/info/chiteki.html | ||
| 8 | * | ||
| 9 | * News Release for Announcement of Camellia open source: | ||
| 10 | * http://www.ntt.co.jp/news/news06e/0604/060413a.html | ||
| 11 | * | ||
| 12 | * The Camellia Code included herein is developed by | ||
| 13 | * NTT (Nippon Telegraph and Telephone Corporation), and is contributed | ||
| 14 | * to the OpenSSL project. | ||
| 15 | * | ||
| 16 | * The Camellia Code is licensed pursuant to the OpenSSL open source | ||
| 17 | * license provided below. | ||
| 18 | */ | ||
| 19 | /* ==================================================================== | ||
| 20 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 21 | * | ||
| 22 | * Redistribution and use in source and binary forms, with or without | ||
| 23 | * modification, are permitted provided that the following conditions | ||
| 24 | * are met: | ||
| 25 | * | ||
| 26 | * 1. Redistributions of source code must retain the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * | ||
| 29 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 30 | * notice, this list of conditions and the following disclaimer in | ||
| 31 | * the documentation and/or other materials provided with the | ||
| 32 | * distribution. | ||
| 33 | * | ||
| 34 | * 3. All advertising materials mentioning features or use of this | ||
| 35 | * software must display the following acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 40 | * endorse or promote products derived from this software without | ||
| 41 | * prior written permission. For written permission, please contact | ||
| 42 | * openssl-core@openssl.org. | ||
| 43 | * | ||
| 44 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 45 | * nor may "OpenSSL" appear in their names without prior written | ||
| 46 | * permission of the OpenSSL Project. | ||
| 47 | * | ||
| 48 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 49 | * acknowledgment: | ||
| 50 | * "This product includes software developed by the OpenSSL Project | ||
| 51 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 52 | * | ||
| 53 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 54 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 55 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 56 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 57 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 58 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 59 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 60 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 61 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 62 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 63 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 64 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 65 | * ==================================================================== | ||
| 66 | */ | ||
| 67 | |||
| 68 | /* Algorithm Specification | ||
| 69 | http://info.isl.ntt.co.jp/crypt/eng/camellia/specifications.html | ||
| 70 | */ | ||
| 71 | |||
| 72 | |||
| 73 | #include <string.h> | ||
| 74 | #include <stdlib.h> | ||
| 75 | |||
| 76 | #include "camellia.h" | ||
| 77 | #include "cmll_locl.h" | ||
| 78 | |||
| 79 | /* key constants */ | ||
| 80 | #define CAMELLIA_SIGMA1L (0xA09E667FL) | ||
| 81 | #define CAMELLIA_SIGMA1R (0x3BCC908BL) | ||
| 82 | #define CAMELLIA_SIGMA2L (0xB67AE858L) | ||
| 83 | #define CAMELLIA_SIGMA2R (0x4CAA73B2L) | ||
| 84 | #define CAMELLIA_SIGMA3L (0xC6EF372FL) | ||
| 85 | #define CAMELLIA_SIGMA3R (0xE94F82BEL) | ||
| 86 | #define CAMELLIA_SIGMA4L (0x54FF53A5L) | ||
| 87 | #define CAMELLIA_SIGMA4R (0xF1D36F1CL) | ||
| 88 | #define CAMELLIA_SIGMA5L (0x10E527FAL) | ||
| 89 | #define CAMELLIA_SIGMA5R (0xDE682D1DL) | ||
| 90 | #define CAMELLIA_SIGMA6L (0xB05688C2L) | ||
| 91 | #define CAMELLIA_SIGMA6R (0xB3E6C1FDL) | ||
| 92 | |||
| 93 | /* | ||
| 94 | * macros | ||
| 95 | */ | ||
| 96 | |||
| 97 | /* e is pointer of subkey */ | ||
| 98 | #define CamelliaSubkeyL(INDEX) (subkey[(INDEX)*2]) | ||
| 99 | #define CamelliaSubkeyR(INDEX) (subkey[(INDEX)*2 + 1]) | ||
| 100 | |||
| 101 | /* rotation right shift 1byte */ | ||
| 102 | #define CAMELLIA_RR8(x) (((x) >> 8) + ((x) << 24)) | ||
| 103 | /* rotation left shift 1bit */ | ||
| 104 | #define CAMELLIA_RL1(x) (((x) << 1) + ((x) >> 31)) | ||
| 105 | /* rotation left shift 1byte */ | ||
| 106 | #define CAMELLIA_RL8(x) (((x) << 8) + ((x) >> 24)) | ||
| 107 | |||
| 108 | #define CAMELLIA_ROLDQ(ll, lr, rl, rr, w0, w1, bits) \ | ||
| 109 | do \ | ||
| 110 | { \ | ||
| 111 | w0 = ll; \ | ||
| 112 | ll = (ll << bits) + (lr >> (32 - bits)); \ | ||
| 113 | lr = (lr << bits) + (rl >> (32 - bits)); \ | ||
| 114 | rl = (rl << bits) + (rr >> (32 - bits)); \ | ||
| 115 | rr = (rr << bits) + (w0 >> (32 - bits)); \ | ||
| 116 | } while(0) | ||
| 117 | |||
| 118 | #define CAMELLIA_ROLDQo32(ll, lr, rl, rr, w0, w1, bits) \ | ||
| 119 | do \ | ||
| 120 | { \ | ||
| 121 | w0 = ll; \ | ||
| 122 | w1 = lr; \ | ||
| 123 | ll = (lr << (bits - 32)) + (rl >> (64 - bits)); \ | ||
| 124 | lr = (rl << (bits - 32)) + (rr >> (64 - bits)); \ | ||
| 125 | rl = (rr << (bits - 32)) + (w0 >> (64 - bits)); \ | ||
| 126 | rr = (w0 << (bits - 32)) + (w1 >> (64 - bits)); \ | ||
| 127 | } while(0) | ||
| 128 | |||
| 129 | #define CAMELLIA_SP1110(INDEX) (camellia_sp1110[(INDEX)]) | ||
| 130 | #define CAMELLIA_SP0222(INDEX) (camellia_sp0222[(INDEX)]) | ||
| 131 | #define CAMELLIA_SP3033(INDEX) (camellia_sp3033[(INDEX)]) | ||
| 132 | #define CAMELLIA_SP4404(INDEX) (camellia_sp4404[(INDEX)]) | ||
| 133 | |||
| 134 | #define CAMELLIA_F(xl, xr, kl, kr, yl, yr, il, ir, t0, t1) \ | ||
| 135 | do \ | ||
| 136 | { \ | ||
| 137 | il = xl ^ kl; \ | ||
| 138 | ir = xr ^ kr; \ | ||
| 139 | t0 = il >> 16; \ | ||
| 140 | t1 = ir >> 16; \ | ||
| 141 | yl = CAMELLIA_SP1110(ir & 0xff) \ | ||
| 142 | ^ CAMELLIA_SP0222((t1 >> 8) & 0xff) \ | ||
| 143 | ^ CAMELLIA_SP3033(t1 & 0xff) \ | ||
| 144 | ^ CAMELLIA_SP4404((ir >> 8) & 0xff); \ | ||
| 145 | yr = CAMELLIA_SP1110((t0 >> 8) & 0xff) \ | ||
| 146 | ^ CAMELLIA_SP0222(t0 & 0xff) \ | ||
| 147 | ^ CAMELLIA_SP3033((il >> 8) & 0xff) \ | ||
| 148 | ^ CAMELLIA_SP4404(il & 0xff); \ | ||
| 149 | yl ^= yr; \ | ||
| 150 | yr = CAMELLIA_RR8(yr); \ | ||
| 151 | yr ^= yl; \ | ||
| 152 | } while(0) | ||
| 153 | |||
| 154 | |||
| 155 | /* | ||
| 156 | * for speed up | ||
| 157 | * | ||
| 158 | */ | ||
| 159 | #define CAMELLIA_FLS(ll, lr, rl, rr, kll, klr, krl, krr, t0, t1, t2, t3) \ | ||
| 160 | do \ | ||
| 161 | { \ | ||
| 162 | t0 = kll; \ | ||
| 163 | t0 &= ll; \ | ||
| 164 | lr ^= CAMELLIA_RL1(t0); \ | ||
| 165 | t1 = klr; \ | ||
| 166 | t1 |= lr; \ | ||
| 167 | ll ^= t1; \ | ||
| 168 | \ | ||
| 169 | t2 = krr; \ | ||
| 170 | t2 |= rr; \ | ||
| 171 | rl ^= t2; \ | ||
| 172 | t3 = krl; \ | ||
| 173 | t3 &= rl; \ | ||
| 174 | rr ^= CAMELLIA_RL1(t3); \ | ||
| 175 | } while(0) | ||
| 176 | |||
| 177 | #define CAMELLIA_ROUNDSM(xl, xr, kl, kr, yl, yr, il, ir, t0, t1) \ | ||
| 178 | do \ | ||
| 179 | { \ | ||
| 180 | il = xl; \ | ||
| 181 | ir = xr; \ | ||
| 182 | t0 = il >> 16; \ | ||
| 183 | t1 = ir >> 16; \ | ||
| 184 | ir = CAMELLIA_SP1110(ir & 0xff) \ | ||
| 185 | ^ CAMELLIA_SP0222((t1 >> 8) & 0xff) \ | ||
| 186 | ^ CAMELLIA_SP3033(t1 & 0xff) \ | ||
| 187 | ^ CAMELLIA_SP4404((ir >> 8) & 0xff); \ | ||
| 188 | il = CAMELLIA_SP1110((t0 >> 8) & 0xff) \ | ||
| 189 | ^ CAMELLIA_SP0222(t0 & 0xff) \ | ||
| 190 | ^ CAMELLIA_SP3033((il >> 8) & 0xff) \ | ||
| 191 | ^ CAMELLIA_SP4404(il & 0xff); \ | ||
| 192 | il ^= kl; \ | ||
| 193 | ir ^= kr; \ | ||
| 194 | ir ^= il; \ | ||
| 195 | il = CAMELLIA_RR8(il); \ | ||
| 196 | il ^= ir; \ | ||
| 197 | yl ^= ir; \ | ||
| 198 | yr ^= il; \ | ||
| 199 | } while(0) | ||
| 200 | |||
| 201 | static const u32 camellia_sp1110[256] = | ||
| 202 | { | ||
| 203 | 0x70707000,0x82828200,0x2c2c2c00,0xececec00, | ||
| 204 | 0xb3b3b300,0x27272700,0xc0c0c000,0xe5e5e500, | ||
| 205 | 0xe4e4e400,0x85858500,0x57575700,0x35353500, | ||
| 206 | 0xeaeaea00,0x0c0c0c00,0xaeaeae00,0x41414100, | ||
| 207 | 0x23232300,0xefefef00,0x6b6b6b00,0x93939300, | ||
| 208 | 0x45454500,0x19191900,0xa5a5a500,0x21212100, | ||
| 209 | 0xededed00,0x0e0e0e00,0x4f4f4f00,0x4e4e4e00, | ||
| 210 | 0x1d1d1d00,0x65656500,0x92929200,0xbdbdbd00, | ||
| 211 | 0x86868600,0xb8b8b800,0xafafaf00,0x8f8f8f00, | ||
| 212 | 0x7c7c7c00,0xebebeb00,0x1f1f1f00,0xcecece00, | ||
| 213 | 0x3e3e3e00,0x30303000,0xdcdcdc00,0x5f5f5f00, | ||
| 214 | 0x5e5e5e00,0xc5c5c500,0x0b0b0b00,0x1a1a1a00, | ||
| 215 | 0xa6a6a600,0xe1e1e100,0x39393900,0xcacaca00, | ||
| 216 | 0xd5d5d500,0x47474700,0x5d5d5d00,0x3d3d3d00, | ||
| 217 | 0xd9d9d900,0x01010100,0x5a5a5a00,0xd6d6d600, | ||
| 218 | 0x51515100,0x56565600,0x6c6c6c00,0x4d4d4d00, | ||
| 219 | 0x8b8b8b00,0x0d0d0d00,0x9a9a9a00,0x66666600, | ||
| 220 | 0xfbfbfb00,0xcccccc00,0xb0b0b000,0x2d2d2d00, | ||
| 221 | 0x74747400,0x12121200,0x2b2b2b00,0x20202000, | ||
| 222 | 0xf0f0f000,0xb1b1b100,0x84848400,0x99999900, | ||
| 223 | 0xdfdfdf00,0x4c4c4c00,0xcbcbcb00,0xc2c2c200, | ||
| 224 | 0x34343400,0x7e7e7e00,0x76767600,0x05050500, | ||
| 225 | 0x6d6d6d00,0xb7b7b700,0xa9a9a900,0x31313100, | ||
| 226 | 0xd1d1d100,0x17171700,0x04040400,0xd7d7d700, | ||
| 227 | 0x14141400,0x58585800,0x3a3a3a00,0x61616100, | ||
| 228 | 0xdedede00,0x1b1b1b00,0x11111100,0x1c1c1c00, | ||
| 229 | 0x32323200,0x0f0f0f00,0x9c9c9c00,0x16161600, | ||
| 230 | 0x53535300,0x18181800,0xf2f2f200,0x22222200, | ||
| 231 | 0xfefefe00,0x44444400,0xcfcfcf00,0xb2b2b200, | ||
| 232 | 0xc3c3c300,0xb5b5b500,0x7a7a7a00,0x91919100, | ||
| 233 | 0x24242400,0x08080800,0xe8e8e800,0xa8a8a800, | ||
| 234 | 0x60606000,0xfcfcfc00,0x69696900,0x50505000, | ||
| 235 | 0xaaaaaa00,0xd0d0d000,0xa0a0a000,0x7d7d7d00, | ||
| 236 | 0xa1a1a100,0x89898900,0x62626200,0x97979700, | ||
| 237 | 0x54545400,0x5b5b5b00,0x1e1e1e00,0x95959500, | ||
| 238 | 0xe0e0e000,0xffffff00,0x64646400,0xd2d2d200, | ||
| 239 | 0x10101000,0xc4c4c400,0x00000000,0x48484800, | ||
| 240 | 0xa3a3a300,0xf7f7f700,0x75757500,0xdbdbdb00, | ||
| 241 | 0x8a8a8a00,0x03030300,0xe6e6e600,0xdadada00, | ||
| 242 | 0x09090900,0x3f3f3f00,0xdddddd00,0x94949400, | ||
| 243 | 0x87878700,0x5c5c5c00,0x83838300,0x02020200, | ||
| 244 | 0xcdcdcd00,0x4a4a4a00,0x90909000,0x33333300, | ||
| 245 | 0x73737300,0x67676700,0xf6f6f600,0xf3f3f300, | ||
| 246 | 0x9d9d9d00,0x7f7f7f00,0xbfbfbf00,0xe2e2e200, | ||
| 247 | 0x52525200,0x9b9b9b00,0xd8d8d800,0x26262600, | ||
| 248 | 0xc8c8c800,0x37373700,0xc6c6c600,0x3b3b3b00, | ||
| 249 | 0x81818100,0x96969600,0x6f6f6f00,0x4b4b4b00, | ||
| 250 | 0x13131300,0xbebebe00,0x63636300,0x2e2e2e00, | ||
| 251 | 0xe9e9e900,0x79797900,0xa7a7a700,0x8c8c8c00, | ||
| 252 | 0x9f9f9f00,0x6e6e6e00,0xbcbcbc00,0x8e8e8e00, | ||
| 253 | 0x29292900,0xf5f5f500,0xf9f9f900,0xb6b6b600, | ||
| 254 | 0x2f2f2f00,0xfdfdfd00,0xb4b4b400,0x59595900, | ||
| 255 | 0x78787800,0x98989800,0x06060600,0x6a6a6a00, | ||
| 256 | 0xe7e7e700,0x46464600,0x71717100,0xbababa00, | ||
| 257 | 0xd4d4d400,0x25252500,0xababab00,0x42424200, | ||
| 258 | 0x88888800,0xa2a2a200,0x8d8d8d00,0xfafafa00, | ||
| 259 | 0x72727200,0x07070700,0xb9b9b900,0x55555500, | ||
| 260 | 0xf8f8f800,0xeeeeee00,0xacacac00,0x0a0a0a00, | ||
| 261 | 0x36363600,0x49494900,0x2a2a2a00,0x68686800, | ||
| 262 | 0x3c3c3c00,0x38383800,0xf1f1f100,0xa4a4a400, | ||
| 263 | 0x40404000,0x28282800,0xd3d3d300,0x7b7b7b00, | ||
| 264 | 0xbbbbbb00,0xc9c9c900,0x43434300,0xc1c1c100, | ||
| 265 | 0x15151500,0xe3e3e300,0xadadad00,0xf4f4f400, | ||
| 266 | 0x77777700,0xc7c7c700,0x80808000,0x9e9e9e00, | ||
| 267 | }; | ||
| 268 | |||
| 269 | static const u32 camellia_sp0222[256] = | ||
| 270 | { | ||
| 271 | 0x00e0e0e0,0x00050505,0x00585858,0x00d9d9d9, | ||
| 272 | 0x00676767,0x004e4e4e,0x00818181,0x00cbcbcb, | ||
| 273 | 0x00c9c9c9,0x000b0b0b,0x00aeaeae,0x006a6a6a, | ||
| 274 | 0x00d5d5d5,0x00181818,0x005d5d5d,0x00828282, | ||
| 275 | 0x00464646,0x00dfdfdf,0x00d6d6d6,0x00272727, | ||
| 276 | 0x008a8a8a,0x00323232,0x004b4b4b,0x00424242, | ||
| 277 | 0x00dbdbdb,0x001c1c1c,0x009e9e9e,0x009c9c9c, | ||
| 278 | 0x003a3a3a,0x00cacaca,0x00252525,0x007b7b7b, | ||
| 279 | 0x000d0d0d,0x00717171,0x005f5f5f,0x001f1f1f, | ||
| 280 | 0x00f8f8f8,0x00d7d7d7,0x003e3e3e,0x009d9d9d, | ||
| 281 | 0x007c7c7c,0x00606060,0x00b9b9b9,0x00bebebe, | ||
| 282 | 0x00bcbcbc,0x008b8b8b,0x00161616,0x00343434, | ||
| 283 | 0x004d4d4d,0x00c3c3c3,0x00727272,0x00959595, | ||
| 284 | 0x00ababab,0x008e8e8e,0x00bababa,0x007a7a7a, | ||
| 285 | 0x00b3b3b3,0x00020202,0x00b4b4b4,0x00adadad, | ||
| 286 | 0x00a2a2a2,0x00acacac,0x00d8d8d8,0x009a9a9a, | ||
| 287 | 0x00171717,0x001a1a1a,0x00353535,0x00cccccc, | ||
| 288 | 0x00f7f7f7,0x00999999,0x00616161,0x005a5a5a, | ||
| 289 | 0x00e8e8e8,0x00242424,0x00565656,0x00404040, | ||
| 290 | 0x00e1e1e1,0x00636363,0x00090909,0x00333333, | ||
| 291 | 0x00bfbfbf,0x00989898,0x00979797,0x00858585, | ||
| 292 | 0x00686868,0x00fcfcfc,0x00ececec,0x000a0a0a, | ||
| 293 | 0x00dadada,0x006f6f6f,0x00535353,0x00626262, | ||
| 294 | 0x00a3a3a3,0x002e2e2e,0x00080808,0x00afafaf, | ||
| 295 | 0x00282828,0x00b0b0b0,0x00747474,0x00c2c2c2, | ||
| 296 | 0x00bdbdbd,0x00363636,0x00222222,0x00383838, | ||
| 297 | 0x00646464,0x001e1e1e,0x00393939,0x002c2c2c, | ||
| 298 | 0x00a6a6a6,0x00303030,0x00e5e5e5,0x00444444, | ||
| 299 | 0x00fdfdfd,0x00888888,0x009f9f9f,0x00656565, | ||
| 300 | 0x00878787,0x006b6b6b,0x00f4f4f4,0x00232323, | ||
| 301 | 0x00484848,0x00101010,0x00d1d1d1,0x00515151, | ||
| 302 | 0x00c0c0c0,0x00f9f9f9,0x00d2d2d2,0x00a0a0a0, | ||
| 303 | 0x00555555,0x00a1a1a1,0x00414141,0x00fafafa, | ||
| 304 | 0x00434343,0x00131313,0x00c4c4c4,0x002f2f2f, | ||
| 305 | 0x00a8a8a8,0x00b6b6b6,0x003c3c3c,0x002b2b2b, | ||
| 306 | 0x00c1c1c1,0x00ffffff,0x00c8c8c8,0x00a5a5a5, | ||
| 307 | 0x00202020,0x00898989,0x00000000,0x00909090, | ||
| 308 | 0x00474747,0x00efefef,0x00eaeaea,0x00b7b7b7, | ||
| 309 | 0x00151515,0x00060606,0x00cdcdcd,0x00b5b5b5, | ||
| 310 | 0x00121212,0x007e7e7e,0x00bbbbbb,0x00292929, | ||
| 311 | 0x000f0f0f,0x00b8b8b8,0x00070707,0x00040404, | ||
| 312 | 0x009b9b9b,0x00949494,0x00212121,0x00666666, | ||
| 313 | 0x00e6e6e6,0x00cecece,0x00ededed,0x00e7e7e7, | ||
| 314 | 0x003b3b3b,0x00fefefe,0x007f7f7f,0x00c5c5c5, | ||
| 315 | 0x00a4a4a4,0x00373737,0x00b1b1b1,0x004c4c4c, | ||
| 316 | 0x00919191,0x006e6e6e,0x008d8d8d,0x00767676, | ||
| 317 | 0x00030303,0x002d2d2d,0x00dedede,0x00969696, | ||
| 318 | 0x00262626,0x007d7d7d,0x00c6c6c6,0x005c5c5c, | ||
| 319 | 0x00d3d3d3,0x00f2f2f2,0x004f4f4f,0x00191919, | ||
| 320 | 0x003f3f3f,0x00dcdcdc,0x00797979,0x001d1d1d, | ||
| 321 | 0x00525252,0x00ebebeb,0x00f3f3f3,0x006d6d6d, | ||
| 322 | 0x005e5e5e,0x00fbfbfb,0x00696969,0x00b2b2b2, | ||
| 323 | 0x00f0f0f0,0x00313131,0x000c0c0c,0x00d4d4d4, | ||
| 324 | 0x00cfcfcf,0x008c8c8c,0x00e2e2e2,0x00757575, | ||
| 325 | 0x00a9a9a9,0x004a4a4a,0x00575757,0x00848484, | ||
| 326 | 0x00111111,0x00454545,0x001b1b1b,0x00f5f5f5, | ||
| 327 | 0x00e4e4e4,0x000e0e0e,0x00737373,0x00aaaaaa, | ||
| 328 | 0x00f1f1f1,0x00dddddd,0x00595959,0x00141414, | ||
| 329 | 0x006c6c6c,0x00929292,0x00545454,0x00d0d0d0, | ||
| 330 | 0x00787878,0x00707070,0x00e3e3e3,0x00494949, | ||
| 331 | 0x00808080,0x00505050,0x00a7a7a7,0x00f6f6f6, | ||
| 332 | 0x00777777,0x00939393,0x00868686,0x00838383, | ||
| 333 | 0x002a2a2a,0x00c7c7c7,0x005b5b5b,0x00e9e9e9, | ||
| 334 | 0x00eeeeee,0x008f8f8f,0x00010101,0x003d3d3d, | ||
| 335 | }; | ||
| 336 | |||
| 337 | static const u32 camellia_sp3033[256] = | ||
| 338 | { | ||
| 339 | 0x38003838,0x41004141,0x16001616,0x76007676, | ||
| 340 | 0xd900d9d9,0x93009393,0x60006060,0xf200f2f2, | ||
| 341 | 0x72007272,0xc200c2c2,0xab00abab,0x9a009a9a, | ||
| 342 | 0x75007575,0x06000606,0x57005757,0xa000a0a0, | ||
| 343 | 0x91009191,0xf700f7f7,0xb500b5b5,0xc900c9c9, | ||
| 344 | 0xa200a2a2,0x8c008c8c,0xd200d2d2,0x90009090, | ||
| 345 | 0xf600f6f6,0x07000707,0xa700a7a7,0x27002727, | ||
| 346 | 0x8e008e8e,0xb200b2b2,0x49004949,0xde00dede, | ||
| 347 | 0x43004343,0x5c005c5c,0xd700d7d7,0xc700c7c7, | ||
| 348 | 0x3e003e3e,0xf500f5f5,0x8f008f8f,0x67006767, | ||
| 349 | 0x1f001f1f,0x18001818,0x6e006e6e,0xaf00afaf, | ||
| 350 | 0x2f002f2f,0xe200e2e2,0x85008585,0x0d000d0d, | ||
| 351 | 0x53005353,0xf000f0f0,0x9c009c9c,0x65006565, | ||
| 352 | 0xea00eaea,0xa300a3a3,0xae00aeae,0x9e009e9e, | ||
| 353 | 0xec00ecec,0x80008080,0x2d002d2d,0x6b006b6b, | ||
| 354 | 0xa800a8a8,0x2b002b2b,0x36003636,0xa600a6a6, | ||
| 355 | 0xc500c5c5,0x86008686,0x4d004d4d,0x33003333, | ||
| 356 | 0xfd00fdfd,0x66006666,0x58005858,0x96009696, | ||
| 357 | 0x3a003a3a,0x09000909,0x95009595,0x10001010, | ||
| 358 | 0x78007878,0xd800d8d8,0x42004242,0xcc00cccc, | ||
| 359 | 0xef00efef,0x26002626,0xe500e5e5,0x61006161, | ||
| 360 | 0x1a001a1a,0x3f003f3f,0x3b003b3b,0x82008282, | ||
| 361 | 0xb600b6b6,0xdb00dbdb,0xd400d4d4,0x98009898, | ||
| 362 | 0xe800e8e8,0x8b008b8b,0x02000202,0xeb00ebeb, | ||
| 363 | 0x0a000a0a,0x2c002c2c,0x1d001d1d,0xb000b0b0, | ||
| 364 | 0x6f006f6f,0x8d008d8d,0x88008888,0x0e000e0e, | ||
| 365 | 0x19001919,0x87008787,0x4e004e4e,0x0b000b0b, | ||
| 366 | 0xa900a9a9,0x0c000c0c,0x79007979,0x11001111, | ||
| 367 | 0x7f007f7f,0x22002222,0xe700e7e7,0x59005959, | ||
| 368 | 0xe100e1e1,0xda00dada,0x3d003d3d,0xc800c8c8, | ||
| 369 | 0x12001212,0x04000404,0x74007474,0x54005454, | ||
| 370 | 0x30003030,0x7e007e7e,0xb400b4b4,0x28002828, | ||
| 371 | 0x55005555,0x68006868,0x50005050,0xbe00bebe, | ||
| 372 | 0xd000d0d0,0xc400c4c4,0x31003131,0xcb00cbcb, | ||
| 373 | 0x2a002a2a,0xad00adad,0x0f000f0f,0xca00caca, | ||
| 374 | 0x70007070,0xff00ffff,0x32003232,0x69006969, | ||
| 375 | 0x08000808,0x62006262,0x00000000,0x24002424, | ||
| 376 | 0xd100d1d1,0xfb00fbfb,0xba00baba,0xed00eded, | ||
| 377 | 0x45004545,0x81008181,0x73007373,0x6d006d6d, | ||
| 378 | 0x84008484,0x9f009f9f,0xee00eeee,0x4a004a4a, | ||
| 379 | 0xc300c3c3,0x2e002e2e,0xc100c1c1,0x01000101, | ||
| 380 | 0xe600e6e6,0x25002525,0x48004848,0x99009999, | ||
| 381 | 0xb900b9b9,0xb300b3b3,0x7b007b7b,0xf900f9f9, | ||
| 382 | 0xce00cece,0xbf00bfbf,0xdf00dfdf,0x71007171, | ||
| 383 | 0x29002929,0xcd00cdcd,0x6c006c6c,0x13001313, | ||
| 384 | 0x64006464,0x9b009b9b,0x63006363,0x9d009d9d, | ||
| 385 | 0xc000c0c0,0x4b004b4b,0xb700b7b7,0xa500a5a5, | ||
| 386 | 0x89008989,0x5f005f5f,0xb100b1b1,0x17001717, | ||
| 387 | 0xf400f4f4,0xbc00bcbc,0xd300d3d3,0x46004646, | ||
| 388 | 0xcf00cfcf,0x37003737,0x5e005e5e,0x47004747, | ||
| 389 | 0x94009494,0xfa00fafa,0xfc00fcfc,0x5b005b5b, | ||
| 390 | 0x97009797,0xfe00fefe,0x5a005a5a,0xac00acac, | ||
| 391 | 0x3c003c3c,0x4c004c4c,0x03000303,0x35003535, | ||
| 392 | 0xf300f3f3,0x23002323,0xb800b8b8,0x5d005d5d, | ||
| 393 | 0x6a006a6a,0x92009292,0xd500d5d5,0x21002121, | ||
| 394 | 0x44004444,0x51005151,0xc600c6c6,0x7d007d7d, | ||
| 395 | 0x39003939,0x83008383,0xdc00dcdc,0xaa00aaaa, | ||
| 396 | 0x7c007c7c,0x77007777,0x56005656,0x05000505, | ||
| 397 | 0x1b001b1b,0xa400a4a4,0x15001515,0x34003434, | ||
| 398 | 0x1e001e1e,0x1c001c1c,0xf800f8f8,0x52005252, | ||
| 399 | 0x20002020,0x14001414,0xe900e9e9,0xbd00bdbd, | ||
| 400 | 0xdd00dddd,0xe400e4e4,0xa100a1a1,0xe000e0e0, | ||
| 401 | 0x8a008a8a,0xf100f1f1,0xd600d6d6,0x7a007a7a, | ||
| 402 | 0xbb00bbbb,0xe300e3e3,0x40004040,0x4f004f4f, | ||
| 403 | }; | ||
| 404 | |||
| 405 | static const u32 camellia_sp4404[256] = | ||
| 406 | { | ||
| 407 | 0x70700070,0x2c2c002c,0xb3b300b3,0xc0c000c0, | ||
| 408 | 0xe4e400e4,0x57570057,0xeaea00ea,0xaeae00ae, | ||
| 409 | 0x23230023,0x6b6b006b,0x45450045,0xa5a500a5, | ||
| 410 | 0xeded00ed,0x4f4f004f,0x1d1d001d,0x92920092, | ||
| 411 | 0x86860086,0xafaf00af,0x7c7c007c,0x1f1f001f, | ||
| 412 | 0x3e3e003e,0xdcdc00dc,0x5e5e005e,0x0b0b000b, | ||
| 413 | 0xa6a600a6,0x39390039,0xd5d500d5,0x5d5d005d, | ||
| 414 | 0xd9d900d9,0x5a5a005a,0x51510051,0x6c6c006c, | ||
| 415 | 0x8b8b008b,0x9a9a009a,0xfbfb00fb,0xb0b000b0, | ||
| 416 | 0x74740074,0x2b2b002b,0xf0f000f0,0x84840084, | ||
| 417 | 0xdfdf00df,0xcbcb00cb,0x34340034,0x76760076, | ||
| 418 | 0x6d6d006d,0xa9a900a9,0xd1d100d1,0x04040004, | ||
| 419 | 0x14140014,0x3a3a003a,0xdede00de,0x11110011, | ||
| 420 | 0x32320032,0x9c9c009c,0x53530053,0xf2f200f2, | ||
| 421 | 0xfefe00fe,0xcfcf00cf,0xc3c300c3,0x7a7a007a, | ||
| 422 | 0x24240024,0xe8e800e8,0x60600060,0x69690069, | ||
| 423 | 0xaaaa00aa,0xa0a000a0,0xa1a100a1,0x62620062, | ||
| 424 | 0x54540054,0x1e1e001e,0xe0e000e0,0x64640064, | ||
| 425 | 0x10100010,0x00000000,0xa3a300a3,0x75750075, | ||
| 426 | 0x8a8a008a,0xe6e600e6,0x09090009,0xdddd00dd, | ||
| 427 | 0x87870087,0x83830083,0xcdcd00cd,0x90900090, | ||
| 428 | 0x73730073,0xf6f600f6,0x9d9d009d,0xbfbf00bf, | ||
| 429 | 0x52520052,0xd8d800d8,0xc8c800c8,0xc6c600c6, | ||
| 430 | 0x81810081,0x6f6f006f,0x13130013,0x63630063, | ||
| 431 | 0xe9e900e9,0xa7a700a7,0x9f9f009f,0xbcbc00bc, | ||
| 432 | 0x29290029,0xf9f900f9,0x2f2f002f,0xb4b400b4, | ||
| 433 | 0x78780078,0x06060006,0xe7e700e7,0x71710071, | ||
| 434 | 0xd4d400d4,0xabab00ab,0x88880088,0x8d8d008d, | ||
| 435 | 0x72720072,0xb9b900b9,0xf8f800f8,0xacac00ac, | ||
| 436 | 0x36360036,0x2a2a002a,0x3c3c003c,0xf1f100f1, | ||
| 437 | 0x40400040,0xd3d300d3,0xbbbb00bb,0x43430043, | ||
| 438 | 0x15150015,0xadad00ad,0x77770077,0x80800080, | ||
| 439 | 0x82820082,0xecec00ec,0x27270027,0xe5e500e5, | ||
| 440 | 0x85850085,0x35350035,0x0c0c000c,0x41410041, | ||
| 441 | 0xefef00ef,0x93930093,0x19190019,0x21210021, | ||
| 442 | 0x0e0e000e,0x4e4e004e,0x65650065,0xbdbd00bd, | ||
| 443 | 0xb8b800b8,0x8f8f008f,0xebeb00eb,0xcece00ce, | ||
| 444 | 0x30300030,0x5f5f005f,0xc5c500c5,0x1a1a001a, | ||
| 445 | 0xe1e100e1,0xcaca00ca,0x47470047,0x3d3d003d, | ||
| 446 | 0x01010001,0xd6d600d6,0x56560056,0x4d4d004d, | ||
| 447 | 0x0d0d000d,0x66660066,0xcccc00cc,0x2d2d002d, | ||
| 448 | 0x12120012,0x20200020,0xb1b100b1,0x99990099, | ||
| 449 | 0x4c4c004c,0xc2c200c2,0x7e7e007e,0x05050005, | ||
| 450 | 0xb7b700b7,0x31310031,0x17170017,0xd7d700d7, | ||
| 451 | 0x58580058,0x61610061,0x1b1b001b,0x1c1c001c, | ||
| 452 | 0x0f0f000f,0x16160016,0x18180018,0x22220022, | ||
| 453 | 0x44440044,0xb2b200b2,0xb5b500b5,0x91910091, | ||
| 454 | 0x08080008,0xa8a800a8,0xfcfc00fc,0x50500050, | ||
| 455 | 0xd0d000d0,0x7d7d007d,0x89890089,0x97970097, | ||
| 456 | 0x5b5b005b,0x95950095,0xffff00ff,0xd2d200d2, | ||
| 457 | 0xc4c400c4,0x48480048,0xf7f700f7,0xdbdb00db, | ||
| 458 | 0x03030003,0xdada00da,0x3f3f003f,0x94940094, | ||
| 459 | 0x5c5c005c,0x02020002,0x4a4a004a,0x33330033, | ||
| 460 | 0x67670067,0xf3f300f3,0x7f7f007f,0xe2e200e2, | ||
| 461 | 0x9b9b009b,0x26260026,0x37370037,0x3b3b003b, | ||
| 462 | 0x96960096,0x4b4b004b,0xbebe00be,0x2e2e002e, | ||
| 463 | 0x79790079,0x8c8c008c,0x6e6e006e,0x8e8e008e, | ||
| 464 | 0xf5f500f5,0xb6b600b6,0xfdfd00fd,0x59590059, | ||
| 465 | 0x98980098,0x6a6a006a,0x46460046,0xbaba00ba, | ||
| 466 | 0x25250025,0x42420042,0xa2a200a2,0xfafa00fa, | ||
| 467 | 0x07070007,0x55550055,0xeeee00ee,0x0a0a000a, | ||
| 468 | 0x49490049,0x68680068,0x38380038,0xa4a400a4, | ||
| 469 | 0x28280028,0x7b7b007b,0xc9c900c9,0xc1c100c1, | ||
| 470 | 0xe3e300e3,0xf4f400f4,0xc7c700c7,0x9e9e009e, | ||
| 471 | }; | ||
| 472 | |||
| 473 | /** | ||
| 474 | * Stuff related to the Camellia key schedule | ||
| 475 | */ | ||
| 476 | #define subl(x) subL[(x)] | ||
| 477 | #define subr(x) subR[(x)] | ||
| 478 | |||
| 479 | void camellia_setup128(const u8 *key, u32 *subkey) | ||
| 480 | { | ||
| 481 | u32 kll, klr, krl, krr; | ||
| 482 | u32 il, ir, t0, t1, w0, w1; | ||
| 483 | u32 kw4l, kw4r, dw, tl, tr; | ||
| 484 | u32 subL[26]; | ||
| 485 | u32 subR[26]; | ||
| 486 | |||
| 487 | /** | ||
| 488 | * k == kll || klr || krl || krr (|| is concatination) | ||
| 489 | */ | ||
| 490 | kll = GETU32(key ); | ||
| 491 | klr = GETU32(key + 4); | ||
| 492 | krl = GETU32(key + 8); | ||
| 493 | krr = GETU32(key + 12); | ||
| 494 | /** | ||
| 495 | * generate KL dependent subkeys | ||
| 496 | */ | ||
| 497 | /* kw1 */ | ||
| 498 | subl(0) = kll; subr(0) = klr; | ||
| 499 | /* kw2 */ | ||
| 500 | subl(1) = krl; subr(1) = krr; | ||
| 501 | /* rotation left shift 15bit */ | ||
| 502 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 503 | /* k3 */ | ||
| 504 | subl(4) = kll; subr(4) = klr; | ||
| 505 | /* k4 */ | ||
| 506 | subl(5) = krl; subr(5) = krr; | ||
| 507 | /* rotation left shift 15+30bit */ | ||
| 508 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 30); | ||
| 509 | /* k7 */ | ||
| 510 | subl(10) = kll; subr(10) = klr; | ||
| 511 | /* k8 */ | ||
| 512 | subl(11) = krl; subr(11) = krr; | ||
| 513 | /* rotation left shift 15+30+15bit */ | ||
| 514 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 515 | /* k10 */ | ||
| 516 | subl(13) = krl; subr(13) = krr; | ||
| 517 | /* rotation left shift 15+30+15+17 bit */ | ||
| 518 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 17); | ||
| 519 | /* kl3 */ | ||
| 520 | subl(16) = kll; subr(16) = klr; | ||
| 521 | /* kl4 */ | ||
| 522 | subl(17) = krl; subr(17) = krr; | ||
| 523 | /* rotation left shift 15+30+15+17+17 bit */ | ||
| 524 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 17); | ||
| 525 | /* k13 */ | ||
| 526 | subl(18) = kll; subr(18) = klr; | ||
| 527 | /* k14 */ | ||
| 528 | subl(19) = krl; subr(19) = krr; | ||
| 529 | /* rotation left shift 15+30+15+17+17+17 bit */ | ||
| 530 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 17); | ||
| 531 | /* k17 */ | ||
| 532 | subl(22) = kll; subr(22) = klr; | ||
| 533 | /* k18 */ | ||
| 534 | subl(23) = krl; subr(23) = krr; | ||
| 535 | |||
| 536 | /* generate KA */ | ||
| 537 | kll = subl(0); klr = subr(0); | ||
| 538 | krl = subl(1); krr = subr(1); | ||
| 539 | CAMELLIA_F(kll, klr, | ||
| 540 | CAMELLIA_SIGMA1L, CAMELLIA_SIGMA1R, | ||
| 541 | w0, w1, il, ir, t0, t1); | ||
| 542 | krl ^= w0; krr ^= w1; | ||
| 543 | CAMELLIA_F(krl, krr, | ||
| 544 | CAMELLIA_SIGMA2L, CAMELLIA_SIGMA2R, | ||
| 545 | kll, klr, il, ir, t0, t1); | ||
| 546 | /* current status == (kll, klr, w0, w1) */ | ||
| 547 | CAMELLIA_F(kll, klr, | ||
| 548 | CAMELLIA_SIGMA3L, CAMELLIA_SIGMA3R, | ||
| 549 | krl, krr, il, ir, t0, t1); | ||
| 550 | krl ^= w0; krr ^= w1; | ||
| 551 | CAMELLIA_F(krl, krr, | ||
| 552 | CAMELLIA_SIGMA4L, CAMELLIA_SIGMA4R, | ||
| 553 | w0, w1, il, ir, t0, t1); | ||
| 554 | kll ^= w0; klr ^= w1; | ||
| 555 | |||
| 556 | /* generate KA dependent subkeys */ | ||
| 557 | /* k1, k2 */ | ||
| 558 | subl(2) = kll; subr(2) = klr; | ||
| 559 | subl(3) = krl; subr(3) = krr; | ||
| 560 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 561 | /* k5,k6 */ | ||
| 562 | subl(6) = kll; subr(6) = klr; | ||
| 563 | subl(7) = krl; subr(7) = krr; | ||
| 564 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 565 | /* kl1, kl2 */ | ||
| 566 | subl(8) = kll; subr(8) = klr; | ||
| 567 | subl(9) = krl; subr(9) = krr; | ||
| 568 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 569 | /* k9 */ | ||
| 570 | subl(12) = kll; subr(12) = klr; | ||
| 571 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 572 | /* k11, k12 */ | ||
| 573 | subl(14) = kll; subr(14) = klr; | ||
| 574 | subl(15) = krl; subr(15) = krr; | ||
| 575 | CAMELLIA_ROLDQo32(kll, klr, krl, krr, w0, w1, 34); | ||
| 576 | /* k15, k16 */ | ||
| 577 | subl(20) = kll; subr(20) = klr; | ||
| 578 | subl(21) = krl; subr(21) = krr; | ||
| 579 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 17); | ||
| 580 | /* kw3, kw4 */ | ||
| 581 | subl(24) = kll; subr(24) = klr; | ||
| 582 | subl(25) = krl; subr(25) = krr; | ||
| 583 | |||
| 584 | |||
| 585 | /* absorb kw2 to other subkeys */ | ||
| 586 | /* round 2 */ | ||
| 587 | subl(3) ^= subl(1); subr(3) ^= subr(1); | ||
| 588 | /* round 4 */ | ||
| 589 | subl(5) ^= subl(1); subr(5) ^= subr(1); | ||
| 590 | /* round 6 */ | ||
| 591 | subl(7) ^= subl(1); subr(7) ^= subr(1); | ||
| 592 | subl(1) ^= subr(1) & ~subr(9); | ||
| 593 | dw = subl(1) & subl(9), | ||
| 594 | subr(1) ^= CAMELLIA_RL1(dw); /* modified for FLinv(kl2) */ | ||
| 595 | /* round 8 */ | ||
| 596 | subl(11) ^= subl(1); subr(11) ^= subr(1); | ||
| 597 | /* round 10 */ | ||
| 598 | subl(13) ^= subl(1); subr(13) ^= subr(1); | ||
| 599 | /* round 12 */ | ||
| 600 | subl(15) ^= subl(1); subr(15) ^= subr(1); | ||
| 601 | subl(1) ^= subr(1) & ~subr(17); | ||
| 602 | dw = subl(1) & subl(17), | ||
| 603 | subr(1) ^= CAMELLIA_RL1(dw); /* modified for FLinv(kl4) */ | ||
| 604 | /* round 14 */ | ||
| 605 | subl(19) ^= subl(1); subr(19) ^= subr(1); | ||
| 606 | /* round 16 */ | ||
| 607 | subl(21) ^= subl(1); subr(21) ^= subr(1); | ||
| 608 | /* round 18 */ | ||
| 609 | subl(23) ^= subl(1); subr(23) ^= subr(1); | ||
| 610 | /* kw3 */ | ||
| 611 | subl(24) ^= subl(1); subr(24) ^= subr(1); | ||
| 612 | |||
| 613 | /* absorb kw4 to other subkeys */ | ||
| 614 | kw4l = subl(25); kw4r = subr(25); | ||
| 615 | /* round 17 */ | ||
| 616 | subl(22) ^= kw4l; subr(22) ^= kw4r; | ||
| 617 | /* round 15 */ | ||
| 618 | subl(20) ^= kw4l; subr(20) ^= kw4r; | ||
| 619 | /* round 13 */ | ||
| 620 | subl(18) ^= kw4l; subr(18) ^= kw4r; | ||
| 621 | kw4l ^= kw4r & ~subr(16); | ||
| 622 | dw = kw4l & subl(16), | ||
| 623 | kw4r ^= CAMELLIA_RL1(dw); /* modified for FL(kl3) */ | ||
| 624 | /* round 11 */ | ||
| 625 | subl(14) ^= kw4l; subr(14) ^= kw4r; | ||
| 626 | /* round 9 */ | ||
| 627 | subl(12) ^= kw4l; subr(12) ^= kw4r; | ||
| 628 | /* round 7 */ | ||
| 629 | subl(10) ^= kw4l; subr(10) ^= kw4r; | ||
| 630 | kw4l ^= kw4r & ~subr(8); | ||
| 631 | dw = kw4l & subl(8), | ||
| 632 | kw4r ^= CAMELLIA_RL1(dw); /* modified for FL(kl1) */ | ||
| 633 | /* round 5 */ | ||
| 634 | subl(6) ^= kw4l; subr(6) ^= kw4r; | ||
| 635 | /* round 3 */ | ||
| 636 | subl(4) ^= kw4l; subr(4) ^= kw4r; | ||
| 637 | /* round 1 */ | ||
| 638 | subl(2) ^= kw4l; subr(2) ^= kw4r; | ||
| 639 | /* kw1 */ | ||
| 640 | subl(0) ^= kw4l; subr(0) ^= kw4r; | ||
| 641 | |||
| 642 | |||
| 643 | /* key XOR is end of F-function */ | ||
| 644 | CamelliaSubkeyL(0) = subl(0) ^ subl(2);/* kw1 */ | ||
| 645 | CamelliaSubkeyR(0) = subr(0) ^ subr(2); | ||
| 646 | CamelliaSubkeyL(2) = subl(3); /* round 1 */ | ||
| 647 | CamelliaSubkeyR(2) = subr(3); | ||
| 648 | CamelliaSubkeyL(3) = subl(2) ^ subl(4); /* round 2 */ | ||
| 649 | CamelliaSubkeyR(3) = subr(2) ^ subr(4); | ||
| 650 | CamelliaSubkeyL(4) = subl(3) ^ subl(5); /* round 3 */ | ||
| 651 | CamelliaSubkeyR(4) = subr(3) ^ subr(5); | ||
| 652 | CamelliaSubkeyL(5) = subl(4) ^ subl(6); /* round 4 */ | ||
| 653 | CamelliaSubkeyR(5) = subr(4) ^ subr(6); | ||
| 654 | CamelliaSubkeyL(6) = subl(5) ^ subl(7); /* round 5 */ | ||
| 655 | CamelliaSubkeyR(6) = subr(5) ^ subr(7); | ||
| 656 | tl = subl(10) ^ (subr(10) & ~subr(8)); | ||
| 657 | dw = tl & subl(8), /* FL(kl1) */ | ||
| 658 | tr = subr(10) ^ CAMELLIA_RL1(dw); | ||
| 659 | CamelliaSubkeyL(7) = subl(6) ^ tl; /* round 6 */ | ||
| 660 | CamelliaSubkeyR(7) = subr(6) ^ tr; | ||
| 661 | CamelliaSubkeyL(8) = subl(8); /* FL(kl1) */ | ||
| 662 | CamelliaSubkeyR(8) = subr(8); | ||
| 663 | CamelliaSubkeyL(9) = subl(9); /* FLinv(kl2) */ | ||
| 664 | CamelliaSubkeyR(9) = subr(9); | ||
| 665 | tl = subl(7) ^ (subr(7) & ~subr(9)); | ||
| 666 | dw = tl & subl(9), /* FLinv(kl2) */ | ||
| 667 | tr = subr(7) ^ CAMELLIA_RL1(dw); | ||
| 668 | CamelliaSubkeyL(10) = tl ^ subl(11); /* round 7 */ | ||
| 669 | CamelliaSubkeyR(10) = tr ^ subr(11); | ||
| 670 | CamelliaSubkeyL(11) = subl(10) ^ subl(12); /* round 8 */ | ||
| 671 | CamelliaSubkeyR(11) = subr(10) ^ subr(12); | ||
| 672 | CamelliaSubkeyL(12) = subl(11) ^ subl(13); /* round 9 */ | ||
| 673 | CamelliaSubkeyR(12) = subr(11) ^ subr(13); | ||
| 674 | CamelliaSubkeyL(13) = subl(12) ^ subl(14); /* round 10 */ | ||
| 675 | CamelliaSubkeyR(13) = subr(12) ^ subr(14); | ||
| 676 | CamelliaSubkeyL(14) = subl(13) ^ subl(15); /* round 11 */ | ||
| 677 | CamelliaSubkeyR(14) = subr(13) ^ subr(15); | ||
| 678 | tl = subl(18) ^ (subr(18) & ~subr(16)); | ||
| 679 | dw = tl & subl(16), /* FL(kl3) */ | ||
| 680 | tr = subr(18) ^ CAMELLIA_RL1(dw); | ||
| 681 | CamelliaSubkeyL(15) = subl(14) ^ tl; /* round 12 */ | ||
| 682 | CamelliaSubkeyR(15) = subr(14) ^ tr; | ||
| 683 | CamelliaSubkeyL(16) = subl(16); /* FL(kl3) */ | ||
| 684 | CamelliaSubkeyR(16) = subr(16); | ||
| 685 | CamelliaSubkeyL(17) = subl(17); /* FLinv(kl4) */ | ||
| 686 | CamelliaSubkeyR(17) = subr(17); | ||
| 687 | tl = subl(15) ^ (subr(15) & ~subr(17)); | ||
| 688 | dw = tl & subl(17), /* FLinv(kl4) */ | ||
| 689 | tr = subr(15) ^ CAMELLIA_RL1(dw); | ||
| 690 | CamelliaSubkeyL(18) = tl ^ subl(19); /* round 13 */ | ||
| 691 | CamelliaSubkeyR(18) = tr ^ subr(19); | ||
| 692 | CamelliaSubkeyL(19) = subl(18) ^ subl(20); /* round 14 */ | ||
| 693 | CamelliaSubkeyR(19) = subr(18) ^ subr(20); | ||
| 694 | CamelliaSubkeyL(20) = subl(19) ^ subl(21); /* round 15 */ | ||
| 695 | CamelliaSubkeyR(20) = subr(19) ^ subr(21); | ||
| 696 | CamelliaSubkeyL(21) = subl(20) ^ subl(22); /* round 16 */ | ||
| 697 | CamelliaSubkeyR(21) = subr(20) ^ subr(22); | ||
| 698 | CamelliaSubkeyL(22) = subl(21) ^ subl(23); /* round 17 */ | ||
| 699 | CamelliaSubkeyR(22) = subr(21) ^ subr(23); | ||
| 700 | CamelliaSubkeyL(23) = subl(22); /* round 18 */ | ||
| 701 | CamelliaSubkeyR(23) = subr(22); | ||
| 702 | CamelliaSubkeyL(24) = subl(24) ^ subl(23); /* kw3 */ | ||
| 703 | CamelliaSubkeyR(24) = subr(24) ^ subr(23); | ||
| 704 | |||
| 705 | /* apply the inverse of the last half of P-function */ | ||
| 706 | dw = CamelliaSubkeyL(2) ^ CamelliaSubkeyR(2), | ||
| 707 | dw = CAMELLIA_RL8(dw);/* round 1 */ | ||
| 708 | CamelliaSubkeyR(2) = CamelliaSubkeyL(2) ^ dw, | ||
| 709 | CamelliaSubkeyL(2) = dw; | ||
| 710 | dw = CamelliaSubkeyL(3) ^ CamelliaSubkeyR(3), | ||
| 711 | dw = CAMELLIA_RL8(dw);/* round 2 */ | ||
| 712 | CamelliaSubkeyR(3) = CamelliaSubkeyL(3) ^ dw, | ||
| 713 | CamelliaSubkeyL(3) = dw; | ||
| 714 | dw = CamelliaSubkeyL(4) ^ CamelliaSubkeyR(4), | ||
| 715 | dw = CAMELLIA_RL8(dw);/* round 3 */ | ||
| 716 | CamelliaSubkeyR(4) = CamelliaSubkeyL(4) ^ dw, | ||
| 717 | CamelliaSubkeyL(4) = dw; | ||
| 718 | dw = CamelliaSubkeyL(5) ^ CamelliaSubkeyR(5), | ||
| 719 | dw = CAMELLIA_RL8(dw);/* round 4 */ | ||
| 720 | CamelliaSubkeyR(5) = CamelliaSubkeyL(5) ^ dw, | ||
| 721 | CamelliaSubkeyL(5) = dw; | ||
| 722 | dw = CamelliaSubkeyL(6) ^ CamelliaSubkeyR(6), | ||
| 723 | dw = CAMELLIA_RL8(dw);/* round 5 */ | ||
| 724 | CamelliaSubkeyR(6) = CamelliaSubkeyL(6) ^ dw, | ||
| 725 | CamelliaSubkeyL(6) = dw; | ||
| 726 | dw = CamelliaSubkeyL(7) ^ CamelliaSubkeyR(7), | ||
| 727 | dw = CAMELLIA_RL8(dw);/* round 6 */ | ||
| 728 | CamelliaSubkeyR(7) = CamelliaSubkeyL(7) ^ dw, | ||
| 729 | CamelliaSubkeyL(7) = dw; | ||
| 730 | dw = CamelliaSubkeyL(10) ^ CamelliaSubkeyR(10), | ||
| 731 | dw = CAMELLIA_RL8(dw);/* round 7 */ | ||
| 732 | CamelliaSubkeyR(10) = CamelliaSubkeyL(10) ^ dw, | ||
| 733 | CamelliaSubkeyL(10) = dw; | ||
| 734 | dw = CamelliaSubkeyL(11) ^ CamelliaSubkeyR(11), | ||
| 735 | dw = CAMELLIA_RL8(dw);/* round 8 */ | ||
| 736 | CamelliaSubkeyR(11) = CamelliaSubkeyL(11) ^ dw, | ||
| 737 | CamelliaSubkeyL(11) = dw; | ||
| 738 | dw = CamelliaSubkeyL(12) ^ CamelliaSubkeyR(12), | ||
| 739 | dw = CAMELLIA_RL8(dw);/* round 9 */ | ||
| 740 | CamelliaSubkeyR(12) = CamelliaSubkeyL(12) ^ dw, | ||
| 741 | CamelliaSubkeyL(12) = dw; | ||
| 742 | dw = CamelliaSubkeyL(13) ^ CamelliaSubkeyR(13), | ||
| 743 | dw = CAMELLIA_RL8(dw);/* round 10 */ | ||
| 744 | CamelliaSubkeyR(13) = CamelliaSubkeyL(13) ^ dw, | ||
| 745 | CamelliaSubkeyL(13) = dw; | ||
| 746 | dw = CamelliaSubkeyL(14) ^ CamelliaSubkeyR(14), | ||
| 747 | dw = CAMELLIA_RL8(dw);/* round 11 */ | ||
| 748 | CamelliaSubkeyR(14) = CamelliaSubkeyL(14) ^ dw, | ||
| 749 | CamelliaSubkeyL(14) = dw; | ||
| 750 | dw = CamelliaSubkeyL(15) ^ CamelliaSubkeyR(15), | ||
| 751 | dw = CAMELLIA_RL8(dw);/* round 12 */ | ||
| 752 | CamelliaSubkeyR(15) = CamelliaSubkeyL(15) ^ dw, | ||
| 753 | CamelliaSubkeyL(15) = dw; | ||
| 754 | dw = CamelliaSubkeyL(18) ^ CamelliaSubkeyR(18), | ||
| 755 | dw = CAMELLIA_RL8(dw);/* round 13 */ | ||
| 756 | CamelliaSubkeyR(18) = CamelliaSubkeyL(18) ^ dw, | ||
| 757 | CamelliaSubkeyL(18) = dw; | ||
| 758 | dw = CamelliaSubkeyL(19) ^ CamelliaSubkeyR(19), | ||
| 759 | dw = CAMELLIA_RL8(dw);/* round 14 */ | ||
| 760 | CamelliaSubkeyR(19) = CamelliaSubkeyL(19) ^ dw, | ||
| 761 | CamelliaSubkeyL(19) = dw; | ||
| 762 | dw = CamelliaSubkeyL(20) ^ CamelliaSubkeyR(20), | ||
| 763 | dw = CAMELLIA_RL8(dw);/* round 15 */ | ||
| 764 | CamelliaSubkeyR(20) = CamelliaSubkeyL(20) ^ dw, | ||
| 765 | CamelliaSubkeyL(20) = dw; | ||
| 766 | dw = CamelliaSubkeyL(21) ^ CamelliaSubkeyR(21), | ||
| 767 | dw = CAMELLIA_RL8(dw);/* round 16 */ | ||
| 768 | CamelliaSubkeyR(21) = CamelliaSubkeyL(21) ^ dw, | ||
| 769 | CamelliaSubkeyL(21) = dw; | ||
| 770 | dw = CamelliaSubkeyL(22) ^ CamelliaSubkeyR(22), | ||
| 771 | dw = CAMELLIA_RL8(dw);/* round 17 */ | ||
| 772 | CamelliaSubkeyR(22) = CamelliaSubkeyL(22) ^ dw, | ||
| 773 | CamelliaSubkeyL(22) = dw; | ||
| 774 | dw = CamelliaSubkeyL(23) ^ CamelliaSubkeyR(23), | ||
| 775 | dw = CAMELLIA_RL8(dw);/* round 18 */ | ||
| 776 | CamelliaSubkeyR(23) = CamelliaSubkeyL(23) ^ dw, | ||
| 777 | CamelliaSubkeyL(23) = dw; | ||
| 778 | |||
| 779 | return; | ||
| 780 | } | ||
| 781 | |||
| 782 | void camellia_setup256(const u8 *key, u32 *subkey) | ||
| 783 | { | ||
| 784 | u32 kll,klr,krl,krr; /* left half of key */ | ||
| 785 | u32 krll,krlr,krrl,krrr; /* right half of key */ | ||
| 786 | u32 il, ir, t0, t1, w0, w1; /* temporary variables */ | ||
| 787 | u32 kw4l, kw4r, dw, tl, tr; | ||
| 788 | u32 subL[34]; | ||
| 789 | u32 subR[34]; | ||
| 790 | |||
| 791 | /** | ||
| 792 | * key = (kll || klr || krl || krr || krll || krlr || krrl || krrr) | ||
| 793 | * (|| is concatination) | ||
| 794 | */ | ||
| 795 | |||
| 796 | kll = GETU32(key ); | ||
| 797 | klr = GETU32(key + 4); | ||
| 798 | krl = GETU32(key + 8); | ||
| 799 | krr = GETU32(key + 12); | ||
| 800 | krll = GETU32(key + 16); | ||
| 801 | krlr = GETU32(key + 20); | ||
| 802 | krrl = GETU32(key + 24); | ||
| 803 | krrr = GETU32(key + 28); | ||
| 804 | |||
| 805 | /* generate KL dependent subkeys */ | ||
| 806 | /* kw1 */ | ||
| 807 | subl(0) = kll; subr(0) = klr; | ||
| 808 | /* kw2 */ | ||
| 809 | subl(1) = krl; subr(1) = krr; | ||
| 810 | CAMELLIA_ROLDQo32(kll, klr, krl, krr, w0, w1, 45); | ||
| 811 | /* k9 */ | ||
| 812 | subl(12) = kll; subr(12) = klr; | ||
| 813 | /* k10 */ | ||
| 814 | subl(13) = krl; subr(13) = krr; | ||
| 815 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 816 | /* kl3 */ | ||
| 817 | subl(16) = kll; subr(16) = klr; | ||
| 818 | /* kl4 */ | ||
| 819 | subl(17) = krl; subr(17) = krr; | ||
| 820 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 17); | ||
| 821 | /* k17 */ | ||
| 822 | subl(22) = kll; subr(22) = klr; | ||
| 823 | /* k18 */ | ||
| 824 | subl(23) = krl; subr(23) = krr; | ||
| 825 | CAMELLIA_ROLDQo32(kll, klr, krl, krr, w0, w1, 34); | ||
| 826 | /* k23 */ | ||
| 827 | subl(30) = kll; subr(30) = klr; | ||
| 828 | /* k24 */ | ||
| 829 | subl(31) = krl; subr(31) = krr; | ||
| 830 | |||
| 831 | /* generate KR dependent subkeys */ | ||
| 832 | CAMELLIA_ROLDQ(krll, krlr, krrl, krrr, w0, w1, 15); | ||
| 833 | /* k3 */ | ||
| 834 | subl(4) = krll; subr(4) = krlr; | ||
| 835 | /* k4 */ | ||
| 836 | subl(5) = krrl; subr(5) = krrr; | ||
| 837 | CAMELLIA_ROLDQ(krll, krlr, krrl, krrr, w0, w1, 15); | ||
| 838 | /* kl1 */ | ||
| 839 | subl(8) = krll; subr(8) = krlr; | ||
| 840 | /* kl2 */ | ||
| 841 | subl(9) = krrl; subr(9) = krrr; | ||
| 842 | CAMELLIA_ROLDQ(krll, krlr, krrl, krrr, w0, w1, 30); | ||
| 843 | /* k13 */ | ||
| 844 | subl(18) = krll; subr(18) = krlr; | ||
| 845 | /* k14 */ | ||
| 846 | subl(19) = krrl; subr(19) = krrr; | ||
| 847 | CAMELLIA_ROLDQo32(krll, krlr, krrl, krrr, w0, w1, 34); | ||
| 848 | /* k19 */ | ||
| 849 | subl(26) = krll; subr(26) = krlr; | ||
| 850 | /* k20 */ | ||
| 851 | subl(27) = krrl; subr(27) = krrr; | ||
| 852 | CAMELLIA_ROLDQo32(krll, krlr, krrl, krrr, w0, w1, 34); | ||
| 853 | |||
| 854 | /* generate KA */ | ||
| 855 | kll = subl(0) ^ krll; klr = subr(0) ^ krlr; | ||
| 856 | krl = subl(1) ^ krrl; krr = subr(1) ^ krrr; | ||
| 857 | CAMELLIA_F(kll, klr, | ||
| 858 | CAMELLIA_SIGMA1L, CAMELLIA_SIGMA1R, | ||
| 859 | w0, w1, il, ir, t0, t1); | ||
| 860 | krl ^= w0; krr ^= w1; | ||
| 861 | CAMELLIA_F(krl, krr, | ||
| 862 | CAMELLIA_SIGMA2L, CAMELLIA_SIGMA2R, | ||
| 863 | kll, klr, il, ir, t0, t1); | ||
| 864 | kll ^= krll; klr ^= krlr; | ||
| 865 | CAMELLIA_F(kll, klr, | ||
| 866 | CAMELLIA_SIGMA3L, CAMELLIA_SIGMA3R, | ||
| 867 | krl, krr, il, ir, t0, t1); | ||
| 868 | krl ^= w0 ^ krrl; krr ^= w1 ^ krrr; | ||
| 869 | CAMELLIA_F(krl, krr, | ||
| 870 | CAMELLIA_SIGMA4L, CAMELLIA_SIGMA4R, | ||
| 871 | w0, w1, il, ir, t0, t1); | ||
| 872 | kll ^= w0; klr ^= w1; | ||
| 873 | |||
| 874 | /* generate KB */ | ||
| 875 | krll ^= kll; krlr ^= klr; | ||
| 876 | krrl ^= krl; krrr ^= krr; | ||
| 877 | CAMELLIA_F(krll, krlr, | ||
| 878 | CAMELLIA_SIGMA5L, CAMELLIA_SIGMA5R, | ||
| 879 | w0, w1, il, ir, t0, t1); | ||
| 880 | krrl ^= w0; krrr ^= w1; | ||
| 881 | CAMELLIA_F(krrl, krrr, | ||
| 882 | CAMELLIA_SIGMA6L, CAMELLIA_SIGMA6R, | ||
| 883 | w0, w1, il, ir, t0, t1); | ||
| 884 | krll ^= w0; krlr ^= w1; | ||
| 885 | |||
| 886 | /* generate KA dependent subkeys */ | ||
| 887 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 15); | ||
| 888 | /* k5 */ | ||
| 889 | subl(6) = kll; subr(6) = klr; | ||
| 890 | /* k6 */ | ||
| 891 | subl(7) = krl; subr(7) = krr; | ||
| 892 | CAMELLIA_ROLDQ(kll, klr, krl, krr, w0, w1, 30); | ||
| 893 | /* k11 */ | ||
| 894 | subl(14) = kll; subr(14) = klr; | ||
| 895 | /* k12 */ | ||
| 896 | subl(15) = krl; subr(15) = krr; | ||
| 897 | /* rotation left shift 32bit */ | ||
| 898 | /* kl5 */ | ||
| 899 | subl(24) = klr; subr(24) = krl; | ||
| 900 | /* kl6 */ | ||
| 901 | subl(25) = krr; subr(25) = kll; | ||
| 902 | /* rotation left shift 49 from k11,k12 -> k21,k22 */ | ||
| 903 | CAMELLIA_ROLDQo32(kll, klr, krl, krr, w0, w1, 49); | ||
| 904 | /* k21 */ | ||
| 905 | subl(28) = kll; subr(28) = klr; | ||
| 906 | /* k22 */ | ||
| 907 | subl(29) = krl; subr(29) = krr; | ||
| 908 | |||
| 909 | /* generate KB dependent subkeys */ | ||
| 910 | /* k1 */ | ||
| 911 | subl(2) = krll; subr(2) = krlr; | ||
| 912 | /* k2 */ | ||
| 913 | subl(3) = krrl; subr(3) = krrr; | ||
| 914 | CAMELLIA_ROLDQ(krll, krlr, krrl, krrr, w0, w1, 30); | ||
| 915 | /* k7 */ | ||
| 916 | subl(10) = krll; subr(10) = krlr; | ||
| 917 | /* k8 */ | ||
| 918 | subl(11) = krrl; subr(11) = krrr; | ||
| 919 | CAMELLIA_ROLDQ(krll, krlr, krrl, krrr, w0, w1, 30); | ||
| 920 | /* k15 */ | ||
| 921 | subl(20) = krll; subr(20) = krlr; | ||
| 922 | /* k16 */ | ||
| 923 | subl(21) = krrl; subr(21) = krrr; | ||
| 924 | CAMELLIA_ROLDQo32(krll, krlr, krrl, krrr, w0, w1, 51); | ||
| 925 | /* kw3 */ | ||
| 926 | subl(32) = krll; subr(32) = krlr; | ||
| 927 | /* kw4 */ | ||
| 928 | subl(33) = krrl; subr(33) = krrr; | ||
| 929 | |||
| 930 | /* absorb kw2 to other subkeys */ | ||
| 931 | /* round 2 */ | ||
| 932 | subl(3) ^= subl(1); subr(3) ^= subr(1); | ||
| 933 | /* round 4 */ | ||
| 934 | subl(5) ^= subl(1); subr(5) ^= subr(1); | ||
| 935 | /* round 6 */ | ||
| 936 | subl(7) ^= subl(1); subr(7) ^= subr(1); | ||
| 937 | subl(1) ^= subr(1) & ~subr(9); | ||
| 938 | dw = subl(1) & subl(9), | ||
| 939 | subr(1) ^= CAMELLIA_RL1(dw); /* modified for FLinv(kl2) */ | ||
| 940 | /* round 8 */ | ||
| 941 | subl(11) ^= subl(1); subr(11) ^= subr(1); | ||
| 942 | /* round 10 */ | ||
| 943 | subl(13) ^= subl(1); subr(13) ^= subr(1); | ||
| 944 | /* round 12 */ | ||
| 945 | subl(15) ^= subl(1); subr(15) ^= subr(1); | ||
| 946 | subl(1) ^= subr(1) & ~subr(17); | ||
| 947 | dw = subl(1) & subl(17), | ||
| 948 | subr(1) ^= CAMELLIA_RL1(dw); /* modified for FLinv(kl4) */ | ||
| 949 | /* round 14 */ | ||
| 950 | subl(19) ^= subl(1); subr(19) ^= subr(1); | ||
| 951 | /* round 16 */ | ||
| 952 | subl(21) ^= subl(1); subr(21) ^= subr(1); | ||
| 953 | /* round 18 */ | ||
| 954 | subl(23) ^= subl(1); subr(23) ^= subr(1); | ||
| 955 | subl(1) ^= subr(1) & ~subr(25); | ||
| 956 | dw = subl(1) & subl(25), | ||
| 957 | subr(1) ^= CAMELLIA_RL1(dw); /* modified for FLinv(kl6) */ | ||
| 958 | /* round 20 */ | ||
| 959 | subl(27) ^= subl(1); subr(27) ^= subr(1); | ||
| 960 | /* round 22 */ | ||
| 961 | subl(29) ^= subl(1); subr(29) ^= subr(1); | ||
| 962 | /* round 24 */ | ||
| 963 | subl(31) ^= subl(1); subr(31) ^= subr(1); | ||
| 964 | /* kw3 */ | ||
| 965 | subl(32) ^= subl(1); subr(32) ^= subr(1); | ||
| 966 | |||
| 967 | |||
| 968 | /* absorb kw4 to other subkeys */ | ||
| 969 | kw4l = subl(33); kw4r = subr(33); | ||
| 970 | /* round 23 */ | ||
| 971 | subl(30) ^= kw4l; subr(30) ^= kw4r; | ||
| 972 | /* round 21 */ | ||
| 973 | subl(28) ^= kw4l; subr(28) ^= kw4r; | ||
| 974 | /* round 19 */ | ||
| 975 | subl(26) ^= kw4l; subr(26) ^= kw4r; | ||
| 976 | kw4l ^= kw4r & ~subr(24); | ||
| 977 | dw = kw4l & subl(24), | ||
| 978 | kw4r ^= CAMELLIA_RL1(dw); /* modified for FL(kl5) */ | ||
| 979 | /* round 17 */ | ||
| 980 | subl(22) ^= kw4l; subr(22) ^= kw4r; | ||
| 981 | /* round 15 */ | ||
| 982 | subl(20) ^= kw4l; subr(20) ^= kw4r; | ||
| 983 | /* round 13 */ | ||
| 984 | subl(18) ^= kw4l; subr(18) ^= kw4r; | ||
| 985 | kw4l ^= kw4r & ~subr(16); | ||
| 986 | dw = kw4l & subl(16), | ||
| 987 | kw4r ^= CAMELLIA_RL1(dw); /* modified for FL(kl3) */ | ||
| 988 | /* round 11 */ | ||
| 989 | subl(14) ^= kw4l; subr(14) ^= kw4r; | ||
| 990 | /* round 9 */ | ||
| 991 | subl(12) ^= kw4l; subr(12) ^= kw4r; | ||
| 992 | /* round 7 */ | ||
| 993 | subl(10) ^= kw4l; subr(10) ^= kw4r; | ||
| 994 | kw4l ^= kw4r & ~subr(8); | ||
| 995 | dw = kw4l & subl(8), | ||
| 996 | kw4r ^= CAMELLIA_RL1(dw); /* modified for FL(kl1) */ | ||
| 997 | /* round 5 */ | ||
| 998 | subl(6) ^= kw4l; subr(6) ^= kw4r; | ||
| 999 | /* round 3 */ | ||
| 1000 | subl(4) ^= kw4l; subr(4) ^= kw4r; | ||
| 1001 | /* round 1 */ | ||
| 1002 | subl(2) ^= kw4l; subr(2) ^= kw4r; | ||
| 1003 | /* kw1 */ | ||
| 1004 | subl(0) ^= kw4l; subr(0) ^= kw4r; | ||
| 1005 | |||
| 1006 | /* key XOR is end of F-function */ | ||
| 1007 | CamelliaSubkeyL(0) = subl(0) ^ subl(2);/* kw1 */ | ||
| 1008 | CamelliaSubkeyR(0) = subr(0) ^ subr(2); | ||
| 1009 | CamelliaSubkeyL(2) = subl(3); /* round 1 */ | ||
| 1010 | CamelliaSubkeyR(2) = subr(3); | ||
| 1011 | CamelliaSubkeyL(3) = subl(2) ^ subl(4); /* round 2 */ | ||
| 1012 | CamelliaSubkeyR(3) = subr(2) ^ subr(4); | ||
| 1013 | CamelliaSubkeyL(4) = subl(3) ^ subl(5); /* round 3 */ | ||
| 1014 | CamelliaSubkeyR(4) = subr(3) ^ subr(5); | ||
| 1015 | CamelliaSubkeyL(5) = subl(4) ^ subl(6); /* round 4 */ | ||
| 1016 | CamelliaSubkeyR(5) = subr(4) ^ subr(6); | ||
| 1017 | CamelliaSubkeyL(6) = subl(5) ^ subl(7); /* round 5 */ | ||
| 1018 | CamelliaSubkeyR(6) = subr(5) ^ subr(7); | ||
| 1019 | tl = subl(10) ^ (subr(10) & ~subr(8)); | ||
| 1020 | dw = tl & subl(8), /* FL(kl1) */ | ||
| 1021 | tr = subr(10) ^ CAMELLIA_RL1(dw); | ||
| 1022 | CamelliaSubkeyL(7) = subl(6) ^ tl; /* round 6 */ | ||
| 1023 | CamelliaSubkeyR(7) = subr(6) ^ tr; | ||
| 1024 | CamelliaSubkeyL(8) = subl(8); /* FL(kl1) */ | ||
| 1025 | CamelliaSubkeyR(8) = subr(8); | ||
| 1026 | CamelliaSubkeyL(9) = subl(9); /* FLinv(kl2) */ | ||
| 1027 | CamelliaSubkeyR(9) = subr(9); | ||
| 1028 | tl = subl(7) ^ (subr(7) & ~subr(9)); | ||
| 1029 | dw = tl & subl(9), /* FLinv(kl2) */ | ||
| 1030 | tr = subr(7) ^ CAMELLIA_RL1(dw); | ||
| 1031 | CamelliaSubkeyL(10) = tl ^ subl(11); /* round 7 */ | ||
| 1032 | CamelliaSubkeyR(10) = tr ^ subr(11); | ||
| 1033 | CamelliaSubkeyL(11) = subl(10) ^ subl(12); /* round 8 */ | ||
| 1034 | CamelliaSubkeyR(11) = subr(10) ^ subr(12); | ||
| 1035 | CamelliaSubkeyL(12) = subl(11) ^ subl(13); /* round 9 */ | ||
| 1036 | CamelliaSubkeyR(12) = subr(11) ^ subr(13); | ||
| 1037 | CamelliaSubkeyL(13) = subl(12) ^ subl(14); /* round 10 */ | ||
| 1038 | CamelliaSubkeyR(13) = subr(12) ^ subr(14); | ||
| 1039 | CamelliaSubkeyL(14) = subl(13) ^ subl(15); /* round 11 */ | ||
| 1040 | CamelliaSubkeyR(14) = subr(13) ^ subr(15); | ||
| 1041 | tl = subl(18) ^ (subr(18) & ~subr(16)); | ||
| 1042 | dw = tl & subl(16), /* FL(kl3) */ | ||
| 1043 | tr = subr(18) ^ CAMELLIA_RL1(dw); | ||
| 1044 | CamelliaSubkeyL(15) = subl(14) ^ tl; /* round 12 */ | ||
| 1045 | CamelliaSubkeyR(15) = subr(14) ^ tr; | ||
| 1046 | CamelliaSubkeyL(16) = subl(16); /* FL(kl3) */ | ||
| 1047 | CamelliaSubkeyR(16) = subr(16); | ||
| 1048 | CamelliaSubkeyL(17) = subl(17); /* FLinv(kl4) */ | ||
| 1049 | CamelliaSubkeyR(17) = subr(17); | ||
| 1050 | tl = subl(15) ^ (subr(15) & ~subr(17)); | ||
| 1051 | dw = tl & subl(17), /* FLinv(kl4) */ | ||
| 1052 | tr = subr(15) ^ CAMELLIA_RL1(dw); | ||
| 1053 | CamelliaSubkeyL(18) = tl ^ subl(19); /* round 13 */ | ||
| 1054 | CamelliaSubkeyR(18) = tr ^ subr(19); | ||
| 1055 | CamelliaSubkeyL(19) = subl(18) ^ subl(20); /* round 14 */ | ||
| 1056 | CamelliaSubkeyR(19) = subr(18) ^ subr(20); | ||
| 1057 | CamelliaSubkeyL(20) = subl(19) ^ subl(21); /* round 15 */ | ||
| 1058 | CamelliaSubkeyR(20) = subr(19) ^ subr(21); | ||
| 1059 | CamelliaSubkeyL(21) = subl(20) ^ subl(22); /* round 16 */ | ||
| 1060 | CamelliaSubkeyR(21) = subr(20) ^ subr(22); | ||
| 1061 | CamelliaSubkeyL(22) = subl(21) ^ subl(23); /* round 17 */ | ||
| 1062 | CamelliaSubkeyR(22) = subr(21) ^ subr(23); | ||
| 1063 | tl = subl(26) ^ (subr(26) | ||
| 1064 | & ~subr(24)); | ||
| 1065 | dw = tl & subl(24), /* FL(kl5) */ | ||
| 1066 | tr = subr(26) ^ CAMELLIA_RL1(dw); | ||
| 1067 | CamelliaSubkeyL(23) = subl(22) ^ tl; /* round 18 */ | ||
| 1068 | CamelliaSubkeyR(23) = subr(22) ^ tr; | ||
| 1069 | CamelliaSubkeyL(24) = subl(24); /* FL(kl5) */ | ||
| 1070 | CamelliaSubkeyR(24) = subr(24); | ||
| 1071 | CamelliaSubkeyL(25) = subl(25); /* FLinv(kl6) */ | ||
| 1072 | CamelliaSubkeyR(25) = subr(25); | ||
| 1073 | tl = subl(23) ^ (subr(23) & | ||
| 1074 | ~subr(25)); | ||
| 1075 | dw = tl & subl(25), /* FLinv(kl6) */ | ||
| 1076 | tr = subr(23) ^ CAMELLIA_RL1(dw); | ||
| 1077 | CamelliaSubkeyL(26) = tl ^ subl(27); /* round 19 */ | ||
| 1078 | CamelliaSubkeyR(26) = tr ^ subr(27); | ||
| 1079 | CamelliaSubkeyL(27) = subl(26) ^ subl(28); /* round 20 */ | ||
| 1080 | CamelliaSubkeyR(27) = subr(26) ^ subr(28); | ||
| 1081 | CamelliaSubkeyL(28) = subl(27) ^ subl(29); /* round 21 */ | ||
| 1082 | CamelliaSubkeyR(28) = subr(27) ^ subr(29); | ||
| 1083 | CamelliaSubkeyL(29) = subl(28) ^ subl(30); /* round 22 */ | ||
| 1084 | CamelliaSubkeyR(29) = subr(28) ^ subr(30); | ||
| 1085 | CamelliaSubkeyL(30) = subl(29) ^ subl(31); /* round 23 */ | ||
| 1086 | CamelliaSubkeyR(30) = subr(29) ^ subr(31); | ||
| 1087 | CamelliaSubkeyL(31) = subl(30); /* round 24 */ | ||
| 1088 | CamelliaSubkeyR(31) = subr(30); | ||
| 1089 | CamelliaSubkeyL(32) = subl(32) ^ subl(31); /* kw3 */ | ||
| 1090 | CamelliaSubkeyR(32) = subr(32) ^ subr(31); | ||
| 1091 | |||
| 1092 | /* apply the inverse of the last half of P-function */ | ||
| 1093 | dw = CamelliaSubkeyL(2) ^ CamelliaSubkeyR(2), | ||
| 1094 | dw = CAMELLIA_RL8(dw);/* round 1 */ | ||
| 1095 | CamelliaSubkeyR(2) = CamelliaSubkeyL(2) ^ dw, | ||
| 1096 | CamelliaSubkeyL(2) = dw; | ||
| 1097 | dw = CamelliaSubkeyL(3) ^ CamelliaSubkeyR(3), | ||
| 1098 | dw = CAMELLIA_RL8(dw);/* round 2 */ | ||
| 1099 | CamelliaSubkeyR(3) = CamelliaSubkeyL(3) ^ dw, | ||
| 1100 | CamelliaSubkeyL(3) = dw; | ||
| 1101 | dw = CamelliaSubkeyL(4) ^ CamelliaSubkeyR(4), | ||
| 1102 | dw = CAMELLIA_RL8(dw);/* round 3 */ | ||
| 1103 | CamelliaSubkeyR(4) = CamelliaSubkeyL(4) ^ dw, | ||
| 1104 | CamelliaSubkeyL(4) = dw; | ||
| 1105 | dw = CamelliaSubkeyL(5) ^ CamelliaSubkeyR(5), | ||
| 1106 | dw = CAMELLIA_RL8(dw);/* round 4 */ | ||
| 1107 | CamelliaSubkeyR(5) = CamelliaSubkeyL(5) ^ dw, | ||
| 1108 | CamelliaSubkeyL(5) = dw; | ||
| 1109 | dw = CamelliaSubkeyL(6) ^ CamelliaSubkeyR(6), | ||
| 1110 | dw = CAMELLIA_RL8(dw);/* round 5 */ | ||
| 1111 | CamelliaSubkeyR(6) = CamelliaSubkeyL(6) ^ dw, | ||
| 1112 | CamelliaSubkeyL(6) = dw; | ||
| 1113 | dw = CamelliaSubkeyL(7) ^ CamelliaSubkeyR(7), | ||
| 1114 | dw = CAMELLIA_RL8(dw);/* round 6 */ | ||
| 1115 | CamelliaSubkeyR(7) = CamelliaSubkeyL(7) ^ dw, | ||
| 1116 | CamelliaSubkeyL(7) = dw; | ||
| 1117 | dw = CamelliaSubkeyL(10) ^ CamelliaSubkeyR(10), | ||
| 1118 | dw = CAMELLIA_RL8(dw);/* round 7 */ | ||
| 1119 | CamelliaSubkeyR(10) = CamelliaSubkeyL(10) ^ dw, | ||
| 1120 | CamelliaSubkeyL(10) = dw; | ||
| 1121 | dw = CamelliaSubkeyL(11) ^ CamelliaSubkeyR(11), | ||
| 1122 | dw = CAMELLIA_RL8(dw);/* round 8 */ | ||
| 1123 | CamelliaSubkeyR(11) = CamelliaSubkeyL(11) ^ dw, | ||
| 1124 | CamelliaSubkeyL(11) = dw; | ||
| 1125 | dw = CamelliaSubkeyL(12) ^ CamelliaSubkeyR(12), | ||
| 1126 | dw = CAMELLIA_RL8(dw);/* round 9 */ | ||
| 1127 | CamelliaSubkeyR(12) = CamelliaSubkeyL(12) ^ dw, | ||
| 1128 | CamelliaSubkeyL(12) = dw; | ||
| 1129 | dw = CamelliaSubkeyL(13) ^ CamelliaSubkeyR(13), | ||
| 1130 | dw = CAMELLIA_RL8(dw);/* round 10 */ | ||
| 1131 | CamelliaSubkeyR(13) = CamelliaSubkeyL(13) ^ dw, | ||
| 1132 | CamelliaSubkeyL(13) = dw; | ||
| 1133 | dw = CamelliaSubkeyL(14) ^ CamelliaSubkeyR(14), | ||
| 1134 | dw = CAMELLIA_RL8(dw);/* round 11 */ | ||
| 1135 | CamelliaSubkeyR(14) = CamelliaSubkeyL(14) ^ dw, | ||
| 1136 | CamelliaSubkeyL(14) = dw; | ||
| 1137 | dw = CamelliaSubkeyL(15) ^ CamelliaSubkeyR(15), | ||
| 1138 | dw = CAMELLIA_RL8(dw);/* round 12 */ | ||
| 1139 | CamelliaSubkeyR(15) = CamelliaSubkeyL(15) ^ dw, | ||
| 1140 | CamelliaSubkeyL(15) = dw; | ||
| 1141 | dw = CamelliaSubkeyL(18) ^ CamelliaSubkeyR(18), | ||
| 1142 | dw = CAMELLIA_RL8(dw);/* round 13 */ | ||
| 1143 | CamelliaSubkeyR(18) = CamelliaSubkeyL(18) ^ dw, | ||
| 1144 | CamelliaSubkeyL(18) = dw; | ||
| 1145 | dw = CamelliaSubkeyL(19) ^ CamelliaSubkeyR(19), | ||
| 1146 | dw = CAMELLIA_RL8(dw);/* round 14 */ | ||
| 1147 | CamelliaSubkeyR(19) = CamelliaSubkeyL(19) ^ dw, | ||
| 1148 | CamelliaSubkeyL(19) = dw; | ||
| 1149 | dw = CamelliaSubkeyL(20) ^ CamelliaSubkeyR(20), | ||
| 1150 | dw = CAMELLIA_RL8(dw);/* round 15 */ | ||
| 1151 | CamelliaSubkeyR(20) = CamelliaSubkeyL(20) ^ dw, | ||
| 1152 | CamelliaSubkeyL(20) = dw; | ||
| 1153 | dw = CamelliaSubkeyL(21) ^ CamelliaSubkeyR(21), | ||
| 1154 | dw = CAMELLIA_RL8(dw);/* round 16 */ | ||
| 1155 | CamelliaSubkeyR(21) = CamelliaSubkeyL(21) ^ dw, | ||
| 1156 | CamelliaSubkeyL(21) = dw; | ||
| 1157 | dw = CamelliaSubkeyL(22) ^ CamelliaSubkeyR(22), | ||
| 1158 | dw = CAMELLIA_RL8(dw);/* round 17 */ | ||
| 1159 | CamelliaSubkeyR(22) = CamelliaSubkeyL(22) ^ dw, | ||
| 1160 | CamelliaSubkeyL(22) = dw; | ||
| 1161 | dw = CamelliaSubkeyL(23) ^ CamelliaSubkeyR(23), | ||
| 1162 | dw = CAMELLIA_RL8(dw);/* round 18 */ | ||
| 1163 | CamelliaSubkeyR(23) = CamelliaSubkeyL(23) ^ dw, | ||
| 1164 | CamelliaSubkeyL(23) = dw; | ||
| 1165 | dw = CamelliaSubkeyL(26) ^ CamelliaSubkeyR(26), | ||
| 1166 | dw = CAMELLIA_RL8(dw);/* round 19 */ | ||
| 1167 | CamelliaSubkeyR(26) = CamelliaSubkeyL(26) ^ dw, | ||
| 1168 | CamelliaSubkeyL(26) = dw; | ||
| 1169 | dw = CamelliaSubkeyL(27) ^ CamelliaSubkeyR(27), | ||
| 1170 | dw = CAMELLIA_RL8(dw);/* round 20 */ | ||
| 1171 | CamelliaSubkeyR(27) = CamelliaSubkeyL(27) ^ dw, | ||
| 1172 | CamelliaSubkeyL(27) = dw; | ||
| 1173 | dw = CamelliaSubkeyL(28) ^ CamelliaSubkeyR(28), | ||
| 1174 | dw = CAMELLIA_RL8(dw);/* round 21 */ | ||
| 1175 | CamelliaSubkeyR(28) = CamelliaSubkeyL(28) ^ dw, | ||
| 1176 | CamelliaSubkeyL(28) = dw; | ||
| 1177 | dw = CamelliaSubkeyL(29) ^ CamelliaSubkeyR(29), | ||
| 1178 | dw = CAMELLIA_RL8(dw);/* round 22 */ | ||
| 1179 | CamelliaSubkeyR(29) = CamelliaSubkeyL(29) ^ dw, | ||
| 1180 | CamelliaSubkeyL(29) = dw; | ||
| 1181 | dw = CamelliaSubkeyL(30) ^ CamelliaSubkeyR(30), | ||
| 1182 | dw = CAMELLIA_RL8(dw);/* round 23 */ | ||
| 1183 | CamelliaSubkeyR(30) = CamelliaSubkeyL(30) ^ dw, | ||
| 1184 | CamelliaSubkeyL(30) = dw; | ||
| 1185 | dw = CamelliaSubkeyL(31) ^ CamelliaSubkeyR(31), | ||
| 1186 | dw = CAMELLIA_RL8(dw);/* round 24 */ | ||
| 1187 | CamelliaSubkeyR(31) = CamelliaSubkeyL(31) ^ dw, | ||
| 1188 | CamelliaSubkeyL(31) = dw; | ||
| 1189 | |||
| 1190 | |||
| 1191 | return; | ||
| 1192 | } | ||
| 1193 | |||
| 1194 | void camellia_setup192(const u8 *key, u32 *subkey) | ||
| 1195 | { | ||
| 1196 | u8 kk[32]; | ||
| 1197 | u32 krll, krlr, krrl,krrr; | ||
| 1198 | |||
| 1199 | memcpy(kk, key, 24); | ||
| 1200 | memcpy((u8 *)&krll, key+16,4); | ||
| 1201 | memcpy((u8 *)&krlr, key+20,4); | ||
| 1202 | krrl = ~krll; | ||
| 1203 | krrr = ~krlr; | ||
| 1204 | memcpy(kk+24, (u8 *)&krrl, 4); | ||
| 1205 | memcpy(kk+28, (u8 *)&krrr, 4); | ||
| 1206 | camellia_setup256(kk, subkey); | ||
| 1207 | return; | ||
| 1208 | } | ||
| 1209 | |||
| 1210 | |||
| 1211 | /** | ||
| 1212 | * Stuff related to camellia encryption/decryption | ||
| 1213 | */ | ||
| 1214 | void camellia_encrypt128(const u32 *subkey, u32 *io) | ||
| 1215 | { | ||
| 1216 | u32 il, ir, t0, t1; | ||
| 1217 | |||
| 1218 | /* pre whitening but absorb kw2*/ | ||
| 1219 | io[0] ^= CamelliaSubkeyL(0); | ||
| 1220 | io[1] ^= CamelliaSubkeyR(0); | ||
| 1221 | /* main iteration */ | ||
| 1222 | |||
| 1223 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1224 | CamelliaSubkeyL(2),CamelliaSubkeyR(2), | ||
| 1225 | io[2],io[3],il,ir,t0,t1); | ||
| 1226 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1227 | CamelliaSubkeyL(3),CamelliaSubkeyR(3), | ||
| 1228 | io[0],io[1],il,ir,t0,t1); | ||
| 1229 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1230 | CamelliaSubkeyL(4),CamelliaSubkeyR(4), | ||
| 1231 | io[2],io[3],il,ir,t0,t1); | ||
| 1232 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1233 | CamelliaSubkeyL(5),CamelliaSubkeyR(5), | ||
| 1234 | io[0],io[1],il,ir,t0,t1); | ||
| 1235 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1236 | CamelliaSubkeyL(6),CamelliaSubkeyR(6), | ||
| 1237 | io[2],io[3],il,ir,t0,t1); | ||
| 1238 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1239 | CamelliaSubkeyL(7),CamelliaSubkeyR(7), | ||
| 1240 | io[0],io[1],il,ir,t0,t1); | ||
| 1241 | |||
| 1242 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1243 | CamelliaSubkeyL(8),CamelliaSubkeyR(8), | ||
| 1244 | CamelliaSubkeyL(9),CamelliaSubkeyR(9), | ||
| 1245 | t0,t1,il,ir); | ||
| 1246 | |||
| 1247 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1248 | CamelliaSubkeyL(10),CamelliaSubkeyR(10), | ||
| 1249 | io[2],io[3],il,ir,t0,t1); | ||
| 1250 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1251 | CamelliaSubkeyL(11),CamelliaSubkeyR(11), | ||
| 1252 | io[0],io[1],il,ir,t0,t1); | ||
| 1253 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1254 | CamelliaSubkeyL(12),CamelliaSubkeyR(12), | ||
| 1255 | io[2],io[3],il,ir,t0,t1); | ||
| 1256 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1257 | CamelliaSubkeyL(13),CamelliaSubkeyR(13), | ||
| 1258 | io[0],io[1],il,ir,t0,t1); | ||
| 1259 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1260 | CamelliaSubkeyL(14),CamelliaSubkeyR(14), | ||
| 1261 | io[2],io[3],il,ir,t0,t1); | ||
| 1262 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1263 | CamelliaSubkeyL(15),CamelliaSubkeyR(15), | ||
| 1264 | io[0],io[1],il,ir,t0,t1); | ||
| 1265 | |||
| 1266 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1267 | CamelliaSubkeyL(16),CamelliaSubkeyR(16), | ||
| 1268 | CamelliaSubkeyL(17),CamelliaSubkeyR(17), | ||
| 1269 | t0,t1,il,ir); | ||
| 1270 | |||
| 1271 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1272 | CamelliaSubkeyL(18),CamelliaSubkeyR(18), | ||
| 1273 | io[2],io[3],il,ir,t0,t1); | ||
| 1274 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1275 | CamelliaSubkeyL(19),CamelliaSubkeyR(19), | ||
| 1276 | io[0],io[1],il,ir,t0,t1); | ||
| 1277 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1278 | CamelliaSubkeyL(20),CamelliaSubkeyR(20), | ||
| 1279 | io[2],io[3],il,ir,t0,t1); | ||
| 1280 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1281 | CamelliaSubkeyL(21),CamelliaSubkeyR(21), | ||
| 1282 | io[0],io[1],il,ir,t0,t1); | ||
| 1283 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1284 | CamelliaSubkeyL(22),CamelliaSubkeyR(22), | ||
| 1285 | io[2],io[3],il,ir,t0,t1); | ||
| 1286 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1287 | CamelliaSubkeyL(23),CamelliaSubkeyR(23), | ||
| 1288 | io[0],io[1],il,ir,t0,t1); | ||
| 1289 | |||
| 1290 | /* post whitening but kw4 */ | ||
| 1291 | io[2] ^= CamelliaSubkeyL(24); | ||
| 1292 | io[3] ^= CamelliaSubkeyR(24); | ||
| 1293 | |||
| 1294 | t0 = io[0]; | ||
| 1295 | t1 = io[1]; | ||
| 1296 | io[0] = io[2]; | ||
| 1297 | io[1] = io[3]; | ||
| 1298 | io[2] = t0; | ||
| 1299 | io[3] = t1; | ||
| 1300 | |||
| 1301 | return; | ||
| 1302 | } | ||
| 1303 | |||
| 1304 | void camellia_decrypt128(const u32 *subkey, u32 *io) | ||
| 1305 | { | ||
| 1306 | u32 il,ir,t0,t1; /* temporary valiables */ | ||
| 1307 | |||
| 1308 | /* pre whitening but absorb kw2*/ | ||
| 1309 | io[0] ^= CamelliaSubkeyL(24); | ||
| 1310 | io[1] ^= CamelliaSubkeyR(24); | ||
| 1311 | |||
| 1312 | /* main iteration */ | ||
| 1313 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1314 | CamelliaSubkeyL(23),CamelliaSubkeyR(23), | ||
| 1315 | io[2],io[3],il,ir,t0,t1); | ||
| 1316 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1317 | CamelliaSubkeyL(22),CamelliaSubkeyR(22), | ||
| 1318 | io[0],io[1],il,ir,t0,t1); | ||
| 1319 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1320 | CamelliaSubkeyL(21),CamelliaSubkeyR(21), | ||
| 1321 | io[2],io[3],il,ir,t0,t1); | ||
| 1322 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1323 | CamelliaSubkeyL(20),CamelliaSubkeyR(20), | ||
| 1324 | io[0],io[1],il,ir,t0,t1); | ||
| 1325 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1326 | CamelliaSubkeyL(19),CamelliaSubkeyR(19), | ||
| 1327 | io[2],io[3],il,ir,t0,t1); | ||
| 1328 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1329 | CamelliaSubkeyL(18),CamelliaSubkeyR(18), | ||
| 1330 | io[0],io[1],il,ir,t0,t1); | ||
| 1331 | |||
| 1332 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1333 | CamelliaSubkeyL(17),CamelliaSubkeyR(17), | ||
| 1334 | CamelliaSubkeyL(16),CamelliaSubkeyR(16), | ||
| 1335 | t0,t1,il,ir); | ||
| 1336 | |||
| 1337 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1338 | CamelliaSubkeyL(15),CamelliaSubkeyR(15), | ||
| 1339 | io[2],io[3],il,ir,t0,t1); | ||
| 1340 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1341 | CamelliaSubkeyL(14),CamelliaSubkeyR(14), | ||
| 1342 | io[0],io[1],il,ir,t0,t1); | ||
| 1343 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1344 | CamelliaSubkeyL(13),CamelliaSubkeyR(13), | ||
| 1345 | io[2],io[3],il,ir,t0,t1); | ||
| 1346 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1347 | CamelliaSubkeyL(12),CamelliaSubkeyR(12), | ||
| 1348 | io[0],io[1],il,ir,t0,t1); | ||
| 1349 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1350 | CamelliaSubkeyL(11),CamelliaSubkeyR(11), | ||
| 1351 | io[2],io[3],il,ir,t0,t1); | ||
| 1352 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1353 | CamelliaSubkeyL(10),CamelliaSubkeyR(10), | ||
| 1354 | io[0],io[1],il,ir,t0,t1); | ||
| 1355 | |||
| 1356 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1357 | CamelliaSubkeyL(9),CamelliaSubkeyR(9), | ||
| 1358 | CamelliaSubkeyL(8),CamelliaSubkeyR(8), | ||
| 1359 | t0,t1,il,ir); | ||
| 1360 | |||
| 1361 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1362 | CamelliaSubkeyL(7),CamelliaSubkeyR(7), | ||
| 1363 | io[2],io[3],il,ir,t0,t1); | ||
| 1364 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1365 | CamelliaSubkeyL(6),CamelliaSubkeyR(6), | ||
| 1366 | io[0],io[1],il,ir,t0,t1); | ||
| 1367 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1368 | CamelliaSubkeyL(5),CamelliaSubkeyR(5), | ||
| 1369 | io[2],io[3],il,ir,t0,t1); | ||
| 1370 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1371 | CamelliaSubkeyL(4),CamelliaSubkeyR(4), | ||
| 1372 | io[0],io[1],il,ir,t0,t1); | ||
| 1373 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1374 | CamelliaSubkeyL(3),CamelliaSubkeyR(3), | ||
| 1375 | io[2],io[3],il,ir,t0,t1); | ||
| 1376 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1377 | CamelliaSubkeyL(2),CamelliaSubkeyR(2), | ||
| 1378 | io[0],io[1],il,ir,t0,t1); | ||
| 1379 | |||
| 1380 | /* post whitening but kw4 */ | ||
| 1381 | io[2] ^= CamelliaSubkeyL(0); | ||
| 1382 | io[3] ^= CamelliaSubkeyR(0); | ||
| 1383 | |||
| 1384 | t0 = io[0]; | ||
| 1385 | t1 = io[1]; | ||
| 1386 | io[0] = io[2]; | ||
| 1387 | io[1] = io[3]; | ||
| 1388 | io[2] = t0; | ||
| 1389 | io[3] = t1; | ||
| 1390 | |||
| 1391 | return; | ||
| 1392 | } | ||
| 1393 | |||
| 1394 | /** | ||
| 1395 | * stuff for 192 and 256bit encryption/decryption | ||
| 1396 | */ | ||
| 1397 | void camellia_encrypt256(const u32 *subkey, u32 *io) | ||
| 1398 | { | ||
| 1399 | u32 il,ir,t0,t1; /* temporary valiables */ | ||
| 1400 | |||
| 1401 | /* pre whitening but absorb kw2*/ | ||
| 1402 | io[0] ^= CamelliaSubkeyL(0); | ||
| 1403 | io[1] ^= CamelliaSubkeyR(0); | ||
| 1404 | |||
| 1405 | /* main iteration */ | ||
| 1406 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1407 | CamelliaSubkeyL(2),CamelliaSubkeyR(2), | ||
| 1408 | io[2],io[3],il,ir,t0,t1); | ||
| 1409 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1410 | CamelliaSubkeyL(3),CamelliaSubkeyR(3), | ||
| 1411 | io[0],io[1],il,ir,t0,t1); | ||
| 1412 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1413 | CamelliaSubkeyL(4),CamelliaSubkeyR(4), | ||
| 1414 | io[2],io[3],il,ir,t0,t1); | ||
| 1415 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1416 | CamelliaSubkeyL(5),CamelliaSubkeyR(5), | ||
| 1417 | io[0],io[1],il,ir,t0,t1); | ||
| 1418 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1419 | CamelliaSubkeyL(6),CamelliaSubkeyR(6), | ||
| 1420 | io[2],io[3],il,ir,t0,t1); | ||
| 1421 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1422 | CamelliaSubkeyL(7),CamelliaSubkeyR(7), | ||
| 1423 | io[0],io[1],il,ir,t0,t1); | ||
| 1424 | |||
| 1425 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1426 | CamelliaSubkeyL(8),CamelliaSubkeyR(8), | ||
| 1427 | CamelliaSubkeyL(9),CamelliaSubkeyR(9), | ||
| 1428 | t0,t1,il,ir); | ||
| 1429 | |||
| 1430 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1431 | CamelliaSubkeyL(10),CamelliaSubkeyR(10), | ||
| 1432 | io[2],io[3],il,ir,t0,t1); | ||
| 1433 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1434 | CamelliaSubkeyL(11),CamelliaSubkeyR(11), | ||
| 1435 | io[0],io[1],il,ir,t0,t1); | ||
| 1436 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1437 | CamelliaSubkeyL(12),CamelliaSubkeyR(12), | ||
| 1438 | io[2],io[3],il,ir,t0,t1); | ||
| 1439 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1440 | CamelliaSubkeyL(13),CamelliaSubkeyR(13), | ||
| 1441 | io[0],io[1],il,ir,t0,t1); | ||
| 1442 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1443 | CamelliaSubkeyL(14),CamelliaSubkeyR(14), | ||
| 1444 | io[2],io[3],il,ir,t0,t1); | ||
| 1445 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1446 | CamelliaSubkeyL(15),CamelliaSubkeyR(15), | ||
| 1447 | io[0],io[1],il,ir,t0,t1); | ||
| 1448 | |||
| 1449 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1450 | CamelliaSubkeyL(16),CamelliaSubkeyR(16), | ||
| 1451 | CamelliaSubkeyL(17),CamelliaSubkeyR(17), | ||
| 1452 | t0,t1,il,ir); | ||
| 1453 | |||
| 1454 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1455 | CamelliaSubkeyL(18),CamelliaSubkeyR(18), | ||
| 1456 | io[2],io[3],il,ir,t0,t1); | ||
| 1457 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1458 | CamelliaSubkeyL(19),CamelliaSubkeyR(19), | ||
| 1459 | io[0],io[1],il,ir,t0,t1); | ||
| 1460 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1461 | CamelliaSubkeyL(20),CamelliaSubkeyR(20), | ||
| 1462 | io[2],io[3],il,ir,t0,t1); | ||
| 1463 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1464 | CamelliaSubkeyL(21),CamelliaSubkeyR(21), | ||
| 1465 | io[0],io[1],il,ir,t0,t1); | ||
| 1466 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1467 | CamelliaSubkeyL(22),CamelliaSubkeyR(22), | ||
| 1468 | io[2],io[3],il,ir,t0,t1); | ||
| 1469 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1470 | CamelliaSubkeyL(23),CamelliaSubkeyR(23), | ||
| 1471 | io[0],io[1],il,ir,t0,t1); | ||
| 1472 | |||
| 1473 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1474 | CamelliaSubkeyL(24),CamelliaSubkeyR(24), | ||
| 1475 | CamelliaSubkeyL(25),CamelliaSubkeyR(25), | ||
| 1476 | t0,t1,il,ir); | ||
| 1477 | |||
| 1478 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1479 | CamelliaSubkeyL(26),CamelliaSubkeyR(26), | ||
| 1480 | io[2],io[3],il,ir,t0,t1); | ||
| 1481 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1482 | CamelliaSubkeyL(27),CamelliaSubkeyR(27), | ||
| 1483 | io[0],io[1],il,ir,t0,t1); | ||
| 1484 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1485 | CamelliaSubkeyL(28),CamelliaSubkeyR(28), | ||
| 1486 | io[2],io[3],il,ir,t0,t1); | ||
| 1487 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1488 | CamelliaSubkeyL(29),CamelliaSubkeyR(29), | ||
| 1489 | io[0],io[1],il,ir,t0,t1); | ||
| 1490 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1491 | CamelliaSubkeyL(30),CamelliaSubkeyR(30), | ||
| 1492 | io[2],io[3],il,ir,t0,t1); | ||
| 1493 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1494 | CamelliaSubkeyL(31),CamelliaSubkeyR(31), | ||
| 1495 | io[0],io[1],il,ir,t0,t1); | ||
| 1496 | |||
| 1497 | /* post whitening but kw4 */ | ||
| 1498 | io[2] ^= CamelliaSubkeyL(32); | ||
| 1499 | io[3] ^= CamelliaSubkeyR(32); | ||
| 1500 | |||
| 1501 | t0 = io[0]; | ||
| 1502 | t1 = io[1]; | ||
| 1503 | io[0] = io[2]; | ||
| 1504 | io[1] = io[3]; | ||
| 1505 | io[2] = t0; | ||
| 1506 | io[3] = t1; | ||
| 1507 | |||
| 1508 | return; | ||
| 1509 | } | ||
| 1510 | |||
| 1511 | void camellia_decrypt256(const u32 *subkey, u32 *io) | ||
| 1512 | { | ||
| 1513 | u32 il,ir,t0,t1; /* temporary valiables */ | ||
| 1514 | |||
| 1515 | /* pre whitening but absorb kw2*/ | ||
| 1516 | io[0] ^= CamelliaSubkeyL(32); | ||
| 1517 | io[1] ^= CamelliaSubkeyR(32); | ||
| 1518 | |||
| 1519 | /* main iteration */ | ||
| 1520 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1521 | CamelliaSubkeyL(31),CamelliaSubkeyR(31), | ||
| 1522 | io[2],io[3],il,ir,t0,t1); | ||
| 1523 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1524 | CamelliaSubkeyL(30),CamelliaSubkeyR(30), | ||
| 1525 | io[0],io[1],il,ir,t0,t1); | ||
| 1526 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1527 | CamelliaSubkeyL(29),CamelliaSubkeyR(29), | ||
| 1528 | io[2],io[3],il,ir,t0,t1); | ||
| 1529 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1530 | CamelliaSubkeyL(28),CamelliaSubkeyR(28), | ||
| 1531 | io[0],io[1],il,ir,t0,t1); | ||
| 1532 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1533 | CamelliaSubkeyL(27),CamelliaSubkeyR(27), | ||
| 1534 | io[2],io[3],il,ir,t0,t1); | ||
| 1535 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1536 | CamelliaSubkeyL(26),CamelliaSubkeyR(26), | ||
| 1537 | io[0],io[1],il,ir,t0,t1); | ||
| 1538 | |||
| 1539 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1540 | CamelliaSubkeyL(25),CamelliaSubkeyR(25), | ||
| 1541 | CamelliaSubkeyL(24),CamelliaSubkeyR(24), | ||
| 1542 | t0,t1,il,ir); | ||
| 1543 | |||
| 1544 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1545 | CamelliaSubkeyL(23),CamelliaSubkeyR(23), | ||
| 1546 | io[2],io[3],il,ir,t0,t1); | ||
| 1547 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1548 | CamelliaSubkeyL(22),CamelliaSubkeyR(22), | ||
| 1549 | io[0],io[1],il,ir,t0,t1); | ||
| 1550 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1551 | CamelliaSubkeyL(21),CamelliaSubkeyR(21), | ||
| 1552 | io[2],io[3],il,ir,t0,t1); | ||
| 1553 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1554 | CamelliaSubkeyL(20),CamelliaSubkeyR(20), | ||
| 1555 | io[0],io[1],il,ir,t0,t1); | ||
| 1556 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1557 | CamelliaSubkeyL(19),CamelliaSubkeyR(19), | ||
| 1558 | io[2],io[3],il,ir,t0,t1); | ||
| 1559 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1560 | CamelliaSubkeyL(18),CamelliaSubkeyR(18), | ||
| 1561 | io[0],io[1],il,ir,t0,t1); | ||
| 1562 | |||
| 1563 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1564 | CamelliaSubkeyL(17),CamelliaSubkeyR(17), | ||
| 1565 | CamelliaSubkeyL(16),CamelliaSubkeyR(16), | ||
| 1566 | t0,t1,il,ir); | ||
| 1567 | |||
| 1568 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1569 | CamelliaSubkeyL(15),CamelliaSubkeyR(15), | ||
| 1570 | io[2],io[3],il,ir,t0,t1); | ||
| 1571 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1572 | CamelliaSubkeyL(14),CamelliaSubkeyR(14), | ||
| 1573 | io[0],io[1],il,ir,t0,t1); | ||
| 1574 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1575 | CamelliaSubkeyL(13),CamelliaSubkeyR(13), | ||
| 1576 | io[2],io[3],il,ir,t0,t1); | ||
| 1577 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1578 | CamelliaSubkeyL(12),CamelliaSubkeyR(12), | ||
| 1579 | io[0],io[1],il,ir,t0,t1); | ||
| 1580 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1581 | CamelliaSubkeyL(11),CamelliaSubkeyR(11), | ||
| 1582 | io[2],io[3],il,ir,t0,t1); | ||
| 1583 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1584 | CamelliaSubkeyL(10),CamelliaSubkeyR(10), | ||
| 1585 | io[0],io[1],il,ir,t0,t1); | ||
| 1586 | |||
| 1587 | CAMELLIA_FLS(io[0],io[1],io[2],io[3], | ||
| 1588 | CamelliaSubkeyL(9),CamelliaSubkeyR(9), | ||
| 1589 | CamelliaSubkeyL(8),CamelliaSubkeyR(8), | ||
| 1590 | t0,t1,il,ir); | ||
| 1591 | |||
| 1592 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1593 | CamelliaSubkeyL(7),CamelliaSubkeyR(7), | ||
| 1594 | io[2],io[3],il,ir,t0,t1); | ||
| 1595 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1596 | CamelliaSubkeyL(6),CamelliaSubkeyR(6), | ||
| 1597 | io[0],io[1],il,ir,t0,t1); | ||
| 1598 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1599 | CamelliaSubkeyL(5),CamelliaSubkeyR(5), | ||
| 1600 | io[2],io[3],il,ir,t0,t1); | ||
| 1601 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1602 | CamelliaSubkeyL(4),CamelliaSubkeyR(4), | ||
| 1603 | io[0],io[1],il,ir,t0,t1); | ||
| 1604 | CAMELLIA_ROUNDSM(io[0],io[1], | ||
| 1605 | CamelliaSubkeyL(3),CamelliaSubkeyR(3), | ||
| 1606 | io[2],io[3],il,ir,t0,t1); | ||
| 1607 | CAMELLIA_ROUNDSM(io[2],io[3], | ||
| 1608 | CamelliaSubkeyL(2),CamelliaSubkeyR(2), | ||
| 1609 | io[0],io[1],il,ir,t0,t1); | ||
| 1610 | |||
| 1611 | /* post whitening but kw4 */ | ||
| 1612 | io[2] ^= CamelliaSubkeyL(0); | ||
| 1613 | io[3] ^= CamelliaSubkeyR(0); | ||
| 1614 | |||
| 1615 | t0 = io[0]; | ||
| 1616 | t1 = io[1]; | ||
| 1617 | io[0] = io[2]; | ||
| 1618 | io[1] = io[3]; | ||
| 1619 | io[2] = t0; | ||
| 1620 | io[3] = t1; | ||
| 1621 | |||
| 1622 | return; | ||
| 1623 | } | ||
| 1624 | |||
diff --git a/src/lib/libssl/src/crypto/camellia/camellia.h b/src/lib/libssl/src/crypto/camellia/camellia.h new file mode 100644 index 0000000000..3c8a359543 --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/camellia.h | |||
| @@ -0,0 +1,129 @@ | |||
| 1 | /* crypto/camellia/camellia.h -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #ifndef HEADER_CAMELLIA_H | ||
| 53 | #define HEADER_CAMELLIA_H | ||
| 54 | |||
| 55 | #include <openssl/opensslconf.h> | ||
| 56 | |||
| 57 | #ifdef OPENSSL_NO_CAMELLIA | ||
| 58 | #error CAMELLIA is disabled. | ||
| 59 | #endif | ||
| 60 | |||
| 61 | #define CAMELLIA_ENCRYPT 1 | ||
| 62 | #define CAMELLIA_DECRYPT 0 | ||
| 63 | |||
| 64 | /* Because array size can't be a const in C, the following two are macros. | ||
| 65 | Both sizes are in bytes. */ | ||
| 66 | |||
| 67 | #ifdef __cplusplus | ||
| 68 | extern "C" { | ||
| 69 | #endif | ||
| 70 | |||
| 71 | /* This should be a hidden type, but EVP requires that the size be known */ | ||
| 72 | |||
| 73 | #define CAMELLIA_BLOCK_SIZE 16 | ||
| 74 | #define CAMELLIA_TABLE_BYTE_LEN 272 | ||
| 75 | #define CAMELLIA_TABLE_WORD_LEN (CAMELLIA_TABLE_BYTE_LEN / 4) | ||
| 76 | |||
| 77 | /* to match with WORD */ | ||
| 78 | typedef unsigned int KEY_TABLE_TYPE[CAMELLIA_TABLE_WORD_LEN]; | ||
| 79 | |||
| 80 | struct camellia_key_st | ||
| 81 | { | ||
| 82 | KEY_TABLE_TYPE rd_key; | ||
| 83 | int bitLength; | ||
| 84 | void (*enc)(const unsigned int *subkey, unsigned int *io); | ||
| 85 | void (*dec)(const unsigned int *subkey, unsigned int *io); | ||
| 86 | }; | ||
| 87 | |||
| 88 | typedef struct camellia_key_st CAMELLIA_KEY; | ||
| 89 | |||
| 90 | int Camellia_set_key(const unsigned char *userKey, const int bits, | ||
| 91 | CAMELLIA_KEY *key); | ||
| 92 | |||
| 93 | void Camellia_encrypt(const unsigned char *in, unsigned char *out, | ||
| 94 | const CAMELLIA_KEY *key); | ||
| 95 | void Camellia_decrypt(const unsigned char *in, unsigned char *out, | ||
| 96 | const CAMELLIA_KEY *key); | ||
| 97 | |||
| 98 | void Camellia_ecb_encrypt(const unsigned char *in, unsigned char *out, | ||
| 99 | const CAMELLIA_KEY *key, const int enc); | ||
| 100 | void Camellia_cbc_encrypt(const unsigned char *in, unsigned char *out, | ||
| 101 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 102 | unsigned char *ivec, const int enc); | ||
| 103 | void Camellia_cfb128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 104 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 105 | unsigned char *ivec, int *num, const int enc); | ||
| 106 | void Camellia_cfb1_encrypt(const unsigned char *in, unsigned char *out, | ||
| 107 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 108 | unsigned char *ivec, int *num, const int enc); | ||
| 109 | void Camellia_cfb8_encrypt(const unsigned char *in, unsigned char *out, | ||
| 110 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 111 | unsigned char *ivec, int *num, const int enc); | ||
| 112 | void Camellia_cfbr_encrypt_block(const unsigned char *in,unsigned char *out, | ||
| 113 | const int nbits,const CAMELLIA_KEY *key, | ||
| 114 | unsigned char *ivec,const int enc); | ||
| 115 | void Camellia_ofb128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 116 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 117 | unsigned char *ivec, int *num); | ||
| 118 | void Camellia_ctr128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 119 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 120 | unsigned char ivec[CAMELLIA_BLOCK_SIZE], | ||
| 121 | unsigned char ecount_buf[CAMELLIA_BLOCK_SIZE], | ||
| 122 | unsigned int *num); | ||
| 123 | |||
| 124 | #ifdef __cplusplus | ||
| 125 | } | ||
| 126 | #endif | ||
| 127 | |||
| 128 | #endif /* !HEADER_Camellia_H */ | ||
| 129 | |||
diff --git a/src/lib/libssl/src/crypto/camellia/cmll_cbc.c b/src/lib/libssl/src/crypto/camellia/cmll_cbc.c new file mode 100644 index 0000000000..4141a7b59b --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/cmll_cbc.c | |||
| @@ -0,0 +1,273 @@ | |||
| 1 | /* crypto/camellia/camellia_cbc.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #ifndef CAMELLIA_DEBUG | ||
| 53 | # ifndef NDEBUG | ||
| 54 | # define NDEBUG | ||
| 55 | # endif | ||
| 56 | #endif | ||
| 57 | #include <assert.h> | ||
| 58 | #include <stdio.h> | ||
| 59 | #include <string.h> | ||
| 60 | |||
| 61 | #include <openssl/camellia.h> | ||
| 62 | #include "cmll_locl.h" | ||
| 63 | |||
| 64 | void Camellia_cbc_encrypt(const unsigned char *in, unsigned char *out, | ||
| 65 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 66 | unsigned char *ivec, const int enc) { | ||
| 67 | |||
| 68 | unsigned long n; | ||
| 69 | unsigned long len = length; | ||
| 70 | const unsigned char *iv = ivec; | ||
| 71 | union { u32 t32[CAMELLIA_BLOCK_SIZE/sizeof(u32)]; | ||
| 72 | u8 t8 [CAMELLIA_BLOCK_SIZE]; } tmp; | ||
| 73 | const union { long one; char little; } camellia_endian = {1}; | ||
| 74 | |||
| 75 | |||
| 76 | assert(in && out && key && ivec); | ||
| 77 | assert((CAMELLIA_ENCRYPT == enc)||(CAMELLIA_DECRYPT == enc)); | ||
| 78 | |||
| 79 | if(((size_t)in|(size_t)out|(size_t)ivec) % sizeof(u32) == 0) | ||
| 80 | { | ||
| 81 | if (CAMELLIA_ENCRYPT == enc) | ||
| 82 | { | ||
| 83 | while (len >= CAMELLIA_BLOCK_SIZE) | ||
| 84 | { | ||
| 85 | XOR4WORD2((u32 *)out, | ||
| 86 | (u32 *)in, (u32 *)iv); | ||
| 87 | if (camellia_endian.little) | ||
| 88 | SWAP4WORD((u32 *)out); | ||
| 89 | key->enc(key->rd_key, (u32 *)out); | ||
| 90 | if (camellia_endian.little) | ||
| 91 | SWAP4WORD((u32 *)out); | ||
| 92 | iv = out; | ||
| 93 | len -= CAMELLIA_BLOCK_SIZE; | ||
| 94 | in += CAMELLIA_BLOCK_SIZE; | ||
| 95 | out += CAMELLIA_BLOCK_SIZE; | ||
| 96 | } | ||
| 97 | if (len) | ||
| 98 | { | ||
| 99 | for(n=0; n < len; ++n) | ||
| 100 | out[n] = in[n] ^ iv[n]; | ||
| 101 | for(n=len; n < CAMELLIA_BLOCK_SIZE; ++n) | ||
| 102 | out[n] = iv[n]; | ||
| 103 | if (camellia_endian.little) | ||
| 104 | SWAP4WORD((u32 *)out); | ||
| 105 | key->enc(key->rd_key, (u32 *)out); | ||
| 106 | if (camellia_endian.little) | ||
| 107 | SWAP4WORD((u32 *)out); | ||
| 108 | iv = out; | ||
| 109 | } | ||
| 110 | memcpy(ivec,iv,CAMELLIA_BLOCK_SIZE); | ||
| 111 | } | ||
| 112 | else if (in != out) | ||
| 113 | { | ||
| 114 | while (len >= CAMELLIA_BLOCK_SIZE) | ||
| 115 | { | ||
| 116 | memcpy(out,in,CAMELLIA_BLOCK_SIZE); | ||
| 117 | if (camellia_endian.little) | ||
| 118 | SWAP4WORD((u32 *)out); | ||
| 119 | key->dec(key->rd_key,(u32 *)out); | ||
| 120 | if (camellia_endian.little) | ||
| 121 | SWAP4WORD((u32 *)out); | ||
| 122 | XOR4WORD((u32 *)out, (u32 *)iv); | ||
| 123 | iv = in; | ||
| 124 | len -= CAMELLIA_BLOCK_SIZE; | ||
| 125 | in += CAMELLIA_BLOCK_SIZE; | ||
| 126 | out += CAMELLIA_BLOCK_SIZE; | ||
| 127 | } | ||
| 128 | if (len) | ||
| 129 | { | ||
| 130 | memcpy(tmp.t8, in, CAMELLIA_BLOCK_SIZE); | ||
| 131 | if (camellia_endian.little) | ||
| 132 | SWAP4WORD(tmp.t32); | ||
| 133 | key->dec(key->rd_key, tmp.t32); | ||
| 134 | if (camellia_endian.little) | ||
| 135 | SWAP4WORD(tmp.t32); | ||
| 136 | for(n=0; n < len; ++n) | ||
| 137 | out[n] = tmp.t8[n] ^ iv[n]; | ||
| 138 | iv = in; | ||
| 139 | } | ||
| 140 | memcpy(ivec,iv,CAMELLIA_BLOCK_SIZE); | ||
| 141 | } | ||
| 142 | else /* in == out */ | ||
| 143 | { | ||
| 144 | while (len >= CAMELLIA_BLOCK_SIZE) | ||
| 145 | { | ||
| 146 | memcpy(tmp.t8, in, CAMELLIA_BLOCK_SIZE); | ||
| 147 | if (camellia_endian.little) | ||
| 148 | SWAP4WORD((u32 *)out); | ||
| 149 | key->dec(key->rd_key, (u32 *)out); | ||
| 150 | if (camellia_endian.little) | ||
| 151 | SWAP4WORD((u32 *)out); | ||
| 152 | XOR4WORD((u32 *)out, (u32 *)ivec); | ||
| 153 | memcpy(ivec, tmp.t8, CAMELLIA_BLOCK_SIZE); | ||
| 154 | len -= CAMELLIA_BLOCK_SIZE; | ||
| 155 | in += CAMELLIA_BLOCK_SIZE; | ||
| 156 | out += CAMELLIA_BLOCK_SIZE; | ||
| 157 | } | ||
| 158 | if (len) | ||
| 159 | { | ||
| 160 | memcpy(tmp.t8, in, CAMELLIA_BLOCK_SIZE); | ||
| 161 | if (camellia_endian.little) | ||
| 162 | SWAP4WORD((u32 *)out); | ||
| 163 | key->dec(key->rd_key,(u32 *)out); | ||
| 164 | if (camellia_endian.little) | ||
| 165 | SWAP4WORD((u32 *)out); | ||
| 166 | for(n=0; n < len; ++n) | ||
| 167 | out[n] ^= ivec[n]; | ||
| 168 | for(n=len; n < CAMELLIA_BLOCK_SIZE; ++n) | ||
| 169 | out[n] = tmp.t8[n]; | ||
| 170 | memcpy(ivec, tmp.t8, CAMELLIA_BLOCK_SIZE); | ||
| 171 | } | ||
| 172 | } | ||
| 173 | } | ||
| 174 | else /* no aligned */ | ||
| 175 | { | ||
| 176 | if (CAMELLIA_ENCRYPT == enc) | ||
| 177 | { | ||
| 178 | while (len >= CAMELLIA_BLOCK_SIZE) | ||
| 179 | { | ||
| 180 | for(n=0; n < CAMELLIA_BLOCK_SIZE; ++n) | ||
| 181 | tmp.t8[n] = in[n] ^ iv[n]; | ||
| 182 | if (camellia_endian.little) | ||
| 183 | SWAP4WORD(tmp.t32); | ||
| 184 | key->enc(key->rd_key, tmp.t32); | ||
| 185 | if (camellia_endian.little) | ||
| 186 | SWAP4WORD(tmp.t32); | ||
| 187 | memcpy(out, tmp.t8, CAMELLIA_BLOCK_SIZE); | ||
| 188 | iv = out; | ||
| 189 | len -= CAMELLIA_BLOCK_SIZE; | ||
| 190 | in += CAMELLIA_BLOCK_SIZE; | ||
| 191 | out += CAMELLIA_BLOCK_SIZE; | ||
| 192 | } | ||
| 193 | if (len) | ||
| 194 | { | ||
| 195 | for(n=0; n < len; ++n) | ||
| 196 | tmp.t8[n] = in[n] ^ iv[n]; | ||
| 197 | for(n=len; n < CAMELLIA_BLOCK_SIZE; ++n) | ||
| 198 | tmp.t8[n] = iv[n]; | ||
| 199 | if (camellia_endian.little) | ||
| 200 | SWAP4WORD(tmp.t32); | ||
| 201 | key->enc(key->rd_key, tmp.t32); | ||
| 202 | if (camellia_endian.little) | ||
| 203 | SWAP4WORD(tmp.t32); | ||
| 204 | memcpy(out, tmp.t8, CAMELLIA_BLOCK_SIZE); | ||
| 205 | iv = out; | ||
| 206 | } | ||
| 207 | memcpy(ivec,iv,CAMELLIA_BLOCK_SIZE); | ||
| 208 | } | ||
| 209 | else if (in != out) | ||
| 210 | { | ||
| 211 | while (len >= CAMELLIA_BLOCK_SIZE) | ||
| 212 | { | ||
| 213 | memcpy(tmp.t8,in,CAMELLIA_BLOCK_SIZE); | ||
| 214 | if (camellia_endian.little) | ||
| 215 | SWAP4WORD(tmp.t32); | ||
| 216 | key->dec(key->rd_key,tmp.t32); | ||
| 217 | if (camellia_endian.little) | ||
| 218 | SWAP4WORD(tmp.t32); | ||
| 219 | for(n=0; n < CAMELLIA_BLOCK_SIZE; ++n) | ||
| 220 | out[n] = tmp.t8[n] ^ iv[n]; | ||
| 221 | iv = in; | ||
| 222 | len -= CAMELLIA_BLOCK_SIZE; | ||
| 223 | in += CAMELLIA_BLOCK_SIZE; | ||
| 224 | out += CAMELLIA_BLOCK_SIZE; | ||
| 225 | } | ||
| 226 | if (len) | ||
| 227 | { | ||
| 228 | memcpy(tmp.t8, in, CAMELLIA_BLOCK_SIZE); | ||
| 229 | if (camellia_endian.little) | ||
| 230 | SWAP4WORD(tmp.t32); | ||
| 231 | key->dec(key->rd_key, tmp.t32); | ||
| 232 | if (camellia_endian.little) | ||
| 233 | SWAP4WORD(tmp.t32); | ||
| 234 | for(n=0; n < len; ++n) | ||
| 235 | out[n] = tmp.t8[n] ^ iv[n]; | ||
| 236 | iv = in; | ||
| 237 | } | ||
| 238 | memcpy(ivec,iv,CAMELLIA_BLOCK_SIZE); | ||
| 239 | } | ||
| 240 | else | ||
| 241 | { | ||
| 242 | while (len >= CAMELLIA_BLOCK_SIZE) | ||
| 243 | { | ||
| 244 | memcpy(tmp.t8, in, CAMELLIA_BLOCK_SIZE); | ||
| 245 | if (camellia_endian.little) | ||
| 246 | SWAP4WORD(tmp.t32); | ||
| 247 | key->dec(key->rd_key, tmp.t32); | ||
| 248 | if (camellia_endian.little) | ||
| 249 | SWAP4WORD(tmp.t32); | ||
| 250 | for(n=0; n < CAMELLIA_BLOCK_SIZE; ++n) | ||
| 251 | tmp.t8[n] ^= ivec[n]; | ||
| 252 | memcpy(ivec, in, CAMELLIA_BLOCK_SIZE); | ||
| 253 | memcpy(out, tmp.t8, CAMELLIA_BLOCK_SIZE); | ||
| 254 | len -= CAMELLIA_BLOCK_SIZE; | ||
| 255 | in += CAMELLIA_BLOCK_SIZE; | ||
| 256 | out += CAMELLIA_BLOCK_SIZE; | ||
| 257 | } | ||
| 258 | if (len) | ||
| 259 | { | ||
| 260 | memcpy(tmp.t8, in, CAMELLIA_BLOCK_SIZE); | ||
| 261 | if (camellia_endian.little) | ||
| 262 | SWAP4WORD(tmp.t32); | ||
| 263 | key->dec(key->rd_key,tmp.t32); | ||
| 264 | if (camellia_endian.little) | ||
| 265 | SWAP4WORD(tmp.t32); | ||
| 266 | for(n=0; n < len; ++n) | ||
| 267 | tmp.t8[n] ^= ivec[n]; | ||
| 268 | memcpy(ivec, in, CAMELLIA_BLOCK_SIZE); | ||
| 269 | memcpy(out,tmp.t8,len); | ||
| 270 | } | ||
| 271 | } | ||
| 272 | } | ||
| 273 | } | ||
diff --git a/src/lib/libssl/src/fips-1.0/rand/fips_randtest.c b/src/lib/libssl/src/crypto/camellia/cmll_cfb.c index 6165944e56..af0f9f49ad 100644 --- a/src/lib/libssl/src/fips-1.0/rand/fips_randtest.c +++ b/src/lib/libssl/src/crypto/camellia/cmll_cfb.c | |||
| @@ -1,3 +1,53 @@ | |||
| 1 | /* crypto/camellia/camellia_cfb.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 1 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 51 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 2 | * All rights reserved. | 52 | * All rights reserved. |
| 3 | * | 53 | * |
| @@ -54,316 +104,132 @@ | |||
| 54 | * copied and put under another distribution licence | 104 | * copied and put under another distribution licence |
| 55 | * [including the GNU Public Licence.] | 105 | * [including the GNU Public Licence.] |
| 56 | */ | 106 | */ |
| 57 | /* ==================================================================== | ||
| 58 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 59 | * | ||
| 60 | * Redistribution and use in source and binary forms, with or without | ||
| 61 | * modification, are permitted provided that the following conditions | ||
| 62 | * are met: | ||
| 63 | * | ||
| 64 | * 1. Redistributions of source code must retain the above copyright | ||
| 65 | * notice, this list of conditions and the following disclaimer. | ||
| 66 | * | ||
| 67 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 68 | * notice, this list of conditions and the following disclaimer in | ||
| 69 | * the documentation and/or other materials provided with the | ||
| 70 | * distribution. | ||
| 71 | * | ||
| 72 | * 3. All advertising materials mentioning features or use of this | ||
| 73 | * software must display the following acknowledgment: | ||
| 74 | * "This product includes software developed by the OpenSSL Project | ||
| 75 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 76 | * | ||
| 77 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 78 | * endorse or promote products derived from this software without | ||
| 79 | * prior written permission. For written permission, please contact | ||
| 80 | * openssl-core@openssl.org. | ||
| 81 | * | ||
| 82 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 83 | * nor may "OpenSSL" appear in their names without prior written | ||
| 84 | * permission of the OpenSSL Project. | ||
| 85 | * | ||
| 86 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 87 | * acknowledgment: | ||
| 88 | * "This product includes software developed by the OpenSSL Project | ||
| 89 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 90 | * | ||
| 91 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 92 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 93 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 94 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 95 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 96 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 97 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 98 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 99 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 100 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 101 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 102 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 103 | * | ||
| 104 | */ | ||
| 105 | 107 | ||
| 106 | #include <stdio.h> | 108 | #ifndef CAMELLIA_DEBUG |
| 107 | #include <stdlib.h> | 109 | # ifndef NDEBUG |
| 108 | #include <openssl/rand.h> | 110 | # define NDEBUG |
| 109 | #include <openssl/fips_rand.h> | 111 | # endif |
| 110 | #include <openssl/err.h> | 112 | #endif |
| 113 | #include <assert.h> | ||
| 114 | #include <string.h> | ||
| 111 | 115 | ||
| 116 | #include <openssl/camellia.h> | ||
| 117 | #include "cmll_locl.h" | ||
| 112 | #include "e_os.h" | 118 | #include "e_os.h" |
| 113 | 119 | ||
| 114 | #ifndef OPENSSL_FIPS | ||
| 115 | int main(int argc, char *argv[]) | ||
| 116 | { | ||
| 117 | printf("No FIPS RAND support\n"); | ||
| 118 | return(0); | ||
| 119 | } | ||
| 120 | |||
| 121 | #else | ||
| 122 | |||
| 123 | /* some FIPS 140-1 random number test */ | ||
| 124 | /* some simple tests */ | ||
| 125 | |||
| 126 | static DES_cblock prng_key1={0x21,0x58,0x47,0xb7,0xc2,0x97,0x5a,0x8e}; | ||
| 127 | static DES_cblock prng_key2={0x61,0x23,0x05,0x96,0x18,0x91,0x86,0xac}; | ||
| 128 | static unsigned char prng_seed[8]={0x6b,0xa3,0x4f,0x07,0xe4,0x2a,0xb0,0xc}; | ||
| 129 | 120 | ||
| 130 | typedef struct | 121 | /* The input and output encrypted as though 128bit cfb mode is being |
| 131 | { | 122 | * used. The extra state information to record how much of the |
| 132 | DES_cblock keys[2]; | 123 | * 128bit block we have used is contained in *num; |
| 133 | const unsigned char time[8]; | 124 | */ |
| 134 | const unsigned char seed[8]; | ||
| 135 | const unsigned char block1[8]; | ||
| 136 | const unsigned char block100[8]; | ||
| 137 | } PRNGtest; | ||
| 138 | |||
| 139 | /* FIXME: these test vectors are made up! */ | ||
| 140 | static PRNGtest t1= | ||
| 141 | { | ||
| 142 | { { 0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07 }, | ||
| 143 | { 0x08,0x09,0x0a,0x0b,0x0c,0x0d,0x0e,0x0f }, | ||
| 144 | }, | ||
| 145 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 146 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 147 | { 0x33,0xc3,0xdf,0xfe,0x60,0x60,0x49,0x9e }, | ||
| 148 | { 0xcd,0x2b,0x41,0xaf,0x80,0x51,0x37,0xd8 } | ||
| 149 | }; | ||
| 150 | static PRNGtest t2= | ||
| 151 | { | ||
| 152 | { { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff }, | ||
| 153 | { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff } }, | ||
| 154 | { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff }, | ||
| 155 | { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff }, | ||
| 156 | { 0x65,0xf1,0xa4,0x07,0x42,0x38,0xd5,0x25 }, | ||
| 157 | { 0xbb,0x75,0x84,0x20,0x7a,0x44,0xf0,0xa0 } | ||
| 158 | }; | ||
| 159 | |||
| 160 | static void dump(const unsigned char *b,int n) | ||
| 161 | { | ||
| 162 | while(n-- > 0) | ||
| 163 | { | ||
| 164 | printf(" %02x",*b++); | ||
| 165 | } | ||
| 166 | } | ||
| 167 | |||
| 168 | static void compare(const unsigned char *result,const unsigned char *expected, | ||
| 169 | int n) | ||
| 170 | { | ||
| 171 | int i; | ||
| 172 | |||
| 173 | for(i=0 ; i < n ; ++i) | ||
| 174 | if(result[i] != expected[i]) | ||
| 175 | { | ||
| 176 | puts("Random test failed, got:"); | ||
| 177 | dump(result,8); | ||
| 178 | puts("\n expected:"); | ||
| 179 | dump(expected,8); | ||
| 180 | putchar('\n'); | ||
| 181 | EXIT(1); | ||
| 182 | } | ||
| 183 | } | ||
| 184 | |||
| 185 | static void run_test(const PRNGtest *t) | ||
| 186 | { | ||
| 187 | unsigned char buf[8]; | ||
| 188 | int n; | ||
| 189 | |||
| 190 | FIPS_set_prng_key(t->keys[0],t->keys[1]); | ||
| 191 | FIPS_test_mode(1,t->time); | ||
| 192 | RAND_seed(t->seed,sizeof t->seed); | ||
| 193 | |||
| 194 | if(RAND_bytes(buf,8) <= 0) | ||
| 195 | { | ||
| 196 | ERR_print_errors_fp(stderr); | ||
| 197 | EXIT(2); | ||
| 198 | } | ||
| 199 | compare(buf,t->block1,8); | ||
| 200 | for(n=0 ; n < 99 ; ++n) | ||
| 201 | if(RAND_bytes(buf,8) <= 0) | ||
| 202 | { | ||
| 203 | ERR_print_errors_fp(stderr); | ||
| 204 | EXIT(2); | ||
| 205 | } | ||
| 206 | compare(buf,t->block100,8); | ||
| 207 | FIPS_test_mode(0,NULL); | ||
| 208 | } | ||
| 209 | 125 | ||
| 210 | int main() | 126 | void Camellia_cfb128_encrypt(const unsigned char *in, unsigned char *out, |
| 127 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 128 | unsigned char *ivec, int *num, const int enc) | ||
| 211 | { | 129 | { |
| 212 | unsigned char buf[2500]; | ||
| 213 | int i,j,k,s,sign,nsign,err=0; | ||
| 214 | unsigned long n1; | ||
| 215 | unsigned long n2[16]; | ||
| 216 | unsigned long runs[2][34]; | ||
| 217 | /*double d; */ | ||
| 218 | long d; | ||
| 219 | 130 | ||
| 220 | ERR_load_crypto_strings(); | 131 | unsigned int n; |
| 221 | RAND_set_rand_method(FIPS_rand_method()); | 132 | unsigned long l = length; |
| 133 | unsigned char c; | ||
| 222 | 134 | ||
| 223 | run_test(&t1); | 135 | assert(in && out && key && ivec && num); |
| 224 | run_test(&t2); | ||
| 225 | 136 | ||
| 226 | FIPS_set_prng_key(prng_key1,prng_key2); | 137 | n = *num; |
| 227 | RAND_seed(prng_seed,sizeof prng_seed); | ||
| 228 | 138 | ||
| 229 | i = RAND_pseudo_bytes(buf,2500); | 139 | if (enc) |
| 230 | if (i <= 0) | ||
| 231 | { | 140 | { |
| 232 | printf ("init failed, the rand method is not properly installed\n"); | 141 | while (l--) |
| 233 | err++; | 142 | { |
| 234 | goto err; | 143 | if (n == 0) |
| 235 | } | 144 | { |
| 236 | 145 | Camellia_encrypt(ivec, ivec, key); | |
| 237 | n1=0; | 146 | } |
| 238 | for (i=0; i<16; i++) n2[i]=0; | 147 | ivec[n] = *(out++) = *(in++) ^ ivec[n]; |
| 239 | for (i=0; i<34; i++) runs[0][i]=runs[1][i]=0; | 148 | n = (n+1) % CAMELLIA_BLOCK_SIZE; |
| 240 | 149 | } | |
| 241 | /* test 1 and 2 */ | 150 | } |
| 242 | sign=0; | 151 | else |
| 243 | nsign=0; | ||
| 244 | for (i=0; i<2500; i++) | ||
| 245 | { | 152 | { |
| 246 | j=buf[i]; | 153 | while (l--) |
| 247 | |||
| 248 | n2[j&0x0f]++; | ||
| 249 | n2[(j>>4)&0x0f]++; | ||
| 250 | |||
| 251 | for (k=0; k<8; k++) | ||
| 252 | { | 154 | { |
| 253 | s=(j&0x01); | 155 | if (n == 0) |
| 254 | if (s == sign) | ||
| 255 | nsign++; | ||
| 256 | else | ||
| 257 | { | 156 | { |
| 258 | if (nsign > 34) nsign=34; | 157 | Camellia_encrypt(ivec, ivec, key); |
| 259 | if (nsign != 0) | ||
| 260 | { | ||
| 261 | runs[sign][nsign-1]++; | ||
| 262 | if (nsign > 6) | ||
| 263 | runs[sign][5]++; | ||
| 264 | } | ||
| 265 | sign=s; | ||
| 266 | nsign=1; | ||
| 267 | } | 158 | } |
| 268 | 159 | c = *(in); | |
| 269 | if (s) n1++; | 160 | *(out++) = *(in++) ^ ivec[n]; |
| 270 | j>>=1; | 161 | ivec[n] = c; |
| 162 | n = (n+1) % CAMELLIA_BLOCK_SIZE; | ||
| 271 | } | 163 | } |
| 272 | } | 164 | } |
| 273 | if (nsign > 34) nsign=34; | ||
| 274 | if (nsign != 0) runs[sign][nsign-1]++; | ||
| 275 | 165 | ||
| 276 | /* test 1 */ | 166 | *num=n; |
| 277 | if (!((9654 < n1) && (n1 < 10346))) | 167 | } |
| 278 | { | ||
| 279 | printf("test 1 failed, X=%lu\n",n1); | ||
| 280 | err++; | ||
| 281 | } | ||
| 282 | printf("test 1 done\n"); | ||
| 283 | 168 | ||
| 284 | /* test 2 */ | 169 | /* This expects a single block of size nbits for both in and out. Note that |
| 285 | #ifdef undef | 170 | it corrupts any extra bits in the last byte of out */ |
| 286 | d=0; | 171 | void Camellia_cfbr_encrypt_block(const unsigned char *in,unsigned char *out, |
| 287 | for (i=0; i<16; i++) | 172 | const int nbits,const CAMELLIA_KEY *key, |
| 288 | d+=n2[i]*n2[i]; | 173 | unsigned char *ivec,const int enc) |
| 289 | d=d*16.0/5000.0-5000.0; | 174 | { |
| 290 | if (!((1.03 < d) && (d < 57.4))) | 175 | int n,rem,num; |
| 291 | { | 176 | unsigned char ovec[CAMELLIA_BLOCK_SIZE*2]; |
| 292 | printf("test 2 failed, X=%.2f\n",d); | 177 | |
| 293 | err++; | 178 | if (nbits<=0 || nbits>128) return; |
| 294 | } | 179 | |
| 295 | #endif | 180 | /* fill in the first half of the new IV with the current IV */ |
| 296 | d=0; | 181 | memcpy(ovec,ivec,CAMELLIA_BLOCK_SIZE); |
| 297 | for (i=0; i<16; i++) | 182 | /* construct the new IV */ |
| 298 | d+=n2[i]*n2[i]; | 183 | Camellia_encrypt(ivec,ivec,key); |
| 299 | d=(d*8)/25-500000; | 184 | num = (nbits+7)/8; |
| 300 | if (!((103 < d) && (d < 5740))) | 185 | if (enc) /* encrypt the input */ |
| 301 | { | 186 | for(n=0 ; n < num ; ++n) |
| 302 | printf("test 2 failed, X=%ld.%02ld\n",d/100L,d%100L); | 187 | out[n] = (ovec[CAMELLIA_BLOCK_SIZE+n] = in[n] ^ ivec[n]); |
| 303 | err++; | 188 | else /* decrypt the input */ |
| 304 | } | 189 | for(n=0 ; n < num ; ++n) |
| 305 | printf("test 2 done\n"); | 190 | out[n] = (ovec[CAMELLIA_BLOCK_SIZE+n] = in[n]) ^ ivec[n]; |
| 191 | /* shift ovec left... */ | ||
| 192 | rem = nbits%8; | ||
| 193 | num = nbits/8; | ||
| 194 | if(rem==0) | ||
| 195 | memcpy(ivec,ovec+num,CAMELLIA_BLOCK_SIZE); | ||
| 196 | else | ||
| 197 | for(n=0 ; n < CAMELLIA_BLOCK_SIZE ; ++n) | ||
| 198 | ivec[n] = ovec[n+num]<<rem | ovec[n+num+1]>>(8-rem); | ||
| 199 | |||
| 200 | /* it is not necessary to cleanse ovec, since the IV is not secret */ | ||
| 201 | } | ||
| 306 | 202 | ||
| 307 | /* test 3 */ | 203 | /* N.B. This expects the input to be packed, MS bit first */ |
| 308 | for (i=0; i<2; i++) | 204 | void Camellia_cfb1_encrypt(const unsigned char *in, unsigned char *out, |
| 309 | { | 205 | const unsigned long length, const CAMELLIA_KEY *key, |
| 310 | if (!((2267 < runs[i][0]) && (runs[i][0] < 2733))) | 206 | unsigned char *ivec, int *num, const int enc) |
| 311 | { | 207 | { |
| 312 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 208 | unsigned int n; |
| 313 | i,1,runs[i][0]); | 209 | unsigned char c[1],d[1]; |
| 314 | err++; | 210 | |
| 315 | } | 211 | assert(in && out && key && ivec && num); |
| 316 | if (!((1079 < runs[i][1]) && (runs[i][1] < 1421))) | 212 | assert(*num == 0); |
| 317 | { | 213 | |
| 318 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 214 | memset(out,0,(length+7)/8); |
| 319 | i,2,runs[i][1]); | 215 | for(n=0 ; n < length ; ++n) |
| 320 | err++; | ||
| 321 | } | ||
| 322 | if (!(( 502 < runs[i][2]) && (runs[i][2] < 748))) | ||
| 323 | { | ||
| 324 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | ||
| 325 | i,3,runs[i][2]); | ||
| 326 | err++; | ||
| 327 | } | ||
| 328 | if (!(( 223 < runs[i][3]) && (runs[i][3] < 402))) | ||
| 329 | { | ||
| 330 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | ||
| 331 | i,4,runs[i][3]); | ||
| 332 | err++; | ||
| 333 | } | ||
| 334 | if (!(( 90 < runs[i][4]) && (runs[i][4] < 223))) | ||
| 335 | { | ||
| 336 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | ||
| 337 | i,5,runs[i][4]); | ||
| 338 | err++; | ||
| 339 | } | ||
| 340 | if (!(( 90 < runs[i][5]) && (runs[i][5] < 223))) | ||
| 341 | { | ||
| 342 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | ||
| 343 | i,6,runs[i][5]); | ||
| 344 | err++; | ||
| 345 | } | ||
| 346 | } | ||
| 347 | printf("test 3 done\n"); | ||
| 348 | |||
| 349 | /* test 4 */ | ||
| 350 | if (runs[0][33] != 0) | ||
| 351 | { | ||
| 352 | printf("test 4 failed, bit=%d run=%d num=%lu\n", | ||
| 353 | 0,34,runs[0][33]); | ||
| 354 | err++; | ||
| 355 | } | ||
| 356 | if (runs[1][33] != 0) | ||
| 357 | { | 216 | { |
| 358 | printf("test 4 failed, bit=%d run=%d num=%lu\n", | 217 | c[0]=(in[n/8]&(1 << (7-n%8))) ? 0x80 : 0; |
| 359 | 1,34,runs[1][33]); | 218 | Camellia_cfbr_encrypt_block(c,d,1,key,ivec,enc); |
| 360 | err++; | 219 | out[n/8]=(out[n/8]&~(1 << (7-n%8)))|((d[0]&0x80) >> (n%8)); |
| 361 | } | 220 | } |
| 362 | printf("test 4 done\n"); | ||
| 363 | err: | ||
| 364 | err=((err)?1:0); | ||
| 365 | EXIT(err); | ||
| 366 | return(err); | ||
| 367 | } | 221 | } |
| 368 | 222 | ||
| 369 | #endif | 223 | void Camellia_cfb8_encrypt(const unsigned char *in, unsigned char *out, |
| 224 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 225 | unsigned char *ivec, int *num, const int enc) | ||
| 226 | { | ||
| 227 | unsigned int n; | ||
| 228 | |||
| 229 | assert(in && out && key && ivec && num); | ||
| 230 | assert(*num == 0); | ||
| 231 | |||
| 232 | for(n=0 ; n < length ; ++n) | ||
| 233 | Camellia_cfbr_encrypt_block(&in[n],&out[n],8,key,ivec,enc); | ||
| 234 | } | ||
| 235 | |||
diff --git a/src/lib/libssl/src/crypto/camellia/cmll_ctr.c b/src/lib/libssl/src/crypto/camellia/cmll_ctr.c new file mode 100644 index 0000000000..cc21b70890 --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/cmll_ctr.c | |||
| @@ -0,0 +1,143 @@ | |||
| 1 | /* crypto/camellia/camellia_ctr.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #ifndef CAMELLIA_DEBUG | ||
| 53 | # ifndef NDEBUG | ||
| 54 | # define NDEBUG | ||
| 55 | # endif | ||
| 56 | #endif | ||
| 57 | #include <assert.h> | ||
| 58 | |||
| 59 | #include <openssl/camellia.h> | ||
| 60 | #include "cmll_locl.h" | ||
| 61 | |||
| 62 | /* NOTE: the IV/counter CTR mode is big-endian. The rest of the Camellia code | ||
| 63 | * is endian-neutral. */ | ||
| 64 | /* increment counter (128-bit int) by 1 */ | ||
| 65 | static void Camellia_ctr128_inc(unsigned char *counter) | ||
| 66 | { | ||
| 67 | unsigned long c; | ||
| 68 | |||
| 69 | /* Grab bottom dword of counter and increment */ | ||
| 70 | c = GETU32(counter + 12); | ||
| 71 | c++; c &= 0xFFFFFFFF; | ||
| 72 | PUTU32(counter + 12, c); | ||
| 73 | |||
| 74 | /* if no overflow, we're done */ | ||
| 75 | if (c) | ||
| 76 | return; | ||
| 77 | |||
| 78 | /* Grab 1st dword of counter and increment */ | ||
| 79 | c = GETU32(counter + 8); | ||
| 80 | c++; c &= 0xFFFFFFFF; | ||
| 81 | PUTU32(counter + 8, c); | ||
| 82 | |||
| 83 | /* if no overflow, we're done */ | ||
| 84 | if (c) | ||
| 85 | return; | ||
| 86 | |||
| 87 | /* Grab 2nd dword of counter and increment */ | ||
| 88 | c = GETU32(counter + 4); | ||
| 89 | c++; c &= 0xFFFFFFFF; | ||
| 90 | PUTU32(counter + 4, c); | ||
| 91 | |||
| 92 | /* if no overflow, we're done */ | ||
| 93 | if (c) | ||
| 94 | return; | ||
| 95 | |||
| 96 | /* Grab top dword of counter and increment */ | ||
| 97 | c = GETU32(counter + 0); | ||
| 98 | c++; c &= 0xFFFFFFFF; | ||
| 99 | PUTU32(counter + 0, c); | ||
| 100 | } | ||
| 101 | |||
| 102 | /* The input encrypted as though 128bit counter mode is being | ||
| 103 | * used. The extra state information to record how much of the | ||
| 104 | * 128bit block we have used is contained in *num, and the | ||
| 105 | * encrypted counter is kept in ecount_buf. Both *num and | ||
| 106 | * ecount_buf must be initialised with zeros before the first | ||
| 107 | * call to Camellia_ctr128_encrypt(). | ||
| 108 | * | ||
| 109 | * This algorithm assumes that the counter is in the x lower bits | ||
| 110 | * of the IV (ivec), and that the application has full control over | ||
| 111 | * overflow and the rest of the IV. This implementation takes NO | ||
| 112 | * responsability for checking that the counter doesn't overflow | ||
| 113 | * into the rest of the IV when incremented. | ||
| 114 | */ | ||
| 115 | void Camellia_ctr128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 116 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 117 | unsigned char ivec[CAMELLIA_BLOCK_SIZE], | ||
| 118 | unsigned char ecount_buf[CAMELLIA_BLOCK_SIZE], | ||
| 119 | unsigned int *num) | ||
| 120 | { | ||
| 121 | |||
| 122 | unsigned int n; | ||
| 123 | unsigned long l=length; | ||
| 124 | |||
| 125 | assert(in && out && key && counter && num); | ||
| 126 | assert(*num < CAMELLIA_BLOCK_SIZE); | ||
| 127 | |||
| 128 | n = *num; | ||
| 129 | |||
| 130 | while (l--) | ||
| 131 | { | ||
| 132 | if (n == 0) | ||
| 133 | { | ||
| 134 | Camellia_encrypt(ivec, ecount_buf, key); | ||
| 135 | Camellia_ctr128_inc(ivec); | ||
| 136 | } | ||
| 137 | *(out++) = *(in++) ^ ecount_buf[n]; | ||
| 138 | n = (n+1) % CAMELLIA_BLOCK_SIZE; | ||
| 139 | } | ||
| 140 | |||
| 141 | *num=n; | ||
| 142 | } | ||
| 143 | |||
diff --git a/src/lib/libssl/src/fips-1.0/rand/fips_rand.h b/src/lib/libssl/src/crypto/camellia/cmll_ecb.c index 093727240e..70dc0e5632 100644 --- a/src/lib/libssl/src/fips-1.0/rand/fips_rand.h +++ b/src/lib/libssl/src/crypto/camellia/cmll_ecb.c | |||
| @@ -1,5 +1,6 @@ | |||
| 1 | /* crypto/camellia/camellia_ecb.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 1 | /* ==================================================================== | 2 | /* ==================================================================== |
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. |
| 3 | * | 4 | * |
| 4 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 5 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -44,30 +45,30 @@ | |||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. |
| 48 | * ==================================================================== | ||
| 47 | * | 49 | * |
| 48 | */ | 50 | */ |
| 49 | 51 | ||
| 50 | #ifndef HEADER_FIPS_RAND_H | 52 | #ifndef CAMELLIA_DEBUG |
| 51 | #define HEADER_FIPS_RAND_H | 53 | # ifndef NDEBUG |
| 52 | 54 | # define NDEBUG | |
| 53 | #include "des.h" | 55 | # endif |
| 56 | #endif | ||
| 57 | #include <assert.h> | ||
| 54 | 58 | ||
| 55 | #ifdef OPENSSL_FIPS | 59 | #include <openssl/camellia.h> |
| 60 | #include "cmll_locl.h" | ||
| 56 | 61 | ||
| 57 | #ifdef __cplusplus | 62 | void Camellia_ecb_encrypt(const unsigned char *in, unsigned char *out, |
| 58 | extern "C" { | 63 | const CAMELLIA_KEY *key, const int enc) |
| 59 | #endif | 64 | { |
| 60 | 65 | ||
| 61 | void FIPS_set_prng_key(const unsigned char k1[8],const unsigned char k2[8]); | 66 | assert(in && out && key); |
| 62 | void FIPS_test_mode(int test,const unsigned char faketime[8]); | 67 | assert((CAMELLIA_ENCRYPT == enc)||(CAMELLIA_DECRYPT == enc)); |
| 63 | void FIPS_rand_seed(const void *buf, FIPS_RAND_SIZE_T num); | ||
| 64 | /* NB: this returns true if _partially_ seeded */ | ||
| 65 | int FIPS_rand_seeded(void); | ||
| 66 | 68 | ||
| 67 | const RAND_METHOD *FIPS_rand_method(void); | 69 | if (CAMELLIA_ENCRYPT == enc) |
| 70 | Camellia_encrypt(in, out, key); | ||
| 71 | else | ||
| 72 | Camellia_decrypt(in, out, key); | ||
| 73 | } | ||
| 68 | 74 | ||
| 69 | #ifdef __cplusplus | ||
| 70 | } | ||
| 71 | #endif | ||
| 72 | #endif | ||
| 73 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/camellia/cmll_locl.h b/src/lib/libssl/src/crypto/camellia/cmll_locl.h new file mode 100644 index 0000000000..2ac2e95435 --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/cmll_locl.h | |||
| @@ -0,0 +1,165 @@ | |||
| 1 | /* crypto/camellia/camellia_locl.h -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2006 NTT (Nippon Telegraph and Telephone Corporation) . | ||
| 4 | * ALL RIGHTS RESERVED. | ||
| 5 | * | ||
| 6 | * Intellectual Property information for Camellia: | ||
| 7 | * http://info.isl.ntt.co.jp/crypt/eng/info/chiteki.html | ||
| 8 | * | ||
| 9 | * News Release for Announcement of Camellia open source: | ||
| 10 | * http://www.ntt.co.jp/news/news06e/0604/060413a.html | ||
| 11 | * | ||
| 12 | * The Camellia Code included herein is developed by | ||
| 13 | * NTT (Nippon Telegraph and Telephone Corporation), and is contributed | ||
| 14 | * to the OpenSSL project. | ||
| 15 | * | ||
| 16 | * The Camellia Code is licensed pursuant to the OpenSSL open source | ||
| 17 | * license provided below. | ||
| 18 | */ | ||
| 19 | /* ==================================================================== | ||
| 20 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 21 | * | ||
| 22 | * Redistribution and use in source and binary forms, with or without | ||
| 23 | * modification, are permitted provided that the following conditions | ||
| 24 | * are met: | ||
| 25 | * | ||
| 26 | * 1. Redistributions of source code must retain the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * | ||
| 29 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 30 | * notice, this list of conditions and the following disclaimer in | ||
| 31 | * the documentation and/or other materials provided with the | ||
| 32 | * distribution. | ||
| 33 | * | ||
| 34 | * 3. All advertising materials mentioning features or use of this | ||
| 35 | * software must display the following acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 40 | * endorse or promote products derived from this software without | ||
| 41 | * prior written permission. For written permission, please contact | ||
| 42 | * openssl-core@openssl.org. | ||
| 43 | * | ||
| 44 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 45 | * nor may "OpenSSL" appear in their names without prior written | ||
| 46 | * permission of the OpenSSL Project. | ||
| 47 | * | ||
| 48 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 49 | * acknowledgment: | ||
| 50 | * "This product includes software developed by the OpenSSL Project | ||
| 51 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 52 | * | ||
| 53 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 54 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 55 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 56 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 57 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 58 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 59 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 60 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 61 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 62 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 63 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 64 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 65 | * ==================================================================== | ||
| 66 | */ | ||
| 67 | |||
| 68 | #ifndef HEADER_CAMELLIA_LOCL_H | ||
| 69 | #define HEADER_CAMELLIA_LOCL_H | ||
| 70 | |||
| 71 | #include "openssl/e_os2.h" | ||
| 72 | #include <stdio.h> | ||
| 73 | #include <stdlib.h> | ||
| 74 | #include <string.h> | ||
| 75 | |||
| 76 | typedef unsigned char u8; | ||
| 77 | typedef unsigned int u32; | ||
| 78 | |||
| 79 | #ifdef __cplusplus | ||
| 80 | extern "C" { | ||
| 81 | #endif | ||
| 82 | |||
| 83 | #if defined(_MSC_VER) && (defined(_M_IX86) || defined(_M_AMD64) || defined(_M_X64)) | ||
| 84 | # define SWAP(x) ( _lrotl(x, 8) & 0x00ff00ff | _lrotr(x, 8) & 0xff00ff00 ) | ||
| 85 | # define GETU32(p) SWAP(*((u32 *)(p))) | ||
| 86 | # define PUTU32(ct, st) { *((u32 *)(ct)) = SWAP((st)); } | ||
| 87 | # define CAMELLIA_SWAP4(x) (x = ( _lrotl(x, 8) & 0x00ff00ff | _lrotr(x, 8) & 0xff00ff00) ) | ||
| 88 | |||
| 89 | #else /* not windows */ | ||
| 90 | # define GETU32(pt) (((u32)(pt)[0] << 24) \ | ||
| 91 | ^ ((u32)(pt)[1] << 16) \ | ||
| 92 | ^ ((u32)(pt)[2] << 8) \ | ||
| 93 | ^ ((u32)(pt)[3])) | ||
| 94 | |||
| 95 | # define PUTU32(ct, st) { (ct)[0] = (u8)((st) >> 24); \ | ||
| 96 | (ct)[1] = (u8)((st) >> 16); \ | ||
| 97 | (ct)[2] = (u8)((st) >> 8); \ | ||
| 98 | (ct)[3] = (u8)(st); } | ||
| 99 | |||
| 100 | #if (defined (__GNUC__) && (defined(__x86_64__) || defined(__x86_64))) | ||
| 101 | #define CAMELLIA_SWAP4(x) \ | ||
| 102 | do{\ | ||
| 103 | asm("bswap %1" : "+r" (x));\ | ||
| 104 | }while(0) | ||
| 105 | #else | ||
| 106 | #define CAMELLIA_SWAP4(x) \ | ||
| 107 | do{\ | ||
| 108 | x = ((u32)x << 16) + ((u32)x >> 16);\ | ||
| 109 | x = (((u32)x & 0xff00ff) << 8) + (((u32)x >> 8) & 0xff00ff);\ | ||
| 110 | } while(0) | ||
| 111 | #endif | ||
| 112 | #endif | ||
| 113 | |||
| 114 | #define COPY4WORD(dst, src) \ | ||
| 115 | do \ | ||
| 116 | { \ | ||
| 117 | (dst)[0]=(src)[0]; \ | ||
| 118 | (dst)[1]=(src)[1]; \ | ||
| 119 | (dst)[2]=(src)[2]; \ | ||
| 120 | (dst)[3]=(src)[3]; \ | ||
| 121 | }while(0) | ||
| 122 | |||
| 123 | #define SWAP4WORD(word) \ | ||
| 124 | do \ | ||
| 125 | { \ | ||
| 126 | CAMELLIA_SWAP4((word)[0]); \ | ||
| 127 | CAMELLIA_SWAP4((word)[1]); \ | ||
| 128 | CAMELLIA_SWAP4((word)[2]); \ | ||
| 129 | CAMELLIA_SWAP4((word)[3]); \ | ||
| 130 | }while(0) | ||
| 131 | |||
| 132 | #define XOR4WORD(a, b)/* a = a ^ b */ \ | ||
| 133 | do \ | ||
| 134 | { \ | ||
| 135 | (a)[0]^=(b)[0]; \ | ||
| 136 | (a)[1]^=(b)[1]; \ | ||
| 137 | (a)[2]^=(b)[2]; \ | ||
| 138 | (a)[3]^=(b)[3]; \ | ||
| 139 | }while(0) | ||
| 140 | |||
| 141 | #define XOR4WORD2(a, b, c)/* a = b ^ c */ \ | ||
| 142 | do \ | ||
| 143 | { \ | ||
| 144 | (a)[0]=(b)[0]^(c)[0]; \ | ||
| 145 | (a)[1]=(b)[1]^(c)[1]; \ | ||
| 146 | (a)[2]=(b)[2]^(c)[2]; \ | ||
| 147 | (a)[3]=(b)[3]^(c)[3]; \ | ||
| 148 | }while(0) | ||
| 149 | |||
| 150 | |||
| 151 | void camellia_setup128(const u8 *key, u32 *subkey); | ||
| 152 | void camellia_setup192(const u8 *key, u32 *subkey); | ||
| 153 | void camellia_setup256(const u8 *key, u32 *subkey); | ||
| 154 | |||
| 155 | void camellia_encrypt128(const u32 *subkey, u32 *io); | ||
| 156 | void camellia_decrypt128(const u32 *subkey, u32 *io); | ||
| 157 | void camellia_encrypt256(const u32 *subkey, u32 *io); | ||
| 158 | void camellia_decrypt256(const u32 *subkey, u32 *io); | ||
| 159 | |||
| 160 | #ifdef __cplusplus | ||
| 161 | } | ||
| 162 | #endif | ||
| 163 | |||
| 164 | #endif /* #ifndef HEADER_CAMELLIA_LOCL_H */ | ||
| 165 | |||
diff --git a/src/lib/libssl/src/crypto/camellia/cmll_misc.c b/src/lib/libssl/src/crypto/camellia/cmll_misc.c new file mode 100644 index 0000000000..f1047b54e0 --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/cmll_misc.c | |||
| @@ -0,0 +1,116 @@ | |||
| 1 | /* crypto/camellia/camellia_misc.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #include <openssl/opensslv.h> | ||
| 53 | #include <openssl/camellia.h> | ||
| 54 | #include "cmll_locl.h" | ||
| 55 | |||
| 56 | const char CAMELLIA_version[]="CAMELLIA" OPENSSL_VERSION_PTEXT; | ||
| 57 | |||
| 58 | int Camellia_set_key(const unsigned char *userKey, const int bits, | ||
| 59 | CAMELLIA_KEY *key) | ||
| 60 | { | ||
| 61 | if (!userKey || !key) | ||
| 62 | { | ||
| 63 | return -1; | ||
| 64 | } | ||
| 65 | |||
| 66 | switch(bits) | ||
| 67 | { | ||
| 68 | case 128: | ||
| 69 | camellia_setup128(userKey, (unsigned int *)key->rd_key); | ||
| 70 | key->enc = camellia_encrypt128; | ||
| 71 | key->dec = camellia_decrypt128; | ||
| 72 | break; | ||
| 73 | case 192: | ||
| 74 | camellia_setup192(userKey, (unsigned int *)key->rd_key); | ||
| 75 | key->enc = camellia_encrypt256; | ||
| 76 | key->dec = camellia_decrypt256; | ||
| 77 | break; | ||
| 78 | case 256: | ||
| 79 | camellia_setup256(userKey, (unsigned int *)key->rd_key); | ||
| 80 | key->enc = camellia_encrypt256; | ||
| 81 | key->dec = camellia_decrypt256; | ||
| 82 | break; | ||
| 83 | default: | ||
| 84 | return -2; | ||
| 85 | } | ||
| 86 | |||
| 87 | key->bitLength = bits; | ||
| 88 | return 0; | ||
| 89 | } | ||
| 90 | |||
| 91 | void Camellia_encrypt(const unsigned char *in, unsigned char *out, | ||
| 92 | const CAMELLIA_KEY *key) | ||
| 93 | { | ||
| 94 | u32 tmp[CAMELLIA_BLOCK_SIZE/sizeof(u32)]; | ||
| 95 | const union { long one; char little; } camellia_endian = {1}; | ||
| 96 | |||
| 97 | memcpy(tmp, in, CAMELLIA_BLOCK_SIZE); | ||
| 98 | if (camellia_endian.little) SWAP4WORD(tmp); | ||
| 99 | key->enc(key->rd_key, tmp); | ||
| 100 | if (camellia_endian.little) SWAP4WORD(tmp); | ||
| 101 | memcpy(out, tmp, CAMELLIA_BLOCK_SIZE); | ||
| 102 | } | ||
| 103 | |||
| 104 | void Camellia_decrypt(const unsigned char *in, unsigned char *out, | ||
| 105 | const CAMELLIA_KEY *key) | ||
| 106 | { | ||
| 107 | u32 tmp[CAMELLIA_BLOCK_SIZE/sizeof(u32)]; | ||
| 108 | const union { long one; char little; } camellia_endian = {1}; | ||
| 109 | |||
| 110 | memcpy(tmp, in, CAMELLIA_BLOCK_SIZE); | ||
| 111 | if (camellia_endian.little) SWAP4WORD(tmp); | ||
| 112 | key->dec(key->rd_key, tmp); | ||
| 113 | if (camellia_endian.little) SWAP4WORD(tmp); | ||
| 114 | memcpy(out, tmp, CAMELLIA_BLOCK_SIZE); | ||
| 115 | } | ||
| 116 | |||
diff --git a/src/lib/libssl/src/crypto/camellia/cmll_ofb.c b/src/lib/libssl/src/crypto/camellia/cmll_ofb.c new file mode 100644 index 0000000000..d89cf9f3b3 --- /dev/null +++ b/src/lib/libssl/src/crypto/camellia/cmll_ofb.c | |||
| @@ -0,0 +1,141 @@ | |||
| 1 | /* crypto/camellia/camellia_ofb.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 52 | * All rights reserved. | ||
| 53 | * | ||
| 54 | * This package is an SSL implementation written | ||
| 55 | * by Eric Young (eay@cryptsoft.com). | ||
| 56 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 57 | * | ||
| 58 | * This library is free for commercial and non-commercial use as long as | ||
| 59 | * the following conditions are aheared to. The following conditions | ||
| 60 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 61 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 62 | * included with this distribution is covered by the same copyright terms | ||
| 63 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 64 | * | ||
| 65 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 66 | * the code are not to be removed. | ||
| 67 | * If this package is used in a product, Eric Young should be given attribution | ||
| 68 | * as the author of the parts of the library used. | ||
| 69 | * This can be in the form of a textual message at program startup or | ||
| 70 | * in documentation (online or textual) provided with the package. | ||
| 71 | * | ||
| 72 | * Redistribution and use in source and binary forms, with or without | ||
| 73 | * modification, are permitted provided that the following conditions | ||
| 74 | * are met: | ||
| 75 | * 1. Redistributions of source code must retain the copyright | ||
| 76 | * notice, this list of conditions and the following disclaimer. | ||
| 77 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 78 | * notice, this list of conditions and the following disclaimer in the | ||
| 79 | * documentation and/or other materials provided with the distribution. | ||
| 80 | * 3. All advertising materials mentioning features or use of this software | ||
| 81 | * must display the following acknowledgement: | ||
| 82 | * "This product includes cryptographic software written by | ||
| 83 | * Eric Young (eay@cryptsoft.com)" | ||
| 84 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 85 | * being used are not cryptographic related :-). | ||
| 86 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 87 | * the apps directory (application code) you must include an acknowledgement: | ||
| 88 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 89 | * | ||
| 90 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 91 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 92 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 93 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 94 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 95 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 96 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 97 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 98 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 99 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 100 | * SUCH DAMAGE. | ||
| 101 | * | ||
| 102 | * The licence and distribution terms for any publically available version or | ||
| 103 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 104 | * copied and put under another distribution licence | ||
| 105 | * [including the GNU Public Licence.] | ||
| 106 | */ | ||
| 107 | |||
| 108 | #ifndef CAMELLIA_DEBUG | ||
| 109 | # ifndef NDEBUG | ||
| 110 | # define NDEBUG | ||
| 111 | # endif | ||
| 112 | #endif | ||
| 113 | #include <assert.h> | ||
| 114 | #include <openssl/camellia.h> | ||
| 115 | #include "cmll_locl.h" | ||
| 116 | |||
| 117 | /* The input and output encrypted as though 128bit ofb mode is being | ||
| 118 | * used. The extra state information to record how much of the | ||
| 119 | * 128bit block we have used is contained in *num; | ||
| 120 | */ | ||
| 121 | void Camellia_ofb128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 122 | const unsigned long length, const CAMELLIA_KEY *key, | ||
| 123 | unsigned char *ivec, int *num) { | ||
| 124 | |||
| 125 | unsigned int n; | ||
| 126 | unsigned long l=length; | ||
| 127 | |||
| 128 | assert(in && out && key && ivec && num); | ||
| 129 | |||
| 130 | n = *num; | ||
| 131 | |||
| 132 | while (l--) { | ||
| 133 | if (n == 0) { | ||
| 134 | Camellia_encrypt(ivec, ivec, key); | ||
| 135 | } | ||
| 136 | *(out++) = *(in++) ^ ivec[n]; | ||
| 137 | n = (n+1) % CAMELLIA_BLOCK_SIZE; | ||
| 138 | } | ||
| 139 | |||
| 140 | *num=n; | ||
| 141 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/Makefile b/src/lib/libssl/src/crypto/cms/Makefile new file mode 100644 index 0000000000..e39c310b6c --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/Makefile | |||
| @@ -0,0 +1,183 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/crypto/cms/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= cms | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= -I.. -I$(TOP) -I../../include | ||
| 9 | CFLAG=-g | ||
| 10 | MAKEFILE= Makefile | ||
| 11 | AR= ar r | ||
| 12 | |||
| 13 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 14 | |||
| 15 | GENERAL=Makefile | ||
| 16 | TEST= | ||
| 17 | APPS= | ||
| 18 | |||
| 19 | LIB=$(TOP)/libcrypto.a | ||
| 20 | LIBSRC= cms_lib.c cms_asn1.c cms_att.c cms_io.c cms_smime.c cms_err.c \ | ||
| 21 | cms_sd.c cms_dd.c cms_cd.c cms_env.c cms_enc.c cms_ess.c | ||
| 22 | LIBOBJ= cms_lib.o cms_asn1.o cms_att.o cms_io.o cms_smime.o cms_err.o \ | ||
| 23 | cms_sd.o cms_dd.o cms_cd.o cms_env.o cms_enc.o cms_ess.o | ||
| 24 | |||
| 25 | SRC= $(LIBSRC) | ||
| 26 | |||
| 27 | EXHEADER= cms.h | ||
| 28 | HEADER= cms_lcl.h $(EXHEADER) | ||
| 29 | |||
| 30 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 31 | |||
| 32 | top: | ||
| 33 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 34 | |||
| 35 | test: | ||
| 36 | |||
| 37 | all: lib | ||
| 38 | |||
| 39 | lib: $(LIBOBJ) | ||
| 40 | $(AR) $(LIB) $(LIBOBJ) | ||
| 41 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 42 | @touch lib | ||
| 43 | |||
| 44 | files: | ||
| 45 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 46 | |||
| 47 | links: | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 50 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 51 | |||
| 52 | install: | ||
| 53 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 54 | @headerlist="$(EXHEADER)"; for i in $$headerlist ; \ | ||
| 55 | do \ | ||
| 56 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 57 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 58 | done; | ||
| 59 | |||
| 60 | tags: | ||
| 61 | ctags $(SRC) | ||
| 62 | |||
| 63 | tests: | ||
| 64 | |||
| 65 | lint: | ||
| 66 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 67 | |||
| 68 | depend: | ||
| 69 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 70 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 71 | |||
| 72 | dclean: | ||
| 73 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 74 | mv -f Makefile.new $(MAKEFILE) | ||
| 75 | |||
| 76 | clean: | ||
| 77 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 78 | |||
| 79 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 80 | |||
| 81 | cms_asn1.o: ../../include/openssl/asn1.h ../../include/openssl/asn1t.h | ||
| 82 | cms_asn1.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h | ||
| 83 | cms_asn1.o: ../../include/openssl/conf.h ../../include/openssl/crypto.h | ||
| 84 | cms_asn1.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 85 | cms_asn1.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h | ||
| 86 | cms_asn1.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h | ||
| 87 | cms_asn1.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 88 | cms_asn1.o: ../../include/openssl/opensslconf.h | ||
| 89 | cms_asn1.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 90 | cms_asn1.o: ../../include/openssl/pem.h ../../include/openssl/pem2.h | ||
| 91 | cms_asn1.o: ../../include/openssl/pkcs7.h ../../include/openssl/safestack.h | ||
| 92 | cms_asn1.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 93 | cms_asn1.o: ../../include/openssl/symhacks.h ../../include/openssl/x509.h | ||
| 94 | cms_asn1.o: ../../include/openssl/x509_vfy.h ../../include/openssl/x509v3.h | ||
| 95 | cms_asn1.o: cms.h cms_asn1.c cms_lcl.h | ||
| 96 | cms_att.o: ../../include/openssl/asn1.h ../../include/openssl/asn1t.h | ||
| 97 | cms_att.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h | ||
| 98 | cms_att.o: ../../include/openssl/conf.h ../../include/openssl/crypto.h | ||
| 99 | cms_att.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 100 | cms_att.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h | ||
| 101 | cms_att.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 102 | cms_att.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h | ||
| 103 | cms_att.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h | ||
| 104 | cms_att.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 105 | cms_att.o: ../../include/openssl/pem.h ../../include/openssl/pem2.h | ||
| 106 | cms_att.o: ../../include/openssl/pkcs7.h ../../include/openssl/safestack.h | ||
| 107 | cms_att.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 108 | cms_att.o: ../../include/openssl/symhacks.h ../../include/openssl/x509.h | ||
| 109 | cms_att.o: ../../include/openssl/x509_vfy.h ../../include/openssl/x509v3.h | ||
| 110 | cms_att.o: cms.h cms_att.c cms_lcl.h | ||
| 111 | cms_err.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 112 | cms_err.o: ../../include/openssl/buffer.h ../../include/openssl/cms.h | ||
| 113 | cms_err.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 114 | cms_err.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 115 | cms_err.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h | ||
| 116 | cms_err.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h | ||
| 117 | cms_err.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 118 | cms_err.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h | ||
| 119 | cms_err.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h | ||
| 120 | cms_err.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 121 | cms_err.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 122 | cms_err.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h | ||
| 123 | cms_err.o: cms_err.c | ||
| 124 | cms_io.o: ../../include/openssl/asn1.h ../../include/openssl/asn1t.h | ||
| 125 | cms_io.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h | ||
| 126 | cms_io.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 127 | cms_io.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 128 | cms_io.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h | ||
| 129 | cms_io.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h | ||
| 130 | cms_io.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 131 | cms_io.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h | ||
| 132 | cms_io.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pem.h | ||
| 133 | cms_io.o: ../../include/openssl/pem2.h ../../include/openssl/pkcs7.h | ||
| 134 | cms_io.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 135 | cms_io.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 136 | cms_io.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h cms.h | ||
| 137 | cms_io.o: cms_io.c cms_lcl.h | ||
| 138 | cms_lib.o: ../../include/openssl/asn1.h ../../include/openssl/asn1t.h | ||
| 139 | cms_lib.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h | ||
| 140 | cms_lib.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 141 | cms_lib.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 142 | cms_lib.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h | ||
| 143 | cms_lib.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h | ||
| 144 | cms_lib.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 145 | cms_lib.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h | ||
| 146 | cms_lib.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pem.h | ||
| 147 | cms_lib.o: ../../include/openssl/pem2.h ../../include/openssl/pkcs7.h | ||
| 148 | cms_lib.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 149 | cms_lib.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 150 | cms_lib.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h cms.h | ||
| 151 | cms_lib.o: cms_lcl.h cms_lib.c | ||
| 152 | cms_sd.o: ../../e_os.h ../../include/openssl/asn1.h | ||
| 153 | cms_sd.o: ../../include/openssl/asn1t.h ../../include/openssl/bio.h | ||
| 154 | cms_sd.o: ../../include/openssl/buffer.h ../../include/openssl/cms.h | ||
| 155 | cms_sd.o: ../../include/openssl/conf.h ../../include/openssl/crypto.h | ||
| 156 | cms_sd.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 157 | cms_sd.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h | ||
| 158 | cms_sd.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 159 | cms_sd.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h | ||
| 160 | cms_sd.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h | ||
| 161 | cms_sd.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 162 | cms_sd.o: ../../include/openssl/pem.h ../../include/openssl/pem2.h | ||
| 163 | cms_sd.o: ../../include/openssl/pkcs7.h ../../include/openssl/safestack.h | ||
| 164 | cms_sd.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 165 | cms_sd.o: ../../include/openssl/symhacks.h ../../include/openssl/x509.h | ||
| 166 | cms_sd.o: ../../include/openssl/x509_vfy.h ../../include/openssl/x509v3.h | ||
| 167 | cms_sd.o: ../cryptlib.h cms_lcl.h cms_sd.c | ||
| 168 | cms_smime.o: ../../e_os.h ../../include/openssl/asn1.h | ||
| 169 | cms_smime.o: ../../include/openssl/asn1t.h ../../include/openssl/bio.h | ||
| 170 | cms_smime.o: ../../include/openssl/buffer.h ../../include/openssl/cms.h | ||
| 171 | cms_smime.o: ../../include/openssl/conf.h ../../include/openssl/crypto.h | ||
| 172 | cms_smime.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 173 | cms_smime.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h | ||
| 174 | cms_smime.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 175 | cms_smime.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h | ||
| 176 | cms_smime.o: ../../include/openssl/objects.h | ||
| 177 | cms_smime.o: ../../include/openssl/opensslconf.h | ||
| 178 | cms_smime.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 179 | cms_smime.o: ../../include/openssl/pkcs7.h ../../include/openssl/safestack.h | ||
| 180 | cms_smime.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 181 | cms_smime.o: ../../include/openssl/symhacks.h ../../include/openssl/x509.h | ||
| 182 | cms_smime.o: ../../include/openssl/x509_vfy.h ../../include/openssl/x509v3.h | ||
| 183 | cms_smime.o: ../cryptlib.h cms_lcl.h cms_smime.c | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms.h b/src/lib/libssl/src/crypto/cms/cms.h new file mode 100644 index 0000000000..25f88745f2 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms.h | |||
| @@ -0,0 +1,473 @@ | |||
| 1 | /* crypto/cms/cms.h */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | |||
| 55 | #ifndef HEADER_CMS_H | ||
| 56 | #define HEADER_CMS_H | ||
| 57 | |||
| 58 | #include <openssl/x509.h> | ||
| 59 | |||
| 60 | #ifdef OPENSSL_NO_CMS | ||
| 61 | #error CMS is disabled. | ||
| 62 | #endif | ||
| 63 | |||
| 64 | #ifdef __cplusplus | ||
| 65 | extern "C" { | ||
| 66 | #endif | ||
| 67 | |||
| 68 | |||
| 69 | typedef struct CMS_ContentInfo_st CMS_ContentInfo; | ||
| 70 | typedef struct CMS_SignerInfo_st CMS_SignerInfo; | ||
| 71 | typedef struct CMS_CertificateChoices CMS_CertificateChoices; | ||
| 72 | typedef struct CMS_RevocationInfoChoice_st CMS_RevocationInfoChoice; | ||
| 73 | typedef struct CMS_RecipientInfo_st CMS_RecipientInfo; | ||
| 74 | typedef struct CMS_ReceiptRequest_st CMS_ReceiptRequest; | ||
| 75 | typedef struct CMS_Receipt_st CMS_Receipt; | ||
| 76 | |||
| 77 | DECLARE_STACK_OF(CMS_SignerInfo) | ||
| 78 | DECLARE_STACK_OF(GENERAL_NAMES) | ||
| 79 | DECLARE_ASN1_FUNCTIONS_const(CMS_ContentInfo) | ||
| 80 | DECLARE_ASN1_FUNCTIONS_const(CMS_ReceiptRequest) | ||
| 81 | |||
| 82 | #define CMS_SIGNERINFO_ISSUER_SERIAL 0 | ||
| 83 | #define CMS_SIGNERINFO_KEYIDENTIFIER 1 | ||
| 84 | |||
| 85 | #define CMS_RECIPINFO_TRANS 0 | ||
| 86 | #define CMS_RECIPINFO_AGREE 1 | ||
| 87 | #define CMS_RECIPINFO_KEK 2 | ||
| 88 | #define CMS_RECIPINFO_PASS 3 | ||
| 89 | #define CMS_RECIPINFO_OTHER 4 | ||
| 90 | |||
| 91 | /* S/MIME related flags */ | ||
| 92 | |||
| 93 | #define CMS_TEXT 0x1 | ||
| 94 | #define CMS_NOCERTS 0x2 | ||
| 95 | #define CMS_NO_CONTENT_VERIFY 0x4 | ||
| 96 | #define CMS_NO_ATTR_VERIFY 0x8 | ||
| 97 | #define CMS_NOSIGS \ | ||
| 98 | (CMS_NO_CONTENT_VERIFY|CMS_NO_ATTR_VERIFY) | ||
| 99 | #define CMS_NOINTERN 0x10 | ||
| 100 | #define CMS_NO_SIGNER_CERT_VERIFY 0x20 | ||
| 101 | #define CMS_NOVERIFY 0x20 | ||
| 102 | #define CMS_DETACHED 0x40 | ||
| 103 | #define CMS_BINARY 0x80 | ||
| 104 | #define CMS_NOATTR 0x100 | ||
| 105 | #define CMS_NOSMIMECAP 0x200 | ||
| 106 | #define CMS_NOOLDMIMETYPE 0x400 | ||
| 107 | #define CMS_CRLFEOL 0x800 | ||
| 108 | #define CMS_STREAM 0x1000 | ||
| 109 | #define CMS_NOCRL 0x2000 | ||
| 110 | #define CMS_PARTIAL 0x4000 | ||
| 111 | #define CMS_REUSE_DIGEST 0x8000 | ||
| 112 | #define CMS_USE_KEYID 0x10000 | ||
| 113 | |||
| 114 | const ASN1_OBJECT *CMS_get0_type(CMS_ContentInfo *cms); | ||
| 115 | |||
| 116 | BIO *CMS_dataInit(CMS_ContentInfo *cms, BIO *icont); | ||
| 117 | int CMS_dataFinal(CMS_ContentInfo *cms, BIO *bio); | ||
| 118 | |||
| 119 | ASN1_OCTET_STRING **CMS_get0_content(CMS_ContentInfo *cms); | ||
| 120 | int CMS_is_detached(CMS_ContentInfo *cms); | ||
| 121 | int CMS_set_detached(CMS_ContentInfo *cms, int detached); | ||
| 122 | |||
| 123 | #ifdef HEADER_PEM_H | ||
| 124 | DECLARE_PEM_rw_const(CMS, CMS_ContentInfo) | ||
| 125 | #endif | ||
| 126 | |||
| 127 | CMS_ContentInfo *d2i_CMS_bio(BIO *bp, CMS_ContentInfo **cms); | ||
| 128 | int i2d_CMS_bio(BIO *bp, CMS_ContentInfo *cms); | ||
| 129 | |||
| 130 | CMS_ContentInfo *SMIME_read_CMS(BIO *bio, BIO **bcont); | ||
| 131 | int SMIME_write_CMS(BIO *bio, CMS_ContentInfo *cms, BIO *data, int flags); | ||
| 132 | |||
| 133 | int CMS_final(CMS_ContentInfo *cms, BIO *data, BIO *dcont, unsigned int flags); | ||
| 134 | |||
| 135 | CMS_ContentInfo *CMS_sign(X509 *signcert, EVP_PKEY *pkey, STACK_OF(X509) *certs, | ||
| 136 | BIO *data, unsigned int flags); | ||
| 137 | |||
| 138 | CMS_ContentInfo *CMS_sign_receipt(CMS_SignerInfo *si, | ||
| 139 | X509 *signcert, EVP_PKEY *pkey, | ||
| 140 | STACK_OF(X509) *certs, | ||
| 141 | unsigned int flags); | ||
| 142 | |||
| 143 | int CMS_data(CMS_ContentInfo *cms, BIO *out, unsigned int flags); | ||
| 144 | CMS_ContentInfo *CMS_data_create(BIO *in, unsigned int flags); | ||
| 145 | |||
| 146 | int CMS_digest_verify(CMS_ContentInfo *cms, BIO *dcont, BIO *out, | ||
| 147 | unsigned int flags); | ||
| 148 | CMS_ContentInfo *CMS_digest_create(BIO *in, const EVP_MD *md, | ||
| 149 | unsigned int flags); | ||
| 150 | |||
| 151 | int CMS_EncryptedData_decrypt(CMS_ContentInfo *cms, | ||
| 152 | const unsigned char *key, size_t keylen, | ||
| 153 | BIO *dcont, BIO *out, unsigned int flags); | ||
| 154 | |||
| 155 | CMS_ContentInfo *CMS_EncryptedData_encrypt(BIO *in, const EVP_CIPHER *cipher, | ||
| 156 | const unsigned char *key, size_t keylen, | ||
| 157 | unsigned int flags); | ||
| 158 | |||
| 159 | int CMS_EncryptedData_set1_key(CMS_ContentInfo *cms, const EVP_CIPHER *ciph, | ||
| 160 | const unsigned char *key, size_t keylen); | ||
| 161 | |||
| 162 | int CMS_verify(CMS_ContentInfo *cms, STACK_OF(X509) *certs, | ||
| 163 | X509_STORE *store, BIO *dcont, BIO *out, unsigned int flags); | ||
| 164 | |||
| 165 | int CMS_verify_receipt(CMS_ContentInfo *rcms, CMS_ContentInfo *ocms, | ||
| 166 | STACK_OF(X509) *certs, | ||
| 167 | X509_STORE *store, unsigned int flags); | ||
| 168 | |||
| 169 | STACK_OF(X509) *CMS_get0_signers(CMS_ContentInfo *cms); | ||
| 170 | |||
| 171 | CMS_ContentInfo *CMS_encrypt(STACK_OF(X509) *certs, BIO *in, | ||
| 172 | const EVP_CIPHER *cipher, unsigned int flags); | ||
| 173 | |||
| 174 | int CMS_decrypt(CMS_ContentInfo *cms, EVP_PKEY *pkey, X509 *cert, | ||
| 175 | BIO *dcont, BIO *out, | ||
| 176 | unsigned int flags); | ||
| 177 | |||
| 178 | int CMS_decrypt_set1_pkey(CMS_ContentInfo *cms, EVP_PKEY *pk, X509 *cert); | ||
| 179 | int CMS_decrypt_set1_key(CMS_ContentInfo *cms, | ||
| 180 | unsigned char *key, size_t keylen, | ||
| 181 | unsigned char *id, size_t idlen); | ||
| 182 | |||
| 183 | STACK_OF(CMS_RecipientInfo) *CMS_get0_RecipientInfos(CMS_ContentInfo *cms); | ||
| 184 | int CMS_RecipientInfo_type(CMS_RecipientInfo *ri); | ||
| 185 | CMS_ContentInfo *CMS_EnvelopedData_create(const EVP_CIPHER *cipher); | ||
| 186 | CMS_RecipientInfo *CMS_add1_recipient_cert(CMS_ContentInfo *cms, | ||
| 187 | X509 *recip, unsigned int flags); | ||
| 188 | int CMS_RecipientInfo_set0_pkey(CMS_RecipientInfo *ri, EVP_PKEY *pkey); | ||
| 189 | int CMS_RecipientInfo_ktri_cert_cmp(CMS_RecipientInfo *ri, X509 *cert); | ||
| 190 | int CMS_RecipientInfo_ktri_get0_algs(CMS_RecipientInfo *ri, | ||
| 191 | EVP_PKEY **pk, X509 **recip, | ||
| 192 | X509_ALGOR **palg); | ||
| 193 | int CMS_RecipientInfo_ktri_get0_signer_id(CMS_RecipientInfo *ri, | ||
| 194 | ASN1_OCTET_STRING **keyid, | ||
| 195 | X509_NAME **issuer, ASN1_INTEGER **sno); | ||
| 196 | |||
| 197 | CMS_RecipientInfo *CMS_add0_recipient_key(CMS_ContentInfo *cms, int nid, | ||
| 198 | unsigned char *key, size_t keylen, | ||
| 199 | unsigned char *id, size_t idlen, | ||
| 200 | ASN1_GENERALIZEDTIME *date, | ||
| 201 | ASN1_OBJECT *otherTypeId, | ||
| 202 | ASN1_TYPE *otherType); | ||
| 203 | |||
| 204 | int CMS_RecipientInfo_kekri_get0_id(CMS_RecipientInfo *ri, | ||
| 205 | X509_ALGOR **palg, | ||
| 206 | ASN1_OCTET_STRING **pid, | ||
| 207 | ASN1_GENERALIZEDTIME **pdate, | ||
| 208 | ASN1_OBJECT **potherid, | ||
| 209 | ASN1_TYPE **pothertype); | ||
| 210 | |||
| 211 | int CMS_RecipientInfo_set0_key(CMS_RecipientInfo *ri, | ||
| 212 | unsigned char *key, size_t keylen); | ||
| 213 | |||
| 214 | int CMS_RecipientInfo_kekri_id_cmp(CMS_RecipientInfo *ri, | ||
| 215 | const unsigned char *id, size_t idlen); | ||
| 216 | |||
| 217 | int CMS_RecipientInfo_decrypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri); | ||
| 218 | |||
| 219 | int CMS_uncompress(CMS_ContentInfo *cms, BIO *dcont, BIO *out, | ||
| 220 | unsigned int flags); | ||
| 221 | CMS_ContentInfo *CMS_compress(BIO *in, int comp_nid, unsigned int flags); | ||
| 222 | |||
| 223 | int CMS_set1_eContentType(CMS_ContentInfo *cms, const ASN1_OBJECT *oid); | ||
| 224 | const ASN1_OBJECT *CMS_get0_eContentType(CMS_ContentInfo *cms); | ||
| 225 | |||
| 226 | CMS_CertificateChoices *CMS_add0_CertificateChoices(CMS_ContentInfo *cms); | ||
| 227 | int CMS_add0_cert(CMS_ContentInfo *cms, X509 *cert); | ||
| 228 | int CMS_add1_cert(CMS_ContentInfo *cms, X509 *cert); | ||
| 229 | STACK_OF(X509) *CMS_get1_certs(CMS_ContentInfo *cms); | ||
| 230 | |||
| 231 | CMS_RevocationInfoChoice *CMS_add0_RevocationInfoChoice(CMS_ContentInfo *cms); | ||
| 232 | int CMS_add0_crl(CMS_ContentInfo *cms, X509_CRL *crl); | ||
| 233 | STACK_OF(X509_CRL) *CMS_get1_crls(CMS_ContentInfo *cms); | ||
| 234 | |||
| 235 | int CMS_SignedData_init(CMS_ContentInfo *cms); | ||
| 236 | CMS_SignerInfo *CMS_add1_signer(CMS_ContentInfo *cms, | ||
| 237 | X509 *signer, EVP_PKEY *pk, const EVP_MD *md, | ||
| 238 | unsigned int flags); | ||
| 239 | STACK_OF(CMS_SignerInfo) *CMS_get0_SignerInfos(CMS_ContentInfo *cms); | ||
| 240 | |||
| 241 | void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer); | ||
| 242 | int CMS_SignerInfo_get0_signer_id(CMS_SignerInfo *si, | ||
| 243 | ASN1_OCTET_STRING **keyid, | ||
| 244 | X509_NAME **issuer, ASN1_INTEGER **sno); | ||
| 245 | int CMS_SignerInfo_cert_cmp(CMS_SignerInfo *si, X509 *cert); | ||
| 246 | int CMS_set1_signers_certs(CMS_ContentInfo *cms, STACK_OF(X509) *certs, | ||
| 247 | unsigned int flags); | ||
| 248 | void CMS_SignerInfo_get0_algs(CMS_SignerInfo *si, EVP_PKEY **pk, X509 **signer, | ||
| 249 | X509_ALGOR **pdig, X509_ALGOR **psig); | ||
| 250 | int CMS_SignerInfo_sign(CMS_SignerInfo *si); | ||
| 251 | int CMS_SignerInfo_verify(CMS_SignerInfo *si); | ||
| 252 | int CMS_SignerInfo_verify_content(CMS_SignerInfo *si, BIO *chain); | ||
| 253 | |||
| 254 | int CMS_add_smimecap(CMS_SignerInfo *si, STACK_OF(X509_ALGOR) *algs); | ||
| 255 | int CMS_add_simple_smimecap(STACK_OF(X509_ALGOR) **algs, | ||
| 256 | int algnid, int keysize); | ||
| 257 | int CMS_add_standard_smimecap(STACK_OF(X509_ALGOR) **smcap); | ||
| 258 | |||
| 259 | int CMS_signed_get_attr_count(const CMS_SignerInfo *si); | ||
| 260 | int CMS_signed_get_attr_by_NID(const CMS_SignerInfo *si, int nid, | ||
| 261 | int lastpos); | ||
| 262 | int CMS_signed_get_attr_by_OBJ(const CMS_SignerInfo *si, ASN1_OBJECT *obj, | ||
| 263 | int lastpos); | ||
| 264 | X509_ATTRIBUTE *CMS_signed_get_attr(const CMS_SignerInfo *si, int loc); | ||
| 265 | X509_ATTRIBUTE *CMS_signed_delete_attr(CMS_SignerInfo *si, int loc); | ||
| 266 | int CMS_signed_add1_attr(CMS_SignerInfo *si, X509_ATTRIBUTE *attr); | ||
| 267 | int CMS_signed_add1_attr_by_OBJ(CMS_SignerInfo *si, | ||
| 268 | const ASN1_OBJECT *obj, int type, | ||
| 269 | const void *bytes, int len); | ||
| 270 | int CMS_signed_add1_attr_by_NID(CMS_SignerInfo *si, | ||
| 271 | int nid, int type, | ||
| 272 | const void *bytes, int len); | ||
| 273 | int CMS_signed_add1_attr_by_txt(CMS_SignerInfo *si, | ||
| 274 | const char *attrname, int type, | ||
| 275 | const void *bytes, int len); | ||
| 276 | void *CMS_signed_get0_data_by_OBJ(CMS_SignerInfo *si, ASN1_OBJECT *oid, | ||
| 277 | int lastpos, int type); | ||
| 278 | |||
| 279 | int CMS_unsigned_get_attr_count(const CMS_SignerInfo *si); | ||
| 280 | int CMS_unsigned_get_attr_by_NID(const CMS_SignerInfo *si, int nid, | ||
| 281 | int lastpos); | ||
| 282 | int CMS_unsigned_get_attr_by_OBJ(const CMS_SignerInfo *si, ASN1_OBJECT *obj, | ||
| 283 | int lastpos); | ||
| 284 | X509_ATTRIBUTE *CMS_unsigned_get_attr(const CMS_SignerInfo *si, int loc); | ||
| 285 | X509_ATTRIBUTE *CMS_unsigned_delete_attr(CMS_SignerInfo *si, int loc); | ||
| 286 | int CMS_unsigned_add1_attr(CMS_SignerInfo *si, X509_ATTRIBUTE *attr); | ||
| 287 | int CMS_unsigned_add1_attr_by_OBJ(CMS_SignerInfo *si, | ||
| 288 | const ASN1_OBJECT *obj, int type, | ||
| 289 | const void *bytes, int len); | ||
| 290 | int CMS_unsigned_add1_attr_by_NID(CMS_SignerInfo *si, | ||
| 291 | int nid, int type, | ||
| 292 | const void *bytes, int len); | ||
| 293 | int CMS_unsigned_add1_attr_by_txt(CMS_SignerInfo *si, | ||
| 294 | const char *attrname, int type, | ||
| 295 | const void *bytes, int len); | ||
| 296 | void *CMS_unsigned_get0_data_by_OBJ(CMS_SignerInfo *si, ASN1_OBJECT *oid, | ||
| 297 | int lastpos, int type); | ||
| 298 | |||
| 299 | #ifdef HEADER_X509V3_H | ||
| 300 | |||
| 301 | int CMS_get1_ReceiptRequest(CMS_SignerInfo *si, CMS_ReceiptRequest **prr); | ||
| 302 | CMS_ReceiptRequest *CMS_ReceiptRequest_create0(unsigned char *id, int idlen, | ||
| 303 | int allorfirst, | ||
| 304 | STACK_OF(GENERAL_NAMES) *receiptList, | ||
| 305 | STACK_OF(GENERAL_NAMES) *receiptsTo); | ||
| 306 | int CMS_add1_ReceiptRequest(CMS_SignerInfo *si, CMS_ReceiptRequest *rr); | ||
| 307 | void CMS_ReceiptRequest_get0_values(CMS_ReceiptRequest *rr, | ||
| 308 | ASN1_STRING **pcid, | ||
| 309 | int *pallorfirst, | ||
| 310 | STACK_OF(GENERAL_NAMES) **plist, | ||
| 311 | STACK_OF(GENERAL_NAMES) **prto); | ||
| 312 | |||
| 313 | #endif | ||
| 314 | |||
| 315 | /* BEGIN ERROR CODES */ | ||
| 316 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 317 | * made after this point may be overwritten when the script is next run. | ||
| 318 | */ | ||
| 319 | void ERR_load_CMS_strings(void); | ||
| 320 | |||
| 321 | /* Error codes for the CMS functions. */ | ||
| 322 | |||
| 323 | /* Function codes. */ | ||
| 324 | #define CMS_F_CHECK_CONTENT 99 | ||
| 325 | #define CMS_F_CMS_ADD0_CERT 164 | ||
| 326 | #define CMS_F_CMS_ADD0_RECIPIENT_KEY 100 | ||
| 327 | #define CMS_F_CMS_ADD1_RECEIPTREQUEST 158 | ||
| 328 | #define CMS_F_CMS_ADD1_RECIPIENT_CERT 101 | ||
| 329 | #define CMS_F_CMS_ADD1_SIGNER 102 | ||
| 330 | #define CMS_F_CMS_ADD1_SIGNINGTIME 103 | ||
| 331 | #define CMS_F_CMS_COMPRESS 104 | ||
| 332 | #define CMS_F_CMS_COMPRESSEDDATA_CREATE 105 | ||
| 333 | #define CMS_F_CMS_COMPRESSEDDATA_INIT_BIO 106 | ||
| 334 | #define CMS_F_CMS_COPY_CONTENT 107 | ||
| 335 | #define CMS_F_CMS_COPY_MESSAGEDIGEST 108 | ||
| 336 | #define CMS_F_CMS_DATA 109 | ||
| 337 | #define CMS_F_CMS_DATAFINAL 110 | ||
| 338 | #define CMS_F_CMS_DATAINIT 111 | ||
| 339 | #define CMS_F_CMS_DECRYPT 112 | ||
| 340 | #define CMS_F_CMS_DECRYPT_SET1_KEY 113 | ||
| 341 | #define CMS_F_CMS_DECRYPT_SET1_PKEY 114 | ||
| 342 | #define CMS_F_CMS_DIGESTALGORITHM_FIND_CTX 115 | ||
| 343 | #define CMS_F_CMS_DIGESTALGORITHM_INIT_BIO 116 | ||
| 344 | #define CMS_F_CMS_DIGESTEDDATA_DO_FINAL 117 | ||
| 345 | #define CMS_F_CMS_DIGEST_VERIFY 118 | ||
| 346 | #define CMS_F_CMS_ENCODE_RECEIPT 161 | ||
| 347 | #define CMS_F_CMS_ENCRYPT 119 | ||
| 348 | #define CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO 120 | ||
| 349 | #define CMS_F_CMS_ENCRYPTEDDATA_DECRYPT 121 | ||
| 350 | #define CMS_F_CMS_ENCRYPTEDDATA_ENCRYPT 122 | ||
| 351 | #define CMS_F_CMS_ENCRYPTEDDATA_SET1_KEY 123 | ||
| 352 | #define CMS_F_CMS_ENVELOPEDDATA_CREATE 124 | ||
| 353 | #define CMS_F_CMS_ENVELOPEDDATA_INIT_BIO 125 | ||
| 354 | #define CMS_F_CMS_ENVELOPED_DATA_INIT 126 | ||
| 355 | #define CMS_F_CMS_FINAL 127 | ||
| 356 | #define CMS_F_CMS_GET0_CERTIFICATE_CHOICES 128 | ||
| 357 | #define CMS_F_CMS_GET0_CONTENT 129 | ||
| 358 | #define CMS_F_CMS_GET0_ECONTENT_TYPE 130 | ||
| 359 | #define CMS_F_CMS_GET0_ENVELOPED 131 | ||
| 360 | #define CMS_F_CMS_GET0_REVOCATION_CHOICES 132 | ||
| 361 | #define CMS_F_CMS_GET0_SIGNED 133 | ||
| 362 | #define CMS_F_CMS_MSGSIGDIGEST_ADD1 162 | ||
| 363 | #define CMS_F_CMS_RECEIPTREQUEST_CREATE0 159 | ||
| 364 | #define CMS_F_CMS_RECEIPT_VERIFY 160 | ||
| 365 | #define CMS_F_CMS_RECIPIENTINFO_DECRYPT 134 | ||
| 366 | #define CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT 135 | ||
| 367 | #define CMS_F_CMS_RECIPIENTINFO_KEKRI_ENCRYPT 136 | ||
| 368 | #define CMS_F_CMS_RECIPIENTINFO_KEKRI_GET0_ID 137 | ||
| 369 | #define CMS_F_CMS_RECIPIENTINFO_KEKRI_ID_CMP 138 | ||
| 370 | #define CMS_F_CMS_RECIPIENTINFO_KTRI_CERT_CMP 139 | ||
| 371 | #define CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT 140 | ||
| 372 | #define CMS_F_CMS_RECIPIENTINFO_KTRI_ENCRYPT 141 | ||
| 373 | #define CMS_F_CMS_RECIPIENTINFO_KTRI_GET0_ALGS 142 | ||
| 374 | #define CMS_F_CMS_RECIPIENTINFO_KTRI_GET0_SIGNER_ID 143 | ||
| 375 | #define CMS_F_CMS_RECIPIENTINFO_SET0_KEY 144 | ||
| 376 | #define CMS_F_CMS_RECIPIENTINFO_SET0_PKEY 145 | ||
| 377 | #define CMS_F_CMS_SET1_SIGNERIDENTIFIER 146 | ||
| 378 | #define CMS_F_CMS_SET_DETACHED 147 | ||
| 379 | #define CMS_F_CMS_SIGN 148 | ||
| 380 | #define CMS_F_CMS_SIGNED_DATA_INIT 149 | ||
| 381 | #define CMS_F_CMS_SIGNERINFO_CONTENT_SIGN 150 | ||
| 382 | #define CMS_F_CMS_SIGNERINFO_SIGN 151 | ||
| 383 | #define CMS_F_CMS_SIGNERINFO_VERIFY 152 | ||
| 384 | #define CMS_F_CMS_SIGNERINFO_VERIFY_CERT 153 | ||
| 385 | #define CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT 154 | ||
| 386 | #define CMS_F_CMS_SIGN_RECEIPT 163 | ||
| 387 | #define CMS_F_CMS_STREAM 155 | ||
| 388 | #define CMS_F_CMS_UNCOMPRESS 156 | ||
| 389 | #define CMS_F_CMS_VERIFY 157 | ||
| 390 | |||
| 391 | /* Reason codes. */ | ||
| 392 | #define CMS_R_ADD_SIGNER_ERROR 99 | ||
| 393 | #define CMS_R_CERTIFICATE_ALREADY_PRESENT 175 | ||
| 394 | #define CMS_R_CERTIFICATE_HAS_NO_KEYID 160 | ||
| 395 | #define CMS_R_CERTIFICATE_VERIFY_ERROR 100 | ||
| 396 | #define CMS_R_CIPHER_INITIALISATION_ERROR 101 | ||
| 397 | #define CMS_R_CIPHER_PARAMETER_INITIALISATION_ERROR 102 | ||
| 398 | #define CMS_R_CMS_DATAFINAL_ERROR 103 | ||
| 399 | #define CMS_R_CMS_LIB 104 | ||
| 400 | #define CMS_R_CONTENTIDENTIFIER_MISMATCH 170 | ||
| 401 | #define CMS_R_CONTENT_NOT_FOUND 105 | ||
| 402 | #define CMS_R_CONTENT_TYPE_MISMATCH 171 | ||
| 403 | #define CMS_R_CONTENT_TYPE_NOT_COMPRESSED_DATA 106 | ||
| 404 | #define CMS_R_CONTENT_TYPE_NOT_ENVELOPED_DATA 107 | ||
| 405 | #define CMS_R_CONTENT_TYPE_NOT_SIGNED_DATA 108 | ||
| 406 | #define CMS_R_CONTENT_VERIFY_ERROR 109 | ||
| 407 | #define CMS_R_CTRL_ERROR 110 | ||
| 408 | #define CMS_R_CTRL_FAILURE 111 | ||
| 409 | #define CMS_R_DECRYPT_ERROR 112 | ||
| 410 | #define CMS_R_DIGEST_ERROR 161 | ||
| 411 | #define CMS_R_ERROR_GETTING_PUBLIC_KEY 113 | ||
| 412 | #define CMS_R_ERROR_READING_MESSAGEDIGEST_ATTRIBUTE 114 | ||
| 413 | #define CMS_R_ERROR_SETTING_KEY 115 | ||
| 414 | #define CMS_R_ERROR_SETTING_RECIPIENTINFO 116 | ||
| 415 | #define CMS_R_INVALID_ENCRYPTED_KEY_LENGTH 117 | ||
| 416 | #define CMS_R_INVALID_KEY_LENGTH 118 | ||
| 417 | #define CMS_R_MD_BIO_INIT_ERROR 119 | ||
| 418 | #define CMS_R_MESSAGEDIGEST_ATTRIBUTE_WRONG_LENGTH 120 | ||
| 419 | #define CMS_R_MESSAGEDIGEST_WRONG_LENGTH 121 | ||
| 420 | #define CMS_R_MSGSIGDIGEST_ERROR 172 | ||
| 421 | #define CMS_R_MSGSIGDIGEST_VERIFICATION_FAILURE 162 | ||
| 422 | #define CMS_R_MSGSIGDIGEST_WRONG_LENGTH 163 | ||
| 423 | #define CMS_R_NEED_ONE_SIGNER 164 | ||
| 424 | #define CMS_R_NOT_A_SIGNED_RECEIPT 165 | ||
| 425 | #define CMS_R_NOT_ENCRYPTED_DATA 122 | ||
| 426 | #define CMS_R_NOT_KEK 123 | ||
| 427 | #define CMS_R_NOT_KEY_TRANSPORT 124 | ||
| 428 | #define CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE 125 | ||
| 429 | #define CMS_R_NO_CIPHER 126 | ||
| 430 | #define CMS_R_NO_CONTENT 127 | ||
| 431 | #define CMS_R_NO_CONTENT_TYPE 173 | ||
| 432 | #define CMS_R_NO_DEFAULT_DIGEST 128 | ||
| 433 | #define CMS_R_NO_DIGEST_SET 129 | ||
| 434 | #define CMS_R_NO_KEY 130 | ||
| 435 | #define CMS_R_NO_KEY_OR_CERT 174 | ||
| 436 | #define CMS_R_NO_MATCHING_DIGEST 131 | ||
| 437 | #define CMS_R_NO_MATCHING_RECIPIENT 132 | ||
| 438 | #define CMS_R_NO_MATCHING_SIGNATURE 166 | ||
| 439 | #define CMS_R_NO_MSGSIGDIGEST 167 | ||
| 440 | #define CMS_R_NO_PRIVATE_KEY 133 | ||
| 441 | #define CMS_R_NO_PUBLIC_KEY 134 | ||
| 442 | #define CMS_R_NO_RECEIPT_REQUEST 168 | ||
| 443 | #define CMS_R_NO_SIGNERS 135 | ||
| 444 | #define CMS_R_PRIVATE_KEY_DOES_NOT_MATCH_CERTIFICATE 136 | ||
| 445 | #define CMS_R_RECEIPT_DECODE_ERROR 169 | ||
| 446 | #define CMS_R_RECIPIENT_ERROR 137 | ||
| 447 | #define CMS_R_SIGNER_CERTIFICATE_NOT_FOUND 138 | ||
| 448 | #define CMS_R_SIGNFINAL_ERROR 139 | ||
| 449 | #define CMS_R_SMIME_TEXT_ERROR 140 | ||
| 450 | #define CMS_R_STORE_INIT_ERROR 141 | ||
| 451 | #define CMS_R_TYPE_NOT_COMPRESSED_DATA 142 | ||
| 452 | #define CMS_R_TYPE_NOT_DATA 143 | ||
| 453 | #define CMS_R_TYPE_NOT_DIGESTED_DATA 144 | ||
| 454 | #define CMS_R_TYPE_NOT_ENCRYPTED_DATA 145 | ||
| 455 | #define CMS_R_TYPE_NOT_ENVELOPED_DATA 146 | ||
| 456 | #define CMS_R_UNABLE_TO_FINALIZE_CONTEXT 147 | ||
| 457 | #define CMS_R_UNKNOWN_CIPHER 148 | ||
| 458 | #define CMS_R_UNKNOWN_DIGEST_ALGORIHM 149 | ||
| 459 | #define CMS_R_UNKNOWN_ID 150 | ||
| 460 | #define CMS_R_UNSUPPORTED_COMPRESSION_ALGORITHM 151 | ||
| 461 | #define CMS_R_UNSUPPORTED_CONTENT_TYPE 152 | ||
| 462 | #define CMS_R_UNSUPPORTED_KEK_ALGORITHM 153 | ||
| 463 | #define CMS_R_UNSUPPORTED_RECIPIENT_TYPE 154 | ||
| 464 | #define CMS_R_UNSUPPORTED_RECPIENTINFO_TYPE 155 | ||
| 465 | #define CMS_R_UNSUPPORTED_TYPE 156 | ||
| 466 | #define CMS_R_UNWRAP_ERROR 157 | ||
| 467 | #define CMS_R_VERIFICATION_FAILURE 158 | ||
| 468 | #define CMS_R_WRAP_ERROR 159 | ||
| 469 | |||
| 470 | #ifdef __cplusplus | ||
| 471 | } | ||
| 472 | #endif | ||
| 473 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_asn1.c b/src/lib/libssl/src/crypto/cms/cms_asn1.c new file mode 100644 index 0000000000..7664921861 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_asn1.c | |||
| @@ -0,0 +1,346 @@ | |||
| 1 | /* crypto/cms/cms_asn1.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include <openssl/asn1t.h> | ||
| 55 | #include <openssl/pem.h> | ||
| 56 | #include <openssl/x509v3.h> | ||
| 57 | #include "cms.h" | ||
| 58 | #include "cms_lcl.h" | ||
| 59 | |||
| 60 | |||
| 61 | ASN1_SEQUENCE(CMS_IssuerAndSerialNumber) = { | ||
| 62 | ASN1_SIMPLE(CMS_IssuerAndSerialNumber, issuer, X509_NAME), | ||
| 63 | ASN1_SIMPLE(CMS_IssuerAndSerialNumber, serialNumber, ASN1_INTEGER) | ||
| 64 | } ASN1_SEQUENCE_END(CMS_IssuerAndSerialNumber) | ||
| 65 | |||
| 66 | ASN1_SEQUENCE(CMS_OtherCertificateFormat) = { | ||
| 67 | ASN1_SIMPLE(CMS_OtherCertificateFormat, otherCertFormat, ASN1_OBJECT), | ||
| 68 | ASN1_OPT(CMS_OtherCertificateFormat, otherCert, ASN1_ANY) | ||
| 69 | } ASN1_SEQUENCE_END(CMS_OtherCertificateFormat) | ||
| 70 | |||
| 71 | ASN1_CHOICE(CMS_CertificateChoices) = { | ||
| 72 | ASN1_SIMPLE(CMS_CertificateChoices, d.certificate, X509), | ||
| 73 | ASN1_IMP(CMS_CertificateChoices, d.extendedCertificate, ASN1_SEQUENCE, 0), | ||
| 74 | ASN1_IMP(CMS_CertificateChoices, d.v1AttrCert, ASN1_SEQUENCE, 1), | ||
| 75 | ASN1_IMP(CMS_CertificateChoices, d.v2AttrCert, ASN1_SEQUENCE, 2), | ||
| 76 | ASN1_IMP(CMS_CertificateChoices, d.other, CMS_OtherCertificateFormat, 3) | ||
| 77 | } ASN1_CHOICE_END(CMS_CertificateChoices) | ||
| 78 | |||
| 79 | ASN1_CHOICE(CMS_SignerIdentifier) = { | ||
| 80 | ASN1_SIMPLE(CMS_SignerIdentifier, d.issuerAndSerialNumber, CMS_IssuerAndSerialNumber), | ||
| 81 | ASN1_IMP(CMS_SignerIdentifier, d.subjectKeyIdentifier, ASN1_OCTET_STRING, 0) | ||
| 82 | } ASN1_CHOICE_END(CMS_SignerIdentifier) | ||
| 83 | |||
| 84 | ASN1_NDEF_SEQUENCE(CMS_EncapsulatedContentInfo) = { | ||
| 85 | ASN1_SIMPLE(CMS_EncapsulatedContentInfo, eContentType, ASN1_OBJECT), | ||
| 86 | ASN1_NDEF_EXP_OPT(CMS_EncapsulatedContentInfo, eContent, ASN1_OCTET_STRING_NDEF, 0) | ||
| 87 | } ASN1_NDEF_SEQUENCE_END(CMS_EncapsulatedContentInfo) | ||
| 88 | |||
| 89 | /* Minor tweak to operation: free up signer key, cert */ | ||
| 90 | static int cms_si_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it) | ||
| 91 | { | ||
| 92 | if(operation == ASN1_OP_FREE_POST) | ||
| 93 | { | ||
| 94 | CMS_SignerInfo *si = (CMS_SignerInfo *)*pval; | ||
| 95 | if (si->pkey) | ||
| 96 | EVP_PKEY_free(si->pkey); | ||
| 97 | if (si->signer) | ||
| 98 | X509_free(si->signer); | ||
| 99 | } | ||
| 100 | return 1; | ||
| 101 | } | ||
| 102 | |||
| 103 | ASN1_SEQUENCE_cb(CMS_SignerInfo, cms_si_cb) = { | ||
| 104 | ASN1_SIMPLE(CMS_SignerInfo, version, LONG), | ||
| 105 | ASN1_SIMPLE(CMS_SignerInfo, sid, CMS_SignerIdentifier), | ||
| 106 | ASN1_SIMPLE(CMS_SignerInfo, digestAlgorithm, X509_ALGOR), | ||
| 107 | ASN1_IMP_SET_OF_OPT(CMS_SignerInfo, signedAttrs, X509_ATTRIBUTE, 0), | ||
| 108 | ASN1_SIMPLE(CMS_SignerInfo, signatureAlgorithm, X509_ALGOR), | ||
| 109 | ASN1_SIMPLE(CMS_SignerInfo, signature, ASN1_OCTET_STRING), | ||
| 110 | ASN1_IMP_SET_OF_OPT(CMS_SignerInfo, unsignedAttrs, X509_ATTRIBUTE, 1) | ||
| 111 | } ASN1_SEQUENCE_END_cb(CMS_SignerInfo, CMS_SignerInfo) | ||
| 112 | |||
| 113 | ASN1_SEQUENCE(CMS_OtherRevocationInfoFormat) = { | ||
| 114 | ASN1_SIMPLE(CMS_OtherRevocationInfoFormat, otherRevInfoFormat, ASN1_OBJECT), | ||
| 115 | ASN1_OPT(CMS_OtherRevocationInfoFormat, otherRevInfo, ASN1_ANY) | ||
| 116 | } ASN1_SEQUENCE_END(CMS_OtherRevocationInfoFormat) | ||
| 117 | |||
| 118 | ASN1_CHOICE(CMS_RevocationInfoChoice) = { | ||
| 119 | ASN1_SIMPLE(CMS_RevocationInfoChoice, d.crl, X509_CRL), | ||
| 120 | ASN1_IMP(CMS_RevocationInfoChoice, d.other, CMS_OtherRevocationInfoFormat, 1) | ||
| 121 | } ASN1_CHOICE_END(CMS_RevocationInfoChoice) | ||
| 122 | |||
| 123 | ASN1_NDEF_SEQUENCE(CMS_SignedData) = { | ||
| 124 | ASN1_SIMPLE(CMS_SignedData, version, LONG), | ||
| 125 | ASN1_SET_OF(CMS_SignedData, digestAlgorithms, X509_ALGOR), | ||
| 126 | ASN1_SIMPLE(CMS_SignedData, encapContentInfo, CMS_EncapsulatedContentInfo), | ||
| 127 | ASN1_IMP_SET_OF_OPT(CMS_SignedData, certificates, CMS_CertificateChoices, 0), | ||
| 128 | ASN1_IMP_SET_OF_OPT(CMS_SignedData, crls, CMS_RevocationInfoChoice, 1), | ||
| 129 | ASN1_SET_OF(CMS_SignedData, signerInfos, CMS_SignerInfo) | ||
| 130 | } ASN1_NDEF_SEQUENCE_END(CMS_SignedData) | ||
| 131 | |||
| 132 | ASN1_SEQUENCE(CMS_OriginatorInfo) = { | ||
| 133 | ASN1_IMP_SET_OF_OPT(CMS_SignedData, certificates, CMS_CertificateChoices, 0), | ||
| 134 | ASN1_IMP_SET_OF_OPT(CMS_SignedData, crls, CMS_RevocationInfoChoice, 1) | ||
| 135 | } ASN1_SEQUENCE_END(CMS_OriginatorInfo) | ||
| 136 | |||
| 137 | ASN1_NDEF_SEQUENCE(CMS_EncryptedContentInfo) = { | ||
| 138 | ASN1_SIMPLE(CMS_EncryptedContentInfo, contentType, ASN1_OBJECT), | ||
| 139 | ASN1_SIMPLE(CMS_EncryptedContentInfo, contentEncryptionAlgorithm, X509_ALGOR), | ||
| 140 | ASN1_IMP_OPT(CMS_EncryptedContentInfo, encryptedContent, ASN1_OCTET_STRING_NDEF, 0) | ||
| 141 | } ASN1_NDEF_SEQUENCE_END(CMS_EncryptedContentInfo) | ||
| 142 | |||
| 143 | ASN1_SEQUENCE(CMS_KeyTransRecipientInfo) = { | ||
| 144 | ASN1_SIMPLE(CMS_KeyTransRecipientInfo, version, LONG), | ||
| 145 | ASN1_SIMPLE(CMS_KeyTransRecipientInfo, rid, CMS_SignerIdentifier), | ||
| 146 | ASN1_SIMPLE(CMS_KeyTransRecipientInfo, keyEncryptionAlgorithm, X509_ALGOR), | ||
| 147 | ASN1_SIMPLE(CMS_KeyTransRecipientInfo, encryptedKey, ASN1_OCTET_STRING) | ||
| 148 | } ASN1_SEQUENCE_END(CMS_KeyTransRecipientInfo) | ||
| 149 | |||
| 150 | ASN1_SEQUENCE(CMS_OtherKeyAttribute) = { | ||
| 151 | ASN1_SIMPLE(CMS_OtherKeyAttribute, keyAttrId, ASN1_OBJECT), | ||
| 152 | ASN1_OPT(CMS_OtherKeyAttribute, keyAttr, ASN1_ANY) | ||
| 153 | } ASN1_SEQUENCE_END(CMS_OtherKeyAttribute) | ||
| 154 | |||
| 155 | ASN1_SEQUENCE(CMS_RecipientKeyIdentifier) = { | ||
| 156 | ASN1_SIMPLE(CMS_RecipientKeyIdentifier, subjectKeyIdentifier, ASN1_OCTET_STRING), | ||
| 157 | ASN1_OPT(CMS_RecipientKeyIdentifier, date, ASN1_GENERALIZEDTIME), | ||
| 158 | ASN1_OPT(CMS_RecipientKeyIdentifier, other, CMS_OtherKeyAttribute) | ||
| 159 | } ASN1_SEQUENCE_END(CMS_RecipientKeyIdentifier) | ||
| 160 | |||
| 161 | ASN1_CHOICE(CMS_KeyAgreeRecipientIdentifier) = { | ||
| 162 | ASN1_SIMPLE(CMS_KeyAgreeRecipientIdentifier, d.issuerAndSerialNumber, CMS_IssuerAndSerialNumber), | ||
| 163 | ASN1_IMP(CMS_KeyAgreeRecipientIdentifier, d.rKeyId, CMS_RecipientKeyIdentifier, 0) | ||
| 164 | } ASN1_CHOICE_END(CMS_KeyAgreeRecipientIdentifier) | ||
| 165 | |||
| 166 | ASN1_SEQUENCE(CMS_RecipientEncryptedKey) = { | ||
| 167 | ASN1_SIMPLE(CMS_RecipientEncryptedKey, rid, CMS_KeyAgreeRecipientIdentifier), | ||
| 168 | ASN1_SIMPLE(CMS_RecipientEncryptedKey, encryptedKey, ASN1_OCTET_STRING) | ||
| 169 | } ASN1_SEQUENCE_END(CMS_RecipientEncryptedKey) | ||
| 170 | |||
| 171 | ASN1_SEQUENCE(CMS_OriginatorPublicKey) = { | ||
| 172 | ASN1_SIMPLE(CMS_OriginatorPublicKey, algorithm, X509_ALGOR), | ||
| 173 | ASN1_SIMPLE(CMS_OriginatorPublicKey, publicKey, ASN1_BIT_STRING) | ||
| 174 | } ASN1_SEQUENCE_END(CMS_OriginatorPublicKey) | ||
| 175 | |||
| 176 | ASN1_CHOICE(CMS_OriginatorIdentifierOrKey) = { | ||
| 177 | ASN1_SIMPLE(CMS_OriginatorIdentifierOrKey, d.issuerAndSerialNumber, CMS_IssuerAndSerialNumber), | ||
| 178 | ASN1_IMP(CMS_OriginatorIdentifierOrKey, d.subjectKeyIdentifier, ASN1_OCTET_STRING, 0), | ||
| 179 | ASN1_IMP(CMS_OriginatorIdentifierOrKey, d.originatorKey, CMS_OriginatorPublicKey, 1) | ||
| 180 | } ASN1_CHOICE_END(CMS_OriginatorIdentifierOrKey) | ||
| 181 | |||
| 182 | ASN1_SEQUENCE(CMS_KeyAgreeRecipientInfo) = { | ||
| 183 | ASN1_SIMPLE(CMS_KeyAgreeRecipientInfo, version, LONG), | ||
| 184 | ASN1_EXP(CMS_KeyAgreeRecipientInfo, originator, CMS_OriginatorIdentifierOrKey, 0), | ||
| 185 | ASN1_EXP_OPT(CMS_KeyAgreeRecipientInfo, ukm, ASN1_OCTET_STRING, 1), | ||
| 186 | ASN1_SIMPLE(CMS_KeyAgreeRecipientInfo, keyEncryptionAlgorithm, X509_ALGOR), | ||
| 187 | ASN1_SEQUENCE_OF(CMS_KeyAgreeRecipientInfo, recipientEncryptedKeys, CMS_RecipientEncryptedKey) | ||
| 188 | } ASN1_SEQUENCE_END(CMS_KeyAgreeRecipientInfo) | ||
| 189 | |||
| 190 | ASN1_SEQUENCE(CMS_KEKIdentifier) = { | ||
| 191 | ASN1_SIMPLE(CMS_KEKIdentifier, keyIdentifier, ASN1_OCTET_STRING), | ||
| 192 | ASN1_OPT(CMS_KEKIdentifier, date, ASN1_GENERALIZEDTIME), | ||
| 193 | ASN1_OPT(CMS_KEKIdentifier, other, CMS_OtherKeyAttribute) | ||
| 194 | } ASN1_SEQUENCE_END(CMS_KEKIdentifier) | ||
| 195 | |||
| 196 | ASN1_SEQUENCE(CMS_KEKRecipientInfo) = { | ||
| 197 | ASN1_SIMPLE(CMS_KEKRecipientInfo, version, LONG), | ||
| 198 | ASN1_SIMPLE(CMS_KEKRecipientInfo, kekid, CMS_KEKIdentifier), | ||
| 199 | ASN1_SIMPLE(CMS_KEKRecipientInfo, keyEncryptionAlgorithm, X509_ALGOR), | ||
| 200 | ASN1_SIMPLE(CMS_KEKRecipientInfo, encryptedKey, ASN1_OCTET_STRING) | ||
| 201 | } ASN1_SEQUENCE_END(CMS_KEKRecipientInfo) | ||
| 202 | |||
| 203 | ASN1_SEQUENCE(CMS_PasswordRecipientInfo) = { | ||
| 204 | ASN1_SIMPLE(CMS_PasswordRecipientInfo, version, LONG), | ||
| 205 | ASN1_IMP_OPT(CMS_PasswordRecipientInfo, keyDerivationAlgorithm, X509_ALGOR, 0), | ||
| 206 | ASN1_SIMPLE(CMS_PasswordRecipientInfo, keyEncryptionAlgorithm, X509_ALGOR), | ||
| 207 | ASN1_SIMPLE(CMS_PasswordRecipientInfo, encryptedKey, ASN1_OCTET_STRING) | ||
| 208 | } ASN1_SEQUENCE_END(CMS_PasswordRecipientInfo) | ||
| 209 | |||
| 210 | ASN1_SEQUENCE(CMS_OtherRecipientInfo) = { | ||
| 211 | ASN1_SIMPLE(CMS_OtherRecipientInfo, oriType, ASN1_OBJECT), | ||
| 212 | ASN1_OPT(CMS_OtherRecipientInfo, oriValue, ASN1_ANY) | ||
| 213 | } ASN1_SEQUENCE_END(CMS_OtherRecipientInfo) | ||
| 214 | |||
| 215 | /* Free up RecipientInfo additional data */ | ||
| 216 | static int cms_ri_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it) | ||
| 217 | { | ||
| 218 | if(operation == ASN1_OP_FREE_PRE) | ||
| 219 | { | ||
| 220 | CMS_RecipientInfo *ri = (CMS_RecipientInfo *)*pval; | ||
| 221 | if (ri->type == CMS_RECIPINFO_TRANS) | ||
| 222 | { | ||
| 223 | CMS_KeyTransRecipientInfo *ktri = ri->d.ktri; | ||
| 224 | if (ktri->pkey) | ||
| 225 | EVP_PKEY_free(ktri->pkey); | ||
| 226 | if (ktri->recip) | ||
| 227 | X509_free(ktri->recip); | ||
| 228 | } | ||
| 229 | else if (ri->type == CMS_RECIPINFO_KEK) | ||
| 230 | { | ||
| 231 | CMS_KEKRecipientInfo *kekri = ri->d.kekri; | ||
| 232 | if (kekri->key) | ||
| 233 | { | ||
| 234 | OPENSSL_cleanse(kekri->key, kekri->keylen); | ||
| 235 | OPENSSL_free(kekri->key); | ||
| 236 | } | ||
| 237 | } | ||
| 238 | } | ||
| 239 | return 1; | ||
| 240 | } | ||
| 241 | |||
| 242 | ASN1_CHOICE_cb(CMS_RecipientInfo, cms_ri_cb) = { | ||
| 243 | ASN1_SIMPLE(CMS_RecipientInfo, d.ktri, CMS_KeyTransRecipientInfo), | ||
| 244 | ASN1_IMP(CMS_RecipientInfo, d.kari, CMS_KeyAgreeRecipientInfo, 1), | ||
| 245 | ASN1_IMP(CMS_RecipientInfo, d.kekri, CMS_KEKRecipientInfo, 2), | ||
| 246 | ASN1_IMP(CMS_RecipientInfo, d.pwri, CMS_PasswordRecipientInfo, 3), | ||
| 247 | ASN1_IMP(CMS_RecipientInfo, d.ori, CMS_OtherRecipientInfo, 4) | ||
| 248 | } ASN1_CHOICE_END_cb(CMS_RecipientInfo, CMS_RecipientInfo, type) | ||
| 249 | |||
| 250 | ASN1_NDEF_SEQUENCE(CMS_EnvelopedData) = { | ||
| 251 | ASN1_SIMPLE(CMS_EnvelopedData, version, LONG), | ||
| 252 | ASN1_IMP_OPT(CMS_EnvelopedData, originatorInfo, CMS_OriginatorInfo, 0), | ||
| 253 | ASN1_SET_OF(CMS_EnvelopedData, recipientInfos, CMS_RecipientInfo), | ||
| 254 | ASN1_SIMPLE(CMS_EnvelopedData, encryptedContentInfo, CMS_EncryptedContentInfo), | ||
| 255 | ASN1_IMP_SET_OF_OPT(CMS_EnvelopedData, unprotectedAttrs, X509_ATTRIBUTE, 1) | ||
| 256 | } ASN1_NDEF_SEQUENCE_END(CMS_EnvelopedData) | ||
| 257 | |||
| 258 | ASN1_NDEF_SEQUENCE(CMS_DigestedData) = { | ||
| 259 | ASN1_SIMPLE(CMS_DigestedData, version, LONG), | ||
| 260 | ASN1_SIMPLE(CMS_DigestedData, digestAlgorithm, X509_ALGOR), | ||
| 261 | ASN1_SIMPLE(CMS_DigestedData, encapContentInfo, CMS_EncapsulatedContentInfo), | ||
| 262 | ASN1_SIMPLE(CMS_DigestedData, digest, ASN1_OCTET_STRING) | ||
| 263 | } ASN1_NDEF_SEQUENCE_END(CMS_DigestedData) | ||
| 264 | |||
| 265 | ASN1_NDEF_SEQUENCE(CMS_EncryptedData) = { | ||
| 266 | ASN1_SIMPLE(CMS_EncryptedData, version, LONG), | ||
| 267 | ASN1_SIMPLE(CMS_EncryptedData, encryptedContentInfo, CMS_EncryptedContentInfo), | ||
| 268 | ASN1_IMP_SET_OF_OPT(CMS_EncryptedData, unprotectedAttrs, X509_ATTRIBUTE, 1) | ||
| 269 | } ASN1_NDEF_SEQUENCE_END(CMS_EncryptedData) | ||
| 270 | |||
| 271 | ASN1_NDEF_SEQUENCE(CMS_AuthenticatedData) = { | ||
| 272 | ASN1_SIMPLE(CMS_AuthenticatedData, version, LONG), | ||
| 273 | ASN1_IMP_OPT(CMS_AuthenticatedData, originatorInfo, CMS_OriginatorInfo, 0), | ||
| 274 | ASN1_SET_OF(CMS_AuthenticatedData, recipientInfos, CMS_RecipientInfo), | ||
| 275 | ASN1_SIMPLE(CMS_AuthenticatedData, macAlgorithm, X509_ALGOR), | ||
| 276 | ASN1_IMP(CMS_AuthenticatedData, digestAlgorithm, X509_ALGOR, 1), | ||
| 277 | ASN1_SIMPLE(CMS_AuthenticatedData, encapContentInfo, CMS_EncapsulatedContentInfo), | ||
| 278 | ASN1_IMP_SET_OF_OPT(CMS_AuthenticatedData, authAttrs, X509_ALGOR, 2), | ||
| 279 | ASN1_SIMPLE(CMS_AuthenticatedData, mac, ASN1_OCTET_STRING), | ||
| 280 | ASN1_IMP_SET_OF_OPT(CMS_AuthenticatedData, unauthAttrs, X509_ALGOR, 3) | ||
| 281 | } ASN1_NDEF_SEQUENCE_END(CMS_AuthenticatedData) | ||
| 282 | |||
| 283 | ASN1_NDEF_SEQUENCE(CMS_CompressedData) = { | ||
| 284 | ASN1_SIMPLE(CMS_CompressedData, version, LONG), | ||
| 285 | ASN1_SIMPLE(CMS_CompressedData, compressionAlgorithm, X509_ALGOR), | ||
| 286 | ASN1_SIMPLE(CMS_CompressedData, encapContentInfo, CMS_EncapsulatedContentInfo), | ||
| 287 | } ASN1_NDEF_SEQUENCE_END(CMS_CompressedData) | ||
| 288 | |||
| 289 | /* This is the ANY DEFINED BY table for the top level ContentInfo structure */ | ||
| 290 | |||
| 291 | ASN1_ADB_TEMPLATE(cms_default) = ASN1_EXP(CMS_ContentInfo, d.other, ASN1_ANY, 0); | ||
| 292 | |||
| 293 | ASN1_ADB(CMS_ContentInfo) = { | ||
| 294 | ADB_ENTRY(NID_pkcs7_data, ASN1_NDEF_EXP(CMS_ContentInfo, d.data, ASN1_OCTET_STRING_NDEF, 0)), | ||
| 295 | ADB_ENTRY(NID_pkcs7_signed, ASN1_NDEF_EXP(CMS_ContentInfo, d.signedData, CMS_SignedData, 0)), | ||
| 296 | ADB_ENTRY(NID_pkcs7_enveloped, ASN1_NDEF_EXP(CMS_ContentInfo, d.envelopedData, CMS_EnvelopedData, 0)), | ||
| 297 | ADB_ENTRY(NID_pkcs7_digest, ASN1_NDEF_EXP(CMS_ContentInfo, d.digestedData, CMS_DigestedData, 0)), | ||
| 298 | ADB_ENTRY(NID_pkcs7_encrypted, ASN1_NDEF_EXP(CMS_ContentInfo, d.encryptedData, CMS_EncryptedData, 0)), | ||
| 299 | ADB_ENTRY(NID_id_smime_ct_authData, ASN1_NDEF_EXP(CMS_ContentInfo, d.authenticatedData, CMS_AuthenticatedData, 0)), | ||
| 300 | ADB_ENTRY(NID_id_smime_ct_compressedData, ASN1_NDEF_EXP(CMS_ContentInfo, d.compressedData, CMS_CompressedData, 0)), | ||
| 301 | } ASN1_ADB_END(CMS_ContentInfo, 0, contentType, 0, &cms_default_tt, NULL); | ||
| 302 | |||
| 303 | ASN1_NDEF_SEQUENCE(CMS_ContentInfo) = { | ||
| 304 | ASN1_SIMPLE(CMS_ContentInfo, contentType, ASN1_OBJECT), | ||
| 305 | ASN1_ADB_OBJECT(CMS_ContentInfo) | ||
| 306 | } ASN1_NDEF_SEQUENCE_END(CMS_ContentInfo) | ||
| 307 | |||
| 308 | /* Specials for signed attributes */ | ||
| 309 | |||
| 310 | /* When signing attributes we want to reorder them to match the sorted | ||
| 311 | * encoding. | ||
| 312 | */ | ||
| 313 | |||
| 314 | ASN1_ITEM_TEMPLATE(CMS_Attributes_Sign) = | ||
| 315 | ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SET_ORDER, 0, CMS_ATTRIBUTES, X509_ATTRIBUTE) | ||
| 316 | ASN1_ITEM_TEMPLATE_END(CMS_Attributes_Sign) | ||
| 317 | |||
| 318 | /* When verifying attributes we need to use the received order. So | ||
| 319 | * we use SEQUENCE OF and tag it to SET OF | ||
| 320 | */ | ||
| 321 | |||
| 322 | ASN1_ITEM_TEMPLATE(CMS_Attributes_Verify) = | ||
| 323 | ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_IMPTAG | ASN1_TFLG_UNIVERSAL, | ||
| 324 | V_ASN1_SET, CMS_ATTRIBUTES, X509_ATTRIBUTE) | ||
| 325 | ASN1_ITEM_TEMPLATE_END(CMS_Attributes_Verify) | ||
| 326 | |||
| 327 | |||
| 328 | |||
| 329 | ASN1_CHOICE(CMS_ReceiptsFrom) = { | ||
| 330 | ASN1_IMP(CMS_ReceiptsFrom, d.allOrFirstTier, LONG, 0), | ||
| 331 | ASN1_IMP_SEQUENCE_OF(CMS_ReceiptsFrom, d.receiptList, GENERAL_NAMES, 1) | ||
| 332 | } ASN1_CHOICE_END(CMS_ReceiptsFrom) | ||
| 333 | |||
| 334 | ASN1_SEQUENCE(CMS_ReceiptRequest) = { | ||
| 335 | ASN1_SIMPLE(CMS_ReceiptRequest, signedContentIdentifier, ASN1_OCTET_STRING), | ||
| 336 | ASN1_SIMPLE(CMS_ReceiptRequest, receiptsFrom, CMS_ReceiptsFrom), | ||
| 337 | ASN1_SEQUENCE_OF(CMS_ReceiptRequest, receiptsTo, GENERAL_NAMES) | ||
| 338 | } ASN1_SEQUENCE_END(CMS_ReceiptRequest) | ||
| 339 | |||
| 340 | ASN1_SEQUENCE(CMS_Receipt) = { | ||
| 341 | ASN1_SIMPLE(CMS_Receipt, version, LONG), | ||
| 342 | ASN1_SIMPLE(CMS_Receipt, contentType, ASN1_OBJECT), | ||
| 343 | ASN1_SIMPLE(CMS_Receipt, signedContentIdentifier, ASN1_OCTET_STRING), | ||
| 344 | ASN1_SIMPLE(CMS_Receipt, originatorSignatureValue, ASN1_OCTET_STRING) | ||
| 345 | } ASN1_SEQUENCE_END(CMS_Receipt) | ||
| 346 | |||
diff --git a/src/lib/libssl/src/crypto/cms/cms_att.c b/src/lib/libssl/src/crypto/cms/cms_att.c new file mode 100644 index 0000000000..5b71722ebc --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_att.c | |||
| @@ -0,0 +1,195 @@ | |||
| 1 | /* crypto/cms/cms_att.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include <openssl/asn1t.h> | ||
| 55 | #include <openssl/pem.h> | ||
| 56 | #include <openssl/x509v3.h> | ||
| 57 | #include <openssl/err.h> | ||
| 58 | #include "cms.h" | ||
| 59 | #include "cms_lcl.h" | ||
| 60 | |||
| 61 | /* CMS SignedData Attribute utilities */ | ||
| 62 | |||
| 63 | int CMS_signed_get_attr_count(const CMS_SignerInfo *si) | ||
| 64 | { | ||
| 65 | return X509at_get_attr_count(si->signedAttrs); | ||
| 66 | } | ||
| 67 | |||
| 68 | int CMS_signed_get_attr_by_NID(const CMS_SignerInfo *si, int nid, | ||
| 69 | int lastpos) | ||
| 70 | { | ||
| 71 | return X509at_get_attr_by_NID(si->signedAttrs, nid, lastpos); | ||
| 72 | } | ||
| 73 | |||
| 74 | int CMS_signed_get_attr_by_OBJ(const CMS_SignerInfo *si, ASN1_OBJECT *obj, | ||
| 75 | int lastpos) | ||
| 76 | { | ||
| 77 | return X509at_get_attr_by_OBJ(si->signedAttrs, obj, lastpos); | ||
| 78 | } | ||
| 79 | |||
| 80 | X509_ATTRIBUTE *CMS_signed_get_attr(const CMS_SignerInfo *si, int loc) | ||
| 81 | { | ||
| 82 | return X509at_get_attr(si->signedAttrs, loc); | ||
| 83 | } | ||
| 84 | |||
| 85 | X509_ATTRIBUTE *CMS_signed_delete_attr(CMS_SignerInfo *si, int loc) | ||
| 86 | { | ||
| 87 | return X509at_delete_attr(si->signedAttrs, loc); | ||
| 88 | } | ||
| 89 | |||
| 90 | int CMS_signed_add1_attr(CMS_SignerInfo *si, X509_ATTRIBUTE *attr) | ||
| 91 | { | ||
| 92 | if(X509at_add1_attr(&si->signedAttrs, attr)) return 1; | ||
| 93 | return 0; | ||
| 94 | } | ||
| 95 | |||
| 96 | int CMS_signed_add1_attr_by_OBJ(CMS_SignerInfo *si, | ||
| 97 | const ASN1_OBJECT *obj, int type, | ||
| 98 | const void *bytes, int len) | ||
| 99 | { | ||
| 100 | if(X509at_add1_attr_by_OBJ(&si->signedAttrs, obj, | ||
| 101 | type, bytes, len)) return 1; | ||
| 102 | return 0; | ||
| 103 | } | ||
| 104 | |||
| 105 | int CMS_signed_add1_attr_by_NID(CMS_SignerInfo *si, | ||
| 106 | int nid, int type, | ||
| 107 | const void *bytes, int len) | ||
| 108 | { | ||
| 109 | if(X509at_add1_attr_by_NID(&si->signedAttrs, nid, | ||
| 110 | type, bytes, len)) return 1; | ||
| 111 | return 0; | ||
| 112 | } | ||
| 113 | |||
| 114 | int CMS_signed_add1_attr_by_txt(CMS_SignerInfo *si, | ||
| 115 | const char *attrname, int type, | ||
| 116 | const void *bytes, int len) | ||
| 117 | { | ||
| 118 | if(X509at_add1_attr_by_txt(&si->signedAttrs, attrname, | ||
| 119 | type, bytes, len)) return 1; | ||
| 120 | return 0; | ||
| 121 | } | ||
| 122 | |||
| 123 | void *CMS_signed_get0_data_by_OBJ(CMS_SignerInfo *si, ASN1_OBJECT *oid, | ||
| 124 | int lastpos, int type) | ||
| 125 | { | ||
| 126 | return X509at_get0_data_by_OBJ(si->signedAttrs, oid, lastpos, type); | ||
| 127 | } | ||
| 128 | |||
| 129 | int CMS_unsigned_get_attr_count(const CMS_SignerInfo *si) | ||
| 130 | { | ||
| 131 | return X509at_get_attr_count(si->unsignedAttrs); | ||
| 132 | } | ||
| 133 | |||
| 134 | int CMS_unsigned_get_attr_by_NID(const CMS_SignerInfo *si, int nid, | ||
| 135 | int lastpos) | ||
| 136 | { | ||
| 137 | return X509at_get_attr_by_NID(si->unsignedAttrs, nid, lastpos); | ||
| 138 | } | ||
| 139 | |||
| 140 | int CMS_unsigned_get_attr_by_OBJ(const CMS_SignerInfo *si, ASN1_OBJECT *obj, | ||
| 141 | int lastpos) | ||
| 142 | { | ||
| 143 | return X509at_get_attr_by_OBJ(si->unsignedAttrs, obj, lastpos); | ||
| 144 | } | ||
| 145 | |||
| 146 | X509_ATTRIBUTE *CMS_unsigned_get_attr(const CMS_SignerInfo *si, int loc) | ||
| 147 | { | ||
| 148 | return X509at_get_attr(si->unsignedAttrs, loc); | ||
| 149 | } | ||
| 150 | |||
| 151 | X509_ATTRIBUTE *CMS_unsigned_delete_attr(CMS_SignerInfo *si, int loc) | ||
| 152 | { | ||
| 153 | return X509at_delete_attr(si->unsignedAttrs, loc); | ||
| 154 | } | ||
| 155 | |||
| 156 | int CMS_unsigned_add1_attr(CMS_SignerInfo *si, X509_ATTRIBUTE *attr) | ||
| 157 | { | ||
| 158 | if(X509at_add1_attr(&si->unsignedAttrs, attr)) return 1; | ||
| 159 | return 0; | ||
| 160 | } | ||
| 161 | |||
| 162 | int CMS_unsigned_add1_attr_by_OBJ(CMS_SignerInfo *si, | ||
| 163 | const ASN1_OBJECT *obj, int type, | ||
| 164 | const void *bytes, int len) | ||
| 165 | { | ||
| 166 | if(X509at_add1_attr_by_OBJ(&si->unsignedAttrs, obj, | ||
| 167 | type, bytes, len)) return 1; | ||
| 168 | return 0; | ||
| 169 | } | ||
| 170 | |||
| 171 | int CMS_unsigned_add1_attr_by_NID(CMS_SignerInfo *si, | ||
| 172 | int nid, int type, | ||
| 173 | const void *bytes, int len) | ||
| 174 | { | ||
| 175 | if(X509at_add1_attr_by_NID(&si->unsignedAttrs, nid, | ||
| 176 | type, bytes, len)) return 1; | ||
| 177 | return 0; | ||
| 178 | } | ||
| 179 | |||
| 180 | int CMS_unsigned_add1_attr_by_txt(CMS_SignerInfo *si, | ||
| 181 | const char *attrname, int type, | ||
| 182 | const void *bytes, int len) | ||
| 183 | { | ||
| 184 | if(X509at_add1_attr_by_txt(&si->unsignedAttrs, attrname, | ||
| 185 | type, bytes, len)) return 1; | ||
| 186 | return 0; | ||
| 187 | } | ||
| 188 | |||
| 189 | void *CMS_unsigned_get0_data_by_OBJ(CMS_SignerInfo *si, ASN1_OBJECT *oid, | ||
| 190 | int lastpos, int type) | ||
| 191 | { | ||
| 192 | return X509at_get0_data_by_OBJ(si->unsignedAttrs, oid, lastpos, type); | ||
| 193 | } | ||
| 194 | |||
| 195 | /* Specific attribute cases */ | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_cd.c b/src/lib/libssl/src/crypto/cms/cms_cd.c new file mode 100644 index 0000000000..a5fc2c4e2b --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_cd.c | |||
| @@ -0,0 +1,134 @@ | |||
| 1 | /* crypto/cms/cms_cd.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/pem.h> | ||
| 57 | #include <openssl/x509v3.h> | ||
| 58 | #include <openssl/err.h> | ||
| 59 | #include <openssl/cms.h> | ||
| 60 | #include <openssl/bio.h> | ||
| 61 | #include <openssl/comp.h> | ||
| 62 | #include "cms_lcl.h" | ||
| 63 | |||
| 64 | DECLARE_ASN1_ITEM(CMS_CompressedData) | ||
| 65 | |||
| 66 | #ifdef ZLIB | ||
| 67 | |||
| 68 | /* CMS CompressedData Utilities */ | ||
| 69 | |||
| 70 | CMS_ContentInfo *cms_CompressedData_create(int comp_nid) | ||
| 71 | { | ||
| 72 | CMS_ContentInfo *cms; | ||
| 73 | CMS_CompressedData *cd; | ||
| 74 | /* Will need something cleverer if there is ever more than one | ||
| 75 | * compression algorithm or parameters have some meaning... | ||
| 76 | */ | ||
| 77 | if (comp_nid != NID_zlib_compression) | ||
| 78 | { | ||
| 79 | CMSerr(CMS_F_CMS_COMPRESSEDDATA_CREATE, | ||
| 80 | CMS_R_UNSUPPORTED_COMPRESSION_ALGORITHM); | ||
| 81 | return NULL; | ||
| 82 | } | ||
| 83 | cms = CMS_ContentInfo_new(); | ||
| 84 | if (!cms) | ||
| 85 | return NULL; | ||
| 86 | |||
| 87 | cd = M_ASN1_new_of(CMS_CompressedData); | ||
| 88 | |||
| 89 | if (!cd) | ||
| 90 | goto err; | ||
| 91 | |||
| 92 | cms->contentType = OBJ_nid2obj(NID_id_smime_ct_compressedData); | ||
| 93 | cms->d.compressedData = cd; | ||
| 94 | |||
| 95 | cd->version = 0; | ||
| 96 | |||
| 97 | X509_ALGOR_set0(cd->compressionAlgorithm, | ||
| 98 | OBJ_nid2obj(NID_zlib_compression), | ||
| 99 | V_ASN1_UNDEF, NULL); | ||
| 100 | |||
| 101 | cd->encapContentInfo->eContentType = OBJ_nid2obj(NID_pkcs7_data); | ||
| 102 | |||
| 103 | return cms; | ||
| 104 | |||
| 105 | err: | ||
| 106 | |||
| 107 | if (cms) | ||
| 108 | CMS_ContentInfo_free(cms); | ||
| 109 | |||
| 110 | return NULL; | ||
| 111 | } | ||
| 112 | |||
| 113 | BIO *cms_CompressedData_init_bio(CMS_ContentInfo *cms) | ||
| 114 | { | ||
| 115 | CMS_CompressedData *cd; | ||
| 116 | ASN1_OBJECT *compoid; | ||
| 117 | if (OBJ_obj2nid(cms->contentType) != NID_id_smime_ct_compressedData) | ||
| 118 | { | ||
| 119 | CMSerr(CMS_F_CMS_COMPRESSEDDATA_INIT_BIO, | ||
| 120 | CMS_R_CONTENT_TYPE_NOT_COMPRESSED_DATA); | ||
| 121 | return NULL; | ||
| 122 | } | ||
| 123 | cd = cms->d.compressedData; | ||
| 124 | X509_ALGOR_get0(&compoid, NULL, NULL, cd->compressionAlgorithm); | ||
| 125 | if (OBJ_obj2nid(compoid) != NID_zlib_compression) | ||
| 126 | { | ||
| 127 | CMSerr(CMS_F_CMS_COMPRESSEDDATA_INIT_BIO, | ||
| 128 | CMS_R_UNSUPPORTED_COMPRESSION_ALGORITHM); | ||
| 129 | return NULL; | ||
| 130 | } | ||
| 131 | return BIO_new(BIO_f_zlib()); | ||
| 132 | } | ||
| 133 | |||
| 134 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_dd.c b/src/lib/libssl/src/crypto/cms/cms_dd.c new file mode 100644 index 0000000000..8919c15be1 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_dd.c | |||
| @@ -0,0 +1,148 @@ | |||
| 1 | /* crypto/cms/cms_dd.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/pem.h> | ||
| 57 | #include <openssl/x509v3.h> | ||
| 58 | #include <openssl/err.h> | ||
| 59 | #include <openssl/cms.h> | ||
| 60 | #include "cms_lcl.h" | ||
| 61 | |||
| 62 | DECLARE_ASN1_ITEM(CMS_DigestedData) | ||
| 63 | |||
| 64 | /* CMS DigestedData Utilities */ | ||
| 65 | |||
| 66 | CMS_ContentInfo *cms_DigestedData_create(const EVP_MD *md) | ||
| 67 | { | ||
| 68 | CMS_ContentInfo *cms; | ||
| 69 | CMS_DigestedData *dd; | ||
| 70 | cms = CMS_ContentInfo_new(); | ||
| 71 | if (!cms) | ||
| 72 | return NULL; | ||
| 73 | |||
| 74 | dd = M_ASN1_new_of(CMS_DigestedData); | ||
| 75 | |||
| 76 | if (!dd) | ||
| 77 | goto err; | ||
| 78 | |||
| 79 | cms->contentType = OBJ_nid2obj(NID_pkcs7_digest); | ||
| 80 | cms->d.digestedData = dd; | ||
| 81 | |||
| 82 | dd->version = 0; | ||
| 83 | dd->encapContentInfo->eContentType = OBJ_nid2obj(NID_pkcs7_data); | ||
| 84 | |||
| 85 | cms_DigestAlgorithm_set(dd->digestAlgorithm, md); | ||
| 86 | |||
| 87 | return cms; | ||
| 88 | |||
| 89 | err: | ||
| 90 | |||
| 91 | if (cms) | ||
| 92 | CMS_ContentInfo_free(cms); | ||
| 93 | |||
| 94 | return NULL; | ||
| 95 | } | ||
| 96 | |||
| 97 | BIO *cms_DigestedData_init_bio(CMS_ContentInfo *cms) | ||
| 98 | { | ||
| 99 | CMS_DigestedData *dd; | ||
| 100 | dd = cms->d.digestedData; | ||
| 101 | return cms_DigestAlgorithm_init_bio(dd->digestAlgorithm); | ||
| 102 | } | ||
| 103 | |||
| 104 | int cms_DigestedData_do_final(CMS_ContentInfo *cms, BIO *chain, int verify) | ||
| 105 | { | ||
| 106 | EVP_MD_CTX mctx; | ||
| 107 | unsigned char md[EVP_MAX_MD_SIZE]; | ||
| 108 | unsigned int mdlen; | ||
| 109 | int r = 0; | ||
| 110 | CMS_DigestedData *dd; | ||
| 111 | EVP_MD_CTX_init(&mctx); | ||
| 112 | |||
| 113 | dd = cms->d.digestedData; | ||
| 114 | |||
| 115 | if (!cms_DigestAlgorithm_find_ctx(&mctx, chain, dd->digestAlgorithm)) | ||
| 116 | goto err; | ||
| 117 | |||
| 118 | if (EVP_DigestFinal_ex(&mctx, md, &mdlen) <= 0) | ||
| 119 | goto err; | ||
| 120 | |||
| 121 | if (verify) | ||
| 122 | { | ||
| 123 | if (mdlen != (unsigned int)dd->digest->length) | ||
| 124 | { | ||
| 125 | CMSerr(CMS_F_CMS_DIGESTEDDATA_DO_FINAL, | ||
| 126 | CMS_R_MESSAGEDIGEST_WRONG_LENGTH); | ||
| 127 | goto err; | ||
| 128 | } | ||
| 129 | |||
| 130 | if (memcmp(md, dd->digest->data, mdlen)) | ||
| 131 | CMSerr(CMS_F_CMS_DIGESTEDDATA_DO_FINAL, | ||
| 132 | CMS_R_VERIFICATION_FAILURE); | ||
| 133 | else | ||
| 134 | r = 1; | ||
| 135 | } | ||
| 136 | else | ||
| 137 | { | ||
| 138 | if (!ASN1_STRING_set(dd->digest, md, mdlen)) | ||
| 139 | goto err; | ||
| 140 | r = 1; | ||
| 141 | } | ||
| 142 | |||
| 143 | err: | ||
| 144 | EVP_MD_CTX_cleanup(&mctx); | ||
| 145 | |||
| 146 | return r; | ||
| 147 | |||
| 148 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_enc.c b/src/lib/libssl/src/crypto/cms/cms_enc.c new file mode 100644 index 0000000000..bab26235bd --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_enc.c | |||
| @@ -0,0 +1,262 @@ | |||
| 1 | /* crypto/cms/cms_enc.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/pem.h> | ||
| 57 | #include <openssl/x509v3.h> | ||
| 58 | #include <openssl/err.h> | ||
| 59 | #include <openssl/cms.h> | ||
| 60 | #include <openssl/rand.h> | ||
| 61 | #include "cms_lcl.h" | ||
| 62 | |||
| 63 | /* CMS EncryptedData Utilities */ | ||
| 64 | |||
| 65 | DECLARE_ASN1_ITEM(CMS_EncryptedData) | ||
| 66 | |||
| 67 | /* Return BIO based on EncryptedContentInfo and key */ | ||
| 68 | |||
| 69 | BIO *cms_EncryptedContent_init_bio(CMS_EncryptedContentInfo *ec) | ||
| 70 | { | ||
| 71 | BIO *b; | ||
| 72 | EVP_CIPHER_CTX *ctx; | ||
| 73 | const EVP_CIPHER *ciph; | ||
| 74 | X509_ALGOR *calg = ec->contentEncryptionAlgorithm; | ||
| 75 | unsigned char iv[EVP_MAX_IV_LENGTH], *piv = NULL; | ||
| 76 | |||
| 77 | int ok = 0; | ||
| 78 | |||
| 79 | int enc, keep_key = 0; | ||
| 80 | |||
| 81 | enc = ec->cipher ? 1 : 0; | ||
| 82 | |||
| 83 | b = BIO_new(BIO_f_cipher()); | ||
| 84 | if (!b) | ||
| 85 | { | ||
| 86 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 87 | ERR_R_MALLOC_FAILURE); | ||
| 88 | return NULL; | ||
| 89 | } | ||
| 90 | |||
| 91 | BIO_get_cipher_ctx(b, &ctx); | ||
| 92 | |||
| 93 | if (enc) | ||
| 94 | { | ||
| 95 | ciph = ec->cipher; | ||
| 96 | /* If not keeping key set cipher to NULL so subsequent calls | ||
| 97 | * decrypt. | ||
| 98 | */ | ||
| 99 | if (ec->key) | ||
| 100 | ec->cipher = NULL; | ||
| 101 | } | ||
| 102 | else | ||
| 103 | { | ||
| 104 | ciph = EVP_get_cipherbyobj(calg->algorithm); | ||
| 105 | |||
| 106 | if (!ciph) | ||
| 107 | { | ||
| 108 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 109 | CMS_R_UNKNOWN_CIPHER); | ||
| 110 | goto err; | ||
| 111 | } | ||
| 112 | } | ||
| 113 | |||
| 114 | if (EVP_CipherInit_ex(ctx, ciph, NULL, NULL, NULL, enc) <= 0) | ||
| 115 | { | ||
| 116 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 117 | CMS_R_CIPHER_INITIALISATION_ERROR); | ||
| 118 | goto err; | ||
| 119 | } | ||
| 120 | |||
| 121 | if (enc) | ||
| 122 | { | ||
| 123 | int ivlen; | ||
| 124 | calg->algorithm = OBJ_nid2obj(EVP_CIPHER_CTX_type(ctx)); | ||
| 125 | /* Generate a random IV if we need one */ | ||
| 126 | ivlen = EVP_CIPHER_CTX_iv_length(ctx); | ||
| 127 | if (ivlen > 0) | ||
| 128 | { | ||
| 129 | if (RAND_pseudo_bytes(iv, ivlen) <= 0) | ||
| 130 | goto err; | ||
| 131 | piv = iv; | ||
| 132 | } | ||
| 133 | } | ||
| 134 | else if (EVP_CIPHER_asn1_to_param(ctx, calg->parameter) <= 0) | ||
| 135 | { | ||
| 136 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 137 | CMS_R_CIPHER_PARAMETER_INITIALISATION_ERROR); | ||
| 138 | goto err; | ||
| 139 | } | ||
| 140 | |||
| 141 | |||
| 142 | if (enc && !ec->key) | ||
| 143 | { | ||
| 144 | /* Generate random key */ | ||
| 145 | if (!ec->keylen) | ||
| 146 | ec->keylen = EVP_CIPHER_CTX_key_length(ctx); | ||
| 147 | ec->key = OPENSSL_malloc(ec->keylen); | ||
| 148 | if (!ec->key) | ||
| 149 | { | ||
| 150 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 151 | ERR_R_MALLOC_FAILURE); | ||
| 152 | goto err; | ||
| 153 | } | ||
| 154 | if (EVP_CIPHER_CTX_rand_key(ctx, ec->key) <= 0) | ||
| 155 | goto err; | ||
| 156 | keep_key = 1; | ||
| 157 | } | ||
| 158 | else if (ec->keylen != (unsigned int)EVP_CIPHER_CTX_key_length(ctx)) | ||
| 159 | { | ||
| 160 | /* If necessary set key length */ | ||
| 161 | if (EVP_CIPHER_CTX_set_key_length(ctx, ec->keylen) <= 0) | ||
| 162 | { | ||
| 163 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 164 | CMS_R_INVALID_KEY_LENGTH); | ||
| 165 | goto err; | ||
| 166 | } | ||
| 167 | } | ||
| 168 | |||
| 169 | if (EVP_CipherInit_ex(ctx, NULL, NULL, ec->key, piv, enc) <= 0) | ||
| 170 | { | ||
| 171 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 172 | CMS_R_CIPHER_INITIALISATION_ERROR); | ||
| 173 | goto err; | ||
| 174 | } | ||
| 175 | |||
| 176 | if (piv) | ||
| 177 | { | ||
| 178 | calg->parameter = ASN1_TYPE_new(); | ||
| 179 | if (!calg->parameter) | ||
| 180 | { | ||
| 181 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 182 | ERR_R_MALLOC_FAILURE); | ||
| 183 | goto err; | ||
| 184 | } | ||
| 185 | if (EVP_CIPHER_param_to_asn1(ctx, calg->parameter) <= 0) | ||
| 186 | { | ||
| 187 | CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO, | ||
| 188 | CMS_R_CIPHER_PARAMETER_INITIALISATION_ERROR); | ||
| 189 | goto err; | ||
| 190 | } | ||
| 191 | } | ||
| 192 | ok = 1; | ||
| 193 | |||
| 194 | err: | ||
| 195 | if (ec->key && !keep_key) | ||
| 196 | { | ||
| 197 | OPENSSL_cleanse(ec->key, ec->keylen); | ||
| 198 | OPENSSL_free(ec->key); | ||
| 199 | ec->key = NULL; | ||
| 200 | } | ||
| 201 | if (ok) | ||
| 202 | return b; | ||
| 203 | BIO_free(b); | ||
| 204 | return NULL; | ||
| 205 | } | ||
| 206 | |||
| 207 | int cms_EncryptedContent_init(CMS_EncryptedContentInfo *ec, | ||
| 208 | const EVP_CIPHER *cipher, | ||
| 209 | const unsigned char *key, size_t keylen) | ||
| 210 | { | ||
| 211 | ec->cipher = cipher; | ||
| 212 | if (key) | ||
| 213 | { | ||
| 214 | ec->key = OPENSSL_malloc(keylen); | ||
| 215 | if (!ec->key) | ||
| 216 | return 0; | ||
| 217 | memcpy(ec->key, key, keylen); | ||
| 218 | } | ||
| 219 | ec->keylen = keylen; | ||
| 220 | if (cipher) | ||
| 221 | ec->contentType = OBJ_nid2obj(NID_pkcs7_data); | ||
| 222 | return 1; | ||
| 223 | } | ||
| 224 | |||
| 225 | int CMS_EncryptedData_set1_key(CMS_ContentInfo *cms, const EVP_CIPHER *ciph, | ||
| 226 | const unsigned char *key, size_t keylen) | ||
| 227 | { | ||
| 228 | CMS_EncryptedContentInfo *ec; | ||
| 229 | if (!key || !keylen) | ||
| 230 | { | ||
| 231 | CMSerr(CMS_F_CMS_ENCRYPTEDDATA_SET1_KEY, CMS_R_NO_KEY); | ||
| 232 | return 0; | ||
| 233 | } | ||
| 234 | if (ciph) | ||
| 235 | { | ||
| 236 | cms->d.encryptedData = M_ASN1_new_of(CMS_EncryptedData); | ||
| 237 | if (!cms->d.encryptedData) | ||
| 238 | { | ||
| 239 | CMSerr(CMS_F_CMS_ENCRYPTEDDATA_SET1_KEY, | ||
| 240 | ERR_R_MALLOC_FAILURE); | ||
| 241 | return 0; | ||
| 242 | } | ||
| 243 | cms->contentType = OBJ_nid2obj(NID_pkcs7_encrypted); | ||
| 244 | cms->d.encryptedData->version = 0; | ||
| 245 | } | ||
| 246 | else if (OBJ_obj2nid(cms->contentType) != NID_pkcs7_encrypted) | ||
| 247 | { | ||
| 248 | CMSerr(CMS_F_CMS_ENCRYPTEDDATA_SET1_KEY, | ||
| 249 | CMS_R_NOT_ENCRYPTED_DATA); | ||
| 250 | return 0; | ||
| 251 | } | ||
| 252 | ec = cms->d.encryptedData->encryptedContentInfo; | ||
| 253 | return cms_EncryptedContent_init(ec, ciph, key, keylen); | ||
| 254 | } | ||
| 255 | |||
| 256 | BIO *cms_EncryptedData_init_bio(CMS_ContentInfo *cms) | ||
| 257 | { | ||
| 258 | CMS_EncryptedData *enc = cms->d.encryptedData; | ||
| 259 | if (enc->encryptedContentInfo->cipher && enc->unprotectedAttrs) | ||
| 260 | enc->version = 2; | ||
| 261 | return cms_EncryptedContent_init_bio(enc->encryptedContentInfo); | ||
| 262 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_env.c b/src/lib/libssl/src/crypto/cms/cms_env.c new file mode 100644 index 0000000000..d499ae85b4 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_env.c | |||
| @@ -0,0 +1,825 @@ | |||
| 1 | /* crypto/cms/cms_env.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/pem.h> | ||
| 57 | #include <openssl/x509v3.h> | ||
| 58 | #include <openssl/err.h> | ||
| 59 | #include <openssl/cms.h> | ||
| 60 | #include <openssl/rand.h> | ||
| 61 | #include <openssl/aes.h> | ||
| 62 | #include "cms_lcl.h" | ||
| 63 | |||
| 64 | /* CMS EnvelopedData Utilities */ | ||
| 65 | |||
| 66 | DECLARE_ASN1_ITEM(CMS_EnvelopedData) | ||
| 67 | DECLARE_ASN1_ITEM(CMS_RecipientInfo) | ||
| 68 | DECLARE_ASN1_ITEM(CMS_KeyTransRecipientInfo) | ||
| 69 | DECLARE_ASN1_ITEM(CMS_KEKRecipientInfo) | ||
| 70 | DECLARE_ASN1_ITEM(CMS_OtherKeyAttribute) | ||
| 71 | |||
| 72 | DECLARE_STACK_OF(CMS_RecipientInfo) | ||
| 73 | |||
| 74 | static CMS_EnvelopedData *cms_get0_enveloped(CMS_ContentInfo *cms) | ||
| 75 | { | ||
| 76 | if (OBJ_obj2nid(cms->contentType) != NID_pkcs7_enveloped) | ||
| 77 | { | ||
| 78 | CMSerr(CMS_F_CMS_GET0_ENVELOPED, | ||
| 79 | CMS_R_CONTENT_TYPE_NOT_ENVELOPED_DATA); | ||
| 80 | return NULL; | ||
| 81 | } | ||
| 82 | return cms->d.envelopedData; | ||
| 83 | } | ||
| 84 | |||
| 85 | static CMS_EnvelopedData *cms_enveloped_data_init(CMS_ContentInfo *cms) | ||
| 86 | { | ||
| 87 | if (cms->d.other == NULL) | ||
| 88 | { | ||
| 89 | cms->d.envelopedData = M_ASN1_new_of(CMS_EnvelopedData); | ||
| 90 | if (!cms->d.envelopedData) | ||
| 91 | { | ||
| 92 | CMSerr(CMS_F_CMS_ENVELOPED_DATA_INIT, | ||
| 93 | ERR_R_MALLOC_FAILURE); | ||
| 94 | return NULL; | ||
| 95 | } | ||
| 96 | cms->d.envelopedData->version = 0; | ||
| 97 | cms->d.envelopedData->encryptedContentInfo->contentType = | ||
| 98 | OBJ_nid2obj(NID_pkcs7_data); | ||
| 99 | ASN1_OBJECT_free(cms->contentType); | ||
| 100 | cms->contentType = OBJ_nid2obj(NID_pkcs7_enveloped); | ||
| 101 | return cms->d.envelopedData; | ||
| 102 | } | ||
| 103 | return cms_get0_enveloped(cms); | ||
| 104 | } | ||
| 105 | |||
| 106 | STACK_OF(CMS_RecipientInfo) *CMS_get0_RecipientInfos(CMS_ContentInfo *cms) | ||
| 107 | { | ||
| 108 | CMS_EnvelopedData *env; | ||
| 109 | env = cms_get0_enveloped(cms); | ||
| 110 | if (!env) | ||
| 111 | return NULL; | ||
| 112 | return env->recipientInfos; | ||
| 113 | } | ||
| 114 | |||
| 115 | int CMS_RecipientInfo_type(CMS_RecipientInfo *ri) | ||
| 116 | { | ||
| 117 | return ri->type; | ||
| 118 | } | ||
| 119 | |||
| 120 | CMS_ContentInfo *CMS_EnvelopedData_create(const EVP_CIPHER *cipher) | ||
| 121 | { | ||
| 122 | CMS_ContentInfo *cms; | ||
| 123 | CMS_EnvelopedData *env; | ||
| 124 | cms = CMS_ContentInfo_new(); | ||
| 125 | if (!cms) | ||
| 126 | goto merr; | ||
| 127 | env = cms_enveloped_data_init(cms); | ||
| 128 | if (!env) | ||
| 129 | goto merr; | ||
| 130 | if (!cms_EncryptedContent_init(env->encryptedContentInfo, | ||
| 131 | cipher, NULL, 0)) | ||
| 132 | goto merr; | ||
| 133 | return cms; | ||
| 134 | merr: | ||
| 135 | if (cms) | ||
| 136 | CMS_ContentInfo_free(cms); | ||
| 137 | CMSerr(CMS_F_CMS_ENVELOPEDDATA_CREATE, ERR_R_MALLOC_FAILURE); | ||
| 138 | return NULL; | ||
| 139 | } | ||
| 140 | |||
| 141 | /* Key Transport Recipient Info (KTRI) routines */ | ||
| 142 | |||
| 143 | /* Add a recipient certificate. For now only handle key transport. | ||
| 144 | * If we ever handle key agreement will need updating. | ||
| 145 | */ | ||
| 146 | |||
| 147 | CMS_RecipientInfo *CMS_add1_recipient_cert(CMS_ContentInfo *cms, | ||
| 148 | X509 *recip, unsigned int flags) | ||
| 149 | { | ||
| 150 | CMS_RecipientInfo *ri = NULL; | ||
| 151 | CMS_KeyTransRecipientInfo *ktri; | ||
| 152 | CMS_EnvelopedData *env; | ||
| 153 | EVP_PKEY *pk = NULL; | ||
| 154 | int type; | ||
| 155 | env = cms_get0_enveloped(cms); | ||
| 156 | if (!env) | ||
| 157 | goto err; | ||
| 158 | |||
| 159 | /* Initialize recipient info */ | ||
| 160 | ri = M_ASN1_new_of(CMS_RecipientInfo); | ||
| 161 | if (!ri) | ||
| 162 | goto merr; | ||
| 163 | |||
| 164 | /* Initialize and add key transport recipient info */ | ||
| 165 | |||
| 166 | ri->d.ktri = M_ASN1_new_of(CMS_KeyTransRecipientInfo); | ||
| 167 | if (!ri->d.ktri) | ||
| 168 | goto merr; | ||
| 169 | ri->type = CMS_RECIPINFO_TRANS; | ||
| 170 | |||
| 171 | ktri = ri->d.ktri; | ||
| 172 | |||
| 173 | X509_check_purpose(recip, -1, -1); | ||
| 174 | pk = X509_get_pubkey(recip); | ||
| 175 | if (!pk) | ||
| 176 | { | ||
| 177 | CMSerr(CMS_F_CMS_ADD1_RECIPIENT_CERT, | ||
| 178 | CMS_R_ERROR_GETTING_PUBLIC_KEY); | ||
| 179 | goto err; | ||
| 180 | } | ||
| 181 | CRYPTO_add(&recip->references, 1, CRYPTO_LOCK_X509); | ||
| 182 | ktri->pkey = pk; | ||
| 183 | ktri->recip = recip; | ||
| 184 | |||
| 185 | if (flags & CMS_USE_KEYID) | ||
| 186 | { | ||
| 187 | ktri->version = 2; | ||
| 188 | type = CMS_RECIPINFO_KEYIDENTIFIER; | ||
| 189 | } | ||
| 190 | else | ||
| 191 | { | ||
| 192 | ktri->version = 0; | ||
| 193 | type = CMS_RECIPINFO_ISSUER_SERIAL; | ||
| 194 | } | ||
| 195 | |||
| 196 | /* Not a typo: RecipientIdentifier and SignerIdentifier are the | ||
| 197 | * same structure. | ||
| 198 | */ | ||
| 199 | |||
| 200 | if (!cms_set1_SignerIdentifier(ktri->rid, recip, type)) | ||
| 201 | goto err; | ||
| 202 | |||
| 203 | /* Since we have no EVP_PKEY_ASN1_METHOD in OpenSSL 0.9.8, | ||
| 204 | * hard code algorithm parameters. | ||
| 205 | */ | ||
| 206 | |||
| 207 | if (pk->type == EVP_PKEY_RSA) | ||
| 208 | { | ||
| 209 | X509_ALGOR_set0(ktri->keyEncryptionAlgorithm, | ||
| 210 | OBJ_nid2obj(NID_rsaEncryption), | ||
| 211 | V_ASN1_NULL, 0); | ||
| 212 | } | ||
| 213 | else | ||
| 214 | { | ||
| 215 | CMSerr(CMS_F_CMS_ADD1_RECIPIENT_CERT, | ||
| 216 | CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE); | ||
| 217 | goto err; | ||
| 218 | } | ||
| 219 | |||
| 220 | if (!sk_CMS_RecipientInfo_push(env->recipientInfos, ri)) | ||
| 221 | goto merr; | ||
| 222 | |||
| 223 | return ri; | ||
| 224 | |||
| 225 | merr: | ||
| 226 | CMSerr(CMS_F_CMS_ADD1_RECIPIENT_CERT, ERR_R_MALLOC_FAILURE); | ||
| 227 | err: | ||
| 228 | if (ri) | ||
| 229 | M_ASN1_free_of(ri, CMS_RecipientInfo); | ||
| 230 | return NULL; | ||
| 231 | |||
| 232 | } | ||
| 233 | |||
| 234 | int CMS_RecipientInfo_ktri_get0_algs(CMS_RecipientInfo *ri, | ||
| 235 | EVP_PKEY **pk, X509 **recip, | ||
| 236 | X509_ALGOR **palg) | ||
| 237 | { | ||
| 238 | CMS_KeyTransRecipientInfo *ktri; | ||
| 239 | if (ri->type != CMS_RECIPINFO_TRANS) | ||
| 240 | { | ||
| 241 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_GET0_ALGS, | ||
| 242 | CMS_R_NOT_KEY_TRANSPORT); | ||
| 243 | return 0; | ||
| 244 | } | ||
| 245 | |||
| 246 | ktri = ri->d.ktri; | ||
| 247 | |||
| 248 | if (pk) | ||
| 249 | *pk = ktri->pkey; | ||
| 250 | if (recip) | ||
| 251 | *recip = ktri->recip; | ||
| 252 | if (palg) | ||
| 253 | *palg = ktri->keyEncryptionAlgorithm; | ||
| 254 | return 1; | ||
| 255 | } | ||
| 256 | |||
| 257 | int CMS_RecipientInfo_ktri_get0_signer_id(CMS_RecipientInfo *ri, | ||
| 258 | ASN1_OCTET_STRING **keyid, | ||
| 259 | X509_NAME **issuer, ASN1_INTEGER **sno) | ||
| 260 | { | ||
| 261 | CMS_KeyTransRecipientInfo *ktri; | ||
| 262 | if (ri->type != CMS_RECIPINFO_TRANS) | ||
| 263 | { | ||
| 264 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_GET0_SIGNER_ID, | ||
| 265 | CMS_R_NOT_KEY_TRANSPORT); | ||
| 266 | return 0; | ||
| 267 | } | ||
| 268 | ktri = ri->d.ktri; | ||
| 269 | |||
| 270 | return cms_SignerIdentifier_get0_signer_id(ktri->rid, | ||
| 271 | keyid, issuer, sno); | ||
| 272 | } | ||
| 273 | |||
| 274 | int CMS_RecipientInfo_ktri_cert_cmp(CMS_RecipientInfo *ri, X509 *cert) | ||
| 275 | { | ||
| 276 | if (ri->type != CMS_RECIPINFO_TRANS) | ||
| 277 | { | ||
| 278 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_CERT_CMP, | ||
| 279 | CMS_R_NOT_KEY_TRANSPORT); | ||
| 280 | return -2; | ||
| 281 | } | ||
| 282 | return cms_SignerIdentifier_cert_cmp(ri->d.ktri->rid, cert); | ||
| 283 | } | ||
| 284 | |||
| 285 | int CMS_RecipientInfo_set0_pkey(CMS_RecipientInfo *ri, EVP_PKEY *pkey) | ||
| 286 | { | ||
| 287 | if (ri->type != CMS_RECIPINFO_TRANS) | ||
| 288 | { | ||
| 289 | CMSerr(CMS_F_CMS_RECIPIENTINFO_SET0_PKEY, | ||
| 290 | CMS_R_NOT_KEY_TRANSPORT); | ||
| 291 | return 0; | ||
| 292 | } | ||
| 293 | ri->d.ktri->pkey = pkey; | ||
| 294 | return 1; | ||
| 295 | } | ||
| 296 | |||
| 297 | /* Encrypt content key in key transport recipient info */ | ||
| 298 | |||
| 299 | static int cms_RecipientInfo_ktri_encrypt(CMS_ContentInfo *cms, | ||
| 300 | CMS_RecipientInfo *ri) | ||
| 301 | { | ||
| 302 | CMS_KeyTransRecipientInfo *ktri; | ||
| 303 | CMS_EncryptedContentInfo *ec; | ||
| 304 | unsigned char *ek = NULL; | ||
| 305 | int eklen; | ||
| 306 | |||
| 307 | int ret = 0; | ||
| 308 | |||
| 309 | if (ri->type != CMS_RECIPINFO_TRANS) | ||
| 310 | { | ||
| 311 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_ENCRYPT, | ||
| 312 | CMS_R_NOT_KEY_TRANSPORT); | ||
| 313 | return 0; | ||
| 314 | } | ||
| 315 | ktri = ri->d.ktri; | ||
| 316 | ec = cms->d.envelopedData->encryptedContentInfo; | ||
| 317 | |||
| 318 | eklen = EVP_PKEY_size(ktri->pkey); | ||
| 319 | |||
| 320 | ek = OPENSSL_malloc(eklen); | ||
| 321 | |||
| 322 | if (ek == NULL) | ||
| 323 | { | ||
| 324 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_ENCRYPT, | ||
| 325 | ERR_R_MALLOC_FAILURE); | ||
| 326 | goto err; | ||
| 327 | } | ||
| 328 | |||
| 329 | eklen = EVP_PKEY_encrypt(ek, ec->key, ec->keylen, ktri->pkey); | ||
| 330 | |||
| 331 | if (eklen <= 0) | ||
| 332 | goto err; | ||
| 333 | |||
| 334 | ASN1_STRING_set0(ktri->encryptedKey, ek, eklen); | ||
| 335 | ek = NULL; | ||
| 336 | |||
| 337 | ret = 1; | ||
| 338 | |||
| 339 | err: | ||
| 340 | if (ek) | ||
| 341 | OPENSSL_free(ek); | ||
| 342 | return ret; | ||
| 343 | |||
| 344 | } | ||
| 345 | |||
| 346 | /* Decrypt content key from KTRI */ | ||
| 347 | |||
| 348 | static int cms_RecipientInfo_ktri_decrypt(CMS_ContentInfo *cms, | ||
| 349 | CMS_RecipientInfo *ri) | ||
| 350 | { | ||
| 351 | CMS_KeyTransRecipientInfo *ktri = ri->d.ktri; | ||
| 352 | unsigned char *ek = NULL; | ||
| 353 | int eklen; | ||
| 354 | int ret = 0; | ||
| 355 | |||
| 356 | if (ktri->pkey == NULL) | ||
| 357 | { | ||
| 358 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT, | ||
| 359 | CMS_R_NO_PRIVATE_KEY); | ||
| 360 | return 0; | ||
| 361 | } | ||
| 362 | |||
| 363 | eklen = EVP_PKEY_size(ktri->pkey); | ||
| 364 | |||
| 365 | ek = OPENSSL_malloc(eklen); | ||
| 366 | |||
| 367 | if (ek == NULL) | ||
| 368 | { | ||
| 369 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT, | ||
| 370 | ERR_R_MALLOC_FAILURE); | ||
| 371 | goto err; | ||
| 372 | } | ||
| 373 | |||
| 374 | eklen = EVP_PKEY_decrypt(ek, | ||
| 375 | ktri->encryptedKey->data, | ||
| 376 | ktri->encryptedKey->length, ktri->pkey); | ||
| 377 | if (eklen <= 0) | ||
| 378 | { | ||
| 379 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT, CMS_R_CMS_LIB); | ||
| 380 | goto err; | ||
| 381 | } | ||
| 382 | |||
| 383 | ret = 1; | ||
| 384 | |||
| 385 | cms->d.envelopedData->encryptedContentInfo->key = ek; | ||
| 386 | cms->d.envelopedData->encryptedContentInfo->keylen = eklen; | ||
| 387 | |||
| 388 | err: | ||
| 389 | if (!ret && ek) | ||
| 390 | OPENSSL_free(ek); | ||
| 391 | |||
| 392 | return ret; | ||
| 393 | } | ||
| 394 | |||
| 395 | /* Key Encrypted Key (KEK) RecipientInfo routines */ | ||
| 396 | |||
| 397 | int CMS_RecipientInfo_kekri_id_cmp(CMS_RecipientInfo *ri, | ||
| 398 | const unsigned char *id, size_t idlen) | ||
| 399 | { | ||
| 400 | ASN1_OCTET_STRING tmp_os; | ||
| 401 | CMS_KEKRecipientInfo *kekri; | ||
| 402 | if (ri->type != CMS_RECIPINFO_KEK) | ||
| 403 | { | ||
| 404 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_ID_CMP, CMS_R_NOT_KEK); | ||
| 405 | return -2; | ||
| 406 | } | ||
| 407 | kekri = ri->d.kekri; | ||
| 408 | tmp_os.type = V_ASN1_OCTET_STRING; | ||
| 409 | tmp_os.flags = 0; | ||
| 410 | tmp_os.data = (unsigned char *)id; | ||
| 411 | tmp_os.length = (int)idlen; | ||
| 412 | return ASN1_OCTET_STRING_cmp(&tmp_os, kekri->kekid->keyIdentifier); | ||
| 413 | } | ||
| 414 | |||
| 415 | /* For now hard code AES key wrap info */ | ||
| 416 | |||
| 417 | static size_t aes_wrap_keylen(int nid) | ||
| 418 | { | ||
| 419 | switch (nid) | ||
| 420 | { | ||
| 421 | case NID_id_aes128_wrap: | ||
| 422 | return 16; | ||
| 423 | |||
| 424 | case NID_id_aes192_wrap: | ||
| 425 | return 24; | ||
| 426 | |||
| 427 | case NID_id_aes256_wrap: | ||
| 428 | return 32; | ||
| 429 | |||
| 430 | default: | ||
| 431 | return 0; | ||
| 432 | } | ||
| 433 | } | ||
| 434 | |||
| 435 | CMS_RecipientInfo *CMS_add0_recipient_key(CMS_ContentInfo *cms, int nid, | ||
| 436 | unsigned char *key, size_t keylen, | ||
| 437 | unsigned char *id, size_t idlen, | ||
| 438 | ASN1_GENERALIZEDTIME *date, | ||
| 439 | ASN1_OBJECT *otherTypeId, | ||
| 440 | ASN1_TYPE *otherType) | ||
| 441 | { | ||
| 442 | CMS_RecipientInfo *ri = NULL; | ||
| 443 | CMS_EnvelopedData *env; | ||
| 444 | CMS_KEKRecipientInfo *kekri; | ||
| 445 | env = cms_get0_enveloped(cms); | ||
| 446 | if (!env) | ||
| 447 | goto err; | ||
| 448 | |||
| 449 | if (nid == NID_undef) | ||
| 450 | { | ||
| 451 | switch (keylen) | ||
| 452 | { | ||
| 453 | case 16: | ||
| 454 | nid = NID_id_aes128_wrap; | ||
| 455 | break; | ||
| 456 | |||
| 457 | case 24: | ||
| 458 | nid = NID_id_aes192_wrap; | ||
| 459 | break; | ||
| 460 | |||
| 461 | case 32: | ||
| 462 | nid = NID_id_aes256_wrap; | ||
| 463 | break; | ||
| 464 | |||
| 465 | default: | ||
| 466 | CMSerr(CMS_F_CMS_ADD0_RECIPIENT_KEY, | ||
| 467 | CMS_R_INVALID_KEY_LENGTH); | ||
| 468 | goto err; | ||
| 469 | } | ||
| 470 | |||
| 471 | } | ||
| 472 | else | ||
| 473 | { | ||
| 474 | |||
| 475 | size_t exp_keylen = aes_wrap_keylen(nid); | ||
| 476 | |||
| 477 | if (!exp_keylen) | ||
| 478 | { | ||
| 479 | CMSerr(CMS_F_CMS_ADD0_RECIPIENT_KEY, | ||
| 480 | CMS_R_UNSUPPORTED_KEK_ALGORITHM); | ||
| 481 | goto err; | ||
| 482 | } | ||
| 483 | |||
| 484 | if (keylen != exp_keylen) | ||
| 485 | { | ||
| 486 | CMSerr(CMS_F_CMS_ADD0_RECIPIENT_KEY, | ||
| 487 | CMS_R_INVALID_KEY_LENGTH); | ||
| 488 | goto err; | ||
| 489 | } | ||
| 490 | |||
| 491 | } | ||
| 492 | |||
| 493 | /* Initialize recipient info */ | ||
| 494 | ri = M_ASN1_new_of(CMS_RecipientInfo); | ||
| 495 | if (!ri) | ||
| 496 | goto merr; | ||
| 497 | |||
| 498 | ri->d.kekri = M_ASN1_new_of(CMS_KEKRecipientInfo); | ||
| 499 | if (!ri->d.kekri) | ||
| 500 | goto merr; | ||
| 501 | ri->type = CMS_RECIPINFO_KEK; | ||
| 502 | |||
| 503 | kekri = ri->d.kekri; | ||
| 504 | |||
| 505 | if (otherTypeId) | ||
| 506 | { | ||
| 507 | kekri->kekid->other = M_ASN1_new_of(CMS_OtherKeyAttribute); | ||
| 508 | if (kekri->kekid->other == NULL) | ||
| 509 | goto merr; | ||
| 510 | } | ||
| 511 | |||
| 512 | if (!sk_CMS_RecipientInfo_push(env->recipientInfos, ri)) | ||
| 513 | goto merr; | ||
| 514 | |||
| 515 | |||
| 516 | /* After this point no calls can fail */ | ||
| 517 | |||
| 518 | kekri->version = 4; | ||
| 519 | |||
| 520 | kekri->key = key; | ||
| 521 | kekri->keylen = keylen; | ||
| 522 | |||
| 523 | ASN1_STRING_set0(kekri->kekid->keyIdentifier, id, idlen); | ||
| 524 | |||
| 525 | kekri->kekid->date = date; | ||
| 526 | |||
| 527 | if (kekri->kekid->other) | ||
| 528 | { | ||
| 529 | kekri->kekid->other->keyAttrId = otherTypeId; | ||
| 530 | kekri->kekid->other->keyAttr = otherType; | ||
| 531 | } | ||
| 532 | |||
| 533 | X509_ALGOR_set0(kekri->keyEncryptionAlgorithm, | ||
| 534 | OBJ_nid2obj(nid), V_ASN1_UNDEF, NULL); | ||
| 535 | |||
| 536 | return ri; | ||
| 537 | |||
| 538 | merr: | ||
| 539 | CMSerr(CMS_F_CMS_ADD0_RECIPIENT_KEY, ERR_R_MALLOC_FAILURE); | ||
| 540 | err: | ||
| 541 | if (ri) | ||
| 542 | M_ASN1_free_of(ri, CMS_RecipientInfo); | ||
| 543 | return NULL; | ||
| 544 | |||
| 545 | } | ||
| 546 | |||
| 547 | int CMS_RecipientInfo_kekri_get0_id(CMS_RecipientInfo *ri, | ||
| 548 | X509_ALGOR **palg, | ||
| 549 | ASN1_OCTET_STRING **pid, | ||
| 550 | ASN1_GENERALIZEDTIME **pdate, | ||
| 551 | ASN1_OBJECT **potherid, | ||
| 552 | ASN1_TYPE **pothertype) | ||
| 553 | { | ||
| 554 | CMS_KEKIdentifier *rkid; | ||
| 555 | if (ri->type != CMS_RECIPINFO_KEK) | ||
| 556 | { | ||
| 557 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_GET0_ID, CMS_R_NOT_KEK); | ||
| 558 | return 0; | ||
| 559 | } | ||
| 560 | rkid = ri->d.kekri->kekid; | ||
| 561 | if (palg) | ||
| 562 | *palg = ri->d.kekri->keyEncryptionAlgorithm; | ||
| 563 | if (pid) | ||
| 564 | *pid = rkid->keyIdentifier; | ||
| 565 | if (pdate) | ||
| 566 | *pdate = rkid->date; | ||
| 567 | if (potherid) | ||
| 568 | { | ||
| 569 | if (rkid->other) | ||
| 570 | *potherid = rkid->other->keyAttrId; | ||
| 571 | else | ||
| 572 | *potherid = NULL; | ||
| 573 | } | ||
| 574 | if (pothertype) | ||
| 575 | { | ||
| 576 | if (rkid->other) | ||
| 577 | *pothertype = rkid->other->keyAttr; | ||
| 578 | else | ||
| 579 | *pothertype = NULL; | ||
| 580 | } | ||
| 581 | return 1; | ||
| 582 | } | ||
| 583 | |||
| 584 | int CMS_RecipientInfo_set0_key(CMS_RecipientInfo *ri, | ||
| 585 | unsigned char *key, size_t keylen) | ||
| 586 | { | ||
| 587 | CMS_KEKRecipientInfo *kekri; | ||
| 588 | if (ri->type != CMS_RECIPINFO_KEK) | ||
| 589 | { | ||
| 590 | CMSerr(CMS_F_CMS_RECIPIENTINFO_SET0_KEY, CMS_R_NOT_KEK); | ||
| 591 | return 0; | ||
| 592 | } | ||
| 593 | |||
| 594 | kekri = ri->d.kekri; | ||
| 595 | kekri->key = key; | ||
| 596 | kekri->keylen = keylen; | ||
| 597 | return 1; | ||
| 598 | } | ||
| 599 | |||
| 600 | |||
| 601 | /* Encrypt content key in KEK recipient info */ | ||
| 602 | |||
| 603 | static int cms_RecipientInfo_kekri_encrypt(CMS_ContentInfo *cms, | ||
| 604 | CMS_RecipientInfo *ri) | ||
| 605 | { | ||
| 606 | CMS_EncryptedContentInfo *ec; | ||
| 607 | CMS_KEKRecipientInfo *kekri; | ||
| 608 | AES_KEY actx; | ||
| 609 | unsigned char *wkey = NULL; | ||
| 610 | int wkeylen; | ||
| 611 | int r = 0; | ||
| 612 | |||
| 613 | ec = cms->d.envelopedData->encryptedContentInfo; | ||
| 614 | |||
| 615 | kekri = ri->d.kekri; | ||
| 616 | |||
| 617 | if (!kekri->key) | ||
| 618 | { | ||
| 619 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_ENCRYPT, CMS_R_NO_KEY); | ||
| 620 | return 0; | ||
| 621 | } | ||
| 622 | |||
| 623 | if (AES_set_encrypt_key(kekri->key, kekri->keylen << 3, &actx)) | ||
| 624 | { | ||
| 625 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_ENCRYPT, | ||
| 626 | CMS_R_ERROR_SETTING_KEY); | ||
| 627 | goto err; | ||
| 628 | } | ||
| 629 | |||
| 630 | wkey = OPENSSL_malloc(ec->keylen + 8); | ||
| 631 | |||
| 632 | if (!wkey) | ||
| 633 | { | ||
| 634 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_ENCRYPT, | ||
| 635 | ERR_R_MALLOC_FAILURE); | ||
| 636 | goto err; | ||
| 637 | } | ||
| 638 | |||
| 639 | wkeylen = AES_wrap_key(&actx, NULL, wkey, ec->key, ec->keylen); | ||
| 640 | |||
| 641 | if (wkeylen <= 0) | ||
| 642 | { | ||
| 643 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_ENCRYPT, CMS_R_WRAP_ERROR); | ||
| 644 | goto err; | ||
| 645 | } | ||
| 646 | |||
| 647 | ASN1_STRING_set0(kekri->encryptedKey, wkey, wkeylen); | ||
| 648 | |||
| 649 | r = 1; | ||
| 650 | |||
| 651 | err: | ||
| 652 | |||
| 653 | if (!r && wkey) | ||
| 654 | OPENSSL_free(wkey); | ||
| 655 | OPENSSL_cleanse(&actx, sizeof(actx)); | ||
| 656 | |||
| 657 | return r; | ||
| 658 | |||
| 659 | } | ||
| 660 | |||
| 661 | /* Decrypt content key in KEK recipient info */ | ||
| 662 | |||
| 663 | static int cms_RecipientInfo_kekri_decrypt(CMS_ContentInfo *cms, | ||
| 664 | CMS_RecipientInfo *ri) | ||
| 665 | { | ||
| 666 | CMS_EncryptedContentInfo *ec; | ||
| 667 | CMS_KEKRecipientInfo *kekri; | ||
| 668 | AES_KEY actx; | ||
| 669 | unsigned char *ukey = NULL; | ||
| 670 | int ukeylen; | ||
| 671 | int r = 0, wrap_nid; | ||
| 672 | |||
| 673 | ec = cms->d.envelopedData->encryptedContentInfo; | ||
| 674 | |||
| 675 | kekri = ri->d.kekri; | ||
| 676 | |||
| 677 | if (!kekri->key) | ||
| 678 | { | ||
| 679 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT, CMS_R_NO_KEY); | ||
| 680 | return 0; | ||
| 681 | } | ||
| 682 | |||
| 683 | wrap_nid = OBJ_obj2nid(kekri->keyEncryptionAlgorithm->algorithm); | ||
| 684 | if (aes_wrap_keylen(wrap_nid) != kekri->keylen) | ||
| 685 | { | ||
| 686 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT, | ||
| 687 | CMS_R_INVALID_KEY_LENGTH); | ||
| 688 | return 0; | ||
| 689 | } | ||
| 690 | |||
| 691 | /* If encrypted key length is invalid don't bother */ | ||
| 692 | |||
| 693 | if (kekri->encryptedKey->length < 16) | ||
| 694 | { | ||
| 695 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT, | ||
| 696 | CMS_R_INVALID_ENCRYPTED_KEY_LENGTH); | ||
| 697 | goto err; | ||
| 698 | } | ||
| 699 | |||
| 700 | if (AES_set_decrypt_key(kekri->key, kekri->keylen << 3, &actx)) | ||
| 701 | { | ||
| 702 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT, | ||
| 703 | CMS_R_ERROR_SETTING_KEY); | ||
| 704 | goto err; | ||
| 705 | } | ||
| 706 | |||
| 707 | ukey = OPENSSL_malloc(kekri->encryptedKey->length - 8); | ||
| 708 | |||
| 709 | if (!ukey) | ||
| 710 | { | ||
| 711 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT, | ||
| 712 | ERR_R_MALLOC_FAILURE); | ||
| 713 | goto err; | ||
| 714 | } | ||
| 715 | |||
| 716 | ukeylen = AES_unwrap_key(&actx, NULL, ukey, | ||
| 717 | kekri->encryptedKey->data, | ||
| 718 | kekri->encryptedKey->length); | ||
| 719 | |||
| 720 | if (ukeylen <= 0) | ||
| 721 | { | ||
| 722 | CMSerr(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT, | ||
| 723 | CMS_R_UNWRAP_ERROR); | ||
| 724 | goto err; | ||
| 725 | } | ||
| 726 | |||
| 727 | ec->key = ukey; | ||
| 728 | ec->keylen = ukeylen; | ||
| 729 | |||
| 730 | r = 1; | ||
| 731 | |||
| 732 | err: | ||
| 733 | |||
| 734 | if (!r && ukey) | ||
| 735 | OPENSSL_free(ukey); | ||
| 736 | OPENSSL_cleanse(&actx, sizeof(actx)); | ||
| 737 | |||
| 738 | return r; | ||
| 739 | |||
| 740 | } | ||
| 741 | |||
| 742 | int CMS_RecipientInfo_decrypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri) | ||
| 743 | { | ||
| 744 | switch(ri->type) | ||
| 745 | { | ||
| 746 | case CMS_RECIPINFO_TRANS: | ||
| 747 | return cms_RecipientInfo_ktri_decrypt(cms, ri); | ||
| 748 | |||
| 749 | case CMS_RECIPINFO_KEK: | ||
| 750 | return cms_RecipientInfo_kekri_decrypt(cms, ri); | ||
| 751 | |||
| 752 | default: | ||
| 753 | CMSerr(CMS_F_CMS_RECIPIENTINFO_DECRYPT, | ||
| 754 | CMS_R_UNSUPPORTED_RECPIENTINFO_TYPE); | ||
| 755 | return 0; | ||
| 756 | } | ||
| 757 | } | ||
| 758 | |||
| 759 | BIO *cms_EnvelopedData_init_bio(CMS_ContentInfo *cms) | ||
| 760 | { | ||
| 761 | CMS_EncryptedContentInfo *ec; | ||
| 762 | STACK_OF(CMS_RecipientInfo) *rinfos; | ||
| 763 | CMS_RecipientInfo *ri; | ||
| 764 | int i, r, ok = 0; | ||
| 765 | BIO *ret; | ||
| 766 | |||
| 767 | /* Get BIO first to set up key */ | ||
| 768 | |||
| 769 | ec = cms->d.envelopedData->encryptedContentInfo; | ||
| 770 | ret = cms_EncryptedContent_init_bio(ec); | ||
| 771 | |||
| 772 | /* If error or no cipher end of processing */ | ||
| 773 | |||
| 774 | if (!ret || !ec->cipher) | ||
| 775 | return ret; | ||
| 776 | |||
| 777 | /* Now encrypt content key according to each RecipientInfo type */ | ||
| 778 | |||
| 779 | rinfos = cms->d.envelopedData->recipientInfos; | ||
| 780 | |||
| 781 | for (i = 0; i < sk_CMS_RecipientInfo_num(rinfos); i++) | ||
| 782 | { | ||
| 783 | ri = sk_CMS_RecipientInfo_value(rinfos, i); | ||
| 784 | |||
| 785 | switch (ri->type) | ||
| 786 | { | ||
| 787 | case CMS_RECIPINFO_TRANS: | ||
| 788 | r = cms_RecipientInfo_ktri_encrypt(cms, ri); | ||
| 789 | break; | ||
| 790 | |||
| 791 | case CMS_RECIPINFO_KEK: | ||
| 792 | r = cms_RecipientInfo_kekri_encrypt(cms, ri); | ||
| 793 | break; | ||
| 794 | |||
| 795 | default: | ||
| 796 | CMSerr(CMS_F_CMS_ENVELOPEDDATA_INIT_BIO, | ||
| 797 | CMS_R_UNSUPPORTED_RECIPIENT_TYPE); | ||
| 798 | goto err; | ||
| 799 | } | ||
| 800 | |||
| 801 | if (r <= 0) | ||
| 802 | { | ||
| 803 | CMSerr(CMS_F_CMS_ENVELOPEDDATA_INIT_BIO, | ||
| 804 | CMS_R_ERROR_SETTING_RECIPIENTINFO); | ||
| 805 | goto err; | ||
| 806 | } | ||
| 807 | } | ||
| 808 | |||
| 809 | ok = 1; | ||
| 810 | |||
| 811 | err: | ||
| 812 | ec->cipher = NULL; | ||
| 813 | if (ec->key) | ||
| 814 | { | ||
| 815 | OPENSSL_cleanse(ec->key, ec->keylen); | ||
| 816 | OPENSSL_free(ec->key); | ||
| 817 | ec->key = NULL; | ||
| 818 | ec->keylen = 0; | ||
| 819 | } | ||
| 820 | if (ok) | ||
| 821 | return ret; | ||
| 822 | BIO_free(ret); | ||
| 823 | return NULL; | ||
| 824 | |||
| 825 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_err.c b/src/lib/libssl/src/crypto/cms/cms_err.c new file mode 100644 index 0000000000..52fa53954f --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_err.c | |||
| @@ -0,0 +1,236 @@ | |||
| 1 | /* crypto/cms/cms_err.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2008 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* NOTE: this file was auto generated by the mkerr.pl script: any changes | ||
| 57 | * made to it will be overwritten when the script next updates this file, | ||
| 58 | * only reason strings will be preserved. | ||
| 59 | */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/cms.h> | ||
| 64 | |||
| 65 | /* BEGIN ERROR CODES */ | ||
| 66 | #ifndef OPENSSL_NO_ERR | ||
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(ERR_LIB_CMS,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(ERR_LIB_CMS,0,reason) | ||
| 70 | |||
| 71 | static ERR_STRING_DATA CMS_str_functs[]= | ||
| 72 | { | ||
| 73 | {ERR_FUNC(CMS_F_CHECK_CONTENT), "CHECK_CONTENT"}, | ||
| 74 | {ERR_FUNC(CMS_F_CMS_ADD0_CERT), "CMS_add0_cert"}, | ||
| 75 | {ERR_FUNC(CMS_F_CMS_ADD0_RECIPIENT_KEY), "CMS_add0_recipient_key"}, | ||
| 76 | {ERR_FUNC(CMS_F_CMS_ADD1_RECEIPTREQUEST), "CMS_add1_ReceiptRequest"}, | ||
| 77 | {ERR_FUNC(CMS_F_CMS_ADD1_RECIPIENT_CERT), "CMS_add1_recipient_cert"}, | ||
| 78 | {ERR_FUNC(CMS_F_CMS_ADD1_SIGNER), "CMS_add1_signer"}, | ||
| 79 | {ERR_FUNC(CMS_F_CMS_ADD1_SIGNINGTIME), "CMS_ADD1_SIGNINGTIME"}, | ||
| 80 | {ERR_FUNC(CMS_F_CMS_COMPRESS), "CMS_compress"}, | ||
| 81 | {ERR_FUNC(CMS_F_CMS_COMPRESSEDDATA_CREATE), "cms_CompressedData_create"}, | ||
| 82 | {ERR_FUNC(CMS_F_CMS_COMPRESSEDDATA_INIT_BIO), "cms_CompressedData_init_bio"}, | ||
| 83 | {ERR_FUNC(CMS_F_CMS_COPY_CONTENT), "CMS_COPY_CONTENT"}, | ||
| 84 | {ERR_FUNC(CMS_F_CMS_COPY_MESSAGEDIGEST), "CMS_COPY_MESSAGEDIGEST"}, | ||
| 85 | {ERR_FUNC(CMS_F_CMS_DATA), "CMS_data"}, | ||
| 86 | {ERR_FUNC(CMS_F_CMS_DATAFINAL), "CMS_dataFinal"}, | ||
| 87 | {ERR_FUNC(CMS_F_CMS_DATAINIT), "CMS_dataInit"}, | ||
| 88 | {ERR_FUNC(CMS_F_CMS_DECRYPT), "CMS_decrypt"}, | ||
| 89 | {ERR_FUNC(CMS_F_CMS_DECRYPT_SET1_KEY), "CMS_decrypt_set1_key"}, | ||
| 90 | {ERR_FUNC(CMS_F_CMS_DECRYPT_SET1_PKEY), "CMS_decrypt_set1_pkey"}, | ||
| 91 | {ERR_FUNC(CMS_F_CMS_DIGESTALGORITHM_FIND_CTX), "cms_DigestAlgorithm_find_ctx"}, | ||
| 92 | {ERR_FUNC(CMS_F_CMS_DIGESTALGORITHM_INIT_BIO), "cms_DigestAlgorithm_init_bio"}, | ||
| 93 | {ERR_FUNC(CMS_F_CMS_DIGESTEDDATA_DO_FINAL), "cms_DigestedData_do_final"}, | ||
| 94 | {ERR_FUNC(CMS_F_CMS_DIGEST_VERIFY), "CMS_digest_verify"}, | ||
| 95 | {ERR_FUNC(CMS_F_CMS_ENCODE_RECEIPT), "cms_encode_Receipt"}, | ||
| 96 | {ERR_FUNC(CMS_F_CMS_ENCRYPT), "CMS_encrypt"}, | ||
| 97 | {ERR_FUNC(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO), "cms_EncryptedContent_init_bio"}, | ||
| 98 | {ERR_FUNC(CMS_F_CMS_ENCRYPTEDDATA_DECRYPT), "CMS_EncryptedData_decrypt"}, | ||
| 99 | {ERR_FUNC(CMS_F_CMS_ENCRYPTEDDATA_ENCRYPT), "CMS_EncryptedData_encrypt"}, | ||
| 100 | {ERR_FUNC(CMS_F_CMS_ENCRYPTEDDATA_SET1_KEY), "CMS_EncryptedData_set1_key"}, | ||
| 101 | {ERR_FUNC(CMS_F_CMS_ENVELOPEDDATA_CREATE), "CMS_EnvelopedData_create"}, | ||
| 102 | {ERR_FUNC(CMS_F_CMS_ENVELOPEDDATA_INIT_BIO), "cms_EnvelopedData_init_bio"}, | ||
| 103 | {ERR_FUNC(CMS_F_CMS_ENVELOPED_DATA_INIT), "CMS_ENVELOPED_DATA_INIT"}, | ||
| 104 | {ERR_FUNC(CMS_F_CMS_FINAL), "CMS_final"}, | ||
| 105 | {ERR_FUNC(CMS_F_CMS_GET0_CERTIFICATE_CHOICES), "CMS_GET0_CERTIFICATE_CHOICES"}, | ||
| 106 | {ERR_FUNC(CMS_F_CMS_GET0_CONTENT), "CMS_get0_content"}, | ||
| 107 | {ERR_FUNC(CMS_F_CMS_GET0_ECONTENT_TYPE), "CMS_GET0_ECONTENT_TYPE"}, | ||
| 108 | {ERR_FUNC(CMS_F_CMS_GET0_ENVELOPED), "CMS_GET0_ENVELOPED"}, | ||
| 109 | {ERR_FUNC(CMS_F_CMS_GET0_REVOCATION_CHOICES), "CMS_GET0_REVOCATION_CHOICES"}, | ||
| 110 | {ERR_FUNC(CMS_F_CMS_GET0_SIGNED), "CMS_GET0_SIGNED"}, | ||
| 111 | {ERR_FUNC(CMS_F_CMS_MSGSIGDIGEST_ADD1), "cms_msgSigDigest_add1"}, | ||
| 112 | {ERR_FUNC(CMS_F_CMS_RECEIPTREQUEST_CREATE0), "CMS_ReceiptRequest_create0"}, | ||
| 113 | {ERR_FUNC(CMS_F_CMS_RECEIPT_VERIFY), "cms_Receipt_verify"}, | ||
| 114 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_DECRYPT), "CMS_RecipientInfo_decrypt"}, | ||
| 115 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KEKRI_DECRYPT), "CMS_RECIPIENTINFO_KEKRI_DECRYPT"}, | ||
| 116 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KEKRI_ENCRYPT), "CMS_RECIPIENTINFO_KEKRI_ENCRYPT"}, | ||
| 117 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KEKRI_GET0_ID), "CMS_RecipientInfo_kekri_get0_id"}, | ||
| 118 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KEKRI_ID_CMP), "CMS_RecipientInfo_kekri_id_cmp"}, | ||
| 119 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KTRI_CERT_CMP), "CMS_RecipientInfo_ktri_cert_cmp"}, | ||
| 120 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT), "CMS_RECIPIENTINFO_KTRI_DECRYPT"}, | ||
| 121 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KTRI_ENCRYPT), "CMS_RECIPIENTINFO_KTRI_ENCRYPT"}, | ||
| 122 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KTRI_GET0_ALGS), "CMS_RecipientInfo_ktri_get0_algs"}, | ||
| 123 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_KTRI_GET0_SIGNER_ID), "CMS_RecipientInfo_ktri_get0_signer_id"}, | ||
| 124 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_SET0_KEY), "CMS_RecipientInfo_set0_key"}, | ||
| 125 | {ERR_FUNC(CMS_F_CMS_RECIPIENTINFO_SET0_PKEY), "CMS_RecipientInfo_set0_pkey"}, | ||
| 126 | {ERR_FUNC(CMS_F_CMS_SET1_SIGNERIDENTIFIER), "cms_set1_SignerIdentifier"}, | ||
| 127 | {ERR_FUNC(CMS_F_CMS_SET_DETACHED), "CMS_set_detached"}, | ||
| 128 | {ERR_FUNC(CMS_F_CMS_SIGN), "CMS_sign"}, | ||
| 129 | {ERR_FUNC(CMS_F_CMS_SIGNED_DATA_INIT), "CMS_SIGNED_DATA_INIT"}, | ||
| 130 | {ERR_FUNC(CMS_F_CMS_SIGNERINFO_CONTENT_SIGN), "CMS_SIGNERINFO_CONTENT_SIGN"}, | ||
| 131 | {ERR_FUNC(CMS_F_CMS_SIGNERINFO_SIGN), "CMS_SignerInfo_sign"}, | ||
| 132 | {ERR_FUNC(CMS_F_CMS_SIGNERINFO_VERIFY), "CMS_SignerInfo_verify"}, | ||
| 133 | {ERR_FUNC(CMS_F_CMS_SIGNERINFO_VERIFY_CERT), "CMS_SIGNERINFO_VERIFY_CERT"}, | ||
| 134 | {ERR_FUNC(CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT), "CMS_SignerInfo_verify_content"}, | ||
| 135 | {ERR_FUNC(CMS_F_CMS_SIGN_RECEIPT), "CMS_sign_receipt"}, | ||
| 136 | {ERR_FUNC(CMS_F_CMS_STREAM), "CMS_STREAM"}, | ||
| 137 | {ERR_FUNC(CMS_F_CMS_UNCOMPRESS), "CMS_uncompress"}, | ||
| 138 | {ERR_FUNC(CMS_F_CMS_VERIFY), "CMS_verify"}, | ||
| 139 | {0,NULL} | ||
| 140 | }; | ||
| 141 | |||
| 142 | static ERR_STRING_DATA CMS_str_reasons[]= | ||
| 143 | { | ||
| 144 | {ERR_REASON(CMS_R_ADD_SIGNER_ERROR) ,"add signer error"}, | ||
| 145 | {ERR_REASON(CMS_R_CERTIFICATE_ALREADY_PRESENT),"certificate already present"}, | ||
| 146 | {ERR_REASON(CMS_R_CERTIFICATE_HAS_NO_KEYID),"certificate has no keyid"}, | ||
| 147 | {ERR_REASON(CMS_R_CERTIFICATE_VERIFY_ERROR),"certificate verify error"}, | ||
| 148 | {ERR_REASON(CMS_R_CIPHER_INITIALISATION_ERROR),"cipher initialisation error"}, | ||
| 149 | {ERR_REASON(CMS_R_CIPHER_PARAMETER_INITIALISATION_ERROR),"cipher parameter initialisation error"}, | ||
| 150 | {ERR_REASON(CMS_R_CMS_DATAFINAL_ERROR) ,"cms datafinal error"}, | ||
| 151 | {ERR_REASON(CMS_R_CMS_LIB) ,"cms lib"}, | ||
| 152 | {ERR_REASON(CMS_R_CONTENTIDENTIFIER_MISMATCH),"contentidentifier mismatch"}, | ||
| 153 | {ERR_REASON(CMS_R_CONTENT_NOT_FOUND) ,"content not found"}, | ||
| 154 | {ERR_REASON(CMS_R_CONTENT_TYPE_MISMATCH) ,"content type mismatch"}, | ||
| 155 | {ERR_REASON(CMS_R_CONTENT_TYPE_NOT_COMPRESSED_DATA),"content type not compressed data"}, | ||
| 156 | {ERR_REASON(CMS_R_CONTENT_TYPE_NOT_ENVELOPED_DATA),"content type not enveloped data"}, | ||
| 157 | {ERR_REASON(CMS_R_CONTENT_TYPE_NOT_SIGNED_DATA),"content type not signed data"}, | ||
| 158 | {ERR_REASON(CMS_R_CONTENT_VERIFY_ERROR) ,"content verify error"}, | ||
| 159 | {ERR_REASON(CMS_R_CTRL_ERROR) ,"ctrl error"}, | ||
| 160 | {ERR_REASON(CMS_R_CTRL_FAILURE) ,"ctrl failure"}, | ||
| 161 | {ERR_REASON(CMS_R_DECRYPT_ERROR) ,"decrypt error"}, | ||
| 162 | {ERR_REASON(CMS_R_DIGEST_ERROR) ,"digest error"}, | ||
| 163 | {ERR_REASON(CMS_R_ERROR_GETTING_PUBLIC_KEY),"error getting public key"}, | ||
| 164 | {ERR_REASON(CMS_R_ERROR_READING_MESSAGEDIGEST_ATTRIBUTE),"error reading messagedigest attribute"}, | ||
| 165 | {ERR_REASON(CMS_R_ERROR_SETTING_KEY) ,"error setting key"}, | ||
| 166 | {ERR_REASON(CMS_R_ERROR_SETTING_RECIPIENTINFO),"error setting recipientinfo"}, | ||
| 167 | {ERR_REASON(CMS_R_INVALID_ENCRYPTED_KEY_LENGTH),"invalid encrypted key length"}, | ||
| 168 | {ERR_REASON(CMS_R_INVALID_KEY_LENGTH) ,"invalid key length"}, | ||
| 169 | {ERR_REASON(CMS_R_MD_BIO_INIT_ERROR) ,"md bio init error"}, | ||
| 170 | {ERR_REASON(CMS_R_MESSAGEDIGEST_ATTRIBUTE_WRONG_LENGTH),"messagedigest attribute wrong length"}, | ||
| 171 | {ERR_REASON(CMS_R_MESSAGEDIGEST_WRONG_LENGTH),"messagedigest wrong length"}, | ||
| 172 | {ERR_REASON(CMS_R_MSGSIGDIGEST_ERROR) ,"msgsigdigest error"}, | ||
| 173 | {ERR_REASON(CMS_R_MSGSIGDIGEST_VERIFICATION_FAILURE),"msgsigdigest verification failure"}, | ||
| 174 | {ERR_REASON(CMS_R_MSGSIGDIGEST_WRONG_LENGTH),"msgsigdigest wrong length"}, | ||
| 175 | {ERR_REASON(CMS_R_NEED_ONE_SIGNER) ,"need one signer"}, | ||
| 176 | {ERR_REASON(CMS_R_NOT_A_SIGNED_RECEIPT) ,"not a signed receipt"}, | ||
| 177 | {ERR_REASON(CMS_R_NOT_ENCRYPTED_DATA) ,"not encrypted data"}, | ||
| 178 | {ERR_REASON(CMS_R_NOT_KEK) ,"not kek"}, | ||
| 179 | {ERR_REASON(CMS_R_NOT_KEY_TRANSPORT) ,"not key transport"}, | ||
| 180 | {ERR_REASON(CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE),"not supported for this key type"}, | ||
| 181 | {ERR_REASON(CMS_R_NO_CIPHER) ,"no cipher"}, | ||
| 182 | {ERR_REASON(CMS_R_NO_CONTENT) ,"no content"}, | ||
| 183 | {ERR_REASON(CMS_R_NO_CONTENT_TYPE) ,"no content type"}, | ||
| 184 | {ERR_REASON(CMS_R_NO_DEFAULT_DIGEST) ,"no default digest"}, | ||
| 185 | {ERR_REASON(CMS_R_NO_DIGEST_SET) ,"no digest set"}, | ||
| 186 | {ERR_REASON(CMS_R_NO_KEY) ,"no key"}, | ||
| 187 | {ERR_REASON(CMS_R_NO_KEY_OR_CERT) ,"no key or cert"}, | ||
| 188 | {ERR_REASON(CMS_R_NO_MATCHING_DIGEST) ,"no matching digest"}, | ||
| 189 | {ERR_REASON(CMS_R_NO_MATCHING_RECIPIENT) ,"no matching recipient"}, | ||
| 190 | {ERR_REASON(CMS_R_NO_MATCHING_SIGNATURE) ,"no matching signature"}, | ||
| 191 | {ERR_REASON(CMS_R_NO_MSGSIGDIGEST) ,"no msgsigdigest"}, | ||
| 192 | {ERR_REASON(CMS_R_NO_PRIVATE_KEY) ,"no private key"}, | ||
| 193 | {ERR_REASON(CMS_R_NO_PUBLIC_KEY) ,"no public key"}, | ||
| 194 | {ERR_REASON(CMS_R_NO_RECEIPT_REQUEST) ,"no receipt request"}, | ||
| 195 | {ERR_REASON(CMS_R_NO_SIGNERS) ,"no signers"}, | ||
| 196 | {ERR_REASON(CMS_R_PRIVATE_KEY_DOES_NOT_MATCH_CERTIFICATE),"private key does not match certificate"}, | ||
| 197 | {ERR_REASON(CMS_R_RECEIPT_DECODE_ERROR) ,"receipt decode error"}, | ||
| 198 | {ERR_REASON(CMS_R_RECIPIENT_ERROR) ,"recipient error"}, | ||
| 199 | {ERR_REASON(CMS_R_SIGNER_CERTIFICATE_NOT_FOUND),"signer certificate not found"}, | ||
| 200 | {ERR_REASON(CMS_R_SIGNFINAL_ERROR) ,"signfinal error"}, | ||
| 201 | {ERR_REASON(CMS_R_SMIME_TEXT_ERROR) ,"smime text error"}, | ||
| 202 | {ERR_REASON(CMS_R_STORE_INIT_ERROR) ,"store init error"}, | ||
| 203 | {ERR_REASON(CMS_R_TYPE_NOT_COMPRESSED_DATA),"type not compressed data"}, | ||
| 204 | {ERR_REASON(CMS_R_TYPE_NOT_DATA) ,"type not data"}, | ||
| 205 | {ERR_REASON(CMS_R_TYPE_NOT_DIGESTED_DATA),"type not digested data"}, | ||
| 206 | {ERR_REASON(CMS_R_TYPE_NOT_ENCRYPTED_DATA),"type not encrypted data"}, | ||
| 207 | {ERR_REASON(CMS_R_TYPE_NOT_ENVELOPED_DATA),"type not enveloped data"}, | ||
| 208 | {ERR_REASON(CMS_R_UNABLE_TO_FINALIZE_CONTEXT),"unable to finalize context"}, | ||
| 209 | {ERR_REASON(CMS_R_UNKNOWN_CIPHER) ,"unknown cipher"}, | ||
| 210 | {ERR_REASON(CMS_R_UNKNOWN_DIGEST_ALGORIHM),"unknown digest algorihm"}, | ||
| 211 | {ERR_REASON(CMS_R_UNKNOWN_ID) ,"unknown id"}, | ||
| 212 | {ERR_REASON(CMS_R_UNSUPPORTED_COMPRESSION_ALGORITHM),"unsupported compression algorithm"}, | ||
| 213 | {ERR_REASON(CMS_R_UNSUPPORTED_CONTENT_TYPE),"unsupported content type"}, | ||
| 214 | {ERR_REASON(CMS_R_UNSUPPORTED_KEK_ALGORITHM),"unsupported kek algorithm"}, | ||
| 215 | {ERR_REASON(CMS_R_UNSUPPORTED_RECIPIENT_TYPE),"unsupported recipient type"}, | ||
| 216 | {ERR_REASON(CMS_R_UNSUPPORTED_RECPIENTINFO_TYPE),"unsupported recpientinfo type"}, | ||
| 217 | {ERR_REASON(CMS_R_UNSUPPORTED_TYPE) ,"unsupported type"}, | ||
| 218 | {ERR_REASON(CMS_R_UNWRAP_ERROR) ,"unwrap error"}, | ||
| 219 | {ERR_REASON(CMS_R_VERIFICATION_FAILURE) ,"verification failure"}, | ||
| 220 | {ERR_REASON(CMS_R_WRAP_ERROR) ,"wrap error"}, | ||
| 221 | {0,NULL} | ||
| 222 | }; | ||
| 223 | |||
| 224 | #endif | ||
| 225 | |||
| 226 | void ERR_load_CMS_strings(void) | ||
| 227 | { | ||
| 228 | #ifndef OPENSSL_NO_ERR | ||
| 229 | |||
| 230 | if (ERR_func_error_string(CMS_str_functs[0].error) == NULL) | ||
| 231 | { | ||
| 232 | ERR_load_strings(0,CMS_str_functs); | ||
| 233 | ERR_load_strings(0,CMS_str_reasons); | ||
| 234 | } | ||
| 235 | #endif | ||
| 236 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_ess.c b/src/lib/libssl/src/crypto/cms/cms_ess.c new file mode 100644 index 0000000000..ed34ff3228 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_ess.c | |||
| @@ -0,0 +1,420 @@ | |||
| 1 | /* crypto/cms/cms_ess.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/pem.h> | ||
| 57 | #include <openssl/rand.h> | ||
| 58 | #include <openssl/x509v3.h> | ||
| 59 | #include <openssl/err.h> | ||
| 60 | #include <openssl/cms.h> | ||
| 61 | #include "cms_lcl.h" | ||
| 62 | |||
| 63 | DECLARE_ASN1_ITEM(CMS_ReceiptRequest) | ||
| 64 | DECLARE_ASN1_ITEM(CMS_Receipt) | ||
| 65 | |||
| 66 | IMPLEMENT_ASN1_FUNCTIONS_const(CMS_ReceiptRequest) | ||
| 67 | |||
| 68 | /* ESS services: for now just Signed Receipt related */ | ||
| 69 | |||
| 70 | int CMS_get1_ReceiptRequest(CMS_SignerInfo *si, CMS_ReceiptRequest **prr) | ||
| 71 | { | ||
| 72 | ASN1_STRING *str; | ||
| 73 | CMS_ReceiptRequest *rr = NULL; | ||
| 74 | if (prr) | ||
| 75 | *prr = NULL; | ||
| 76 | str = CMS_signed_get0_data_by_OBJ(si, | ||
| 77 | OBJ_nid2obj(NID_id_smime_aa_receiptRequest), | ||
| 78 | -3, V_ASN1_SEQUENCE); | ||
| 79 | if (!str) | ||
| 80 | return 0; | ||
| 81 | |||
| 82 | rr = ASN1_item_unpack(str, ASN1_ITEM_rptr(CMS_ReceiptRequest)); | ||
| 83 | if (!rr) | ||
| 84 | return -1; | ||
| 85 | if (prr) | ||
| 86 | *prr = rr; | ||
| 87 | else | ||
| 88 | CMS_ReceiptRequest_free(rr); | ||
| 89 | return 1; | ||
| 90 | } | ||
| 91 | |||
| 92 | CMS_ReceiptRequest *CMS_ReceiptRequest_create0(unsigned char *id, int idlen, | ||
| 93 | int allorfirst, | ||
| 94 | STACK_OF(GENERAL_NAMES) *receiptList, | ||
| 95 | STACK_OF(GENERAL_NAMES) *receiptsTo) | ||
| 96 | { | ||
| 97 | CMS_ReceiptRequest *rr = NULL; | ||
| 98 | |||
| 99 | rr = CMS_ReceiptRequest_new(); | ||
| 100 | if (!rr) | ||
| 101 | goto merr; | ||
| 102 | if (id) | ||
| 103 | ASN1_STRING_set0(rr->signedContentIdentifier, id, idlen); | ||
| 104 | else | ||
| 105 | { | ||
| 106 | if (!ASN1_STRING_set(rr->signedContentIdentifier, NULL, 32)) | ||
| 107 | goto merr; | ||
| 108 | if (RAND_pseudo_bytes(rr->signedContentIdentifier->data, 32) | ||
| 109 | <= 0) | ||
| 110 | goto err; | ||
| 111 | } | ||
| 112 | |||
| 113 | sk_GENERAL_NAMES_pop_free(rr->receiptsTo, GENERAL_NAMES_free); | ||
| 114 | rr->receiptsTo = receiptsTo; | ||
| 115 | |||
| 116 | if (receiptList) | ||
| 117 | { | ||
| 118 | rr->receiptsFrom->type = 1; | ||
| 119 | rr->receiptsFrom->d.receiptList = receiptList; | ||
| 120 | } | ||
| 121 | else | ||
| 122 | { | ||
| 123 | rr->receiptsFrom->type = 0; | ||
| 124 | rr->receiptsFrom->d.allOrFirstTier = allorfirst; | ||
| 125 | } | ||
| 126 | |||
| 127 | return rr; | ||
| 128 | |||
| 129 | merr: | ||
| 130 | CMSerr(CMS_F_CMS_RECEIPTREQUEST_CREATE0, ERR_R_MALLOC_FAILURE); | ||
| 131 | |||
| 132 | err: | ||
| 133 | if (rr) | ||
| 134 | CMS_ReceiptRequest_free(rr); | ||
| 135 | |||
| 136 | return NULL; | ||
| 137 | |||
| 138 | } | ||
| 139 | |||
| 140 | int CMS_add1_ReceiptRequest(CMS_SignerInfo *si, CMS_ReceiptRequest *rr) | ||
| 141 | { | ||
| 142 | unsigned char *rrder = NULL; | ||
| 143 | int rrderlen, r = 0; | ||
| 144 | |||
| 145 | rrderlen = i2d_CMS_ReceiptRequest(rr, &rrder); | ||
| 146 | if (rrderlen < 0) | ||
| 147 | goto merr; | ||
| 148 | |||
| 149 | if (!CMS_signed_add1_attr_by_NID(si, NID_id_smime_aa_receiptRequest, | ||
| 150 | V_ASN1_SEQUENCE, rrder, rrderlen)) | ||
| 151 | goto merr; | ||
| 152 | |||
| 153 | r = 1; | ||
| 154 | |||
| 155 | merr: | ||
| 156 | if (!r) | ||
| 157 | CMSerr(CMS_F_CMS_ADD1_RECEIPTREQUEST, ERR_R_MALLOC_FAILURE); | ||
| 158 | |||
| 159 | if (rrder) | ||
| 160 | OPENSSL_free(rrder); | ||
| 161 | |||
| 162 | return r; | ||
| 163 | |||
| 164 | } | ||
| 165 | |||
| 166 | void CMS_ReceiptRequest_get0_values(CMS_ReceiptRequest *rr, | ||
| 167 | ASN1_STRING **pcid, | ||
| 168 | int *pallorfirst, | ||
| 169 | STACK_OF(GENERAL_NAMES) **plist, | ||
| 170 | STACK_OF(GENERAL_NAMES) **prto) | ||
| 171 | { | ||
| 172 | if (pcid) | ||
| 173 | *pcid = rr->signedContentIdentifier; | ||
| 174 | if (rr->receiptsFrom->type == 0) | ||
| 175 | { | ||
| 176 | if (pallorfirst) | ||
| 177 | *pallorfirst = (int)rr->receiptsFrom->d.allOrFirstTier; | ||
| 178 | if (plist) | ||
| 179 | *plist = NULL; | ||
| 180 | } | ||
| 181 | else | ||
| 182 | { | ||
| 183 | if (pallorfirst) | ||
| 184 | *pallorfirst = -1; | ||
| 185 | if (plist) | ||
| 186 | *plist = rr->receiptsFrom->d.receiptList; | ||
| 187 | } | ||
| 188 | if (prto) | ||
| 189 | *prto = rr->receiptsTo; | ||
| 190 | } | ||
| 191 | |||
| 192 | /* Digest a SignerInfo structure for msgSigDigest attribute processing */ | ||
| 193 | |||
| 194 | static int cms_msgSigDigest(CMS_SignerInfo *si, | ||
| 195 | unsigned char *dig, unsigned int *diglen) | ||
| 196 | { | ||
| 197 | const EVP_MD *md; | ||
| 198 | md = EVP_get_digestbyobj(si->digestAlgorithm->algorithm); | ||
| 199 | if (md == NULL) | ||
| 200 | return 0; | ||
| 201 | if (!ASN1_item_digest(ASN1_ITEM_rptr(CMS_Attributes_Verify), md, | ||
| 202 | si->signedAttrs, dig, diglen)) | ||
| 203 | return 0; | ||
| 204 | return 1; | ||
| 205 | } | ||
| 206 | |||
| 207 | /* Add a msgSigDigest attribute to a SignerInfo */ | ||
| 208 | |||
| 209 | int cms_msgSigDigest_add1(CMS_SignerInfo *dest, CMS_SignerInfo *src) | ||
| 210 | { | ||
| 211 | unsigned char dig[EVP_MAX_MD_SIZE]; | ||
| 212 | unsigned int diglen; | ||
| 213 | if (!cms_msgSigDigest(src, dig, &diglen)) | ||
| 214 | { | ||
| 215 | CMSerr(CMS_F_CMS_MSGSIGDIGEST_ADD1, CMS_R_MSGSIGDIGEST_ERROR); | ||
| 216 | return 0; | ||
| 217 | } | ||
| 218 | if (!CMS_signed_add1_attr_by_NID(dest, NID_id_smime_aa_msgSigDigest, | ||
| 219 | V_ASN1_OCTET_STRING, dig, diglen)) | ||
| 220 | { | ||
| 221 | CMSerr(CMS_F_CMS_MSGSIGDIGEST_ADD1, ERR_R_MALLOC_FAILURE); | ||
| 222 | return 0; | ||
| 223 | } | ||
| 224 | return 1; | ||
| 225 | } | ||
| 226 | |||
| 227 | /* Verify signed receipt after it has already passed normal CMS verify */ | ||
| 228 | |||
| 229 | int cms_Receipt_verify(CMS_ContentInfo *cms, CMS_ContentInfo *req_cms) | ||
| 230 | { | ||
| 231 | int r = 0, i; | ||
| 232 | CMS_ReceiptRequest *rr = NULL; | ||
| 233 | CMS_Receipt *rct = NULL; | ||
| 234 | STACK_OF(CMS_SignerInfo) *sis, *osis; | ||
| 235 | CMS_SignerInfo *si, *osi = NULL; | ||
| 236 | ASN1_OCTET_STRING *msig, **pcont; | ||
| 237 | ASN1_OBJECT *octype; | ||
| 238 | unsigned char dig[EVP_MAX_MD_SIZE]; | ||
| 239 | unsigned int diglen; | ||
| 240 | |||
| 241 | /* Get SignerInfos, also checks SignedData content type */ | ||
| 242 | osis = CMS_get0_SignerInfos(req_cms); | ||
| 243 | sis = CMS_get0_SignerInfos(cms); | ||
| 244 | if (!osis || !sis) | ||
| 245 | goto err; | ||
| 246 | |||
| 247 | if (sk_CMS_SignerInfo_num(sis) != 1) | ||
| 248 | { | ||
| 249 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NEED_ONE_SIGNER); | ||
| 250 | goto err; | ||
| 251 | } | ||
| 252 | |||
| 253 | /* Check receipt content type */ | ||
| 254 | if (OBJ_obj2nid(CMS_get0_eContentType(cms)) != NID_id_smime_ct_receipt) | ||
| 255 | { | ||
| 256 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NOT_A_SIGNED_RECEIPT); | ||
| 257 | goto err; | ||
| 258 | } | ||
| 259 | |||
| 260 | /* Extract and decode receipt content */ | ||
| 261 | pcont = CMS_get0_content(cms); | ||
| 262 | if (!pcont || !*pcont) | ||
| 263 | { | ||
| 264 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NO_CONTENT); | ||
| 265 | goto err; | ||
| 266 | } | ||
| 267 | |||
| 268 | rct = ASN1_item_unpack(*pcont, ASN1_ITEM_rptr(CMS_Receipt)); | ||
| 269 | |||
| 270 | if (!rct) | ||
| 271 | { | ||
| 272 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_RECEIPT_DECODE_ERROR); | ||
| 273 | goto err; | ||
| 274 | } | ||
| 275 | |||
| 276 | /* Locate original request */ | ||
| 277 | |||
| 278 | for (i = 0; i < sk_CMS_SignerInfo_num(osis); i++) | ||
| 279 | { | ||
| 280 | osi = sk_CMS_SignerInfo_value(osis, i); | ||
| 281 | if (!ASN1_STRING_cmp(osi->signature, | ||
| 282 | rct->originatorSignatureValue)) | ||
| 283 | break; | ||
| 284 | } | ||
| 285 | |||
| 286 | if (i == sk_CMS_SignerInfo_num(osis)) | ||
| 287 | { | ||
| 288 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NO_MATCHING_SIGNATURE); | ||
| 289 | goto err; | ||
| 290 | } | ||
| 291 | |||
| 292 | si = sk_CMS_SignerInfo_value(sis, 0); | ||
| 293 | |||
| 294 | /* Get msgSigDigest value and compare */ | ||
| 295 | |||
| 296 | msig = CMS_signed_get0_data_by_OBJ(si, | ||
| 297 | OBJ_nid2obj(NID_id_smime_aa_msgSigDigest), | ||
| 298 | -3, V_ASN1_OCTET_STRING); | ||
| 299 | |||
| 300 | if (!msig) | ||
| 301 | { | ||
| 302 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NO_MSGSIGDIGEST); | ||
| 303 | goto err; | ||
| 304 | } | ||
| 305 | |||
| 306 | if (!cms_msgSigDigest(osi, dig, &diglen)) | ||
| 307 | { | ||
| 308 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_MSGSIGDIGEST_ERROR); | ||
| 309 | goto err; | ||
| 310 | } | ||
| 311 | |||
| 312 | if (diglen != (unsigned int)msig->length) | ||
| 313 | { | ||
| 314 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, | ||
| 315 | CMS_R_MSGSIGDIGEST_WRONG_LENGTH); | ||
| 316 | goto err; | ||
| 317 | } | ||
| 318 | |||
| 319 | if (memcmp(dig, msig->data, diglen)) | ||
| 320 | { | ||
| 321 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, | ||
| 322 | CMS_R_MSGSIGDIGEST_VERIFICATION_FAILURE); | ||
| 323 | goto err; | ||
| 324 | } | ||
| 325 | |||
| 326 | /* Compare content types */ | ||
| 327 | |||
| 328 | octype = CMS_signed_get0_data_by_OBJ(osi, | ||
| 329 | OBJ_nid2obj(NID_pkcs9_contentType), | ||
| 330 | -3, V_ASN1_OBJECT); | ||
| 331 | if (!octype) | ||
| 332 | { | ||
| 333 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NO_CONTENT_TYPE); | ||
| 334 | goto err; | ||
| 335 | } | ||
| 336 | |||
| 337 | /* Compare details in receipt request */ | ||
| 338 | |||
| 339 | if (OBJ_cmp(octype, rct->contentType)) | ||
| 340 | { | ||
| 341 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_CONTENT_TYPE_MISMATCH); | ||
| 342 | goto err; | ||
| 343 | } | ||
| 344 | |||
| 345 | /* Get original receipt request details */ | ||
| 346 | |||
| 347 | if (!CMS_get1_ReceiptRequest(osi, &rr)) | ||
| 348 | { | ||
| 349 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NO_RECEIPT_REQUEST); | ||
| 350 | goto err; | ||
| 351 | } | ||
| 352 | |||
| 353 | if (ASN1_STRING_cmp(rr->signedContentIdentifier, | ||
| 354 | rct->signedContentIdentifier)) | ||
| 355 | { | ||
| 356 | CMSerr(CMS_F_CMS_RECEIPT_VERIFY, | ||
| 357 | CMS_R_CONTENTIDENTIFIER_MISMATCH); | ||
| 358 | goto err; | ||
| 359 | } | ||
| 360 | |||
| 361 | r = 1; | ||
| 362 | |||
| 363 | err: | ||
| 364 | if (rr) | ||
| 365 | CMS_ReceiptRequest_free(rr); | ||
| 366 | if (rct) | ||
| 367 | M_ASN1_free_of(rct, CMS_Receipt); | ||
| 368 | |||
| 369 | return r; | ||
| 370 | |||
| 371 | } | ||
| 372 | |||
| 373 | /* Encode a Receipt into an OCTET STRING read for including into content of | ||
| 374 | * a SignedData ContentInfo. | ||
| 375 | */ | ||
| 376 | |||
| 377 | ASN1_OCTET_STRING *cms_encode_Receipt(CMS_SignerInfo *si) | ||
| 378 | { | ||
| 379 | CMS_Receipt rct; | ||
| 380 | CMS_ReceiptRequest *rr = NULL; | ||
| 381 | ASN1_OBJECT *ctype; | ||
| 382 | ASN1_OCTET_STRING *os = NULL; | ||
| 383 | |||
| 384 | /* Get original receipt request */ | ||
| 385 | |||
| 386 | /* Get original receipt request details */ | ||
| 387 | |||
| 388 | if (!CMS_get1_ReceiptRequest(si, &rr)) | ||
| 389 | { | ||
| 390 | CMSerr(CMS_F_CMS_ENCODE_RECEIPT, CMS_R_NO_RECEIPT_REQUEST); | ||
| 391 | goto err; | ||
| 392 | } | ||
| 393 | |||
| 394 | /* Get original content type */ | ||
| 395 | |||
| 396 | ctype = CMS_signed_get0_data_by_OBJ(si, | ||
| 397 | OBJ_nid2obj(NID_pkcs9_contentType), | ||
| 398 | -3, V_ASN1_OBJECT); | ||
| 399 | if (!ctype) | ||
| 400 | { | ||
| 401 | CMSerr(CMS_F_CMS_ENCODE_RECEIPT, CMS_R_NO_CONTENT_TYPE); | ||
| 402 | goto err; | ||
| 403 | } | ||
| 404 | |||
| 405 | rct.version = 1; | ||
| 406 | rct.contentType = ctype; | ||
| 407 | rct.signedContentIdentifier = rr->signedContentIdentifier; | ||
| 408 | rct.originatorSignatureValue = si->signature; | ||
| 409 | |||
| 410 | os = ASN1_item_pack(&rct, ASN1_ITEM_rptr(CMS_Receipt), NULL); | ||
| 411 | |||
| 412 | err: | ||
| 413 | if (rr) | ||
| 414 | CMS_ReceiptRequest_free(rr); | ||
| 415 | |||
| 416 | return os; | ||
| 417 | |||
| 418 | } | ||
| 419 | |||
| 420 | |||
diff --git a/src/lib/libssl/src/crypto/cms/cms_io.c b/src/lib/libssl/src/crypto/cms/cms_io.c new file mode 100644 index 0000000000..30f5ddfe6d --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_io.c | |||
| @@ -0,0 +1,140 @@ | |||
| 1 | /* crypto/cms/cms_io.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include <openssl/asn1t.h> | ||
| 55 | #include <openssl/x509.h> | ||
| 56 | #include <openssl/err.h> | ||
| 57 | #include <openssl/pem.h> | ||
| 58 | #include "cms.h" | ||
| 59 | #include "cms_lcl.h" | ||
| 60 | |||
| 61 | CMS_ContentInfo *d2i_CMS_bio(BIO *bp, CMS_ContentInfo **cms) | ||
| 62 | { | ||
| 63 | return ASN1_item_d2i_bio(ASN1_ITEM_rptr(CMS_ContentInfo), bp, cms); | ||
| 64 | } | ||
| 65 | |||
| 66 | int i2d_CMS_bio(BIO *bp, CMS_ContentInfo *cms) | ||
| 67 | { | ||
| 68 | return ASN1_item_i2d_bio(ASN1_ITEM_rptr(CMS_ContentInfo), bp, cms); | ||
| 69 | } | ||
| 70 | |||
| 71 | IMPLEMENT_PEM_rw_const(CMS, CMS_ContentInfo, PEM_STRING_CMS, CMS_ContentInfo) | ||
| 72 | |||
| 73 | /* Callback for int_smime_write_ASN1 */ | ||
| 74 | |||
| 75 | static int cms_output_data(BIO *out, BIO *data, ASN1_VALUE *val, int flags, | ||
| 76 | const ASN1_ITEM *it) | ||
| 77 | { | ||
| 78 | CMS_ContentInfo *cms = (CMS_ContentInfo *)val; | ||
| 79 | BIO *tmpbio, *cmsbio; | ||
| 80 | int r = 0; | ||
| 81 | |||
| 82 | if (!(flags & SMIME_DETACHED)) | ||
| 83 | { | ||
| 84 | SMIME_crlf_copy(data, out, flags); | ||
| 85 | return 1; | ||
| 86 | } | ||
| 87 | |||
| 88 | /* Let CMS code prepend any needed BIOs */ | ||
| 89 | |||
| 90 | cmsbio = CMS_dataInit(cms, out); | ||
| 91 | |||
| 92 | if (!cmsbio) | ||
| 93 | return 0; | ||
| 94 | |||
| 95 | /* Copy data across, passing through filter BIOs for processing */ | ||
| 96 | SMIME_crlf_copy(data, cmsbio, flags); | ||
| 97 | |||
| 98 | /* Finalize structure */ | ||
| 99 | if (CMS_dataFinal(cms, cmsbio) <= 0) | ||
| 100 | goto err; | ||
| 101 | |||
| 102 | r = 1; | ||
| 103 | |||
| 104 | err: | ||
| 105 | |||
| 106 | /* Now remove any digests prepended to the BIO */ | ||
| 107 | |||
| 108 | while (cmsbio != out) | ||
| 109 | { | ||
| 110 | tmpbio = BIO_pop(cmsbio); | ||
| 111 | BIO_free(cmsbio); | ||
| 112 | cmsbio = tmpbio; | ||
| 113 | } | ||
| 114 | |||
| 115 | return 1; | ||
| 116 | |||
| 117 | } | ||
| 118 | |||
| 119 | |||
| 120 | int SMIME_write_CMS(BIO *bio, CMS_ContentInfo *cms, BIO *data, int flags) | ||
| 121 | { | ||
| 122 | STACK_OF(X509_ALGOR) *mdalgs; | ||
| 123 | int ctype_nid = OBJ_obj2nid(cms->contentType); | ||
| 124 | int econt_nid = OBJ_obj2nid(CMS_get0_eContentType(cms)); | ||
| 125 | if (ctype_nid == NID_pkcs7_signed) | ||
| 126 | mdalgs = cms->d.signedData->digestAlgorithms; | ||
| 127 | else | ||
| 128 | mdalgs = NULL; | ||
| 129 | |||
| 130 | return int_smime_write_ASN1(bio, (ASN1_VALUE *)cms, data, flags, | ||
| 131 | ctype_nid, econt_nid, mdalgs, | ||
| 132 | cms_output_data, | ||
| 133 | ASN1_ITEM_rptr(CMS_ContentInfo)); | ||
| 134 | } | ||
| 135 | |||
| 136 | CMS_ContentInfo *SMIME_read_CMS(BIO *bio, BIO **bcont) | ||
| 137 | { | ||
| 138 | return (CMS_ContentInfo *)SMIME_read_ASN1(bio, bcont, | ||
| 139 | ASN1_ITEM_rptr(CMS_ContentInfo)); | ||
| 140 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_lcl.h b/src/lib/libssl/src/crypto/cms/cms_lcl.h new file mode 100644 index 0000000000..7d60fac67e --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_lcl.h | |||
| @@ -0,0 +1,460 @@ | |||
| 1 | /* crypto/cms/cms_lcl.h */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #ifndef HEADER_CMS_LCL_H | ||
| 55 | #define HEADER_CMS_LCL_H | ||
| 56 | |||
| 57 | #ifdef __cplusplus | ||
| 58 | extern "C" { | ||
| 59 | #endif | ||
| 60 | |||
| 61 | #include <openssl/x509.h> | ||
| 62 | |||
| 63 | /* Cryptographic message syntax (CMS) structures: taken | ||
| 64 | * from RFC3852 | ||
| 65 | */ | ||
| 66 | |||
| 67 | /* Forward references */ | ||
| 68 | |||
| 69 | typedef struct CMS_IssuerAndSerialNumber_st CMS_IssuerAndSerialNumber; | ||
| 70 | typedef struct CMS_EncapsulatedContentInfo_st CMS_EncapsulatedContentInfo; | ||
| 71 | typedef struct CMS_SignerIdentifier_st CMS_SignerIdentifier; | ||
| 72 | typedef struct CMS_SignedData_st CMS_SignedData; | ||
| 73 | typedef struct CMS_OtherRevocationInfoFormat_st CMS_OtherRevocationInfoFormat; | ||
| 74 | typedef struct CMS_OriginatorInfo_st CMS_OriginatorInfo; | ||
| 75 | typedef struct CMS_EncryptedContentInfo_st CMS_EncryptedContentInfo; | ||
| 76 | typedef struct CMS_EnvelopedData_st CMS_EnvelopedData; | ||
| 77 | typedef struct CMS_DigestedData_st CMS_DigestedData; | ||
| 78 | typedef struct CMS_EncryptedData_st CMS_EncryptedData; | ||
| 79 | typedef struct CMS_AuthenticatedData_st CMS_AuthenticatedData; | ||
| 80 | typedef struct CMS_CompressedData_st CMS_CompressedData; | ||
| 81 | typedef struct CMS_OtherCertificateFormat_st CMS_OtherCertificateFormat; | ||
| 82 | typedef struct CMS_KeyTransRecipientInfo_st CMS_KeyTransRecipientInfo; | ||
| 83 | typedef struct CMS_OriginatorPublicKey_st CMS_OriginatorPublicKey; | ||
| 84 | typedef struct CMS_OriginatorIdentifierOrKey_st CMS_OriginatorIdentifierOrKey; | ||
| 85 | typedef struct CMS_KeyAgreeRecipientInfo_st CMS_KeyAgreeRecipientInfo; | ||
| 86 | typedef struct CMS_OtherKeyAttribute_st CMS_OtherKeyAttribute; | ||
| 87 | typedef struct CMS_RecipientKeyIdentifier_st CMS_RecipientKeyIdentifier; | ||
| 88 | typedef struct CMS_KeyAgreeRecipientIdentifier_st CMS_KeyAgreeRecipientIdentifier; | ||
| 89 | typedef struct CMS_RecipientEncryptedKey_st CMS_RecipientEncryptedKey; | ||
| 90 | typedef struct CMS_KEKIdentifier_st CMS_KEKIdentifier; | ||
| 91 | typedef struct CMS_KEKRecipientInfo_st CMS_KEKRecipientInfo; | ||
| 92 | typedef struct CMS_PasswordRecipientInfo_st CMS_PasswordRecipientInfo; | ||
| 93 | typedef struct CMS_OtherRecipientInfo_st CMS_OtherRecipientInfo; | ||
| 94 | typedef struct CMS_ReceiptsFrom_st CMS_ReceiptsFrom; | ||
| 95 | |||
| 96 | struct CMS_ContentInfo_st | ||
| 97 | { | ||
| 98 | ASN1_OBJECT *contentType; | ||
| 99 | union { | ||
| 100 | ASN1_OCTET_STRING *data; | ||
| 101 | CMS_SignedData *signedData; | ||
| 102 | CMS_EnvelopedData *envelopedData; | ||
| 103 | CMS_DigestedData *digestedData; | ||
| 104 | CMS_EncryptedData *encryptedData; | ||
| 105 | CMS_AuthenticatedData *authenticatedData; | ||
| 106 | CMS_CompressedData *compressedData; | ||
| 107 | ASN1_TYPE *other; | ||
| 108 | /* Other types ... */ | ||
| 109 | void *otherData; | ||
| 110 | } d; | ||
| 111 | }; | ||
| 112 | |||
| 113 | struct CMS_SignedData_st | ||
| 114 | { | ||
| 115 | long version; | ||
| 116 | STACK_OF(X509_ALGOR) *digestAlgorithms; | ||
| 117 | CMS_EncapsulatedContentInfo *encapContentInfo; | ||
| 118 | STACK_OF(CMS_CertificateChoices) *certificates; | ||
| 119 | STACK_OF(CMS_RevocationInfoChoice) *crls; | ||
| 120 | STACK_OF(CMS_SignerInfo) *signerInfos; | ||
| 121 | }; | ||
| 122 | |||
| 123 | struct CMS_EncapsulatedContentInfo_st | ||
| 124 | { | ||
| 125 | ASN1_OBJECT *eContentType; | ||
| 126 | ASN1_OCTET_STRING *eContent; | ||
| 127 | /* Set to 1 if incomplete structure only part set up */ | ||
| 128 | int partial; | ||
| 129 | }; | ||
| 130 | |||
| 131 | struct CMS_SignerInfo_st | ||
| 132 | { | ||
| 133 | long version; | ||
| 134 | CMS_SignerIdentifier *sid; | ||
| 135 | X509_ALGOR *digestAlgorithm; | ||
| 136 | STACK_OF(X509_ATTRIBUTE) *signedAttrs; | ||
| 137 | X509_ALGOR *signatureAlgorithm; | ||
| 138 | ASN1_OCTET_STRING *signature; | ||
| 139 | STACK_OF(X509_ATTRIBUTE) *unsignedAttrs; | ||
| 140 | /* Signing certificate and key */ | ||
| 141 | X509 *signer; | ||
| 142 | EVP_PKEY *pkey; | ||
| 143 | }; | ||
| 144 | |||
| 145 | struct CMS_SignerIdentifier_st | ||
| 146 | { | ||
| 147 | int type; | ||
| 148 | union { | ||
| 149 | CMS_IssuerAndSerialNumber *issuerAndSerialNumber; | ||
| 150 | ASN1_OCTET_STRING *subjectKeyIdentifier; | ||
| 151 | } d; | ||
| 152 | }; | ||
| 153 | |||
| 154 | struct CMS_EnvelopedData_st | ||
| 155 | { | ||
| 156 | long version; | ||
| 157 | CMS_OriginatorInfo *originatorInfo; | ||
| 158 | STACK_OF(CMS_RecipientInfo) *recipientInfos; | ||
| 159 | CMS_EncryptedContentInfo *encryptedContentInfo; | ||
| 160 | STACK_OF(X509_ATTRIBUTE) *unprotectedAttrs; | ||
| 161 | }; | ||
| 162 | |||
| 163 | struct CMS_OriginatorInfo_st | ||
| 164 | { | ||
| 165 | STACK_OF(CMS_CertificateChoices) *certificates; | ||
| 166 | STACK_OF(CMS_RevocationInfoChoice) *crls; | ||
| 167 | }; | ||
| 168 | |||
| 169 | struct CMS_EncryptedContentInfo_st | ||
| 170 | { | ||
| 171 | ASN1_OBJECT *contentType; | ||
| 172 | X509_ALGOR *contentEncryptionAlgorithm; | ||
| 173 | ASN1_OCTET_STRING *encryptedContent; | ||
| 174 | /* Content encryption algorithm and key */ | ||
| 175 | const EVP_CIPHER *cipher; | ||
| 176 | unsigned char *key; | ||
| 177 | size_t keylen; | ||
| 178 | }; | ||
| 179 | |||
| 180 | struct CMS_RecipientInfo_st | ||
| 181 | { | ||
| 182 | int type; | ||
| 183 | union { | ||
| 184 | CMS_KeyTransRecipientInfo *ktri; | ||
| 185 | CMS_KeyAgreeRecipientInfo *kari; | ||
| 186 | CMS_KEKRecipientInfo *kekri; | ||
| 187 | CMS_PasswordRecipientInfo *pwri; | ||
| 188 | CMS_OtherRecipientInfo *ori; | ||
| 189 | } d; | ||
| 190 | }; | ||
| 191 | |||
| 192 | typedef CMS_SignerIdentifier CMS_RecipientIdentifier; | ||
| 193 | |||
| 194 | struct CMS_KeyTransRecipientInfo_st | ||
| 195 | { | ||
| 196 | long version; | ||
| 197 | CMS_RecipientIdentifier *rid; | ||
| 198 | X509_ALGOR *keyEncryptionAlgorithm; | ||
| 199 | ASN1_OCTET_STRING *encryptedKey; | ||
| 200 | /* Recipient Key and cert */ | ||
| 201 | X509 *recip; | ||
| 202 | EVP_PKEY *pkey; | ||
| 203 | }; | ||
| 204 | |||
| 205 | struct CMS_KeyAgreeRecipientInfo_st | ||
| 206 | { | ||
| 207 | long version; | ||
| 208 | CMS_OriginatorIdentifierOrKey *originator; | ||
| 209 | ASN1_OCTET_STRING *ukm; | ||
| 210 | X509_ALGOR *keyEncryptionAlgorithm; | ||
| 211 | STACK_OF(CMS_RecipientEncryptedKey) *recipientEncryptedKeys; | ||
| 212 | }; | ||
| 213 | |||
| 214 | struct CMS_OriginatorIdentifierOrKey_st | ||
| 215 | { | ||
| 216 | int type; | ||
| 217 | union { | ||
| 218 | CMS_IssuerAndSerialNumber *issuerAndSerialNumber; | ||
| 219 | ASN1_OCTET_STRING *subjectKeyIdentifier; | ||
| 220 | CMS_OriginatorPublicKey *originatorKey; | ||
| 221 | } d; | ||
| 222 | }; | ||
| 223 | |||
| 224 | struct CMS_OriginatorPublicKey_st | ||
| 225 | { | ||
| 226 | X509_ALGOR *algorithm; | ||
| 227 | ASN1_BIT_STRING *publicKey; | ||
| 228 | }; | ||
| 229 | |||
| 230 | struct CMS_RecipientEncryptedKey_st | ||
| 231 | { | ||
| 232 | CMS_KeyAgreeRecipientIdentifier *rid; | ||
| 233 | ASN1_OCTET_STRING *encryptedKey; | ||
| 234 | }; | ||
| 235 | |||
| 236 | struct CMS_KeyAgreeRecipientIdentifier_st | ||
| 237 | { | ||
| 238 | int type; | ||
| 239 | union { | ||
| 240 | CMS_IssuerAndSerialNumber *issuerAndSerialNumber; | ||
| 241 | CMS_RecipientKeyIdentifier *rKeyId; | ||
| 242 | } d; | ||
| 243 | }; | ||
| 244 | |||
| 245 | struct CMS_RecipientKeyIdentifier_st | ||
| 246 | { | ||
| 247 | ASN1_OCTET_STRING *subjectKeyIdentifier; | ||
| 248 | ASN1_GENERALIZEDTIME *date; | ||
| 249 | CMS_OtherKeyAttribute *other; | ||
| 250 | }; | ||
| 251 | |||
| 252 | struct CMS_KEKRecipientInfo_st | ||
| 253 | { | ||
| 254 | long version; | ||
| 255 | CMS_KEKIdentifier *kekid; | ||
| 256 | X509_ALGOR *keyEncryptionAlgorithm; | ||
| 257 | ASN1_OCTET_STRING *encryptedKey; | ||
| 258 | /* Extra info: symmetric key to use */ | ||
| 259 | unsigned char *key; | ||
| 260 | size_t keylen; | ||
| 261 | }; | ||
| 262 | |||
| 263 | struct CMS_KEKIdentifier_st | ||
| 264 | { | ||
| 265 | ASN1_OCTET_STRING *keyIdentifier; | ||
| 266 | ASN1_GENERALIZEDTIME *date; | ||
| 267 | CMS_OtherKeyAttribute *other; | ||
| 268 | }; | ||
| 269 | |||
| 270 | struct CMS_PasswordRecipientInfo_st | ||
| 271 | { | ||
| 272 | long version; | ||
| 273 | X509_ALGOR *keyDerivationAlgorithm; | ||
| 274 | X509_ALGOR *keyEncryptionAlgorithm; | ||
| 275 | ASN1_OCTET_STRING *encryptedKey; | ||
| 276 | }; | ||
| 277 | |||
| 278 | struct CMS_OtherRecipientInfo_st | ||
| 279 | { | ||
| 280 | ASN1_OBJECT *oriType; | ||
| 281 | ASN1_TYPE *oriValue; | ||
| 282 | }; | ||
| 283 | |||
| 284 | struct CMS_DigestedData_st | ||
| 285 | { | ||
| 286 | long version; | ||
| 287 | X509_ALGOR *digestAlgorithm; | ||
| 288 | CMS_EncapsulatedContentInfo *encapContentInfo; | ||
| 289 | ASN1_OCTET_STRING *digest; | ||
| 290 | }; | ||
| 291 | |||
| 292 | struct CMS_EncryptedData_st | ||
| 293 | { | ||
| 294 | long version; | ||
| 295 | CMS_EncryptedContentInfo *encryptedContentInfo; | ||
| 296 | STACK_OF(X509_ATTRIBUTE) *unprotectedAttrs; | ||
| 297 | }; | ||
| 298 | |||
| 299 | struct CMS_AuthenticatedData_st | ||
| 300 | { | ||
| 301 | long version; | ||
| 302 | CMS_OriginatorInfo *originatorInfo; | ||
| 303 | STACK_OF(CMS_RecipientInfo) *recipientInfos; | ||
| 304 | X509_ALGOR *macAlgorithm; | ||
| 305 | X509_ALGOR *digestAlgorithm; | ||
| 306 | CMS_EncapsulatedContentInfo *encapContentInfo; | ||
| 307 | STACK_OF(X509_ATTRIBUTE) *authAttrs; | ||
| 308 | ASN1_OCTET_STRING *mac; | ||
| 309 | STACK_OF(X509_ATTRIBUTE) *unauthAttrs; | ||
| 310 | }; | ||
| 311 | |||
| 312 | struct CMS_CompressedData_st | ||
| 313 | { | ||
| 314 | long version; | ||
| 315 | X509_ALGOR *compressionAlgorithm; | ||
| 316 | STACK_OF(CMS_RecipientInfo) *recipientInfos; | ||
| 317 | CMS_EncapsulatedContentInfo *encapContentInfo; | ||
| 318 | }; | ||
| 319 | |||
| 320 | struct CMS_RevocationInfoChoice_st | ||
| 321 | { | ||
| 322 | int type; | ||
| 323 | union { | ||
| 324 | X509_CRL *crl; | ||
| 325 | CMS_OtherRevocationInfoFormat *other; | ||
| 326 | } d; | ||
| 327 | }; | ||
| 328 | |||
| 329 | #define CMS_REVCHOICE_CRL 0 | ||
| 330 | #define CMS_REVCHOICE_OTHER 1 | ||
| 331 | |||
| 332 | struct CMS_OtherRevocationInfoFormat_st | ||
| 333 | { | ||
| 334 | ASN1_OBJECT *otherRevInfoFormat; | ||
| 335 | ASN1_TYPE *otherRevInfo; | ||
| 336 | }; | ||
| 337 | |||
| 338 | struct CMS_CertificateChoices | ||
| 339 | { | ||
| 340 | int type; | ||
| 341 | union { | ||
| 342 | X509 *certificate; | ||
| 343 | ASN1_STRING *extendedCertificate; /* Obsolete */ | ||
| 344 | ASN1_STRING *v1AttrCert; /* Left encoded for now */ | ||
| 345 | ASN1_STRING *v2AttrCert; /* Left encoded for now */ | ||
| 346 | CMS_OtherCertificateFormat *other; | ||
| 347 | } d; | ||
| 348 | }; | ||
| 349 | |||
| 350 | #define CMS_CERTCHOICE_CERT 0 | ||
| 351 | #define CMS_CERTCHOICE_EXCERT 1 | ||
| 352 | #define CMS_CERTCHOICE_V1ACERT 2 | ||
| 353 | #define CMS_CERTCHOICE_V2ACERT 3 | ||
| 354 | #define CMS_CERTCHOICE_OTHER 4 | ||
| 355 | |||
| 356 | struct CMS_OtherCertificateFormat_st | ||
| 357 | { | ||
| 358 | ASN1_OBJECT *otherCertFormat; | ||
| 359 | ASN1_TYPE *otherCert; | ||
| 360 | }; | ||
| 361 | |||
| 362 | /* This is also defined in pkcs7.h but we duplicate it | ||
| 363 | * to allow the CMS code to be independent of PKCS#7 | ||
| 364 | */ | ||
| 365 | |||
| 366 | struct CMS_IssuerAndSerialNumber_st | ||
| 367 | { | ||
| 368 | X509_NAME *issuer; | ||
| 369 | ASN1_INTEGER *serialNumber; | ||
| 370 | }; | ||
| 371 | |||
| 372 | struct CMS_OtherKeyAttribute_st | ||
| 373 | { | ||
| 374 | ASN1_OBJECT *keyAttrId; | ||
| 375 | ASN1_TYPE *keyAttr; | ||
| 376 | }; | ||
| 377 | |||
| 378 | /* ESS structures */ | ||
| 379 | |||
| 380 | #ifdef HEADER_X509V3_H | ||
| 381 | |||
| 382 | struct CMS_ReceiptRequest_st | ||
| 383 | { | ||
| 384 | ASN1_OCTET_STRING *signedContentIdentifier; | ||
| 385 | CMS_ReceiptsFrom *receiptsFrom; | ||
| 386 | STACK_OF(GENERAL_NAMES) *receiptsTo; | ||
| 387 | }; | ||
| 388 | |||
| 389 | |||
| 390 | struct CMS_ReceiptsFrom_st | ||
| 391 | { | ||
| 392 | int type; | ||
| 393 | union | ||
| 394 | { | ||
| 395 | long allOrFirstTier; | ||
| 396 | STACK_OF(GENERAL_NAMES) *receiptList; | ||
| 397 | } d; | ||
| 398 | }; | ||
| 399 | #endif | ||
| 400 | |||
| 401 | struct CMS_Receipt_st | ||
| 402 | { | ||
| 403 | long version; | ||
| 404 | ASN1_OBJECT *contentType; | ||
| 405 | ASN1_OCTET_STRING *signedContentIdentifier; | ||
| 406 | ASN1_OCTET_STRING *originatorSignatureValue; | ||
| 407 | }; | ||
| 408 | |||
| 409 | DECLARE_ASN1_ITEM(CMS_SignerInfo) | ||
| 410 | DECLARE_ASN1_ITEM(CMS_IssuerAndSerialNumber) | ||
| 411 | DECLARE_ASN1_ITEM(CMS_Attributes_Sign) | ||
| 412 | DECLARE_ASN1_ITEM(CMS_Attributes_Verify) | ||
| 413 | DECLARE_ASN1_ALLOC_FUNCTIONS(CMS_IssuerAndSerialNumber) | ||
| 414 | |||
| 415 | #define CMS_SIGNERINFO_ISSUER_SERIAL 0 | ||
| 416 | #define CMS_SIGNERINFO_KEYIDENTIFIER 1 | ||
| 417 | |||
| 418 | #define CMS_RECIPINFO_ISSUER_SERIAL 0 | ||
| 419 | #define CMS_RECIPINFO_KEYIDENTIFIER 1 | ||
| 420 | |||
| 421 | BIO *cms_content_bio(CMS_ContentInfo *cms); | ||
| 422 | |||
| 423 | CMS_ContentInfo *cms_Data_create(void); | ||
| 424 | |||
| 425 | CMS_ContentInfo *cms_DigestedData_create(const EVP_MD *md); | ||
| 426 | BIO *cms_DigestedData_init_bio(CMS_ContentInfo *cms); | ||
| 427 | int cms_DigestedData_do_final(CMS_ContentInfo *cms, BIO *chain, int verify); | ||
| 428 | |||
| 429 | BIO *cms_SignedData_init_bio(CMS_ContentInfo *cms); | ||
| 430 | int cms_SignedData_final(CMS_ContentInfo *cms, BIO *chain); | ||
| 431 | int cms_set1_SignerIdentifier(CMS_SignerIdentifier *sid, X509 *cert, int type); | ||
| 432 | int cms_SignerIdentifier_get0_signer_id(CMS_SignerIdentifier *sid, | ||
| 433 | ASN1_OCTET_STRING **keyid, | ||
| 434 | X509_NAME **issuer, ASN1_INTEGER **sno); | ||
| 435 | int cms_SignerIdentifier_cert_cmp(CMS_SignerIdentifier *sid, X509 *cert); | ||
| 436 | |||
| 437 | CMS_ContentInfo *cms_CompressedData_create(int comp_nid); | ||
| 438 | BIO *cms_CompressedData_init_bio(CMS_ContentInfo *cms); | ||
| 439 | |||
| 440 | void cms_DigestAlgorithm_set(X509_ALGOR *alg, const EVP_MD *md); | ||
| 441 | BIO *cms_DigestAlgorithm_init_bio(X509_ALGOR *digestAlgorithm); | ||
| 442 | int cms_DigestAlgorithm_find_ctx(EVP_MD_CTX *mctx, BIO *chain, | ||
| 443 | X509_ALGOR *mdalg); | ||
| 444 | |||
| 445 | BIO *cms_EncryptedContent_init_bio(CMS_EncryptedContentInfo *ec); | ||
| 446 | BIO *cms_EncryptedData_init_bio(CMS_ContentInfo *cms); | ||
| 447 | int cms_EncryptedContent_init(CMS_EncryptedContentInfo *ec, | ||
| 448 | const EVP_CIPHER *cipher, | ||
| 449 | const unsigned char *key, size_t keylen); | ||
| 450 | |||
| 451 | int cms_Receipt_verify(CMS_ContentInfo *cms, CMS_ContentInfo *req_cms); | ||
| 452 | int cms_msgSigDigest_add1(CMS_SignerInfo *dest, CMS_SignerInfo *src); | ||
| 453 | ASN1_OCTET_STRING *cms_encode_Receipt(CMS_SignerInfo *si); | ||
| 454 | |||
| 455 | BIO *cms_EnvelopedData_init_bio(CMS_ContentInfo *cms); | ||
| 456 | |||
| 457 | #ifdef __cplusplus | ||
| 458 | } | ||
| 459 | #endif | ||
| 460 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_lib.c b/src/lib/libssl/src/crypto/cms/cms_lib.c new file mode 100644 index 0000000000..8e6c1d29a5 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_lib.c | |||
| @@ -0,0 +1,623 @@ | |||
| 1 | /* crypto/cms/cms_lib.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include <openssl/asn1t.h> | ||
| 55 | #include <openssl/x509.h> | ||
| 56 | #include <openssl/err.h> | ||
| 57 | #include <openssl/pem.h> | ||
| 58 | #include <openssl/bio.h> | ||
| 59 | #include <openssl/asn1.h> | ||
| 60 | #include "cms.h" | ||
| 61 | #include "cms_lcl.h" | ||
| 62 | |||
| 63 | IMPLEMENT_ASN1_FUNCTIONS_const(CMS_ContentInfo) | ||
| 64 | |||
| 65 | DECLARE_ASN1_ITEM(CMS_CertificateChoices) | ||
| 66 | DECLARE_ASN1_ITEM(CMS_RevocationInfoChoice) | ||
| 67 | DECLARE_STACK_OF(CMS_CertificateChoices) | ||
| 68 | DECLARE_STACK_OF(CMS_RevocationInfoChoice) | ||
| 69 | |||
| 70 | const ASN1_OBJECT *CMS_get0_type(CMS_ContentInfo *cms) | ||
| 71 | { | ||
| 72 | return cms->contentType; | ||
| 73 | } | ||
| 74 | |||
| 75 | CMS_ContentInfo *cms_Data_create(void) | ||
| 76 | { | ||
| 77 | CMS_ContentInfo *cms; | ||
| 78 | cms = CMS_ContentInfo_new(); | ||
| 79 | if (cms) | ||
| 80 | { | ||
| 81 | cms->contentType = OBJ_nid2obj(NID_pkcs7_data); | ||
| 82 | /* Never detached */ | ||
| 83 | CMS_set_detached(cms, 0); | ||
| 84 | } | ||
| 85 | return cms; | ||
| 86 | } | ||
| 87 | |||
| 88 | BIO *cms_content_bio(CMS_ContentInfo *cms) | ||
| 89 | { | ||
| 90 | ASN1_OCTET_STRING **pos = CMS_get0_content(cms); | ||
| 91 | if (!pos) | ||
| 92 | return NULL; | ||
| 93 | /* If content detached data goes nowhere: create NULL BIO */ | ||
| 94 | if (!*pos) | ||
| 95 | return BIO_new(BIO_s_null()); | ||
| 96 | /* If content not detached and created return memory BIO | ||
| 97 | */ | ||
| 98 | if (!*pos || ((*pos)->flags == ASN1_STRING_FLAG_CONT)) | ||
| 99 | return BIO_new(BIO_s_mem()); | ||
| 100 | /* Else content was read in: return read only BIO for it */ | ||
| 101 | return BIO_new_mem_buf((*pos)->data, (*pos)->length); | ||
| 102 | } | ||
| 103 | |||
| 104 | BIO *CMS_dataInit(CMS_ContentInfo *cms, BIO *icont) | ||
| 105 | { | ||
| 106 | BIO *cmsbio, *cont; | ||
| 107 | if (icont) | ||
| 108 | cont = icont; | ||
| 109 | else | ||
| 110 | cont = cms_content_bio(cms); | ||
| 111 | if (!cont) | ||
| 112 | { | ||
| 113 | CMSerr(CMS_F_CMS_DATAINIT, CMS_R_NO_CONTENT); | ||
| 114 | return NULL; | ||
| 115 | } | ||
| 116 | switch (OBJ_obj2nid(cms->contentType)) | ||
| 117 | { | ||
| 118 | |||
| 119 | case NID_pkcs7_data: | ||
| 120 | return cont; | ||
| 121 | |||
| 122 | case NID_pkcs7_signed: | ||
| 123 | cmsbio = cms_SignedData_init_bio(cms); | ||
| 124 | break; | ||
| 125 | |||
| 126 | case NID_pkcs7_digest: | ||
| 127 | cmsbio = cms_DigestedData_init_bio(cms); | ||
| 128 | break; | ||
| 129 | #ifdef ZLIB | ||
| 130 | case NID_id_smime_ct_compressedData: | ||
| 131 | cmsbio = cms_CompressedData_init_bio(cms); | ||
| 132 | break; | ||
| 133 | #endif | ||
| 134 | |||
| 135 | case NID_pkcs7_encrypted: | ||
| 136 | cmsbio = cms_EncryptedData_init_bio(cms); | ||
| 137 | break; | ||
| 138 | |||
| 139 | case NID_pkcs7_enveloped: | ||
| 140 | cmsbio = cms_EnvelopedData_init_bio(cms); | ||
| 141 | break; | ||
| 142 | |||
| 143 | default: | ||
| 144 | CMSerr(CMS_F_CMS_DATAINIT, CMS_R_UNSUPPORTED_TYPE); | ||
| 145 | return NULL; | ||
| 146 | } | ||
| 147 | |||
| 148 | if (cmsbio) | ||
| 149 | return BIO_push(cmsbio, cont); | ||
| 150 | |||
| 151 | if (!icont) | ||
| 152 | BIO_free(cont); | ||
| 153 | return NULL; | ||
| 154 | |||
| 155 | } | ||
| 156 | |||
| 157 | int CMS_dataFinal(CMS_ContentInfo *cms, BIO *cmsbio) | ||
| 158 | { | ||
| 159 | ASN1_OCTET_STRING **pos = CMS_get0_content(cms); | ||
| 160 | if (!pos) | ||
| 161 | return 0; | ||
| 162 | /* If ebmedded content find memory BIO and set content */ | ||
| 163 | if (*pos && ((*pos)->flags & ASN1_STRING_FLAG_CONT)) | ||
| 164 | { | ||
| 165 | BIO *mbio; | ||
| 166 | unsigned char *cont; | ||
| 167 | long contlen; | ||
| 168 | mbio = BIO_find_type(cmsbio, BIO_TYPE_MEM); | ||
| 169 | if (!mbio) | ||
| 170 | { | ||
| 171 | CMSerr(CMS_F_CMS_DATAFINAL, CMS_R_CONTENT_NOT_FOUND); | ||
| 172 | return 0; | ||
| 173 | } | ||
| 174 | contlen = BIO_get_mem_data(mbio, &cont); | ||
| 175 | /* Set bio as read only so its content can't be clobbered */ | ||
| 176 | BIO_set_flags(mbio, BIO_FLAGS_MEM_RDONLY); | ||
| 177 | BIO_set_mem_eof_return(mbio, 0); | ||
| 178 | ASN1_STRING_set0(*pos, cont, contlen); | ||
| 179 | (*pos)->flags &= ~ASN1_STRING_FLAG_CONT; | ||
| 180 | } | ||
| 181 | |||
| 182 | switch (OBJ_obj2nid(cms->contentType)) | ||
| 183 | { | ||
| 184 | |||
| 185 | case NID_pkcs7_data: | ||
| 186 | case NID_pkcs7_enveloped: | ||
| 187 | case NID_pkcs7_encrypted: | ||
| 188 | case NID_id_smime_ct_compressedData: | ||
| 189 | /* Nothing to do */ | ||
| 190 | return 1; | ||
| 191 | |||
| 192 | case NID_pkcs7_signed: | ||
| 193 | return cms_SignedData_final(cms, cmsbio); | ||
| 194 | |||
| 195 | case NID_pkcs7_digest: | ||
| 196 | return cms_DigestedData_do_final(cms, cmsbio, 0); | ||
| 197 | |||
| 198 | default: | ||
| 199 | CMSerr(CMS_F_CMS_DATAFINAL, CMS_R_UNSUPPORTED_TYPE); | ||
| 200 | return 0; | ||
| 201 | } | ||
| 202 | } | ||
| 203 | |||
| 204 | /* Return an OCTET STRING pointer to content. This allows it to | ||
| 205 | * be accessed or set later. | ||
| 206 | */ | ||
| 207 | |||
| 208 | ASN1_OCTET_STRING **CMS_get0_content(CMS_ContentInfo *cms) | ||
| 209 | { | ||
| 210 | switch (OBJ_obj2nid(cms->contentType)) | ||
| 211 | { | ||
| 212 | |||
| 213 | case NID_pkcs7_data: | ||
| 214 | return &cms->d.data; | ||
| 215 | |||
| 216 | case NID_pkcs7_signed: | ||
| 217 | return &cms->d.signedData->encapContentInfo->eContent; | ||
| 218 | |||
| 219 | case NID_pkcs7_enveloped: | ||
| 220 | return &cms->d.envelopedData->encryptedContentInfo->encryptedContent; | ||
| 221 | |||
| 222 | case NID_pkcs7_digest: | ||
| 223 | return &cms->d.digestedData->encapContentInfo->eContent; | ||
| 224 | |||
| 225 | case NID_pkcs7_encrypted: | ||
| 226 | return &cms->d.encryptedData->encryptedContentInfo->encryptedContent; | ||
| 227 | |||
| 228 | case NID_id_smime_ct_authData: | ||
| 229 | return &cms->d.authenticatedData->encapContentInfo->eContent; | ||
| 230 | |||
| 231 | case NID_id_smime_ct_compressedData: | ||
| 232 | return &cms->d.compressedData->encapContentInfo->eContent; | ||
| 233 | |||
| 234 | default: | ||
| 235 | if (cms->d.other->type == V_ASN1_OCTET_STRING) | ||
| 236 | return &cms->d.other->value.octet_string; | ||
| 237 | CMSerr(CMS_F_CMS_GET0_CONTENT, CMS_R_UNSUPPORTED_CONTENT_TYPE); | ||
| 238 | return NULL; | ||
| 239 | |||
| 240 | } | ||
| 241 | } | ||
| 242 | |||
| 243 | /* Return an ASN1_OBJECT pointer to content type. This allows it to | ||
| 244 | * be accessed or set later. | ||
| 245 | */ | ||
| 246 | |||
| 247 | static ASN1_OBJECT **cms_get0_econtent_type(CMS_ContentInfo *cms) | ||
| 248 | { | ||
| 249 | switch (OBJ_obj2nid(cms->contentType)) | ||
| 250 | { | ||
| 251 | |||
| 252 | case NID_pkcs7_signed: | ||
| 253 | return &cms->d.signedData->encapContentInfo->eContentType; | ||
| 254 | |||
| 255 | case NID_pkcs7_enveloped: | ||
| 256 | return &cms->d.envelopedData->encryptedContentInfo->contentType; | ||
| 257 | |||
| 258 | case NID_pkcs7_digest: | ||
| 259 | return &cms->d.digestedData->encapContentInfo->eContentType; | ||
| 260 | |||
| 261 | case NID_pkcs7_encrypted: | ||
| 262 | return &cms->d.encryptedData->encryptedContentInfo->contentType; | ||
| 263 | |||
| 264 | case NID_id_smime_ct_authData: | ||
| 265 | return &cms->d.authenticatedData->encapContentInfo->eContentType; | ||
| 266 | |||
| 267 | case NID_id_smime_ct_compressedData: | ||
| 268 | return &cms->d.compressedData->encapContentInfo->eContentType; | ||
| 269 | |||
| 270 | default: | ||
| 271 | CMSerr(CMS_F_CMS_GET0_ECONTENT_TYPE, | ||
| 272 | CMS_R_UNSUPPORTED_CONTENT_TYPE); | ||
| 273 | return NULL; | ||
| 274 | |||
| 275 | } | ||
| 276 | } | ||
| 277 | |||
| 278 | const ASN1_OBJECT *CMS_get0_eContentType(CMS_ContentInfo *cms) | ||
| 279 | { | ||
| 280 | ASN1_OBJECT **petype; | ||
| 281 | petype = cms_get0_econtent_type(cms); | ||
| 282 | if (petype) | ||
| 283 | return *petype; | ||
| 284 | return NULL; | ||
| 285 | } | ||
| 286 | |||
| 287 | int CMS_set1_eContentType(CMS_ContentInfo *cms, const ASN1_OBJECT *oid) | ||
| 288 | { | ||
| 289 | ASN1_OBJECT **petype, *etype; | ||
| 290 | petype = cms_get0_econtent_type(cms); | ||
| 291 | if (!petype) | ||
| 292 | return 0; | ||
| 293 | if (!oid) | ||
| 294 | return 1; | ||
| 295 | etype = OBJ_dup(oid); | ||
| 296 | if (!etype) | ||
| 297 | return 0; | ||
| 298 | ASN1_OBJECT_free(*petype); | ||
| 299 | *petype = etype; | ||
| 300 | return 1; | ||
| 301 | } | ||
| 302 | |||
| 303 | int CMS_is_detached(CMS_ContentInfo *cms) | ||
| 304 | { | ||
| 305 | ASN1_OCTET_STRING **pos; | ||
| 306 | pos = CMS_get0_content(cms); | ||
| 307 | if (!pos) | ||
| 308 | return -1; | ||
| 309 | if (*pos) | ||
| 310 | return 0; | ||
| 311 | return 1; | ||
| 312 | } | ||
| 313 | |||
| 314 | int CMS_set_detached(CMS_ContentInfo *cms, int detached) | ||
| 315 | { | ||
| 316 | ASN1_OCTET_STRING **pos; | ||
| 317 | pos = CMS_get0_content(cms); | ||
| 318 | if (!pos) | ||
| 319 | return 0; | ||
| 320 | if (detached) | ||
| 321 | { | ||
| 322 | if (*pos) | ||
| 323 | { | ||
| 324 | ASN1_OCTET_STRING_free(*pos); | ||
| 325 | *pos = NULL; | ||
| 326 | } | ||
| 327 | return 1; | ||
| 328 | } | ||
| 329 | if (!*pos) | ||
| 330 | *pos = ASN1_OCTET_STRING_new(); | ||
| 331 | if (*pos) | ||
| 332 | { | ||
| 333 | /* NB: special flag to show content is created and not | ||
| 334 | * read in. | ||
| 335 | */ | ||
| 336 | (*pos)->flags |= ASN1_STRING_FLAG_CONT; | ||
| 337 | return 1; | ||
| 338 | } | ||
| 339 | CMSerr(CMS_F_CMS_SET_DETACHED, ERR_R_MALLOC_FAILURE); | ||
| 340 | return 0; | ||
| 341 | } | ||
| 342 | |||
| 343 | /* Set up an X509_ALGOR DigestAlgorithmIdentifier from an EVP_MD */ | ||
| 344 | |||
| 345 | void cms_DigestAlgorithm_set(X509_ALGOR *alg, const EVP_MD *md) | ||
| 346 | { | ||
| 347 | int param_type; | ||
| 348 | |||
| 349 | switch (EVP_MD_type(md)) | ||
| 350 | { | ||
| 351 | case NID_sha1: | ||
| 352 | case NID_sha224: | ||
| 353 | case NID_sha256: | ||
| 354 | case NID_sha384: | ||
| 355 | case NID_sha512: | ||
| 356 | param_type = V_ASN1_UNDEF; | ||
| 357 | break; | ||
| 358 | |||
| 359 | default: | ||
| 360 | param_type = V_ASN1_NULL; | ||
| 361 | break; | ||
| 362 | } | ||
| 363 | |||
| 364 | X509_ALGOR_set0(alg, OBJ_nid2obj(EVP_MD_type(md)), param_type, NULL); | ||
| 365 | |||
| 366 | } | ||
| 367 | |||
| 368 | /* Create a digest BIO from an X509_ALGOR structure */ | ||
| 369 | |||
| 370 | BIO *cms_DigestAlgorithm_init_bio(X509_ALGOR *digestAlgorithm) | ||
| 371 | { | ||
| 372 | BIO *mdbio = NULL; | ||
| 373 | ASN1_OBJECT *digestoid; | ||
| 374 | const EVP_MD *digest; | ||
| 375 | X509_ALGOR_get0(&digestoid, NULL, NULL, digestAlgorithm); | ||
| 376 | digest = EVP_get_digestbyobj(digestoid); | ||
| 377 | if (!digest) | ||
| 378 | { | ||
| 379 | CMSerr(CMS_F_CMS_DIGESTALGORITHM_INIT_BIO, | ||
| 380 | CMS_R_UNKNOWN_DIGEST_ALGORIHM); | ||
| 381 | goto err; | ||
| 382 | } | ||
| 383 | mdbio = BIO_new(BIO_f_md()); | ||
| 384 | if (!mdbio || !BIO_set_md(mdbio, digest)) | ||
| 385 | { | ||
| 386 | CMSerr(CMS_F_CMS_DIGESTALGORITHM_INIT_BIO, | ||
| 387 | CMS_R_MD_BIO_INIT_ERROR); | ||
| 388 | goto err; | ||
| 389 | } | ||
| 390 | return mdbio; | ||
| 391 | err: | ||
| 392 | if (mdbio) | ||
| 393 | BIO_free(mdbio); | ||
| 394 | return NULL; | ||
| 395 | } | ||
| 396 | |||
| 397 | /* Locate a message digest content from a BIO chain based on SignerInfo */ | ||
| 398 | |||
| 399 | int cms_DigestAlgorithm_find_ctx(EVP_MD_CTX *mctx, BIO *chain, | ||
| 400 | X509_ALGOR *mdalg) | ||
| 401 | { | ||
| 402 | int nid; | ||
| 403 | ASN1_OBJECT *mdoid; | ||
| 404 | X509_ALGOR_get0(&mdoid, NULL, NULL, mdalg); | ||
| 405 | nid = OBJ_obj2nid(mdoid); | ||
| 406 | /* Look for digest type to match signature */ | ||
| 407 | for (;;) | ||
| 408 | { | ||
| 409 | EVP_MD_CTX *mtmp; | ||
| 410 | chain = BIO_find_type(chain, BIO_TYPE_MD); | ||
| 411 | if (chain == NULL) | ||
| 412 | { | ||
| 413 | CMSerr(CMS_F_CMS_DIGESTALGORITHM_FIND_CTX, | ||
| 414 | CMS_R_NO_MATCHING_DIGEST); | ||
| 415 | return 0; | ||
| 416 | } | ||
| 417 | BIO_get_md_ctx(chain, &mtmp); | ||
| 418 | if (EVP_MD_CTX_type(mtmp) == nid) | ||
| 419 | { | ||
| 420 | EVP_MD_CTX_copy_ex(mctx, mtmp); | ||
| 421 | return 1; | ||
| 422 | } | ||
| 423 | chain = BIO_next(chain); | ||
| 424 | } | ||
| 425 | } | ||
| 426 | |||
| 427 | static STACK_OF(CMS_CertificateChoices) **cms_get0_certificate_choices(CMS_ContentInfo *cms) | ||
| 428 | { | ||
| 429 | switch (OBJ_obj2nid(cms->contentType)) | ||
| 430 | { | ||
| 431 | |||
| 432 | case NID_pkcs7_signed: | ||
| 433 | return &cms->d.signedData->certificates; | ||
| 434 | |||
| 435 | case NID_pkcs7_enveloped: | ||
| 436 | return &cms->d.envelopedData->originatorInfo->certificates; | ||
| 437 | |||
| 438 | default: | ||
| 439 | CMSerr(CMS_F_CMS_GET0_CERTIFICATE_CHOICES, | ||
| 440 | CMS_R_UNSUPPORTED_CONTENT_TYPE); | ||
| 441 | return NULL; | ||
| 442 | |||
| 443 | } | ||
| 444 | } | ||
| 445 | |||
| 446 | CMS_CertificateChoices *CMS_add0_CertificateChoices(CMS_ContentInfo *cms) | ||
| 447 | { | ||
| 448 | STACK_OF(CMS_CertificateChoices) **pcerts; | ||
| 449 | CMS_CertificateChoices *cch; | ||
| 450 | pcerts = cms_get0_certificate_choices(cms); | ||
| 451 | if (!pcerts) | ||
| 452 | return NULL; | ||
| 453 | if (!*pcerts) | ||
| 454 | *pcerts = sk_CMS_CertificateChoices_new_null(); | ||
| 455 | if (!*pcerts) | ||
| 456 | return NULL; | ||
| 457 | cch = M_ASN1_new_of(CMS_CertificateChoices); | ||
| 458 | if (!cch) | ||
| 459 | return NULL; | ||
| 460 | if (!sk_CMS_CertificateChoices_push(*pcerts, cch)) | ||
| 461 | { | ||
| 462 | M_ASN1_free_of(cch, CMS_CertificateChoices); | ||
| 463 | return NULL; | ||
| 464 | } | ||
| 465 | return cch; | ||
| 466 | } | ||
| 467 | |||
| 468 | int CMS_add0_cert(CMS_ContentInfo *cms, X509 *cert) | ||
| 469 | { | ||
| 470 | CMS_CertificateChoices *cch; | ||
| 471 | STACK_OF(CMS_CertificateChoices) **pcerts; | ||
| 472 | int i; | ||
| 473 | pcerts = cms_get0_certificate_choices(cms); | ||
| 474 | if (!pcerts) | ||
| 475 | return 0; | ||
| 476 | if (!pcerts) | ||
| 477 | return 0; | ||
| 478 | for (i = 0; i < sk_CMS_CertificateChoices_num(*pcerts); i++) | ||
| 479 | { | ||
| 480 | cch = sk_CMS_CertificateChoices_value(*pcerts, i); | ||
| 481 | if (cch->type == CMS_CERTCHOICE_CERT) | ||
| 482 | { | ||
| 483 | if (!X509_cmp(cch->d.certificate, cert)) | ||
| 484 | { | ||
| 485 | CMSerr(CMS_F_CMS_ADD0_CERT, | ||
| 486 | CMS_R_CERTIFICATE_ALREADY_PRESENT); | ||
| 487 | return 0; | ||
| 488 | } | ||
| 489 | } | ||
| 490 | } | ||
| 491 | cch = CMS_add0_CertificateChoices(cms); | ||
| 492 | if (!cch) | ||
| 493 | return 0; | ||
| 494 | cch->type = CMS_CERTCHOICE_CERT; | ||
| 495 | cch->d.certificate = cert; | ||
| 496 | return 1; | ||
| 497 | } | ||
| 498 | |||
| 499 | int CMS_add1_cert(CMS_ContentInfo *cms, X509 *cert) | ||
| 500 | { | ||
| 501 | int r; | ||
| 502 | r = CMS_add0_cert(cms, cert); | ||
| 503 | if (r > 0) | ||
| 504 | CRYPTO_add(&cert->references, 1, CRYPTO_LOCK_X509); | ||
| 505 | return r; | ||
| 506 | } | ||
| 507 | |||
| 508 | static STACK_OF(CMS_RevocationInfoChoice) **cms_get0_revocation_choices(CMS_ContentInfo *cms) | ||
| 509 | { | ||
| 510 | switch (OBJ_obj2nid(cms->contentType)) | ||
| 511 | { | ||
| 512 | |||
| 513 | case NID_pkcs7_signed: | ||
| 514 | return &cms->d.signedData->crls; | ||
| 515 | |||
| 516 | case NID_pkcs7_enveloped: | ||
| 517 | return &cms->d.envelopedData->originatorInfo->crls; | ||
| 518 | |||
| 519 | default: | ||
| 520 | CMSerr(CMS_F_CMS_GET0_REVOCATION_CHOICES, | ||
| 521 | CMS_R_UNSUPPORTED_CONTENT_TYPE); | ||
| 522 | return NULL; | ||
| 523 | |||
| 524 | } | ||
| 525 | } | ||
| 526 | |||
| 527 | CMS_RevocationInfoChoice *CMS_add0_RevocationInfoChoice(CMS_ContentInfo *cms) | ||
| 528 | { | ||
| 529 | STACK_OF(CMS_RevocationInfoChoice) **pcrls; | ||
| 530 | CMS_RevocationInfoChoice *rch; | ||
| 531 | pcrls = cms_get0_revocation_choices(cms); | ||
| 532 | if (!pcrls) | ||
| 533 | return NULL; | ||
| 534 | if (!*pcrls) | ||
| 535 | *pcrls = sk_CMS_RevocationInfoChoice_new_null(); | ||
| 536 | if (!*pcrls) | ||
| 537 | return NULL; | ||
| 538 | rch = M_ASN1_new_of(CMS_RevocationInfoChoice); | ||
| 539 | if (!rch) | ||
| 540 | return NULL; | ||
| 541 | if (!sk_CMS_RevocationInfoChoice_push(*pcrls, rch)) | ||
| 542 | { | ||
| 543 | M_ASN1_free_of(rch, CMS_RevocationInfoChoice); | ||
| 544 | return NULL; | ||
| 545 | } | ||
| 546 | return rch; | ||
| 547 | } | ||
| 548 | |||
| 549 | int CMS_add0_crl(CMS_ContentInfo *cms, X509_CRL *crl) | ||
| 550 | { | ||
| 551 | CMS_RevocationInfoChoice *rch; | ||
| 552 | rch = CMS_add0_RevocationInfoChoice(cms); | ||
| 553 | if (!rch) | ||
| 554 | return 0; | ||
| 555 | rch->type = CMS_REVCHOICE_CRL; | ||
| 556 | rch->d.crl = crl; | ||
| 557 | return 1; | ||
| 558 | } | ||
| 559 | |||
| 560 | STACK_OF(X509) *CMS_get1_certs(CMS_ContentInfo *cms) | ||
| 561 | { | ||
| 562 | STACK_OF(X509) *certs = NULL; | ||
| 563 | CMS_CertificateChoices *cch; | ||
| 564 | STACK_OF(CMS_CertificateChoices) **pcerts; | ||
| 565 | int i; | ||
| 566 | pcerts = cms_get0_certificate_choices(cms); | ||
| 567 | if (!pcerts) | ||
| 568 | return NULL; | ||
| 569 | for (i = 0; i < sk_CMS_CertificateChoices_num(*pcerts); i++) | ||
| 570 | { | ||
| 571 | cch = sk_CMS_CertificateChoices_value(*pcerts, i); | ||
| 572 | if (cch->type == 0) | ||
| 573 | { | ||
| 574 | if (!certs) | ||
| 575 | { | ||
| 576 | certs = sk_X509_new_null(); | ||
| 577 | if (!certs) | ||
| 578 | return NULL; | ||
| 579 | } | ||
| 580 | if (!sk_X509_push(certs, cch->d.certificate)) | ||
| 581 | { | ||
| 582 | sk_X509_pop_free(certs, X509_free); | ||
| 583 | return NULL; | ||
| 584 | } | ||
| 585 | CRYPTO_add(&cch->d.certificate->references, | ||
| 586 | 1, CRYPTO_LOCK_X509); | ||
| 587 | } | ||
| 588 | } | ||
| 589 | return certs; | ||
| 590 | |||
| 591 | } | ||
| 592 | |||
| 593 | STACK_OF(X509_CRL) *CMS_get1_crls(CMS_ContentInfo *cms) | ||
| 594 | { | ||
| 595 | STACK_OF(X509_CRL) *crls = NULL; | ||
| 596 | STACK_OF(CMS_RevocationInfoChoice) **pcrls; | ||
| 597 | CMS_RevocationInfoChoice *rch; | ||
| 598 | int i; | ||
| 599 | pcrls = cms_get0_revocation_choices(cms); | ||
| 600 | if (!pcrls) | ||
| 601 | return NULL; | ||
| 602 | for (i = 0; i < sk_CMS_RevocationInfoChoice_num(*pcrls); i++) | ||
| 603 | { | ||
| 604 | rch = sk_CMS_RevocationInfoChoice_value(*pcrls, i); | ||
| 605 | if (rch->type == 0) | ||
| 606 | { | ||
| 607 | if (!crls) | ||
| 608 | { | ||
| 609 | crls = sk_X509_CRL_new_null(); | ||
| 610 | if (!crls) | ||
| 611 | return NULL; | ||
| 612 | } | ||
| 613 | if (!sk_X509_CRL_push(crls, rch->d.crl)) | ||
| 614 | { | ||
| 615 | sk_X509_CRL_pop_free(crls, X509_CRL_free); | ||
| 616 | return NULL; | ||
| 617 | } | ||
| 618 | CRYPTO_add(&rch->d.crl->references, | ||
| 619 | 1, CRYPTO_LOCK_X509_CRL); | ||
| 620 | } | ||
| 621 | } | ||
| 622 | return crls; | ||
| 623 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_sd.c b/src/lib/libssl/src/crypto/cms/cms_sd.c new file mode 100644 index 0000000000..591bfbec33 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_sd.c | |||
| @@ -0,0 +1,1014 @@ | |||
| 1 | /* crypto/cms/cms_sd.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/pem.h> | ||
| 57 | #include <openssl/x509v3.h> | ||
| 58 | #include <openssl/err.h> | ||
| 59 | #include <openssl/cms.h> | ||
| 60 | #include "cms_lcl.h" | ||
| 61 | |||
| 62 | /* CMS SignedData Utilities */ | ||
| 63 | |||
| 64 | DECLARE_ASN1_ITEM(CMS_SignedData) | ||
| 65 | |||
| 66 | static CMS_SignedData *cms_get0_signed(CMS_ContentInfo *cms) | ||
| 67 | { | ||
| 68 | if (OBJ_obj2nid(cms->contentType) != NID_pkcs7_signed) | ||
| 69 | { | ||
| 70 | CMSerr(CMS_F_CMS_GET0_SIGNED, CMS_R_CONTENT_TYPE_NOT_SIGNED_DATA); | ||
| 71 | return NULL; | ||
| 72 | } | ||
| 73 | return cms->d.signedData; | ||
| 74 | } | ||
| 75 | |||
| 76 | static CMS_SignedData *cms_signed_data_init(CMS_ContentInfo *cms) | ||
| 77 | { | ||
| 78 | if (cms->d.other == NULL) | ||
| 79 | { | ||
| 80 | cms->d.signedData = M_ASN1_new_of(CMS_SignedData); | ||
| 81 | if (!cms->d.signedData) | ||
| 82 | { | ||
| 83 | CMSerr(CMS_F_CMS_SIGNED_DATA_INIT, ERR_R_MALLOC_FAILURE); | ||
| 84 | return NULL; | ||
| 85 | } | ||
| 86 | cms->d.signedData->version = 1; | ||
| 87 | cms->d.signedData->encapContentInfo->eContentType = | ||
| 88 | OBJ_nid2obj(NID_pkcs7_data); | ||
| 89 | cms->d.signedData->encapContentInfo->partial = 1; | ||
| 90 | ASN1_OBJECT_free(cms->contentType); | ||
| 91 | cms->contentType = OBJ_nid2obj(NID_pkcs7_signed); | ||
| 92 | return cms->d.signedData; | ||
| 93 | } | ||
| 94 | return cms_get0_signed(cms); | ||
| 95 | } | ||
| 96 | |||
| 97 | /* Just initialize SignedData e.g. for certs only structure */ | ||
| 98 | |||
| 99 | int CMS_SignedData_init(CMS_ContentInfo *cms) | ||
| 100 | { | ||
| 101 | if (cms_signed_data_init(cms)) | ||
| 102 | return 1; | ||
| 103 | else | ||
| 104 | return 0; | ||
| 105 | } | ||
| 106 | |||
| 107 | /* Check structures and fixup version numbers (if necessary) */ | ||
| 108 | |||
| 109 | static void cms_sd_set_version(CMS_SignedData *sd) | ||
| 110 | { | ||
| 111 | int i; | ||
| 112 | CMS_CertificateChoices *cch; | ||
| 113 | CMS_RevocationInfoChoice *rch; | ||
| 114 | CMS_SignerInfo *si; | ||
| 115 | |||
| 116 | for (i = 0; i < sk_CMS_CertificateChoices_num(sd->certificates); i++) | ||
| 117 | { | ||
| 118 | cch = sk_CMS_CertificateChoices_value(sd->certificates, i); | ||
| 119 | if (cch->type == CMS_CERTCHOICE_OTHER) | ||
| 120 | { | ||
| 121 | if (sd->version < 5) | ||
| 122 | sd->version = 5; | ||
| 123 | } | ||
| 124 | else if (cch->type == CMS_CERTCHOICE_V2ACERT) | ||
| 125 | { | ||
| 126 | if (sd->version < 4) | ||
| 127 | sd->version = 4; | ||
| 128 | } | ||
| 129 | else if (cch->type == CMS_CERTCHOICE_V1ACERT) | ||
| 130 | { | ||
| 131 | if (sd->version < 3) | ||
| 132 | sd->version = 3; | ||
| 133 | } | ||
| 134 | } | ||
| 135 | |||
| 136 | for (i = 0; i < sk_CMS_RevocationInfoChoice_num(sd->crls); i++) | ||
| 137 | { | ||
| 138 | rch = sk_CMS_RevocationInfoChoice_value(sd->crls, i); | ||
| 139 | if (rch->type == CMS_REVCHOICE_OTHER) | ||
| 140 | { | ||
| 141 | if (sd->version < 5) | ||
| 142 | sd->version = 5; | ||
| 143 | } | ||
| 144 | } | ||
| 145 | |||
| 146 | if ((OBJ_obj2nid(sd->encapContentInfo->eContentType) != NID_pkcs7_data) | ||
| 147 | && (sd->version < 3)) | ||
| 148 | sd->version = 3; | ||
| 149 | |||
| 150 | for (i = 0; i < sk_CMS_SignerInfo_num(sd->signerInfos); i++) | ||
| 151 | { | ||
| 152 | si = sk_CMS_SignerInfo_value(sd->signerInfos, i); | ||
| 153 | if (si->sid->type == CMS_SIGNERINFO_KEYIDENTIFIER) | ||
| 154 | { | ||
| 155 | if (si->version < 3) | ||
| 156 | si->version = 3; | ||
| 157 | if (sd->version < 3) | ||
| 158 | sd->version = 3; | ||
| 159 | } | ||
| 160 | else | ||
| 161 | sd->version = 1; | ||
| 162 | } | ||
| 163 | |||
| 164 | if (sd->version < 1) | ||
| 165 | sd->version = 1; | ||
| 166 | |||
| 167 | } | ||
| 168 | |||
| 169 | /* Copy an existing messageDigest value */ | ||
| 170 | |||
| 171 | static int cms_copy_messageDigest(CMS_ContentInfo *cms, CMS_SignerInfo *si) | ||
| 172 | { | ||
| 173 | STACK_OF(CMS_SignerInfo) *sinfos; | ||
| 174 | CMS_SignerInfo *sitmp; | ||
| 175 | int i; | ||
| 176 | sinfos = CMS_get0_SignerInfos(cms); | ||
| 177 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 178 | { | ||
| 179 | ASN1_OCTET_STRING *messageDigest; | ||
| 180 | sitmp = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 181 | if (sitmp == si) | ||
| 182 | continue; | ||
| 183 | if (CMS_signed_get_attr_count(sitmp) < 0) | ||
| 184 | continue; | ||
| 185 | if (OBJ_cmp(si->digestAlgorithm->algorithm, | ||
| 186 | sitmp->digestAlgorithm->algorithm)) | ||
| 187 | continue; | ||
| 188 | messageDigest = CMS_signed_get0_data_by_OBJ(sitmp, | ||
| 189 | OBJ_nid2obj(NID_pkcs9_messageDigest), | ||
| 190 | -3, V_ASN1_OCTET_STRING); | ||
| 191 | if (!messageDigest) | ||
| 192 | { | ||
| 193 | CMSerr(CMS_F_CMS_COPY_MESSAGEDIGEST, | ||
| 194 | CMS_R_ERROR_READING_MESSAGEDIGEST_ATTRIBUTE); | ||
| 195 | return 0; | ||
| 196 | } | ||
| 197 | |||
| 198 | if (CMS_signed_add1_attr_by_NID(si, NID_pkcs9_messageDigest, | ||
| 199 | V_ASN1_OCTET_STRING, | ||
| 200 | messageDigest, -1)) | ||
| 201 | return 1; | ||
| 202 | else | ||
| 203 | return 0; | ||
| 204 | } | ||
| 205 | CMSerr(CMS_F_CMS_COPY_MESSAGEDIGEST, CMS_R_NO_MATCHING_DIGEST); | ||
| 206 | return 0; | ||
| 207 | } | ||
| 208 | |||
| 209 | int cms_set1_SignerIdentifier(CMS_SignerIdentifier *sid, X509 *cert, int type) | ||
| 210 | { | ||
| 211 | switch(type) | ||
| 212 | { | ||
| 213 | case CMS_SIGNERINFO_ISSUER_SERIAL: | ||
| 214 | sid->d.issuerAndSerialNumber = | ||
| 215 | M_ASN1_new_of(CMS_IssuerAndSerialNumber); | ||
| 216 | if (!sid->d.issuerAndSerialNumber) | ||
| 217 | goto merr; | ||
| 218 | if (!X509_NAME_set(&sid->d.issuerAndSerialNumber->issuer, | ||
| 219 | X509_get_issuer_name(cert))) | ||
| 220 | goto merr; | ||
| 221 | ASN1_STRING_free(sid->d.issuerAndSerialNumber->serialNumber); | ||
| 222 | sid->d.issuerAndSerialNumber->serialNumber = | ||
| 223 | ASN1_STRING_dup(X509_get_serialNumber(cert)); | ||
| 224 | if(!sid->d.issuerAndSerialNumber->serialNumber) | ||
| 225 | goto merr; | ||
| 226 | break; | ||
| 227 | |||
| 228 | case CMS_SIGNERINFO_KEYIDENTIFIER: | ||
| 229 | if (!cert->skid) | ||
| 230 | { | ||
| 231 | CMSerr(CMS_F_CMS_SET1_SIGNERIDENTIFIER, | ||
| 232 | CMS_R_CERTIFICATE_HAS_NO_KEYID); | ||
| 233 | return 0; | ||
| 234 | } | ||
| 235 | sid->d.subjectKeyIdentifier = ASN1_STRING_dup(cert->skid); | ||
| 236 | if (!sid->d.subjectKeyIdentifier) | ||
| 237 | goto merr; | ||
| 238 | break; | ||
| 239 | |||
| 240 | default: | ||
| 241 | CMSerr(CMS_F_CMS_SET1_SIGNERIDENTIFIER, CMS_R_UNKNOWN_ID); | ||
| 242 | return 0; | ||
| 243 | } | ||
| 244 | |||
| 245 | sid->type = type; | ||
| 246 | |||
| 247 | return 1; | ||
| 248 | |||
| 249 | merr: | ||
| 250 | CMSerr(CMS_F_CMS_SET1_SIGNERIDENTIFIER, ERR_R_MALLOC_FAILURE); | ||
| 251 | return 0; | ||
| 252 | |||
| 253 | } | ||
| 254 | |||
| 255 | int cms_SignerIdentifier_get0_signer_id(CMS_SignerIdentifier *sid, | ||
| 256 | ASN1_OCTET_STRING **keyid, | ||
| 257 | X509_NAME **issuer, ASN1_INTEGER **sno) | ||
| 258 | { | ||
| 259 | if (sid->type == CMS_SIGNERINFO_ISSUER_SERIAL) | ||
| 260 | { | ||
| 261 | if (issuer) | ||
| 262 | *issuer = sid->d.issuerAndSerialNumber->issuer; | ||
| 263 | if (sno) | ||
| 264 | *sno = sid->d.issuerAndSerialNumber->serialNumber; | ||
| 265 | } | ||
| 266 | else if (sid->type == CMS_SIGNERINFO_KEYIDENTIFIER) | ||
| 267 | { | ||
| 268 | if (keyid) | ||
| 269 | *keyid = sid->d.subjectKeyIdentifier; | ||
| 270 | } | ||
| 271 | else | ||
| 272 | return 0; | ||
| 273 | return 1; | ||
| 274 | } | ||
| 275 | |||
| 276 | int cms_SignerIdentifier_cert_cmp(CMS_SignerIdentifier *sid, X509 *cert) | ||
| 277 | { | ||
| 278 | int ret; | ||
| 279 | if (sid->type == CMS_SIGNERINFO_ISSUER_SERIAL) | ||
| 280 | { | ||
| 281 | ret = X509_NAME_cmp(sid->d.issuerAndSerialNumber->issuer, | ||
| 282 | X509_get_issuer_name(cert)); | ||
| 283 | if (ret) | ||
| 284 | return ret; | ||
| 285 | return ASN1_INTEGER_cmp(sid->d.issuerAndSerialNumber->serialNumber, | ||
| 286 | X509_get_serialNumber(cert)); | ||
| 287 | } | ||
| 288 | else if (sid->type == CMS_SIGNERINFO_KEYIDENTIFIER) | ||
| 289 | { | ||
| 290 | X509_check_purpose(cert, -1, -1); | ||
| 291 | if (!cert->skid) | ||
| 292 | return -1; | ||
| 293 | return ASN1_OCTET_STRING_cmp(sid->d.subjectKeyIdentifier, | ||
| 294 | cert->skid); | ||
| 295 | } | ||
| 296 | else | ||
| 297 | return -1; | ||
| 298 | } | ||
| 299 | |||
| 300 | CMS_SignerInfo *CMS_add1_signer(CMS_ContentInfo *cms, | ||
| 301 | X509 *signer, EVP_PKEY *pk, const EVP_MD *md, | ||
| 302 | unsigned int flags) | ||
| 303 | { | ||
| 304 | CMS_SignedData *sd; | ||
| 305 | CMS_SignerInfo *si = NULL; | ||
| 306 | X509_ALGOR *alg; | ||
| 307 | int i, type; | ||
| 308 | if(!X509_check_private_key(signer, pk)) | ||
| 309 | { | ||
| 310 | CMSerr(CMS_F_CMS_ADD1_SIGNER, | ||
| 311 | CMS_R_PRIVATE_KEY_DOES_NOT_MATCH_CERTIFICATE); | ||
| 312 | return NULL; | ||
| 313 | } | ||
| 314 | sd = cms_signed_data_init(cms); | ||
| 315 | if (!sd) | ||
| 316 | goto err; | ||
| 317 | si = M_ASN1_new_of(CMS_SignerInfo); | ||
| 318 | if (!si) | ||
| 319 | goto merr; | ||
| 320 | X509_check_purpose(signer, -1, -1); | ||
| 321 | |||
| 322 | CRYPTO_add(&pk->references, 1, CRYPTO_LOCK_EVP_PKEY); | ||
| 323 | CRYPTO_add(&signer->references, 1, CRYPTO_LOCK_X509); | ||
| 324 | |||
| 325 | si->pkey = pk; | ||
| 326 | si->signer = signer; | ||
| 327 | |||
| 328 | if (flags & CMS_USE_KEYID) | ||
| 329 | { | ||
| 330 | si->version = 3; | ||
| 331 | if (sd->version < 3) | ||
| 332 | sd->version = 3; | ||
| 333 | type = CMS_SIGNERINFO_KEYIDENTIFIER; | ||
| 334 | } | ||
| 335 | else | ||
| 336 | { | ||
| 337 | type = CMS_SIGNERINFO_ISSUER_SERIAL; | ||
| 338 | si->version = 1; | ||
| 339 | } | ||
| 340 | |||
| 341 | if (!cms_set1_SignerIdentifier(si->sid, signer, type)) | ||
| 342 | goto err; | ||
| 343 | |||
| 344 | /* Since no EVP_PKEY_METHOD in 0.9.8 hard code SHA1 as default */ | ||
| 345 | if (md == NULL) | ||
| 346 | md = EVP_sha1(); | ||
| 347 | |||
| 348 | /* OpenSSL 0.9.8 only supports SHA1 with non-RSA keys */ | ||
| 349 | |||
| 350 | if ((pk->type != EVP_PKEY_RSA) && (EVP_MD_type(md) != NID_sha1)) | ||
| 351 | { | ||
| 352 | CMSerr(CMS_F_CMS_ADD1_SIGNER, | ||
| 353 | CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE); | ||
| 354 | goto err; | ||
| 355 | } | ||
| 356 | |||
| 357 | cms_DigestAlgorithm_set(si->digestAlgorithm, md); | ||
| 358 | |||
| 359 | /* See if digest is present in digestAlgorithms */ | ||
| 360 | for (i = 0; i < sk_X509_ALGOR_num(sd->digestAlgorithms); i++) | ||
| 361 | { | ||
| 362 | ASN1_OBJECT *aoid; | ||
| 363 | alg = sk_X509_ALGOR_value(sd->digestAlgorithms, i); | ||
| 364 | X509_ALGOR_get0(&aoid, NULL, NULL, alg); | ||
| 365 | if (OBJ_obj2nid(aoid) == EVP_MD_type(md)) | ||
| 366 | break; | ||
| 367 | } | ||
| 368 | |||
| 369 | if (i == sk_X509_ALGOR_num(sd->digestAlgorithms)) | ||
| 370 | { | ||
| 371 | alg = X509_ALGOR_new(); | ||
| 372 | if (!alg) | ||
| 373 | goto merr; | ||
| 374 | cms_DigestAlgorithm_set(alg, md); | ||
| 375 | if (!sk_X509_ALGOR_push(sd->digestAlgorithms, alg)) | ||
| 376 | { | ||
| 377 | X509_ALGOR_free(alg); | ||
| 378 | goto merr; | ||
| 379 | } | ||
| 380 | } | ||
| 381 | |||
| 382 | /* Since we have no EVP_PKEY_ASN1_METHOD in OpenSSL 0.9.8, | ||
| 383 | * hard code algorithm parameters. | ||
| 384 | */ | ||
| 385 | |||
| 386 | switch (pk->type) | ||
| 387 | { | ||
| 388 | |||
| 389 | case EVP_PKEY_RSA: | ||
| 390 | X509_ALGOR_set0(si->signatureAlgorithm, | ||
| 391 | OBJ_nid2obj(NID_rsaEncryption), | ||
| 392 | V_ASN1_NULL, 0); | ||
| 393 | break; | ||
| 394 | |||
| 395 | case EVP_PKEY_DSA: | ||
| 396 | X509_ALGOR_set0(si->signatureAlgorithm, | ||
| 397 | OBJ_nid2obj(NID_dsaWithSHA1), | ||
| 398 | V_ASN1_UNDEF, 0); | ||
| 399 | break; | ||
| 400 | |||
| 401 | |||
| 402 | case EVP_PKEY_EC: | ||
| 403 | X509_ALGOR_set0(si->signatureAlgorithm, | ||
| 404 | OBJ_nid2obj(NID_ecdsa_with_SHA1), | ||
| 405 | V_ASN1_UNDEF, 0); | ||
| 406 | break; | ||
| 407 | |||
| 408 | default: | ||
| 409 | CMSerr(CMS_F_CMS_ADD1_SIGNER, | ||
| 410 | CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE); | ||
| 411 | goto err; | ||
| 412 | |||
| 413 | } | ||
| 414 | |||
| 415 | if (!(flags & CMS_NOATTR)) | ||
| 416 | { | ||
| 417 | /* Initialialize signed attributes strutucture so other | ||
| 418 | * attributes such as signing time etc are added later | ||
| 419 | * even if we add none here. | ||
| 420 | */ | ||
| 421 | if (!si->signedAttrs) | ||
| 422 | { | ||
| 423 | si->signedAttrs = sk_X509_ATTRIBUTE_new_null(); | ||
| 424 | if (!si->signedAttrs) | ||
| 425 | goto merr; | ||
| 426 | } | ||
| 427 | |||
| 428 | if (!(flags & CMS_NOSMIMECAP)) | ||
| 429 | { | ||
| 430 | STACK_OF(X509_ALGOR) *smcap = NULL; | ||
| 431 | i = CMS_add_standard_smimecap(&smcap); | ||
| 432 | if (i) | ||
| 433 | i = CMS_add_smimecap(si, smcap); | ||
| 434 | sk_X509_ALGOR_pop_free(smcap, X509_ALGOR_free); | ||
| 435 | if (!i) | ||
| 436 | goto merr; | ||
| 437 | } | ||
| 438 | if (flags & CMS_REUSE_DIGEST) | ||
| 439 | { | ||
| 440 | if (!cms_copy_messageDigest(cms, si)) | ||
| 441 | goto err; | ||
| 442 | if (!(flags & CMS_PARTIAL) && | ||
| 443 | !CMS_SignerInfo_sign(si)) | ||
| 444 | goto err; | ||
| 445 | } | ||
| 446 | } | ||
| 447 | |||
| 448 | if (!(flags & CMS_NOCERTS)) | ||
| 449 | { | ||
| 450 | /* NB ignore -1 return for duplicate cert */ | ||
| 451 | if (!CMS_add1_cert(cms, signer)) | ||
| 452 | goto merr; | ||
| 453 | } | ||
| 454 | |||
| 455 | if (!sd->signerInfos) | ||
| 456 | sd->signerInfos = sk_CMS_SignerInfo_new_null(); | ||
| 457 | if (!sd->signerInfos || | ||
| 458 | !sk_CMS_SignerInfo_push(sd->signerInfos, si)) | ||
| 459 | goto merr; | ||
| 460 | |||
| 461 | return si; | ||
| 462 | |||
| 463 | merr: | ||
| 464 | CMSerr(CMS_F_CMS_ADD1_SIGNER, ERR_R_MALLOC_FAILURE); | ||
| 465 | err: | ||
| 466 | if (si) | ||
| 467 | M_ASN1_free_of(si, CMS_SignerInfo); | ||
| 468 | return NULL; | ||
| 469 | |||
| 470 | } | ||
| 471 | |||
| 472 | static int cms_add1_signingTime(CMS_SignerInfo *si, ASN1_TIME *t) | ||
| 473 | { | ||
| 474 | ASN1_TIME *tt; | ||
| 475 | int r = 0; | ||
| 476 | if (t) | ||
| 477 | tt = t; | ||
| 478 | else | ||
| 479 | tt = X509_gmtime_adj(NULL, 0); | ||
| 480 | |||
| 481 | if (!tt) | ||
| 482 | goto merr; | ||
| 483 | |||
| 484 | if (CMS_signed_add1_attr_by_NID(si, NID_pkcs9_signingTime, | ||
| 485 | tt->type, tt, -1) <= 0) | ||
| 486 | goto merr; | ||
| 487 | |||
| 488 | r = 1; | ||
| 489 | |||
| 490 | merr: | ||
| 491 | |||
| 492 | if (!t) | ||
| 493 | ASN1_TIME_free(tt); | ||
| 494 | |||
| 495 | if (!r) | ||
| 496 | CMSerr(CMS_F_CMS_ADD1_SIGNINGTIME, ERR_R_MALLOC_FAILURE); | ||
| 497 | |||
| 498 | return r; | ||
| 499 | |||
| 500 | } | ||
| 501 | |||
| 502 | STACK_OF(CMS_SignerInfo) *CMS_get0_SignerInfos(CMS_ContentInfo *cms) | ||
| 503 | { | ||
| 504 | CMS_SignedData *sd; | ||
| 505 | sd = cms_get0_signed(cms); | ||
| 506 | if (!sd) | ||
| 507 | return NULL; | ||
| 508 | return sd->signerInfos; | ||
| 509 | } | ||
| 510 | |||
| 511 | STACK_OF(X509) *CMS_get0_signers(CMS_ContentInfo *cms) | ||
| 512 | { | ||
| 513 | STACK_OF(X509) *signers = NULL; | ||
| 514 | STACK_OF(CMS_SignerInfo) *sinfos; | ||
| 515 | CMS_SignerInfo *si; | ||
| 516 | int i; | ||
| 517 | sinfos = CMS_get0_SignerInfos(cms); | ||
| 518 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 519 | { | ||
| 520 | si = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 521 | if (si->signer) | ||
| 522 | { | ||
| 523 | if (!signers) | ||
| 524 | { | ||
| 525 | signers = sk_X509_new_null(); | ||
| 526 | if (!signers) | ||
| 527 | return NULL; | ||
| 528 | } | ||
| 529 | if (!sk_X509_push(signers, si->signer)) | ||
| 530 | { | ||
| 531 | sk_X509_free(signers); | ||
| 532 | return NULL; | ||
| 533 | } | ||
| 534 | } | ||
| 535 | } | ||
| 536 | return signers; | ||
| 537 | } | ||
| 538 | |||
| 539 | void CMS_SignerInfo_set1_signer_cert(CMS_SignerInfo *si, X509 *signer) | ||
| 540 | { | ||
| 541 | if (signer) | ||
| 542 | { | ||
| 543 | CRYPTO_add(&signer->references, 1, CRYPTO_LOCK_X509); | ||
| 544 | if (si->pkey) | ||
| 545 | EVP_PKEY_free(si->pkey); | ||
| 546 | si->pkey = X509_get_pubkey(signer); | ||
| 547 | } | ||
| 548 | if (si->signer) | ||
| 549 | X509_free(si->signer); | ||
| 550 | si->signer = signer; | ||
| 551 | } | ||
| 552 | |||
| 553 | int CMS_SignerInfo_get0_signer_id(CMS_SignerInfo *si, | ||
| 554 | ASN1_OCTET_STRING **keyid, | ||
| 555 | X509_NAME **issuer, ASN1_INTEGER **sno) | ||
| 556 | { | ||
| 557 | return cms_SignerIdentifier_get0_signer_id(si->sid, keyid, issuer, sno); | ||
| 558 | } | ||
| 559 | |||
| 560 | int CMS_SignerInfo_cert_cmp(CMS_SignerInfo *si, X509 *cert) | ||
| 561 | { | ||
| 562 | return cms_SignerIdentifier_cert_cmp(si->sid, cert); | ||
| 563 | } | ||
| 564 | |||
| 565 | int CMS_set1_signers_certs(CMS_ContentInfo *cms, STACK_OF(X509) *scerts, | ||
| 566 | unsigned int flags) | ||
| 567 | { | ||
| 568 | CMS_SignedData *sd; | ||
| 569 | CMS_SignerInfo *si; | ||
| 570 | CMS_CertificateChoices *cch; | ||
| 571 | STACK_OF(CMS_CertificateChoices) *certs; | ||
| 572 | X509 *x; | ||
| 573 | int i, j; | ||
| 574 | int ret = 0; | ||
| 575 | sd = cms_get0_signed(cms); | ||
| 576 | if (!sd) | ||
| 577 | return -1; | ||
| 578 | certs = sd->certificates; | ||
| 579 | for (i = 0; i < sk_CMS_SignerInfo_num(sd->signerInfos); i++) | ||
| 580 | { | ||
| 581 | si = sk_CMS_SignerInfo_value(sd->signerInfos, i); | ||
| 582 | if (si->signer) | ||
| 583 | continue; | ||
| 584 | |||
| 585 | for (j = 0; j < sk_X509_num(scerts); j++) | ||
| 586 | { | ||
| 587 | x = sk_X509_value(scerts, j); | ||
| 588 | if (CMS_SignerInfo_cert_cmp(si, x) == 0) | ||
| 589 | { | ||
| 590 | CMS_SignerInfo_set1_signer_cert(si, x); | ||
| 591 | ret++; | ||
| 592 | break; | ||
| 593 | } | ||
| 594 | } | ||
| 595 | |||
| 596 | if (si->signer || (flags & CMS_NOINTERN)) | ||
| 597 | continue; | ||
| 598 | |||
| 599 | for (j = 0; j < sk_CMS_CertificateChoices_num(certs); j++) | ||
| 600 | { | ||
| 601 | cch = sk_CMS_CertificateChoices_value(certs, j); | ||
| 602 | if (cch->type != 0) | ||
| 603 | continue; | ||
| 604 | x = cch->d.certificate; | ||
| 605 | if (CMS_SignerInfo_cert_cmp(si, x) == 0) | ||
| 606 | { | ||
| 607 | CMS_SignerInfo_set1_signer_cert(si, x); | ||
| 608 | ret++; | ||
| 609 | break; | ||
| 610 | } | ||
| 611 | } | ||
| 612 | } | ||
| 613 | return ret; | ||
| 614 | } | ||
| 615 | |||
| 616 | void CMS_SignerInfo_get0_algs(CMS_SignerInfo *si, EVP_PKEY **pk, X509 **signer, | ||
| 617 | X509_ALGOR **pdig, X509_ALGOR **psig) | ||
| 618 | { | ||
| 619 | if (pk) | ||
| 620 | *pk = si->pkey; | ||
| 621 | if (signer) | ||
| 622 | *signer = si->signer; | ||
| 623 | if (pdig) | ||
| 624 | *pdig = si->digestAlgorithm; | ||
| 625 | if (psig) | ||
| 626 | *psig = si->signatureAlgorithm; | ||
| 627 | } | ||
| 628 | |||
| 629 | /* In OpenSSL 0.9.8 we have the link between digest types and public | ||
| 630 | * key types so we need to fixup the digest type if the public key | ||
| 631 | * type is not appropriate. | ||
| 632 | */ | ||
| 633 | |||
| 634 | static void cms_fixup_mctx(EVP_MD_CTX *mctx, EVP_PKEY *pkey) | ||
| 635 | { | ||
| 636 | if (EVP_MD_CTX_type(mctx) != NID_sha1) | ||
| 637 | return; | ||
| 638 | #ifndef OPENSSL_NO_DSA | ||
| 639 | if (pkey->type == EVP_PKEY_DSA) | ||
| 640 | mctx->digest = EVP_dss1(); | ||
| 641 | #endif | ||
| 642 | #ifndef OPENSSL_NO_ECDSA | ||
| 643 | if (pkey->type == EVP_PKEY_EC) | ||
| 644 | mctx->digest = EVP_ecdsa(); | ||
| 645 | #endif | ||
| 646 | } | ||
| 647 | |||
| 648 | static int cms_SignerInfo_content_sign(CMS_ContentInfo *cms, | ||
| 649 | CMS_SignerInfo *si, BIO *chain) | ||
| 650 | { | ||
| 651 | EVP_MD_CTX mctx; | ||
| 652 | int r = 0; | ||
| 653 | EVP_MD_CTX_init(&mctx); | ||
| 654 | |||
| 655 | |||
| 656 | if (!si->pkey) | ||
| 657 | { | ||
| 658 | CMSerr(CMS_F_CMS_SIGNERINFO_CONTENT_SIGN, CMS_R_NO_PRIVATE_KEY); | ||
| 659 | return 0; | ||
| 660 | } | ||
| 661 | |||
| 662 | if (!cms_DigestAlgorithm_find_ctx(&mctx, chain, si->digestAlgorithm)) | ||
| 663 | goto err; | ||
| 664 | |||
| 665 | /* If any signed attributes calculate and add messageDigest attribute */ | ||
| 666 | |||
| 667 | if (CMS_signed_get_attr_count(si) >= 0) | ||
| 668 | { | ||
| 669 | ASN1_OBJECT *ctype = | ||
| 670 | cms->d.signedData->encapContentInfo->eContentType; | ||
| 671 | unsigned char md[EVP_MAX_MD_SIZE]; | ||
| 672 | unsigned int mdlen; | ||
| 673 | EVP_DigestFinal_ex(&mctx, md, &mdlen); | ||
| 674 | if (!CMS_signed_add1_attr_by_NID(si, NID_pkcs9_messageDigest, | ||
| 675 | V_ASN1_OCTET_STRING, | ||
| 676 | md, mdlen)) | ||
| 677 | goto err; | ||
| 678 | /* Copy content type across */ | ||
| 679 | if (CMS_signed_add1_attr_by_NID(si, NID_pkcs9_contentType, | ||
| 680 | V_ASN1_OBJECT, ctype, -1) <= 0) | ||
| 681 | goto err; | ||
| 682 | if (!CMS_SignerInfo_sign(si)) | ||
| 683 | goto err; | ||
| 684 | } | ||
| 685 | else | ||
| 686 | { | ||
| 687 | unsigned char *sig; | ||
| 688 | unsigned int siglen; | ||
| 689 | sig = OPENSSL_malloc(EVP_PKEY_size(si->pkey)); | ||
| 690 | if (!sig) | ||
| 691 | { | ||
| 692 | CMSerr(CMS_F_CMS_SIGNERINFO_CONTENT_SIGN, | ||
| 693 | ERR_R_MALLOC_FAILURE); | ||
| 694 | goto err; | ||
| 695 | } | ||
| 696 | cms_fixup_mctx(&mctx, si->pkey); | ||
| 697 | if (!EVP_SignFinal(&mctx, sig, &siglen, si->pkey)) | ||
| 698 | { | ||
| 699 | CMSerr(CMS_F_CMS_SIGNERINFO_CONTENT_SIGN, | ||
| 700 | CMS_R_SIGNFINAL_ERROR); | ||
| 701 | OPENSSL_free(sig); | ||
| 702 | goto err; | ||
| 703 | } | ||
| 704 | ASN1_STRING_set0(si->signature, sig, siglen); | ||
| 705 | } | ||
| 706 | |||
| 707 | r = 1; | ||
| 708 | |||
| 709 | err: | ||
| 710 | EVP_MD_CTX_cleanup(&mctx); | ||
| 711 | return r; | ||
| 712 | |||
| 713 | } | ||
| 714 | |||
| 715 | int cms_SignedData_final(CMS_ContentInfo *cms, BIO *chain) | ||
| 716 | { | ||
| 717 | STACK_OF(CMS_SignerInfo) *sinfos; | ||
| 718 | CMS_SignerInfo *si; | ||
| 719 | int i; | ||
| 720 | sinfos = CMS_get0_SignerInfos(cms); | ||
| 721 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 722 | { | ||
| 723 | si = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 724 | if (!cms_SignerInfo_content_sign(cms, si, chain)) | ||
| 725 | return 0; | ||
| 726 | } | ||
| 727 | cms->d.signedData->encapContentInfo->partial = 0; | ||
| 728 | return 1; | ||
| 729 | } | ||
| 730 | |||
| 731 | int CMS_SignerInfo_sign(CMS_SignerInfo *si) | ||
| 732 | { | ||
| 733 | EVP_MD_CTX mctx; | ||
| 734 | unsigned char *abuf = NULL; | ||
| 735 | int alen; | ||
| 736 | unsigned int siglen; | ||
| 737 | const EVP_MD *md = NULL; | ||
| 738 | |||
| 739 | md = EVP_get_digestbyobj(si->digestAlgorithm->algorithm); | ||
| 740 | if (md == NULL) | ||
| 741 | return 0; | ||
| 742 | |||
| 743 | EVP_MD_CTX_init(&mctx); | ||
| 744 | |||
| 745 | if (CMS_signed_get_attr_by_NID(si, NID_pkcs9_signingTime, -1) < 0) | ||
| 746 | { | ||
| 747 | if (!cms_add1_signingTime(si, NULL)) | ||
| 748 | goto err; | ||
| 749 | } | ||
| 750 | |||
| 751 | if (EVP_SignInit_ex(&mctx, md, NULL) <= 0) | ||
| 752 | goto err; | ||
| 753 | |||
| 754 | #if 0 | ||
| 755 | if (EVP_PKEY_CTX_ctrl(pctx, -1, EVP_PKEY_OP_SIGN, | ||
| 756 | EVP_PKEY_CTRL_CMS_SIGN, 0, si) <= 0) | ||
| 757 | { | ||
| 758 | CMSerr(CMS_F_CMS_SIGNERINFO_SIGN, CMS_R_CTRL_ERROR); | ||
| 759 | goto err; | ||
| 760 | } | ||
| 761 | #endif | ||
| 762 | |||
| 763 | alen = ASN1_item_i2d((ASN1_VALUE *)si->signedAttrs,&abuf, | ||
| 764 | ASN1_ITEM_rptr(CMS_Attributes_Sign)); | ||
| 765 | if(!abuf) | ||
| 766 | goto err; | ||
| 767 | if (EVP_SignUpdate(&mctx, abuf, alen) <= 0) | ||
| 768 | goto err; | ||
| 769 | siglen = EVP_PKEY_size(si->pkey); | ||
| 770 | OPENSSL_free(abuf); | ||
| 771 | abuf = OPENSSL_malloc(siglen); | ||
| 772 | if(!abuf) | ||
| 773 | goto err; | ||
| 774 | cms_fixup_mctx(&mctx, si->pkey); | ||
| 775 | if (EVP_SignFinal(&mctx, abuf, &siglen, si->pkey) <= 0) | ||
| 776 | goto err; | ||
| 777 | #if 0 | ||
| 778 | if (EVP_PKEY_CTX_ctrl(pctx, -1, EVP_PKEY_OP_SIGN, | ||
| 779 | EVP_PKEY_CTRL_CMS_SIGN, 1, si) <= 0) | ||
| 780 | { | ||
| 781 | CMSerr(CMS_F_CMS_SIGNERINFO_SIGN, CMS_R_CTRL_ERROR); | ||
| 782 | goto err; | ||
| 783 | } | ||
| 784 | #endif | ||
| 785 | EVP_MD_CTX_cleanup(&mctx); | ||
| 786 | |||
| 787 | ASN1_STRING_set0(si->signature, abuf, siglen); | ||
| 788 | |||
| 789 | return 1; | ||
| 790 | |||
| 791 | err: | ||
| 792 | if (abuf) | ||
| 793 | OPENSSL_free(abuf); | ||
| 794 | EVP_MD_CTX_cleanup(&mctx); | ||
| 795 | return 0; | ||
| 796 | |||
| 797 | } | ||
| 798 | |||
| 799 | int CMS_SignerInfo_verify(CMS_SignerInfo *si) | ||
| 800 | { | ||
| 801 | EVP_MD_CTX mctx; | ||
| 802 | unsigned char *abuf = NULL; | ||
| 803 | int alen, r = -1; | ||
| 804 | const EVP_MD *md = NULL; | ||
| 805 | |||
| 806 | if (!si->pkey) | ||
| 807 | { | ||
| 808 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY, CMS_R_NO_PUBLIC_KEY); | ||
| 809 | return -1; | ||
| 810 | } | ||
| 811 | |||
| 812 | md = EVP_get_digestbyobj(si->digestAlgorithm->algorithm); | ||
| 813 | if (md == NULL) | ||
| 814 | return -1; | ||
| 815 | EVP_MD_CTX_init(&mctx); | ||
| 816 | if (EVP_VerifyInit_ex(&mctx, md, NULL) <= 0) | ||
| 817 | goto err; | ||
| 818 | |||
| 819 | alen = ASN1_item_i2d((ASN1_VALUE *)si->signedAttrs,&abuf, | ||
| 820 | ASN1_ITEM_rptr(CMS_Attributes_Verify)); | ||
| 821 | if(!abuf) | ||
| 822 | goto err; | ||
| 823 | r = EVP_VerifyUpdate(&mctx, abuf, alen); | ||
| 824 | OPENSSL_free(abuf); | ||
| 825 | if (r <= 0) | ||
| 826 | { | ||
| 827 | r = -1; | ||
| 828 | goto err; | ||
| 829 | } | ||
| 830 | cms_fixup_mctx(&mctx, si->pkey); | ||
| 831 | r = EVP_VerifyFinal(&mctx, | ||
| 832 | si->signature->data, si->signature->length, si->pkey); | ||
| 833 | if (!r) | ||
| 834 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY, CMS_R_VERIFICATION_FAILURE); | ||
| 835 | err: | ||
| 836 | EVP_MD_CTX_cleanup(&mctx); | ||
| 837 | return r; | ||
| 838 | } | ||
| 839 | |||
| 840 | /* Create a chain of digest BIOs from a CMS ContentInfo */ | ||
| 841 | |||
| 842 | BIO *cms_SignedData_init_bio(CMS_ContentInfo *cms) | ||
| 843 | { | ||
| 844 | int i; | ||
| 845 | CMS_SignedData *sd; | ||
| 846 | BIO *chain = NULL; | ||
| 847 | sd = cms_get0_signed(cms); | ||
| 848 | if (!sd) | ||
| 849 | return NULL; | ||
| 850 | if (cms->d.signedData->encapContentInfo->partial) | ||
| 851 | cms_sd_set_version(sd); | ||
| 852 | for (i = 0; i < sk_X509_ALGOR_num(sd->digestAlgorithms); i++) | ||
| 853 | { | ||
| 854 | X509_ALGOR *digestAlgorithm; | ||
| 855 | BIO *mdbio; | ||
| 856 | digestAlgorithm = sk_X509_ALGOR_value(sd->digestAlgorithms, i); | ||
| 857 | mdbio = cms_DigestAlgorithm_init_bio(digestAlgorithm); | ||
| 858 | if (!mdbio) | ||
| 859 | goto err; | ||
| 860 | if (chain) | ||
| 861 | BIO_push(chain, mdbio); | ||
| 862 | else | ||
| 863 | chain = mdbio; | ||
| 864 | } | ||
| 865 | return chain; | ||
| 866 | err: | ||
| 867 | if (chain) | ||
| 868 | BIO_free_all(chain); | ||
| 869 | return NULL; | ||
| 870 | } | ||
| 871 | |||
| 872 | int CMS_SignerInfo_verify_content(CMS_SignerInfo *si, BIO *chain) | ||
| 873 | { | ||
| 874 | ASN1_OCTET_STRING *os = NULL; | ||
| 875 | EVP_MD_CTX mctx; | ||
| 876 | int r = -1; | ||
| 877 | EVP_MD_CTX_init(&mctx); | ||
| 878 | /* If we have any signed attributes look for messageDigest value */ | ||
| 879 | if (CMS_signed_get_attr_count(si) >= 0) | ||
| 880 | { | ||
| 881 | os = CMS_signed_get0_data_by_OBJ(si, | ||
| 882 | OBJ_nid2obj(NID_pkcs9_messageDigest), | ||
| 883 | -3, V_ASN1_OCTET_STRING); | ||
| 884 | if (!os) | ||
| 885 | { | ||
| 886 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT, | ||
| 887 | CMS_R_ERROR_READING_MESSAGEDIGEST_ATTRIBUTE); | ||
| 888 | goto err; | ||
| 889 | } | ||
| 890 | } | ||
| 891 | |||
| 892 | if (!cms_DigestAlgorithm_find_ctx(&mctx, chain, si->digestAlgorithm)) | ||
| 893 | goto err; | ||
| 894 | |||
| 895 | /* If messageDigest found compare it */ | ||
| 896 | |||
| 897 | if (os) | ||
| 898 | { | ||
| 899 | unsigned char mval[EVP_MAX_MD_SIZE]; | ||
| 900 | unsigned int mlen; | ||
| 901 | if (EVP_DigestFinal_ex(&mctx, mval, &mlen) <= 0) | ||
| 902 | { | ||
| 903 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT, | ||
| 904 | CMS_R_UNABLE_TO_FINALIZE_CONTEXT); | ||
| 905 | goto err; | ||
| 906 | } | ||
| 907 | if (mlen != (unsigned int)os->length) | ||
| 908 | { | ||
| 909 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT, | ||
| 910 | CMS_R_MESSAGEDIGEST_ATTRIBUTE_WRONG_LENGTH); | ||
| 911 | goto err; | ||
| 912 | } | ||
| 913 | |||
| 914 | if (memcmp(mval, os->data, mlen)) | ||
| 915 | { | ||
| 916 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT, | ||
| 917 | CMS_R_VERIFICATION_FAILURE); | ||
| 918 | r = 0; | ||
| 919 | } | ||
| 920 | else | ||
| 921 | r = 1; | ||
| 922 | } | ||
| 923 | else | ||
| 924 | { | ||
| 925 | cms_fixup_mctx(&mctx, si->pkey); | ||
| 926 | r = EVP_VerifyFinal(&mctx, si->signature->data, | ||
| 927 | si->signature->length, si->pkey); | ||
| 928 | if (r <= 0) | ||
| 929 | { | ||
| 930 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CONTENT, | ||
| 931 | CMS_R_VERIFICATION_FAILURE); | ||
| 932 | r = 0; | ||
| 933 | } | ||
| 934 | } | ||
| 935 | |||
| 936 | err: | ||
| 937 | EVP_MD_CTX_cleanup(&mctx); | ||
| 938 | return r; | ||
| 939 | |||
| 940 | } | ||
| 941 | |||
| 942 | int CMS_add_smimecap(CMS_SignerInfo *si, STACK_OF(X509_ALGOR) *algs) | ||
| 943 | { | ||
| 944 | unsigned char *smder = NULL; | ||
| 945 | int smderlen, r; | ||
| 946 | smderlen = i2d_X509_ALGORS(algs, &smder); | ||
| 947 | if (smderlen <= 0) | ||
| 948 | return 0; | ||
| 949 | r = CMS_signed_add1_attr_by_NID(si, NID_SMIMECapabilities, | ||
| 950 | V_ASN1_SEQUENCE, smder, smderlen); | ||
| 951 | OPENSSL_free(smder); | ||
| 952 | return r; | ||
| 953 | } | ||
| 954 | |||
| 955 | int CMS_add_simple_smimecap(STACK_OF(X509_ALGOR) **algs, | ||
| 956 | int algnid, int keysize) | ||
| 957 | { | ||
| 958 | X509_ALGOR *alg; | ||
| 959 | ASN1_INTEGER *key = NULL; | ||
| 960 | if (keysize > 0) | ||
| 961 | { | ||
| 962 | key = ASN1_INTEGER_new(); | ||
| 963 | if (!key || !ASN1_INTEGER_set(key, keysize)) | ||
| 964 | return 0; | ||
| 965 | } | ||
| 966 | alg = X509_ALGOR_new(); | ||
| 967 | if (!alg) | ||
| 968 | { | ||
| 969 | if (key) | ||
| 970 | ASN1_INTEGER_free(key); | ||
| 971 | return 0; | ||
| 972 | } | ||
| 973 | |||
| 974 | X509_ALGOR_set0(alg, OBJ_nid2obj(algnid), | ||
| 975 | key ? V_ASN1_INTEGER : V_ASN1_UNDEF, key); | ||
| 976 | if (!*algs) | ||
| 977 | *algs = sk_X509_ALGOR_new_null(); | ||
| 978 | if (!*algs || !sk_X509_ALGOR_push(*algs, alg)) | ||
| 979 | { | ||
| 980 | X509_ALGOR_free(alg); | ||
| 981 | return 0; | ||
| 982 | } | ||
| 983 | return 1; | ||
| 984 | } | ||
| 985 | |||
| 986 | /* Check to see if a cipher exists and if so add S/MIME capabilities */ | ||
| 987 | |||
| 988 | static int cms_add_cipher_smcap(STACK_OF(X509_ALGOR) **sk, int nid, int arg) | ||
| 989 | { | ||
| 990 | if (EVP_get_cipherbynid(nid)) | ||
| 991 | return CMS_add_simple_smimecap(sk, nid, arg); | ||
| 992 | return 1; | ||
| 993 | } | ||
| 994 | #if 0 | ||
| 995 | static int cms_add_digest_smcap(STACK_OF(X509_ALGOR) **sk, int nid, int arg) | ||
| 996 | { | ||
| 997 | if (EVP_get_digestbynid(nid)) | ||
| 998 | return CMS_add_simple_smimecap(sk, nid, arg); | ||
| 999 | return 1; | ||
| 1000 | } | ||
| 1001 | #endif | ||
| 1002 | int CMS_add_standard_smimecap(STACK_OF(X509_ALGOR) **smcap) | ||
| 1003 | { | ||
| 1004 | if (!cms_add_cipher_smcap(smcap, NID_aes_256_cbc, -1) | ||
| 1005 | || !cms_add_cipher_smcap(smcap, NID_aes_192_cbc, -1) | ||
| 1006 | || !cms_add_cipher_smcap(smcap, NID_aes_128_cbc, -1) | ||
| 1007 | || !cms_add_cipher_smcap(smcap, NID_des_ede3_cbc, -1) | ||
| 1008 | || !cms_add_cipher_smcap(smcap, NID_rc2_cbc, 128) | ||
| 1009 | || !cms_add_cipher_smcap(smcap, NID_rc2_cbc, 64) | ||
| 1010 | || !cms_add_cipher_smcap(smcap, NID_des_cbc, -1) | ||
| 1011 | || !cms_add_cipher_smcap(smcap, NID_rc2_cbc, 40)) | ||
| 1012 | return 0; | ||
| 1013 | return 1; | ||
| 1014 | } | ||
diff --git a/src/lib/libssl/src/crypto/cms/cms_smime.c b/src/lib/libssl/src/crypto/cms/cms_smime.c new file mode 100644 index 0000000000..f79c504e91 --- /dev/null +++ b/src/lib/libssl/src/crypto/cms/cms_smime.c | |||
| @@ -0,0 +1,806 @@ | |||
| 1 | /* crypto/cms/cms_smime.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "cryptlib.h" | ||
| 55 | #include <openssl/asn1t.h> | ||
| 56 | #include <openssl/x509.h> | ||
| 57 | #include <openssl/x509v3.h> | ||
| 58 | #include <openssl/err.h> | ||
| 59 | #include <openssl/cms.h> | ||
| 60 | #include "cms_lcl.h" | ||
| 61 | |||
| 62 | static int cms_copy_content(BIO *out, BIO *in, unsigned int flags) | ||
| 63 | { | ||
| 64 | unsigned char buf[4096]; | ||
| 65 | int r = 0, i; | ||
| 66 | BIO *tmpout = NULL; | ||
| 67 | |||
| 68 | if (out == NULL) | ||
| 69 | tmpout = BIO_new(BIO_s_null()); | ||
| 70 | else if (flags & CMS_TEXT) | ||
| 71 | tmpout = BIO_new(BIO_s_mem()); | ||
| 72 | else | ||
| 73 | tmpout = out; | ||
| 74 | |||
| 75 | if(!tmpout) | ||
| 76 | { | ||
| 77 | CMSerr(CMS_F_CMS_COPY_CONTENT,ERR_R_MALLOC_FAILURE); | ||
| 78 | goto err; | ||
| 79 | } | ||
| 80 | |||
| 81 | /* Read all content through chain to process digest, decrypt etc */ | ||
| 82 | for (;;) | ||
| 83 | { | ||
| 84 | i=BIO_read(in,buf,sizeof(buf)); | ||
| 85 | if (i <= 0) | ||
| 86 | { | ||
| 87 | if (BIO_method_type(in) == BIO_TYPE_CIPHER) | ||
| 88 | { | ||
| 89 | if (!BIO_get_cipher_status(in)) | ||
| 90 | goto err; | ||
| 91 | } | ||
| 92 | break; | ||
| 93 | } | ||
| 94 | |||
| 95 | if (tmpout) | ||
| 96 | BIO_write(tmpout, buf, i); | ||
| 97 | } | ||
| 98 | |||
| 99 | if(flags & CMS_TEXT) | ||
| 100 | { | ||
| 101 | if(!SMIME_text(tmpout, out)) | ||
| 102 | { | ||
| 103 | CMSerr(CMS_F_CMS_COPY_CONTENT,CMS_R_SMIME_TEXT_ERROR); | ||
| 104 | goto err; | ||
| 105 | } | ||
| 106 | } | ||
| 107 | |||
| 108 | r = 1; | ||
| 109 | |||
| 110 | err: | ||
| 111 | if (tmpout && (tmpout != out)) | ||
| 112 | BIO_free(tmpout); | ||
| 113 | return r; | ||
| 114 | |||
| 115 | } | ||
| 116 | |||
| 117 | static int check_content(CMS_ContentInfo *cms) | ||
| 118 | { | ||
| 119 | ASN1_OCTET_STRING **pos = CMS_get0_content(cms); | ||
| 120 | if (!pos || !*pos) | ||
| 121 | { | ||
| 122 | CMSerr(CMS_F_CHECK_CONTENT, CMS_R_NO_CONTENT); | ||
| 123 | return 0; | ||
| 124 | } | ||
| 125 | return 1; | ||
| 126 | } | ||
| 127 | |||
| 128 | static void do_free_upto(BIO *f, BIO *upto) | ||
| 129 | { | ||
| 130 | if (upto) | ||
| 131 | { | ||
| 132 | BIO *tbio; | ||
| 133 | do | ||
| 134 | { | ||
| 135 | tbio = BIO_pop(f); | ||
| 136 | BIO_free(f); | ||
| 137 | f = tbio; | ||
| 138 | } | ||
| 139 | while (f != upto); | ||
| 140 | } | ||
| 141 | else | ||
| 142 | BIO_free_all(f); | ||
| 143 | } | ||
| 144 | |||
| 145 | int CMS_data(CMS_ContentInfo *cms, BIO *out, unsigned int flags) | ||
| 146 | { | ||
| 147 | BIO *cont; | ||
| 148 | int r; | ||
| 149 | if (OBJ_obj2nid(CMS_get0_type(cms)) != NID_pkcs7_data) | ||
| 150 | { | ||
| 151 | CMSerr(CMS_F_CMS_DATA, CMS_R_TYPE_NOT_DATA); | ||
| 152 | return 0; | ||
| 153 | } | ||
| 154 | cont = CMS_dataInit(cms, NULL); | ||
| 155 | if (!cont) | ||
| 156 | return 0; | ||
| 157 | r = cms_copy_content(out, cont, flags); | ||
| 158 | BIO_free_all(cont); | ||
| 159 | return r; | ||
| 160 | } | ||
| 161 | |||
| 162 | CMS_ContentInfo *CMS_data_create(BIO *in, unsigned int flags) | ||
| 163 | { | ||
| 164 | CMS_ContentInfo *cms; | ||
| 165 | cms = cms_Data_create(); | ||
| 166 | if (!cms) | ||
| 167 | return NULL; | ||
| 168 | |||
| 169 | if (CMS_final(cms, in, NULL, flags)) | ||
| 170 | return cms; | ||
| 171 | |||
| 172 | CMS_ContentInfo_free(cms); | ||
| 173 | |||
| 174 | return NULL; | ||
| 175 | } | ||
| 176 | |||
| 177 | int CMS_digest_verify(CMS_ContentInfo *cms, BIO *dcont, BIO *out, | ||
| 178 | unsigned int flags) | ||
| 179 | { | ||
| 180 | BIO *cont; | ||
| 181 | int r; | ||
| 182 | if (OBJ_obj2nid(CMS_get0_type(cms)) != NID_pkcs7_digest) | ||
| 183 | { | ||
| 184 | CMSerr(CMS_F_CMS_DIGEST_VERIFY, CMS_R_TYPE_NOT_DIGESTED_DATA); | ||
| 185 | return 0; | ||
| 186 | } | ||
| 187 | |||
| 188 | if (!dcont && !check_content(cms)) | ||
| 189 | return 0; | ||
| 190 | |||
| 191 | cont = CMS_dataInit(cms, dcont); | ||
| 192 | if (!cont) | ||
| 193 | return 0; | ||
| 194 | r = cms_copy_content(out, cont, flags); | ||
| 195 | if (r) | ||
| 196 | r = cms_DigestedData_do_final(cms, cont, 1); | ||
| 197 | do_free_upto(cont, dcont); | ||
| 198 | return r; | ||
| 199 | } | ||
| 200 | |||
| 201 | CMS_ContentInfo *CMS_digest_create(BIO *in, const EVP_MD *md, | ||
| 202 | unsigned int flags) | ||
| 203 | { | ||
| 204 | CMS_ContentInfo *cms; | ||
| 205 | if (!md) | ||
| 206 | md = EVP_sha1(); | ||
| 207 | cms = cms_DigestedData_create(md); | ||
| 208 | if (!cms) | ||
| 209 | return NULL; | ||
| 210 | |||
| 211 | if(!(flags & CMS_DETACHED)) | ||
| 212 | { | ||
| 213 | flags &= ~CMS_STREAM; | ||
| 214 | CMS_set_detached(cms, 0); | ||
| 215 | } | ||
| 216 | |||
| 217 | if ((flags & CMS_STREAM) || CMS_final(cms, in, NULL, flags)) | ||
| 218 | return cms; | ||
| 219 | |||
| 220 | CMS_ContentInfo_free(cms); | ||
| 221 | return NULL; | ||
| 222 | } | ||
| 223 | |||
| 224 | int CMS_EncryptedData_decrypt(CMS_ContentInfo *cms, | ||
| 225 | const unsigned char *key, size_t keylen, | ||
| 226 | BIO *dcont, BIO *out, unsigned int flags) | ||
| 227 | { | ||
| 228 | BIO *cont; | ||
| 229 | int r; | ||
| 230 | if (OBJ_obj2nid(CMS_get0_type(cms)) != NID_pkcs7_encrypted) | ||
| 231 | { | ||
| 232 | CMSerr(CMS_F_CMS_ENCRYPTEDDATA_DECRYPT, | ||
| 233 | CMS_R_TYPE_NOT_ENCRYPTED_DATA); | ||
| 234 | return 0; | ||
| 235 | } | ||
| 236 | |||
| 237 | if (!dcont && !check_content(cms)) | ||
| 238 | return 0; | ||
| 239 | |||
| 240 | if (CMS_EncryptedData_set1_key(cms, NULL, key, keylen) <= 0) | ||
| 241 | return 0; | ||
| 242 | cont = CMS_dataInit(cms, dcont); | ||
| 243 | if (!cont) | ||
| 244 | return 0; | ||
| 245 | r = cms_copy_content(out, cont, flags); | ||
| 246 | do_free_upto(cont, dcont); | ||
| 247 | return r; | ||
| 248 | } | ||
| 249 | |||
| 250 | CMS_ContentInfo *CMS_EncryptedData_encrypt(BIO *in, const EVP_CIPHER *cipher, | ||
| 251 | const unsigned char *key, size_t keylen, | ||
| 252 | unsigned int flags) | ||
| 253 | { | ||
| 254 | CMS_ContentInfo *cms; | ||
| 255 | if (!cipher) | ||
| 256 | { | ||
| 257 | CMSerr(CMS_F_CMS_ENCRYPTEDDATA_ENCRYPT, CMS_R_NO_CIPHER); | ||
| 258 | return NULL; | ||
| 259 | } | ||
| 260 | cms = CMS_ContentInfo_new(); | ||
| 261 | if (!cms) | ||
| 262 | return NULL; | ||
| 263 | if (!CMS_EncryptedData_set1_key(cms, cipher, key, keylen)) | ||
| 264 | return NULL; | ||
| 265 | |||
| 266 | if(!(flags & CMS_DETACHED)) | ||
| 267 | { | ||
| 268 | flags &= ~CMS_STREAM; | ||
| 269 | CMS_set_detached(cms, 0); | ||
| 270 | } | ||
| 271 | |||
| 272 | if ((flags & (CMS_STREAM|CMS_PARTIAL)) | ||
| 273 | || CMS_final(cms, in, NULL, flags)) | ||
| 274 | return cms; | ||
| 275 | |||
| 276 | CMS_ContentInfo_free(cms); | ||
| 277 | return NULL; | ||
| 278 | } | ||
| 279 | |||
| 280 | static int cms_signerinfo_verify_cert(CMS_SignerInfo *si, | ||
| 281 | X509_STORE *store, | ||
| 282 | STACK_OF(X509) *certs, | ||
| 283 | STACK_OF(X509_CRL) *crls, | ||
| 284 | unsigned int flags) | ||
| 285 | { | ||
| 286 | X509_STORE_CTX ctx; | ||
| 287 | X509 *signer; | ||
| 288 | int i, j, r = 0; | ||
| 289 | CMS_SignerInfo_get0_algs(si, NULL, &signer, NULL, NULL); | ||
| 290 | if (!X509_STORE_CTX_init(&ctx, store, signer, certs)) | ||
| 291 | { | ||
| 292 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CERT, | ||
| 293 | CMS_R_STORE_INIT_ERROR); | ||
| 294 | goto err; | ||
| 295 | } | ||
| 296 | X509_STORE_CTX_set_purpose(&ctx, X509_PURPOSE_SMIME_SIGN); | ||
| 297 | if (crls) | ||
| 298 | X509_STORE_CTX_set0_crls(&ctx, crls); | ||
| 299 | |||
| 300 | i = X509_verify_cert(&ctx); | ||
| 301 | if (i <= 0) | ||
| 302 | { | ||
| 303 | j = X509_STORE_CTX_get_error(&ctx); | ||
| 304 | CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY_CERT, | ||
| 305 | CMS_R_CERTIFICATE_VERIFY_ERROR); | ||
| 306 | ERR_add_error_data(2, "Verify error:", | ||
| 307 | X509_verify_cert_error_string(j)); | ||
| 308 | goto err; | ||
| 309 | } | ||
| 310 | r = 1; | ||
| 311 | err: | ||
| 312 | X509_STORE_CTX_cleanup(&ctx); | ||
| 313 | return r; | ||
| 314 | |||
| 315 | } | ||
| 316 | |||
| 317 | int CMS_verify(CMS_ContentInfo *cms, STACK_OF(X509) *certs, | ||
| 318 | X509_STORE *store, BIO *dcont, BIO *out, unsigned int flags) | ||
| 319 | { | ||
| 320 | CMS_SignerInfo *si; | ||
| 321 | STACK_OF(CMS_SignerInfo) *sinfos; | ||
| 322 | STACK_OF(X509) *cms_certs = NULL; | ||
| 323 | STACK_OF(X509_CRL) *crls = NULL; | ||
| 324 | X509 *signer; | ||
| 325 | int i, scount = 0, ret = 0; | ||
| 326 | BIO *cmsbio = NULL, *tmpin = NULL; | ||
| 327 | |||
| 328 | if (!dcont && !check_content(cms)) | ||
| 329 | return 0; | ||
| 330 | |||
| 331 | /* Attempt to find all signer certificates */ | ||
| 332 | |||
| 333 | sinfos = CMS_get0_SignerInfos(cms); | ||
| 334 | |||
| 335 | if (sk_CMS_SignerInfo_num(sinfos) <= 0) | ||
| 336 | { | ||
| 337 | CMSerr(CMS_F_CMS_VERIFY, CMS_R_NO_SIGNERS); | ||
| 338 | goto err; | ||
| 339 | } | ||
| 340 | |||
| 341 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 342 | { | ||
| 343 | si = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 344 | CMS_SignerInfo_get0_algs(si, NULL, &signer, NULL, NULL); | ||
| 345 | if (signer) | ||
| 346 | scount++; | ||
| 347 | } | ||
| 348 | |||
| 349 | if (scount != sk_CMS_SignerInfo_num(sinfos)) | ||
| 350 | scount += CMS_set1_signers_certs(cms, certs, flags); | ||
| 351 | |||
| 352 | if (scount != sk_CMS_SignerInfo_num(sinfos)) | ||
| 353 | { | ||
| 354 | CMSerr(CMS_F_CMS_VERIFY, CMS_R_SIGNER_CERTIFICATE_NOT_FOUND); | ||
| 355 | goto err; | ||
| 356 | } | ||
| 357 | |||
| 358 | /* Attempt to verify all signers certs */ | ||
| 359 | |||
| 360 | if (!(flags & CMS_NO_SIGNER_CERT_VERIFY)) | ||
| 361 | { | ||
| 362 | cms_certs = CMS_get1_certs(cms); | ||
| 363 | if (!(flags & CMS_NOCRL)) | ||
| 364 | crls = CMS_get1_crls(cms); | ||
| 365 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 366 | { | ||
| 367 | si = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 368 | if (!cms_signerinfo_verify_cert(si, store, | ||
| 369 | cms_certs, crls, flags)) | ||
| 370 | goto err; | ||
| 371 | } | ||
| 372 | } | ||
| 373 | |||
| 374 | /* Attempt to verify all SignerInfo signed attribute signatures */ | ||
| 375 | |||
| 376 | if (!(flags & CMS_NO_ATTR_VERIFY)) | ||
| 377 | { | ||
| 378 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 379 | { | ||
| 380 | si = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 381 | if (CMS_signed_get_attr_count(si) < 0) | ||
| 382 | continue; | ||
| 383 | if (CMS_SignerInfo_verify(si) <= 0) | ||
| 384 | goto err; | ||
| 385 | } | ||
| 386 | } | ||
| 387 | |||
| 388 | /* Performance optimization: if the content is a memory BIO then | ||
| 389 | * store its contents in a temporary read only memory BIO. This | ||
| 390 | * avoids potentially large numbers of slow copies of data which will | ||
| 391 | * occur when reading from a read write memory BIO when signatures | ||
| 392 | * are calculated. | ||
| 393 | */ | ||
| 394 | |||
| 395 | if (dcont && (BIO_method_type(dcont) == BIO_TYPE_MEM)) | ||
| 396 | { | ||
| 397 | char *ptr; | ||
| 398 | long len; | ||
| 399 | len = BIO_get_mem_data(dcont, &ptr); | ||
| 400 | tmpin = BIO_new_mem_buf(ptr, len); | ||
| 401 | if (tmpin == NULL) | ||
| 402 | { | ||
| 403 | CMSerr(CMS_F_CMS_VERIFY,ERR_R_MALLOC_FAILURE); | ||
| 404 | return 0; | ||
| 405 | } | ||
| 406 | } | ||
| 407 | else | ||
| 408 | tmpin = dcont; | ||
| 409 | |||
| 410 | |||
| 411 | cmsbio=CMS_dataInit(cms, tmpin); | ||
| 412 | if (!cmsbio) | ||
| 413 | goto err; | ||
| 414 | |||
| 415 | if (!cms_copy_content(out, cmsbio, flags)) | ||
| 416 | goto err; | ||
| 417 | |||
| 418 | if (!(flags & CMS_NO_CONTENT_VERIFY)) | ||
| 419 | { | ||
| 420 | for (i = 0; i < sk_CMS_SignerInfo_num(sinfos); i++) | ||
| 421 | { | ||
| 422 | si = sk_CMS_SignerInfo_value(sinfos, i); | ||
| 423 | if (!CMS_SignerInfo_verify_content(si, cmsbio)) | ||
| 424 | { | ||
| 425 | CMSerr(CMS_F_CMS_VERIFY, | ||
| 426 | CMS_R_CONTENT_VERIFY_ERROR); | ||
| 427 | goto err; | ||
| 428 | } | ||
| 429 | } | ||
| 430 | } | ||
| 431 | |||
| 432 | ret = 1; | ||
| 433 | |||
| 434 | err: | ||
| 435 | |||
| 436 | if (dcont && (tmpin == dcont)) | ||
| 437 | do_free_upto(cmsbio, dcont); | ||
| 438 | else | ||
| 439 | BIO_free_all(cmsbio); | ||
| 440 | |||
| 441 | if (cms_certs) | ||
| 442 | sk_X509_pop_free(cms_certs, X509_free); | ||
| 443 | if (crls) | ||
| 444 | sk_X509_CRL_pop_free(crls, X509_CRL_free); | ||
| 445 | |||
| 446 | return ret; | ||
| 447 | } | ||
| 448 | |||
| 449 | int CMS_verify_receipt(CMS_ContentInfo *rcms, CMS_ContentInfo *ocms, | ||
| 450 | STACK_OF(X509) *certs, | ||
| 451 | X509_STORE *store, unsigned int flags) | ||
| 452 | { | ||
| 453 | int r; | ||
| 454 | r = CMS_verify(rcms, certs, store, NULL, NULL, flags); | ||
| 455 | if (r <= 0) | ||
| 456 | return r; | ||
| 457 | return cms_Receipt_verify(rcms, ocms); | ||
| 458 | } | ||
| 459 | |||
| 460 | CMS_ContentInfo *CMS_sign(X509 *signcert, EVP_PKEY *pkey, STACK_OF(X509) *certs, | ||
| 461 | BIO *data, unsigned int flags) | ||
| 462 | { | ||
| 463 | CMS_ContentInfo *cms; | ||
| 464 | int i; | ||
| 465 | |||
| 466 | cms = CMS_ContentInfo_new(); | ||
| 467 | if (!cms || !CMS_SignedData_init(cms)) | ||
| 468 | goto merr; | ||
| 469 | |||
| 470 | if (pkey && !CMS_add1_signer(cms, signcert, pkey, NULL, flags)) | ||
| 471 | { | ||
| 472 | CMSerr(CMS_F_CMS_SIGN, CMS_R_ADD_SIGNER_ERROR); | ||
| 473 | goto err; | ||
| 474 | } | ||
| 475 | |||
| 476 | for (i = 0; i < sk_X509_num(certs); i++) | ||
| 477 | { | ||
| 478 | X509 *x = sk_X509_value(certs, i); | ||
| 479 | if (!CMS_add1_cert(cms, x)) | ||
| 480 | goto merr; | ||
| 481 | } | ||
| 482 | |||
| 483 | if(!(flags & CMS_DETACHED)) | ||
| 484 | { | ||
| 485 | flags &= ~CMS_STREAM; | ||
| 486 | CMS_set_detached(cms, 0); | ||
| 487 | } | ||
| 488 | |||
| 489 | if ((flags & (CMS_STREAM|CMS_PARTIAL)) | ||
| 490 | || CMS_final(cms, data, NULL, flags)) | ||
| 491 | return cms; | ||
| 492 | else | ||
| 493 | goto err; | ||
| 494 | |||
| 495 | merr: | ||
| 496 | CMSerr(CMS_F_CMS_SIGN, ERR_R_MALLOC_FAILURE); | ||
| 497 | |||
| 498 | err: | ||
| 499 | if (cms) | ||
| 500 | CMS_ContentInfo_free(cms); | ||
| 501 | return NULL; | ||
| 502 | } | ||
| 503 | |||
| 504 | CMS_ContentInfo *CMS_sign_receipt(CMS_SignerInfo *si, | ||
| 505 | X509 *signcert, EVP_PKEY *pkey, | ||
| 506 | STACK_OF(X509) *certs, | ||
| 507 | unsigned int flags) | ||
| 508 | { | ||
| 509 | CMS_SignerInfo *rct_si; | ||
| 510 | CMS_ContentInfo *cms = NULL; | ||
| 511 | ASN1_OCTET_STRING **pos, *os; | ||
| 512 | BIO *rct_cont = NULL; | ||
| 513 | int r = 0; | ||
| 514 | |||
| 515 | flags &= ~CMS_STREAM; | ||
| 516 | /* Not really detached but avoids content being allocated */ | ||
| 517 | flags |= CMS_PARTIAL|CMS_BINARY|CMS_DETACHED; | ||
| 518 | if (!pkey || !signcert) | ||
| 519 | { | ||
| 520 | CMSerr(CMS_F_CMS_SIGN_RECEIPT, CMS_R_NO_KEY_OR_CERT); | ||
| 521 | return NULL; | ||
| 522 | } | ||
| 523 | |||
| 524 | /* Initialize signed data */ | ||
| 525 | |||
| 526 | cms = CMS_sign(NULL, NULL, certs, NULL, flags); | ||
| 527 | if (!cms) | ||
| 528 | goto err; | ||
| 529 | |||
| 530 | /* Set inner content type to signed receipt */ | ||
| 531 | if (!CMS_set1_eContentType(cms, OBJ_nid2obj(NID_id_smime_ct_receipt))) | ||
| 532 | goto err; | ||
| 533 | |||
| 534 | rct_si = CMS_add1_signer(cms, signcert, pkey, NULL, flags); | ||
| 535 | if (!rct_si) | ||
| 536 | { | ||
| 537 | CMSerr(CMS_F_CMS_SIGN_RECEIPT, CMS_R_ADD_SIGNER_ERROR); | ||
| 538 | goto err; | ||
| 539 | } | ||
| 540 | |||
| 541 | os = cms_encode_Receipt(si); | ||
| 542 | |||
| 543 | if (!os) | ||
| 544 | goto err; | ||
| 545 | |||
| 546 | /* Set content to digest */ | ||
| 547 | rct_cont = BIO_new_mem_buf(os->data, os->length); | ||
| 548 | if (!rct_cont) | ||
| 549 | goto err; | ||
| 550 | |||
| 551 | /* Add msgSigDigest attribute */ | ||
| 552 | |||
| 553 | if (!cms_msgSigDigest_add1(rct_si, si)) | ||
| 554 | goto err; | ||
| 555 | |||
| 556 | /* Finalize structure */ | ||
| 557 | if (!CMS_final(cms, rct_cont, NULL, flags)) | ||
| 558 | goto err; | ||
| 559 | |||
| 560 | /* Set embedded content */ | ||
| 561 | pos = CMS_get0_content(cms); | ||
| 562 | *pos = os; | ||
| 563 | |||
| 564 | r = 1; | ||
| 565 | |||
| 566 | err: | ||
| 567 | if (rct_cont) | ||
| 568 | BIO_free(rct_cont); | ||
| 569 | if (r) | ||
| 570 | return cms; | ||
| 571 | CMS_ContentInfo_free(cms); | ||
| 572 | return NULL; | ||
| 573 | |||
| 574 | } | ||
| 575 | |||
| 576 | CMS_ContentInfo *CMS_encrypt(STACK_OF(X509) *certs, BIO *data, | ||
| 577 | const EVP_CIPHER *cipher, unsigned int flags) | ||
| 578 | { | ||
| 579 | CMS_ContentInfo *cms; | ||
| 580 | int i; | ||
| 581 | X509 *recip; | ||
| 582 | cms = CMS_EnvelopedData_create(cipher); | ||
| 583 | if (!cms) | ||
| 584 | goto merr; | ||
| 585 | for (i = 0; i < sk_X509_num(certs); i++) | ||
| 586 | { | ||
| 587 | recip = sk_X509_value(certs, i); | ||
| 588 | if (!CMS_add1_recipient_cert(cms, recip, flags)) | ||
| 589 | { | ||
| 590 | CMSerr(CMS_F_CMS_ENCRYPT, CMS_R_RECIPIENT_ERROR); | ||
| 591 | goto err; | ||
| 592 | } | ||
| 593 | } | ||
| 594 | |||
| 595 | if(!(flags & CMS_DETACHED)) | ||
| 596 | { | ||
| 597 | flags &= ~CMS_STREAM; | ||
| 598 | CMS_set_detached(cms, 0); | ||
| 599 | } | ||
| 600 | |||
| 601 | if ((flags & (CMS_STREAM|CMS_PARTIAL)) | ||
| 602 | || CMS_final(cms, data, NULL, flags)) | ||
| 603 | return cms; | ||
| 604 | else | ||
| 605 | goto err; | ||
| 606 | |||
| 607 | merr: | ||
| 608 | CMSerr(CMS_F_CMS_ENCRYPT, ERR_R_MALLOC_FAILURE); | ||
| 609 | err: | ||
| 610 | if (cms) | ||
| 611 | CMS_ContentInfo_free(cms); | ||
| 612 | return NULL; | ||
| 613 | } | ||
| 614 | |||
| 615 | int CMS_decrypt_set1_pkey(CMS_ContentInfo *cms, EVP_PKEY *pk, X509 *cert) | ||
| 616 | { | ||
| 617 | STACK_OF(CMS_RecipientInfo) *ris; | ||
| 618 | CMS_RecipientInfo *ri; | ||
| 619 | int i, r; | ||
| 620 | ris = CMS_get0_RecipientInfos(cms); | ||
| 621 | for (i = 0; i < sk_CMS_RecipientInfo_num(ris); i++) | ||
| 622 | { | ||
| 623 | ri = sk_CMS_RecipientInfo_value(ris, i); | ||
| 624 | if (CMS_RecipientInfo_type(ri) != CMS_RECIPINFO_TRANS) | ||
| 625 | continue; | ||
| 626 | /* If we have a cert try matching RecipientInfo | ||
| 627 | * otherwise try them all. | ||
| 628 | */ | ||
| 629 | if (!cert || (CMS_RecipientInfo_ktri_cert_cmp(ri, cert) == 0)) | ||
| 630 | { | ||
| 631 | CMS_RecipientInfo_set0_pkey(ri, pk); | ||
| 632 | r = CMS_RecipientInfo_decrypt(cms, ri); | ||
| 633 | CMS_RecipientInfo_set0_pkey(ri, NULL); | ||
| 634 | if (r > 0) | ||
| 635 | return 1; | ||
| 636 | if (cert) | ||
| 637 | { | ||
| 638 | CMSerr(CMS_F_CMS_DECRYPT_SET1_PKEY, | ||
| 639 | CMS_R_DECRYPT_ERROR); | ||
| 640 | return 0; | ||
| 641 | } | ||
| 642 | ERR_clear_error(); | ||
| 643 | } | ||
| 644 | } | ||
| 645 | |||
| 646 | CMSerr(CMS_F_CMS_DECRYPT_SET1_PKEY, CMS_R_NO_MATCHING_RECIPIENT); | ||
| 647 | return 0; | ||
| 648 | |||
| 649 | } | ||
| 650 | |||
| 651 | int CMS_decrypt_set1_key(CMS_ContentInfo *cms, | ||
| 652 | unsigned char *key, size_t keylen, | ||
| 653 | unsigned char *id, size_t idlen) | ||
| 654 | { | ||
| 655 | STACK_OF(CMS_RecipientInfo) *ris; | ||
| 656 | CMS_RecipientInfo *ri; | ||
| 657 | int i, r; | ||
| 658 | ris = CMS_get0_RecipientInfos(cms); | ||
| 659 | for (i = 0; i < sk_CMS_RecipientInfo_num(ris); i++) | ||
| 660 | { | ||
| 661 | ri = sk_CMS_RecipientInfo_value(ris, i); | ||
| 662 | if (CMS_RecipientInfo_type(ri) != CMS_RECIPINFO_KEK) | ||
| 663 | continue; | ||
| 664 | |||
| 665 | /* If we have an id try matching RecipientInfo | ||
| 666 | * otherwise try them all. | ||
| 667 | */ | ||
| 668 | if (!id || (CMS_RecipientInfo_kekri_id_cmp(ri, id, idlen) == 0)) | ||
| 669 | { | ||
| 670 | CMS_RecipientInfo_set0_key(ri, key, keylen); | ||
| 671 | r = CMS_RecipientInfo_decrypt(cms, ri); | ||
| 672 | CMS_RecipientInfo_set0_key(ri, NULL, 0); | ||
| 673 | if (r > 0) | ||
| 674 | return 1; | ||
| 675 | if (id) | ||
| 676 | { | ||
| 677 | CMSerr(CMS_F_CMS_DECRYPT_SET1_KEY, | ||
| 678 | CMS_R_DECRYPT_ERROR); | ||
| 679 | return 0; | ||
| 680 | } | ||
| 681 | ERR_clear_error(); | ||
| 682 | } | ||
| 683 | } | ||
| 684 | |||
| 685 | CMSerr(CMS_F_CMS_DECRYPT_SET1_KEY, CMS_R_NO_MATCHING_RECIPIENT); | ||
| 686 | return 0; | ||
| 687 | |||
| 688 | } | ||
| 689 | |||
| 690 | int CMS_decrypt(CMS_ContentInfo *cms, EVP_PKEY *pk, X509 *cert, | ||
| 691 | BIO *dcont, BIO *out, | ||
| 692 | unsigned int flags) | ||
| 693 | { | ||
| 694 | int r; | ||
| 695 | BIO *cont; | ||
| 696 | if (OBJ_obj2nid(CMS_get0_type(cms)) != NID_pkcs7_enveloped) | ||
| 697 | { | ||
| 698 | CMSerr(CMS_F_CMS_DECRYPT, CMS_R_TYPE_NOT_ENVELOPED_DATA); | ||
| 699 | return 0; | ||
| 700 | } | ||
| 701 | if (!dcont && !check_content(cms)) | ||
| 702 | return 0; | ||
| 703 | if (pk && !CMS_decrypt_set1_pkey(cms, pk, cert)) | ||
| 704 | return 0; | ||
| 705 | |||
| 706 | cont = CMS_dataInit(cms, dcont); | ||
| 707 | if (!cont) | ||
| 708 | return 0; | ||
| 709 | r = cms_copy_content(out, cont, flags); | ||
| 710 | do_free_upto(cont, dcont); | ||
| 711 | return r; | ||
| 712 | } | ||
| 713 | |||
| 714 | int CMS_final(CMS_ContentInfo *cms, BIO *data, BIO *dcont, unsigned int flags) | ||
| 715 | { | ||
| 716 | BIO *cmsbio; | ||
| 717 | int ret = 0; | ||
| 718 | if (!(cmsbio = CMS_dataInit(cms, dcont))) | ||
| 719 | { | ||
| 720 | CMSerr(CMS_F_CMS_FINAL,ERR_R_MALLOC_FAILURE); | ||
| 721 | return 0; | ||
| 722 | } | ||
| 723 | |||
| 724 | SMIME_crlf_copy(data, cmsbio, flags); | ||
| 725 | |||
| 726 | (void)BIO_flush(cmsbio); | ||
| 727 | |||
| 728 | |||
| 729 | if (!CMS_dataFinal(cms, cmsbio)) | ||
| 730 | { | ||
| 731 | CMSerr(CMS_F_CMS_FINAL,CMS_R_CMS_DATAFINAL_ERROR); | ||
| 732 | goto err; | ||
| 733 | } | ||
| 734 | |||
| 735 | ret = 1; | ||
| 736 | |||
| 737 | err: | ||
| 738 | do_free_upto(cmsbio, dcont); | ||
| 739 | |||
| 740 | return ret; | ||
| 741 | |||
| 742 | } | ||
| 743 | |||
| 744 | #ifdef ZLIB | ||
| 745 | |||
| 746 | int CMS_uncompress(CMS_ContentInfo *cms, BIO *dcont, BIO *out, | ||
| 747 | unsigned int flags) | ||
| 748 | { | ||
| 749 | BIO *cont; | ||
| 750 | int r; | ||
| 751 | if (OBJ_obj2nid(CMS_get0_type(cms)) != NID_id_smime_ct_compressedData) | ||
| 752 | { | ||
| 753 | CMSerr(CMS_F_CMS_UNCOMPRESS, | ||
| 754 | CMS_R_TYPE_NOT_COMPRESSED_DATA); | ||
| 755 | return 0; | ||
| 756 | } | ||
| 757 | |||
| 758 | if (!dcont && !check_content(cms)) | ||
| 759 | return 0; | ||
| 760 | |||
| 761 | cont = CMS_dataInit(cms, dcont); | ||
| 762 | if (!cont) | ||
| 763 | return 0; | ||
| 764 | r = cms_copy_content(out, cont, flags); | ||
| 765 | do_free_upto(cont, dcont); | ||
| 766 | return r; | ||
| 767 | } | ||
| 768 | |||
| 769 | CMS_ContentInfo *CMS_compress(BIO *in, int comp_nid, unsigned int flags) | ||
| 770 | { | ||
| 771 | CMS_ContentInfo *cms; | ||
| 772 | if (comp_nid <= 0) | ||
| 773 | comp_nid = NID_zlib_compression; | ||
| 774 | cms = cms_CompressedData_create(comp_nid); | ||
| 775 | if (!cms) | ||
| 776 | return NULL; | ||
| 777 | |||
| 778 | if(!(flags & CMS_DETACHED)) | ||
| 779 | { | ||
| 780 | flags &= ~CMS_STREAM; | ||
| 781 | CMS_set_detached(cms, 0); | ||
| 782 | } | ||
| 783 | |||
| 784 | if (CMS_final(cms, in, NULL, flags)) | ||
| 785 | return cms; | ||
| 786 | |||
| 787 | CMS_ContentInfo_free(cms); | ||
| 788 | return NULL; | ||
| 789 | } | ||
| 790 | |||
| 791 | #else | ||
| 792 | |||
| 793 | int CMS_uncompress(CMS_ContentInfo *cms, BIO *dcont, BIO *out, | ||
| 794 | unsigned int flags) | ||
| 795 | { | ||
| 796 | CMSerr(CMS_F_CMS_UNCOMPRESS, CMS_R_UNSUPPORTED_COMPRESSION_ALGORITHM); | ||
| 797 | return 0; | ||
| 798 | } | ||
| 799 | |||
| 800 | CMS_ContentInfo *CMS_compress(BIO *in, int comp_nid, unsigned int flags) | ||
| 801 | { | ||
| 802 | CMSerr(CMS_F_CMS_COMPRESS, CMS_R_UNSUPPORTED_COMPRESSION_ALGORITHM); | ||
| 803 | return NULL; | ||
| 804 | } | ||
| 805 | |||
| 806 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/des/asm/des_enc.m4 b/src/lib/libssl/src/crypto/des/asm/des_enc.m4 new file mode 100644 index 0000000000..f5b1928f99 --- /dev/null +++ b/src/lib/libssl/src/crypto/des/asm/des_enc.m4 | |||
| @@ -0,0 +1,1980 @@ | |||
| 1 | ! des_enc.m4 | ||
| 2 | ! des_enc.S (generated from des_enc.m4) | ||
| 3 | ! | ||
| 4 | ! UltraSPARC assembler version of the LibDES/SSLeay/OpenSSL des_enc.c file. | ||
| 5 | ! | ||
| 6 | ! Version 1.0. 32-bit version. | ||
| 7 | ! | ||
| 8 | ! June 8, 2000. | ||
| 9 | ! | ||
| 10 | ! Version 2.0. 32/64-bit, PIC-ification, blended CPU adaptation | ||
| 11 | ! by Andy Polyakov. | ||
| 12 | ! | ||
| 13 | ! January 1, 2003. | ||
| 14 | ! | ||
| 15 | ! Assembler version: Copyright Svend Olaf Mikkelsen. | ||
| 16 | ! | ||
| 17 | ! Original C code: Copyright Eric A. Young. | ||
| 18 | ! | ||
| 19 | ! This code can be freely used by LibDES/SSLeay/OpenSSL users. | ||
| 20 | ! | ||
| 21 | ! The LibDES/SSLeay/OpenSSL copyright notices must be respected. | ||
| 22 | ! | ||
| 23 | ! This version can be redistributed. | ||
| 24 | ! | ||
| 25 | ! To expand the m4 macros: m4 -B 8192 des_enc.m4 > des_enc.S | ||
| 26 | ! | ||
| 27 | ! Global registers 1 to 5 are used. This is the same as done by the | ||
| 28 | ! cc compiler. The UltraSPARC load/store little endian feature is used. | ||
| 29 | ! | ||
| 30 | ! Instruction grouping often refers to one CPU cycle. | ||
| 31 | ! | ||
| 32 | ! Assemble through gcc: gcc -c -mcpu=ultrasparc -o des_enc.o des_enc.S | ||
| 33 | ! | ||
| 34 | ! Assemble through cc: cc -c -xarch=v8plusa -o des_enc.o des_enc.S | ||
| 35 | ! | ||
| 36 | ! Performance improvement according to './apps/openssl speed des' | ||
| 37 | ! | ||
| 38 | ! 32-bit build: | ||
| 39 | ! 23% faster than cc-5.2 -xarch=v8plus -xO5 | ||
| 40 | ! 115% faster than gcc-3.2.1 -m32 -mcpu=ultrasparc -O5 | ||
| 41 | ! 64-bit build: | ||
| 42 | ! 50% faster than cc-5.2 -xarch=v9 -xO5 | ||
| 43 | ! 100% faster than gcc-3.2.1 -m64 -mcpu=ultrasparc -O5 | ||
| 44 | ! | ||
| 45 | |||
| 46 | .ident "des_enc.m4 2.1" | ||
| 47 | |||
| 48 | #if defined(__SUNPRO_C) && defined(__sparcv9) | ||
| 49 | # define ABI64 /* They've said -xarch=v9 at command line */ | ||
| 50 | #elif defined(__GNUC__) && defined(__arch64__) | ||
| 51 | # define ABI64 /* They've said -m64 at command line */ | ||
| 52 | #endif | ||
| 53 | |||
| 54 | #ifdef ABI64 | ||
| 55 | .register %g2,#scratch | ||
| 56 | .register %g3,#scratch | ||
| 57 | # define FRAME -192 | ||
| 58 | # define BIAS 2047 | ||
| 59 | # define LDPTR ldx | ||
| 60 | # define STPTR stx | ||
| 61 | # define ARG0 128 | ||
| 62 | # define ARGSZ 8 | ||
| 63 | # ifndef OPENSSL_SYSNAME_ULTRASPARC | ||
| 64 | # define OPENSSL_SYSNAME_ULTRASPARC | ||
| 65 | # endif | ||
| 66 | #else | ||
| 67 | # define FRAME -96 | ||
| 68 | # define BIAS 0 | ||
| 69 | # define LDPTR ld | ||
| 70 | # define STPTR st | ||
| 71 | # define ARG0 68 | ||
| 72 | # define ARGSZ 4 | ||
| 73 | #endif | ||
| 74 | |||
| 75 | #define LOOPS 7 | ||
| 76 | |||
| 77 | #define global0 %g0 | ||
| 78 | #define global1 %g1 | ||
| 79 | #define global2 %g2 | ||
| 80 | #define global3 %g3 | ||
| 81 | #define global4 %g4 | ||
| 82 | #define global5 %g5 | ||
| 83 | |||
| 84 | #define local0 %l0 | ||
| 85 | #define local1 %l1 | ||
| 86 | #define local2 %l2 | ||
| 87 | #define local3 %l3 | ||
| 88 | #define local4 %l4 | ||
| 89 | #define local5 %l5 | ||
| 90 | #define local7 %l6 | ||
| 91 | #define local6 %l7 | ||
| 92 | |||
| 93 | #define in0 %i0 | ||
| 94 | #define in1 %i1 | ||
| 95 | #define in2 %i2 | ||
| 96 | #define in3 %i3 | ||
| 97 | #define in4 %i4 | ||
| 98 | #define in5 %i5 | ||
| 99 | #define in6 %i6 | ||
| 100 | #define in7 %i7 | ||
| 101 | |||
| 102 | #define out0 %o0 | ||
| 103 | #define out1 %o1 | ||
| 104 | #define out2 %o2 | ||
| 105 | #define out3 %o3 | ||
| 106 | #define out4 %o4 | ||
| 107 | #define out5 %o5 | ||
| 108 | #define out6 %o6 | ||
| 109 | #define out7 %o7 | ||
| 110 | |||
| 111 | #define stub stb | ||
| 112 | |||
| 113 | changequote({,}) | ||
| 114 | |||
| 115 | |||
| 116 | ! Macro definitions: | ||
| 117 | |||
| 118 | |||
| 119 | ! {ip_macro} | ||
| 120 | ! | ||
| 121 | ! The logic used in initial and final permutations is the same as in | ||
| 122 | ! the C code. The permutations are done with a clever shift, xor, and | ||
| 123 | ! technique. | ||
| 124 | ! | ||
| 125 | ! The macro also loads address sbox 1 to 5 to global 1 to 5, address | ||
| 126 | ! sbox 6 to local6, and addres sbox 8 to out3. | ||
| 127 | ! | ||
| 128 | ! Rotates the halfs 3 left to bring the sbox bits in convenient positions. | ||
| 129 | ! | ||
| 130 | ! Loads key first round from address in parameter 5 to out0, out1. | ||
| 131 | ! | ||
| 132 | ! After the the original LibDES initial permutation, the resulting left | ||
| 133 | ! is in the variable initially used for right and vice versa. The macro | ||
| 134 | ! implements the possibility to keep the halfs in the original registers. | ||
| 135 | ! | ||
| 136 | ! parameter 1 left | ||
| 137 | ! parameter 2 right | ||
| 138 | ! parameter 3 result left (modify in first round) | ||
| 139 | ! parameter 4 result right (use in first round) | ||
| 140 | ! parameter 5 key address | ||
| 141 | ! parameter 6 1/2 for include encryption/decryption | ||
| 142 | ! parameter 7 1 for move in1 to in3 | ||
| 143 | ! parameter 8 1 for move in3 to in4, 2 for move in4 to in3 | ||
| 144 | ! parameter 9 1 for load ks3 and ks2 to in4 and in3 | ||
| 145 | |||
| 146 | define(ip_macro, { | ||
| 147 | |||
| 148 | ! {ip_macro} | ||
| 149 | ! $1 $2 $4 $3 $5 $6 $7 $8 $9 | ||
| 150 | |||
| 151 | ld [out2+256], local1 | ||
| 152 | srl $2, 4, local4 | ||
| 153 | |||
| 154 | xor local4, $1, local4 | ||
| 155 | ifelse($7,1,{mov in1, in3},{nop}) | ||
| 156 | |||
| 157 | ld [out2+260], local2 | ||
| 158 | and local4, local1, local4 | ||
| 159 | ifelse($8,1,{mov in3, in4},{}) | ||
| 160 | ifelse($8,2,{mov in4, in3},{}) | ||
| 161 | |||
| 162 | ld [out2+280], out4 ! loop counter | ||
| 163 | sll local4, 4, local1 | ||
| 164 | xor $1, local4, $1 | ||
| 165 | |||
| 166 | ld [out2+264], local3 | ||
| 167 | srl $1, 16, local4 | ||
| 168 | xor $2, local1, $2 | ||
| 169 | |||
| 170 | ifelse($9,1,{LDPTR KS3, in4},{}) | ||
| 171 | xor local4, $2, local4 | ||
| 172 | nop !sethi %hi(DES_SPtrans), global1 ! sbox addr | ||
| 173 | |||
| 174 | ifelse($9,1,{LDPTR KS2, in3},{}) | ||
| 175 | and local4, local2, local4 | ||
| 176 | nop !or global1, %lo(DES_SPtrans), global1 ! sbox addr | ||
| 177 | |||
| 178 | sll local4, 16, local1 | ||
| 179 | xor $2, local4, $2 | ||
| 180 | |||
| 181 | srl $2, 2, local4 | ||
| 182 | xor $1, local1, $1 | ||
| 183 | |||
| 184 | sethi %hi(16711680), local5 | ||
| 185 | xor local4, $1, local4 | ||
| 186 | |||
| 187 | and local4, local3, local4 | ||
| 188 | or local5, 255, local5 | ||
| 189 | |||
| 190 | sll local4, 2, local2 | ||
| 191 | xor $1, local4, $1 | ||
| 192 | |||
| 193 | srl $1, 8, local4 | ||
| 194 | xor $2, local2, $2 | ||
| 195 | |||
| 196 | xor local4, $2, local4 | ||
| 197 | add global1, 768, global4 | ||
| 198 | |||
| 199 | and local4, local5, local4 | ||
| 200 | add global1, 1024, global5 | ||
| 201 | |||
| 202 | ld [out2+272], local7 | ||
| 203 | sll local4, 8, local1 | ||
| 204 | xor $2, local4, $2 | ||
| 205 | |||
| 206 | srl $2, 1, local4 | ||
| 207 | xor $1, local1, $1 | ||
| 208 | |||
| 209 | ld [$5], out0 ! key 7531 | ||
| 210 | xor local4, $1, local4 | ||
| 211 | add global1, 256, global2 | ||
| 212 | |||
| 213 | ld [$5+4], out1 ! key 8642 | ||
| 214 | and local4, local7, local4 | ||
| 215 | add global1, 512, global3 | ||
| 216 | |||
| 217 | sll local4, 1, local1 | ||
| 218 | xor $1, local4, $1 | ||
| 219 | |||
| 220 | sll $1, 3, local3 | ||
| 221 | xor $2, local1, $2 | ||
| 222 | |||
| 223 | sll $2, 3, local2 | ||
| 224 | add global1, 1280, local6 ! address sbox 8 | ||
| 225 | |||
| 226 | srl $1, 29, local4 | ||
| 227 | add global1, 1792, out3 ! address sbox 8 | ||
| 228 | |||
| 229 | srl $2, 29, local1 | ||
| 230 | or local4, local3, $4 | ||
| 231 | |||
| 232 | or local2, local1, $3 | ||
| 233 | |||
| 234 | ifelse($6, 1, { | ||
| 235 | |||
| 236 | ld [out2+284], local5 ! 0x0000FC00 used in the rounds | ||
| 237 | or local2, local1, $3 | ||
| 238 | xor $4, out0, local1 | ||
| 239 | |||
| 240 | call .des_enc.1 | ||
| 241 | and local1, 252, local1 | ||
| 242 | |||
| 243 | },{}) | ||
| 244 | |||
| 245 | ifelse($6, 2, { | ||
| 246 | |||
| 247 | ld [out2+284], local5 ! 0x0000FC00 used in the rounds | ||
| 248 | or local2, local1, $3 | ||
| 249 | xor $4, out0, local1 | ||
| 250 | |||
| 251 | call .des_dec.1 | ||
| 252 | and local1, 252, local1 | ||
| 253 | |||
| 254 | },{}) | ||
| 255 | }) | ||
| 256 | |||
| 257 | |||
| 258 | ! {rounds_macro} | ||
| 259 | ! | ||
| 260 | ! The logic used in the DES rounds is the same as in the C code, | ||
| 261 | ! except that calculations for sbox 1 and sbox 5 begin before | ||
| 262 | ! the previous round is finished. | ||
| 263 | ! | ||
| 264 | ! In each round one half (work) is modified based on key and the | ||
| 265 | ! other half (use). | ||
| 266 | ! | ||
| 267 | ! In this version we do two rounds in a loop repeated 7 times | ||
| 268 | ! and two rounds seperately. | ||
| 269 | ! | ||
| 270 | ! One half has the bits for the sboxes in the following positions: | ||
| 271 | ! | ||
| 272 | ! 777777xx555555xx333333xx111111xx | ||
| 273 | ! | ||
| 274 | ! 88xx666666xx444444xx222222xx8888 | ||
| 275 | ! | ||
| 276 | ! The bits for each sbox are xor-ed with the key bits for that box. | ||
| 277 | ! The above xx bits are cleared, and the result used for lookup in | ||
| 278 | ! the sbox table. Each sbox entry contains the 4 output bits permuted | ||
| 279 | ! into 32 bits according to the P permutation. | ||
| 280 | ! | ||
| 281 | ! In the description of DES, left and right are switched after | ||
| 282 | ! each round, except after last round. In this code the original | ||
| 283 | ! left and right are kept in the same register in all rounds, meaning | ||
| 284 | ! that after the 16 rounds the result for right is in the register | ||
| 285 | ! originally used for left. | ||
| 286 | ! | ||
| 287 | ! parameter 1 first work (left in first round) | ||
| 288 | ! parameter 2 first use (right in first round) | ||
| 289 | ! parameter 3 enc/dec 1/-1 | ||
| 290 | ! parameter 4 loop label | ||
| 291 | ! parameter 5 key address register | ||
| 292 | ! parameter 6 optional address for key next encryption/decryption | ||
| 293 | ! parameter 7 not empty for include retl | ||
| 294 | ! | ||
| 295 | ! also compares in2 to 8 | ||
| 296 | |||
| 297 | define(rounds_macro, { | ||
| 298 | |||
| 299 | ! {rounds_macro} | ||
| 300 | ! $1 $2 $3 $4 $5 $6 $7 $8 $9 | ||
| 301 | |||
| 302 | xor $2, out0, local1 | ||
| 303 | |||
| 304 | ld [out2+284], local5 ! 0x0000FC00 | ||
| 305 | ba $4 | ||
| 306 | and local1, 252, local1 | ||
| 307 | |||
| 308 | .align 32 | ||
| 309 | |||
| 310 | $4: | ||
| 311 | ! local6 is address sbox 6 | ||
| 312 | ! out3 is address sbox 8 | ||
| 313 | ! out4 is loop counter | ||
| 314 | |||
| 315 | ld [global1+local1], local1 | ||
| 316 | xor $2, out1, out1 ! 8642 | ||
| 317 | xor $2, out0, out0 ! 7531 | ||
| 318 | fmovs %f0, %f0 ! fxor used for alignment | ||
| 319 | |||
| 320 | srl out1, 4, local0 ! rotate 4 right | ||
| 321 | and out0, local5, local3 ! 3 | ||
| 322 | fmovs %f0, %f0 | ||
| 323 | |||
| 324 | ld [$5+$3*8], local7 ! key 7531 next round | ||
| 325 | srl local3, 8, local3 ! 3 | ||
| 326 | and local0, 252, local2 ! 2 | ||
| 327 | fmovs %f0, %f0 | ||
| 328 | |||
| 329 | ld [global3+local3],local3 ! 3 | ||
| 330 | sll out1, 28, out1 ! rotate | ||
| 331 | xor $1, local1, $1 ! 1 finished, local1 now sbox 7 | ||
| 332 | |||
| 333 | ld [global2+local2], local2 ! 2 | ||
| 334 | srl out0, 24, local1 ! 7 | ||
| 335 | or out1, local0, out1 ! rotate | ||
| 336 | |||
| 337 | ldub [out2+local1], local1 ! 7 (and 0xFC) | ||
| 338 | srl out1, 24, local0 ! 8 | ||
| 339 | and out1, local5, local4 ! 4 | ||
| 340 | |||
| 341 | ldub [out2+local0], local0 ! 8 (and 0xFC) | ||
| 342 | srl local4, 8, local4 ! 4 | ||
| 343 | xor $1, local2, $1 ! 2 finished local2 now sbox 6 | ||
| 344 | |||
| 345 | ld [global4+local4],local4 ! 4 | ||
| 346 | srl out1, 16, local2 ! 6 | ||
| 347 | xor $1, local3, $1 ! 3 finished local3 now sbox 5 | ||
| 348 | |||
| 349 | ld [out3+local0],local0 ! 8 | ||
| 350 | and local2, 252, local2 ! 6 | ||
| 351 | add global1, 1536, local5 ! address sbox 7 | ||
| 352 | |||
| 353 | ld [local6+local2], local2 ! 6 | ||
| 354 | srl out0, 16, local3 ! 5 | ||
| 355 | xor $1, local4, $1 ! 4 finished | ||
| 356 | |||
| 357 | ld [local5+local1],local1 ! 7 | ||
| 358 | and local3, 252, local3 ! 5 | ||
| 359 | xor $1, local0, $1 ! 8 finished | ||
| 360 | |||
| 361 | ld [global5+local3],local3 ! 5 | ||
| 362 | xor $1, local2, $1 ! 6 finished | ||
| 363 | subcc out4, 1, out4 | ||
| 364 | |||
| 365 | ld [$5+$3*8+4], out0 ! key 8642 next round | ||
| 366 | xor $1, local7, local2 ! sbox 5 next round | ||
| 367 | xor $1, local1, $1 ! 7 finished | ||
| 368 | |||
| 369 | srl local2, 16, local2 ! sbox 5 next round | ||
| 370 | xor $1, local3, $1 ! 5 finished | ||
| 371 | |||
| 372 | ld [$5+$3*16+4], out1 ! key 8642 next round again | ||
| 373 | and local2, 252, local2 ! sbox5 next round | ||
| 374 | ! next round | ||
| 375 | xor $1, local7, local7 ! 7531 | ||
| 376 | |||
| 377 | ld [global5+local2], local2 ! 5 | ||
| 378 | srl local7, 24, local3 ! 7 | ||
| 379 | xor $1, out0, out0 ! 8642 | ||
| 380 | |||
| 381 | ldub [out2+local3], local3 ! 7 (and 0xFC) | ||
| 382 | srl out0, 4, local0 ! rotate 4 right | ||
| 383 | and local7, 252, local1 ! 1 | ||
| 384 | |||
| 385 | sll out0, 28, out0 ! rotate | ||
| 386 | xor $2, local2, $2 ! 5 finished local2 used | ||
| 387 | |||
| 388 | srl local0, 8, local4 ! 4 | ||
| 389 | and local0, 252, local2 ! 2 | ||
| 390 | ld [local5+local3], local3 ! 7 | ||
| 391 | |||
| 392 | srl local0, 16, local5 ! 6 | ||
| 393 | or out0, local0, out0 ! rotate | ||
| 394 | ld [global2+local2], local2 ! 2 | ||
| 395 | |||
| 396 | srl out0, 24, local0 | ||
| 397 | ld [$5+$3*16], out0 ! key 7531 next round | ||
| 398 | and local4, 252, local4 ! 4 | ||
| 399 | |||
| 400 | and local5, 252, local5 ! 6 | ||
| 401 | ld [global4+local4], local4 ! 4 | ||
| 402 | xor $2, local3, $2 ! 7 finished local3 used | ||
| 403 | |||
| 404 | and local0, 252, local0 ! 8 | ||
| 405 | ld [local6+local5], local5 ! 6 | ||
| 406 | xor $2, local2, $2 ! 2 finished local2 now sbox 3 | ||
| 407 | |||
| 408 | srl local7, 8, local2 ! 3 start | ||
| 409 | ld [out3+local0], local0 ! 8 | ||
| 410 | xor $2, local4, $2 ! 4 finished | ||
| 411 | |||
| 412 | and local2, 252, local2 ! 3 | ||
| 413 | ld [global1+local1], local1 ! 1 | ||
| 414 | xor $2, local5, $2 ! 6 finished local5 used | ||
| 415 | |||
| 416 | ld [global3+local2], local2 ! 3 | ||
| 417 | xor $2, local0, $2 ! 8 finished | ||
| 418 | add $5, $3*16, $5 ! enc add 8, dec add -8 to key pointer | ||
| 419 | |||
| 420 | ld [out2+284], local5 ! 0x0000FC00 | ||
| 421 | xor $2, out0, local4 ! sbox 1 next round | ||
| 422 | xor $2, local1, $2 ! 1 finished | ||
| 423 | |||
| 424 | xor $2, local2, $2 ! 3 finished | ||
| 425 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 426 | bne,pt %icc, $4 | ||
| 427 | #else | ||
| 428 | bne $4 | ||
| 429 | #endif | ||
| 430 | and local4, 252, local1 ! sbox 1 next round | ||
| 431 | |||
| 432 | ! two rounds more: | ||
| 433 | |||
| 434 | ld [global1+local1], local1 | ||
| 435 | xor $2, out1, out1 | ||
| 436 | xor $2, out0, out0 | ||
| 437 | |||
| 438 | srl out1, 4, local0 ! rotate | ||
| 439 | and out0, local5, local3 | ||
| 440 | |||
| 441 | ld [$5+$3*8], local7 ! key 7531 | ||
| 442 | srl local3, 8, local3 | ||
| 443 | and local0, 252, local2 | ||
| 444 | |||
| 445 | ld [global3+local3],local3 | ||
| 446 | sll out1, 28, out1 ! rotate | ||
| 447 | xor $1, local1, $1 ! 1 finished, local1 now sbox 7 | ||
| 448 | |||
| 449 | ld [global2+local2], local2 | ||
| 450 | srl out0, 24, local1 | ||
| 451 | or out1, local0, out1 ! rotate | ||
| 452 | |||
| 453 | ldub [out2+local1], local1 | ||
| 454 | srl out1, 24, local0 | ||
| 455 | and out1, local5, local4 | ||
| 456 | |||
| 457 | ldub [out2+local0], local0 | ||
| 458 | srl local4, 8, local4 | ||
| 459 | xor $1, local2, $1 ! 2 finished local2 now sbox 6 | ||
| 460 | |||
| 461 | ld [global4+local4],local4 | ||
| 462 | srl out1, 16, local2 | ||
| 463 | xor $1, local3, $1 ! 3 finished local3 now sbox 5 | ||
| 464 | |||
| 465 | ld [out3+local0],local0 | ||
| 466 | and local2, 252, local2 | ||
| 467 | add global1, 1536, local5 ! address sbox 7 | ||
| 468 | |||
| 469 | ld [local6+local2], local2 | ||
| 470 | srl out0, 16, local3 | ||
| 471 | xor $1, local4, $1 ! 4 finished | ||
| 472 | |||
| 473 | ld [local5+local1],local1 | ||
| 474 | and local3, 252, local3 | ||
| 475 | xor $1, local0, $1 | ||
| 476 | |||
| 477 | ld [global5+local3],local3 | ||
| 478 | xor $1, local2, $1 ! 6 finished | ||
| 479 | cmp in2, 8 | ||
| 480 | |||
| 481 | ifelse($6,{}, {}, {ld [out2+280], out4}) ! loop counter | ||
| 482 | xor $1, local7, local2 ! sbox 5 next round | ||
| 483 | xor $1, local1, $1 ! 7 finished | ||
| 484 | |||
| 485 | ld [$5+$3*8+4], out0 | ||
| 486 | srl local2, 16, local2 ! sbox 5 next round | ||
| 487 | xor $1, local3, $1 ! 5 finished | ||
| 488 | |||
| 489 | and local2, 252, local2 | ||
| 490 | ! next round (two rounds more) | ||
| 491 | xor $1, local7, local7 ! 7531 | ||
| 492 | |||
| 493 | ld [global5+local2], local2 | ||
| 494 | srl local7, 24, local3 | ||
| 495 | xor $1, out0, out0 ! 8642 | ||
| 496 | |||
| 497 | ldub [out2+local3], local3 | ||
| 498 | srl out0, 4, local0 ! rotate | ||
| 499 | and local7, 252, local1 | ||
| 500 | |||
| 501 | sll out0, 28, out0 ! rotate | ||
| 502 | xor $2, local2, $2 ! 5 finished local2 used | ||
| 503 | |||
| 504 | srl local0, 8, local4 | ||
| 505 | and local0, 252, local2 | ||
| 506 | ld [local5+local3], local3 | ||
| 507 | |||
| 508 | srl local0, 16, local5 | ||
| 509 | or out0, local0, out0 ! rotate | ||
| 510 | ld [global2+local2], local2 | ||
| 511 | |||
| 512 | srl out0, 24, local0 | ||
| 513 | ifelse($6,{}, {}, {ld [$6], out0}) ! key next encryption/decryption | ||
| 514 | and local4, 252, local4 | ||
| 515 | |||
| 516 | and local5, 252, local5 | ||
| 517 | ld [global4+local4], local4 | ||
| 518 | xor $2, local3, $2 ! 7 finished local3 used | ||
| 519 | |||
| 520 | and local0, 252, local0 | ||
| 521 | ld [local6+local5], local5 | ||
| 522 | xor $2, local2, $2 ! 2 finished local2 now sbox 3 | ||
| 523 | |||
| 524 | srl local7, 8, local2 ! 3 start | ||
| 525 | ld [out3+local0], local0 | ||
| 526 | xor $2, local4, $2 | ||
| 527 | |||
| 528 | and local2, 252, local2 | ||
| 529 | ld [global1+local1], local1 | ||
| 530 | xor $2, local5, $2 ! 6 finished local5 used | ||
| 531 | |||
| 532 | ld [global3+local2], local2 | ||
| 533 | srl $1, 3, local3 | ||
| 534 | xor $2, local0, $2 | ||
| 535 | |||
| 536 | ifelse($6,{}, {}, {ld [$6+4], out1}) ! key next encryption/decryption | ||
| 537 | sll $1, 29, local4 | ||
| 538 | xor $2, local1, $2 | ||
| 539 | |||
| 540 | ifelse($7,{}, {}, {retl}) | ||
| 541 | xor $2, local2, $2 | ||
| 542 | }) | ||
| 543 | |||
| 544 | |||
| 545 | ! {fp_macro} | ||
| 546 | ! | ||
| 547 | ! parameter 1 right (original left) | ||
| 548 | ! parameter 2 left (original right) | ||
| 549 | ! parameter 3 1 for optional store to [in0] | ||
| 550 | ! parameter 4 1 for load input/output address to local5/7 | ||
| 551 | ! | ||
| 552 | ! The final permutation logic switches the halfes, meaning that | ||
| 553 | ! left and right ends up the the registers originally used. | ||
| 554 | |||
| 555 | define(fp_macro, { | ||
| 556 | |||
| 557 | ! {fp_macro} | ||
| 558 | ! $1 $2 $3 $4 $5 $6 $7 $8 $9 | ||
| 559 | |||
| 560 | ! initially undo the rotate 3 left done after initial permutation | ||
| 561 | ! original left is received shifted 3 right and 29 left in local3/4 | ||
| 562 | |||
| 563 | sll $2, 29, local1 | ||
| 564 | or local3, local4, $1 | ||
| 565 | |||
| 566 | srl $2, 3, $2 | ||
| 567 | sethi %hi(0x55555555), local2 | ||
| 568 | |||
| 569 | or $2, local1, $2 | ||
| 570 | or local2, %lo(0x55555555), local2 | ||
| 571 | |||
| 572 | srl $2, 1, local3 | ||
| 573 | sethi %hi(0x00ff00ff), local1 | ||
| 574 | xor local3, $1, local3 | ||
| 575 | or local1, %lo(0x00ff00ff), local1 | ||
| 576 | and local3, local2, local3 | ||
| 577 | sethi %hi(0x33333333), local4 | ||
| 578 | sll local3, 1, local2 | ||
| 579 | |||
| 580 | xor $1, local3, $1 | ||
| 581 | |||
| 582 | srl $1, 8, local3 | ||
| 583 | xor $2, local2, $2 | ||
| 584 | xor local3, $2, local3 | ||
| 585 | or local4, %lo(0x33333333), local4 | ||
| 586 | and local3, local1, local3 | ||
| 587 | sethi %hi(0x0000ffff), local1 | ||
| 588 | sll local3, 8, local2 | ||
| 589 | |||
| 590 | xor $2, local3, $2 | ||
| 591 | |||
| 592 | srl $2, 2, local3 | ||
| 593 | xor $1, local2, $1 | ||
| 594 | xor local3, $1, local3 | ||
| 595 | or local1, %lo(0x0000ffff), local1 | ||
| 596 | and local3, local4, local3 | ||
| 597 | sethi %hi(0x0f0f0f0f), local4 | ||
| 598 | sll local3, 2, local2 | ||
| 599 | |||
| 600 | ifelse($4,1, {LDPTR INPUT, local5}) | ||
| 601 | xor $1, local3, $1 | ||
| 602 | |||
| 603 | ifelse($4,1, {LDPTR OUTPUT, local7}) | ||
| 604 | srl $1, 16, local3 | ||
| 605 | xor $2, local2, $2 | ||
| 606 | xor local3, $2, local3 | ||
| 607 | or local4, %lo(0x0f0f0f0f), local4 | ||
| 608 | and local3, local1, local3 | ||
| 609 | sll local3, 16, local2 | ||
| 610 | |||
| 611 | xor $2, local3, local1 | ||
| 612 | |||
| 613 | srl local1, 4, local3 | ||
| 614 | xor $1, local2, $1 | ||
| 615 | xor local3, $1, local3 | ||
| 616 | and local3, local4, local3 | ||
| 617 | sll local3, 4, local2 | ||
| 618 | |||
| 619 | xor $1, local3, $1 | ||
| 620 | |||
| 621 | ! optional store: | ||
| 622 | |||
| 623 | ifelse($3,1, {st $1, [in0]}) | ||
| 624 | |||
| 625 | xor local1, local2, $2 | ||
| 626 | |||
| 627 | ifelse($3,1, {st $2, [in0+4]}) | ||
| 628 | |||
| 629 | }) | ||
| 630 | |||
| 631 | |||
| 632 | ! {fp_ip_macro} | ||
| 633 | ! | ||
| 634 | ! Does initial permutation for next block mixed with | ||
| 635 | ! final permutation for current block. | ||
| 636 | ! | ||
| 637 | ! parameter 1 original left | ||
| 638 | ! parameter 2 original right | ||
| 639 | ! parameter 3 left ip | ||
| 640 | ! parameter 4 right ip | ||
| 641 | ! parameter 5 1: load ks1/ks2 to in3/in4, add 120 to in4 | ||
| 642 | ! 2: mov in4 to in3 | ||
| 643 | ! | ||
| 644 | ! also adds -8 to length in2 and loads loop counter to out4 | ||
| 645 | |||
| 646 | define(fp_ip_macro, { | ||
| 647 | |||
| 648 | ! {fp_ip_macro} | ||
| 649 | ! $1 $2 $3 $4 $5 $6 $7 $8 $9 | ||
| 650 | |||
| 651 | define({temp1},{out4}) | ||
| 652 | define({temp2},{local3}) | ||
| 653 | |||
| 654 | define({ip1},{local1}) | ||
| 655 | define({ip2},{local2}) | ||
| 656 | define({ip4},{local4}) | ||
| 657 | define({ip5},{local5}) | ||
| 658 | |||
| 659 | ! $1 in local3, local4 | ||
| 660 | |||
| 661 | ld [out2+256], ip1 | ||
| 662 | sll out5, 29, temp1 | ||
| 663 | or local3, local4, $1 | ||
| 664 | |||
| 665 | srl out5, 3, $2 | ||
| 666 | ifelse($5,2,{mov in4, in3}) | ||
| 667 | |||
| 668 | ld [out2+272], ip5 | ||
| 669 | srl $4, 4, local0 | ||
| 670 | or $2, temp1, $2 | ||
| 671 | |||
| 672 | srl $2, 1, temp1 | ||
| 673 | xor temp1, $1, temp1 | ||
| 674 | |||
| 675 | and temp1, ip5, temp1 | ||
| 676 | xor local0, $3, local0 | ||
| 677 | |||
| 678 | sll temp1, 1, temp2 | ||
| 679 | xor $1, temp1, $1 | ||
| 680 | |||
| 681 | and local0, ip1, local0 | ||
| 682 | add in2, -8, in2 | ||
| 683 | |||
| 684 | sll local0, 4, local7 | ||
| 685 | xor $3, local0, $3 | ||
| 686 | |||
| 687 | ld [out2+268], ip4 | ||
| 688 | srl $1, 8, temp1 | ||
| 689 | xor $2, temp2, $2 | ||
| 690 | ld [out2+260], ip2 | ||
| 691 | srl $3, 16, local0 | ||
| 692 | xor $4, local7, $4 | ||
| 693 | xor temp1, $2, temp1 | ||
| 694 | xor local0, $4, local0 | ||
| 695 | and temp1, ip4, temp1 | ||
| 696 | and local0, ip2, local0 | ||
| 697 | sll temp1, 8, temp2 | ||
| 698 | xor $2, temp1, $2 | ||
| 699 | sll local0, 16, local7 | ||
| 700 | xor $4, local0, $4 | ||
| 701 | |||
| 702 | srl $2, 2, temp1 | ||
| 703 | xor $1, temp2, $1 | ||
| 704 | |||
| 705 | ld [out2+264], temp2 ! ip3 | ||
| 706 | srl $4, 2, local0 | ||
| 707 | xor $3, local7, $3 | ||
| 708 | xor temp1, $1, temp1 | ||
| 709 | xor local0, $3, local0 | ||
| 710 | and temp1, temp2, temp1 | ||
| 711 | and local0, temp2, local0 | ||
| 712 | sll temp1, 2, temp2 | ||
| 713 | xor $1, temp1, $1 | ||
| 714 | sll local0, 2, local7 | ||
| 715 | xor $3, local0, $3 | ||
| 716 | |||
| 717 | srl $1, 16, temp1 | ||
| 718 | xor $2, temp2, $2 | ||
| 719 | srl $3, 8, local0 | ||
| 720 | xor $4, local7, $4 | ||
| 721 | xor temp1, $2, temp1 | ||
| 722 | xor local0, $4, local0 | ||
| 723 | and temp1, ip2, temp1 | ||
| 724 | and local0, ip4, local0 | ||
| 725 | sll temp1, 16, temp2 | ||
| 726 | xor $2, temp1, local4 | ||
| 727 | sll local0, 8, local7 | ||
| 728 | xor $4, local0, $4 | ||
| 729 | |||
| 730 | srl $4, 1, local0 | ||
| 731 | xor $3, local7, $3 | ||
| 732 | |||
| 733 | srl local4, 4, temp1 | ||
| 734 | xor local0, $3, local0 | ||
| 735 | |||
| 736 | xor $1, temp2, $1 | ||
| 737 | and local0, ip5, local0 | ||
| 738 | |||
| 739 | sll local0, 1, local7 | ||
| 740 | xor temp1, $1, temp1 | ||
| 741 | |||
| 742 | xor $3, local0, $3 | ||
| 743 | xor $4, local7, $4 | ||
| 744 | |||
| 745 | sll $3, 3, local5 | ||
| 746 | and temp1, ip1, temp1 | ||
| 747 | |||
| 748 | sll temp1, 4, temp2 | ||
| 749 | xor $1, temp1, $1 | ||
| 750 | |||
| 751 | ifelse($5,1,{LDPTR KS2, in4}) | ||
| 752 | sll $4, 3, local2 | ||
| 753 | xor local4, temp2, $2 | ||
| 754 | |||
| 755 | ! reload since used as temporar: | ||
| 756 | |||
| 757 | ld [out2+280], out4 ! loop counter | ||
| 758 | |||
| 759 | srl $3, 29, local0 | ||
| 760 | ifelse($5,1,{add in4, 120, in4}) | ||
| 761 | |||
| 762 | ifelse($5,1,{LDPTR KS1, in3}) | ||
| 763 | srl $4, 29, local7 | ||
| 764 | |||
| 765 | or local0, local5, $4 | ||
| 766 | or local2, local7, $3 | ||
| 767 | |||
| 768 | }) | ||
| 769 | |||
| 770 | |||
| 771 | |||
| 772 | ! {load_little_endian} | ||
| 773 | ! | ||
| 774 | ! parameter 1 address | ||
| 775 | ! parameter 2 destination left | ||
| 776 | ! parameter 3 destination right | ||
| 777 | ! parameter 4 temporar | ||
| 778 | ! parameter 5 label | ||
| 779 | |||
| 780 | define(load_little_endian, { | ||
| 781 | |||
| 782 | ! {load_little_endian} | ||
| 783 | ! $1 $2 $3 $4 $5 $6 $7 $8 $9 | ||
| 784 | |||
| 785 | ! first in memory to rightmost in register | ||
| 786 | |||
| 787 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 788 | andcc $1, 3, global0 | ||
| 789 | bne,pn %icc, $5 | ||
| 790 | nop | ||
| 791 | |||
| 792 | lda [$1] 0x88, $2 | ||
| 793 | add $1, 4, $4 | ||
| 794 | |||
| 795 | ba,pt %icc, $5a | ||
| 796 | lda [$4] 0x88, $3 | ||
| 797 | #endif | ||
| 798 | |||
| 799 | $5: | ||
| 800 | ldub [$1+3], $2 | ||
| 801 | |||
| 802 | ldub [$1+2], $4 | ||
| 803 | sll $2, 8, $2 | ||
| 804 | or $2, $4, $2 | ||
| 805 | |||
| 806 | ldub [$1+1], $4 | ||
| 807 | sll $2, 8, $2 | ||
| 808 | or $2, $4, $2 | ||
| 809 | |||
| 810 | ldub [$1+0], $4 | ||
| 811 | sll $2, 8, $2 | ||
| 812 | or $2, $4, $2 | ||
| 813 | |||
| 814 | |||
| 815 | ldub [$1+3+4], $3 | ||
| 816 | |||
| 817 | ldub [$1+2+4], $4 | ||
| 818 | sll $3, 8, $3 | ||
| 819 | or $3, $4, $3 | ||
| 820 | |||
| 821 | ldub [$1+1+4], $4 | ||
| 822 | sll $3, 8, $3 | ||
| 823 | or $3, $4, $3 | ||
| 824 | |||
| 825 | ldub [$1+0+4], $4 | ||
| 826 | sll $3, 8, $3 | ||
| 827 | or $3, $4, $3 | ||
| 828 | $5a: | ||
| 829 | |||
| 830 | }) | ||
| 831 | |||
| 832 | |||
| 833 | ! {load_little_endian_inc} | ||
| 834 | ! | ||
| 835 | ! parameter 1 address | ||
| 836 | ! parameter 2 destination left | ||
| 837 | ! parameter 3 destination right | ||
| 838 | ! parameter 4 temporar | ||
| 839 | ! parameter 4 label | ||
| 840 | ! | ||
| 841 | ! adds 8 to address | ||
| 842 | |||
| 843 | define(load_little_endian_inc, { | ||
| 844 | |||
| 845 | ! {load_little_endian_inc} | ||
| 846 | ! $1 $2 $3 $4 $5 $6 $7 $8 $9 | ||
| 847 | |||
| 848 | ! first in memory to rightmost in register | ||
| 849 | |||
| 850 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 851 | andcc $1, 3, global0 | ||
| 852 | bne,pn %icc, $5 | ||
| 853 | nop | ||
| 854 | |||
| 855 | lda [$1] 0x88, $2 | ||
| 856 | add $1, 4, $1 | ||
| 857 | |||
| 858 | lda [$1] 0x88, $3 | ||
| 859 | ba,pt %icc, $5a | ||
| 860 | add $1, 4, $1 | ||
| 861 | #endif | ||
| 862 | |||
| 863 | $5: | ||
| 864 | ldub [$1+3], $2 | ||
| 865 | |||
| 866 | ldub [$1+2], $4 | ||
| 867 | sll $2, 8, $2 | ||
| 868 | or $2, $4, $2 | ||
| 869 | |||
| 870 | ldub [$1+1], $4 | ||
| 871 | sll $2, 8, $2 | ||
| 872 | or $2, $4, $2 | ||
| 873 | |||
| 874 | ldub [$1+0], $4 | ||
| 875 | sll $2, 8, $2 | ||
| 876 | or $2, $4, $2 | ||
| 877 | |||
| 878 | ldub [$1+3+4], $3 | ||
| 879 | add $1, 8, $1 | ||
| 880 | |||
| 881 | ldub [$1+2+4-8], $4 | ||
| 882 | sll $3, 8, $3 | ||
| 883 | or $3, $4, $3 | ||
| 884 | |||
| 885 | ldub [$1+1+4-8], $4 | ||
| 886 | sll $3, 8, $3 | ||
| 887 | or $3, $4, $3 | ||
| 888 | |||
| 889 | ldub [$1+0+4-8], $4 | ||
| 890 | sll $3, 8, $3 | ||
| 891 | or $3, $4, $3 | ||
| 892 | $5a: | ||
| 893 | |||
| 894 | }) | ||
| 895 | |||
| 896 | |||
| 897 | ! {load_n_bytes} | ||
| 898 | ! | ||
| 899 | ! Loads 1 to 7 bytes little endian | ||
| 900 | ! Remaining bytes are zeroed. | ||
| 901 | ! | ||
| 902 | ! parameter 1 address | ||
| 903 | ! parameter 2 length | ||
| 904 | ! parameter 3 destination register left | ||
| 905 | ! parameter 4 destination register right | ||
| 906 | ! parameter 5 temp | ||
| 907 | ! parameter 6 temp2 | ||
| 908 | ! parameter 7 label | ||
| 909 | ! parameter 8 return label | ||
| 910 | |||
| 911 | define(load_n_bytes, { | ||
| 912 | |||
| 913 | ! {load_n_bytes} | ||
| 914 | ! $1 $2 $5 $6 $7 $8 $7 $8 $9 | ||
| 915 | |||
| 916 | $7.0: call .+8 | ||
| 917 | sll $2, 2, $6 | ||
| 918 | |||
| 919 | add %o7,$7.jmp.table-$7.0,$5 | ||
| 920 | |||
| 921 | add $5, $6, $5 | ||
| 922 | mov 0, $4 | ||
| 923 | |||
| 924 | ld [$5], $5 | ||
| 925 | |||
| 926 | jmp %o7+$5 | ||
| 927 | mov 0, $3 | ||
| 928 | |||
| 929 | $7.7: | ||
| 930 | ldub [$1+6], $5 | ||
| 931 | sll $5, 16, $5 | ||
| 932 | or $3, $5, $3 | ||
| 933 | $7.6: | ||
| 934 | ldub [$1+5], $5 | ||
| 935 | sll $5, 8, $5 | ||
| 936 | or $3, $5, $3 | ||
| 937 | $7.5: | ||
| 938 | ldub [$1+4], $5 | ||
| 939 | or $3, $5, $3 | ||
| 940 | $7.4: | ||
| 941 | ldub [$1+3], $5 | ||
| 942 | sll $5, 24, $5 | ||
| 943 | or $4, $5, $4 | ||
| 944 | $7.3: | ||
| 945 | ldub [$1+2], $5 | ||
| 946 | sll $5, 16, $5 | ||
| 947 | or $4, $5, $4 | ||
| 948 | $7.2: | ||
| 949 | ldub [$1+1], $5 | ||
| 950 | sll $5, 8, $5 | ||
| 951 | or $4, $5, $4 | ||
| 952 | $7.1: | ||
| 953 | ldub [$1+0], $5 | ||
| 954 | ba $8 | ||
| 955 | or $4, $5, $4 | ||
| 956 | |||
| 957 | .align 4 | ||
| 958 | |||
| 959 | $7.jmp.table: | ||
| 960 | .word 0 | ||
| 961 | .word $7.1-$7.0 | ||
| 962 | .word $7.2-$7.0 | ||
| 963 | .word $7.3-$7.0 | ||
| 964 | .word $7.4-$7.0 | ||
| 965 | .word $7.5-$7.0 | ||
| 966 | .word $7.6-$7.0 | ||
| 967 | .word $7.7-$7.0 | ||
| 968 | }) | ||
| 969 | |||
| 970 | |||
| 971 | ! {store_little_endian} | ||
| 972 | ! | ||
| 973 | ! parameter 1 address | ||
| 974 | ! parameter 2 source left | ||
| 975 | ! parameter 3 source right | ||
| 976 | ! parameter 4 temporar | ||
| 977 | |||
| 978 | define(store_little_endian, { | ||
| 979 | |||
| 980 | ! {store_little_endian} | ||
| 981 | ! $1 $2 $3 $4 $5 $6 $7 $8 $9 | ||
| 982 | |||
| 983 | ! rightmost in register to first in memory | ||
| 984 | |||
| 985 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 986 | andcc $1, 3, global0 | ||
| 987 | bne,pn %icc, $5 | ||
| 988 | nop | ||
| 989 | |||
| 990 | sta $2, [$1] 0x88 | ||
| 991 | add $1, 4, $4 | ||
| 992 | |||
| 993 | ba,pt %icc, $5a | ||
| 994 | sta $3, [$4] 0x88 | ||
| 995 | #endif | ||
| 996 | |||
| 997 | $5: | ||
| 998 | and $2, 255, $4 | ||
| 999 | stub $4, [$1+0] | ||
| 1000 | |||
| 1001 | srl $2, 8, $4 | ||
| 1002 | and $4, 255, $4 | ||
| 1003 | stub $4, [$1+1] | ||
| 1004 | |||
| 1005 | srl $2, 16, $4 | ||
| 1006 | and $4, 255, $4 | ||
| 1007 | stub $4, [$1+2] | ||
| 1008 | |||
| 1009 | srl $2, 24, $4 | ||
| 1010 | stub $4, [$1+3] | ||
| 1011 | |||
| 1012 | |||
| 1013 | and $3, 255, $4 | ||
| 1014 | stub $4, [$1+0+4] | ||
| 1015 | |||
| 1016 | srl $3, 8, $4 | ||
| 1017 | and $4, 255, $4 | ||
| 1018 | stub $4, [$1+1+4] | ||
| 1019 | |||
| 1020 | srl $3, 16, $4 | ||
| 1021 | and $4, 255, $4 | ||
| 1022 | stub $4, [$1+2+4] | ||
| 1023 | |||
| 1024 | srl $3, 24, $4 | ||
| 1025 | stub $4, [$1+3+4] | ||
| 1026 | |||
| 1027 | $5a: | ||
| 1028 | |||
| 1029 | }) | ||
| 1030 | |||
| 1031 | |||
| 1032 | ! {store_n_bytes} | ||
| 1033 | ! | ||
| 1034 | ! Stores 1 to 7 bytes little endian | ||
| 1035 | ! | ||
| 1036 | ! parameter 1 address | ||
| 1037 | ! parameter 2 length | ||
| 1038 | ! parameter 3 source register left | ||
| 1039 | ! parameter 4 source register right | ||
| 1040 | ! parameter 5 temp | ||
| 1041 | ! parameter 6 temp2 | ||
| 1042 | ! parameter 7 label | ||
| 1043 | ! parameter 8 return label | ||
| 1044 | |||
| 1045 | define(store_n_bytes, { | ||
| 1046 | |||
| 1047 | ! {store_n_bytes} | ||
| 1048 | ! $1 $2 $5 $6 $7 $8 $7 $8 $9 | ||
| 1049 | |||
| 1050 | $7.0: call .+8 | ||
| 1051 | sll $2, 2, $6 | ||
| 1052 | |||
| 1053 | add %o7,$7.jmp.table-$7.0,$5 | ||
| 1054 | |||
| 1055 | add $5, $6, $5 | ||
| 1056 | |||
| 1057 | ld [$5], $5 | ||
| 1058 | |||
| 1059 | jmp %o7+$5 | ||
| 1060 | nop | ||
| 1061 | |||
| 1062 | $7.7: | ||
| 1063 | srl $3, 16, $5 | ||
| 1064 | and $5, 0xff, $5 | ||
| 1065 | stub $5, [$1+6] | ||
| 1066 | $7.6: | ||
| 1067 | srl $3, 8, $5 | ||
| 1068 | and $5, 0xff, $5 | ||
| 1069 | stub $5, [$1+5] | ||
| 1070 | $7.5: | ||
| 1071 | and $3, 0xff, $5 | ||
| 1072 | stub $5, [$1+4] | ||
| 1073 | $7.4: | ||
| 1074 | srl $4, 24, $5 | ||
| 1075 | stub $5, [$1+3] | ||
| 1076 | $7.3: | ||
| 1077 | srl $4, 16, $5 | ||
| 1078 | and $5, 0xff, $5 | ||
| 1079 | stub $5, [$1+2] | ||
| 1080 | $7.2: | ||
| 1081 | srl $4, 8, $5 | ||
| 1082 | and $5, 0xff, $5 | ||
| 1083 | stub $5, [$1+1] | ||
| 1084 | $7.1: | ||
| 1085 | and $4, 0xff, $5 | ||
| 1086 | |||
| 1087 | |||
| 1088 | ba $8 | ||
| 1089 | stub $5, [$1] | ||
| 1090 | |||
| 1091 | .align 4 | ||
| 1092 | |||
| 1093 | $7.jmp.table: | ||
| 1094 | |||
| 1095 | .word 0 | ||
| 1096 | .word $7.1-$7.0 | ||
| 1097 | .word $7.2-$7.0 | ||
| 1098 | .word $7.3-$7.0 | ||
| 1099 | .word $7.4-$7.0 | ||
| 1100 | .word $7.5-$7.0 | ||
| 1101 | .word $7.6-$7.0 | ||
| 1102 | .word $7.7-$7.0 | ||
| 1103 | }) | ||
| 1104 | |||
| 1105 | |||
| 1106 | define(testvalue,{1}) | ||
| 1107 | |||
| 1108 | define(register_init, { | ||
| 1109 | |||
| 1110 | ! For test purposes: | ||
| 1111 | |||
| 1112 | sethi %hi(testvalue), local0 | ||
| 1113 | or local0, %lo(testvalue), local0 | ||
| 1114 | |||
| 1115 | ifelse($1,{},{}, {mov local0, $1}) | ||
| 1116 | ifelse($2,{},{}, {mov local0, $2}) | ||
| 1117 | ifelse($3,{},{}, {mov local0, $3}) | ||
| 1118 | ifelse($4,{},{}, {mov local0, $4}) | ||
| 1119 | ifelse($5,{},{}, {mov local0, $5}) | ||
| 1120 | ifelse($6,{},{}, {mov local0, $6}) | ||
| 1121 | ifelse($7,{},{}, {mov local0, $7}) | ||
| 1122 | ifelse($8,{},{}, {mov local0, $8}) | ||
| 1123 | |||
| 1124 | mov local0, local1 | ||
| 1125 | mov local0, local2 | ||
| 1126 | mov local0, local3 | ||
| 1127 | mov local0, local4 | ||
| 1128 | mov local0, local5 | ||
| 1129 | mov local0, local7 | ||
| 1130 | mov local0, local6 | ||
| 1131 | mov local0, out0 | ||
| 1132 | mov local0, out1 | ||
| 1133 | mov local0, out2 | ||
| 1134 | mov local0, out3 | ||
| 1135 | mov local0, out4 | ||
| 1136 | mov local0, out5 | ||
| 1137 | mov local0, global1 | ||
| 1138 | mov local0, global2 | ||
| 1139 | mov local0, global3 | ||
| 1140 | mov local0, global4 | ||
| 1141 | mov local0, global5 | ||
| 1142 | |||
| 1143 | }) | ||
| 1144 | |||
| 1145 | .section ".text" | ||
| 1146 | |||
| 1147 | .align 32 | ||
| 1148 | |||
| 1149 | .des_enc: | ||
| 1150 | |||
| 1151 | ! key address in3 | ||
| 1152 | ! loads key next encryption/decryption first round from [in4] | ||
| 1153 | |||
| 1154 | rounds_macro(in5, out5, 1, .des_enc.1, in3, in4, retl) | ||
| 1155 | |||
| 1156 | |||
| 1157 | .align 32 | ||
| 1158 | |||
| 1159 | .des_dec: | ||
| 1160 | |||
| 1161 | ! implemented with out5 as first parameter to avoid | ||
| 1162 | ! register exchange in ede modes | ||
| 1163 | |||
| 1164 | ! key address in4 | ||
| 1165 | ! loads key next encryption/decryption first round from [in3] | ||
| 1166 | |||
| 1167 | rounds_macro(out5, in5, -1, .des_dec.1, in4, in3, retl) | ||
| 1168 | |||
| 1169 | |||
| 1170 | |||
| 1171 | ! void DES_encrypt1(data, ks, enc) | ||
| 1172 | ! ******************************* | ||
| 1173 | |||
| 1174 | .align 32 | ||
| 1175 | .global DES_encrypt1 | ||
| 1176 | .type DES_encrypt1,#function | ||
| 1177 | |||
| 1178 | DES_encrypt1: | ||
| 1179 | |||
| 1180 | save %sp, FRAME, %sp | ||
| 1181 | |||
| 1182 | call .PIC.me.up | ||
| 1183 | mov .PIC.me.up-(.-4),out0 | ||
| 1184 | |||
| 1185 | ld [in0], in5 ! left | ||
| 1186 | cmp in2, 0 ! enc | ||
| 1187 | |||
| 1188 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1189 | be,pn %icc, .encrypt.dec ! enc/dec | ||
| 1190 | #else | ||
| 1191 | be .encrypt.dec | ||
| 1192 | #endif | ||
| 1193 | ld [in0+4], out5 ! right | ||
| 1194 | |||
| 1195 | ! parameter 6 1/2 for include encryption/decryption | ||
| 1196 | ! parameter 7 1 for move in1 to in3 | ||
| 1197 | ! parameter 8 1 for move in3 to in4, 2 for move in4 to in3 | ||
| 1198 | |||
| 1199 | ip_macro(in5, out5, in5, out5, in3, 0, 1, 1) | ||
| 1200 | |||
| 1201 | rounds_macro(in5, out5, 1, .des_encrypt1.1, in3, in4) ! in4 not used | ||
| 1202 | |||
| 1203 | fp_macro(in5, out5, 1) ! 1 for store to [in0] | ||
| 1204 | |||
| 1205 | ret | ||
| 1206 | restore | ||
| 1207 | |||
| 1208 | .encrypt.dec: | ||
| 1209 | |||
| 1210 | add in1, 120, in3 ! use last subkey for first round | ||
| 1211 | |||
| 1212 | ! parameter 6 1/2 for include encryption/decryption | ||
| 1213 | ! parameter 7 1 for move in1 to in3 | ||
| 1214 | ! parameter 8 1 for move in3 to in4, 2 for move in4 to in3 | ||
| 1215 | |||
| 1216 | ip_macro(in5, out5, out5, in5, in4, 2, 0, 1) ! include dec, ks in4 | ||
| 1217 | |||
| 1218 | fp_macro(out5, in5, 1) ! 1 for store to [in0] | ||
| 1219 | |||
| 1220 | ret | ||
| 1221 | restore | ||
| 1222 | |||
| 1223 | .DES_encrypt1.end: | ||
| 1224 | .size DES_encrypt1,.DES_encrypt1.end-DES_encrypt1 | ||
| 1225 | |||
| 1226 | |||
| 1227 | ! void DES_encrypt2(data, ks, enc) | ||
| 1228 | !********************************* | ||
| 1229 | |||
| 1230 | ! encrypts/decrypts without initial/final permutation | ||
| 1231 | |||
| 1232 | .align 32 | ||
| 1233 | .global DES_encrypt2 | ||
| 1234 | .type DES_encrypt2,#function | ||
| 1235 | |||
| 1236 | DES_encrypt2: | ||
| 1237 | |||
| 1238 | save %sp, FRAME, %sp | ||
| 1239 | |||
| 1240 | call .PIC.me.up | ||
| 1241 | mov .PIC.me.up-(.-4),out0 | ||
| 1242 | |||
| 1243 | ! Set sbox address 1 to 6 and rotate halfs 3 left | ||
| 1244 | ! Errors caught by destest? Yes. Still? *NO* | ||
| 1245 | |||
| 1246 | !sethi %hi(DES_SPtrans), global1 ! address sbox 1 | ||
| 1247 | |||
| 1248 | !or global1, %lo(DES_SPtrans), global1 ! sbox 1 | ||
| 1249 | |||
| 1250 | add global1, 256, global2 ! sbox 2 | ||
| 1251 | add global1, 512, global3 ! sbox 3 | ||
| 1252 | |||
| 1253 | ld [in0], out5 ! right | ||
| 1254 | add global1, 768, global4 ! sbox 4 | ||
| 1255 | add global1, 1024, global5 ! sbox 5 | ||
| 1256 | |||
| 1257 | ld [in0+4], in5 ! left | ||
| 1258 | add global1, 1280, local6 ! sbox 6 | ||
| 1259 | add global1, 1792, out3 ! sbox 8 | ||
| 1260 | |||
| 1261 | ! rotate | ||
| 1262 | |||
| 1263 | sll in5, 3, local5 | ||
| 1264 | mov in1, in3 ! key address to in3 | ||
| 1265 | |||
| 1266 | sll out5, 3, local7 | ||
| 1267 | srl in5, 29, in5 | ||
| 1268 | |||
| 1269 | srl out5, 29, out5 | ||
| 1270 | add in5, local5, in5 | ||
| 1271 | |||
| 1272 | add out5, local7, out5 | ||
| 1273 | cmp in2, 0 | ||
| 1274 | |||
| 1275 | ! we use our own stackframe | ||
| 1276 | |||
| 1277 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1278 | be,pn %icc, .encrypt2.dec ! decryption | ||
| 1279 | #else | ||
| 1280 | be .encrypt2.dec | ||
| 1281 | #endif | ||
| 1282 | STPTR in0, [%sp+BIAS+ARG0+0*ARGSZ] | ||
| 1283 | |||
| 1284 | ld [in3], out0 ! key 7531 first round | ||
| 1285 | mov LOOPS, out4 ! loop counter | ||
| 1286 | |||
| 1287 | ld [in3+4], out1 ! key 8642 first round | ||
| 1288 | sethi %hi(0x0000FC00), local5 | ||
| 1289 | |||
| 1290 | call .des_enc | ||
| 1291 | mov in3, in4 | ||
| 1292 | |||
| 1293 | ! rotate | ||
| 1294 | sll in5, 29, in0 | ||
| 1295 | srl in5, 3, in5 | ||
| 1296 | sll out5, 29, in1 | ||
| 1297 | add in5, in0, in5 | ||
| 1298 | srl out5, 3, out5 | ||
| 1299 | LDPTR [%sp+BIAS+ARG0+0*ARGSZ], in0 | ||
| 1300 | add out5, in1, out5 | ||
| 1301 | st in5, [in0] | ||
| 1302 | st out5, [in0+4] | ||
| 1303 | |||
| 1304 | ret | ||
| 1305 | restore | ||
| 1306 | |||
| 1307 | |||
| 1308 | .encrypt2.dec: | ||
| 1309 | |||
| 1310 | add in3, 120, in4 | ||
| 1311 | |||
| 1312 | ld [in4], out0 ! key 7531 first round | ||
| 1313 | mov LOOPS, out4 ! loop counter | ||
| 1314 | |||
| 1315 | ld [in4+4], out1 ! key 8642 first round | ||
| 1316 | sethi %hi(0x0000FC00), local5 | ||
| 1317 | |||
| 1318 | mov in5, local1 ! left expected in out5 | ||
| 1319 | mov out5, in5 | ||
| 1320 | |||
| 1321 | call .des_dec | ||
| 1322 | mov local1, out5 | ||
| 1323 | |||
| 1324 | .encrypt2.finish: | ||
| 1325 | |||
| 1326 | ! rotate | ||
| 1327 | sll in5, 29, in0 | ||
| 1328 | srl in5, 3, in5 | ||
| 1329 | sll out5, 29, in1 | ||
| 1330 | add in5, in0, in5 | ||
| 1331 | srl out5, 3, out5 | ||
| 1332 | LDPTR [%sp+BIAS+ARG0+0*ARGSZ], in0 | ||
| 1333 | add out5, in1, out5 | ||
| 1334 | st out5, [in0] | ||
| 1335 | st in5, [in0+4] | ||
| 1336 | |||
| 1337 | ret | ||
| 1338 | restore | ||
| 1339 | |||
| 1340 | .DES_encrypt2.end: | ||
| 1341 | .size DES_encrypt2, .DES_encrypt2.end-DES_encrypt2 | ||
| 1342 | |||
| 1343 | |||
| 1344 | ! void DES_encrypt3(data, ks1, ks2, ks3) | ||
| 1345 | ! ************************************** | ||
| 1346 | |||
| 1347 | .align 32 | ||
| 1348 | .global DES_encrypt3 | ||
| 1349 | .type DES_encrypt3,#function | ||
| 1350 | |||
| 1351 | DES_encrypt3: | ||
| 1352 | |||
| 1353 | save %sp, FRAME, %sp | ||
| 1354 | |||
| 1355 | call .PIC.me.up | ||
| 1356 | mov .PIC.me.up-(.-4),out0 | ||
| 1357 | |||
| 1358 | ld [in0], in5 ! left | ||
| 1359 | add in2, 120, in4 ! ks2 | ||
| 1360 | |||
| 1361 | ld [in0+4], out5 ! right | ||
| 1362 | mov in3, in2 ! save ks3 | ||
| 1363 | |||
| 1364 | ! parameter 6 1/2 for include encryption/decryption | ||
| 1365 | ! parameter 7 1 for mov in1 to in3 | ||
| 1366 | ! parameter 8 1 for mov in3 to in4 | ||
| 1367 | ! parameter 9 1 for load ks3 and ks2 to in4 and in3 | ||
| 1368 | |||
| 1369 | ip_macro(in5, out5, in5, out5, in3, 1, 1, 0, 0) | ||
| 1370 | |||
| 1371 | call .des_dec | ||
| 1372 | mov in2, in3 ! preload ks3 | ||
| 1373 | |||
| 1374 | call .des_enc | ||
| 1375 | nop | ||
| 1376 | |||
| 1377 | fp_macro(in5, out5, 1) | ||
| 1378 | |||
| 1379 | ret | ||
| 1380 | restore | ||
| 1381 | |||
| 1382 | .DES_encrypt3.end: | ||
| 1383 | .size DES_encrypt3,.DES_encrypt3.end-DES_encrypt3 | ||
| 1384 | |||
| 1385 | |||
| 1386 | ! void DES_decrypt3(data, ks1, ks2, ks3) | ||
| 1387 | ! ************************************** | ||
| 1388 | |||
| 1389 | .align 32 | ||
| 1390 | .global DES_decrypt3 | ||
| 1391 | .type DES_decrypt3,#function | ||
| 1392 | |||
| 1393 | DES_decrypt3: | ||
| 1394 | |||
| 1395 | save %sp, FRAME, %sp | ||
| 1396 | |||
| 1397 | call .PIC.me.up | ||
| 1398 | mov .PIC.me.up-(.-4),out0 | ||
| 1399 | |||
| 1400 | ld [in0], in5 ! left | ||
| 1401 | add in3, 120, in4 ! ks3 | ||
| 1402 | |||
| 1403 | ld [in0+4], out5 ! right | ||
| 1404 | mov in2, in3 ! ks2 | ||
| 1405 | |||
| 1406 | ! parameter 6 1/2 for include encryption/decryption | ||
| 1407 | ! parameter 7 1 for mov in1 to in3 | ||
| 1408 | ! parameter 8 1 for mov in3 to in4 | ||
| 1409 | ! parameter 9 1 for load ks3 and ks2 to in4 and in3 | ||
| 1410 | |||
| 1411 | ip_macro(in5, out5, out5, in5, in4, 2, 0, 0, 0) | ||
| 1412 | |||
| 1413 | call .des_enc | ||
| 1414 | add in1, 120, in4 ! preload ks1 | ||
| 1415 | |||
| 1416 | call .des_dec | ||
| 1417 | nop | ||
| 1418 | |||
| 1419 | fp_macro(out5, in5, 1) | ||
| 1420 | |||
| 1421 | ret | ||
| 1422 | restore | ||
| 1423 | |||
| 1424 | .DES_decrypt3.end: | ||
| 1425 | .size DES_decrypt3,.DES_decrypt3.end-DES_decrypt3 | ||
| 1426 | |||
| 1427 | .align 256 | ||
| 1428 | .type .des_and,#object | ||
| 1429 | .size .des_and,284 | ||
| 1430 | |||
| 1431 | .des_and: | ||
| 1432 | |||
| 1433 | ! This table is used for AND 0xFC when it is known that register | ||
| 1434 | ! bits 8-31 are zero. Makes it possible to do three arithmetic | ||
| 1435 | ! operations in one cycle. | ||
| 1436 | |||
| 1437 | .byte 0, 0, 0, 0, 4, 4, 4, 4 | ||
| 1438 | .byte 8, 8, 8, 8, 12, 12, 12, 12 | ||
| 1439 | .byte 16, 16, 16, 16, 20, 20, 20, 20 | ||
| 1440 | .byte 24, 24, 24, 24, 28, 28, 28, 28 | ||
| 1441 | .byte 32, 32, 32, 32, 36, 36, 36, 36 | ||
| 1442 | .byte 40, 40, 40, 40, 44, 44, 44, 44 | ||
| 1443 | .byte 48, 48, 48, 48, 52, 52, 52, 52 | ||
| 1444 | .byte 56, 56, 56, 56, 60, 60, 60, 60 | ||
| 1445 | .byte 64, 64, 64, 64, 68, 68, 68, 68 | ||
| 1446 | .byte 72, 72, 72, 72, 76, 76, 76, 76 | ||
| 1447 | .byte 80, 80, 80, 80, 84, 84, 84, 84 | ||
| 1448 | .byte 88, 88, 88, 88, 92, 92, 92, 92 | ||
| 1449 | .byte 96, 96, 96, 96, 100, 100, 100, 100 | ||
| 1450 | .byte 104, 104, 104, 104, 108, 108, 108, 108 | ||
| 1451 | .byte 112, 112, 112, 112, 116, 116, 116, 116 | ||
| 1452 | .byte 120, 120, 120, 120, 124, 124, 124, 124 | ||
| 1453 | .byte 128, 128, 128, 128, 132, 132, 132, 132 | ||
| 1454 | .byte 136, 136, 136, 136, 140, 140, 140, 140 | ||
| 1455 | .byte 144, 144, 144, 144, 148, 148, 148, 148 | ||
| 1456 | .byte 152, 152, 152, 152, 156, 156, 156, 156 | ||
| 1457 | .byte 160, 160, 160, 160, 164, 164, 164, 164 | ||
| 1458 | .byte 168, 168, 168, 168, 172, 172, 172, 172 | ||
| 1459 | .byte 176, 176, 176, 176, 180, 180, 180, 180 | ||
| 1460 | .byte 184, 184, 184, 184, 188, 188, 188, 188 | ||
| 1461 | .byte 192, 192, 192, 192, 196, 196, 196, 196 | ||
| 1462 | .byte 200, 200, 200, 200, 204, 204, 204, 204 | ||
| 1463 | .byte 208, 208, 208, 208, 212, 212, 212, 212 | ||
| 1464 | .byte 216, 216, 216, 216, 220, 220, 220, 220 | ||
| 1465 | .byte 224, 224, 224, 224, 228, 228, 228, 228 | ||
| 1466 | .byte 232, 232, 232, 232, 236, 236, 236, 236 | ||
| 1467 | .byte 240, 240, 240, 240, 244, 244, 244, 244 | ||
| 1468 | .byte 248, 248, 248, 248, 252, 252, 252, 252 | ||
| 1469 | |||
| 1470 | ! 5 numbers for initil/final permutation | ||
| 1471 | |||
| 1472 | .word 0x0f0f0f0f ! offset 256 | ||
| 1473 | .word 0x0000ffff ! 260 | ||
| 1474 | .word 0x33333333 ! 264 | ||
| 1475 | .word 0x00ff00ff ! 268 | ||
| 1476 | .word 0x55555555 ! 272 | ||
| 1477 | |||
| 1478 | .word 0 ! 276 | ||
| 1479 | .word LOOPS ! 280 | ||
| 1480 | .word 0x0000FC00 ! 284 | ||
| 1481 | .PIC.DES_SPtrans: | ||
| 1482 | .word %r_disp32(DES_SPtrans) | ||
| 1483 | |||
| 1484 | ! input: out0 offset between .PIC.me.up and caller | ||
| 1485 | ! output: out0 pointer to .PIC.me.up | ||
| 1486 | ! out2 pointer to .des_and | ||
| 1487 | ! global1 pointer to DES_SPtrans | ||
| 1488 | .align 32 | ||
| 1489 | .PIC.me.up: | ||
| 1490 | add out0,%o7,out0 ! pointer to .PIC.me.up | ||
| 1491 | #if 1 | ||
| 1492 | ld [out0+(.PIC.DES_SPtrans-.PIC.me.up)],global1 | ||
| 1493 | add global1,(.PIC.DES_SPtrans-.PIC.me.up),global1 | ||
| 1494 | add global1,out0,global1 | ||
| 1495 | #else | ||
| 1496 | # ifdef OPENSSL_PIC | ||
| 1497 | ! In case anybody wonders why this code is same for both ABI. | ||
| 1498 | ! To start with it is not. Do note LDPTR below. But of course | ||
| 1499 | ! you must be wondering why the rest of it does not contain | ||
| 1500 | ! things like %hh, %hm and %lm. Well, those are needed only | ||
| 1501 | ! if OpenSSL library *itself* will become larger than 4GB, | ||
| 1502 | ! which is not going to happen any time soon. | ||
| 1503 | sethi %hi(DES_SPtrans),global1 | ||
| 1504 | or global1,%lo(DES_SPtrans),global1 | ||
| 1505 | sethi %hi(_GLOBAL_OFFSET_TABLE_-(.PIC.me.up-.)),out2 | ||
| 1506 | add global1,out0,global1 | ||
| 1507 | add out2,%lo(_GLOBAL_OFFSET_TABLE_-(.PIC.me.up-.)),out2 | ||
| 1508 | LDPTR [out2+global1],global1 | ||
| 1509 | # elif 0 | ||
| 1510 | setn DES_SPtrans,out2,global1 ! synthetic instruction ! | ||
| 1511 | # elif defined(ABI64) | ||
| 1512 | sethi %hh(DES_SPtrans),out2 | ||
| 1513 | or out2,%hm(DES_SPtrans),out2 | ||
| 1514 | sethi %lm(DES_SPtrans),global1 | ||
| 1515 | or global1,%lo(DES_SPtrans),global1 | ||
| 1516 | sllx out2,32,out2 | ||
| 1517 | or out2,global1,global1 | ||
| 1518 | # else | ||
| 1519 | sethi %hi(DES_SPtrans),global1 | ||
| 1520 | or global1,%lo(DES_SPtrans),global1 | ||
| 1521 | # endif | ||
| 1522 | #endif | ||
| 1523 | retl | ||
| 1524 | add out0,.des_and-.PIC.me.up,out2 | ||
| 1525 | |||
| 1526 | ! void DES_ncbc_encrypt(input, output, length, schedule, ivec, enc) | ||
| 1527 | ! ***************************************************************** | ||
| 1528 | |||
| 1529 | |||
| 1530 | .align 32 | ||
| 1531 | .global DES_ncbc_encrypt | ||
| 1532 | .type DES_ncbc_encrypt,#function | ||
| 1533 | |||
| 1534 | DES_ncbc_encrypt: | ||
| 1535 | |||
| 1536 | save %sp, FRAME, %sp | ||
| 1537 | |||
| 1538 | define({INPUT}, { [%sp+BIAS+ARG0+0*ARGSZ] }) | ||
| 1539 | define({OUTPUT}, { [%sp+BIAS+ARG0+1*ARGSZ] }) | ||
| 1540 | define({IVEC}, { [%sp+BIAS+ARG0+4*ARGSZ] }) | ||
| 1541 | |||
| 1542 | call .PIC.me.up | ||
| 1543 | mov .PIC.me.up-(.-4),out0 | ||
| 1544 | |||
| 1545 | cmp in5, 0 ! enc | ||
| 1546 | |||
| 1547 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1548 | be,pn %icc, .ncbc.dec | ||
| 1549 | #else | ||
| 1550 | be .ncbc.dec | ||
| 1551 | #endif | ||
| 1552 | STPTR in4, IVEC | ||
| 1553 | |||
| 1554 | ! addr left right temp label | ||
| 1555 | load_little_endian(in4, in5, out5, local3, .LLE1) ! iv | ||
| 1556 | |||
| 1557 | addcc in2, -8, in2 ! bytes missing when first block done | ||
| 1558 | |||
| 1559 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1560 | bl,pn %icc, .ncbc.enc.seven.or.less | ||
| 1561 | #else | ||
| 1562 | bl .ncbc.enc.seven.or.less | ||
| 1563 | #endif | ||
| 1564 | mov in3, in4 ! schedule | ||
| 1565 | |||
| 1566 | .ncbc.enc.next.block: | ||
| 1567 | |||
| 1568 | load_little_endian(in0, out4, global4, local3, .LLE2) ! block | ||
| 1569 | |||
| 1570 | .ncbc.enc.next.block_1: | ||
| 1571 | |||
| 1572 | xor in5, out4, in5 ! iv xor | ||
| 1573 | xor out5, global4, out5 ! iv xor | ||
| 1574 | |||
| 1575 | ! parameter 8 1 for move in3 to in4, 2 for move in4 to in3 | ||
| 1576 | ip_macro(in5, out5, in5, out5, in3, 0, 0, 2) | ||
| 1577 | |||
| 1578 | .ncbc.enc.next.block_2: | ||
| 1579 | |||
| 1580 | !// call .des_enc ! compares in2 to 8 | ||
| 1581 | ! rounds inlined for alignment purposes | ||
| 1582 | |||
| 1583 | add global1, 768, global4 ! address sbox 4 since register used below | ||
| 1584 | |||
| 1585 | rounds_macro(in5, out5, 1, .ncbc.enc.1, in3, in4) ! include encryption ks in3 | ||
| 1586 | |||
| 1587 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1588 | bl,pn %icc, .ncbc.enc.next.block_fp | ||
| 1589 | #else | ||
| 1590 | bl .ncbc.enc.next.block_fp | ||
| 1591 | #endif | ||
| 1592 | add in0, 8, in0 ! input address | ||
| 1593 | |||
| 1594 | ! If 8 or more bytes are to be encrypted after this block, | ||
| 1595 | ! we combine final permutation for this block with initial | ||
| 1596 | ! permutation for next block. Load next block: | ||
| 1597 | |||
| 1598 | load_little_endian(in0, global3, global4, local5, .LLE12) | ||
| 1599 | |||
| 1600 | ! parameter 1 original left | ||
| 1601 | ! parameter 2 original right | ||
| 1602 | ! parameter 3 left ip | ||
| 1603 | ! parameter 4 right ip | ||
| 1604 | ! parameter 5 1: load ks1/ks2 to in3/in4, add 120 to in4 | ||
| 1605 | ! 2: mov in4 to in3 | ||
| 1606 | ! | ||
| 1607 | ! also adds -8 to length in2 and loads loop counter to out4 | ||
| 1608 | |||
| 1609 | fp_ip_macro(out0, out1, global3, global4, 2) | ||
| 1610 | |||
| 1611 | store_little_endian(in1, out0, out1, local3, .SLE10) ! block | ||
| 1612 | |||
| 1613 | ld [in3], out0 ! key 7531 first round next block | ||
| 1614 | mov in5, local1 | ||
| 1615 | xor global3, out5, in5 ! iv xor next block | ||
| 1616 | |||
| 1617 | ld [in3+4], out1 ! key 8642 | ||
| 1618 | add global1, 512, global3 ! address sbox 3 since register used | ||
| 1619 | xor global4, local1, out5 ! iv xor next block | ||
| 1620 | |||
| 1621 | ba .ncbc.enc.next.block_2 | ||
| 1622 | add in1, 8, in1 ! output adress | ||
| 1623 | |||
| 1624 | .ncbc.enc.next.block_fp: | ||
| 1625 | |||
| 1626 | fp_macro(in5, out5) | ||
| 1627 | |||
| 1628 | store_little_endian(in1, in5, out5, local3, .SLE1) ! block | ||
| 1629 | |||
| 1630 | addcc in2, -8, in2 ! bytes missing when next block done | ||
| 1631 | |||
| 1632 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1633 | bpos,pt %icc, .ncbc.enc.next.block ! also jumps if 0 | ||
| 1634 | #else | ||
| 1635 | bpos .ncbc.enc.next.block | ||
| 1636 | #endif | ||
| 1637 | add in1, 8, in1 | ||
| 1638 | |||
| 1639 | .ncbc.enc.seven.or.less: | ||
| 1640 | |||
| 1641 | cmp in2, -8 | ||
| 1642 | |||
| 1643 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1644 | ble,pt %icc, .ncbc.enc.finish | ||
| 1645 | #else | ||
| 1646 | ble .ncbc.enc.finish | ||
| 1647 | #endif | ||
| 1648 | nop | ||
| 1649 | |||
| 1650 | add in2, 8, local1 ! bytes to load | ||
| 1651 | |||
| 1652 | ! addr, length, dest left, dest right, temp, temp2, label, ret label | ||
| 1653 | load_n_bytes(in0, local1, global4, out4, local2, local3, .LNB1, .ncbc.enc.next.block_1) | ||
| 1654 | |||
| 1655 | ! Loads 1 to 7 bytes little endian to global4, out4 | ||
| 1656 | |||
| 1657 | |||
| 1658 | .ncbc.enc.finish: | ||
| 1659 | |||
| 1660 | LDPTR IVEC, local4 | ||
| 1661 | store_little_endian(local4, in5, out5, local5, .SLE2) ! ivec | ||
| 1662 | |||
| 1663 | ret | ||
| 1664 | restore | ||
| 1665 | |||
| 1666 | |||
| 1667 | .ncbc.dec: | ||
| 1668 | |||
| 1669 | STPTR in0, INPUT | ||
| 1670 | cmp in2, 0 ! length | ||
| 1671 | add in3, 120, in3 | ||
| 1672 | |||
| 1673 | LDPTR IVEC, local7 ! ivec | ||
| 1674 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1675 | ble,pn %icc, .ncbc.dec.finish | ||
| 1676 | #else | ||
| 1677 | ble .ncbc.dec.finish | ||
| 1678 | #endif | ||
| 1679 | mov in3, in4 ! schedule | ||
| 1680 | |||
| 1681 | STPTR in1, OUTPUT | ||
| 1682 | mov in0, local5 ! input | ||
| 1683 | |||
| 1684 | load_little_endian(local7, in0, in1, local3, .LLE3) ! ivec | ||
| 1685 | |||
| 1686 | .ncbc.dec.next.block: | ||
| 1687 | |||
| 1688 | load_little_endian(local5, in5, out5, local3, .LLE4) ! block | ||
| 1689 | |||
| 1690 | ! parameter 6 1/2 for include encryption/decryption | ||
| 1691 | ! parameter 7 1 for mov in1 to in3 | ||
| 1692 | ! parameter 8 1 for mov in3 to in4 | ||
| 1693 | |||
| 1694 | ip_macro(in5, out5, out5, in5, in4, 2, 0, 1) ! include decryprion ks in4 | ||
| 1695 | |||
| 1696 | fp_macro(out5, in5, 0, 1) ! 1 for input and output address to local5/7 | ||
| 1697 | |||
| 1698 | ! in2 is bytes left to be stored | ||
| 1699 | ! in2 is compared to 8 in the rounds | ||
| 1700 | |||
| 1701 | xor out5, in0, out4 ! iv xor | ||
| 1702 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1703 | bl,pn %icc, .ncbc.dec.seven.or.less | ||
| 1704 | #else | ||
| 1705 | bl .ncbc.dec.seven.or.less | ||
| 1706 | #endif | ||
| 1707 | xor in5, in1, global4 ! iv xor | ||
| 1708 | |||
| 1709 | ! Load ivec next block now, since input and output address might be the same. | ||
| 1710 | |||
| 1711 | load_little_endian_inc(local5, in0, in1, local3, .LLE5) ! iv | ||
| 1712 | |||
| 1713 | store_little_endian(local7, out4, global4, local3, .SLE3) | ||
| 1714 | |||
| 1715 | STPTR local5, INPUT | ||
| 1716 | add local7, 8, local7 | ||
| 1717 | addcc in2, -8, in2 | ||
| 1718 | |||
| 1719 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1720 | bg,pt %icc, .ncbc.dec.next.block | ||
| 1721 | #else | ||
| 1722 | bg .ncbc.dec.next.block | ||
| 1723 | #endif | ||
| 1724 | STPTR local7, OUTPUT | ||
| 1725 | |||
| 1726 | |||
| 1727 | .ncbc.dec.store.iv: | ||
| 1728 | |||
| 1729 | LDPTR IVEC, local4 ! ivec | ||
| 1730 | store_little_endian(local4, in0, in1, local5, .SLE4) | ||
| 1731 | |||
| 1732 | .ncbc.dec.finish: | ||
| 1733 | |||
| 1734 | ret | ||
| 1735 | restore | ||
| 1736 | |||
| 1737 | .ncbc.dec.seven.or.less: | ||
| 1738 | |||
| 1739 | load_little_endian_inc(local5, in0, in1, local3, .LLE13) ! ivec | ||
| 1740 | |||
| 1741 | store_n_bytes(local7, in2, global4, out4, local3, local4, .SNB1, .ncbc.dec.store.iv) | ||
| 1742 | |||
| 1743 | |||
| 1744 | .DES_ncbc_encrypt.end: | ||
| 1745 | .size DES_ncbc_encrypt, .DES_ncbc_encrypt.end-DES_ncbc_encrypt | ||
| 1746 | |||
| 1747 | |||
| 1748 | ! void DES_ede3_cbc_encrypt(input, output, lenght, ks1, ks2, ks3, ivec, enc) | ||
| 1749 | ! ************************************************************************** | ||
| 1750 | |||
| 1751 | |||
| 1752 | .align 32 | ||
| 1753 | .global DES_ede3_cbc_encrypt | ||
| 1754 | .type DES_ede3_cbc_encrypt,#function | ||
| 1755 | |||
| 1756 | DES_ede3_cbc_encrypt: | ||
| 1757 | |||
| 1758 | save %sp, FRAME, %sp | ||
| 1759 | |||
| 1760 | define({KS1}, { [%sp+BIAS+ARG0+3*ARGSZ] }) | ||
| 1761 | define({KS2}, { [%sp+BIAS+ARG0+4*ARGSZ] }) | ||
| 1762 | define({KS3}, { [%sp+BIAS+ARG0+5*ARGSZ] }) | ||
| 1763 | |||
| 1764 | call .PIC.me.up | ||
| 1765 | mov .PIC.me.up-(.-4),out0 | ||
| 1766 | |||
| 1767 | LDPTR [%fp+BIAS+ARG0+7*ARGSZ], local3 ! enc | ||
| 1768 | LDPTR [%fp+BIAS+ARG0+6*ARGSZ], local4 ! ivec | ||
| 1769 | cmp local3, 0 ! enc | ||
| 1770 | |||
| 1771 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1772 | be,pn %icc, .ede3.dec | ||
| 1773 | #else | ||
| 1774 | be .ede3.dec | ||
| 1775 | #endif | ||
| 1776 | STPTR in4, KS2 | ||
| 1777 | |||
| 1778 | STPTR in5, KS3 | ||
| 1779 | |||
| 1780 | load_little_endian(local4, in5, out5, local3, .LLE6) ! ivec | ||
| 1781 | |||
| 1782 | addcc in2, -8, in2 ! bytes missing after next block | ||
| 1783 | |||
| 1784 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1785 | bl,pn %icc, .ede3.enc.seven.or.less | ||
| 1786 | #else | ||
| 1787 | bl .ede3.enc.seven.or.less | ||
| 1788 | #endif | ||
| 1789 | STPTR in3, KS1 | ||
| 1790 | |||
| 1791 | .ede3.enc.next.block: | ||
| 1792 | |||
| 1793 | load_little_endian(in0, out4, global4, local3, .LLE7) | ||
| 1794 | |||
| 1795 | .ede3.enc.next.block_1: | ||
| 1796 | |||
| 1797 | LDPTR KS2, in4 | ||
| 1798 | xor in5, out4, in5 ! iv xor | ||
| 1799 | xor out5, global4, out5 ! iv xor | ||
| 1800 | |||
| 1801 | LDPTR KS1, in3 | ||
| 1802 | add in4, 120, in4 ! for decryption we use last subkey first | ||
| 1803 | nop | ||
| 1804 | |||
| 1805 | ip_macro(in5, out5, in5, out5, in3) | ||
| 1806 | |||
| 1807 | .ede3.enc.next.block_2: | ||
| 1808 | |||
| 1809 | call .des_enc ! ks1 in3 | ||
| 1810 | nop | ||
| 1811 | |||
| 1812 | call .des_dec ! ks2 in4 | ||
| 1813 | LDPTR KS3, in3 | ||
| 1814 | |||
| 1815 | call .des_enc ! ks3 in3 compares in2 to 8 | ||
| 1816 | nop | ||
| 1817 | |||
| 1818 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1819 | bl,pn %icc, .ede3.enc.next.block_fp | ||
| 1820 | #else | ||
| 1821 | bl .ede3.enc.next.block_fp | ||
| 1822 | #endif | ||
| 1823 | add in0, 8, in0 | ||
| 1824 | |||
| 1825 | ! If 8 or more bytes are to be encrypted after this block, | ||
| 1826 | ! we combine final permutation for this block with initial | ||
| 1827 | ! permutation for next block. Load next block: | ||
| 1828 | |||
| 1829 | load_little_endian(in0, global3, global4, local5, .LLE11) | ||
| 1830 | |||
| 1831 | ! parameter 1 original left | ||
| 1832 | ! parameter 2 original right | ||
| 1833 | ! parameter 3 left ip | ||
| 1834 | ! parameter 4 right ip | ||
| 1835 | ! parameter 5 1: load ks1/ks2 to in3/in4, add 120 to in4 | ||
| 1836 | ! 2: mov in4 to in3 | ||
| 1837 | ! | ||
| 1838 | ! also adds -8 to length in2 and loads loop counter to out4 | ||
| 1839 | |||
| 1840 | fp_ip_macro(out0, out1, global3, global4, 1) | ||
| 1841 | |||
| 1842 | store_little_endian(in1, out0, out1, local3, .SLE9) ! block | ||
| 1843 | |||
| 1844 | mov in5, local1 | ||
| 1845 | xor global3, out5, in5 ! iv xor next block | ||
| 1846 | |||
| 1847 | ld [in3], out0 ! key 7531 | ||
| 1848 | add global1, 512, global3 ! address sbox 3 | ||
| 1849 | xor global4, local1, out5 ! iv xor next block | ||
| 1850 | |||
| 1851 | ld [in3+4], out1 ! key 8642 | ||
| 1852 | add global1, 768, global4 ! address sbox 4 | ||
| 1853 | ba .ede3.enc.next.block_2 | ||
| 1854 | add in1, 8, in1 | ||
| 1855 | |||
| 1856 | .ede3.enc.next.block_fp: | ||
| 1857 | |||
| 1858 | fp_macro(in5, out5) | ||
| 1859 | |||
| 1860 | store_little_endian(in1, in5, out5, local3, .SLE5) ! block | ||
| 1861 | |||
| 1862 | addcc in2, -8, in2 ! bytes missing when next block done | ||
| 1863 | |||
| 1864 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1865 | bpos,pt %icc, .ede3.enc.next.block | ||
| 1866 | #else | ||
| 1867 | bpos .ede3.enc.next.block | ||
| 1868 | #endif | ||
| 1869 | add in1, 8, in1 | ||
| 1870 | |||
| 1871 | .ede3.enc.seven.or.less: | ||
| 1872 | |||
| 1873 | cmp in2, -8 | ||
| 1874 | |||
| 1875 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1876 | ble,pt %icc, .ede3.enc.finish | ||
| 1877 | #else | ||
| 1878 | ble .ede3.enc.finish | ||
| 1879 | #endif | ||
| 1880 | nop | ||
| 1881 | |||
| 1882 | add in2, 8, local1 ! bytes to load | ||
| 1883 | |||
| 1884 | ! addr, length, dest left, dest right, temp, temp2, label, ret label | ||
| 1885 | load_n_bytes(in0, local1, global4, out4, local2, local3, .LNB2, .ede3.enc.next.block_1) | ||
| 1886 | |||
| 1887 | .ede3.enc.finish: | ||
| 1888 | |||
| 1889 | LDPTR [%fp+BIAS+ARG0+6*ARGSZ], local4 ! ivec | ||
| 1890 | store_little_endian(local4, in5, out5, local5, .SLE6) ! ivec | ||
| 1891 | |||
| 1892 | ret | ||
| 1893 | restore | ||
| 1894 | |||
| 1895 | .ede3.dec: | ||
| 1896 | |||
| 1897 | STPTR in0, INPUT | ||
| 1898 | add in5, 120, in5 | ||
| 1899 | |||
| 1900 | STPTR in1, OUTPUT | ||
| 1901 | mov in0, local5 | ||
| 1902 | add in3, 120, in3 | ||
| 1903 | |||
| 1904 | STPTR in3, KS1 | ||
| 1905 | cmp in2, 0 | ||
| 1906 | |||
| 1907 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1908 | ble %icc, .ede3.dec.finish | ||
| 1909 | #else | ||
| 1910 | ble .ede3.dec.finish | ||
| 1911 | #endif | ||
| 1912 | STPTR in5, KS3 | ||
| 1913 | |||
| 1914 | LDPTR [%fp+BIAS+ARG0+6*ARGSZ], local7 ! iv | ||
| 1915 | load_little_endian(local7, in0, in1, local3, .LLE8) | ||
| 1916 | |||
| 1917 | .ede3.dec.next.block: | ||
| 1918 | |||
| 1919 | load_little_endian(local5, in5, out5, local3, .LLE9) | ||
| 1920 | |||
| 1921 | ! parameter 6 1/2 for include encryption/decryption | ||
| 1922 | ! parameter 7 1 for mov in1 to in3 | ||
| 1923 | ! parameter 8 1 for mov in3 to in4 | ||
| 1924 | ! parameter 9 1 for load ks3 and ks2 to in4 and in3 | ||
| 1925 | |||
| 1926 | ip_macro(in5, out5, out5, in5, in4, 2, 0, 0, 1) ! inc .des_dec ks3 in4 | ||
| 1927 | |||
| 1928 | call .des_enc ! ks2 in3 | ||
| 1929 | LDPTR KS1, in4 | ||
| 1930 | |||
| 1931 | call .des_dec ! ks1 in4 | ||
| 1932 | nop | ||
| 1933 | |||
| 1934 | fp_macro(out5, in5, 0, 1) ! 1 for input and output address local5/7 | ||
| 1935 | |||
| 1936 | ! in2 is bytes left to be stored | ||
| 1937 | ! in2 is compared to 8 in the rounds | ||
| 1938 | |||
| 1939 | xor out5, in0, out4 | ||
| 1940 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1941 | bl,pn %icc, .ede3.dec.seven.or.less | ||
| 1942 | #else | ||
| 1943 | bl .ede3.dec.seven.or.less | ||
| 1944 | #endif | ||
| 1945 | xor in5, in1, global4 | ||
| 1946 | |||
| 1947 | load_little_endian_inc(local5, in0, in1, local3, .LLE10) ! iv next block | ||
| 1948 | |||
| 1949 | store_little_endian(local7, out4, global4, local3, .SLE7) ! block | ||
| 1950 | |||
| 1951 | STPTR local5, INPUT | ||
| 1952 | addcc in2, -8, in2 | ||
| 1953 | add local7, 8, local7 | ||
| 1954 | |||
| 1955 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1956 | bg,pt %icc, .ede3.dec.next.block | ||
| 1957 | #else | ||
| 1958 | bg .ede3.dec.next.block | ||
| 1959 | #endif | ||
| 1960 | STPTR local7, OUTPUT | ||
| 1961 | |||
| 1962 | .ede3.dec.store.iv: | ||
| 1963 | |||
| 1964 | LDPTR [%fp+BIAS+ARG0+6*ARGSZ], local4 ! ivec | ||
| 1965 | store_little_endian(local4, in0, in1, local5, .SLE8) ! ivec | ||
| 1966 | |||
| 1967 | .ede3.dec.finish: | ||
| 1968 | |||
| 1969 | ret | ||
| 1970 | restore | ||
| 1971 | |||
| 1972 | .ede3.dec.seven.or.less: | ||
| 1973 | |||
| 1974 | load_little_endian_inc(local5, in0, in1, local3, .LLE14) ! iv | ||
| 1975 | |||
| 1976 | store_n_bytes(local7, in2, global4, out4, local3, local4, .SNB2, .ede3.dec.store.iv) | ||
| 1977 | |||
| 1978 | |||
| 1979 | .DES_ede3_cbc_encrypt.end: | ||
| 1980 | .size DES_ede3_cbc_encrypt,.DES_ede3_cbc_encrypt.end-DES_ede3_cbc_encrypt | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips_locl.h b/src/lib/libssl/src/crypto/dh/dh_depr.c index bbddfaab82..acc05f252c 100644 --- a/src/lib/libssl/src/fips-1.0/fips_locl.h +++ b/src/lib/libssl/src/crypto/dh/dh_depr.c | |||
| @@ -1,5 +1,6 @@ | |||
| 1 | /* crypto/dh/dh_depr.c */ | ||
| 1 | /* ==================================================================== | 2 | /* ==================================================================== |
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. |
| 3 | * | 4 | * |
| 4 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 5 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -44,28 +45,39 @@ | |||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. |
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 47 | * | 53 | * |
| 48 | */ | 54 | */ |
| 49 | 55 | ||
| 50 | #ifdef OPENSSL_FIPS | ||
| 51 | 56 | ||
| 52 | #ifdef __cplusplus | 57 | /* This file contains deprecated functions as wrappers to the new ones */ |
| 53 | extern "C" { | ||
| 54 | #endif | ||
| 55 | 58 | ||
| 56 | /* These are trampolines implemented in crypto/cryptlib.c */ | 59 | #include <stdio.h> |
| 57 | void fips_w_lock(void); | 60 | #include "cryptlib.h" |
| 58 | void fips_w_unlock(void); | 61 | #include <openssl/bn.h> |
| 59 | void fips_r_lock(void); | 62 | #include <openssl/dh.h> |
| 60 | void fips_r_unlock(void); | ||
| 61 | int fips_is_started(void); | ||
| 62 | void fips_set_started(void); | ||
| 63 | int fips_is_owning_thread(void); | ||
| 64 | int fips_set_owning_thread(void); | ||
| 65 | int fips_clear_owning_thread(void); | ||
| 66 | unsigned char *fips_signature_witness(void); | ||
| 67 | 63 | ||
| 68 | #ifdef __cplusplus | 64 | static void *dummy=&dummy; |
| 69 | } | 65 | |
| 70 | #endif | 66 | #ifndef OPENSSL_NO_DEPRECATED |
| 67 | DH *DH_generate_parameters(int prime_len, int generator, | ||
| 68 | void (*callback)(int,int,void *), void *cb_arg) | ||
| 69 | { | ||
| 70 | BN_GENCB cb; | ||
| 71 | DH *ret=NULL; | ||
| 72 | |||
| 73 | if((ret=DH_new()) == NULL) | ||
| 74 | return NULL; | ||
| 75 | |||
| 76 | BN_GENCB_set_old(&cb, callback, cb_arg); | ||
| 77 | |||
| 78 | if(DH_generate_parameters_ex(ret, prime_len, generator, &cb)) | ||
| 79 | return ret; | ||
| 80 | DH_free(ret); | ||
| 81 | return NULL; | ||
| 82 | } | ||
| 71 | #endif | 83 | #endif |
diff --git a/src/lib/libssl/src/crypto/dsa/dsa_depr.c b/src/lib/libssl/src/crypto/dsa/dsa_depr.c new file mode 100644 index 0000000000..f2da680eb4 --- /dev/null +++ b/src/lib/libssl/src/crypto/dsa/dsa_depr.c | |||
| @@ -0,0 +1,106 @@ | |||
| 1 | /* crypto/dsa/dsa_depr.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* This file contains deprecated function(s) that are now wrappers to the new | ||
| 57 | * version(s). */ | ||
| 58 | |||
| 59 | #undef GENUINE_DSA | ||
| 60 | |||
| 61 | #ifdef GENUINE_DSA | ||
| 62 | /* Parameter generation follows the original release of FIPS PUB 186, | ||
| 63 | * Appendix 2.2 (i.e. use SHA as defined in FIPS PUB 180) */ | ||
| 64 | #define HASH EVP_sha() | ||
| 65 | #else | ||
| 66 | /* Parameter generation follows the updated Appendix 2.2 for FIPS PUB 186, | ||
| 67 | * also Appendix 2.2 of FIPS PUB 186-1 (i.e. use SHA as defined in | ||
| 68 | * FIPS PUB 180-1) */ | ||
| 69 | #define HASH EVP_sha1() | ||
| 70 | #endif | ||
| 71 | |||
| 72 | static void *dummy=&dummy; | ||
| 73 | |||
| 74 | #ifndef OPENSSL_NO_SHA | ||
| 75 | |||
| 76 | #include <stdio.h> | ||
| 77 | #include <time.h> | ||
| 78 | #include "cryptlib.h" | ||
| 79 | #include <openssl/evp.h> | ||
| 80 | #include <openssl/bn.h> | ||
| 81 | #include <openssl/dsa.h> | ||
| 82 | #include <openssl/rand.h> | ||
| 83 | #include <openssl/sha.h> | ||
| 84 | |||
| 85 | #ifndef OPENSSL_NO_DEPRECATED | ||
| 86 | DSA *DSA_generate_parameters(int bits, | ||
| 87 | unsigned char *seed_in, int seed_len, | ||
| 88 | int *counter_ret, unsigned long *h_ret, | ||
| 89 | void (*callback)(int, int, void *), | ||
| 90 | void *cb_arg) | ||
| 91 | { | ||
| 92 | BN_GENCB cb; | ||
| 93 | DSA *ret; | ||
| 94 | |||
| 95 | if ((ret=DSA_new()) == NULL) return NULL; | ||
| 96 | |||
| 97 | BN_GENCB_set_old(&cb, callback, cb_arg); | ||
| 98 | |||
| 99 | if(DSA_generate_parameters_ex(ret, bits, seed_in, seed_len, | ||
| 100 | counter_ret, h_ret, &cb)) | ||
| 101 | return ret; | ||
| 102 | DSA_free(ret); | ||
| 103 | return NULL; | ||
| 104 | } | ||
| 105 | #endif | ||
| 106 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec2_mult.c b/src/lib/libssl/src/crypto/ec/ec2_mult.c new file mode 100644 index 0000000000..ff368fd7d7 --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec2_mult.c | |||
| @@ -0,0 +1,380 @@ | |||
| 1 | /* crypto/ec/ec2_mult.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The software is originally written by Sheueling Chang Shantz and | ||
| 13 | * Douglas Stebila of Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * openssl-core@openssl.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | #include <openssl/err.h> | ||
| 71 | |||
| 72 | #include "ec_lcl.h" | ||
| 73 | |||
| 74 | |||
| 75 | /* Compute the x-coordinate x/z for the point 2*(x/z) in Montgomery projective | ||
| 76 | * coordinates. | ||
| 77 | * Uses algorithm Mdouble in appendix of | ||
| 78 | * Lopez, J. and Dahab, R. "Fast multiplication on elliptic curves over | ||
| 79 | * GF(2^m) without precomputation". | ||
| 80 | * modified to not require precomputation of c=b^{2^{m-1}}. | ||
| 81 | */ | ||
| 82 | static int gf2m_Mdouble(const EC_GROUP *group, BIGNUM *x, BIGNUM *z, BN_CTX *ctx) | ||
| 83 | { | ||
| 84 | BIGNUM *t1; | ||
| 85 | int ret = 0; | ||
| 86 | |||
| 87 | /* Since Mdouble is static we can guarantee that ctx != NULL. */ | ||
| 88 | BN_CTX_start(ctx); | ||
| 89 | t1 = BN_CTX_get(ctx); | ||
| 90 | if (t1 == NULL) goto err; | ||
| 91 | |||
| 92 | if (!group->meth->field_sqr(group, x, x, ctx)) goto err; | ||
| 93 | if (!group->meth->field_sqr(group, t1, z, ctx)) goto err; | ||
| 94 | if (!group->meth->field_mul(group, z, x, t1, ctx)) goto err; | ||
| 95 | if (!group->meth->field_sqr(group, x, x, ctx)) goto err; | ||
| 96 | if (!group->meth->field_sqr(group, t1, t1, ctx)) goto err; | ||
| 97 | if (!group->meth->field_mul(group, t1, &group->b, t1, ctx)) goto err; | ||
| 98 | if (!BN_GF2m_add(x, x, t1)) goto err; | ||
| 99 | |||
| 100 | ret = 1; | ||
| 101 | |||
| 102 | err: | ||
| 103 | BN_CTX_end(ctx); | ||
| 104 | return ret; | ||
| 105 | } | ||
| 106 | |||
| 107 | /* Compute the x-coordinate x1/z1 for the point (x1/z1)+(x2/x2) in Montgomery | ||
| 108 | * projective coordinates. | ||
| 109 | * Uses algorithm Madd in appendix of | ||
| 110 | * Lopex, J. and Dahab, R. "Fast multiplication on elliptic curves over | ||
| 111 | * GF(2^m) without precomputation". | ||
| 112 | */ | ||
| 113 | static int gf2m_Madd(const EC_GROUP *group, const BIGNUM *x, BIGNUM *x1, BIGNUM *z1, | ||
| 114 | const BIGNUM *x2, const BIGNUM *z2, BN_CTX *ctx) | ||
| 115 | { | ||
| 116 | BIGNUM *t1, *t2; | ||
| 117 | int ret = 0; | ||
| 118 | |||
| 119 | /* Since Madd is static we can guarantee that ctx != NULL. */ | ||
| 120 | BN_CTX_start(ctx); | ||
| 121 | t1 = BN_CTX_get(ctx); | ||
| 122 | t2 = BN_CTX_get(ctx); | ||
| 123 | if (t2 == NULL) goto err; | ||
| 124 | |||
| 125 | if (!BN_copy(t1, x)) goto err; | ||
| 126 | if (!group->meth->field_mul(group, x1, x1, z2, ctx)) goto err; | ||
| 127 | if (!group->meth->field_mul(group, z1, z1, x2, ctx)) goto err; | ||
| 128 | if (!group->meth->field_mul(group, t2, x1, z1, ctx)) goto err; | ||
| 129 | if (!BN_GF2m_add(z1, z1, x1)) goto err; | ||
| 130 | if (!group->meth->field_sqr(group, z1, z1, ctx)) goto err; | ||
| 131 | if (!group->meth->field_mul(group, x1, z1, t1, ctx)) goto err; | ||
| 132 | if (!BN_GF2m_add(x1, x1, t2)) goto err; | ||
| 133 | |||
| 134 | ret = 1; | ||
| 135 | |||
| 136 | err: | ||
| 137 | BN_CTX_end(ctx); | ||
| 138 | return ret; | ||
| 139 | } | ||
| 140 | |||
| 141 | /* Compute the x, y affine coordinates from the point (x1, z1) (x2, z2) | ||
| 142 | * using Montgomery point multiplication algorithm Mxy() in appendix of | ||
| 143 | * Lopex, J. and Dahab, R. "Fast multiplication on elliptic curves over | ||
| 144 | * GF(2^m) without precomputation". | ||
| 145 | * Returns: | ||
| 146 | * 0 on error | ||
| 147 | * 1 if return value should be the point at infinity | ||
| 148 | * 2 otherwise | ||
| 149 | */ | ||
| 150 | static int gf2m_Mxy(const EC_GROUP *group, const BIGNUM *x, const BIGNUM *y, BIGNUM *x1, | ||
| 151 | BIGNUM *z1, BIGNUM *x2, BIGNUM *z2, BN_CTX *ctx) | ||
| 152 | { | ||
| 153 | BIGNUM *t3, *t4, *t5; | ||
| 154 | int ret = 0; | ||
| 155 | |||
| 156 | if (BN_is_zero(z1)) | ||
| 157 | { | ||
| 158 | BN_zero(x2); | ||
| 159 | BN_zero(z2); | ||
| 160 | return 1; | ||
| 161 | } | ||
| 162 | |||
| 163 | if (BN_is_zero(z2)) | ||
| 164 | { | ||
| 165 | if (!BN_copy(x2, x)) return 0; | ||
| 166 | if (!BN_GF2m_add(z2, x, y)) return 0; | ||
| 167 | return 2; | ||
| 168 | } | ||
| 169 | |||
| 170 | /* Since Mxy is static we can guarantee that ctx != NULL. */ | ||
| 171 | BN_CTX_start(ctx); | ||
| 172 | t3 = BN_CTX_get(ctx); | ||
| 173 | t4 = BN_CTX_get(ctx); | ||
| 174 | t5 = BN_CTX_get(ctx); | ||
| 175 | if (t5 == NULL) goto err; | ||
| 176 | |||
| 177 | if (!BN_one(t5)) goto err; | ||
| 178 | |||
| 179 | if (!group->meth->field_mul(group, t3, z1, z2, ctx)) goto err; | ||
| 180 | |||
| 181 | if (!group->meth->field_mul(group, z1, z1, x, ctx)) goto err; | ||
| 182 | if (!BN_GF2m_add(z1, z1, x1)) goto err; | ||
| 183 | if (!group->meth->field_mul(group, z2, z2, x, ctx)) goto err; | ||
| 184 | if (!group->meth->field_mul(group, x1, z2, x1, ctx)) goto err; | ||
| 185 | if (!BN_GF2m_add(z2, z2, x2)) goto err; | ||
| 186 | |||
| 187 | if (!group->meth->field_mul(group, z2, z2, z1, ctx)) goto err; | ||
| 188 | if (!group->meth->field_sqr(group, t4, x, ctx)) goto err; | ||
| 189 | if (!BN_GF2m_add(t4, t4, y)) goto err; | ||
| 190 | if (!group->meth->field_mul(group, t4, t4, t3, ctx)) goto err; | ||
| 191 | if (!BN_GF2m_add(t4, t4, z2)) goto err; | ||
| 192 | |||
| 193 | if (!group->meth->field_mul(group, t3, t3, x, ctx)) goto err; | ||
| 194 | if (!group->meth->field_div(group, t3, t5, t3, ctx)) goto err; | ||
| 195 | if (!group->meth->field_mul(group, t4, t3, t4, ctx)) goto err; | ||
| 196 | if (!group->meth->field_mul(group, x2, x1, t3, ctx)) goto err; | ||
| 197 | if (!BN_GF2m_add(z2, x2, x)) goto err; | ||
| 198 | |||
| 199 | if (!group->meth->field_mul(group, z2, z2, t4, ctx)) goto err; | ||
| 200 | if (!BN_GF2m_add(z2, z2, y)) goto err; | ||
| 201 | |||
| 202 | ret = 2; | ||
| 203 | |||
| 204 | err: | ||
| 205 | BN_CTX_end(ctx); | ||
| 206 | return ret; | ||
| 207 | } | ||
| 208 | |||
| 209 | /* Computes scalar*point and stores the result in r. | ||
| 210 | * point can not equal r. | ||
| 211 | * Uses algorithm 2P of | ||
| 212 | * Lopex, J. and Dahab, R. "Fast multiplication on elliptic curves over | ||
| 213 | * GF(2^m) without precomputation". | ||
| 214 | */ | ||
| 215 | static int ec_GF2m_montgomery_point_multiply(const EC_GROUP *group, EC_POINT *r, const BIGNUM *scalar, | ||
| 216 | const EC_POINT *point, BN_CTX *ctx) | ||
| 217 | { | ||
| 218 | BIGNUM *x1, *x2, *z1, *z2; | ||
| 219 | int ret = 0, i, j; | ||
| 220 | BN_ULONG mask; | ||
| 221 | |||
| 222 | if (r == point) | ||
| 223 | { | ||
| 224 | ECerr(EC_F_EC_GF2M_MONTGOMERY_POINT_MULTIPLY, EC_R_INVALID_ARGUMENT); | ||
| 225 | return 0; | ||
| 226 | } | ||
| 227 | |||
| 228 | /* if result should be point at infinity */ | ||
| 229 | if ((scalar == NULL) || BN_is_zero(scalar) || (point == NULL) || | ||
| 230 | EC_POINT_is_at_infinity(group, point)) | ||
| 231 | { | ||
| 232 | return EC_POINT_set_to_infinity(group, r); | ||
| 233 | } | ||
| 234 | |||
| 235 | /* only support affine coordinates */ | ||
| 236 | if (!point->Z_is_one) return 0; | ||
| 237 | |||
| 238 | /* Since point_multiply is static we can guarantee that ctx != NULL. */ | ||
| 239 | BN_CTX_start(ctx); | ||
| 240 | x1 = BN_CTX_get(ctx); | ||
| 241 | z1 = BN_CTX_get(ctx); | ||
| 242 | if (z1 == NULL) goto err; | ||
| 243 | |||
| 244 | x2 = &r->X; | ||
| 245 | z2 = &r->Y; | ||
| 246 | |||
| 247 | if (!BN_GF2m_mod_arr(x1, &point->X, group->poly)) goto err; /* x1 = x */ | ||
| 248 | if (!BN_one(z1)) goto err; /* z1 = 1 */ | ||
| 249 | if (!group->meth->field_sqr(group, z2, x1, ctx)) goto err; /* z2 = x1^2 = x^2 */ | ||
| 250 | if (!group->meth->field_sqr(group, x2, z2, ctx)) goto err; | ||
| 251 | if (!BN_GF2m_add(x2, x2, &group->b)) goto err; /* x2 = x^4 + b */ | ||
| 252 | |||
| 253 | /* find top most bit and go one past it */ | ||
| 254 | i = scalar->top - 1; j = BN_BITS2 - 1; | ||
| 255 | mask = BN_TBIT; | ||
| 256 | while (!(scalar->d[i] & mask)) { mask >>= 1; j--; } | ||
| 257 | mask >>= 1; j--; | ||
| 258 | /* if top most bit was at word break, go to next word */ | ||
| 259 | if (!mask) | ||
| 260 | { | ||
| 261 | i--; j = BN_BITS2 - 1; | ||
| 262 | mask = BN_TBIT; | ||
| 263 | } | ||
| 264 | |||
| 265 | for (; i >= 0; i--) | ||
| 266 | { | ||
| 267 | for (; j >= 0; j--) | ||
| 268 | { | ||
| 269 | if (scalar->d[i] & mask) | ||
| 270 | { | ||
| 271 | if (!gf2m_Madd(group, &point->X, x1, z1, x2, z2, ctx)) goto err; | ||
| 272 | if (!gf2m_Mdouble(group, x2, z2, ctx)) goto err; | ||
| 273 | } | ||
| 274 | else | ||
| 275 | { | ||
| 276 | if (!gf2m_Madd(group, &point->X, x2, z2, x1, z1, ctx)) goto err; | ||
| 277 | if (!gf2m_Mdouble(group, x1, z1, ctx)) goto err; | ||
| 278 | } | ||
| 279 | mask >>= 1; | ||
| 280 | } | ||
| 281 | j = BN_BITS2 - 1; | ||
| 282 | mask = BN_TBIT; | ||
| 283 | } | ||
| 284 | |||
| 285 | /* convert out of "projective" coordinates */ | ||
| 286 | i = gf2m_Mxy(group, &point->X, &point->Y, x1, z1, x2, z2, ctx); | ||
| 287 | if (i == 0) goto err; | ||
| 288 | else if (i == 1) | ||
| 289 | { | ||
| 290 | if (!EC_POINT_set_to_infinity(group, r)) goto err; | ||
| 291 | } | ||
| 292 | else | ||
| 293 | { | ||
| 294 | if (!BN_one(&r->Z)) goto err; | ||
| 295 | r->Z_is_one = 1; | ||
| 296 | } | ||
| 297 | |||
| 298 | /* GF(2^m) field elements should always have BIGNUM::neg = 0 */ | ||
| 299 | BN_set_negative(&r->X, 0); | ||
| 300 | BN_set_negative(&r->Y, 0); | ||
| 301 | |||
| 302 | ret = 1; | ||
| 303 | |||
| 304 | err: | ||
| 305 | BN_CTX_end(ctx); | ||
| 306 | return ret; | ||
| 307 | } | ||
| 308 | |||
| 309 | |||
| 310 | /* Computes the sum | ||
| 311 | * scalar*group->generator + scalars[0]*points[0] + ... + scalars[num-1]*points[num-1] | ||
| 312 | * gracefully ignoring NULL scalar values. | ||
| 313 | */ | ||
| 314 | int ec_GF2m_simple_mul(const EC_GROUP *group, EC_POINT *r, const BIGNUM *scalar, | ||
| 315 | size_t num, const EC_POINT *points[], const BIGNUM *scalars[], BN_CTX *ctx) | ||
| 316 | { | ||
| 317 | BN_CTX *new_ctx = NULL; | ||
| 318 | int ret = 0; | ||
| 319 | size_t i; | ||
| 320 | EC_POINT *p=NULL; | ||
| 321 | |||
| 322 | if (ctx == NULL) | ||
| 323 | { | ||
| 324 | ctx = new_ctx = BN_CTX_new(); | ||
| 325 | if (ctx == NULL) | ||
| 326 | return 0; | ||
| 327 | } | ||
| 328 | |||
| 329 | /* This implementation is more efficient than the wNAF implementation for 2 | ||
| 330 | * or fewer points. Use the ec_wNAF_mul implementation for 3 or more points, | ||
| 331 | * or if we can perform a fast multiplication based on precomputation. | ||
| 332 | */ | ||
| 333 | if ((scalar && (num > 1)) || (num > 2) || (num == 0 && EC_GROUP_have_precompute_mult(group))) | ||
| 334 | { | ||
| 335 | ret = ec_wNAF_mul(group, r, scalar, num, points, scalars, ctx); | ||
| 336 | goto err; | ||
| 337 | } | ||
| 338 | |||
| 339 | if ((p = EC_POINT_new(group)) == NULL) goto err; | ||
| 340 | |||
| 341 | if (!EC_POINT_set_to_infinity(group, r)) goto err; | ||
| 342 | |||
| 343 | if (scalar) | ||
| 344 | { | ||
| 345 | if (!ec_GF2m_montgomery_point_multiply(group, p, scalar, group->generator, ctx)) goto err; | ||
| 346 | if (BN_is_negative(scalar)) | ||
| 347 | if (!group->meth->invert(group, p, ctx)) goto err; | ||
| 348 | if (!group->meth->add(group, r, r, p, ctx)) goto err; | ||
| 349 | } | ||
| 350 | |||
| 351 | for (i = 0; i < num; i++) | ||
| 352 | { | ||
| 353 | if (!ec_GF2m_montgomery_point_multiply(group, p, scalars[i], points[i], ctx)) goto err; | ||
| 354 | if (BN_is_negative(scalars[i])) | ||
| 355 | if (!group->meth->invert(group, p, ctx)) goto err; | ||
| 356 | if (!group->meth->add(group, r, r, p, ctx)) goto err; | ||
| 357 | } | ||
| 358 | |||
| 359 | ret = 1; | ||
| 360 | |||
| 361 | err: | ||
| 362 | if (p) EC_POINT_free(p); | ||
| 363 | if (new_ctx != NULL) | ||
| 364 | BN_CTX_free(new_ctx); | ||
| 365 | return ret; | ||
| 366 | } | ||
| 367 | |||
| 368 | |||
| 369 | /* Precomputation for point multiplication: fall back to wNAF methods | ||
| 370 | * because ec_GF2m_simple_mul() uses ec_wNAF_mul() if appropriate */ | ||
| 371 | |||
| 372 | int ec_GF2m_precompute_mult(EC_GROUP *group, BN_CTX *ctx) | ||
| 373 | { | ||
| 374 | return ec_wNAF_precompute_mult(group, ctx); | ||
| 375 | } | ||
| 376 | |||
| 377 | int ec_GF2m_have_precompute_mult(const EC_GROUP *group) | ||
| 378 | { | ||
| 379 | return ec_wNAF_have_precompute_mult(group); | ||
| 380 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec2_smpl.c b/src/lib/libssl/src/crypto/ec/ec2_smpl.c new file mode 100644 index 0000000000..5cd1eac41f --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec2_smpl.c | |||
| @@ -0,0 +1,971 @@ | |||
| 1 | /* crypto/ec/ec2_smpl.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The software is originally written by Sheueling Chang Shantz and | ||
| 13 | * Douglas Stebila of Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * openssl-core@openssl.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | #include <openssl/err.h> | ||
| 71 | |||
| 72 | #include "ec_lcl.h" | ||
| 73 | |||
| 74 | |||
| 75 | const EC_METHOD *EC_GF2m_simple_method(void) | ||
| 76 | { | ||
| 77 | static const EC_METHOD ret = { | ||
| 78 | NID_X9_62_characteristic_two_field, | ||
| 79 | ec_GF2m_simple_group_init, | ||
| 80 | ec_GF2m_simple_group_finish, | ||
| 81 | ec_GF2m_simple_group_clear_finish, | ||
| 82 | ec_GF2m_simple_group_copy, | ||
| 83 | ec_GF2m_simple_group_set_curve, | ||
| 84 | ec_GF2m_simple_group_get_curve, | ||
| 85 | ec_GF2m_simple_group_get_degree, | ||
| 86 | ec_GF2m_simple_group_check_discriminant, | ||
| 87 | ec_GF2m_simple_point_init, | ||
| 88 | ec_GF2m_simple_point_finish, | ||
| 89 | ec_GF2m_simple_point_clear_finish, | ||
| 90 | ec_GF2m_simple_point_copy, | ||
| 91 | ec_GF2m_simple_point_set_to_infinity, | ||
| 92 | 0 /* set_Jprojective_coordinates_GFp */, | ||
| 93 | 0 /* get_Jprojective_coordinates_GFp */, | ||
| 94 | ec_GF2m_simple_point_set_affine_coordinates, | ||
| 95 | ec_GF2m_simple_point_get_affine_coordinates, | ||
| 96 | ec_GF2m_simple_set_compressed_coordinates, | ||
| 97 | ec_GF2m_simple_point2oct, | ||
| 98 | ec_GF2m_simple_oct2point, | ||
| 99 | ec_GF2m_simple_add, | ||
| 100 | ec_GF2m_simple_dbl, | ||
| 101 | ec_GF2m_simple_invert, | ||
| 102 | ec_GF2m_simple_is_at_infinity, | ||
| 103 | ec_GF2m_simple_is_on_curve, | ||
| 104 | ec_GF2m_simple_cmp, | ||
| 105 | ec_GF2m_simple_make_affine, | ||
| 106 | ec_GF2m_simple_points_make_affine, | ||
| 107 | |||
| 108 | /* the following three method functions are defined in ec2_mult.c */ | ||
| 109 | ec_GF2m_simple_mul, | ||
| 110 | ec_GF2m_precompute_mult, | ||
| 111 | ec_GF2m_have_precompute_mult, | ||
| 112 | |||
| 113 | ec_GF2m_simple_field_mul, | ||
| 114 | ec_GF2m_simple_field_sqr, | ||
| 115 | ec_GF2m_simple_field_div, | ||
| 116 | 0 /* field_encode */, | ||
| 117 | 0 /* field_decode */, | ||
| 118 | 0 /* field_set_to_one */ }; | ||
| 119 | |||
| 120 | return &ret; | ||
| 121 | } | ||
| 122 | |||
| 123 | |||
| 124 | /* Initialize a GF(2^m)-based EC_GROUP structure. | ||
| 125 | * Note that all other members are handled by EC_GROUP_new. | ||
| 126 | */ | ||
| 127 | int ec_GF2m_simple_group_init(EC_GROUP *group) | ||
| 128 | { | ||
| 129 | BN_init(&group->field); | ||
| 130 | BN_init(&group->a); | ||
| 131 | BN_init(&group->b); | ||
| 132 | return 1; | ||
| 133 | } | ||
| 134 | |||
| 135 | |||
| 136 | /* Free a GF(2^m)-based EC_GROUP structure. | ||
| 137 | * Note that all other members are handled by EC_GROUP_free. | ||
| 138 | */ | ||
| 139 | void ec_GF2m_simple_group_finish(EC_GROUP *group) | ||
| 140 | { | ||
| 141 | BN_free(&group->field); | ||
| 142 | BN_free(&group->a); | ||
| 143 | BN_free(&group->b); | ||
| 144 | } | ||
| 145 | |||
| 146 | |||
| 147 | /* Clear and free a GF(2^m)-based EC_GROUP structure. | ||
| 148 | * Note that all other members are handled by EC_GROUP_clear_free. | ||
| 149 | */ | ||
| 150 | void ec_GF2m_simple_group_clear_finish(EC_GROUP *group) | ||
| 151 | { | ||
| 152 | BN_clear_free(&group->field); | ||
| 153 | BN_clear_free(&group->a); | ||
| 154 | BN_clear_free(&group->b); | ||
| 155 | group->poly[0] = 0; | ||
| 156 | group->poly[1] = 0; | ||
| 157 | group->poly[2] = 0; | ||
| 158 | group->poly[3] = 0; | ||
| 159 | group->poly[4] = 0; | ||
| 160 | } | ||
| 161 | |||
| 162 | |||
| 163 | /* Copy a GF(2^m)-based EC_GROUP structure. | ||
| 164 | * Note that all other members are handled by EC_GROUP_copy. | ||
| 165 | */ | ||
| 166 | int ec_GF2m_simple_group_copy(EC_GROUP *dest, const EC_GROUP *src) | ||
| 167 | { | ||
| 168 | int i; | ||
| 169 | if (!BN_copy(&dest->field, &src->field)) return 0; | ||
| 170 | if (!BN_copy(&dest->a, &src->a)) return 0; | ||
| 171 | if (!BN_copy(&dest->b, &src->b)) return 0; | ||
| 172 | dest->poly[0] = src->poly[0]; | ||
| 173 | dest->poly[1] = src->poly[1]; | ||
| 174 | dest->poly[2] = src->poly[2]; | ||
| 175 | dest->poly[3] = src->poly[3]; | ||
| 176 | dest->poly[4] = src->poly[4]; | ||
| 177 | bn_wexpand(&dest->a, (int)(dest->poly[0] + BN_BITS2 - 1) / BN_BITS2); | ||
| 178 | bn_wexpand(&dest->b, (int)(dest->poly[0] + BN_BITS2 - 1) / BN_BITS2); | ||
| 179 | for (i = dest->a.top; i < dest->a.dmax; i++) dest->a.d[i] = 0; | ||
| 180 | for (i = dest->b.top; i < dest->b.dmax; i++) dest->b.d[i] = 0; | ||
| 181 | return 1; | ||
| 182 | } | ||
| 183 | |||
| 184 | |||
| 185 | /* Set the curve parameters of an EC_GROUP structure. */ | ||
| 186 | int ec_GF2m_simple_group_set_curve(EC_GROUP *group, | ||
| 187 | const BIGNUM *p, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx) | ||
| 188 | { | ||
| 189 | int ret = 0, i; | ||
| 190 | |||
| 191 | /* group->field */ | ||
| 192 | if (!BN_copy(&group->field, p)) goto err; | ||
| 193 | i = BN_GF2m_poly2arr(&group->field, group->poly, 5); | ||
| 194 | if ((i != 5) && (i != 3)) | ||
| 195 | { | ||
| 196 | ECerr(EC_F_EC_GF2M_SIMPLE_GROUP_SET_CURVE, EC_R_UNSUPPORTED_FIELD); | ||
| 197 | goto err; | ||
| 198 | } | ||
| 199 | |||
| 200 | /* group->a */ | ||
| 201 | if (!BN_GF2m_mod_arr(&group->a, a, group->poly)) goto err; | ||
| 202 | bn_wexpand(&group->a, (int)(group->poly[0] + BN_BITS2 - 1) / BN_BITS2); | ||
| 203 | for (i = group->a.top; i < group->a.dmax; i++) group->a.d[i] = 0; | ||
| 204 | |||
| 205 | /* group->b */ | ||
| 206 | if (!BN_GF2m_mod_arr(&group->b, b, group->poly)) goto err; | ||
| 207 | bn_wexpand(&group->b, (int)(group->poly[0] + BN_BITS2 - 1) / BN_BITS2); | ||
| 208 | for (i = group->b.top; i < group->b.dmax; i++) group->b.d[i] = 0; | ||
| 209 | |||
| 210 | ret = 1; | ||
| 211 | err: | ||
| 212 | return ret; | ||
| 213 | } | ||
| 214 | |||
| 215 | |||
| 216 | /* Get the curve parameters of an EC_GROUP structure. | ||
| 217 | * If p, a, or b are NULL then there values will not be set but the method will return with success. | ||
| 218 | */ | ||
| 219 | int ec_GF2m_simple_group_get_curve(const EC_GROUP *group, BIGNUM *p, BIGNUM *a, BIGNUM *b, BN_CTX *ctx) | ||
| 220 | { | ||
| 221 | int ret = 0; | ||
| 222 | |||
| 223 | if (p != NULL) | ||
| 224 | { | ||
| 225 | if (!BN_copy(p, &group->field)) return 0; | ||
| 226 | } | ||
| 227 | |||
| 228 | if (a != NULL) | ||
| 229 | { | ||
| 230 | if (!BN_copy(a, &group->a)) goto err; | ||
| 231 | } | ||
| 232 | |||
| 233 | if (b != NULL) | ||
| 234 | { | ||
| 235 | if (!BN_copy(b, &group->b)) goto err; | ||
| 236 | } | ||
| 237 | |||
| 238 | ret = 1; | ||
| 239 | |||
| 240 | err: | ||
| 241 | return ret; | ||
| 242 | } | ||
| 243 | |||
| 244 | |||
| 245 | /* Gets the degree of the field. For a curve over GF(2^m) this is the value m. */ | ||
| 246 | int ec_GF2m_simple_group_get_degree(const EC_GROUP *group) | ||
| 247 | { | ||
| 248 | return BN_num_bits(&group->field)-1; | ||
| 249 | } | ||
| 250 | |||
| 251 | |||
| 252 | /* Checks the discriminant of the curve. | ||
| 253 | * y^2 + x*y = x^3 + a*x^2 + b is an elliptic curve <=> b != 0 (mod p) | ||
| 254 | */ | ||
| 255 | int ec_GF2m_simple_group_check_discriminant(const EC_GROUP *group, BN_CTX *ctx) | ||
| 256 | { | ||
| 257 | int ret = 0; | ||
| 258 | BIGNUM *b; | ||
| 259 | BN_CTX *new_ctx = NULL; | ||
| 260 | |||
| 261 | if (ctx == NULL) | ||
| 262 | { | ||
| 263 | ctx = new_ctx = BN_CTX_new(); | ||
| 264 | if (ctx == NULL) | ||
| 265 | { | ||
| 266 | ECerr(EC_F_EC_GF2M_SIMPLE_GROUP_CHECK_DISCRIMINANT, ERR_R_MALLOC_FAILURE); | ||
| 267 | goto err; | ||
| 268 | } | ||
| 269 | } | ||
| 270 | BN_CTX_start(ctx); | ||
| 271 | b = BN_CTX_get(ctx); | ||
| 272 | if (b == NULL) goto err; | ||
| 273 | |||
| 274 | if (!BN_GF2m_mod_arr(b, &group->b, group->poly)) goto err; | ||
| 275 | |||
| 276 | /* check the discriminant: | ||
| 277 | * y^2 + x*y = x^3 + a*x^2 + b is an elliptic curve <=> b != 0 (mod p) | ||
| 278 | */ | ||
| 279 | if (BN_is_zero(b)) goto err; | ||
| 280 | |||
| 281 | ret = 1; | ||
| 282 | |||
| 283 | err: | ||
| 284 | if (ctx != NULL) | ||
| 285 | BN_CTX_end(ctx); | ||
| 286 | if (new_ctx != NULL) | ||
| 287 | BN_CTX_free(new_ctx); | ||
| 288 | return ret; | ||
| 289 | } | ||
| 290 | |||
| 291 | |||
| 292 | /* Initializes an EC_POINT. */ | ||
| 293 | int ec_GF2m_simple_point_init(EC_POINT *point) | ||
| 294 | { | ||
| 295 | BN_init(&point->X); | ||
| 296 | BN_init(&point->Y); | ||
| 297 | BN_init(&point->Z); | ||
| 298 | return 1; | ||
| 299 | } | ||
| 300 | |||
| 301 | |||
| 302 | /* Frees an EC_POINT. */ | ||
| 303 | void ec_GF2m_simple_point_finish(EC_POINT *point) | ||
| 304 | { | ||
| 305 | BN_free(&point->X); | ||
| 306 | BN_free(&point->Y); | ||
| 307 | BN_free(&point->Z); | ||
| 308 | } | ||
| 309 | |||
| 310 | |||
| 311 | /* Clears and frees an EC_POINT. */ | ||
| 312 | void ec_GF2m_simple_point_clear_finish(EC_POINT *point) | ||
| 313 | { | ||
| 314 | BN_clear_free(&point->X); | ||
| 315 | BN_clear_free(&point->Y); | ||
| 316 | BN_clear_free(&point->Z); | ||
| 317 | point->Z_is_one = 0; | ||
| 318 | } | ||
| 319 | |||
| 320 | |||
| 321 | /* Copy the contents of one EC_POINT into another. Assumes dest is initialized. */ | ||
| 322 | int ec_GF2m_simple_point_copy(EC_POINT *dest, const EC_POINT *src) | ||
| 323 | { | ||
| 324 | if (!BN_copy(&dest->X, &src->X)) return 0; | ||
| 325 | if (!BN_copy(&dest->Y, &src->Y)) return 0; | ||
| 326 | if (!BN_copy(&dest->Z, &src->Z)) return 0; | ||
| 327 | dest->Z_is_one = src->Z_is_one; | ||
| 328 | |||
| 329 | return 1; | ||
| 330 | } | ||
| 331 | |||
| 332 | |||
| 333 | /* Set an EC_POINT to the point at infinity. | ||
| 334 | * A point at infinity is represented by having Z=0. | ||
| 335 | */ | ||
| 336 | int ec_GF2m_simple_point_set_to_infinity(const EC_GROUP *group, EC_POINT *point) | ||
| 337 | { | ||
| 338 | point->Z_is_one = 0; | ||
| 339 | BN_zero(&point->Z); | ||
| 340 | return 1; | ||
| 341 | } | ||
| 342 | |||
| 343 | |||
| 344 | /* Set the coordinates of an EC_POINT using affine coordinates. | ||
| 345 | * Note that the simple implementation only uses affine coordinates. | ||
| 346 | */ | ||
| 347 | int ec_GF2m_simple_point_set_affine_coordinates(const EC_GROUP *group, EC_POINT *point, | ||
| 348 | const BIGNUM *x, const BIGNUM *y, BN_CTX *ctx) | ||
| 349 | { | ||
| 350 | int ret = 0; | ||
| 351 | if (x == NULL || y == NULL) | ||
| 352 | { | ||
| 353 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT_SET_AFFINE_COORDINATES, ERR_R_PASSED_NULL_PARAMETER); | ||
| 354 | return 0; | ||
| 355 | } | ||
| 356 | |||
| 357 | if (!BN_copy(&point->X, x)) goto err; | ||
| 358 | BN_set_negative(&point->X, 0); | ||
| 359 | if (!BN_copy(&point->Y, y)) goto err; | ||
| 360 | BN_set_negative(&point->Y, 0); | ||
| 361 | if (!BN_copy(&point->Z, BN_value_one())) goto err; | ||
| 362 | BN_set_negative(&point->Z, 0); | ||
| 363 | point->Z_is_one = 1; | ||
| 364 | ret = 1; | ||
| 365 | |||
| 366 | err: | ||
| 367 | return ret; | ||
| 368 | } | ||
| 369 | |||
| 370 | |||
| 371 | /* Gets the affine coordinates of an EC_POINT. | ||
| 372 | * Note that the simple implementation only uses affine coordinates. | ||
| 373 | */ | ||
| 374 | int ec_GF2m_simple_point_get_affine_coordinates(const EC_GROUP *group, const EC_POINT *point, | ||
| 375 | BIGNUM *x, BIGNUM *y, BN_CTX *ctx) | ||
| 376 | { | ||
| 377 | int ret = 0; | ||
| 378 | |||
| 379 | if (EC_POINT_is_at_infinity(group, point)) | ||
| 380 | { | ||
| 381 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT_GET_AFFINE_COORDINATES, EC_R_POINT_AT_INFINITY); | ||
| 382 | return 0; | ||
| 383 | } | ||
| 384 | |||
| 385 | if (BN_cmp(&point->Z, BN_value_one())) | ||
| 386 | { | ||
| 387 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT_GET_AFFINE_COORDINATES, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED); | ||
| 388 | return 0; | ||
| 389 | } | ||
| 390 | if (x != NULL) | ||
| 391 | { | ||
| 392 | if (!BN_copy(x, &point->X)) goto err; | ||
| 393 | BN_set_negative(x, 0); | ||
| 394 | } | ||
| 395 | if (y != NULL) | ||
| 396 | { | ||
| 397 | if (!BN_copy(y, &point->Y)) goto err; | ||
| 398 | BN_set_negative(y, 0); | ||
| 399 | } | ||
| 400 | ret = 1; | ||
| 401 | |||
| 402 | err: | ||
| 403 | return ret; | ||
| 404 | } | ||
| 405 | |||
| 406 | |||
| 407 | /* Include patented algorithms. */ | ||
| 408 | #include "ec2_smpt.c" | ||
| 409 | |||
| 410 | |||
| 411 | /* Converts an EC_POINT to an octet string. | ||
| 412 | * If buf is NULL, the encoded length will be returned. | ||
| 413 | * If the length len of buf is smaller than required an error will be returned. | ||
| 414 | * | ||
| 415 | * The point compression section of this function is patented by Certicom Corp. | ||
| 416 | * under US Patent 6,141,420. Point compression is disabled by default and can | ||
| 417 | * be enabled by defining the preprocessor macro OPENSSL_EC_BIN_PT_COMP at | ||
| 418 | * Configure-time. | ||
| 419 | */ | ||
| 420 | size_t ec_GF2m_simple_point2oct(const EC_GROUP *group, const EC_POINT *point, point_conversion_form_t form, | ||
| 421 | unsigned char *buf, size_t len, BN_CTX *ctx) | ||
| 422 | { | ||
| 423 | size_t ret; | ||
| 424 | BN_CTX *new_ctx = NULL; | ||
| 425 | int used_ctx = 0; | ||
| 426 | BIGNUM *x, *y, *yxi; | ||
| 427 | size_t field_len, i, skip; | ||
| 428 | |||
| 429 | #ifndef OPENSSL_EC_BIN_PT_COMP | ||
| 430 | if ((form == POINT_CONVERSION_COMPRESSED) || (form == POINT_CONVERSION_HYBRID)) | ||
| 431 | { | ||
| 432 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, ERR_R_DISABLED); | ||
| 433 | goto err; | ||
| 434 | } | ||
| 435 | #endif | ||
| 436 | |||
| 437 | if ((form != POINT_CONVERSION_COMPRESSED) | ||
| 438 | && (form != POINT_CONVERSION_UNCOMPRESSED) | ||
| 439 | && (form != POINT_CONVERSION_HYBRID)) | ||
| 440 | { | ||
| 441 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, EC_R_INVALID_FORM); | ||
| 442 | goto err; | ||
| 443 | } | ||
| 444 | |||
| 445 | if (EC_POINT_is_at_infinity(group, point)) | ||
| 446 | { | ||
| 447 | /* encodes to a single 0 octet */ | ||
| 448 | if (buf != NULL) | ||
| 449 | { | ||
| 450 | if (len < 1) | ||
| 451 | { | ||
| 452 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, EC_R_BUFFER_TOO_SMALL); | ||
| 453 | return 0; | ||
| 454 | } | ||
| 455 | buf[0] = 0; | ||
| 456 | } | ||
| 457 | return 1; | ||
| 458 | } | ||
| 459 | |||
| 460 | |||
| 461 | /* ret := required output buffer length */ | ||
| 462 | field_len = (EC_GROUP_get_degree(group) + 7) / 8; | ||
| 463 | ret = (form == POINT_CONVERSION_COMPRESSED) ? 1 + field_len : 1 + 2*field_len; | ||
| 464 | |||
| 465 | /* if 'buf' is NULL, just return required length */ | ||
| 466 | if (buf != NULL) | ||
| 467 | { | ||
| 468 | if (len < ret) | ||
| 469 | { | ||
| 470 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, EC_R_BUFFER_TOO_SMALL); | ||
| 471 | goto err; | ||
| 472 | } | ||
| 473 | |||
| 474 | if (ctx == NULL) | ||
| 475 | { | ||
| 476 | ctx = new_ctx = BN_CTX_new(); | ||
| 477 | if (ctx == NULL) | ||
| 478 | return 0; | ||
| 479 | } | ||
| 480 | |||
| 481 | BN_CTX_start(ctx); | ||
| 482 | used_ctx = 1; | ||
| 483 | x = BN_CTX_get(ctx); | ||
| 484 | y = BN_CTX_get(ctx); | ||
| 485 | yxi = BN_CTX_get(ctx); | ||
| 486 | if (yxi == NULL) goto err; | ||
| 487 | |||
| 488 | if (!EC_POINT_get_affine_coordinates_GF2m(group, point, x, y, ctx)) goto err; | ||
| 489 | |||
| 490 | buf[0] = form; | ||
| 491 | #ifdef OPENSSL_EC_BIN_PT_COMP | ||
| 492 | if ((form != POINT_CONVERSION_UNCOMPRESSED) && !BN_is_zero(x)) | ||
| 493 | { | ||
| 494 | if (!group->meth->field_div(group, yxi, y, x, ctx)) goto err; | ||
| 495 | if (BN_is_odd(yxi)) buf[0]++; | ||
| 496 | } | ||
| 497 | #endif | ||
| 498 | |||
| 499 | i = 1; | ||
| 500 | |||
| 501 | skip = field_len - BN_num_bytes(x); | ||
| 502 | if (skip > field_len) | ||
| 503 | { | ||
| 504 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, ERR_R_INTERNAL_ERROR); | ||
| 505 | goto err; | ||
| 506 | } | ||
| 507 | while (skip > 0) | ||
| 508 | { | ||
| 509 | buf[i++] = 0; | ||
| 510 | skip--; | ||
| 511 | } | ||
| 512 | skip = BN_bn2bin(x, buf + i); | ||
| 513 | i += skip; | ||
| 514 | if (i != 1 + field_len) | ||
| 515 | { | ||
| 516 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, ERR_R_INTERNAL_ERROR); | ||
| 517 | goto err; | ||
| 518 | } | ||
| 519 | |||
| 520 | if (form == POINT_CONVERSION_UNCOMPRESSED || form == POINT_CONVERSION_HYBRID) | ||
| 521 | { | ||
| 522 | skip = field_len - BN_num_bytes(y); | ||
| 523 | if (skip > field_len) | ||
| 524 | { | ||
| 525 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, ERR_R_INTERNAL_ERROR); | ||
| 526 | goto err; | ||
| 527 | } | ||
| 528 | while (skip > 0) | ||
| 529 | { | ||
| 530 | buf[i++] = 0; | ||
| 531 | skip--; | ||
| 532 | } | ||
| 533 | skip = BN_bn2bin(y, buf + i); | ||
| 534 | i += skip; | ||
| 535 | } | ||
| 536 | |||
| 537 | if (i != ret) | ||
| 538 | { | ||
| 539 | ECerr(EC_F_EC_GF2M_SIMPLE_POINT2OCT, ERR_R_INTERNAL_ERROR); | ||
| 540 | goto err; | ||
| 541 | } | ||
| 542 | } | ||
| 543 | |||
| 544 | if (used_ctx) | ||
| 545 | BN_CTX_end(ctx); | ||
| 546 | if (new_ctx != NULL) | ||
| 547 | BN_CTX_free(new_ctx); | ||
| 548 | return ret; | ||
| 549 | |||
| 550 | err: | ||
| 551 | if (used_ctx) | ||
| 552 | BN_CTX_end(ctx); | ||
| 553 | if (new_ctx != NULL) | ||
| 554 | BN_CTX_free(new_ctx); | ||
| 555 | return 0; | ||
| 556 | } | ||
| 557 | |||
| 558 | |||
| 559 | /* Converts an octet string representation to an EC_POINT. | ||
| 560 | * Note that the simple implementation only uses affine coordinates. | ||
| 561 | */ | ||
| 562 | int ec_GF2m_simple_oct2point(const EC_GROUP *group, EC_POINT *point, | ||
| 563 | const unsigned char *buf, size_t len, BN_CTX *ctx) | ||
| 564 | { | ||
| 565 | point_conversion_form_t form; | ||
| 566 | int y_bit; | ||
| 567 | BN_CTX *new_ctx = NULL; | ||
| 568 | BIGNUM *x, *y, *yxi; | ||
| 569 | size_t field_len, enc_len; | ||
| 570 | int ret = 0; | ||
| 571 | |||
| 572 | if (len == 0) | ||
| 573 | { | ||
| 574 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_BUFFER_TOO_SMALL); | ||
| 575 | return 0; | ||
| 576 | } | ||
| 577 | form = buf[0]; | ||
| 578 | y_bit = form & 1; | ||
| 579 | form = form & ~1U; | ||
| 580 | if ((form != 0) && (form != POINT_CONVERSION_COMPRESSED) | ||
| 581 | && (form != POINT_CONVERSION_UNCOMPRESSED) | ||
| 582 | && (form != POINT_CONVERSION_HYBRID)) | ||
| 583 | { | ||
| 584 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 585 | return 0; | ||
| 586 | } | ||
| 587 | if ((form == 0 || form == POINT_CONVERSION_UNCOMPRESSED) && y_bit) | ||
| 588 | { | ||
| 589 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 590 | return 0; | ||
| 591 | } | ||
| 592 | |||
| 593 | if (form == 0) | ||
| 594 | { | ||
| 595 | if (len != 1) | ||
| 596 | { | ||
| 597 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 598 | return 0; | ||
| 599 | } | ||
| 600 | |||
| 601 | return EC_POINT_set_to_infinity(group, point); | ||
| 602 | } | ||
| 603 | |||
| 604 | field_len = (EC_GROUP_get_degree(group) + 7) / 8; | ||
| 605 | enc_len = (form == POINT_CONVERSION_COMPRESSED) ? 1 + field_len : 1 + 2*field_len; | ||
| 606 | |||
| 607 | if (len != enc_len) | ||
| 608 | { | ||
| 609 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 610 | return 0; | ||
| 611 | } | ||
| 612 | |||
| 613 | if (ctx == NULL) | ||
| 614 | { | ||
| 615 | ctx = new_ctx = BN_CTX_new(); | ||
| 616 | if (ctx == NULL) | ||
| 617 | return 0; | ||
| 618 | } | ||
| 619 | |||
| 620 | BN_CTX_start(ctx); | ||
| 621 | x = BN_CTX_get(ctx); | ||
| 622 | y = BN_CTX_get(ctx); | ||
| 623 | yxi = BN_CTX_get(ctx); | ||
| 624 | if (yxi == NULL) goto err; | ||
| 625 | |||
| 626 | if (!BN_bin2bn(buf + 1, field_len, x)) goto err; | ||
| 627 | if (BN_ucmp(x, &group->field) >= 0) | ||
| 628 | { | ||
| 629 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 630 | goto err; | ||
| 631 | } | ||
| 632 | |||
| 633 | if (form == POINT_CONVERSION_COMPRESSED) | ||
| 634 | { | ||
| 635 | if (!EC_POINT_set_compressed_coordinates_GF2m(group, point, x, y_bit, ctx)) goto err; | ||
| 636 | } | ||
| 637 | else | ||
| 638 | { | ||
| 639 | if (!BN_bin2bn(buf + 1 + field_len, field_len, y)) goto err; | ||
| 640 | if (BN_ucmp(y, &group->field) >= 0) | ||
| 641 | { | ||
| 642 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 643 | goto err; | ||
| 644 | } | ||
| 645 | if (form == POINT_CONVERSION_HYBRID) | ||
| 646 | { | ||
| 647 | if (!group->meth->field_div(group, yxi, y, x, ctx)) goto err; | ||
| 648 | if (y_bit != BN_is_odd(yxi)) | ||
| 649 | { | ||
| 650 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_INVALID_ENCODING); | ||
| 651 | goto err; | ||
| 652 | } | ||
| 653 | } | ||
| 654 | |||
| 655 | if (!EC_POINT_set_affine_coordinates_GF2m(group, point, x, y, ctx)) goto err; | ||
| 656 | } | ||
| 657 | |||
| 658 | if (!EC_POINT_is_on_curve(group, point, ctx)) /* test required by X9.62 */ | ||
| 659 | { | ||
| 660 | ECerr(EC_F_EC_GF2M_SIMPLE_OCT2POINT, EC_R_POINT_IS_NOT_ON_CURVE); | ||
| 661 | goto err; | ||
| 662 | } | ||
| 663 | |||
| 664 | ret = 1; | ||
| 665 | |||
| 666 | err: | ||
| 667 | BN_CTX_end(ctx); | ||
| 668 | if (new_ctx != NULL) | ||
| 669 | BN_CTX_free(new_ctx); | ||
| 670 | return ret; | ||
| 671 | } | ||
| 672 | |||
| 673 | |||
| 674 | /* Computes a + b and stores the result in r. r could be a or b, a could be b. | ||
| 675 | * Uses algorithm A.10.2 of IEEE P1363. | ||
| 676 | */ | ||
| 677 | int ec_GF2m_simple_add(const EC_GROUP *group, EC_POINT *r, const EC_POINT *a, const EC_POINT *b, BN_CTX *ctx) | ||
| 678 | { | ||
| 679 | BN_CTX *new_ctx = NULL; | ||
| 680 | BIGNUM *x0, *y0, *x1, *y1, *x2, *y2, *s, *t; | ||
| 681 | int ret = 0; | ||
| 682 | |||
| 683 | if (EC_POINT_is_at_infinity(group, a)) | ||
| 684 | { | ||
| 685 | if (!EC_POINT_copy(r, b)) return 0; | ||
| 686 | return 1; | ||
| 687 | } | ||
| 688 | |||
| 689 | if (EC_POINT_is_at_infinity(group, b)) | ||
| 690 | { | ||
| 691 | if (!EC_POINT_copy(r, a)) return 0; | ||
| 692 | return 1; | ||
| 693 | } | ||
| 694 | |||
| 695 | if (ctx == NULL) | ||
| 696 | { | ||
| 697 | ctx = new_ctx = BN_CTX_new(); | ||
| 698 | if (ctx == NULL) | ||
| 699 | return 0; | ||
| 700 | } | ||
| 701 | |||
| 702 | BN_CTX_start(ctx); | ||
| 703 | x0 = BN_CTX_get(ctx); | ||
| 704 | y0 = BN_CTX_get(ctx); | ||
| 705 | x1 = BN_CTX_get(ctx); | ||
| 706 | y1 = BN_CTX_get(ctx); | ||
| 707 | x2 = BN_CTX_get(ctx); | ||
| 708 | y2 = BN_CTX_get(ctx); | ||
| 709 | s = BN_CTX_get(ctx); | ||
| 710 | t = BN_CTX_get(ctx); | ||
| 711 | if (t == NULL) goto err; | ||
| 712 | |||
| 713 | if (a->Z_is_one) | ||
| 714 | { | ||
| 715 | if (!BN_copy(x0, &a->X)) goto err; | ||
| 716 | if (!BN_copy(y0, &a->Y)) goto err; | ||
| 717 | } | ||
| 718 | else | ||
| 719 | { | ||
| 720 | if (!EC_POINT_get_affine_coordinates_GF2m(group, a, x0, y0, ctx)) goto err; | ||
| 721 | } | ||
| 722 | if (b->Z_is_one) | ||
| 723 | { | ||
| 724 | if (!BN_copy(x1, &b->X)) goto err; | ||
| 725 | if (!BN_copy(y1, &b->Y)) goto err; | ||
| 726 | } | ||
| 727 | else | ||
| 728 | { | ||
| 729 | if (!EC_POINT_get_affine_coordinates_GF2m(group, b, x1, y1, ctx)) goto err; | ||
| 730 | } | ||
| 731 | |||
| 732 | |||
| 733 | if (BN_GF2m_cmp(x0, x1)) | ||
| 734 | { | ||
| 735 | if (!BN_GF2m_add(t, x0, x1)) goto err; | ||
| 736 | if (!BN_GF2m_add(s, y0, y1)) goto err; | ||
| 737 | if (!group->meth->field_div(group, s, s, t, ctx)) goto err; | ||
| 738 | if (!group->meth->field_sqr(group, x2, s, ctx)) goto err; | ||
| 739 | if (!BN_GF2m_add(x2, x2, &group->a)) goto err; | ||
| 740 | if (!BN_GF2m_add(x2, x2, s)) goto err; | ||
| 741 | if (!BN_GF2m_add(x2, x2, t)) goto err; | ||
| 742 | } | ||
| 743 | else | ||
| 744 | { | ||
| 745 | if (BN_GF2m_cmp(y0, y1) || BN_is_zero(x1)) | ||
| 746 | { | ||
| 747 | if (!EC_POINT_set_to_infinity(group, r)) goto err; | ||
| 748 | ret = 1; | ||
| 749 | goto err; | ||
| 750 | } | ||
| 751 | if (!group->meth->field_div(group, s, y1, x1, ctx)) goto err; | ||
| 752 | if (!BN_GF2m_add(s, s, x1)) goto err; | ||
| 753 | |||
| 754 | if (!group->meth->field_sqr(group, x2, s, ctx)) goto err; | ||
| 755 | if (!BN_GF2m_add(x2, x2, s)) goto err; | ||
| 756 | if (!BN_GF2m_add(x2, x2, &group->a)) goto err; | ||
| 757 | } | ||
| 758 | |||
| 759 | if (!BN_GF2m_add(y2, x1, x2)) goto err; | ||
| 760 | if (!group->meth->field_mul(group, y2, y2, s, ctx)) goto err; | ||
| 761 | if (!BN_GF2m_add(y2, y2, x2)) goto err; | ||
| 762 | if (!BN_GF2m_add(y2, y2, y1)) goto err; | ||
| 763 | |||
| 764 | if (!EC_POINT_set_affine_coordinates_GF2m(group, r, x2, y2, ctx)) goto err; | ||
| 765 | |||
| 766 | ret = 1; | ||
| 767 | |||
| 768 | err: | ||
| 769 | BN_CTX_end(ctx); | ||
| 770 | if (new_ctx != NULL) | ||
| 771 | BN_CTX_free(new_ctx); | ||
| 772 | return ret; | ||
| 773 | } | ||
| 774 | |||
| 775 | |||
| 776 | /* Computes 2 * a and stores the result in r. r could be a. | ||
| 777 | * Uses algorithm A.10.2 of IEEE P1363. | ||
| 778 | */ | ||
| 779 | int ec_GF2m_simple_dbl(const EC_GROUP *group, EC_POINT *r, const EC_POINT *a, BN_CTX *ctx) | ||
| 780 | { | ||
| 781 | return ec_GF2m_simple_add(group, r, a, a, ctx); | ||
| 782 | } | ||
| 783 | |||
| 784 | |||
| 785 | int ec_GF2m_simple_invert(const EC_GROUP *group, EC_POINT *point, BN_CTX *ctx) | ||
| 786 | { | ||
| 787 | if (EC_POINT_is_at_infinity(group, point) || BN_is_zero(&point->Y)) | ||
| 788 | /* point is its own inverse */ | ||
| 789 | return 1; | ||
| 790 | |||
| 791 | if (!EC_POINT_make_affine(group, point, ctx)) return 0; | ||
| 792 | return BN_GF2m_add(&point->Y, &point->X, &point->Y); | ||
| 793 | } | ||
| 794 | |||
| 795 | |||
| 796 | /* Indicates whether the given point is the point at infinity. */ | ||
| 797 | int ec_GF2m_simple_is_at_infinity(const EC_GROUP *group, const EC_POINT *point) | ||
| 798 | { | ||
| 799 | return BN_is_zero(&point->Z); | ||
| 800 | } | ||
| 801 | |||
| 802 | |||
| 803 | /* Determines whether the given EC_POINT is an actual point on the curve defined | ||
| 804 | * in the EC_GROUP. A point is valid if it satisfies the Weierstrass equation: | ||
| 805 | * y^2 + x*y = x^3 + a*x^2 + b. | ||
| 806 | */ | ||
| 807 | int ec_GF2m_simple_is_on_curve(const EC_GROUP *group, const EC_POINT *point, BN_CTX *ctx) | ||
| 808 | { | ||
| 809 | int ret = -1; | ||
| 810 | BN_CTX *new_ctx = NULL; | ||
| 811 | BIGNUM *lh, *y2; | ||
| 812 | int (*field_mul)(const EC_GROUP *, BIGNUM *, const BIGNUM *, const BIGNUM *, BN_CTX *); | ||
| 813 | int (*field_sqr)(const EC_GROUP *, BIGNUM *, const BIGNUM *, BN_CTX *); | ||
| 814 | |||
| 815 | if (EC_POINT_is_at_infinity(group, point)) | ||
| 816 | return 1; | ||
| 817 | |||
| 818 | field_mul = group->meth->field_mul; | ||
| 819 | field_sqr = group->meth->field_sqr; | ||
| 820 | |||
| 821 | /* only support affine coordinates */ | ||
| 822 | if (!point->Z_is_one) goto err; | ||
| 823 | |||
| 824 | if (ctx == NULL) | ||
| 825 | { | ||
| 826 | ctx = new_ctx = BN_CTX_new(); | ||
| 827 | if (ctx == NULL) | ||
| 828 | return -1; | ||
| 829 | } | ||
| 830 | |||
| 831 | BN_CTX_start(ctx); | ||
| 832 | y2 = BN_CTX_get(ctx); | ||
| 833 | lh = BN_CTX_get(ctx); | ||
| 834 | if (lh == NULL) goto err; | ||
| 835 | |||
| 836 | /* We have a curve defined by a Weierstrass equation | ||
| 837 | * y^2 + x*y = x^3 + a*x^2 + b. | ||
| 838 | * <=> x^3 + a*x^2 + x*y + b + y^2 = 0 | ||
| 839 | * <=> ((x + a) * x + y ) * x + b + y^2 = 0 | ||
| 840 | */ | ||
| 841 | if (!BN_GF2m_add(lh, &point->X, &group->a)) goto err; | ||
| 842 | if (!field_mul(group, lh, lh, &point->X, ctx)) goto err; | ||
| 843 | if (!BN_GF2m_add(lh, lh, &point->Y)) goto err; | ||
| 844 | if (!field_mul(group, lh, lh, &point->X, ctx)) goto err; | ||
| 845 | if (!BN_GF2m_add(lh, lh, &group->b)) goto err; | ||
| 846 | if (!field_sqr(group, y2, &point->Y, ctx)) goto err; | ||
| 847 | if (!BN_GF2m_add(lh, lh, y2)) goto err; | ||
| 848 | ret = BN_is_zero(lh); | ||
| 849 | err: | ||
| 850 | if (ctx) BN_CTX_end(ctx); | ||
| 851 | if (new_ctx) BN_CTX_free(new_ctx); | ||
| 852 | return ret; | ||
| 853 | } | ||
| 854 | |||
| 855 | |||
| 856 | /* Indicates whether two points are equal. | ||
| 857 | * Return values: | ||
| 858 | * -1 error | ||
| 859 | * 0 equal (in affine coordinates) | ||
| 860 | * 1 not equal | ||
| 861 | */ | ||
| 862 | int ec_GF2m_simple_cmp(const EC_GROUP *group, const EC_POINT *a, const EC_POINT *b, BN_CTX *ctx) | ||
| 863 | { | ||
| 864 | BIGNUM *aX, *aY, *bX, *bY; | ||
| 865 | BN_CTX *new_ctx = NULL; | ||
| 866 | int ret = -1; | ||
| 867 | |||
| 868 | if (EC_POINT_is_at_infinity(group, a)) | ||
| 869 | { | ||
| 870 | return EC_POINT_is_at_infinity(group, b) ? 0 : 1; | ||
| 871 | } | ||
| 872 | |||
| 873 | if (a->Z_is_one && b->Z_is_one) | ||
| 874 | { | ||
| 875 | return ((BN_cmp(&a->X, &b->X) == 0) && BN_cmp(&a->Y, &b->Y) == 0) ? 0 : 1; | ||
| 876 | } | ||
| 877 | |||
| 878 | if (ctx == NULL) | ||
| 879 | { | ||
| 880 | ctx = new_ctx = BN_CTX_new(); | ||
| 881 | if (ctx == NULL) | ||
| 882 | return -1; | ||
| 883 | } | ||
| 884 | |||
| 885 | BN_CTX_start(ctx); | ||
| 886 | aX = BN_CTX_get(ctx); | ||
| 887 | aY = BN_CTX_get(ctx); | ||
| 888 | bX = BN_CTX_get(ctx); | ||
| 889 | bY = BN_CTX_get(ctx); | ||
| 890 | if (bY == NULL) goto err; | ||
| 891 | |||
| 892 | if (!EC_POINT_get_affine_coordinates_GF2m(group, a, aX, aY, ctx)) goto err; | ||
| 893 | if (!EC_POINT_get_affine_coordinates_GF2m(group, b, bX, bY, ctx)) goto err; | ||
| 894 | ret = ((BN_cmp(aX, bX) == 0) && BN_cmp(aY, bY) == 0) ? 0 : 1; | ||
| 895 | |||
| 896 | err: | ||
| 897 | if (ctx) BN_CTX_end(ctx); | ||
| 898 | if (new_ctx) BN_CTX_free(new_ctx); | ||
| 899 | return ret; | ||
| 900 | } | ||
| 901 | |||
| 902 | |||
| 903 | /* Forces the given EC_POINT to internally use affine coordinates. */ | ||
| 904 | int ec_GF2m_simple_make_affine(const EC_GROUP *group, EC_POINT *point, BN_CTX *ctx) | ||
| 905 | { | ||
| 906 | BN_CTX *new_ctx = NULL; | ||
| 907 | BIGNUM *x, *y; | ||
| 908 | int ret = 0; | ||
| 909 | |||
| 910 | if (point->Z_is_one || EC_POINT_is_at_infinity(group, point)) | ||
| 911 | return 1; | ||
| 912 | |||
| 913 | if (ctx == NULL) | ||
| 914 | { | ||
| 915 | ctx = new_ctx = BN_CTX_new(); | ||
| 916 | if (ctx == NULL) | ||
| 917 | return 0; | ||
| 918 | } | ||
| 919 | |||
| 920 | BN_CTX_start(ctx); | ||
| 921 | x = BN_CTX_get(ctx); | ||
| 922 | y = BN_CTX_get(ctx); | ||
| 923 | if (y == NULL) goto err; | ||
| 924 | |||
| 925 | if (!EC_POINT_get_affine_coordinates_GF2m(group, point, x, y, ctx)) goto err; | ||
| 926 | if (!BN_copy(&point->X, x)) goto err; | ||
| 927 | if (!BN_copy(&point->Y, y)) goto err; | ||
| 928 | if (!BN_one(&point->Z)) goto err; | ||
| 929 | |||
| 930 | ret = 1; | ||
| 931 | |||
| 932 | err: | ||
| 933 | if (ctx) BN_CTX_end(ctx); | ||
| 934 | if (new_ctx) BN_CTX_free(new_ctx); | ||
| 935 | return ret; | ||
| 936 | } | ||
| 937 | |||
| 938 | |||
| 939 | /* Forces each of the EC_POINTs in the given array to use affine coordinates. */ | ||
| 940 | int ec_GF2m_simple_points_make_affine(const EC_GROUP *group, size_t num, EC_POINT *points[], BN_CTX *ctx) | ||
| 941 | { | ||
| 942 | size_t i; | ||
| 943 | |||
| 944 | for (i = 0; i < num; i++) | ||
| 945 | { | ||
| 946 | if (!group->meth->make_affine(group, points[i], ctx)) return 0; | ||
| 947 | } | ||
| 948 | |||
| 949 | return 1; | ||
| 950 | } | ||
| 951 | |||
| 952 | |||
| 953 | /* Wrapper to simple binary polynomial field multiplication implementation. */ | ||
| 954 | int ec_GF2m_simple_field_mul(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx) | ||
| 955 | { | ||
| 956 | return BN_GF2m_mod_mul_arr(r, a, b, group->poly, ctx); | ||
| 957 | } | ||
| 958 | |||
| 959 | |||
| 960 | /* Wrapper to simple binary polynomial field squaring implementation. */ | ||
| 961 | int ec_GF2m_simple_field_sqr(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, BN_CTX *ctx) | ||
| 962 | { | ||
| 963 | return BN_GF2m_mod_sqr_arr(r, a, group->poly, ctx); | ||
| 964 | } | ||
| 965 | |||
| 966 | |||
| 967 | /* Wrapper to simple binary polynomial field division implementation. */ | ||
| 968 | int ec_GF2m_simple_field_div(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx) | ||
| 969 | { | ||
| 970 | return BN_GF2m_mod_div(r, a, b, &group->field, ctx); | ||
| 971 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec_asn1.c b/src/lib/libssl/src/crypto/ec/ec_asn1.c new file mode 100644 index 0000000000..ae55539859 --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec_asn1.c | |||
| @@ -0,0 +1,1429 @@ | |||
| 1 | /* crypto/ec/ec_asn1.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2000-2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <string.h> | ||
| 60 | #include "ec_lcl.h" | ||
| 61 | #include <openssl/err.h> | ||
| 62 | #include <openssl/asn1t.h> | ||
| 63 | #include <openssl/objects.h> | ||
| 64 | |||
| 65 | |||
| 66 | int EC_GROUP_get_basis_type(const EC_GROUP *group) | ||
| 67 | { | ||
| 68 | int i=0; | ||
| 69 | |||
| 70 | if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) != | ||
| 71 | NID_X9_62_characteristic_two_field) | ||
| 72 | /* everything else is currently not supported */ | ||
| 73 | return 0; | ||
| 74 | |||
| 75 | while (group->poly[i] != 0) | ||
| 76 | i++; | ||
| 77 | |||
| 78 | if (i == 4) | ||
| 79 | return NID_X9_62_ppBasis; | ||
| 80 | else if (i == 2) | ||
| 81 | return NID_X9_62_tpBasis; | ||
| 82 | else | ||
| 83 | /* everything else is currently not supported */ | ||
| 84 | return 0; | ||
| 85 | } | ||
| 86 | |||
| 87 | int EC_GROUP_get_trinomial_basis(const EC_GROUP *group, unsigned int *k) | ||
| 88 | { | ||
| 89 | if (group == NULL) | ||
| 90 | return 0; | ||
| 91 | |||
| 92 | if (EC_GROUP_method_of(group)->group_set_curve != ec_GF2m_simple_group_set_curve | ||
| 93 | || !((group->poly[0] != 0) && (group->poly[1] != 0) && (group->poly[2] == 0))) | ||
| 94 | { | ||
| 95 | ECerr(EC_F_EC_GROUP_GET_TRINOMIAL_BASIS, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED); | ||
| 96 | return 0; | ||
| 97 | } | ||
| 98 | |||
| 99 | if (k) | ||
| 100 | *k = group->poly[1]; | ||
| 101 | |||
| 102 | return 1; | ||
| 103 | } | ||
| 104 | |||
| 105 | int EC_GROUP_get_pentanomial_basis(const EC_GROUP *group, unsigned int *k1, | ||
| 106 | unsigned int *k2, unsigned int *k3) | ||
| 107 | { | ||
| 108 | if (group == NULL) | ||
| 109 | return 0; | ||
| 110 | |||
| 111 | if (EC_GROUP_method_of(group)->group_set_curve != ec_GF2m_simple_group_set_curve | ||
| 112 | || !((group->poly[0] != 0) && (group->poly[1] != 0) && (group->poly[2] != 0) && (group->poly[3] != 0) && (group->poly[4] == 0))) | ||
| 113 | { | ||
| 114 | ECerr(EC_F_EC_GROUP_GET_PENTANOMIAL_BASIS, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED); | ||
| 115 | return 0; | ||
| 116 | } | ||
| 117 | |||
| 118 | if (k1) | ||
| 119 | *k1 = group->poly[3]; | ||
| 120 | if (k2) | ||
| 121 | *k2 = group->poly[2]; | ||
| 122 | if (k3) | ||
| 123 | *k3 = group->poly[1]; | ||
| 124 | |||
| 125 | return 1; | ||
| 126 | } | ||
| 127 | |||
| 128 | |||
| 129 | |||
| 130 | /* some structures needed for the asn1 encoding */ | ||
| 131 | typedef struct x9_62_pentanomial_st { | ||
| 132 | long k1; | ||
| 133 | long k2; | ||
| 134 | long k3; | ||
| 135 | } X9_62_PENTANOMIAL; | ||
| 136 | |||
| 137 | typedef struct x9_62_characteristic_two_st { | ||
| 138 | long m; | ||
| 139 | ASN1_OBJECT *type; | ||
| 140 | union { | ||
| 141 | char *ptr; | ||
| 142 | /* NID_X9_62_onBasis */ | ||
| 143 | ASN1_NULL *onBasis; | ||
| 144 | /* NID_X9_62_tpBasis */ | ||
| 145 | ASN1_INTEGER *tpBasis; | ||
| 146 | /* NID_X9_62_ppBasis */ | ||
| 147 | X9_62_PENTANOMIAL *ppBasis; | ||
| 148 | /* anything else */ | ||
| 149 | ASN1_TYPE *other; | ||
| 150 | } p; | ||
| 151 | } X9_62_CHARACTERISTIC_TWO; | ||
| 152 | |||
| 153 | typedef struct x9_62_fieldid_st { | ||
| 154 | ASN1_OBJECT *fieldType; | ||
| 155 | union { | ||
| 156 | char *ptr; | ||
| 157 | /* NID_X9_62_prime_field */ | ||
| 158 | ASN1_INTEGER *prime; | ||
| 159 | /* NID_X9_62_characteristic_two_field */ | ||
| 160 | X9_62_CHARACTERISTIC_TWO *char_two; | ||
| 161 | /* anything else */ | ||
| 162 | ASN1_TYPE *other; | ||
| 163 | } p; | ||
| 164 | } X9_62_FIELDID; | ||
| 165 | |||
| 166 | typedef struct x9_62_curve_st { | ||
| 167 | ASN1_OCTET_STRING *a; | ||
| 168 | ASN1_OCTET_STRING *b; | ||
| 169 | ASN1_BIT_STRING *seed; | ||
| 170 | } X9_62_CURVE; | ||
| 171 | |||
| 172 | typedef struct ec_parameters_st { | ||
| 173 | long version; | ||
| 174 | X9_62_FIELDID *fieldID; | ||
| 175 | X9_62_CURVE *curve; | ||
| 176 | ASN1_OCTET_STRING *base; | ||
| 177 | ASN1_INTEGER *order; | ||
| 178 | ASN1_INTEGER *cofactor; | ||
| 179 | } ECPARAMETERS; | ||
| 180 | |||
| 181 | struct ecpk_parameters_st { | ||
| 182 | int type; | ||
| 183 | union { | ||
| 184 | ASN1_OBJECT *named_curve; | ||
| 185 | ECPARAMETERS *parameters; | ||
| 186 | ASN1_NULL *implicitlyCA; | ||
| 187 | } value; | ||
| 188 | }/* ECPKPARAMETERS */; | ||
| 189 | |||
| 190 | /* SEC1 ECPrivateKey */ | ||
| 191 | typedef struct ec_privatekey_st { | ||
| 192 | long version; | ||
| 193 | ASN1_OCTET_STRING *privateKey; | ||
| 194 | ECPKPARAMETERS *parameters; | ||
| 195 | ASN1_BIT_STRING *publicKey; | ||
| 196 | } EC_PRIVATEKEY; | ||
| 197 | |||
| 198 | /* the OpenSSL ASN.1 definitions */ | ||
| 199 | ASN1_SEQUENCE(X9_62_PENTANOMIAL) = { | ||
| 200 | ASN1_SIMPLE(X9_62_PENTANOMIAL, k1, LONG), | ||
| 201 | ASN1_SIMPLE(X9_62_PENTANOMIAL, k2, LONG), | ||
| 202 | ASN1_SIMPLE(X9_62_PENTANOMIAL, k3, LONG) | ||
| 203 | } ASN1_SEQUENCE_END(X9_62_PENTANOMIAL) | ||
| 204 | |||
| 205 | DECLARE_ASN1_ALLOC_FUNCTIONS(X9_62_PENTANOMIAL) | ||
| 206 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(X9_62_PENTANOMIAL) | ||
| 207 | |||
| 208 | ASN1_ADB_TEMPLATE(char_two_def) = ASN1_SIMPLE(X9_62_CHARACTERISTIC_TWO, p.other, ASN1_ANY); | ||
| 209 | |||
| 210 | ASN1_ADB(X9_62_CHARACTERISTIC_TWO) = { | ||
| 211 | ADB_ENTRY(NID_X9_62_onBasis, ASN1_SIMPLE(X9_62_CHARACTERISTIC_TWO, p.onBasis, ASN1_NULL)), | ||
| 212 | ADB_ENTRY(NID_X9_62_tpBasis, ASN1_SIMPLE(X9_62_CHARACTERISTIC_TWO, p.tpBasis, ASN1_INTEGER)), | ||
| 213 | ADB_ENTRY(NID_X9_62_ppBasis, ASN1_SIMPLE(X9_62_CHARACTERISTIC_TWO, p.ppBasis, X9_62_PENTANOMIAL)) | ||
| 214 | } ASN1_ADB_END(X9_62_CHARACTERISTIC_TWO, 0, type, 0, &char_two_def_tt, NULL); | ||
| 215 | |||
| 216 | ASN1_SEQUENCE(X9_62_CHARACTERISTIC_TWO) = { | ||
| 217 | ASN1_SIMPLE(X9_62_CHARACTERISTIC_TWO, m, LONG), | ||
| 218 | ASN1_SIMPLE(X9_62_CHARACTERISTIC_TWO, type, ASN1_OBJECT), | ||
| 219 | ASN1_ADB_OBJECT(X9_62_CHARACTERISTIC_TWO) | ||
| 220 | } ASN1_SEQUENCE_END(X9_62_CHARACTERISTIC_TWO) | ||
| 221 | |||
| 222 | DECLARE_ASN1_ALLOC_FUNCTIONS(X9_62_CHARACTERISTIC_TWO) | ||
| 223 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(X9_62_CHARACTERISTIC_TWO) | ||
| 224 | |||
| 225 | ASN1_ADB_TEMPLATE(fieldID_def) = ASN1_SIMPLE(X9_62_FIELDID, p.other, ASN1_ANY); | ||
| 226 | |||
| 227 | ASN1_ADB(X9_62_FIELDID) = { | ||
| 228 | ADB_ENTRY(NID_X9_62_prime_field, ASN1_SIMPLE(X9_62_FIELDID, p.prime, ASN1_INTEGER)), | ||
| 229 | ADB_ENTRY(NID_X9_62_characteristic_two_field, ASN1_SIMPLE(X9_62_FIELDID, p.char_two, X9_62_CHARACTERISTIC_TWO)) | ||
| 230 | } ASN1_ADB_END(X9_62_FIELDID, 0, fieldType, 0, &fieldID_def_tt, NULL); | ||
| 231 | |||
| 232 | ASN1_SEQUENCE(X9_62_FIELDID) = { | ||
| 233 | ASN1_SIMPLE(X9_62_FIELDID, fieldType, ASN1_OBJECT), | ||
| 234 | ASN1_ADB_OBJECT(X9_62_FIELDID) | ||
| 235 | } ASN1_SEQUENCE_END(X9_62_FIELDID) | ||
| 236 | |||
| 237 | ASN1_SEQUENCE(X9_62_CURVE) = { | ||
| 238 | ASN1_SIMPLE(X9_62_CURVE, a, ASN1_OCTET_STRING), | ||
| 239 | ASN1_SIMPLE(X9_62_CURVE, b, ASN1_OCTET_STRING), | ||
| 240 | ASN1_OPT(X9_62_CURVE, seed, ASN1_BIT_STRING) | ||
| 241 | } ASN1_SEQUENCE_END(X9_62_CURVE) | ||
| 242 | |||
| 243 | ASN1_SEQUENCE(ECPARAMETERS) = { | ||
| 244 | ASN1_SIMPLE(ECPARAMETERS, version, LONG), | ||
| 245 | ASN1_SIMPLE(ECPARAMETERS, fieldID, X9_62_FIELDID), | ||
| 246 | ASN1_SIMPLE(ECPARAMETERS, curve, X9_62_CURVE), | ||
| 247 | ASN1_SIMPLE(ECPARAMETERS, base, ASN1_OCTET_STRING), | ||
| 248 | ASN1_SIMPLE(ECPARAMETERS, order, ASN1_INTEGER), | ||
| 249 | ASN1_OPT(ECPARAMETERS, cofactor, ASN1_INTEGER) | ||
| 250 | } ASN1_SEQUENCE_END(ECPARAMETERS) | ||
| 251 | |||
| 252 | DECLARE_ASN1_ALLOC_FUNCTIONS(ECPARAMETERS) | ||
| 253 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(ECPARAMETERS) | ||
| 254 | |||
| 255 | ASN1_CHOICE(ECPKPARAMETERS) = { | ||
| 256 | ASN1_SIMPLE(ECPKPARAMETERS, value.named_curve, ASN1_OBJECT), | ||
| 257 | ASN1_SIMPLE(ECPKPARAMETERS, value.parameters, ECPARAMETERS), | ||
| 258 | ASN1_SIMPLE(ECPKPARAMETERS, value.implicitlyCA, ASN1_NULL) | ||
| 259 | } ASN1_CHOICE_END(ECPKPARAMETERS) | ||
| 260 | |||
| 261 | DECLARE_ASN1_FUNCTIONS_const(ECPKPARAMETERS) | ||
| 262 | DECLARE_ASN1_ENCODE_FUNCTIONS_const(ECPKPARAMETERS, ECPKPARAMETERS) | ||
| 263 | IMPLEMENT_ASN1_FUNCTIONS_const(ECPKPARAMETERS) | ||
| 264 | |||
| 265 | ASN1_SEQUENCE(EC_PRIVATEKEY) = { | ||
| 266 | ASN1_SIMPLE(EC_PRIVATEKEY, version, LONG), | ||
| 267 | ASN1_SIMPLE(EC_PRIVATEKEY, privateKey, ASN1_OCTET_STRING), | ||
| 268 | ASN1_EXP_OPT(EC_PRIVATEKEY, parameters, ECPKPARAMETERS, 0), | ||
| 269 | ASN1_EXP_OPT(EC_PRIVATEKEY, publicKey, ASN1_BIT_STRING, 1) | ||
| 270 | } ASN1_SEQUENCE_END(EC_PRIVATEKEY) | ||
| 271 | |||
| 272 | DECLARE_ASN1_FUNCTIONS_const(EC_PRIVATEKEY) | ||
| 273 | DECLARE_ASN1_ENCODE_FUNCTIONS_const(EC_PRIVATEKEY, EC_PRIVATEKEY) | ||
| 274 | IMPLEMENT_ASN1_FUNCTIONS_const(EC_PRIVATEKEY) | ||
| 275 | |||
| 276 | /* some declarations of internal function */ | ||
| 277 | |||
| 278 | /* ec_asn1_group2field() sets the values in a X9_62_FIELDID object */ | ||
| 279 | static int ec_asn1_group2fieldid(const EC_GROUP *, X9_62_FIELDID *); | ||
| 280 | /* ec_asn1_group2curve() sets the values in a X9_62_CURVE object */ | ||
| 281 | static int ec_asn1_group2curve(const EC_GROUP *, X9_62_CURVE *); | ||
| 282 | /* ec_asn1_parameters2group() creates a EC_GROUP object from a | ||
| 283 | * ECPARAMETERS object */ | ||
| 284 | static EC_GROUP *ec_asn1_parameters2group(const ECPARAMETERS *); | ||
| 285 | /* ec_asn1_group2parameters() creates a ECPARAMETERS object from a | ||
| 286 | * EC_GROUP object */ | ||
| 287 | static ECPARAMETERS *ec_asn1_group2parameters(const EC_GROUP *,ECPARAMETERS *); | ||
| 288 | /* ec_asn1_pkparameters2group() creates a EC_GROUP object from a | ||
| 289 | * ECPKPARAMETERS object */ | ||
| 290 | static EC_GROUP *ec_asn1_pkparameters2group(const ECPKPARAMETERS *); | ||
| 291 | /* ec_asn1_group2pkparameters() creates a ECPKPARAMETERS object from a | ||
| 292 | * EC_GROUP object */ | ||
| 293 | static ECPKPARAMETERS *ec_asn1_group2pkparameters(const EC_GROUP *, | ||
| 294 | ECPKPARAMETERS *); | ||
| 295 | |||
| 296 | |||
| 297 | /* the function definitions */ | ||
| 298 | |||
| 299 | static int ec_asn1_group2fieldid(const EC_GROUP *group, X9_62_FIELDID *field) | ||
| 300 | { | ||
| 301 | int ok=0, nid; | ||
| 302 | BIGNUM *tmp = NULL; | ||
| 303 | |||
| 304 | if (group == NULL || field == NULL) | ||
| 305 | return 0; | ||
| 306 | |||
| 307 | /* clear the old values (if necessary) */ | ||
| 308 | if (field->fieldType != NULL) | ||
| 309 | ASN1_OBJECT_free(field->fieldType); | ||
| 310 | if (field->p.other != NULL) | ||
| 311 | ASN1_TYPE_free(field->p.other); | ||
| 312 | |||
| 313 | nid = EC_METHOD_get_field_type(EC_GROUP_method_of(group)); | ||
| 314 | /* set OID for the field */ | ||
| 315 | if ((field->fieldType = OBJ_nid2obj(nid)) == NULL) | ||
| 316 | { | ||
| 317 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_OBJ_LIB); | ||
| 318 | goto err; | ||
| 319 | } | ||
| 320 | |||
| 321 | if (nid == NID_X9_62_prime_field) | ||
| 322 | { | ||
| 323 | if ((tmp = BN_new()) == NULL) | ||
| 324 | { | ||
| 325 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_MALLOC_FAILURE); | ||
| 326 | goto err; | ||
| 327 | } | ||
| 328 | /* the parameters are specified by the prime number p */ | ||
| 329 | if (!EC_GROUP_get_curve_GFp(group, tmp, NULL, NULL, NULL)) | ||
| 330 | { | ||
| 331 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_EC_LIB); | ||
| 332 | goto err; | ||
| 333 | } | ||
| 334 | /* set the prime number */ | ||
| 335 | field->p.prime = BN_to_ASN1_INTEGER(tmp,NULL); | ||
| 336 | if (field->p.prime == NULL) | ||
| 337 | { | ||
| 338 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_ASN1_LIB); | ||
| 339 | goto err; | ||
| 340 | } | ||
| 341 | } | ||
| 342 | else /* nid == NID_X9_62_characteristic_two_field */ | ||
| 343 | { | ||
| 344 | int field_type; | ||
| 345 | X9_62_CHARACTERISTIC_TWO *char_two; | ||
| 346 | |||
| 347 | field->p.char_two = X9_62_CHARACTERISTIC_TWO_new(); | ||
| 348 | char_two = field->p.char_two; | ||
| 349 | |||
| 350 | if (char_two == NULL) | ||
| 351 | { | ||
| 352 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_MALLOC_FAILURE); | ||
| 353 | goto err; | ||
| 354 | } | ||
| 355 | |||
| 356 | char_two->m = (long)EC_GROUP_get_degree(group); | ||
| 357 | |||
| 358 | field_type = EC_GROUP_get_basis_type(group); | ||
| 359 | |||
| 360 | if (field_type == 0) | ||
| 361 | { | ||
| 362 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_EC_LIB); | ||
| 363 | goto err; | ||
| 364 | } | ||
| 365 | /* set base type OID */ | ||
| 366 | if ((char_two->type = OBJ_nid2obj(field_type)) == NULL) | ||
| 367 | { | ||
| 368 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_OBJ_LIB); | ||
| 369 | goto err; | ||
| 370 | } | ||
| 371 | |||
| 372 | if (field_type == NID_X9_62_tpBasis) | ||
| 373 | { | ||
| 374 | unsigned int k; | ||
| 375 | |||
| 376 | if (!EC_GROUP_get_trinomial_basis(group, &k)) | ||
| 377 | goto err; | ||
| 378 | |||
| 379 | char_two->p.tpBasis = ASN1_INTEGER_new(); | ||
| 380 | if (!char_two->p.tpBasis) | ||
| 381 | { | ||
| 382 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_MALLOC_FAILURE); | ||
| 383 | goto err; | ||
| 384 | } | ||
| 385 | if (!ASN1_INTEGER_set(char_two->p.tpBasis, (long)k)) | ||
| 386 | { | ||
| 387 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, | ||
| 388 | ERR_R_ASN1_LIB); | ||
| 389 | goto err; | ||
| 390 | } | ||
| 391 | } | ||
| 392 | else if (field_type == NID_X9_62_ppBasis) | ||
| 393 | { | ||
| 394 | unsigned int k1, k2, k3; | ||
| 395 | |||
| 396 | if (!EC_GROUP_get_pentanomial_basis(group, &k1, &k2, &k3)) | ||
| 397 | goto err; | ||
| 398 | |||
| 399 | char_two->p.ppBasis = X9_62_PENTANOMIAL_new(); | ||
| 400 | if (!char_two->p.ppBasis) | ||
| 401 | { | ||
| 402 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_MALLOC_FAILURE); | ||
| 403 | goto err; | ||
| 404 | } | ||
| 405 | |||
| 406 | /* set k? values */ | ||
| 407 | char_two->p.ppBasis->k1 = (long)k1; | ||
| 408 | char_two->p.ppBasis->k2 = (long)k2; | ||
| 409 | char_two->p.ppBasis->k3 = (long)k3; | ||
| 410 | } | ||
| 411 | else /* field_type == NID_X9_62_onBasis */ | ||
| 412 | { | ||
| 413 | /* for ONB the parameters are (asn1) NULL */ | ||
| 414 | char_two->p.onBasis = ASN1_NULL_new(); | ||
| 415 | if (!char_two->p.onBasis) | ||
| 416 | { | ||
| 417 | ECerr(EC_F_EC_ASN1_GROUP2FIELDID, ERR_R_MALLOC_FAILURE); | ||
| 418 | goto err; | ||
| 419 | } | ||
| 420 | } | ||
| 421 | } | ||
| 422 | |||
| 423 | ok = 1; | ||
| 424 | |||
| 425 | err : if (tmp) | ||
| 426 | BN_free(tmp); | ||
| 427 | return(ok); | ||
| 428 | } | ||
| 429 | |||
| 430 | static int ec_asn1_group2curve(const EC_GROUP *group, X9_62_CURVE *curve) | ||
| 431 | { | ||
| 432 | int ok=0, nid; | ||
| 433 | BIGNUM *tmp_1=NULL, *tmp_2=NULL; | ||
| 434 | unsigned char *buffer_1=NULL, *buffer_2=NULL, | ||
| 435 | *a_buf=NULL, *b_buf=NULL; | ||
| 436 | size_t len_1, len_2; | ||
| 437 | unsigned char char_zero = 0; | ||
| 438 | |||
| 439 | if (!group || !curve || !curve->a || !curve->b) | ||
| 440 | return 0; | ||
| 441 | |||
| 442 | if ((tmp_1 = BN_new()) == NULL || (tmp_2 = BN_new()) == NULL) | ||
| 443 | { | ||
| 444 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_MALLOC_FAILURE); | ||
| 445 | goto err; | ||
| 446 | } | ||
| 447 | |||
| 448 | nid = EC_METHOD_get_field_type(EC_GROUP_method_of(group)); | ||
| 449 | |||
| 450 | /* get a and b */ | ||
| 451 | if (nid == NID_X9_62_prime_field) | ||
| 452 | { | ||
| 453 | if (!EC_GROUP_get_curve_GFp(group, NULL, tmp_1, tmp_2, NULL)) | ||
| 454 | { | ||
| 455 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_EC_LIB); | ||
| 456 | goto err; | ||
| 457 | } | ||
| 458 | } | ||
| 459 | else /* nid == NID_X9_62_characteristic_two_field */ | ||
| 460 | { | ||
| 461 | if (!EC_GROUP_get_curve_GF2m(group, NULL, tmp_1, tmp_2, NULL)) | ||
| 462 | { | ||
| 463 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_EC_LIB); | ||
| 464 | goto err; | ||
| 465 | } | ||
| 466 | } | ||
| 467 | |||
| 468 | len_1 = (size_t)BN_num_bytes(tmp_1); | ||
| 469 | len_2 = (size_t)BN_num_bytes(tmp_2); | ||
| 470 | |||
| 471 | if (len_1 == 0) | ||
| 472 | { | ||
| 473 | /* len_1 == 0 => a == 0 */ | ||
| 474 | a_buf = &char_zero; | ||
| 475 | len_1 = 1; | ||
| 476 | } | ||
| 477 | else | ||
| 478 | { | ||
| 479 | if ((buffer_1 = OPENSSL_malloc(len_1)) == NULL) | ||
| 480 | { | ||
| 481 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, | ||
| 482 | ERR_R_MALLOC_FAILURE); | ||
| 483 | goto err; | ||
| 484 | } | ||
| 485 | if ( (len_1 = BN_bn2bin(tmp_1, buffer_1)) == 0) | ||
| 486 | { | ||
| 487 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_BN_LIB); | ||
| 488 | goto err; | ||
| 489 | } | ||
| 490 | a_buf = buffer_1; | ||
| 491 | } | ||
| 492 | |||
| 493 | if (len_2 == 0) | ||
| 494 | { | ||
| 495 | /* len_2 == 0 => b == 0 */ | ||
| 496 | b_buf = &char_zero; | ||
| 497 | len_2 = 1; | ||
| 498 | } | ||
| 499 | else | ||
| 500 | { | ||
| 501 | if ((buffer_2 = OPENSSL_malloc(len_2)) == NULL) | ||
| 502 | { | ||
| 503 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, | ||
| 504 | ERR_R_MALLOC_FAILURE); | ||
| 505 | goto err; | ||
| 506 | } | ||
| 507 | if ( (len_2 = BN_bn2bin(tmp_2, buffer_2)) == 0) | ||
| 508 | { | ||
| 509 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_BN_LIB); | ||
| 510 | goto err; | ||
| 511 | } | ||
| 512 | b_buf = buffer_2; | ||
| 513 | } | ||
| 514 | |||
| 515 | /* set a and b */ | ||
| 516 | if (!M_ASN1_OCTET_STRING_set(curve->a, a_buf, len_1) || | ||
| 517 | !M_ASN1_OCTET_STRING_set(curve->b, b_buf, len_2)) | ||
| 518 | { | ||
| 519 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_ASN1_LIB); | ||
| 520 | goto err; | ||
| 521 | } | ||
| 522 | |||
| 523 | /* set the seed (optional) */ | ||
| 524 | if (group->seed) | ||
| 525 | { | ||
| 526 | if (!curve->seed) | ||
| 527 | if ((curve->seed = ASN1_BIT_STRING_new()) == NULL) | ||
| 528 | { | ||
| 529 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_MALLOC_FAILURE); | ||
| 530 | goto err; | ||
| 531 | } | ||
| 532 | curve->seed->flags &= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); | ||
| 533 | curve->seed->flags |= ASN1_STRING_FLAG_BITS_LEFT; | ||
| 534 | if (!ASN1_BIT_STRING_set(curve->seed, group->seed, | ||
| 535 | (int)group->seed_len)) | ||
| 536 | { | ||
| 537 | ECerr(EC_F_EC_ASN1_GROUP2CURVE, ERR_R_ASN1_LIB); | ||
| 538 | goto err; | ||
| 539 | } | ||
| 540 | } | ||
| 541 | else | ||
| 542 | { | ||
| 543 | if (curve->seed) | ||
| 544 | { | ||
| 545 | ASN1_BIT_STRING_free(curve->seed); | ||
| 546 | curve->seed = NULL; | ||
| 547 | } | ||
| 548 | } | ||
| 549 | |||
| 550 | ok = 1; | ||
| 551 | |||
| 552 | err: if (buffer_1) | ||
| 553 | OPENSSL_free(buffer_1); | ||
| 554 | if (buffer_2) | ||
| 555 | OPENSSL_free(buffer_2); | ||
| 556 | if (tmp_1) | ||
| 557 | BN_free(tmp_1); | ||
| 558 | if (tmp_2) | ||
| 559 | BN_free(tmp_2); | ||
| 560 | return(ok); | ||
| 561 | } | ||
| 562 | |||
| 563 | static ECPARAMETERS *ec_asn1_group2parameters(const EC_GROUP *group, | ||
| 564 | ECPARAMETERS *param) | ||
| 565 | { | ||
| 566 | int ok=0; | ||
| 567 | size_t len=0; | ||
| 568 | ECPARAMETERS *ret=NULL; | ||
| 569 | BIGNUM *tmp=NULL; | ||
| 570 | unsigned char *buffer=NULL; | ||
| 571 | const EC_POINT *point=NULL; | ||
| 572 | point_conversion_form_t form; | ||
| 573 | |||
| 574 | if ((tmp = BN_new()) == NULL) | ||
| 575 | { | ||
| 576 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_MALLOC_FAILURE); | ||
| 577 | goto err; | ||
| 578 | } | ||
| 579 | |||
| 580 | if (param == NULL) | ||
| 581 | { | ||
| 582 | if ((ret = ECPARAMETERS_new()) == NULL) | ||
| 583 | { | ||
| 584 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, | ||
| 585 | ERR_R_MALLOC_FAILURE); | ||
| 586 | goto err; | ||
| 587 | } | ||
| 588 | } | ||
| 589 | else | ||
| 590 | ret = param; | ||
| 591 | |||
| 592 | /* set the version (always one) */ | ||
| 593 | ret->version = (long)0x1; | ||
| 594 | |||
| 595 | /* set the fieldID */ | ||
| 596 | if (!ec_asn1_group2fieldid(group, ret->fieldID)) | ||
| 597 | { | ||
| 598 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_EC_LIB); | ||
| 599 | goto err; | ||
| 600 | } | ||
| 601 | |||
| 602 | /* set the curve */ | ||
| 603 | if (!ec_asn1_group2curve(group, ret->curve)) | ||
| 604 | { | ||
| 605 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_EC_LIB); | ||
| 606 | goto err; | ||
| 607 | } | ||
| 608 | |||
| 609 | /* set the base point */ | ||
| 610 | if ((point = EC_GROUP_get0_generator(group)) == NULL) | ||
| 611 | { | ||
| 612 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, EC_R_UNDEFINED_GENERATOR); | ||
| 613 | goto err; | ||
| 614 | } | ||
| 615 | |||
| 616 | form = EC_GROUP_get_point_conversion_form(group); | ||
| 617 | |||
| 618 | len = EC_POINT_point2oct(group, point, form, NULL, len, NULL); | ||
| 619 | if (len == 0) | ||
| 620 | { | ||
| 621 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_EC_LIB); | ||
| 622 | goto err; | ||
| 623 | } | ||
| 624 | if ((buffer = OPENSSL_malloc(len)) == NULL) | ||
| 625 | { | ||
| 626 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_MALLOC_FAILURE); | ||
| 627 | goto err; | ||
| 628 | } | ||
| 629 | if (!EC_POINT_point2oct(group, point, form, buffer, len, NULL)) | ||
| 630 | { | ||
| 631 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_EC_LIB); | ||
| 632 | goto err; | ||
| 633 | } | ||
| 634 | if (ret->base == NULL && (ret->base = ASN1_OCTET_STRING_new()) == NULL) | ||
| 635 | { | ||
| 636 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_MALLOC_FAILURE); | ||
| 637 | goto err; | ||
| 638 | } | ||
| 639 | if (!ASN1_OCTET_STRING_set(ret->base, buffer, len)) | ||
| 640 | { | ||
| 641 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_ASN1_LIB); | ||
| 642 | goto err; | ||
| 643 | } | ||
| 644 | |||
| 645 | /* set the order */ | ||
| 646 | if (!EC_GROUP_get_order(group, tmp, NULL)) | ||
| 647 | { | ||
| 648 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_EC_LIB); | ||
| 649 | goto err; | ||
| 650 | } | ||
| 651 | ret->order = BN_to_ASN1_INTEGER(tmp, ret->order); | ||
| 652 | if (ret->order == NULL) | ||
| 653 | { | ||
| 654 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_ASN1_LIB); | ||
| 655 | goto err; | ||
| 656 | } | ||
| 657 | |||
| 658 | /* set the cofactor (optional) */ | ||
| 659 | if (EC_GROUP_get_cofactor(group, tmp, NULL)) | ||
| 660 | { | ||
| 661 | ret->cofactor = BN_to_ASN1_INTEGER(tmp, ret->cofactor); | ||
| 662 | if (ret->cofactor == NULL) | ||
| 663 | { | ||
| 664 | ECerr(EC_F_EC_ASN1_GROUP2PARAMETERS, ERR_R_ASN1_LIB); | ||
| 665 | goto err; | ||
| 666 | } | ||
| 667 | } | ||
| 668 | |||
| 669 | ok = 1; | ||
| 670 | |||
| 671 | err : if(!ok) | ||
| 672 | { | ||
| 673 | if (ret && !param) | ||
| 674 | ECPARAMETERS_free(ret); | ||
| 675 | ret = NULL; | ||
| 676 | } | ||
| 677 | if (tmp) | ||
| 678 | BN_free(tmp); | ||
| 679 | if (buffer) | ||
| 680 | OPENSSL_free(buffer); | ||
| 681 | return(ret); | ||
| 682 | } | ||
| 683 | |||
| 684 | ECPKPARAMETERS *ec_asn1_group2pkparameters(const EC_GROUP *group, | ||
| 685 | ECPKPARAMETERS *params) | ||
| 686 | { | ||
| 687 | int ok = 1, tmp; | ||
| 688 | ECPKPARAMETERS *ret = params; | ||
| 689 | |||
| 690 | if (ret == NULL) | ||
| 691 | { | ||
| 692 | if ((ret = ECPKPARAMETERS_new()) == NULL) | ||
| 693 | { | ||
| 694 | ECerr(EC_F_EC_ASN1_GROUP2PKPARAMETERS, | ||
| 695 | ERR_R_MALLOC_FAILURE); | ||
| 696 | return NULL; | ||
| 697 | } | ||
| 698 | } | ||
| 699 | else | ||
| 700 | { | ||
| 701 | if (ret->type == 0 && ret->value.named_curve) | ||
| 702 | ASN1_OBJECT_free(ret->value.named_curve); | ||
| 703 | else if (ret->type == 1 && ret->value.parameters) | ||
| 704 | ECPARAMETERS_free(ret->value.parameters); | ||
| 705 | } | ||
| 706 | |||
| 707 | if (EC_GROUP_get_asn1_flag(group)) | ||
| 708 | { | ||
| 709 | /* use the asn1 OID to describe the | ||
| 710 | * the elliptic curve parameters | ||
| 711 | */ | ||
| 712 | tmp = EC_GROUP_get_curve_name(group); | ||
| 713 | if (tmp) | ||
| 714 | { | ||
| 715 | ret->type = 0; | ||
| 716 | if ((ret->value.named_curve = OBJ_nid2obj(tmp)) == NULL) | ||
| 717 | ok = 0; | ||
| 718 | } | ||
| 719 | else | ||
| 720 | /* we don't kmow the nid => ERROR */ | ||
| 721 | ok = 0; | ||
| 722 | } | ||
| 723 | else | ||
| 724 | { | ||
| 725 | /* use the ECPARAMETERS structure */ | ||
| 726 | ret->type = 1; | ||
| 727 | if ((ret->value.parameters = ec_asn1_group2parameters( | ||
| 728 | group, NULL)) == NULL) | ||
| 729 | ok = 0; | ||
| 730 | } | ||
| 731 | |||
| 732 | if (!ok) | ||
| 733 | { | ||
| 734 | ECPKPARAMETERS_free(ret); | ||
| 735 | return NULL; | ||
| 736 | } | ||
| 737 | return ret; | ||
| 738 | } | ||
| 739 | |||
| 740 | static EC_GROUP *ec_asn1_parameters2group(const ECPARAMETERS *params) | ||
| 741 | { | ||
| 742 | int ok = 0, tmp; | ||
| 743 | EC_GROUP *ret = NULL; | ||
| 744 | BIGNUM *p = NULL, *a = NULL, *b = NULL; | ||
| 745 | EC_POINT *point=NULL; | ||
| 746 | long field_bits; | ||
| 747 | |||
| 748 | if (!params->fieldID || !params->fieldID->fieldType || | ||
| 749 | !params->fieldID->p.ptr) | ||
| 750 | { | ||
| 751 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 752 | goto err; | ||
| 753 | } | ||
| 754 | |||
| 755 | /* now extract the curve parameters a and b */ | ||
| 756 | if (!params->curve || !params->curve->a || | ||
| 757 | !params->curve->a->data || !params->curve->b || | ||
| 758 | !params->curve->b->data) | ||
| 759 | { | ||
| 760 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 761 | goto err; | ||
| 762 | } | ||
| 763 | a = BN_bin2bn(params->curve->a->data, params->curve->a->length, NULL); | ||
| 764 | if (a == NULL) | ||
| 765 | { | ||
| 766 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_BN_LIB); | ||
| 767 | goto err; | ||
| 768 | } | ||
| 769 | b = BN_bin2bn(params->curve->b->data, params->curve->b->length, NULL); | ||
| 770 | if (b == NULL) | ||
| 771 | { | ||
| 772 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_BN_LIB); | ||
| 773 | goto err; | ||
| 774 | } | ||
| 775 | |||
| 776 | /* get the field parameters */ | ||
| 777 | tmp = OBJ_obj2nid(params->fieldID->fieldType); | ||
| 778 | |||
| 779 | if (tmp == NID_X9_62_characteristic_two_field) | ||
| 780 | { | ||
| 781 | X9_62_CHARACTERISTIC_TWO *char_two; | ||
| 782 | |||
| 783 | char_two = params->fieldID->p.char_two; | ||
| 784 | |||
| 785 | field_bits = char_two->m; | ||
| 786 | if (field_bits > OPENSSL_ECC_MAX_FIELD_BITS) | ||
| 787 | { | ||
| 788 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_FIELD_TOO_LARGE); | ||
| 789 | goto err; | ||
| 790 | } | ||
| 791 | |||
| 792 | if ((p = BN_new()) == NULL) | ||
| 793 | { | ||
| 794 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_MALLOC_FAILURE); | ||
| 795 | goto err; | ||
| 796 | } | ||
| 797 | |||
| 798 | /* get the base type */ | ||
| 799 | tmp = OBJ_obj2nid(char_two->type); | ||
| 800 | |||
| 801 | if (tmp == NID_X9_62_tpBasis) | ||
| 802 | { | ||
| 803 | long tmp_long; | ||
| 804 | |||
| 805 | if (!char_two->p.tpBasis) | ||
| 806 | { | ||
| 807 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 808 | goto err; | ||
| 809 | } | ||
| 810 | |||
| 811 | tmp_long = ASN1_INTEGER_get(char_two->p.tpBasis); | ||
| 812 | |||
| 813 | if (!(char_two->m > tmp_long && tmp_long > 0)) | ||
| 814 | { | ||
| 815 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_INVALID_TRINOMIAL_BASIS); | ||
| 816 | goto err; | ||
| 817 | } | ||
| 818 | |||
| 819 | /* create the polynomial */ | ||
| 820 | if (!BN_set_bit(p, (int)char_two->m)) | ||
| 821 | goto err; | ||
| 822 | if (!BN_set_bit(p, (int)tmp_long)) | ||
| 823 | goto err; | ||
| 824 | if (!BN_set_bit(p, 0)) | ||
| 825 | goto err; | ||
| 826 | } | ||
| 827 | else if (tmp == NID_X9_62_ppBasis) | ||
| 828 | { | ||
| 829 | X9_62_PENTANOMIAL *penta; | ||
| 830 | |||
| 831 | penta = char_two->p.ppBasis; | ||
| 832 | if (!penta) | ||
| 833 | { | ||
| 834 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 835 | goto err; | ||
| 836 | } | ||
| 837 | |||
| 838 | if (!(char_two->m > penta->k3 && penta->k3 > penta->k2 && penta->k2 > penta->k1 && penta->k1 > 0)) | ||
| 839 | { | ||
| 840 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_INVALID_PENTANOMIAL_BASIS); | ||
| 841 | goto err; | ||
| 842 | } | ||
| 843 | |||
| 844 | /* create the polynomial */ | ||
| 845 | if (!BN_set_bit(p, (int)char_two->m)) goto err; | ||
| 846 | if (!BN_set_bit(p, (int)penta->k1)) goto err; | ||
| 847 | if (!BN_set_bit(p, (int)penta->k2)) goto err; | ||
| 848 | if (!BN_set_bit(p, (int)penta->k3)) goto err; | ||
| 849 | if (!BN_set_bit(p, 0)) goto err; | ||
| 850 | } | ||
| 851 | else if (tmp == NID_X9_62_onBasis) | ||
| 852 | { | ||
| 853 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_NOT_IMPLEMENTED); | ||
| 854 | goto err; | ||
| 855 | } | ||
| 856 | else /* error */ | ||
| 857 | { | ||
| 858 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 859 | goto err; | ||
| 860 | } | ||
| 861 | |||
| 862 | /* create the EC_GROUP structure */ | ||
| 863 | ret = EC_GROUP_new_curve_GF2m(p, a, b, NULL); | ||
| 864 | } | ||
| 865 | else if (tmp == NID_X9_62_prime_field) | ||
| 866 | { | ||
| 867 | /* we have a curve over a prime field */ | ||
| 868 | /* extract the prime number */ | ||
| 869 | if (!params->fieldID->p.prime) | ||
| 870 | { | ||
| 871 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 872 | goto err; | ||
| 873 | } | ||
| 874 | p = ASN1_INTEGER_to_BN(params->fieldID->p.prime, NULL); | ||
| 875 | if (p == NULL) | ||
| 876 | { | ||
| 877 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_ASN1_LIB); | ||
| 878 | goto err; | ||
| 879 | } | ||
| 880 | |||
| 881 | if (BN_is_negative(p) || BN_is_zero(p)) | ||
| 882 | { | ||
| 883 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_INVALID_FIELD); | ||
| 884 | goto err; | ||
| 885 | } | ||
| 886 | |||
| 887 | field_bits = BN_num_bits(p); | ||
| 888 | if (field_bits > OPENSSL_ECC_MAX_FIELD_BITS) | ||
| 889 | { | ||
| 890 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_FIELD_TOO_LARGE); | ||
| 891 | goto err; | ||
| 892 | } | ||
| 893 | |||
| 894 | /* create the EC_GROUP structure */ | ||
| 895 | ret = EC_GROUP_new_curve_GFp(p, a, b, NULL); | ||
| 896 | } | ||
| 897 | else | ||
| 898 | { | ||
| 899 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_INVALID_FIELD); | ||
| 900 | goto err; | ||
| 901 | } | ||
| 902 | |||
| 903 | if (ret == NULL) | ||
| 904 | { | ||
| 905 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_EC_LIB); | ||
| 906 | goto err; | ||
| 907 | } | ||
| 908 | |||
| 909 | /* extract seed (optional) */ | ||
| 910 | if (params->curve->seed != NULL) | ||
| 911 | { | ||
| 912 | if (ret->seed != NULL) | ||
| 913 | OPENSSL_free(ret->seed); | ||
| 914 | if (!(ret->seed = OPENSSL_malloc(params->curve->seed->length))) | ||
| 915 | { | ||
| 916 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, | ||
| 917 | ERR_R_MALLOC_FAILURE); | ||
| 918 | goto err; | ||
| 919 | } | ||
| 920 | memcpy(ret->seed, params->curve->seed->data, | ||
| 921 | params->curve->seed->length); | ||
| 922 | ret->seed_len = params->curve->seed->length; | ||
| 923 | } | ||
| 924 | |||
| 925 | if (!params->order || !params->base || !params->base->data) | ||
| 926 | { | ||
| 927 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 928 | goto err; | ||
| 929 | } | ||
| 930 | |||
| 931 | if ((point = EC_POINT_new(ret)) == NULL) goto err; | ||
| 932 | |||
| 933 | /* set the point conversion form */ | ||
| 934 | EC_GROUP_set_point_conversion_form(ret, (point_conversion_form_t) | ||
| 935 | (params->base->data[0] & ~0x01)); | ||
| 936 | |||
| 937 | /* extract the ec point */ | ||
| 938 | if (!EC_POINT_oct2point(ret, point, params->base->data, | ||
| 939 | params->base->length, NULL)) | ||
| 940 | { | ||
| 941 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_EC_LIB); | ||
| 942 | goto err; | ||
| 943 | } | ||
| 944 | |||
| 945 | /* extract the order */ | ||
| 946 | if ((a = ASN1_INTEGER_to_BN(params->order, a)) == NULL) | ||
| 947 | { | ||
| 948 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_ASN1_LIB); | ||
| 949 | goto err; | ||
| 950 | } | ||
| 951 | if (BN_is_negative(a) || BN_is_zero(a)) | ||
| 952 | { | ||
| 953 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_INVALID_GROUP_ORDER); | ||
| 954 | goto err; | ||
| 955 | } | ||
| 956 | if (BN_num_bits(a) > (int)field_bits + 1) /* Hasse bound */ | ||
| 957 | { | ||
| 958 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, EC_R_INVALID_GROUP_ORDER); | ||
| 959 | goto err; | ||
| 960 | } | ||
| 961 | |||
| 962 | /* extract the cofactor (optional) */ | ||
| 963 | if (params->cofactor == NULL) | ||
| 964 | { | ||
| 965 | if (b) | ||
| 966 | { | ||
| 967 | BN_free(b); | ||
| 968 | b = NULL; | ||
| 969 | } | ||
| 970 | } | ||
| 971 | else | ||
| 972 | if ((b = ASN1_INTEGER_to_BN(params->cofactor, b)) == NULL) | ||
| 973 | { | ||
| 974 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_ASN1_LIB); | ||
| 975 | goto err; | ||
| 976 | } | ||
| 977 | /* set the generator, order and cofactor (if present) */ | ||
| 978 | if (!EC_GROUP_set_generator(ret, point, a, b)) | ||
| 979 | { | ||
| 980 | ECerr(EC_F_EC_ASN1_PARAMETERS2GROUP, ERR_R_EC_LIB); | ||
| 981 | goto err; | ||
| 982 | } | ||
| 983 | |||
| 984 | ok = 1; | ||
| 985 | |||
| 986 | err: if (!ok) | ||
| 987 | { | ||
| 988 | if (ret) | ||
| 989 | EC_GROUP_clear_free(ret); | ||
| 990 | ret = NULL; | ||
| 991 | } | ||
| 992 | |||
| 993 | if (p) | ||
| 994 | BN_free(p); | ||
| 995 | if (a) | ||
| 996 | BN_free(a); | ||
| 997 | if (b) | ||
| 998 | BN_free(b); | ||
| 999 | if (point) | ||
| 1000 | EC_POINT_free(point); | ||
| 1001 | return(ret); | ||
| 1002 | } | ||
| 1003 | |||
| 1004 | EC_GROUP *ec_asn1_pkparameters2group(const ECPKPARAMETERS *params) | ||
| 1005 | { | ||
| 1006 | EC_GROUP *ret=NULL; | ||
| 1007 | int tmp=0; | ||
| 1008 | |||
| 1009 | if (params == NULL) | ||
| 1010 | { | ||
| 1011 | ECerr(EC_F_EC_ASN1_PKPARAMETERS2GROUP, | ||
| 1012 | EC_R_MISSING_PARAMETERS); | ||
| 1013 | return NULL; | ||
| 1014 | } | ||
| 1015 | |||
| 1016 | if (params->type == 0) | ||
| 1017 | { /* the curve is given by an OID */ | ||
| 1018 | tmp = OBJ_obj2nid(params->value.named_curve); | ||
| 1019 | if ((ret = EC_GROUP_new_by_curve_name(tmp)) == NULL) | ||
| 1020 | { | ||
| 1021 | ECerr(EC_F_EC_ASN1_PKPARAMETERS2GROUP, | ||
| 1022 | EC_R_EC_GROUP_NEW_BY_NAME_FAILURE); | ||
| 1023 | return NULL; | ||
| 1024 | } | ||
| 1025 | EC_GROUP_set_asn1_flag(ret, OPENSSL_EC_NAMED_CURVE); | ||
| 1026 | } | ||
| 1027 | else if (params->type == 1) | ||
| 1028 | { /* the parameters are given by a ECPARAMETERS | ||
| 1029 | * structure */ | ||
| 1030 | ret = ec_asn1_parameters2group(params->value.parameters); | ||
| 1031 | if (!ret) | ||
| 1032 | { | ||
| 1033 | ECerr(EC_F_EC_ASN1_PKPARAMETERS2GROUP, ERR_R_EC_LIB); | ||
| 1034 | return NULL; | ||
| 1035 | } | ||
| 1036 | EC_GROUP_set_asn1_flag(ret, 0x0); | ||
| 1037 | } | ||
| 1038 | else if (params->type == 2) | ||
| 1039 | { /* implicitlyCA */ | ||
| 1040 | return NULL; | ||
| 1041 | } | ||
| 1042 | else | ||
| 1043 | { | ||
| 1044 | ECerr(EC_F_EC_ASN1_PKPARAMETERS2GROUP, EC_R_ASN1_ERROR); | ||
| 1045 | return NULL; | ||
| 1046 | } | ||
| 1047 | |||
| 1048 | return ret; | ||
| 1049 | } | ||
| 1050 | |||
| 1051 | /* EC_GROUP <-> DER encoding of ECPKPARAMETERS */ | ||
| 1052 | |||
| 1053 | EC_GROUP *d2i_ECPKParameters(EC_GROUP **a, const unsigned char **in, long len) | ||
| 1054 | { | ||
| 1055 | EC_GROUP *group = NULL; | ||
| 1056 | ECPKPARAMETERS *params = NULL; | ||
| 1057 | |||
| 1058 | if ((params = d2i_ECPKPARAMETERS(NULL, in, len)) == NULL) | ||
| 1059 | { | ||
| 1060 | ECerr(EC_F_D2I_ECPKPARAMETERS, EC_R_D2I_ECPKPARAMETERS_FAILURE); | ||
| 1061 | ECPKPARAMETERS_free(params); | ||
| 1062 | return NULL; | ||
| 1063 | } | ||
| 1064 | |||
| 1065 | if ((group = ec_asn1_pkparameters2group(params)) == NULL) | ||
| 1066 | { | ||
| 1067 | ECerr(EC_F_D2I_ECPKPARAMETERS, EC_R_PKPARAMETERS2GROUP_FAILURE); | ||
| 1068 | return NULL; | ||
| 1069 | } | ||
| 1070 | |||
| 1071 | |||
| 1072 | if (a && *a) | ||
| 1073 | EC_GROUP_clear_free(*a); | ||
| 1074 | if (a) | ||
| 1075 | *a = group; | ||
| 1076 | |||
| 1077 | ECPKPARAMETERS_free(params); | ||
| 1078 | return(group); | ||
| 1079 | } | ||
| 1080 | |||
| 1081 | int i2d_ECPKParameters(const EC_GROUP *a, unsigned char **out) | ||
| 1082 | { | ||
| 1083 | int ret=0; | ||
| 1084 | ECPKPARAMETERS *tmp = ec_asn1_group2pkparameters(a, NULL); | ||
| 1085 | if (tmp == NULL) | ||
| 1086 | { | ||
| 1087 | ECerr(EC_F_I2D_ECPKPARAMETERS, EC_R_GROUP2PKPARAMETERS_FAILURE); | ||
| 1088 | return 0; | ||
| 1089 | } | ||
| 1090 | if ((ret = i2d_ECPKPARAMETERS(tmp, out)) == 0) | ||
| 1091 | { | ||
| 1092 | ECerr(EC_F_I2D_ECPKPARAMETERS, EC_R_I2D_ECPKPARAMETERS_FAILURE); | ||
| 1093 | ECPKPARAMETERS_free(tmp); | ||
| 1094 | return 0; | ||
| 1095 | } | ||
| 1096 | ECPKPARAMETERS_free(tmp); | ||
| 1097 | return(ret); | ||
| 1098 | } | ||
| 1099 | |||
| 1100 | /* some EC_KEY functions */ | ||
| 1101 | |||
| 1102 | EC_KEY *d2i_ECPrivateKey(EC_KEY **a, const unsigned char **in, long len) | ||
| 1103 | { | ||
| 1104 | int ok=0; | ||
| 1105 | EC_KEY *ret=NULL; | ||
| 1106 | EC_PRIVATEKEY *priv_key=NULL; | ||
| 1107 | |||
| 1108 | if ((priv_key = EC_PRIVATEKEY_new()) == NULL) | ||
| 1109 | { | ||
| 1110 | ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_MALLOC_FAILURE); | ||
| 1111 | return NULL; | ||
| 1112 | } | ||
| 1113 | |||
| 1114 | if ((priv_key = d2i_EC_PRIVATEKEY(&priv_key, in, len)) == NULL) | ||
| 1115 | { | ||
| 1116 | ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1117 | EC_PRIVATEKEY_free(priv_key); | ||
| 1118 | return NULL; | ||
| 1119 | } | ||
| 1120 | |||
| 1121 | if (a == NULL || *a == NULL) | ||
| 1122 | { | ||
| 1123 | if ((ret = EC_KEY_new()) == NULL) | ||
| 1124 | { | ||
| 1125 | ECerr(EC_F_D2I_ECPRIVATEKEY, | ||
| 1126 | ERR_R_MALLOC_FAILURE); | ||
| 1127 | goto err; | ||
| 1128 | } | ||
| 1129 | if (a) | ||
| 1130 | *a = ret; | ||
| 1131 | } | ||
| 1132 | else | ||
| 1133 | ret = *a; | ||
| 1134 | |||
| 1135 | if (priv_key->parameters) | ||
| 1136 | { | ||
| 1137 | if (ret->group) | ||
| 1138 | EC_GROUP_clear_free(ret->group); | ||
| 1139 | ret->group = ec_asn1_pkparameters2group(priv_key->parameters); | ||
| 1140 | } | ||
| 1141 | |||
| 1142 | if (ret->group == NULL) | ||
| 1143 | { | ||
| 1144 | ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1145 | goto err; | ||
| 1146 | } | ||
| 1147 | |||
| 1148 | ret->version = priv_key->version; | ||
| 1149 | |||
| 1150 | if (priv_key->privateKey) | ||
| 1151 | { | ||
| 1152 | ret->priv_key = BN_bin2bn( | ||
| 1153 | M_ASN1_STRING_data(priv_key->privateKey), | ||
| 1154 | M_ASN1_STRING_length(priv_key->privateKey), | ||
| 1155 | ret->priv_key); | ||
| 1156 | if (ret->priv_key == NULL) | ||
| 1157 | { | ||
| 1158 | ECerr(EC_F_D2I_ECPRIVATEKEY, | ||
| 1159 | ERR_R_BN_LIB); | ||
| 1160 | goto err; | ||
| 1161 | } | ||
| 1162 | } | ||
| 1163 | else | ||
| 1164 | { | ||
| 1165 | ECerr(EC_F_D2I_ECPRIVATEKEY, | ||
| 1166 | EC_R_MISSING_PRIVATE_KEY); | ||
| 1167 | goto err; | ||
| 1168 | } | ||
| 1169 | |||
| 1170 | if (priv_key->publicKey) | ||
| 1171 | { | ||
| 1172 | const unsigned char *pub_oct; | ||
| 1173 | size_t pub_oct_len; | ||
| 1174 | |||
| 1175 | if (ret->pub_key) | ||
| 1176 | EC_POINT_clear_free(ret->pub_key); | ||
| 1177 | ret->pub_key = EC_POINT_new(ret->group); | ||
| 1178 | if (ret->pub_key == NULL) | ||
| 1179 | { | ||
| 1180 | ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1181 | goto err; | ||
| 1182 | } | ||
| 1183 | pub_oct = M_ASN1_STRING_data(priv_key->publicKey); | ||
| 1184 | pub_oct_len = M_ASN1_STRING_length(priv_key->publicKey); | ||
| 1185 | /* save the point conversion form */ | ||
| 1186 | ret->conv_form = (point_conversion_form_t)(pub_oct[0] & ~0x01); | ||
| 1187 | if (!EC_POINT_oct2point(ret->group, ret->pub_key, | ||
| 1188 | pub_oct, pub_oct_len, NULL)) | ||
| 1189 | { | ||
| 1190 | ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1191 | goto err; | ||
| 1192 | } | ||
| 1193 | } | ||
| 1194 | |||
| 1195 | ok = 1; | ||
| 1196 | err: | ||
| 1197 | if (!ok) | ||
| 1198 | { | ||
| 1199 | if (ret) | ||
| 1200 | EC_KEY_free(ret); | ||
| 1201 | ret = NULL; | ||
| 1202 | } | ||
| 1203 | |||
| 1204 | if (priv_key) | ||
| 1205 | EC_PRIVATEKEY_free(priv_key); | ||
| 1206 | |||
| 1207 | return(ret); | ||
| 1208 | } | ||
| 1209 | |||
| 1210 | int i2d_ECPrivateKey(EC_KEY *a, unsigned char **out) | ||
| 1211 | { | ||
| 1212 | int ret=0, ok=0; | ||
| 1213 | unsigned char *buffer=NULL; | ||
| 1214 | size_t buf_len=0, tmp_len; | ||
| 1215 | EC_PRIVATEKEY *priv_key=NULL; | ||
| 1216 | |||
| 1217 | if (a == NULL || a->group == NULL || a->priv_key == NULL) | ||
| 1218 | { | ||
| 1219 | ECerr(EC_F_I2D_ECPRIVATEKEY, | ||
| 1220 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1221 | goto err; | ||
| 1222 | } | ||
| 1223 | |||
| 1224 | if ((priv_key = EC_PRIVATEKEY_new()) == NULL) | ||
| 1225 | { | ||
| 1226 | ECerr(EC_F_I2D_ECPRIVATEKEY, | ||
| 1227 | ERR_R_MALLOC_FAILURE); | ||
| 1228 | goto err; | ||
| 1229 | } | ||
| 1230 | |||
| 1231 | priv_key->version = a->version; | ||
| 1232 | |||
| 1233 | buf_len = (size_t)BN_num_bytes(a->priv_key); | ||
| 1234 | buffer = OPENSSL_malloc(buf_len); | ||
| 1235 | if (buffer == NULL) | ||
| 1236 | { | ||
| 1237 | ECerr(EC_F_I2D_ECPRIVATEKEY, | ||
| 1238 | ERR_R_MALLOC_FAILURE); | ||
| 1239 | goto err; | ||
| 1240 | } | ||
| 1241 | |||
| 1242 | if (!BN_bn2bin(a->priv_key, buffer)) | ||
| 1243 | { | ||
| 1244 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_BN_LIB); | ||
| 1245 | goto err; | ||
| 1246 | } | ||
| 1247 | |||
| 1248 | if (!M_ASN1_OCTET_STRING_set(priv_key->privateKey, buffer, buf_len)) | ||
| 1249 | { | ||
| 1250 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_ASN1_LIB); | ||
| 1251 | goto err; | ||
| 1252 | } | ||
| 1253 | |||
| 1254 | if (!(a->enc_flag & EC_PKEY_NO_PARAMETERS)) | ||
| 1255 | { | ||
| 1256 | if ((priv_key->parameters = ec_asn1_group2pkparameters( | ||
| 1257 | a->group, priv_key->parameters)) == NULL) | ||
| 1258 | { | ||
| 1259 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1260 | goto err; | ||
| 1261 | } | ||
| 1262 | } | ||
| 1263 | |||
| 1264 | if (!(a->enc_flag & EC_PKEY_NO_PUBKEY)) | ||
| 1265 | { | ||
| 1266 | priv_key->publicKey = M_ASN1_BIT_STRING_new(); | ||
| 1267 | if (priv_key->publicKey == NULL) | ||
| 1268 | { | ||
| 1269 | ECerr(EC_F_I2D_ECPRIVATEKEY, | ||
| 1270 | ERR_R_MALLOC_FAILURE); | ||
| 1271 | goto err; | ||
| 1272 | } | ||
| 1273 | |||
| 1274 | tmp_len = EC_POINT_point2oct(a->group, a->pub_key, | ||
| 1275 | a->conv_form, NULL, 0, NULL); | ||
| 1276 | |||
| 1277 | if (tmp_len > buf_len) | ||
| 1278 | { | ||
| 1279 | unsigned char *tmp_buffer = OPENSSL_realloc(buffer, tmp_len); | ||
| 1280 | if (!tmp_buffer) | ||
| 1281 | { | ||
| 1282 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_MALLOC_FAILURE); | ||
| 1283 | goto err; | ||
| 1284 | } | ||
| 1285 | buffer = tmp_buffer; | ||
| 1286 | buf_len = tmp_len; | ||
| 1287 | } | ||
| 1288 | |||
| 1289 | if (!EC_POINT_point2oct(a->group, a->pub_key, | ||
| 1290 | a->conv_form, buffer, buf_len, NULL)) | ||
| 1291 | { | ||
| 1292 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1293 | goto err; | ||
| 1294 | } | ||
| 1295 | |||
| 1296 | priv_key->publicKey->flags &= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); | ||
| 1297 | priv_key->publicKey->flags |= ASN1_STRING_FLAG_BITS_LEFT; | ||
| 1298 | if (!M_ASN1_BIT_STRING_set(priv_key->publicKey, buffer, | ||
| 1299 | buf_len)) | ||
| 1300 | { | ||
| 1301 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_ASN1_LIB); | ||
| 1302 | goto err; | ||
| 1303 | } | ||
| 1304 | } | ||
| 1305 | |||
| 1306 | if ((ret = i2d_EC_PRIVATEKEY(priv_key, out)) == 0) | ||
| 1307 | { | ||
| 1308 | ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_EC_LIB); | ||
| 1309 | goto err; | ||
| 1310 | } | ||
| 1311 | ok=1; | ||
| 1312 | err: | ||
| 1313 | if (buffer) | ||
| 1314 | OPENSSL_free(buffer); | ||
| 1315 | if (priv_key) | ||
| 1316 | EC_PRIVATEKEY_free(priv_key); | ||
| 1317 | return(ok?ret:0); | ||
| 1318 | } | ||
| 1319 | |||
| 1320 | int i2d_ECParameters(EC_KEY *a, unsigned char **out) | ||
| 1321 | { | ||
| 1322 | if (a == NULL) | ||
| 1323 | { | ||
| 1324 | ECerr(EC_F_I2D_ECPARAMETERS, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1325 | return 0; | ||
| 1326 | } | ||
| 1327 | return i2d_ECPKParameters(a->group, out); | ||
| 1328 | } | ||
| 1329 | |||
| 1330 | EC_KEY *d2i_ECParameters(EC_KEY **a, const unsigned char **in, long len) | ||
| 1331 | { | ||
| 1332 | EC_KEY *ret; | ||
| 1333 | |||
| 1334 | if (in == NULL || *in == NULL) | ||
| 1335 | { | ||
| 1336 | ECerr(EC_F_D2I_ECPARAMETERS, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1337 | return NULL; | ||
| 1338 | } | ||
| 1339 | |||
| 1340 | if (a == NULL || *a == NULL) | ||
| 1341 | { | ||
| 1342 | if ((ret = EC_KEY_new()) == NULL) | ||
| 1343 | { | ||
| 1344 | ECerr(EC_F_D2I_ECPARAMETERS, ERR_R_MALLOC_FAILURE); | ||
| 1345 | return NULL; | ||
| 1346 | } | ||
| 1347 | if (a) | ||
| 1348 | *a = ret; | ||
| 1349 | } | ||
| 1350 | else | ||
| 1351 | ret = *a; | ||
| 1352 | |||
| 1353 | if (!d2i_ECPKParameters(&ret->group, in, len)) | ||
| 1354 | { | ||
| 1355 | ECerr(EC_F_D2I_ECPARAMETERS, ERR_R_EC_LIB); | ||
| 1356 | return NULL; | ||
| 1357 | } | ||
| 1358 | |||
| 1359 | return ret; | ||
| 1360 | } | ||
| 1361 | |||
| 1362 | EC_KEY *o2i_ECPublicKey(EC_KEY **a, const unsigned char **in, long len) | ||
| 1363 | { | ||
| 1364 | EC_KEY *ret=NULL; | ||
| 1365 | |||
| 1366 | if (a == NULL || (*a) == NULL || (*a)->group == NULL) | ||
| 1367 | { | ||
| 1368 | /* sorry, but a EC_GROUP-structur is necessary | ||
| 1369 | * to set the public key */ | ||
| 1370 | ECerr(EC_F_O2I_ECPUBLICKEY, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1371 | return 0; | ||
| 1372 | } | ||
| 1373 | ret = *a; | ||
| 1374 | if (ret->pub_key == NULL && | ||
| 1375 | (ret->pub_key = EC_POINT_new(ret->group)) == NULL) | ||
| 1376 | { | ||
| 1377 | ECerr(EC_F_O2I_ECPUBLICKEY, ERR_R_MALLOC_FAILURE); | ||
| 1378 | return 0; | ||
| 1379 | } | ||
| 1380 | if (!EC_POINT_oct2point(ret->group, ret->pub_key, *in, len, NULL)) | ||
| 1381 | { | ||
| 1382 | ECerr(EC_F_O2I_ECPUBLICKEY, ERR_R_EC_LIB); | ||
| 1383 | return 0; | ||
| 1384 | } | ||
| 1385 | /* save the point conversion form */ | ||
| 1386 | ret->conv_form = (point_conversion_form_t)(*in[0] & ~0x01); | ||
| 1387 | *in += len; | ||
| 1388 | return ret; | ||
| 1389 | } | ||
| 1390 | |||
| 1391 | int i2o_ECPublicKey(EC_KEY *a, unsigned char **out) | ||
| 1392 | { | ||
| 1393 | size_t buf_len=0; | ||
| 1394 | int new_buffer = 0; | ||
| 1395 | |||
| 1396 | if (a == NULL) | ||
| 1397 | { | ||
| 1398 | ECerr(EC_F_I2O_ECPUBLICKEY, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1399 | return 0; | ||
| 1400 | } | ||
| 1401 | |||
| 1402 | buf_len = EC_POINT_point2oct(a->group, a->pub_key, | ||
| 1403 | a->conv_form, NULL, 0, NULL); | ||
| 1404 | |||
| 1405 | if (out == NULL || buf_len == 0) | ||
| 1406 | /* out == NULL => just return the length of the octet string */ | ||
| 1407 | return buf_len; | ||
| 1408 | |||
| 1409 | if (*out == NULL) | ||
| 1410 | { | ||
| 1411 | if ((*out = OPENSSL_malloc(buf_len)) == NULL) | ||
| 1412 | { | ||
| 1413 | ECerr(EC_F_I2O_ECPUBLICKEY, ERR_R_MALLOC_FAILURE); | ||
| 1414 | return 0; | ||
| 1415 | } | ||
| 1416 | new_buffer = 1; | ||
| 1417 | } | ||
| 1418 | if (!EC_POINT_point2oct(a->group, a->pub_key, a->conv_form, | ||
| 1419 | *out, buf_len, NULL)) | ||
| 1420 | { | ||
| 1421 | ECerr(EC_F_I2O_ECPUBLICKEY, ERR_R_EC_LIB); | ||
| 1422 | OPENSSL_free(*out); | ||
| 1423 | *out = NULL; | ||
| 1424 | return 0; | ||
| 1425 | } | ||
| 1426 | if (!new_buffer) | ||
| 1427 | *out += buf_len; | ||
| 1428 | return buf_len; | ||
| 1429 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec_check.c b/src/lib/libssl/src/crypto/ec/ec_check.c new file mode 100644 index 0000000000..0e316b4b3f --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec_check.c | |||
| @@ -0,0 +1,123 @@ | |||
| 1 | /* crypto/ec/ec_check.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #include "ec_lcl.h" | ||
| 57 | #include <openssl/err.h> | ||
| 58 | |||
| 59 | int EC_GROUP_check(const EC_GROUP *group, BN_CTX *ctx) | ||
| 60 | { | ||
| 61 | int ret = 0; | ||
| 62 | BIGNUM *order; | ||
| 63 | BN_CTX *new_ctx = NULL; | ||
| 64 | EC_POINT *point = NULL; | ||
| 65 | |||
| 66 | if (ctx == NULL) | ||
| 67 | { | ||
| 68 | ctx = new_ctx = BN_CTX_new(); | ||
| 69 | if (ctx == NULL) | ||
| 70 | { | ||
| 71 | ECerr(EC_F_EC_GROUP_CHECK, ERR_R_MALLOC_FAILURE); | ||
| 72 | goto err; | ||
| 73 | } | ||
| 74 | } | ||
| 75 | BN_CTX_start(ctx); | ||
| 76 | if ((order = BN_CTX_get(ctx)) == NULL) goto err; | ||
| 77 | |||
| 78 | /* check the discriminant */ | ||
| 79 | if (!EC_GROUP_check_discriminant(group, ctx)) | ||
| 80 | { | ||
| 81 | ECerr(EC_F_EC_GROUP_CHECK, EC_R_DISCRIMINANT_IS_ZERO); | ||
| 82 | goto err; | ||
| 83 | } | ||
| 84 | |||
| 85 | /* check the generator */ | ||
| 86 | if (group->generator == NULL) | ||
| 87 | { | ||
| 88 | ECerr(EC_F_EC_GROUP_CHECK, EC_R_UNDEFINED_GENERATOR); | ||
| 89 | goto err; | ||
| 90 | } | ||
| 91 | if (!EC_POINT_is_on_curve(group, group->generator, ctx)) | ||
| 92 | { | ||
| 93 | ECerr(EC_F_EC_GROUP_CHECK, EC_R_POINT_IS_NOT_ON_CURVE); | ||
| 94 | goto err; | ||
| 95 | } | ||
| 96 | |||
| 97 | /* check the order of the generator */ | ||
| 98 | if ((point = EC_POINT_new(group)) == NULL) goto err; | ||
| 99 | if (!EC_GROUP_get_order(group, order, ctx)) goto err; | ||
| 100 | if (BN_is_zero(order)) | ||
| 101 | { | ||
| 102 | ECerr(EC_F_EC_GROUP_CHECK, EC_R_UNDEFINED_ORDER); | ||
| 103 | goto err; | ||
| 104 | } | ||
| 105 | |||
| 106 | if (!EC_POINT_mul(group, point, order, NULL, NULL, ctx)) goto err; | ||
| 107 | if (!EC_POINT_is_at_infinity(group, point)) | ||
| 108 | { | ||
| 109 | ECerr(EC_F_EC_GROUP_CHECK, EC_R_INVALID_GROUP_ORDER); | ||
| 110 | goto err; | ||
| 111 | } | ||
| 112 | |||
| 113 | ret = 1; | ||
| 114 | |||
| 115 | err: | ||
| 116 | if (ctx != NULL) | ||
| 117 | BN_CTX_end(ctx); | ||
| 118 | if (new_ctx != NULL) | ||
| 119 | BN_CTX_free(new_ctx); | ||
| 120 | if (point) | ||
| 121 | EC_POINT_free(point); | ||
| 122 | return ret; | ||
| 123 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec_curve.c b/src/lib/libssl/src/crypto/ec/ec_curve.c new file mode 100644 index 0000000000..beac20969b --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec_curve.c | |||
| @@ -0,0 +1,1270 @@ | |||
| 1 | /* crypto/ec/ec_curve.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | /* ==================================================================== | ||
| 59 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 60 | * | ||
| 61 | * Portions of the attached software ("Contribution") are developed by | ||
| 62 | * SUN MICROSYSTEMS, INC., and are contributed to the OpenSSL project. | ||
| 63 | * | ||
| 64 | * The Contribution is licensed pursuant to the OpenSSL open source | ||
| 65 | * license provided above. | ||
| 66 | * | ||
| 67 | * The elliptic curve binary polynomial software is originally written by | ||
| 68 | * Sheueling Chang Shantz and Douglas Stebila of Sun Microsystems Laboratories. | ||
| 69 | * | ||
| 70 | */ | ||
| 71 | |||
| 72 | #include "ec_lcl.h" | ||
| 73 | #include <openssl/err.h> | ||
| 74 | #include <openssl/obj_mac.h> | ||
| 75 | |||
| 76 | typedef struct ec_curve_data_st { | ||
| 77 | int field_type; /* either NID_X9_62_prime_field or | ||
| 78 | * NID_X9_62_characteristic_two_field */ | ||
| 79 | const char *p; /* either a prime number or a polynomial */ | ||
| 80 | const char *a; | ||
| 81 | const char *b; | ||
| 82 | const char *x; /* the x coordinate of the generator */ | ||
| 83 | const char *y; /* the y coordinate of the generator */ | ||
| 84 | const char *order; /* the order of the group generated by the | ||
| 85 | * generator */ | ||
| 86 | const BN_ULONG cofactor;/* the cofactor */ | ||
| 87 | const unsigned char *seed;/* the seed (optional) */ | ||
| 88 | size_t seed_len; | ||
| 89 | const char *comment; /* a short description of the curve */ | ||
| 90 | } EC_CURVE_DATA; | ||
| 91 | |||
| 92 | /* the nist prime curves */ | ||
| 93 | static const unsigned char _EC_NIST_PRIME_192_SEED[] = { | ||
| 94 | 0x30,0x45,0xAE,0x6F,0xC8,0x42,0x2F,0x64,0xED,0x57, | ||
| 95 | 0x95,0x28,0xD3,0x81,0x20,0xEA,0xE1,0x21,0x96,0xD5}; | ||
| 96 | static const EC_CURVE_DATA _EC_NIST_PRIME_192 = { | ||
| 97 | NID_X9_62_prime_field, | ||
| 98 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFF", | ||
| 99 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFC", | ||
| 100 | "64210519E59C80E70FA7E9AB72243049FEB8DEECC146B9B1", | ||
| 101 | "188DA80EB03090F67CBF20EB43A18800F4FF0AFD82FF1012", | ||
| 102 | "07192b95ffc8da78631011ed6b24cdd573f977a11e794811", | ||
| 103 | "FFFFFFFFFFFFFFFFFFFFFFFF99DEF836146BC9B1B4D22831",1, | ||
| 104 | _EC_NIST_PRIME_192_SEED, 20, | ||
| 105 | "NIST/X9.62/SECG curve over a 192 bit prime field" | ||
| 106 | }; | ||
| 107 | |||
| 108 | static const unsigned char _EC_NIST_PRIME_224_SEED[] = { | ||
| 109 | 0xBD,0x71,0x34,0x47,0x99,0xD5,0xC7,0xFC,0xDC,0x45, | ||
| 110 | 0xB5,0x9F,0xA3,0xB9,0xAB,0x8F,0x6A,0x94,0x8B,0xC5}; | ||
| 111 | static const EC_CURVE_DATA _EC_NIST_PRIME_224 = { | ||
| 112 | NID_X9_62_prime_field, | ||
| 113 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF000000000000000000000001", | ||
| 114 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFFFFFFFFFE", | ||
| 115 | "B4050A850C04B3ABF54132565044B0B7D7BFD8BA270B39432355FFB4", | ||
| 116 | "B70E0CBD6BB4BF7F321390B94A03C1D356C21122343280D6115C1D21", | ||
| 117 | "bd376388b5f723fb4c22dfe6cd4375a05a07476444d5819985007e34", | ||
| 118 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFF16A2E0B8F03E13DD29455C5C2A3D",1, | ||
| 119 | _EC_NIST_PRIME_224_SEED, 20, | ||
| 120 | "NIST/SECG curve over a 224 bit prime field" | ||
| 121 | }; | ||
| 122 | |||
| 123 | static const unsigned char _EC_NIST_PRIME_384_SEED[] = { | ||
| 124 | 0xA3,0x35,0x92,0x6A,0xA3,0x19,0xA2,0x7A,0x1D,0x00, | ||
| 125 | 0x89,0x6A,0x67,0x73,0xA4,0x82,0x7A,0xCD,0xAC,0x73}; | ||
| 126 | static const EC_CURVE_DATA _EC_NIST_PRIME_384 = { | ||
| 127 | NID_X9_62_prime_field, | ||
| 128 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFF" | ||
| 129 | "FFF0000000000000000FFFFFFFF", | ||
| 130 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFF" | ||
| 131 | "FFF0000000000000000FFFFFFFC", | ||
| 132 | "B3312FA7E23EE7E4988E056BE3F82D19181D9C6EFE8141120314088F5013875AC6563" | ||
| 133 | "98D8A2ED19D2A85C8EDD3EC2AEF", | ||
| 134 | "AA87CA22BE8B05378EB1C71EF320AD746E1D3B628BA79B9859F741E082542A385502F" | ||
| 135 | "25DBF55296C3A545E3872760AB7", | ||
| 136 | "3617de4a96262c6f5d9e98bf9292dc29f8f41dbd289a147ce9da3113b5f0b8c00a60b" | ||
| 137 | "1ce1d7e819d7a431d7c90ea0e5f", | ||
| 138 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFC7634D81F4372DDF581A0" | ||
| 139 | "DB248B0A77AECEC196ACCC52973",1, | ||
| 140 | _EC_NIST_PRIME_384_SEED, 20, | ||
| 141 | "NIST/SECG curve over a 384 bit prime field" | ||
| 142 | }; | ||
| 143 | |||
| 144 | static const unsigned char _EC_NIST_PRIME_521_SEED[] = { | ||
| 145 | 0xD0,0x9E,0x88,0x00,0x29,0x1C,0xB8,0x53,0x96,0xCC, | ||
| 146 | 0x67,0x17,0x39,0x32,0x84,0xAA,0xA0,0xDA,0x64,0xBA}; | ||
| 147 | static const EC_CURVE_DATA _EC_NIST_PRIME_521 = { | ||
| 148 | NID_X9_62_prime_field, | ||
| 149 | "1FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF" | ||
| 150 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF", | ||
| 151 | "1FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF" | ||
| 152 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFC", | ||
| 153 | "051953EB9618E1C9A1F929A21A0B68540EEA2DA725B99B315F3B8B489918EF109E156" | ||
| 154 | "193951EC7E937B1652C0BD3BB1BF073573DF883D2C34F1EF451FD46B503F00", | ||
| 155 | "C6858E06B70404E9CD9E3ECB662395B4429C648139053FB521F828AF606B4D3DBAA14" | ||
| 156 | "B5E77EFE75928FE1DC127A2FFA8DE3348B3C1856A429BF97E7E31C2E5BD66", | ||
| 157 | "011839296a789a3bc0045c8a5fb42c7d1bd998f54449579b446817afbd17273e662c9" | ||
| 158 | "7ee72995ef42640c550b9013fad0761353c7086a272c24088be94769fd16650", | ||
| 159 | "1FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFA51" | ||
| 160 | "868783BF2F966B7FCC0148F709A5D03BB5C9B8899C47AEBB6FB71E91386409",1, | ||
| 161 | _EC_NIST_PRIME_521_SEED, 20, | ||
| 162 | "NIST/SECG curve over a 521 bit prime field" | ||
| 163 | }; | ||
| 164 | /* the x9.62 prime curves (minus the nist prime curves) */ | ||
| 165 | static const unsigned char _EC_X9_62_PRIME_192V2_SEED[] = { | ||
| 166 | 0x31,0xA9,0x2E,0xE2,0x02,0x9F,0xD1,0x0D,0x90,0x1B, | ||
| 167 | 0x11,0x3E,0x99,0x07,0x10,0xF0,0xD2,0x1A,0xC6,0xB6}; | ||
| 168 | static const EC_CURVE_DATA _EC_X9_62_PRIME_192V2 = { | ||
| 169 | NID_X9_62_prime_field, | ||
| 170 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFF", | ||
| 171 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFC", | ||
| 172 | "CC22D6DFB95C6B25E49C0D6364A4E5980C393AA21668D953", | ||
| 173 | "EEA2BAE7E1497842F2DE7769CFE9C989C072AD696F48034A", | ||
| 174 | "6574d11d69b6ec7a672bb82a083df2f2b0847de970b2de15", | ||
| 175 | "FFFFFFFFFFFFFFFFFFFFFFFE5FB1A724DC80418648D8DD31",1, | ||
| 176 | _EC_X9_62_PRIME_192V2_SEED, 20, | ||
| 177 | "X9.62 curve over a 192 bit prime field" | ||
| 178 | }; | ||
| 179 | |||
| 180 | static const unsigned char _EC_X9_62_PRIME_192V3_SEED[] = { | ||
| 181 | 0xC4,0x69,0x68,0x44,0x35,0xDE,0xB3,0x78,0xC4,0xB6, | ||
| 182 | 0x5C,0xA9,0x59,0x1E,0x2A,0x57,0x63,0x05,0x9A,0x2E}; | ||
| 183 | static const EC_CURVE_DATA _EC_X9_62_PRIME_192V3 = { | ||
| 184 | NID_X9_62_prime_field, | ||
| 185 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFF", | ||
| 186 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFC", | ||
| 187 | "22123DC2395A05CAA7423DAECCC94760A7D462256BD56916", | ||
| 188 | "7D29778100C65A1DA1783716588DCE2B8B4AEE8E228F1896", | ||
| 189 | "38a90f22637337334b49dcb66a6dc8f9978aca7648a943b0", | ||
| 190 | "FFFFFFFFFFFFFFFFFFFFFFFF7A62D031C83F4294F640EC13",1, | ||
| 191 | _EC_X9_62_PRIME_192V3_SEED, 20, | ||
| 192 | "X9.62 curve over a 192 bit prime field" | ||
| 193 | }; | ||
| 194 | |||
| 195 | static const unsigned char _EC_X9_62_PRIME_239V1_SEED[] = { | ||
| 196 | 0xE4,0x3B,0xB4,0x60,0xF0,0xB8,0x0C,0xC0,0xC0,0xB0, | ||
| 197 | 0x75,0x79,0x8E,0x94,0x80,0x60,0xF8,0x32,0x1B,0x7D}; | ||
| 198 | static const EC_CURVE_DATA _EC_X9_62_PRIME_239V1 = { | ||
| 199 | NID_X9_62_prime_field, | ||
| 200 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFFFFFFFF8000000000007FFFFFFFFFFF", | ||
| 201 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFFFFFFFF8000000000007FFFFFFFFFFC", | ||
| 202 | "6B016C3BDCF18941D0D654921475CA71A9DB2FB27D1D37796185C2942C0A", | ||
| 203 | "0FFA963CDCA8816CCC33B8642BEDF905C3D358573D3F27FBBD3B3CB9AAAF", | ||
| 204 | "7debe8e4e90a5dae6e4054ca530ba04654b36818ce226b39fccb7b02f1ae", | ||
| 205 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFF9E5E9A9F5D9071FBD1522688909D0B",1, | ||
| 206 | _EC_X9_62_PRIME_239V1_SEED, 20, | ||
| 207 | "X9.62 curve over a 239 bit prime field" | ||
| 208 | }; | ||
| 209 | |||
| 210 | static const unsigned char _EC_X9_62_PRIME_239V2_SEED[] = { | ||
| 211 | 0xE8,0xB4,0x01,0x16,0x04,0x09,0x53,0x03,0xCA,0x3B, | ||
| 212 | 0x80,0x99,0x98,0x2B,0xE0,0x9F,0xCB,0x9A,0xE6,0x16}; | ||
| 213 | static const EC_CURVE_DATA _EC_X9_62_PRIME_239V2 = { | ||
| 214 | NID_X9_62_prime_field, | ||
| 215 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFFFFFFFF8000000000007FFFFFFFFFFF", | ||
| 216 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFFFFFFFF8000000000007FFFFFFFFFFC", | ||
| 217 | "617FAB6832576CBBFED50D99F0249C3FEE58B94BA0038C7AE84C8C832F2C", | ||
| 218 | "38AF09D98727705120C921BB5E9E26296A3CDCF2F35757A0EAFD87B830E7", | ||
| 219 | "5b0125e4dbea0ec7206da0fc01d9b081329fb555de6ef460237dff8be4ba", | ||
| 220 | "7FFFFFFFFFFFFFFFFFFFFFFF800000CFA7E8594377D414C03821BC582063",1, | ||
| 221 | _EC_X9_62_PRIME_239V2_SEED, 20, | ||
| 222 | "X9.62 curve over a 239 bit prime field" | ||
| 223 | }; | ||
| 224 | |||
| 225 | static const unsigned char _EC_X9_62_PRIME_239V3_SEED[] = { | ||
| 226 | 0x7D,0x73,0x74,0x16,0x8F,0xFE,0x34,0x71,0xB6,0x0A, | ||
| 227 | 0x85,0x76,0x86,0xA1,0x94,0x75,0xD3,0xBF,0xA2,0xFF}; | ||
| 228 | static const EC_CURVE_DATA _EC_X9_62_PRIME_239V3 = { | ||
| 229 | NID_X9_62_prime_field, | ||
| 230 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFFFFFFFF8000000000007FFFFFFFFFFF", | ||
| 231 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFFFFFFFF8000000000007FFFFFFFFFFC", | ||
| 232 | "255705FA2A306654B1F4CB03D6A750A30C250102D4988717D9BA15AB6D3E", | ||
| 233 | "6768AE8E18BB92CFCF005C949AA2C6D94853D0E660BBF854B1C9505FE95A", | ||
| 234 | "1607e6898f390c06bc1d552bad226f3b6fcfe48b6e818499af18e3ed6cf3", | ||
| 235 | "7FFFFFFFFFFFFFFFFFFFFFFF7FFFFF975DEB41B3A6057C3C432146526551",1, | ||
| 236 | _EC_X9_62_PRIME_239V3_SEED, 20, | ||
| 237 | "X9.62 curve over a 239 bit prime field" | ||
| 238 | }; | ||
| 239 | |||
| 240 | static const unsigned char _EC_X9_62_PRIME_256V1_SEED[] = { | ||
| 241 | 0xC4,0x9D,0x36,0x08,0x86,0xE7,0x04,0x93,0x6A,0x66, | ||
| 242 | 0x78,0xE1,0x13,0x9D,0x26,0xB7,0x81,0x9F,0x7E,0x90}; | ||
| 243 | static const EC_CURVE_DATA _EC_X9_62_PRIME_256V1 = { | ||
| 244 | NID_X9_62_prime_field, | ||
| 245 | "FFFFFFFF00000001000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFF", | ||
| 246 | "FFFFFFFF00000001000000000000000000000000FFFFFFFFFFFFFFFFFFFFFFFC", | ||
| 247 | "5AC635D8AA3A93E7B3EBBD55769886BC651D06B0CC53B0F63BCE3C3E27D2604B", | ||
| 248 | "6B17D1F2E12C4247F8BCE6E563A440F277037D812DEB33A0F4A13945D898C296", | ||
| 249 | "4fe342e2fe1a7f9b8ee7eb4a7c0f9e162bce33576b315ececbb6406837bf51f5", | ||
| 250 | "FFFFFFFF00000000FFFFFFFFFFFFFFFFBCE6FAADA7179E84F3B9CAC2FC632551",1, | ||
| 251 | _EC_X9_62_PRIME_256V1_SEED, 20, | ||
| 252 | "X9.62/SECG curve over a 256 bit prime field" | ||
| 253 | }; | ||
| 254 | /* the secg prime curves (minus the nist and x9.62 prime curves) */ | ||
| 255 | static const unsigned char _EC_SECG_PRIME_112R1_SEED[] = { | ||
| 256 | 0x00,0xF5,0x0B,0x02,0x8E,0x4D,0x69,0x6E,0x67,0x68, | ||
| 257 | 0x75,0x61,0x51,0x75,0x29,0x04,0x72,0x78,0x3F,0xB1}; | ||
| 258 | static const EC_CURVE_DATA _EC_SECG_PRIME_112R1 = { | ||
| 259 | NID_X9_62_prime_field, | ||
| 260 | "DB7C2ABF62E35E668076BEAD208B", | ||
| 261 | "DB7C2ABF62E35E668076BEAD2088", | ||
| 262 | "659EF8BA043916EEDE8911702B22", | ||
| 263 | "09487239995A5EE76B55F9C2F098", | ||
| 264 | "a89ce5af8724c0a23e0e0ff77500", | ||
| 265 | "DB7C2ABF62E35E7628DFAC6561C5",1, | ||
| 266 | _EC_SECG_PRIME_112R1_SEED, 20, | ||
| 267 | "SECG/WTLS curve over a 112 bit prime field" | ||
| 268 | }; | ||
| 269 | |||
| 270 | static const unsigned char _EC_SECG_PRIME_112R2_SEED[] = { | ||
| 271 | 0x00,0x27,0x57,0xA1,0x11,0x4D,0x69,0x6E,0x67,0x68, | ||
| 272 | 0x75,0x61,0x51,0x75,0x53,0x16,0xC0,0x5E,0x0B,0xD4}; | ||
| 273 | static const EC_CURVE_DATA _EC_SECG_PRIME_112R2 = { | ||
| 274 | NID_X9_62_prime_field, | ||
| 275 | "DB7C2ABF62E35E668076BEAD208B", | ||
| 276 | "6127C24C05F38A0AAAF65C0EF02C", | ||
| 277 | "51DEF1815DB5ED74FCC34C85D709", | ||
| 278 | "4BA30AB5E892B4E1649DD0928643", | ||
| 279 | "adcd46f5882e3747def36e956e97", | ||
| 280 | "36DF0AAFD8B8D7597CA10520D04B",4, | ||
| 281 | _EC_SECG_PRIME_112R2_SEED, 20, | ||
| 282 | "SECG curve over a 112 bit prime field" | ||
| 283 | }; | ||
| 284 | |||
| 285 | static const unsigned char _EC_SECG_PRIME_128R1_SEED[] = { | ||
| 286 | 0x00,0x0E,0x0D,0x4D,0x69,0x6E,0x67,0x68,0x75,0x61, | ||
| 287 | 0x51,0x75,0x0C,0xC0,0x3A,0x44,0x73,0xD0,0x36,0x79}; | ||
| 288 | static const EC_CURVE_DATA _EC_SECG_PRIME_128R1 = { | ||
| 289 | NID_X9_62_prime_field, | ||
| 290 | "FFFFFFFDFFFFFFFFFFFFFFFFFFFFFFFF", | ||
| 291 | "FFFFFFFDFFFFFFFFFFFFFFFFFFFFFFFC", | ||
| 292 | "E87579C11079F43DD824993C2CEE5ED3", | ||
| 293 | "161FF7528B899B2D0C28607CA52C5B86", | ||
| 294 | "cf5ac8395bafeb13c02da292dded7a83", | ||
| 295 | "FFFFFFFE0000000075A30D1B9038A115",1, | ||
| 296 | _EC_SECG_PRIME_128R1_SEED, 20, | ||
| 297 | "SECG curve over a 128 bit prime field" | ||
| 298 | }; | ||
| 299 | |||
| 300 | static const unsigned char _EC_SECG_PRIME_128R2_SEED[] = { | ||
| 301 | 0x00,0x4D,0x69,0x6E,0x67,0x68,0x75,0x61,0x51,0x75, | ||
| 302 | 0x12,0xD8,0xF0,0x34,0x31,0xFC,0xE6,0x3B,0x88,0xF4}; | ||
| 303 | static const EC_CURVE_DATA _EC_SECG_PRIME_128R2 = { | ||
| 304 | NID_X9_62_prime_field, | ||
| 305 | "FFFFFFFDFFFFFFFFFFFFFFFFFFFFFFFF", | ||
| 306 | "D6031998D1B3BBFEBF59CC9BBFF9AEE1", | ||
| 307 | "5EEEFCA380D02919DC2C6558BB6D8A5D", | ||
| 308 | "7B6AA5D85E572983E6FB32A7CDEBC140", | ||
| 309 | "27b6916a894d3aee7106fe805fc34b44", | ||
| 310 | "3FFFFFFF7FFFFFFFBE0024720613B5A3",4, | ||
| 311 | _EC_SECG_PRIME_128R2_SEED, 20, | ||
| 312 | "SECG curve over a 128 bit prime field" | ||
| 313 | }; | ||
| 314 | |||
| 315 | static const EC_CURVE_DATA _EC_SECG_PRIME_160K1 = { | ||
| 316 | NID_X9_62_prime_field, | ||
| 317 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFAC73", | ||
| 318 | "0", | ||
| 319 | "7", | ||
| 320 | "3B4C382CE37AA192A4019E763036F4F5DD4D7EBB", | ||
| 321 | "938cf935318fdced6bc28286531733c3f03c4fee", | ||
| 322 | "0100000000000000000001B8FA16DFAB9ACA16B6B3",1, | ||
| 323 | NULL, 0, | ||
| 324 | "SECG curve over a 160 bit prime field" | ||
| 325 | }; | ||
| 326 | |||
| 327 | static const unsigned char _EC_SECG_PRIME_160R1_SEED[] = { | ||
| 328 | 0x10,0x53,0xCD,0xE4,0x2C,0x14,0xD6,0x96,0xE6,0x76, | ||
| 329 | 0x87,0x56,0x15,0x17,0x53,0x3B,0xF3,0xF8,0x33,0x45}; | ||
| 330 | static const EC_CURVE_DATA _EC_SECG_PRIME_160R1 = { | ||
| 331 | NID_X9_62_prime_field, | ||
| 332 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF7FFFFFFF", | ||
| 333 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF7FFFFFFC", | ||
| 334 | "1C97BEFC54BD7A8B65ACF89F81D4D4ADC565FA45", | ||
| 335 | "4A96B5688EF573284664698968C38BB913CBFC82", | ||
| 336 | "23a628553168947d59dcc912042351377ac5fb32", | ||
| 337 | "0100000000000000000001F4C8F927AED3CA752257",1, | ||
| 338 | _EC_SECG_PRIME_160R1_SEED, 20, | ||
| 339 | "SECG curve over a 160 bit prime field" | ||
| 340 | }; | ||
| 341 | |||
| 342 | static const unsigned char _EC_SECG_PRIME_160R2_SEED[] = { | ||
| 343 | 0xB9,0x9B,0x99,0xB0,0x99,0xB3,0x23,0xE0,0x27,0x09, | ||
| 344 | 0xA4,0xD6,0x96,0xE6,0x76,0x87,0x56,0x15,0x17,0x51}; | ||
| 345 | static const EC_CURVE_DATA _EC_SECG_PRIME_160R2 = { | ||
| 346 | NID_X9_62_prime_field, | ||
| 347 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFAC73", | ||
| 348 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFAC70", | ||
| 349 | "B4E134D3FB59EB8BAB57274904664D5AF50388BA", | ||
| 350 | "52DCB034293A117E1F4FF11B30F7199D3144CE6D", | ||
| 351 | "feaffef2e331f296e071fa0df9982cfea7d43f2e", | ||
| 352 | "0100000000000000000000351EE786A818F3A1A16B",1, | ||
| 353 | _EC_SECG_PRIME_160R2_SEED, 20, | ||
| 354 | "SECG/WTLS curve over a 160 bit prime field" | ||
| 355 | }; | ||
| 356 | |||
| 357 | static const EC_CURVE_DATA _EC_SECG_PRIME_192K1 = { | ||
| 358 | NID_X9_62_prime_field, | ||
| 359 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFEE37", | ||
| 360 | "0", | ||
| 361 | "3", | ||
| 362 | "DB4FF10EC057E9AE26B07D0280B7F4341DA5D1B1EAE06C7D", | ||
| 363 | "9b2f2f6d9c5628a7844163d015be86344082aa88d95e2f9d", | ||
| 364 | "FFFFFFFFFFFFFFFFFFFFFFFE26F2FC170F69466A74DEFD8D",1, | ||
| 365 | NULL, 20, | ||
| 366 | "SECG curve over a 192 bit prime field" | ||
| 367 | }; | ||
| 368 | |||
| 369 | static const EC_CURVE_DATA _EC_SECG_PRIME_224K1 = { | ||
| 370 | NID_X9_62_prime_field, | ||
| 371 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFE56D", | ||
| 372 | "0", | ||
| 373 | "5", | ||
| 374 | "A1455B334DF099DF30FC28A169A467E9E47075A90F7E650EB6B7A45C", | ||
| 375 | "7e089fed7fba344282cafbd6f7e319f7c0b0bd59e2ca4bdb556d61a5", | ||
| 376 | "010000000000000000000000000001DCE8D2EC6184CAF0A971769FB1F7",1, | ||
| 377 | NULL, 20, | ||
| 378 | "SECG curve over a 224 bit prime field" | ||
| 379 | }; | ||
| 380 | |||
| 381 | static const EC_CURVE_DATA _EC_SECG_PRIME_256K1 = { | ||
| 382 | NID_X9_62_prime_field, | ||
| 383 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFC2F", | ||
| 384 | "0", | ||
| 385 | "7", | ||
| 386 | "79BE667EF9DCBBAC55A06295CE870B07029BFCDB2DCE28D959F2815B16F81798", | ||
| 387 | "483ada7726a3c4655da4fbfc0e1108a8fd17b448a68554199c47d08ffb10d4b8", | ||
| 388 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141",1, | ||
| 389 | NULL, 20, | ||
| 390 | "SECG curve over a 256 bit prime field" | ||
| 391 | }; | ||
| 392 | |||
| 393 | /* some wap/wtls curves */ | ||
| 394 | static const EC_CURVE_DATA _EC_WTLS_8 = { | ||
| 395 | NID_X9_62_prime_field, | ||
| 396 | "FFFFFFFFFFFFFFFFFFFFFFFFFDE7", | ||
| 397 | "0", | ||
| 398 | "3", | ||
| 399 | "1", | ||
| 400 | "2", | ||
| 401 | "0100000000000001ECEA551AD837E9",1, | ||
| 402 | NULL, 20, | ||
| 403 | "WTLS curve over a 112 bit prime field" | ||
| 404 | }; | ||
| 405 | |||
| 406 | static const EC_CURVE_DATA _EC_WTLS_9 = { | ||
| 407 | NID_X9_62_prime_field, | ||
| 408 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFC808F", | ||
| 409 | "0", | ||
| 410 | "3", | ||
| 411 | "1", | ||
| 412 | "2", | ||
| 413 | "0100000000000000000001CDC98AE0E2DE574ABF33",1, | ||
| 414 | NULL, 20, | ||
| 415 | "WTLS curve over a 160 bit prime field" | ||
| 416 | }; | ||
| 417 | |||
| 418 | static const EC_CURVE_DATA _EC_WTLS_12 = { | ||
| 419 | NID_X9_62_prime_field, | ||
| 420 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF000000000000000000000001", | ||
| 421 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEFFFFFFFFFFFFFFFFFFFFFFFE", | ||
| 422 | "B4050A850C04B3ABF54132565044B0B7D7BFD8BA270B39432355FFB4", | ||
| 423 | "B70E0CBD6BB4BF7F321390B94A03C1D356C21122343280D6115C1D21", | ||
| 424 | "bd376388b5f723fb4c22dfe6cd4375a05a07476444d5819985007e34", | ||
| 425 | "FFFFFFFFFFFFFFFFFFFFFFFFFFFF16A2E0B8F03E13DD29455C5C2A3D", 1, | ||
| 426 | NULL, 0, | ||
| 427 | "WTLS curvs over a 224 bit prime field" | ||
| 428 | }; | ||
| 429 | |||
| 430 | /* characteristic two curves */ | ||
| 431 | static const unsigned char _EC_SECG_CHAR2_113R1_SEED[] = { | ||
| 432 | 0x10,0xE7,0x23,0xAB,0x14,0xD6,0x96,0xE6,0x76,0x87, | ||
| 433 | 0x56,0x15,0x17,0x56,0xFE,0xBF,0x8F,0xCB,0x49,0xA9}; | ||
| 434 | static const EC_CURVE_DATA _EC_SECG_CHAR2_113R1 = { | ||
| 435 | NID_X9_62_characteristic_two_field, | ||
| 436 | "020000000000000000000000000201", | ||
| 437 | "003088250CA6E7C7FE649CE85820F7", | ||
| 438 | "00E8BEE4D3E2260744188BE0E9C723", | ||
| 439 | "009D73616F35F4AB1407D73562C10F", | ||
| 440 | "00A52830277958EE84D1315ED31886", | ||
| 441 | "0100000000000000D9CCEC8A39E56F", 2, | ||
| 442 | _EC_SECG_CHAR2_113R1_SEED, 20, | ||
| 443 | "SECG curve over a 113 bit binary field" | ||
| 444 | }; | ||
| 445 | |||
| 446 | static const unsigned char _EC_SECG_CHAR2_113R2_SEED[] = { | ||
| 447 | 0x10,0xC0,0xFB,0x15,0x76,0x08,0x60,0xDE,0xF1,0xEE, | ||
| 448 | 0xF4,0xD6,0x96,0xE6,0x76,0x87,0x56,0x15,0x17,0x5D}; | ||
| 449 | static const EC_CURVE_DATA _EC_SECG_CHAR2_113R2 = { | ||
| 450 | NID_X9_62_characteristic_two_field, | ||
| 451 | "020000000000000000000000000201", | ||
| 452 | "00689918DBEC7E5A0DD6DFC0AA55C7", | ||
| 453 | "0095E9A9EC9B297BD4BF36E059184F", | ||
| 454 | "01A57A6A7B26CA5EF52FCDB8164797", | ||
| 455 | "00B3ADC94ED1FE674C06E695BABA1D", | ||
| 456 | "010000000000000108789B2496AF93", 2, | ||
| 457 | _EC_SECG_CHAR2_113R2_SEED, 20, | ||
| 458 | "SECG curve over a 113 bit binary field" | ||
| 459 | }; | ||
| 460 | |||
| 461 | static const unsigned char _EC_SECG_CHAR2_131R1_SEED[] = { | ||
| 462 | 0x4D,0x69,0x6E,0x67,0x68,0x75,0x61,0x51,0x75,0x98, | ||
| 463 | 0x5B,0xD3,0xAD,0xBA,0xDA,0x21,0xB4,0x3A,0x97,0xE2}; | ||
| 464 | static const EC_CURVE_DATA _EC_SECG_CHAR2_131R1 = { | ||
| 465 | NID_X9_62_characteristic_two_field, | ||
| 466 | "080000000000000000000000000000010D", | ||
| 467 | "07A11B09A76B562144418FF3FF8C2570B8", | ||
| 468 | "0217C05610884B63B9C6C7291678F9D341", | ||
| 469 | "0081BAF91FDF9833C40F9C181343638399", | ||
| 470 | "078C6E7EA38C001F73C8134B1B4EF9E150", | ||
| 471 | "0400000000000000023123953A9464B54D", 2, | ||
| 472 | _EC_SECG_CHAR2_131R1_SEED, 20, | ||
| 473 | "SECG/WTLS curve over a 131 bit binary field" | ||
| 474 | }; | ||
| 475 | |||
| 476 | static const unsigned char _EC_SECG_CHAR2_131R2_SEED[] = { | ||
| 477 | 0x98,0x5B,0xD3,0xAD,0xBA,0xD4,0xD6,0x96,0xE6,0x76, | ||
| 478 | 0x87,0x56,0x15,0x17,0x5A,0x21,0xB4,0x3A,0x97,0xE3}; | ||
| 479 | static const EC_CURVE_DATA _EC_SECG_CHAR2_131R2 = { | ||
| 480 | NID_X9_62_characteristic_two_field, | ||
| 481 | "080000000000000000000000000000010D", | ||
| 482 | "03E5A88919D7CAFCBF415F07C2176573B2", | ||
| 483 | "04B8266A46C55657AC734CE38F018F2192", | ||
| 484 | "0356DCD8F2F95031AD652D23951BB366A8", | ||
| 485 | "0648F06D867940A5366D9E265DE9EB240F", | ||
| 486 | "0400000000000000016954A233049BA98F", 2, | ||
| 487 | _EC_SECG_CHAR2_131R2_SEED, 20, | ||
| 488 | "SECG curve over a 131 bit binary field" | ||
| 489 | }; | ||
| 490 | |||
| 491 | static const EC_CURVE_DATA _EC_NIST_CHAR2_163K = { | ||
| 492 | NID_X9_62_characteristic_two_field, | ||
| 493 | "0800000000000000000000000000000000000000C9", | ||
| 494 | "1", | ||
| 495 | "1", | ||
| 496 | "02FE13C0537BBC11ACAA07D793DE4E6D5E5C94EEE8", | ||
| 497 | "0289070FB05D38FF58321F2E800536D538CCDAA3D9", | ||
| 498 | "04000000000000000000020108A2E0CC0D99F8A5EF", 2, | ||
| 499 | NULL, 0, | ||
| 500 | "NIST/SECG/WTLS curve over a 163 bit binary field" | ||
| 501 | }; | ||
| 502 | |||
| 503 | static const unsigned char _EC_SECG_CHAR2_163R1_SEED[] = { | ||
| 504 | 0x24,0xB7,0xB1,0x37,0xC8,0xA1,0x4D,0x69,0x6E,0x67, | ||
| 505 | 0x68,0x75,0x61,0x51,0x75,0x6F,0xD0,0xDA,0x2E,0x5C}; | ||
| 506 | static const EC_CURVE_DATA _EC_SECG_CHAR2_163R1 = { | ||
| 507 | NID_X9_62_characteristic_two_field, | ||
| 508 | "0800000000000000000000000000000000000000C9", | ||
| 509 | "07B6882CAAEFA84F9554FF8428BD88E246D2782AE2", | ||
| 510 | "0713612DCDDCB40AAB946BDA29CA91F73AF958AFD9", | ||
| 511 | "0369979697AB43897789566789567F787A7876A654", | ||
| 512 | "00435EDB42EFAFB2989D51FEFCE3C80988F41FF883", | ||
| 513 | "03FFFFFFFFFFFFFFFFFFFF48AAB689C29CA710279B", 2, | ||
| 514 | /* The algorithm used to derive the curve parameters from | ||
| 515 | * the seed used here is slightly different than the | ||
| 516 | * algorithm described in X9.62 . | ||
| 517 | */ | ||
| 518 | #if 0 | ||
| 519 | _EC_SECG_CHAR2_163R1_SEED, 20, | ||
| 520 | #else | ||
| 521 | NULL, 0, | ||
| 522 | #endif | ||
| 523 | "SECG curve over a 163 bit binary field" | ||
| 524 | }; | ||
| 525 | |||
| 526 | static const unsigned char _EC_NIST_CHAR2_163B_SEED[] = { | ||
| 527 | 0x85,0xE2,0x5B,0xFE,0x5C,0x86,0x22,0x6C,0xDB,0x12, | ||
| 528 | 0x01,0x6F,0x75,0x53,0xF9,0xD0,0xE6,0x93,0xA2,0x68}; | ||
| 529 | static const EC_CURVE_DATA _EC_NIST_CHAR2_163B ={ | ||
| 530 | NID_X9_62_characteristic_two_field, | ||
| 531 | "0800000000000000000000000000000000000000C9", | ||
| 532 | "1", | ||
| 533 | "020A601907B8C953CA1481EB10512F78744A3205FD", | ||
| 534 | "03F0EBA16286A2D57EA0991168D4994637E8343E36", | ||
| 535 | "00D51FBC6C71A0094FA2CDD545B11C5C0C797324F1", | ||
| 536 | "040000000000000000000292FE77E70C12A4234C33", 2, | ||
| 537 | /* The seed here was used to created the curve parameters in normal | ||
| 538 | * basis representation (and not the polynomial representation used here) | ||
| 539 | */ | ||
| 540 | #if 0 | ||
| 541 | _EC_NIST_CHAR2_163B_SEED, 20, | ||
| 542 | #else | ||
| 543 | NULL, 0, | ||
| 544 | #endif | ||
| 545 | "NIST/SECG curve over a 163 bit binary field" | ||
| 546 | }; | ||
| 547 | |||
| 548 | static const unsigned char _EC_SECG_CHAR2_193R1_SEED[] = { | ||
| 549 | 0x10,0x3F,0xAE,0xC7,0x4D,0x69,0x6E,0x67,0x68,0x75, | ||
| 550 | 0x61,0x51,0x75,0x77,0x7F,0xC5,0xB1,0x91,0xEF,0x30}; | ||
| 551 | static const EC_CURVE_DATA _EC_SECG_CHAR2_193R1 = { | ||
| 552 | NID_X9_62_characteristic_two_field, | ||
| 553 | "02000000000000000000000000000000000000000000008001", | ||
| 554 | "0017858FEB7A98975169E171F77B4087DE098AC8A911DF7B01", | ||
| 555 | "00FDFB49BFE6C3A89FACADAA7A1E5BBC7CC1C2E5D831478814", | ||
| 556 | "01F481BC5F0FF84A74AD6CDF6FDEF4BF6179625372D8C0C5E1", | ||
| 557 | "0025E399F2903712CCF3EA9E3A1AD17FB0B3201B6AF7CE1B05", | ||
| 558 | "01000000000000000000000000C7F34A778F443ACC920EBA49", 2, | ||
| 559 | _EC_SECG_CHAR2_193R1_SEED, 20, | ||
| 560 | "SECG curve over a 193 bit binary field" | ||
| 561 | }; | ||
| 562 | |||
| 563 | static const unsigned char _EC_SECG_CHAR2_193R2_SEED[] = { | ||
| 564 | 0x10,0xB7,0xB4,0xD6,0x96,0xE6,0x76,0x87,0x56,0x15, | ||
| 565 | 0x17,0x51,0x37,0xC8,0xA1,0x6F,0xD0,0xDA,0x22,0x11}; | ||
| 566 | static const EC_CURVE_DATA _EC_SECG_CHAR2_193R2 = { | ||
| 567 | NID_X9_62_characteristic_two_field, | ||
| 568 | "02000000000000000000000000000000000000000000008001", | ||
| 569 | "0163F35A5137C2CE3EA6ED8667190B0BC43ECD69977702709B", | ||
| 570 | "00C9BB9E8927D4D64C377E2AB2856A5B16E3EFB7F61D4316AE", | ||
| 571 | "00D9B67D192E0367C803F39E1A7E82CA14A651350AAE617E8F", | ||
| 572 | "01CE94335607C304AC29E7DEFBD9CA01F596F927224CDECF6C", | ||
| 573 | "010000000000000000000000015AAB561B005413CCD4EE99D5", 2, | ||
| 574 | _EC_SECG_CHAR2_193R2_SEED, 20, | ||
| 575 | "SECG curve over a 193 bit binary field" | ||
| 576 | }; | ||
| 577 | |||
| 578 | static const EC_CURVE_DATA _EC_NIST_CHAR2_233K = { | ||
| 579 | NID_X9_62_characteristic_two_field, | ||
| 580 | "020000000000000000000000000000000000000004000000000000000001", | ||
| 581 | "0", | ||
| 582 | "1", | ||
| 583 | "017232BA853A7E731AF129F22FF4149563A419C26BF50A4C9D6EEFAD6126", | ||
| 584 | "01DB537DECE819B7F70F555A67C427A8CD9BF18AEB9B56E0C11056FAE6A3", | ||
| 585 | "008000000000000000000000000000069D5BB915BCD46EFB1AD5F173ABDF", 4, | ||
| 586 | NULL, 0, | ||
| 587 | "NIST/SECG/WTLS curve over a 233 bit binary field" | ||
| 588 | }; | ||
| 589 | |||
| 590 | static const unsigned char _EC_NIST_CHAR2_233B_SEED[] = { | ||
| 591 | 0x74,0xD5,0x9F,0xF0,0x7F,0x6B,0x41,0x3D,0x0E,0xA1, | ||
| 592 | 0x4B,0x34,0x4B,0x20,0xA2,0xDB,0x04,0x9B,0x50,0xC3}; | ||
| 593 | static const EC_CURVE_DATA _EC_NIST_CHAR2_233B = { | ||
| 594 | NID_X9_62_characteristic_two_field, | ||
| 595 | "020000000000000000000000000000000000000004000000000000000001", | ||
| 596 | "000000000000000000000000000000000000000000000000000000000001", | ||
| 597 | "0066647EDE6C332C7F8C0923BB58213B333B20E9CE4281FE115F7D8F90AD", | ||
| 598 | "00FAC9DFCBAC8313BB2139F1BB755FEF65BC391F8B36F8F8EB7371FD558B", | ||
| 599 | "01006A08A41903350678E58528BEBF8A0BEFF867A7CA36716F7E01F81052", | ||
| 600 | "01000000000000000000000000000013E974E72F8A6922031D2603CFE0D7", 2, | ||
| 601 | _EC_NIST_CHAR2_233B_SEED, 20, | ||
| 602 | "NIST/SECG/WTLS curve over a 233 bit binary field" | ||
| 603 | }; | ||
| 604 | |||
| 605 | static const EC_CURVE_DATA _EC_SECG_CHAR2_239K1 = { | ||
| 606 | NID_X9_62_characteristic_two_field, | ||
| 607 | "800000000000000000004000000000000000000000000000000000000001", | ||
| 608 | "0", | ||
| 609 | "1", | ||
| 610 | "29A0B6A887A983E9730988A68727A8B2D126C44CC2CC7B2A6555193035DC", | ||
| 611 | "76310804F12E549BDB011C103089E73510ACB275FC312A5DC6B76553F0CA", | ||
| 612 | "2000000000000000000000000000005A79FEC67CB6E91F1C1DA800E478A5", 4, | ||
| 613 | NULL, 0, | ||
| 614 | "SECG curve over a 239 bit binary field" | ||
| 615 | }; | ||
| 616 | |||
| 617 | static const EC_CURVE_DATA _EC_NIST_CHAR2_283K = { | ||
| 618 | NID_X9_62_characteristic_two_field, | ||
| 619 | "080000000000000000000000000000000000000000000000000000000000000000001" | ||
| 620 | "0A1", | ||
| 621 | "0", | ||
| 622 | "1", | ||
| 623 | "0503213F78CA44883F1A3B8162F188E553CD265F23C1567A16876913B0C2AC2458492" | ||
| 624 | "836", | ||
| 625 | "01CCDA380F1C9E318D90F95D07E5426FE87E45C0E8184698E45962364E34116177DD2" | ||
| 626 | "259", | ||
| 627 | "01FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFE9AE2ED07577265DFF7F94451E061E163" | ||
| 628 | "C61", 4, | ||
| 629 | NULL, 20, | ||
| 630 | "NIST/SECG curve over a 283 bit binary field" | ||
| 631 | }; | ||
| 632 | |||
| 633 | static const unsigned char _EC_NIST_CHAR2_283B_SEED[] = { | ||
| 634 | 0x77,0xE2,0xB0,0x73,0x70,0xEB,0x0F,0x83,0x2A,0x6D, | ||
| 635 | 0xD5,0xB6,0x2D,0xFC,0x88,0xCD,0x06,0xBB,0x84,0xBE}; | ||
| 636 | static const EC_CURVE_DATA _EC_NIST_CHAR2_283B = { | ||
| 637 | NID_X9_62_characteristic_two_field, | ||
| 638 | "080000000000000000000000000000000000000000000000000000000000000000001" | ||
| 639 | "0A1", | ||
| 640 | "000000000000000000000000000000000000000000000000000000000000000000000" | ||
| 641 | "001", | ||
| 642 | "027B680AC8B8596DA5A4AF8A19A0303FCA97FD7645309FA2A581485AF6263E313B79A" | ||
| 643 | "2F5", | ||
| 644 | "05F939258DB7DD90E1934F8C70B0DFEC2EED25B8557EAC9C80E2E198F8CDBECD86B12" | ||
| 645 | "053", | ||
| 646 | "03676854FE24141CB98FE6D4B20D02B4516FF702350EDDB0826779C813F0DF45BE811" | ||
| 647 | "2F4", | ||
| 648 | "03FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEF90399660FC938A90165B042A7CEFADB" | ||
| 649 | "307", 2, | ||
| 650 | _EC_NIST_CHAR2_283B_SEED, 20, | ||
| 651 | "NIST/SECG curve over a 283 bit binary field" | ||
| 652 | }; | ||
| 653 | |||
| 654 | static const EC_CURVE_DATA _EC_NIST_CHAR2_409K = { | ||
| 655 | NID_X9_62_characteristic_two_field, | ||
| 656 | "020000000000000000000000000000000000000000000000000000000000000000000" | ||
| 657 | "00000000000008000000000000000000001", | ||
| 658 | "0", | ||
| 659 | "1", | ||
| 660 | "0060F05F658F49C1AD3AB1890F7184210EFD0987E307C84C27ACCFB8F9F67CC2C4601" | ||
| 661 | "89EB5AAAA62EE222EB1B35540CFE9023746", | ||
| 662 | "01E369050B7C4E42ACBA1DACBF04299C3460782F918EA427E6325165E9EA10E3DA5F6" | ||
| 663 | "C42E9C55215AA9CA27A5863EC48D8E0286B", | ||
| 664 | "007FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFE5F83B2D4EA20400" | ||
| 665 | "EC4557D5ED3E3E7CA5B4B5C83B8E01E5FCF", 4, | ||
| 666 | NULL, 0, | ||
| 667 | "NIST/SECG curve over a 409 bit binary field" | ||
| 668 | }; | ||
| 669 | |||
| 670 | static const unsigned char _EC_NIST_CHAR2_409B_SEED[] = { | ||
| 671 | 0x40,0x99,0xB5,0xA4,0x57,0xF9,0xD6,0x9F,0x79,0x21, | ||
| 672 | 0x3D,0x09,0x4C,0x4B,0xCD,0x4D,0x42,0x62,0x21,0x0B}; | ||
| 673 | static const EC_CURVE_DATA _EC_NIST_CHAR2_409B = { | ||
| 674 | NID_X9_62_characteristic_two_field, | ||
| 675 | "020000000000000000000000000000000000000000000000000000000000000000000" | ||
| 676 | "00000000000008000000000000000000001", | ||
| 677 | "000000000000000000000000000000000000000000000000000000000000000000000" | ||
| 678 | "00000000000000000000000000000000001", | ||
| 679 | "0021A5C2C8EE9FEB5C4B9A753B7B476B7FD6422EF1F3DD674761FA99D6AC27C8A9A19" | ||
| 680 | "7B272822F6CD57A55AA4F50AE317B13545F", | ||
| 681 | "015D4860D088DDB3496B0C6064756260441CDE4AF1771D4DB01FFE5B34E59703DC255" | ||
| 682 | "A868A1180515603AEAB60794E54BB7996A7", | ||
| 683 | "0061B1CFAB6BE5F32BBFA78324ED106A7636B9C5A7BD198D0158AA4F5488D08F38514" | ||
| 684 | "F1FDF4B4F40D2181B3681C364BA0273C706", | ||
| 685 | "010000000000000000000000000000000000000000000000000001E2AAD6A612F3330" | ||
| 686 | "7BE5FA47C3C9E052F838164CD37D9A21173", 2, | ||
| 687 | _EC_NIST_CHAR2_409B_SEED, 20, | ||
| 688 | "NIST/SECG curve over a 409 bit binary field" | ||
| 689 | }; | ||
| 690 | |||
| 691 | static const EC_CURVE_DATA _EC_NIST_CHAR2_571K = { | ||
| 692 | NID_X9_62_characteristic_two_field, | ||
| 693 | "800000000000000000000000000000000000000000000000000000000000000000000" | ||
| 694 | "000000000000000000000000000000000000000000000000000000000000000000000" | ||
| 695 | "00425", | ||
| 696 | "0", | ||
| 697 | "1", | ||
| 698 | "026EB7A859923FBC82189631F8103FE4AC9CA2970012D5D46024804801841CA443709" | ||
| 699 | "58493B205E647DA304DB4CEB08CBBD1BA39494776FB988B47174DCA88C7E2945283A0" | ||
| 700 | "1C8972", | ||
| 701 | "0349DC807F4FBF374F4AEADE3BCA95314DD58CEC9F307A54FFC61EFC006D8A2C9D497" | ||
| 702 | "9C0AC44AEA74FBEBBB9F772AEDCB620B01A7BA7AF1B320430C8591984F601CD4C143E" | ||
| 703 | "F1C7A3", | ||
| 704 | "020000000000000000000000000000000000000000000000000000000000000000000" | ||
| 705 | "000131850E1F19A63E4B391A8DB917F4138B630D84BE5D639381E91DEB45CFE778F63" | ||
| 706 | "7C1001", 4, | ||
| 707 | NULL, 0, | ||
| 708 | "NIST/SECG curve over a 571 bit binary field" | ||
| 709 | }; | ||
| 710 | |||
| 711 | static const unsigned char _EC_NIST_CHAR2_571B_SEED[] = { | ||
| 712 | 0x2A,0xA0,0x58,0xF7,0x3A,0x0E,0x33,0xAB,0x48,0x6B, | ||
| 713 | 0x0F,0x61,0x04,0x10,0xC5,0x3A,0x7F,0x13,0x23,0x10}; | ||
| 714 | static const EC_CURVE_DATA _EC_NIST_CHAR2_571B = { | ||
| 715 | NID_X9_62_characteristic_two_field, | ||
| 716 | "800000000000000000000000000000000000000000000000000000000000000000000" | ||
| 717 | "000000000000000000000000000000000000000000000000000000000000000000000" | ||
| 718 | "00425", | ||
| 719 | "000000000000000000000000000000000000000000000000000000000000000000000" | ||
| 720 | "000000000000000000000000000000000000000000000000000000000000000000000" | ||
| 721 | "000001", | ||
| 722 | "02F40E7E2221F295DE297117B7F3D62F5C6A97FFCB8CEFF1CD6BA8CE4A9A18AD84FFA" | ||
| 723 | "BBD8EFA59332BE7AD6756A66E294AFD185A78FF12AA520E4DE739BACA0C7FFEFF7F29" | ||
| 724 | "55727A", | ||
| 725 | "0303001D34B856296C16C0D40D3CD7750A93D1D2955FA80AA5F40FC8DB7B2ABDBDE53" | ||
| 726 | "950F4C0D293CDD711A35B67FB1499AE60038614F1394ABFA3B4C850D927E1E7769C8E" | ||
| 727 | "EC2D19", | ||
| 728 | "037BF27342DA639B6DCCFFFEB73D69D78C6C27A6009CBBCA1980F8533921E8A684423" | ||
| 729 | "E43BAB08A576291AF8F461BB2A8B3531D2F0485C19B16E2F1516E23DD3C1A4827AF1B" | ||
| 730 | "8AC15B", | ||
| 731 | "03FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF" | ||
| 732 | "FFFE661CE18FF55987308059B186823851EC7DD9CA1161DE93D5174D66E8382E9BB2F" | ||
| 733 | "E84E47", 2, | ||
| 734 | _EC_NIST_CHAR2_571B_SEED, 20, | ||
| 735 | "NIST/SECG curve over a 571 bit binary field" | ||
| 736 | }; | ||
| 737 | |||
| 738 | static const unsigned char _EC_X9_62_CHAR2_163V1_SEED[] = { | ||
| 739 | 0xD2,0xC0,0xFB,0x15,0x76,0x08,0x60,0xDE,0xF1,0xEE, | ||
| 740 | 0xF4,0xD6,0x96,0xE6,0x76,0x87,0x56,0x15,0x17,0x54}; | ||
| 741 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_163V1 = { | ||
| 742 | NID_X9_62_characteristic_two_field, | ||
| 743 | "080000000000000000000000000000000000000107", | ||
| 744 | "072546B5435234A422E0789675F432C89435DE5242", | ||
| 745 | "00C9517D06D5240D3CFF38C74B20B6CD4D6F9DD4D9", | ||
| 746 | "07AF69989546103D79329FCC3D74880F33BBE803CB", | ||
| 747 | "01EC23211B5966ADEA1D3F87F7EA5848AEF0B7CA9F", | ||
| 748 | "0400000000000000000001E60FC8821CC74DAEAFC1", 2, | ||
| 749 | _EC_X9_62_CHAR2_163V1_SEED, 20, | ||
| 750 | "X9.62 curve over a 163 bit binary field" | ||
| 751 | }; | ||
| 752 | |||
| 753 | static const unsigned char _EC_X9_62_CHAR2_163V2_SEED[] = { | ||
| 754 | 0x53,0x81,0x4C,0x05,0x0D,0x44,0xD6,0x96,0xE6,0x76, | ||
| 755 | 0x87,0x56,0x15,0x17,0x58,0x0C,0xA4,0xE2,0x9F,0xFD}; | ||
| 756 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_163V2 = { | ||
| 757 | NID_X9_62_characteristic_two_field, | ||
| 758 | "080000000000000000000000000000000000000107", | ||
| 759 | "0108B39E77C4B108BED981ED0E890E117C511CF072", | ||
| 760 | "0667ACEB38AF4E488C407433FFAE4F1C811638DF20", | ||
| 761 | "0024266E4EB5106D0A964D92C4860E2671DB9B6CC5", | ||
| 762 | "079F684DDF6684C5CD258B3890021B2386DFD19FC5", | ||
| 763 | "03FFFFFFFFFFFFFFFFFFFDF64DE1151ADBB78F10A7", 2, | ||
| 764 | _EC_X9_62_CHAR2_163V2_SEED, 20, | ||
| 765 | "X9.62 curve over a 163 bit binary field" | ||
| 766 | }; | ||
| 767 | |||
| 768 | static const unsigned char _EC_X9_62_CHAR2_163V3_SEED[] = { | ||
| 769 | 0x50,0xCB,0xF1,0xD9,0x5C,0xA9,0x4D,0x69,0x6E,0x67, | ||
| 770 | 0x68,0x75,0x61,0x51,0x75,0xF1,0x6A,0x36,0xA3,0xB8}; | ||
| 771 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_163V3 = { | ||
| 772 | NID_X9_62_characteristic_two_field, | ||
| 773 | "080000000000000000000000000000000000000107", | ||
| 774 | "07A526C63D3E25A256A007699F5447E32AE456B50E", | ||
| 775 | "03F7061798EB99E238FD6F1BF95B48FEEB4854252B", | ||
| 776 | "02F9F87B7C574D0BDECF8A22E6524775F98CDEBDCB", | ||
| 777 | "05B935590C155E17EA48EB3FF3718B893DF59A05D0", | ||
| 778 | "03FFFFFFFFFFFFFFFFFFFE1AEE140F110AFF961309", 2, | ||
| 779 | _EC_X9_62_CHAR2_163V3_SEED, 20, | ||
| 780 | "X9.62 curve over a 163 bit binary field" | ||
| 781 | }; | ||
| 782 | |||
| 783 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_176V1 = { | ||
| 784 | NID_X9_62_characteristic_two_field, | ||
| 785 | "0100000000000000000000000000000000080000000007", | ||
| 786 | "E4E6DB2995065C407D9D39B8D0967B96704BA8E9C90B", | ||
| 787 | "5DDA470ABE6414DE8EC133AE28E9BBD7FCEC0AE0FFF2", | ||
| 788 | "8D16C2866798B600F9F08BB4A8E860F3298CE04A5798", | ||
| 789 | "6FA4539C2DADDDD6BAB5167D61B436E1D92BB16A562C", | ||
| 790 | "00010092537397ECA4F6145799D62B0A19CE06FE26AD", 0xFF6E, | ||
| 791 | NULL, 0, | ||
| 792 | "X9.62 curve over a 176 bit binary field" | ||
| 793 | }; | ||
| 794 | |||
| 795 | static const unsigned char _EC_X9_62_CHAR2_191V1_SEED[] = { | ||
| 796 | 0x4E,0x13,0xCA,0x54,0x27,0x44,0xD6,0x96,0xE6,0x76, | ||
| 797 | 0x87,0x56,0x15,0x17,0x55,0x2F,0x27,0x9A,0x8C,0x84}; | ||
| 798 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_191V1 = { | ||
| 799 | NID_X9_62_characteristic_two_field, | ||
| 800 | "800000000000000000000000000000000000000000000201", | ||
| 801 | "2866537B676752636A68F56554E12640276B649EF7526267", | ||
| 802 | "2E45EF571F00786F67B0081B9495A3D95462F5DE0AA185EC", | ||
| 803 | "36B3DAF8A23206F9C4F299D7B21A9C369137F2C84AE1AA0D", | ||
| 804 | "765BE73433B3F95E332932E70EA245CA2418EA0EF98018FB", | ||
| 805 | "40000000000000000000000004A20E90C39067C893BBB9A5", 2, | ||
| 806 | _EC_X9_62_CHAR2_191V1_SEED, 20, | ||
| 807 | "X9.62 curve over a 191 bit binary field" | ||
| 808 | }; | ||
| 809 | |||
| 810 | static const unsigned char _EC_X9_62_CHAR2_191V2_SEED[] = { | ||
| 811 | 0x08,0x71,0xEF,0x2F,0xEF,0x24,0xD6,0x96,0xE6,0x76, | ||
| 812 | 0x87,0x56,0x15,0x17,0x58,0xBE,0xE0,0xD9,0x5C,0x15}; | ||
| 813 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_191V2 = { | ||
| 814 | NID_X9_62_characteristic_two_field, | ||
| 815 | "800000000000000000000000000000000000000000000201", | ||
| 816 | "401028774D7777C7B7666D1366EA432071274F89FF01E718", | ||
| 817 | "0620048D28BCBD03B6249C99182B7C8CD19700C362C46A01", | ||
| 818 | "3809B2B7CC1B28CC5A87926AAD83FD28789E81E2C9E3BF10", | ||
| 819 | "17434386626D14F3DBF01760D9213A3E1CF37AEC437D668A", | ||
| 820 | "20000000000000000000000050508CB89F652824E06B8173", 4, | ||
| 821 | _EC_X9_62_CHAR2_191V2_SEED, 20, | ||
| 822 | "X9.62 curve over a 191 bit binary field" | ||
| 823 | }; | ||
| 824 | |||
| 825 | static const unsigned char _EC_X9_62_CHAR2_191V3_SEED[] = { | ||
| 826 | 0xE0,0x53,0x51,0x2D,0xC6,0x84,0xD6,0x96,0xE6,0x76, | ||
| 827 | 0x87,0x56,0x15,0x17,0x50,0x67,0xAE,0x78,0x6D,0x1F}; | ||
| 828 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_191V3 = { | ||
| 829 | NID_X9_62_characteristic_two_field, | ||
| 830 | "800000000000000000000000000000000000000000000201", | ||
| 831 | "6C01074756099122221056911C77D77E77A777E7E7E77FCB", | ||
| 832 | "71FE1AF926CF847989EFEF8DB459F66394D90F32AD3F15E8", | ||
| 833 | "375D4CE24FDE434489DE8746E71786015009E66E38A926DD", | ||
| 834 | "545A39176196575D985999366E6AD34CE0A77CD7127B06BE", | ||
| 835 | "155555555555555555555555610C0B196812BFB6288A3EA3", 6, | ||
| 836 | _EC_X9_62_CHAR2_191V3_SEED, 20, | ||
| 837 | "X9.62 curve over a 191 bit binary field" | ||
| 838 | }; | ||
| 839 | |||
| 840 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_208W1 = { | ||
| 841 | NID_X9_62_characteristic_two_field, | ||
| 842 | "010000000000000000000000000000000800000000000000000007", | ||
| 843 | "0000000000000000000000000000000000000000000000000000", | ||
| 844 | "C8619ED45A62E6212E1160349E2BFA844439FAFC2A3FD1638F9E", | ||
| 845 | "89FDFBE4ABE193DF9559ECF07AC0CE78554E2784EB8C1ED1A57A", | ||
| 846 | "0F55B51A06E78E9AC38A035FF520D8B01781BEB1A6BB08617DE3", | ||
| 847 | "000101BAF95C9723C57B6C21DA2EFF2D5ED588BDD5717E212F9D", 0xFE48, | ||
| 848 | NULL, 0, | ||
| 849 | "X9.62 curve over a 208 bit binary field" | ||
| 850 | }; | ||
| 851 | |||
| 852 | static const unsigned char _EC_X9_62_CHAR2_239V1_SEED[] = { | ||
| 853 | 0xD3,0x4B,0x9A,0x4D,0x69,0x6E,0x67,0x68,0x75,0x61, | ||
| 854 | 0x51,0x75,0xCA,0x71,0xB9,0x20,0xBF,0xEF,0xB0,0x5D}; | ||
| 855 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_239V1 = { | ||
| 856 | NID_X9_62_characteristic_two_field, | ||
| 857 | "800000000000000000000000000000000000000000000000001000000001", | ||
| 858 | "32010857077C5431123A46B808906756F543423E8D27877578125778AC76", | ||
| 859 | "790408F2EEDAF392B012EDEFB3392F30F4327C0CA3F31FC383C422AA8C16", | ||
| 860 | "57927098FA932E7C0A96D3FD5B706EF7E5F5C156E16B7E7C86038552E91D", | ||
| 861 | "61D8EE5077C33FECF6F1A16B268DE469C3C7744EA9A971649FC7A9616305", | ||
| 862 | "2000000000000000000000000000000F4D42FFE1492A4993F1CAD666E447", 4, | ||
| 863 | _EC_X9_62_CHAR2_239V1_SEED, 20, | ||
| 864 | "X9.62 curve over a 239 bit binary field" | ||
| 865 | }; | ||
| 866 | |||
| 867 | static const unsigned char _EC_X9_62_CHAR2_239V2_SEED[] = { | ||
| 868 | 0x2A,0xA6,0x98,0x2F,0xDF,0xA4,0xD6,0x96,0xE6,0x76, | ||
| 869 | 0x87,0x56,0x15,0x17,0x5D,0x26,0x67,0x27,0x27,0x7D}; | ||
| 870 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_239V2 = { | ||
| 871 | NID_X9_62_characteristic_two_field, | ||
| 872 | "800000000000000000000000000000000000000000000000001000000001", | ||
| 873 | "4230017757A767FAE42398569B746325D45313AF0766266479B75654E65F", | ||
| 874 | "5037EA654196CFF0CD82B2C14A2FCF2E3FF8775285B545722F03EACDB74B", | ||
| 875 | "28F9D04E900069C8DC47A08534FE76D2B900B7D7EF31F5709F200C4CA205", | ||
| 876 | "5667334C45AFF3B5A03BAD9DD75E2C71A99362567D5453F7FA6E227EC833", | ||
| 877 | "1555555555555555555555555555553C6F2885259C31E3FCDF154624522D", 6, | ||
| 878 | _EC_X9_62_CHAR2_239V2_SEED, 20, | ||
| 879 | "X9.62 curve over a 239 bit binary field" | ||
| 880 | }; | ||
| 881 | |||
| 882 | static const unsigned char _EC_X9_62_CHAR2_239V3_SEED[] = { | ||
| 883 | 0x9E,0x07,0x6F,0x4D,0x69,0x6E,0x67,0x68,0x75,0x61, | ||
| 884 | 0x51,0x75,0xE1,0x1E,0x9F,0xDD,0x77,0xF9,0x20,0x41}; | ||
| 885 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_239V3 = { | ||
| 886 | NID_X9_62_characteristic_two_field, | ||
| 887 | "800000000000000000000000000000000000000000000000001000000001", | ||
| 888 | "01238774666A67766D6676F778E676B66999176666E687666D8766C66A9F", | ||
| 889 | "6A941977BA9F6A435199ACFC51067ED587F519C5ECB541B8E44111DE1D40", | ||
| 890 | "70F6E9D04D289C4E89913CE3530BFDE903977D42B146D539BF1BDE4E9C92", | ||
| 891 | "2E5A0EAF6E5E1305B9004DCE5C0ED7FE59A35608F33837C816D80B79F461", | ||
| 892 | "0CCCCCCCCCCCCCCCCCCCCCCCCCCCCCAC4912D2D9DF903EF9888B8A0E4CFF", 0xA, | ||
| 893 | _EC_X9_62_CHAR2_239V3_SEED, 20, | ||
| 894 | "X9.62 curve over a 239 bit binary field" | ||
| 895 | }; | ||
| 896 | |||
| 897 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_272W1 = { | ||
| 898 | NID_X9_62_characteristic_two_field, | ||
| 899 | "010000000000000000000000000000000000000000000000000000010000000000000" | ||
| 900 | "B", | ||
| 901 | "91A091F03B5FBA4AB2CCF49C4EDD220FB028712D42BE752B2C40094DBACDB586FB20", | ||
| 902 | "7167EFC92BB2E3CE7C8AAAFF34E12A9C557003D7C73A6FAF003F99F6CC8482E540F7", | ||
| 903 | "6108BABB2CEEBCF787058A056CBE0CFE622D7723A289E08A07AE13EF0D10D171DD8D", | ||
| 904 | "10C7695716851EEF6BA7F6872E6142FBD241B830FF5EFCACECCAB05E02005DDE9D23", | ||
| 905 | "000100FAF51354E0E39E4892DF6E319C72C8161603FA45AA7B998A167B8F1E629521", | ||
| 906 | 0xFF06, | ||
| 907 | NULL, 0, | ||
| 908 | "X9.62 curve over a 272 bit binary field" | ||
| 909 | }; | ||
| 910 | |||
| 911 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_304W1 = { | ||
| 912 | NID_X9_62_characteristic_two_field, | ||
| 913 | "010000000000000000000000000000000000000000000000000000000000000000000" | ||
| 914 | "000000807", | ||
| 915 | "FD0D693149A118F651E6DCE6802085377E5F882D1B510B44160074C1288078365A039" | ||
| 916 | "6C8E681", | ||
| 917 | "BDDB97E555A50A908E43B01C798EA5DAA6788F1EA2794EFCF57166B8C14039601E558" | ||
| 918 | "27340BE", | ||
| 919 | "197B07845E9BE2D96ADB0F5F3C7F2CFFBD7A3EB8B6FEC35C7FD67F26DDF6285A644F7" | ||
| 920 | "40A2614", | ||
| 921 | "E19FBEB76E0DA171517ECF401B50289BF014103288527A9B416A105E80260B549FDC1" | ||
| 922 | "B92C03B", | ||
| 923 | "000101D556572AABAC800101D556572AABAC8001022D5C91DD173F8FB561DA6899164" | ||
| 924 | "443051D", 0xFE2E, | ||
| 925 | NULL, 0, | ||
| 926 | "X9.62 curve over a 304 bit binary field" | ||
| 927 | }; | ||
| 928 | |||
| 929 | static const unsigned char _EC_X9_62_CHAR2_359V1_SEED[] = { | ||
| 930 | 0x2B,0x35,0x49,0x20,0xB7,0x24,0xD6,0x96,0xE6,0x76, | ||
| 931 | 0x87,0x56,0x15,0x17,0x58,0x5B,0xA1,0x33,0x2D,0xC6}; | ||
| 932 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_359V1 = { | ||
| 933 | NID_X9_62_characteristic_two_field, | ||
| 934 | "800000000000000000000000000000000000000000000000000000000000000000000" | ||
| 935 | "000100000000000000001", | ||
| 936 | "5667676A654B20754F356EA92017D946567C46675556F19556A04616B567D223A5E05" | ||
| 937 | "656FB549016A96656A557", | ||
| 938 | "2472E2D0197C49363F1FE7F5B6DB075D52B6947D135D8CA445805D39BC34562608968" | ||
| 939 | "7742B6329E70680231988", | ||
| 940 | "3C258EF3047767E7EDE0F1FDAA79DAEE3841366A132E163ACED4ED2401DF9C6BDCDE9" | ||
| 941 | "8E8E707C07A2239B1B097", | ||
| 942 | "53D7E08529547048121E9C95F3791DD804963948F34FAE7BF44EA82365DC7868FE57E" | ||
| 943 | "4AE2DE211305A407104BD", | ||
| 944 | "01AF286BCA1AF286BCA1AF286BCA1AF286BCA1AF286BC9FB8F6B85C556892C20A7EB9" | ||
| 945 | "64FE7719E74F490758D3B", 0x4C, | ||
| 946 | _EC_X9_62_CHAR2_359V1_SEED, 20, | ||
| 947 | "X9.62 curve over a 359 bit binary field" | ||
| 948 | }; | ||
| 949 | |||
| 950 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_368W1 = { | ||
| 951 | NID_X9_62_characteristic_two_field, | ||
| 952 | "010000000000000000000000000000000000000000000000000000000000000000000" | ||
| 953 | "0002000000000000000000007", | ||
| 954 | "E0D2EE25095206F5E2A4F9ED229F1F256E79A0E2B455970D8D0D865BD94778C576D62" | ||
| 955 | "F0AB7519CCD2A1A906AE30D", | ||
| 956 | "FC1217D4320A90452C760A58EDCD30C8DD069B3C34453837A34ED50CB54917E1C2112" | ||
| 957 | "D84D164F444F8F74786046A", | ||
| 958 | "1085E2755381DCCCE3C1557AFA10C2F0C0C2825646C5B34A394CBCFA8BC16B22E7E78" | ||
| 959 | "9E927BE216F02E1FB136A5F", | ||
| 960 | "7B3EB1BDDCBA62D5D8B2059B525797FC73822C59059C623A45FF3843CEE8F87CD1855" | ||
| 961 | "ADAA81E2A0750B80FDA2310", | ||
| 962 | "00010090512DA9AF72B08349D98A5DD4C7B0532ECA51CE03E2D10F3B7AC579BD87E90" | ||
| 963 | "9AE40A6F131E9CFCE5BD967", 0xFF70, | ||
| 964 | NULL, 0, | ||
| 965 | "X9.62 curve over a 368 bit binary field" | ||
| 966 | }; | ||
| 967 | |||
| 968 | static const EC_CURVE_DATA _EC_X9_62_CHAR2_431R1 = { | ||
| 969 | NID_X9_62_characteristic_two_field, | ||
| 970 | "800000000000000000000000000000000000000000000000000000000000000000000" | ||
| 971 | "000000001000000000000000000000000000001", | ||
| 972 | "1A827EF00DD6FC0E234CAF046C6A5D8A85395B236CC4AD2CF32A0CADBDC9DDF620B0E" | ||
| 973 | "B9906D0957F6C6FEACD615468DF104DE296CD8F", | ||
| 974 | "10D9B4A3D9047D8B154359ABFB1B7F5485B04CEB868237DDC9DEDA982A679A5A919B6" | ||
| 975 | "26D4E50A8DD731B107A9962381FB5D807BF2618", | ||
| 976 | "120FC05D3C67A99DE161D2F4092622FECA701BE4F50F4758714E8A87BBF2A658EF8C2" | ||
| 977 | "1E7C5EFE965361F6C2999C0C247B0DBD70CE6B7", | ||
| 978 | "20D0AF8903A96F8D5FA2C255745D3C451B302C9346D9B7E485E7BCE41F6B591F3E8F6" | ||
| 979 | "ADDCBB0BC4C2F947A7DE1A89B625D6A598B3760", | ||
| 980 | "0340340340340340340340340340340340340340340340340340340323C313FAB5058" | ||
| 981 | "9703B5EC68D3587FEC60D161CC149C1AD4A91", 0x2760, | ||
| 982 | NULL, 0, | ||
| 983 | "X9.62 curve over a 431 bit binary field" | ||
| 984 | }; | ||
| 985 | |||
| 986 | static const EC_CURVE_DATA _EC_WTLS_1 = { | ||
| 987 | NID_X9_62_characteristic_two_field, | ||
| 988 | "020000000000000000000000000201", | ||
| 989 | "1", | ||
| 990 | "1", | ||
| 991 | "01667979A40BA497E5D5C270780617", | ||
| 992 | "00F44B4AF1ECC2630E08785CEBCC15", | ||
| 993 | "00FFFFFFFFFFFFFFFDBF91AF6DEA73", 2, | ||
| 994 | NULL, 0, | ||
| 995 | "WTLS curve over a 113 bit binary field" | ||
| 996 | }; | ||
| 997 | |||
| 998 | /* IPSec curves */ | ||
| 999 | /* NOTE: The of curves over a extension field of non prime degree | ||
| 1000 | * is not recommended (Weil-descent). | ||
| 1001 | * As the group order is not a prime this curve is not suitable | ||
| 1002 | * for ECDSA. | ||
| 1003 | */ | ||
| 1004 | static const EC_CURVE_DATA _EC_IPSEC_155_ID3 = { | ||
| 1005 | NID_X9_62_characteristic_two_field, | ||
| 1006 | "0800000000000000000000004000000000000001", | ||
| 1007 | "0", | ||
| 1008 | "07338f", | ||
| 1009 | "7b", | ||
| 1010 | "1c8", | ||
| 1011 | "2AAAAAAAAAAAAAAAAAAC7F3C7881BD0868FA86C",3, | ||
| 1012 | NULL, 0, | ||
| 1013 | "\n\tIPSec/IKE/Oakley curve #3 over a 155 bit binary field.\n" | ||
| 1014 | "\tNot suitable for ECDSA.\n\tQuestionable extension field!" | ||
| 1015 | }; | ||
| 1016 | |||
| 1017 | /* NOTE: The of curves over a extension field of non prime degree | ||
| 1018 | * is not recommended (Weil-descent). | ||
| 1019 | * As the group order is not a prime this curve is not suitable | ||
| 1020 | * for ECDSA. | ||
| 1021 | */ | ||
| 1022 | static const EC_CURVE_DATA _EC_IPSEC_185_ID4 = { | ||
| 1023 | NID_X9_62_characteristic_two_field, | ||
| 1024 | "020000000000000000000000000000200000000000000001", | ||
| 1025 | "0", | ||
| 1026 | "1ee9", | ||
| 1027 | "18", | ||
| 1028 | "0d", | ||
| 1029 | "FFFFFFFFFFFFFFFFFFFFFFEDF97C44DB9F2420BAFCA75E",2, | ||
| 1030 | NULL, 0, | ||
| 1031 | "\n\tIPSec/IKE/Oakley curve #4 over a 185 bit binary field.\n" | ||
| 1032 | "\tNot suitable for ECDSA.\n\tQuestionable extension field!" | ||
| 1033 | }; | ||
| 1034 | |||
| 1035 | typedef struct _ec_list_element_st { | ||
| 1036 | int nid; | ||
| 1037 | const EC_CURVE_DATA *data; | ||
| 1038 | } ec_list_element; | ||
| 1039 | |||
| 1040 | static const ec_list_element curve_list[] = { | ||
| 1041 | /* prime field curves */ | ||
| 1042 | /* secg curves */ | ||
| 1043 | { NID_secp112r1, &_EC_SECG_PRIME_112R1}, | ||
| 1044 | { NID_secp112r2, &_EC_SECG_PRIME_112R2}, | ||
| 1045 | { NID_secp128r1, &_EC_SECG_PRIME_128R1}, | ||
| 1046 | { NID_secp128r2, &_EC_SECG_PRIME_128R2}, | ||
| 1047 | { NID_secp160k1, &_EC_SECG_PRIME_160K1}, | ||
| 1048 | { NID_secp160r1, &_EC_SECG_PRIME_160R1}, | ||
| 1049 | { NID_secp160r2, &_EC_SECG_PRIME_160R2}, | ||
| 1050 | /* SECG secp192r1 is the same as X9.62 prime192v1 and hence omitted */ | ||
| 1051 | { NID_secp192k1, &_EC_SECG_PRIME_192K1}, | ||
| 1052 | { NID_secp224k1, &_EC_SECG_PRIME_224K1}, | ||
| 1053 | { NID_secp224r1, &_EC_NIST_PRIME_224}, | ||
| 1054 | { NID_secp256k1, &_EC_SECG_PRIME_256K1}, | ||
| 1055 | /* SECG secp256r1 is the same as X9.62 prime256v1 and hence omitted */ | ||
| 1056 | { NID_secp384r1, &_EC_NIST_PRIME_384}, | ||
| 1057 | { NID_secp521r1, &_EC_NIST_PRIME_521}, | ||
| 1058 | /* X9.62 curves */ | ||
| 1059 | { NID_X9_62_prime192v1, &_EC_NIST_PRIME_192}, | ||
| 1060 | { NID_X9_62_prime192v2, &_EC_X9_62_PRIME_192V2}, | ||
| 1061 | { NID_X9_62_prime192v3, &_EC_X9_62_PRIME_192V3}, | ||
| 1062 | { NID_X9_62_prime239v1, &_EC_X9_62_PRIME_239V1}, | ||
| 1063 | { NID_X9_62_prime239v2, &_EC_X9_62_PRIME_239V2}, | ||
| 1064 | { NID_X9_62_prime239v3, &_EC_X9_62_PRIME_239V3}, | ||
| 1065 | { NID_X9_62_prime256v1, &_EC_X9_62_PRIME_256V1}, | ||
| 1066 | /* characteristic two field curves */ | ||
| 1067 | /* NIST/SECG curves */ | ||
| 1068 | { NID_sect113r1, &_EC_SECG_CHAR2_113R1}, | ||
| 1069 | { NID_sect113r2, &_EC_SECG_CHAR2_113R2}, | ||
| 1070 | { NID_sect131r1, &_EC_SECG_CHAR2_131R1}, | ||
| 1071 | { NID_sect131r2, &_EC_SECG_CHAR2_131R2}, | ||
| 1072 | { NID_sect163k1, &_EC_NIST_CHAR2_163K }, | ||
| 1073 | { NID_sect163r1, &_EC_SECG_CHAR2_163R1}, | ||
| 1074 | { NID_sect163r2, &_EC_NIST_CHAR2_163B }, | ||
| 1075 | { NID_sect193r1, &_EC_SECG_CHAR2_193R1}, | ||
| 1076 | { NID_sect193r2, &_EC_SECG_CHAR2_193R2}, | ||
| 1077 | { NID_sect233k1, &_EC_NIST_CHAR2_233K }, | ||
| 1078 | { NID_sect233r1, &_EC_NIST_CHAR2_233B }, | ||
| 1079 | { NID_sect239k1, &_EC_SECG_CHAR2_239K1}, | ||
| 1080 | { NID_sect283k1, &_EC_NIST_CHAR2_283K }, | ||
| 1081 | { NID_sect283r1, &_EC_NIST_CHAR2_283B }, | ||
| 1082 | { NID_sect409k1, &_EC_NIST_CHAR2_409K }, | ||
| 1083 | { NID_sect409r1, &_EC_NIST_CHAR2_409B }, | ||
| 1084 | { NID_sect571k1, &_EC_NIST_CHAR2_571K }, | ||
| 1085 | { NID_sect571r1, &_EC_NIST_CHAR2_571B }, | ||
| 1086 | /* X9.62 curves */ | ||
| 1087 | { NID_X9_62_c2pnb163v1, &_EC_X9_62_CHAR2_163V1}, | ||
| 1088 | { NID_X9_62_c2pnb163v2, &_EC_X9_62_CHAR2_163V2}, | ||
| 1089 | { NID_X9_62_c2pnb163v3, &_EC_X9_62_CHAR2_163V3}, | ||
| 1090 | { NID_X9_62_c2pnb176v1, &_EC_X9_62_CHAR2_176V1}, | ||
| 1091 | { NID_X9_62_c2tnb191v1, &_EC_X9_62_CHAR2_191V1}, | ||
| 1092 | { NID_X9_62_c2tnb191v2, &_EC_X9_62_CHAR2_191V2}, | ||
| 1093 | { NID_X9_62_c2tnb191v3, &_EC_X9_62_CHAR2_191V3}, | ||
| 1094 | { NID_X9_62_c2pnb208w1, &_EC_X9_62_CHAR2_208W1}, | ||
| 1095 | { NID_X9_62_c2tnb239v1, &_EC_X9_62_CHAR2_239V1}, | ||
| 1096 | { NID_X9_62_c2tnb239v2, &_EC_X9_62_CHAR2_239V2}, | ||
| 1097 | { NID_X9_62_c2tnb239v3, &_EC_X9_62_CHAR2_239V3}, | ||
| 1098 | { NID_X9_62_c2pnb272w1, &_EC_X9_62_CHAR2_272W1}, | ||
| 1099 | { NID_X9_62_c2pnb304w1, &_EC_X9_62_CHAR2_304W1}, | ||
| 1100 | { NID_X9_62_c2tnb359v1, &_EC_X9_62_CHAR2_359V1}, | ||
| 1101 | { NID_X9_62_c2pnb368w1, &_EC_X9_62_CHAR2_368W1}, | ||
| 1102 | { NID_X9_62_c2tnb431r1, &_EC_X9_62_CHAR2_431R1}, | ||
| 1103 | /* the WAP/WTLS curves | ||
| 1104 | * [unlike SECG, spec has its own OIDs for curves from X9.62] */ | ||
| 1105 | { NID_wap_wsg_idm_ecid_wtls1, &_EC_WTLS_1}, | ||
| 1106 | { NID_wap_wsg_idm_ecid_wtls3, &_EC_NIST_CHAR2_163K}, | ||
| 1107 | { NID_wap_wsg_idm_ecid_wtls4, &_EC_SECG_CHAR2_113R1}, | ||
| 1108 | { NID_wap_wsg_idm_ecid_wtls5, &_EC_X9_62_CHAR2_163V1}, | ||
| 1109 | { NID_wap_wsg_idm_ecid_wtls6, &_EC_SECG_PRIME_112R1}, | ||
| 1110 | { NID_wap_wsg_idm_ecid_wtls7, &_EC_SECG_PRIME_160R2}, | ||
| 1111 | { NID_wap_wsg_idm_ecid_wtls8, &_EC_WTLS_8}, | ||
| 1112 | { NID_wap_wsg_idm_ecid_wtls9, &_EC_WTLS_9 }, | ||
| 1113 | { NID_wap_wsg_idm_ecid_wtls10, &_EC_NIST_CHAR2_233K}, | ||
| 1114 | { NID_wap_wsg_idm_ecid_wtls11, &_EC_NIST_CHAR2_233B}, | ||
| 1115 | { NID_wap_wsg_idm_ecid_wtls12, &_EC_WTLS_12}, | ||
| 1116 | /* IPSec curves */ | ||
| 1117 | { NID_ipsec3, &_EC_IPSEC_155_ID3}, | ||
| 1118 | { NID_ipsec4, &_EC_IPSEC_185_ID4}, | ||
| 1119 | }; | ||
| 1120 | |||
| 1121 | static size_t curve_list_length = sizeof(curve_list)/sizeof(ec_list_element); | ||
| 1122 | |||
| 1123 | static EC_GROUP *ec_group_new_from_data(const EC_CURVE_DATA *data) | ||
| 1124 | { | ||
| 1125 | EC_GROUP *group=NULL; | ||
| 1126 | EC_POINT *P=NULL; | ||
| 1127 | BN_CTX *ctx=NULL; | ||
| 1128 | BIGNUM *p=NULL, *a=NULL, *b=NULL, *x=NULL, *y=NULL, *order=NULL; | ||
| 1129 | int ok=0; | ||
| 1130 | |||
| 1131 | if ((ctx = BN_CTX_new()) == NULL) | ||
| 1132 | { | ||
| 1133 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_MALLOC_FAILURE); | ||
| 1134 | goto err; | ||
| 1135 | } | ||
| 1136 | if ((p = BN_new()) == NULL || (a = BN_new()) == NULL || | ||
| 1137 | (b = BN_new()) == NULL || (x = BN_new()) == NULL || | ||
| 1138 | (y = BN_new()) == NULL || (order = BN_new()) == NULL) | ||
| 1139 | { | ||
| 1140 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_MALLOC_FAILURE); | ||
| 1141 | goto err; | ||
| 1142 | } | ||
| 1143 | |||
| 1144 | if (!BN_hex2bn(&p, data->p) || !BN_hex2bn(&a, data->a) | ||
| 1145 | || !BN_hex2bn(&b, data->b)) | ||
| 1146 | { | ||
| 1147 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_BN_LIB); | ||
| 1148 | goto err; | ||
| 1149 | } | ||
| 1150 | |||
| 1151 | if (data->field_type == NID_X9_62_prime_field) | ||
| 1152 | { | ||
| 1153 | if ((group = EC_GROUP_new_curve_GFp(p, a, b, ctx)) == NULL) | ||
| 1154 | { | ||
| 1155 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_EC_LIB); | ||
| 1156 | goto err; | ||
| 1157 | } | ||
| 1158 | } | ||
| 1159 | else | ||
| 1160 | { /* field_type == NID_X9_62_characteristic_two_field */ | ||
| 1161 | if ((group = EC_GROUP_new_curve_GF2m(p, a, b, ctx)) == NULL) | ||
| 1162 | { | ||
| 1163 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_EC_LIB); | ||
| 1164 | goto err; | ||
| 1165 | } | ||
| 1166 | } | ||
| 1167 | |||
| 1168 | if ((P = EC_POINT_new(group)) == NULL) | ||
| 1169 | { | ||
| 1170 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_EC_LIB); | ||
| 1171 | goto err; | ||
| 1172 | } | ||
| 1173 | |||
| 1174 | if (!BN_hex2bn(&x, data->x) || !BN_hex2bn(&y, data->y)) | ||
| 1175 | { | ||
| 1176 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_BN_LIB); | ||
| 1177 | goto err; | ||
| 1178 | } | ||
| 1179 | if (!EC_POINT_set_affine_coordinates_GF2m(group, P, x, y, ctx)) | ||
| 1180 | { | ||
| 1181 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_EC_LIB); | ||
| 1182 | goto err; | ||
| 1183 | } | ||
| 1184 | if (!BN_hex2bn(&order, data->order) || !BN_set_word(x, data->cofactor)) | ||
| 1185 | { | ||
| 1186 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_BN_LIB); | ||
| 1187 | goto err; | ||
| 1188 | } | ||
| 1189 | if (!EC_GROUP_set_generator(group, P, order, x)) | ||
| 1190 | { | ||
| 1191 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_EC_LIB); | ||
| 1192 | goto err; | ||
| 1193 | } | ||
| 1194 | if (data->seed) | ||
| 1195 | { | ||
| 1196 | if (!EC_GROUP_set_seed(group, data->seed, data->seed_len)) | ||
| 1197 | { | ||
| 1198 | ECerr(EC_F_EC_GROUP_NEW_FROM_DATA, ERR_R_EC_LIB); | ||
| 1199 | goto err; | ||
| 1200 | } | ||
| 1201 | } | ||
| 1202 | ok=1; | ||
| 1203 | err: | ||
| 1204 | if (!ok) | ||
| 1205 | { | ||
| 1206 | EC_GROUP_free(group); | ||
| 1207 | group = NULL; | ||
| 1208 | } | ||
| 1209 | if (P) | ||
| 1210 | EC_POINT_free(P); | ||
| 1211 | if (ctx) | ||
| 1212 | BN_CTX_free(ctx); | ||
| 1213 | if (p) | ||
| 1214 | BN_free(p); | ||
| 1215 | if (a) | ||
| 1216 | BN_free(a); | ||
| 1217 | if (b) | ||
| 1218 | BN_free(b); | ||
| 1219 | if (order) | ||
| 1220 | BN_free(order); | ||
| 1221 | if (x) | ||
| 1222 | BN_free(x); | ||
| 1223 | if (y) | ||
| 1224 | BN_free(y); | ||
| 1225 | return group; | ||
| 1226 | } | ||
| 1227 | |||
| 1228 | EC_GROUP *EC_GROUP_new_by_curve_name(int nid) | ||
| 1229 | { | ||
| 1230 | size_t i; | ||
| 1231 | EC_GROUP *ret = NULL; | ||
| 1232 | |||
| 1233 | if (nid <= 0) | ||
| 1234 | return NULL; | ||
| 1235 | |||
| 1236 | for (i=0; i<curve_list_length; i++) | ||
| 1237 | if (curve_list[i].nid == nid) | ||
| 1238 | { | ||
| 1239 | ret = ec_group_new_from_data(curve_list[i].data); | ||
| 1240 | break; | ||
| 1241 | } | ||
| 1242 | |||
| 1243 | if (ret == NULL) | ||
| 1244 | { | ||
| 1245 | ECerr(EC_F_EC_GROUP_NEW_BY_CURVE_NAME, EC_R_UNKNOWN_GROUP); | ||
| 1246 | return NULL; | ||
| 1247 | } | ||
| 1248 | |||
| 1249 | EC_GROUP_set_curve_name(ret, nid); | ||
| 1250 | |||
| 1251 | return ret; | ||
| 1252 | } | ||
| 1253 | |||
| 1254 | size_t EC_get_builtin_curves(EC_builtin_curve *r, size_t nitems) | ||
| 1255 | { | ||
| 1256 | size_t i, min; | ||
| 1257 | |||
| 1258 | if (r == NULL || nitems == 0) | ||
| 1259 | return curve_list_length; | ||
| 1260 | |||
| 1261 | min = nitems < curve_list_length ? nitems : curve_list_length; | ||
| 1262 | |||
| 1263 | for (i = 0; i < min; i++) | ||
| 1264 | { | ||
| 1265 | r[i].nid = curve_list[i].nid; | ||
| 1266 | r[i].comment = curve_list[i].data->comment; | ||
| 1267 | } | ||
| 1268 | |||
| 1269 | return curve_list_length; | ||
| 1270 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec_key.c b/src/lib/libssl/src/crypto/ec/ec_key.c new file mode 100644 index 0000000000..3d6c900b95 --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec_key.c | |||
| @@ -0,0 +1,465 @@ | |||
| 1 | /* crypto/ec/ec_key.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | /* ==================================================================== | ||
| 59 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 60 | * Portions originally developed by SUN MICROSYSTEMS, INC., and | ||
| 61 | * contributed to the OpenSSL project. | ||
| 62 | */ | ||
| 63 | |||
| 64 | #include <string.h> | ||
| 65 | #include "ec_lcl.h" | ||
| 66 | #include <openssl/err.h> | ||
| 67 | #include <string.h> | ||
| 68 | |||
| 69 | EC_KEY *EC_KEY_new(void) | ||
| 70 | { | ||
| 71 | EC_KEY *ret; | ||
| 72 | |||
| 73 | ret=(EC_KEY *)OPENSSL_malloc(sizeof(EC_KEY)); | ||
| 74 | if (ret == NULL) | ||
| 75 | { | ||
| 76 | ECerr(EC_F_EC_KEY_NEW, ERR_R_MALLOC_FAILURE); | ||
| 77 | return(NULL); | ||
| 78 | } | ||
| 79 | |||
| 80 | ret->version = 1; | ||
| 81 | ret->group = NULL; | ||
| 82 | ret->pub_key = NULL; | ||
| 83 | ret->priv_key= NULL; | ||
| 84 | ret->enc_flag= 0; | ||
| 85 | ret->conv_form = POINT_CONVERSION_UNCOMPRESSED; | ||
| 86 | ret->references= 1; | ||
| 87 | ret->method_data = NULL; | ||
| 88 | return(ret); | ||
| 89 | } | ||
| 90 | |||
| 91 | EC_KEY *EC_KEY_new_by_curve_name(int nid) | ||
| 92 | { | ||
| 93 | EC_KEY *ret = EC_KEY_new(); | ||
| 94 | if (ret == NULL) | ||
| 95 | return NULL; | ||
| 96 | ret->group = EC_GROUP_new_by_curve_name(nid); | ||
| 97 | if (ret->group == NULL) | ||
| 98 | { | ||
| 99 | EC_KEY_free(ret); | ||
| 100 | return NULL; | ||
| 101 | } | ||
| 102 | return ret; | ||
| 103 | } | ||
| 104 | |||
| 105 | void EC_KEY_free(EC_KEY *r) | ||
| 106 | { | ||
| 107 | int i; | ||
| 108 | |||
| 109 | if (r == NULL) return; | ||
| 110 | |||
| 111 | i=CRYPTO_add(&r->references,-1,CRYPTO_LOCK_EC); | ||
| 112 | #ifdef REF_PRINT | ||
| 113 | REF_PRINT("EC_KEY",r); | ||
| 114 | #endif | ||
| 115 | if (i > 0) return; | ||
| 116 | #ifdef REF_CHECK | ||
| 117 | if (i < 0) | ||
| 118 | { | ||
| 119 | fprintf(stderr,"EC_KEY_free, bad reference count\n"); | ||
| 120 | abort(); | ||
| 121 | } | ||
| 122 | #endif | ||
| 123 | |||
| 124 | if (r->group != NULL) | ||
| 125 | EC_GROUP_free(r->group); | ||
| 126 | if (r->pub_key != NULL) | ||
| 127 | EC_POINT_free(r->pub_key); | ||
| 128 | if (r->priv_key != NULL) | ||
| 129 | BN_clear_free(r->priv_key); | ||
| 130 | |||
| 131 | EC_EX_DATA_free_all_data(&r->method_data); | ||
| 132 | |||
| 133 | OPENSSL_cleanse((void *)r, sizeof(EC_KEY)); | ||
| 134 | |||
| 135 | OPENSSL_free(r); | ||
| 136 | } | ||
| 137 | |||
| 138 | EC_KEY *EC_KEY_copy(EC_KEY *dest, const EC_KEY *src) | ||
| 139 | { | ||
| 140 | EC_EXTRA_DATA *d; | ||
| 141 | |||
| 142 | if (dest == NULL || src == NULL) | ||
| 143 | { | ||
| 144 | ECerr(EC_F_EC_KEY_COPY, ERR_R_PASSED_NULL_PARAMETER); | ||
| 145 | return NULL; | ||
| 146 | } | ||
| 147 | /* copy the parameters */ | ||
| 148 | if (src->group) | ||
| 149 | { | ||
| 150 | const EC_METHOD *meth = EC_GROUP_method_of(src->group); | ||
| 151 | /* clear the old group */ | ||
| 152 | if (dest->group) | ||
| 153 | EC_GROUP_free(dest->group); | ||
| 154 | dest->group = EC_GROUP_new(meth); | ||
| 155 | if (dest->group == NULL) | ||
| 156 | return NULL; | ||
| 157 | if (!EC_GROUP_copy(dest->group, src->group)) | ||
| 158 | return NULL; | ||
| 159 | } | ||
| 160 | /* copy the public key */ | ||
| 161 | if (src->pub_key && src->group) | ||
| 162 | { | ||
| 163 | if (dest->pub_key) | ||
| 164 | EC_POINT_free(dest->pub_key); | ||
| 165 | dest->pub_key = EC_POINT_new(src->group); | ||
| 166 | if (dest->pub_key == NULL) | ||
| 167 | return NULL; | ||
| 168 | if (!EC_POINT_copy(dest->pub_key, src->pub_key)) | ||
| 169 | return NULL; | ||
| 170 | } | ||
| 171 | /* copy the private key */ | ||
| 172 | if (src->priv_key) | ||
| 173 | { | ||
| 174 | if (dest->priv_key == NULL) | ||
| 175 | { | ||
| 176 | dest->priv_key = BN_new(); | ||
| 177 | if (dest->priv_key == NULL) | ||
| 178 | return NULL; | ||
| 179 | } | ||
| 180 | if (!BN_copy(dest->priv_key, src->priv_key)) | ||
| 181 | return NULL; | ||
| 182 | } | ||
| 183 | /* copy method/extra data */ | ||
| 184 | EC_EX_DATA_free_all_data(&dest->method_data); | ||
| 185 | |||
| 186 | for (d = src->method_data; d != NULL; d = d->next) | ||
| 187 | { | ||
| 188 | void *t = d->dup_func(d->data); | ||
| 189 | |||
| 190 | if (t == NULL) | ||
| 191 | return 0; | ||
| 192 | if (!EC_EX_DATA_set_data(&dest->method_data, t, d->dup_func, d->free_func, d->clear_free_func)) | ||
| 193 | return 0; | ||
| 194 | } | ||
| 195 | |||
| 196 | /* copy the rest */ | ||
| 197 | dest->enc_flag = src->enc_flag; | ||
| 198 | dest->conv_form = src->conv_form; | ||
| 199 | dest->version = src->version; | ||
| 200 | |||
| 201 | return dest; | ||
| 202 | } | ||
| 203 | |||
| 204 | EC_KEY *EC_KEY_dup(const EC_KEY *ec_key) | ||
| 205 | { | ||
| 206 | EC_KEY *ret = EC_KEY_new(); | ||
| 207 | if (ret == NULL) | ||
| 208 | return NULL; | ||
| 209 | if (EC_KEY_copy(ret, ec_key) == NULL) | ||
| 210 | { | ||
| 211 | EC_KEY_free(ret); | ||
| 212 | return NULL; | ||
| 213 | } | ||
| 214 | return ret; | ||
| 215 | } | ||
| 216 | |||
| 217 | int EC_KEY_up_ref(EC_KEY *r) | ||
| 218 | { | ||
| 219 | int i = CRYPTO_add(&r->references, 1, CRYPTO_LOCK_EC); | ||
| 220 | #ifdef REF_PRINT | ||
| 221 | REF_PRINT("EC_KEY",r); | ||
| 222 | #endif | ||
| 223 | #ifdef REF_CHECK | ||
| 224 | if (i < 2) | ||
| 225 | { | ||
| 226 | fprintf(stderr, "EC_KEY_up, bad reference count\n"); | ||
| 227 | abort(); | ||
| 228 | } | ||
| 229 | #endif | ||
| 230 | return ((i > 1) ? 1 : 0); | ||
| 231 | } | ||
| 232 | |||
| 233 | int EC_KEY_generate_key(EC_KEY *eckey) | ||
| 234 | { | ||
| 235 | int ok = 0; | ||
| 236 | BN_CTX *ctx = NULL; | ||
| 237 | BIGNUM *priv_key = NULL, *order = NULL; | ||
| 238 | EC_POINT *pub_key = NULL; | ||
| 239 | |||
| 240 | if (!eckey || !eckey->group) | ||
| 241 | { | ||
| 242 | ECerr(EC_F_EC_KEY_GENERATE_KEY, ERR_R_PASSED_NULL_PARAMETER); | ||
| 243 | return 0; | ||
| 244 | } | ||
| 245 | |||
| 246 | if ((order = BN_new()) == NULL) goto err; | ||
| 247 | if ((ctx = BN_CTX_new()) == NULL) goto err; | ||
| 248 | |||
| 249 | if (eckey->priv_key == NULL) | ||
| 250 | { | ||
| 251 | priv_key = BN_new(); | ||
| 252 | if (priv_key == NULL) | ||
| 253 | goto err; | ||
| 254 | } | ||
| 255 | else | ||
| 256 | priv_key = eckey->priv_key; | ||
| 257 | |||
| 258 | if (!EC_GROUP_get_order(eckey->group, order, ctx)) | ||
| 259 | goto err; | ||
| 260 | |||
| 261 | do | ||
| 262 | if (!BN_rand_range(priv_key, order)) | ||
| 263 | goto err; | ||
| 264 | while (BN_is_zero(priv_key)); | ||
| 265 | |||
| 266 | if (eckey->pub_key == NULL) | ||
| 267 | { | ||
| 268 | pub_key = EC_POINT_new(eckey->group); | ||
| 269 | if (pub_key == NULL) | ||
| 270 | goto err; | ||
| 271 | } | ||
| 272 | else | ||
| 273 | pub_key = eckey->pub_key; | ||
| 274 | |||
| 275 | if (!EC_POINT_mul(eckey->group, pub_key, priv_key, NULL, NULL, ctx)) | ||
| 276 | goto err; | ||
| 277 | |||
| 278 | eckey->priv_key = priv_key; | ||
| 279 | eckey->pub_key = pub_key; | ||
| 280 | |||
| 281 | ok=1; | ||
| 282 | |||
| 283 | err: | ||
| 284 | if (order) | ||
| 285 | BN_free(order); | ||
| 286 | if (pub_key != NULL && eckey->pub_key == NULL) | ||
| 287 | EC_POINT_free(pub_key); | ||
| 288 | if (priv_key != NULL && eckey->priv_key == NULL) | ||
| 289 | BN_free(priv_key); | ||
| 290 | if (ctx != NULL) | ||
| 291 | BN_CTX_free(ctx); | ||
| 292 | return(ok); | ||
| 293 | } | ||
| 294 | |||
| 295 | int EC_KEY_check_key(const EC_KEY *eckey) | ||
| 296 | { | ||
| 297 | int ok = 0; | ||
| 298 | BN_CTX *ctx = NULL; | ||
| 299 | BIGNUM *order = NULL; | ||
| 300 | EC_POINT *point = NULL; | ||
| 301 | |||
| 302 | if (!eckey || !eckey->group || !eckey->pub_key) | ||
| 303 | { | ||
| 304 | ECerr(EC_F_EC_KEY_CHECK_KEY, ERR_R_PASSED_NULL_PARAMETER); | ||
| 305 | return 0; | ||
| 306 | } | ||
| 307 | |||
| 308 | if ((ctx = BN_CTX_new()) == NULL) | ||
| 309 | goto err; | ||
| 310 | if ((order = BN_new()) == NULL) | ||
| 311 | goto err; | ||
| 312 | if ((point = EC_POINT_new(eckey->group)) == NULL) | ||
| 313 | goto err; | ||
| 314 | |||
| 315 | /* testing whether the pub_key is on the elliptic curve */ | ||
| 316 | if (!EC_POINT_is_on_curve(eckey->group, eckey->pub_key, ctx)) | ||
| 317 | { | ||
| 318 | ECerr(EC_F_EC_KEY_CHECK_KEY, EC_R_POINT_IS_NOT_ON_CURVE); | ||
| 319 | goto err; | ||
| 320 | } | ||
| 321 | /* testing whether pub_key * order is the point at infinity */ | ||
| 322 | if (!EC_GROUP_get_order(eckey->group, order, ctx)) | ||
| 323 | { | ||
| 324 | ECerr(EC_F_EC_KEY_CHECK_KEY, EC_R_INVALID_GROUP_ORDER); | ||
| 325 | goto err; | ||
| 326 | } | ||
| 327 | if (!EC_POINT_copy(point, eckey->pub_key)) | ||
| 328 | { | ||
| 329 | ECerr(EC_F_EC_KEY_CHECK_KEY, ERR_R_EC_LIB); | ||
| 330 | goto err; | ||
| 331 | } | ||
| 332 | if (!EC_POINT_mul(eckey->group, point, order, NULL, NULL, ctx)) | ||
| 333 | { | ||
| 334 | ECerr(EC_F_EC_KEY_CHECK_KEY, ERR_R_EC_LIB); | ||
| 335 | goto err; | ||
| 336 | } | ||
| 337 | if (!EC_POINT_is_at_infinity(eckey->group, point)) | ||
| 338 | { | ||
| 339 | ECerr(EC_F_EC_KEY_CHECK_KEY, EC_R_WRONG_ORDER); | ||
| 340 | goto err; | ||
| 341 | } | ||
| 342 | /* in case the priv_key is present : | ||
| 343 | * check if generator * priv_key == pub_key | ||
| 344 | */ | ||
| 345 | if (eckey->priv_key) | ||
| 346 | { | ||
| 347 | if (BN_cmp(eckey->priv_key, order) >= 0) | ||
| 348 | { | ||
| 349 | ECerr(EC_F_EC_KEY_CHECK_KEY, EC_R_WRONG_ORDER); | ||
| 350 | goto err; | ||
| 351 | } | ||
| 352 | if (!EC_POINT_mul(eckey->group, point, eckey->priv_key, | ||
| 353 | NULL, NULL, ctx)) | ||
| 354 | { | ||
| 355 | ECerr(EC_F_EC_KEY_CHECK_KEY, ERR_R_EC_LIB); | ||
| 356 | goto err; | ||
| 357 | } | ||
| 358 | if (EC_POINT_cmp(eckey->group, point, eckey->pub_key, | ||
| 359 | ctx) != 0) | ||
| 360 | { | ||
| 361 | ECerr(EC_F_EC_KEY_CHECK_KEY, EC_R_INVALID_PRIVATE_KEY); | ||
| 362 | goto err; | ||
| 363 | } | ||
| 364 | } | ||
| 365 | ok = 1; | ||
| 366 | err: | ||
| 367 | if (ctx != NULL) | ||
| 368 | BN_CTX_free(ctx); | ||
| 369 | if (order != NULL) | ||
| 370 | BN_free(order); | ||
| 371 | if (point != NULL) | ||
| 372 | EC_POINT_free(point); | ||
| 373 | return(ok); | ||
| 374 | } | ||
| 375 | |||
| 376 | const EC_GROUP *EC_KEY_get0_group(const EC_KEY *key) | ||
| 377 | { | ||
| 378 | return key->group; | ||
| 379 | } | ||
| 380 | |||
| 381 | int EC_KEY_set_group(EC_KEY *key, const EC_GROUP *group) | ||
| 382 | { | ||
| 383 | if (key->group != NULL) | ||
| 384 | EC_GROUP_free(key->group); | ||
| 385 | key->group = EC_GROUP_dup(group); | ||
| 386 | return (key->group == NULL) ? 0 : 1; | ||
| 387 | } | ||
| 388 | |||
| 389 | const BIGNUM *EC_KEY_get0_private_key(const EC_KEY *key) | ||
| 390 | { | ||
| 391 | return key->priv_key; | ||
| 392 | } | ||
| 393 | |||
| 394 | int EC_KEY_set_private_key(EC_KEY *key, const BIGNUM *priv_key) | ||
| 395 | { | ||
| 396 | if (key->priv_key) | ||
| 397 | BN_clear_free(key->priv_key); | ||
| 398 | key->priv_key = BN_dup(priv_key); | ||
| 399 | return (key->priv_key == NULL) ? 0 : 1; | ||
| 400 | } | ||
| 401 | |||
| 402 | const EC_POINT *EC_KEY_get0_public_key(const EC_KEY *key) | ||
| 403 | { | ||
| 404 | return key->pub_key; | ||
| 405 | } | ||
| 406 | |||
| 407 | int EC_KEY_set_public_key(EC_KEY *key, const EC_POINT *pub_key) | ||
| 408 | { | ||
| 409 | if (key->pub_key != NULL) | ||
| 410 | EC_POINT_free(key->pub_key); | ||
| 411 | key->pub_key = EC_POINT_dup(pub_key, key->group); | ||
| 412 | return (key->pub_key == NULL) ? 0 : 1; | ||
| 413 | } | ||
| 414 | |||
| 415 | unsigned int EC_KEY_get_enc_flags(const EC_KEY *key) | ||
| 416 | { | ||
| 417 | return key->enc_flag; | ||
| 418 | } | ||
| 419 | |||
| 420 | void EC_KEY_set_enc_flags(EC_KEY *key, unsigned int flags) | ||
| 421 | { | ||
| 422 | key->enc_flag = flags; | ||
| 423 | } | ||
| 424 | |||
| 425 | point_conversion_form_t EC_KEY_get_conv_form(const EC_KEY *key) | ||
| 426 | { | ||
| 427 | return key->conv_form; | ||
| 428 | } | ||
| 429 | |||
| 430 | void EC_KEY_set_conv_form(EC_KEY *key, point_conversion_form_t cform) | ||
| 431 | { | ||
| 432 | key->conv_form = cform; | ||
| 433 | if (key->group != NULL) | ||
| 434 | EC_GROUP_set_point_conversion_form(key->group, cform); | ||
| 435 | } | ||
| 436 | |||
| 437 | void *EC_KEY_get_key_method_data(EC_KEY *key, | ||
| 438 | void *(*dup_func)(void *), void (*free_func)(void *), void (*clear_free_func)(void *)) | ||
| 439 | { | ||
| 440 | return EC_EX_DATA_get_data(key->method_data, dup_func, free_func, clear_free_func); | ||
| 441 | } | ||
| 442 | |||
| 443 | void EC_KEY_insert_key_method_data(EC_KEY *key, void *data, | ||
| 444 | void *(*dup_func)(void *), void (*free_func)(void *), void (*clear_free_func)(void *)) | ||
| 445 | { | ||
| 446 | EC_EXTRA_DATA *ex_data; | ||
| 447 | CRYPTO_w_lock(CRYPTO_LOCK_EC); | ||
| 448 | ex_data = EC_EX_DATA_get_data(key->method_data, dup_func, free_func, clear_free_func); | ||
| 449 | if (ex_data == NULL) | ||
| 450 | EC_EX_DATA_set_data(&key->method_data, data, dup_func, free_func, clear_free_func); | ||
| 451 | CRYPTO_w_unlock(CRYPTO_LOCK_EC); | ||
| 452 | } | ||
| 453 | |||
| 454 | void EC_KEY_set_asn1_flag(EC_KEY *key, int flag) | ||
| 455 | { | ||
| 456 | if (key->group != NULL) | ||
| 457 | EC_GROUP_set_asn1_flag(key->group, flag); | ||
| 458 | } | ||
| 459 | |||
| 460 | int EC_KEY_precompute_mult(EC_KEY *key, BN_CTX *ctx) | ||
| 461 | { | ||
| 462 | if (key->group == NULL) | ||
| 463 | return 0; | ||
| 464 | return EC_GROUP_precompute_mult(key->group, ctx); | ||
| 465 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ec_print.c b/src/lib/libssl/src/crypto/ec/ec_print.c new file mode 100644 index 0000000000..f7c8a303ac --- /dev/null +++ b/src/lib/libssl/src/crypto/ec/ec_print.c | |||
| @@ -0,0 +1,195 @@ | |||
| 1 | /* crypto/ec/ec_print.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #include <openssl/crypto.h> | ||
| 57 | #include "ec_lcl.h" | ||
| 58 | |||
| 59 | BIGNUM *EC_POINT_point2bn(const EC_GROUP *group, | ||
| 60 | const EC_POINT *point, | ||
| 61 | point_conversion_form_t form, | ||
| 62 | BIGNUM *ret, | ||
| 63 | BN_CTX *ctx) | ||
| 64 | { | ||
| 65 | size_t buf_len=0; | ||
| 66 | unsigned char *buf; | ||
| 67 | |||
| 68 | buf_len = EC_POINT_point2oct(group, point, form, | ||
| 69 | NULL, 0, ctx); | ||
| 70 | if (buf_len == 0) | ||
| 71 | return NULL; | ||
| 72 | |||
| 73 | if ((buf = OPENSSL_malloc(buf_len)) == NULL) | ||
| 74 | return NULL; | ||
| 75 | |||
| 76 | if (!EC_POINT_point2oct(group, point, form, buf, buf_len, ctx)) | ||
| 77 | { | ||
| 78 | OPENSSL_free(buf); | ||
| 79 | return NULL; | ||
| 80 | } | ||
| 81 | |||
| 82 | ret = BN_bin2bn(buf, buf_len, ret); | ||
| 83 | |||
| 84 | OPENSSL_free(buf); | ||
| 85 | |||
| 86 | return ret; | ||
| 87 | } | ||
| 88 | |||
| 89 | EC_POINT *EC_POINT_bn2point(const EC_GROUP *group, | ||
| 90 | const BIGNUM *bn, | ||
| 91 | EC_POINT *point, | ||
| 92 | BN_CTX *ctx) | ||
| 93 | { | ||
| 94 | size_t buf_len=0; | ||
| 95 | unsigned char *buf; | ||
| 96 | EC_POINT *ret; | ||
| 97 | |||
| 98 | if ((buf_len = BN_num_bytes(bn)) == 0) return NULL; | ||
| 99 | buf = OPENSSL_malloc(buf_len); | ||
| 100 | if (buf == NULL) | ||
| 101 | return NULL; | ||
| 102 | |||
| 103 | if (!BN_bn2bin(bn, buf)) | ||
| 104 | { | ||
| 105 | OPENSSL_free(buf); | ||
| 106 | return NULL; | ||
| 107 | } | ||
| 108 | |||
| 109 | if (point == NULL) | ||
| 110 | { | ||
| 111 | if ((ret = EC_POINT_new(group)) == NULL) | ||
| 112 | { | ||
| 113 | OPENSSL_free(buf); | ||
| 114 | return NULL; | ||
| 115 | } | ||
| 116 | } | ||
| 117 | else | ||
| 118 | ret = point; | ||
| 119 | |||
| 120 | if (!EC_POINT_oct2point(group, ret, buf, buf_len, ctx)) | ||
| 121 | { | ||
| 122 | if (point == NULL) | ||
| 123 | EC_POINT_clear_free(ret); | ||
| 124 | OPENSSL_free(buf); | ||
| 125 | return NULL; | ||
| 126 | } | ||
| 127 | |||
| 128 | OPENSSL_free(buf); | ||
| 129 | return ret; | ||
| 130 | } | ||
| 131 | |||
| 132 | static const char *HEX_DIGITS = "0123456789ABCDEF"; | ||
| 133 | |||
| 134 | /* the return value must be freed (using OPENSSL_free()) */ | ||
| 135 | char *EC_POINT_point2hex(const EC_GROUP *group, | ||
| 136 | const EC_POINT *point, | ||
| 137 | point_conversion_form_t form, | ||
| 138 | BN_CTX *ctx) | ||
| 139 | { | ||
| 140 | char *ret, *p; | ||
| 141 | size_t buf_len=0,i; | ||
| 142 | unsigned char *buf, *pbuf; | ||
| 143 | |||
| 144 | buf_len = EC_POINT_point2oct(group, point, form, | ||
| 145 | NULL, 0, ctx); | ||
| 146 | if (buf_len == 0) | ||
| 147 | return NULL; | ||
| 148 | |||
| 149 | if ((buf = OPENSSL_malloc(buf_len)) == NULL) | ||
| 150 | return NULL; | ||
| 151 | |||
| 152 | if (!EC_POINT_point2oct(group, point, form, buf, buf_len, ctx)) | ||
| 153 | { | ||
| 154 | OPENSSL_free(buf); | ||
| 155 | return NULL; | ||
| 156 | } | ||
| 157 | |||
| 158 | ret = (char *)OPENSSL_malloc(buf_len*2+2); | ||
| 159 | if (ret == NULL) | ||
| 160 | { | ||
| 161 | OPENSSL_free(buf); | ||
| 162 | return NULL; | ||
| 163 | } | ||
| 164 | p = ret; | ||
| 165 | pbuf = buf; | ||
| 166 | for (i=buf_len; i > 0; i--) | ||
| 167 | { | ||
| 168 | int v = (int) *(pbuf++); | ||
| 169 | *(p++)=HEX_DIGITS[v>>4]; | ||
| 170 | *(p++)=HEX_DIGITS[v&0x0F]; | ||
| 171 | } | ||
| 172 | *p='\0'; | ||
| 173 | |||
| 174 | OPENSSL_free(buf); | ||
| 175 | |||
| 176 | return ret; | ||
| 177 | } | ||
| 178 | |||
| 179 | EC_POINT *EC_POINT_hex2point(const EC_GROUP *group, | ||
| 180 | const char *buf, | ||
| 181 | EC_POINT *point, | ||
| 182 | BN_CTX *ctx) | ||
| 183 | { | ||
| 184 | EC_POINT *ret=NULL; | ||
| 185 | BIGNUM *tmp_bn=NULL; | ||
| 186 | |||
| 187 | if (!BN_hex2bn(&tmp_bn, buf)) | ||
| 188 | return NULL; | ||
| 189 | |||
| 190 | ret = EC_POINT_bn2point(group, tmp_bn, point, ctx); | ||
| 191 | |||
| 192 | BN_clear_free(tmp_bn); | ||
| 193 | |||
| 194 | return ret; | ||
| 195 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/Makefile b/src/lib/libssl/src/crypto/ecdh/Makefile new file mode 100644 index 0000000000..95aa69fea5 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/Makefile | |||
| @@ -0,0 +1,111 @@ | |||
| 1 | # | ||
| 2 | # crypto/ecdh/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= ecdh | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= -I.. -I$(TOP) -I../../include | ||
| 9 | CFLAG=-g -Wall | ||
| 10 | MAKEFILE= Makefile | ||
| 11 | AR= ar r | ||
| 12 | |||
| 13 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 14 | |||
| 15 | GENERAL=Makefile | ||
| 16 | TEST=ecdhtest.c | ||
| 17 | APPS= | ||
| 18 | |||
| 19 | LIB=$(TOP)/libcrypto.a | ||
| 20 | LIBSRC= ech_lib.c ech_ossl.c ech_key.c ech_err.c | ||
| 21 | |||
| 22 | LIBOBJ= ech_lib.o ech_ossl.o ech_key.o ech_err.o | ||
| 23 | |||
| 24 | SRC= $(LIBSRC) | ||
| 25 | |||
| 26 | EXHEADER= ecdh.h | ||
| 27 | HEADER= ech_locl.h $(EXHEADER) | ||
| 28 | |||
| 29 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 30 | |||
| 31 | top: | ||
| 32 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 33 | |||
| 34 | all: lib | ||
| 35 | |||
| 36 | lib: $(LIBOBJ) | ||
| 37 | $(AR) $(LIB) $(LIBOBJ) | ||
| 38 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 39 | @touch lib | ||
| 40 | |||
| 41 | files: | ||
| 42 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 43 | |||
| 44 | links: | ||
| 45 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 46 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 48 | |||
| 49 | install: | ||
| 50 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 51 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 52 | do \ | ||
| 53 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 54 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 55 | done; | ||
| 56 | |||
| 57 | tags: | ||
| 58 | ctags $(SRC) | ||
| 59 | |||
| 60 | tests: | ||
| 61 | |||
| 62 | lint: | ||
| 63 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 64 | |||
| 65 | depend: | ||
| 66 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 67 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 68 | |||
| 69 | dclean: | ||
| 70 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 71 | mv -f Makefile.new $(MAKEFILE) | ||
| 72 | |||
| 73 | clean: | ||
| 74 | rm -f *.o */*.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 75 | |||
| 76 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 77 | |||
| 78 | ech_err.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 79 | ech_err.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 80 | ech_err.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 81 | ech_err.o: ../../include/openssl/err.h ../../include/openssl/lhash.h | ||
| 82 | ech_err.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h | ||
| 83 | ech_err.o: ../../include/openssl/ossl_typ.h ../../include/openssl/safestack.h | ||
| 84 | ech_err.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 85 | ech_err.o: ech_err.c | ||
| 86 | ech_key.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 87 | ech_key.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 88 | ech_key.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 89 | ech_key.o: ../../include/openssl/engine.h ../../include/openssl/opensslconf.h | ||
| 90 | ech_key.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 91 | ech_key.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 92 | ech_key.o: ../../include/openssl/symhacks.h ech_key.c ech_locl.h | ||
| 93 | ech_lib.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 94 | ech_lib.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 95 | ech_lib.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 96 | ech_lib.o: ../../include/openssl/engine.h ../../include/openssl/err.h | ||
| 97 | ech_lib.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 98 | ech_lib.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 99 | ech_lib.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 100 | ech_lib.o: ../../include/openssl/symhacks.h ech_lib.c ech_locl.h | ||
| 101 | ech_ossl.o: ../../e_os.h ../../include/openssl/asn1.h | ||
| 102 | ech_ossl.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 103 | ech_ossl.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h | ||
| 104 | ech_ossl.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 105 | ech_ossl.o: ../../include/openssl/ecdh.h ../../include/openssl/err.h | ||
| 106 | ech_ossl.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h | ||
| 107 | ech_ossl.o: ../../include/openssl/opensslconf.h | ||
| 108 | ech_ossl.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 109 | ech_ossl.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 110 | ech_ossl.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 111 | ech_ossl.o: ../cryptlib.h ech_locl.h ech_ossl.c | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ecdh.h b/src/lib/libssl/src/crypto/ecdh/ecdh.h new file mode 100644 index 0000000000..b4b58ee65b --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ecdh.h | |||
| @@ -0,0 +1,123 @@ | |||
| 1 | /* crypto/ecdh/ecdh.h */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The ECDH software is originally written by Douglas Stebila of | ||
| 13 | * Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 2000-2002 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * licensing@OpenSSL.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | #ifndef HEADER_ECDH_H | ||
| 70 | #define HEADER_ECDH_H | ||
| 71 | |||
| 72 | #include <openssl/opensslconf.h> | ||
| 73 | |||
| 74 | #ifdef OPENSSL_NO_ECDH | ||
| 75 | #error ECDH is disabled. | ||
| 76 | #endif | ||
| 77 | |||
| 78 | #include <openssl/ec.h> | ||
| 79 | #include <openssl/ossl_typ.h> | ||
| 80 | #ifndef OPENSSL_NO_DEPRECATED | ||
| 81 | #include <openssl/bn.h> | ||
| 82 | #endif | ||
| 83 | |||
| 84 | #ifdef __cplusplus | ||
| 85 | extern "C" { | ||
| 86 | #endif | ||
| 87 | |||
| 88 | const ECDH_METHOD *ECDH_OpenSSL(void); | ||
| 89 | |||
| 90 | void ECDH_set_default_method(const ECDH_METHOD *); | ||
| 91 | const ECDH_METHOD *ECDH_get_default_method(void); | ||
| 92 | int ECDH_set_method(EC_KEY *, const ECDH_METHOD *); | ||
| 93 | |||
| 94 | int ECDH_compute_key(void *out, size_t outlen, const EC_POINT *pub_key, EC_KEY *ecdh, | ||
| 95 | void *(*KDF)(const void *in, size_t inlen, void *out, size_t *outlen)); | ||
| 96 | |||
| 97 | int ECDH_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new | ||
| 98 | *new_func, CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func); | ||
| 99 | int ECDH_set_ex_data(EC_KEY *d, int idx, void *arg); | ||
| 100 | void *ECDH_get_ex_data(EC_KEY *d, int idx); | ||
| 101 | |||
| 102 | |||
| 103 | /* BEGIN ERROR CODES */ | ||
| 104 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 105 | * made after this point may be overwritten when the script is next run. | ||
| 106 | */ | ||
| 107 | void ERR_load_ECDH_strings(void); | ||
| 108 | |||
| 109 | /* Error codes for the ECDH functions. */ | ||
| 110 | |||
| 111 | /* Function codes. */ | ||
| 112 | #define ECDH_F_ECDH_COMPUTE_KEY 100 | ||
| 113 | #define ECDH_F_ECDH_DATA_NEW_METHOD 101 | ||
| 114 | |||
| 115 | /* Reason codes. */ | ||
| 116 | #define ECDH_R_KDF_FAILED 102 | ||
| 117 | #define ECDH_R_NO_PRIVATE_VALUE 100 | ||
| 118 | #define ECDH_R_POINT_ARITHMETIC_FAILURE 101 | ||
| 119 | |||
| 120 | #ifdef __cplusplus | ||
| 121 | } | ||
| 122 | #endif | ||
| 123 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ecdhtest.c b/src/lib/libssl/src/crypto/ecdh/ecdhtest.c new file mode 100644 index 0000000000..1575006b51 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ecdhtest.c | |||
| @@ -0,0 +1,368 @@ | |||
| 1 | /* crypto/ecdh/ecdhtest.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The ECDH software is originally written by Douglas Stebila of | ||
| 13 | * Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * openssl-core@openssl.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | #include <stdio.h> | ||
| 71 | #include <stdlib.h> | ||
| 72 | #include <string.h> | ||
| 73 | |||
| 74 | #include "../e_os.h" | ||
| 75 | |||
| 76 | #include <openssl/opensslconf.h> /* for OPENSSL_NO_ECDH */ | ||
| 77 | #include <openssl/crypto.h> | ||
| 78 | #include <openssl/bio.h> | ||
| 79 | #include <openssl/bn.h> | ||
| 80 | #include <openssl/objects.h> | ||
| 81 | #include <openssl/rand.h> | ||
| 82 | #include <openssl/sha.h> | ||
| 83 | #include <openssl/err.h> | ||
| 84 | |||
| 85 | #ifdef OPENSSL_NO_ECDH | ||
| 86 | int main(int argc, char *argv[]) | ||
| 87 | { | ||
| 88 | printf("No ECDH support\n"); | ||
| 89 | return(0); | ||
| 90 | } | ||
| 91 | #else | ||
| 92 | #include <openssl/ec.h> | ||
| 93 | #include <openssl/ecdh.h> | ||
| 94 | |||
| 95 | #ifdef OPENSSL_SYS_WIN16 | ||
| 96 | #define MS_CALLBACK _far _loadds | ||
| 97 | #else | ||
| 98 | #define MS_CALLBACK | ||
| 99 | #endif | ||
| 100 | |||
| 101 | #if 0 | ||
| 102 | static void MS_CALLBACK cb(int p, int n, void *arg); | ||
| 103 | #endif | ||
| 104 | |||
| 105 | static const char rnd_seed[] = "string to make the random number generator think it has entropy"; | ||
| 106 | |||
| 107 | |||
| 108 | static const int KDF1_SHA1_len = 20; | ||
| 109 | static void *KDF1_SHA1(const void *in, size_t inlen, void *out, size_t *outlen) | ||
| 110 | { | ||
| 111 | #ifndef OPENSSL_NO_SHA | ||
| 112 | if (*outlen < SHA_DIGEST_LENGTH) | ||
| 113 | return NULL; | ||
| 114 | else | ||
| 115 | *outlen = SHA_DIGEST_LENGTH; | ||
| 116 | return SHA1(in, inlen, out); | ||
| 117 | #else | ||
| 118 | return NULL; | ||
| 119 | #endif | ||
| 120 | } | ||
| 121 | |||
| 122 | |||
| 123 | static int test_ecdh_curve(int nid, const char *text, BN_CTX *ctx, BIO *out) | ||
| 124 | { | ||
| 125 | EC_KEY *a=NULL; | ||
| 126 | EC_KEY *b=NULL; | ||
| 127 | BIGNUM *x_a=NULL, *y_a=NULL, | ||
| 128 | *x_b=NULL, *y_b=NULL; | ||
| 129 | char buf[12]; | ||
| 130 | unsigned char *abuf=NULL,*bbuf=NULL; | ||
| 131 | int i,alen,blen,aout,bout,ret=0; | ||
| 132 | const EC_GROUP *group; | ||
| 133 | |||
| 134 | a = EC_KEY_new_by_curve_name(nid); | ||
| 135 | b = EC_KEY_new_by_curve_name(nid); | ||
| 136 | if (a == NULL || b == NULL) | ||
| 137 | goto err; | ||
| 138 | |||
| 139 | group = EC_KEY_get0_group(a); | ||
| 140 | |||
| 141 | if ((x_a=BN_new()) == NULL) goto err; | ||
| 142 | if ((y_a=BN_new()) == NULL) goto err; | ||
| 143 | if ((x_b=BN_new()) == NULL) goto err; | ||
| 144 | if ((y_b=BN_new()) == NULL) goto err; | ||
| 145 | |||
| 146 | BIO_puts(out,"Testing key generation with "); | ||
| 147 | BIO_puts(out,text); | ||
| 148 | #ifdef NOISY | ||
| 149 | BIO_puts(out,"\n"); | ||
| 150 | #else | ||
| 151 | (void)BIO_flush(out); | ||
| 152 | #endif | ||
| 153 | |||
| 154 | if (!EC_KEY_generate_key(a)) goto err; | ||
| 155 | |||
| 156 | if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) | ||
| 157 | { | ||
| 158 | if (!EC_POINT_get_affine_coordinates_GFp(group, | ||
| 159 | EC_KEY_get0_public_key(a), x_a, y_a, ctx)) goto err; | ||
| 160 | } | ||
| 161 | else | ||
| 162 | { | ||
| 163 | if (!EC_POINT_get_affine_coordinates_GF2m(group, | ||
| 164 | EC_KEY_get0_public_key(a), x_a, y_a, ctx)) goto err; | ||
| 165 | } | ||
| 166 | #ifdef NOISY | ||
| 167 | BIO_puts(out," pri 1="); | ||
| 168 | BN_print(out,a->priv_key); | ||
| 169 | BIO_puts(out,"\n pub 1="); | ||
| 170 | BN_print(out,x_a); | ||
| 171 | BIO_puts(out,","); | ||
| 172 | BN_print(out,y_a); | ||
| 173 | BIO_puts(out,"\n"); | ||
| 174 | #else | ||
| 175 | BIO_printf(out," ."); | ||
| 176 | (void)BIO_flush(out); | ||
| 177 | #endif | ||
| 178 | |||
| 179 | if (!EC_KEY_generate_key(b)) goto err; | ||
| 180 | |||
| 181 | if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) | ||
| 182 | { | ||
| 183 | if (!EC_POINT_get_affine_coordinates_GFp(group, | ||
| 184 | EC_KEY_get0_public_key(b), x_b, y_b, ctx)) goto err; | ||
| 185 | } | ||
| 186 | else | ||
| 187 | { | ||
| 188 | if (!EC_POINT_get_affine_coordinates_GF2m(group, | ||
| 189 | EC_KEY_get0_public_key(b), x_b, y_b, ctx)) goto err; | ||
| 190 | } | ||
| 191 | |||
| 192 | #ifdef NOISY | ||
| 193 | BIO_puts(out," pri 2="); | ||
| 194 | BN_print(out,b->priv_key); | ||
| 195 | BIO_puts(out,"\n pub 2="); | ||
| 196 | BN_print(out,x_b); | ||
| 197 | BIO_puts(out,","); | ||
| 198 | BN_print(out,y_b); | ||
| 199 | BIO_puts(out,"\n"); | ||
| 200 | #else | ||
| 201 | BIO_printf(out,"."); | ||
| 202 | (void)BIO_flush(out); | ||
| 203 | #endif | ||
| 204 | |||
| 205 | alen=KDF1_SHA1_len; | ||
| 206 | abuf=(unsigned char *)OPENSSL_malloc(alen); | ||
| 207 | aout=ECDH_compute_key(abuf,alen,EC_KEY_get0_public_key(b),a,KDF1_SHA1); | ||
| 208 | |||
| 209 | #ifdef NOISY | ||
| 210 | BIO_puts(out," key1 ="); | ||
| 211 | for (i=0; i<aout; i++) | ||
| 212 | { | ||
| 213 | sprintf(buf,"%02X",abuf[i]); | ||
| 214 | BIO_puts(out,buf); | ||
| 215 | } | ||
| 216 | BIO_puts(out,"\n"); | ||
| 217 | #else | ||
| 218 | BIO_printf(out,"."); | ||
| 219 | (void)BIO_flush(out); | ||
| 220 | #endif | ||
| 221 | |||
| 222 | blen=KDF1_SHA1_len; | ||
| 223 | bbuf=(unsigned char *)OPENSSL_malloc(blen); | ||
| 224 | bout=ECDH_compute_key(bbuf,blen,EC_KEY_get0_public_key(a),b,KDF1_SHA1); | ||
| 225 | |||
| 226 | #ifdef NOISY | ||
| 227 | BIO_puts(out," key2 ="); | ||
| 228 | for (i=0; i<bout; i++) | ||
| 229 | { | ||
| 230 | sprintf(buf,"%02X",bbuf[i]); | ||
| 231 | BIO_puts(out,buf); | ||
| 232 | } | ||
| 233 | BIO_puts(out,"\n"); | ||
| 234 | #else | ||
| 235 | BIO_printf(out,"."); | ||
| 236 | (void)BIO_flush(out); | ||
| 237 | #endif | ||
| 238 | |||
| 239 | if ((aout < 4) || (bout != aout) || (memcmp(abuf,bbuf,aout) != 0)) | ||
| 240 | { | ||
| 241 | #ifndef NOISY | ||
| 242 | BIO_printf(out, " failed\n\n"); | ||
| 243 | BIO_printf(out, "key a:\n"); | ||
| 244 | BIO_printf(out, "private key: "); | ||
| 245 | BN_print(out, EC_KEY_get0_private_key(a)); | ||
| 246 | BIO_printf(out, "\n"); | ||
| 247 | BIO_printf(out, "public key (x,y): "); | ||
| 248 | BN_print(out, x_a); | ||
| 249 | BIO_printf(out, ","); | ||
| 250 | BN_print(out, y_a); | ||
| 251 | BIO_printf(out, "\nkey b:\n"); | ||
| 252 | BIO_printf(out, "private key: "); | ||
| 253 | BN_print(out, EC_KEY_get0_private_key(b)); | ||
| 254 | BIO_printf(out, "\n"); | ||
| 255 | BIO_printf(out, "public key (x,y): "); | ||
| 256 | BN_print(out, x_b); | ||
| 257 | BIO_printf(out, ","); | ||
| 258 | BN_print(out, y_b); | ||
| 259 | BIO_printf(out, "\n"); | ||
| 260 | BIO_printf(out, "generated key a: "); | ||
| 261 | for (i=0; i<bout; i++) | ||
| 262 | { | ||
| 263 | sprintf(buf, "%02X", bbuf[i]); | ||
| 264 | BIO_puts(out, buf); | ||
| 265 | } | ||
| 266 | BIO_printf(out, "\n"); | ||
| 267 | BIO_printf(out, "generated key b: "); | ||
| 268 | for (i=0; i<aout; i++) | ||
| 269 | { | ||
| 270 | sprintf(buf, "%02X", abuf[i]); | ||
| 271 | BIO_puts(out,buf); | ||
| 272 | } | ||
| 273 | BIO_printf(out, "\n"); | ||
| 274 | #endif | ||
| 275 | fprintf(stderr,"Error in ECDH routines\n"); | ||
| 276 | ret=0; | ||
| 277 | } | ||
| 278 | else | ||
| 279 | { | ||
| 280 | #ifndef NOISY | ||
| 281 | BIO_printf(out, " ok\n"); | ||
| 282 | #endif | ||
| 283 | ret=1; | ||
| 284 | } | ||
| 285 | err: | ||
| 286 | ERR_print_errors_fp(stderr); | ||
| 287 | |||
| 288 | if (abuf != NULL) OPENSSL_free(abuf); | ||
| 289 | if (bbuf != NULL) OPENSSL_free(bbuf); | ||
| 290 | if (x_a) BN_free(x_a); | ||
| 291 | if (y_a) BN_free(y_a); | ||
| 292 | if (x_b) BN_free(x_b); | ||
| 293 | if (y_b) BN_free(y_b); | ||
| 294 | if (b) EC_KEY_free(b); | ||
| 295 | if (a) EC_KEY_free(a); | ||
| 296 | return(ret); | ||
| 297 | } | ||
| 298 | |||
| 299 | int main(int argc, char *argv[]) | ||
| 300 | { | ||
| 301 | BN_CTX *ctx=NULL; | ||
| 302 | int ret=1; | ||
| 303 | BIO *out; | ||
| 304 | |||
| 305 | CRYPTO_malloc_debug_init(); | ||
| 306 | CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL); | ||
| 307 | CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON); | ||
| 308 | |||
| 309 | #ifdef OPENSSL_SYS_WIN32 | ||
| 310 | CRYPTO_malloc_init(); | ||
| 311 | #endif | ||
| 312 | |||
| 313 | RAND_seed(rnd_seed, sizeof rnd_seed); | ||
| 314 | |||
| 315 | out=BIO_new(BIO_s_file()); | ||
| 316 | if (out == NULL) EXIT(1); | ||
| 317 | BIO_set_fp(out,stdout,BIO_NOCLOSE); | ||
| 318 | |||
| 319 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 320 | |||
| 321 | /* NIST PRIME CURVES TESTS */ | ||
| 322 | if (!test_ecdh_curve(NID_X9_62_prime192v1, "NIST Prime-Curve P-192", ctx, out)) goto err; | ||
| 323 | if (!test_ecdh_curve(NID_secp224r1, "NIST Prime-Curve P-224", ctx, out)) goto err; | ||
| 324 | if (!test_ecdh_curve(NID_X9_62_prime256v1, "NIST Prime-Curve P-256", ctx, out)) goto err; | ||
| 325 | if (!test_ecdh_curve(NID_secp384r1, "NIST Prime-Curve P-384", ctx, out)) goto err; | ||
| 326 | if (!test_ecdh_curve(NID_secp521r1, "NIST Prime-Curve P-521", ctx, out)) goto err; | ||
| 327 | /* NIST BINARY CURVES TESTS */ | ||
| 328 | if (!test_ecdh_curve(NID_sect163k1, "NIST Binary-Curve K-163", ctx, out)) goto err; | ||
| 329 | if (!test_ecdh_curve(NID_sect163r2, "NIST Binary-Curve B-163", ctx, out)) goto err; | ||
| 330 | if (!test_ecdh_curve(NID_sect233k1, "NIST Binary-Curve K-233", ctx, out)) goto err; | ||
| 331 | if (!test_ecdh_curve(NID_sect233r1, "NIST Binary-Curve B-233", ctx, out)) goto err; | ||
| 332 | if (!test_ecdh_curve(NID_sect283k1, "NIST Binary-Curve K-283", ctx, out)) goto err; | ||
| 333 | if (!test_ecdh_curve(NID_sect283r1, "NIST Binary-Curve B-283", ctx, out)) goto err; | ||
| 334 | if (!test_ecdh_curve(NID_sect409k1, "NIST Binary-Curve K-409", ctx, out)) goto err; | ||
| 335 | if (!test_ecdh_curve(NID_sect409r1, "NIST Binary-Curve B-409", ctx, out)) goto err; | ||
| 336 | if (!test_ecdh_curve(NID_sect571k1, "NIST Binary-Curve K-571", ctx, out)) goto err; | ||
| 337 | if (!test_ecdh_curve(NID_sect571r1, "NIST Binary-Curve B-571", ctx, out)) goto err; | ||
| 338 | |||
| 339 | ret = 0; | ||
| 340 | |||
| 341 | err: | ||
| 342 | ERR_print_errors_fp(stderr); | ||
| 343 | if (ctx) BN_CTX_free(ctx); | ||
| 344 | BIO_free(out); | ||
| 345 | CRYPTO_cleanup_all_ex_data(); | ||
| 346 | ERR_remove_state(0); | ||
| 347 | CRYPTO_mem_leaks_fp(stderr); | ||
| 348 | EXIT(ret); | ||
| 349 | return(ret); | ||
| 350 | } | ||
| 351 | |||
| 352 | #if 0 | ||
| 353 | static void MS_CALLBACK cb(int p, int n, void *arg) | ||
| 354 | { | ||
| 355 | char c='*'; | ||
| 356 | |||
| 357 | if (p == 0) c='.'; | ||
| 358 | if (p == 1) c='+'; | ||
| 359 | if (p == 2) c='*'; | ||
| 360 | if (p == 3) c='\n'; | ||
| 361 | BIO_write((BIO *)arg,&c,1); | ||
| 362 | (void)BIO_flush((BIO *)arg); | ||
| 363 | #ifdef LINT | ||
| 364 | p=n; | ||
| 365 | #endif | ||
| 366 | } | ||
| 367 | #endif | ||
| 368 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ech_err.c b/src/lib/libssl/src/crypto/ecdh/ech_err.c new file mode 100644 index 0000000000..4d2ede75bd --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ech_err.c | |||
| @@ -0,0 +1,98 @@ | |||
| 1 | /* crypto/ecdh/ech_err.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* NOTE: this file was auto generated by the mkerr.pl script: any changes | ||
| 57 | * made to it will be overwritten when the script next updates this file, | ||
| 58 | * only reason strings will be preserved. | ||
| 59 | */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/ecdh.h> | ||
| 64 | |||
| 65 | /* BEGIN ERROR CODES */ | ||
| 66 | #ifndef OPENSSL_NO_ERR | ||
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(ERR_LIB_ECDH,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(ERR_LIB_ECDH,0,reason) | ||
| 70 | |||
| 71 | static ERR_STRING_DATA ECDH_str_functs[]= | ||
| 72 | { | ||
| 73 | {ERR_FUNC(ECDH_F_ECDH_COMPUTE_KEY), "ECDH_compute_key"}, | ||
| 74 | {ERR_FUNC(ECDH_F_ECDH_DATA_NEW_METHOD), "ECDH_DATA_NEW_METHOD"}, | ||
| 75 | {0,NULL} | ||
| 76 | }; | ||
| 77 | |||
| 78 | static ERR_STRING_DATA ECDH_str_reasons[]= | ||
| 79 | { | ||
| 80 | {ERR_REASON(ECDH_R_KDF_FAILED) ,"KDF failed"}, | ||
| 81 | {ERR_REASON(ECDH_R_NO_PRIVATE_VALUE) ,"no private value"}, | ||
| 82 | {ERR_REASON(ECDH_R_POINT_ARITHMETIC_FAILURE),"point arithmetic failure"}, | ||
| 83 | {0,NULL} | ||
| 84 | }; | ||
| 85 | |||
| 86 | #endif | ||
| 87 | |||
| 88 | void ERR_load_ECDH_strings(void) | ||
| 89 | { | ||
| 90 | #ifndef OPENSSL_NO_ERR | ||
| 91 | |||
| 92 | if (ERR_func_error_string(ECDH_str_functs[0].error) == NULL) | ||
| 93 | { | ||
| 94 | ERR_load_strings(0,ECDH_str_functs); | ||
| 95 | ERR_load_strings(0,ECDH_str_reasons); | ||
| 96 | } | ||
| 97 | #endif | ||
| 98 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ech_key.c b/src/lib/libssl/src/crypto/ecdh/ech_key.c new file mode 100644 index 0000000000..f44da9298b --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ech_key.c | |||
| @@ -0,0 +1,83 @@ | |||
| 1 | /* crypto/ecdh/ecdh_key.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The ECDH software is originally written by Douglas Stebila of | ||
| 13 | * Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * openssl-core@OpenSSL.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | #include "ech_locl.h" | ||
| 71 | #ifndef OPENSSL_NO_ENGINE | ||
| 72 | #include <openssl/engine.h> | ||
| 73 | #endif | ||
| 74 | |||
| 75 | int ECDH_compute_key(void *out, size_t outlen, const EC_POINT *pub_key, | ||
| 76 | EC_KEY *eckey, | ||
| 77 | void *(*KDF)(const void *in, size_t inlen, void *out, size_t *outlen)) | ||
| 78 | { | ||
| 79 | ECDH_DATA *ecdh = ecdh_check(eckey); | ||
| 80 | if (ecdh == NULL) | ||
| 81 | return 0; | ||
| 82 | return ecdh->meth->compute_key(out, outlen, pub_key, eckey, KDF); | ||
| 83 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ech_lib.c b/src/lib/libssl/src/crypto/ecdh/ech_lib.c new file mode 100644 index 0000000000..e89b1d4772 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ech_lib.c | |||
| @@ -0,0 +1,247 @@ | |||
| 1 | /* crypto/ecdh/ech_lib.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The ECDH software is originally written by Douglas Stebila of | ||
| 13 | * Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * openssl-core@OpenSSL.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | #include "ech_locl.h" | ||
| 71 | #include <string.h> | ||
| 72 | #ifndef OPENSSL_NO_ENGINE | ||
| 73 | #include <openssl/engine.h> | ||
| 74 | #endif | ||
| 75 | #include <openssl/err.h> | ||
| 76 | |||
| 77 | const char ECDH_version[]="ECDH" OPENSSL_VERSION_PTEXT; | ||
| 78 | |||
| 79 | static const ECDH_METHOD *default_ECDH_method = NULL; | ||
| 80 | |||
| 81 | static void *ecdh_data_new(void); | ||
| 82 | static void *ecdh_data_dup(void *); | ||
| 83 | static void ecdh_data_free(void *); | ||
| 84 | |||
| 85 | void ECDH_set_default_method(const ECDH_METHOD *meth) | ||
| 86 | { | ||
| 87 | default_ECDH_method = meth; | ||
| 88 | } | ||
| 89 | |||
| 90 | const ECDH_METHOD *ECDH_get_default_method(void) | ||
| 91 | { | ||
| 92 | if(!default_ECDH_method) | ||
| 93 | default_ECDH_method = ECDH_OpenSSL(); | ||
| 94 | return default_ECDH_method; | ||
| 95 | } | ||
| 96 | |||
| 97 | int ECDH_set_method(EC_KEY *eckey, const ECDH_METHOD *meth) | ||
| 98 | { | ||
| 99 | const ECDH_METHOD *mtmp; | ||
| 100 | ECDH_DATA *ecdh; | ||
| 101 | |||
| 102 | ecdh = ecdh_check(eckey); | ||
| 103 | |||
| 104 | if (ecdh == NULL) | ||
| 105 | return 0; | ||
| 106 | |||
| 107 | mtmp = ecdh->meth; | ||
| 108 | #if 0 | ||
| 109 | if (mtmp->finish) | ||
| 110 | mtmp->finish(eckey); | ||
| 111 | #endif | ||
| 112 | #ifndef OPENSSL_NO_ENGINE | ||
| 113 | if (ecdh->engine) | ||
| 114 | { | ||
| 115 | ENGINE_finish(ecdh->engine); | ||
| 116 | ecdh->engine = NULL; | ||
| 117 | } | ||
| 118 | #endif | ||
| 119 | ecdh->meth = meth; | ||
| 120 | #if 0 | ||
| 121 | if (meth->init) | ||
| 122 | meth->init(eckey); | ||
| 123 | #endif | ||
| 124 | return 1; | ||
| 125 | } | ||
| 126 | |||
| 127 | static ECDH_DATA *ECDH_DATA_new_method(ENGINE *engine) | ||
| 128 | { | ||
| 129 | ECDH_DATA *ret; | ||
| 130 | |||
| 131 | ret=(ECDH_DATA *)OPENSSL_malloc(sizeof(ECDH_DATA)); | ||
| 132 | if (ret == NULL) | ||
| 133 | { | ||
| 134 | ECDHerr(ECDH_F_ECDH_DATA_NEW_METHOD, ERR_R_MALLOC_FAILURE); | ||
| 135 | return(NULL); | ||
| 136 | } | ||
| 137 | |||
| 138 | ret->init = NULL; | ||
| 139 | |||
| 140 | ret->meth = ECDH_get_default_method(); | ||
| 141 | ret->engine = engine; | ||
| 142 | #ifndef OPENSSL_NO_ENGINE | ||
| 143 | if (!ret->engine) | ||
| 144 | ret->engine = ENGINE_get_default_ECDH(); | ||
| 145 | if (ret->engine) | ||
| 146 | { | ||
| 147 | ret->meth = ENGINE_get_ECDH(ret->engine); | ||
| 148 | if (!ret->meth) | ||
| 149 | { | ||
| 150 | ECDHerr(ECDH_F_ECDH_DATA_NEW_METHOD, ERR_R_ENGINE_LIB); | ||
| 151 | ENGINE_finish(ret->engine); | ||
| 152 | OPENSSL_free(ret); | ||
| 153 | return NULL; | ||
| 154 | } | ||
| 155 | } | ||
| 156 | #endif | ||
| 157 | |||
| 158 | ret->flags = ret->meth->flags; | ||
| 159 | CRYPTO_new_ex_data(CRYPTO_EX_INDEX_ECDH, ret, &ret->ex_data); | ||
| 160 | #if 0 | ||
| 161 | if ((ret->meth->init != NULL) && !ret->meth->init(ret)) | ||
| 162 | { | ||
| 163 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDH, ret, &ret->ex_data); | ||
| 164 | OPENSSL_free(ret); | ||
| 165 | ret=NULL; | ||
| 166 | } | ||
| 167 | #endif | ||
| 168 | return(ret); | ||
| 169 | } | ||
| 170 | |||
| 171 | static void *ecdh_data_new(void) | ||
| 172 | { | ||
| 173 | return (void *)ECDH_DATA_new_method(NULL); | ||
| 174 | } | ||
| 175 | |||
| 176 | static void *ecdh_data_dup(void *data) | ||
| 177 | { | ||
| 178 | ECDH_DATA *r = (ECDH_DATA *)data; | ||
| 179 | |||
| 180 | /* XXX: dummy operation */ | ||
| 181 | if (r == NULL) | ||
| 182 | return NULL; | ||
| 183 | |||
| 184 | return (void *)ecdh_data_new(); | ||
| 185 | } | ||
| 186 | |||
| 187 | void ecdh_data_free(void *data) | ||
| 188 | { | ||
| 189 | ECDH_DATA *r = (ECDH_DATA *)data; | ||
| 190 | |||
| 191 | #ifndef OPENSSL_NO_ENGINE | ||
| 192 | if (r->engine) | ||
| 193 | ENGINE_finish(r->engine); | ||
| 194 | #endif | ||
| 195 | |||
| 196 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDH, r, &r->ex_data); | ||
| 197 | |||
| 198 | OPENSSL_cleanse((void *)r, sizeof(ECDH_DATA)); | ||
| 199 | |||
| 200 | OPENSSL_free(r); | ||
| 201 | } | ||
| 202 | |||
| 203 | ECDH_DATA *ecdh_check(EC_KEY *key) | ||
| 204 | { | ||
| 205 | ECDH_DATA *ecdh_data; | ||
| 206 | |||
| 207 | void *data = EC_KEY_get_key_method_data(key, ecdh_data_dup, | ||
| 208 | ecdh_data_free, ecdh_data_free); | ||
| 209 | if (data == NULL) | ||
| 210 | { | ||
| 211 | ecdh_data = (ECDH_DATA *)ecdh_data_new(); | ||
| 212 | if (ecdh_data == NULL) | ||
| 213 | return NULL; | ||
| 214 | EC_KEY_insert_key_method_data(key, (void *)ecdh_data, | ||
| 215 | ecdh_data_dup, ecdh_data_free, ecdh_data_free); | ||
| 216 | } | ||
| 217 | else | ||
| 218 | ecdh_data = (ECDH_DATA *)data; | ||
| 219 | |||
| 220 | |||
| 221 | return ecdh_data; | ||
| 222 | } | ||
| 223 | |||
| 224 | int ECDH_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, | ||
| 225 | CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func) | ||
| 226 | { | ||
| 227 | return CRYPTO_get_ex_new_index(CRYPTO_EX_INDEX_ECDH, argl, argp, | ||
| 228 | new_func, dup_func, free_func); | ||
| 229 | } | ||
| 230 | |||
| 231 | int ECDH_set_ex_data(EC_KEY *d, int idx, void *arg) | ||
| 232 | { | ||
| 233 | ECDH_DATA *ecdh; | ||
| 234 | ecdh = ecdh_check(d); | ||
| 235 | if (ecdh == NULL) | ||
| 236 | return 0; | ||
| 237 | return(CRYPTO_set_ex_data(&ecdh->ex_data,idx,arg)); | ||
| 238 | } | ||
| 239 | |||
| 240 | void *ECDH_get_ex_data(EC_KEY *d, int idx) | ||
| 241 | { | ||
| 242 | ECDH_DATA *ecdh; | ||
| 243 | ecdh = ecdh_check(d); | ||
| 244 | if (ecdh == NULL) | ||
| 245 | return NULL; | ||
| 246 | return(CRYPTO_get_ex_data(&ecdh->ex_data,idx)); | ||
| 247 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ech_locl.h b/src/lib/libssl/src/crypto/ecdh/ech_locl.h new file mode 100644 index 0000000000..f658526a7e --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ech_locl.h | |||
| @@ -0,0 +1,94 @@ | |||
| 1 | /* crypto/ecdh/ech_locl.h */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2000-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * licensing@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #ifndef HEADER_ECH_LOCL_H | ||
| 57 | #define HEADER_ECH_LOCL_H | ||
| 58 | |||
| 59 | #include <openssl/ecdh.h> | ||
| 60 | |||
| 61 | #ifdef __cplusplus | ||
| 62 | extern "C" { | ||
| 63 | #endif | ||
| 64 | |||
| 65 | struct ecdh_method | ||
| 66 | { | ||
| 67 | const char *name; | ||
| 68 | int (*compute_key)(void *key, size_t outlen, const EC_POINT *pub_key, EC_KEY *ecdh, | ||
| 69 | void *(*KDF)(const void *in, size_t inlen, void *out, size_t *outlen)); | ||
| 70 | #if 0 | ||
| 71 | int (*init)(EC_KEY *eckey); | ||
| 72 | int (*finish)(EC_KEY *eckey); | ||
| 73 | #endif | ||
| 74 | int flags; | ||
| 75 | char *app_data; | ||
| 76 | }; | ||
| 77 | |||
| 78 | typedef struct ecdh_data_st { | ||
| 79 | /* EC_KEY_METH_DATA part */ | ||
| 80 | int (*init)(EC_KEY *); | ||
| 81 | /* method specific part */ | ||
| 82 | ENGINE *engine; | ||
| 83 | int flags; | ||
| 84 | const ECDH_METHOD *meth; | ||
| 85 | CRYPTO_EX_DATA ex_data; | ||
| 86 | } ECDH_DATA; | ||
| 87 | |||
| 88 | ECDH_DATA *ecdh_check(EC_KEY *); | ||
| 89 | |||
| 90 | #ifdef __cplusplus | ||
| 91 | } | ||
| 92 | #endif | ||
| 93 | |||
| 94 | #endif /* HEADER_ECH_LOCL_H */ | ||
diff --git a/src/lib/libssl/src/crypto/ecdh/ech_ossl.c b/src/lib/libssl/src/crypto/ecdh/ech_ossl.c new file mode 100644 index 0000000000..2a40ff12df --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdh/ech_ossl.c | |||
| @@ -0,0 +1,213 @@ | |||
| 1 | /* crypto/ecdh/ech_ossl.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The ECDH software is originally written by Douglas Stebila of | ||
| 13 | * Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * openssl-core@OpenSSL.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | |||
| 71 | #include <string.h> | ||
| 72 | #include <limits.h> | ||
| 73 | |||
| 74 | #include "cryptlib.h" | ||
| 75 | |||
| 76 | #include "ech_locl.h" | ||
| 77 | #include <openssl/err.h> | ||
| 78 | #include <openssl/sha.h> | ||
| 79 | #include <openssl/obj_mac.h> | ||
| 80 | #include <openssl/bn.h> | ||
| 81 | |||
| 82 | static int ecdh_compute_key(void *out, size_t len, const EC_POINT *pub_key, | ||
| 83 | EC_KEY *ecdh, | ||
| 84 | void *(*KDF)(const void *in, size_t inlen, void *out, size_t *outlen)); | ||
| 85 | |||
| 86 | static ECDH_METHOD openssl_ecdh_meth = { | ||
| 87 | "OpenSSL ECDH method", | ||
| 88 | ecdh_compute_key, | ||
| 89 | #if 0 | ||
| 90 | NULL, /* init */ | ||
| 91 | NULL, /* finish */ | ||
| 92 | #endif | ||
| 93 | 0, /* flags */ | ||
| 94 | NULL /* app_data */ | ||
| 95 | }; | ||
| 96 | |||
| 97 | const ECDH_METHOD *ECDH_OpenSSL(void) | ||
| 98 | { | ||
| 99 | return &openssl_ecdh_meth; | ||
| 100 | } | ||
| 101 | |||
| 102 | |||
| 103 | /* This implementation is based on the following primitives in the IEEE 1363 standard: | ||
| 104 | * - ECKAS-DH1 | ||
| 105 | * - ECSVDP-DH | ||
| 106 | * Finally an optional KDF is applied. | ||
| 107 | */ | ||
| 108 | static int ecdh_compute_key(void *out, size_t outlen, const EC_POINT *pub_key, | ||
| 109 | EC_KEY *ecdh, | ||
| 110 | void *(*KDF)(const void *in, size_t inlen, void *out, size_t *outlen)) | ||
| 111 | { | ||
| 112 | BN_CTX *ctx; | ||
| 113 | EC_POINT *tmp=NULL; | ||
| 114 | BIGNUM *x=NULL, *y=NULL; | ||
| 115 | const BIGNUM *priv_key; | ||
| 116 | const EC_GROUP* group; | ||
| 117 | int ret= -1; | ||
| 118 | size_t buflen, len; | ||
| 119 | unsigned char *buf=NULL; | ||
| 120 | |||
| 121 | if (outlen > INT_MAX) | ||
| 122 | { | ||
| 123 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ERR_R_MALLOC_FAILURE); /* sort of, anyway */ | ||
| 124 | return -1; | ||
| 125 | } | ||
| 126 | |||
| 127 | if ((ctx = BN_CTX_new()) == NULL) goto err; | ||
| 128 | BN_CTX_start(ctx); | ||
| 129 | x = BN_CTX_get(ctx); | ||
| 130 | y = BN_CTX_get(ctx); | ||
| 131 | |||
| 132 | priv_key = EC_KEY_get0_private_key(ecdh); | ||
| 133 | if (priv_key == NULL) | ||
| 134 | { | ||
| 135 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ECDH_R_NO_PRIVATE_VALUE); | ||
| 136 | goto err; | ||
| 137 | } | ||
| 138 | |||
| 139 | group = EC_KEY_get0_group(ecdh); | ||
| 140 | if ((tmp=EC_POINT_new(group)) == NULL) | ||
| 141 | { | ||
| 142 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ERR_R_MALLOC_FAILURE); | ||
| 143 | goto err; | ||
| 144 | } | ||
| 145 | |||
| 146 | if (!EC_POINT_mul(group, tmp, NULL, pub_key, priv_key, ctx)) | ||
| 147 | { | ||
| 148 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ECDH_R_POINT_ARITHMETIC_FAILURE); | ||
| 149 | goto err; | ||
| 150 | } | ||
| 151 | |||
| 152 | if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) | ||
| 153 | { | ||
| 154 | if (!EC_POINT_get_affine_coordinates_GFp(group, tmp, x, y, ctx)) | ||
| 155 | { | ||
| 156 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ECDH_R_POINT_ARITHMETIC_FAILURE); | ||
| 157 | goto err; | ||
| 158 | } | ||
| 159 | } | ||
| 160 | else | ||
| 161 | { | ||
| 162 | if (!EC_POINT_get_affine_coordinates_GF2m(group, tmp, x, y, ctx)) | ||
| 163 | { | ||
| 164 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ECDH_R_POINT_ARITHMETIC_FAILURE); | ||
| 165 | goto err; | ||
| 166 | } | ||
| 167 | } | ||
| 168 | |||
| 169 | buflen = (EC_GROUP_get_degree(group) + 7)/8; | ||
| 170 | len = BN_num_bytes(x); | ||
| 171 | if (len > buflen) | ||
| 172 | { | ||
| 173 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ERR_R_INTERNAL_ERROR); | ||
| 174 | goto err; | ||
| 175 | } | ||
| 176 | if ((buf = OPENSSL_malloc(buflen)) == NULL) | ||
| 177 | { | ||
| 178 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ERR_R_MALLOC_FAILURE); | ||
| 179 | goto err; | ||
| 180 | } | ||
| 181 | |||
| 182 | memset(buf, 0, buflen - len); | ||
| 183 | if (len != (size_t)BN_bn2bin(x, buf + buflen - len)) | ||
| 184 | { | ||
| 185 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ERR_R_BN_LIB); | ||
| 186 | goto err; | ||
| 187 | } | ||
| 188 | |||
| 189 | if (KDF != 0) | ||
| 190 | { | ||
| 191 | if (KDF(buf, buflen, out, &outlen) == NULL) | ||
| 192 | { | ||
| 193 | ECDHerr(ECDH_F_ECDH_COMPUTE_KEY,ECDH_R_KDF_FAILED); | ||
| 194 | goto err; | ||
| 195 | } | ||
| 196 | ret = outlen; | ||
| 197 | } | ||
| 198 | else | ||
| 199 | { | ||
| 200 | /* no KDF, just copy as much as we can */ | ||
| 201 | if (outlen > buflen) | ||
| 202 | outlen = buflen; | ||
| 203 | memcpy(out, buf, outlen); | ||
| 204 | ret = outlen; | ||
| 205 | } | ||
| 206 | |||
| 207 | err: | ||
| 208 | if (tmp) EC_POINT_free(tmp); | ||
| 209 | if (ctx) BN_CTX_end(ctx); | ||
| 210 | if (ctx) BN_CTX_free(ctx); | ||
| 211 | if (buf) OPENSSL_free(buf); | ||
| 212 | return(ret); | ||
| 213 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/Makefile b/src/lib/libssl/src/crypto/ecdsa/Makefile new file mode 100644 index 0000000000..16a93cd3ae --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/Makefile | |||
| @@ -0,0 +1,125 @@ | |||
| 1 | # | ||
| 2 | # crypto/ecdsa/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= ecdsa | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= -I.. -I$(TOP) -I../../include | ||
| 9 | CFLAG=-g -Wall | ||
| 10 | MAKEFILE= Makefile | ||
| 11 | AR= ar r | ||
| 12 | |||
| 13 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 14 | |||
| 15 | GENERAL=Makefile | ||
| 16 | TEST=ecdsatest.c | ||
| 17 | APPS= | ||
| 18 | |||
| 19 | LIB=$(TOP)/libcrypto.a | ||
| 20 | LIBSRC= ecs_lib.c ecs_asn1.c ecs_ossl.c ecs_sign.c ecs_vrf.c ecs_err.c | ||
| 21 | |||
| 22 | LIBOBJ= ecs_lib.o ecs_asn1.o ecs_ossl.o ecs_sign.o ecs_vrf.o ecs_err.o | ||
| 23 | |||
| 24 | SRC= $(LIBSRC) | ||
| 25 | |||
| 26 | EXHEADER= ecdsa.h | ||
| 27 | HEADER= ecs_locl.h $(EXHEADER) | ||
| 28 | |||
| 29 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 30 | |||
| 31 | top: | ||
| 32 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 33 | |||
| 34 | all: lib | ||
| 35 | |||
| 36 | lib: $(LIBOBJ) | ||
| 37 | $(AR) $(LIB) $(LIBOBJ) | ||
| 38 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 39 | @touch lib | ||
| 40 | |||
| 41 | files: | ||
| 42 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 43 | |||
| 44 | links: | ||
| 45 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 46 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 48 | |||
| 49 | install: | ||
| 50 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 51 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 52 | do \ | ||
| 53 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 54 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 55 | done; | ||
| 56 | |||
| 57 | tags: | ||
| 58 | ctags $(SRC) | ||
| 59 | |||
| 60 | tests: | ||
| 61 | |||
| 62 | lint: | ||
| 63 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 64 | |||
| 65 | depend: | ||
| 66 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 67 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 68 | |||
| 69 | dclean: | ||
| 70 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 71 | mv -f Makefile.new $(MAKEFILE) | ||
| 72 | |||
| 73 | clean: | ||
| 74 | rm -f *.o */*.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 75 | |||
| 76 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 77 | |||
| 78 | ecs_asn1.o: ../../include/openssl/asn1.h ../../include/openssl/asn1t.h | ||
| 79 | ecs_asn1.o: ../../include/openssl/bio.h ../../include/openssl/crypto.h | ||
| 80 | ecs_asn1.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 81 | ecs_asn1.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h | ||
| 82 | ecs_asn1.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 83 | ecs_asn1.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 84 | ecs_asn1.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 85 | ecs_asn1.o: ../../include/openssl/symhacks.h ecs_asn1.c ecs_locl.h | ||
| 86 | ecs_err.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 87 | ecs_err.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 88 | ecs_err.o: ../../include/openssl/ec.h ../../include/openssl/ecdsa.h | ||
| 89 | ecs_err.o: ../../include/openssl/err.h ../../include/openssl/lhash.h | ||
| 90 | ecs_err.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h | ||
| 91 | ecs_err.o: ../../include/openssl/ossl_typ.h ../../include/openssl/safestack.h | ||
| 92 | ecs_err.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 93 | ecs_err.o: ecs_err.c | ||
| 94 | ecs_lib.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 95 | ecs_lib.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 96 | ecs_lib.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 97 | ecs_lib.o: ../../include/openssl/ecdsa.h ../../include/openssl/engine.h | ||
| 98 | ecs_lib.o: ../../include/openssl/err.h ../../include/openssl/lhash.h | ||
| 99 | ecs_lib.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h | ||
| 100 | ecs_lib.o: ../../include/openssl/ossl_typ.h ../../include/openssl/safestack.h | ||
| 101 | ecs_lib.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 102 | ecs_lib.o: ecs_lib.c ecs_locl.h | ||
| 103 | ecs_ossl.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 104 | ecs_ossl.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 105 | ecs_ossl.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h | ||
| 106 | ecs_ossl.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h | ||
| 107 | ecs_ossl.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h | ||
| 108 | ecs_ossl.o: ../../include/openssl/opensslconf.h | ||
| 109 | ecs_ossl.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 110 | ecs_ossl.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 111 | ecs_ossl.o: ../../include/openssl/symhacks.h ecs_locl.h ecs_ossl.c | ||
| 112 | ecs_sign.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 113 | ecs_sign.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 114 | ecs_sign.o: ../../include/openssl/ec.h ../../include/openssl/ecdsa.h | ||
| 115 | ecs_sign.o: ../../include/openssl/engine.h ../../include/openssl/opensslconf.h | ||
| 116 | ecs_sign.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 117 | ecs_sign.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 118 | ecs_sign.o: ../../include/openssl/symhacks.h ecs_locl.h ecs_sign.c | ||
| 119 | ecs_vrf.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 120 | ecs_vrf.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 121 | ecs_vrf.o: ../../include/openssl/ec.h ../../include/openssl/ecdsa.h | ||
| 122 | ecs_vrf.o: ../../include/openssl/engine.h ../../include/openssl/opensslconf.h | ||
| 123 | ecs_vrf.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 124 | ecs_vrf.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 125 | ecs_vrf.o: ../../include/openssl/symhacks.h ecs_locl.h ecs_vrf.c | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecdsa.h b/src/lib/libssl/src/crypto/ecdsa/ecdsa.h new file mode 100644 index 0000000000..f20c8ee738 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecdsa.h | |||
| @@ -0,0 +1,271 @@ | |||
| 1 | /* crypto/ecdsa/ecdsa.h */ | ||
| 2 | /** | ||
| 3 | * \file crypto/ecdsa/ecdsa.h Include file for the OpenSSL ECDSA functions | ||
| 4 | * \author Written by Nils Larsch for the OpenSSL project | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 2000-2003 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * licensing@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | #ifndef HEADER_ECDSA_H | ||
| 60 | #define HEADER_ECDSA_H | ||
| 61 | |||
| 62 | #include <openssl/opensslconf.h> | ||
| 63 | |||
| 64 | #ifdef OPENSSL_NO_ECDSA | ||
| 65 | #error ECDSA is disabled. | ||
| 66 | #endif | ||
| 67 | |||
| 68 | #include <openssl/ec.h> | ||
| 69 | #include <openssl/ossl_typ.h> | ||
| 70 | #ifndef OPENSSL_NO_DEPRECATED | ||
| 71 | #include <openssl/bn.h> | ||
| 72 | #endif | ||
| 73 | |||
| 74 | #ifdef __cplusplus | ||
| 75 | extern "C" { | ||
| 76 | #endif | ||
| 77 | |||
| 78 | typedef struct ECDSA_SIG_st | ||
| 79 | { | ||
| 80 | BIGNUM *r; | ||
| 81 | BIGNUM *s; | ||
| 82 | } ECDSA_SIG; | ||
| 83 | |||
| 84 | /** ECDSA_SIG *ECDSA_SIG_new(void) | ||
| 85 | * allocates and initialize a ECDSA_SIG structure | ||
| 86 | * \return pointer to a ECDSA_SIG structure or NULL if an error occurred | ||
| 87 | */ | ||
| 88 | ECDSA_SIG *ECDSA_SIG_new(void); | ||
| 89 | |||
| 90 | /** ECDSA_SIG_free | ||
| 91 | * frees a ECDSA_SIG structure | ||
| 92 | * \param a pointer to the ECDSA_SIG structure | ||
| 93 | */ | ||
| 94 | void ECDSA_SIG_free(ECDSA_SIG *a); | ||
| 95 | |||
| 96 | /** i2d_ECDSA_SIG | ||
| 97 | * DER encode content of ECDSA_SIG object (note: this function modifies *pp | ||
| 98 | * (*pp += length of the DER encoded signature)). | ||
| 99 | * \param a pointer to the ECDSA_SIG object | ||
| 100 | * \param pp pointer to a unsigned char pointer for the output or NULL | ||
| 101 | * \return the length of the DER encoded ECDSA_SIG object or 0 | ||
| 102 | */ | ||
| 103 | int i2d_ECDSA_SIG(const ECDSA_SIG *a, unsigned char **pp); | ||
| 104 | |||
| 105 | /** d2i_ECDSA_SIG | ||
| 106 | * decodes a DER encoded ECDSA signature (note: this function changes *pp | ||
| 107 | * (*pp += len)). | ||
| 108 | * \param v pointer to ECDSA_SIG pointer (may be NULL) | ||
| 109 | * \param pp buffer with the DER encoded signature | ||
| 110 | * \param len bufferlength | ||
| 111 | * \return pointer to the decoded ECDSA_SIG structure (or NULL) | ||
| 112 | */ | ||
| 113 | ECDSA_SIG *d2i_ECDSA_SIG(ECDSA_SIG **v, const unsigned char **pp, long len); | ||
| 114 | |||
| 115 | /** ECDSA_do_sign | ||
| 116 | * computes the ECDSA signature of the given hash value using | ||
| 117 | * the supplied private key and returns the created signature. | ||
| 118 | * \param dgst pointer to the hash value | ||
| 119 | * \param dgst_len length of the hash value | ||
| 120 | * \param eckey pointer to the EC_KEY object containing a private EC key | ||
| 121 | * \return pointer to a ECDSA_SIG structure or NULL | ||
| 122 | */ | ||
| 123 | ECDSA_SIG *ECDSA_do_sign(const unsigned char *dgst,int dgst_len,EC_KEY *eckey); | ||
| 124 | |||
| 125 | /** ECDSA_do_sign_ex | ||
| 126 | * computes ECDSA signature of a given hash value using the supplied | ||
| 127 | * private key (note: sig must point to ECDSA_size(eckey) bytes of memory). | ||
| 128 | * \param dgst pointer to the hash value to sign | ||
| 129 | * \param dgstlen length of the hash value | ||
| 130 | * \param kinv optional pointer to a pre-computed inverse k | ||
| 131 | * \param rp optional pointer to the pre-computed rp value (see | ||
| 132 | * ECDSA_sign_setup | ||
| 133 | * \param eckey pointer to the EC_KEY object containing a private EC key | ||
| 134 | * \return pointer to a ECDSA_SIG structure or NULL | ||
| 135 | */ | ||
| 136 | ECDSA_SIG *ECDSA_do_sign_ex(const unsigned char *dgst, int dgstlen, | ||
| 137 | const BIGNUM *kinv, const BIGNUM *rp, EC_KEY *eckey); | ||
| 138 | |||
| 139 | /** ECDSA_do_verify | ||
| 140 | * verifies that the supplied signature is a valid ECDSA | ||
| 141 | * signature of the supplied hash value using the supplied public key. | ||
| 142 | * \param dgst pointer to the hash value | ||
| 143 | * \param dgst_len length of the hash value | ||
| 144 | * \param sig pointer to the ECDSA_SIG structure | ||
| 145 | * \param eckey pointer to the EC_KEY object containing a public EC key | ||
| 146 | * \return 1 if the signature is valid, 0 if the signature is invalid and -1 on error | ||
| 147 | */ | ||
| 148 | int ECDSA_do_verify(const unsigned char *dgst, int dgst_len, | ||
| 149 | const ECDSA_SIG *sig, EC_KEY* eckey); | ||
| 150 | |||
| 151 | const ECDSA_METHOD *ECDSA_OpenSSL(void); | ||
| 152 | |||
| 153 | /** ECDSA_set_default_method | ||
| 154 | * sets the default ECDSA method | ||
| 155 | * \param meth the new default ECDSA_METHOD | ||
| 156 | */ | ||
| 157 | void ECDSA_set_default_method(const ECDSA_METHOD *meth); | ||
| 158 | |||
| 159 | /** ECDSA_get_default_method | ||
| 160 | * returns the default ECDSA method | ||
| 161 | * \return pointer to ECDSA_METHOD structure containing the default method | ||
| 162 | */ | ||
| 163 | const ECDSA_METHOD *ECDSA_get_default_method(void); | ||
| 164 | |||
| 165 | /** ECDSA_set_method | ||
| 166 | * sets method to be used for the ECDSA operations | ||
| 167 | * \param eckey pointer to the EC_KEY object | ||
| 168 | * \param meth pointer to the new method | ||
| 169 | * \return 1 on success and 0 otherwise | ||
| 170 | */ | ||
| 171 | int ECDSA_set_method(EC_KEY *eckey, const ECDSA_METHOD *meth); | ||
| 172 | |||
| 173 | /** ECDSA_size | ||
| 174 | * returns the maximum length of the DER encoded signature | ||
| 175 | * \param eckey pointer to a EC_KEY object | ||
| 176 | * \return numbers of bytes required for the DER encoded signature | ||
| 177 | */ | ||
| 178 | int ECDSA_size(const EC_KEY *eckey); | ||
| 179 | |||
| 180 | /** ECDSA_sign_setup | ||
| 181 | * precompute parts of the signing operation. | ||
| 182 | * \param eckey pointer to the EC_KEY object containing a private EC key | ||
| 183 | * \param ctx pointer to a BN_CTX object (may be NULL) | ||
| 184 | * \param kinv pointer to a BIGNUM pointer for the inverse of k | ||
| 185 | * \param rp pointer to a BIGNUM pointer for x coordinate of k * generator | ||
| 186 | * \return 1 on success and 0 otherwise | ||
| 187 | */ | ||
| 188 | int ECDSA_sign_setup(EC_KEY *eckey, BN_CTX *ctx, BIGNUM **kinv, | ||
| 189 | BIGNUM **rp); | ||
| 190 | |||
| 191 | /** ECDSA_sign | ||
| 192 | * computes ECDSA signature of a given hash value using the supplied | ||
| 193 | * private key (note: sig must point to ECDSA_size(eckey) bytes of memory). | ||
| 194 | * \param type this parameter is ignored | ||
| 195 | * \param dgst pointer to the hash value to sign | ||
| 196 | * \param dgstlen length of the hash value | ||
| 197 | * \param sig buffer to hold the DER encoded signature | ||
| 198 | * \param siglen pointer to the length of the returned signature | ||
| 199 | * \param eckey pointer to the EC_KEY object containing a private EC key | ||
| 200 | * \return 1 on success and 0 otherwise | ||
| 201 | */ | ||
| 202 | int ECDSA_sign(int type, const unsigned char *dgst, int dgstlen, | ||
| 203 | unsigned char *sig, unsigned int *siglen, EC_KEY *eckey); | ||
| 204 | |||
| 205 | |||
| 206 | /** ECDSA_sign_ex | ||
| 207 | * computes ECDSA signature of a given hash value using the supplied | ||
| 208 | * private key (note: sig must point to ECDSA_size(eckey) bytes of memory). | ||
| 209 | * \param type this parameter is ignored | ||
| 210 | * \param dgst pointer to the hash value to sign | ||
| 211 | * \param dgstlen length of the hash value | ||
| 212 | * \param sig buffer to hold the DER encoded signature | ||
| 213 | * \param siglen pointer to the length of the returned signature | ||
| 214 | * \param kinv optional pointer to a pre-computed inverse k | ||
| 215 | * \param rp optional pointer to the pre-computed rp value (see | ||
| 216 | * ECDSA_sign_setup | ||
| 217 | * \param eckey pointer to the EC_KEY object containing a private EC key | ||
| 218 | * \return 1 on success and 0 otherwise | ||
| 219 | */ | ||
| 220 | int ECDSA_sign_ex(int type, const unsigned char *dgst, int dgstlen, | ||
| 221 | unsigned char *sig, unsigned int *siglen, const BIGNUM *kinv, | ||
| 222 | const BIGNUM *rp, EC_KEY *eckey); | ||
| 223 | |||
| 224 | /** ECDSA_verify | ||
| 225 | * verifies that the given signature is valid ECDSA signature | ||
| 226 | * of the supplied hash value using the specified public key. | ||
| 227 | * \param type this parameter is ignored | ||
| 228 | * \param dgst pointer to the hash value | ||
| 229 | * \param dgstlen length of the hash value | ||
| 230 | * \param sig pointer to the DER encoded signature | ||
| 231 | * \param siglen length of the DER encoded signature | ||
| 232 | * \param eckey pointer to the EC_KEY object containing a public EC key | ||
| 233 | * \return 1 if the signature is valid, 0 if the signature is invalid and -1 on error | ||
| 234 | */ | ||
| 235 | int ECDSA_verify(int type, const unsigned char *dgst, int dgstlen, | ||
| 236 | const unsigned char *sig, int siglen, EC_KEY *eckey); | ||
| 237 | |||
| 238 | /* the standard ex_data functions */ | ||
| 239 | int ECDSA_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new | ||
| 240 | *new_func, CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func); | ||
| 241 | int ECDSA_set_ex_data(EC_KEY *d, int idx, void *arg); | ||
| 242 | void *ECDSA_get_ex_data(EC_KEY *d, int idx); | ||
| 243 | |||
| 244 | |||
| 245 | /* BEGIN ERROR CODES */ | ||
| 246 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 247 | * made after this point may be overwritten when the script is next run. | ||
| 248 | */ | ||
| 249 | void ERR_load_ECDSA_strings(void); | ||
| 250 | |||
| 251 | /* Error codes for the ECDSA functions. */ | ||
| 252 | |||
| 253 | /* Function codes. */ | ||
| 254 | #define ECDSA_F_ECDSA_DATA_NEW_METHOD 100 | ||
| 255 | #define ECDSA_F_ECDSA_DO_SIGN 101 | ||
| 256 | #define ECDSA_F_ECDSA_DO_VERIFY 102 | ||
| 257 | #define ECDSA_F_ECDSA_SIGN_SETUP 103 | ||
| 258 | |||
| 259 | /* Reason codes. */ | ||
| 260 | #define ECDSA_R_BAD_SIGNATURE 100 | ||
| 261 | #define ECDSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE 101 | ||
| 262 | #define ECDSA_R_ERR_EC_LIB 102 | ||
| 263 | #define ECDSA_R_MISSING_PARAMETERS 103 | ||
| 264 | #define ECDSA_R_NEED_NEW_SETUP_VALUES 106 | ||
| 265 | #define ECDSA_R_RANDOM_NUMBER_GENERATION_FAILED 104 | ||
| 266 | #define ECDSA_R_SIGNATURE_MALLOC_FAILED 105 | ||
| 267 | |||
| 268 | #ifdef __cplusplus | ||
| 269 | } | ||
| 270 | #endif | ||
| 271 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecdsatest.c b/src/lib/libssl/src/crypto/ecdsa/ecdsatest.c new file mode 100644 index 0000000000..b07e31252b --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecdsatest.c | |||
| @@ -0,0 +1,500 @@ | |||
| 1 | /* crypto/ecdsa/ecdsatest.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2000-2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | /* ==================================================================== | ||
| 59 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 60 | * | ||
| 61 | * Portions of the attached software ("Contribution") are developed by | ||
| 62 | * SUN MICROSYSTEMS, INC., and are contributed to the OpenSSL project. | ||
| 63 | * | ||
| 64 | * The Contribution is licensed pursuant to the OpenSSL open source | ||
| 65 | * license provided above. | ||
| 66 | * | ||
| 67 | * The elliptic curve binary polynomial software is originally written by | ||
| 68 | * Sheueling Chang Shantz and Douglas Stebila of Sun Microsystems Laboratories. | ||
| 69 | * | ||
| 70 | */ | ||
| 71 | |||
| 72 | #include <stdio.h> | ||
| 73 | #include <stdlib.h> | ||
| 74 | #include <string.h> | ||
| 75 | |||
| 76 | #include <openssl/opensslconf.h> /* To see if OPENSSL_NO_ECDSA is defined */ | ||
| 77 | |||
| 78 | #ifdef OPENSSL_NO_ECDSA | ||
| 79 | int main(int argc, char * argv[]) | ||
| 80 | { | ||
| 81 | puts("Elliptic curves are disabled."); | ||
| 82 | return 0; | ||
| 83 | } | ||
| 84 | #else | ||
| 85 | |||
| 86 | #include <openssl/crypto.h> | ||
| 87 | #include <openssl/bio.h> | ||
| 88 | #include <openssl/evp.h> | ||
| 89 | #include <openssl/bn.h> | ||
| 90 | #include <openssl/ecdsa.h> | ||
| 91 | #ifndef OPENSSL_NO_ENGINE | ||
| 92 | #include <openssl/engine.h> | ||
| 93 | #endif | ||
| 94 | #include <openssl/err.h> | ||
| 95 | #include <openssl/rand.h> | ||
| 96 | |||
| 97 | static const char rnd_seed[] = "string to make the random number generator " | ||
| 98 | "think it has entropy"; | ||
| 99 | |||
| 100 | /* declaration of the test functions */ | ||
| 101 | int x9_62_tests(BIO *); | ||
| 102 | int x9_62_test_internal(BIO *out, int nid, const char *r, const char *s); | ||
| 103 | int test_builtin(BIO *); | ||
| 104 | |||
| 105 | /* functions to change the RAND_METHOD */ | ||
| 106 | int change_rand(void); | ||
| 107 | int restore_rand(void); | ||
| 108 | int fbytes(unsigned char *buf, int num); | ||
| 109 | |||
| 110 | RAND_METHOD fake_rand; | ||
| 111 | const RAND_METHOD *old_rand; | ||
| 112 | |||
| 113 | int change_rand(void) | ||
| 114 | { | ||
| 115 | /* save old rand method */ | ||
| 116 | if ((old_rand = RAND_get_rand_method()) == NULL) | ||
| 117 | return 0; | ||
| 118 | |||
| 119 | fake_rand.seed = old_rand->seed; | ||
| 120 | fake_rand.cleanup = old_rand->cleanup; | ||
| 121 | fake_rand.add = old_rand->add; | ||
| 122 | fake_rand.status = old_rand->status; | ||
| 123 | /* use own random function */ | ||
| 124 | fake_rand.bytes = fbytes; | ||
| 125 | fake_rand.pseudorand = old_rand->bytes; | ||
| 126 | /* set new RAND_METHOD */ | ||
| 127 | if (!RAND_set_rand_method(&fake_rand)) | ||
| 128 | return 0; | ||
| 129 | return 1; | ||
| 130 | } | ||
| 131 | |||
| 132 | int restore_rand(void) | ||
| 133 | { | ||
| 134 | if (!RAND_set_rand_method(old_rand)) | ||
| 135 | return 0; | ||
| 136 | else | ||
| 137 | return 1; | ||
| 138 | } | ||
| 139 | |||
| 140 | static int fbytes_counter = 0; | ||
| 141 | static const char *numbers[8] = { | ||
| 142 | "651056770906015076056810763456358567190100156695615665659", | ||
| 143 | "6140507067065001063065065565667405560006161556565665656654", | ||
| 144 | "8763001015071075675010661307616710783570106710677817767166" | ||
| 145 | "71676178726717", | ||
| 146 | "7000000175690566466555057817571571075705015757757057795755" | ||
| 147 | "55657156756655", | ||
| 148 | "1275552191113212300012030439187146164646146646466749494799", | ||
| 149 | "1542725565216523985789236956265265265235675811949404040041", | ||
| 150 | "1456427555219115346513212300075341203043918714616464614664" | ||
| 151 | "64667494947990", | ||
| 152 | "1712787255652165239672857892369562652652652356758119494040" | ||
| 153 | "40041670216363"}; | ||
| 154 | |||
| 155 | int fbytes(unsigned char *buf, int num) | ||
| 156 | { | ||
| 157 | int ret; | ||
| 158 | BIGNUM *tmp = NULL; | ||
| 159 | |||
| 160 | if (fbytes_counter >= 8) | ||
| 161 | return 0; | ||
| 162 | tmp = BN_new(); | ||
| 163 | if (!tmp) | ||
| 164 | return 0; | ||
| 165 | if (!BN_dec2bn(&tmp, numbers[fbytes_counter])) | ||
| 166 | { | ||
| 167 | BN_free(tmp); | ||
| 168 | return 0; | ||
| 169 | } | ||
| 170 | fbytes_counter ++; | ||
| 171 | ret = BN_bn2bin(tmp, buf); | ||
| 172 | if (ret == 0 || ret != num) | ||
| 173 | ret = 0; | ||
| 174 | else | ||
| 175 | ret = 1; | ||
| 176 | if (tmp) | ||
| 177 | BN_free(tmp); | ||
| 178 | return ret; | ||
| 179 | } | ||
| 180 | |||
| 181 | /* some tests from the X9.62 draft */ | ||
| 182 | int x9_62_test_internal(BIO *out, int nid, const char *r_in, const char *s_in) | ||
| 183 | { | ||
| 184 | int ret = 0; | ||
| 185 | const char message[] = "abc"; | ||
| 186 | unsigned char digest[20]; | ||
| 187 | unsigned int dgst_len = 0; | ||
| 188 | EVP_MD_CTX md_ctx; | ||
| 189 | EC_KEY *key = NULL; | ||
| 190 | ECDSA_SIG *signature = NULL; | ||
| 191 | BIGNUM *r = NULL, *s = NULL; | ||
| 192 | |||
| 193 | EVP_MD_CTX_init(&md_ctx); | ||
| 194 | /* get the message digest */ | ||
| 195 | EVP_DigestInit(&md_ctx, EVP_ecdsa()); | ||
| 196 | EVP_DigestUpdate(&md_ctx, (const void*)message, 3); | ||
| 197 | EVP_DigestFinal(&md_ctx, digest, &dgst_len); | ||
| 198 | |||
| 199 | BIO_printf(out, "testing %s: ", OBJ_nid2sn(nid)); | ||
| 200 | /* create the key */ | ||
| 201 | if ((key = EC_KEY_new_by_curve_name(nid)) == NULL) | ||
| 202 | goto x962_int_err; | ||
| 203 | if (!EC_KEY_generate_key(key)) | ||
| 204 | goto x962_int_err; | ||
| 205 | BIO_printf(out, "."); | ||
| 206 | (void)BIO_flush(out); | ||
| 207 | /* create the signature */ | ||
| 208 | signature = ECDSA_do_sign(digest, 20, key); | ||
| 209 | if (signature == NULL) | ||
| 210 | goto x962_int_err; | ||
| 211 | BIO_printf(out, "."); | ||
| 212 | (void)BIO_flush(out); | ||
| 213 | /* compare the created signature with the expected signature */ | ||
| 214 | if ((r = BN_new()) == NULL || (s = BN_new()) == NULL) | ||
| 215 | goto x962_int_err; | ||
| 216 | if (!BN_dec2bn(&r, r_in) || | ||
| 217 | !BN_dec2bn(&s, s_in)) | ||
| 218 | goto x962_int_err; | ||
| 219 | if (BN_cmp(signature->r ,r) || BN_cmp(signature->s, s)) | ||
| 220 | goto x962_int_err; | ||
| 221 | BIO_printf(out, "."); | ||
| 222 | (void)BIO_flush(out); | ||
| 223 | /* verify the signature */ | ||
| 224 | if (ECDSA_do_verify(digest, 20, signature, key) != 1) | ||
| 225 | goto x962_int_err; | ||
| 226 | BIO_printf(out, "."); | ||
| 227 | (void)BIO_flush(out); | ||
| 228 | |||
| 229 | BIO_printf(out, " ok\n"); | ||
| 230 | ret = 1; | ||
| 231 | x962_int_err: | ||
| 232 | if (!ret) | ||
| 233 | BIO_printf(out, " failed\n"); | ||
| 234 | if (key) | ||
| 235 | EC_KEY_free(key); | ||
| 236 | if (signature) | ||
| 237 | ECDSA_SIG_free(signature); | ||
| 238 | if (r) | ||
| 239 | BN_free(r); | ||
| 240 | if (s) | ||
| 241 | BN_free(s); | ||
| 242 | EVP_MD_CTX_cleanup(&md_ctx); | ||
| 243 | return ret; | ||
| 244 | } | ||
| 245 | |||
| 246 | int x9_62_tests(BIO *out) | ||
| 247 | { | ||
| 248 | int ret = 0; | ||
| 249 | |||
| 250 | BIO_printf(out, "some tests from X9.62:\n"); | ||
| 251 | |||
| 252 | /* set own rand method */ | ||
| 253 | if (!change_rand()) | ||
| 254 | goto x962_err; | ||
| 255 | |||
| 256 | if (!x9_62_test_internal(out, NID_X9_62_prime192v1, | ||
| 257 | "3342403536405981729393488334694600415596881826869351677613", | ||
| 258 | "5735822328888155254683894997897571951568553642892029982342")) | ||
| 259 | goto x962_err; | ||
| 260 | if (!x9_62_test_internal(out, NID_X9_62_prime239v1, | ||
| 261 | "3086361431751678114926225473006680188549593787585317781474" | ||
| 262 | "62058306432176", | ||
| 263 | "3238135532097973577080787768312505059318910517550078427819" | ||
| 264 | "78505179448783")) | ||
| 265 | goto x962_err; | ||
| 266 | if (!x9_62_test_internal(out, NID_X9_62_c2tnb191v1, | ||
| 267 | "87194383164871543355722284926904419997237591535066528048", | ||
| 268 | "308992691965804947361541664549085895292153777025772063598")) | ||
| 269 | goto x962_err; | ||
| 270 | if (!x9_62_test_internal(out, NID_X9_62_c2tnb239v1, | ||
| 271 | "2159633321041961198501834003903461262881815148684178964245" | ||
| 272 | "5876922391552", | ||
| 273 | "1970303740007316867383349976549972270528498040721988191026" | ||
| 274 | "49413465737174")) | ||
| 275 | goto x962_err; | ||
| 276 | |||
| 277 | ret = 1; | ||
| 278 | x962_err: | ||
| 279 | if (!restore_rand()) | ||
| 280 | ret = 0; | ||
| 281 | return ret; | ||
| 282 | } | ||
| 283 | |||
| 284 | int test_builtin(BIO *out) | ||
| 285 | { | ||
| 286 | EC_builtin_curve *curves = NULL; | ||
| 287 | size_t crv_len = 0, n = 0; | ||
| 288 | EC_KEY *eckey = NULL, *wrong_eckey = NULL; | ||
| 289 | EC_GROUP *group; | ||
| 290 | unsigned char digest[20], wrong_digest[20]; | ||
| 291 | unsigned char *signature = NULL; | ||
| 292 | unsigned int sig_len; | ||
| 293 | int nid, ret = 0; | ||
| 294 | |||
| 295 | /* fill digest values with some random data */ | ||
| 296 | if (!RAND_pseudo_bytes(digest, 20) || | ||
| 297 | !RAND_pseudo_bytes(wrong_digest, 20)) | ||
| 298 | { | ||
| 299 | BIO_printf(out, "ERROR: unable to get random data\n"); | ||
| 300 | goto builtin_err; | ||
| 301 | } | ||
| 302 | |||
| 303 | /* create and verify a ecdsa signature with every availble curve | ||
| 304 | * (with ) */ | ||
| 305 | BIO_printf(out, "\ntesting ECDSA_sign() and ECDSA_verify() " | ||
| 306 | "with some internal curves:\n"); | ||
| 307 | |||
| 308 | /* get a list of all internal curves */ | ||
| 309 | crv_len = EC_get_builtin_curves(NULL, 0); | ||
| 310 | |||
| 311 | curves = OPENSSL_malloc(sizeof(EC_builtin_curve) * crv_len); | ||
| 312 | |||
| 313 | if (curves == NULL) | ||
| 314 | { | ||
| 315 | BIO_printf(out, "malloc error\n"); | ||
| 316 | goto builtin_err; | ||
| 317 | } | ||
| 318 | |||
| 319 | if (!EC_get_builtin_curves(curves, crv_len)) | ||
| 320 | { | ||
| 321 | BIO_printf(out, "unable to get internal curves\n"); | ||
| 322 | goto builtin_err; | ||
| 323 | } | ||
| 324 | |||
| 325 | /* now create and verify a signature for every curve */ | ||
| 326 | for (n = 0; n < crv_len; n++) | ||
| 327 | { | ||
| 328 | unsigned char dirt, offset; | ||
| 329 | |||
| 330 | nid = curves[n].nid; | ||
| 331 | if (nid == NID_ipsec4) | ||
| 332 | continue; | ||
| 333 | /* create new ecdsa key (== EC_KEY) */ | ||
| 334 | if ((eckey = EC_KEY_new()) == NULL) | ||
| 335 | goto builtin_err; | ||
| 336 | group = EC_GROUP_new_by_curve_name(nid); | ||
| 337 | if (group == NULL) | ||
| 338 | goto builtin_err; | ||
| 339 | if (EC_KEY_set_group(eckey, group) == 0) | ||
| 340 | goto builtin_err; | ||
| 341 | EC_GROUP_free(group); | ||
| 342 | if (EC_GROUP_get_degree(EC_KEY_get0_group(eckey)) < 160) | ||
| 343 | /* drop the curve */ | ||
| 344 | { | ||
| 345 | EC_KEY_free(eckey); | ||
| 346 | eckey = NULL; | ||
| 347 | continue; | ||
| 348 | } | ||
| 349 | BIO_printf(out, "%s: ", OBJ_nid2sn(nid)); | ||
| 350 | /* create key */ | ||
| 351 | if (!EC_KEY_generate_key(eckey)) | ||
| 352 | { | ||
| 353 | BIO_printf(out, " failed\n"); | ||
| 354 | goto builtin_err; | ||
| 355 | } | ||
| 356 | /* create second key */ | ||
| 357 | if ((wrong_eckey = EC_KEY_new()) == NULL) | ||
| 358 | goto builtin_err; | ||
| 359 | group = EC_GROUP_new_by_curve_name(nid); | ||
| 360 | if (group == NULL) | ||
| 361 | goto builtin_err; | ||
| 362 | if (EC_KEY_set_group(wrong_eckey, group) == 0) | ||
| 363 | goto builtin_err; | ||
| 364 | EC_GROUP_free(group); | ||
| 365 | if (!EC_KEY_generate_key(wrong_eckey)) | ||
| 366 | { | ||
| 367 | BIO_printf(out, " failed\n"); | ||
| 368 | goto builtin_err; | ||
| 369 | } | ||
| 370 | |||
| 371 | BIO_printf(out, "."); | ||
| 372 | (void)BIO_flush(out); | ||
| 373 | /* check key */ | ||
| 374 | if (!EC_KEY_check_key(eckey)) | ||
| 375 | { | ||
| 376 | BIO_printf(out, " failed\n"); | ||
| 377 | goto builtin_err; | ||
| 378 | } | ||
| 379 | BIO_printf(out, "."); | ||
| 380 | (void)BIO_flush(out); | ||
| 381 | /* create signature */ | ||
| 382 | sig_len = ECDSA_size(eckey); | ||
| 383 | if ((signature = OPENSSL_malloc(sig_len)) == NULL) | ||
| 384 | goto builtin_err; | ||
| 385 | if (!ECDSA_sign(0, digest, 20, signature, &sig_len, eckey)) | ||
| 386 | { | ||
| 387 | BIO_printf(out, " failed\n"); | ||
| 388 | goto builtin_err; | ||
| 389 | } | ||
| 390 | BIO_printf(out, "."); | ||
| 391 | (void)BIO_flush(out); | ||
| 392 | /* verify signature */ | ||
| 393 | if (ECDSA_verify(0, digest, 20, signature, sig_len, eckey) != 1) | ||
| 394 | { | ||
| 395 | BIO_printf(out, " failed\n"); | ||
| 396 | goto builtin_err; | ||
| 397 | } | ||
| 398 | BIO_printf(out, "."); | ||
| 399 | (void)BIO_flush(out); | ||
| 400 | /* verify signature with the wrong key */ | ||
| 401 | if (ECDSA_verify(0, digest, 20, signature, sig_len, | ||
| 402 | wrong_eckey) == 1) | ||
| 403 | { | ||
| 404 | BIO_printf(out, " failed\n"); | ||
| 405 | goto builtin_err; | ||
| 406 | } | ||
| 407 | BIO_printf(out, "."); | ||
| 408 | (void)BIO_flush(out); | ||
| 409 | /* wrong digest */ | ||
| 410 | if (ECDSA_verify(0, wrong_digest, 20, signature, sig_len, | ||
| 411 | eckey) == 1) | ||
| 412 | { | ||
| 413 | BIO_printf(out, " failed\n"); | ||
| 414 | goto builtin_err; | ||
| 415 | } | ||
| 416 | BIO_printf(out, "."); | ||
| 417 | (void)BIO_flush(out); | ||
| 418 | /* modify a single byte of the signature */ | ||
| 419 | offset = signature[10] % sig_len; | ||
| 420 | dirt = signature[11]; | ||
| 421 | signature[offset] ^= dirt ? dirt : 1; | ||
| 422 | if (ECDSA_verify(0, digest, 20, signature, sig_len, eckey) == 1) | ||
| 423 | { | ||
| 424 | BIO_printf(out, " failed\n"); | ||
| 425 | goto builtin_err; | ||
| 426 | } | ||
| 427 | BIO_printf(out, "."); | ||
| 428 | (void)BIO_flush(out); | ||
| 429 | |||
| 430 | BIO_printf(out, " ok\n"); | ||
| 431 | /* cleanup */ | ||
| 432 | OPENSSL_free(signature); | ||
| 433 | signature = NULL; | ||
| 434 | EC_KEY_free(eckey); | ||
| 435 | eckey = NULL; | ||
| 436 | EC_KEY_free(wrong_eckey); | ||
| 437 | wrong_eckey = NULL; | ||
| 438 | } | ||
| 439 | |||
| 440 | ret = 1; | ||
| 441 | builtin_err: | ||
| 442 | if (eckey) | ||
| 443 | EC_KEY_free(eckey); | ||
| 444 | if (wrong_eckey) | ||
| 445 | EC_KEY_free(wrong_eckey); | ||
| 446 | if (signature) | ||
| 447 | OPENSSL_free(signature); | ||
| 448 | if (curves) | ||
| 449 | OPENSSL_free(curves); | ||
| 450 | |||
| 451 | return ret; | ||
| 452 | } | ||
| 453 | |||
| 454 | int main(void) | ||
| 455 | { | ||
| 456 | int ret = 1; | ||
| 457 | BIO *out; | ||
| 458 | |||
| 459 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 460 | |||
| 461 | /* enable memory leak checking unless explicitly disabled */ | ||
| 462 | if (!((getenv("OPENSSL_DEBUG_MEMORY") != NULL) && | ||
| 463 | (0 == strcmp(getenv("OPENSSL_DEBUG_MEMORY"), "off")))) | ||
| 464 | { | ||
| 465 | CRYPTO_malloc_debug_init(); | ||
| 466 | CRYPTO_set_mem_debug_options(V_CRYPTO_MDEBUG_ALL); | ||
| 467 | } | ||
| 468 | else | ||
| 469 | { | ||
| 470 | /* OPENSSL_DEBUG_MEMORY=off */ | ||
| 471 | CRYPTO_set_mem_debug_functions(0, 0, 0, 0, 0); | ||
| 472 | } | ||
| 473 | CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON); | ||
| 474 | |||
| 475 | ERR_load_crypto_strings(); | ||
| 476 | |||
| 477 | /* initialize the prng */ | ||
| 478 | RAND_seed(rnd_seed, sizeof(rnd_seed)); | ||
| 479 | |||
| 480 | /* the tests */ | ||
| 481 | if (!x9_62_tests(out)) goto err; | ||
| 482 | if (!test_builtin(out)) goto err; | ||
| 483 | |||
| 484 | ret = 0; | ||
| 485 | err: | ||
| 486 | if (ret) | ||
| 487 | BIO_printf(out, "\nECDSA test failed\n"); | ||
| 488 | else | ||
| 489 | BIO_printf(out, "\nECDSA test passed\n"); | ||
| 490 | if (ret) | ||
| 491 | ERR_print_errors(out); | ||
| 492 | CRYPTO_cleanup_all_ex_data(); | ||
| 493 | ERR_remove_state(0); | ||
| 494 | ERR_free_strings(); | ||
| 495 | CRYPTO_mem_leaks(out); | ||
| 496 | if (out != NULL) | ||
| 497 | BIO_free(out); | ||
| 498 | return ret; | ||
| 499 | } | ||
| 500 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_asn1.c b/src/lib/libssl/src/crypto/ecdsa/ecs_asn1.c new file mode 100644 index 0000000000..b295489400 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_asn1.c | |||
| @@ -0,0 +1,67 @@ | |||
| 1 | /* crypto/ecdsa/ecs_asn1.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2000-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * licensing@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #include "ecs_locl.h" | ||
| 57 | #include <openssl/err.h> | ||
| 58 | #include <openssl/asn1t.h> | ||
| 59 | |||
| 60 | ASN1_SEQUENCE(ECDSA_SIG) = { | ||
| 61 | ASN1_SIMPLE(ECDSA_SIG, r, CBIGNUM), | ||
| 62 | ASN1_SIMPLE(ECDSA_SIG, s, CBIGNUM) | ||
| 63 | } ASN1_SEQUENCE_END(ECDSA_SIG) | ||
| 64 | |||
| 65 | DECLARE_ASN1_FUNCTIONS_const(ECDSA_SIG) | ||
| 66 | DECLARE_ASN1_ENCODE_FUNCTIONS_const(ECDSA_SIG, ECDSA_SIG) | ||
| 67 | IMPLEMENT_ASN1_FUNCTIONS_const(ECDSA_SIG) | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_err.c b/src/lib/libssl/src/crypto/ecdsa/ecs_err.c new file mode 100644 index 0000000000..d2a53730ea --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_err.c | |||
| @@ -0,0 +1,104 @@ | |||
| 1 | /* crypto/ecdsa/ecs_err.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* NOTE: this file was auto generated by the mkerr.pl script: any changes | ||
| 57 | * made to it will be overwritten when the script next updates this file, | ||
| 58 | * only reason strings will be preserved. | ||
| 59 | */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/ecdsa.h> | ||
| 64 | |||
| 65 | /* BEGIN ERROR CODES */ | ||
| 66 | #ifndef OPENSSL_NO_ERR | ||
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(ERR_LIB_ECDSA,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(ERR_LIB_ECDSA,0,reason) | ||
| 70 | |||
| 71 | static ERR_STRING_DATA ECDSA_str_functs[]= | ||
| 72 | { | ||
| 73 | {ERR_FUNC(ECDSA_F_ECDSA_DATA_NEW_METHOD), "ECDSA_DATA_NEW_METHOD"}, | ||
| 74 | {ERR_FUNC(ECDSA_F_ECDSA_DO_SIGN), "ECDSA_do_sign"}, | ||
| 75 | {ERR_FUNC(ECDSA_F_ECDSA_DO_VERIFY), "ECDSA_do_verify"}, | ||
| 76 | {ERR_FUNC(ECDSA_F_ECDSA_SIGN_SETUP), "ECDSA_sign_setup"}, | ||
| 77 | {0,NULL} | ||
| 78 | }; | ||
| 79 | |||
| 80 | static ERR_STRING_DATA ECDSA_str_reasons[]= | ||
| 81 | { | ||
| 82 | {ERR_REASON(ECDSA_R_BAD_SIGNATURE) ,"bad signature"}, | ||
| 83 | {ERR_REASON(ECDSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE),"data too large for key size"}, | ||
| 84 | {ERR_REASON(ECDSA_R_ERR_EC_LIB) ,"err ec lib"}, | ||
| 85 | {ERR_REASON(ECDSA_R_MISSING_PARAMETERS) ,"missing parameters"}, | ||
| 86 | {ERR_REASON(ECDSA_R_NEED_NEW_SETUP_VALUES),"need new setup values"}, | ||
| 87 | {ERR_REASON(ECDSA_R_RANDOM_NUMBER_GENERATION_FAILED),"random number generation failed"}, | ||
| 88 | {ERR_REASON(ECDSA_R_SIGNATURE_MALLOC_FAILED),"signature malloc failed"}, | ||
| 89 | {0,NULL} | ||
| 90 | }; | ||
| 91 | |||
| 92 | #endif | ||
| 93 | |||
| 94 | void ERR_load_ECDSA_strings(void) | ||
| 95 | { | ||
| 96 | #ifndef OPENSSL_NO_ERR | ||
| 97 | |||
| 98 | if (ERR_func_error_string(ECDSA_str_functs[0].error) == NULL) | ||
| 99 | { | ||
| 100 | ERR_load_strings(0,ECDSA_str_functs); | ||
| 101 | ERR_load_strings(0,ECDSA_str_reasons); | ||
| 102 | } | ||
| 103 | #endif | ||
| 104 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_lib.c b/src/lib/libssl/src/crypto/ecdsa/ecs_lib.c new file mode 100644 index 0000000000..85e8a3a7ed --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_lib.c | |||
| @@ -0,0 +1,261 @@ | |||
| 1 | /* crypto/ecdsa/ecs_lib.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #include <string.h> | ||
| 57 | #include "ecs_locl.h" | ||
| 58 | #ifndef OPENSSL_NO_ENGINE | ||
| 59 | #include <openssl/engine.h> | ||
| 60 | #endif | ||
| 61 | #include <openssl/err.h> | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | |||
| 64 | const char ECDSA_version[]="ECDSA" OPENSSL_VERSION_PTEXT; | ||
| 65 | |||
| 66 | static const ECDSA_METHOD *default_ECDSA_method = NULL; | ||
| 67 | |||
| 68 | static void *ecdsa_data_new(void); | ||
| 69 | static void *ecdsa_data_dup(void *); | ||
| 70 | static void ecdsa_data_free(void *); | ||
| 71 | |||
| 72 | void ECDSA_set_default_method(const ECDSA_METHOD *meth) | ||
| 73 | { | ||
| 74 | default_ECDSA_method = meth; | ||
| 75 | } | ||
| 76 | |||
| 77 | const ECDSA_METHOD *ECDSA_get_default_method(void) | ||
| 78 | { | ||
| 79 | if(!default_ECDSA_method) | ||
| 80 | default_ECDSA_method = ECDSA_OpenSSL(); | ||
| 81 | return default_ECDSA_method; | ||
| 82 | } | ||
| 83 | |||
| 84 | int ECDSA_set_method(EC_KEY *eckey, const ECDSA_METHOD *meth) | ||
| 85 | { | ||
| 86 | const ECDSA_METHOD *mtmp; | ||
| 87 | ECDSA_DATA *ecdsa; | ||
| 88 | |||
| 89 | ecdsa = ecdsa_check(eckey); | ||
| 90 | |||
| 91 | if (ecdsa == NULL) | ||
| 92 | return 0; | ||
| 93 | |||
| 94 | mtmp = ecdsa->meth; | ||
| 95 | #ifndef OPENSSL_NO_ENGINE | ||
| 96 | if (ecdsa->engine) | ||
| 97 | { | ||
| 98 | ENGINE_finish(ecdsa->engine); | ||
| 99 | ecdsa->engine = NULL; | ||
| 100 | } | ||
| 101 | #endif | ||
| 102 | ecdsa->meth = meth; | ||
| 103 | |||
| 104 | return 1; | ||
| 105 | } | ||
| 106 | |||
| 107 | static ECDSA_DATA *ECDSA_DATA_new_method(ENGINE *engine) | ||
| 108 | { | ||
| 109 | ECDSA_DATA *ret; | ||
| 110 | |||
| 111 | ret=(ECDSA_DATA *)OPENSSL_malloc(sizeof(ECDSA_DATA)); | ||
| 112 | if (ret == NULL) | ||
| 113 | { | ||
| 114 | ECDSAerr(ECDSA_F_ECDSA_DATA_NEW_METHOD, ERR_R_MALLOC_FAILURE); | ||
| 115 | return(NULL); | ||
| 116 | } | ||
| 117 | |||
| 118 | ret->init = NULL; | ||
| 119 | |||
| 120 | ret->meth = ECDSA_get_default_method(); | ||
| 121 | ret->engine = engine; | ||
| 122 | #ifndef OPENSSL_NO_ENGINE | ||
| 123 | if (!ret->engine) | ||
| 124 | ret->engine = ENGINE_get_default_ECDSA(); | ||
| 125 | if (ret->engine) | ||
| 126 | { | ||
| 127 | ret->meth = ENGINE_get_ECDSA(ret->engine); | ||
| 128 | if (!ret->meth) | ||
| 129 | { | ||
| 130 | ECDSAerr(ECDSA_F_ECDSA_DATA_NEW_METHOD, ERR_R_ENGINE_LIB); | ||
| 131 | ENGINE_finish(ret->engine); | ||
| 132 | OPENSSL_free(ret); | ||
| 133 | return NULL; | ||
| 134 | } | ||
| 135 | } | ||
| 136 | #endif | ||
| 137 | |||
| 138 | ret->flags = ret->meth->flags; | ||
| 139 | CRYPTO_new_ex_data(CRYPTO_EX_INDEX_ECDSA, ret, &ret->ex_data); | ||
| 140 | #if 0 | ||
| 141 | if ((ret->meth->init != NULL) && !ret->meth->init(ret)) | ||
| 142 | { | ||
| 143 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDSA, ret, &ret->ex_data); | ||
| 144 | OPENSSL_free(ret); | ||
| 145 | ret=NULL; | ||
| 146 | } | ||
| 147 | #endif | ||
| 148 | return(ret); | ||
| 149 | } | ||
| 150 | |||
| 151 | static void *ecdsa_data_new(void) | ||
| 152 | { | ||
| 153 | return (void *)ECDSA_DATA_new_method(NULL); | ||
| 154 | } | ||
| 155 | |||
| 156 | static void *ecdsa_data_dup(void *data) | ||
| 157 | { | ||
| 158 | ECDSA_DATA *r = (ECDSA_DATA *)data; | ||
| 159 | |||
| 160 | /* XXX: dummy operation */ | ||
| 161 | if (r == NULL) | ||
| 162 | return NULL; | ||
| 163 | |||
| 164 | return ecdsa_data_new(); | ||
| 165 | } | ||
| 166 | |||
| 167 | static void ecdsa_data_free(void *data) | ||
| 168 | { | ||
| 169 | ECDSA_DATA *r = (ECDSA_DATA *)data; | ||
| 170 | |||
| 171 | #ifndef OPENSSL_NO_ENGINE | ||
| 172 | if (r->engine) | ||
| 173 | ENGINE_finish(r->engine); | ||
| 174 | #endif | ||
| 175 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_ECDSA, r, &r->ex_data); | ||
| 176 | |||
| 177 | OPENSSL_cleanse((void *)r, sizeof(ECDSA_DATA)); | ||
| 178 | |||
| 179 | OPENSSL_free(r); | ||
| 180 | } | ||
| 181 | |||
| 182 | ECDSA_DATA *ecdsa_check(EC_KEY *key) | ||
| 183 | { | ||
| 184 | ECDSA_DATA *ecdsa_data; | ||
| 185 | |||
| 186 | void *data = EC_KEY_get_key_method_data(key, ecdsa_data_dup, | ||
| 187 | ecdsa_data_free, ecdsa_data_free); | ||
| 188 | if (data == NULL) | ||
| 189 | { | ||
| 190 | ecdsa_data = (ECDSA_DATA *)ecdsa_data_new(); | ||
| 191 | if (ecdsa_data == NULL) | ||
| 192 | return NULL; | ||
| 193 | EC_KEY_insert_key_method_data(key, (void *)ecdsa_data, | ||
| 194 | ecdsa_data_dup, ecdsa_data_free, ecdsa_data_free); | ||
| 195 | } | ||
| 196 | else | ||
| 197 | ecdsa_data = (ECDSA_DATA *)data; | ||
| 198 | |||
| 199 | |||
| 200 | return ecdsa_data; | ||
| 201 | } | ||
| 202 | |||
| 203 | int ECDSA_size(const EC_KEY *r) | ||
| 204 | { | ||
| 205 | int ret,i; | ||
| 206 | ASN1_INTEGER bs; | ||
| 207 | BIGNUM *order=NULL; | ||
| 208 | unsigned char buf[4]; | ||
| 209 | const EC_GROUP *group; | ||
| 210 | |||
| 211 | if (r == NULL) | ||
| 212 | return 0; | ||
| 213 | group = EC_KEY_get0_group(r); | ||
| 214 | if (group == NULL) | ||
| 215 | return 0; | ||
| 216 | |||
| 217 | if ((order = BN_new()) == NULL) return 0; | ||
| 218 | if (!EC_GROUP_get_order(group,order,NULL)) | ||
| 219 | { | ||
| 220 | BN_clear_free(order); | ||
| 221 | return 0; | ||
| 222 | } | ||
| 223 | i=BN_num_bits(order); | ||
| 224 | bs.length=(i+7)/8; | ||
| 225 | bs.data=buf; | ||
| 226 | bs.type=V_ASN1_INTEGER; | ||
| 227 | /* If the top bit is set the asn1 encoding is 1 larger. */ | ||
| 228 | buf[0]=0xff; | ||
| 229 | |||
| 230 | i=i2d_ASN1_INTEGER(&bs,NULL); | ||
| 231 | i+=i; /* r and s */ | ||
| 232 | ret=ASN1_object_size(1,i,V_ASN1_SEQUENCE); | ||
| 233 | BN_clear_free(order); | ||
| 234 | return(ret); | ||
| 235 | } | ||
| 236 | |||
| 237 | |||
| 238 | int ECDSA_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, | ||
| 239 | CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func) | ||
| 240 | { | ||
| 241 | return CRYPTO_get_ex_new_index(CRYPTO_EX_INDEX_ECDSA, argl, argp, | ||
| 242 | new_func, dup_func, free_func); | ||
| 243 | } | ||
| 244 | |||
| 245 | int ECDSA_set_ex_data(EC_KEY *d, int idx, void *arg) | ||
| 246 | { | ||
| 247 | ECDSA_DATA *ecdsa; | ||
| 248 | ecdsa = ecdsa_check(d); | ||
| 249 | if (ecdsa == NULL) | ||
| 250 | return 0; | ||
| 251 | return(CRYPTO_set_ex_data(&ecdsa->ex_data,idx,arg)); | ||
| 252 | } | ||
| 253 | |||
| 254 | void *ECDSA_get_ex_data(EC_KEY *d, int idx) | ||
| 255 | { | ||
| 256 | ECDSA_DATA *ecdsa; | ||
| 257 | ecdsa = ecdsa_check(d); | ||
| 258 | if (ecdsa == NULL) | ||
| 259 | return NULL; | ||
| 260 | return(CRYPTO_get_ex_data(&ecdsa->ex_data,idx)); | ||
| 261 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_locl.h b/src/lib/libssl/src/crypto/ecdsa/ecs_locl.h new file mode 100644 index 0000000000..3a69a840e2 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_locl.h | |||
| @@ -0,0 +1,107 @@ | |||
| 1 | /* crypto/ecdsa/ecs_locl.h */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2000-2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #ifndef HEADER_ECS_LOCL_H | ||
| 60 | #define HEADER_ECS_LOCL_H | ||
| 61 | |||
| 62 | #include <openssl/ecdsa.h> | ||
| 63 | |||
| 64 | #ifdef __cplusplus | ||
| 65 | extern "C" { | ||
| 66 | #endif | ||
| 67 | |||
| 68 | struct ecdsa_method | ||
| 69 | { | ||
| 70 | const char *name; | ||
| 71 | ECDSA_SIG *(*ecdsa_do_sign)(const unsigned char *dgst, int dgst_len, | ||
| 72 | const BIGNUM *inv, const BIGNUM *rp, EC_KEY *eckey); | ||
| 73 | int (*ecdsa_sign_setup)(EC_KEY *eckey, BN_CTX *ctx, BIGNUM **kinv, | ||
| 74 | BIGNUM **r); | ||
| 75 | int (*ecdsa_do_verify)(const unsigned char *dgst, int dgst_len, | ||
| 76 | const ECDSA_SIG *sig, EC_KEY *eckey); | ||
| 77 | #if 0 | ||
| 78 | int (*init)(EC_KEY *eckey); | ||
| 79 | int (*finish)(EC_KEY *eckey); | ||
| 80 | #endif | ||
| 81 | int flags; | ||
| 82 | char *app_data; | ||
| 83 | }; | ||
| 84 | |||
| 85 | typedef struct ecdsa_data_st { | ||
| 86 | /* EC_KEY_METH_DATA part */ | ||
| 87 | int (*init)(EC_KEY *); | ||
| 88 | /* method (ECDSA) specific part */ | ||
| 89 | ENGINE *engine; | ||
| 90 | int flags; | ||
| 91 | const ECDSA_METHOD *meth; | ||
| 92 | CRYPTO_EX_DATA ex_data; | ||
| 93 | } ECDSA_DATA; | ||
| 94 | |||
| 95 | /** ecdsa_check | ||
| 96 | * checks whether ECKEY->meth_data is a pointer to a ECDSA_DATA structure | ||
| 97 | * and if not it removes the old meth_data and creates a ECDSA_DATA structure. | ||
| 98 | * \param eckey pointer to a EC_KEY object | ||
| 99 | * \return pointer to a ECDSA_DATA structure | ||
| 100 | */ | ||
| 101 | ECDSA_DATA *ecdsa_check(EC_KEY *eckey); | ||
| 102 | |||
| 103 | #ifdef __cplusplus | ||
| 104 | } | ||
| 105 | #endif | ||
| 106 | |||
| 107 | #endif /* HEADER_ECS_LOCL_H */ | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_ossl.c b/src/lib/libssl/src/crypto/ecdsa/ecs_ossl.c new file mode 100644 index 0000000000..3ead1af94e --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_ossl.c | |||
| @@ -0,0 +1,478 @@ | |||
| 1 | /* crypto/ecdsa/ecs_ossl.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "ecs_locl.h" | ||
| 60 | #include <openssl/err.h> | ||
| 61 | #include <openssl/obj_mac.h> | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | |||
| 64 | static ECDSA_SIG *ecdsa_do_sign(const unsigned char *dgst, int dlen, | ||
| 65 | const BIGNUM *, const BIGNUM *, EC_KEY *eckey); | ||
| 66 | static int ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in, BIGNUM **kinvp, | ||
| 67 | BIGNUM **rp); | ||
| 68 | static int ecdsa_do_verify(const unsigned char *dgst, int dgst_len, | ||
| 69 | const ECDSA_SIG *sig, EC_KEY *eckey); | ||
| 70 | |||
| 71 | static ECDSA_METHOD openssl_ecdsa_meth = { | ||
| 72 | "OpenSSL ECDSA method", | ||
| 73 | ecdsa_do_sign, | ||
| 74 | ecdsa_sign_setup, | ||
| 75 | ecdsa_do_verify, | ||
| 76 | #if 0 | ||
| 77 | NULL, /* init */ | ||
| 78 | NULL, /* finish */ | ||
| 79 | #endif | ||
| 80 | 0, /* flags */ | ||
| 81 | NULL /* app_data */ | ||
| 82 | }; | ||
| 83 | |||
| 84 | const ECDSA_METHOD *ECDSA_OpenSSL(void) | ||
| 85 | { | ||
| 86 | return &openssl_ecdsa_meth; | ||
| 87 | } | ||
| 88 | |||
| 89 | static int ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in, BIGNUM **kinvp, | ||
| 90 | BIGNUM **rp) | ||
| 91 | { | ||
| 92 | BN_CTX *ctx = NULL; | ||
| 93 | BIGNUM *k = NULL, *r = NULL, *order = NULL, *X = NULL; | ||
| 94 | EC_POINT *tmp_point=NULL; | ||
| 95 | const EC_GROUP *group; | ||
| 96 | int ret = 0; | ||
| 97 | |||
| 98 | if (eckey == NULL || (group = EC_KEY_get0_group(eckey)) == NULL) | ||
| 99 | { | ||
| 100 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_PASSED_NULL_PARAMETER); | ||
| 101 | return 0; | ||
| 102 | } | ||
| 103 | |||
| 104 | if (ctx_in == NULL) | ||
| 105 | { | ||
| 106 | if ((ctx = BN_CTX_new()) == NULL) | ||
| 107 | { | ||
| 108 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP,ERR_R_MALLOC_FAILURE); | ||
| 109 | return 0; | ||
| 110 | } | ||
| 111 | } | ||
| 112 | else | ||
| 113 | ctx = ctx_in; | ||
| 114 | |||
| 115 | k = BN_new(); /* this value is later returned in *kinvp */ | ||
| 116 | r = BN_new(); /* this value is later returned in *rp */ | ||
| 117 | order = BN_new(); | ||
| 118 | X = BN_new(); | ||
| 119 | if (!k || !r || !order || !X) | ||
| 120 | { | ||
| 121 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_MALLOC_FAILURE); | ||
| 122 | goto err; | ||
| 123 | } | ||
| 124 | if ((tmp_point = EC_POINT_new(group)) == NULL) | ||
| 125 | { | ||
| 126 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_EC_LIB); | ||
| 127 | goto err; | ||
| 128 | } | ||
| 129 | if (!EC_GROUP_get_order(group, order, ctx)) | ||
| 130 | { | ||
| 131 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_EC_LIB); | ||
| 132 | goto err; | ||
| 133 | } | ||
| 134 | |||
| 135 | do | ||
| 136 | { | ||
| 137 | /* get random k */ | ||
| 138 | do | ||
| 139 | if (!BN_rand_range(k, order)) | ||
| 140 | { | ||
| 141 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, | ||
| 142 | ECDSA_R_RANDOM_NUMBER_GENERATION_FAILED); | ||
| 143 | goto err; | ||
| 144 | } | ||
| 145 | while (BN_is_zero(k)); | ||
| 146 | |||
| 147 | /* compute r the x-coordinate of generator * k */ | ||
| 148 | if (!EC_POINT_mul(group, tmp_point, k, NULL, NULL, ctx)) | ||
| 149 | { | ||
| 150 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_EC_LIB); | ||
| 151 | goto err; | ||
| 152 | } | ||
| 153 | if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) | ||
| 154 | { | ||
| 155 | if (!EC_POINT_get_affine_coordinates_GFp(group, | ||
| 156 | tmp_point, X, NULL, ctx)) | ||
| 157 | { | ||
| 158 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP,ERR_R_EC_LIB); | ||
| 159 | goto err; | ||
| 160 | } | ||
| 161 | } | ||
| 162 | else /* NID_X9_62_characteristic_two_field */ | ||
| 163 | { | ||
| 164 | if (!EC_POINT_get_affine_coordinates_GF2m(group, | ||
| 165 | tmp_point, X, NULL, ctx)) | ||
| 166 | { | ||
| 167 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP,ERR_R_EC_LIB); | ||
| 168 | goto err; | ||
| 169 | } | ||
| 170 | } | ||
| 171 | if (!BN_nnmod(r, X, order, ctx)) | ||
| 172 | { | ||
| 173 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_BN_LIB); | ||
| 174 | goto err; | ||
| 175 | } | ||
| 176 | } | ||
| 177 | while (BN_is_zero(r)); | ||
| 178 | |||
| 179 | /* compute the inverse of k */ | ||
| 180 | if (!BN_mod_inverse(k, k, order, ctx)) | ||
| 181 | { | ||
| 182 | ECDSAerr(ECDSA_F_ECDSA_SIGN_SETUP, ERR_R_BN_LIB); | ||
| 183 | goto err; | ||
| 184 | } | ||
| 185 | /* clear old values if necessary */ | ||
| 186 | if (*rp != NULL) | ||
| 187 | BN_clear_free(*rp); | ||
| 188 | if (*kinvp != NULL) | ||
| 189 | BN_clear_free(*kinvp); | ||
| 190 | /* save the pre-computed values */ | ||
| 191 | *rp = r; | ||
| 192 | *kinvp = k; | ||
| 193 | ret = 1; | ||
| 194 | err: | ||
| 195 | if (!ret) | ||
| 196 | { | ||
| 197 | if (k != NULL) BN_clear_free(k); | ||
| 198 | if (r != NULL) BN_clear_free(r); | ||
| 199 | } | ||
| 200 | if (ctx_in == NULL) | ||
| 201 | BN_CTX_free(ctx); | ||
| 202 | if (order != NULL) | ||
| 203 | BN_free(order); | ||
| 204 | if (tmp_point != NULL) | ||
| 205 | EC_POINT_free(tmp_point); | ||
| 206 | if (X) | ||
| 207 | BN_clear_free(X); | ||
| 208 | return(ret); | ||
| 209 | } | ||
| 210 | |||
| 211 | |||
| 212 | static ECDSA_SIG *ecdsa_do_sign(const unsigned char *dgst, int dgst_len, | ||
| 213 | const BIGNUM *in_kinv, const BIGNUM *in_r, EC_KEY *eckey) | ||
| 214 | { | ||
| 215 | int ok = 0; | ||
| 216 | BIGNUM *kinv=NULL, *s, *m=NULL,*tmp=NULL,*order=NULL; | ||
| 217 | const BIGNUM *ckinv; | ||
| 218 | BN_CTX *ctx = NULL; | ||
| 219 | const EC_GROUP *group; | ||
| 220 | ECDSA_SIG *ret; | ||
| 221 | ECDSA_DATA *ecdsa; | ||
| 222 | const BIGNUM *priv_key; | ||
| 223 | |||
| 224 | ecdsa = ecdsa_check(eckey); | ||
| 225 | group = EC_KEY_get0_group(eckey); | ||
| 226 | priv_key = EC_KEY_get0_private_key(eckey); | ||
| 227 | |||
| 228 | if (group == NULL || priv_key == NULL || ecdsa == NULL) | ||
| 229 | { | ||
| 230 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_PASSED_NULL_PARAMETER); | ||
| 231 | return NULL; | ||
| 232 | } | ||
| 233 | |||
| 234 | ret = ECDSA_SIG_new(); | ||
| 235 | if (!ret) | ||
| 236 | { | ||
| 237 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_MALLOC_FAILURE); | ||
| 238 | return NULL; | ||
| 239 | } | ||
| 240 | s = ret->s; | ||
| 241 | |||
| 242 | if ((ctx = BN_CTX_new()) == NULL || (order = BN_new()) == NULL || | ||
| 243 | (tmp = BN_new()) == NULL || (m = BN_new()) == NULL) | ||
| 244 | { | ||
| 245 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_MALLOC_FAILURE); | ||
| 246 | goto err; | ||
| 247 | } | ||
| 248 | |||
| 249 | if (!EC_GROUP_get_order(group, order, ctx)) | ||
| 250 | { | ||
| 251 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_EC_LIB); | ||
| 252 | goto err; | ||
| 253 | } | ||
| 254 | if (8 * dgst_len > BN_num_bits(order)) | ||
| 255 | { | ||
| 256 | /* XXX | ||
| 257 | * | ||
| 258 | * Should provide for optional hash truncation: | ||
| 259 | * Keep the BN_num_bits(order) leftmost bits of dgst | ||
| 260 | * (see March 2006 FIPS 186-3 draft, which has a few | ||
| 261 | * confusing errors in this part though) | ||
| 262 | */ | ||
| 263 | |||
| 264 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, | ||
| 265 | ECDSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE); | ||
| 266 | goto err; | ||
| 267 | } | ||
| 268 | |||
| 269 | if (!BN_bin2bn(dgst, dgst_len, m)) | ||
| 270 | { | ||
| 271 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_BN_LIB); | ||
| 272 | goto err; | ||
| 273 | } | ||
| 274 | do | ||
| 275 | { | ||
| 276 | if (in_kinv == NULL || in_r == NULL) | ||
| 277 | { | ||
| 278 | if (!ECDSA_sign_setup(eckey, ctx, &kinv, &ret->r)) | ||
| 279 | { | ||
| 280 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN,ERR_R_ECDSA_LIB); | ||
| 281 | goto err; | ||
| 282 | } | ||
| 283 | ckinv = kinv; | ||
| 284 | } | ||
| 285 | else | ||
| 286 | { | ||
| 287 | ckinv = in_kinv; | ||
| 288 | if (BN_copy(ret->r, in_r) == NULL) | ||
| 289 | { | ||
| 290 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_MALLOC_FAILURE); | ||
| 291 | goto err; | ||
| 292 | } | ||
| 293 | } | ||
| 294 | |||
| 295 | if (!BN_mod_mul(tmp, priv_key, ret->r, order, ctx)) | ||
| 296 | { | ||
| 297 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_BN_LIB); | ||
| 298 | goto err; | ||
| 299 | } | ||
| 300 | if (!BN_mod_add_quick(s, tmp, m, order)) | ||
| 301 | { | ||
| 302 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_BN_LIB); | ||
| 303 | goto err; | ||
| 304 | } | ||
| 305 | if (!BN_mod_mul(s, s, ckinv, order, ctx)) | ||
| 306 | { | ||
| 307 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ERR_R_BN_LIB); | ||
| 308 | goto err; | ||
| 309 | } | ||
| 310 | if (BN_is_zero(s)) | ||
| 311 | { | ||
| 312 | /* if kinv and r have been supplied by the caller | ||
| 313 | * don't to generate new kinv and r values */ | ||
| 314 | if (in_kinv != NULL && in_r != NULL) | ||
| 315 | { | ||
| 316 | ECDSAerr(ECDSA_F_ECDSA_DO_SIGN, ECDSA_R_NEED_NEW_SETUP_VALUES); | ||
| 317 | goto err; | ||
| 318 | } | ||
| 319 | } | ||
| 320 | else | ||
| 321 | /* s != 0 => we have a valid signature */ | ||
| 322 | break; | ||
| 323 | } | ||
| 324 | while (1); | ||
| 325 | |||
| 326 | ok = 1; | ||
| 327 | err: | ||
| 328 | if (!ok) | ||
| 329 | { | ||
| 330 | ECDSA_SIG_free(ret); | ||
| 331 | ret = NULL; | ||
| 332 | } | ||
| 333 | if (ctx) | ||
| 334 | BN_CTX_free(ctx); | ||
| 335 | if (m) | ||
| 336 | BN_clear_free(m); | ||
| 337 | if (tmp) | ||
| 338 | BN_clear_free(tmp); | ||
| 339 | if (order) | ||
| 340 | BN_free(order); | ||
| 341 | if (kinv) | ||
| 342 | BN_clear_free(kinv); | ||
| 343 | return ret; | ||
| 344 | } | ||
| 345 | |||
| 346 | static int ecdsa_do_verify(const unsigned char *dgst, int dgst_len, | ||
| 347 | const ECDSA_SIG *sig, EC_KEY *eckey) | ||
| 348 | { | ||
| 349 | int ret = -1; | ||
| 350 | BN_CTX *ctx; | ||
| 351 | BIGNUM *order, *u1, *u2, *m, *X; | ||
| 352 | EC_POINT *point = NULL; | ||
| 353 | const EC_GROUP *group; | ||
| 354 | const EC_POINT *pub_key; | ||
| 355 | |||
| 356 | /* check input values */ | ||
| 357 | if (eckey == NULL || (group = EC_KEY_get0_group(eckey)) == NULL || | ||
| 358 | (pub_key = EC_KEY_get0_public_key(eckey)) == NULL || sig == NULL) | ||
| 359 | { | ||
| 360 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ECDSA_R_MISSING_PARAMETERS); | ||
| 361 | return -1; | ||
| 362 | } | ||
| 363 | |||
| 364 | ctx = BN_CTX_new(); | ||
| 365 | if (!ctx) | ||
| 366 | { | ||
| 367 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_MALLOC_FAILURE); | ||
| 368 | return -1; | ||
| 369 | } | ||
| 370 | BN_CTX_start(ctx); | ||
| 371 | order = BN_CTX_get(ctx); | ||
| 372 | u1 = BN_CTX_get(ctx); | ||
| 373 | u2 = BN_CTX_get(ctx); | ||
| 374 | m = BN_CTX_get(ctx); | ||
| 375 | X = BN_CTX_get(ctx); | ||
| 376 | if (!X) | ||
| 377 | { | ||
| 378 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_BN_LIB); | ||
| 379 | goto err; | ||
| 380 | } | ||
| 381 | |||
| 382 | if (!EC_GROUP_get_order(group, order, ctx)) | ||
| 383 | { | ||
| 384 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_EC_LIB); | ||
| 385 | goto err; | ||
| 386 | } | ||
| 387 | if (8 * dgst_len > BN_num_bits(order)) | ||
| 388 | { | ||
| 389 | /* XXX | ||
| 390 | * | ||
| 391 | * Should provide for optional hash truncation: | ||
| 392 | * Keep the BN_num_bits(order) leftmost bits of dgst | ||
| 393 | * (see March 2006 FIPS 186-3 draft, which has a few | ||
| 394 | * confusing errors in this part though) | ||
| 395 | */ | ||
| 396 | |||
| 397 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, | ||
| 398 | ECDSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE); | ||
| 399 | ret = 0; | ||
| 400 | goto err; | ||
| 401 | } | ||
| 402 | |||
| 403 | if (BN_is_zero(sig->r) || BN_is_negative(sig->r) || | ||
| 404 | BN_ucmp(sig->r, order) >= 0 || BN_is_zero(sig->s) || | ||
| 405 | BN_is_negative(sig->s) || BN_ucmp(sig->s, order) >= 0) | ||
| 406 | { | ||
| 407 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ECDSA_R_BAD_SIGNATURE); | ||
| 408 | ret = 0; /* signature is invalid */ | ||
| 409 | goto err; | ||
| 410 | } | ||
| 411 | /* calculate tmp1 = inv(S) mod order */ | ||
| 412 | if (!BN_mod_inverse(u2, sig->s, order, ctx)) | ||
| 413 | { | ||
| 414 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_BN_LIB); | ||
| 415 | goto err; | ||
| 416 | } | ||
| 417 | /* digest -> m */ | ||
| 418 | if (!BN_bin2bn(dgst, dgst_len, m)) | ||
| 419 | { | ||
| 420 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_BN_LIB); | ||
| 421 | goto err; | ||
| 422 | } | ||
| 423 | /* u1 = m * tmp mod order */ | ||
| 424 | if (!BN_mod_mul(u1, m, u2, order, ctx)) | ||
| 425 | { | ||
| 426 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_BN_LIB); | ||
| 427 | goto err; | ||
| 428 | } | ||
| 429 | /* u2 = r * w mod q */ | ||
| 430 | if (!BN_mod_mul(u2, sig->r, u2, order, ctx)) | ||
| 431 | { | ||
| 432 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_BN_LIB); | ||
| 433 | goto err; | ||
| 434 | } | ||
| 435 | |||
| 436 | if ((point = EC_POINT_new(group)) == NULL) | ||
| 437 | { | ||
| 438 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_MALLOC_FAILURE); | ||
| 439 | goto err; | ||
| 440 | } | ||
| 441 | if (!EC_POINT_mul(group, point, u1, pub_key, u2, ctx)) | ||
| 442 | { | ||
| 443 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_EC_LIB); | ||
| 444 | goto err; | ||
| 445 | } | ||
| 446 | if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) | ||
| 447 | { | ||
| 448 | if (!EC_POINT_get_affine_coordinates_GFp(group, | ||
| 449 | point, X, NULL, ctx)) | ||
| 450 | { | ||
| 451 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_EC_LIB); | ||
| 452 | goto err; | ||
| 453 | } | ||
| 454 | } | ||
| 455 | else /* NID_X9_62_characteristic_two_field */ | ||
| 456 | { | ||
| 457 | if (!EC_POINT_get_affine_coordinates_GF2m(group, | ||
| 458 | point, X, NULL, ctx)) | ||
| 459 | { | ||
| 460 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_EC_LIB); | ||
| 461 | goto err; | ||
| 462 | } | ||
| 463 | } | ||
| 464 | |||
| 465 | if (!BN_nnmod(u1, X, order, ctx)) | ||
| 466 | { | ||
| 467 | ECDSAerr(ECDSA_F_ECDSA_DO_VERIFY, ERR_R_BN_LIB); | ||
| 468 | goto err; | ||
| 469 | } | ||
| 470 | /* if the signature is correct u1 is equal to sig->r */ | ||
| 471 | ret = (BN_ucmp(u1, sig->r) == 0); | ||
| 472 | err: | ||
| 473 | BN_CTX_end(ctx); | ||
| 474 | BN_CTX_free(ctx); | ||
| 475 | if (point) | ||
| 476 | EC_POINT_free(point); | ||
| 477 | return ret; | ||
| 478 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_sign.c b/src/lib/libssl/src/crypto/ecdsa/ecs_sign.c new file mode 100644 index 0000000000..74b1fe8caf --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_sign.c | |||
| @@ -0,0 +1,104 @@ | |||
| 1 | /* crypto/ecdsa/ecdsa_sign.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #include "ecs_locl.h" | ||
| 57 | #ifndef OPENSSL_NO_ENGINE | ||
| 58 | #include <openssl/engine.h> | ||
| 59 | #endif | ||
| 60 | |||
| 61 | ECDSA_SIG *ECDSA_do_sign(const unsigned char *dgst, int dlen, EC_KEY *eckey) | ||
| 62 | { | ||
| 63 | return ECDSA_do_sign_ex(dgst, dlen, NULL, NULL, eckey); | ||
| 64 | } | ||
| 65 | |||
| 66 | ECDSA_SIG *ECDSA_do_sign_ex(const unsigned char *dgst, int dlen, | ||
| 67 | const BIGNUM *kinv, const BIGNUM *rp, EC_KEY *eckey) | ||
| 68 | { | ||
| 69 | ECDSA_DATA *ecdsa = ecdsa_check(eckey); | ||
| 70 | if (ecdsa == NULL) | ||
| 71 | return NULL; | ||
| 72 | return ecdsa->meth->ecdsa_do_sign(dgst, dlen, kinv, rp, eckey); | ||
| 73 | } | ||
| 74 | |||
| 75 | int ECDSA_sign(int type, const unsigned char *dgst, int dlen, unsigned char | ||
| 76 | *sig, unsigned int *siglen, EC_KEY *eckey) | ||
| 77 | { | ||
| 78 | return ECDSA_sign_ex(type, dgst, dlen, sig, siglen, NULL, NULL, eckey); | ||
| 79 | } | ||
| 80 | |||
| 81 | int ECDSA_sign_ex(int type, const unsigned char *dgst, int dlen, unsigned char | ||
| 82 | *sig, unsigned int *siglen, const BIGNUM *kinv, const BIGNUM *r, | ||
| 83 | EC_KEY *eckey) | ||
| 84 | { | ||
| 85 | ECDSA_SIG *s; | ||
| 86 | s = ECDSA_do_sign_ex(dgst, dlen, kinv, r, eckey); | ||
| 87 | if (s == NULL) | ||
| 88 | { | ||
| 89 | *siglen=0; | ||
| 90 | return 0; | ||
| 91 | } | ||
| 92 | *siglen = i2d_ECDSA_SIG(s, &sig); | ||
| 93 | ECDSA_SIG_free(s); | ||
| 94 | return 1; | ||
| 95 | } | ||
| 96 | |||
| 97 | int ECDSA_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in, BIGNUM **kinvp, | ||
| 98 | BIGNUM **rp) | ||
| 99 | { | ||
| 100 | ECDSA_DATA *ecdsa = ecdsa_check(eckey); | ||
| 101 | if (ecdsa == NULL) | ||
| 102 | return 0; | ||
| 103 | return ecdsa->meth->ecdsa_sign_setup(eckey, ctx_in, kinvp, rp); | ||
| 104 | } | ||
diff --git a/src/lib/libssl/src/crypto/ecdsa/ecs_vrf.c b/src/lib/libssl/src/crypto/ecdsa/ecs_vrf.c new file mode 100644 index 0000000000..ef9acf7b61 --- /dev/null +++ b/src/lib/libssl/src/crypto/ecdsa/ecs_vrf.c | |||
| @@ -0,0 +1,96 @@ | |||
| 1 | /* crypto/ecdsa/ecdsa_vrf.c */ | ||
| 2 | /* | ||
| 3 | * Written by Nils Larsch for the OpenSSL project | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "ecs_locl.h" | ||
| 60 | #ifndef OPENSSL_NO_ENGINE | ||
| 61 | #include <openssl/engine.h> | ||
| 62 | #endif | ||
| 63 | |||
| 64 | /* returns | ||
| 65 | * 1: correct signature | ||
| 66 | * 0: incorrect signature | ||
| 67 | * -1: error | ||
| 68 | */ | ||
| 69 | int ECDSA_do_verify(const unsigned char *dgst, int dgst_len, | ||
| 70 | const ECDSA_SIG *sig, EC_KEY *eckey) | ||
| 71 | { | ||
| 72 | ECDSA_DATA *ecdsa = ecdsa_check(eckey); | ||
| 73 | if (ecdsa == NULL) | ||
| 74 | return 0; | ||
| 75 | return ecdsa->meth->ecdsa_do_verify(dgst, dgst_len, sig, eckey); | ||
| 76 | } | ||
| 77 | |||
| 78 | /* returns | ||
| 79 | * 1: correct signature | ||
| 80 | * 0: incorrect signature | ||
| 81 | * -1: error | ||
| 82 | */ | ||
| 83 | int ECDSA_verify(int type, const unsigned char *dgst, int dgst_len, | ||
| 84 | const unsigned char *sigbuf, int sig_len, EC_KEY *eckey) | ||
| 85 | { | ||
| 86 | ECDSA_SIG *s; | ||
| 87 | int ret=-1; | ||
| 88 | |||
| 89 | s = ECDSA_SIG_new(); | ||
| 90 | if (s == NULL) return(ret); | ||
| 91 | if (d2i_ECDSA_SIG(&s, &sigbuf, sig_len) == NULL) goto err; | ||
| 92 | ret=ECDSA_do_verify(dgst, dgst_len, s, eckey); | ||
| 93 | err: | ||
| 94 | ECDSA_SIG_free(s); | ||
| 95 | return(ret); | ||
| 96 | } | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw.ec b/src/lib/libssl/src/crypto/engine/hw.ec deleted file mode 100644 index 5481a43918..0000000000 --- a/src/lib/libssl/src/crypto/engine/hw.ec +++ /dev/null | |||
| @@ -1,8 +0,0 @@ | |||
| 1 | L AEPHK hw_aep_err.h hw_aep_err.c | ||
| 2 | L ATALLA hw_atalla_err.h hw_atalla_err.c | ||
| 3 | L CSWIFT hw_cswift_err.h hw_cswift_err.c | ||
| 4 | L HWCRHK hw_ncipher_err.h hw_ncipher_err.c | ||
| 5 | L NURON hw_nuron_err.h hw_nuron_err.c | ||
| 6 | L SUREWARE hw_sureware_err.h hw_sureware_err.c | ||
| 7 | L UBSEC hw_ubsec_err.h hw_ubsec_err.c | ||
| 8 | L CCA4758 hw_4758_cca_err.h hw_4758_cca_err.c | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_cryptodev.c b/src/lib/libssl/src/crypto/engine/hw_cryptodev.c deleted file mode 100644 index 3e7fff1c1e..0000000000 --- a/src/lib/libssl/src/crypto/engine/hw_cryptodev.c +++ /dev/null | |||
| @@ -1,1135 +0,0 @@ | |||
| 1 | /* | ||
| 2 | * Copyright (c) 2002 Bob Beck <beck@openbsd.org> | ||
| 3 | * Copyright (c) 2002 Theo de Raadt | ||
| 4 | * Copyright (c) 2002 Markus Friedl | ||
| 5 | * All rights reserved. | ||
| 6 | * | ||
| 7 | * Redistribution and use in source and binary forms, with or without | ||
| 8 | * modification, are permitted provided that the following conditions | ||
| 9 | * are met: | ||
| 10 | * 1. Redistributions of source code must retain the above copyright | ||
| 11 | * notice, this list of conditions and the following disclaimer. | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in the | ||
| 14 | * documentation and/or other materials provided with the distribution. | ||
| 15 | * | ||
| 16 | * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND ANY | ||
| 17 | * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED | ||
| 18 | * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE | ||
| 19 | * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY | ||
| 20 | * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES | ||
| 21 | * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 22 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND | ||
| 23 | * ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT | ||
| 24 | * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | ||
| 25 | * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | * | ||
| 27 | */ | ||
| 28 | |||
| 29 | #include <openssl/objects.h> | ||
| 30 | #include <openssl/engine.h> | ||
| 31 | #include <openssl/evp.h> | ||
| 32 | |||
| 33 | #if (defined(__unix__) || defined(unix)) && !defined(USG) | ||
| 34 | #include <sys/param.h> | ||
| 35 | # if (OpenBSD >= 200112) || ((__FreeBSD_version >= 470101 && __FreeBSD_version < 500000) || __FreeBSD_version >= 500041) | ||
| 36 | # define HAVE_CRYPTODEV | ||
| 37 | # endif | ||
| 38 | # if (OpenBSD >= 200110) | ||
| 39 | # define HAVE_SYSLOG_R | ||
| 40 | # endif | ||
| 41 | #endif | ||
| 42 | |||
| 43 | #ifndef HAVE_CRYPTODEV | ||
| 44 | |||
| 45 | void | ||
| 46 | ENGINE_load_cryptodev(void) | ||
| 47 | { | ||
| 48 | /* This is a NOP on platforms without /dev/crypto */ | ||
| 49 | return; | ||
| 50 | } | ||
| 51 | |||
| 52 | #else | ||
| 53 | |||
| 54 | #include <sys/types.h> | ||
| 55 | #include <crypto/cryptodev.h> | ||
| 56 | #include <sys/ioctl.h> | ||
| 57 | #include <errno.h> | ||
| 58 | #include <stdio.h> | ||
| 59 | #include <unistd.h> | ||
| 60 | #include <fcntl.h> | ||
| 61 | #include <stdarg.h> | ||
| 62 | #include <syslog.h> | ||
| 63 | #include <errno.h> | ||
| 64 | #include <string.h> | ||
| 65 | |||
| 66 | struct dev_crypto_state { | ||
| 67 | struct session_op d_sess; | ||
| 68 | int d_fd; | ||
| 69 | }; | ||
| 70 | |||
| 71 | static u_int32_t cryptodev_asymfeat = 0; | ||
| 72 | |||
| 73 | static int get_asym_dev_crypto(void); | ||
| 74 | static int open_dev_crypto(void); | ||
| 75 | static int get_dev_crypto(void); | ||
| 76 | static int cryptodev_max_iv(int cipher); | ||
| 77 | static int cryptodev_key_length_valid(int cipher, int len); | ||
| 78 | static int cipher_nid_to_cryptodev(int nid); | ||
| 79 | static int get_cryptodev_ciphers(const int **cnids); | ||
| 80 | /*static int get_cryptodev_digests(const int **cnids);*/ | ||
| 81 | static int cryptodev_usable_ciphers(const int **nids); | ||
| 82 | static int cryptodev_usable_digests(const int **nids); | ||
| 83 | static int cryptodev_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, | ||
| 84 | const unsigned char *in, unsigned int inl); | ||
| 85 | static int cryptodev_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, | ||
| 86 | const unsigned char *iv, int enc); | ||
| 87 | static int cryptodev_cleanup(EVP_CIPHER_CTX *ctx); | ||
| 88 | static int cryptodev_engine_ciphers(ENGINE *e, const EVP_CIPHER **cipher, | ||
| 89 | const int **nids, int nid); | ||
| 90 | static int cryptodev_engine_digests(ENGINE *e, const EVP_MD **digest, | ||
| 91 | const int **nids, int nid); | ||
| 92 | static int bn2crparam(const BIGNUM *a, struct crparam *crp); | ||
| 93 | static int crparam2bn(struct crparam *crp, BIGNUM *a); | ||
| 94 | static void zapparams(struct crypt_kop *kop); | ||
| 95 | static int cryptodev_asym(struct crypt_kop *kop, int rlen, BIGNUM *r, | ||
| 96 | int slen, BIGNUM *s); | ||
| 97 | |||
| 98 | static int cryptodev_bn_mod_exp(BIGNUM *r, const BIGNUM *a, | ||
| 99 | const BIGNUM *p, const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | ||
| 100 | static int cryptodev_rsa_nocrt_mod_exp(BIGNUM *r0, const BIGNUM *I, | ||
| 101 | RSA *rsa); | ||
| 102 | static int cryptodev_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa); | ||
| 103 | static int cryptodev_dsa_bn_mod_exp(DSA *dsa, BIGNUM *r, BIGNUM *a, | ||
| 104 | const BIGNUM *p, const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | ||
| 105 | static int cryptodev_dsa_dsa_mod_exp(DSA *dsa, BIGNUM *t1, BIGNUM *g, | ||
| 106 | BIGNUM *u1, BIGNUM *pub_key, BIGNUM *u2, BIGNUM *p, | ||
| 107 | BN_CTX *ctx, BN_MONT_CTX *mont); | ||
| 108 | static DSA_SIG *cryptodev_dsa_do_sign(const unsigned char *dgst, | ||
| 109 | int dlen, DSA *dsa); | ||
| 110 | static int cryptodev_dsa_verify(const unsigned char *dgst, int dgst_len, | ||
| 111 | DSA_SIG *sig, DSA *dsa); | ||
| 112 | static int cryptodev_mod_exp_dh(const DH *dh, BIGNUM *r, const BIGNUM *a, | ||
| 113 | const BIGNUM *p, const BIGNUM *m, BN_CTX *ctx, | ||
| 114 | BN_MONT_CTX *m_ctx); | ||
| 115 | static int cryptodev_dh_compute_key(unsigned char *key, | ||
| 116 | const BIGNUM *pub_key, DH *dh); | ||
| 117 | static int cryptodev_ctrl(ENGINE *e, int cmd, long i, void *p, | ||
| 118 | void (*f)()); | ||
| 119 | void ENGINE_load_cryptodev(void); | ||
| 120 | |||
| 121 | static const ENGINE_CMD_DEFN cryptodev_defns[] = { | ||
| 122 | { 0, NULL, NULL, 0 } | ||
| 123 | }; | ||
| 124 | |||
| 125 | static struct { | ||
| 126 | int id; | ||
| 127 | int nid; | ||
| 128 | int ivmax; | ||
| 129 | int keylen; | ||
| 130 | } ciphers[] = { | ||
| 131 | { CRYPTO_DES_CBC, NID_des_cbc, 8, 8, }, | ||
| 132 | { CRYPTO_3DES_CBC, NID_des_ede3_cbc, 8, 24, }, | ||
| 133 | { CRYPTO_AES_CBC, NID_aes_128_cbc, 16, 16, }, | ||
| 134 | { CRYPTO_BLF_CBC, NID_bf_cbc, 8, 16, }, | ||
| 135 | { CRYPTO_CAST_CBC, NID_cast5_cbc, 8, 16, }, | ||
| 136 | { CRYPTO_SKIPJACK_CBC, NID_undef, 0, 0, }, | ||
| 137 | { 0, NID_undef, 0, 0, }, | ||
| 138 | }; | ||
| 139 | |||
| 140 | #if 0 /* UNUSED */ | ||
| 141 | static struct { | ||
| 142 | int id; | ||
| 143 | int nid; | ||
| 144 | } digests[] = { | ||
| 145 | { CRYPTO_SHA1_HMAC, NID_hmacWithSHA1, }, | ||
| 146 | { CRYPTO_RIPEMD160_HMAC, NID_ripemd160, }, | ||
| 147 | { CRYPTO_MD5_KPDK, NID_undef, }, | ||
| 148 | { CRYPTO_SHA1_KPDK, NID_undef, }, | ||
| 149 | { CRYPTO_MD5, NID_md5, }, | ||
| 150 | { CRYPTO_SHA1, NID_undef, }, | ||
| 151 | { 0, NID_undef, }, | ||
| 152 | }; | ||
| 153 | #endif | ||
| 154 | |||
| 155 | /* | ||
| 156 | * Return a fd if /dev/crypto seems usable, 0 otherwise. | ||
| 157 | */ | ||
| 158 | static int | ||
| 159 | open_dev_crypto(void) | ||
| 160 | { | ||
| 161 | static int fd = -1; | ||
| 162 | |||
| 163 | if (fd == -1) { | ||
| 164 | if ((fd = open("/dev/crypto", O_RDWR, 0)) == -1) | ||
| 165 | return (-1); | ||
| 166 | /* close on exec */ | ||
| 167 | if (fcntl(fd, F_SETFD, 1) == -1) { | ||
| 168 | close(fd); | ||
| 169 | fd = -1; | ||
| 170 | return (-1); | ||
| 171 | } | ||
| 172 | } | ||
| 173 | return (fd); | ||
| 174 | } | ||
| 175 | |||
| 176 | static int | ||
| 177 | get_dev_crypto(void) | ||
| 178 | { | ||
| 179 | int fd, retfd; | ||
| 180 | |||
| 181 | if ((fd = open_dev_crypto()) == -1) | ||
| 182 | return (-1); | ||
| 183 | if (ioctl(fd, CRIOGET, &retfd) == -1) | ||
| 184 | return (-1); | ||
| 185 | |||
| 186 | /* close on exec */ | ||
| 187 | if (fcntl(retfd, F_SETFD, 1) == -1) { | ||
| 188 | close(retfd); | ||
| 189 | return (-1); | ||
| 190 | } | ||
| 191 | return (retfd); | ||
| 192 | } | ||
| 193 | |||
| 194 | /* Caching version for asym operations */ | ||
| 195 | static int | ||
| 196 | get_asym_dev_crypto(void) | ||
| 197 | { | ||
| 198 | static int fd = -1; | ||
| 199 | |||
| 200 | if (fd == -1) | ||
| 201 | fd = get_dev_crypto(); | ||
| 202 | return fd; | ||
| 203 | } | ||
| 204 | |||
| 205 | /* | ||
| 206 | * XXXX this needs to be set for each alg - and determined from | ||
| 207 | * a running card. | ||
| 208 | */ | ||
| 209 | static int | ||
| 210 | cryptodev_max_iv(int cipher) | ||
| 211 | { | ||
| 212 | int i; | ||
| 213 | |||
| 214 | for (i = 0; ciphers[i].id; i++) | ||
| 215 | if (ciphers[i].id == cipher) | ||
| 216 | return (ciphers[i].ivmax); | ||
| 217 | return (0); | ||
| 218 | } | ||
| 219 | |||
| 220 | /* | ||
| 221 | * XXXX this needs to be set for each alg - and determined from | ||
| 222 | * a running card. For now, fake it out - but most of these | ||
| 223 | * for real devices should return 1 for the supported key | ||
| 224 | * sizes the device can handle. | ||
| 225 | */ | ||
| 226 | static int | ||
| 227 | cryptodev_key_length_valid(int cipher, int len) | ||
| 228 | { | ||
| 229 | int i; | ||
| 230 | |||
| 231 | for (i = 0; ciphers[i].id; i++) | ||
| 232 | if (ciphers[i].id == cipher) | ||
| 233 | return (ciphers[i].keylen == len); | ||
| 234 | return (0); | ||
| 235 | } | ||
| 236 | |||
| 237 | /* convert libcrypto nids to cryptodev */ | ||
| 238 | static int | ||
| 239 | cipher_nid_to_cryptodev(int nid) | ||
| 240 | { | ||
| 241 | int i; | ||
| 242 | |||
| 243 | for (i = 0; ciphers[i].id; i++) | ||
| 244 | if (ciphers[i].nid == nid) | ||
| 245 | return (ciphers[i].id); | ||
| 246 | return (0); | ||
| 247 | } | ||
| 248 | |||
| 249 | /* | ||
| 250 | * Find out what ciphers /dev/crypto will let us have a session for. | ||
| 251 | * XXX note, that some of these openssl doesn't deal with yet! | ||
| 252 | * returning them here is harmless, as long as we return NULL | ||
| 253 | * when asked for a handler in the cryptodev_engine_ciphers routine | ||
| 254 | */ | ||
| 255 | static int | ||
| 256 | get_cryptodev_ciphers(const int **cnids) | ||
| 257 | { | ||
| 258 | static int nids[CRYPTO_ALGORITHM_MAX]; | ||
| 259 | struct session_op sess; | ||
| 260 | int fd, i, count = 0; | ||
| 261 | |||
| 262 | if ((fd = get_dev_crypto()) < 0) { | ||
| 263 | *cnids = NULL; | ||
| 264 | return (0); | ||
| 265 | } | ||
| 266 | memset(&sess, 0, sizeof(sess)); | ||
| 267 | sess.key = (caddr_t)"123456781234567812345678"; | ||
| 268 | |||
| 269 | for (i = 0; ciphers[i].id && count < CRYPTO_ALGORITHM_MAX; i++) { | ||
| 270 | if (ciphers[i].nid == NID_undef) | ||
| 271 | continue; | ||
| 272 | sess.cipher = ciphers[i].id; | ||
| 273 | sess.keylen = ciphers[i].keylen; | ||
| 274 | sess.mac = 0; | ||
| 275 | if (ioctl(fd, CIOCGSESSION, &sess) != -1 && | ||
| 276 | ioctl(fd, CIOCFSESSION, &sess.ses) != -1) | ||
| 277 | nids[count++] = ciphers[i].nid; | ||
| 278 | } | ||
| 279 | close(fd); | ||
| 280 | |||
| 281 | if (count > 0) | ||
| 282 | *cnids = nids; | ||
| 283 | else | ||
| 284 | *cnids = NULL; | ||
| 285 | return (count); | ||
| 286 | } | ||
| 287 | |||
| 288 | /* | ||
| 289 | * Find out what digests /dev/crypto will let us have a session for. | ||
| 290 | * XXX note, that some of these openssl doesn't deal with yet! | ||
| 291 | * returning them here is harmless, as long as we return NULL | ||
| 292 | * when asked for a handler in the cryptodev_engine_digests routine | ||
| 293 | */ | ||
| 294 | #if 0 /* UNUSED */ | ||
| 295 | static int | ||
| 296 | get_cryptodev_digests(const int **cnids) | ||
| 297 | { | ||
| 298 | static int nids[CRYPTO_ALGORITHM_MAX]; | ||
| 299 | struct session_op sess; | ||
| 300 | int fd, i, count = 0; | ||
| 301 | |||
| 302 | if ((fd = get_dev_crypto()) < 0) { | ||
| 303 | *cnids = NULL; | ||
| 304 | return (0); | ||
| 305 | } | ||
| 306 | memset(&sess, 0, sizeof(sess)); | ||
| 307 | for (i = 0; digests[i].id && count < CRYPTO_ALGORITHM_MAX; i++) { | ||
| 308 | if (digests[i].nid == NID_undef) | ||
| 309 | continue; | ||
| 310 | sess.mac = digests[i].id; | ||
| 311 | sess.cipher = 0; | ||
| 312 | if (ioctl(fd, CIOCGSESSION, &sess) != -1 && | ||
| 313 | ioctl(fd, CIOCFSESSION, &sess.ses) != -1) | ||
| 314 | nids[count++] = digests[i].nid; | ||
| 315 | } | ||
| 316 | close(fd); | ||
| 317 | |||
| 318 | if (count > 0) | ||
| 319 | *cnids = nids; | ||
| 320 | else | ||
| 321 | *cnids = NULL; | ||
| 322 | return (count); | ||
| 323 | } | ||
| 324 | #endif | ||
| 325 | |||
| 326 | /* | ||
| 327 | * Find the useable ciphers|digests from dev/crypto - this is the first | ||
| 328 | * thing called by the engine init crud which determines what it | ||
| 329 | * can use for ciphers from this engine. We want to return | ||
| 330 | * only what we can do, anythine else is handled by software. | ||
| 331 | * | ||
| 332 | * If we can't initialize the device to do anything useful for | ||
| 333 | * any reason, we want to return a NULL array, and 0 length, | ||
| 334 | * which forces everything to be done is software. By putting | ||
| 335 | * the initalization of the device in here, we ensure we can | ||
| 336 | * use this engine as the default, and if for whatever reason | ||
| 337 | * /dev/crypto won't do what we want it will just be done in | ||
| 338 | * software | ||
| 339 | * | ||
| 340 | * This can (should) be greatly expanded to perhaps take into | ||
| 341 | * account speed of the device, and what we want to do. | ||
| 342 | * (although the disabling of particular alg's could be controlled | ||
| 343 | * by the device driver with sysctl's.) - this is where we | ||
| 344 | * want most of the decisions made about what we actually want | ||
| 345 | * to use from /dev/crypto. | ||
| 346 | */ | ||
| 347 | static int | ||
| 348 | cryptodev_usable_ciphers(const int **nids) | ||
| 349 | { | ||
| 350 | return (get_cryptodev_ciphers(nids)); | ||
| 351 | } | ||
| 352 | |||
| 353 | static int | ||
| 354 | cryptodev_usable_digests(const int **nids) | ||
| 355 | { | ||
| 356 | /* | ||
| 357 | * XXXX just disable all digests for now, because it sucks. | ||
| 358 | * we need a better way to decide this - i.e. I may not | ||
| 359 | * want digests on slow cards like hifn on fast machines, | ||
| 360 | * but might want them on slow or loaded machines, etc. | ||
| 361 | * will also want them when using crypto cards that don't | ||
| 362 | * suck moose gonads - would be nice to be able to decide something | ||
| 363 | * as reasonable default without having hackery that's card dependent. | ||
| 364 | * of course, the default should probably be just do everything, | ||
| 365 | * with perhaps a sysctl to turn algoritms off (or have them off | ||
| 366 | * by default) on cards that generally suck like the hifn. | ||
| 367 | */ | ||
| 368 | *nids = NULL; | ||
| 369 | return (0); | ||
| 370 | } | ||
| 371 | |||
| 372 | static int | ||
| 373 | cryptodev_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out, | ||
| 374 | const unsigned char *in, unsigned int inl) | ||
| 375 | { | ||
| 376 | struct crypt_op cryp; | ||
| 377 | struct dev_crypto_state *state = ctx->cipher_data; | ||
| 378 | struct session_op *sess = &state->d_sess; | ||
| 379 | void *iiv; | ||
| 380 | unsigned char save_iv[EVP_MAX_IV_LENGTH]; | ||
| 381 | |||
| 382 | if (state->d_fd < 0) | ||
| 383 | return (0); | ||
| 384 | if (!inl) | ||
| 385 | return (1); | ||
| 386 | if ((inl % ctx->cipher->block_size) != 0) | ||
| 387 | return (0); | ||
| 388 | |||
| 389 | memset(&cryp, 0, sizeof(cryp)); | ||
| 390 | |||
| 391 | cryp.ses = sess->ses; | ||
| 392 | cryp.flags = 0; | ||
| 393 | cryp.len = inl; | ||
| 394 | cryp.src = (caddr_t) in; | ||
| 395 | cryp.dst = (caddr_t) out; | ||
| 396 | cryp.mac = 0; | ||
| 397 | |||
| 398 | cryp.op = ctx->encrypt ? COP_ENCRYPT : COP_DECRYPT; | ||
| 399 | |||
| 400 | if (ctx->cipher->iv_len) { | ||
| 401 | cryp.iv = (caddr_t) ctx->iv; | ||
| 402 | if (!ctx->encrypt) { | ||
| 403 | iiv = (void *) in + inl - ctx->cipher->iv_len; | ||
| 404 | memcpy(save_iv, iiv, ctx->cipher->iv_len); | ||
| 405 | } | ||
| 406 | } else | ||
| 407 | cryp.iv = NULL; | ||
| 408 | |||
| 409 | if (ioctl(state->d_fd, CIOCCRYPT, &cryp) == -1) { | ||
| 410 | /* XXX need better errror handling | ||
| 411 | * this can fail for a number of different reasons. | ||
| 412 | */ | ||
| 413 | return (0); | ||
| 414 | } | ||
| 415 | |||
| 416 | if (ctx->cipher->iv_len) { | ||
| 417 | if (ctx->encrypt) | ||
| 418 | iiv = (void *) out + inl - ctx->cipher->iv_len; | ||
| 419 | else | ||
| 420 | iiv = save_iv; | ||
| 421 | memcpy(ctx->iv, iiv, ctx->cipher->iv_len); | ||
| 422 | } | ||
| 423 | return (1); | ||
| 424 | } | ||
| 425 | |||
| 426 | static int | ||
| 427 | cryptodev_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, | ||
| 428 | const unsigned char *iv, int enc) | ||
| 429 | { | ||
| 430 | struct dev_crypto_state *state = ctx->cipher_data; | ||
| 431 | struct session_op *sess = &state->d_sess; | ||
| 432 | int cipher; | ||
| 433 | |||
| 434 | if ((cipher = cipher_nid_to_cryptodev(ctx->cipher->nid)) == NID_undef) | ||
| 435 | return (0); | ||
| 436 | |||
| 437 | if (ctx->cipher->iv_len > cryptodev_max_iv(cipher)) | ||
| 438 | return (0); | ||
| 439 | |||
| 440 | if (!cryptodev_key_length_valid(cipher, ctx->key_len)) | ||
| 441 | return (0); | ||
| 442 | |||
| 443 | memset(sess, 0, sizeof(struct session_op)); | ||
| 444 | |||
| 445 | if ((state->d_fd = get_dev_crypto()) < 0) | ||
| 446 | return (0); | ||
| 447 | |||
| 448 | sess->key = (unsigned char *)key; | ||
| 449 | sess->keylen = ctx->key_len; | ||
| 450 | sess->cipher = cipher; | ||
| 451 | |||
| 452 | if (ioctl(state->d_fd, CIOCGSESSION, sess) == -1) { | ||
| 453 | close(state->d_fd); | ||
| 454 | state->d_fd = -1; | ||
| 455 | return (0); | ||
| 456 | } | ||
| 457 | return (1); | ||
| 458 | } | ||
| 459 | |||
| 460 | /* | ||
| 461 | * free anything we allocated earlier when initting a | ||
| 462 | * session, and close the session. | ||
| 463 | */ | ||
| 464 | static int | ||
| 465 | cryptodev_cleanup(EVP_CIPHER_CTX *ctx) | ||
| 466 | { | ||
| 467 | int ret = 0; | ||
| 468 | struct dev_crypto_state *state = ctx->cipher_data; | ||
| 469 | struct session_op *sess = &state->d_sess; | ||
| 470 | |||
| 471 | if (state->d_fd < 0) | ||
| 472 | return (0); | ||
| 473 | |||
| 474 | /* XXX if this ioctl fails, someting's wrong. the invoker | ||
| 475 | * may have called us with a bogus ctx, or we could | ||
| 476 | * have a device that for whatever reason just doesn't | ||
| 477 | * want to play ball - it's not clear what's right | ||
| 478 | * here - should this be an error? should it just | ||
| 479 | * increase a counter, hmm. For right now, we return | ||
| 480 | * 0 - I don't believe that to be "right". we could | ||
| 481 | * call the gorpy openssl lib error handlers that | ||
| 482 | * print messages to users of the library. hmm.. | ||
| 483 | */ | ||
| 484 | |||
| 485 | if (ioctl(state->d_fd, CIOCFSESSION, &sess->ses) == -1) { | ||
| 486 | ret = 0; | ||
| 487 | } else { | ||
| 488 | ret = 1; | ||
| 489 | } | ||
| 490 | close(state->d_fd); | ||
| 491 | state->d_fd = -1; | ||
| 492 | |||
| 493 | return (ret); | ||
| 494 | } | ||
| 495 | |||
| 496 | /* | ||
| 497 | * libcrypto EVP stuff - this is how we get wired to EVP so the engine | ||
| 498 | * gets called when libcrypto requests a cipher NID. | ||
| 499 | */ | ||
| 500 | |||
| 501 | /* DES CBC EVP */ | ||
| 502 | const EVP_CIPHER cryptodev_des_cbc = { | ||
| 503 | NID_des_cbc, | ||
| 504 | 8, 8, 8, | ||
| 505 | EVP_CIPH_CBC_MODE, | ||
| 506 | cryptodev_init_key, | ||
| 507 | cryptodev_cipher, | ||
| 508 | cryptodev_cleanup, | ||
| 509 | sizeof(struct dev_crypto_state), | ||
| 510 | EVP_CIPHER_set_asn1_iv, | ||
| 511 | EVP_CIPHER_get_asn1_iv, | ||
| 512 | NULL | ||
| 513 | }; | ||
| 514 | |||
| 515 | /* 3DES CBC EVP */ | ||
| 516 | const EVP_CIPHER cryptodev_3des_cbc = { | ||
| 517 | NID_des_ede3_cbc, | ||
| 518 | 8, 24, 8, | ||
| 519 | EVP_CIPH_CBC_MODE, | ||
| 520 | cryptodev_init_key, | ||
| 521 | cryptodev_cipher, | ||
| 522 | cryptodev_cleanup, | ||
| 523 | sizeof(struct dev_crypto_state), | ||
| 524 | EVP_CIPHER_set_asn1_iv, | ||
| 525 | EVP_CIPHER_get_asn1_iv, | ||
| 526 | NULL | ||
| 527 | }; | ||
| 528 | |||
| 529 | const EVP_CIPHER cryptodev_bf_cbc = { | ||
| 530 | NID_bf_cbc, | ||
| 531 | 8, 16, 8, | ||
| 532 | EVP_CIPH_CBC_MODE, | ||
| 533 | cryptodev_init_key, | ||
| 534 | cryptodev_cipher, | ||
| 535 | cryptodev_cleanup, | ||
| 536 | sizeof(struct dev_crypto_state), | ||
| 537 | EVP_CIPHER_set_asn1_iv, | ||
| 538 | EVP_CIPHER_get_asn1_iv, | ||
| 539 | NULL | ||
| 540 | }; | ||
| 541 | |||
| 542 | const EVP_CIPHER cryptodev_cast_cbc = { | ||
| 543 | NID_cast5_cbc, | ||
| 544 | 8, 16, 8, | ||
| 545 | EVP_CIPH_CBC_MODE, | ||
| 546 | cryptodev_init_key, | ||
| 547 | cryptodev_cipher, | ||
| 548 | cryptodev_cleanup, | ||
| 549 | sizeof(struct dev_crypto_state), | ||
| 550 | EVP_CIPHER_set_asn1_iv, | ||
| 551 | EVP_CIPHER_get_asn1_iv, | ||
| 552 | NULL | ||
| 553 | }; | ||
| 554 | |||
| 555 | const EVP_CIPHER cryptodev_aes_cbc = { | ||
| 556 | NID_aes_128_cbc, | ||
| 557 | 16, 16, 16, | ||
| 558 | EVP_CIPH_CBC_MODE, | ||
| 559 | cryptodev_init_key, | ||
| 560 | cryptodev_cipher, | ||
| 561 | cryptodev_cleanup, | ||
| 562 | sizeof(struct dev_crypto_state), | ||
| 563 | EVP_CIPHER_set_asn1_iv, | ||
| 564 | EVP_CIPHER_get_asn1_iv, | ||
| 565 | NULL | ||
| 566 | }; | ||
| 567 | |||
| 568 | /* | ||
| 569 | * Registered by the ENGINE when used to find out how to deal with | ||
| 570 | * a particular NID in the ENGINE. this says what we'll do at the | ||
| 571 | * top level - note, that list is restricted by what we answer with | ||
| 572 | */ | ||
| 573 | static int | ||
| 574 | cryptodev_engine_ciphers(ENGINE *e, const EVP_CIPHER **cipher, | ||
| 575 | const int **nids, int nid) | ||
| 576 | { | ||
| 577 | if (!cipher) | ||
| 578 | return (cryptodev_usable_ciphers(nids)); | ||
| 579 | |||
| 580 | switch (nid) { | ||
| 581 | case NID_des_ede3_cbc: | ||
| 582 | *cipher = &cryptodev_3des_cbc; | ||
| 583 | break; | ||
| 584 | case NID_des_cbc: | ||
| 585 | *cipher = &cryptodev_des_cbc; | ||
| 586 | break; | ||
| 587 | case NID_bf_cbc: | ||
| 588 | *cipher = &cryptodev_bf_cbc; | ||
| 589 | break; | ||
| 590 | case NID_cast5_cbc: | ||
| 591 | *cipher = &cryptodev_cast_cbc; | ||
| 592 | break; | ||
| 593 | case NID_aes_128_cbc: | ||
| 594 | *cipher = &cryptodev_aes_cbc; | ||
| 595 | break; | ||
| 596 | default: | ||
| 597 | *cipher = NULL; | ||
| 598 | break; | ||
| 599 | } | ||
| 600 | return (*cipher != NULL); | ||
| 601 | } | ||
| 602 | |||
| 603 | static int | ||
| 604 | cryptodev_engine_digests(ENGINE *e, const EVP_MD **digest, | ||
| 605 | const int **nids, int nid) | ||
| 606 | { | ||
| 607 | if (!digest) | ||
| 608 | return (cryptodev_usable_digests(nids)); | ||
| 609 | |||
| 610 | switch (nid) { | ||
| 611 | case NID_md5: | ||
| 612 | *digest = NULL; /* need to make a clean md5 critter */ | ||
| 613 | break; | ||
| 614 | default: | ||
| 615 | *digest = NULL; | ||
| 616 | break; | ||
| 617 | } | ||
| 618 | return (*digest != NULL); | ||
| 619 | } | ||
| 620 | |||
| 621 | /* | ||
| 622 | * Convert a BIGNUM to the representation that /dev/crypto needs. | ||
| 623 | * Upon completion of use, the caller is responsible for freeing | ||
| 624 | * crp->crp_p. | ||
| 625 | */ | ||
| 626 | static int | ||
| 627 | bn2crparam(const BIGNUM *a, struct crparam *crp) | ||
| 628 | { | ||
| 629 | int i, j, k; | ||
| 630 | ssize_t bytes, bits; | ||
| 631 | u_char *b; | ||
| 632 | |||
| 633 | crp->crp_p = NULL; | ||
| 634 | crp->crp_nbits = 0; | ||
| 635 | |||
| 636 | bits = BN_num_bits(a); | ||
| 637 | bytes = (bits + 7) / 8; | ||
| 638 | |||
| 639 | b = malloc(bytes); | ||
| 640 | if (b == NULL) | ||
| 641 | return (1); | ||
| 642 | |||
| 643 | crp->crp_p = b; | ||
| 644 | crp->crp_nbits = bits; | ||
| 645 | |||
| 646 | for (i = 0, j = 0; i < a->top; i++) { | ||
| 647 | for (k = 0; k < BN_BITS2 / 8; k++) { | ||
| 648 | if ((j + k) >= bytes) | ||
| 649 | return (0); | ||
| 650 | b[j + k] = a->d[i] >> (k * 8); | ||
| 651 | } | ||
| 652 | j += BN_BITS2 / 8; | ||
| 653 | } | ||
| 654 | return (0); | ||
| 655 | } | ||
| 656 | |||
| 657 | /* Convert a /dev/crypto parameter to a BIGNUM */ | ||
| 658 | static int | ||
| 659 | crparam2bn(struct crparam *crp, BIGNUM *a) | ||
| 660 | { | ||
| 661 | u_int8_t *pd; | ||
| 662 | int i, bytes; | ||
| 663 | |||
| 664 | bytes = (crp->crp_nbits + 7) / 8; | ||
| 665 | |||
| 666 | if (bytes == 0) | ||
| 667 | return (-1); | ||
| 668 | |||
| 669 | if ((pd = (u_int8_t *) malloc(bytes)) == NULL) | ||
| 670 | return (-1); | ||
| 671 | |||
| 672 | for (i = 0; i < bytes; i++) | ||
| 673 | pd[i] = crp->crp_p[bytes - i - 1]; | ||
| 674 | |||
| 675 | BN_bin2bn(pd, bytes, a); | ||
| 676 | free(pd); | ||
| 677 | |||
| 678 | return (0); | ||
| 679 | } | ||
| 680 | |||
| 681 | static void | ||
| 682 | zapparams(struct crypt_kop *kop) | ||
| 683 | { | ||
| 684 | int i; | ||
| 685 | |||
| 686 | for (i = 0; i <= kop->crk_iparams + kop->crk_oparams; i++) { | ||
| 687 | if (kop->crk_param[i].crp_p) | ||
| 688 | free(kop->crk_param[i].crp_p); | ||
| 689 | kop->crk_param[i].crp_p = NULL; | ||
| 690 | kop->crk_param[i].crp_nbits = 0; | ||
| 691 | } | ||
| 692 | } | ||
| 693 | |||
| 694 | static int | ||
| 695 | cryptodev_asym(struct crypt_kop *kop, int rlen, BIGNUM *r, int slen, BIGNUM *s) | ||
| 696 | { | ||
| 697 | int fd, ret = -1; | ||
| 698 | |||
| 699 | if ((fd = get_asym_dev_crypto()) < 0) | ||
| 700 | return (ret); | ||
| 701 | |||
| 702 | if (r) { | ||
| 703 | kop->crk_param[kop->crk_iparams].crp_p = calloc(rlen, sizeof(char)); | ||
| 704 | kop->crk_param[kop->crk_iparams].crp_nbits = rlen * 8; | ||
| 705 | kop->crk_oparams++; | ||
| 706 | } | ||
| 707 | if (s) { | ||
| 708 | kop->crk_param[kop->crk_iparams+1].crp_p = calloc(slen, sizeof(char)); | ||
| 709 | kop->crk_param[kop->crk_iparams+1].crp_nbits = slen * 8; | ||
| 710 | kop->crk_oparams++; | ||
| 711 | } | ||
| 712 | |||
| 713 | if (ioctl(fd, CIOCKEY, kop) == 0) { | ||
| 714 | if (r) | ||
| 715 | crparam2bn(&kop->crk_param[kop->crk_iparams], r); | ||
| 716 | if (s) | ||
| 717 | crparam2bn(&kop->crk_param[kop->crk_iparams+1], s); | ||
| 718 | ret = 0; | ||
| 719 | } | ||
| 720 | |||
| 721 | return (ret); | ||
| 722 | } | ||
| 723 | |||
| 724 | static int | ||
| 725 | cryptodev_bn_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | ||
| 726 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *in_mont) | ||
| 727 | { | ||
| 728 | struct crypt_kop kop; | ||
| 729 | int ret = 1; | ||
| 730 | |||
| 731 | /* Currently, we know we can do mod exp iff we can do any | ||
| 732 | * asymmetric operations at all. | ||
| 733 | */ | ||
| 734 | if (cryptodev_asymfeat == 0) { | ||
| 735 | ret = BN_mod_exp(r, a, p, m, ctx); | ||
| 736 | return (ret); | ||
| 737 | } | ||
| 738 | |||
| 739 | memset(&kop, 0, sizeof kop); | ||
| 740 | kop.crk_op = CRK_MOD_EXP; | ||
| 741 | |||
| 742 | /* inputs: a^p % m */ | ||
| 743 | if (bn2crparam(a, &kop.crk_param[0])) | ||
| 744 | goto err; | ||
| 745 | if (bn2crparam(p, &kop.crk_param[1])) | ||
| 746 | goto err; | ||
| 747 | if (bn2crparam(m, &kop.crk_param[2])) | ||
| 748 | goto err; | ||
| 749 | kop.crk_iparams = 3; | ||
| 750 | |||
| 751 | if (cryptodev_asym(&kop, BN_num_bytes(m), r, 0, NULL) == -1) { | ||
| 752 | const RSA_METHOD *meth = RSA_PKCS1_SSLeay(); | ||
| 753 | ret = meth->bn_mod_exp(r, a, p, m, ctx, in_mont); | ||
| 754 | } | ||
| 755 | err: | ||
| 756 | zapparams(&kop); | ||
| 757 | return (ret); | ||
| 758 | } | ||
| 759 | |||
| 760 | static int | ||
| 761 | cryptodev_rsa_nocrt_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | ||
| 762 | { | ||
| 763 | int r; | ||
| 764 | BN_CTX *ctx; | ||
| 765 | |||
| 766 | ctx = BN_CTX_new(); | ||
| 767 | r = cryptodev_bn_mod_exp(r0, I, rsa->d, rsa->n, ctx, NULL); | ||
| 768 | BN_CTX_free(ctx); | ||
| 769 | return (r); | ||
| 770 | } | ||
| 771 | |||
| 772 | static int | ||
| 773 | cryptodev_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | ||
| 774 | { | ||
| 775 | struct crypt_kop kop; | ||
| 776 | int ret = 1; | ||
| 777 | |||
| 778 | if (!rsa->p || !rsa->q || !rsa->dmp1 || !rsa->dmq1 || !rsa->iqmp) { | ||
| 779 | /* XXX 0 means failure?? */ | ||
| 780 | return (0); | ||
| 781 | } | ||
| 782 | |||
| 783 | memset(&kop, 0, sizeof kop); | ||
| 784 | kop.crk_op = CRK_MOD_EXP_CRT; | ||
| 785 | /* inputs: rsa->p rsa->q I rsa->dmp1 rsa->dmq1 rsa->iqmp */ | ||
| 786 | if (bn2crparam(rsa->p, &kop.crk_param[0])) | ||
| 787 | goto err; | ||
| 788 | if (bn2crparam(rsa->q, &kop.crk_param[1])) | ||
| 789 | goto err; | ||
| 790 | if (bn2crparam(I, &kop.crk_param[2])) | ||
| 791 | goto err; | ||
| 792 | if (bn2crparam(rsa->dmp1, &kop.crk_param[3])) | ||
| 793 | goto err; | ||
| 794 | if (bn2crparam(rsa->dmq1, &kop.crk_param[4])) | ||
| 795 | goto err; | ||
| 796 | if (bn2crparam(rsa->iqmp, &kop.crk_param[5])) | ||
| 797 | goto err; | ||
| 798 | kop.crk_iparams = 6; | ||
| 799 | |||
| 800 | if (cryptodev_asym(&kop, BN_num_bytes(rsa->n), r0, 0, NULL) == -1) { | ||
| 801 | const RSA_METHOD *meth = RSA_PKCS1_SSLeay(); | ||
| 802 | ret = (*meth->rsa_mod_exp)(r0, I, rsa); | ||
| 803 | } | ||
| 804 | err: | ||
| 805 | zapparams(&kop); | ||
| 806 | return (ret); | ||
| 807 | } | ||
| 808 | |||
| 809 | static RSA_METHOD cryptodev_rsa = { | ||
| 810 | "cryptodev RSA method", | ||
| 811 | NULL, /* rsa_pub_enc */ | ||
| 812 | NULL, /* rsa_pub_dec */ | ||
| 813 | NULL, /* rsa_priv_enc */ | ||
| 814 | NULL, /* rsa_priv_dec */ | ||
| 815 | NULL, | ||
| 816 | NULL, | ||
| 817 | NULL, /* init */ | ||
| 818 | NULL, /* finish */ | ||
| 819 | 0, /* flags */ | ||
| 820 | NULL, /* app_data */ | ||
| 821 | NULL, /* rsa_sign */ | ||
| 822 | NULL /* rsa_verify */ | ||
| 823 | }; | ||
| 824 | |||
| 825 | static int | ||
| 826 | cryptodev_dsa_bn_mod_exp(DSA *dsa, BIGNUM *r, BIGNUM *a, const BIGNUM *p, | ||
| 827 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) | ||
| 828 | { | ||
| 829 | return (cryptodev_bn_mod_exp(r, a, p, m, ctx, m_ctx)); | ||
| 830 | } | ||
| 831 | |||
| 832 | static int | ||
| 833 | cryptodev_dsa_dsa_mod_exp(DSA *dsa, BIGNUM *t1, BIGNUM *g, | ||
| 834 | BIGNUM *u1, BIGNUM *pub_key, BIGNUM *u2, BIGNUM *p, | ||
| 835 | BN_CTX *ctx, BN_MONT_CTX *mont) | ||
| 836 | { | ||
| 837 | BIGNUM t2; | ||
| 838 | int ret = 0; | ||
| 839 | |||
| 840 | BN_init(&t2); | ||
| 841 | |||
| 842 | /* v = ( g^u1 * y^u2 mod p ) mod q */ | ||
| 843 | /* let t1 = g ^ u1 mod p */ | ||
| 844 | ret = 0; | ||
| 845 | |||
| 846 | if (!dsa->meth->bn_mod_exp(dsa,t1,dsa->g,u1,dsa->p,ctx,mont)) | ||
| 847 | goto err; | ||
| 848 | |||
| 849 | /* let t2 = y ^ u2 mod p */ | ||
| 850 | if (!dsa->meth->bn_mod_exp(dsa,&t2,dsa->pub_key,u2,dsa->p,ctx,mont)) | ||
| 851 | goto err; | ||
| 852 | /* let u1 = t1 * t2 mod p */ | ||
| 853 | if (!BN_mod_mul(u1,t1,&t2,dsa->p,ctx)) | ||
| 854 | goto err; | ||
| 855 | |||
| 856 | BN_copy(t1,u1); | ||
| 857 | |||
| 858 | ret = 1; | ||
| 859 | err: | ||
| 860 | BN_free(&t2); | ||
| 861 | return(ret); | ||
| 862 | } | ||
| 863 | |||
| 864 | static DSA_SIG * | ||
| 865 | cryptodev_dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa) | ||
| 866 | { | ||
| 867 | struct crypt_kop kop; | ||
| 868 | BIGNUM *r = NULL, *s = NULL; | ||
| 869 | DSA_SIG *dsaret = NULL; | ||
| 870 | |||
| 871 | if ((r = BN_new()) == NULL) | ||
| 872 | goto err; | ||
| 873 | if ((s = BN_new()) == NULL) { | ||
| 874 | BN_free(r); | ||
| 875 | goto err; | ||
| 876 | } | ||
| 877 | |||
| 878 | memset(&kop, 0, sizeof kop); | ||
| 879 | kop.crk_op = CRK_DSA_SIGN; | ||
| 880 | |||
| 881 | /* inputs: dgst dsa->p dsa->q dsa->g dsa->priv_key */ | ||
| 882 | kop.crk_param[0].crp_p = (caddr_t)dgst; | ||
| 883 | kop.crk_param[0].crp_nbits = dlen * 8; | ||
| 884 | if (bn2crparam(dsa->p, &kop.crk_param[1])) | ||
| 885 | goto err; | ||
| 886 | if (bn2crparam(dsa->q, &kop.crk_param[2])) | ||
| 887 | goto err; | ||
| 888 | if (bn2crparam(dsa->g, &kop.crk_param[3])) | ||
| 889 | goto err; | ||
| 890 | if (bn2crparam(dsa->priv_key, &kop.crk_param[4])) | ||
| 891 | goto err; | ||
| 892 | kop.crk_iparams = 5; | ||
| 893 | |||
| 894 | if (cryptodev_asym(&kop, BN_num_bytes(dsa->q), r, | ||
| 895 | BN_num_bytes(dsa->q), s) == 0) { | ||
| 896 | dsaret = DSA_SIG_new(); | ||
| 897 | dsaret->r = r; | ||
| 898 | dsaret->s = s; | ||
| 899 | } else { | ||
| 900 | const DSA_METHOD *meth = DSA_OpenSSL(); | ||
| 901 | BN_free(r); | ||
| 902 | BN_free(s); | ||
| 903 | dsaret = (meth->dsa_do_sign)(dgst, dlen, dsa); | ||
| 904 | } | ||
| 905 | err: | ||
| 906 | kop.crk_param[0].crp_p = NULL; | ||
| 907 | zapparams(&kop); | ||
| 908 | return (dsaret); | ||
| 909 | } | ||
| 910 | |||
| 911 | static int | ||
| 912 | cryptodev_dsa_verify(const unsigned char *dgst, int dlen, | ||
| 913 | DSA_SIG *sig, DSA *dsa) | ||
| 914 | { | ||
| 915 | struct crypt_kop kop; | ||
| 916 | int dsaret = 1; | ||
| 917 | |||
| 918 | memset(&kop, 0, sizeof kop); | ||
| 919 | kop.crk_op = CRK_DSA_VERIFY; | ||
| 920 | |||
| 921 | /* inputs: dgst dsa->p dsa->q dsa->g dsa->pub_key sig->r sig->s */ | ||
| 922 | kop.crk_param[0].crp_p = (caddr_t)dgst; | ||
| 923 | kop.crk_param[0].crp_nbits = dlen * 8; | ||
| 924 | if (bn2crparam(dsa->p, &kop.crk_param[1])) | ||
| 925 | goto err; | ||
| 926 | if (bn2crparam(dsa->q, &kop.crk_param[2])) | ||
| 927 | goto err; | ||
| 928 | if (bn2crparam(dsa->g, &kop.crk_param[3])) | ||
| 929 | goto err; | ||
| 930 | if (bn2crparam(dsa->pub_key, &kop.crk_param[4])) | ||
| 931 | goto err; | ||
| 932 | if (bn2crparam(sig->r, &kop.crk_param[5])) | ||
| 933 | goto err; | ||
| 934 | if (bn2crparam(sig->s, &kop.crk_param[6])) | ||
| 935 | goto err; | ||
| 936 | kop.crk_iparams = 7; | ||
| 937 | |||
| 938 | if (cryptodev_asym(&kop, 0, NULL, 0, NULL) == 0) { | ||
| 939 | dsaret = kop.crk_status; | ||
| 940 | } else { | ||
| 941 | const DSA_METHOD *meth = DSA_OpenSSL(); | ||
| 942 | |||
| 943 | dsaret = (meth->dsa_do_verify)(dgst, dlen, sig, dsa); | ||
| 944 | } | ||
| 945 | err: | ||
| 946 | kop.crk_param[0].crp_p = NULL; | ||
| 947 | zapparams(&kop); | ||
| 948 | return (dsaret); | ||
| 949 | } | ||
| 950 | |||
| 951 | static DSA_METHOD cryptodev_dsa = { | ||
| 952 | "cryptodev DSA method", | ||
| 953 | NULL, | ||
| 954 | NULL, /* dsa_sign_setup */ | ||
| 955 | NULL, | ||
| 956 | NULL, /* dsa_mod_exp */ | ||
| 957 | NULL, | ||
| 958 | NULL, /* init */ | ||
| 959 | NULL, /* finish */ | ||
| 960 | 0, /* flags */ | ||
| 961 | NULL /* app_data */ | ||
| 962 | }; | ||
| 963 | |||
| 964 | static int | ||
| 965 | cryptodev_mod_exp_dh(const DH *dh, BIGNUM *r, const BIGNUM *a, | ||
| 966 | const BIGNUM *p, const BIGNUM *m, BN_CTX *ctx, | ||
| 967 | BN_MONT_CTX *m_ctx) | ||
| 968 | { | ||
| 969 | return (cryptodev_bn_mod_exp(r, a, p, m, ctx, m_ctx)); | ||
| 970 | } | ||
| 971 | |||
| 972 | static int | ||
| 973 | cryptodev_dh_compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh) | ||
| 974 | { | ||
| 975 | struct crypt_kop kop; | ||
| 976 | int dhret = 1; | ||
| 977 | int fd, keylen; | ||
| 978 | |||
| 979 | if ((fd = get_asym_dev_crypto()) < 0) { | ||
| 980 | const DH_METHOD *meth = DH_OpenSSL(); | ||
| 981 | |||
| 982 | return ((meth->compute_key)(key, pub_key, dh)); | ||
| 983 | } | ||
| 984 | |||
| 985 | keylen = BN_num_bits(dh->p); | ||
| 986 | |||
| 987 | memset(&kop, 0, sizeof kop); | ||
| 988 | kop.crk_op = CRK_DH_COMPUTE_KEY; | ||
| 989 | |||
| 990 | /* inputs: dh->priv_key pub_key dh->p key */ | ||
| 991 | if (bn2crparam(dh->priv_key, &kop.crk_param[0])) | ||
| 992 | goto err; | ||
| 993 | if (bn2crparam(pub_key, &kop.crk_param[1])) | ||
| 994 | goto err; | ||
| 995 | if (bn2crparam(dh->p, &kop.crk_param[2])) | ||
| 996 | goto err; | ||
| 997 | kop.crk_iparams = 3; | ||
| 998 | |||
| 999 | kop.crk_param[3].crp_p = key; | ||
| 1000 | kop.crk_param[3].crp_nbits = keylen * 8; | ||
| 1001 | kop.crk_oparams = 1; | ||
| 1002 | |||
| 1003 | if (ioctl(fd, CIOCKEY, &kop) == -1) { | ||
| 1004 | const DH_METHOD *meth = DH_OpenSSL(); | ||
| 1005 | |||
| 1006 | dhret = (meth->compute_key)(key, pub_key, dh); | ||
| 1007 | } | ||
| 1008 | err: | ||
| 1009 | kop.crk_param[3].crp_p = NULL; | ||
| 1010 | zapparams(&kop); | ||
| 1011 | return (dhret); | ||
| 1012 | } | ||
| 1013 | |||
| 1014 | static DH_METHOD cryptodev_dh = { | ||
| 1015 | "cryptodev DH method", | ||
| 1016 | NULL, /* cryptodev_dh_generate_key */ | ||
| 1017 | NULL, | ||
| 1018 | NULL, | ||
| 1019 | NULL, | ||
| 1020 | NULL, | ||
| 1021 | 0, /* flags */ | ||
| 1022 | NULL /* app_data */ | ||
| 1023 | }; | ||
| 1024 | |||
| 1025 | /* | ||
| 1026 | * ctrl right now is just a wrapper that doesn't do much | ||
| 1027 | * but I expect we'll want some options soon. | ||
| 1028 | */ | ||
| 1029 | static int | ||
| 1030 | cryptodev_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | ||
| 1031 | { | ||
| 1032 | #ifdef HAVE_SYSLOG_R | ||
| 1033 | struct syslog_data sd = SYSLOG_DATA_INIT; | ||
| 1034 | #endif | ||
| 1035 | |||
| 1036 | switch (cmd) { | ||
| 1037 | default: | ||
| 1038 | #ifdef HAVE_SYSLOG_R | ||
| 1039 | syslog_r(LOG_ERR, &sd, | ||
| 1040 | "cryptodev_ctrl: unknown command %d", cmd); | ||
| 1041 | #else | ||
| 1042 | syslog(LOG_ERR, "cryptodev_ctrl: unknown command %d", cmd); | ||
| 1043 | #endif | ||
| 1044 | break; | ||
| 1045 | } | ||
| 1046 | return (1); | ||
| 1047 | } | ||
| 1048 | |||
| 1049 | void | ||
| 1050 | ENGINE_load_cryptodev(void) | ||
| 1051 | { | ||
| 1052 | ENGINE *engine = ENGINE_new(); | ||
| 1053 | int fd; | ||
| 1054 | |||
| 1055 | if (engine == NULL) | ||
| 1056 | return; | ||
| 1057 | if ((fd = get_dev_crypto()) < 0) { | ||
| 1058 | ENGINE_free(engine); | ||
| 1059 | return; | ||
| 1060 | } | ||
| 1061 | |||
| 1062 | /* | ||
| 1063 | * find out what asymmetric crypto algorithms we support | ||
| 1064 | */ | ||
| 1065 | if (ioctl(fd, CIOCASYMFEAT, &cryptodev_asymfeat) == -1) { | ||
| 1066 | close(fd); | ||
| 1067 | ENGINE_free(engine); | ||
| 1068 | return; | ||
| 1069 | } | ||
| 1070 | close(fd); | ||
| 1071 | |||
| 1072 | if (!ENGINE_set_id(engine, "cryptodev") || | ||
| 1073 | !ENGINE_set_name(engine, "BSD cryptodev engine") || | ||
| 1074 | !ENGINE_set_ciphers(engine, cryptodev_engine_ciphers) || | ||
| 1075 | !ENGINE_set_digests(engine, cryptodev_engine_digests) || | ||
| 1076 | !ENGINE_set_ctrl_function(engine, cryptodev_ctrl) || | ||
| 1077 | !ENGINE_set_cmd_defns(engine, cryptodev_defns)) { | ||
| 1078 | ENGINE_free(engine); | ||
| 1079 | return; | ||
| 1080 | } | ||
| 1081 | |||
| 1082 | if (ENGINE_set_RSA(engine, &cryptodev_rsa)) { | ||
| 1083 | const RSA_METHOD *rsa_meth = RSA_PKCS1_SSLeay(); | ||
| 1084 | |||
| 1085 | cryptodev_rsa.bn_mod_exp = rsa_meth->bn_mod_exp; | ||
| 1086 | cryptodev_rsa.rsa_mod_exp = rsa_meth->rsa_mod_exp; | ||
| 1087 | cryptodev_rsa.rsa_pub_enc = rsa_meth->rsa_pub_enc; | ||
| 1088 | cryptodev_rsa.rsa_pub_dec = rsa_meth->rsa_pub_dec; | ||
| 1089 | cryptodev_rsa.rsa_priv_enc = rsa_meth->rsa_priv_enc; | ||
| 1090 | cryptodev_rsa.rsa_priv_dec = rsa_meth->rsa_priv_dec; | ||
| 1091 | if (cryptodev_asymfeat & CRF_MOD_EXP) { | ||
| 1092 | cryptodev_rsa.bn_mod_exp = cryptodev_bn_mod_exp; | ||
| 1093 | if (cryptodev_asymfeat & CRF_MOD_EXP_CRT) | ||
| 1094 | cryptodev_rsa.rsa_mod_exp = | ||
| 1095 | cryptodev_rsa_mod_exp; | ||
| 1096 | else | ||
| 1097 | cryptodev_rsa.rsa_mod_exp = | ||
| 1098 | cryptodev_rsa_nocrt_mod_exp; | ||
| 1099 | } | ||
| 1100 | } | ||
| 1101 | |||
| 1102 | if (ENGINE_set_DSA(engine, &cryptodev_dsa)) { | ||
| 1103 | const DSA_METHOD *meth = DSA_OpenSSL(); | ||
| 1104 | |||
| 1105 | memcpy(&cryptodev_dsa, meth, sizeof(DSA_METHOD)); | ||
| 1106 | if (cryptodev_asymfeat & CRF_DSA_SIGN) | ||
| 1107 | cryptodev_dsa.dsa_do_sign = cryptodev_dsa_do_sign; | ||
| 1108 | if (cryptodev_asymfeat & CRF_MOD_EXP) { | ||
| 1109 | cryptodev_dsa.bn_mod_exp = cryptodev_dsa_bn_mod_exp; | ||
| 1110 | cryptodev_dsa.dsa_mod_exp = cryptodev_dsa_dsa_mod_exp; | ||
| 1111 | } | ||
| 1112 | if (cryptodev_asymfeat & CRF_DSA_VERIFY) | ||
| 1113 | cryptodev_dsa.dsa_do_verify = cryptodev_dsa_verify; | ||
| 1114 | } | ||
| 1115 | |||
| 1116 | if (ENGINE_set_DH(engine, &cryptodev_dh)){ | ||
| 1117 | const DH_METHOD *dh_meth = DH_OpenSSL(); | ||
| 1118 | |||
| 1119 | cryptodev_dh.generate_key = dh_meth->generate_key; | ||
| 1120 | cryptodev_dh.compute_key = dh_meth->compute_key; | ||
| 1121 | cryptodev_dh.bn_mod_exp = dh_meth->bn_mod_exp; | ||
| 1122 | if (cryptodev_asymfeat & CRF_MOD_EXP) { | ||
| 1123 | cryptodev_dh.bn_mod_exp = cryptodev_mod_exp_dh; | ||
| 1124 | if (cryptodev_asymfeat & CRF_DH_COMPUTE_KEY) | ||
| 1125 | cryptodev_dh.compute_key = | ||
| 1126 | cryptodev_dh_compute_key; | ||
| 1127 | } | ||
| 1128 | } | ||
| 1129 | |||
| 1130 | ENGINE_add(engine); | ||
| 1131 | ENGINE_free(engine); | ||
| 1132 | ERR_clear_error(); | ||
| 1133 | } | ||
| 1134 | |||
| 1135 | #endif /* HAVE_CRYPTODEV */ | ||
diff --git a/src/lib/libssl/src/crypto/engine/tb_ecdh.c b/src/lib/libssl/src/crypto/engine/tb_ecdh.c new file mode 100644 index 0000000000..c8ec7812c5 --- /dev/null +++ b/src/lib/libssl/src/crypto/engine/tb_ecdh.c | |||
| @@ -0,0 +1,133 @@ | |||
| 1 | /* crypto/engine/tb_ecdh.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED. | ||
| 4 | * | ||
| 5 | * The Elliptic Curve Public-Key Crypto Library (ECC Code) included | ||
| 6 | * herein is developed by SUN MICROSYSTEMS, INC., and is contributed | ||
| 7 | * to the OpenSSL project. | ||
| 8 | * | ||
| 9 | * The ECC Code is licensed pursuant to the OpenSSL open source | ||
| 10 | * license provided below. | ||
| 11 | * | ||
| 12 | * The ECDH engine software is originally written by Nils Gura and | ||
| 13 | * Douglas Stebila of Sun Microsystems Laboratories. | ||
| 14 | * | ||
| 15 | */ | ||
| 16 | /* ==================================================================== | ||
| 17 | * Copyright (c) 2000-2002 The OpenSSL Project. All rights reserved. | ||
| 18 | * | ||
| 19 | * Redistribution and use in source and binary forms, with or without | ||
| 20 | * modification, are permitted provided that the following conditions | ||
| 21 | * are met: | ||
| 22 | * | ||
| 23 | * 1. Redistributions of source code must retain the above copyright | ||
| 24 | * notice, this list of conditions and the following disclaimer. | ||
| 25 | * | ||
| 26 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer in | ||
| 28 | * the documentation and/or other materials provided with the | ||
| 29 | * distribution. | ||
| 30 | * | ||
| 31 | * 3. All advertising materials mentioning features or use of this | ||
| 32 | * software must display the following acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 37 | * endorse or promote products derived from this software without | ||
| 38 | * prior written permission. For written permission, please contact | ||
| 39 | * licensing@OpenSSL.org. | ||
| 40 | * | ||
| 41 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 42 | * nor may "OpenSSL" appear in their names without prior written | ||
| 43 | * permission of the OpenSSL Project. | ||
| 44 | * | ||
| 45 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 46 | * acknowledgment: | ||
| 47 | * "This product includes software developed by the OpenSSL Project | ||
| 48 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 49 | * | ||
| 50 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 51 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 52 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 53 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 54 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 55 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 56 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 57 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 58 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 59 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 60 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 61 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 62 | * ==================================================================== | ||
| 63 | * | ||
| 64 | * This product includes cryptographic software written by Eric Young | ||
| 65 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 66 | * Hudson (tjh@cryptsoft.com). | ||
| 67 | * | ||
| 68 | */ | ||
| 69 | |||
| 70 | #include "eng_int.h" | ||
| 71 | |||
| 72 | /* If this symbol is defined then ENGINE_get_default_ECDH(), the function that is | ||
| 73 | * used by ECDH to hook in implementation code and cache defaults (etc), will | ||
| 74 | * display brief debugging summaries to stderr with the 'nid'. */ | ||
| 75 | /* #define ENGINE_ECDH_DEBUG */ | ||
| 76 | |||
| 77 | static ENGINE_TABLE *ecdh_table = NULL; | ||
| 78 | static const int dummy_nid = 1; | ||
| 79 | |||
| 80 | void ENGINE_unregister_ECDH(ENGINE *e) | ||
| 81 | { | ||
| 82 | engine_table_unregister(&ecdh_table, e); | ||
| 83 | } | ||
| 84 | |||
| 85 | static void engine_unregister_all_ECDH(void) | ||
| 86 | { | ||
| 87 | engine_table_cleanup(&ecdh_table); | ||
| 88 | } | ||
| 89 | |||
| 90 | int ENGINE_register_ECDH(ENGINE *e) | ||
| 91 | { | ||
| 92 | if(e->ecdh_meth) | ||
| 93 | return engine_table_register(&ecdh_table, | ||
| 94 | engine_unregister_all_ECDH, e, &dummy_nid, 1, 0); | ||
| 95 | return 1; | ||
| 96 | } | ||
| 97 | |||
| 98 | void ENGINE_register_all_ECDH() | ||
| 99 | { | ||
| 100 | ENGINE *e; | ||
| 101 | |||
| 102 | for(e=ENGINE_get_first() ; e ; e=ENGINE_get_next(e)) | ||
| 103 | ENGINE_register_ECDH(e); | ||
| 104 | } | ||
| 105 | |||
| 106 | int ENGINE_set_default_ECDH(ENGINE *e) | ||
| 107 | { | ||
| 108 | if(e->ecdh_meth) | ||
| 109 | return engine_table_register(&ecdh_table, | ||
| 110 | engine_unregister_all_ECDH, e, &dummy_nid, 1, 1); | ||
| 111 | return 1; | ||
| 112 | } | ||
| 113 | |||
| 114 | /* Exposed API function to get a functional reference from the implementation | ||
| 115 | * table (ie. try to get a functional reference from the tabled structural | ||
| 116 | * references). */ | ||
| 117 | ENGINE *ENGINE_get_default_ECDH(void) | ||
| 118 | { | ||
| 119 | return engine_table_select(&ecdh_table, dummy_nid); | ||
| 120 | } | ||
| 121 | |||
| 122 | /* Obtains an ECDH implementation from an ENGINE functional reference */ | ||
| 123 | const ECDH_METHOD *ENGINE_get_ECDH(const ENGINE *e) | ||
| 124 | { | ||
| 125 | return e->ecdh_meth; | ||
| 126 | } | ||
| 127 | |||
| 128 | /* Sets an ECDH implementation in an ENGINE structure */ | ||
| 129 | int ENGINE_set_ECDH(ENGINE *e, const ECDH_METHOD *ecdh_meth) | ||
| 130 | { | ||
| 131 | e->ecdh_meth = ecdh_meth; | ||
| 132 | return 1; | ||
| 133 | } | ||
diff --git a/src/lib/libssl/src/crypto/engine/tb_ecdsa.c b/src/lib/libssl/src/crypto/engine/tb_ecdsa.c new file mode 100644 index 0000000000..005ecb622c --- /dev/null +++ b/src/lib/libssl/src/crypto/engine/tb_ecdsa.c | |||
| @@ -0,0 +1,118 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2000-2002 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * licensing@OpenSSL.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * ==================================================================== | ||
| 48 | * | ||
| 49 | * This product includes cryptographic software written by Eric Young | ||
| 50 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 51 | * Hudson (tjh@cryptsoft.com). | ||
| 52 | * | ||
| 53 | */ | ||
| 54 | |||
| 55 | #include "eng_int.h" | ||
| 56 | |||
| 57 | /* If this symbol is defined then ENGINE_get_default_ECDSA(), the function that is | ||
| 58 | * used by ECDSA to hook in implementation code and cache defaults (etc), will | ||
| 59 | * display brief debugging summaries to stderr with the 'nid'. */ | ||
| 60 | /* #define ENGINE_ECDSA_DEBUG */ | ||
| 61 | |||
| 62 | static ENGINE_TABLE *ecdsa_table = NULL; | ||
| 63 | static const int dummy_nid = 1; | ||
| 64 | |||
| 65 | void ENGINE_unregister_ECDSA(ENGINE *e) | ||
| 66 | { | ||
| 67 | engine_table_unregister(&ecdsa_table, e); | ||
| 68 | } | ||
| 69 | |||
| 70 | static void engine_unregister_all_ECDSA(void) | ||
| 71 | { | ||
| 72 | engine_table_cleanup(&ecdsa_table); | ||
| 73 | } | ||
| 74 | |||
| 75 | int ENGINE_register_ECDSA(ENGINE *e) | ||
| 76 | { | ||
| 77 | if(e->ecdsa_meth) | ||
| 78 | return engine_table_register(&ecdsa_table, | ||
| 79 | engine_unregister_all_ECDSA, e, &dummy_nid, 1, 0); | ||
| 80 | return 1; | ||
| 81 | } | ||
| 82 | |||
| 83 | void ENGINE_register_all_ECDSA() | ||
| 84 | { | ||
| 85 | ENGINE *e; | ||
| 86 | |||
| 87 | for(e=ENGINE_get_first() ; e ; e=ENGINE_get_next(e)) | ||
| 88 | ENGINE_register_ECDSA(e); | ||
| 89 | } | ||
| 90 | |||
| 91 | int ENGINE_set_default_ECDSA(ENGINE *e) | ||
| 92 | { | ||
| 93 | if(e->ecdsa_meth) | ||
| 94 | return engine_table_register(&ecdsa_table, | ||
| 95 | engine_unregister_all_ECDSA, e, &dummy_nid, 1, 1); | ||
| 96 | return 1; | ||
| 97 | } | ||
| 98 | |||
| 99 | /* Exposed API function to get a functional reference from the implementation | ||
| 100 | * table (ie. try to get a functional reference from the tabled structural | ||
| 101 | * references). */ | ||
| 102 | ENGINE *ENGINE_get_default_ECDSA(void) | ||
| 103 | { | ||
| 104 | return engine_table_select(&ecdsa_table, dummy_nid); | ||
| 105 | } | ||
| 106 | |||
| 107 | /* Obtains an ECDSA implementation from an ENGINE functional reference */ | ||
| 108 | const ECDSA_METHOD *ENGINE_get_ECDSA(const ENGINE *e) | ||
| 109 | { | ||
| 110 | return e->ecdsa_meth; | ||
| 111 | } | ||
| 112 | |||
| 113 | /* Sets an ECDSA implementation in an ENGINE structure */ | ||
| 114 | int ENGINE_set_ECDSA(ENGINE *e, const ECDSA_METHOD *ecdsa_meth) | ||
| 115 | { | ||
| 116 | e->ecdsa_meth = ecdsa_meth; | ||
| 117 | return 1; | ||
| 118 | } | ||
diff --git a/src/lib/libssl/src/crypto/engine/tb_store.c b/src/lib/libssl/src/crypto/engine/tb_store.c new file mode 100644 index 0000000000..8cc435c935 --- /dev/null +++ b/src/lib/libssl/src/crypto/engine/tb_store.c | |||
| @@ -0,0 +1,123 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * licensing@OpenSSL.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * ==================================================================== | ||
| 48 | * | ||
| 49 | * This product includes cryptographic software written by Eric Young | ||
| 50 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 51 | * Hudson (tjh@cryptsoft.com). | ||
| 52 | * | ||
| 53 | */ | ||
| 54 | |||
| 55 | #include "eng_int.h" | ||
| 56 | |||
| 57 | /* If this symbol is defined then ENGINE_get_default_STORE(), the function that is | ||
| 58 | * used by STORE to hook in implementation code and cache defaults (etc), will | ||
| 59 | * display brief debugging summaries to stderr with the 'nid'. */ | ||
| 60 | /* #define ENGINE_STORE_DEBUG */ | ||
| 61 | |||
| 62 | static ENGINE_TABLE *store_table = NULL; | ||
| 63 | static const int dummy_nid = 1; | ||
| 64 | |||
| 65 | void ENGINE_unregister_STORE(ENGINE *e) | ||
| 66 | { | ||
| 67 | engine_table_unregister(&store_table, e); | ||
| 68 | } | ||
| 69 | |||
| 70 | static void engine_unregister_all_STORE(void) | ||
| 71 | { | ||
| 72 | engine_table_cleanup(&store_table); | ||
| 73 | } | ||
| 74 | |||
| 75 | int ENGINE_register_STORE(ENGINE *e) | ||
| 76 | { | ||
| 77 | if(e->store_meth) | ||
| 78 | return engine_table_register(&store_table, | ||
| 79 | engine_unregister_all_STORE, e, &dummy_nid, 1, 0); | ||
| 80 | return 1; | ||
| 81 | } | ||
| 82 | |||
| 83 | void ENGINE_register_all_STORE() | ||
| 84 | { | ||
| 85 | ENGINE *e; | ||
| 86 | |||
| 87 | for(e=ENGINE_get_first() ; e ; e=ENGINE_get_next(e)) | ||
| 88 | ENGINE_register_STORE(e); | ||
| 89 | } | ||
| 90 | |||
| 91 | /* The following two functions are removed because they're useless. */ | ||
| 92 | #if 0 | ||
| 93 | int ENGINE_set_default_STORE(ENGINE *e) | ||
| 94 | { | ||
| 95 | if(e->store_meth) | ||
| 96 | return engine_table_register(&store_table, | ||
| 97 | engine_unregister_all_STORE, e, &dummy_nid, 1, 1); | ||
| 98 | return 1; | ||
| 99 | } | ||
| 100 | #endif | ||
| 101 | |||
| 102 | #if 0 | ||
| 103 | /* Exposed API function to get a functional reference from the implementation | ||
| 104 | * table (ie. try to get a functional reference from the tabled structural | ||
| 105 | * references). */ | ||
| 106 | ENGINE *ENGINE_get_default_STORE(void) | ||
| 107 | { | ||
| 108 | return engine_table_select(&store_table, dummy_nid); | ||
| 109 | } | ||
| 110 | #endif | ||
| 111 | |||
| 112 | /* Obtains an STORE implementation from an ENGINE functional reference */ | ||
| 113 | const STORE_METHOD *ENGINE_get_STORE(const ENGINE *e) | ||
| 114 | { | ||
| 115 | return e->store_meth; | ||
| 116 | } | ||
| 117 | |||
| 118 | /* Sets an STORE implementation in an ENGINE structure */ | ||
| 119 | int ENGINE_set_STORE(ENGINE *e, const STORE_METHOD *store_meth) | ||
| 120 | { | ||
| 121 | e->store_meth = store_meth; | ||
| 122 | return 1; | ||
| 123 | } | ||
diff --git a/src/lib/libssl/src/crypto/evp/e_camellia.c b/src/lib/libssl/src/crypto/evp/e_camellia.c new file mode 100644 index 0000000000..a7b40d1c60 --- /dev/null +++ b/src/lib/libssl/src/crypto/evp/e_camellia.c | |||
| @@ -0,0 +1,131 @@ | |||
| 1 | /* crypto/evp/e_camellia.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | #include <openssl/opensslconf.h> | ||
| 57 | #ifndef OPENSSL_NO_CAMELLIA | ||
| 58 | #include <openssl/evp.h> | ||
| 59 | #include <openssl/err.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <assert.h> | ||
| 62 | #include <openssl/camellia.h> | ||
| 63 | #include "evp_locl.h" | ||
| 64 | |||
| 65 | static int camellia_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, | ||
| 66 | const unsigned char *iv, int enc); | ||
| 67 | |||
| 68 | /* Camellia subkey Structure */ | ||
| 69 | typedef struct | ||
| 70 | { | ||
| 71 | CAMELLIA_KEY ks; | ||
| 72 | } EVP_CAMELLIA_KEY; | ||
| 73 | |||
| 74 | /* Attribute operation for Camellia */ | ||
| 75 | #define data(ctx) EVP_C_DATA(EVP_CAMELLIA_KEY,ctx) | ||
| 76 | |||
| 77 | IMPLEMENT_BLOCK_CIPHER(camellia_128, ks, Camellia, EVP_CAMELLIA_KEY, | ||
| 78 | NID_camellia_128, 16, 16, 16, 128, | ||
| 79 | 0, camellia_init_key, NULL, | ||
| 80 | EVP_CIPHER_set_asn1_iv, | ||
| 81 | EVP_CIPHER_get_asn1_iv, | ||
| 82 | NULL) | ||
| 83 | IMPLEMENT_BLOCK_CIPHER(camellia_192, ks, Camellia, EVP_CAMELLIA_KEY, | ||
| 84 | NID_camellia_192, 16, 24, 16, 128, | ||
| 85 | 0, camellia_init_key, NULL, | ||
| 86 | EVP_CIPHER_set_asn1_iv, | ||
| 87 | EVP_CIPHER_get_asn1_iv, | ||
| 88 | NULL) | ||
| 89 | IMPLEMENT_BLOCK_CIPHER(camellia_256, ks, Camellia, EVP_CAMELLIA_KEY, | ||
| 90 | NID_camellia_256, 16, 32, 16, 128, | ||
| 91 | 0, camellia_init_key, NULL, | ||
| 92 | EVP_CIPHER_set_asn1_iv, | ||
| 93 | EVP_CIPHER_get_asn1_iv, | ||
| 94 | NULL) | ||
| 95 | |||
| 96 | #define IMPLEMENT_CAMELLIA_CFBR(ksize,cbits) IMPLEMENT_CFBR(camellia,Camellia,EVP_CAMELLIA_KEY,ks,ksize,cbits,16) | ||
| 97 | |||
| 98 | IMPLEMENT_CAMELLIA_CFBR(128,1) | ||
| 99 | IMPLEMENT_CAMELLIA_CFBR(192,1) | ||
| 100 | IMPLEMENT_CAMELLIA_CFBR(256,1) | ||
| 101 | |||
| 102 | IMPLEMENT_CAMELLIA_CFBR(128,8) | ||
| 103 | IMPLEMENT_CAMELLIA_CFBR(192,8) | ||
| 104 | IMPLEMENT_CAMELLIA_CFBR(256,8) | ||
| 105 | |||
| 106 | |||
| 107 | |||
| 108 | /* The subkey for Camellia is generated. */ | ||
| 109 | static int camellia_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, | ||
| 110 | const unsigned char *iv, int enc) | ||
| 111 | { | ||
| 112 | int ret; | ||
| 113 | |||
| 114 | ret=Camellia_set_key(key, ctx->key_len * 8, ctx->cipher_data); | ||
| 115 | |||
| 116 | if(ret < 0) | ||
| 117 | { | ||
| 118 | EVPerr(EVP_F_CAMELLIA_INIT_KEY,EVP_R_CAMELLIA_KEY_SETUP_FAILED); | ||
| 119 | return 0; | ||
| 120 | } | ||
| 121 | |||
| 122 | return 1; | ||
| 123 | } | ||
| 124 | |||
| 125 | #else | ||
| 126 | |||
| 127 | # ifdef PEDANTIC | ||
| 128 | static void *dummy=&dummy; | ||
| 129 | # endif | ||
| 130 | |||
| 131 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_sha1_selftest.c b/src/lib/libssl/src/crypto/evp/e_seed.c index 73a65cdc06..8c1ec0d43a 100644 --- a/src/lib/libssl/src/fips-1.0/sha/fips_sha1_selftest.c +++ b/src/lib/libssl/src/crypto/evp/e_seed.c | |||
| @@ -1,5 +1,6 @@ | |||
| 1 | /* crypto/evp/e_seed.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 1 | /* ==================================================================== | 2 | /* ==================================================================== |
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 2007 The OpenSSL Project. All rights reserved. |
| 3 | * | 4 | * |
| 4 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 5 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -44,53 +45,39 @@ | |||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. |
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 47 | * | 53 | * |
| 48 | */ | 54 | */ |
| 49 | 55 | ||
| 50 | #include <string.h> | 56 | #include <openssl/opensslconf.h> |
| 57 | #include <openssl/evp.h> | ||
| 51 | #include <openssl/err.h> | 58 | #include <openssl/err.h> |
| 52 | #include <openssl/fips.h> | 59 | #include <string.h> |
| 53 | #include <openssl/fips_sha.h> | 60 | #include <assert.h> |
| 54 | 61 | #ifndef OPENSSL_NO_SEED | |
| 55 | #ifdef OPENSSL_FIPS | 62 | #include <openssl/seed.h> |
| 56 | static char test[][60]= | 63 | #include "evp_locl.h" |
| 57 | { | ||
| 58 | "", | ||
| 59 | "abc", | ||
| 60 | "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq" | ||
| 61 | }; | ||
| 62 | 64 | ||
| 63 | static const unsigned char ret[][SHA_DIGEST_LENGTH]= | 65 | static int seed_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, const unsigned char *iv, int enc); |
| 64 | { | ||
| 65 | { 0xda,0x39,0xa3,0xee,0x5e,0x6b,0x4b,0x0d,0x32,0x55, | ||
| 66 | 0xbf,0xef,0x95,0x60,0x18,0x90,0xaf,0xd8,0x07,0x09 }, | ||
| 67 | { 0xa9,0x99,0x3e,0x36,0x47,0x06,0x81,0x6a,0xba,0x3e, | ||
| 68 | 0x25,0x71,0x78,0x50,0xc2,0x6c,0x9c,0xd0,0xd8,0x9d }, | ||
| 69 | { 0x84,0x98,0x3e,0x44,0x1c,0x3b,0xd2,0x6e,0xba,0xae, | ||
| 70 | 0x4a,0xa1,0xf9,0x51,0x29,0xe5,0xe5,0x46,0x70,0xf1 }, | ||
| 71 | }; | ||
| 72 | 66 | ||
| 73 | void FIPS_corrupt_sha1() | 67 | typedef struct |
| 74 | { | 68 | { |
| 75 | test[2][0]++; | 69 | SEED_KEY_SCHEDULE ks; |
| 76 | } | 70 | } EVP_SEED_KEY; |
| 77 | 71 | ||
| 78 | int FIPS_selftest_sha1() | 72 | IMPLEMENT_BLOCK_CIPHER(seed, ks, SEED, EVP_SEED_KEY, NID_seed, |
| 79 | { | 73 | 16, 16, 16, 128, |
| 80 | int n; | 74 | 0, seed_init_key, 0, 0, 0, 0) |
| 81 | 75 | ||
| 82 | for(n=0 ; n<sizeof(test)/sizeof(test[0]) ; ++n) | 76 | static int seed_init_key(EVP_CIPHER_CTX *ctx, const unsigned char *key, |
| 77 | const unsigned char *iv, int enc) | ||
| 83 | { | 78 | { |
| 84 | unsigned char md[SHA_DIGEST_LENGTH]; | 79 | SEED_set_key(key, ctx->cipher_data); |
| 85 | 80 | return 1; | |
| 86 | SHA1((unsigned char*)test[n],strlen(test[n]),md); | ||
| 87 | if(memcmp(md,ret[n],sizeof md)) | ||
| 88 | { | ||
| 89 | FIPSerr(FIPS_F_FIPS_SELFTEST_SHA,FIPS_R_SELFTEST_FAILED); | ||
| 90 | return 0; | ||
| 91 | } | ||
| 92 | } | 81 | } |
| 93 | return 1; | ||
| 94 | } | ||
| 95 | 82 | ||
| 96 | #endif | 83 | #endif |
diff --git a/src/lib/libssl/src/crypto/evp/m_ecdsa.c b/src/lib/libssl/src/crypto/evp/m_ecdsa.c new file mode 100644 index 0000000000..fad270faca --- /dev/null +++ b/src/lib/libssl/src/crypto/evp/m_ecdsa.c | |||
| @@ -0,0 +1,148 @@ | |||
| 1 | /* crypto/evp/m_ecdsa.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 56 | * All rights reserved. | ||
| 57 | * | ||
| 58 | * This package is an SSL implementation written | ||
| 59 | * by Eric Young (eay@cryptsoft.com). | ||
| 60 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 61 | * | ||
| 62 | * This library is free for commercial and non-commercial use as long as | ||
| 63 | * the following conditions are aheared to. The following conditions | ||
| 64 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 65 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 66 | * included with this distribution is covered by the same copyright terms | ||
| 67 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 68 | * | ||
| 69 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 70 | * the code are not to be removed. | ||
| 71 | * If this package is used in a product, Eric Young should be given attribution | ||
| 72 | * as the author of the parts of the library used. | ||
| 73 | * This can be in the form of a textual message at program startup or | ||
| 74 | * in documentation (online or textual) provided with the package. | ||
| 75 | * | ||
| 76 | * Redistribution and use in source and binary forms, with or without | ||
| 77 | * modification, are permitted provided that the following conditions | ||
| 78 | * are met: | ||
| 79 | * 1. Redistributions of source code must retain the copyright | ||
| 80 | * notice, this list of conditions and the following disclaimer. | ||
| 81 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 82 | * notice, this list of conditions and the following disclaimer in the | ||
| 83 | * documentation and/or other materials provided with the distribution. | ||
| 84 | * 3. All advertising materials mentioning features or use of this software | ||
| 85 | * must display the following acknowledgement: | ||
| 86 | * "This product includes cryptographic software written by | ||
| 87 | * Eric Young (eay@cryptsoft.com)" | ||
| 88 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 89 | * being used are not cryptographic related :-). | ||
| 90 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 91 | * the apps directory (application code) you must include an acknowledgement: | ||
| 92 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 93 | * | ||
| 94 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 95 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 96 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 97 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 98 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 99 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 100 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 101 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 102 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 103 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 104 | * SUCH DAMAGE. | ||
| 105 | * | ||
| 106 | * The licence and distribution terms for any publically available version or | ||
| 107 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 108 | * copied and put under another distribution licence | ||
| 109 | * [including the GNU Public Licence.] | ||
| 110 | */ | ||
| 111 | |||
| 112 | #include <stdio.h> | ||
| 113 | #include "cryptlib.h" | ||
| 114 | #include <openssl/evp.h> | ||
| 115 | #include <openssl/objects.h> | ||
| 116 | #include <openssl/x509.h> | ||
| 117 | |||
| 118 | #ifndef OPENSSL_NO_SHA | ||
| 119 | static int init(EVP_MD_CTX *ctx) | ||
| 120 | { return SHA1_Init(ctx->md_data); } | ||
| 121 | |||
| 122 | static int update(EVP_MD_CTX *ctx,const void *data,size_t count) | ||
| 123 | { return SHA1_Update(ctx->md_data,data,count); } | ||
| 124 | |||
| 125 | static int final(EVP_MD_CTX *ctx,unsigned char *md) | ||
| 126 | { return SHA1_Final(md,ctx->md_data); } | ||
| 127 | |||
| 128 | static const EVP_MD ecdsa_md= | ||
| 129 | { | ||
| 130 | NID_ecdsa_with_SHA1, | ||
| 131 | NID_ecdsa_with_SHA1, | ||
| 132 | SHA_DIGEST_LENGTH, | ||
| 133 | 0, | ||
| 134 | init, | ||
| 135 | update, | ||
| 136 | final, | ||
| 137 | NULL, | ||
| 138 | NULL, | ||
| 139 | EVP_PKEY_ECDSA_method, | ||
| 140 | SHA_CBLOCK, | ||
| 141 | sizeof(EVP_MD *)+sizeof(SHA_CTX), | ||
| 142 | }; | ||
| 143 | |||
| 144 | const EVP_MD *EVP_ecdsa(void) | ||
| 145 | { | ||
| 146 | return(&ecdsa_md); | ||
| 147 | } | ||
| 148 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/ia64cpuid.S b/src/lib/libssl/src/crypto/ia64cpuid.S new file mode 100644 index 0000000000..04fbb3439e --- /dev/null +++ b/src/lib/libssl/src/crypto/ia64cpuid.S | |||
| @@ -0,0 +1,121 @@ | |||
| 1 | // Works on all IA-64 platforms: Linux, HP-UX, Win64i... | ||
| 2 | // On Win64i compile with ias.exe. | ||
| 3 | .text | ||
| 4 | .global OPENSSL_rdtsc# | ||
| 5 | .proc OPENSSL_rdtsc# | ||
| 6 | OPENSSL_rdtsc: | ||
| 7 | { .mib; mov r8=ar.itc | ||
| 8 | br.ret.sptk.many b0 };; | ||
| 9 | .endp OPENSSL_rdtsc# | ||
| 10 | |||
| 11 | .global OPENSSL_atomic_add# | ||
| 12 | .proc OPENSSL_atomic_add# | ||
| 13 | .align 32 | ||
| 14 | OPENSSL_atomic_add: | ||
| 15 | { .mii; ld4 r2=[r32] | ||
| 16 | nop.i 0 | ||
| 17 | nop.i 0 };; | ||
| 18 | .Lspin: | ||
| 19 | { .mii; mov ar.ccv=r2 | ||
| 20 | add r8=r2,r33 | ||
| 21 | mov r3=r2 };; | ||
| 22 | { .mmi; mf | ||
| 23 | cmpxchg4.acq r2=[r32],r8,ar.ccv | ||
| 24 | nop.i 0 };; | ||
| 25 | { .mib; cmp.ne p6,p0=r2,r3 | ||
| 26 | nop.i 0 | ||
| 27 | (p6) br.dpnt .Lspin };; | ||
| 28 | { .mib; nop.m 0 | ||
| 29 | sxt4 r8=r8 | ||
| 30 | br.ret.sptk.many b0 };; | ||
| 31 | .endp OPENSSL_atomic_add# | ||
| 32 | |||
| 33 | // Returns a structure comprising pointer to the top of stack of | ||
| 34 | // the caller and pointer beyond backing storage for the current | ||
| 35 | // register frame. The latter is required, because it might be | ||
| 36 | // insufficient to wipe backing storage for the current frame | ||
| 37 | // (as this procedure does), one might have to go further, toward | ||
| 38 | // higher addresses to reach for whole "retroactively" saved | ||
| 39 | // context... | ||
| 40 | .global OPENSSL_wipe_cpu# | ||
| 41 | .proc OPENSSL_wipe_cpu# | ||
| 42 | .align 32 | ||
| 43 | OPENSSL_wipe_cpu: | ||
| 44 | .prologue | ||
| 45 | .fframe 0 | ||
| 46 | .save ar.pfs,r2 | ||
| 47 | .save ar.lc,r3 | ||
| 48 | { .mib; alloc r2=ar.pfs,0,96,0,96 | ||
| 49 | mov r3=ar.lc | ||
| 50 | brp.loop.imp .L_wipe_top,.L_wipe_end-16 | ||
| 51 | };; | ||
| 52 | { .mii; mov r9=ar.bsp | ||
| 53 | mov r8=pr | ||
| 54 | mov ar.lc=96 };; | ||
| 55 | .body | ||
| 56 | { .mii; add r9=96*8-8,r9 | ||
| 57 | mov ar.ec=1 };; | ||
| 58 | |||
| 59 | // One can sweep double as fast, but then we can't quarantee | ||
| 60 | // that backing storage is wiped... | ||
| 61 | .L_wipe_top: | ||
| 62 | { .mfi; st8 [r9]=r0,-8 | ||
| 63 | mov f127=f0 | ||
| 64 | mov r127=r0 } | ||
| 65 | { .mfb; nop.m 0 | ||
| 66 | nop.f 0 | ||
| 67 | br.ctop.sptk .L_wipe_top };; | ||
| 68 | .L_wipe_end: | ||
| 69 | |||
| 70 | { .mfi; mov r11=r0 | ||
| 71 | mov f6=f0 | ||
| 72 | mov r14=r0 } | ||
| 73 | { .mfi; mov r15=r0 | ||
| 74 | mov f7=f0 | ||
| 75 | mov r16=r0 } | ||
| 76 | { .mfi; mov r17=r0 | ||
| 77 | mov f8=f0 | ||
| 78 | mov r18=r0 } | ||
| 79 | { .mfi; mov r19=r0 | ||
| 80 | mov f9=f0 | ||
| 81 | mov r20=r0 } | ||
| 82 | { .mfi; mov r21=r0 | ||
| 83 | mov f10=f0 | ||
| 84 | mov r22=r0 } | ||
| 85 | { .mfi; mov r23=r0 | ||
| 86 | mov f11=f0 | ||
| 87 | mov r24=r0 } | ||
| 88 | { .mfi; mov r25=r0 | ||
| 89 | mov f12=f0 | ||
| 90 | mov r26=r0 } | ||
| 91 | { .mfi; mov r27=r0 | ||
| 92 | mov f13=f0 | ||
| 93 | mov r28=r0 } | ||
| 94 | { .mfi; mov r29=r0 | ||
| 95 | mov f14=f0 | ||
| 96 | mov r30=r0 } | ||
| 97 | { .mfi; mov r31=r0 | ||
| 98 | mov f15=f0 | ||
| 99 | nop.i 0 } | ||
| 100 | { .mfi; mov f16=f0 } | ||
| 101 | { .mfi; mov f17=f0 } | ||
| 102 | { .mfi; mov f18=f0 } | ||
| 103 | { .mfi; mov f19=f0 } | ||
| 104 | { .mfi; mov f20=f0 } | ||
| 105 | { .mfi; mov f21=f0 } | ||
| 106 | { .mfi; mov f22=f0 } | ||
| 107 | { .mfi; mov f23=f0 } | ||
| 108 | { .mfi; mov f24=f0 } | ||
| 109 | { .mfi; mov f25=f0 } | ||
| 110 | { .mfi; mov f26=f0 } | ||
| 111 | { .mfi; mov f27=f0 } | ||
| 112 | { .mfi; mov f28=f0 } | ||
| 113 | { .mfi; mov f29=f0 } | ||
| 114 | { .mfi; mov f30=f0 } | ||
| 115 | { .mfi; add r9=96*8+8,r9 | ||
| 116 | mov f31=f0 | ||
| 117 | mov pr=r8,0x1ffff } | ||
| 118 | { .mib; mov r8=sp | ||
| 119 | mov ar.lc=r3 | ||
| 120 | br.ret.sptk b0 };; | ||
| 121 | .endp OPENSSL_wipe_cpu# | ||
diff --git a/src/lib/libssl/src/crypto/md5/asm/md5-sparcv9.S b/src/lib/libssl/src/crypto/md5/asm/md5-sparcv9.S deleted file mode 100644 index db45aa4c97..0000000000 --- a/src/lib/libssl/src/crypto/md5/asm/md5-sparcv9.S +++ /dev/null | |||
| @@ -1,1031 +0,0 @@ | |||
| 1 | .ident "md5-sparcv9.S, Version 1.0" | ||
| 2 | .ident "SPARC V9 ISA artwork by Andy Polyakov <appro@fy.chalmers.se>" | ||
| 3 | .file "md5-sparcv9.S" | ||
| 4 | |||
| 5 | /* | ||
| 6 | * ==================================================================== | ||
| 7 | * Copyright (c) 1999 Andy Polyakov <appro@fy.chalmers.se>. | ||
| 8 | * | ||
| 9 | * Rights for redistribution and usage in source and binary forms are | ||
| 10 | * granted as long as above copyright notices are retained. Warranty | ||
| 11 | * of any kind is (of course:-) disclaimed. | ||
| 12 | * ==================================================================== | ||
| 13 | */ | ||
| 14 | |||
| 15 | /* | ||
| 16 | * This is my modest contribution to OpenSSL project (see | ||
| 17 | * http://www.openssl.org/ for more information about it) and is an | ||
| 18 | * assembler implementation of MD5 block hash function. I've hand-coded | ||
| 19 | * this for the sole reason to reach UltraSPARC-specific "load in | ||
| 20 | * little-endian byte order" instruction. This gives up to 15% | ||
| 21 | * performance improvement for cases when input message is aligned at | ||
| 22 | * 32 bits boundary. The module was tested under both 32 *and* 64 bit | ||
| 23 | * kernels. For updates see http://fy.chalmers.se/~appro/hpe/. | ||
| 24 | * | ||
| 25 | * To compile with SC4.x/SC5.x: | ||
| 26 | * | ||
| 27 | * cc -xarch=v[9|8plus] -DOPENSSL_SYSNAME_ULTRASPARC -DMD5_BLOCK_DATA_ORDER \ | ||
| 28 | * -c md5-sparcv9.S | ||
| 29 | * | ||
| 30 | * and with gcc: | ||
| 31 | * | ||
| 32 | * gcc -mcpu=ultrasparc -DOPENSSL_SYSNAME_ULTRASPARC -DMD5_BLOCK_DATA_ORDER \ | ||
| 33 | * -c md5-sparcv9.S | ||
| 34 | * | ||
| 35 | * or if above fails (it does if you have gas): | ||
| 36 | * | ||
| 37 | * gcc -E -DOPENSSL_SYSNAMEULTRASPARC -DMD5_BLOCK_DATA_ORDER md5_block.sparc.S | \ | ||
| 38 | * as -xarch=v8plus /dev/fd/0 -o md5-sparcv9.o | ||
| 39 | */ | ||
| 40 | |||
| 41 | #include <openssl/e_os2.h> | ||
| 42 | |||
| 43 | #define A %o0 | ||
| 44 | #define B %o1 | ||
| 45 | #define C %o2 | ||
| 46 | #define D %o3 | ||
| 47 | #define T1 %o4 | ||
| 48 | #define T2 %o5 | ||
| 49 | |||
| 50 | #define R0 %l0 | ||
| 51 | #define R1 %l1 | ||
| 52 | #define R2 %l2 | ||
| 53 | #define R3 %l3 | ||
| 54 | #define R4 %l4 | ||
| 55 | #define R5 %l5 | ||
| 56 | #define R6 %l6 | ||
| 57 | #define R7 %l7 | ||
| 58 | #define R8 %i3 | ||
| 59 | #define R9 %i4 | ||
| 60 | #define R10 %i5 | ||
| 61 | #define R11 %g1 | ||
| 62 | #define R12 %g2 | ||
| 63 | #define R13 %g3 | ||
| 64 | #define RX %g4 | ||
| 65 | |||
| 66 | #define Aptr %i0+0 | ||
| 67 | #define Bptr %i0+4 | ||
| 68 | #define Cptr %i0+8 | ||
| 69 | #define Dptr %i0+12 | ||
| 70 | |||
| 71 | #define Aval R5 /* those not used at the end of the last round */ | ||
| 72 | #define Bval R6 | ||
| 73 | #define Cval R7 | ||
| 74 | #define Dval R8 | ||
| 75 | |||
| 76 | #if defined(MD5_BLOCK_DATA_ORDER) | ||
| 77 | # if defined(OPENSSL_SYSNAME_ULTRASPARC) | ||
| 78 | # define LOAD lda | ||
| 79 | # define X(i) [%i1+i*4]%asi | ||
| 80 | # define md5_block md5_block_asm_data_order_aligned | ||
| 81 | # define ASI_PRIMARY_LITTLE 0x88 | ||
| 82 | # else | ||
| 83 | # error "MD5_BLOCK_DATA_ORDER is supported only on UltraSPARC!" | ||
| 84 | # endif | ||
| 85 | #else | ||
| 86 | # define LOAD ld | ||
| 87 | # define X(i) [%i1+i*4] | ||
| 88 | # define md5_block md5_block_asm_host_order | ||
| 89 | #endif | ||
| 90 | |||
| 91 | .section ".text",#alloc,#execinstr | ||
| 92 | |||
| 93 | #if defined(__SUNPRO_C) && defined(__sparcv9) | ||
| 94 | /* They've said -xarch=v9 at command line */ | ||
| 95 | .register %g2,#scratch | ||
| 96 | .register %g3,#scratch | ||
| 97 | # define FRAME -192 | ||
| 98 | #elif defined(__GNUC__) && defined(__arch64__) | ||
| 99 | /* They've said -m64 at command line */ | ||
| 100 | .register %g2,#scratch | ||
| 101 | .register %g3,#scratch | ||
| 102 | # define FRAME -192 | ||
| 103 | #else | ||
| 104 | # define FRAME -96 | ||
| 105 | #endif | ||
| 106 | |||
| 107 | .align 32 | ||
| 108 | |||
| 109 | .global md5_block | ||
| 110 | md5_block: | ||
| 111 | save %sp,FRAME,%sp | ||
| 112 | |||
| 113 | ld [Dptr],D | ||
| 114 | ld [Cptr],C | ||
| 115 | ld [Bptr],B | ||
| 116 | ld [Aptr],A | ||
| 117 | #ifdef ASI_PRIMARY_LITTLE | ||
| 118 | rd %asi,%o7 ! How dare I? Well, I just do:-) | ||
| 119 | wr %g0,ASI_PRIMARY_LITTLE,%asi | ||
| 120 | #endif | ||
| 121 | LOAD X(0),R0 | ||
| 122 | |||
| 123 | .Lmd5_block_loop: | ||
| 124 | |||
| 125 | !!!!!!!!Round 0 | ||
| 126 | |||
| 127 | xor C,D,T1 | ||
| 128 | sethi %hi(0xd76aa478),T2 | ||
| 129 | and T1,B,T1 | ||
| 130 | or T2,%lo(0xd76aa478),T2 != | ||
| 131 | xor T1,D,T1 | ||
| 132 | add T1,R0,T1 | ||
| 133 | LOAD X(1),R1 | ||
| 134 | add T1,T2,T1 != | ||
| 135 | add A,T1,A | ||
| 136 | sll A,7,T2 | ||
| 137 | srl A,32-7,A | ||
| 138 | or A,T2,A != | ||
| 139 | xor B,C,T1 | ||
| 140 | add A,B,A | ||
| 141 | |||
| 142 | sethi %hi(0xe8c7b756),T2 | ||
| 143 | and T1,A,T1 != | ||
| 144 | or T2,%lo(0xe8c7b756),T2 | ||
| 145 | xor T1,C,T1 | ||
| 146 | LOAD X(2),R2 | ||
| 147 | add T1,R1,T1 != | ||
| 148 | add T1,T2,T1 | ||
| 149 | add D,T1,D | ||
| 150 | sll D,12,T2 | ||
| 151 | srl D,32-12,D != | ||
| 152 | or D,T2,D | ||
| 153 | xor A,B,T1 | ||
| 154 | add D,A,D | ||
| 155 | |||
| 156 | sethi %hi(0x242070db),T2 != | ||
| 157 | and T1,D,T1 | ||
| 158 | or T2,%lo(0x242070db),T2 | ||
| 159 | xor T1,B,T1 | ||
| 160 | add T1,R2,T1 != | ||
| 161 | LOAD X(3),R3 | ||
| 162 | add T1,T2,T1 | ||
| 163 | add C,T1,C | ||
| 164 | sll C,17,T2 != | ||
| 165 | srl C,32-17,C | ||
| 166 | or C,T2,C | ||
| 167 | xor D,A,T1 | ||
| 168 | add C,D,C != | ||
| 169 | |||
| 170 | sethi %hi(0xc1bdceee),T2 | ||
| 171 | and T1,C,T1 | ||
| 172 | or T2,%lo(0xc1bdceee),T2 | ||
| 173 | xor T1,A,T1 != | ||
| 174 | add T1,R3,T1 | ||
| 175 | LOAD X(4),R4 | ||
| 176 | add T1,T2,T1 | ||
| 177 | add B,T1,B != | ||
| 178 | sll B,22,T2 | ||
| 179 | srl B,32-22,B | ||
| 180 | or B,T2,B | ||
| 181 | xor C,D,T1 != | ||
| 182 | add B,C,B | ||
| 183 | |||
| 184 | sethi %hi(0xf57c0faf),T2 | ||
| 185 | and T1,B,T1 | ||
| 186 | or T2,%lo(0xf57c0faf),T2 != | ||
| 187 | xor T1,D,T1 | ||
| 188 | add T1,R4,T1 | ||
| 189 | LOAD X(5),R5 | ||
| 190 | add T1,T2,T1 != | ||
| 191 | add A,T1,A | ||
| 192 | sll A,7,T2 | ||
| 193 | srl A,32-7,A | ||
| 194 | or A,T2,A != | ||
| 195 | xor B,C,T1 | ||
| 196 | add A,B,A | ||
| 197 | |||
| 198 | sethi %hi(0x4787c62a),T2 | ||
| 199 | and T1,A,T1 != | ||
| 200 | or T2,%lo(0x4787c62a),T2 | ||
| 201 | xor T1,C,T1 | ||
| 202 | LOAD X(6),R6 | ||
| 203 | add T1,R5,T1 != | ||
| 204 | add T1,T2,T1 | ||
| 205 | add D,T1,D | ||
| 206 | sll D,12,T2 | ||
| 207 | srl D,32-12,D != | ||
| 208 | or D,T2,D | ||
| 209 | xor A,B,T1 | ||
| 210 | add D,A,D | ||
| 211 | |||
| 212 | sethi %hi(0xa8304613),T2 != | ||
| 213 | and T1,D,T1 | ||
| 214 | or T2,%lo(0xa8304613),T2 | ||
| 215 | xor T1,B,T1 | ||
| 216 | add T1,R6,T1 != | ||
| 217 | LOAD X(7),R7 | ||
| 218 | add T1,T2,T1 | ||
| 219 | add C,T1,C | ||
| 220 | sll C,17,T2 != | ||
| 221 | srl C,32-17,C | ||
| 222 | or C,T2,C | ||
| 223 | xor D,A,T1 | ||
| 224 | add C,D,C != | ||
| 225 | |||
| 226 | sethi %hi(0xfd469501),T2 | ||
| 227 | and T1,C,T1 | ||
| 228 | or T2,%lo(0xfd469501),T2 | ||
| 229 | xor T1,A,T1 != | ||
| 230 | add T1,R7,T1 | ||
| 231 | LOAD X(8),R8 | ||
| 232 | add T1,T2,T1 | ||
| 233 | add B,T1,B != | ||
| 234 | sll B,22,T2 | ||
| 235 | srl B,32-22,B | ||
| 236 | or B,T2,B | ||
| 237 | xor C,D,T1 != | ||
| 238 | add B,C,B | ||
| 239 | |||
| 240 | sethi %hi(0x698098d8),T2 | ||
| 241 | and T1,B,T1 | ||
| 242 | or T2,%lo(0x698098d8),T2 != | ||
| 243 | xor T1,D,T1 | ||
| 244 | add T1,R8,T1 | ||
| 245 | LOAD X(9),R9 | ||
| 246 | add T1,T2,T1 != | ||
| 247 | add A,T1,A | ||
| 248 | sll A,7,T2 | ||
| 249 | srl A,32-7,A | ||
| 250 | or A,T2,A != | ||
| 251 | xor B,C,T1 | ||
| 252 | add A,B,A | ||
| 253 | |||
| 254 | sethi %hi(0x8b44f7af),T2 | ||
| 255 | and T1,A,T1 != | ||
| 256 | or T2,%lo(0x8b44f7af),T2 | ||
| 257 | xor T1,C,T1 | ||
| 258 | LOAD X(10),R10 | ||
| 259 | add T1,R9,T1 != | ||
| 260 | add T1,T2,T1 | ||
| 261 | add D,T1,D | ||
| 262 | sll D,12,T2 | ||
| 263 | srl D,32-12,D != | ||
| 264 | or D,T2,D | ||
| 265 | xor A,B,T1 | ||
| 266 | add D,A,D | ||
| 267 | |||
| 268 | sethi %hi(0xffff5bb1),T2 != | ||
| 269 | and T1,D,T1 | ||
| 270 | or T2,%lo(0xffff5bb1),T2 | ||
| 271 | xor T1,B,T1 | ||
| 272 | add T1,R10,T1 != | ||
| 273 | LOAD X(11),R11 | ||
| 274 | add T1,T2,T1 | ||
| 275 | add C,T1,C | ||
| 276 | sll C,17,T2 != | ||
| 277 | srl C,32-17,C | ||
| 278 | or C,T2,C | ||
| 279 | xor D,A,T1 | ||
| 280 | add C,D,C != | ||
| 281 | |||
| 282 | sethi %hi(0x895cd7be),T2 | ||
| 283 | and T1,C,T1 | ||
| 284 | or T2,%lo(0x895cd7be),T2 | ||
| 285 | xor T1,A,T1 != | ||
| 286 | add T1,R11,T1 | ||
| 287 | LOAD X(12),R12 | ||
| 288 | add T1,T2,T1 | ||
| 289 | add B,T1,B != | ||
| 290 | sll B,22,T2 | ||
| 291 | srl B,32-22,B | ||
| 292 | or B,T2,B | ||
| 293 | xor C,D,T1 != | ||
| 294 | add B,C,B | ||
| 295 | |||
| 296 | sethi %hi(0x6b901122),T2 | ||
| 297 | and T1,B,T1 | ||
| 298 | or T2,%lo(0x6b901122),T2 != | ||
| 299 | xor T1,D,T1 | ||
| 300 | add T1,R12,T1 | ||
| 301 | LOAD X(13),R13 | ||
| 302 | add T1,T2,T1 != | ||
| 303 | add A,T1,A | ||
| 304 | sll A,7,T2 | ||
| 305 | srl A,32-7,A | ||
| 306 | or A,T2,A != | ||
| 307 | xor B,C,T1 | ||
| 308 | add A,B,A | ||
| 309 | |||
| 310 | sethi %hi(0xfd987193),T2 | ||
| 311 | and T1,A,T1 != | ||
| 312 | or T2,%lo(0xfd987193),T2 | ||
| 313 | xor T1,C,T1 | ||
| 314 | LOAD X(14),RX | ||
| 315 | add T1,R13,T1 != | ||
| 316 | add T1,T2,T1 | ||
| 317 | add D,T1,D | ||
| 318 | sll D,12,T2 | ||
| 319 | srl D,32-12,D != | ||
| 320 | or D,T2,D | ||
| 321 | xor A,B,T1 | ||
| 322 | add D,A,D | ||
| 323 | |||
| 324 | sethi %hi(0xa679438e),T2 != | ||
| 325 | and T1,D,T1 | ||
| 326 | or T2,%lo(0xa679438e),T2 | ||
| 327 | xor T1,B,T1 | ||
| 328 | add T1,RX,T1 != | ||
| 329 | LOAD X(15),RX | ||
| 330 | add T1,T2,T1 | ||
| 331 | add C,T1,C | ||
| 332 | sll C,17,T2 != | ||
| 333 | srl C,32-17,C | ||
| 334 | or C,T2,C | ||
| 335 | xor D,A,T1 | ||
| 336 | add C,D,C != | ||
| 337 | |||
| 338 | sethi %hi(0x49b40821),T2 | ||
| 339 | and T1,C,T1 | ||
| 340 | or T2,%lo(0x49b40821),T2 | ||
| 341 | xor T1,A,T1 != | ||
| 342 | add T1,RX,T1 | ||
| 343 | !pre-LOADed X(1),R1 | ||
| 344 | add T1,T2,T1 | ||
| 345 | add B,T1,B | ||
| 346 | sll B,22,T2 != | ||
| 347 | srl B,32-22,B | ||
| 348 | or B,T2,B | ||
| 349 | add B,C,B | ||
| 350 | |||
| 351 | !!!!!!!!Round 1 | ||
| 352 | |||
| 353 | xor B,C,T1 != | ||
| 354 | sethi %hi(0xf61e2562),T2 | ||
| 355 | and T1,D,T1 | ||
| 356 | or T2,%lo(0xf61e2562),T2 | ||
| 357 | xor T1,C,T1 != | ||
| 358 | add T1,R1,T1 | ||
| 359 | !pre-LOADed X(6),R6 | ||
| 360 | add T1,T2,T1 | ||
| 361 | add A,T1,A | ||
| 362 | sll A,5,T2 != | ||
| 363 | srl A,32-5,A | ||
| 364 | or A,T2,A | ||
| 365 | add A,B,A | ||
| 366 | |||
| 367 | xor A,B,T1 != | ||
| 368 | sethi %hi(0xc040b340),T2 | ||
| 369 | and T1,C,T1 | ||
| 370 | or T2,%lo(0xc040b340),T2 | ||
| 371 | xor T1,B,T1 != | ||
| 372 | add T1,R6,T1 | ||
| 373 | !pre-LOADed X(11),R11 | ||
| 374 | add T1,T2,T1 | ||
| 375 | add D,T1,D | ||
| 376 | sll D,9,T2 != | ||
| 377 | srl D,32-9,D | ||
| 378 | or D,T2,D | ||
| 379 | add D,A,D | ||
| 380 | |||
| 381 | xor D,A,T1 != | ||
| 382 | sethi %hi(0x265e5a51),T2 | ||
| 383 | and T1,B,T1 | ||
| 384 | or T2,%lo(0x265e5a51),T2 | ||
| 385 | xor T1,A,T1 != | ||
| 386 | add T1,R11,T1 | ||
| 387 | !pre-LOADed X(0),R0 | ||
| 388 | add T1,T2,T1 | ||
| 389 | add C,T1,C | ||
| 390 | sll C,14,T2 != | ||
| 391 | srl C,32-14,C | ||
| 392 | or C,T2,C | ||
| 393 | add C,D,C | ||
| 394 | |||
| 395 | xor C,D,T1 != | ||
| 396 | sethi %hi(0xe9b6c7aa),T2 | ||
| 397 | and T1,A,T1 | ||
| 398 | or T2,%lo(0xe9b6c7aa),T2 | ||
| 399 | xor T1,D,T1 != | ||
| 400 | add T1,R0,T1 | ||
| 401 | !pre-LOADed X(5),R5 | ||
| 402 | add T1,T2,T1 | ||
| 403 | add B,T1,B | ||
| 404 | sll B,20,T2 != | ||
| 405 | srl B,32-20,B | ||
| 406 | or B,T2,B | ||
| 407 | add B,C,B | ||
| 408 | |||
| 409 | xor B,C,T1 != | ||
| 410 | sethi %hi(0xd62f105d),T2 | ||
| 411 | and T1,D,T1 | ||
| 412 | or T2,%lo(0xd62f105d),T2 | ||
| 413 | xor T1,C,T1 != | ||
| 414 | add T1,R5,T1 | ||
| 415 | !pre-LOADed X(10),R10 | ||
| 416 | add T1,T2,T1 | ||
| 417 | add A,T1,A | ||
| 418 | sll A,5,T2 != | ||
| 419 | srl A,32-5,A | ||
| 420 | or A,T2,A | ||
| 421 | add A,B,A | ||
| 422 | |||
| 423 | xor A,B,T1 != | ||
| 424 | sethi %hi(0x02441453),T2 | ||
| 425 | and T1,C,T1 | ||
| 426 | or T2,%lo(0x02441453),T2 | ||
| 427 | xor T1,B,T1 != | ||
| 428 | add T1,R10,T1 | ||
| 429 | LOAD X(15),RX | ||
| 430 | add T1,T2,T1 | ||
| 431 | add D,T1,D != | ||
| 432 | sll D,9,T2 | ||
| 433 | srl D,32-9,D | ||
| 434 | or D,T2,D | ||
| 435 | add D,A,D != | ||
| 436 | |||
| 437 | xor D,A,T1 | ||
| 438 | sethi %hi(0xd8a1e681),T2 | ||
| 439 | and T1,B,T1 | ||
| 440 | or T2,%lo(0xd8a1e681),T2 != | ||
| 441 | xor T1,A,T1 | ||
| 442 | add T1,RX,T1 | ||
| 443 | !pre-LOADed X(4),R4 | ||
| 444 | add T1,T2,T1 | ||
| 445 | add C,T1,C != | ||
| 446 | sll C,14,T2 | ||
| 447 | srl C,32-14,C | ||
| 448 | or C,T2,C | ||
| 449 | add C,D,C != | ||
| 450 | |||
| 451 | xor C,D,T1 | ||
| 452 | sethi %hi(0xe7d3fbc8),T2 | ||
| 453 | and T1,A,T1 | ||
| 454 | or T2,%lo(0xe7d3fbc8),T2 != | ||
| 455 | xor T1,D,T1 | ||
| 456 | add T1,R4,T1 | ||
| 457 | !pre-LOADed X(9),R9 | ||
| 458 | add T1,T2,T1 | ||
| 459 | add B,T1,B != | ||
| 460 | sll B,20,T2 | ||
| 461 | srl B,32-20,B | ||
| 462 | or B,T2,B | ||
| 463 | add B,C,B != | ||
| 464 | |||
| 465 | xor B,C,T1 | ||
| 466 | sethi %hi(0x21e1cde6),T2 | ||
| 467 | and T1,D,T1 | ||
| 468 | or T2,%lo(0x21e1cde6),T2 != | ||
| 469 | xor T1,C,T1 | ||
| 470 | add T1,R9,T1 | ||
| 471 | LOAD X(14),RX | ||
| 472 | add T1,T2,T1 != | ||
| 473 | add A,T1,A | ||
| 474 | sll A,5,T2 | ||
| 475 | srl A,32-5,A | ||
| 476 | or A,T2,A != | ||
| 477 | add A,B,A | ||
| 478 | |||
| 479 | xor A,B,T1 | ||
| 480 | sethi %hi(0xc33707d6),T2 | ||
| 481 | and T1,C,T1 != | ||
| 482 | or T2,%lo(0xc33707d6),T2 | ||
| 483 | xor T1,B,T1 | ||
| 484 | add T1,RX,T1 | ||
| 485 | !pre-LOADed X(3),R3 | ||
| 486 | add T1,T2,T1 != | ||
| 487 | add D,T1,D | ||
| 488 | sll D,9,T2 | ||
| 489 | srl D,32-9,D | ||
| 490 | or D,T2,D != | ||
| 491 | add D,A,D | ||
| 492 | |||
| 493 | xor D,A,T1 | ||
| 494 | sethi %hi(0xf4d50d87),T2 | ||
| 495 | and T1,B,T1 != | ||
| 496 | or T2,%lo(0xf4d50d87),T2 | ||
| 497 | xor T1,A,T1 | ||
| 498 | add T1,R3,T1 | ||
| 499 | !pre-LOADed X(8),R8 | ||
| 500 | add T1,T2,T1 != | ||
| 501 | add C,T1,C | ||
| 502 | sll C,14,T2 | ||
| 503 | srl C,32-14,C | ||
| 504 | or C,T2,C != | ||
| 505 | add C,D,C | ||
| 506 | |||
| 507 | xor C,D,T1 | ||
| 508 | sethi %hi(0x455a14ed),T2 | ||
| 509 | and T1,A,T1 != | ||
| 510 | or T2,%lo(0x455a14ed),T2 | ||
| 511 | xor T1,D,T1 | ||
| 512 | add T1,R8,T1 | ||
| 513 | !pre-LOADed X(13),R13 | ||
| 514 | add T1,T2,T1 != | ||
| 515 | add B,T1,B | ||
| 516 | sll B,20,T2 | ||
| 517 | srl B,32-20,B | ||
| 518 | or B,T2,B != | ||
| 519 | add B,C,B | ||
| 520 | |||
| 521 | xor B,C,T1 | ||
| 522 | sethi %hi(0xa9e3e905),T2 | ||
| 523 | and T1,D,T1 != | ||
| 524 | or T2,%lo(0xa9e3e905),T2 | ||
| 525 | xor T1,C,T1 | ||
| 526 | add T1,R13,T1 | ||
| 527 | !pre-LOADed X(2),R2 | ||
| 528 | add T1,T2,T1 != | ||
| 529 | add A,T1,A | ||
| 530 | sll A,5,T2 | ||
| 531 | srl A,32-5,A | ||
| 532 | or A,T2,A != | ||
| 533 | add A,B,A | ||
| 534 | |||
| 535 | xor A,B,T1 | ||
| 536 | sethi %hi(0xfcefa3f8),T2 | ||
| 537 | and T1,C,T1 != | ||
| 538 | or T2,%lo(0xfcefa3f8),T2 | ||
| 539 | xor T1,B,T1 | ||
| 540 | add T1,R2,T1 | ||
| 541 | !pre-LOADed X(7),R7 | ||
| 542 | add T1,T2,T1 != | ||
| 543 | add D,T1,D | ||
| 544 | sll D,9,T2 | ||
| 545 | srl D,32-9,D | ||
| 546 | or D,T2,D != | ||
| 547 | add D,A,D | ||
| 548 | |||
| 549 | xor D,A,T1 | ||
| 550 | sethi %hi(0x676f02d9),T2 | ||
| 551 | and T1,B,T1 != | ||
| 552 | or T2,%lo(0x676f02d9),T2 | ||
| 553 | xor T1,A,T1 | ||
| 554 | add T1,R7,T1 | ||
| 555 | !pre-LOADed X(12),R12 | ||
| 556 | add T1,T2,T1 != | ||
| 557 | add C,T1,C | ||
| 558 | sll C,14,T2 | ||
| 559 | srl C,32-14,C | ||
| 560 | or C,T2,C != | ||
| 561 | add C,D,C | ||
| 562 | |||
| 563 | xor C,D,T1 | ||
| 564 | sethi %hi(0x8d2a4c8a),T2 | ||
| 565 | and T1,A,T1 != | ||
| 566 | or T2,%lo(0x8d2a4c8a),T2 | ||
| 567 | xor T1,D,T1 | ||
| 568 | add T1,R12,T1 | ||
| 569 | !pre-LOADed X(5),R5 | ||
| 570 | add T1,T2,T1 != | ||
| 571 | add B,T1,B | ||
| 572 | sll B,20,T2 | ||
| 573 | srl B,32-20,B | ||
| 574 | or B,T2,B != | ||
| 575 | add B,C,B | ||
| 576 | |||
| 577 | !!!!!!!!Round 2 | ||
| 578 | |||
| 579 | xor B,C,T1 | ||
| 580 | sethi %hi(0xfffa3942),T2 | ||
| 581 | xor T1,D,T1 != | ||
| 582 | or T2,%lo(0xfffa3942),T2 | ||
| 583 | add T1,R5,T1 | ||
| 584 | !pre-LOADed X(8),R8 | ||
| 585 | add T1,T2,T1 | ||
| 586 | add A,T1,A != | ||
| 587 | sll A,4,T2 | ||
| 588 | srl A,32-4,A | ||
| 589 | or A,T2,A | ||
| 590 | add A,B,A != | ||
| 591 | |||
| 592 | xor A,B,T1 | ||
| 593 | sethi %hi(0x8771f681),T2 | ||
| 594 | xor T1,C,T1 | ||
| 595 | or T2,%lo(0x8771f681),T2 != | ||
| 596 | add T1,R8,T1 | ||
| 597 | !pre-LOADed X(11),R11 | ||
| 598 | add T1,T2,T1 | ||
| 599 | add D,T1,D | ||
| 600 | sll D,11,T2 != | ||
| 601 | srl D,32-11,D | ||
| 602 | or D,T2,D | ||
| 603 | add D,A,D | ||
| 604 | |||
| 605 | xor D,A,T1 != | ||
| 606 | sethi %hi(0x6d9d6122),T2 | ||
| 607 | xor T1,B,T1 | ||
| 608 | or T2,%lo(0x6d9d6122),T2 | ||
| 609 | add T1,R11,T1 != | ||
| 610 | LOAD X(14),RX | ||
| 611 | add T1,T2,T1 | ||
| 612 | add C,T1,C | ||
| 613 | sll C,16,T2 != | ||
| 614 | srl C,32-16,C | ||
| 615 | or C,T2,C | ||
| 616 | add C,D,C | ||
| 617 | |||
| 618 | xor C,D,T1 != | ||
| 619 | sethi %hi(0xfde5380c),T2 | ||
| 620 | xor T1,A,T1 | ||
| 621 | or T2,%lo(0xfde5380c),T2 | ||
| 622 | add T1,RX,T1 != | ||
| 623 | !pre-LOADed X(1),R1 | ||
| 624 | add T1,T2,T1 | ||
| 625 | add B,T1,B | ||
| 626 | sll B,23,T2 | ||
| 627 | srl B,32-23,B != | ||
| 628 | or B,T2,B | ||
| 629 | add B,C,B | ||
| 630 | |||
| 631 | xor B,C,T1 | ||
| 632 | sethi %hi(0xa4beea44),T2 != | ||
| 633 | xor T1,D,T1 | ||
| 634 | or T2,%lo(0xa4beea44),T2 | ||
| 635 | add T1,R1,T1 | ||
| 636 | !pre-LOADed X(4),R4 | ||
| 637 | add T1,T2,T1 != | ||
| 638 | add A,T1,A | ||
| 639 | sll A,4,T2 | ||
| 640 | srl A,32-4,A | ||
| 641 | or A,T2,A != | ||
| 642 | add A,B,A | ||
| 643 | |||
| 644 | xor A,B,T1 | ||
| 645 | sethi %hi(0x4bdecfa9),T2 | ||
| 646 | xor T1,C,T1 != | ||
| 647 | or T2,%lo(0x4bdecfa9),T2 | ||
| 648 | add T1,R4,T1 | ||
| 649 | !pre-LOADed X(7),R7 | ||
| 650 | add T1,T2,T1 | ||
| 651 | add D,T1,D != | ||
| 652 | sll D,11,T2 | ||
| 653 | srl D,32-11,D | ||
| 654 | or D,T2,D | ||
| 655 | add D,A,D != | ||
| 656 | |||
| 657 | xor D,A,T1 | ||
| 658 | sethi %hi(0xf6bb4b60),T2 | ||
| 659 | xor T1,B,T1 | ||
| 660 | or T2,%lo(0xf6bb4b60),T2 != | ||
| 661 | add T1,R7,T1 | ||
| 662 | !pre-LOADed X(10),R10 | ||
| 663 | add T1,T2,T1 | ||
| 664 | add C,T1,C | ||
| 665 | sll C,16,T2 != | ||
| 666 | srl C,32-16,C | ||
| 667 | or C,T2,C | ||
| 668 | add C,D,C | ||
| 669 | |||
| 670 | xor C,D,T1 != | ||
| 671 | sethi %hi(0xbebfbc70),T2 | ||
| 672 | xor T1,A,T1 | ||
| 673 | or T2,%lo(0xbebfbc70),T2 | ||
| 674 | add T1,R10,T1 != | ||
| 675 | !pre-LOADed X(13),R13 | ||
| 676 | add T1,T2,T1 | ||
| 677 | add B,T1,B | ||
| 678 | sll B,23,T2 | ||
| 679 | srl B,32-23,B != | ||
| 680 | or B,T2,B | ||
| 681 | add B,C,B | ||
| 682 | |||
| 683 | xor B,C,T1 | ||
| 684 | sethi %hi(0x289b7ec6),T2 != | ||
| 685 | xor T1,D,T1 | ||
| 686 | or T2,%lo(0x289b7ec6),T2 | ||
| 687 | add T1,R13,T1 | ||
| 688 | !pre-LOADed X(0),R0 | ||
| 689 | add T1,T2,T1 != | ||
| 690 | add A,T1,A | ||
| 691 | sll A,4,T2 | ||
| 692 | srl A,32-4,A | ||
| 693 | or A,T2,A != | ||
| 694 | add A,B,A | ||
| 695 | |||
| 696 | xor A,B,T1 | ||
| 697 | sethi %hi(0xeaa127fa),T2 | ||
| 698 | xor T1,C,T1 != | ||
| 699 | or T2,%lo(0xeaa127fa),T2 | ||
| 700 | add T1,R0,T1 | ||
| 701 | !pre-LOADed X(3),R3 | ||
| 702 | add T1,T2,T1 | ||
| 703 | add D,T1,D != | ||
| 704 | sll D,11,T2 | ||
| 705 | srl D,32-11,D | ||
| 706 | or D,T2,D | ||
| 707 | add D,A,D != | ||
| 708 | |||
| 709 | xor D,A,T1 | ||
| 710 | sethi %hi(0xd4ef3085),T2 | ||
| 711 | xor T1,B,T1 | ||
| 712 | or T2,%lo(0xd4ef3085),T2 != | ||
| 713 | add T1,R3,T1 | ||
| 714 | !pre-LOADed X(6),R6 | ||
| 715 | add T1,T2,T1 | ||
| 716 | add C,T1,C | ||
| 717 | sll C,16,T2 != | ||
| 718 | srl C,32-16,C | ||
| 719 | or C,T2,C | ||
| 720 | add C,D,C | ||
| 721 | |||
| 722 | xor C,D,T1 != | ||
| 723 | sethi %hi(0x04881d05),T2 | ||
| 724 | xor T1,A,T1 | ||
| 725 | or T2,%lo(0x04881d05),T2 | ||
| 726 | add T1,R6,T1 != | ||
| 727 | !pre-LOADed X(9),R9 | ||
| 728 | add T1,T2,T1 | ||
| 729 | add B,T1,B | ||
| 730 | sll B,23,T2 | ||
| 731 | srl B,32-23,B != | ||
| 732 | or B,T2,B | ||
| 733 | add B,C,B | ||
| 734 | |||
| 735 | xor B,C,T1 | ||
| 736 | sethi %hi(0xd9d4d039),T2 != | ||
| 737 | xor T1,D,T1 | ||
| 738 | or T2,%lo(0xd9d4d039),T2 | ||
| 739 | add T1,R9,T1 | ||
| 740 | !pre-LOADed X(12),R12 | ||
| 741 | add T1,T2,T1 != | ||
| 742 | add A,T1,A | ||
| 743 | sll A,4,T2 | ||
| 744 | srl A,32-4,A | ||
| 745 | or A,T2,A != | ||
| 746 | add A,B,A | ||
| 747 | |||
| 748 | xor A,B,T1 | ||
| 749 | sethi %hi(0xe6db99e5),T2 | ||
| 750 | xor T1,C,T1 != | ||
| 751 | or T2,%lo(0xe6db99e5),T2 | ||
| 752 | add T1,R12,T1 | ||
| 753 | LOAD X(15),RX | ||
| 754 | add T1,T2,T1 != | ||
| 755 | add D,T1,D | ||
| 756 | sll D,11,T2 | ||
| 757 | srl D,32-11,D | ||
| 758 | or D,T2,D != | ||
| 759 | add D,A,D | ||
| 760 | |||
| 761 | xor D,A,T1 | ||
| 762 | sethi %hi(0x1fa27cf8),T2 | ||
| 763 | xor T1,B,T1 != | ||
| 764 | or T2,%lo(0x1fa27cf8),T2 | ||
| 765 | add T1,RX,T1 | ||
| 766 | !pre-LOADed X(2),R2 | ||
| 767 | add T1,T2,T1 | ||
| 768 | add C,T1,C != | ||
| 769 | sll C,16,T2 | ||
| 770 | srl C,32-16,C | ||
| 771 | or C,T2,C | ||
| 772 | add C,D,C != | ||
| 773 | |||
| 774 | xor C,D,T1 | ||
| 775 | sethi %hi(0xc4ac5665),T2 | ||
| 776 | xor T1,A,T1 | ||
| 777 | or T2,%lo(0xc4ac5665),T2 != | ||
| 778 | add T1,R2,T1 | ||
| 779 | !pre-LOADed X(0),R0 | ||
| 780 | add T1,T2,T1 | ||
| 781 | add B,T1,B | ||
| 782 | sll B,23,T2 != | ||
| 783 | srl B,32-23,B | ||
| 784 | or B,T2,B | ||
| 785 | add B,C,B | ||
| 786 | |||
| 787 | !!!!!!!!Round 3 | ||
| 788 | |||
| 789 | orn B,D,T1 != | ||
| 790 | sethi %hi(0xf4292244),T2 | ||
| 791 | xor T1,C,T1 | ||
| 792 | or T2,%lo(0xf4292244),T2 | ||
| 793 | add T1,R0,T1 != | ||
| 794 | !pre-LOADed X(7),R7 | ||
| 795 | add T1,T2,T1 | ||
| 796 | add A,T1,A | ||
| 797 | sll A,6,T2 | ||
| 798 | srl A,32-6,A != | ||
| 799 | or A,T2,A | ||
| 800 | add A,B,A | ||
| 801 | |||
| 802 | orn A,C,T1 | ||
| 803 | sethi %hi(0x432aff97),T2 != | ||
| 804 | xor T1,B,T1 | ||
| 805 | or T2,%lo(0x432aff97),T2 | ||
| 806 | LOAD X(14),RX | ||
| 807 | add T1,R7,T1 != | ||
| 808 | add T1,T2,T1 | ||
| 809 | add D,T1,D | ||
| 810 | sll D,10,T2 | ||
| 811 | srl D,32-10,D != | ||
| 812 | or D,T2,D | ||
| 813 | add D,A,D | ||
| 814 | |||
| 815 | orn D,B,T1 | ||
| 816 | sethi %hi(0xab9423a7),T2 != | ||
| 817 | xor T1,A,T1 | ||
| 818 | or T2,%lo(0xab9423a7),T2 | ||
| 819 | add T1,RX,T1 | ||
| 820 | !pre-LOADed X(5),R5 | ||
| 821 | add T1,T2,T1 != | ||
| 822 | add C,T1,C | ||
| 823 | sll C,15,T2 | ||
| 824 | srl C,32-15,C | ||
| 825 | or C,T2,C != | ||
| 826 | add C,D,C | ||
| 827 | |||
| 828 | orn C,A,T1 | ||
| 829 | sethi %hi(0xfc93a039),T2 | ||
| 830 | xor T1,D,T1 != | ||
| 831 | or T2,%lo(0xfc93a039),T2 | ||
| 832 | add T1,R5,T1 | ||
| 833 | !pre-LOADed X(12),R12 | ||
| 834 | add T1,T2,T1 | ||
| 835 | add B,T1,B != | ||
| 836 | sll B,21,T2 | ||
| 837 | srl B,32-21,B | ||
| 838 | or B,T2,B | ||
| 839 | add B,C,B != | ||
| 840 | |||
| 841 | orn B,D,T1 | ||
| 842 | sethi %hi(0x655b59c3),T2 | ||
| 843 | xor T1,C,T1 | ||
| 844 | or T2,%lo(0x655b59c3),T2 != | ||
| 845 | add T1,R12,T1 | ||
| 846 | !pre-LOADed X(3),R3 | ||
| 847 | add T1,T2,T1 | ||
| 848 | add A,T1,A | ||
| 849 | sll A,6,T2 != | ||
| 850 | srl A,32-6,A | ||
| 851 | or A,T2,A | ||
| 852 | add A,B,A | ||
| 853 | |||
| 854 | orn A,C,T1 != | ||
| 855 | sethi %hi(0x8f0ccc92),T2 | ||
| 856 | xor T1,B,T1 | ||
| 857 | or T2,%lo(0x8f0ccc92),T2 | ||
| 858 | add T1,R3,T1 != | ||
| 859 | !pre-LOADed X(10),R10 | ||
| 860 | add T1,T2,T1 | ||
| 861 | add D,T1,D | ||
| 862 | sll D,10,T2 | ||
| 863 | srl D,32-10,D != | ||
| 864 | or D,T2,D | ||
| 865 | add D,A,D | ||
| 866 | |||
| 867 | orn D,B,T1 | ||
| 868 | sethi %hi(0xffeff47d),T2 != | ||
| 869 | xor T1,A,T1 | ||
| 870 | or T2,%lo(0xffeff47d),T2 | ||
| 871 | add T1,R10,T1 | ||
| 872 | !pre-LOADed X(1),R1 | ||
| 873 | add T1,T2,T1 != | ||
| 874 | add C,T1,C | ||
| 875 | sll C,15,T2 | ||
| 876 | srl C,32-15,C | ||
| 877 | or C,T2,C != | ||
| 878 | add C,D,C | ||
| 879 | |||
| 880 | orn C,A,T1 | ||
| 881 | sethi %hi(0x85845dd1),T2 | ||
| 882 | xor T1,D,T1 != | ||
| 883 | or T2,%lo(0x85845dd1),T2 | ||
| 884 | add T1,R1,T1 | ||
| 885 | !pre-LOADed X(8),R8 | ||
| 886 | add T1,T2,T1 | ||
| 887 | add B,T1,B != | ||
| 888 | sll B,21,T2 | ||
| 889 | srl B,32-21,B | ||
| 890 | or B,T2,B | ||
| 891 | add B,C,B != | ||
| 892 | |||
| 893 | orn B,D,T1 | ||
| 894 | sethi %hi(0x6fa87e4f),T2 | ||
| 895 | xor T1,C,T1 | ||
| 896 | or T2,%lo(0x6fa87e4f),T2 != | ||
| 897 | add T1,R8,T1 | ||
| 898 | LOAD X(15),RX | ||
| 899 | add T1,T2,T1 | ||
| 900 | add A,T1,A != | ||
| 901 | sll A,6,T2 | ||
| 902 | srl A,32-6,A | ||
| 903 | or A,T2,A | ||
| 904 | add A,B,A != | ||
| 905 | |||
| 906 | orn A,C,T1 | ||
| 907 | sethi %hi(0xfe2ce6e0),T2 | ||
| 908 | xor T1,B,T1 | ||
| 909 | or T2,%lo(0xfe2ce6e0),T2 != | ||
| 910 | add T1,RX,T1 | ||
| 911 | !pre-LOADed X(6),R6 | ||
| 912 | add T1,T2,T1 | ||
| 913 | add D,T1,D | ||
| 914 | sll D,10,T2 != | ||
| 915 | srl D,32-10,D | ||
| 916 | or D,T2,D | ||
| 917 | add D,A,D | ||
| 918 | |||
| 919 | orn D,B,T1 != | ||
| 920 | sethi %hi(0xa3014314),T2 | ||
| 921 | xor T1,A,T1 | ||
| 922 | or T2,%lo(0xa3014314),T2 | ||
| 923 | add T1,R6,T1 != | ||
| 924 | !pre-LOADed X(13),R13 | ||
| 925 | add T1,T2,T1 | ||
| 926 | add C,T1,C | ||
| 927 | sll C,15,T2 | ||
| 928 | srl C,32-15,C != | ||
| 929 | or C,T2,C | ||
| 930 | add C,D,C | ||
| 931 | |||
| 932 | orn C,A,T1 | ||
| 933 | sethi %hi(0x4e0811a1),T2 != | ||
| 934 | xor T1,D,T1 | ||
| 935 | or T2,%lo(0x4e0811a1),T2 | ||
| 936 | !pre-LOADed X(4),R4 | ||
| 937 | ld [Aptr],Aval | ||
| 938 | add T1,R13,T1 != | ||
| 939 | add T1,T2,T1 | ||
| 940 | add B,T1,B | ||
| 941 | sll B,21,T2 | ||
| 942 | srl B,32-21,B != | ||
| 943 | or B,T2,B | ||
| 944 | add B,C,B | ||
| 945 | |||
| 946 | orn B,D,T1 | ||
| 947 | sethi %hi(0xf7537e82),T2 != | ||
| 948 | xor T1,C,T1 | ||
| 949 | or T2,%lo(0xf7537e82),T2 | ||
| 950 | !pre-LOADed X(11),R11 | ||
| 951 | ld [Dptr],Dval | ||
| 952 | add T1,R4,T1 != | ||
| 953 | add T1,T2,T1 | ||
| 954 | add A,T1,A | ||
| 955 | sll A,6,T2 | ||
| 956 | srl A,32-6,A != | ||
| 957 | or A,T2,A | ||
| 958 | add A,B,A | ||
| 959 | |||
| 960 | orn A,C,T1 | ||
| 961 | sethi %hi(0xbd3af235),T2 != | ||
| 962 | xor T1,B,T1 | ||
| 963 | or T2,%lo(0xbd3af235),T2 | ||
| 964 | !pre-LOADed X(2),R2 | ||
| 965 | ld [Cptr],Cval | ||
| 966 | add T1,R11,T1 != | ||
| 967 | add T1,T2,T1 | ||
| 968 | add D,T1,D | ||
| 969 | sll D,10,T2 | ||
| 970 | srl D,32-10,D != | ||
| 971 | or D,T2,D | ||
| 972 | add D,A,D | ||
| 973 | |||
| 974 | orn D,B,T1 | ||
| 975 | sethi %hi(0x2ad7d2bb),T2 != | ||
| 976 | xor T1,A,T1 | ||
| 977 | or T2,%lo(0x2ad7d2bb),T2 | ||
| 978 | !pre-LOADed X(9),R9 | ||
| 979 | ld [Bptr],Bval | ||
| 980 | add T1,R2,T1 != | ||
| 981 | add Aval,A,Aval | ||
| 982 | add T1,T2,T1 | ||
| 983 | st Aval,[Aptr] | ||
| 984 | add C,T1,C != | ||
| 985 | sll C,15,T2 | ||
| 986 | add Dval,D,Dval | ||
| 987 | srl C,32-15,C | ||
| 988 | or C,T2,C != | ||
| 989 | st Dval,[Dptr] | ||
| 990 | add C,D,C | ||
| 991 | |||
| 992 | orn C,A,T1 | ||
| 993 | sethi %hi(0xeb86d391),T2 != | ||
| 994 | xor T1,D,T1 | ||
| 995 | or T2,%lo(0xeb86d391),T2 | ||
| 996 | add T1,R9,T1 | ||
| 997 | !pre-LOADed X(0),R0 | ||
| 998 | mov Aval,A != | ||
| 999 | add T1,T2,T1 | ||
| 1000 | mov Dval,D | ||
| 1001 | add B,T1,B | ||
| 1002 | sll B,21,T2 != | ||
| 1003 | add Cval,C,Cval | ||
| 1004 | srl B,32-21,B | ||
| 1005 | st Cval,[Cptr] | ||
| 1006 | or B,T2,B != | ||
| 1007 | add B,C,B | ||
| 1008 | |||
| 1009 | deccc %i2 | ||
| 1010 | mov Cval,C | ||
| 1011 | add B,Bval,B != | ||
| 1012 | inc 64,%i1 | ||
| 1013 | nop | ||
| 1014 | st B,[Bptr] | ||
| 1015 | nop != | ||
| 1016 | |||
| 1017 | #ifdef OPENSSL_SYSNAME_ULTRASPARC | ||
| 1018 | bg,a,pt %icc,.Lmd5_block_loop | ||
| 1019 | #else | ||
| 1020 | bg,a .Lmd5_block_loop | ||
| 1021 | #endif | ||
| 1022 | LOAD X(0),R0 | ||
| 1023 | |||
| 1024 | #ifdef ASI_PRIMARY_LITTLE | ||
| 1025 | wr %g0,%o7,%asi | ||
| 1026 | #endif | ||
| 1027 | ret | ||
| 1028 | restore %g0,0,%o0 | ||
| 1029 | |||
| 1030 | .type md5_block,#function | ||
| 1031 | .size md5_block,(.-md5_block) | ||
diff --git a/src/lib/libssl/src/crypto/md5/asm/md5-x86_64.pl b/src/lib/libssl/src/crypto/md5/asm/md5-x86_64.pl new file mode 100755 index 0000000000..9a6fa67224 --- /dev/null +++ b/src/lib/libssl/src/crypto/md5/asm/md5-x86_64.pl | |||
| @@ -0,0 +1,245 @@ | |||
| 1 | #!/usr/bin/perl -w | ||
| 2 | # | ||
| 3 | # MD5 optimized for AMD64. | ||
| 4 | # | ||
| 5 | # Author: Marc Bevand <bevand_m (at) epita.fr> | ||
| 6 | # Licence: I hereby disclaim the copyright on this code and place it | ||
| 7 | # in the public domain. | ||
| 8 | # | ||
| 9 | |||
| 10 | use strict; | ||
| 11 | |||
| 12 | my $code; | ||
| 13 | |||
| 14 | # round1_step() does: | ||
| 15 | # dst = x + ((dst + F(x,y,z) + X[k] + T_i) <<< s) | ||
| 16 | # %r10d = X[k_next] | ||
| 17 | # %r11d = z' (copy of z for the next step) | ||
| 18 | # Each round1_step() takes about 5.71 clocks (9 instructions, 1.58 IPC) | ||
| 19 | sub round1_step | ||
| 20 | { | ||
| 21 | my ($pos, $dst, $x, $y, $z, $k_next, $T_i, $s) = @_; | ||
| 22 | $code .= " mov 0*4(%rsi), %r10d /* (NEXT STEP) X[0] */\n" if ($pos == -1); | ||
| 23 | $code .= " mov %edx, %r11d /* (NEXT STEP) z' = %edx */\n" if ($pos == -1); | ||
| 24 | $code .= <<EOF; | ||
| 25 | xor $y, %r11d /* y ^ ... */ | ||
| 26 | lea $T_i($dst,%r10d),$dst /* Const + dst + ... */ | ||
| 27 | and $x, %r11d /* x & ... */ | ||
| 28 | xor $z, %r11d /* z ^ ... */ | ||
| 29 | mov $k_next*4(%rsi),%r10d /* (NEXT STEP) X[$k_next] */ | ||
| 30 | add %r11d, $dst /* dst += ... */ | ||
| 31 | rol \$$s, $dst /* dst <<< s */ | ||
| 32 | mov $y, %r11d /* (NEXT STEP) z' = $y */ | ||
| 33 | add $x, $dst /* dst += x */ | ||
| 34 | EOF | ||
| 35 | } | ||
| 36 | |||
| 37 | # round2_step() does: | ||
| 38 | # dst = x + ((dst + G(x,y,z) + X[k] + T_i) <<< s) | ||
| 39 | # %r10d = X[k_next] | ||
| 40 | # %r11d = y' (copy of y for the next step) | ||
| 41 | # Each round2_step() takes about 6.22 clocks (9 instructions, 1.45 IPC) | ||
| 42 | sub round2_step | ||
| 43 | { | ||
| 44 | my ($pos, $dst, $x, $y, $z, $k_next, $T_i, $s) = @_; | ||
| 45 | $code .= " mov 1*4(%rsi), %r10d /* (NEXT STEP) X[1] */\n" if ($pos == -1); | ||
| 46 | $code .= " mov %ecx, %r11d /* (NEXT STEP) y' = %ecx */\n" if ($pos == -1); | ||
| 47 | $code .= <<EOF; | ||
| 48 | xor $x, %r11d /* x ^ ... */ | ||
| 49 | lea $T_i($dst,%r10d),$dst /* Const + dst + ... */ | ||
| 50 | and $z, %r11d /* z & ... */ | ||
| 51 | xor $y, %r11d /* y ^ ... */ | ||
| 52 | mov $k_next*4(%rsi),%r10d /* (NEXT STEP) X[$k_next] */ | ||
| 53 | add %r11d, $dst /* dst += ... */ | ||
| 54 | rol \$$s, $dst /* dst <<< s */ | ||
| 55 | mov $x, %r11d /* (NEXT STEP) y' = $x */ | ||
| 56 | add $x, $dst /* dst += x */ | ||
| 57 | EOF | ||
| 58 | } | ||
| 59 | |||
| 60 | # round3_step() does: | ||
| 61 | # dst = x + ((dst + H(x,y,z) + X[k] + T_i) <<< s) | ||
| 62 | # %r10d = X[k_next] | ||
| 63 | # %r11d = y' (copy of y for the next step) | ||
| 64 | # Each round3_step() takes about 4.26 clocks (8 instructions, 1.88 IPC) | ||
| 65 | sub round3_step | ||
| 66 | { | ||
| 67 | my ($pos, $dst, $x, $y, $z, $k_next, $T_i, $s) = @_; | ||
| 68 | $code .= " mov 5*4(%rsi), %r10d /* (NEXT STEP) X[5] */\n" if ($pos == -1); | ||
| 69 | $code .= " mov %ecx, %r11d /* (NEXT STEP) y' = %ecx */\n" if ($pos == -1); | ||
| 70 | $code .= <<EOF; | ||
| 71 | lea $T_i($dst,%r10d),$dst /* Const + dst + ... */ | ||
| 72 | mov $k_next*4(%rsi),%r10d /* (NEXT STEP) X[$k_next] */ | ||
| 73 | xor $z, %r11d /* z ^ ... */ | ||
| 74 | xor $x, %r11d /* x ^ ... */ | ||
| 75 | add %r11d, $dst /* dst += ... */ | ||
| 76 | rol \$$s, $dst /* dst <<< s */ | ||
| 77 | mov $x, %r11d /* (NEXT STEP) y' = $x */ | ||
| 78 | add $x, $dst /* dst += x */ | ||
| 79 | EOF | ||
| 80 | } | ||
| 81 | |||
| 82 | # round4_step() does: | ||
| 83 | # dst = x + ((dst + I(x,y,z) + X[k] + T_i) <<< s) | ||
| 84 | # %r10d = X[k_next] | ||
| 85 | # %r11d = not z' (copy of not z for the next step) | ||
| 86 | # Each round4_step() takes about 5.27 clocks (9 instructions, 1.71 IPC) | ||
| 87 | sub round4_step | ||
| 88 | { | ||
| 89 | my ($pos, $dst, $x, $y, $z, $k_next, $T_i, $s) = @_; | ||
| 90 | $code .= " mov 0*4(%rsi), %r10d /* (NEXT STEP) X[0] */\n" if ($pos == -1); | ||
| 91 | $code .= " mov \$0xffffffff, %r11d\n" if ($pos == -1); | ||
| 92 | $code .= " xor %edx, %r11d /* (NEXT STEP) not z' = not %edx*/\n" | ||
| 93 | if ($pos == -1); | ||
| 94 | $code .= <<EOF; | ||
| 95 | lea $T_i($dst,%r10d),$dst /* Const + dst + ... */ | ||
| 96 | or $x, %r11d /* x | ... */ | ||
| 97 | xor $y, %r11d /* y ^ ... */ | ||
| 98 | add %r11d, $dst /* dst += ... */ | ||
| 99 | mov $k_next*4(%rsi),%r10d /* (NEXT STEP) X[$k_next] */ | ||
| 100 | mov \$0xffffffff, %r11d | ||
| 101 | rol \$$s, $dst /* dst <<< s */ | ||
| 102 | xor $y, %r11d /* (NEXT STEP) not z' = not $y */ | ||
| 103 | add $x, $dst /* dst += x */ | ||
| 104 | EOF | ||
| 105 | } | ||
| 106 | |||
| 107 | my $output = shift; | ||
| 108 | open STDOUT,"| $^X ../perlasm/x86_64-xlate.pl $output"; | ||
| 109 | |||
| 110 | $code .= <<EOF; | ||
| 111 | .text | ||
| 112 | .align 16 | ||
| 113 | |||
| 114 | .globl md5_block_asm_data_order | ||
| 115 | .type md5_block_asm_data_order,\@function,3 | ||
| 116 | md5_block_asm_data_order: | ||
| 117 | push %rbp | ||
| 118 | push %rbx | ||
| 119 | push %r14 | ||
| 120 | push %r15 | ||
| 121 | |||
| 122 | # rdi = arg #1 (ctx, MD5_CTX pointer) | ||
| 123 | # rsi = arg #2 (ptr, data pointer) | ||
| 124 | # rdx = arg #3 (nbr, number of 16-word blocks to process) | ||
| 125 | mov %rdi, %rbp # rbp = ctx | ||
| 126 | shl \$6, %rdx # rdx = nbr in bytes | ||
| 127 | lea (%rsi,%rdx), %rdi # rdi = end | ||
| 128 | mov 0*4(%rbp), %eax # eax = ctx->A | ||
| 129 | mov 1*4(%rbp), %ebx # ebx = ctx->B | ||
| 130 | mov 2*4(%rbp), %ecx # ecx = ctx->C | ||
| 131 | mov 3*4(%rbp), %edx # edx = ctx->D | ||
| 132 | # end is 'rdi' | ||
| 133 | # ptr is 'rsi' | ||
| 134 | # A is 'eax' | ||
| 135 | # B is 'ebx' | ||
| 136 | # C is 'ecx' | ||
| 137 | # D is 'edx' | ||
| 138 | |||
| 139 | cmp %rdi, %rsi # cmp end with ptr | ||
| 140 | je .Lend # jmp if ptr == end | ||
| 141 | |||
| 142 | # BEGIN of loop over 16-word blocks | ||
| 143 | .Lloop: # save old values of A, B, C, D | ||
| 144 | mov %eax, %r8d | ||
| 145 | mov %ebx, %r9d | ||
| 146 | mov %ecx, %r14d | ||
| 147 | mov %edx, %r15d | ||
| 148 | EOF | ||
| 149 | round1_step(-1,'%eax','%ebx','%ecx','%edx', '1','0xd76aa478', '7'); | ||
| 150 | round1_step( 0,'%edx','%eax','%ebx','%ecx', '2','0xe8c7b756','12'); | ||
| 151 | round1_step( 0,'%ecx','%edx','%eax','%ebx', '3','0x242070db','17'); | ||
| 152 | round1_step( 0,'%ebx','%ecx','%edx','%eax', '4','0xc1bdceee','22'); | ||
| 153 | round1_step( 0,'%eax','%ebx','%ecx','%edx', '5','0xf57c0faf', '7'); | ||
| 154 | round1_step( 0,'%edx','%eax','%ebx','%ecx', '6','0x4787c62a','12'); | ||
| 155 | round1_step( 0,'%ecx','%edx','%eax','%ebx', '7','0xa8304613','17'); | ||
| 156 | round1_step( 0,'%ebx','%ecx','%edx','%eax', '8','0xfd469501','22'); | ||
| 157 | round1_step( 0,'%eax','%ebx','%ecx','%edx', '9','0x698098d8', '7'); | ||
| 158 | round1_step( 0,'%edx','%eax','%ebx','%ecx','10','0x8b44f7af','12'); | ||
| 159 | round1_step( 0,'%ecx','%edx','%eax','%ebx','11','0xffff5bb1','17'); | ||
| 160 | round1_step( 0,'%ebx','%ecx','%edx','%eax','12','0x895cd7be','22'); | ||
| 161 | round1_step( 0,'%eax','%ebx','%ecx','%edx','13','0x6b901122', '7'); | ||
| 162 | round1_step( 0,'%edx','%eax','%ebx','%ecx','14','0xfd987193','12'); | ||
| 163 | round1_step( 0,'%ecx','%edx','%eax','%ebx','15','0xa679438e','17'); | ||
| 164 | round1_step( 1,'%ebx','%ecx','%edx','%eax', '0','0x49b40821','22'); | ||
| 165 | |||
| 166 | round2_step(-1,'%eax','%ebx','%ecx','%edx', '6','0xf61e2562', '5'); | ||
| 167 | round2_step( 0,'%edx','%eax','%ebx','%ecx','11','0xc040b340', '9'); | ||
| 168 | round2_step( 0,'%ecx','%edx','%eax','%ebx', '0','0x265e5a51','14'); | ||
| 169 | round2_step( 0,'%ebx','%ecx','%edx','%eax', '5','0xe9b6c7aa','20'); | ||
| 170 | round2_step( 0,'%eax','%ebx','%ecx','%edx','10','0xd62f105d', '5'); | ||
| 171 | round2_step( 0,'%edx','%eax','%ebx','%ecx','15', '0x2441453', '9'); | ||
| 172 | round2_step( 0,'%ecx','%edx','%eax','%ebx', '4','0xd8a1e681','14'); | ||
| 173 | round2_step( 0,'%ebx','%ecx','%edx','%eax', '9','0xe7d3fbc8','20'); | ||
| 174 | round2_step( 0,'%eax','%ebx','%ecx','%edx','14','0x21e1cde6', '5'); | ||
| 175 | round2_step( 0,'%edx','%eax','%ebx','%ecx', '3','0xc33707d6', '9'); | ||
| 176 | round2_step( 0,'%ecx','%edx','%eax','%ebx', '8','0xf4d50d87','14'); | ||
| 177 | round2_step( 0,'%ebx','%ecx','%edx','%eax','13','0x455a14ed','20'); | ||
| 178 | round2_step( 0,'%eax','%ebx','%ecx','%edx', '2','0xa9e3e905', '5'); | ||
| 179 | round2_step( 0,'%edx','%eax','%ebx','%ecx', '7','0xfcefa3f8', '9'); | ||
| 180 | round2_step( 0,'%ecx','%edx','%eax','%ebx','12','0x676f02d9','14'); | ||
| 181 | round2_step( 1,'%ebx','%ecx','%edx','%eax', '0','0x8d2a4c8a','20'); | ||
| 182 | |||
| 183 | round3_step(-1,'%eax','%ebx','%ecx','%edx', '8','0xfffa3942', '4'); | ||
| 184 | round3_step( 0,'%edx','%eax','%ebx','%ecx','11','0x8771f681','11'); | ||
| 185 | round3_step( 0,'%ecx','%edx','%eax','%ebx','14','0x6d9d6122','16'); | ||
| 186 | round3_step( 0,'%ebx','%ecx','%edx','%eax', '1','0xfde5380c','23'); | ||
| 187 | round3_step( 0,'%eax','%ebx','%ecx','%edx', '4','0xa4beea44', '4'); | ||
| 188 | round3_step( 0,'%edx','%eax','%ebx','%ecx', '7','0x4bdecfa9','11'); | ||
| 189 | round3_step( 0,'%ecx','%edx','%eax','%ebx','10','0xf6bb4b60','16'); | ||
| 190 | round3_step( 0,'%ebx','%ecx','%edx','%eax','13','0xbebfbc70','23'); | ||
| 191 | round3_step( 0,'%eax','%ebx','%ecx','%edx', '0','0x289b7ec6', '4'); | ||
| 192 | round3_step( 0,'%edx','%eax','%ebx','%ecx', '3','0xeaa127fa','11'); | ||
| 193 | round3_step( 0,'%ecx','%edx','%eax','%ebx', '6','0xd4ef3085','16'); | ||
| 194 | round3_step( 0,'%ebx','%ecx','%edx','%eax', '9', '0x4881d05','23'); | ||
| 195 | round3_step( 0,'%eax','%ebx','%ecx','%edx','12','0xd9d4d039', '4'); | ||
| 196 | round3_step( 0,'%edx','%eax','%ebx','%ecx','15','0xe6db99e5','11'); | ||
| 197 | round3_step( 0,'%ecx','%edx','%eax','%ebx', '2','0x1fa27cf8','16'); | ||
| 198 | round3_step( 1,'%ebx','%ecx','%edx','%eax', '0','0xc4ac5665','23'); | ||
| 199 | |||
| 200 | round4_step(-1,'%eax','%ebx','%ecx','%edx', '7','0xf4292244', '6'); | ||
| 201 | round4_step( 0,'%edx','%eax','%ebx','%ecx','14','0x432aff97','10'); | ||
| 202 | round4_step( 0,'%ecx','%edx','%eax','%ebx', '5','0xab9423a7','15'); | ||
| 203 | round4_step( 0,'%ebx','%ecx','%edx','%eax','12','0xfc93a039','21'); | ||
| 204 | round4_step( 0,'%eax','%ebx','%ecx','%edx', '3','0x655b59c3', '6'); | ||
| 205 | round4_step( 0,'%edx','%eax','%ebx','%ecx','10','0x8f0ccc92','10'); | ||
| 206 | round4_step( 0,'%ecx','%edx','%eax','%ebx', '1','0xffeff47d','15'); | ||
| 207 | round4_step( 0,'%ebx','%ecx','%edx','%eax', '8','0x85845dd1','21'); | ||
| 208 | round4_step( 0,'%eax','%ebx','%ecx','%edx','15','0x6fa87e4f', '6'); | ||
| 209 | round4_step( 0,'%edx','%eax','%ebx','%ecx', '6','0xfe2ce6e0','10'); | ||
| 210 | round4_step( 0,'%ecx','%edx','%eax','%ebx','13','0xa3014314','15'); | ||
| 211 | round4_step( 0,'%ebx','%ecx','%edx','%eax', '4','0x4e0811a1','21'); | ||
| 212 | round4_step( 0,'%eax','%ebx','%ecx','%edx','11','0xf7537e82', '6'); | ||
| 213 | round4_step( 0,'%edx','%eax','%ebx','%ecx', '2','0xbd3af235','10'); | ||
| 214 | round4_step( 0,'%ecx','%edx','%eax','%ebx', '9','0x2ad7d2bb','15'); | ||
| 215 | round4_step( 1,'%ebx','%ecx','%edx','%eax', '0','0xeb86d391','21'); | ||
| 216 | $code .= <<EOF; | ||
| 217 | # add old values of A, B, C, D | ||
| 218 | add %r8d, %eax | ||
| 219 | add %r9d, %ebx | ||
| 220 | add %r14d, %ecx | ||
| 221 | add %r15d, %edx | ||
| 222 | |||
| 223 | # loop control | ||
| 224 | add \$64, %rsi # ptr += 64 | ||
| 225 | cmp %rdi, %rsi # cmp end with ptr | ||
| 226 | jb .Lloop # jmp if ptr < end | ||
| 227 | # END of loop over 16-word blocks | ||
| 228 | |||
| 229 | .Lend: | ||
| 230 | mov %eax, 0*4(%rbp) # ctx->A = A | ||
| 231 | mov %ebx, 1*4(%rbp) # ctx->B = B | ||
| 232 | mov %ecx, 2*4(%rbp) # ctx->C = C | ||
| 233 | mov %edx, 3*4(%rbp) # ctx->D = D | ||
| 234 | |||
| 235 | pop %r15 | ||
| 236 | pop %r14 | ||
| 237 | pop %rbx | ||
| 238 | pop %rbp | ||
| 239 | ret | ||
| 240 | .size md5_block_asm_data_order,.-md5_block_asm_data_order | ||
| 241 | EOF | ||
| 242 | |||
| 243 | print $code; | ||
| 244 | |||
| 245 | close STDOUT; | ||
diff --git a/src/lib/libssl/src/crypto/o_dir.c b/src/lib/libssl/src/crypto/o_dir.c new file mode 100644 index 0000000000..42891ea459 --- /dev/null +++ b/src/lib/libssl/src/crypto/o_dir.c | |||
| @@ -0,0 +1,83 @@ | |||
| 1 | /* crypto/o_dir.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Written by Richard Levitte (richard@levitte.org) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <errno.h> | ||
| 60 | #include <e_os.h> | ||
| 61 | |||
| 62 | /* The routines really come from the Levitte Programming, so to make | ||
| 63 | life simple, let's just use the raw files and hack the symbols to | ||
| 64 | fit our namespace. */ | ||
| 65 | #define LP_DIR_CTX OPENSSL_DIR_CTX | ||
| 66 | #define LP_dir_context_st OPENSSL_dir_context_st | ||
| 67 | #define LP_find_file OPENSSL_DIR_read | ||
| 68 | #define LP_find_file_end OPENSSL_DIR_end | ||
| 69 | |||
| 70 | #include "o_dir.h" | ||
| 71 | |||
| 72 | #define LPDIR_H | ||
| 73 | #if defined OPENSSL_SYS_UNIX || defined DJGPP | ||
| 74 | #include "LPdir_unix.c" | ||
| 75 | #elif defined OPENSSL_SYS_VMS | ||
| 76 | #include "LPdir_vms.c" | ||
| 77 | #elif defined OPENSSL_SYS_WIN32 | ||
| 78 | #include "LPdir_win32.c" | ||
| 79 | #elif defined OPENSSL_SYS_WINCE | ||
| 80 | #include "LPdir_wince.c" | ||
| 81 | #else | ||
| 82 | #include "LPdir_nyi.c" | ||
| 83 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/o_dir.h b/src/lib/libssl/src/crypto/o_dir.h new file mode 100644 index 0000000000..4b725c0312 --- /dev/null +++ b/src/lib/libssl/src/crypto/o_dir.h | |||
| @@ -0,0 +1,53 @@ | |||
| 1 | /* crypto/o_dir.h -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Copied from Richard Levitte's (richard@levitte.org) LP library. All | ||
| 3 | * symbol names have been changed, with permission from the author. | ||
| 4 | */ | ||
| 5 | |||
| 6 | /* $LP: LPlib/source/LPdir.h,v 1.1 2004/06/14 08:56:04 _cvs_levitte Exp $ */ | ||
| 7 | /* | ||
| 8 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 9 | * All rights reserved. | ||
| 10 | * | ||
| 11 | * Redistribution and use in source and binary forms, with or without | ||
| 12 | * modification, are permitted provided that the following conditions | ||
| 13 | * are met: | ||
| 14 | * 1. Redistributions of source code must retain the above copyright | ||
| 15 | * notice, this list of conditions and the following disclaimer. | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in the | ||
| 18 | * documentation and/or other materials provided with the distribution. | ||
| 19 | * | ||
| 20 | * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND | ||
| 21 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 22 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 23 | * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE | ||
| 24 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 25 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 26 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 27 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 28 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 29 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 30 | * SUCH DAMAGE. | ||
| 31 | */ | ||
| 32 | |||
| 33 | |||
| 34 | #ifndef O_DIR_H | ||
| 35 | #define O_DIR_H | ||
| 36 | |||
| 37 | #ifdef __cplusplus | ||
| 38 | extern "C" { | ||
| 39 | #endif | ||
| 40 | |||
| 41 | typedef struct OPENSSL_dir_context_st OPENSSL_DIR_CTX; | ||
| 42 | |||
| 43 | /* returns NULL on error or end-of-directory. | ||
| 44 | If it is end-of-directory, errno will be zero */ | ||
| 45 | const char *OPENSSL_DIR_read(OPENSSL_DIR_CTX **ctx, const char *directory); | ||
| 46 | /* returns 1 on success, 0 on error */ | ||
| 47 | int OPENSSL_DIR_end(OPENSSL_DIR_CTX **ctx); | ||
| 48 | |||
| 49 | #ifdef __cplusplus | ||
| 50 | } | ||
| 51 | #endif | ||
| 52 | |||
| 53 | #endif /* LPDIR_H */ | ||
diff --git a/src/lib/libssl/src/crypto/o_dir_test.c b/src/lib/libssl/src/crypto/o_dir_test.c new file mode 100644 index 0000000000..3d75ecb005 --- /dev/null +++ b/src/lib/libssl/src/crypto/o_dir_test.c | |||
| @@ -0,0 +1,70 @@ | |||
| 1 | /* crypto/o_dir.h -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Copied from Richard Levitte's (richard@levitte.org) LP library. All | ||
| 3 | * symbol names have been changed, with permission from the author. | ||
| 4 | */ | ||
| 5 | |||
| 6 | /* $LP: LPlib/test/test_dir.c,v 1.1 2004/06/16 22:59:47 _cvs_levitte Exp $ */ | ||
| 7 | /* | ||
| 8 | * Copyright (c) 2004, Richard Levitte <richard@levitte.org> | ||
| 9 | * All rights reserved. | ||
| 10 | * | ||
| 11 | * Redistribution and use in source and binary forms, with or without | ||
| 12 | * modification, are permitted provided that the following conditions | ||
| 13 | * are met: | ||
| 14 | * 1. Redistributions of source code must retain the above copyright | ||
| 15 | * notice, this list of conditions and the following disclaimer. | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in the | ||
| 18 | * documentation and/or other materials provided with the distribution. | ||
| 19 | * | ||
| 20 | * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND | ||
| 21 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 22 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 23 | * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE | ||
| 24 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 25 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 26 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 27 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 28 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 29 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 30 | * SUCH DAMAGE. | ||
| 31 | */ | ||
| 32 | |||
| 33 | #include <stddef.h> | ||
| 34 | #include <stdlib.h> | ||
| 35 | #include <stdio.h> | ||
| 36 | #include <errno.h> | ||
| 37 | #include "e_os2.h" | ||
| 38 | #include "o_dir.h" | ||
| 39 | |||
| 40 | #if defined OPENSSL_SYS_UNIX || defined OPENSSL_SYS_WIN32 || defined OPENSSL_SYS_WINCE | ||
| 41 | #define CURRDIR "." | ||
| 42 | #elif defined OPENSSL_SYS_VMS | ||
| 43 | #define CURRDIR "SYS$DISK:[]" | ||
| 44 | #else | ||
| 45 | #error "No supported platform defined!" | ||
| 46 | #endif | ||
| 47 | |||
| 48 | int main() | ||
| 49 | { | ||
| 50 | OPENSSL_DIR_CTX *ctx = NULL; | ||
| 51 | const char *result; | ||
| 52 | |||
| 53 | while((result = OPENSSL_DIR_read(&ctx, CURRDIR)) != NULL) | ||
| 54 | { | ||
| 55 | printf("%s\n", result); | ||
| 56 | } | ||
| 57 | |||
| 58 | if (errno) | ||
| 59 | { | ||
| 60 | perror("test_dir"); | ||
| 61 | exit(1); | ||
| 62 | } | ||
| 63 | |||
| 64 | if (!OPENSSL_DIR_end(&ctx)) | ||
| 65 | { | ||
| 66 | perror("test_dir"); | ||
| 67 | exit(2); | ||
| 68 | } | ||
| 69 | exit(0); | ||
| 70 | } | ||
diff --git a/src/lib/libssl/src/crypto/perlasm/alpha.pl b/src/lib/libssl/src/crypto/perlasm/alpha.pl deleted file mode 100644 index 3dac571743..0000000000 --- a/src/lib/libssl/src/crypto/perlasm/alpha.pl +++ /dev/null | |||
| @@ -1,434 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | |||
| 3 | package alpha; | ||
| 4 | use Carp qw(croak cluck); | ||
| 5 | |||
| 6 | $label="100"; | ||
| 7 | |||
| 8 | $n_debug=0; | ||
| 9 | $smear_regs=1; | ||
| 10 | $reg_alloc=1; | ||
| 11 | |||
| 12 | $align="3"; | ||
| 13 | $com_start="#"; | ||
| 14 | |||
| 15 | sub main'asm_init_output { @out=(); } | ||
| 16 | sub main'asm_get_output { return(@out); } | ||
| 17 | sub main'get_labels { return(@labels); } | ||
| 18 | sub main'external_label { push(@labels,@_); } | ||
| 19 | |||
| 20 | # General registers | ||
| 21 | |||
| 22 | %regs=( 'r0', '$0', | ||
| 23 | 'r1', '$1', | ||
| 24 | 'r2', '$2', | ||
| 25 | 'r3', '$3', | ||
| 26 | 'r4', '$4', | ||
| 27 | 'r5', '$5', | ||
| 28 | 'r6', '$6', | ||
| 29 | 'r7', '$7', | ||
| 30 | 'r8', '$8', | ||
| 31 | 'r9', '$22', | ||
| 32 | 'r10', '$23', | ||
| 33 | 'r11', '$24', | ||
| 34 | 'r12', '$25', | ||
| 35 | 'r13', '$27', | ||
| 36 | 'r14', '$28', | ||
| 37 | 'r15', '$21', # argc == 5 | ||
| 38 | 'r16', '$20', # argc == 4 | ||
| 39 | 'r17', '$19', # argc == 3 | ||
| 40 | 'r18', '$18', # argc == 2 | ||
| 41 | 'r19', '$17', # argc == 1 | ||
| 42 | 'r20', '$16', # argc == 0 | ||
| 43 | 'r21', '$9', # save 0 | ||
| 44 | 'r22', '$10', # save 1 | ||
| 45 | 'r23', '$11', # save 2 | ||
| 46 | 'r24', '$12', # save 3 | ||
| 47 | 'r25', '$13', # save 4 | ||
| 48 | 'r26', '$14', # save 5 | ||
| 49 | |||
| 50 | 'a0', '$16', | ||
| 51 | 'a1', '$17', | ||
| 52 | 'a2', '$18', | ||
| 53 | 'a3', '$19', | ||
| 54 | 'a4', '$20', | ||
| 55 | 'a5', '$21', | ||
| 56 | |||
| 57 | 's0', '$9', | ||
| 58 | 's1', '$10', | ||
| 59 | 's2', '$11', | ||
| 60 | 's3', '$12', | ||
| 61 | 's4', '$13', | ||
| 62 | 's5', '$14', | ||
| 63 | 'zero', '$31', | ||
| 64 | 'sp', '$30', | ||
| 65 | ); | ||
| 66 | |||
| 67 | $main'reg_s0="r21"; | ||
| 68 | $main'reg_s1="r22"; | ||
| 69 | $main'reg_s2="r23"; | ||
| 70 | $main'reg_s3="r24"; | ||
| 71 | $main'reg_s4="r25"; | ||
| 72 | $main'reg_s5="r26"; | ||
| 73 | |||
| 74 | @reg=( '$0', '$1' ,'$2' ,'$3' ,'$4' ,'$5' ,'$6' ,'$7' ,'$8', | ||
| 75 | '$22','$23','$24','$25','$20','$21','$27','$28'); | ||
| 76 | |||
| 77 | |||
| 78 | sub main'sub { &out3("subq",@_); } | ||
| 79 | sub main'add { &out3("addq",@_); } | ||
| 80 | sub main'mov { &out3("bis",$_[0],$_[0],$_[1]); } | ||
| 81 | sub main'or { &out3("bis",@_); } | ||
| 82 | sub main'bis { &out3("bis",@_); } | ||
| 83 | sub main'br { &out1("br",@_); } | ||
| 84 | sub main'ld { &out2("ldq",@_); } | ||
| 85 | sub main'st { &out2("stq",@_); } | ||
| 86 | sub main'cmpult { &out3("cmpult",@_); } | ||
| 87 | sub main'cmplt { &out3("cmplt",@_); } | ||
| 88 | sub main'bgt { &out2("bgt",@_); } | ||
| 89 | sub main'ble { &out2("ble",@_); } | ||
| 90 | sub main'blt { &out2("blt",@_); } | ||
| 91 | sub main'mul { &out3("mulq",@_); } | ||
| 92 | sub main'muh { &out3("umulh",@_); } | ||
| 93 | |||
| 94 | $main'QWS=8; | ||
| 95 | |||
| 96 | sub main'asm_add | ||
| 97 | { | ||
| 98 | push(@out,@_); | ||
| 99 | } | ||
| 100 | |||
| 101 | sub main'asm_finish | ||
| 102 | { | ||
| 103 | &main'file_end(); | ||
| 104 | print &main'asm_get_output(); | ||
| 105 | } | ||
| 106 | |||
| 107 | sub main'asm_init | ||
| 108 | { | ||
| 109 | ($type,$fn)=@_; | ||
| 110 | $filename=$fn; | ||
| 111 | |||
| 112 | &main'asm_init_output(); | ||
| 113 | &main'comment("Don't even think of reading this code"); | ||
| 114 | &main'comment("It was automatically generated by $filename"); | ||
| 115 | &main'comment("Which is a perl program used to generate the alpha assember."); | ||
| 116 | &main'comment("eric <eay\@cryptsoft.com>"); | ||
| 117 | &main'comment(""); | ||
| 118 | |||
| 119 | $filename =~ s/\.pl$//; | ||
| 120 | &main'file($filename); | ||
| 121 | } | ||
| 122 | |||
| 123 | sub conv | ||
| 124 | { | ||
| 125 | local($r)=@_; | ||
| 126 | local($v); | ||
| 127 | |||
| 128 | return($regs{$r}) if defined($regs{$r}); | ||
| 129 | return($r); | ||
| 130 | } | ||
| 131 | |||
| 132 | sub main'QWPw | ||
| 133 | { | ||
| 134 | local($off,$reg)=@_; | ||
| 135 | |||
| 136 | return(&main'QWP($off*8,$reg)); | ||
| 137 | } | ||
| 138 | |||
| 139 | sub main'QWP | ||
| 140 | { | ||
| 141 | local($off,$reg)=@_; | ||
| 142 | |||
| 143 | $ret="$off(".&conv($reg).")"; | ||
| 144 | return($ret); | ||
| 145 | } | ||
| 146 | |||
| 147 | sub out3 | ||
| 148 | { | ||
| 149 | local($name,$p1,$p2,$p3)=@_; | ||
| 150 | |||
| 151 | $p1=&conv($p1); | ||
| 152 | $p2=&conv($p2); | ||
| 153 | $p3=&conv($p3); | ||
| 154 | push(@out,"\t$name\t"); | ||
| 155 | $l=length($p1)+1; | ||
| 156 | push(@out,$p1.","); | ||
| 157 | $ll=3-($l+9)/8; | ||
| 158 | $tmp1=sprintf("\t" x $ll); | ||
| 159 | push(@out,$tmp1); | ||
| 160 | |||
| 161 | $l=length($p2)+1; | ||
| 162 | push(@out,$p2.","); | ||
| 163 | $ll=3-($l+9)/8; | ||
| 164 | $tmp1=sprintf("\t" x $ll); | ||
| 165 | push(@out,$tmp1); | ||
| 166 | |||
| 167 | push(@out,&conv($p3)."\n"); | ||
| 168 | } | ||
| 169 | |||
| 170 | sub out2 | ||
| 171 | { | ||
| 172 | local($name,$p1,$p2,$p3)=@_; | ||
| 173 | |||
| 174 | $p1=&conv($p1); | ||
| 175 | $p2=&conv($p2); | ||
| 176 | push(@out,"\t$name\t"); | ||
| 177 | $l=length($p1)+1; | ||
| 178 | push(@out,$p1.","); | ||
| 179 | $ll=3-($l+9)/8; | ||
| 180 | $tmp1=sprintf("\t" x $ll); | ||
| 181 | push(@out,$tmp1); | ||
| 182 | |||
| 183 | push(@out,&conv($p2)."\n"); | ||
| 184 | } | ||
| 185 | |||
| 186 | sub out1 | ||
| 187 | { | ||
| 188 | local($name,$p1)=@_; | ||
| 189 | |||
| 190 | $p1=&conv($p1); | ||
| 191 | push(@out,"\t$name\t".$p1."\n"); | ||
| 192 | } | ||
| 193 | |||
| 194 | sub out0 | ||
| 195 | { | ||
| 196 | push(@out,"\t$_[0]\n"); | ||
| 197 | } | ||
| 198 | |||
| 199 | sub main'file | ||
| 200 | { | ||
| 201 | local($file)=@_; | ||
| 202 | |||
| 203 | local($tmp)=<<"EOF"; | ||
| 204 | # DEC Alpha assember | ||
| 205 | # Generated from perl scripts contains in SSLeay | ||
| 206 | .file 1 "$file.s" | ||
| 207 | .set noat | ||
| 208 | EOF | ||
| 209 | push(@out,$tmp); | ||
| 210 | } | ||
| 211 | |||
| 212 | sub main'function_begin | ||
| 213 | { | ||
| 214 | local($func)=@_; | ||
| 215 | |||
| 216 | print STDERR "$func\n"; | ||
| 217 | local($tmp)=<<"EOF"; | ||
| 218 | .text | ||
| 219 | .align $align | ||
| 220 | .globl $func | ||
| 221 | .ent $func | ||
| 222 | ${func}: | ||
| 223 | ${func}..ng: | ||
| 224 | .frame \$30,0,\$26,0 | ||
| 225 | .prologue 0 | ||
| 226 | EOF | ||
| 227 | push(@out,$tmp); | ||
| 228 | $stack=0; | ||
| 229 | } | ||
| 230 | |||
| 231 | sub main'function_end | ||
| 232 | { | ||
| 233 | local($func)=@_; | ||
| 234 | |||
| 235 | local($tmp)=<<"EOF"; | ||
| 236 | ret \$31,(\$26),1 | ||
| 237 | .end $func | ||
| 238 | EOF | ||
| 239 | push(@out,$tmp); | ||
| 240 | $stack=0; | ||
| 241 | %label=(); | ||
| 242 | } | ||
| 243 | |||
| 244 | sub main'function_end_A | ||
| 245 | { | ||
| 246 | local($func)=@_; | ||
| 247 | |||
| 248 | local($tmp)=<<"EOF"; | ||
| 249 | ret \$31,(\$26),1 | ||
| 250 | EOF | ||
| 251 | push(@out,$tmp); | ||
| 252 | } | ||
| 253 | |||
| 254 | sub main'function_end_B | ||
| 255 | { | ||
| 256 | local($func)=@_; | ||
| 257 | |||
| 258 | $func=$under.$func; | ||
| 259 | |||
| 260 | push(@out,"\t.end $func\n"); | ||
| 261 | $stack=0; | ||
| 262 | %label=(); | ||
| 263 | } | ||
| 264 | |||
| 265 | sub main'wparam | ||
| 266 | { | ||
| 267 | local($num)=@_; | ||
| 268 | |||
| 269 | if ($num < 6) | ||
| 270 | { | ||
| 271 | $num=20-$num; | ||
| 272 | return("r$num"); | ||
| 273 | } | ||
| 274 | else | ||
| 275 | { return(&main'QWP($stack+$num*8,"sp")); } | ||
| 276 | } | ||
| 277 | |||
| 278 | sub main'stack_push | ||
| 279 | { | ||
| 280 | local($num)=@_; | ||
| 281 | $stack+=$num*8; | ||
| 282 | &main'sub("sp",$num*8,"sp"); | ||
| 283 | } | ||
| 284 | |||
| 285 | sub main'stack_pop | ||
| 286 | { | ||
| 287 | local($num)=@_; | ||
| 288 | $stack-=$num*8; | ||
| 289 | &main'add("sp",$num*8,"sp"); | ||
| 290 | } | ||
| 291 | |||
| 292 | sub main'swtmp | ||
| 293 | { | ||
| 294 | return(&main'QWP(($_[0])*8,"sp")); | ||
| 295 | } | ||
| 296 | |||
| 297 | # Should use swtmp, which is above sp. Linix can trash the stack above esp | ||
| 298 | #sub main'wtmp | ||
| 299 | # { | ||
| 300 | # local($num)=@_; | ||
| 301 | # | ||
| 302 | # return(&main'QWP(-($num+1)*4,"esp","",0)); | ||
| 303 | # } | ||
| 304 | |||
| 305 | sub main'comment | ||
| 306 | { | ||
| 307 | foreach (@_) | ||
| 308 | { | ||
| 309 | if (/^\s*$/) | ||
| 310 | { push(@out,"\n"); } | ||
| 311 | else | ||
| 312 | { push(@out,"\t$com_start $_ $com_end\n"); } | ||
| 313 | } | ||
| 314 | } | ||
| 315 | |||
| 316 | sub main'label | ||
| 317 | { | ||
| 318 | if (!defined($label{$_[0]})) | ||
| 319 | { | ||
| 320 | $label{$_[0]}=$label; | ||
| 321 | $label++; | ||
| 322 | } | ||
| 323 | return('$'.$label{$_[0]}); | ||
| 324 | } | ||
| 325 | |||
| 326 | sub main'set_label | ||
| 327 | { | ||
| 328 | if (!defined($label{$_[0]})) | ||
| 329 | { | ||
| 330 | $label{$_[0]}=$label; | ||
| 331 | $label++; | ||
| 332 | } | ||
| 333 | # push(@out,".align $align\n") if ($_[1] != 0); | ||
| 334 | push(@out,'$'."$label{$_[0]}:\n"); | ||
| 335 | } | ||
| 336 | |||
| 337 | sub main'file_end | ||
| 338 | { | ||
| 339 | } | ||
| 340 | |||
| 341 | sub main'data_word | ||
| 342 | { | ||
| 343 | push(@out,"\t.long $_[0]\n"); | ||
| 344 | } | ||
| 345 | |||
| 346 | @pool_free=(); | ||
| 347 | @pool_taken=(); | ||
| 348 | $curr_num=0; | ||
| 349 | $max=0; | ||
| 350 | |||
| 351 | sub main'init_pool | ||
| 352 | { | ||
| 353 | local($args)=@_; | ||
| 354 | local($i); | ||
| 355 | |||
| 356 | @pool_free=(); | ||
| 357 | for ($i=(14+(6-$args)); $i >= 0; $i--) | ||
| 358 | { | ||
| 359 | push(@pool_free,"r$i"); | ||
| 360 | } | ||
| 361 | print STDERR "START :register pool:@pool_free\n"; | ||
| 362 | $curr_num=$max=0; | ||
| 363 | } | ||
| 364 | |||
| 365 | sub main'fin_pool | ||
| 366 | { | ||
| 367 | printf STDERR "END %2d:register pool:@pool_free\n",$max; | ||
| 368 | } | ||
| 369 | |||
| 370 | sub main'GR | ||
| 371 | { | ||
| 372 | local($r)=@_; | ||
| 373 | local($i,@n,$_); | ||
| 374 | |||
| 375 | foreach (@pool_free) | ||
| 376 | { | ||
| 377 | if ($r ne $_) | ||
| 378 | { push(@n,$_); } | ||
| 379 | else | ||
| 380 | { | ||
| 381 | $curr_num++; | ||
| 382 | $max=$curr_num if ($curr_num > $max); | ||
| 383 | } | ||
| 384 | } | ||
| 385 | @pool_free=@n; | ||
| 386 | print STDERR "GR:@pool_free\n" if $reg_alloc; | ||
| 387 | return(@_); | ||
| 388 | } | ||
| 389 | |||
| 390 | sub main'NR | ||
| 391 | { | ||
| 392 | local($num)=@_; | ||
| 393 | local(@ret); | ||
| 394 | |||
| 395 | $num=1 if $num == 0; | ||
| 396 | ($#pool_free >= ($num-1)) || croak "out of registers: want $num, have @pool_free"; | ||
| 397 | while ($num > 0) | ||
| 398 | { | ||
| 399 | push(@ret,pop @pool_free); | ||
| 400 | $curr_num++; | ||
| 401 | $max=$curr_num if ($curr_num > $max); | ||
| 402 | $num-- | ||
| 403 | } | ||
| 404 | print STDERR "nr @ret\n" if $n_debug; | ||
| 405 | print STDERR "NR:@pool_free\n" if $reg_alloc; | ||
| 406 | return(@ret); | ||
| 407 | |||
| 408 | } | ||
| 409 | |||
| 410 | sub main'FR | ||
| 411 | { | ||
| 412 | local(@r)=@_; | ||
| 413 | local(@a,$v,$w); | ||
| 414 | |||
| 415 | print STDERR "fr @r\n" if $n_debug; | ||
| 416 | # cluck "fr @r"; | ||
| 417 | for $w (@pool_free) | ||
| 418 | { | ||
| 419 | foreach $v (@r) | ||
| 420 | { | ||
| 421 | croak "double register free of $v (@pool_free)" if $w eq $v; | ||
| 422 | } | ||
| 423 | } | ||
| 424 | foreach $v (@r) | ||
| 425 | { | ||
| 426 | croak "bad argument to FR" if ($v !~ /^r\d+$/); | ||
| 427 | if ($smear_regs) | ||
| 428 | { unshift(@pool_free,$v); } | ||
| 429 | else { push(@pool_free,$v); } | ||
| 430 | $curr_num--; | ||
| 431 | } | ||
| 432 | print STDERR "FR:@pool_free\n" if $reg_alloc; | ||
| 433 | } | ||
| 434 | 1; | ||
diff --git a/src/lib/libssl/src/crypto/perlasm/x86_64-xlate.pl b/src/lib/libssl/src/crypto/perlasm/x86_64-xlate.pl new file mode 100755 index 0000000000..a4af769b4a --- /dev/null +++ b/src/lib/libssl/src/crypto/perlasm/x86_64-xlate.pl | |||
| @@ -0,0 +1,554 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | |||
| 3 | # Ascetic x86_64 AT&T to MASM assembler translator by <appro>. | ||
| 4 | # | ||
| 5 | # Why AT&T to MASM and not vice versa? Several reasons. Because AT&T | ||
| 6 | # format is way easier to parse. Because it's simpler to "gear" from | ||
| 7 | # Unix ABI to Windows one [see cross-reference "card" at the end of | ||
| 8 | # file]. Because Linux targets were available first... | ||
| 9 | # | ||
| 10 | # In addition the script also "distills" code suitable for GNU | ||
| 11 | # assembler, so that it can be compiled with more rigid assemblers, | ||
| 12 | # such as Solaris /usr/ccs/bin/as. | ||
| 13 | # | ||
| 14 | # This translator is not designed to convert *arbitrary* assembler | ||
| 15 | # code from AT&T format to MASM one. It's designed to convert just | ||
| 16 | # enough to provide for dual-ABI OpenSSL modules development... | ||
| 17 | # There *are* limitations and you might have to modify your assembler | ||
| 18 | # code or this script to achieve the desired result... | ||
| 19 | # | ||
| 20 | # Currently recognized limitations: | ||
| 21 | # | ||
| 22 | # - can't use multiple ops per line; | ||
| 23 | # - indirect calls and jumps are not supported; | ||
| 24 | # | ||
| 25 | # Dual-ABI styling rules. | ||
| 26 | # | ||
| 27 | # 1. Adhere to Unix register and stack layout [see the end for | ||
| 28 | # explanation]. | ||
| 29 | # 2. Forget about "red zone," stick to more traditional blended | ||
| 30 | # stack frame allocation. If volatile storage is actually required | ||
| 31 | # that is. If not, just leave the stack as is. | ||
| 32 | # 3. Functions tagged with ".type name,@function" get crafted with | ||
| 33 | # unified Win64 prologue and epilogue automatically. If you want | ||
| 34 | # to take care of ABI differences yourself, tag functions as | ||
| 35 | # ".type name,@abi-omnipotent" instead. | ||
| 36 | # 4. To optimize the Win64 prologue you can specify number of input | ||
| 37 | # arguments as ".type name,@function,N." Keep in mind that if N is | ||
| 38 | # larger than 6, then you *have to* write "abi-omnipotent" code, | ||
| 39 | # because >6 cases can't be addressed with unified prologue. | ||
| 40 | # 5. Name local labels as .L*, do *not* use dynamic labels such as 1: | ||
| 41 | # (sorry about latter). | ||
| 42 | # 6. Don't use [or hand-code with .byte] "rep ret." "ret" mnemonic is | ||
| 43 | # required to identify the spots, where to inject Win64 epilogue! | ||
| 44 | # But on the pros, it's then prefixed with rep automatically:-) | ||
| 45 | # 7. Due to MASM limitations [and certain general counter-intuitivity | ||
| 46 | # of ip-relative addressing] generation of position-independent | ||
| 47 | # code is assisted by synthetic directive, .picmeup, which puts | ||
| 48 | # address of the *next* instruction into target register. | ||
| 49 | # | ||
| 50 | # Example 1: | ||
| 51 | # .picmeup %rax | ||
| 52 | # lea .Label-.(%rax),%rax | ||
| 53 | # Example 2: | ||
| 54 | # .picmeup %rcx | ||
| 55 | # .Lpic_point: | ||
| 56 | # ... | ||
| 57 | # lea .Label-.Lpic_point(%rcx),%rbp | ||
| 58 | |||
| 59 | my $output = shift; | ||
| 60 | |||
| 61 | { my ($stddev,$stdino,@junk)=stat(STDOUT); | ||
| 62 | my ($outdev,$outino,@junk)=stat($output); | ||
| 63 | |||
| 64 | open STDOUT,">$output" || die "can't open $output: $!" | ||
| 65 | if ($stddev!=$outdev || $stdino!=$outino); | ||
| 66 | } | ||
| 67 | |||
| 68 | my $masmref=8 + 50727*2**-32; # 8.00.50727 shipped with VS2005 | ||
| 69 | my $masm=$masmref if ($output =~ /\.asm/); | ||
| 70 | if ($masm && `ml64 2>&1` =~ m/Version ([0-9]+)\.([0-9]+)(\.([0-9]+))?/) | ||
| 71 | { $masm=$1 + $2*2**-16 + $4*2**-32; } | ||
| 72 | |||
| 73 | my $current_segment; | ||
| 74 | my $current_function; | ||
| 75 | |||
| 76 | { package opcode; # pick up opcodes | ||
| 77 | sub re { | ||
| 78 | my $self = shift; # single instance in enough... | ||
| 79 | local *line = shift; | ||
| 80 | undef $ret; | ||
| 81 | |||
| 82 | if ($line =~ /^([a-z][a-z0-9]*)/i) { | ||
| 83 | $self->{op} = $1; | ||
| 84 | $ret = $self; | ||
| 85 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 86 | |||
| 87 | undef $self->{sz}; | ||
| 88 | if ($self->{op} =~ /^(movz)b.*/) { # movz is pain... | ||
| 89 | $self->{op} = $1; | ||
| 90 | $self->{sz} = "b"; | ||
| 91 | } elsif ($self->{op} =~ /call/) { | ||
| 92 | $self->{sz} = "" | ||
| 93 | } elsif ($self->{op} =~ /([a-z]{3,})([qlwb])$/) { | ||
| 94 | $self->{op} = $1; | ||
| 95 | $self->{sz} = $2; | ||
| 96 | } | ||
| 97 | } | ||
| 98 | $ret; | ||
| 99 | } | ||
| 100 | sub size { | ||
| 101 | my $self = shift; | ||
| 102 | my $sz = shift; | ||
| 103 | $self->{sz} = $sz if (defined($sz) && !defined($self->{sz})); | ||
| 104 | $self->{sz}; | ||
| 105 | } | ||
| 106 | sub out { | ||
| 107 | my $self = shift; | ||
| 108 | if (!$masm) { | ||
| 109 | if ($self->{op} eq "movz") { # movz is pain... | ||
| 110 | sprintf "%s%s%s",$self->{op},$self->{sz},shift; | ||
| 111 | } elsif ($self->{op} =~ /^set/) { | ||
| 112 | "$self->{op}"; | ||
| 113 | } elsif ($self->{op} eq "ret") { | ||
| 114 | ".byte 0xf3,0xc3"; | ||
| 115 | } else { | ||
| 116 | "$self->{op}$self->{sz}"; | ||
| 117 | } | ||
| 118 | } else { | ||
| 119 | $self->{op} =~ s/^movz/movzx/; | ||
| 120 | if ($self->{op} eq "ret") { | ||
| 121 | $self->{op} = ""; | ||
| 122 | if ($current_function->{abi} eq "svr4") { | ||
| 123 | $self->{op} = "mov rdi,QWORD PTR 8[rsp]\t;WIN64 epilogue\n\t". | ||
| 124 | "mov rsi,QWORD PTR 16[rsp]\n\t"; | ||
| 125 | } | ||
| 126 | $self->{op} .= "DB\t0F3h,0C3h\t\t;repret"; | ||
| 127 | } | ||
| 128 | $self->{op}; | ||
| 129 | } | ||
| 130 | } | ||
| 131 | } | ||
| 132 | { package const; # pick up constants, which start with $ | ||
| 133 | sub re { | ||
| 134 | my $self = shift; # single instance in enough... | ||
| 135 | local *line = shift; | ||
| 136 | undef $ret; | ||
| 137 | |||
| 138 | if ($line =~ /^\$([^,]+)/) { | ||
| 139 | $self->{value} = $1; | ||
| 140 | $ret = $self; | ||
| 141 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 142 | } | ||
| 143 | $ret; | ||
| 144 | } | ||
| 145 | sub out { | ||
| 146 | my $self = shift; | ||
| 147 | |||
| 148 | if (!$masm) { | ||
| 149 | # Solaris /usr/ccs/bin/as can't handle multiplications | ||
| 150 | # in $self->{value} | ||
| 151 | $self->{value} =~ s/(?<![0-9a-f])(0[x0-9a-f]+)/oct($1)/egi; | ||
| 152 | $self->{value} =~ s/([0-9]+\s*[\*\/\%]\s*[0-9]+)/eval($1)/eg; | ||
| 153 | sprintf "\$%s",$self->{value}; | ||
| 154 | } else { | ||
| 155 | $self->{value} =~ s/0x([0-9a-f]+)/0$1h/ig; | ||
| 156 | sprintf "%s",$self->{value}; | ||
| 157 | } | ||
| 158 | } | ||
| 159 | } | ||
| 160 | { package ea; # pick up effective addresses: expr(%reg,%reg,scale) | ||
| 161 | sub re { | ||
| 162 | my $self = shift; # single instance in enough... | ||
| 163 | local *line = shift; | ||
| 164 | undef $ret; | ||
| 165 | |||
| 166 | if ($line =~ /^([^\(,]*)\(([%\w,]+)\)/) { | ||
| 167 | $self->{label} = $1; | ||
| 168 | ($self->{base},$self->{index},$self->{scale})=split(/,/,$2); | ||
| 169 | $self->{scale} = 1 if (!defined($self->{scale})); | ||
| 170 | $ret = $self; | ||
| 171 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 172 | |||
| 173 | $self->{base} =~ s/^%//; | ||
| 174 | $self->{index} =~ s/^%// if (defined($self->{index})); | ||
| 175 | } | ||
| 176 | $ret; | ||
| 177 | } | ||
| 178 | sub size {} | ||
| 179 | sub out { | ||
| 180 | my $self = shift; | ||
| 181 | my $sz = shift; | ||
| 182 | |||
| 183 | # Silently convert all EAs to 64-bit. This is required for | ||
| 184 | # elder GNU assembler and results in more compact code, | ||
| 185 | # *but* most importantly AES module depends on this feature! | ||
| 186 | $self->{index} =~ s/^[er](.?[0-9xpi])[d]?$/r\1/; | ||
| 187 | $self->{base} =~ s/^[er](.?[0-9xpi])[d]?$/r\1/; | ||
| 188 | |||
| 189 | if (!$masm) { | ||
| 190 | # Solaris /usr/ccs/bin/as can't handle multiplications | ||
| 191 | # in $self->{label} | ||
| 192 | $self->{label} =~ s/(?<![0-9a-f])(0[x0-9a-f]+)/oct($1)/egi; | ||
| 193 | $self->{label} =~ s/([0-9]+\s*[\*\/\%]\s*[0-9]+)/eval($1)/eg; | ||
| 194 | |||
| 195 | if (defined($self->{index})) { | ||
| 196 | sprintf "%s(%%%s,%%%s,%d)", | ||
| 197 | $self->{label},$self->{base}, | ||
| 198 | $self->{index},$self->{scale}; | ||
| 199 | } else { | ||
| 200 | sprintf "%s(%%%s)", $self->{label},$self->{base}; | ||
| 201 | } | ||
| 202 | } else { | ||
| 203 | %szmap = ( b=>"BYTE", w=>"WORD", l=>"DWORD", q=>"QWORD" ); | ||
| 204 | |||
| 205 | $self->{label} =~ s/\./\$/g; | ||
| 206 | $self->{label} =~ s/0x([0-9a-f]+)/0$1h/ig; | ||
| 207 | $self->{label} = "($self->{label})" if ($self->{label} =~ /[\*\+\-\/]/); | ||
| 208 | |||
| 209 | if (defined($self->{index})) { | ||
| 210 | sprintf "%s PTR %s[%s*%d+%s]",$szmap{$sz}, | ||
| 211 | $self->{label}, | ||
| 212 | $self->{index},$self->{scale}, | ||
| 213 | $self->{base}; | ||
| 214 | } elsif ($self->{base} eq "rip") { | ||
| 215 | sprintf "%s PTR %s",$szmap{$sz},$self->{label}; | ||
| 216 | } else { | ||
| 217 | sprintf "%s PTR %s[%s]",$szmap{$sz}, | ||
| 218 | $self->{label},$self->{base}; | ||
| 219 | } | ||
| 220 | } | ||
| 221 | } | ||
| 222 | } | ||
| 223 | { package register; # pick up registers, which start with %. | ||
| 224 | sub re { | ||
| 225 | my $class = shift; # muliple instances... | ||
| 226 | my $self = {}; | ||
| 227 | local *line = shift; | ||
| 228 | undef $ret; | ||
| 229 | |||
| 230 | if ($line =~ /^%(\w+)/) { | ||
| 231 | bless $self,$class; | ||
| 232 | $self->{value} = $1; | ||
| 233 | $ret = $self; | ||
| 234 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 235 | } | ||
| 236 | $ret; | ||
| 237 | } | ||
| 238 | sub size { | ||
| 239 | my $self = shift; | ||
| 240 | undef $ret; | ||
| 241 | |||
| 242 | if ($self->{value} =~ /^r[\d]+b$/i) { $ret="b"; } | ||
| 243 | elsif ($self->{value} =~ /^r[\d]+w$/i) { $ret="w"; } | ||
| 244 | elsif ($self->{value} =~ /^r[\d]+d$/i) { $ret="l"; } | ||
| 245 | elsif ($self->{value} =~ /^r[\w]+$/i) { $ret="q"; } | ||
| 246 | elsif ($self->{value} =~ /^[a-d][hl]$/i){ $ret="b"; } | ||
| 247 | elsif ($self->{value} =~ /^[\w]{2}l$/i) { $ret="b"; } | ||
| 248 | elsif ($self->{value} =~ /^[\w]{2}$/i) { $ret="w"; } | ||
| 249 | elsif ($self->{value} =~ /^e[a-z]{2}$/i){ $ret="l"; } | ||
| 250 | |||
| 251 | $ret; | ||
| 252 | } | ||
| 253 | sub out { | ||
| 254 | my $self = shift; | ||
| 255 | sprintf $masm?"%s":"%%%s",$self->{value}; | ||
| 256 | } | ||
| 257 | } | ||
| 258 | { package label; # pick up labels, which end with : | ||
| 259 | sub re { | ||
| 260 | my $self = shift; # single instance is enough... | ||
| 261 | local *line = shift; | ||
| 262 | undef $ret; | ||
| 263 | |||
| 264 | if ($line =~ /(^[\.\w]+\:)/) { | ||
| 265 | $self->{value} = $1; | ||
| 266 | $ret = $self; | ||
| 267 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 268 | |||
| 269 | $self->{value} =~ s/\.L/\$L/ if ($masm); | ||
| 270 | } | ||
| 271 | $ret; | ||
| 272 | } | ||
| 273 | sub out { | ||
| 274 | my $self = shift; | ||
| 275 | |||
| 276 | if (!$masm) { | ||
| 277 | $self->{value}; | ||
| 278 | } elsif ($self->{value} ne "$current_function->{name}:") { | ||
| 279 | $self->{value}; | ||
| 280 | } elsif ($current_function->{abi} eq "svr4") { | ||
| 281 | my $func = "$current_function->{name} PROC\n". | ||
| 282 | " mov QWORD PTR 8[rsp],rdi\t;WIN64 prologue\n". | ||
| 283 | " mov QWORD PTR 16[rsp],rsi\n"; | ||
| 284 | my $narg = $current_function->{narg}; | ||
| 285 | $narg=6 if (!defined($narg)); | ||
| 286 | $func .= " mov rdi,rcx\n" if ($narg>0); | ||
| 287 | $func .= " mov rsi,rdx\n" if ($narg>1); | ||
| 288 | $func .= " mov rdx,r8\n" if ($narg>2); | ||
| 289 | $func .= " mov rcx,r9\n" if ($narg>3); | ||
| 290 | $func .= " mov r8,QWORD PTR 40[rsp]\n" if ($narg>4); | ||
| 291 | $func .= " mov r9,QWORD PTR 48[rsp]\n" if ($narg>5); | ||
| 292 | $func .= "\n"; | ||
| 293 | } else { | ||
| 294 | "$current_function->{name} PROC"; | ||
| 295 | } | ||
| 296 | } | ||
| 297 | } | ||
| 298 | { package expr; # pick up expressioins | ||
| 299 | sub re { | ||
| 300 | my $self = shift; # single instance is enough... | ||
| 301 | local *line = shift; | ||
| 302 | undef $ret; | ||
| 303 | |||
| 304 | if ($line =~ /(^[^,]+)/) { | ||
| 305 | $self->{value} = $1; | ||
| 306 | $ret = $self; | ||
| 307 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 308 | |||
| 309 | $self->{value} =~ s/\.L/\$L/g if ($masm); | ||
| 310 | } | ||
| 311 | $ret; | ||
| 312 | } | ||
| 313 | sub out { | ||
| 314 | my $self = shift; | ||
| 315 | $self->{value}; | ||
| 316 | } | ||
| 317 | } | ||
| 318 | { package directive; # pick up directives, which start with . | ||
| 319 | sub re { | ||
| 320 | my $self = shift; # single instance is enough... | ||
| 321 | local *line = shift; | ||
| 322 | undef $ret; | ||
| 323 | my $dir; | ||
| 324 | my %opcode = # lea 2f-1f(%rip),%dst; 1: nop; 2: | ||
| 325 | ( "%rax"=>0x01058d48, "%rcx"=>0x010d8d48, | ||
| 326 | "%rdx"=>0x01158d48, "%rbx"=>0x011d8d48, | ||
| 327 | "%rsp"=>0x01258d48, "%rbp"=>0x012d8d48, | ||
| 328 | "%rsi"=>0x01358d48, "%rdi"=>0x013d8d48, | ||
| 329 | "%r8" =>0x01058d4c, "%r9" =>0x010d8d4c, | ||
| 330 | "%r10"=>0x01158d4c, "%r11"=>0x011d8d4c, | ||
| 331 | "%r12"=>0x01258d4c, "%r13"=>0x012d8d4c, | ||
| 332 | "%r14"=>0x01358d4c, "%r15"=>0x013d8d4c ); | ||
| 333 | |||
| 334 | if ($line =~ /^\s*(\.\w+)/) { | ||
| 335 | if (!$masm) { | ||
| 336 | $self->{value} = $1; | ||
| 337 | $line =~ s/\@abi\-omnipotent/\@function/; | ||
| 338 | $line =~ s/\@function.*/\@function/; | ||
| 339 | if ($line =~ /\.picmeup\s+(%r[\w]+)/i) { | ||
| 340 | $self->{value} = sprintf "\t.long\t0x%x,0x90000000",$opcode{$1}; | ||
| 341 | } elsif ($line =~ /\.asciz\s+"(.*)"$/) { | ||
| 342 | $self->{value} = ".byte\t".join(",",unpack("C*",$1),0); | ||
| 343 | } elsif ($line =~ /\.extern/) { | ||
| 344 | $self->{value} = ""; # swallow extern | ||
| 345 | } else { | ||
| 346 | $self->{value} = $line; | ||
| 347 | } | ||
| 348 | $line = ""; | ||
| 349 | return $self; | ||
| 350 | } | ||
| 351 | |||
| 352 | $dir = $1; | ||
| 353 | $ret = $self; | ||
| 354 | undef $self->{value}; | ||
| 355 | $line = substr($line,@+[0]); $line =~ s/^\s+//; | ||
| 356 | SWITCH: for ($dir) { | ||
| 357 | /\.(text)/ | ||
| 358 | && do { my $v=undef; | ||
| 359 | $v="$current_segment\tENDS\n" if ($current_segment); | ||
| 360 | $current_segment = "_$1\$"; | ||
| 361 | $current_segment =~ tr/[a-z]/[A-Z]/; | ||
| 362 | $v.="$current_segment\tSEGMENT "; | ||
| 363 | $v.=$masm>=$masmref ? "ALIGN(64)" : "PAGE"; | ||
| 364 | $v.=" 'CODE'"; | ||
| 365 | $self->{value} = $v; | ||
| 366 | last; | ||
| 367 | }; | ||
| 368 | /\.extern/ && do { $self->{value} = "EXTRN\t".$line.":BYTE"; last; }; | ||
| 369 | /\.globl/ && do { $self->{value} = "PUBLIC\t".$line; last; }; | ||
| 370 | /\.type/ && do { ($sym,$type,$narg) = split(',',$line); | ||
| 371 | if ($type eq "\@function") { | ||
| 372 | undef $current_function; | ||
| 373 | $current_function->{name} = $sym; | ||
| 374 | $current_function->{abi} = "svr4"; | ||
| 375 | $current_function->{narg} = $narg; | ||
| 376 | } elsif ($type eq "\@abi-omnipotent") { | ||
| 377 | undef $current_function; | ||
| 378 | $current_function->{name} = $sym; | ||
| 379 | } | ||
| 380 | last; | ||
| 381 | }; | ||
| 382 | /\.size/ && do { if (defined($current_function)) { | ||
| 383 | $self->{value}="$current_function->{name}\tENDP"; | ||
| 384 | undef $current_function; | ||
| 385 | } | ||
| 386 | last; | ||
| 387 | }; | ||
| 388 | /\.align/ && do { $self->{value} = "ALIGN\t".$line; last; }; | ||
| 389 | /\.(byte|value|long|quad)/ | ||
| 390 | && do { my @arr = split(',',$line); | ||
| 391 | my $sz = substr($1,0,1); | ||
| 392 | my $last = pop(@arr); | ||
| 393 | my $conv = sub { my $var=shift; | ||
| 394 | if ($var=~s/0x([0-9a-f]+)/0$1h/i) { $var; } | ||
| 395 | else { sprintf"0%Xh",$var; } | ||
| 396 | }; | ||
| 397 | |||
| 398 | $sz =~ tr/bvlq/BWDQ/; | ||
| 399 | $self->{value} = "\tD$sz\t"; | ||
| 400 | for (@arr) { $self->{value} .= &$conv($_).","; } | ||
| 401 | $self->{value} .= &$conv($last); | ||
| 402 | last; | ||
| 403 | }; | ||
| 404 | /\.picmeup/ && do { $self->{value} = sprintf"\tDD\t 0%Xh,090000000h",$opcode{$line}; | ||
| 405 | last; | ||
| 406 | }; | ||
| 407 | /\.asciz/ && do { if ($line =~ /^"(.*)"$/) { | ||
| 408 | my @str=unpack("C*",$1); | ||
| 409 | push @str,0; | ||
| 410 | while ($#str>15) { | ||
| 411 | $self->{value}.="DB\t" | ||
| 412 | .join(",",@str[0..15])."\n"; | ||
| 413 | foreach (0..15) { shift @str; } | ||
| 414 | } | ||
| 415 | $self->{value}.="DB\t" | ||
| 416 | .join(",",@str) if (@str); | ||
| 417 | } | ||
| 418 | last; | ||
| 419 | }; | ||
| 420 | } | ||
| 421 | $line = ""; | ||
| 422 | } | ||
| 423 | |||
| 424 | $ret; | ||
| 425 | } | ||
| 426 | sub out { | ||
| 427 | my $self = shift; | ||
| 428 | $self->{value}; | ||
| 429 | } | ||
| 430 | } | ||
| 431 | |||
| 432 | while($line=<>) { | ||
| 433 | |||
| 434 | chomp($line); | ||
| 435 | |||
| 436 | $line =~ s|[#!].*$||; # get rid of asm-style comments... | ||
| 437 | $line =~ s|/\*.*\*/||; # ... and C-style comments... | ||
| 438 | $line =~ s|^\s+||; # ... and skip white spaces in beginning | ||
| 439 | |||
| 440 | undef $label; | ||
| 441 | undef $opcode; | ||
| 442 | undef $dst; | ||
| 443 | undef $src; | ||
| 444 | undef $sz; | ||
| 445 | |||
| 446 | if ($label=label->re(\$line)) { print $label->out(); } | ||
| 447 | |||
| 448 | if (directive->re(\$line)) { | ||
| 449 | printf "%s",directive->out(); | ||
| 450 | } elsif ($opcode=opcode->re(\$line)) { ARGUMENT: { | ||
| 451 | |||
| 452 | if ($src=register->re(\$line)) { opcode->size($src->size()); } | ||
| 453 | elsif ($src=const->re(\$line)) { } | ||
| 454 | elsif ($src=ea->re(\$line)) { } | ||
| 455 | elsif ($src=expr->re(\$line)) { } | ||
| 456 | |||
| 457 | last ARGUMENT if ($line !~ /^,/); | ||
| 458 | |||
| 459 | $line = substr($line,1); $line =~ s/^\s+//; | ||
| 460 | |||
| 461 | if ($dst=register->re(\$line)) { opcode->size($dst->size()); } | ||
| 462 | elsif ($dst=const->re(\$line)) { } | ||
| 463 | elsif ($dst=ea->re(\$line)) { } | ||
| 464 | |||
| 465 | } # ARGUMENT: | ||
| 466 | |||
| 467 | $sz=opcode->size(); | ||
| 468 | |||
| 469 | if (defined($dst)) { | ||
| 470 | if (!$masm) { | ||
| 471 | printf "\t%s\t%s,%s", $opcode->out($dst->size()), | ||
| 472 | $src->out($sz),$dst->out($sz); | ||
| 473 | } else { | ||
| 474 | printf "\t%s\t%s,%s", $opcode->out(), | ||
| 475 | $dst->out($sz),$src->out($sz); | ||
| 476 | } | ||
| 477 | } elsif (defined($src)) { | ||
| 478 | printf "\t%s\t%s",$opcode->out(),$src->out($sz); | ||
| 479 | } else { | ||
| 480 | printf "\t%s",$opcode->out(); | ||
| 481 | } | ||
| 482 | } | ||
| 483 | |||
| 484 | print $line,"\n"; | ||
| 485 | } | ||
| 486 | |||
| 487 | print "\n$current_segment\tENDS\nEND\n" if ($masm); | ||
| 488 | |||
| 489 | close STDOUT; | ||
| 490 | |||
| 491 | ################################################# | ||
| 492 | # Cross-reference x86_64 ABI "card" | ||
| 493 | # | ||
| 494 | # Unix Win64 | ||
| 495 | # %rax * * | ||
| 496 | # %rbx - - | ||
| 497 | # %rcx #4 #1 | ||
| 498 | # %rdx #3 #2 | ||
| 499 | # %rsi #2 - | ||
| 500 | # %rdi #1 - | ||
| 501 | # %rbp - - | ||
| 502 | # %rsp - - | ||
| 503 | # %r8 #5 #3 | ||
| 504 | # %r9 #6 #4 | ||
| 505 | # %r10 * * | ||
| 506 | # %r11 * * | ||
| 507 | # %r12 - - | ||
| 508 | # %r13 - - | ||
| 509 | # %r14 - - | ||
| 510 | # %r15 - - | ||
| 511 | # | ||
| 512 | # (*) volatile register | ||
| 513 | # (-) preserved by callee | ||
| 514 | # (#) Nth argument, volatile | ||
| 515 | # | ||
| 516 | # In Unix terms top of stack is argument transfer area for arguments | ||
| 517 | # which could not be accomodated in registers. Or in other words 7th | ||
| 518 | # [integer] argument resides at 8(%rsp) upon function entry point. | ||
| 519 | # 128 bytes above %rsp constitute a "red zone" which is not touched | ||
| 520 | # by signal handlers and can be used as temporal storage without | ||
| 521 | # allocating a frame. | ||
| 522 | # | ||
| 523 | # In Win64 terms N*8 bytes on top of stack is argument transfer area, | ||
| 524 | # which belongs to/can be overwritten by callee. N is the number of | ||
| 525 | # arguments passed to callee, *but* not less than 4! This means that | ||
| 526 | # upon function entry point 5th argument resides at 40(%rsp), as well | ||
| 527 | # as that 32 bytes from 8(%rsp) can always be used as temporal | ||
| 528 | # storage [without allocating a frame]. One can actually argue that | ||
| 529 | # one can assume a "red zone" above stack pointer under Win64 as well. | ||
| 530 | # Point is that at apparently no occasion Windows kernel would alter | ||
| 531 | # the area above user stack pointer in true asynchronous manner... | ||
| 532 | # | ||
| 533 | # All the above means that if assembler programmer adheres to Unix | ||
| 534 | # register and stack layout, but disregards the "red zone" existense, | ||
| 535 | # it's possible to use following prologue and epilogue to "gear" from | ||
| 536 | # Unix to Win64 ABI in leaf functions with not more than 6 arguments. | ||
| 537 | # | ||
| 538 | # omnipotent_function: | ||
| 539 | # ifdef WIN64 | ||
| 540 | # movq %rdi,8(%rsp) | ||
| 541 | # movq %rsi,16(%rsp) | ||
| 542 | # movq %rcx,%rdi ; if 1st argument is actually present | ||
| 543 | # movq %rdx,%rsi ; if 2nd argument is actually ... | ||
| 544 | # movq %r8,%rdx ; if 3rd argument is ... | ||
| 545 | # movq %r9,%rcx ; if 4th argument ... | ||
| 546 | # movq 40(%rsp),%r8 ; if 5th ... | ||
| 547 | # movq 48(%rsp),%r9 ; if 6th ... | ||
| 548 | # endif | ||
| 549 | # ... | ||
| 550 | # ifdef WIN64 | ||
| 551 | # movq 8(%rsp),%rdi | ||
| 552 | # movq 16(%rsp),%rsi | ||
| 553 | # endif | ||
| 554 | # ret | ||
diff --git a/src/lib/libssl/src/crypto/pqueue/Makefile b/src/lib/libssl/src/crypto/pqueue/Makefile new file mode 100644 index 0000000000..d0c39d25ce --- /dev/null +++ b/src/lib/libssl/src/crypto/pqueue/Makefile | |||
| @@ -0,0 +1,84 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/crypto/pqueue/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= pqueue | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | MAKEFILE= Makefile | ||
| 11 | AR= ar r | ||
| 12 | |||
| 13 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 14 | |||
| 15 | GENERAL=Makefile | ||
| 16 | TEST= | ||
| 17 | APPS= | ||
| 18 | |||
| 19 | LIB=$(TOP)/libcrypto.a | ||
| 20 | LIBSRC=pqueue.c | ||
| 21 | LIBOBJ=pqueue.o | ||
| 22 | |||
| 23 | SRC= $(LIBSRC) | ||
| 24 | |||
| 25 | EXHEADER= pqueue.h pq_compat.h | ||
| 26 | HEADER= $(EXHEADER) | ||
| 27 | |||
| 28 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 29 | |||
| 30 | top: | ||
| 31 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 32 | |||
| 33 | all: lib | ||
| 34 | |||
| 35 | lib: $(LIBOBJ) | ||
| 36 | $(AR) $(LIB) $(LIBOBJ) | ||
| 37 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 38 | @touch lib | ||
| 39 | |||
| 40 | files: | ||
| 41 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 42 | |||
| 43 | links: | ||
| 44 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 45 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 46 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 47 | |||
| 48 | install: | ||
| 49 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 50 | @headerlist="$(EXHEADER)"; for i in $$headerlist ; \ | ||
| 51 | do \ | ||
| 52 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 53 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 54 | done; | ||
| 55 | |||
| 56 | tags: | ||
| 57 | ctags $(SRC) | ||
| 58 | |||
| 59 | tests: | ||
| 60 | |||
| 61 | lint: | ||
| 62 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 63 | |||
| 64 | depend: | ||
| 65 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 66 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 67 | |||
| 68 | dclean: | ||
| 69 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 70 | mv -f Makefile.new $(MAKEFILE) | ||
| 71 | |||
| 72 | clean: | ||
| 73 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 74 | |||
| 75 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 76 | |||
| 77 | pqueue.o: ../../e_os.h ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 78 | pqueue.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h | ||
| 79 | pqueue.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 80 | pqueue.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 81 | pqueue.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 82 | pqueue.o: ../../include/openssl/pq_compat.h ../../include/openssl/safestack.h | ||
| 83 | pqueue.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 84 | pqueue.o: ../cryptlib.h pqueue.c pqueue.h | ||
diff --git a/src/lib/libssl/src/crypto/pqueue/pq_test.c b/src/lib/libssl/src/crypto/pqueue/pq_test.c new file mode 100644 index 0000000000..8d496dfc65 --- /dev/null +++ b/src/lib/libssl/src/crypto/pqueue/pq_test.c | |||
| @@ -0,0 +1,95 @@ | |||
| 1 | /* crypto/pqueue/pq_test.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #include "pqueue.h" | ||
| 61 | |||
| 62 | int | ||
| 63 | main(void) | ||
| 64 | { | ||
| 65 | pitem *item; | ||
| 66 | pqueue pq; | ||
| 67 | |||
| 68 | pq = pqueue_new(); | ||
| 69 | |||
| 70 | item = pitem_new(3, NULL); | ||
| 71 | pqueue_insert(pq, item); | ||
| 72 | |||
| 73 | item = pitem_new(1, NULL); | ||
| 74 | pqueue_insert(pq, item); | ||
| 75 | |||
| 76 | item = pitem_new(2, NULL); | ||
| 77 | pqueue_insert(pq, item); | ||
| 78 | |||
| 79 | item = pqueue_find(pq, 1); | ||
| 80 | fprintf(stderr, "found %ld\n", item->priority); | ||
| 81 | |||
| 82 | item = pqueue_find(pq, 2); | ||
| 83 | fprintf(stderr, "found %ld\n", item->priority); | ||
| 84 | |||
| 85 | item = pqueue_find(pq, 3); | ||
| 86 | fprintf(stderr, "found %ld\n", item ? item->priority: 0); | ||
| 87 | |||
| 88 | pqueue_print(pq); | ||
| 89 | |||
| 90 | for(item = pqueue_pop(pq); item != NULL; item = pqueue_pop(pq)) | ||
| 91 | pitem_free(item); | ||
| 92 | |||
| 93 | pqueue_free(pq); | ||
| 94 | return 0; | ||
| 95 | } | ||
diff --git a/src/lib/libssl/src/crypto/pqueue/pqueue.c b/src/lib/libssl/src/crypto/pqueue/pqueue.c new file mode 100644 index 0000000000..5cc18527f8 --- /dev/null +++ b/src/lib/libssl/src/crypto/pqueue/pqueue.c | |||
| @@ -0,0 +1,236 @@ | |||
| 1 | /* crypto/pqueue/pqueue.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #include "cryptlib.h" | ||
| 61 | #include <openssl/bn.h> | ||
| 62 | #include "pqueue.h" | ||
| 63 | |||
| 64 | typedef struct _pqueue | ||
| 65 | { | ||
| 66 | pitem *items; | ||
| 67 | int count; | ||
| 68 | } pqueue_s; | ||
| 69 | |||
| 70 | pitem * | ||
| 71 | pitem_new(PQ_64BIT priority, void *data) | ||
| 72 | { | ||
| 73 | pitem *item = (pitem *) OPENSSL_malloc(sizeof(pitem)); | ||
| 74 | if (item == NULL) return NULL; | ||
| 75 | |||
| 76 | pq_64bit_init(&(item->priority)); | ||
| 77 | pq_64bit_assign(&item->priority, &priority); | ||
| 78 | |||
| 79 | item->data = data; | ||
| 80 | item->next = NULL; | ||
| 81 | |||
| 82 | return item; | ||
| 83 | } | ||
| 84 | |||
| 85 | void | ||
| 86 | pitem_free(pitem *item) | ||
| 87 | { | ||
| 88 | if (item == NULL) return; | ||
| 89 | |||
| 90 | pq_64bit_free(&(item->priority)); | ||
| 91 | OPENSSL_free(item); | ||
| 92 | } | ||
| 93 | |||
| 94 | pqueue_s * | ||
| 95 | pqueue_new() | ||
| 96 | { | ||
| 97 | pqueue_s *pq = (pqueue_s *) OPENSSL_malloc(sizeof(pqueue_s)); | ||
| 98 | if (pq == NULL) return NULL; | ||
| 99 | |||
| 100 | memset(pq, 0x00, sizeof(pqueue_s)); | ||
| 101 | return pq; | ||
| 102 | } | ||
| 103 | |||
| 104 | void | ||
| 105 | pqueue_free(pqueue_s *pq) | ||
| 106 | { | ||
| 107 | if (pq == NULL) return; | ||
| 108 | |||
| 109 | OPENSSL_free(pq); | ||
| 110 | } | ||
| 111 | |||
| 112 | pitem * | ||
| 113 | pqueue_insert(pqueue_s *pq, pitem *item) | ||
| 114 | { | ||
| 115 | pitem *curr, *next; | ||
| 116 | |||
| 117 | if (pq->items == NULL) | ||
| 118 | { | ||
| 119 | pq->items = item; | ||
| 120 | return item; | ||
| 121 | } | ||
| 122 | |||
| 123 | for(curr = NULL, next = pq->items; | ||
| 124 | next != NULL; | ||
| 125 | curr = next, next = next->next) | ||
| 126 | { | ||
| 127 | if (pq_64bit_gt(&(next->priority), &(item->priority))) | ||
| 128 | { | ||
| 129 | item->next = next; | ||
| 130 | |||
| 131 | if (curr == NULL) | ||
| 132 | pq->items = item; | ||
| 133 | else | ||
| 134 | curr->next = item; | ||
| 135 | |||
| 136 | return item; | ||
| 137 | } | ||
| 138 | /* duplicates not allowed */ | ||
| 139 | if (pq_64bit_eq(&(item->priority), &(next->priority))) | ||
| 140 | return NULL; | ||
| 141 | } | ||
| 142 | |||
| 143 | item->next = NULL; | ||
| 144 | curr->next = item; | ||
| 145 | |||
| 146 | return item; | ||
| 147 | } | ||
| 148 | |||
| 149 | pitem * | ||
| 150 | pqueue_peek(pqueue_s *pq) | ||
| 151 | { | ||
| 152 | return pq->items; | ||
| 153 | } | ||
| 154 | |||
| 155 | pitem * | ||
| 156 | pqueue_pop(pqueue_s *pq) | ||
| 157 | { | ||
| 158 | pitem *item = pq->items; | ||
| 159 | |||
| 160 | if (pq->items != NULL) | ||
| 161 | pq->items = pq->items->next; | ||
| 162 | |||
| 163 | return item; | ||
| 164 | } | ||
| 165 | |||
| 166 | pitem * | ||
| 167 | pqueue_find(pqueue_s *pq, PQ_64BIT priority) | ||
| 168 | { | ||
| 169 | pitem *next, *prev = NULL; | ||
| 170 | pitem *found = NULL; | ||
| 171 | |||
| 172 | if ( pq->items == NULL) | ||
| 173 | return NULL; | ||
| 174 | |||
| 175 | for ( next = pq->items; next->next != NULL; | ||
| 176 | prev = next, next = next->next) | ||
| 177 | { | ||
| 178 | if ( pq_64bit_eq(&(next->priority), &priority)) | ||
| 179 | { | ||
| 180 | found = next; | ||
| 181 | break; | ||
| 182 | } | ||
| 183 | } | ||
| 184 | |||
| 185 | /* check the one last node */ | ||
| 186 | if ( pq_64bit_eq(&(next->priority), &priority)) | ||
| 187 | found = next; | ||
| 188 | |||
| 189 | if ( ! found) | ||
| 190 | return NULL; | ||
| 191 | |||
| 192 | #if 0 /* find works in peek mode */ | ||
| 193 | if ( prev == NULL) | ||
| 194 | pq->items = next->next; | ||
| 195 | else | ||
| 196 | prev->next = next->next; | ||
| 197 | #endif | ||
| 198 | |||
| 199 | return found; | ||
| 200 | } | ||
| 201 | |||
| 202 | #if PQ_64BIT_IS_INTEGER | ||
| 203 | void | ||
| 204 | pqueue_print(pqueue_s *pq) | ||
| 205 | { | ||
| 206 | pitem *item = pq->items; | ||
| 207 | |||
| 208 | while(item != NULL) | ||
| 209 | { | ||
| 210 | printf("item\t" PQ_64BIT_PRINT "\n", item->priority); | ||
| 211 | item = item->next; | ||
| 212 | } | ||
| 213 | } | ||
| 214 | #endif | ||
| 215 | |||
| 216 | pitem * | ||
| 217 | pqueue_iterator(pqueue_s *pq) | ||
| 218 | { | ||
| 219 | return pqueue_peek(pq); | ||
| 220 | } | ||
| 221 | |||
| 222 | pitem * | ||
| 223 | pqueue_next(pitem **item) | ||
| 224 | { | ||
| 225 | pitem *ret; | ||
| 226 | |||
| 227 | if ( item == NULL || *item == NULL) | ||
| 228 | return NULL; | ||
| 229 | |||
| 230 | |||
| 231 | /* *item != NULL */ | ||
| 232 | ret = *item; | ||
| 233 | *item = (*item)->next; | ||
| 234 | |||
| 235 | return ret; | ||
| 236 | } | ||
diff --git a/src/lib/libssl/src/crypto/pqueue/pqueue.h b/src/lib/libssl/src/crypto/pqueue/pqueue.h new file mode 100644 index 0000000000..02386d130e --- /dev/null +++ b/src/lib/libssl/src/crypto/pqueue/pqueue.h | |||
| @@ -0,0 +1,95 @@ | |||
| 1 | /* crypto/pqueue/pqueue.h */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #ifndef HEADER_PQUEUE_H | ||
| 61 | #define HEADER_PQUEUE_H | ||
| 62 | |||
| 63 | #include <stdio.h> | ||
| 64 | #include <stdlib.h> | ||
| 65 | #include <string.h> | ||
| 66 | |||
| 67 | #include <openssl/pq_compat.h> | ||
| 68 | |||
| 69 | typedef struct _pqueue *pqueue; | ||
| 70 | |||
| 71 | typedef struct _pitem | ||
| 72 | { | ||
| 73 | PQ_64BIT priority; | ||
| 74 | void *data; | ||
| 75 | struct _pitem *next; | ||
| 76 | } pitem; | ||
| 77 | |||
| 78 | typedef struct _pitem *piterator; | ||
| 79 | |||
| 80 | pitem *pitem_new(PQ_64BIT priority, void *data); | ||
| 81 | void pitem_free(pitem *item); | ||
| 82 | |||
| 83 | pqueue pqueue_new(void); | ||
| 84 | void pqueue_free(pqueue pq); | ||
| 85 | |||
| 86 | pitem *pqueue_insert(pqueue pq, pitem *item); | ||
| 87 | pitem *pqueue_peek(pqueue pq); | ||
| 88 | pitem *pqueue_pop(pqueue pq); | ||
| 89 | pitem *pqueue_find(pqueue pq, PQ_64BIT priority); | ||
| 90 | pitem *pqueue_iterator(pqueue pq); | ||
| 91 | pitem *pqueue_next(piterator *iter); | ||
| 92 | |||
| 93 | void pqueue_print(pqueue pq); | ||
| 94 | |||
| 95 | #endif /* ! HEADER_PQUEUE_H */ | ||
diff --git a/src/lib/libssl/src/crypto/rand/rand_nw.c b/src/lib/libssl/src/crypto/rand/rand_nw.c new file mode 100644 index 0000000000..f177ffbe82 --- /dev/null +++ b/src/lib/libssl/src/crypto/rand/rand_nw.c | |||
| @@ -0,0 +1,183 @@ | |||
| 1 | /* crypto/rand/rand_nw.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | /* ==================================================================== | ||
| 59 | * Copyright (c) 1998-2000 The OpenSSL Project. All rights reserved. | ||
| 60 | * | ||
| 61 | * Redistribution and use in source and binary forms, with or without | ||
| 62 | * modification, are permitted provided that the following conditions | ||
| 63 | * are met: | ||
| 64 | * | ||
| 65 | * 1. Redistributions of source code must retain the above copyright | ||
| 66 | * notice, this list of conditions and the following disclaimer. | ||
| 67 | * | ||
| 68 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 69 | * notice, this list of conditions and the following disclaimer in | ||
| 70 | * the documentation and/or other materials provided with the | ||
| 71 | * distribution. | ||
| 72 | * | ||
| 73 | * 3. All advertising materials mentioning features or use of this | ||
| 74 | * software must display the following acknowledgment: | ||
| 75 | * "This product includes software developed by the OpenSSL Project | ||
| 76 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 77 | * | ||
| 78 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 79 | * endorse or promote products derived from this software without | ||
| 80 | * prior written permission. For written permission, please contact | ||
| 81 | * openssl-core@openssl.org. | ||
| 82 | * | ||
| 83 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 84 | * nor may "OpenSSL" appear in their names without prior written | ||
| 85 | * permission of the OpenSSL Project. | ||
| 86 | * | ||
| 87 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 88 | * acknowledgment: | ||
| 89 | * "This product includes software developed by the OpenSSL Project | ||
| 90 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 91 | * | ||
| 92 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 93 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 94 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 95 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 96 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 97 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 98 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 99 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 100 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 101 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 102 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 103 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 104 | * ==================================================================== | ||
| 105 | * | ||
| 106 | * This product includes cryptographic software written by Eric Young | ||
| 107 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 108 | * Hudson (tjh@cryptsoft.com). | ||
| 109 | * | ||
| 110 | */ | ||
| 111 | |||
| 112 | #include "cryptlib.h" | ||
| 113 | #include <openssl/rand.h> | ||
| 114 | #include "rand_lcl.h" | ||
| 115 | |||
| 116 | #if defined (OPENSSL_SYS_NETWARE) | ||
| 117 | |||
| 118 | #if defined(NETWARE_LIBC) | ||
| 119 | #include <nks/thread.h> | ||
| 120 | #else | ||
| 121 | #include <nwthread.h> | ||
| 122 | #endif | ||
| 123 | |||
| 124 | extern int GetProcessSwitchCount(void); | ||
| 125 | #if !defined(NETWARE_LIBC) || (CURRENT_NDK_THRESHOLD < 509220000) | ||
| 126 | extern void *RunningProcess; /* declare here same as found in newer NDKs */ | ||
| 127 | extern unsigned long GetSuperHighResolutionTimer(void); | ||
| 128 | #endif | ||
| 129 | |||
| 130 | /* the FAQ indicates we need to provide at least 20 bytes (160 bits) of seed | ||
| 131 | */ | ||
| 132 | int RAND_poll(void) | ||
| 133 | { | ||
| 134 | unsigned long l; | ||
| 135 | unsigned long tsc; | ||
| 136 | int i; | ||
| 137 | |||
| 138 | /* There are several options to gather miscellaneous data | ||
| 139 | * but for now we will loop checking the time stamp counter (rdtsc) and | ||
| 140 | * the SuperHighResolutionTimer. Each iteration will collect 8 bytes | ||
| 141 | * of data but it is treated as only 1 byte of entropy. The call to | ||
| 142 | * ThreadSwitchWithDelay() will introduce additional variability into | ||
| 143 | * the data returned by rdtsc. | ||
| 144 | * | ||
| 145 | * Applications can agument the seed material by adding additional | ||
| 146 | * stuff with RAND_add() and should probably do so. | ||
| 147 | */ | ||
| 148 | l = GetProcessSwitchCount(); | ||
| 149 | RAND_add(&l,sizeof(l),1); | ||
| 150 | |||
| 151 | /* need to cast the void* to unsigned long here */ | ||
| 152 | l = (unsigned long)RunningProcess; | ||
| 153 | RAND_add(&l,sizeof(l),1); | ||
| 154 | |||
| 155 | for( i=2; i<ENTROPY_NEEDED; i++) | ||
| 156 | { | ||
| 157 | #ifdef __MWERKS__ | ||
| 158 | asm | ||
| 159 | { | ||
| 160 | rdtsc | ||
| 161 | mov tsc, eax | ||
| 162 | } | ||
| 163 | #else | ||
| 164 | asm volatile("rdtsc":"=A" (tsc)); | ||
| 165 | #endif | ||
| 166 | |||
| 167 | RAND_add(&tsc, sizeof(tsc), 1); | ||
| 168 | |||
| 169 | l = GetSuperHighResolutionTimer(); | ||
| 170 | RAND_add(&l, sizeof(l), 0); | ||
| 171 | |||
| 172 | # if defined(NETWARE_LIBC) | ||
| 173 | NXThreadYield(); | ||
| 174 | # else /* NETWARE_CLIB */ | ||
| 175 | ThreadSwitchWithDelay(); | ||
| 176 | # endif | ||
| 177 | } | ||
| 178 | |||
| 179 | return 1; | ||
| 180 | } | ||
| 181 | |||
| 182 | #endif | ||
| 183 | |||
diff --git a/src/lib/libssl/src/crypto/rc4/asm/rc4-x86_64.pl b/src/lib/libssl/src/crypto/rc4/asm/rc4-x86_64.pl new file mode 100755 index 0000000000..2d47320485 --- /dev/null +++ b/src/lib/libssl/src/crypto/rc4/asm/rc4-x86_64.pl | |||
| @@ -0,0 +1,364 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | # | ||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. The module is, however, dual licensed under OpenSSL and | ||
| 6 | # CRYPTOGAMS licenses depending on where you obtain it. For further | ||
| 7 | # details see http://www.openssl.org/~appro/cryptogams/. | ||
| 8 | # ==================================================================== | ||
| 9 | # | ||
| 10 | # 2.22x RC4 tune-up:-) It should be noted though that my hand [as in | ||
| 11 | # "hand-coded assembler"] doesn't stand for the whole improvement | ||
| 12 | # coefficient. It turned out that eliminating RC4_CHAR from config | ||
| 13 | # line results in ~40% improvement (yes, even for C implementation). | ||
| 14 | # Presumably it has everything to do with AMD cache architecture and | ||
| 15 | # RAW or whatever penalties. Once again! The module *requires* config | ||
| 16 | # line *without* RC4_CHAR! As for coding "secret," I bet on partial | ||
| 17 | # register arithmetics. For example instead of 'inc %r8; and $255,%r8' | ||
| 18 | # I simply 'inc %r8b'. Even though optimization manual discourages | ||
| 19 | # to operate on partial registers, it turned out to be the best bet. | ||
| 20 | # At least for AMD... How IA32E would perform remains to be seen... | ||
| 21 | |||
| 22 | # As was shown by Marc Bevand reordering of couple of load operations | ||
| 23 | # results in even higher performance gain of 3.3x:-) At least on | ||
| 24 | # Opteron... For reference, 1x in this case is RC4_CHAR C-code | ||
| 25 | # compiled with gcc 3.3.2, which performs at ~54MBps per 1GHz clock. | ||
| 26 | # Latter means that if you want to *estimate* what to expect from | ||
| 27 | # *your* Opteron, then multiply 54 by 3.3 and clock frequency in GHz. | ||
| 28 | |||
| 29 | # Intel P4 EM64T core was found to run the AMD64 code really slow... | ||
| 30 | # The only way to achieve comparable performance on P4 was to keep | ||
| 31 | # RC4_CHAR. Kind of ironic, huh? As it's apparently impossible to | ||
| 32 | # compose blended code, which would perform even within 30% marginal | ||
| 33 | # on either AMD and Intel platforms, I implement both cases. See | ||
| 34 | # rc4_skey.c for further details... | ||
| 35 | |||
| 36 | # P4 EM64T core appears to be "allergic" to 64-bit inc/dec. Replacing | ||
| 37 | # those with add/sub results in 50% performance improvement of folded | ||
| 38 | # loop... | ||
| 39 | |||
| 40 | # As was shown by Zou Nanhai loop unrolling can improve Intel EM64T | ||
| 41 | # performance by >30% [unlike P4 32-bit case that is]. But this is | ||
| 42 | # provided that loads are reordered even more aggressively! Both code | ||
| 43 | # pathes, AMD64 and EM64T, reorder loads in essentially same manner | ||
| 44 | # as my IA-64 implementation. On Opteron this resulted in modest 5% | ||
| 45 | # improvement [I had to test it], while final Intel P4 performance | ||
| 46 | # achieves respectful 432MBps on 2.8GHz processor now. For reference. | ||
| 47 | # If executed on Xeon, current RC4_CHAR code-path is 2.7x faster than | ||
| 48 | # RC4_INT code-path. While if executed on Opteron, it's only 25% | ||
| 49 | # slower than the RC4_INT one [meaning that if CPU µ-arch detection | ||
| 50 | # is not implemented, then this final RC4_CHAR code-path should be | ||
| 51 | # preferred, as it provides better *all-round* performance]. | ||
| 52 | |||
| 53 | # Intel Core2 was observed to perform poorly on both code paths:-( It | ||
| 54 | # apparently suffers from some kind of partial register stall, which | ||
| 55 | # occurs in 64-bit mode only [as virtually identical 32-bit loop was | ||
| 56 | # observed to outperform 64-bit one by almost 50%]. Adding two movzb to | ||
| 57 | # cloop1 boosts its performance by 80%! This loop appears to be optimal | ||
| 58 | # fit for Core2 and therefore the code was modified to skip cloop8 on | ||
| 59 | # this CPU. | ||
| 60 | |||
| 61 | $output=shift; | ||
| 62 | |||
| 63 | $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1; | ||
| 64 | ( $xlate="${dir}x86_64-xlate.pl" and -f $xlate ) or | ||
| 65 | ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or | ||
| 66 | die "can't locate x86_64-xlate.pl"; | ||
| 67 | |||
| 68 | open STDOUT,"| $^X $xlate $output"; | ||
| 69 | |||
| 70 | $dat="%rdi"; # arg1 | ||
| 71 | $len="%rsi"; # arg2 | ||
| 72 | $inp="%rdx"; # arg3 | ||
| 73 | $out="%rcx"; # arg4 | ||
| 74 | |||
| 75 | @XX=("%r8","%r10"); | ||
| 76 | @TX=("%r9","%r11"); | ||
| 77 | $YY="%r12"; | ||
| 78 | $TY="%r13"; | ||
| 79 | |||
| 80 | $code=<<___; | ||
| 81 | .text | ||
| 82 | |||
| 83 | .globl RC4 | ||
| 84 | .type RC4,\@function,4 | ||
| 85 | .align 16 | ||
| 86 | RC4: or $len,$len | ||
| 87 | jne .Lentry | ||
| 88 | ret | ||
| 89 | .Lentry: | ||
| 90 | push %r12 | ||
| 91 | push %r13 | ||
| 92 | |||
| 93 | add \$8,$dat | ||
| 94 | movl -8($dat),$XX[0]#d | ||
| 95 | movl -4($dat),$YY#d | ||
| 96 | cmpl \$-1,256($dat) | ||
| 97 | je .LRC4_CHAR | ||
| 98 | inc $XX[0]#b | ||
| 99 | movl ($dat,$XX[0],4),$TX[0]#d | ||
| 100 | test \$-8,$len | ||
| 101 | jz .Lloop1 | ||
| 102 | jmp .Lloop8 | ||
| 103 | .align 16 | ||
| 104 | .Lloop8: | ||
| 105 | ___ | ||
| 106 | for ($i=0;$i<8;$i++) { | ||
| 107 | $code.=<<___; | ||
| 108 | add $TX[0]#b,$YY#b | ||
| 109 | mov $XX[0],$XX[1] | ||
| 110 | movl ($dat,$YY,4),$TY#d | ||
| 111 | ror \$8,%rax # ror is redundant when $i=0 | ||
| 112 | inc $XX[1]#b | ||
| 113 | movl ($dat,$XX[1],4),$TX[1]#d | ||
| 114 | cmp $XX[1],$YY | ||
| 115 | movl $TX[0]#d,($dat,$YY,4) | ||
| 116 | cmove $TX[0],$TX[1] | ||
| 117 | movl $TY#d,($dat,$XX[0],4) | ||
| 118 | add $TX[0]#b,$TY#b | ||
| 119 | movb ($dat,$TY,4),%al | ||
| 120 | ___ | ||
| 121 | push(@TX,shift(@TX)); push(@XX,shift(@XX)); # "rotate" registers | ||
| 122 | } | ||
| 123 | $code.=<<___; | ||
| 124 | ror \$8,%rax | ||
| 125 | sub \$8,$len | ||
| 126 | |||
| 127 | xor ($inp),%rax | ||
| 128 | add \$8,$inp | ||
| 129 | mov %rax,($out) | ||
| 130 | add \$8,$out | ||
| 131 | |||
| 132 | test \$-8,$len | ||
| 133 | jnz .Lloop8 | ||
| 134 | cmp \$0,$len | ||
| 135 | jne .Lloop1 | ||
| 136 | ___ | ||
| 137 | $code.=<<___; | ||
| 138 | .Lexit: | ||
| 139 | sub \$1,$XX[0]#b | ||
| 140 | movl $XX[0]#d,-8($dat) | ||
| 141 | movl $YY#d,-4($dat) | ||
| 142 | |||
| 143 | pop %r13 | ||
| 144 | pop %r12 | ||
| 145 | ret | ||
| 146 | .align 16 | ||
| 147 | .Lloop1: | ||
| 148 | add $TX[0]#b,$YY#b | ||
| 149 | movl ($dat,$YY,4),$TY#d | ||
| 150 | movl $TX[0]#d,($dat,$YY,4) | ||
| 151 | movl $TY#d,($dat,$XX[0],4) | ||
| 152 | add $TY#b,$TX[0]#b | ||
| 153 | inc $XX[0]#b | ||
| 154 | movl ($dat,$TX[0],4),$TY#d | ||
| 155 | movl ($dat,$XX[0],4),$TX[0]#d | ||
| 156 | xorb ($inp),$TY#b | ||
| 157 | inc $inp | ||
| 158 | movb $TY#b,($out) | ||
| 159 | inc $out | ||
| 160 | dec $len | ||
| 161 | jnz .Lloop1 | ||
| 162 | jmp .Lexit | ||
| 163 | |||
| 164 | .align 16 | ||
| 165 | .LRC4_CHAR: | ||
| 166 | add \$1,$XX[0]#b | ||
| 167 | movzb ($dat,$XX[0]),$TX[0]#d | ||
| 168 | test \$-8,$len | ||
| 169 | jz .Lcloop1 | ||
| 170 | cmp \$0,260($dat) | ||
| 171 | jnz .Lcloop1 | ||
| 172 | push %rbx | ||
| 173 | jmp .Lcloop8 | ||
| 174 | .align 16 | ||
| 175 | .Lcloop8: | ||
| 176 | mov ($inp),%eax | ||
| 177 | mov 4($inp),%ebx | ||
| 178 | ___ | ||
| 179 | # unroll 2x4-wise, because 64-bit rotates kill Intel P4... | ||
| 180 | for ($i=0;$i<4;$i++) { | ||
| 181 | $code.=<<___; | ||
| 182 | add $TX[0]#b,$YY#b | ||
| 183 | lea 1($XX[0]),$XX[1] | ||
| 184 | movzb ($dat,$YY),$TY#d | ||
| 185 | movzb $XX[1]#b,$XX[1]#d | ||
| 186 | movzb ($dat,$XX[1]),$TX[1]#d | ||
| 187 | movb $TX[0]#b,($dat,$YY) | ||
| 188 | cmp $XX[1],$YY | ||
| 189 | movb $TY#b,($dat,$XX[0]) | ||
| 190 | jne .Lcmov$i # Intel cmov is sloooow... | ||
| 191 | mov $TX[0],$TX[1] | ||
| 192 | .Lcmov$i: | ||
| 193 | add $TX[0]#b,$TY#b | ||
| 194 | xor ($dat,$TY),%al | ||
| 195 | ror \$8,%eax | ||
| 196 | ___ | ||
| 197 | push(@TX,shift(@TX)); push(@XX,shift(@XX)); # "rotate" registers | ||
| 198 | } | ||
| 199 | for ($i=4;$i<8;$i++) { | ||
| 200 | $code.=<<___; | ||
| 201 | add $TX[0]#b,$YY#b | ||
| 202 | lea 1($XX[0]),$XX[1] | ||
| 203 | movzb ($dat,$YY),$TY#d | ||
| 204 | movzb $XX[1]#b,$XX[1]#d | ||
| 205 | movzb ($dat,$XX[1]),$TX[1]#d | ||
| 206 | movb $TX[0]#b,($dat,$YY) | ||
| 207 | cmp $XX[1],$YY | ||
| 208 | movb $TY#b,($dat,$XX[0]) | ||
| 209 | jne .Lcmov$i # Intel cmov is sloooow... | ||
| 210 | mov $TX[0],$TX[1] | ||
| 211 | .Lcmov$i: | ||
| 212 | add $TX[0]#b,$TY#b | ||
| 213 | xor ($dat,$TY),%bl | ||
| 214 | ror \$8,%ebx | ||
| 215 | ___ | ||
| 216 | push(@TX,shift(@TX)); push(@XX,shift(@XX)); # "rotate" registers | ||
| 217 | } | ||
| 218 | $code.=<<___; | ||
| 219 | lea -8($len),$len | ||
| 220 | mov %eax,($out) | ||
| 221 | lea 8($inp),$inp | ||
| 222 | mov %ebx,4($out) | ||
| 223 | lea 8($out),$out | ||
| 224 | |||
| 225 | test \$-8,$len | ||
| 226 | jnz .Lcloop8 | ||
| 227 | pop %rbx | ||
| 228 | cmp \$0,$len | ||
| 229 | jne .Lcloop1 | ||
| 230 | jmp .Lexit | ||
| 231 | ___ | ||
| 232 | $code.=<<___; | ||
| 233 | .align 16 | ||
| 234 | .Lcloop1: | ||
| 235 | add $TX[0]#b,$YY#b | ||
| 236 | movzb ($dat,$YY),$TY#d | ||
| 237 | movb $TX[0]#b,($dat,$YY) | ||
| 238 | movb $TY#b,($dat,$XX[0]) | ||
| 239 | add $TX[0]#b,$TY#b | ||
| 240 | add \$1,$XX[0]#b | ||
| 241 | movzb $TY#b,$TY#d | ||
| 242 | movzb $XX[0]#b,$XX[0]#d | ||
| 243 | movzb ($dat,$TY),$TY#d | ||
| 244 | movzb ($dat,$XX[0]),$TX[0]#d | ||
| 245 | xorb ($inp),$TY#b | ||
| 246 | lea 1($inp),$inp | ||
| 247 | movb $TY#b,($out) | ||
| 248 | lea 1($out),$out | ||
| 249 | sub \$1,$len | ||
| 250 | jnz .Lcloop1 | ||
| 251 | jmp .Lexit | ||
| 252 | .size RC4,.-RC4 | ||
| 253 | ___ | ||
| 254 | |||
| 255 | $idx="%r8"; | ||
| 256 | $ido="%r9"; | ||
| 257 | |||
| 258 | $code.=<<___; | ||
| 259 | .extern OPENSSL_ia32cap_P | ||
| 260 | .globl RC4_set_key | ||
| 261 | .type RC4_set_key,\@function,3 | ||
| 262 | .align 16 | ||
| 263 | RC4_set_key: | ||
| 264 | lea 8($dat),$dat | ||
| 265 | lea ($inp,$len),$inp | ||
| 266 | neg $len | ||
| 267 | mov $len,%rcx | ||
| 268 | xor %eax,%eax | ||
| 269 | xor $ido,$ido | ||
| 270 | xor %r10,%r10 | ||
| 271 | xor %r11,%r11 | ||
| 272 | |||
| 273 | mov OPENSSL_ia32cap_P(%rip),$idx#d | ||
| 274 | bt \$20,$idx#d | ||
| 275 | jnc .Lw1stloop | ||
| 276 | bt \$30,$idx#d | ||
| 277 | setc $ido#b | ||
| 278 | mov $ido#d,260($dat) | ||
| 279 | jmp .Lc1stloop | ||
| 280 | |||
| 281 | .align 16 | ||
| 282 | .Lw1stloop: | ||
| 283 | mov %eax,($dat,%rax,4) | ||
| 284 | add \$1,%al | ||
| 285 | jnc .Lw1stloop | ||
| 286 | |||
| 287 | xor $ido,$ido | ||
| 288 | xor $idx,$idx | ||
| 289 | .align 16 | ||
| 290 | .Lw2ndloop: | ||
| 291 | mov ($dat,$ido,4),%r10d | ||
| 292 | add ($inp,$len,1),$idx#b | ||
| 293 | add %r10b,$idx#b | ||
| 294 | add \$1,$len | ||
| 295 | mov ($dat,$idx,4),%r11d | ||
| 296 | cmovz %rcx,$len | ||
| 297 | mov %r10d,($dat,$idx,4) | ||
| 298 | mov %r11d,($dat,$ido,4) | ||
| 299 | add \$1,$ido#b | ||
| 300 | jnc .Lw2ndloop | ||
| 301 | jmp .Lexit_key | ||
| 302 | |||
| 303 | .align 16 | ||
| 304 | .Lc1stloop: | ||
| 305 | mov %al,($dat,%rax) | ||
| 306 | add \$1,%al | ||
| 307 | jnc .Lc1stloop | ||
| 308 | |||
| 309 | xor $ido,$ido | ||
| 310 | xor $idx,$idx | ||
| 311 | .align 16 | ||
| 312 | .Lc2ndloop: | ||
| 313 | mov ($dat,$ido),%r10b | ||
| 314 | add ($inp,$len),$idx#b | ||
| 315 | add %r10b,$idx#b | ||
| 316 | add \$1,$len | ||
| 317 | mov ($dat,$idx),%r11b | ||
| 318 | jnz .Lcnowrap | ||
| 319 | mov %rcx,$len | ||
| 320 | .Lcnowrap: | ||
| 321 | mov %r10b,($dat,$idx) | ||
| 322 | mov %r11b,($dat,$ido) | ||
| 323 | add \$1,$ido#b | ||
| 324 | jnc .Lc2ndloop | ||
| 325 | movl \$-1,256($dat) | ||
| 326 | |||
| 327 | .align 16 | ||
| 328 | .Lexit_key: | ||
| 329 | xor %eax,%eax | ||
| 330 | mov %eax,-8($dat) | ||
| 331 | mov %eax,-4($dat) | ||
| 332 | ret | ||
| 333 | .size RC4_set_key,.-RC4_set_key | ||
| 334 | |||
| 335 | .globl RC4_options | ||
| 336 | .type RC4_options,\@function,0 | ||
| 337 | .align 16 | ||
| 338 | RC4_options: | ||
| 339 | .picmeup %rax | ||
| 340 | lea .Lopts-.(%rax),%rax | ||
| 341 | mov OPENSSL_ia32cap_P(%rip),%edx | ||
| 342 | bt \$20,%edx | ||
| 343 | jnc .Ldone | ||
| 344 | add \$12,%rax | ||
| 345 | bt \$30,%edx | ||
| 346 | jnc .Ldone | ||
| 347 | add \$13,%rax | ||
| 348 | .Ldone: | ||
| 349 | ret | ||
| 350 | .align 64 | ||
| 351 | .Lopts: | ||
| 352 | .asciz "rc4(8x,int)" | ||
| 353 | .asciz "rc4(8x,char)" | ||
| 354 | .asciz "rc4(1x,char)" | ||
| 355 | .asciz "RC4 for x86_64, CRYPTOGAMS by <appro\@openssl.org>" | ||
| 356 | .align 64 | ||
| 357 | .size RC4_options,.-RC4_options | ||
| 358 | ___ | ||
| 359 | |||
| 360 | $code =~ s/#([bwd])/$1/gm; | ||
| 361 | |||
| 362 | print $code; | ||
| 363 | |||
| 364 | close STDOUT; | ||
diff --git a/src/lib/libssl/src/fips-1.0/aes/fips_aes_locl.h b/src/lib/libssl/src/crypto/rsa/rsa_depr.c index 4184729e34..a859ded987 100644 --- a/src/lib/libssl/src/fips-1.0/aes/fips_aes_locl.h +++ b/src/lib/libssl/src/crypto/rsa/rsa_depr.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* crypto/aes/aes.h -*- mode:C; c-file-style: "eay" -*- */ | 1 | /* crypto/rsa/rsa_depr.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| @@ -47,39 +47,55 @@ | |||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. |
| 48 | * ==================================================================== | 48 | * ==================================================================== |
| 49 | * | 49 | * |
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 50 | */ | 54 | */ |
| 51 | 55 | ||
| 52 | #ifndef HEADER_AES_LOCL_H | 56 | /* NB: This file contains deprecated functions (compatibility wrappers to the |
| 53 | #define HEADER_AES_LOCL_H | 57 | * "new" versions). */ |
| 54 | 58 | ||
| 55 | #include <openssl/e_os2.h> | 59 | #include <stdio.h> |
| 60 | #include <time.h> | ||
| 61 | #include "cryptlib.h" | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | #include <openssl/rsa.h> | ||
| 56 | 64 | ||
| 57 | #ifdef OPENSSL_NO_AES | 65 | #ifdef OPENSSL_NO_DEPRECATED |
| 58 | #error AES is disabled. | ||
| 59 | #endif | ||
| 60 | 66 | ||
| 61 | #include <stdio.h> | 67 | static void *dummy=&dummy; |
| 62 | #include <stdlib.h> | ||
| 63 | #include <string.h> | ||
| 64 | 68 | ||
| 65 | #if defined(_MSC_VER) && !defined(_M_IA64) && !defined(OPENSSL_SYS_WINCE) | ||
| 66 | # define SWAP(x) (_lrotl(x, 8) & 0x00ff00ff | _lrotr(x, 8) & 0xff00ff00) | ||
| 67 | # define GETU32(p) SWAP(*((u32 *)(p))) | ||
| 68 | # define PUTU32(ct, st) { *((u32 *)(ct)) = SWAP((st)); } | ||
| 69 | #else | 69 | #else |
| 70 | # define GETU32(pt) (((u32)(pt)[0] << 24) ^ ((u32)(pt)[1] << 16) ^ ((u32)(pt)[2] << 8) ^ ((u32)(pt)[3])) | ||
| 71 | # define PUTU32(ct, st) { (ct)[0] = (u8)((st) >> 24); (ct)[1] = (u8)((st) >> 16); (ct)[2] = (u8)((st) >> 8); (ct)[3] = (u8)(st); } | ||
| 72 | #endif | ||
| 73 | 70 | ||
| 74 | typedef unsigned long u32; | 71 | RSA *RSA_generate_key(int bits, unsigned long e_value, |
| 75 | typedef unsigned short u16; | 72 | void (*callback)(int,int,void *), void *cb_arg) |
| 76 | typedef unsigned char u8; | 73 | { |
| 74 | BN_GENCB cb; | ||
| 75 | int i; | ||
| 76 | RSA *rsa = RSA_new(); | ||
| 77 | BIGNUM *e = BN_new(); | ||
| 78 | |||
| 79 | if(!rsa || !e) goto err; | ||
| 77 | 80 | ||
| 78 | #define MAXKC (256/32) | 81 | /* The problem is when building with 8, 16, or 32 BN_ULONG, |
| 79 | #define MAXKB (256/8) | 82 | * unsigned long can be larger */ |
| 80 | #define MAXNR 14 | 83 | for (i=0; i<(int)sizeof(unsigned long)*8; i++) |
| 84 | { | ||
| 85 | if (e_value & (1UL<<i)) | ||
| 86 | if (BN_set_bit(e,i) == 0) | ||
| 87 | goto err; | ||
| 88 | } | ||
| 81 | 89 | ||
| 82 | /* This controls loop-unrolling in aes_core.c */ | 90 | BN_GENCB_set_old(&cb, callback, cb_arg); |
| 83 | #undef FULL_UNROLL | ||
| 84 | 91 | ||
| 85 | #endif /* !HEADER_AES_LOCL_H */ | 92 | if(RSA_generate_key_ex(rsa, bits, e, &cb)) { |
| 93 | BN_free(e); | ||
| 94 | return rsa; | ||
| 95 | } | ||
| 96 | err: | ||
| 97 | if(e) BN_free(e); | ||
| 98 | if(rsa) RSA_free(rsa); | ||
| 99 | return 0; | ||
| 100 | } | ||
| 101 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/rsa/rsa_pss.c b/src/lib/libssl/src/crypto/rsa/rsa_pss.c new file mode 100644 index 0000000000..e19d18c5b9 --- /dev/null +++ b/src/lib/libssl/src/crypto/rsa/rsa_pss.c | |||
| @@ -0,0 +1,269 @@ | |||
| 1 | /* rsa_pss.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include "cryptlib.h" | ||
| 61 | #include <openssl/bn.h> | ||
| 62 | #include <openssl/rsa.h> | ||
| 63 | #include <openssl/evp.h> | ||
| 64 | #include <openssl/rand.h> | ||
| 65 | #include <openssl/sha.h> | ||
| 66 | |||
| 67 | static const unsigned char zeroes[] = {0,0,0,0,0,0,0,0}; | ||
| 68 | |||
| 69 | #if defined(_MSC_VER) && defined(_ARM_) | ||
| 70 | #pragma optimize("g", off) | ||
| 71 | #endif | ||
| 72 | |||
| 73 | int RSA_verify_PKCS1_PSS(RSA *rsa, const unsigned char *mHash, | ||
| 74 | const EVP_MD *Hash, const unsigned char *EM, int sLen) | ||
| 75 | { | ||
| 76 | int i; | ||
| 77 | int ret = 0; | ||
| 78 | int hLen, maskedDBLen, MSBits, emLen; | ||
| 79 | const unsigned char *H; | ||
| 80 | unsigned char *DB = NULL; | ||
| 81 | EVP_MD_CTX ctx; | ||
| 82 | unsigned char H_[EVP_MAX_MD_SIZE]; | ||
| 83 | |||
| 84 | hLen = EVP_MD_size(Hash); | ||
| 85 | /* | ||
| 86 | * Negative sLen has special meanings: | ||
| 87 | * -1 sLen == hLen | ||
| 88 | * -2 salt length is autorecovered from signature | ||
| 89 | * -N reserved | ||
| 90 | */ | ||
| 91 | if (sLen == -1) sLen = hLen; | ||
| 92 | else if (sLen == -2) sLen = -2; | ||
| 93 | else if (sLen < -2) | ||
| 94 | { | ||
| 95 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_SLEN_CHECK_FAILED); | ||
| 96 | goto err; | ||
| 97 | } | ||
| 98 | |||
| 99 | MSBits = (BN_num_bits(rsa->n) - 1) & 0x7; | ||
| 100 | emLen = RSA_size(rsa); | ||
| 101 | if (EM[0] & (0xFF << MSBits)) | ||
| 102 | { | ||
| 103 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_FIRST_OCTET_INVALID); | ||
| 104 | goto err; | ||
| 105 | } | ||
| 106 | if (MSBits == 0) | ||
| 107 | { | ||
| 108 | EM++; | ||
| 109 | emLen--; | ||
| 110 | } | ||
| 111 | if (emLen < (hLen + sLen + 2)) /* sLen can be small negative */ | ||
| 112 | { | ||
| 113 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_DATA_TOO_LARGE); | ||
| 114 | goto err; | ||
| 115 | } | ||
| 116 | if (EM[emLen - 1] != 0xbc) | ||
| 117 | { | ||
| 118 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_LAST_OCTET_INVALID); | ||
| 119 | goto err; | ||
| 120 | } | ||
| 121 | maskedDBLen = emLen - hLen - 1; | ||
| 122 | H = EM + maskedDBLen; | ||
| 123 | DB = OPENSSL_malloc(maskedDBLen); | ||
| 124 | if (!DB) | ||
| 125 | { | ||
| 126 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, ERR_R_MALLOC_FAILURE); | ||
| 127 | goto err; | ||
| 128 | } | ||
| 129 | PKCS1_MGF1(DB, maskedDBLen, H, hLen, Hash); | ||
| 130 | for (i = 0; i < maskedDBLen; i++) | ||
| 131 | DB[i] ^= EM[i]; | ||
| 132 | if (MSBits) | ||
| 133 | DB[0] &= 0xFF >> (8 - MSBits); | ||
| 134 | for (i = 0; DB[i] == 0 && i < (maskedDBLen-1); i++) ; | ||
| 135 | if (DB[i++] != 0x1) | ||
| 136 | { | ||
| 137 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_SLEN_RECOVERY_FAILED); | ||
| 138 | goto err; | ||
| 139 | } | ||
| 140 | if (sLen >= 0 && (maskedDBLen - i) != sLen) | ||
| 141 | { | ||
| 142 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_SLEN_CHECK_FAILED); | ||
| 143 | goto err; | ||
| 144 | } | ||
| 145 | EVP_MD_CTX_init(&ctx); | ||
| 146 | EVP_DigestInit_ex(&ctx, Hash, NULL); | ||
| 147 | EVP_DigestUpdate(&ctx, zeroes, sizeof zeroes); | ||
| 148 | EVP_DigestUpdate(&ctx, mHash, hLen); | ||
| 149 | if (maskedDBLen - i) | ||
| 150 | EVP_DigestUpdate(&ctx, DB + i, maskedDBLen - i); | ||
| 151 | EVP_DigestFinal(&ctx, H_, NULL); | ||
| 152 | EVP_MD_CTX_cleanup(&ctx); | ||
| 153 | if (memcmp(H_, H, hLen)) | ||
| 154 | { | ||
| 155 | RSAerr(RSA_F_RSA_VERIFY_PKCS1_PSS, RSA_R_BAD_SIGNATURE); | ||
| 156 | ret = 0; | ||
| 157 | } | ||
| 158 | else | ||
| 159 | ret = 1; | ||
| 160 | |||
| 161 | err: | ||
| 162 | if (DB) | ||
| 163 | OPENSSL_free(DB); | ||
| 164 | |||
| 165 | return ret; | ||
| 166 | |||
| 167 | } | ||
| 168 | |||
| 169 | int RSA_padding_add_PKCS1_PSS(RSA *rsa, unsigned char *EM, | ||
| 170 | const unsigned char *mHash, | ||
| 171 | const EVP_MD *Hash, int sLen) | ||
| 172 | { | ||
| 173 | int i; | ||
| 174 | int ret = 0; | ||
| 175 | int hLen, maskedDBLen, MSBits, emLen; | ||
| 176 | unsigned char *H, *salt = NULL, *p; | ||
| 177 | EVP_MD_CTX ctx; | ||
| 178 | |||
| 179 | hLen = EVP_MD_size(Hash); | ||
| 180 | /* | ||
| 181 | * Negative sLen has special meanings: | ||
| 182 | * -1 sLen == hLen | ||
| 183 | * -2 salt length is maximized | ||
| 184 | * -N reserved | ||
| 185 | */ | ||
| 186 | if (sLen == -1) sLen = hLen; | ||
| 187 | else if (sLen == -2) sLen = -2; | ||
| 188 | else if (sLen < -2) | ||
| 189 | { | ||
| 190 | RSAerr(RSA_F_RSA_PADDING_ADD_PKCS1_PSS, RSA_R_SLEN_CHECK_FAILED); | ||
| 191 | goto err; | ||
| 192 | } | ||
| 193 | |||
| 194 | MSBits = (BN_num_bits(rsa->n) - 1) & 0x7; | ||
| 195 | emLen = RSA_size(rsa); | ||
| 196 | if (MSBits == 0) | ||
| 197 | { | ||
| 198 | *EM++ = 0; | ||
| 199 | emLen--; | ||
| 200 | } | ||
| 201 | if (sLen == -2) | ||
| 202 | { | ||
| 203 | sLen = emLen - hLen - 2; | ||
| 204 | } | ||
| 205 | else if (emLen < (hLen + sLen + 2)) | ||
| 206 | { | ||
| 207 | RSAerr(RSA_F_RSA_PADDING_ADD_PKCS1_PSS, | ||
| 208 | RSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE); | ||
| 209 | goto err; | ||
| 210 | } | ||
| 211 | if (sLen > 0) | ||
| 212 | { | ||
| 213 | salt = OPENSSL_malloc(sLen); | ||
| 214 | if (!salt) | ||
| 215 | { | ||
| 216 | RSAerr(RSA_F_RSA_PADDING_ADD_PKCS1_PSS, | ||
| 217 | ERR_R_MALLOC_FAILURE); | ||
| 218 | goto err; | ||
| 219 | } | ||
| 220 | if (!RAND_bytes(salt, sLen)) | ||
| 221 | goto err; | ||
| 222 | } | ||
| 223 | maskedDBLen = emLen - hLen - 1; | ||
| 224 | H = EM + maskedDBLen; | ||
| 225 | EVP_MD_CTX_init(&ctx); | ||
| 226 | EVP_DigestInit_ex(&ctx, Hash, NULL); | ||
| 227 | EVP_DigestUpdate(&ctx, zeroes, sizeof zeroes); | ||
| 228 | EVP_DigestUpdate(&ctx, mHash, hLen); | ||
| 229 | if (sLen) | ||
| 230 | EVP_DigestUpdate(&ctx, salt, sLen); | ||
| 231 | EVP_DigestFinal(&ctx, H, NULL); | ||
| 232 | EVP_MD_CTX_cleanup(&ctx); | ||
| 233 | |||
| 234 | /* Generate dbMask in place then perform XOR on it */ | ||
| 235 | PKCS1_MGF1(EM, maskedDBLen, H, hLen, Hash); | ||
| 236 | |||
| 237 | p = EM; | ||
| 238 | |||
| 239 | /* Initial PS XORs with all zeroes which is a NOP so just update | ||
| 240 | * pointer. Note from a test above this value is guaranteed to | ||
| 241 | * be non-negative. | ||
| 242 | */ | ||
| 243 | p += emLen - sLen - hLen - 2; | ||
| 244 | *p++ ^= 0x1; | ||
| 245 | if (sLen > 0) | ||
| 246 | { | ||
| 247 | for (i = 0; i < sLen; i++) | ||
| 248 | *p++ ^= salt[i]; | ||
| 249 | } | ||
| 250 | if (MSBits) | ||
| 251 | EM[0] &= 0xFF >> (8 - MSBits); | ||
| 252 | |||
| 253 | /* H is already in place so just set final 0xbc */ | ||
| 254 | |||
| 255 | EM[emLen - 1] = 0xbc; | ||
| 256 | |||
| 257 | ret = 1; | ||
| 258 | |||
| 259 | err: | ||
| 260 | if (salt) | ||
| 261 | OPENSSL_free(salt); | ||
| 262 | |||
| 263 | return ret; | ||
| 264 | |||
| 265 | } | ||
| 266 | |||
| 267 | #if defined(_MSC_VER) | ||
| 268 | #pragma optimize("",on) | ||
| 269 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/rsa/rsa_x931.c b/src/lib/libssl/src/crypto/rsa/rsa_x931.c new file mode 100644 index 0000000000..e918654176 --- /dev/null +++ b/src/lib/libssl/src/crypto/rsa/rsa_x931.c | |||
| @@ -0,0 +1,177 @@ | |||
| 1 | /* rsa_x931.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include "cryptlib.h" | ||
| 61 | #include <openssl/bn.h> | ||
| 62 | #include <openssl/rsa.h> | ||
| 63 | #include <openssl/rand.h> | ||
| 64 | #include <openssl/objects.h> | ||
| 65 | |||
| 66 | int RSA_padding_add_X931(unsigned char *to, int tlen, | ||
| 67 | const unsigned char *from, int flen) | ||
| 68 | { | ||
| 69 | int j; | ||
| 70 | unsigned char *p; | ||
| 71 | |||
| 72 | /* Absolute minimum amount of padding is 1 header nibble, 1 padding | ||
| 73 | * nibble and 2 trailer bytes: but 1 hash if is already in 'from'. | ||
| 74 | */ | ||
| 75 | |||
| 76 | j = tlen - flen - 2; | ||
| 77 | |||
| 78 | if (j < 0) | ||
| 79 | { | ||
| 80 | RSAerr(RSA_F_RSA_PADDING_ADD_X931,RSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE); | ||
| 81 | return -1; | ||
| 82 | } | ||
| 83 | |||
| 84 | p=(unsigned char *)to; | ||
| 85 | |||
| 86 | /* If no padding start and end nibbles are in one byte */ | ||
| 87 | if (j == 0) | ||
| 88 | *p++ = 0x6A; | ||
| 89 | else | ||
| 90 | { | ||
| 91 | *p++ = 0x6B; | ||
| 92 | if (j > 1) | ||
| 93 | { | ||
| 94 | memset(p, 0xBB, j - 1); | ||
| 95 | p += j - 1; | ||
| 96 | } | ||
| 97 | *p++ = 0xBA; | ||
| 98 | } | ||
| 99 | memcpy(p,from,(unsigned int)flen); | ||
| 100 | p += flen; | ||
| 101 | *p = 0xCC; | ||
| 102 | return(1); | ||
| 103 | } | ||
| 104 | |||
| 105 | int RSA_padding_check_X931(unsigned char *to, int tlen, | ||
| 106 | const unsigned char *from, int flen, int num) | ||
| 107 | { | ||
| 108 | int i = 0,j; | ||
| 109 | const unsigned char *p; | ||
| 110 | |||
| 111 | p=from; | ||
| 112 | if ((num != flen) || ((*p != 0x6A) && (*p != 0x6B))) | ||
| 113 | { | ||
| 114 | RSAerr(RSA_F_RSA_PADDING_CHECK_X931,RSA_R_INVALID_HEADER); | ||
| 115 | return -1; | ||
| 116 | } | ||
| 117 | |||
| 118 | if (*p++ == 0x6B) | ||
| 119 | { | ||
| 120 | j=flen-3; | ||
| 121 | for (i = 0; i < j; i++) | ||
| 122 | { | ||
| 123 | unsigned char c = *p++; | ||
| 124 | if (c == 0xBA) | ||
| 125 | break; | ||
| 126 | if (c != 0xBB) | ||
| 127 | { | ||
| 128 | RSAerr(RSA_F_RSA_PADDING_CHECK_X931, | ||
| 129 | RSA_R_INVALID_PADDING); | ||
| 130 | return -1; | ||
| 131 | } | ||
| 132 | } | ||
| 133 | |||
| 134 | j -= i; | ||
| 135 | |||
| 136 | if (i == 0) | ||
| 137 | { | ||
| 138 | RSAerr(RSA_F_RSA_PADDING_CHECK_X931, RSA_R_INVALID_PADDING); | ||
| 139 | return -1; | ||
| 140 | } | ||
| 141 | |||
| 142 | } | ||
| 143 | else j = flen - 2; | ||
| 144 | |||
| 145 | if (p[j] != 0xCC) | ||
| 146 | { | ||
| 147 | RSAerr(RSA_F_RSA_PADDING_CHECK_X931, RSA_R_INVALID_TRAILER); | ||
| 148 | return -1; | ||
| 149 | } | ||
| 150 | |||
| 151 | memcpy(to,p,(unsigned int)j); | ||
| 152 | |||
| 153 | return(j); | ||
| 154 | } | ||
| 155 | |||
| 156 | /* Translate between X931 hash ids and NIDs */ | ||
| 157 | |||
| 158 | int RSA_X931_hash_id(int nid) | ||
| 159 | { | ||
| 160 | switch (nid) | ||
| 161 | { | ||
| 162 | case NID_sha1: | ||
| 163 | return 0x33; | ||
| 164 | |||
| 165 | case NID_sha256: | ||
| 166 | return 0x34; | ||
| 167 | |||
| 168 | case NID_sha384: | ||
| 169 | return 0x36; | ||
| 170 | |||
| 171 | case NID_sha512: | ||
| 172 | return 0x35; | ||
| 173 | |||
| 174 | } | ||
| 175 | return -1; | ||
| 176 | } | ||
| 177 | |||
diff --git a/src/lib/libssl/src/crypto/seed/Makefile b/src/lib/libssl/src/crypto/seed/Makefile new file mode 100644 index 0000000000..f9de27b288 --- /dev/null +++ b/src/lib/libssl/src/crypto/seed/Makefile | |||
| @@ -0,0 +1,87 @@ | |||
| 1 | # | ||
| 2 | # crypto/seed/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= seed | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | CPP= $(CC) -E | ||
| 9 | INCLUDES= | ||
| 10 | CFLAG=-g | ||
| 11 | MAKEFILE= Makefile | ||
| 12 | AR= ar r | ||
| 13 | |||
| 14 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 15 | |||
| 16 | GENERAL=Makefile | ||
| 17 | TEST= | ||
| 18 | APPS= | ||
| 19 | |||
| 20 | LIB=$(TOP)/libcrypto.a | ||
| 21 | LIBSRC=seed.c seed_ecb.c seed_cbc.c seed_cfb.c seed_ofb.c | ||
| 22 | LIBOBJ=seed.o seed_ecb.o seed_cbc.o seed_cfb.o seed_ofb.o | ||
| 23 | |||
| 24 | SRC= $(LIBSRC) | ||
| 25 | |||
| 26 | EXHEADER= seed.h | ||
| 27 | HEADER= seed_locl.h $(EXHEADER) | ||
| 28 | |||
| 29 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 30 | |||
| 31 | top: | ||
| 32 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 33 | |||
| 34 | all: lib | ||
| 35 | |||
| 36 | lib: $(LIBOBJ) | ||
| 37 | $(AR) $(LIB) $(LIBOBJ) | ||
| 38 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 39 | @touch lib | ||
| 40 | |||
| 41 | files: | ||
| 42 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 43 | |||
| 44 | links: | ||
| 45 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 46 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 48 | |||
| 49 | install: | ||
| 50 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 51 | @headerlist="$(EXHEADER)"; for i in $$headerlist ; \ | ||
| 52 | do \ | ||
| 53 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 54 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 55 | done; | ||
| 56 | |||
| 57 | tags: | ||
| 58 | ctags $(SRC) | ||
| 59 | |||
| 60 | tests: | ||
| 61 | |||
| 62 | lint: | ||
| 63 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 64 | |||
| 65 | depend: | ||
| 66 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 67 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 68 | |||
| 69 | dclean: | ||
| 70 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 71 | mv -f Makefile.new $(MAKEFILE) | ||
| 72 | |||
| 73 | clean: | ||
| 74 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 75 | |||
| 76 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 77 | |||
| 78 | seed.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 79 | seed.o: ../../include/openssl/seed.h seed.c seed_locl.h | ||
| 80 | seed_cbc.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 81 | seed_cbc.o: ../../include/openssl/seed.h seed_cbc.c seed_locl.h | ||
| 82 | seed_cfb.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 83 | seed_cfb.o: ../../include/openssl/seed.h seed_cfb.c seed_locl.h | ||
| 84 | seed_ecb.o: ../../include/openssl/opensslconf.h ../../include/openssl/seed.h | ||
| 85 | seed_ecb.o: seed_ecb.c | ||
| 86 | seed_ofb.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 87 | seed_ofb.o: ../../include/openssl/seed.h seed_locl.h seed_ofb.c | ||
diff --git a/src/lib/libssl/src/crypto/seed/seed.c b/src/lib/libssl/src/crypto/seed/seed.c new file mode 100644 index 0000000000..125dd7d66f --- /dev/null +++ b/src/lib/libssl/src/crypto/seed/seed.c | |||
| @@ -0,0 +1,286 @@ | |||
| 1 | /* | ||
| 2 | * Copyright (c) 2007 KISA(Korea Information Security Agency). All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * 1. Redistributions of source code must retain the above copyright | ||
| 8 | * notice, this list of conditions and the following disclaimer. | ||
| 9 | * 2. Neither the name of author nor the names of its contributors may | ||
| 10 | * be used to endorse or promote products derived from this software | ||
| 11 | * without specific prior written permission. | ||
| 12 | * | ||
| 13 | * THIS SOFTWARE IS PROVIDED BY AUTHOR AND CONTRIBUTORS ``AS IS'' AND | ||
| 14 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 15 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 16 | * ARE DISCLAIMED. IN NO EVENT SHALL AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 17 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 18 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 19 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 20 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 21 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 22 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 23 | * SUCH DAMAGE. | ||
| 24 | * | ||
| 25 | */ | ||
| 26 | #ifndef OPENSSL_NO_SEED | ||
| 27 | |||
| 28 | #include <stdio.h> | ||
| 29 | #include <stdlib.h> | ||
| 30 | #include <string.h> | ||
| 31 | #ifdef WIN32 | ||
| 32 | #include <memory.h> | ||
| 33 | #endif | ||
| 34 | |||
| 35 | #include <openssl/seed.h> | ||
| 36 | #include "seed_locl.h" | ||
| 37 | |||
| 38 | static seed_word SS[4][256] = { { | ||
| 39 | 0x2989a1a8, 0x05858184, 0x16c6d2d4, 0x13c3d3d0, 0x14445054, 0x1d0d111c, 0x2c8ca0ac, 0x25052124, | ||
| 40 | 0x1d4d515c, 0x03434340, 0x18081018, 0x1e0e121c, 0x11415150, 0x3cccf0fc, 0x0acac2c8, 0x23436360, | ||
| 41 | 0x28082028, 0x04444044, 0x20002020, 0x1d8d919c, 0x20c0e0e0, 0x22c2e2e0, 0x08c8c0c8, 0x17071314, | ||
| 42 | 0x2585a1a4, 0x0f8f838c, 0x03030300, 0x3b4b7378, 0x3b8bb3b8, 0x13031310, 0x12c2d2d0, 0x2ecee2ec, | ||
| 43 | 0x30407070, 0x0c8c808c, 0x3f0f333c, 0x2888a0a8, 0x32023230, 0x1dcdd1dc, 0x36c6f2f4, 0x34447074, | ||
| 44 | 0x2ccce0ec, 0x15859194, 0x0b0b0308, 0x17475354, 0x1c4c505c, 0x1b4b5358, 0x3d8db1bc, 0x01010100, | ||
| 45 | 0x24042024, 0x1c0c101c, 0x33437370, 0x18889098, 0x10001010, 0x0cccc0cc, 0x32c2f2f0, 0x19c9d1d8, | ||
| 46 | 0x2c0c202c, 0x27c7e3e4, 0x32427270, 0x03838380, 0x1b8b9398, 0x11c1d1d0, 0x06868284, 0x09c9c1c8, | ||
| 47 | 0x20406060, 0x10405050, 0x2383a3a0, 0x2bcbe3e8, 0x0d0d010c, 0x3686b2b4, 0x1e8e929c, 0x0f4f434c, | ||
| 48 | 0x3787b3b4, 0x1a4a5258, 0x06c6c2c4, 0x38487078, 0x2686a2a4, 0x12021210, 0x2f8fa3ac, 0x15c5d1d4, | ||
| 49 | 0x21416160, 0x03c3c3c0, 0x3484b0b4, 0x01414140, 0x12425250, 0x3d4d717c, 0x0d8d818c, 0x08080008, | ||
| 50 | 0x1f0f131c, 0x19899198, 0x00000000, 0x19091118, 0x04040004, 0x13435350, 0x37c7f3f4, 0x21c1e1e0, | ||
| 51 | 0x3dcdf1fc, 0x36467274, 0x2f0f232c, 0x27072324, 0x3080b0b0, 0x0b8b8388, 0x0e0e020c, 0x2b8ba3a8, | ||
| 52 | 0x2282a2a0, 0x2e4e626c, 0x13839390, 0x0d4d414c, 0x29496168, 0x3c4c707c, 0x09090108, 0x0a0a0208, | ||
| 53 | 0x3f8fb3bc, 0x2fcfe3ec, 0x33c3f3f0, 0x05c5c1c4, 0x07878384, 0x14041014, 0x3ecef2fc, 0x24446064, | ||
| 54 | 0x1eced2dc, 0x2e0e222c, 0x0b4b4348, 0x1a0a1218, 0x06060204, 0x21012120, 0x2b4b6368, 0x26466264, | ||
| 55 | 0x02020200, 0x35c5f1f4, 0x12829290, 0x0a8a8288, 0x0c0c000c, 0x3383b3b0, 0x3e4e727c, 0x10c0d0d0, | ||
| 56 | 0x3a4a7278, 0x07474344, 0x16869294, 0x25c5e1e4, 0x26062224, 0x00808080, 0x2d8da1ac, 0x1fcfd3dc, | ||
| 57 | 0x2181a1a0, 0x30003030, 0x37073334, 0x2e8ea2ac, 0x36063234, 0x15051114, 0x22022220, 0x38083038, | ||
| 58 | 0x34c4f0f4, 0x2787a3a4, 0x05454144, 0x0c4c404c, 0x01818180, 0x29c9e1e8, 0x04848084, 0x17879394, | ||
| 59 | 0x35053134, 0x0bcbc3c8, 0x0ecec2cc, 0x3c0c303c, 0x31417170, 0x11011110, 0x07c7c3c4, 0x09898188, | ||
| 60 | 0x35457174, 0x3bcbf3f8, 0x1acad2d8, 0x38c8f0f8, 0x14849094, 0x19495158, 0x02828280, 0x04c4c0c4, | ||
| 61 | 0x3fcff3fc, 0x09494148, 0x39093138, 0x27476364, 0x00c0c0c0, 0x0fcfc3cc, 0x17c7d3d4, 0x3888b0b8, | ||
| 62 | 0x0f0f030c, 0x0e8e828c, 0x02424240, 0x23032320, 0x11819190, 0x2c4c606c, 0x1bcbd3d8, 0x2484a0a4, | ||
| 63 | 0x34043034, 0x31c1f1f0, 0x08484048, 0x02c2c2c0, 0x2f4f636c, 0x3d0d313c, 0x2d0d212c, 0x00404040, | ||
| 64 | 0x3e8eb2bc, 0x3e0e323c, 0x3c8cb0bc, 0x01c1c1c0, 0x2a8aa2a8, 0x3a8ab2b8, 0x0e4e424c, 0x15455154, | ||
| 65 | 0x3b0b3338, 0x1cccd0dc, 0x28486068, 0x3f4f737c, 0x1c8c909c, 0x18c8d0d8, 0x0a4a4248, 0x16465254, | ||
| 66 | 0x37477374, 0x2080a0a0, 0x2dcde1ec, 0x06464244, 0x3585b1b4, 0x2b0b2328, 0x25456164, 0x3acaf2f8, | ||
| 67 | 0x23c3e3e0, 0x3989b1b8, 0x3181b1b0, 0x1f8f939c, 0x1e4e525c, 0x39c9f1f8, 0x26c6e2e4, 0x3282b2b0, | ||
| 68 | 0x31013130, 0x2acae2e8, 0x2d4d616c, 0x1f4f535c, 0x24c4e0e4, 0x30c0f0f0, 0x0dcdc1cc, 0x08888088, | ||
| 69 | 0x16061214, 0x3a0a3238, 0x18485058, 0x14c4d0d4, 0x22426260, 0x29092128, 0x07070304, 0x33033330, | ||
| 70 | 0x28c8e0e8, 0x1b0b1318, 0x05050104, 0x39497178, 0x10809090, 0x2a4a6268, 0x2a0a2228, 0x1a8a9298 | ||
| 71 | }, { | ||
| 72 | 0x38380830, 0xe828c8e0, 0x2c2d0d21, 0xa42686a2, 0xcc0fcfc3, 0xdc1eced2, 0xb03383b3, 0xb83888b0, | ||
| 73 | 0xac2f8fa3, 0x60204060, 0x54154551, 0xc407c7c3, 0x44044440, 0x6c2f4f63, 0x682b4b63, 0x581b4b53, | ||
| 74 | 0xc003c3c3, 0x60224262, 0x30330333, 0xb43585b1, 0x28290921, 0xa02080a0, 0xe022c2e2, 0xa42787a3, | ||
| 75 | 0xd013c3d3, 0x90118191, 0x10110111, 0x04060602, 0x1c1c0c10, 0xbc3c8cb0, 0x34360632, 0x480b4b43, | ||
| 76 | 0xec2fcfe3, 0x88088880, 0x6c2c4c60, 0xa82888a0, 0x14170713, 0xc404c4c0, 0x14160612, 0xf434c4f0, | ||
| 77 | 0xc002c2c2, 0x44054541, 0xe021c1e1, 0xd416c6d2, 0x3c3f0f33, 0x3c3d0d31, 0x8c0e8e82, 0x98188890, | ||
| 78 | 0x28280820, 0x4c0e4e42, 0xf436c6f2, 0x3c3e0e32, 0xa42585a1, 0xf839c9f1, 0x0c0d0d01, 0xdc1fcfd3, | ||
| 79 | 0xd818c8d0, 0x282b0b23, 0x64264662, 0x783a4a72, 0x24270723, 0x2c2f0f23, 0xf031c1f1, 0x70324272, | ||
| 80 | 0x40024242, 0xd414c4d0, 0x40014141, 0xc000c0c0, 0x70334373, 0x64274763, 0xac2c8ca0, 0x880b8b83, | ||
| 81 | 0xf437c7f3, 0xac2d8da1, 0x80008080, 0x1c1f0f13, 0xc80acac2, 0x2c2c0c20, 0xa82a8aa2, 0x34340430, | ||
| 82 | 0xd012c2d2, 0x080b0b03, 0xec2ecee2, 0xe829c9e1, 0x5c1d4d51, 0x94148490, 0x18180810, 0xf838c8f0, | ||
| 83 | 0x54174753, 0xac2e8ea2, 0x08080800, 0xc405c5c1, 0x10130313, 0xcc0dcdc1, 0x84068682, 0xb83989b1, | ||
| 84 | 0xfc3fcff3, 0x7c3d4d71, 0xc001c1c1, 0x30310131, 0xf435c5f1, 0x880a8a82, 0x682a4a62, 0xb03181b1, | ||
| 85 | 0xd011c1d1, 0x20200020, 0xd417c7d3, 0x00020202, 0x20220222, 0x04040400, 0x68284860, 0x70314171, | ||
| 86 | 0x04070703, 0xd81bcbd3, 0x9c1d8d91, 0x98198991, 0x60214161, 0xbc3e8eb2, 0xe426c6e2, 0x58194951, | ||
| 87 | 0xdc1dcdd1, 0x50114151, 0x90108090, 0xdc1cccd0, 0x981a8a92, 0xa02383a3, 0xa82b8ba3, 0xd010c0d0, | ||
| 88 | 0x80018181, 0x0c0f0f03, 0x44074743, 0x181a0a12, 0xe023c3e3, 0xec2ccce0, 0x8c0d8d81, 0xbc3f8fb3, | ||
| 89 | 0x94168692, 0x783b4b73, 0x5c1c4c50, 0xa02282a2, 0xa02181a1, 0x60234363, 0x20230323, 0x4c0d4d41, | ||
| 90 | 0xc808c8c0, 0x9c1e8e92, 0x9c1c8c90, 0x383a0a32, 0x0c0c0c00, 0x2c2e0e22, 0xb83a8ab2, 0x6c2e4e62, | ||
| 91 | 0x9c1f8f93, 0x581a4a52, 0xf032c2f2, 0x90128292, 0xf033c3f3, 0x48094941, 0x78384870, 0xcc0cccc0, | ||
| 92 | 0x14150511, 0xf83bcbf3, 0x70304070, 0x74354571, 0x7c3f4f73, 0x34350531, 0x10100010, 0x00030303, | ||
| 93 | 0x64244460, 0x6c2d4d61, 0xc406c6c2, 0x74344470, 0xd415c5d1, 0xb43484b0, 0xe82acae2, 0x08090901, | ||
| 94 | 0x74364672, 0x18190911, 0xfc3ecef2, 0x40004040, 0x10120212, 0xe020c0e0, 0xbc3d8db1, 0x04050501, | ||
| 95 | 0xf83acaf2, 0x00010101, 0xf030c0f0, 0x282a0a22, 0x5c1e4e52, 0xa82989a1, 0x54164652, 0x40034343, | ||
| 96 | 0x84058581, 0x14140410, 0x88098981, 0x981b8b93, 0xb03080b0, 0xe425c5e1, 0x48084840, 0x78394971, | ||
| 97 | 0x94178793, 0xfc3cccf0, 0x1c1e0e12, 0x80028282, 0x20210121, 0x8c0c8c80, 0x181b0b13, 0x5c1f4f53, | ||
| 98 | 0x74374773, 0x54144450, 0xb03282b2, 0x1c1d0d11, 0x24250521, 0x4c0f4f43, 0x00000000, 0x44064642, | ||
| 99 | 0xec2dcde1, 0x58184850, 0x50124252, 0xe82bcbe3, 0x7c3e4e72, 0xd81acad2, 0xc809c9c1, 0xfc3dcdf1, | ||
| 100 | 0x30300030, 0x94158591, 0x64254561, 0x3c3c0c30, 0xb43686b2, 0xe424c4e0, 0xb83b8bb3, 0x7c3c4c70, | ||
| 101 | 0x0c0e0e02, 0x50104050, 0x38390931, 0x24260622, 0x30320232, 0x84048480, 0x68294961, 0x90138393, | ||
| 102 | 0x34370733, 0xe427c7e3, 0x24240420, 0xa42484a0, 0xc80bcbc3, 0x50134353, 0x080a0a02, 0x84078783, | ||
| 103 | 0xd819c9d1, 0x4c0c4c40, 0x80038383, 0x8c0f8f83, 0xcc0ecec2, 0x383b0b33, 0x480a4a42, 0xb43787b3 | ||
| 104 | }, { | ||
| 105 | 0xa1a82989, 0x81840585, 0xd2d416c6, 0xd3d013c3, 0x50541444, 0x111c1d0d, 0xa0ac2c8c, 0x21242505, | ||
| 106 | 0x515c1d4d, 0x43400343, 0x10181808, 0x121c1e0e, 0x51501141, 0xf0fc3ccc, 0xc2c80aca, 0x63602343, | ||
| 107 | 0x20282808, 0x40440444, 0x20202000, 0x919c1d8d, 0xe0e020c0, 0xe2e022c2, 0xc0c808c8, 0x13141707, | ||
| 108 | 0xa1a42585, 0x838c0f8f, 0x03000303, 0x73783b4b, 0xb3b83b8b, 0x13101303, 0xd2d012c2, 0xe2ec2ece, | ||
| 109 | 0x70703040, 0x808c0c8c, 0x333c3f0f, 0xa0a82888, 0x32303202, 0xd1dc1dcd, 0xf2f436c6, 0x70743444, | ||
| 110 | 0xe0ec2ccc, 0x91941585, 0x03080b0b, 0x53541747, 0x505c1c4c, 0x53581b4b, 0xb1bc3d8d, 0x01000101, | ||
| 111 | 0x20242404, 0x101c1c0c, 0x73703343, 0x90981888, 0x10101000, 0xc0cc0ccc, 0xf2f032c2, 0xd1d819c9, | ||
| 112 | 0x202c2c0c, 0xe3e427c7, 0x72703242, 0x83800383, 0x93981b8b, 0xd1d011c1, 0x82840686, 0xc1c809c9, | ||
| 113 | 0x60602040, 0x50501040, 0xa3a02383, 0xe3e82bcb, 0x010c0d0d, 0xb2b43686, 0x929c1e8e, 0x434c0f4f, | ||
| 114 | 0xb3b43787, 0x52581a4a, 0xc2c406c6, 0x70783848, 0xa2a42686, 0x12101202, 0xa3ac2f8f, 0xd1d415c5, | ||
| 115 | 0x61602141, 0xc3c003c3, 0xb0b43484, 0x41400141, 0x52501242, 0x717c3d4d, 0x818c0d8d, 0x00080808, | ||
| 116 | 0x131c1f0f, 0x91981989, 0x00000000, 0x11181909, 0x00040404, 0x53501343, 0xf3f437c7, 0xe1e021c1, | ||
| 117 | 0xf1fc3dcd, 0x72743646, 0x232c2f0f, 0x23242707, 0xb0b03080, 0x83880b8b, 0x020c0e0e, 0xa3a82b8b, | ||
| 118 | 0xa2a02282, 0x626c2e4e, 0x93901383, 0x414c0d4d, 0x61682949, 0x707c3c4c, 0x01080909, 0x02080a0a, | ||
| 119 | 0xb3bc3f8f, 0xe3ec2fcf, 0xf3f033c3, 0xc1c405c5, 0x83840787, 0x10141404, 0xf2fc3ece, 0x60642444, | ||
| 120 | 0xd2dc1ece, 0x222c2e0e, 0x43480b4b, 0x12181a0a, 0x02040606, 0x21202101, 0x63682b4b, 0x62642646, | ||
| 121 | 0x02000202, 0xf1f435c5, 0x92901282, 0x82880a8a, 0x000c0c0c, 0xb3b03383, 0x727c3e4e, 0xd0d010c0, | ||
| 122 | 0x72783a4a, 0x43440747, 0x92941686, 0xe1e425c5, 0x22242606, 0x80800080, 0xa1ac2d8d, 0xd3dc1fcf, | ||
| 123 | 0xa1a02181, 0x30303000, 0x33343707, 0xa2ac2e8e, 0x32343606, 0x11141505, 0x22202202, 0x30383808, | ||
| 124 | 0xf0f434c4, 0xa3a42787, 0x41440545, 0x404c0c4c, 0x81800181, 0xe1e829c9, 0x80840484, 0x93941787, | ||
| 125 | 0x31343505, 0xc3c80bcb, 0xc2cc0ece, 0x303c3c0c, 0x71703141, 0x11101101, 0xc3c407c7, 0x81880989, | ||
| 126 | 0x71743545, 0xf3f83bcb, 0xd2d81aca, 0xf0f838c8, 0x90941484, 0x51581949, 0x82800282, 0xc0c404c4, | ||
| 127 | 0xf3fc3fcf, 0x41480949, 0x31383909, 0x63642747, 0xc0c000c0, 0xc3cc0fcf, 0xd3d417c7, 0xb0b83888, | ||
| 128 | 0x030c0f0f, 0x828c0e8e, 0x42400242, 0x23202303, 0x91901181, 0x606c2c4c, 0xd3d81bcb, 0xa0a42484, | ||
| 129 | 0x30343404, 0xf1f031c1, 0x40480848, 0xc2c002c2, 0x636c2f4f, 0x313c3d0d, 0x212c2d0d, 0x40400040, | ||
| 130 | 0xb2bc3e8e, 0x323c3e0e, 0xb0bc3c8c, 0xc1c001c1, 0xa2a82a8a, 0xb2b83a8a, 0x424c0e4e, 0x51541545, | ||
| 131 | 0x33383b0b, 0xd0dc1ccc, 0x60682848, 0x737c3f4f, 0x909c1c8c, 0xd0d818c8, 0x42480a4a, 0x52541646, | ||
| 132 | 0x73743747, 0xa0a02080, 0xe1ec2dcd, 0x42440646, 0xb1b43585, 0x23282b0b, 0x61642545, 0xf2f83aca, | ||
| 133 | 0xe3e023c3, 0xb1b83989, 0xb1b03181, 0x939c1f8f, 0x525c1e4e, 0xf1f839c9, 0xe2e426c6, 0xb2b03282, | ||
| 134 | 0x31303101, 0xe2e82aca, 0x616c2d4d, 0x535c1f4f, 0xe0e424c4, 0xf0f030c0, 0xc1cc0dcd, 0x80880888, | ||
| 135 | 0x12141606, 0x32383a0a, 0x50581848, 0xd0d414c4, 0x62602242, 0x21282909, 0x03040707, 0x33303303, | ||
| 136 | 0xe0e828c8, 0x13181b0b, 0x01040505, 0x71783949, 0x90901080, 0x62682a4a, 0x22282a0a, 0x92981a8a | ||
| 137 | }, { | ||
| 138 | 0x08303838, 0xc8e0e828, 0x0d212c2d, 0x86a2a426, 0xcfc3cc0f, 0xced2dc1e, 0x83b3b033, 0x88b0b838, | ||
| 139 | 0x8fa3ac2f, 0x40606020, 0x45515415, 0xc7c3c407, 0x44404404, 0x4f636c2f, 0x4b63682b, 0x4b53581b, | ||
| 140 | 0xc3c3c003, 0x42626022, 0x03333033, 0x85b1b435, 0x09212829, 0x80a0a020, 0xc2e2e022, 0x87a3a427, | ||
| 141 | 0xc3d3d013, 0x81919011, 0x01111011, 0x06020406, 0x0c101c1c, 0x8cb0bc3c, 0x06323436, 0x4b43480b, | ||
| 142 | 0xcfe3ec2f, 0x88808808, 0x4c606c2c, 0x88a0a828, 0x07131417, 0xc4c0c404, 0x06121416, 0xc4f0f434, | ||
| 143 | 0xc2c2c002, 0x45414405, 0xc1e1e021, 0xc6d2d416, 0x0f333c3f, 0x0d313c3d, 0x8e828c0e, 0x88909818, | ||
| 144 | 0x08202828, 0x4e424c0e, 0xc6f2f436, 0x0e323c3e, 0x85a1a425, 0xc9f1f839, 0x0d010c0d, 0xcfd3dc1f, | ||
| 145 | 0xc8d0d818, 0x0b23282b, 0x46626426, 0x4a72783a, 0x07232427, 0x0f232c2f, 0xc1f1f031, 0x42727032, | ||
| 146 | 0x42424002, 0xc4d0d414, 0x41414001, 0xc0c0c000, 0x43737033, 0x47636427, 0x8ca0ac2c, 0x8b83880b, | ||
| 147 | 0xc7f3f437, 0x8da1ac2d, 0x80808000, 0x0f131c1f, 0xcac2c80a, 0x0c202c2c, 0x8aa2a82a, 0x04303434, | ||
| 148 | 0xc2d2d012, 0x0b03080b, 0xcee2ec2e, 0xc9e1e829, 0x4d515c1d, 0x84909414, 0x08101818, 0xc8f0f838, | ||
| 149 | 0x47535417, 0x8ea2ac2e, 0x08000808, 0xc5c1c405, 0x03131013, 0xcdc1cc0d, 0x86828406, 0x89b1b839, | ||
| 150 | 0xcff3fc3f, 0x4d717c3d, 0xc1c1c001, 0x01313031, 0xc5f1f435, 0x8a82880a, 0x4a62682a, 0x81b1b031, | ||
| 151 | 0xc1d1d011, 0x00202020, 0xc7d3d417, 0x02020002, 0x02222022, 0x04000404, 0x48606828, 0x41717031, | ||
| 152 | 0x07030407, 0xcbd3d81b, 0x8d919c1d, 0x89919819, 0x41616021, 0x8eb2bc3e, 0xc6e2e426, 0x49515819, | ||
| 153 | 0xcdd1dc1d, 0x41515011, 0x80909010, 0xccd0dc1c, 0x8a92981a, 0x83a3a023, 0x8ba3a82b, 0xc0d0d010, | ||
| 154 | 0x81818001, 0x0f030c0f, 0x47434407, 0x0a12181a, 0xc3e3e023, 0xcce0ec2c, 0x8d818c0d, 0x8fb3bc3f, | ||
| 155 | 0x86929416, 0x4b73783b, 0x4c505c1c, 0x82a2a022, 0x81a1a021, 0x43636023, 0x03232023, 0x4d414c0d, | ||
| 156 | 0xc8c0c808, 0x8e929c1e, 0x8c909c1c, 0x0a32383a, 0x0c000c0c, 0x0e222c2e, 0x8ab2b83a, 0x4e626c2e, | ||
| 157 | 0x8f939c1f, 0x4a52581a, 0xc2f2f032, 0x82929012, 0xc3f3f033, 0x49414809, 0x48707838, 0xccc0cc0c, | ||
| 158 | 0x05111415, 0xcbf3f83b, 0x40707030, 0x45717435, 0x4f737c3f, 0x05313435, 0x00101010, 0x03030003, | ||
| 159 | 0x44606424, 0x4d616c2d, 0xc6c2c406, 0x44707434, 0xc5d1d415, 0x84b0b434, 0xcae2e82a, 0x09010809, | ||
| 160 | 0x46727436, 0x09111819, 0xcef2fc3e, 0x40404000, 0x02121012, 0xc0e0e020, 0x8db1bc3d, 0x05010405, | ||
| 161 | 0xcaf2f83a, 0x01010001, 0xc0f0f030, 0x0a22282a, 0x4e525c1e, 0x89a1a829, 0x46525416, 0x43434003, | ||
| 162 | 0x85818405, 0x04101414, 0x89818809, 0x8b93981b, 0x80b0b030, 0xc5e1e425, 0x48404808, 0x49717839, | ||
| 163 | 0x87939417, 0xccf0fc3c, 0x0e121c1e, 0x82828002, 0x01212021, 0x8c808c0c, 0x0b13181b, 0x4f535c1f, | ||
| 164 | 0x47737437, 0x44505414, 0x82b2b032, 0x0d111c1d, 0x05212425, 0x4f434c0f, 0x00000000, 0x46424406, | ||
| 165 | 0xcde1ec2d, 0x48505818, 0x42525012, 0xcbe3e82b, 0x4e727c3e, 0xcad2d81a, 0xc9c1c809, 0xcdf1fc3d, | ||
| 166 | 0x00303030, 0x85919415, 0x45616425, 0x0c303c3c, 0x86b2b436, 0xc4e0e424, 0x8bb3b83b, 0x4c707c3c, | ||
| 167 | 0x0e020c0e, 0x40505010, 0x09313839, 0x06222426, 0x02323032, 0x84808404, 0x49616829, 0x83939013, | ||
| 168 | 0x07333437, 0xc7e3e427, 0x04202424, 0x84a0a424, 0xcbc3c80b, 0x43535013, 0x0a02080a, 0x87838407, | ||
| 169 | 0xc9d1d819, 0x4c404c0c, 0x83838003, 0x8f838c0f, 0xcec2cc0e, 0x0b33383b, 0x4a42480a, 0x87b3b437 | ||
| 170 | } }; | ||
| 171 | |||
| 172 | /* key schedule constants - golden ratio */ | ||
| 173 | #define KC0 0x9e3779b9 | ||
| 174 | #define KC1 0x3c6ef373 | ||
| 175 | #define KC2 0x78dde6e6 | ||
| 176 | #define KC3 0xf1bbcdcc | ||
| 177 | #define KC4 0xe3779b99 | ||
| 178 | #define KC5 0xc6ef3733 | ||
| 179 | #define KC6 0x8dde6e67 | ||
| 180 | #define KC7 0x1bbcdccf | ||
| 181 | #define KC8 0x3779b99e | ||
| 182 | #define KC9 0x6ef3733c | ||
| 183 | #define KC10 0xdde6e678 | ||
| 184 | #define KC11 0xbbcdccf1 | ||
| 185 | #define KC12 0x779b99e3 | ||
| 186 | #define KC13 0xef3733c6 | ||
| 187 | #define KC14 0xde6e678d | ||
| 188 | #define KC15 0xbcdccf1b | ||
| 189 | |||
| 190 | |||
| 191 | void SEED_set_key(const unsigned char rawkey[SEED_KEY_LENGTH], SEED_KEY_SCHEDULE *ks) | ||
| 192 | { | ||
| 193 | seed_word x1, x2, x3, x4; | ||
| 194 | seed_word t0, t1; | ||
| 195 | |||
| 196 | char2word(rawkey , x1); | ||
| 197 | char2word(rawkey+4 , x2); | ||
| 198 | char2word(rawkey+8 , x3); | ||
| 199 | char2word(rawkey+12, x4); | ||
| 200 | |||
| 201 | t0 = (x1 + x3 - KC0) & 0xffffffff; | ||
| 202 | t1 = (x2 - x4 + KC0) & 0xffffffff; KEYUPDATE_TEMP(t0, t1, &ks->data[0]); | ||
| 203 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC1); KEYUPDATE_TEMP(t0, t1, &ks->data[2]); | ||
| 204 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC2); KEYUPDATE_TEMP(t0, t1, &ks->data[4]); | ||
| 205 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC3); KEYUPDATE_TEMP(t0, t1, &ks->data[6]); | ||
| 206 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC4); KEYUPDATE_TEMP(t0, t1, &ks->data[8]); | ||
| 207 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC5); KEYUPDATE_TEMP(t0, t1, &ks->data[10]); | ||
| 208 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC6); KEYUPDATE_TEMP(t0, t1, &ks->data[12]); | ||
| 209 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC7); KEYUPDATE_TEMP(t0, t1, &ks->data[14]); | ||
| 210 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC8); KEYUPDATE_TEMP(t0, t1, &ks->data[16]); | ||
| 211 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC9); KEYUPDATE_TEMP(t0, t1, &ks->data[18]); | ||
| 212 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC10); KEYUPDATE_TEMP(t0, t1, &ks->data[20]); | ||
| 213 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC11); KEYUPDATE_TEMP(t0, t1, &ks->data[22]); | ||
| 214 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC12); KEYUPDATE_TEMP(t0, t1, &ks->data[24]); | ||
| 215 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC13); KEYUPDATE_TEMP(t0, t1, &ks->data[26]); | ||
| 216 | KEYSCHEDULE_UPDATE0(t0, t1, x1, x2, x3, x4, KC14); KEYUPDATE_TEMP(t0, t1, &ks->data[28]); | ||
| 217 | KEYSCHEDULE_UPDATE1(t0, t1, x1, x2, x3, x4, KC15); KEYUPDATE_TEMP(t0, t1, &ks->data[30]); | ||
| 218 | } | ||
| 219 | |||
| 220 | void SEED_encrypt(const unsigned char s[SEED_BLOCK_SIZE], unsigned char d[SEED_BLOCK_SIZE], const SEED_KEY_SCHEDULE *ks) | ||
| 221 | { | ||
| 222 | seed_word x1, x2, x3, x4; | ||
| 223 | seed_word t0, t1; | ||
| 224 | |||
| 225 | char2word(s, x1); | ||
| 226 | char2word(s+4, x2); | ||
| 227 | char2word(s+8, x3); | ||
| 228 | char2word(s+12, x4); | ||
| 229 | |||
| 230 | E_SEED(t0, t1, x1, x2, x3, x4, 0); | ||
| 231 | E_SEED(t0, t1, x3, x4, x1, x2, 2); | ||
| 232 | E_SEED(t0, t1, x1, x2, x3, x4, 4); | ||
| 233 | E_SEED(t0, t1, x3, x4, x1, x2, 6); | ||
| 234 | E_SEED(t0, t1, x1, x2, x3, x4, 8); | ||
| 235 | E_SEED(t0, t1, x3, x4, x1, x2, 10); | ||
| 236 | E_SEED(t0, t1, x1, x2, x3, x4, 12); | ||
| 237 | E_SEED(t0, t1, x3, x4, x1, x2, 14); | ||
| 238 | E_SEED(t0, t1, x1, x2, x3, x4, 16); | ||
| 239 | E_SEED(t0, t1, x3, x4, x1, x2, 18); | ||
| 240 | E_SEED(t0, t1, x1, x2, x3, x4, 20); | ||
| 241 | E_SEED(t0, t1, x3, x4, x1, x2, 22); | ||
| 242 | E_SEED(t0, t1, x1, x2, x3, x4, 24); | ||
| 243 | E_SEED(t0, t1, x3, x4, x1, x2, 26); | ||
| 244 | E_SEED(t0, t1, x1, x2, x3, x4, 28); | ||
| 245 | E_SEED(t0, t1, x3, x4, x1, x2, 30); | ||
| 246 | |||
| 247 | word2char(x3, d); | ||
| 248 | word2char(x4, d+4); | ||
| 249 | word2char(x1, d+8); | ||
| 250 | word2char(x2, d+12); | ||
| 251 | } | ||
| 252 | |||
| 253 | void SEED_decrypt(const unsigned char s[SEED_BLOCK_SIZE], unsigned char d[SEED_BLOCK_SIZE], const SEED_KEY_SCHEDULE *ks) | ||
| 254 | { | ||
| 255 | seed_word x1, x2, x3, x4; | ||
| 256 | seed_word t0, t1; | ||
| 257 | |||
| 258 | char2word(s, x1); | ||
| 259 | char2word(s+4, x2); | ||
| 260 | char2word(s+8, x3); | ||
| 261 | char2word(s+12, x4); | ||
| 262 | |||
| 263 | E_SEED(t0, t1, x1, x2, x3, x4, 30); | ||
| 264 | E_SEED(t0, t1, x3, x4, x1, x2, 28); | ||
| 265 | E_SEED(t0, t1, x1, x2, x3, x4, 26); | ||
| 266 | E_SEED(t0, t1, x3, x4, x1, x2, 24); | ||
| 267 | E_SEED(t0, t1, x1, x2, x3, x4, 22); | ||
| 268 | E_SEED(t0, t1, x3, x4, x1, x2, 20); | ||
| 269 | E_SEED(t0, t1, x1, x2, x3, x4, 18); | ||
| 270 | E_SEED(t0, t1, x3, x4, x1, x2, 16); | ||
| 271 | E_SEED(t0, t1, x1, x2, x3, x4, 14); | ||
| 272 | E_SEED(t0, t1, x3, x4, x1, x2, 12); | ||
| 273 | E_SEED(t0, t1, x1, x2, x3, x4, 10); | ||
| 274 | E_SEED(t0, t1, x3, x4, x1, x2, 8); | ||
| 275 | E_SEED(t0, t1, x1, x2, x3, x4, 6); | ||
| 276 | E_SEED(t0, t1, x3, x4, x1, x2, 4); | ||
| 277 | E_SEED(t0, t1, x1, x2, x3, x4, 2); | ||
| 278 | E_SEED(t0, t1, x3, x4, x1, x2, 0); | ||
| 279 | |||
| 280 | word2char(x3, d); | ||
| 281 | word2char(x4, d+4); | ||
| 282 | word2char(x1, d+8); | ||
| 283 | word2char(x2, d+12); | ||
| 284 | } | ||
| 285 | |||
| 286 | #endif /* OPENSSL_NO_SEED */ | ||
diff --git a/src/lib/libssl/src/crypto/seed/seed.h b/src/lib/libssl/src/crypto/seed/seed.h new file mode 100644 index 0000000000..427915ed9a --- /dev/null +++ b/src/lib/libssl/src/crypto/seed/seed.h | |||
| @@ -0,0 +1,135 @@ | |||
| 1 | /* | ||
| 2 | * Copyright (c) 2007 KISA(Korea Information Security Agency). All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * 1. Redistributions of source code must retain the above copyright | ||
| 8 | * notice, this list of conditions and the following disclaimer. | ||
| 9 | * 2. Neither the name of author nor the names of its contributors may | ||
| 10 | * be used to endorse or promote products derived from this software | ||
| 11 | * without specific prior written permission. | ||
| 12 | * | ||
| 13 | * THIS SOFTWARE IS PROVIDED BY AUTHOR AND CONTRIBUTORS ``AS IS'' AND | ||
| 14 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 15 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 16 | * ARE DISCLAIMED. IN NO EVENT SHALL AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 17 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 18 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 19 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 20 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 21 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 22 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 23 | * SUCH DAMAGE. | ||
| 24 | * | ||
| 25 | */ | ||
| 26 | /* ==================================================================== | ||
| 27 | * Copyright (c) 1998-2007 The OpenSSL Project. All rights reserved. | ||
| 28 | * | ||
| 29 | * Redistribution and use in source and binary forms, with or without | ||
| 30 | * modification, are permitted provided that the following conditions | ||
| 31 | * are met: | ||
| 32 | * | ||
| 33 | * 1. Redistributions of source code must retain the above copyright | ||
| 34 | * notice, this list of conditions and the following disclaimer. | ||
| 35 | * | ||
| 36 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 37 | * notice, this list of conditions and the following disclaimer in | ||
| 38 | * the documentation and/or other materials provided with the | ||
| 39 | * distribution. | ||
| 40 | * | ||
| 41 | * 3. All advertising materials mentioning features or use of this | ||
| 42 | * software must display the following acknowledgment: | ||
| 43 | * "This product includes software developed by the OpenSSL Project | ||
| 44 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 45 | * | ||
| 46 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 47 | * endorse or promote products derived from this software without | ||
| 48 | * prior written permission. For written permission, please contact | ||
| 49 | * openssl-core@openssl.org. | ||
| 50 | * | ||
| 51 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 52 | * nor may "OpenSSL" appear in their names without prior written | ||
| 53 | * permission of the OpenSSL Project. | ||
| 54 | * | ||
| 55 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 56 | * acknowledgment: | ||
| 57 | * "This product includes software developed by the OpenSSL Project | ||
| 58 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 59 | * | ||
| 60 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 61 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 62 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 63 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 64 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 65 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 66 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 67 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 68 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 69 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 70 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 71 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 72 | * ==================================================================== | ||
| 73 | * | ||
| 74 | * This product includes cryptographic software written by Eric Young | ||
| 75 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 76 | * Hudson (tjh@cryptsoft.com). | ||
| 77 | * | ||
| 78 | */ | ||
| 79 | |||
| 80 | |||
| 81 | #ifndef HEADER_SEED_H | ||
| 82 | #define HEADER_SEED_H | ||
| 83 | |||
| 84 | #include <openssl/opensslconf.h> | ||
| 85 | |||
| 86 | #ifdef OPENSSL_NO_SEED | ||
| 87 | #error SEED is disabled. | ||
| 88 | #endif | ||
| 89 | |||
| 90 | #ifdef AES_LONG /* look whether we need 'long' to get 32 bits */ | ||
| 91 | # ifndef SEED_LONG | ||
| 92 | # define SEED_LONG 1 | ||
| 93 | # endif | ||
| 94 | #endif | ||
| 95 | |||
| 96 | #if !defined(NO_SYS_TYPES_H) | ||
| 97 | # include <sys/types.h> | ||
| 98 | #endif | ||
| 99 | |||
| 100 | #define SEED_BLOCK_SIZE 16 | ||
| 101 | #define SEED_KEY_LENGTH 16 | ||
| 102 | |||
| 103 | |||
| 104 | #ifdef __cplusplus | ||
| 105 | extern "C" { | ||
| 106 | #endif | ||
| 107 | |||
| 108 | |||
| 109 | typedef struct seed_key_st { | ||
| 110 | #ifdef SEED_LONG | ||
| 111 | unsigned long data[32]; | ||
| 112 | #else | ||
| 113 | unsigned int data[32]; | ||
| 114 | #endif | ||
| 115 | } SEED_KEY_SCHEDULE; | ||
| 116 | |||
| 117 | |||
| 118 | void SEED_set_key(const unsigned char rawkey[SEED_KEY_LENGTH], SEED_KEY_SCHEDULE *ks); | ||
| 119 | |||
| 120 | void SEED_encrypt(const unsigned char s[SEED_BLOCK_SIZE], unsigned char d[SEED_BLOCK_SIZE], const SEED_KEY_SCHEDULE *ks); | ||
| 121 | void SEED_decrypt(const unsigned char s[SEED_BLOCK_SIZE], unsigned char d[SEED_BLOCK_SIZE], const SEED_KEY_SCHEDULE *ks); | ||
| 122 | |||
| 123 | void SEED_ecb_encrypt(const unsigned char *in, unsigned char *out, const SEED_KEY_SCHEDULE *ks, int enc); | ||
| 124 | void SEED_cbc_encrypt(const unsigned char *in, unsigned char *out, | ||
| 125 | size_t len, const SEED_KEY_SCHEDULE *ks, unsigned char ivec[SEED_BLOCK_SIZE], int enc); | ||
| 126 | void SEED_cfb128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 127 | size_t len, const SEED_KEY_SCHEDULE *ks, unsigned char ivec[SEED_BLOCK_SIZE], int *num, int enc); | ||
| 128 | void SEED_ofb128_encrypt(const unsigned char *in, unsigned char *out, | ||
| 129 | size_t len, const SEED_KEY_SCHEDULE *ks, unsigned char ivec[SEED_BLOCK_SIZE], int *num); | ||
| 130 | |||
| 131 | #ifdef __cplusplus | ||
| 132 | } | ||
| 133 | #endif | ||
| 134 | |||
| 135 | #endif /* HEADER_SEED_H */ | ||
diff --git a/src/lib/libssl/src/crypto/seed/seed_cbc.c b/src/lib/libssl/src/crypto/seed/seed_cbc.c new file mode 100644 index 0000000000..4f718ccb44 --- /dev/null +++ b/src/lib/libssl/src/crypto/seed/seed_cbc.c | |||
| @@ -0,0 +1,129 @@ | |||
| 1 | /* crypto/seed/seed_cbc.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2007 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #include "seed_locl.h" | ||
| 53 | #include <string.h> | ||
| 54 | |||
| 55 | void SEED_cbc_encrypt(const unsigned char *in, unsigned char *out, | ||
| 56 | size_t len, const SEED_KEY_SCHEDULE *ks, | ||
| 57 | unsigned char ivec[SEED_BLOCK_SIZE], int enc) | ||
| 58 | { | ||
| 59 | size_t n; | ||
| 60 | unsigned char tmp[SEED_BLOCK_SIZE]; | ||
| 61 | const unsigned char *iv = ivec; | ||
| 62 | |||
| 63 | if (enc) | ||
| 64 | { | ||
| 65 | while (len >= SEED_BLOCK_SIZE) | ||
| 66 | { | ||
| 67 | for (n = 0; n < SEED_BLOCK_SIZE; ++n) | ||
| 68 | out[n] = in[n] ^ iv[n]; | ||
| 69 | SEED_encrypt(out, out, ks); | ||
| 70 | iv = out; | ||
| 71 | len -= SEED_BLOCK_SIZE; | ||
| 72 | in += SEED_BLOCK_SIZE; | ||
| 73 | out += SEED_BLOCK_SIZE; | ||
| 74 | } | ||
| 75 | if (len) | ||
| 76 | { | ||
| 77 | for (n = 0; n < len; ++n) | ||
| 78 | out[n] = in[n] ^ iv[n]; | ||
| 79 | for (n = len; n < SEED_BLOCK_SIZE; ++n) | ||
| 80 | out[n] = iv[n]; | ||
| 81 | SEED_encrypt(out, out, ks); | ||
| 82 | iv = out; | ||
| 83 | } | ||
| 84 | memcpy(ivec, iv, SEED_BLOCK_SIZE); | ||
| 85 | } | ||
| 86 | else if (in != out) /* decrypt */ | ||
| 87 | { | ||
| 88 | while (len >= SEED_BLOCK_SIZE) | ||
| 89 | { | ||
| 90 | SEED_decrypt(in, out, ks); | ||
| 91 | for (n = 0; n < SEED_BLOCK_SIZE; ++n) | ||
| 92 | out[n] ^= iv[n]; | ||
| 93 | iv = in; | ||
| 94 | len -= SEED_BLOCK_SIZE; | ||
| 95 | in += SEED_BLOCK_SIZE; | ||
| 96 | out += SEED_BLOCK_SIZE; | ||
| 97 | } | ||
| 98 | if (len) | ||
| 99 | { | ||
| 100 | SEED_decrypt(in, tmp, ks); | ||
| 101 | for (n = 0; n < len; ++n) | ||
| 102 | out[n] = tmp[n] ^ iv[n]; | ||
| 103 | iv = in; | ||
| 104 | } | ||
| 105 | memcpy(ivec, iv, SEED_BLOCK_SIZE); | ||
| 106 | } | ||
| 107 | else /* decrypt, overlap */ | ||
| 108 | { | ||
| 109 | while (len >= SEED_BLOCK_SIZE) | ||
| 110 | { | ||
| 111 | memcpy(tmp, in, SEED_BLOCK_SIZE); | ||
| 112 | SEED_decrypt(in, out, ks); | ||
| 113 | for (n = 0; n < SEED_BLOCK_SIZE; ++n) | ||
| 114 | out[n] ^= ivec[n]; | ||
| 115 | memcpy(ivec, tmp, SEED_BLOCK_SIZE); | ||
| 116 | len -= SEED_BLOCK_SIZE; | ||
| 117 | in += SEED_BLOCK_SIZE; | ||
| 118 | out += SEED_BLOCK_SIZE; | ||
| 119 | } | ||
| 120 | if (len) | ||
| 121 | { | ||
| 122 | memcpy(tmp, in, SEED_BLOCK_SIZE); | ||
| 123 | SEED_decrypt(tmp, tmp, ks); | ||
| 124 | for (n = 0; n < len; ++n) | ||
| 125 | out[n] = tmp[n] ^ ivec[n]; | ||
| 126 | memcpy(ivec, tmp, SEED_BLOCK_SIZE); | ||
| 127 | } | ||
| 128 | } | ||
| 129 | } | ||
diff --git a/src/lib/libssl/src/fips-1.0/hmac/fips_hmac.c b/src/lib/libssl/src/crypto/seed/seed_cfb.c index b36f163748..07d878a788 100644 --- a/src/lib/libssl/src/fips-1.0/hmac/fips_hmac.c +++ b/src/lib/libssl/src/crypto/seed/seed_cfb.c | |||
| @@ -1,4 +1,53 @@ | |||
| 1 | /* crypto/hmac/hmac.c */ | 1 | /* crypto/seed/seed_cfb.c -*- mode:C; c-file-style: "eay" -*- */ |
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2007 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 51 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 52 | * All rights reserved. |
| 4 | * | 53 | * |
| @@ -55,136 +104,41 @@ | |||
| 55 | * copied and put under another distribution licence | 104 | * copied and put under another distribution licence |
| 56 | * [including the GNU Public Licence.] | 105 | * [including the GNU Public Licence.] |
| 57 | */ | 106 | */ |
| 58 | #include <stdio.h> | ||
| 59 | #include <stdlib.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <openssl/hmac.h> | ||
| 62 | 107 | ||
| 63 | #ifdef OPENSSL_FIPS | 108 | #include "seed_locl.h" |
| 109 | #include <string.h> | ||
| 64 | 110 | ||
| 65 | void HMAC_Init_ex(HMAC_CTX *ctx, const void *key, int len, | 111 | void SEED_cfb128_encrypt(const unsigned char *in, unsigned char *out, |
| 66 | const EVP_MD *md, ENGINE *impl) | 112 | size_t len, const SEED_KEY_SCHEDULE *ks, |
| 113 | unsigned char ivec[SEED_BLOCK_SIZE], int *num, int enc) | ||
| 67 | { | 114 | { |
| 68 | int i,j,reset=0; | 115 | int n; |
| 69 | unsigned char pad[HMAC_MAX_MD_CBLOCK]; | 116 | unsigned char c; |
| 70 | 117 | ||
| 71 | if (md != NULL) | 118 | n = *num; |
| 72 | { | ||
| 73 | reset=1; | ||
| 74 | ctx->md=md; | ||
| 75 | } | ||
| 76 | else | ||
| 77 | md=ctx->md; | ||
| 78 | 119 | ||
| 79 | if (key != NULL) | 120 | if (enc) |
| 80 | { | 121 | { |
| 81 | if (FIPS_mode() && !(md->flags & EVP_MD_FLAG_FIPS) | 122 | while (len--) |
| 82 | && (!(ctx->md_ctx.flags & EVP_MD_CTX_FLAG_NON_FIPS_ALLOW) | ||
| 83 | || !(ctx->i_ctx.flags & EVP_MD_CTX_FLAG_NON_FIPS_ALLOW) | ||
| 84 | || !(ctx->o_ctx.flags & EVP_MD_CTX_FLAG_NON_FIPS_ALLOW))) | ||
| 85 | OpenSSLDie(__FILE__,__LINE__, | ||
| 86 | "HMAC: digest not allowed in FIPS mode"); | ||
| 87 | |||
| 88 | reset=1; | ||
| 89 | j=EVP_MD_block_size(md); | ||
| 90 | OPENSSL_assert(j <= sizeof ctx->key); | ||
| 91 | if (j < len) | ||
| 92 | { | 123 | { |
| 93 | EVP_DigestInit_ex(&ctx->md_ctx,md, impl); | 124 | if (n == 0) |
| 94 | EVP_DigestUpdate(&ctx->md_ctx,key,len); | 125 | SEED_encrypt(ivec, ivec, ks); |
| 95 | EVP_DigestFinal_ex(&(ctx->md_ctx),ctx->key, | 126 | ivec[n] = *(out++) = *(in++) ^ ivec[n]; |
| 96 | &ctx->key_length); | 127 | n = (n+1) % SEED_BLOCK_SIZE; |
| 97 | } | 128 | } |
| 98 | else | 129 | } |
| 130 | else | ||
| 131 | { | ||
| 132 | while (len--) | ||
| 99 | { | 133 | { |
| 100 | OPENSSL_assert(len <= sizeof ctx->key); | 134 | if (n == 0) |
| 101 | memcpy(ctx->key,key,len); | 135 | SEED_encrypt(ivec, ivec, ks); |
| 102 | ctx->key_length=len; | 136 | c = *(in); |
| 137 | *(out++) = *(in++) ^ ivec[n]; | ||
| 138 | ivec[n] = c; | ||
| 139 | n = (n+1) % SEED_BLOCK_SIZE; | ||
| 103 | } | 140 | } |
| 104 | if(ctx->key_length != HMAC_MAX_MD_CBLOCK) | ||
| 105 | memset(&ctx->key[ctx->key_length], 0, | ||
| 106 | HMAC_MAX_MD_CBLOCK - ctx->key_length); | ||
| 107 | } | 141 | } |
| 108 | 142 | ||
| 109 | if (reset) | 143 | *num = n; |
| 110 | { | ||
| 111 | for (i=0; i<HMAC_MAX_MD_CBLOCK; i++) | ||
| 112 | pad[i]=0x36^ctx->key[i]; | ||
| 113 | EVP_DigestInit_ex(&ctx->i_ctx,md, impl); | ||
| 114 | EVP_DigestUpdate(&ctx->i_ctx,pad,EVP_MD_block_size(md)); | ||
| 115 | |||
| 116 | for (i=0; i<HMAC_MAX_MD_CBLOCK; i++) | ||
| 117 | pad[i]=0x5c^ctx->key[i]; | ||
| 118 | EVP_DigestInit_ex(&ctx->o_ctx,md, impl); | ||
| 119 | EVP_DigestUpdate(&ctx->o_ctx,pad,EVP_MD_block_size(md)); | ||
| 120 | } | ||
| 121 | EVP_MD_CTX_copy_ex(&ctx->md_ctx,&ctx->i_ctx); | ||
| 122 | } | 144 | } |
| 123 | |||
| 124 | void HMAC_Init(HMAC_CTX *ctx, const void *key, int len, | ||
| 125 | const EVP_MD *md) | ||
| 126 | { | ||
| 127 | if(key && md) | ||
| 128 | HMAC_CTX_init(ctx); | ||
| 129 | HMAC_Init_ex(ctx,key,len,md, NULL); | ||
| 130 | } | ||
| 131 | |||
| 132 | void HMAC_Update(HMAC_CTX *ctx, const unsigned char *data, int len) | ||
| 133 | { | ||
| 134 | EVP_DigestUpdate(&ctx->md_ctx,data,len); | ||
| 135 | } | ||
| 136 | |||
| 137 | void HMAC_Final(HMAC_CTX *ctx, unsigned char *md, unsigned int *len) | ||
| 138 | { | ||
| 139 | int j; | ||
| 140 | unsigned int i; | ||
| 141 | unsigned char buf[EVP_MAX_MD_SIZE]; | ||
| 142 | |||
| 143 | j=EVP_MD_block_size(ctx->md); | ||
| 144 | |||
| 145 | EVP_DigestFinal_ex(&ctx->md_ctx,buf,&i); | ||
| 146 | EVP_MD_CTX_copy_ex(&ctx->md_ctx,&ctx->o_ctx); | ||
| 147 | EVP_DigestUpdate(&ctx->md_ctx,buf,i); | ||
| 148 | EVP_DigestFinal_ex(&ctx->md_ctx,md,len); | ||
| 149 | } | ||
| 150 | |||
| 151 | void HMAC_CTX_init(HMAC_CTX *ctx) | ||
| 152 | { | ||
| 153 | EVP_MD_CTX_init(&ctx->i_ctx); | ||
| 154 | EVP_MD_CTX_init(&ctx->o_ctx); | ||
| 155 | EVP_MD_CTX_init(&ctx->md_ctx); | ||
| 156 | } | ||
| 157 | |||
| 158 | void HMAC_CTX_cleanup(HMAC_CTX *ctx) | ||
| 159 | { | ||
| 160 | EVP_MD_CTX_cleanup(&ctx->i_ctx); | ||
| 161 | EVP_MD_CTX_cleanup(&ctx->o_ctx); | ||
| 162 | EVP_MD_CTX_cleanup(&ctx->md_ctx); | ||
| 163 | memset(ctx,0,sizeof *ctx); | ||
| 164 | } | ||
| 165 | |||
| 166 | unsigned char *HMAC(const EVP_MD *evp_md, const void *key, int key_len, | ||
| 167 | const unsigned char *d, int n, unsigned char *md, | ||
| 168 | unsigned int *md_len) | ||
| 169 | { | ||
| 170 | HMAC_CTX c; | ||
| 171 | static unsigned char m[EVP_MAX_MD_SIZE]; | ||
| 172 | |||
| 173 | if (md == NULL) md=m; | ||
| 174 | HMAC_CTX_init(&c); | ||
| 175 | HMAC_Init(&c,key,key_len,evp_md); | ||
| 176 | HMAC_Update(&c,d,n); | ||
| 177 | HMAC_Final(&c,md,md_len); | ||
| 178 | HMAC_CTX_cleanup(&c); | ||
| 179 | return(md); | ||
| 180 | } | ||
| 181 | |||
| 182 | void HMAC_CTX_set_flags(HMAC_CTX *ctx, unsigned long flags) | ||
| 183 | { | ||
| 184 | EVP_MD_CTX_set_flags(&ctx->i_ctx, flags); | ||
| 185 | EVP_MD_CTX_set_flags(&ctx->o_ctx, flags); | ||
| 186 | EVP_MD_CTX_set_flags(&ctx->md_ctx, flags); | ||
| 187 | } | ||
| 188 | |||
| 189 | #endif | ||
| 190 | |||
diff --git a/src/lib/libssl/src/fips/fips_locl.h b/src/lib/libssl/src/crypto/seed/seed_ecb.c index 215e382549..e63f5ae14e 100644 --- a/src/lib/libssl/src/fips/fips_locl.h +++ b/src/lib/libssl/src/crypto/seed/seed_ecb.c | |||
| @@ -1,5 +1,6 @@ | |||
| 1 | /* crypto/seed/seed_ecb.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 1 | /* ==================================================================== | 2 | /* ==================================================================== |
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 2007 The OpenSSL Project. All rights reserved. |
| 3 | * | 4 | * |
| 4 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 5 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -44,24 +45,16 @@ | |||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) |
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED |
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. |
| 48 | * ==================================================================== | ||
| 47 | * | 49 | * |
| 48 | */ | 50 | */ |
| 49 | 51 | ||
| 50 | #ifdef OPENSSL_FIPS | 52 | #include <openssl/seed.h> |
| 51 | 53 | ||
| 52 | #ifdef __cplusplus | 54 | void SEED_ecb_encrypt(const unsigned char *in, unsigned char *out, const SEED_KEY_SCHEDULE *ks, int enc) |
| 53 | extern "C" { | 55 | { |
| 54 | #endif | 56 | if (enc) |
| 55 | 57 | SEED_encrypt(in, out, ks); | |
| 56 | /* These are really defined in crypto/cryptlib.c */ | 58 | else |
| 57 | void fips_set_started(void); | 59 | SEED_decrypt(in, out, ks); |
| 58 | int fips_is_started(void); | 60 | } |
| 59 | int fips_is_owning_thread(void); | ||
| 60 | int fips_set_owning_thread(void); | ||
| 61 | int fips_clear_owning_thread(void); | ||
| 62 | void fips_set_rand_check(void *rand_check); | ||
| 63 | |||
| 64 | #ifdef __cplusplus | ||
| 65 | } | ||
| 66 | #endif | ||
| 67 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/seed/seed_locl.h b/src/lib/libssl/src/crypto/seed/seed_locl.h new file mode 100644 index 0000000000..fd456b6422 --- /dev/null +++ b/src/lib/libssl/src/crypto/seed/seed_locl.h | |||
| @@ -0,0 +1,116 @@ | |||
| 1 | /* | ||
| 2 | * Copyright (c) 2007 KISA(Korea Information Security Agency). All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * 1. Redistributions of source code must retain the above copyright | ||
| 8 | * notice, this list of conditions and the following disclaimer. | ||
| 9 | * 2. Neither the name of author nor the names of its contributors may | ||
| 10 | * be used to endorse or promote products derived from this software | ||
| 11 | * without specific prior written permission. | ||
| 12 | * | ||
| 13 | * THIS SOFTWARE IS PROVIDED BY AUTHOR AND CONTRIBUTORS ``AS IS'' AND | ||
| 14 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 15 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 16 | * ARE DISCLAIMED. IN NO EVENT SHALL AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 17 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 18 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 19 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 20 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 21 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 22 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 23 | * SUCH DAMAGE. | ||
| 24 | * | ||
| 25 | */ | ||
| 26 | #ifndef HEADER_SEED_LOCL_H | ||
| 27 | #define HEADER_SEED_LOCL_H | ||
| 28 | |||
| 29 | #include "openssl/e_os2.h" | ||
| 30 | #include <openssl/seed.h> | ||
| 31 | |||
| 32 | |||
| 33 | #ifdef SEED_LONG /* need 32-bit type */ | ||
| 34 | typedef unsigned long seed_word; | ||
| 35 | #else | ||
| 36 | typedef unsigned int seed_word; | ||
| 37 | #endif | ||
| 38 | |||
| 39 | |||
| 40 | #ifdef __cplusplus | ||
| 41 | extern "C" { | ||
| 42 | #endif | ||
| 43 | |||
| 44 | #define G_FUNC(v) \ | ||
| 45 | SS[0][(unsigned char) (v) & 0xff] ^ SS[1][(unsigned char) ((v)>>8) & 0xff] ^ \ | ||
| 46 | SS[2][(unsigned char)((v)>>16) & 0xff] ^ SS[3][(unsigned char)((v)>>24) & 0xff] | ||
| 47 | |||
| 48 | #define char2word(c, i) \ | ||
| 49 | (i) = ((((seed_word)(c)[0]) << 24) | (((seed_word)(c)[1]) << 16) | (((seed_word)(c)[2]) << 8) | ((seed_word)(c)[3])) | ||
| 50 | |||
| 51 | #define word2char(l, c) \ | ||
| 52 | *((c)+0) = (unsigned char)((l)>>24) & 0xff; \ | ||
| 53 | *((c)+1) = (unsigned char)((l)>>16) & 0xff; \ | ||
| 54 | *((c)+2) = (unsigned char)((l)>> 8) & 0xff; \ | ||
| 55 | *((c)+3) = (unsigned char)((l)) & 0xff | ||
| 56 | |||
| 57 | #define KEYSCHEDULE_UPDATE0(T0, T1, X1, X2, X3, X4, KC) \ | ||
| 58 | (T0) = (X3); \ | ||
| 59 | (X3) = (((X3)<<8) ^ ((X4)>>24)) & 0xffffffff; \ | ||
| 60 | (X4) = (((X4)<<8) ^ ((T0)>>24)) & 0xffffffff; \ | ||
| 61 | (T0) = ((X1) + (X3) - (KC)) & 0xffffffff; \ | ||
| 62 | (T1) = ((X2) + (KC) - (X4)) & 0xffffffff | ||
| 63 | |||
| 64 | #define KEYSCHEDULE_UPDATE1(T0, T1, X1, X2, X3, X4, KC) \ | ||
| 65 | (T0) = (X1); \ | ||
| 66 | (X1) = (((X1)>>8) ^ ((X2)<<24)) & 0xffffffff; \ | ||
| 67 | (X2) = (((X2)>>8) ^ ((T0)<<24)) & 0xffffffff; \ | ||
| 68 | (T0) = ((X1) + (X3) - (KC)) & 0xffffffff; \ | ||
| 69 | (T1) = ((X2) + (KC) - (X4)) & 0xffffffff | ||
| 70 | |||
| 71 | #define KEYUPDATE_TEMP(T0, T1, K) \ | ||
| 72 | (K)[0] = G_FUNC((T0)); \ | ||
| 73 | (K)[1] = G_FUNC((T1)) | ||
| 74 | |||
| 75 | #define XOR_SEEDBLOCK(DST, SRC) \ | ||
| 76 | ((DST))[0] ^= ((SRC))[0]; \ | ||
| 77 | ((DST))[1] ^= ((SRC))[1]; \ | ||
| 78 | ((DST))[2] ^= ((SRC))[2]; \ | ||
| 79 | ((DST))[3] ^= ((SRC))[3] | ||
| 80 | |||
| 81 | #define MOV_SEEDBLOCK(DST, SRC) \ | ||
| 82 | ((DST))[0] = ((SRC))[0]; \ | ||
| 83 | ((DST))[1] = ((SRC))[1]; \ | ||
| 84 | ((DST))[2] = ((SRC))[2]; \ | ||
| 85 | ((DST))[3] = ((SRC))[3] | ||
| 86 | |||
| 87 | # define CHAR2WORD(C, I) \ | ||
| 88 | char2word((C), (I)[0]); \ | ||
| 89 | char2word((C+4), (I)[1]); \ | ||
| 90 | char2word((C+8), (I)[2]); \ | ||
| 91 | char2word((C+12), (I)[3]) | ||
| 92 | |||
| 93 | # define WORD2CHAR(I, C) \ | ||
| 94 | word2char((I)[0], (C)); \ | ||
| 95 | word2char((I)[1], (C+4)); \ | ||
| 96 | word2char((I)[2], (C+8)); \ | ||
| 97 | word2char((I)[3], (C+12)) | ||
| 98 | |||
| 99 | # define E_SEED(T0, T1, X1, X2, X3, X4, rbase) \ | ||
| 100 | (T0) = (X3) ^ (ks->data)[(rbase)]; \ | ||
| 101 | (T1) = (X4) ^ (ks->data)[(rbase)+1]; \ | ||
| 102 | (T1) ^= (T0); \ | ||
| 103 | (T1) = G_FUNC((T1)); \ | ||
| 104 | (T0) = ((T0) + (T1)) & 0xffffffff; \ | ||
| 105 | (T0) = G_FUNC((T0)); \ | ||
| 106 | (T1) = ((T1) + (T0)) & 0xffffffff; \ | ||
| 107 | (T1) = G_FUNC((T1)); \ | ||
| 108 | (T0) = ((T0) + (T1)) & 0xffffffff; \ | ||
| 109 | (X1) ^= (T0); \ | ||
| 110 | (X2) ^= (T1) | ||
| 111 | |||
| 112 | #ifdef __cplusplus | ||
| 113 | } | ||
| 114 | #endif | ||
| 115 | |||
| 116 | #endif /* HEADER_SEED_LOCL_H */ | ||
diff --git a/src/lib/libssl/src/fips/dsa/fips_dsa_selftest.c b/src/lib/libssl/src/crypto/seed/seed_ofb.c index 2c88f0af44..e2f3f57a38 100644 --- a/src/lib/libssl/src/fips/dsa/fips_dsa_selftest.c +++ b/src/lib/libssl/src/crypto/seed/seed_ofb.c | |||
| @@ -1,4 +1,53 @@ | |||
| 1 | /* crypto/dsa/dsatest.c */ | 1 | /* crypto/seed/seed_ofb.c -*- mode:C; c-file-style: "eay" -*- */ |
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1998-2007 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 51 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 52 | * All rights reserved. |
| 4 | * | 53 | * |
| @@ -56,113 +105,24 @@ | |||
| 56 | * [including the GNU Public Licence.] | 105 | * [including the GNU Public Licence.] |
| 57 | */ | 106 | */ |
| 58 | 107 | ||
| 108 | #include "seed_locl.h" | ||
| 59 | #include <string.h> | 109 | #include <string.h> |
| 60 | #include <openssl/crypto.h> | ||
| 61 | #include <openssl/dsa.h> | ||
| 62 | #include <openssl/fips.h> | ||
| 63 | #include <openssl/err.h> | ||
| 64 | |||
| 65 | #ifdef OPENSSL_FIPS | ||
| 66 | |||
| 67 | /* seed, out_p, out_q, out_g are taken from the updated Appendix 5 to | ||
| 68 | * FIPS PUB 186 and also appear in Appendix 5 to FIPS PIB 186-1 */ | ||
| 69 | static unsigned char seed[20]={ | ||
| 70 | 0xd5,0x01,0x4e,0x4b,0x60,0xef,0x2b,0xa8,0xb6,0x21,0x1b,0x40, | ||
| 71 | 0x62,0xba,0x32,0x24,0xe0,0x42,0x7d,0xd3, | ||
| 72 | }; | ||
| 73 | |||
| 74 | static unsigned char out_p[]={ | ||
| 75 | 0x8d,0xf2,0xa4,0x94,0x49,0x22,0x76,0xaa, | ||
| 76 | 0x3d,0x25,0x75,0x9b,0xb0,0x68,0x69,0xcb, | ||
| 77 | 0xea,0xc0,0xd8,0x3a,0xfb,0x8d,0x0c,0xf7, | ||
| 78 | 0xcb,0xb8,0x32,0x4f,0x0d,0x78,0x82,0xe5, | ||
| 79 | 0xd0,0x76,0x2f,0xc5,0xb7,0x21,0x0e,0xaf, | ||
| 80 | 0xc2,0xe9,0xad,0xac,0x32,0xab,0x7a,0xac, | ||
| 81 | 0x49,0x69,0x3d,0xfb,0xf8,0x37,0x24,0xc2, | ||
| 82 | 0xec,0x07,0x36,0xee,0x31,0xc8,0x02,0x91, | ||
| 83 | }; | ||
| 84 | |||
| 85 | static unsigned char out_q[]={ | ||
| 86 | 0xc7,0x73,0x21,0x8c,0x73,0x7e,0xc8,0xee, | ||
| 87 | 0x99,0x3b,0x4f,0x2d,0xed,0x30,0xf4,0x8e, | ||
| 88 | 0xda,0xce,0x91,0x5f, | ||
| 89 | }; | ||
| 90 | 110 | ||
| 91 | static unsigned char out_g[]={ | 111 | void SEED_ofb128_encrypt(const unsigned char *in, unsigned char *out, |
| 92 | 0x62,0x6d,0x02,0x78,0x39,0xea,0x0a,0x13, | 112 | size_t len, const SEED_KEY_SCHEDULE *ks, |
| 93 | 0x41,0x31,0x63,0xa5,0x5b,0x4c,0xb5,0x00, | 113 | unsigned char ivec[SEED_BLOCK_SIZE], int *num) |
| 94 | 0x29,0x9d,0x55,0x22,0x95,0x6c,0xef,0xcb, | ||
| 95 | 0x3b,0xff,0x10,0xf3,0x99,0xce,0x2c,0x2e, | ||
| 96 | 0x71,0xcb,0x9d,0xe5,0xfa,0x24,0xba,0xbf, | ||
| 97 | 0x58,0xe5,0xb7,0x95,0x21,0x92,0x5c,0x9c, | ||
| 98 | 0xc4,0x2e,0x9f,0x6f,0x46,0x4b,0x08,0x8c, | ||
| 99 | 0xc5,0x72,0xaf,0x53,0xe6,0xd7,0x88,0x02, | ||
| 100 | }; | ||
| 101 | |||
| 102 | static const unsigned char str1[]="12345678901234567890"; | ||
| 103 | |||
| 104 | void FIPS_corrupt_dsa() | ||
| 105 | { | ||
| 106 | ++seed[0]; | ||
| 107 | } | ||
| 108 | |||
| 109 | int FIPS_selftest_dsa() | ||
| 110 | { | ||
| 111 | DSA *dsa=NULL; | ||
| 112 | int counter,i,j; | ||
| 113 | unsigned char buf[256]; | ||
| 114 | unsigned long h; | ||
| 115 | unsigned char sig[256]; | ||
| 116 | unsigned int siglen; | ||
| 117 | |||
| 118 | dsa=DSA_generate_parameters(512,seed,20,&counter,&h,NULL,NULL); | ||
| 119 | |||
| 120 | if(dsa == NULL) | ||
| 121 | { | ||
| 122 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 123 | return 0; | ||
| 124 | } | ||
| 125 | if (counter != 105) | ||
| 126 | { | ||
| 127 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 128 | return 0; | ||
| 129 | } | ||
| 130 | if (h != 2) | ||
| 131 | { | 114 | { |
| 132 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | 115 | int n; |
| 133 | return 0; | ||
| 134 | } | ||
| 135 | i=BN_bn2bin(dsa->q,buf); | ||
| 136 | j=sizeof(out_q); | ||
| 137 | if (i != j || memcmp(buf,out_q,i) != 0) | ||
| 138 | { | ||
| 139 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 140 | return 0; | ||
| 141 | } | ||
| 142 | 116 | ||
| 143 | i=BN_bn2bin(dsa->p,buf); | 117 | n = *num; |
| 144 | j=sizeof(out_p); | 118 | |
| 145 | if (i != j || memcmp(buf,out_p,i) != 0) | 119 | while (len--) |
| 146 | { | 120 | { |
| 147 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | 121 | if (n == 0) |
| 148 | return 0; | 122 | SEED_encrypt(ivec, ivec, ks); |
| 149 | } | 123 | *(out++) = *(in++) ^ ivec[n]; |
| 124 | n = (n+1) % SEED_BLOCK_SIZE; | ||
| 125 | } | ||
| 150 | 126 | ||
| 151 | i=BN_bn2bin(dsa->g,buf); | 127 | *num = n; |
| 152 | j=sizeof(out_g); | ||
| 153 | if (i != j || memcmp(buf,out_g,i) != 0) | ||
| 154 | { | ||
| 155 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 156 | return 0; | ||
| 157 | } | ||
| 158 | DSA_generate_key(dsa); | ||
| 159 | DSA_sign(0, str1, 20, sig, &siglen, dsa); | ||
| 160 | if(DSA_verify(0, str1, 20, sig, siglen, dsa) != 1) | ||
| 161 | { | ||
| 162 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 163 | return 0; | ||
| 164 | } | 128 | } |
| 165 | DSA_free(dsa); | ||
| 166 | return 1; | ||
| 167 | } | ||
| 168 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/sha/asm/sha1-x86_64.pl b/src/lib/libssl/src/crypto/sha/asm/sha1-x86_64.pl new file mode 100755 index 0000000000..f7ed67a726 --- /dev/null +++ b/src/lib/libssl/src/crypto/sha/asm/sha1-x86_64.pl | |||
| @@ -0,0 +1,242 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | # | ||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. The module is, however, dual licensed under OpenSSL and | ||
| 6 | # CRYPTOGAMS licenses depending on where you obtain it. For further | ||
| 7 | # details see http://www.openssl.org/~appro/cryptogams/. | ||
| 8 | # ==================================================================== | ||
| 9 | # | ||
| 10 | # sha1_block procedure for x86_64. | ||
| 11 | # | ||
| 12 | # It was brought to my attention that on EM64T compiler-generated code | ||
| 13 | # was far behind 32-bit assembler implementation. This is unlike on | ||
| 14 | # Opteron where compiler-generated code was only 15% behind 32-bit | ||
| 15 | # assembler, which originally made it hard to motivate the effort. | ||
| 16 | # There was suggestion to mechanically translate 32-bit code, but I | ||
| 17 | # dismissed it, reasoning that x86_64 offers enough register bank | ||
| 18 | # capacity to fully utilize SHA-1 parallelism. Therefore this fresh | ||
| 19 | # implementation:-) However! While 64-bit code does performs better | ||
| 20 | # on Opteron, I failed to beat 32-bit assembler on EM64T core. Well, | ||
| 21 | # x86_64 does offer larger *addressable* bank, but out-of-order core | ||
| 22 | # reaches for even more registers through dynamic aliasing, and EM64T | ||
| 23 | # core must have managed to run-time optimize even 32-bit code just as | ||
| 24 | # good as 64-bit one. Performance improvement is summarized in the | ||
| 25 | # following table: | ||
| 26 | # | ||
| 27 | # gcc 3.4 32-bit asm cycles/byte | ||
| 28 | # Opteron +45% +20% 6.8 | ||
| 29 | # Xeon P4 +65% +0% 9.9 | ||
| 30 | # Core2 +60% +10% 7.0 | ||
| 31 | |||
| 32 | $output=shift; | ||
| 33 | |||
| 34 | $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1; | ||
| 35 | ( $xlate="${dir}x86_64-xlate.pl" and -f $xlate ) or | ||
| 36 | ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or | ||
| 37 | die "can't locate x86_64-xlate.pl"; | ||
| 38 | |||
| 39 | open STDOUT,"| $^X $xlate $output"; | ||
| 40 | |||
| 41 | $ctx="%rdi"; # 1st arg | ||
| 42 | $inp="%rsi"; # 2nd arg | ||
| 43 | $num="%rdx"; # 3rd arg | ||
| 44 | |||
| 45 | # reassign arguments in order to produce more compact code | ||
| 46 | $ctx="%r8"; | ||
| 47 | $inp="%r9"; | ||
| 48 | $num="%r10"; | ||
| 49 | |||
| 50 | $xi="%eax"; | ||
| 51 | $t0="%ebx"; | ||
| 52 | $t1="%ecx"; | ||
| 53 | $A="%edx"; | ||
| 54 | $B="%esi"; | ||
| 55 | $C="%edi"; | ||
| 56 | $D="%ebp"; | ||
| 57 | $E="%r11d"; | ||
| 58 | $T="%r12d"; | ||
| 59 | |||
| 60 | @V=($A,$B,$C,$D,$E,$T); | ||
| 61 | |||
| 62 | sub PROLOGUE { | ||
| 63 | my $func=shift; | ||
| 64 | $code.=<<___; | ||
| 65 | .globl $func | ||
| 66 | .type $func,\@function,3 | ||
| 67 | .align 16 | ||
| 68 | $func: | ||
| 69 | push %rbx | ||
| 70 | push %rbp | ||
| 71 | push %r12 | ||
| 72 | mov %rsp,%rax | ||
| 73 | mov %rdi,$ctx # reassigned argument | ||
| 74 | sub \$`8+16*4`,%rsp | ||
| 75 | mov %rsi,$inp # reassigned argument | ||
| 76 | and \$-64,%rsp | ||
| 77 | mov %rdx,$num # reassigned argument | ||
| 78 | mov %rax,`16*4`(%rsp) | ||
| 79 | |||
| 80 | mov 0($ctx),$A | ||
| 81 | mov 4($ctx),$B | ||
| 82 | mov 8($ctx),$C | ||
| 83 | mov 12($ctx),$D | ||
| 84 | mov 16($ctx),$E | ||
| 85 | ___ | ||
| 86 | } | ||
| 87 | |||
| 88 | sub EPILOGUE { | ||
| 89 | my $func=shift; | ||
| 90 | $code.=<<___; | ||
| 91 | mov `16*4`(%rsp),%rsp | ||
| 92 | pop %r12 | ||
| 93 | pop %rbp | ||
| 94 | pop %rbx | ||
| 95 | ret | ||
| 96 | .size $func,.-$func | ||
| 97 | ___ | ||
| 98 | } | ||
| 99 | |||
| 100 | sub BODY_00_19 { | ||
| 101 | my ($i,$a,$b,$c,$d,$e,$f,$host)=@_; | ||
| 102 | my $j=$i+1; | ||
| 103 | $code.=<<___ if ($i==0); | ||
| 104 | mov `4*$i`($inp),$xi | ||
| 105 | `"bswap $xi" if(!defined($host))` | ||
| 106 | mov $xi,`4*$i`(%rsp) | ||
| 107 | ___ | ||
| 108 | $code.=<<___ if ($i<15); | ||
| 109 | lea 0x5a827999($xi,$e),$f | ||
| 110 | mov $c,$t0 | ||
| 111 | mov `4*$j`($inp),$xi | ||
| 112 | mov $a,$e | ||
| 113 | xor $d,$t0 | ||
| 114 | `"bswap $xi" if(!defined($host))` | ||
| 115 | rol \$5,$e | ||
| 116 | and $b,$t0 | ||
| 117 | mov $xi,`4*$j`(%rsp) | ||
| 118 | add $e,$f | ||
| 119 | xor $d,$t0 | ||
| 120 | rol \$30,$b | ||
| 121 | add $t0,$f | ||
| 122 | ___ | ||
| 123 | $code.=<<___ if ($i>=15); | ||
| 124 | lea 0x5a827999($xi,$e),$f | ||
| 125 | mov `4*($j%16)`(%rsp),$xi | ||
| 126 | mov $c,$t0 | ||
| 127 | mov $a,$e | ||
| 128 | xor `4*(($j+2)%16)`(%rsp),$xi | ||
| 129 | xor $d,$t0 | ||
| 130 | rol \$5,$e | ||
| 131 | xor `4*(($j+8)%16)`(%rsp),$xi | ||
| 132 | and $b,$t0 | ||
| 133 | add $e,$f | ||
| 134 | xor `4*(($j+13)%16)`(%rsp),$xi | ||
| 135 | xor $d,$t0 | ||
| 136 | rol \$30,$b | ||
| 137 | add $t0,$f | ||
| 138 | rol \$1,$xi | ||
| 139 | mov $xi,`4*($j%16)`(%rsp) | ||
| 140 | ___ | ||
| 141 | } | ||
| 142 | |||
| 143 | sub BODY_20_39 { | ||
| 144 | my ($i,$a,$b,$c,$d,$e,$f)=@_; | ||
| 145 | my $j=$i+1; | ||
| 146 | my $K=($i<40)?0x6ed9eba1:0xca62c1d6; | ||
| 147 | $code.=<<___ if ($i<79); | ||
| 148 | lea $K($xi,$e),$f | ||
| 149 | mov `4*($j%16)`(%rsp),$xi | ||
| 150 | mov $c,$t0 | ||
| 151 | mov $a,$e | ||
| 152 | xor `4*(($j+2)%16)`(%rsp),$xi | ||
| 153 | xor $b,$t0 | ||
| 154 | rol \$5,$e | ||
| 155 | xor `4*(($j+8)%16)`(%rsp),$xi | ||
| 156 | xor $d,$t0 | ||
| 157 | add $e,$f | ||
| 158 | xor `4*(($j+13)%16)`(%rsp),$xi | ||
| 159 | rol \$30,$b | ||
| 160 | add $t0,$f | ||
| 161 | rol \$1,$xi | ||
| 162 | ___ | ||
| 163 | $code.=<<___ if ($i<76); | ||
| 164 | mov $xi,`4*($j%16)`(%rsp) | ||
| 165 | ___ | ||
| 166 | $code.=<<___ if ($i==79); | ||
| 167 | lea $K($xi,$e),$f | ||
| 168 | mov $c,$t0 | ||
| 169 | mov $a,$e | ||
| 170 | xor $b,$t0 | ||
| 171 | rol \$5,$e | ||
| 172 | xor $d,$t0 | ||
| 173 | add $e,$f | ||
| 174 | rol \$30,$b | ||
| 175 | add $t0,$f | ||
| 176 | ___ | ||
| 177 | } | ||
| 178 | |||
| 179 | sub BODY_40_59 { | ||
| 180 | my ($i,$a,$b,$c,$d,$e,$f)=@_; | ||
| 181 | my $j=$i+1; | ||
| 182 | $code.=<<___; | ||
| 183 | lea 0x8f1bbcdc($xi,$e),$f | ||
| 184 | mov `4*($j%16)`(%rsp),$xi | ||
| 185 | mov $b,$t0 | ||
| 186 | mov $b,$t1 | ||
| 187 | xor `4*(($j+2)%16)`(%rsp),$xi | ||
| 188 | mov $a,$e | ||
| 189 | and $c,$t0 | ||
| 190 | xor `4*(($j+8)%16)`(%rsp),$xi | ||
| 191 | or $c,$t1 | ||
| 192 | rol \$5,$e | ||
| 193 | xor `4*(($j+13)%16)`(%rsp),$xi | ||
| 194 | and $d,$t1 | ||
| 195 | add $e,$f | ||
| 196 | rol \$1,$xi | ||
| 197 | or $t1,$t0 | ||
| 198 | rol \$30,$b | ||
| 199 | mov $xi,`4*($j%16)`(%rsp) | ||
| 200 | add $t0,$f | ||
| 201 | ___ | ||
| 202 | } | ||
| 203 | |||
| 204 | $code=".text\n"; | ||
| 205 | |||
| 206 | &PROLOGUE("sha1_block_data_order"); | ||
| 207 | $code.=".align 4\n.Lloop:\n"; | ||
| 208 | for($i=0;$i<20;$i++) { &BODY_00_19($i,@V); unshift(@V,pop(@V)); } | ||
| 209 | for(;$i<40;$i++) { &BODY_20_39($i,@V); unshift(@V,pop(@V)); } | ||
| 210 | for(;$i<60;$i++) { &BODY_40_59($i,@V); unshift(@V,pop(@V)); } | ||
| 211 | for(;$i<80;$i++) { &BODY_20_39($i,@V); unshift(@V,pop(@V)); } | ||
| 212 | $code.=<<___; | ||
| 213 | add 0($ctx),$E | ||
| 214 | add 4($ctx),$T | ||
| 215 | add 8($ctx),$A | ||
| 216 | add 12($ctx),$B | ||
| 217 | add 16($ctx),$C | ||
| 218 | mov $E,0($ctx) | ||
| 219 | mov $T,4($ctx) | ||
| 220 | mov $A,8($ctx) | ||
| 221 | mov $B,12($ctx) | ||
| 222 | mov $C,16($ctx) | ||
| 223 | |||
| 224 | xchg $E,$A # mov $E,$A | ||
| 225 | xchg $T,$B # mov $T,$B | ||
| 226 | xchg $E,$C # mov $A,$C | ||
| 227 | xchg $T,$D # mov $B,$D | ||
| 228 | # mov $C,$E | ||
| 229 | lea `16*4`($inp),$inp | ||
| 230 | sub \$1,$num | ||
| 231 | jnz .Lloop | ||
| 232 | ___ | ||
| 233 | &EPILOGUE("sha1_block_data_order"); | ||
| 234 | $code.=<<___; | ||
| 235 | .asciz "SHA1 block transform for x86_64, CRYPTOGAMS by <appro\@openssl.org>" | ||
| 236 | ___ | ||
| 237 | |||
| 238 | #################################################################### | ||
| 239 | |||
| 240 | $code =~ s/\`([^\`]*)\`/eval $1/gem; | ||
| 241 | print $code; | ||
| 242 | close STDOUT; | ||
diff --git a/src/lib/libssl/src/crypto/sha/asm/sha512-ia64.pl b/src/lib/libssl/src/crypto/sha/asm/sha512-ia64.pl new file mode 100755 index 0000000000..1c6ce56522 --- /dev/null +++ b/src/lib/libssl/src/crypto/sha/asm/sha512-ia64.pl | |||
| @@ -0,0 +1,672 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | # | ||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. The module is, however, dual licensed under OpenSSL and | ||
| 6 | # CRYPTOGAMS licenses depending on where you obtain it. For further | ||
| 7 | # details see http://www.openssl.org/~appro/cryptogams/. | ||
| 8 | # ==================================================================== | ||
| 9 | # | ||
| 10 | # SHA256/512_Transform for Itanium. | ||
| 11 | # | ||
| 12 | # sha512_block runs in 1003 cycles on Itanium 2, which is almost 50% | ||
| 13 | # faster than gcc and >60%(!) faster than code generated by HP-UX | ||
| 14 | # compiler (yes, HP-UX is generating slower code, because unlike gcc, | ||
| 15 | # it failed to deploy "shift right pair," 'shrp' instruction, which | ||
| 16 | # substitutes for 64-bit rotate). | ||
| 17 | # | ||
| 18 | # 924 cycles long sha256_block outperforms gcc by over factor of 2(!) | ||
| 19 | # and HP-UX compiler - by >40% (yes, gcc won sha512_block, but lost | ||
| 20 | # this one big time). Note that "formally" 924 is about 100 cycles | ||
| 21 | # too much. I mean it's 64 32-bit rounds vs. 80 virtually identical | ||
| 22 | # 64-bit ones and 1003*64/80 gives 802. Extra cycles, 2 per round, | ||
| 23 | # are spent on extra work to provide for 32-bit rotations. 32-bit | ||
| 24 | # rotations are still handled by 'shrp' instruction and for this | ||
| 25 | # reason lower 32 bits are deposited to upper half of 64-bit register | ||
| 26 | # prior 'shrp' issue. And in order to minimize the amount of such | ||
| 27 | # operations, X[16] values are *maintained* with copies of lower | ||
| 28 | # halves in upper halves, which is why you'll spot such instructions | ||
| 29 | # as custom 'mux2', "parallel 32-bit add," 'padd4' and "parallel | ||
| 30 | # 32-bit unsigned right shift," 'pshr4.u' instructions here. | ||
| 31 | # | ||
| 32 | # Rules of engagement. | ||
| 33 | # | ||
| 34 | # There is only one integer shifter meaning that if I have two rotate, | ||
| 35 | # deposit or extract instructions in adjacent bundles, they shall | ||
| 36 | # split [at run-time if they have to]. But note that variable and | ||
| 37 | # parallel shifts are performed by multi-media ALU and *are* pairable | ||
| 38 | # with rotates [and alike]. On the backside MMALU is rather slow: it | ||
| 39 | # takes 2 extra cycles before the result of integer operation is | ||
| 40 | # available *to* MMALU and 2(*) extra cycles before the result of MM | ||
| 41 | # operation is available "back" *to* integer ALU, not to mention that | ||
| 42 | # MMALU itself has 2 cycles latency. However! I explicitly scheduled | ||
| 43 | # these MM instructions to avoid MM stalls, so that all these extra | ||
| 44 | # latencies get "hidden" in instruction-level parallelism. | ||
| 45 | # | ||
| 46 | # (*) 2 cycles on Itanium 1 and 1 cycle on Itanium 2. But I schedule | ||
| 47 | # for 2 in order to provide for best *overall* performance, | ||
| 48 | # because on Itanium 1 stall on MM result is accompanied by | ||
| 49 | # pipeline flush, which takes 6 cycles:-( | ||
| 50 | # | ||
| 51 | # Resulting performance numbers for 900MHz Itanium 2 system: | ||
| 52 | # | ||
| 53 | # The 'numbers' are in 1000s of bytes per second processed. | ||
| 54 | # type 16 bytes 64 bytes 256 bytes 1024 bytes 8192 bytes | ||
| 55 | # sha1(*) 6210.14k 20376.30k 52447.83k 85870.05k 105478.12k | ||
| 56 | # sha256 7476.45k 20572.05k 41538.34k 56062.29k 62093.18k | ||
| 57 | # sha512 4996.56k 20026.28k 47597.20k 85278.79k 111501.31k | ||
| 58 | # | ||
| 59 | # (*) SHA1 numbers are for HP-UX compiler and are presented purely | ||
| 60 | # for reference purposes. I bet it can improved too... | ||
| 61 | # | ||
| 62 | # To generate code, pass the file name with either 256 or 512 in its | ||
| 63 | # name and compiler flags. | ||
| 64 | |||
| 65 | $output=shift; | ||
| 66 | |||
| 67 | if ($output =~ /512.*\.[s|asm]/) { | ||
| 68 | $SZ=8; | ||
| 69 | $BITS=8*$SZ; | ||
| 70 | $LDW="ld8"; | ||
| 71 | $STW="st8"; | ||
| 72 | $ADD="add"; | ||
| 73 | $SHRU="shr.u"; | ||
| 74 | $TABLE="K512"; | ||
| 75 | $func="sha512_block_data_order"; | ||
| 76 | @Sigma0=(28,34,39); | ||
| 77 | @Sigma1=(14,18,41); | ||
| 78 | @sigma0=(1, 8, 7); | ||
| 79 | @sigma1=(19,61, 6); | ||
| 80 | $rounds=80; | ||
| 81 | } elsif ($output =~ /256.*\.[s|asm]/) { | ||
| 82 | $SZ=4; | ||
| 83 | $BITS=8*$SZ; | ||
| 84 | $LDW="ld4"; | ||
| 85 | $STW="st4"; | ||
| 86 | $ADD="padd4"; | ||
| 87 | $SHRU="pshr4.u"; | ||
| 88 | $TABLE="K256"; | ||
| 89 | $func="sha256_block_data_order"; | ||
| 90 | @Sigma0=( 2,13,22); | ||
| 91 | @Sigma1=( 6,11,25); | ||
| 92 | @sigma0=( 7,18, 3); | ||
| 93 | @sigma1=(17,19,10); | ||
| 94 | $rounds=64; | ||
| 95 | } else { die "nonsense $output"; } | ||
| 96 | |||
| 97 | open STDOUT,">$output" || die "can't open $output: $!"; | ||
| 98 | |||
| 99 | if ($^O eq "hpux") { | ||
| 100 | $ADDP="addp4"; | ||
| 101 | for (@ARGV) { $ADDP="add" if (/[\+DD|\-mlp]64/); } | ||
| 102 | } else { $ADDP="add"; } | ||
| 103 | for (@ARGV) { $big_endian=1 if (/\-DB_ENDIAN/); | ||
| 104 | $big_endian=0 if (/\-DL_ENDIAN/); } | ||
| 105 | if (!defined($big_endian)) | ||
| 106 | { $big_endian=(unpack('L',pack('N',1))==1); } | ||
| 107 | |||
| 108 | $code=<<___; | ||
| 109 | .ident \"$output, version 1.1\" | ||
| 110 | .ident \"IA-64 ISA artwork by Andy Polyakov <appro\@fy.chalmers.se>\" | ||
| 111 | .explicit | ||
| 112 | .text | ||
| 113 | |||
| 114 | pfssave=r2; | ||
| 115 | lcsave=r3; | ||
| 116 | prsave=r14; | ||
| 117 | K=r15; | ||
| 118 | A=r16; B=r17; C=r18; D=r19; | ||
| 119 | E=r20; F=r21; G=r22; H=r23; | ||
| 120 | T1=r24; T2=r25; | ||
| 121 | s0=r26; s1=r27; t0=r28; t1=r29; | ||
| 122 | Ktbl=r30; | ||
| 123 | ctx=r31; // 1st arg | ||
| 124 | input=r48; // 2nd arg | ||
| 125 | num=r49; // 3rd arg | ||
| 126 | sgm0=r50; sgm1=r51; // small constants | ||
| 127 | A_=r54; B_=r55; C_=r56; D_=r57; | ||
| 128 | E_=r58; F_=r59; G_=r60; H_=r61; | ||
| 129 | |||
| 130 | // void $func (SHA_CTX *ctx, const void *in,size_t num[,int host]) | ||
| 131 | .global $func# | ||
| 132 | .proc $func# | ||
| 133 | .align 32 | ||
| 134 | $func: | ||
| 135 | .prologue | ||
| 136 | .save ar.pfs,pfssave | ||
| 137 | { .mmi; alloc pfssave=ar.pfs,3,27,0,16 | ||
| 138 | $ADDP ctx=0,r32 // 1st arg | ||
| 139 | .save ar.lc,lcsave | ||
| 140 | mov lcsave=ar.lc } | ||
| 141 | { .mmi; $ADDP input=0,r33 // 2nd arg | ||
| 142 | mov num=r34 // 3rd arg | ||
| 143 | .save pr,prsave | ||
| 144 | mov prsave=pr };; | ||
| 145 | |||
| 146 | .body | ||
| 147 | { .mib; add r8=0*$SZ,ctx | ||
| 148 | add r9=1*$SZ,ctx | ||
| 149 | brp.loop.imp .L_first16,.L_first16_end-16 } | ||
| 150 | { .mib; add r10=2*$SZ,ctx | ||
| 151 | add r11=3*$SZ,ctx | ||
| 152 | brp.loop.imp .L_rest,.L_rest_end-16 };; | ||
| 153 | |||
| 154 | // load A-H | ||
| 155 | .Lpic_point: | ||
| 156 | { .mmi; $LDW A_=[r8],4*$SZ | ||
| 157 | $LDW B_=[r9],4*$SZ | ||
| 158 | mov Ktbl=ip } | ||
| 159 | { .mmi; $LDW C_=[r10],4*$SZ | ||
| 160 | $LDW D_=[r11],4*$SZ | ||
| 161 | mov sgm0=$sigma0[2] };; | ||
| 162 | { .mmi; $LDW E_=[r8] | ||
| 163 | $LDW F_=[r9] | ||
| 164 | add Ktbl=($TABLE#-.Lpic_point),Ktbl } | ||
| 165 | { .mmi; $LDW G_=[r10] | ||
| 166 | $LDW H_=[r11] | ||
| 167 | cmp.ne p0,p16=0,r0 };; // used in sha256_block | ||
| 168 | ___ | ||
| 169 | $code.=<<___ if ($BITS==64); | ||
| 170 | { .mii; and r8=7,input | ||
| 171 | and input=~7,input;; | ||
| 172 | cmp.eq p9,p0=1,r8 } | ||
| 173 | { .mmi; cmp.eq p10,p0=2,r8 | ||
| 174 | cmp.eq p11,p0=3,r8 | ||
| 175 | cmp.eq p12,p0=4,r8 } | ||
| 176 | { .mmi; cmp.eq p13,p0=5,r8 | ||
| 177 | cmp.eq p14,p0=6,r8 | ||
| 178 | cmp.eq p15,p0=7,r8 };; | ||
| 179 | ___ | ||
| 180 | $code.=<<___; | ||
| 181 | .L_outer: | ||
| 182 | .rotr X[16] | ||
| 183 | { .mmi; mov A=A_ | ||
| 184 | mov B=B_ | ||
| 185 | mov ar.lc=14 } | ||
| 186 | { .mmi; mov C=C_ | ||
| 187 | mov D=D_ | ||
| 188 | mov E=E_ } | ||
| 189 | { .mmi; mov F=F_ | ||
| 190 | mov G=G_ | ||
| 191 | mov ar.ec=2 } | ||
| 192 | { .mmi; ld1 X[15]=[input],$SZ // eliminated in 64-bit | ||
| 193 | mov H=H_ | ||
| 194 | mov sgm1=$sigma1[2] };; | ||
| 195 | |||
| 196 | ___ | ||
| 197 | $t0="t0", $t1="t1", $code.=<<___ if ($BITS==32); | ||
| 198 | .align 32 | ||
| 199 | .L_first16: | ||
| 200 | { .mmi; add r9=1-$SZ,input | ||
| 201 | add r10=2-$SZ,input | ||
| 202 | add r11=3-$SZ,input };; | ||
| 203 | { .mmi; ld1 r9=[r9] | ||
| 204 | ld1 r10=[r10] | ||
| 205 | dep.z $t1=E,32,32 } | ||
| 206 | { .mmi; $LDW K=[Ktbl],$SZ | ||
| 207 | ld1 r11=[r11] | ||
| 208 | zxt4 E=E };; | ||
| 209 | { .mii; or $t1=$t1,E | ||
| 210 | dep X[15]=X[15],r9,8,8 | ||
| 211 | dep r11=r10,r11,8,8 };; | ||
| 212 | { .mmi; and T1=F,E | ||
| 213 | and T2=A,B | ||
| 214 | dep X[15]=X[15],r11,16,16 } | ||
| 215 | { .mmi; andcm r8=G,E | ||
| 216 | and r9=A,C | ||
| 217 | mux2 $t0=A,0x44 };; // copy lower half to upper | ||
| 218 | { .mmi; (p16) ld1 X[15-1]=[input],$SZ // prefetch | ||
| 219 | xor T1=T1,r8 // T1=((e & f) ^ (~e & g)) | ||
| 220 | _rotr r11=$t1,$Sigma1[0] } // ROTR(e,14) | ||
| 221 | { .mib; and r10=B,C | ||
| 222 | xor T2=T2,r9 };; | ||
| 223 | ___ | ||
| 224 | $t0="A", $t1="E", $code.=<<___ if ($BITS==64); | ||
| 225 | // in 64-bit mode I load whole X[16] at once and take care of alignment... | ||
| 226 | { .mmi; add r8=1*$SZ,input | ||
| 227 | add r9=2*$SZ,input | ||
| 228 | add r10=3*$SZ,input };; | ||
| 229 | { .mmb; $LDW X[15]=[input],4*$SZ | ||
| 230 | $LDW X[14]=[r8],4*$SZ | ||
| 231 | (p9) br.cond.dpnt.many .L1byte };; | ||
| 232 | { .mmb; $LDW X[13]=[r9],4*$SZ | ||
| 233 | $LDW X[12]=[r10],4*$SZ | ||
| 234 | (p10) br.cond.dpnt.many .L2byte };; | ||
| 235 | { .mmb; $LDW X[11]=[input],4*$SZ | ||
| 236 | $LDW X[10]=[r8],4*$SZ | ||
| 237 | (p11) br.cond.dpnt.many .L3byte };; | ||
| 238 | { .mmb; $LDW X[ 9]=[r9],4*$SZ | ||
| 239 | $LDW X[ 8]=[r10],4*$SZ | ||
| 240 | (p12) br.cond.dpnt.many .L4byte };; | ||
| 241 | { .mmb; $LDW X[ 7]=[input],4*$SZ | ||
| 242 | $LDW X[ 6]=[r8],4*$SZ | ||
| 243 | (p13) br.cond.dpnt.many .L5byte };; | ||
| 244 | { .mmb; $LDW X[ 5]=[r9],4*$SZ | ||
| 245 | $LDW X[ 4]=[r10],4*$SZ | ||
| 246 | (p14) br.cond.dpnt.many .L6byte };; | ||
| 247 | { .mmb; $LDW X[ 3]=[input],4*$SZ | ||
| 248 | $LDW X[ 2]=[r8],4*$SZ | ||
| 249 | (p15) br.cond.dpnt.many .L7byte };; | ||
| 250 | { .mmb; $LDW X[ 1]=[r9],4*$SZ | ||
| 251 | $LDW X[ 0]=[r10],4*$SZ | ||
| 252 | br.many .L_first16 };; | ||
| 253 | .L1byte: | ||
| 254 | { .mmi; $LDW X[13]=[r9],4*$SZ | ||
| 255 | $LDW X[12]=[r10],4*$SZ | ||
| 256 | shrp X[15]=X[15],X[14],56 };; | ||
| 257 | { .mmi; $LDW X[11]=[input],4*$SZ | ||
| 258 | $LDW X[10]=[r8],4*$SZ | ||
| 259 | shrp X[14]=X[14],X[13],56 } | ||
| 260 | { .mmi; $LDW X[ 9]=[r9],4*$SZ | ||
| 261 | $LDW X[ 8]=[r10],4*$SZ | ||
| 262 | shrp X[13]=X[13],X[12],56 };; | ||
| 263 | { .mmi; $LDW X[ 7]=[input],4*$SZ | ||
| 264 | $LDW X[ 6]=[r8],4*$SZ | ||
| 265 | shrp X[12]=X[12],X[11],56 } | ||
| 266 | { .mmi; $LDW X[ 5]=[r9],4*$SZ | ||
| 267 | $LDW X[ 4]=[r10],4*$SZ | ||
| 268 | shrp X[11]=X[11],X[10],56 };; | ||
| 269 | { .mmi; $LDW X[ 3]=[input],4*$SZ | ||
| 270 | $LDW X[ 2]=[r8],4*$SZ | ||
| 271 | shrp X[10]=X[10],X[ 9],56 } | ||
| 272 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 273 | $LDW X[ 0]=[r10],4*$SZ | ||
| 274 | shrp X[ 9]=X[ 9],X[ 8],56 };; | ||
| 275 | { .mii; $LDW T1=[input] | ||
| 276 | shrp X[ 8]=X[ 8],X[ 7],56 | ||
| 277 | shrp X[ 7]=X[ 7],X[ 6],56 } | ||
| 278 | { .mii; shrp X[ 6]=X[ 6],X[ 5],56 | ||
| 279 | shrp X[ 5]=X[ 5],X[ 4],56 };; | ||
| 280 | { .mii; shrp X[ 4]=X[ 4],X[ 3],56 | ||
| 281 | shrp X[ 3]=X[ 3],X[ 2],56 } | ||
| 282 | { .mii; shrp X[ 2]=X[ 2],X[ 1],56 | ||
| 283 | shrp X[ 1]=X[ 1],X[ 0],56 } | ||
| 284 | { .mib; shrp X[ 0]=X[ 0],T1,56 | ||
| 285 | br.many .L_first16 };; | ||
| 286 | .L2byte: | ||
| 287 | { .mmi; $LDW X[11]=[input],4*$SZ | ||
| 288 | $LDW X[10]=[r8],4*$SZ | ||
| 289 | shrp X[15]=X[15],X[14],48 } | ||
| 290 | { .mmi; $LDW X[ 9]=[r9],4*$SZ | ||
| 291 | $LDW X[ 8]=[r10],4*$SZ | ||
| 292 | shrp X[14]=X[14],X[13],48 };; | ||
| 293 | { .mmi; $LDW X[ 7]=[input],4*$SZ | ||
| 294 | $LDW X[ 6]=[r8],4*$SZ | ||
| 295 | shrp X[13]=X[13],X[12],48 } | ||
| 296 | { .mmi; $LDW X[ 5]=[r9],4*$SZ | ||
| 297 | $LDW X[ 4]=[r10],4*$SZ | ||
| 298 | shrp X[12]=X[12],X[11],48 };; | ||
| 299 | { .mmi; $LDW X[ 3]=[input],4*$SZ | ||
| 300 | $LDW X[ 2]=[r8],4*$SZ | ||
| 301 | shrp X[11]=X[11],X[10],48 } | ||
| 302 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 303 | $LDW X[ 0]=[r10],4*$SZ | ||
| 304 | shrp X[10]=X[10],X[ 9],48 };; | ||
| 305 | { .mii; $LDW T1=[input] | ||
| 306 | shrp X[ 9]=X[ 9],X[ 8],48 | ||
| 307 | shrp X[ 8]=X[ 8],X[ 7],48 } | ||
| 308 | { .mii; shrp X[ 7]=X[ 7],X[ 6],48 | ||
| 309 | shrp X[ 6]=X[ 6],X[ 5],48 };; | ||
| 310 | { .mii; shrp X[ 5]=X[ 5],X[ 4],48 | ||
| 311 | shrp X[ 4]=X[ 4],X[ 3],48 } | ||
| 312 | { .mii; shrp X[ 3]=X[ 3],X[ 2],48 | ||
| 313 | shrp X[ 2]=X[ 2],X[ 1],48 } | ||
| 314 | { .mii; shrp X[ 1]=X[ 1],X[ 0],48 | ||
| 315 | shrp X[ 0]=X[ 0],T1,48 } | ||
| 316 | { .mfb; br.many .L_first16 };; | ||
| 317 | .L3byte: | ||
| 318 | { .mmi; $LDW X[ 9]=[r9],4*$SZ | ||
| 319 | $LDW X[ 8]=[r10],4*$SZ | ||
| 320 | shrp X[15]=X[15],X[14],40 };; | ||
| 321 | { .mmi; $LDW X[ 7]=[input],4*$SZ | ||
| 322 | $LDW X[ 6]=[r8],4*$SZ | ||
| 323 | shrp X[14]=X[14],X[13],40 } | ||
| 324 | { .mmi; $LDW X[ 5]=[r9],4*$SZ | ||
| 325 | $LDW X[ 4]=[r10],4*$SZ | ||
| 326 | shrp X[13]=X[13],X[12],40 };; | ||
| 327 | { .mmi; $LDW X[ 3]=[input],4*$SZ | ||
| 328 | $LDW X[ 2]=[r8],4*$SZ | ||
| 329 | shrp X[12]=X[12],X[11],40 } | ||
| 330 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 331 | $LDW X[ 0]=[r10],4*$SZ | ||
| 332 | shrp X[11]=X[11],X[10],40 };; | ||
| 333 | { .mii; $LDW T1=[input] | ||
| 334 | shrp X[10]=X[10],X[ 9],40 | ||
| 335 | shrp X[ 9]=X[ 9],X[ 8],40 } | ||
| 336 | { .mii; shrp X[ 8]=X[ 8],X[ 7],40 | ||
| 337 | shrp X[ 7]=X[ 7],X[ 6],40 };; | ||
| 338 | { .mii; shrp X[ 6]=X[ 6],X[ 5],40 | ||
| 339 | shrp X[ 5]=X[ 5],X[ 4],40 } | ||
| 340 | { .mii; shrp X[ 4]=X[ 4],X[ 3],40 | ||
| 341 | shrp X[ 3]=X[ 3],X[ 2],40 } | ||
| 342 | { .mii; shrp X[ 2]=X[ 2],X[ 1],40 | ||
| 343 | shrp X[ 1]=X[ 1],X[ 0],40 } | ||
| 344 | { .mib; shrp X[ 0]=X[ 0],T1,40 | ||
| 345 | br.many .L_first16 };; | ||
| 346 | .L4byte: | ||
| 347 | { .mmi; $LDW X[ 7]=[input],4*$SZ | ||
| 348 | $LDW X[ 6]=[r8],4*$SZ | ||
| 349 | shrp X[15]=X[15],X[14],32 } | ||
| 350 | { .mmi; $LDW X[ 5]=[r9],4*$SZ | ||
| 351 | $LDW X[ 4]=[r10],4*$SZ | ||
| 352 | shrp X[14]=X[14],X[13],32 };; | ||
| 353 | { .mmi; $LDW X[ 3]=[input],4*$SZ | ||
| 354 | $LDW X[ 2]=[r8],4*$SZ | ||
| 355 | shrp X[13]=X[13],X[12],32 } | ||
| 356 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 357 | $LDW X[ 0]=[r10],4*$SZ | ||
| 358 | shrp X[12]=X[12],X[11],32 };; | ||
| 359 | { .mii; $LDW T1=[input] | ||
| 360 | shrp X[11]=X[11],X[10],32 | ||
| 361 | shrp X[10]=X[10],X[ 9],32 } | ||
| 362 | { .mii; shrp X[ 9]=X[ 9],X[ 8],32 | ||
| 363 | shrp X[ 8]=X[ 8],X[ 7],32 };; | ||
| 364 | { .mii; shrp X[ 7]=X[ 7],X[ 6],32 | ||
| 365 | shrp X[ 6]=X[ 6],X[ 5],32 } | ||
| 366 | { .mii; shrp X[ 5]=X[ 5],X[ 4],32 | ||
| 367 | shrp X[ 4]=X[ 4],X[ 3],32 } | ||
| 368 | { .mii; shrp X[ 3]=X[ 3],X[ 2],32 | ||
| 369 | shrp X[ 2]=X[ 2],X[ 1],32 } | ||
| 370 | { .mii; shrp X[ 1]=X[ 1],X[ 0],32 | ||
| 371 | shrp X[ 0]=X[ 0],T1,32 } | ||
| 372 | { .mfb; br.many .L_first16 };; | ||
| 373 | .L5byte: | ||
| 374 | { .mmi; $LDW X[ 5]=[r9],4*$SZ | ||
| 375 | $LDW X[ 4]=[r10],4*$SZ | ||
| 376 | shrp X[15]=X[15],X[14],24 };; | ||
| 377 | { .mmi; $LDW X[ 3]=[input],4*$SZ | ||
| 378 | $LDW X[ 2]=[r8],4*$SZ | ||
| 379 | shrp X[14]=X[14],X[13],24 } | ||
| 380 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 381 | $LDW X[ 0]=[r10],4*$SZ | ||
| 382 | shrp X[13]=X[13],X[12],24 };; | ||
| 383 | { .mii; $LDW T1=[input] | ||
| 384 | shrp X[12]=X[12],X[11],24 | ||
| 385 | shrp X[11]=X[11],X[10],24 } | ||
| 386 | { .mii; shrp X[10]=X[10],X[ 9],24 | ||
| 387 | shrp X[ 9]=X[ 9],X[ 8],24 };; | ||
| 388 | { .mii; shrp X[ 8]=X[ 8],X[ 7],24 | ||
| 389 | shrp X[ 7]=X[ 7],X[ 6],24 } | ||
| 390 | { .mii; shrp X[ 6]=X[ 6],X[ 5],24 | ||
| 391 | shrp X[ 5]=X[ 5],X[ 4],24 } | ||
| 392 | { .mii; shrp X[ 4]=X[ 4],X[ 3],24 | ||
| 393 | shrp X[ 3]=X[ 3],X[ 2],24 } | ||
| 394 | { .mii; shrp X[ 2]=X[ 2],X[ 1],24 | ||
| 395 | shrp X[ 1]=X[ 1],X[ 0],24 } | ||
| 396 | { .mib; shrp X[ 0]=X[ 0],T1,24 | ||
| 397 | br.many .L_first16 };; | ||
| 398 | .L6byte: | ||
| 399 | { .mmi; $LDW X[ 3]=[input],4*$SZ | ||
| 400 | $LDW X[ 2]=[r8],4*$SZ | ||
| 401 | shrp X[15]=X[15],X[14],16 } | ||
| 402 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 403 | $LDW X[ 0]=[r10],4*$SZ | ||
| 404 | shrp X[14]=X[14],X[13],16 };; | ||
| 405 | { .mii; $LDW T1=[input] | ||
| 406 | shrp X[13]=X[13],X[12],16 | ||
| 407 | shrp X[12]=X[12],X[11],16 } | ||
| 408 | { .mii; shrp X[11]=X[11],X[10],16 | ||
| 409 | shrp X[10]=X[10],X[ 9],16 };; | ||
| 410 | { .mii; shrp X[ 9]=X[ 9],X[ 8],16 | ||
| 411 | shrp X[ 8]=X[ 8],X[ 7],16 } | ||
| 412 | { .mii; shrp X[ 7]=X[ 7],X[ 6],16 | ||
| 413 | shrp X[ 6]=X[ 6],X[ 5],16 } | ||
| 414 | { .mii; shrp X[ 5]=X[ 5],X[ 4],16 | ||
| 415 | shrp X[ 4]=X[ 4],X[ 3],16 } | ||
| 416 | { .mii; shrp X[ 3]=X[ 3],X[ 2],16 | ||
| 417 | shrp X[ 2]=X[ 2],X[ 1],16 } | ||
| 418 | { .mii; shrp X[ 1]=X[ 1],X[ 0],16 | ||
| 419 | shrp X[ 0]=X[ 0],T1,16 } | ||
| 420 | { .mfb; br.many .L_first16 };; | ||
| 421 | .L7byte: | ||
| 422 | { .mmi; $LDW X[ 1]=[r9],4*$SZ | ||
| 423 | $LDW X[ 0]=[r10],4*$SZ | ||
| 424 | shrp X[15]=X[15],X[14],8 };; | ||
| 425 | { .mii; $LDW T1=[input] | ||
| 426 | shrp X[14]=X[14],X[13],8 | ||
| 427 | shrp X[13]=X[13],X[12],8 } | ||
| 428 | { .mii; shrp X[12]=X[12],X[11],8 | ||
| 429 | shrp X[11]=X[11],X[10],8 };; | ||
| 430 | { .mii; shrp X[10]=X[10],X[ 9],8 | ||
| 431 | shrp X[ 9]=X[ 9],X[ 8],8 } | ||
| 432 | { .mii; shrp X[ 8]=X[ 8],X[ 7],8 | ||
| 433 | shrp X[ 7]=X[ 7],X[ 6],8 } | ||
| 434 | { .mii; shrp X[ 6]=X[ 6],X[ 5],8 | ||
| 435 | shrp X[ 5]=X[ 5],X[ 4],8 } | ||
| 436 | { .mii; shrp X[ 4]=X[ 4],X[ 3],8 | ||
| 437 | shrp X[ 3]=X[ 3],X[ 2],8 } | ||
| 438 | { .mii; shrp X[ 2]=X[ 2],X[ 1],8 | ||
| 439 | shrp X[ 1]=X[ 1],X[ 0],8 } | ||
| 440 | { .mib; shrp X[ 0]=X[ 0],T1,8 | ||
| 441 | br.many .L_first16 };; | ||
| 442 | |||
| 443 | .align 32 | ||
| 444 | .L_first16: | ||
| 445 | { .mmi; $LDW K=[Ktbl],$SZ | ||
| 446 | and T1=F,E | ||
| 447 | and T2=A,B } | ||
| 448 | { .mmi; //$LDW X[15]=[input],$SZ // X[i]=*input++ | ||
| 449 | andcm r8=G,E | ||
| 450 | and r9=A,C };; | ||
| 451 | { .mmi; xor T1=T1,r8 //T1=((e & f) ^ (~e & g)) | ||
| 452 | and r10=B,C | ||
| 453 | _rotr r11=$t1,$Sigma1[0] } // ROTR(e,14) | ||
| 454 | { .mmi; xor T2=T2,r9 | ||
| 455 | mux1 X[15]=X[15],\@rev };; // eliminated in big-endian | ||
| 456 | ___ | ||
| 457 | $code.=<<___; | ||
| 458 | { .mib; add T1=T1,H // T1=Ch(e,f,g)+h | ||
| 459 | _rotr r8=$t1,$Sigma1[1] } // ROTR(e,18) | ||
| 460 | { .mib; xor T2=T2,r10 // T2=((a & b) ^ (a & c) ^ (b & c)) | ||
| 461 | mov H=G };; | ||
| 462 | { .mib; xor r11=r8,r11 | ||
| 463 | _rotr r9=$t1,$Sigma1[2] } // ROTR(e,41) | ||
| 464 | { .mib; mov G=F | ||
| 465 | mov F=E };; | ||
| 466 | { .mib; xor r9=r9,r11 // r9=Sigma1(e) | ||
| 467 | _rotr r10=$t0,$Sigma0[0] } // ROTR(a,28) | ||
| 468 | { .mib; add T1=T1,K // T1=Ch(e,f,g)+h+K512[i] | ||
| 469 | mov E=D };; | ||
| 470 | { .mib; add T1=T1,r9 // T1+=Sigma1(e) | ||
| 471 | _rotr r11=$t0,$Sigma0[1] } // ROTR(a,34) | ||
| 472 | { .mib; mov D=C | ||
| 473 | mov C=B };; | ||
| 474 | { .mib; add T1=T1,X[15] // T1+=X[i] | ||
| 475 | _rotr r8=$t0,$Sigma0[2] } // ROTR(a,39) | ||
| 476 | { .mib; xor r10=r10,r11 | ||
| 477 | mux2 X[15]=X[15],0x44 };; // eliminated in 64-bit | ||
| 478 | { .mmi; xor r10=r8,r10 // r10=Sigma0(a) | ||
| 479 | mov B=A | ||
| 480 | add A=T1,T2 };; | ||
| 481 | { .mib; add E=E,T1 | ||
| 482 | add A=A,r10 // T2=Maj(a,b,c)+Sigma0(a) | ||
| 483 | br.ctop.sptk .L_first16 };; | ||
| 484 | .L_first16_end: | ||
| 485 | |||
| 486 | { .mii; mov ar.lc=$rounds-17 | ||
| 487 | mov ar.ec=1 };; | ||
| 488 | |||
| 489 | .align 32 | ||
| 490 | .L_rest: | ||
| 491 | .rotr X[16] | ||
| 492 | { .mib; $LDW K=[Ktbl],$SZ | ||
| 493 | _rotr r8=X[15-1],$sigma0[0] } // ROTR(s0,1) | ||
| 494 | { .mib; $ADD X[15]=X[15],X[15-9] // X[i&0xF]+=X[(i+9)&0xF] | ||
| 495 | $SHRU s0=X[15-1],sgm0 };; // s0=X[(i+1)&0xF]>>7 | ||
| 496 | { .mib; and T1=F,E | ||
| 497 | _rotr r9=X[15-1],$sigma0[1] } // ROTR(s0,8) | ||
| 498 | { .mib; andcm r10=G,E | ||
| 499 | $SHRU s1=X[15-14],sgm1 };; // s1=X[(i+14)&0xF]>>6 | ||
| 500 | { .mmi; xor T1=T1,r10 // T1=((e & f) ^ (~e & g)) | ||
| 501 | xor r9=r8,r9 | ||
| 502 | _rotr r10=X[15-14],$sigma1[0] };;// ROTR(s1,19) | ||
| 503 | { .mib; and T2=A,B | ||
| 504 | _rotr r11=X[15-14],$sigma1[1] }// ROTR(s1,61) | ||
| 505 | { .mib; and r8=A,C };; | ||
| 506 | ___ | ||
| 507 | $t0="t0", $t1="t1", $code.=<<___ if ($BITS==32); | ||
| 508 | // I adhere to mmi; in order to hold Itanium 1 back and avoid 6 cycle | ||
| 509 | // pipeline flush in last bundle. Note that even on Itanium2 the | ||
| 510 | // latter stalls for one clock cycle... | ||
| 511 | { .mmi; xor s0=s0,r9 // s0=sigma0(X[(i+1)&0xF]) | ||
| 512 | dep.z $t1=E,32,32 } | ||
| 513 | { .mmi; xor r10=r11,r10 | ||
| 514 | zxt4 E=E };; | ||
| 515 | { .mmi; or $t1=$t1,E | ||
| 516 | xor s1=s1,r10 // s1=sigma1(X[(i+14)&0xF]) | ||
| 517 | mux2 $t0=A,0x44 };; // copy lower half to upper | ||
| 518 | { .mmi; xor T2=T2,r8 | ||
| 519 | _rotr r9=$t1,$Sigma1[0] } // ROTR(e,14) | ||
| 520 | { .mmi; and r10=B,C | ||
| 521 | add T1=T1,H // T1=Ch(e,f,g)+h | ||
| 522 | $ADD X[15]=X[15],s0 };; // X[i&0xF]+=sigma0(X[(i+1)&0xF]) | ||
| 523 | ___ | ||
| 524 | $t0="A", $t1="E", $code.=<<___ if ($BITS==64); | ||
| 525 | { .mib; xor s0=s0,r9 // s0=sigma0(X[(i+1)&0xF]) | ||
| 526 | _rotr r9=$t1,$Sigma1[0] } // ROTR(e,14) | ||
| 527 | { .mib; xor r10=r11,r10 | ||
| 528 | xor T2=T2,r8 };; | ||
| 529 | { .mib; xor s1=s1,r10 // s1=sigma1(X[(i+14)&0xF]) | ||
| 530 | add T1=T1,H } | ||
| 531 | { .mib; and r10=B,C | ||
| 532 | $ADD X[15]=X[15],s0 };; // X[i&0xF]+=sigma0(X[(i+1)&0xF]) | ||
| 533 | ___ | ||
| 534 | $code.=<<___; | ||
| 535 | { .mmi; xor T2=T2,r10 // T2=((a & b) ^ (a & c) ^ (b & c)) | ||
| 536 | mov H=G | ||
| 537 | _rotr r8=$t1,$Sigma1[1] };; // ROTR(e,18) | ||
| 538 | { .mmi; xor r11=r8,r9 | ||
| 539 | $ADD X[15]=X[15],s1 // X[i&0xF]+=sigma1(X[(i+14)&0xF]) | ||
| 540 | _rotr r9=$t1,$Sigma1[2] } // ROTR(e,41) | ||
| 541 | { .mmi; mov G=F | ||
| 542 | mov F=E };; | ||
| 543 | { .mib; xor r9=r9,r11 // r9=Sigma1(e) | ||
| 544 | _rotr r10=$t0,$Sigma0[0] } // ROTR(a,28) | ||
| 545 | { .mib; add T1=T1,K // T1=Ch(e,f,g)+h+K512[i] | ||
| 546 | mov E=D };; | ||
| 547 | { .mib; add T1=T1,r9 // T1+=Sigma1(e) | ||
| 548 | _rotr r11=$t0,$Sigma0[1] } // ROTR(a,34) | ||
| 549 | { .mib; mov D=C | ||
| 550 | mov C=B };; | ||
| 551 | { .mmi; add T1=T1,X[15] // T1+=X[i] | ||
| 552 | xor r10=r10,r11 | ||
| 553 | _rotr r8=$t0,$Sigma0[2] };; // ROTR(a,39) | ||
| 554 | { .mmi; xor r10=r8,r10 // r10=Sigma0(a) | ||
| 555 | mov B=A | ||
| 556 | add A=T1,T2 };; | ||
| 557 | { .mib; add E=E,T1 | ||
| 558 | add A=A,r10 // T2=Maj(a,b,c)+Sigma0(a) | ||
| 559 | br.ctop.sptk .L_rest };; | ||
| 560 | .L_rest_end: | ||
| 561 | |||
| 562 | { .mmi; add A_=A_,A | ||
| 563 | add B_=B_,B | ||
| 564 | add C_=C_,C } | ||
| 565 | { .mmi; add D_=D_,D | ||
| 566 | add E_=E_,E | ||
| 567 | cmp.ltu p16,p0=1,num };; | ||
| 568 | { .mmi; add F_=F_,F | ||
| 569 | add G_=G_,G | ||
| 570 | add H_=H_,H } | ||
| 571 | { .mmb; add Ktbl=-$SZ*$rounds,Ktbl | ||
| 572 | (p16) add num=-1,num | ||
| 573 | (p16) br.dptk.many .L_outer };; | ||
| 574 | |||
| 575 | { .mib; add r8=0*$SZ,ctx | ||
| 576 | add r9=1*$SZ,ctx } | ||
| 577 | { .mib; add r10=2*$SZ,ctx | ||
| 578 | add r11=3*$SZ,ctx };; | ||
| 579 | { .mmi; $STW [r8]=A_,4*$SZ | ||
| 580 | $STW [r9]=B_,4*$SZ | ||
| 581 | mov ar.lc=lcsave } | ||
| 582 | { .mmi; $STW [r10]=C_,4*$SZ | ||
| 583 | $STW [r11]=D_,4*$SZ | ||
| 584 | mov pr=prsave,0x1ffff };; | ||
| 585 | { .mmb; $STW [r8]=E_ | ||
| 586 | $STW [r9]=F_ } | ||
| 587 | { .mmb; $STW [r10]=G_ | ||
| 588 | $STW [r11]=H_ | ||
| 589 | br.ret.sptk.many b0 };; | ||
| 590 | .endp $func# | ||
| 591 | ___ | ||
| 592 | |||
| 593 | $code =~ s/\`([^\`]*)\`/eval $1/gem; | ||
| 594 | $code =~ s/_rotr(\s+)([^=]+)=([^,]+),([0-9]+)/shrp$1$2=$3,$3,$4/gm; | ||
| 595 | if ($BITS==64) { | ||
| 596 | $code =~ s/mux2(\s+)\S+/nop.i$1 0x0/gm; | ||
| 597 | $code =~ s/mux1(\s+)\S+/nop.i$1 0x0/gm if ($big_endian); | ||
| 598 | $code =~ s/(shrp\s+X\[[^=]+)=([^,]+),([^,]+),([1-9]+)/$1=$3,$2,64-$4/gm | ||
| 599 | if (!$big_endian); | ||
| 600 | $code =~ s/ld1(\s+)X\[\S+/nop.m$1 0x0/gm; | ||
| 601 | } | ||
| 602 | |||
| 603 | print $code; | ||
| 604 | |||
| 605 | print<<___ if ($BITS==32); | ||
| 606 | .align 64 | ||
| 607 | .type K256#,\@object | ||
| 608 | K256: data4 0x428a2f98,0x71374491,0xb5c0fbcf,0xe9b5dba5 | ||
| 609 | data4 0x3956c25b,0x59f111f1,0x923f82a4,0xab1c5ed5 | ||
| 610 | data4 0xd807aa98,0x12835b01,0x243185be,0x550c7dc3 | ||
| 611 | data4 0x72be5d74,0x80deb1fe,0x9bdc06a7,0xc19bf174 | ||
| 612 | data4 0xe49b69c1,0xefbe4786,0x0fc19dc6,0x240ca1cc | ||
| 613 | data4 0x2de92c6f,0x4a7484aa,0x5cb0a9dc,0x76f988da | ||
| 614 | data4 0x983e5152,0xa831c66d,0xb00327c8,0xbf597fc7 | ||
| 615 | data4 0xc6e00bf3,0xd5a79147,0x06ca6351,0x14292967 | ||
| 616 | data4 0x27b70a85,0x2e1b2138,0x4d2c6dfc,0x53380d13 | ||
| 617 | data4 0x650a7354,0x766a0abb,0x81c2c92e,0x92722c85 | ||
| 618 | data4 0xa2bfe8a1,0xa81a664b,0xc24b8b70,0xc76c51a3 | ||
| 619 | data4 0xd192e819,0xd6990624,0xf40e3585,0x106aa070 | ||
| 620 | data4 0x19a4c116,0x1e376c08,0x2748774c,0x34b0bcb5 | ||
| 621 | data4 0x391c0cb3,0x4ed8aa4a,0x5b9cca4f,0x682e6ff3 | ||
| 622 | data4 0x748f82ee,0x78a5636f,0x84c87814,0x8cc70208 | ||
| 623 | data4 0x90befffa,0xa4506ceb,0xbef9a3f7,0xc67178f2 | ||
| 624 | .size K256#,$SZ*$rounds | ||
| 625 | stringz "SHA256 block transform for IA64, CRYPTOGAMS by <appro\@openssl.org>" | ||
| 626 | ___ | ||
| 627 | print<<___ if ($BITS==64); | ||
| 628 | .align 64 | ||
| 629 | .type K512#,\@object | ||
| 630 | K512: data8 0x428a2f98d728ae22,0x7137449123ef65cd | ||
| 631 | data8 0xb5c0fbcfec4d3b2f,0xe9b5dba58189dbbc | ||
| 632 | data8 0x3956c25bf348b538,0x59f111f1b605d019 | ||
| 633 | data8 0x923f82a4af194f9b,0xab1c5ed5da6d8118 | ||
| 634 | data8 0xd807aa98a3030242,0x12835b0145706fbe | ||
| 635 | data8 0x243185be4ee4b28c,0x550c7dc3d5ffb4e2 | ||
| 636 | data8 0x72be5d74f27b896f,0x80deb1fe3b1696b1 | ||
| 637 | data8 0x9bdc06a725c71235,0xc19bf174cf692694 | ||
| 638 | data8 0xe49b69c19ef14ad2,0xefbe4786384f25e3 | ||
| 639 | data8 0x0fc19dc68b8cd5b5,0x240ca1cc77ac9c65 | ||
| 640 | data8 0x2de92c6f592b0275,0x4a7484aa6ea6e483 | ||
| 641 | data8 0x5cb0a9dcbd41fbd4,0x76f988da831153b5 | ||
| 642 | data8 0x983e5152ee66dfab,0xa831c66d2db43210 | ||
| 643 | data8 0xb00327c898fb213f,0xbf597fc7beef0ee4 | ||
| 644 | data8 0xc6e00bf33da88fc2,0xd5a79147930aa725 | ||
| 645 | data8 0x06ca6351e003826f,0x142929670a0e6e70 | ||
| 646 | data8 0x27b70a8546d22ffc,0x2e1b21385c26c926 | ||
| 647 | data8 0x4d2c6dfc5ac42aed,0x53380d139d95b3df | ||
| 648 | data8 0x650a73548baf63de,0x766a0abb3c77b2a8 | ||
| 649 | data8 0x81c2c92e47edaee6,0x92722c851482353b | ||
| 650 | data8 0xa2bfe8a14cf10364,0xa81a664bbc423001 | ||
| 651 | data8 0xc24b8b70d0f89791,0xc76c51a30654be30 | ||
| 652 | data8 0xd192e819d6ef5218,0xd69906245565a910 | ||
| 653 | data8 0xf40e35855771202a,0x106aa07032bbd1b8 | ||
| 654 | data8 0x19a4c116b8d2d0c8,0x1e376c085141ab53 | ||
| 655 | data8 0x2748774cdf8eeb99,0x34b0bcb5e19b48a8 | ||
| 656 | data8 0x391c0cb3c5c95a63,0x4ed8aa4ae3418acb | ||
| 657 | data8 0x5b9cca4f7763e373,0x682e6ff3d6b2b8a3 | ||
| 658 | data8 0x748f82ee5defb2fc,0x78a5636f43172f60 | ||
| 659 | data8 0x84c87814a1f0ab72,0x8cc702081a6439ec | ||
| 660 | data8 0x90befffa23631e28,0xa4506cebde82bde9 | ||
| 661 | data8 0xbef9a3f7b2c67915,0xc67178f2e372532b | ||
| 662 | data8 0xca273eceea26619c,0xd186b8c721c0c207 | ||
| 663 | data8 0xeada7dd6cde0eb1e,0xf57d4f7fee6ed178 | ||
| 664 | data8 0x06f067aa72176fba,0x0a637dc5a2c898a6 | ||
| 665 | data8 0x113f9804bef90dae,0x1b710b35131c471b | ||
| 666 | data8 0x28db77f523047d84,0x32caab7b40c72493 | ||
| 667 | data8 0x3c9ebe0a15c9bebc,0x431d67c49c100d4c | ||
| 668 | data8 0x4cc5d4becb3e42b6,0x597f299cfc657e2a | ||
| 669 | data8 0x5fcb6fab3ad6faec,0x6c44198c4a475817 | ||
| 670 | .size K512#,$SZ*$rounds | ||
| 671 | stringz "SHA512 block transform for IA64, CRYPTOGAMS by <appro\@openssl.org>" | ||
| 672 | ___ | ||
diff --git a/src/lib/libssl/src/crypto/sha/asm/sha512-x86_64.pl b/src/lib/libssl/src/crypto/sha/asm/sha512-x86_64.pl new file mode 100755 index 0000000000..b6252d31ec --- /dev/null +++ b/src/lib/libssl/src/crypto/sha/asm/sha512-x86_64.pl | |||
| @@ -0,0 +1,344 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | # | ||
| 3 | # ==================================================================== | ||
| 4 | # Written by Andy Polyakov <appro@fy.chalmers.se> for the OpenSSL | ||
| 5 | # project. Rights for redistribution and usage in source and binary | ||
| 6 | # forms are granted according to the OpenSSL license. | ||
| 7 | # ==================================================================== | ||
| 8 | # | ||
| 9 | # sha256/512_block procedure for x86_64. | ||
| 10 | # | ||
| 11 | # 40% improvement over compiler-generated code on Opteron. On EM64T | ||
| 12 | # sha256 was observed to run >80% faster and sha512 - >40%. No magical | ||
| 13 | # tricks, just straight implementation... I really wonder why gcc | ||
| 14 | # [being armed with inline assembler] fails to generate as fast code. | ||
| 15 | # The only thing which is cool about this module is that it's very | ||
| 16 | # same instruction sequence used for both SHA-256 and SHA-512. In | ||
| 17 | # former case the instructions operate on 32-bit operands, while in | ||
| 18 | # latter - on 64-bit ones. All I had to do is to get one flavor right, | ||
| 19 | # the other one passed the test right away:-) | ||
| 20 | # | ||
| 21 | # sha256_block runs in ~1005 cycles on Opteron, which gives you | ||
| 22 | # asymptotic performance of 64*1000/1005=63.7MBps times CPU clock | ||
| 23 | # frequency in GHz. sha512_block runs in ~1275 cycles, which results | ||
| 24 | # in 128*1000/1275=100MBps per GHz. Is there room for improvement? | ||
| 25 | # Well, if you compare it to IA-64 implementation, which maintains | ||
| 26 | # X[16] in register bank[!], tends to 4 instructions per CPU clock | ||
| 27 | # cycle and runs in 1003 cycles, 1275 is very good result for 3-way | ||
| 28 | # issue Opteron pipeline and X[16] maintained in memory. So that *if* | ||
| 29 | # there is a way to improve it, *then* the only way would be to try to | ||
| 30 | # offload X[16] updates to SSE unit, but that would require "deeper" | ||
| 31 | # loop unroll, which in turn would naturally cause size blow-up, not | ||
| 32 | # to mention increased complexity! And once again, only *if* it's | ||
| 33 | # actually possible to noticeably improve overall ILP, instruction | ||
| 34 | # level parallelism, on a given CPU implementation in this case. | ||
| 35 | # | ||
| 36 | # Special note on Intel EM64T. While Opteron CPU exhibits perfect | ||
| 37 | # perfromance ratio of 1.5 between 64- and 32-bit flavors [see above], | ||
| 38 | # [currently available] EM64T CPUs apparently are far from it. On the | ||
| 39 | # contrary, 64-bit version, sha512_block, is ~30% *slower* than 32-bit | ||
| 40 | # sha256_block:-( This is presumably because 64-bit shifts/rotates | ||
| 41 | # apparently are not atomic instructions, but implemented in microcode. | ||
| 42 | |||
| 43 | $output=shift; | ||
| 44 | |||
| 45 | $0 =~ m/(.*[\/\\])[^\/\\]+$/; $dir=$1; | ||
| 46 | ( $xlate="${dir}x86_64-xlate.pl" and -f $xlate ) or | ||
| 47 | ( $xlate="${dir}../../perlasm/x86_64-xlate.pl" and -f $xlate) or | ||
| 48 | die "can't locate x86_64-xlate.pl"; | ||
| 49 | |||
| 50 | open STDOUT,"| $^X $xlate $output"; | ||
| 51 | |||
| 52 | if ($output =~ /512/) { | ||
| 53 | $func="sha512_block_data_order"; | ||
| 54 | $TABLE="K512"; | ||
| 55 | $SZ=8; | ||
| 56 | @ROT=($A,$B,$C,$D,$E,$F,$G,$H)=("%rax","%rbx","%rcx","%rdx", | ||
| 57 | "%r8", "%r9", "%r10","%r11"); | ||
| 58 | ($T1,$a0,$a1,$a2)=("%r12","%r13","%r14","%r15"); | ||
| 59 | @Sigma0=(28,34,39); | ||
| 60 | @Sigma1=(14,18,41); | ||
| 61 | @sigma0=(1, 8, 7); | ||
| 62 | @sigma1=(19,61, 6); | ||
| 63 | $rounds=80; | ||
| 64 | } else { | ||
| 65 | $func="sha256_block_data_order"; | ||
| 66 | $TABLE="K256"; | ||
| 67 | $SZ=4; | ||
| 68 | @ROT=($A,$B,$C,$D,$E,$F,$G,$H)=("%eax","%ebx","%ecx","%edx", | ||
| 69 | "%r8d","%r9d","%r10d","%r11d"); | ||
| 70 | ($T1,$a0,$a1,$a2)=("%r12d","%r13d","%r14d","%r15d"); | ||
| 71 | @Sigma0=( 2,13,22); | ||
| 72 | @Sigma1=( 6,11,25); | ||
| 73 | @sigma0=( 7,18, 3); | ||
| 74 | @sigma1=(17,19,10); | ||
| 75 | $rounds=64; | ||
| 76 | } | ||
| 77 | |||
| 78 | $ctx="%rdi"; # 1st arg | ||
| 79 | $round="%rdi"; # zaps $ctx | ||
| 80 | $inp="%rsi"; # 2nd arg | ||
| 81 | $Tbl="%rbp"; | ||
| 82 | |||
| 83 | $_ctx="16*$SZ+0*8(%rsp)"; | ||
| 84 | $_inp="16*$SZ+1*8(%rsp)"; | ||
| 85 | $_end="16*$SZ+2*8(%rsp)"; | ||
| 86 | $_rsp="16*$SZ+3*8(%rsp)"; | ||
| 87 | $framesz="16*$SZ+4*8"; | ||
| 88 | |||
| 89 | |||
| 90 | sub ROUND_00_15() | ||
| 91 | { my ($i,$a,$b,$c,$d,$e,$f,$g,$h) = @_; | ||
| 92 | |||
| 93 | $code.=<<___; | ||
| 94 | mov $e,$a0 | ||
| 95 | mov $e,$a1 | ||
| 96 | mov $f,$a2 | ||
| 97 | |||
| 98 | ror \$$Sigma1[0],$a0 | ||
| 99 | ror \$$Sigma1[1],$a1 | ||
| 100 | xor $g,$a2 # f^g | ||
| 101 | |||
| 102 | xor $a1,$a0 | ||
| 103 | ror \$`$Sigma1[2]-$Sigma1[1]`,$a1 | ||
| 104 | and $e,$a2 # (f^g)&e | ||
| 105 | mov $T1,`$SZ*($i&0xf)`(%rsp) | ||
| 106 | |||
| 107 | xor $a1,$a0 # Sigma1(e) | ||
| 108 | xor $g,$a2 # Ch(e,f,g)=((f^g)&e)^g | ||
| 109 | add $h,$T1 # T1+=h | ||
| 110 | |||
| 111 | mov $a,$h | ||
| 112 | add $a0,$T1 # T1+=Sigma1(e) | ||
| 113 | |||
| 114 | add $a2,$T1 # T1+=Ch(e,f,g) | ||
| 115 | mov $a,$a0 | ||
| 116 | mov $a,$a1 | ||
| 117 | |||
| 118 | ror \$$Sigma0[0],$h | ||
| 119 | ror \$$Sigma0[1],$a0 | ||
| 120 | mov $a,$a2 | ||
| 121 | add ($Tbl,$round,$SZ),$T1 # T1+=K[round] | ||
| 122 | |||
| 123 | xor $a0,$h | ||
| 124 | ror \$`$Sigma0[2]-$Sigma0[1]`,$a0 | ||
| 125 | or $c,$a1 # a|c | ||
| 126 | |||
| 127 | xor $a0,$h # h=Sigma0(a) | ||
| 128 | and $c,$a2 # a&c | ||
| 129 | add $T1,$d # d+=T1 | ||
| 130 | |||
| 131 | and $b,$a1 # (a|c)&b | ||
| 132 | add $T1,$h # h+=T1 | ||
| 133 | |||
| 134 | or $a2,$a1 # Maj(a,b,c)=((a|c)&b)|(a&c) | ||
| 135 | lea 1($round),$round # round++ | ||
| 136 | |||
| 137 | add $a1,$h # h+=Maj(a,b,c) | ||
| 138 | ___ | ||
| 139 | } | ||
| 140 | |||
| 141 | sub ROUND_16_XX() | ||
| 142 | { my ($i,$a,$b,$c,$d,$e,$f,$g,$h) = @_; | ||
| 143 | |||
| 144 | $code.=<<___; | ||
| 145 | mov `$SZ*(($i+1)&0xf)`(%rsp),$a0 | ||
| 146 | mov `$SZ*(($i+14)&0xf)`(%rsp),$T1 | ||
| 147 | |||
| 148 | mov $a0,$a2 | ||
| 149 | |||
| 150 | shr \$$sigma0[2],$a0 | ||
| 151 | ror \$$sigma0[0],$a2 | ||
| 152 | |||
| 153 | xor $a2,$a0 | ||
| 154 | ror \$`$sigma0[1]-$sigma0[0]`,$a2 | ||
| 155 | |||
| 156 | xor $a2,$a0 # sigma0(X[(i+1)&0xf]) | ||
| 157 | mov $T1,$a1 | ||
| 158 | |||
| 159 | shr \$$sigma1[2],$T1 | ||
| 160 | ror \$$sigma1[0],$a1 | ||
| 161 | |||
| 162 | xor $a1,$T1 | ||
| 163 | ror \$`$sigma1[1]-$sigma1[0]`,$a1 | ||
| 164 | |||
| 165 | xor $a1,$T1 # sigma1(X[(i+14)&0xf]) | ||
| 166 | |||
| 167 | add $a0,$T1 | ||
| 168 | |||
| 169 | add `$SZ*(($i+9)&0xf)`(%rsp),$T1 | ||
| 170 | |||
| 171 | add `$SZ*($i&0xf)`(%rsp),$T1 | ||
| 172 | ___ | ||
| 173 | &ROUND_00_15(@_); | ||
| 174 | } | ||
| 175 | |||
| 176 | $code=<<___; | ||
| 177 | .text | ||
| 178 | |||
| 179 | .globl $func | ||
| 180 | .type $func,\@function,4 | ||
| 181 | .align 16 | ||
| 182 | $func: | ||
| 183 | push %rbx | ||
| 184 | push %rbp | ||
| 185 | push %r12 | ||
| 186 | push %r13 | ||
| 187 | push %r14 | ||
| 188 | push %r15 | ||
| 189 | mov %rsp,%rbp # copy %rsp | ||
| 190 | shl \$4,%rdx # num*16 | ||
| 191 | sub \$$framesz,%rsp | ||
| 192 | lea ($inp,%rdx,$SZ),%rdx # inp+num*16*$SZ | ||
| 193 | and \$-64,%rsp # align stack frame | ||
| 194 | mov $ctx,$_ctx # save ctx, 1st arg | ||
| 195 | mov $inp,$_inp # save inp, 2nd arh | ||
| 196 | mov %rdx,$_end # save end pointer, "3rd" arg | ||
| 197 | mov %rbp,$_rsp # save copy of %rsp | ||
| 198 | |||
| 199 | .picmeup $Tbl | ||
| 200 | lea $TABLE-.($Tbl),$Tbl | ||
| 201 | |||
| 202 | mov $SZ*0($ctx),$A | ||
| 203 | mov $SZ*1($ctx),$B | ||
| 204 | mov $SZ*2($ctx),$C | ||
| 205 | mov $SZ*3($ctx),$D | ||
| 206 | mov $SZ*4($ctx),$E | ||
| 207 | mov $SZ*5($ctx),$F | ||
| 208 | mov $SZ*6($ctx),$G | ||
| 209 | mov $SZ*7($ctx),$H | ||
| 210 | jmp .Lloop | ||
| 211 | |||
| 212 | .align 16 | ||
| 213 | .Lloop: | ||
| 214 | xor $round,$round | ||
| 215 | ___ | ||
| 216 | for($i=0;$i<16;$i++) { | ||
| 217 | $code.=" mov $SZ*$i($inp),$T1\n"; | ||
| 218 | $code.=" bswap $T1\n"; | ||
| 219 | &ROUND_00_15($i,@ROT); | ||
| 220 | unshift(@ROT,pop(@ROT)); | ||
| 221 | } | ||
| 222 | $code.=<<___; | ||
| 223 | jmp .Lrounds_16_xx | ||
| 224 | .align 16 | ||
| 225 | .Lrounds_16_xx: | ||
| 226 | ___ | ||
| 227 | for(;$i<32;$i++) { | ||
| 228 | &ROUND_16_XX($i,@ROT); | ||
| 229 | unshift(@ROT,pop(@ROT)); | ||
| 230 | } | ||
| 231 | |||
| 232 | $code.=<<___; | ||
| 233 | cmp \$$rounds,$round | ||
| 234 | jb .Lrounds_16_xx | ||
| 235 | |||
| 236 | mov $_ctx,$ctx | ||
| 237 | lea 16*$SZ($inp),$inp | ||
| 238 | |||
| 239 | add $SZ*0($ctx),$A | ||
| 240 | add $SZ*1($ctx),$B | ||
| 241 | add $SZ*2($ctx),$C | ||
| 242 | add $SZ*3($ctx),$D | ||
| 243 | add $SZ*4($ctx),$E | ||
| 244 | add $SZ*5($ctx),$F | ||
| 245 | add $SZ*6($ctx),$G | ||
| 246 | add $SZ*7($ctx),$H | ||
| 247 | |||
| 248 | cmp $_end,$inp | ||
| 249 | |||
| 250 | mov $A,$SZ*0($ctx) | ||
| 251 | mov $B,$SZ*1($ctx) | ||
| 252 | mov $C,$SZ*2($ctx) | ||
| 253 | mov $D,$SZ*3($ctx) | ||
| 254 | mov $E,$SZ*4($ctx) | ||
| 255 | mov $F,$SZ*5($ctx) | ||
| 256 | mov $G,$SZ*6($ctx) | ||
| 257 | mov $H,$SZ*7($ctx) | ||
| 258 | jb .Lloop | ||
| 259 | |||
| 260 | mov $_rsp,%rsp | ||
| 261 | pop %r15 | ||
| 262 | pop %r14 | ||
| 263 | pop %r13 | ||
| 264 | pop %r12 | ||
| 265 | pop %rbp | ||
| 266 | pop %rbx | ||
| 267 | |||
| 268 | ret | ||
| 269 | .size $func,.-$func | ||
| 270 | ___ | ||
| 271 | |||
| 272 | if ($SZ==4) { | ||
| 273 | $code.=<<___; | ||
| 274 | .align 64 | ||
| 275 | .type $TABLE,\@object | ||
| 276 | $TABLE: | ||
| 277 | .long 0x428a2f98,0x71374491,0xb5c0fbcf,0xe9b5dba5 | ||
| 278 | .long 0x3956c25b,0x59f111f1,0x923f82a4,0xab1c5ed5 | ||
| 279 | .long 0xd807aa98,0x12835b01,0x243185be,0x550c7dc3 | ||
| 280 | .long 0x72be5d74,0x80deb1fe,0x9bdc06a7,0xc19bf174 | ||
| 281 | .long 0xe49b69c1,0xefbe4786,0x0fc19dc6,0x240ca1cc | ||
| 282 | .long 0x2de92c6f,0x4a7484aa,0x5cb0a9dc,0x76f988da | ||
| 283 | .long 0x983e5152,0xa831c66d,0xb00327c8,0xbf597fc7 | ||
| 284 | .long 0xc6e00bf3,0xd5a79147,0x06ca6351,0x14292967 | ||
| 285 | .long 0x27b70a85,0x2e1b2138,0x4d2c6dfc,0x53380d13 | ||
| 286 | .long 0x650a7354,0x766a0abb,0x81c2c92e,0x92722c85 | ||
| 287 | .long 0xa2bfe8a1,0xa81a664b,0xc24b8b70,0xc76c51a3 | ||
| 288 | .long 0xd192e819,0xd6990624,0xf40e3585,0x106aa070 | ||
| 289 | .long 0x19a4c116,0x1e376c08,0x2748774c,0x34b0bcb5 | ||
| 290 | .long 0x391c0cb3,0x4ed8aa4a,0x5b9cca4f,0x682e6ff3 | ||
| 291 | .long 0x748f82ee,0x78a5636f,0x84c87814,0x8cc70208 | ||
| 292 | .long 0x90befffa,0xa4506ceb,0xbef9a3f7,0xc67178f2 | ||
| 293 | ___ | ||
| 294 | } else { | ||
| 295 | $code.=<<___; | ||
| 296 | .align 64 | ||
| 297 | .type $TABLE,\@object | ||
| 298 | $TABLE: | ||
| 299 | .quad 0x428a2f98d728ae22,0x7137449123ef65cd | ||
| 300 | .quad 0xb5c0fbcfec4d3b2f,0xe9b5dba58189dbbc | ||
| 301 | .quad 0x3956c25bf348b538,0x59f111f1b605d019 | ||
| 302 | .quad 0x923f82a4af194f9b,0xab1c5ed5da6d8118 | ||
| 303 | .quad 0xd807aa98a3030242,0x12835b0145706fbe | ||
| 304 | .quad 0x243185be4ee4b28c,0x550c7dc3d5ffb4e2 | ||
| 305 | .quad 0x72be5d74f27b896f,0x80deb1fe3b1696b1 | ||
| 306 | .quad 0x9bdc06a725c71235,0xc19bf174cf692694 | ||
| 307 | .quad 0xe49b69c19ef14ad2,0xefbe4786384f25e3 | ||
| 308 | .quad 0x0fc19dc68b8cd5b5,0x240ca1cc77ac9c65 | ||
| 309 | .quad 0x2de92c6f592b0275,0x4a7484aa6ea6e483 | ||
| 310 | .quad 0x5cb0a9dcbd41fbd4,0x76f988da831153b5 | ||
| 311 | .quad 0x983e5152ee66dfab,0xa831c66d2db43210 | ||
| 312 | .quad 0xb00327c898fb213f,0xbf597fc7beef0ee4 | ||
| 313 | .quad 0xc6e00bf33da88fc2,0xd5a79147930aa725 | ||
| 314 | .quad 0x06ca6351e003826f,0x142929670a0e6e70 | ||
| 315 | .quad 0x27b70a8546d22ffc,0x2e1b21385c26c926 | ||
| 316 | .quad 0x4d2c6dfc5ac42aed,0x53380d139d95b3df | ||
| 317 | .quad 0x650a73548baf63de,0x766a0abb3c77b2a8 | ||
| 318 | .quad 0x81c2c92e47edaee6,0x92722c851482353b | ||
| 319 | .quad 0xa2bfe8a14cf10364,0xa81a664bbc423001 | ||
| 320 | .quad 0xc24b8b70d0f89791,0xc76c51a30654be30 | ||
| 321 | .quad 0xd192e819d6ef5218,0xd69906245565a910 | ||
| 322 | .quad 0xf40e35855771202a,0x106aa07032bbd1b8 | ||
| 323 | .quad 0x19a4c116b8d2d0c8,0x1e376c085141ab53 | ||
| 324 | .quad 0x2748774cdf8eeb99,0x34b0bcb5e19b48a8 | ||
| 325 | .quad 0x391c0cb3c5c95a63,0x4ed8aa4ae3418acb | ||
| 326 | .quad 0x5b9cca4f7763e373,0x682e6ff3d6b2b8a3 | ||
| 327 | .quad 0x748f82ee5defb2fc,0x78a5636f43172f60 | ||
| 328 | .quad 0x84c87814a1f0ab72,0x8cc702081a6439ec | ||
| 329 | .quad 0x90befffa23631e28,0xa4506cebde82bde9 | ||
| 330 | .quad 0xbef9a3f7b2c67915,0xc67178f2e372532b | ||
| 331 | .quad 0xca273eceea26619c,0xd186b8c721c0c207 | ||
| 332 | .quad 0xeada7dd6cde0eb1e,0xf57d4f7fee6ed178 | ||
| 333 | .quad 0x06f067aa72176fba,0x0a637dc5a2c898a6 | ||
| 334 | .quad 0x113f9804bef90dae,0x1b710b35131c471b | ||
| 335 | .quad 0x28db77f523047d84,0x32caab7b40c72493 | ||
| 336 | .quad 0x3c9ebe0a15c9bebc,0x431d67c49c100d4c | ||
| 337 | .quad 0x4cc5d4becb3e42b6,0x597f299cfc657e2a | ||
| 338 | .quad 0x5fcb6fab3ad6faec,0x6c44198c4a475817 | ||
| 339 | ___ | ||
| 340 | } | ||
| 341 | |||
| 342 | $code =~ s/\`([^\`]*)\`/eval $1/gem; | ||
| 343 | print $code; | ||
| 344 | close STDOUT; | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_sha256.c b/src/lib/libssl/src/crypto/sha/sha256.c index b5a1ca0cac..867f90cc97 100644 --- a/src/lib/libssl/src/fips-1.0/sha/fips_sha256.c +++ b/src/lib/libssl/src/crypto/sha/sha256.c | |||
| @@ -4,19 +4,16 @@ | |||
| 4 | * according to the OpenSSL license [found in ../../LICENSE]. | 4 | * according to the OpenSSL license [found in ../../LICENSE]. |
| 5 | * ==================================================================== | 5 | * ==================================================================== |
| 6 | */ | 6 | */ |
| 7 | #include <openssl/opensslconf.h> | ||
| 7 | #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA256) | 8 | #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA256) |
| 8 | 9 | ||
| 9 | #include <stdlib.h> | 10 | #include <stdlib.h> |
| 10 | #include <string.h> | 11 | #include <string.h> |
| 11 | 12 | ||
| 12 | #include <openssl/opensslconf.h> | ||
| 13 | #include <openssl/crypto.h> | 13 | #include <openssl/crypto.h> |
| 14 | #include <openssl/fips_sha.h> | 14 | #include <openssl/sha.h> |
| 15 | #include <openssl/fips.h> | ||
| 16 | #include <openssl/opensslv.h> | 15 | #include <openssl/opensslv.h> |
| 17 | 16 | ||
| 18 | #ifdef OPENSSL_FIPS | ||
| 19 | |||
| 20 | const char SHA256_version[]="SHA-256" OPENSSL_VERSION_PTEXT; | 17 | const char SHA256_version[]="SHA-256" OPENSSL_VERSION_PTEXT; |
| 21 | 18 | ||
| 22 | int SHA224_Init (SHA256_CTX *c) | 19 | int SHA224_Init (SHA256_CTX *c) |
| @@ -72,17 +69,11 @@ int SHA224_Update(SHA256_CTX *c, const void *data, size_t len) | |||
| 72 | int SHA224_Final (unsigned char *md, SHA256_CTX *c) | 69 | int SHA224_Final (unsigned char *md, SHA256_CTX *c) |
| 73 | { return SHA256_Final (md,c); } | 70 | { return SHA256_Final (md,c); } |
| 74 | 71 | ||
| 75 | #ifndef SHA_LONG_LOG2 | ||
| 76 | #define SHA_LONG_LOG2 2 /* default to 32 bits */ | ||
| 77 | #endif | ||
| 78 | |||
| 79 | #define DATA_ORDER_IS_BIG_ENDIAN | 72 | #define DATA_ORDER_IS_BIG_ENDIAN |
| 80 | 73 | ||
| 81 | #define HASH_LONG SHA_LONG | 74 | #define HASH_LONG SHA_LONG |
| 82 | #define HASH_LONG_LOG2 SHA_LONG_LOG2 | ||
| 83 | #define HASH_CTX SHA256_CTX | 75 | #define HASH_CTX SHA256_CTX |
| 84 | #define HASH_CBLOCK SHA_CBLOCK | 76 | #define HASH_CBLOCK SHA_CBLOCK |
| 85 | #define HASH_LBLOCK SHA_LBLOCK | ||
| 86 | /* | 77 | /* |
| 87 | * Note that FIPS180-2 discusses "Truncation of the Hash Function Output." | 78 | * Note that FIPS180-2 discusses "Truncation of the Hash Function Output." |
| 88 | * default: case below covers for it. It's not clear however if it's | 79 | * default: case below covers for it. It's not clear however if it's |
| @@ -93,21 +84,21 @@ int SHA224_Final (unsigned char *md, SHA256_CTX *c) | |||
| 93 | */ | 84 | */ |
| 94 | #define HASH_MAKE_STRING(c,s) do { \ | 85 | #define HASH_MAKE_STRING(c,s) do { \ |
| 95 | unsigned long ll; \ | 86 | unsigned long ll; \ |
| 96 | unsigned int n; \ | 87 | unsigned int xn; \ |
| 97 | switch ((c)->md_len) \ | 88 | switch ((c)->md_len) \ |
| 98 | { case SHA224_DIGEST_LENGTH: \ | 89 | { case SHA224_DIGEST_LENGTH: \ |
| 99 | for (n=0;n<SHA224_DIGEST_LENGTH/4;n++) \ | 90 | for (xn=0;xn<SHA224_DIGEST_LENGTH/4;xn++) \ |
| 100 | { ll=(c)->h[n]; HOST_l2c(ll,(s)); } \ | 91 | { ll=(c)->h[xn]; HOST_l2c(ll,(s)); } \ |
| 101 | break; \ | 92 | break; \ |
| 102 | case SHA256_DIGEST_LENGTH: \ | 93 | case SHA256_DIGEST_LENGTH: \ |
| 103 | for (n=0;n<SHA256_DIGEST_LENGTH/4;n++) \ | 94 | for (xn=0;xn<SHA256_DIGEST_LENGTH/4;xn++) \ |
| 104 | { ll=(c)->h[n]; HOST_l2c(ll,(s)); } \ | 95 | { ll=(c)->h[xn]; HOST_l2c(ll,(s)); } \ |
| 105 | break; \ | 96 | break; \ |
| 106 | default: \ | 97 | default: \ |
| 107 | if ((c)->md_len > SHA256_DIGEST_LENGTH) \ | 98 | if ((c)->md_len > SHA256_DIGEST_LENGTH) \ |
| 108 | return 0; \ | 99 | return 0; \ |
| 109 | for (n=0;n<(c)->md_len/4;n++) \ | 100 | for (xn=0;xn<(c)->md_len/4;xn++) \ |
| 110 | { ll=(c)->h[n]; HOST_l2c(ll,(s)); } \ | 101 | { ll=(c)->h[xn]; HOST_l2c(ll,(s)); } \ |
| 111 | break; \ | 102 | break; \ |
| 112 | } \ | 103 | } \ |
| 113 | } while (0) | 104 | } while (0) |
| @@ -115,16 +106,15 @@ int SHA224_Final (unsigned char *md, SHA256_CTX *c) | |||
| 115 | #define HASH_UPDATE SHA256_Update | 106 | #define HASH_UPDATE SHA256_Update |
| 116 | #define HASH_TRANSFORM SHA256_Transform | 107 | #define HASH_TRANSFORM SHA256_Transform |
| 117 | #define HASH_FINAL SHA256_Final | 108 | #define HASH_FINAL SHA256_Final |
| 118 | #define HASH_BLOCK_HOST_ORDER sha256_block_host_order | ||
| 119 | #define HASH_BLOCK_DATA_ORDER sha256_block_data_order | 109 | #define HASH_BLOCK_DATA_ORDER sha256_block_data_order |
| 120 | void sha256_block_host_order (SHA256_CTX *ctx, const void *in, size_t num); | 110 | #ifndef SHA256_ASM |
| 111 | static | ||
| 112 | #endif | ||
| 121 | void sha256_block_data_order (SHA256_CTX *ctx, const void *in, size_t num); | 113 | void sha256_block_data_order (SHA256_CTX *ctx, const void *in, size_t num); |
| 122 | 114 | ||
| 123 | #include "fips_md32_common.h" | 115 | #include "md32_common.h" |
| 124 | 116 | ||
| 125 | #ifdef SHA256_ASM | 117 | #ifndef SHA256_ASM |
| 126 | void sha256_block (SHA256_CTX *ctx, const void *in, size_t num, int host); | ||
| 127 | #else | ||
| 128 | static const SHA_LONG K256[64] = { | 118 | static const SHA_LONG K256[64] = { |
| 129 | 0x428a2f98UL,0x71374491UL,0xb5c0fbcfUL,0xe9b5dba5UL, | 119 | 0x428a2f98UL,0x71374491UL,0xb5c0fbcfUL,0xe9b5dba5UL, |
| 130 | 0x3956c25bUL,0x59f111f1UL,0x923f82a4UL,0xab1c5ed5UL, | 120 | 0x3956c25bUL,0x59f111f1UL,0x923f82a4UL,0xab1c5ed5UL, |
| @@ -158,10 +148,10 @@ static const SHA_LONG K256[64] = { | |||
| 158 | 148 | ||
| 159 | #ifdef OPENSSL_SMALL_FOOTPRINT | 149 | #ifdef OPENSSL_SMALL_FOOTPRINT |
| 160 | 150 | ||
| 161 | static void sha256_block (SHA256_CTX *ctx, const void *in, size_t num, int host) | 151 | static void sha256_block_data_order (SHA256_CTX *ctx, const void *in, size_t num) |
| 162 | { | 152 | { |
| 163 | unsigned MD32_REG_T a,b,c,d,e,f,g,h,s0,s1,T1,T2; | 153 | unsigned MD32_REG_T a,b,c,d,e,f,g,h,s0,s1,T1,T2; |
| 164 | SHA_LONG X[16]; | 154 | SHA_LONG X[16],l; |
| 165 | int i; | 155 | int i; |
| 166 | const unsigned char *data=in; | 156 | const unsigned char *data=in; |
| 167 | 157 | ||
| @@ -170,33 +160,13 @@ static void sha256_block (SHA256_CTX *ctx, const void *in, size_t num, int host) | |||
| 170 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; | 160 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; |
| 171 | e = ctx->h[4]; f = ctx->h[5]; g = ctx->h[6]; h = ctx->h[7]; | 161 | e = ctx->h[4]; f = ctx->h[5]; g = ctx->h[6]; h = ctx->h[7]; |
| 172 | 162 | ||
| 173 | if (host) | 163 | for (i=0;i<16;i++) |
| 174 | { | ||
| 175 | const SHA_LONG *W=(const SHA_LONG *)data; | ||
| 176 | |||
| 177 | for (i=0;i<16;i++) | ||
| 178 | { | ||
| 179 | T1 = X[i] = W[i]; | ||
| 180 | T1 += h + Sigma1(e) + Ch(e,f,g) + K256[i]; | ||
| 181 | T2 = Sigma0(a) + Maj(a,b,c); | ||
| 182 | h = g; g = f; f = e; e = d + T1; | ||
| 183 | d = c; c = b; b = a; a = T1 + T2; | ||
| 184 | } | ||
| 185 | |||
| 186 | data += SHA256_CBLOCK; | ||
| 187 | } | ||
| 188 | else | ||
| 189 | { | 164 | { |
| 190 | SHA_LONG l; | 165 | HOST_c2l(data,l); T1 = X[i] = l; |
| 191 | 166 | T1 += h + Sigma1(e) + Ch(e,f,g) + K256[i]; | |
| 192 | for (i=0;i<16;i++) | 167 | T2 = Sigma0(a) + Maj(a,b,c); |
| 193 | { | 168 | h = g; g = f; f = e; e = d + T1; |
| 194 | HOST_c2l(data,l); T1 = X[i] = l; | 169 | d = c; c = b; b = a; a = T1 + T2; |
| 195 | T1 += h + Sigma1(e) + Ch(e,f,g) + K256[i]; | ||
| 196 | T2 = Sigma0(a) + Maj(a,b,c); | ||
| 197 | h = g; g = f; f = e; e = d + T1; | ||
| 198 | d = c; c = b; b = a; a = T1 + T2; | ||
| 199 | } | ||
| 200 | } | 170 | } |
| 201 | 171 | ||
| 202 | for (;i<64;i++) | 172 | for (;i<64;i++) |
| @@ -230,19 +200,20 @@ static void sha256_block (SHA256_CTX *ctx, const void *in, size_t num, int host) | |||
| 230 | T1 = X[(i)&0x0f] += s0 + s1 + X[(i+9)&0x0f]; \ | 200 | T1 = X[(i)&0x0f] += s0 + s1 + X[(i+9)&0x0f]; \ |
| 231 | ROUND_00_15(i,a,b,c,d,e,f,g,h); } while (0) | 201 | ROUND_00_15(i,a,b,c,d,e,f,g,h); } while (0) |
| 232 | 202 | ||
| 233 | static void sha256_block (SHA256_CTX *ctx, const void *in, size_t num, int host) | 203 | static void sha256_block_data_order (SHA256_CTX *ctx, const void *in, size_t num) |
| 234 | { | 204 | { |
| 235 | unsigned MD32_REG_T a,b,c,d,e,f,g,h,s0,s1,T1; | 205 | unsigned MD32_REG_T a,b,c,d,e,f,g,h,s0,s1,T1; |
| 236 | SHA_LONG X[16]; | 206 | SHA_LONG X[16]; |
| 237 | int i; | 207 | int i; |
| 238 | const unsigned char *data=in; | 208 | const unsigned char *data=in; |
| 209 | const union { long one; char little; } is_endian = {1}; | ||
| 239 | 210 | ||
| 240 | while (num--) { | 211 | while (num--) { |
| 241 | 212 | ||
| 242 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; | 213 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; |
| 243 | e = ctx->h[4]; f = ctx->h[5]; g = ctx->h[6]; h = ctx->h[7]; | 214 | e = ctx->h[4]; f = ctx->h[5]; g = ctx->h[6]; h = ctx->h[7]; |
| 244 | 215 | ||
| 245 | if (host) | 216 | if (!is_endian.little && sizeof(SHA_LONG)==4 && ((size_t)in%4)==0) |
| 246 | { | 217 | { |
| 247 | const SHA_LONG *W=(const SHA_LONG *)data; | 218 | const SHA_LONG *W=(const SHA_LONG *)data; |
| 248 | 219 | ||
| @@ -308,18 +279,4 @@ static void sha256_block (SHA256_CTX *ctx, const void *in, size_t num, int host) | |||
| 308 | #endif | 279 | #endif |
| 309 | #endif /* SHA256_ASM */ | 280 | #endif /* SHA256_ASM */ |
| 310 | 281 | ||
| 311 | /* | ||
| 312 | * Idea is to trade couple of cycles for some space. On IA-32 we save | ||
| 313 | * about 4K in "big footprint" case. In "small footprint" case any gain | ||
| 314 | * is appreciated:-) | ||
| 315 | */ | ||
| 316 | void HASH_BLOCK_HOST_ORDER (SHA256_CTX *ctx, const void *in, size_t num) | ||
| 317 | { sha256_block (ctx,in,num,1); } | ||
| 318 | |||
| 319 | void HASH_BLOCK_DATA_ORDER (SHA256_CTX *ctx, const void *in, size_t num) | ||
| 320 | { sha256_block (ctx,in,num,0); } | ||
| 321 | |||
| 322 | #endif | ||
| 323 | |||
| 324 | #endif /* OPENSSL_NO_SHA256 */ | 282 | #endif /* OPENSSL_NO_SHA256 */ |
| 325 | |||
diff --git a/src/lib/libssl/src/crypto/sha/sha256t.c b/src/lib/libssl/src/crypto/sha/sha256t.c new file mode 100644 index 0000000000..6b4a3bd001 --- /dev/null +++ b/src/lib/libssl/src/crypto/sha/sha256t.c | |||
| @@ -0,0 +1,147 @@ | |||
| 1 | /* crypto/sha/sha256t.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 4 | * ==================================================================== | ||
| 5 | */ | ||
| 6 | #include <stdio.h> | ||
| 7 | #include <string.h> | ||
| 8 | #include <stdlib.h> | ||
| 9 | |||
| 10 | #include <openssl/sha.h> | ||
| 11 | #include <openssl/evp.h> | ||
| 12 | |||
| 13 | #if defined(OPENSSL_NO_SHA) || defined(OPENSSL_NO_SHA256) | ||
| 14 | int main(int argc, char *argv[]) | ||
| 15 | { | ||
| 16 | printf("No SHA256 support\n"); | ||
| 17 | return(0); | ||
| 18 | } | ||
| 19 | #else | ||
| 20 | |||
| 21 | unsigned char app_b1[SHA256_DIGEST_LENGTH] = { | ||
| 22 | 0xba,0x78,0x16,0xbf,0x8f,0x01,0xcf,0xea, | ||
| 23 | 0x41,0x41,0x40,0xde,0x5d,0xae,0x22,0x23, | ||
| 24 | 0xb0,0x03,0x61,0xa3,0x96,0x17,0x7a,0x9c, | ||
| 25 | 0xb4,0x10,0xff,0x61,0xf2,0x00,0x15,0xad }; | ||
| 26 | |||
| 27 | unsigned char app_b2[SHA256_DIGEST_LENGTH] = { | ||
| 28 | 0x24,0x8d,0x6a,0x61,0xd2,0x06,0x38,0xb8, | ||
| 29 | 0xe5,0xc0,0x26,0x93,0x0c,0x3e,0x60,0x39, | ||
| 30 | 0xa3,0x3c,0xe4,0x59,0x64,0xff,0x21,0x67, | ||
| 31 | 0xf6,0xec,0xed,0xd4,0x19,0xdb,0x06,0xc1 }; | ||
| 32 | |||
| 33 | unsigned char app_b3[SHA256_DIGEST_LENGTH] = { | ||
| 34 | 0xcd,0xc7,0x6e,0x5c,0x99,0x14,0xfb,0x92, | ||
| 35 | 0x81,0xa1,0xc7,0xe2,0x84,0xd7,0x3e,0x67, | ||
| 36 | 0xf1,0x80,0x9a,0x48,0xa4,0x97,0x20,0x0e, | ||
| 37 | 0x04,0x6d,0x39,0xcc,0xc7,0x11,0x2c,0xd0 }; | ||
| 38 | |||
| 39 | unsigned char addenum_1[SHA224_DIGEST_LENGTH] = { | ||
| 40 | 0x23,0x09,0x7d,0x22,0x34,0x05,0xd8,0x22, | ||
| 41 | 0x86,0x42,0xa4,0x77,0xbd,0xa2,0x55,0xb3, | ||
| 42 | 0x2a,0xad,0xbc,0xe4,0xbd,0xa0,0xb3,0xf7, | ||
| 43 | 0xe3,0x6c,0x9d,0xa7 }; | ||
| 44 | |||
| 45 | unsigned char addenum_2[SHA224_DIGEST_LENGTH] = { | ||
| 46 | 0x75,0x38,0x8b,0x16,0x51,0x27,0x76,0xcc, | ||
| 47 | 0x5d,0xba,0x5d,0xa1,0xfd,0x89,0x01,0x50, | ||
| 48 | 0xb0,0xc6,0x45,0x5c,0xb4,0xf5,0x8b,0x19, | ||
| 49 | 0x52,0x52,0x25,0x25 }; | ||
| 50 | |||
| 51 | unsigned char addenum_3[SHA224_DIGEST_LENGTH] = { | ||
| 52 | 0x20,0x79,0x46,0x55,0x98,0x0c,0x91,0xd8, | ||
| 53 | 0xbb,0xb4,0xc1,0xea,0x97,0x61,0x8a,0x4b, | ||
| 54 | 0xf0,0x3f,0x42,0x58,0x19,0x48,0xb2,0xee, | ||
| 55 | 0x4e,0xe7,0xad,0x67 }; | ||
| 56 | |||
| 57 | int main (int argc,char **argv) | ||
| 58 | { unsigned char md[SHA256_DIGEST_LENGTH]; | ||
| 59 | int i; | ||
| 60 | EVP_MD_CTX evp; | ||
| 61 | |||
| 62 | fprintf(stdout,"Testing SHA-256 "); | ||
| 63 | |||
| 64 | EVP_Digest ("abc",3,md,NULL,EVP_sha256(),NULL); | ||
| 65 | if (memcmp(md,app_b1,sizeof(app_b1))) | ||
| 66 | { fflush(stdout); | ||
| 67 | fprintf(stderr,"\nTEST 1 of 3 failed.\n"); | ||
| 68 | return 1; | ||
| 69 | } | ||
| 70 | else | ||
| 71 | fprintf(stdout,"."); fflush(stdout); | ||
| 72 | |||
| 73 | EVP_Digest ("abcdbcde""cdefdefg""efghfghi""ghijhijk" | ||
| 74 | "ijkljklm""klmnlmno""mnopnopq",56,md,NULL,EVP_sha256(),NULL); | ||
| 75 | if (memcmp(md,app_b2,sizeof(app_b2))) | ||
| 76 | { fflush(stdout); | ||
| 77 | fprintf(stderr,"\nTEST 2 of 3 failed.\n"); | ||
| 78 | return 1; | ||
| 79 | } | ||
| 80 | else | ||
| 81 | fprintf(stdout,"."); fflush(stdout); | ||
| 82 | |||
| 83 | EVP_MD_CTX_init (&evp); | ||
| 84 | EVP_DigestInit_ex (&evp,EVP_sha256(),NULL); | ||
| 85 | for (i=0;i<1000000;i+=160) | ||
| 86 | EVP_DigestUpdate (&evp, "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 87 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 88 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 89 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 90 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa", | ||
| 91 | (1000000-i)<160?1000000-i:160); | ||
| 92 | EVP_DigestFinal_ex (&evp,md,NULL); | ||
| 93 | EVP_MD_CTX_cleanup (&evp); | ||
| 94 | |||
| 95 | if (memcmp(md,app_b3,sizeof(app_b3))) | ||
| 96 | { fflush(stdout); | ||
| 97 | fprintf(stderr,"\nTEST 3 of 3 failed.\n"); | ||
| 98 | return 1; | ||
| 99 | } | ||
| 100 | else | ||
| 101 | fprintf(stdout,"."); fflush(stdout); | ||
| 102 | |||
| 103 | fprintf(stdout," passed.\n"); fflush(stdout); | ||
| 104 | |||
| 105 | fprintf(stdout,"Testing SHA-224 "); | ||
| 106 | |||
| 107 | EVP_Digest ("abc",3,md,NULL,EVP_sha224(),NULL); | ||
| 108 | if (memcmp(md,addenum_1,sizeof(addenum_1))) | ||
| 109 | { fflush(stdout); | ||
| 110 | fprintf(stderr,"\nTEST 1 of 3 failed.\n"); | ||
| 111 | return 1; | ||
| 112 | } | ||
| 113 | else | ||
| 114 | fprintf(stdout,"."); fflush(stdout); | ||
| 115 | |||
| 116 | EVP_Digest ("abcdbcde""cdefdefg""efghfghi""ghijhijk" | ||
| 117 | "ijkljklm""klmnlmno""mnopnopq",56,md,NULL,EVP_sha224(),NULL); | ||
| 118 | if (memcmp(md,addenum_2,sizeof(addenum_2))) | ||
| 119 | { fflush(stdout); | ||
| 120 | fprintf(stderr,"\nTEST 2 of 3 failed.\n"); | ||
| 121 | return 1; | ||
| 122 | } | ||
| 123 | else | ||
| 124 | fprintf(stdout,"."); fflush(stdout); | ||
| 125 | |||
| 126 | EVP_MD_CTX_init (&evp); | ||
| 127 | EVP_DigestInit_ex (&evp,EVP_sha224(),NULL); | ||
| 128 | for (i=0;i<1000000;i+=64) | ||
| 129 | EVP_DigestUpdate (&evp, "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 130 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa", | ||
| 131 | (1000000-i)<64?1000000-i:64); | ||
| 132 | EVP_DigestFinal_ex (&evp,md,NULL); | ||
| 133 | EVP_MD_CTX_cleanup (&evp); | ||
| 134 | |||
| 135 | if (memcmp(md,addenum_3,sizeof(addenum_3))) | ||
| 136 | { fflush(stdout); | ||
| 137 | fprintf(stderr,"\nTEST 3 of 3 failed.\n"); | ||
| 138 | return 1; | ||
| 139 | } | ||
| 140 | else | ||
| 141 | fprintf(stdout,"."); fflush(stdout); | ||
| 142 | |||
| 143 | fprintf(stdout," passed.\n"); fflush(stdout); | ||
| 144 | |||
| 145 | return 0; | ||
| 146 | } | ||
| 147 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_sha512.c b/src/lib/libssl/src/crypto/sha/sha512.c index 9e906af315..987fc07c99 100644 --- a/src/lib/libssl/src/fips-1.0/sha/fips_sha512.c +++ b/src/lib/libssl/src/crypto/sha/sha512.c | |||
| @@ -4,6 +4,7 @@ | |||
| 4 | * according to the OpenSSL license [found in ../../LICENSE]. | 4 | * according to the OpenSSL license [found in ../../LICENSE]. |
| 5 | * ==================================================================== | 5 | * ==================================================================== |
| 6 | */ | 6 | */ |
| 7 | #include <openssl/opensslconf.h> | ||
| 7 | #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA512) | 8 | #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA512) |
| 8 | /* | 9 | /* |
| 9 | * IMPLEMENTATION NOTES. | 10 | * IMPLEMENTATION NOTES. |
| @@ -43,17 +44,18 @@ | |||
| 43 | #include <stdlib.h> | 44 | #include <stdlib.h> |
| 44 | #include <string.h> | 45 | #include <string.h> |
| 45 | 46 | ||
| 46 | #include <openssl/opensslconf.h> | ||
| 47 | #include <openssl/crypto.h> | 47 | #include <openssl/crypto.h> |
| 48 | #include <openssl/fips_sha.h> | 48 | #include <openssl/sha.h> |
| 49 | #include <openssl/fips.h> | ||
| 50 | #include <openssl/opensslv.h> | 49 | #include <openssl/opensslv.h> |
| 51 | 50 | ||
| 52 | #ifdef OPENSSL_FIPS | 51 | #include "cryptlib.h" |
| 53 | 52 | ||
| 54 | const char SHA512_version[]="SHA-512" OPENSSL_VERSION_PTEXT; | 53 | const char SHA512_version[]="SHA-512" OPENSSL_VERSION_PTEXT; |
| 55 | 54 | ||
| 56 | #if defined(_M_IX86) || defined(_M_AMD64) || defined(__i386) || defined(__x86_64) | 55 | #if defined(__i386) || defined(__i386__) || defined(_M_IX86) || \ |
| 56 | defined(__x86_64) || defined(_M_AMD64) || defined(_M_X64) || \ | ||
| 57 | defined(__s390__) || defined(__s390x__) || \ | ||
| 58 | defined(SHA512_ASM) | ||
| 57 | #define SHA512_BLOCK_CAN_MANAGE_UNALIGNED_DATA | 59 | #define SHA512_BLOCK_CAN_MANAGE_UNALIGNED_DATA |
| 58 | #endif | 60 | #endif |
| 59 | 61 | ||
| @@ -90,7 +92,7 @@ int SHA512_Init (SHA512_CTX *c) | |||
| 90 | #ifndef SHA512_ASM | 92 | #ifndef SHA512_ASM |
| 91 | static | 93 | static |
| 92 | #endif | 94 | #endif |
| 93 | void sha512_block (SHA512_CTX *ctx, const void *in, size_t num); | 95 | void sha512_block_data_order (SHA512_CTX *ctx, const void *in, size_t num); |
| 94 | 96 | ||
| 95 | int SHA512_Final (unsigned char *md, SHA512_CTX *c) | 97 | int SHA512_Final (unsigned char *md, SHA512_CTX *c) |
| 96 | { | 98 | { |
| @@ -101,7 +103,7 @@ int SHA512_Final (unsigned char *md, SHA512_CTX *c) | |||
| 101 | n++; | 103 | n++; |
| 102 | if (n > (sizeof(c->u)-16)) | 104 | if (n > (sizeof(c->u)-16)) |
| 103 | memset (p+n,0,sizeof(c->u)-n), n=0, | 105 | memset (p+n,0,sizeof(c->u)-n), n=0, |
| 104 | sha512_block (c,p,1); | 106 | sha512_block_data_order (c,p,1); |
| 105 | 107 | ||
| 106 | memset (p+n,0,sizeof(c->u)-16-n); | 108 | memset (p+n,0,sizeof(c->u)-16-n); |
| 107 | #ifdef B_ENDIAN | 109 | #ifdef B_ENDIAN |
| @@ -126,7 +128,7 @@ int SHA512_Final (unsigned char *md, SHA512_CTX *c) | |||
| 126 | p[sizeof(c->u)-16] = (unsigned char)(c->Nh>>56); | 128 | p[sizeof(c->u)-16] = (unsigned char)(c->Nh>>56); |
| 127 | #endif | 129 | #endif |
| 128 | 130 | ||
| 129 | sha512_block (c,p,1); | 131 | sha512_block_data_order (c,p,1); |
| 130 | 132 | ||
| 131 | if (md==0) return 0; | 133 | if (md==0) return 0; |
| 132 | 134 | ||
| @@ -179,9 +181,6 @@ int SHA512_Update (SHA512_CTX *c, const void *_data, size_t len) | |||
| 179 | unsigned char *p=c->u.p; | 181 | unsigned char *p=c->u.p; |
| 180 | const unsigned char *data=(const unsigned char *)_data; | 182 | const unsigned char *data=(const unsigned char *)_data; |
| 181 | 183 | ||
| 182 | if(FIPS_selftest_failed()) | ||
| 183 | return 0; | ||
| 184 | |||
| 185 | if (len==0) return 1; | 184 | if (len==0) return 1; |
| 186 | 185 | ||
| 187 | l = (c->Nl+(((SHA_LONG64)len)<<3))&U64(0xffffffffffffffff); | 186 | l = (c->Nl+(((SHA_LONG64)len)<<3))&U64(0xffffffffffffffff); |
| @@ -201,7 +200,7 @@ int SHA512_Update (SHA512_CTX *c, const void *_data, size_t len) | |||
| 201 | else { | 200 | else { |
| 202 | memcpy (p+c->num,data,n), c->num = 0; | 201 | memcpy (p+c->num,data,n), c->num = 0; |
| 203 | len-=n, data+=n; | 202 | len-=n, data+=n; |
| 204 | sha512_block (c,p,1); | 203 | sha512_block_data_order (c,p,1); |
| 205 | } | 204 | } |
| 206 | } | 205 | } |
| 207 | 206 | ||
| @@ -211,12 +210,12 @@ int SHA512_Update (SHA512_CTX *c, const void *_data, size_t len) | |||
| 211 | if ((size_t)data%sizeof(c->u.d[0]) != 0) | 210 | if ((size_t)data%sizeof(c->u.d[0]) != 0) |
| 212 | while (len >= sizeof(c->u)) | 211 | while (len >= sizeof(c->u)) |
| 213 | memcpy (p,data,sizeof(c->u)), | 212 | memcpy (p,data,sizeof(c->u)), |
| 214 | sha512_block (c,p,1), | 213 | sha512_block_data_order (c,p,1), |
| 215 | len -= sizeof(c->u), | 214 | len -= sizeof(c->u), |
| 216 | data += sizeof(c->u); | 215 | data += sizeof(c->u); |
| 217 | else | 216 | else |
| 218 | #endif | 217 | #endif |
| 219 | sha512_block (c,data,len/sizeof(c->u)), | 218 | sha512_block_data_order (c,data,len/sizeof(c->u)), |
| 220 | data += len, | 219 | data += len, |
| 221 | len %= sizeof(c->u), | 220 | len %= sizeof(c->u), |
| 222 | data -= len; | 221 | data -= len; |
| @@ -231,7 +230,7 @@ int SHA384_Update (SHA512_CTX *c, const void *data, size_t len) | |||
| 231 | { return SHA512_Update (c,data,len); } | 230 | { return SHA512_Update (c,data,len); } |
| 232 | 231 | ||
| 233 | void SHA512_Transform (SHA512_CTX *c, const unsigned char *data) | 232 | void SHA512_Transform (SHA512_CTX *c, const unsigned char *data) |
| 234 | { sha512_block (c,data,1); } | 233 | { sha512_block_data_order (c,data,1); } |
| 235 | 234 | ||
| 236 | unsigned char *SHA384(const unsigned char *d, size_t n, unsigned char *md) | 235 | unsigned char *SHA384(const unsigned char *d, size_t n, unsigned char *md) |
| 237 | { | 236 | { |
| @@ -305,40 +304,78 @@ static const SHA_LONG64 K512[80] = { | |||
| 305 | #ifndef PEDANTIC | 304 | #ifndef PEDANTIC |
| 306 | # if defined(__GNUC__) && __GNUC__>=2 && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) | 305 | # if defined(__GNUC__) && __GNUC__>=2 && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) |
| 307 | # if defined(__x86_64) || defined(__x86_64__) | 306 | # if defined(__x86_64) || defined(__x86_64__) |
| 308 | # define PULL64(x) ({ SHA_LONG64 ret=*((const SHA_LONG64 *)(&(x))); \ | ||
| 309 | asm ("bswapq %0" \ | ||
| 310 | : "=r"(ret) \ | ||
| 311 | : "0"(ret)); ret; }) | ||
| 312 | # endif | ||
| 313 | # endif | ||
| 314 | #endif | ||
| 315 | |||
| 316 | #ifndef PULL64 | ||
| 317 | #define B(x,j) (((SHA_LONG64)(*(((const unsigned char *)(&x))+j)))<<((7-j)*8)) | ||
| 318 | #define PULL64(x) (B(x,0)|B(x,1)|B(x,2)|B(x,3)|B(x,4)|B(x,5)|B(x,6)|B(x,7)) | ||
| 319 | #endif | ||
| 320 | |||
| 321 | #ifndef PEDANTIC | ||
| 322 | # if defined(_MSC_VER) | ||
| 323 | # if defined(_WIN64) /* applies to both IA-64 and AMD64 */ | ||
| 324 | # define ROTR(a,n) _rotr64((a),n) | ||
| 325 | # endif | ||
| 326 | # elif defined(__GNUC__) && __GNUC__>=2 && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) | ||
| 327 | # if defined(__x86_64) || defined(__x86_64__) | ||
| 328 | # define ROTR(a,n) ({ unsigned long ret; \ | 307 | # define ROTR(a,n) ({ unsigned long ret; \ |
| 329 | asm ("rorq %1,%0" \ | 308 | asm ("rorq %1,%0" \ |
| 330 | : "=r"(ret) \ | 309 | : "=r"(ret) \ |
| 331 | : "J"(n),"0"(a) \ | 310 | : "J"(n),"0"(a) \ |
| 332 | : "cc"); ret; }) | 311 | : "cc"); ret; }) |
| 333 | # elif defined(_ARCH_PPC) && defined(__64BIT__) | 312 | # if !defined(B_ENDIAN) |
| 313 | # define PULL64(x) ({ SHA_LONG64 ret=*((const SHA_LONG64 *)(&(x))); \ | ||
| 314 | asm ("bswapq %0" \ | ||
| 315 | : "=r"(ret) \ | ||
| 316 | : "0"(ret)); ret; }) | ||
| 317 | # endif | ||
| 318 | # elif (defined(__i386) || defined(__i386__)) && !defined(B_ENDIAN) | ||
| 319 | # if defined(I386_ONLY) | ||
| 320 | # define PULL64(x) ({ const unsigned int *p=(const unsigned int *)(&(x));\ | ||
| 321 | unsigned int hi=p[0],lo=p[1]; \ | ||
| 322 | asm("xchgb %%ah,%%al;xchgb %%dh,%%dl;"\ | ||
| 323 | "roll $16,%%eax; roll $16,%%edx; "\ | ||
| 324 | "xchgb %%ah,%%al;xchgb %%dh,%%dl;" \ | ||
| 325 | : "=a"(lo),"=d"(hi) \ | ||
| 326 | : "0"(lo),"1"(hi) : "cc"); \ | ||
| 327 | ((SHA_LONG64)hi)<<32|lo; }) | ||
| 328 | # else | ||
| 329 | # define PULL64(x) ({ const unsigned int *p=(const unsigned int *)(&(x));\ | ||
| 330 | unsigned int hi=p[0],lo=p[1]; \ | ||
| 331 | asm ("bswapl %0; bswapl %1;" \ | ||
| 332 | : "=r"(lo),"=r"(hi) \ | ||
| 333 | : "0"(lo),"1"(hi)); \ | ||
| 334 | ((SHA_LONG64)hi)<<32|lo; }) | ||
| 335 | # endif | ||
| 336 | # elif (defined(_ARCH_PPC) && defined(__64BIT__)) || defined(_ARCH_PPC64) | ||
| 334 | # define ROTR(a,n) ({ unsigned long ret; \ | 337 | # define ROTR(a,n) ({ unsigned long ret; \ |
| 335 | asm ("rotrdi %0,%1,%2" \ | 338 | asm ("rotrdi %0,%1,%2" \ |
| 336 | : "=r"(ret) \ | 339 | : "=r"(ret) \ |
| 337 | : "r"(a),"K"(n)); ret; }) | 340 | : "r"(a),"K"(n)); ret; }) |
| 338 | # endif | 341 | # endif |
| 342 | # elif defined(_MSC_VER) | ||
| 343 | # if defined(_WIN64) /* applies to both IA-64 and AMD64 */ | ||
| 344 | # define ROTR(a,n) _rotr64((a),n) | ||
| 345 | # endif | ||
| 346 | # if defined(_M_IX86) && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) | ||
| 347 | # if defined(I386_ONLY) | ||
| 348 | static SHA_LONG64 __fastcall __pull64be(const void *x) | ||
| 349 | { _asm mov edx, [ecx + 0] | ||
| 350 | _asm mov eax, [ecx + 4] | ||
| 351 | _asm xchg dh,dl | ||
| 352 | _asm xchg ah,al | ||
| 353 | _asm rol edx,16 | ||
| 354 | _asm rol eax,16 | ||
| 355 | _asm xchg dh,dl | ||
| 356 | _asm xchg ah,al | ||
| 357 | } | ||
| 358 | # else | ||
| 359 | static SHA_LONG64 __fastcall __pull64be(const void *x) | ||
| 360 | { _asm mov edx, [ecx + 0] | ||
| 361 | _asm mov eax, [ecx + 4] | ||
| 362 | _asm bswap edx | ||
| 363 | _asm bswap eax | ||
| 364 | } | ||
| 365 | # endif | ||
| 366 | # define PULL64(x) __pull64be(&(x)) | ||
| 367 | # if _MSC_VER<=1200 | ||
| 368 | # pragma inline_depth(0) | ||
| 369 | # endif | ||
| 370 | # endif | ||
| 339 | # endif | 371 | # endif |
| 340 | #endif | 372 | #endif |
| 341 | 373 | ||
| 374 | #ifndef PULL64 | ||
| 375 | #define B(x,j) (((SHA_LONG64)(*(((const unsigned char *)(&x))+j)))<<((7-j)*8)) | ||
| 376 | #define PULL64(x) (B(x,0)|B(x,1)|B(x,2)|B(x,3)|B(x,4)|B(x,5)|B(x,6)|B(x,7)) | ||
| 377 | #endif | ||
| 378 | |||
| 342 | #ifndef ROTR | 379 | #ifndef ROTR |
| 343 | #define ROTR(x,s) (((x)>>s) | (x)<<(64-s)) | 380 | #define ROTR(x,s) (((x)>>s) | (x)<<(64-s)) |
| 344 | #endif | 381 | #endif |
| @@ -351,15 +388,27 @@ static const SHA_LONG64 K512[80] = { | |||
| 351 | #define Ch(x,y,z) (((x) & (y)) ^ ((~(x)) & (z))) | 388 | #define Ch(x,y,z) (((x) & (y)) ^ ((~(x)) & (z))) |
| 352 | #define Maj(x,y,z) (((x) & (y)) ^ ((x) & (z)) ^ ((y) & (z))) | 389 | #define Maj(x,y,z) (((x) & (y)) ^ ((x) & (z)) ^ ((y) & (z))) |
| 353 | 390 | ||
| 391 | #if defined(OPENSSL_IA32_SSE2) && !defined(OPENSSL_NO_ASM) && !defined(I386_ONLY) | ||
| 392 | #define GO_FOR_SSE2(ctx,in,num) do { \ | ||
| 393 | void sha512_block_sse2(void *,const void *,size_t); \ | ||
| 394 | if (!(OPENSSL_ia32cap_P & (1<<26))) break; \ | ||
| 395 | sha512_block_sse2(ctx->h,in,num); return; \ | ||
| 396 | } while (0) | ||
| 397 | #endif | ||
| 398 | |||
| 354 | #ifdef OPENSSL_SMALL_FOOTPRINT | 399 | #ifdef OPENSSL_SMALL_FOOTPRINT |
| 355 | 400 | ||
| 356 | static void sha512_block (SHA512_CTX *ctx, const void *in, size_t num) | 401 | static void sha512_block_data_order (SHA512_CTX *ctx, const void *in, size_t num) |
| 357 | { | 402 | { |
| 358 | const SHA_LONG64 *W=in; | 403 | const SHA_LONG64 *W=in; |
| 359 | SHA_LONG64 a,b,c,d,e,f,g,h,s0,s1,T1,T2; | 404 | SHA_LONG64 a,b,c,d,e,f,g,h,s0,s1,T1,T2; |
| 360 | SHA_LONG64 X[16]; | 405 | SHA_LONG64 X[16]; |
| 361 | int i; | 406 | int i; |
| 362 | 407 | ||
| 408 | #ifdef GO_FOR_SSE2 | ||
| 409 | GO_FOR_SSE2(ctx,in,num); | ||
| 410 | #endif | ||
| 411 | |||
| 363 | while (num--) { | 412 | while (num--) { |
| 364 | 413 | ||
| 365 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; | 414 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; |
| @@ -410,13 +459,17 @@ static void sha512_block (SHA512_CTX *ctx, const void *in, size_t num) | |||
| 410 | T1 = X[(i)&0x0f] += s0 + s1 + X[(i+9)&0x0f]; \ | 459 | T1 = X[(i)&0x0f] += s0 + s1 + X[(i+9)&0x0f]; \ |
| 411 | ROUND_00_15(i,a,b,c,d,e,f,g,h); } while (0) | 460 | ROUND_00_15(i,a,b,c,d,e,f,g,h); } while (0) |
| 412 | 461 | ||
| 413 | static void sha512_block (SHA512_CTX *ctx, const void *in, size_t num) | 462 | static void sha512_block_data_order (SHA512_CTX *ctx, const void *in, size_t num) |
| 414 | { | 463 | { |
| 415 | const SHA_LONG64 *W=in; | 464 | const SHA_LONG64 *W=in; |
| 416 | SHA_LONG64 a,b,c,d,e,f,g,h,s0,s1,T1; | 465 | SHA_LONG64 a,b,c,d,e,f,g,h,s0,s1,T1; |
| 417 | SHA_LONG64 X[16]; | 466 | SHA_LONG64 X[16]; |
| 418 | int i; | 467 | int i; |
| 419 | 468 | ||
| 469 | #ifdef GO_FOR_SSE2 | ||
| 470 | GO_FOR_SSE2(ctx,in,num); | ||
| 471 | #endif | ||
| 472 | |||
| 420 | while (num--) { | 473 | while (num--) { |
| 421 | 474 | ||
| 422 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; | 475 | a = ctx->h[0]; b = ctx->h[1]; c = ctx->h[2]; d = ctx->h[3]; |
| @@ -481,7 +534,4 @@ static void sha512_block (SHA512_CTX *ctx, const void *in, size_t num) | |||
| 481 | 534 | ||
| 482 | #endif /* SHA512_ASM */ | 535 | #endif /* SHA512_ASM */ |
| 483 | 536 | ||
| 484 | #endif | ||
| 485 | |||
| 486 | #endif /* OPENSSL_NO_SHA512 */ | 537 | #endif /* OPENSSL_NO_SHA512 */ |
| 487 | |||
diff --git a/src/lib/libssl/src/crypto/sha/sha512t.c b/src/lib/libssl/src/crypto/sha/sha512t.c new file mode 100644 index 0000000000..210041d435 --- /dev/null +++ b/src/lib/libssl/src/crypto/sha/sha512t.c | |||
| @@ -0,0 +1,184 @@ | |||
| 1 | /* crypto/sha/sha512t.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 4 | * ==================================================================== | ||
| 5 | */ | ||
| 6 | #include <stdio.h> | ||
| 7 | #include <string.h> | ||
| 8 | #include <stdlib.h> | ||
| 9 | |||
| 10 | #include <openssl/sha.h> | ||
| 11 | #include <openssl/evp.h> | ||
| 12 | #include <openssl/crypto.h> | ||
| 13 | |||
| 14 | #if defined(OPENSSL_NO_SHA) || defined(OPENSSL_NO_SHA512) | ||
| 15 | int main(int argc, char *argv[]) | ||
| 16 | { | ||
| 17 | printf("No SHA512 support\n"); | ||
| 18 | return(0); | ||
| 19 | } | ||
| 20 | #else | ||
| 21 | |||
| 22 | unsigned char app_c1[SHA512_DIGEST_LENGTH] = { | ||
| 23 | 0xdd,0xaf,0x35,0xa1,0x93,0x61,0x7a,0xba, | ||
| 24 | 0xcc,0x41,0x73,0x49,0xae,0x20,0x41,0x31, | ||
| 25 | 0x12,0xe6,0xfa,0x4e,0x89,0xa9,0x7e,0xa2, | ||
| 26 | 0x0a,0x9e,0xee,0xe6,0x4b,0x55,0xd3,0x9a, | ||
| 27 | 0x21,0x92,0x99,0x2a,0x27,0x4f,0xc1,0xa8, | ||
| 28 | 0x36,0xba,0x3c,0x23,0xa3,0xfe,0xeb,0xbd, | ||
| 29 | 0x45,0x4d,0x44,0x23,0x64,0x3c,0xe8,0x0e, | ||
| 30 | 0x2a,0x9a,0xc9,0x4f,0xa5,0x4c,0xa4,0x9f }; | ||
| 31 | |||
| 32 | unsigned char app_c2[SHA512_DIGEST_LENGTH] = { | ||
| 33 | 0x8e,0x95,0x9b,0x75,0xda,0xe3,0x13,0xda, | ||
| 34 | 0x8c,0xf4,0xf7,0x28,0x14,0xfc,0x14,0x3f, | ||
| 35 | 0x8f,0x77,0x79,0xc6,0xeb,0x9f,0x7f,0xa1, | ||
| 36 | 0x72,0x99,0xae,0xad,0xb6,0x88,0x90,0x18, | ||
| 37 | 0x50,0x1d,0x28,0x9e,0x49,0x00,0xf7,0xe4, | ||
| 38 | 0x33,0x1b,0x99,0xde,0xc4,0xb5,0x43,0x3a, | ||
| 39 | 0xc7,0xd3,0x29,0xee,0xb6,0xdd,0x26,0x54, | ||
| 40 | 0x5e,0x96,0xe5,0x5b,0x87,0x4b,0xe9,0x09 }; | ||
| 41 | |||
| 42 | unsigned char app_c3[SHA512_DIGEST_LENGTH] = { | ||
| 43 | 0xe7,0x18,0x48,0x3d,0x0c,0xe7,0x69,0x64, | ||
| 44 | 0x4e,0x2e,0x42,0xc7,0xbc,0x15,0xb4,0x63, | ||
| 45 | 0x8e,0x1f,0x98,0xb1,0x3b,0x20,0x44,0x28, | ||
| 46 | 0x56,0x32,0xa8,0x03,0xaf,0xa9,0x73,0xeb, | ||
| 47 | 0xde,0x0f,0xf2,0x44,0x87,0x7e,0xa6,0x0a, | ||
| 48 | 0x4c,0xb0,0x43,0x2c,0xe5,0x77,0xc3,0x1b, | ||
| 49 | 0xeb,0x00,0x9c,0x5c,0x2c,0x49,0xaa,0x2e, | ||
| 50 | 0x4e,0xad,0xb2,0x17,0xad,0x8c,0xc0,0x9b }; | ||
| 51 | |||
| 52 | unsigned char app_d1[SHA384_DIGEST_LENGTH] = { | ||
| 53 | 0xcb,0x00,0x75,0x3f,0x45,0xa3,0x5e,0x8b, | ||
| 54 | 0xb5,0xa0,0x3d,0x69,0x9a,0xc6,0x50,0x07, | ||
| 55 | 0x27,0x2c,0x32,0xab,0x0e,0xde,0xd1,0x63, | ||
| 56 | 0x1a,0x8b,0x60,0x5a,0x43,0xff,0x5b,0xed, | ||
| 57 | 0x80,0x86,0x07,0x2b,0xa1,0xe7,0xcc,0x23, | ||
| 58 | 0x58,0xba,0xec,0xa1,0x34,0xc8,0x25,0xa7 }; | ||
| 59 | |||
| 60 | unsigned char app_d2[SHA384_DIGEST_LENGTH] = { | ||
| 61 | 0x09,0x33,0x0c,0x33,0xf7,0x11,0x47,0xe8, | ||
| 62 | 0x3d,0x19,0x2f,0xc7,0x82,0xcd,0x1b,0x47, | ||
| 63 | 0x53,0x11,0x1b,0x17,0x3b,0x3b,0x05,0xd2, | ||
| 64 | 0x2f,0xa0,0x80,0x86,0xe3,0xb0,0xf7,0x12, | ||
| 65 | 0xfc,0xc7,0xc7,0x1a,0x55,0x7e,0x2d,0xb9, | ||
| 66 | 0x66,0xc3,0xe9,0xfa,0x91,0x74,0x60,0x39 }; | ||
| 67 | |||
| 68 | unsigned char app_d3[SHA384_DIGEST_LENGTH] = { | ||
| 69 | 0x9d,0x0e,0x18,0x09,0x71,0x64,0x74,0xcb, | ||
| 70 | 0x08,0x6e,0x83,0x4e,0x31,0x0a,0x4a,0x1c, | ||
| 71 | 0xed,0x14,0x9e,0x9c,0x00,0xf2,0x48,0x52, | ||
| 72 | 0x79,0x72,0xce,0xc5,0x70,0x4c,0x2a,0x5b, | ||
| 73 | 0x07,0xb8,0xb3,0xdc,0x38,0xec,0xc4,0xeb, | ||
| 74 | 0xae,0x97,0xdd,0xd8,0x7f,0x3d,0x89,0x85 }; | ||
| 75 | |||
| 76 | int main (int argc,char **argv) | ||
| 77 | { unsigned char md[SHA512_DIGEST_LENGTH]; | ||
| 78 | int i; | ||
| 79 | EVP_MD_CTX evp; | ||
| 80 | |||
| 81 | #ifdef OPENSSL_IA32_SSE2 | ||
| 82 | /* Alternative to this is to call OpenSSL_add_all_algorithms... | ||
| 83 | * The below code is retained exclusively for debugging purposes. */ | ||
| 84 | { char *env; | ||
| 85 | |||
| 86 | if ((env=getenv("OPENSSL_ia32cap"))) | ||
| 87 | OPENSSL_ia32cap = strtoul (env,NULL,0); | ||
| 88 | } | ||
| 89 | #endif | ||
| 90 | |||
| 91 | fprintf(stdout,"Testing SHA-512 "); | ||
| 92 | |||
| 93 | EVP_Digest ("abc",3,md,NULL,EVP_sha512(),NULL); | ||
| 94 | if (memcmp(md,app_c1,sizeof(app_c1))) | ||
| 95 | { fflush(stdout); | ||
| 96 | fprintf(stderr,"\nTEST 1 of 3 failed.\n"); | ||
| 97 | return 1; | ||
| 98 | } | ||
| 99 | else | ||
| 100 | fprintf(stdout,"."); fflush(stdout); | ||
| 101 | |||
| 102 | EVP_Digest ("abcdefgh""bcdefghi""cdefghij""defghijk" | ||
| 103 | "efghijkl""fghijklm""ghijklmn""hijklmno" | ||
| 104 | "ijklmnop""jklmnopq""klmnopqr""lmnopqrs" | ||
| 105 | "mnopqrst""nopqrstu",112,md,NULL,EVP_sha512(),NULL); | ||
| 106 | if (memcmp(md,app_c2,sizeof(app_c2))) | ||
| 107 | { fflush(stdout); | ||
| 108 | fprintf(stderr,"\nTEST 2 of 3 failed.\n"); | ||
| 109 | return 1; | ||
| 110 | } | ||
| 111 | else | ||
| 112 | fprintf(stdout,"."); fflush(stdout); | ||
| 113 | |||
| 114 | EVP_MD_CTX_init (&evp); | ||
| 115 | EVP_DigestInit_ex (&evp,EVP_sha512(),NULL); | ||
| 116 | for (i=0;i<1000000;i+=288) | ||
| 117 | EVP_DigestUpdate (&evp, "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 118 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 119 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 120 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 121 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 122 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 123 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 124 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 125 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa", | ||
| 126 | (1000000-i)<288?1000000-i:288); | ||
| 127 | EVP_DigestFinal_ex (&evp,md,NULL); | ||
| 128 | EVP_MD_CTX_cleanup (&evp); | ||
| 129 | |||
| 130 | if (memcmp(md,app_c3,sizeof(app_c3))) | ||
| 131 | { fflush(stdout); | ||
| 132 | fprintf(stderr,"\nTEST 3 of 3 failed.\n"); | ||
| 133 | return 1; | ||
| 134 | } | ||
| 135 | else | ||
| 136 | fprintf(stdout,"."); fflush(stdout); | ||
| 137 | |||
| 138 | fprintf(stdout," passed.\n"); fflush(stdout); | ||
| 139 | |||
| 140 | fprintf(stdout,"Testing SHA-384 "); | ||
| 141 | |||
| 142 | EVP_Digest ("abc",3,md,NULL,EVP_sha384(),NULL); | ||
| 143 | if (memcmp(md,app_d1,sizeof(app_d1))) | ||
| 144 | { fflush(stdout); | ||
| 145 | fprintf(stderr,"\nTEST 1 of 3 failed.\n"); | ||
| 146 | return 1; | ||
| 147 | } | ||
| 148 | else | ||
| 149 | fprintf(stdout,"."); fflush(stdout); | ||
| 150 | |||
| 151 | EVP_Digest ("abcdefgh""bcdefghi""cdefghij""defghijk" | ||
| 152 | "efghijkl""fghijklm""ghijklmn""hijklmno" | ||
| 153 | "ijklmnop""jklmnopq""klmnopqr""lmnopqrs" | ||
| 154 | "mnopqrst""nopqrstu",112,md,NULL,EVP_sha384(),NULL); | ||
| 155 | if (memcmp(md,app_d2,sizeof(app_d2))) | ||
| 156 | { fflush(stdout); | ||
| 157 | fprintf(stderr,"\nTEST 2 of 3 failed.\n"); | ||
| 158 | return 1; | ||
| 159 | } | ||
| 160 | else | ||
| 161 | fprintf(stdout,"."); fflush(stdout); | ||
| 162 | |||
| 163 | EVP_MD_CTX_init (&evp); | ||
| 164 | EVP_DigestInit_ex (&evp,EVP_sha384(),NULL); | ||
| 165 | for (i=0;i<1000000;i+=64) | ||
| 166 | EVP_DigestUpdate (&evp, "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa" | ||
| 167 | "aaaaaaaa""aaaaaaaa""aaaaaaaa""aaaaaaaa", | ||
| 168 | (1000000-i)<64?1000000-i:64); | ||
| 169 | EVP_DigestFinal_ex (&evp,md,NULL); | ||
| 170 | EVP_MD_CTX_cleanup (&evp); | ||
| 171 | |||
| 172 | if (memcmp(md,app_d3,sizeof(app_d3))) | ||
| 173 | { fflush(stdout); | ||
| 174 | fprintf(stderr,"\nTEST 3 of 3 failed.\n"); | ||
| 175 | return 1; | ||
| 176 | } | ||
| 177 | else | ||
| 178 | fprintf(stdout,"."); fflush(stdout); | ||
| 179 | |||
| 180 | fprintf(stdout," passed.\n"); fflush(stdout); | ||
| 181 | |||
| 182 | return 0; | ||
| 183 | } | ||
| 184 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/sparccpuid.S b/src/lib/libssl/src/crypto/sparccpuid.S new file mode 100644 index 0000000000..c17350fc89 --- /dev/null +++ b/src/lib/libssl/src/crypto/sparccpuid.S | |||
| @@ -0,0 +1,239 @@ | |||
| 1 | #if defined(__SUNPRO_C) && defined(__sparcv9) | ||
| 2 | # define ABI64 /* They've said -xarch=v9 at command line */ | ||
| 3 | #elif defined(__GNUC__) && defined(__arch64__) | ||
| 4 | # define ABI64 /* They've said -m64 at command line */ | ||
| 5 | #endif | ||
| 6 | |||
| 7 | #ifdef ABI64 | ||
| 8 | .register %g2,#scratch | ||
| 9 | .register %g3,#scratch | ||
| 10 | # define FRAME -192 | ||
| 11 | # define BIAS 2047 | ||
| 12 | #else | ||
| 13 | # define FRAME -96 | ||
| 14 | # define BIAS 0 | ||
| 15 | #endif | ||
| 16 | |||
| 17 | .text | ||
| 18 | .align 32 | ||
| 19 | .global OPENSSL_wipe_cpu | ||
| 20 | .type OPENSSL_wipe_cpu,#function | ||
| 21 | ! Keep in mind that this does not excuse us from wiping the stack! | ||
| 22 | ! This routine wipes registers, but not the backing store [which | ||
| 23 | ! resides on the stack, toward lower addresses]. To facilitate for | ||
| 24 | ! stack wiping I return pointer to the top of stack of the *caller*. | ||
| 25 | OPENSSL_wipe_cpu: | ||
| 26 | save %sp,FRAME,%sp | ||
| 27 | nop | ||
| 28 | #ifdef __sun | ||
| 29 | #include <sys/trap.h> | ||
| 30 | ta ST_CLEAN_WINDOWS | ||
| 31 | #else | ||
| 32 | call .walk.reg.wins | ||
| 33 | #endif | ||
| 34 | nop | ||
| 35 | call .PIC.zero.up | ||
| 36 | mov .zero-(.-4),%o0 | ||
| 37 | ldd [%o0],%f0 | ||
| 38 | |||
| 39 | subcc %g0,1,%o0 | ||
| 40 | ! Following is V9 "rd %ccr,%o0" instruction. However! V8 | ||
| 41 | ! specification says that it ("rd %asr2,%o0" in V8 terms) does | ||
| 42 | ! not cause illegal_instruction trap. It therefore can be used | ||
| 43 | ! to determine if the CPU the code is executing on is V8- or | ||
| 44 | ! V9-compliant, as V9 returns a distinct value of 0x99, | ||
| 45 | ! "negative" and "borrow" bits set in both %icc and %xcc. | ||
| 46 | .word 0x91408000 !rd %ccr,%o0 | ||
| 47 | cmp %o0,0x99 | ||
| 48 | bne .v8 | ||
| 49 | nop | ||
| 50 | ! Even though we do not use %fp register bank, | ||
| 51 | ! we wipe it as memcpy might have used it... | ||
| 52 | .word 0xbfa00040 !fmovd %f0,%f62 | ||
| 53 | .word 0xbba00040 !... | ||
| 54 | .word 0xb7a00040 | ||
| 55 | .word 0xb3a00040 | ||
| 56 | .word 0xafa00040 | ||
| 57 | .word 0xaba00040 | ||
| 58 | .word 0xa7a00040 | ||
| 59 | .word 0xa3a00040 | ||
| 60 | .word 0x9fa00040 | ||
| 61 | .word 0x9ba00040 | ||
| 62 | .word 0x97a00040 | ||
| 63 | .word 0x93a00040 | ||
| 64 | .word 0x8fa00040 | ||
| 65 | .word 0x8ba00040 | ||
| 66 | .word 0x87a00040 | ||
| 67 | .word 0x83a00040 !fmovd %f0,%f32 | ||
| 68 | .v8: fmovs %f1,%f31 | ||
| 69 | clr %o0 | ||
| 70 | fmovs %f0,%f30 | ||
| 71 | clr %o1 | ||
| 72 | fmovs %f1,%f29 | ||
| 73 | clr %o2 | ||
| 74 | fmovs %f0,%f28 | ||
| 75 | clr %o3 | ||
| 76 | fmovs %f1,%f27 | ||
| 77 | clr %o4 | ||
| 78 | fmovs %f0,%f26 | ||
| 79 | clr %o5 | ||
| 80 | fmovs %f1,%f25 | ||
| 81 | clr %o7 | ||
| 82 | fmovs %f0,%f24 | ||
| 83 | clr %l0 | ||
| 84 | fmovs %f1,%f23 | ||
| 85 | clr %l1 | ||
| 86 | fmovs %f0,%f22 | ||
| 87 | clr %l2 | ||
| 88 | fmovs %f1,%f21 | ||
| 89 | clr %l3 | ||
| 90 | fmovs %f0,%f20 | ||
| 91 | clr %l4 | ||
| 92 | fmovs %f1,%f19 | ||
| 93 | clr %l5 | ||
| 94 | fmovs %f0,%f18 | ||
| 95 | clr %l6 | ||
| 96 | fmovs %f1,%f17 | ||
| 97 | clr %l7 | ||
| 98 | fmovs %f0,%f16 | ||
| 99 | clr %i0 | ||
| 100 | fmovs %f1,%f15 | ||
| 101 | clr %i1 | ||
| 102 | fmovs %f0,%f14 | ||
| 103 | clr %i2 | ||
| 104 | fmovs %f1,%f13 | ||
| 105 | clr %i3 | ||
| 106 | fmovs %f0,%f12 | ||
| 107 | clr %i4 | ||
| 108 | fmovs %f1,%f11 | ||
| 109 | clr %i5 | ||
| 110 | fmovs %f0,%f10 | ||
| 111 | clr %g1 | ||
| 112 | fmovs %f1,%f9 | ||
| 113 | clr %g2 | ||
| 114 | fmovs %f0,%f8 | ||
| 115 | clr %g3 | ||
| 116 | fmovs %f1,%f7 | ||
| 117 | clr %g4 | ||
| 118 | fmovs %f0,%f6 | ||
| 119 | clr %g5 | ||
| 120 | fmovs %f1,%f5 | ||
| 121 | fmovs %f0,%f4 | ||
| 122 | fmovs %f1,%f3 | ||
| 123 | fmovs %f0,%f2 | ||
| 124 | |||
| 125 | add %fp,BIAS,%i0 ! return pointer to caller´s top of stack | ||
| 126 | |||
| 127 | ret | ||
| 128 | restore | ||
| 129 | |||
| 130 | .zero: .long 0x0,0x0 | ||
| 131 | .PIC.zero.up: | ||
| 132 | retl | ||
| 133 | add %o0,%o7,%o0 | ||
| 134 | #ifdef DEBUG | ||
| 135 | .global walk_reg_wins | ||
| 136 | .type walk_reg_wins,#function | ||
| 137 | walk_reg_wins: | ||
| 138 | #endif | ||
| 139 | .walk.reg.wins: | ||
| 140 | save %sp,FRAME,%sp | ||
| 141 | cmp %i7,%o7 | ||
| 142 | be 2f | ||
| 143 | clr %o0 | ||
| 144 | cmp %o7,0 ! compiler never cleans %o7... | ||
| 145 | be 1f ! could have been a leaf function... | ||
| 146 | clr %o1 | ||
| 147 | call .walk.reg.wins | ||
| 148 | nop | ||
| 149 | 1: clr %o2 | ||
| 150 | clr %o3 | ||
| 151 | clr %o4 | ||
| 152 | clr %o5 | ||
| 153 | clr %o7 | ||
| 154 | clr %l0 | ||
| 155 | clr %l1 | ||
| 156 | clr %l2 | ||
| 157 | clr %l3 | ||
| 158 | clr %l4 | ||
| 159 | clr %l5 | ||
| 160 | clr %l6 | ||
| 161 | clr %l7 | ||
| 162 | add %o0,1,%i0 ! used for debugging | ||
| 163 | 2: ret | ||
| 164 | restore | ||
| 165 | .size OPENSSL_wipe_cpu,.-OPENSSL_wipe_cpu | ||
| 166 | |||
| 167 | .global OPENSSL_atomic_add | ||
| 168 | .type OPENSSL_atomic_add,#function | ||
| 169 | OPENSSL_atomic_add: | ||
| 170 | #ifndef ABI64 | ||
| 171 | subcc %g0,1,%o2 | ||
| 172 | .word 0x95408000 !rd %ccr,%o2, see comment above | ||
| 173 | cmp %o2,0x99 | ||
| 174 | be .v9 | ||
| 175 | nop | ||
| 176 | save %sp,FRAME,%sp | ||
| 177 | ba .enter | ||
| 178 | nop | ||
| 179 | #ifdef __sun | ||
| 180 | ! Note that you don't have to link with libthread to call thr_yield, | ||
| 181 | ! as libc provides a stub, which is overloaded the moment you link | ||
| 182 | ! with *either* libpthread or libthread... | ||
| 183 | #define YIELD_CPU thr_yield | ||
| 184 | #else | ||
| 185 | ! applies at least to Linux and FreeBSD... Feedback expected... | ||
| 186 | #define YIELD_CPU sched_yield | ||
| 187 | #endif | ||
| 188 | .spin: call YIELD_CPU | ||
| 189 | nop | ||
| 190 | .enter: ld [%i0],%i2 | ||
| 191 | cmp %i2,-4096 | ||
| 192 | be .spin | ||
| 193 | mov -1,%i2 | ||
| 194 | swap [%i0],%i2 | ||
| 195 | cmp %i2,-1 | ||
| 196 | be .spin | ||
| 197 | add %i2,%i1,%i2 | ||
| 198 | stbar | ||
| 199 | st %i2,[%i0] | ||
| 200 | sra %i2,%g0,%i0 | ||
| 201 | ret | ||
| 202 | restore | ||
| 203 | .v9: | ||
| 204 | #endif | ||
| 205 | ld [%o0],%o2 | ||
| 206 | 1: add %o1,%o2,%o3 | ||
| 207 | .word 0xd7e2100a !cas [%o0],%o2,%o3, compare [%o0] with %o2 and swap %o3 | ||
| 208 | cmp %o2,%o3 | ||
| 209 | bne 1b | ||
| 210 | mov %o3,%o2 ! cas is always fetching to dest. register | ||
| 211 | add %o1,%o2,%o0 ! OpenSSL expects the new value | ||
| 212 | retl | ||
| 213 | sra %o0,%g0,%o0 ! we return signed int, remember? | ||
| 214 | .size OPENSSL_atomic_add,.-OPENSSL_atomic_add | ||
| 215 | |||
| 216 | .global OPENSSL_rdtsc | ||
| 217 | subcc %g0,1,%o0 | ||
| 218 | .word 0x91408000 !rd %ccr,%o0 | ||
| 219 | cmp %o0,0x99 | ||
| 220 | bne .notsc | ||
| 221 | xor %o0,%o0,%o0 | ||
| 222 | save %sp,FRAME-16,%sp | ||
| 223 | mov 513,%o0 !SI_PLATFORM | ||
| 224 | add %sp,BIAS+16,%o1 | ||
| 225 | call sysinfo | ||
| 226 | mov 256,%o2 | ||
| 227 | |||
| 228 | add %sp,BIAS-16,%o1 | ||
| 229 | ld [%o1],%l0 | ||
| 230 | ld [%o1+4],%l1 | ||
| 231 | ld [%o1+8],%l2 | ||
| 232 | mov %lo('SUNW'),%l3 | ||
| 233 | ret | ||
| 234 | restore | ||
| 235 | .notsc: | ||
| 236 | retl | ||
| 237 | nop | ||
| 238 | .type OPENSSL_rdtsc,#function | ||
| 239 | .size OPENSSL_rdtsc,.-OPENSSL_atomic_add | ||
diff --git a/src/lib/libssl/src/crypto/store/Makefile b/src/lib/libssl/src/crypto/store/Makefile new file mode 100644 index 0000000000..0dcfd7857a --- /dev/null +++ b/src/lib/libssl/src/crypto/store/Makefile | |||
| @@ -0,0 +1,112 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/crypto/store/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= store | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= -I.. -I$(TOP) -I../../include | ||
| 9 | CFLAG=-g | ||
| 10 | MAKEFILE= Makefile | ||
| 11 | AR= ar r | ||
| 12 | |||
| 13 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 14 | |||
| 15 | GENERAL=Makefile | ||
| 16 | #TEST= storetest.c | ||
| 17 | TEST= | ||
| 18 | APPS= | ||
| 19 | |||
| 20 | LIB=$(TOP)/libcrypto.a | ||
| 21 | LIBSRC= str_err.c str_lib.c str_meth.c str_mem.c | ||
| 22 | LIBOBJ= str_err.o str_lib.o str_meth.o str_mem.o | ||
| 23 | |||
| 24 | SRC= $(LIBSRC) | ||
| 25 | |||
| 26 | #EXHEADER= store.h str_compat.h | ||
| 27 | EXHEADER= store.h | ||
| 28 | HEADER= $(EXHEADER) str_locl.h | ||
| 29 | |||
| 30 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 31 | |||
| 32 | top: | ||
| 33 | (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all) | ||
| 34 | |||
| 35 | all: lib | ||
| 36 | |||
| 37 | lib: $(LIBOBJ) | ||
| 38 | $(AR) $(LIB) $(LIBOBJ) | ||
| 39 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 40 | @touch lib | ||
| 41 | |||
| 42 | files: | ||
| 43 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 44 | |||
| 45 | links: | ||
| 46 | @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER) | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST) | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS) | ||
| 49 | |||
| 50 | install: | ||
| 51 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 52 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 53 | do \ | ||
| 54 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 55 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 56 | done; | ||
| 57 | |||
| 58 | tags: | ||
| 59 | ctags $(SRC) | ||
| 60 | |||
| 61 | tests: | ||
| 62 | |||
| 63 | lint: | ||
| 64 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 65 | |||
| 66 | depend: | ||
| 67 | @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile... | ||
| 68 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC) | ||
| 69 | |||
| 70 | dclean: | ||
| 71 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 72 | mv -f Makefile.new $(MAKEFILE) | ||
| 73 | |||
| 74 | clean: | ||
| 75 | rm -f *.o */*.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 76 | |||
| 77 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 78 | |||
| 79 | str_err.o: ../../include/openssl/bio.h ../../include/openssl/crypto.h | ||
| 80 | str_err.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 81 | str_err.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 82 | str_err.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 83 | str_err.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 84 | str_err.o: ../../include/openssl/store.h ../../include/openssl/symhacks.h | ||
| 85 | str_err.o: str_err.c | ||
| 86 | str_lib.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 87 | str_lib.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h | ||
| 88 | str_lib.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 89 | str_lib.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h | ||
| 90 | str_lib.o: ../../include/openssl/ecdsa.h ../../include/openssl/engine.h | ||
| 91 | str_lib.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 92 | str_lib.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h | ||
| 93 | str_lib.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h | ||
| 94 | str_lib.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 95 | str_lib.o: ../../include/openssl/pkcs7.h ../../include/openssl/safestack.h | ||
| 96 | str_lib.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 97 | str_lib.o: ../../include/openssl/store.h ../../include/openssl/symhacks.h | ||
| 98 | str_lib.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h | ||
| 99 | str_lib.o: str_lib.c str_locl.h | ||
| 100 | str_mem.o: ../../include/openssl/bio.h ../../include/openssl/crypto.h | ||
| 101 | str_mem.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 102 | str_mem.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 103 | str_mem.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 104 | str_mem.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 105 | str_mem.o: ../../include/openssl/store.h ../../include/openssl/symhacks.h | ||
| 106 | str_mem.o: str_locl.h str_mem.c | ||
| 107 | str_meth.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h | ||
| 108 | str_meth.o: ../../include/openssl/e_os2.h ../../include/openssl/opensslconf.h | ||
| 109 | str_meth.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 110 | str_meth.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 111 | str_meth.o: ../../include/openssl/store.h ../../include/openssl/symhacks.h | ||
| 112 | str_meth.o: str_locl.h str_meth.c | ||
diff --git a/src/lib/libssl/src/crypto/store/README b/src/lib/libssl/src/crypto/store/README new file mode 100644 index 0000000000..966168f6a5 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/README | |||
| @@ -0,0 +1,95 @@ | |||
| 1 | The STORE type | ||
| 2 | ============== | ||
| 3 | |||
| 4 | A STORE, as defined in this code section, is really a rather simple | ||
| 5 | thing which stores objects and per-object associations to a number | ||
| 6 | of attributes. What attributes are supported entirely depends on | ||
| 7 | the particular implementation of a STORE. It has some support for | ||
| 8 | generation of certain objects (for example, keys and CRLs). | ||
| 9 | |||
| 10 | |||
| 11 | Supported object types | ||
| 12 | ---------------------- | ||
| 13 | |||
| 14 | For now, the objects that are supported are the following: | ||
| 15 | |||
| 16 | X.509 certificate | ||
| 17 | X.509 CRL | ||
| 18 | private key | ||
| 19 | public key | ||
| 20 | number | ||
| 21 | arbitrary (application) data | ||
| 22 | |||
| 23 | The intention is that a STORE should be able to store everything | ||
| 24 | needed by an application that wants a cert/key store, as well as | ||
| 25 | the data a CA might need to store (this includes the serial number | ||
| 26 | counter, which explains the support for numbers). | ||
| 27 | |||
| 28 | |||
| 29 | Supported attribute types | ||
| 30 | ------------------------- | ||
| 31 | |||
| 32 | For now, the following attributes are supported: | ||
| 33 | |||
| 34 | Friendly Name - the value is a normal C string | ||
| 35 | Key ID - the value is a 160 bit SHA1 hash | ||
| 36 | Issuer Key ID - the value is a 160 bit SHA1 hash | ||
| 37 | Subject Key ID - the value is a 160 bit SHA1 hash | ||
| 38 | Issuer/Serial Hash - the value is a 160 bit SHA1 hash | ||
| 39 | Issuer - the value is a X509_NAME | ||
| 40 | Serial - the value is a BIGNUM | ||
| 41 | Subject - the value is a X509_NAME | ||
| 42 | Certificate Hash - the value is a 160 bit SHA1 hash | ||
| 43 | Email - the value is a normal C string | ||
| 44 | Filename - the value is a normal C string | ||
| 45 | |||
| 46 | It is expected that these attributes should be enough to support | ||
| 47 | the need from most, if not all, current applications. Applications | ||
| 48 | that need to do certificate verification would typically use Subject | ||
| 49 | Key ID, Issuer/Serial Hash or Subject to look up issuer certificates. | ||
| 50 | S/MIME applications would typically use Email to look up recipient | ||
| 51 | and signer certificates. | ||
| 52 | |||
| 53 | There's added support for combined sets of attributes to search for, | ||
| 54 | with the special OR attribute. | ||
| 55 | |||
| 56 | |||
| 57 | Supported basic functionality | ||
| 58 | ----------------------------- | ||
| 59 | |||
| 60 | The functions that are supported through the STORE type are these: | ||
| 61 | |||
| 62 | generate_object - for example to generate keys and CRLs | ||
| 63 | get_object - to look up one object | ||
| 64 | NOTE: this function is really rather | ||
| 65 | redundant and probably of lesser usage | ||
| 66 | than the list functions | ||
| 67 | store_object - store an object and the attributes | ||
| 68 | associated with it | ||
| 69 | modify_object - modify the attributes associated with | ||
| 70 | a specific object | ||
| 71 | revoke_object - revoke an object | ||
| 72 | NOTE: this only marks an object as | ||
| 73 | invalid, it doesn't remove the object | ||
| 74 | from the database | ||
| 75 | delete_object - remove an object from the database | ||
| 76 | list_object - list objects associated with a given | ||
| 77 | set of attributes | ||
| 78 | NOTE: this is really four functions: | ||
| 79 | list_start, list_next, list_end and | ||
| 80 | list_endp | ||
| 81 | update_store - update the internal data of the store | ||
| 82 | lock_store - lock the store | ||
| 83 | unlock_store - unlock the store | ||
| 84 | |||
| 85 | The list functions need some extra explanation: list_start is | ||
| 86 | used to set up a lookup. That's where the attributes to use in | ||
| 87 | the search are set up. It returns a search context. list_next | ||
| 88 | returns the next object searched for. list_end closes the search. | ||
| 89 | list_endp is used to check if we have reached the end. | ||
| 90 | |||
| 91 | A few words on the store functions as well: update_store is | ||
| 92 | typically used by a CA application to update the internal | ||
| 93 | structure of a database. This may for example involve automatic | ||
| 94 | removal of expired certificates. lock_store and unlock_store | ||
| 95 | are used for locking a store to allow exclusive writes. | ||
diff --git a/src/lib/libssl/src/crypto/store/store.h b/src/lib/libssl/src/crypto/store/store.h new file mode 100644 index 0000000000..64583377a9 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/store.h | |||
| @@ -0,0 +1,554 @@ | |||
| 1 | /* crypto/store/store.h -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Written by Richard Levitte (richard@levitte.org) for the OpenSSL | ||
| 3 | * project 2003. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #ifndef HEADER_STORE_H | ||
| 60 | #define HEADER_STORE_H | ||
| 61 | |||
| 62 | #include <openssl/ossl_typ.h> | ||
| 63 | #ifndef OPENSSL_NO_DEPRECATED | ||
| 64 | #include <openssl/evp.h> | ||
| 65 | #include <openssl/bn.h> | ||
| 66 | #include <openssl/x509.h> | ||
| 67 | #endif | ||
| 68 | |||
| 69 | #ifdef __cplusplus | ||
| 70 | extern "C" { | ||
| 71 | #endif | ||
| 72 | |||
| 73 | /* Already defined in ossl_typ.h */ | ||
| 74 | /* typedef struct store_st STORE; */ | ||
| 75 | /* typedef struct store_method_st STORE_METHOD; */ | ||
| 76 | |||
| 77 | |||
| 78 | /* All the following functions return 0, a negative number or NULL on error. | ||
| 79 | When everything is fine, they return a positive value or a non-NULL | ||
| 80 | pointer, all depending on their purpose. */ | ||
| 81 | |||
| 82 | /* Creators and destructor. */ | ||
| 83 | STORE *STORE_new_method(const STORE_METHOD *method); | ||
| 84 | STORE *STORE_new_engine(ENGINE *engine); | ||
| 85 | void STORE_free(STORE *ui); | ||
| 86 | |||
| 87 | |||
| 88 | /* Give a user interface parametrised control commands. This can be used to | ||
| 89 | send down an integer, a data pointer or a function pointer, as well as | ||
| 90 | be used to get information from a STORE. */ | ||
| 91 | int STORE_ctrl(STORE *store, int cmd, long i, void *p, void (*f)(void)); | ||
| 92 | |||
| 93 | /* A control to set the directory with keys and certificates. Used by the | ||
| 94 | built-in directory level method. */ | ||
| 95 | #define STORE_CTRL_SET_DIRECTORY 0x0001 | ||
| 96 | /* A control to set a file to load. Used by the built-in file level method. */ | ||
| 97 | #define STORE_CTRL_SET_FILE 0x0002 | ||
| 98 | /* A control to set a configuration file to load. Can be used by any method | ||
| 99 | that wishes to load a configuration file. */ | ||
| 100 | #define STORE_CTRL_SET_CONF_FILE 0x0003 | ||
| 101 | /* A control to set a the section of the loaded configuration file. Can be | ||
| 102 | used by any method that wishes to load a configuration file. */ | ||
| 103 | #define STORE_CTRL_SET_CONF_SECTION 0x0004 | ||
| 104 | |||
| 105 | |||
| 106 | /* Some methods may use extra data */ | ||
| 107 | #define STORE_set_app_data(s,arg) STORE_set_ex_data(s,0,arg) | ||
| 108 | #define STORE_get_app_data(s) STORE_get_ex_data(s,0) | ||
| 109 | int STORE_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, | ||
| 110 | CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func); | ||
| 111 | int STORE_set_ex_data(STORE *r,int idx,void *arg); | ||
| 112 | void *STORE_get_ex_data(STORE *r, int idx); | ||
| 113 | |||
| 114 | /* Use specific methods instead of the built-in one */ | ||
| 115 | const STORE_METHOD *STORE_get_method(STORE *store); | ||
| 116 | const STORE_METHOD *STORE_set_method(STORE *store, const STORE_METHOD *meth); | ||
| 117 | |||
| 118 | /* The standard OpenSSL methods. */ | ||
| 119 | /* This is the in-memory method. It does everything except revoking and updating, | ||
| 120 | and is of course volatile. It's used by other methods that have an in-memory | ||
| 121 | cache. */ | ||
| 122 | const STORE_METHOD *STORE_Memory(void); | ||
| 123 | #if 0 /* Not yet implemented */ | ||
| 124 | /* This is the directory store. It does everything except revoking and updating, | ||
| 125 | and uses STORE_Memory() to cache things in memory. */ | ||
| 126 | const STORE_METHOD *STORE_Directory(void); | ||
| 127 | /* This is the file store. It does everything except revoking and updating, | ||
| 128 | and uses STORE_Memory() to cache things in memory. Certificates are added | ||
| 129 | to it with the store operation, and it will only get cached certificates. */ | ||
| 130 | const STORE_METHOD *STORE_File(void); | ||
| 131 | #endif | ||
| 132 | |||
| 133 | /* Store functions take a type code for the type of data they should store | ||
| 134 | or fetch */ | ||
| 135 | typedef enum STORE_object_types | ||
| 136 | { | ||
| 137 | STORE_OBJECT_TYPE_X509_CERTIFICATE= 0x01, /* X509 * */ | ||
| 138 | STORE_OBJECT_TYPE_X509_CRL= 0x02, /* X509_CRL * */ | ||
| 139 | STORE_OBJECT_TYPE_PRIVATE_KEY= 0x03, /* EVP_PKEY * */ | ||
| 140 | STORE_OBJECT_TYPE_PUBLIC_KEY= 0x04, /* EVP_PKEY * */ | ||
| 141 | STORE_OBJECT_TYPE_NUMBER= 0x05, /* BIGNUM * */ | ||
| 142 | STORE_OBJECT_TYPE_ARBITRARY= 0x06, /* BUF_MEM * */ | ||
| 143 | STORE_OBJECT_TYPE_NUM= 0x06 /* The amount of known | ||
| 144 | object types */ | ||
| 145 | } STORE_OBJECT_TYPES; | ||
| 146 | /* List of text strings corresponding to the object types. */ | ||
| 147 | extern const char * const STORE_object_type_string[STORE_OBJECT_TYPE_NUM+1]; | ||
| 148 | |||
| 149 | /* Some store functions take a parameter list. Those parameters come with | ||
| 150 | one of the following codes. The comments following the codes below indicate | ||
| 151 | what type the value should be a pointer to. */ | ||
| 152 | typedef enum STORE_params | ||
| 153 | { | ||
| 154 | STORE_PARAM_EVP_TYPE= 0x01, /* int */ | ||
| 155 | STORE_PARAM_BITS= 0x02, /* size_t */ | ||
| 156 | STORE_PARAM_KEY_PARAMETERS= 0x03, /* ??? */ | ||
| 157 | STORE_PARAM_KEY_NO_PARAMETERS= 0x04, /* N/A */ | ||
| 158 | STORE_PARAM_AUTH_PASSPHRASE= 0x05, /* char * */ | ||
| 159 | STORE_PARAM_AUTH_KRB5_TICKET= 0x06, /* void * */ | ||
| 160 | STORE_PARAM_TYPE_NUM= 0x06 /* The amount of known | ||
| 161 | parameter types */ | ||
| 162 | } STORE_PARAM_TYPES; | ||
| 163 | /* Parameter value sizes. -1 means unknown, anything else is the required size. */ | ||
| 164 | extern const int STORE_param_sizes[STORE_PARAM_TYPE_NUM+1]; | ||
| 165 | |||
| 166 | /* Store functions take attribute lists. Those attributes come with codes. | ||
| 167 | The comments following the codes below indicate what type the value should | ||
| 168 | be a pointer to. */ | ||
| 169 | typedef enum STORE_attribs | ||
| 170 | { | ||
| 171 | STORE_ATTR_END= 0x00, | ||
| 172 | STORE_ATTR_FRIENDLYNAME= 0x01, /* C string */ | ||
| 173 | STORE_ATTR_KEYID= 0x02, /* 160 bit string (SHA1) */ | ||
| 174 | STORE_ATTR_ISSUERKEYID= 0x03, /* 160 bit string (SHA1) */ | ||
| 175 | STORE_ATTR_SUBJECTKEYID= 0x04, /* 160 bit string (SHA1) */ | ||
| 176 | STORE_ATTR_ISSUERSERIALHASH= 0x05, /* 160 bit string (SHA1) */ | ||
| 177 | STORE_ATTR_ISSUER= 0x06, /* X509_NAME * */ | ||
| 178 | STORE_ATTR_SERIAL= 0x07, /* BIGNUM * */ | ||
| 179 | STORE_ATTR_SUBJECT= 0x08, /* X509_NAME * */ | ||
| 180 | STORE_ATTR_CERTHASH= 0x09, /* 160 bit string (SHA1) */ | ||
| 181 | STORE_ATTR_EMAIL= 0x0a, /* C string */ | ||
| 182 | STORE_ATTR_FILENAME= 0x0b, /* C string */ | ||
| 183 | STORE_ATTR_TYPE_NUM= 0x0b, /* The amount of known | ||
| 184 | attribute types */ | ||
| 185 | STORE_ATTR_OR= 0xff /* This is a special | ||
| 186 | separator, which | ||
| 187 | expresses the OR | ||
| 188 | operation. */ | ||
| 189 | } STORE_ATTR_TYPES; | ||
| 190 | /* Attribute value sizes. -1 means unknown, anything else is the required size. */ | ||
| 191 | extern const int STORE_attr_sizes[STORE_ATTR_TYPE_NUM+1]; | ||
| 192 | |||
| 193 | typedef enum STORE_certificate_status | ||
| 194 | { | ||
| 195 | STORE_X509_VALID= 0x00, | ||
| 196 | STORE_X509_EXPIRED= 0x01, | ||
| 197 | STORE_X509_SUSPENDED= 0x02, | ||
| 198 | STORE_X509_REVOKED= 0x03 | ||
| 199 | } STORE_CERTIFICATE_STATUS; | ||
| 200 | |||
| 201 | /* Engine store functions will return a structure that contains all the necessary | ||
| 202 | * information, including revokation status for certificates. This is really not | ||
| 203 | * needed for application authors, as the ENGINE framework functions will extract | ||
| 204 | * the OpenSSL-specific information when at all possible. However, for engine | ||
| 205 | * authors, it's crucial to know this structure. */ | ||
| 206 | typedef struct STORE_OBJECT_st | ||
| 207 | { | ||
| 208 | STORE_OBJECT_TYPES type; | ||
| 209 | union | ||
| 210 | { | ||
| 211 | struct | ||
| 212 | { | ||
| 213 | STORE_CERTIFICATE_STATUS status; | ||
| 214 | X509 *certificate; | ||
| 215 | } x509; | ||
| 216 | X509_CRL *crl; | ||
| 217 | EVP_PKEY *key; | ||
| 218 | BIGNUM *number; | ||
| 219 | BUF_MEM *arbitrary; | ||
| 220 | } data; | ||
| 221 | } STORE_OBJECT; | ||
| 222 | DECLARE_STACK_OF(STORE_OBJECT) | ||
| 223 | STORE_OBJECT *STORE_OBJECT_new(void); | ||
| 224 | void STORE_OBJECT_free(STORE_OBJECT *data); | ||
| 225 | |||
| 226 | |||
| 227 | |||
| 228 | /* The following functions handle the storage. They return 0, a negative number | ||
| 229 | or NULL on error, anything else on success. */ | ||
| 230 | X509 *STORE_get_certificate(STORE *e, OPENSSL_ITEM attributes[], | ||
| 231 | OPENSSL_ITEM parameters[]); | ||
| 232 | int STORE_store_certificate(STORE *e, X509 *data, OPENSSL_ITEM attributes[], | ||
| 233 | OPENSSL_ITEM parameters[]); | ||
| 234 | int STORE_modify_certificate(STORE *e, OPENSSL_ITEM search_attributes[], | ||
| 235 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 236 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 237 | int STORE_revoke_certificate(STORE *e, OPENSSL_ITEM attributes[], | ||
| 238 | OPENSSL_ITEM parameters[]); | ||
| 239 | int STORE_delete_certificate(STORE *e, OPENSSL_ITEM attributes[], | ||
| 240 | OPENSSL_ITEM parameters[]); | ||
| 241 | void *STORE_list_certificate_start(STORE *e, OPENSSL_ITEM attributes[], | ||
| 242 | OPENSSL_ITEM parameters[]); | ||
| 243 | X509 *STORE_list_certificate_next(STORE *e, void *handle); | ||
| 244 | int STORE_list_certificate_end(STORE *e, void *handle); | ||
| 245 | int STORE_list_certificate_endp(STORE *e, void *handle); | ||
| 246 | EVP_PKEY *STORE_generate_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 247 | OPENSSL_ITEM parameters[]); | ||
| 248 | EVP_PKEY *STORE_get_private_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 249 | OPENSSL_ITEM parameters[]); | ||
| 250 | int STORE_store_private_key(STORE *e, EVP_PKEY *data, | ||
| 251 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 252 | int STORE_modify_private_key(STORE *e, OPENSSL_ITEM search_attributes[], | ||
| 253 | OPENSSL_ITEM add_sttributes[], OPENSSL_ITEM modify_attributes[], | ||
| 254 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 255 | int STORE_revoke_private_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 256 | OPENSSL_ITEM parameters[]); | ||
| 257 | int STORE_delete_private_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 258 | OPENSSL_ITEM parameters[]); | ||
| 259 | void *STORE_list_private_key_start(STORE *e, OPENSSL_ITEM attributes[], | ||
| 260 | OPENSSL_ITEM parameters[]); | ||
| 261 | EVP_PKEY *STORE_list_private_key_next(STORE *e, void *handle); | ||
| 262 | int STORE_list_private_key_end(STORE *e, void *handle); | ||
| 263 | int STORE_list_private_key_endp(STORE *e, void *handle); | ||
| 264 | EVP_PKEY *STORE_get_public_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 265 | OPENSSL_ITEM parameters[]); | ||
| 266 | int STORE_store_public_key(STORE *e, EVP_PKEY *data, OPENSSL_ITEM attributes[], | ||
| 267 | OPENSSL_ITEM parameters[]); | ||
| 268 | int STORE_modify_public_key(STORE *e, OPENSSL_ITEM search_attributes[], | ||
| 269 | OPENSSL_ITEM add_sttributes[], OPENSSL_ITEM modify_attributes[], | ||
| 270 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 271 | int STORE_revoke_public_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 272 | OPENSSL_ITEM parameters[]); | ||
| 273 | int STORE_delete_public_key(STORE *e, OPENSSL_ITEM attributes[], | ||
| 274 | OPENSSL_ITEM parameters[]); | ||
| 275 | void *STORE_list_public_key_start(STORE *e, OPENSSL_ITEM attributes[], | ||
| 276 | OPENSSL_ITEM parameters[]); | ||
| 277 | EVP_PKEY *STORE_list_public_key_next(STORE *e, void *handle); | ||
| 278 | int STORE_list_public_key_end(STORE *e, void *handle); | ||
| 279 | int STORE_list_public_key_endp(STORE *e, void *handle); | ||
| 280 | X509_CRL *STORE_generate_crl(STORE *e, OPENSSL_ITEM attributes[], | ||
| 281 | OPENSSL_ITEM parameters[]); | ||
| 282 | X509_CRL *STORE_get_crl(STORE *e, OPENSSL_ITEM attributes[], | ||
| 283 | OPENSSL_ITEM parameters[]); | ||
| 284 | int STORE_store_crl(STORE *e, X509_CRL *data, OPENSSL_ITEM attributes[], | ||
| 285 | OPENSSL_ITEM parameters[]); | ||
| 286 | int STORE_modify_crl(STORE *e, OPENSSL_ITEM search_attributes[], | ||
| 287 | OPENSSL_ITEM add_sttributes[], OPENSSL_ITEM modify_attributes[], | ||
| 288 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 289 | int STORE_delete_crl(STORE *e, OPENSSL_ITEM attributes[], | ||
| 290 | OPENSSL_ITEM parameters[]); | ||
| 291 | void *STORE_list_crl_start(STORE *e, OPENSSL_ITEM attributes[], | ||
| 292 | OPENSSL_ITEM parameters[]); | ||
| 293 | X509_CRL *STORE_list_crl_next(STORE *e, void *handle); | ||
| 294 | int STORE_list_crl_end(STORE *e, void *handle); | ||
| 295 | int STORE_list_crl_endp(STORE *e, void *handle); | ||
| 296 | int STORE_store_number(STORE *e, BIGNUM *data, OPENSSL_ITEM attributes[], | ||
| 297 | OPENSSL_ITEM parameters[]); | ||
| 298 | int STORE_modify_number(STORE *e, OPENSSL_ITEM search_attributes[], | ||
| 299 | OPENSSL_ITEM add_sttributes[], OPENSSL_ITEM modify_attributes[], | ||
| 300 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 301 | BIGNUM *STORE_get_number(STORE *e, OPENSSL_ITEM attributes[], | ||
| 302 | OPENSSL_ITEM parameters[]); | ||
| 303 | int STORE_delete_number(STORE *e, OPENSSL_ITEM attributes[], | ||
| 304 | OPENSSL_ITEM parameters[]); | ||
| 305 | int STORE_store_arbitrary(STORE *e, BUF_MEM *data, OPENSSL_ITEM attributes[], | ||
| 306 | OPENSSL_ITEM parameters[]); | ||
| 307 | int STORE_modify_arbitrary(STORE *e, OPENSSL_ITEM search_attributes[], | ||
| 308 | OPENSSL_ITEM add_sttributes[], OPENSSL_ITEM modify_attributes[], | ||
| 309 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 310 | BUF_MEM *STORE_get_arbitrary(STORE *e, OPENSSL_ITEM attributes[], | ||
| 311 | OPENSSL_ITEM parameters[]); | ||
| 312 | int STORE_delete_arbitrary(STORE *e, OPENSSL_ITEM attributes[], | ||
| 313 | OPENSSL_ITEM parameters[]); | ||
| 314 | |||
| 315 | |||
| 316 | /* Create and manipulate methods */ | ||
| 317 | STORE_METHOD *STORE_create_method(char *name); | ||
| 318 | void STORE_destroy_method(STORE_METHOD *store_method); | ||
| 319 | |||
| 320 | /* These callback types are use for store handlers */ | ||
| 321 | typedef int (*STORE_INITIALISE_FUNC_PTR)(STORE *); | ||
| 322 | typedef void (*STORE_CLEANUP_FUNC_PTR)(STORE *); | ||
| 323 | typedef STORE_OBJECT *(*STORE_GENERATE_OBJECT_FUNC_PTR)(STORE *, STORE_OBJECT_TYPES type, OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 324 | typedef STORE_OBJECT *(*STORE_GET_OBJECT_FUNC_PTR)(STORE *, STORE_OBJECT_TYPES type, OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 325 | typedef void *(*STORE_START_OBJECT_FUNC_PTR)(STORE *, STORE_OBJECT_TYPES type, OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 326 | typedef STORE_OBJECT *(*STORE_NEXT_OBJECT_FUNC_PTR)(STORE *, void *handle); | ||
| 327 | typedef int (*STORE_END_OBJECT_FUNC_PTR)(STORE *, void *handle); | ||
| 328 | typedef int (*STORE_HANDLE_OBJECT_FUNC_PTR)(STORE *, STORE_OBJECT_TYPES type, OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 329 | typedef int (*STORE_STORE_OBJECT_FUNC_PTR)(STORE *, STORE_OBJECT_TYPES type, STORE_OBJECT *data, OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 330 | typedef int (*STORE_MODIFY_OBJECT_FUNC_PTR)(STORE *, STORE_OBJECT_TYPES type, OPENSSL_ITEM search_attributes[], OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]); | ||
| 331 | typedef int (*STORE_GENERIC_FUNC_PTR)(STORE *, OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 332 | typedef int (*STORE_CTRL_FUNC_PTR)(STORE *, int cmd, long l, void *p, void (*f)(void)); | ||
| 333 | |||
| 334 | int STORE_method_set_initialise_function(STORE_METHOD *sm, STORE_INITIALISE_FUNC_PTR init_f); | ||
| 335 | int STORE_method_set_cleanup_function(STORE_METHOD *sm, STORE_CLEANUP_FUNC_PTR clean_f); | ||
| 336 | int STORE_method_set_generate_function(STORE_METHOD *sm, STORE_GENERATE_OBJECT_FUNC_PTR generate_f); | ||
| 337 | int STORE_method_set_get_function(STORE_METHOD *sm, STORE_GET_OBJECT_FUNC_PTR get_f); | ||
| 338 | int STORE_method_set_store_function(STORE_METHOD *sm, STORE_STORE_OBJECT_FUNC_PTR store_f); | ||
| 339 | int STORE_method_set_modify_function(STORE_METHOD *sm, STORE_MODIFY_OBJECT_FUNC_PTR store_f); | ||
| 340 | int STORE_method_set_revoke_function(STORE_METHOD *sm, STORE_HANDLE_OBJECT_FUNC_PTR revoke_f); | ||
| 341 | int STORE_method_set_delete_function(STORE_METHOD *sm, STORE_HANDLE_OBJECT_FUNC_PTR delete_f); | ||
| 342 | int STORE_method_set_list_start_function(STORE_METHOD *sm, STORE_START_OBJECT_FUNC_PTR list_start_f); | ||
| 343 | int STORE_method_set_list_next_function(STORE_METHOD *sm, STORE_NEXT_OBJECT_FUNC_PTR list_next_f); | ||
| 344 | int STORE_method_set_list_end_function(STORE_METHOD *sm, STORE_END_OBJECT_FUNC_PTR list_end_f); | ||
| 345 | int STORE_method_set_update_store_function(STORE_METHOD *sm, STORE_GENERIC_FUNC_PTR); | ||
| 346 | int STORE_method_set_lock_store_function(STORE_METHOD *sm, STORE_GENERIC_FUNC_PTR); | ||
| 347 | int STORE_method_set_unlock_store_function(STORE_METHOD *sm, STORE_GENERIC_FUNC_PTR); | ||
| 348 | int STORE_method_set_ctrl_function(STORE_METHOD *sm, STORE_CTRL_FUNC_PTR ctrl_f); | ||
| 349 | |||
| 350 | STORE_INITIALISE_FUNC_PTR STORE_method_get_initialise_function(STORE_METHOD *sm); | ||
| 351 | STORE_CLEANUP_FUNC_PTR STORE_method_get_cleanup_function(STORE_METHOD *sm); | ||
| 352 | STORE_GENERATE_OBJECT_FUNC_PTR STORE_method_get_generate_function(STORE_METHOD *sm); | ||
| 353 | STORE_GET_OBJECT_FUNC_PTR STORE_method_get_get_function(STORE_METHOD *sm); | ||
| 354 | STORE_STORE_OBJECT_FUNC_PTR STORE_method_get_store_function(STORE_METHOD *sm); | ||
| 355 | STORE_MODIFY_OBJECT_FUNC_PTR STORE_method_get_modify_function(STORE_METHOD *sm); | ||
| 356 | STORE_HANDLE_OBJECT_FUNC_PTR STORE_method_get_revoke_function(STORE_METHOD *sm); | ||
| 357 | STORE_HANDLE_OBJECT_FUNC_PTR STORE_method_get_delete_function(STORE_METHOD *sm); | ||
| 358 | STORE_START_OBJECT_FUNC_PTR STORE_method_get_list_start_function(STORE_METHOD *sm); | ||
| 359 | STORE_NEXT_OBJECT_FUNC_PTR STORE_method_get_list_next_function(STORE_METHOD *sm); | ||
| 360 | STORE_END_OBJECT_FUNC_PTR STORE_method_get_list_end_function(STORE_METHOD *sm); | ||
| 361 | STORE_GENERIC_FUNC_PTR STORE_method_get_update_store_function(STORE_METHOD *sm); | ||
| 362 | STORE_GENERIC_FUNC_PTR STORE_method_get_lock_store_function(STORE_METHOD *sm); | ||
| 363 | STORE_GENERIC_FUNC_PTR STORE_method_get_unlock_store_function(STORE_METHOD *sm); | ||
| 364 | STORE_CTRL_FUNC_PTR STORE_method_get_ctrl_function(STORE_METHOD *sm); | ||
| 365 | |||
| 366 | /* Method helper structures and functions. */ | ||
| 367 | |||
| 368 | /* This structure is the result of parsing through the information in a list | ||
| 369 | of OPENSSL_ITEMs. It stores all the necessary information in a structured | ||
| 370 | way.*/ | ||
| 371 | typedef struct STORE_attr_info_st STORE_ATTR_INFO; | ||
| 372 | |||
| 373 | /* Parse a list of OPENSSL_ITEMs and return a pointer to a STORE_ATTR_INFO. | ||
| 374 | Note that we do this in the list form, since the list of OPENSSL_ITEMs can | ||
| 375 | come in blocks separated with STORE_ATTR_OR. Note that the value returned | ||
| 376 | by STORE_parse_attrs_next() must be freed with STORE_ATTR_INFO_free(). */ | ||
| 377 | void *STORE_parse_attrs_start(OPENSSL_ITEM *attributes); | ||
| 378 | STORE_ATTR_INFO *STORE_parse_attrs_next(void *handle); | ||
| 379 | int STORE_parse_attrs_end(void *handle); | ||
| 380 | int STORE_parse_attrs_endp(void *handle); | ||
| 381 | |||
| 382 | /* Creator and destructor */ | ||
| 383 | STORE_ATTR_INFO *STORE_ATTR_INFO_new(void); | ||
| 384 | int STORE_ATTR_INFO_free(STORE_ATTR_INFO *attrs); | ||
| 385 | |||
| 386 | /* Manipulators */ | ||
| 387 | char *STORE_ATTR_INFO_get0_cstr(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code); | ||
| 388 | unsigned char *STORE_ATTR_INFO_get0_sha1str(STORE_ATTR_INFO *attrs, | ||
| 389 | STORE_ATTR_TYPES code); | ||
| 390 | X509_NAME *STORE_ATTR_INFO_get0_dn(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code); | ||
| 391 | BIGNUM *STORE_ATTR_INFO_get0_number(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code); | ||
| 392 | int STORE_ATTR_INFO_set_cstr(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 393 | char *cstr, size_t cstr_size); | ||
| 394 | int STORE_ATTR_INFO_set_sha1str(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 395 | unsigned char *sha1str, size_t sha1str_size); | ||
| 396 | int STORE_ATTR_INFO_set_dn(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 397 | X509_NAME *dn); | ||
| 398 | int STORE_ATTR_INFO_set_number(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 399 | BIGNUM *number); | ||
| 400 | int STORE_ATTR_INFO_modify_cstr(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 401 | char *cstr, size_t cstr_size); | ||
| 402 | int STORE_ATTR_INFO_modify_sha1str(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 403 | unsigned char *sha1str, size_t sha1str_size); | ||
| 404 | int STORE_ATTR_INFO_modify_dn(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 405 | X509_NAME *dn); | ||
| 406 | int STORE_ATTR_INFO_modify_number(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 407 | BIGNUM *number); | ||
| 408 | |||
| 409 | /* Compare on basis of a bit pattern formed by the STORE_ATTR_TYPES values | ||
| 410 | in each contained attribute. */ | ||
| 411 | int STORE_ATTR_INFO_compare(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b); | ||
| 412 | /* Check if the set of attributes in a is within the range of attributes | ||
| 413 | set in b. */ | ||
| 414 | int STORE_ATTR_INFO_in_range(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b); | ||
| 415 | /* Check if the set of attributes in a are also set in b. */ | ||
| 416 | int STORE_ATTR_INFO_in(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b); | ||
| 417 | /* Same as STORE_ATTR_INFO_in(), but also checks the attribute values. */ | ||
| 418 | int STORE_ATTR_INFO_in_ex(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b); | ||
| 419 | |||
| 420 | |||
| 421 | /* BEGIN ERROR CODES */ | ||
| 422 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 423 | * made after this point may be overwritten when the script is next run. | ||
| 424 | */ | ||
| 425 | void ERR_load_STORE_strings(void); | ||
| 426 | |||
| 427 | /* Error codes for the STORE functions. */ | ||
| 428 | |||
| 429 | /* Function codes. */ | ||
| 430 | #define STORE_F_MEM_DELETE 134 | ||
| 431 | #define STORE_F_MEM_GENERATE 135 | ||
| 432 | #define STORE_F_MEM_LIST_END 168 | ||
| 433 | #define STORE_F_MEM_LIST_NEXT 136 | ||
| 434 | #define STORE_F_MEM_LIST_START 137 | ||
| 435 | #define STORE_F_MEM_MODIFY 169 | ||
| 436 | #define STORE_F_MEM_STORE 138 | ||
| 437 | #define STORE_F_STORE_ATTR_INFO_GET0_CSTR 139 | ||
| 438 | #define STORE_F_STORE_ATTR_INFO_GET0_DN 140 | ||
| 439 | #define STORE_F_STORE_ATTR_INFO_GET0_NUMBER 141 | ||
| 440 | #define STORE_F_STORE_ATTR_INFO_GET0_SHA1STR 142 | ||
| 441 | #define STORE_F_STORE_ATTR_INFO_MODIFY_CSTR 143 | ||
| 442 | #define STORE_F_STORE_ATTR_INFO_MODIFY_DN 144 | ||
| 443 | #define STORE_F_STORE_ATTR_INFO_MODIFY_NUMBER 145 | ||
| 444 | #define STORE_F_STORE_ATTR_INFO_MODIFY_SHA1STR 146 | ||
| 445 | #define STORE_F_STORE_ATTR_INFO_SET_CSTR 147 | ||
| 446 | #define STORE_F_STORE_ATTR_INFO_SET_DN 148 | ||
| 447 | #define STORE_F_STORE_ATTR_INFO_SET_NUMBER 149 | ||
| 448 | #define STORE_F_STORE_ATTR_INFO_SET_SHA1STR 150 | ||
| 449 | #define STORE_F_STORE_CERTIFICATE 170 | ||
| 450 | #define STORE_F_STORE_CTRL 161 | ||
| 451 | #define STORE_F_STORE_DELETE_ARBITRARY 158 | ||
| 452 | #define STORE_F_STORE_DELETE_CERTIFICATE 102 | ||
| 453 | #define STORE_F_STORE_DELETE_CRL 103 | ||
| 454 | #define STORE_F_STORE_DELETE_NUMBER 104 | ||
| 455 | #define STORE_F_STORE_DELETE_PRIVATE_KEY 105 | ||
| 456 | #define STORE_F_STORE_DELETE_PUBLIC_KEY 106 | ||
| 457 | #define STORE_F_STORE_GENERATE_CRL 107 | ||
| 458 | #define STORE_F_STORE_GENERATE_KEY 108 | ||
| 459 | #define STORE_F_STORE_GET_ARBITRARY 159 | ||
| 460 | #define STORE_F_STORE_GET_CERTIFICATE 109 | ||
| 461 | #define STORE_F_STORE_GET_CRL 110 | ||
| 462 | #define STORE_F_STORE_GET_NUMBER 111 | ||
| 463 | #define STORE_F_STORE_GET_PRIVATE_KEY 112 | ||
| 464 | #define STORE_F_STORE_GET_PUBLIC_KEY 113 | ||
| 465 | #define STORE_F_STORE_LIST_CERTIFICATE_END 114 | ||
| 466 | #define STORE_F_STORE_LIST_CERTIFICATE_ENDP 153 | ||
| 467 | #define STORE_F_STORE_LIST_CERTIFICATE_NEXT 115 | ||
| 468 | #define STORE_F_STORE_LIST_CERTIFICATE_START 116 | ||
| 469 | #define STORE_F_STORE_LIST_CRL_END 117 | ||
| 470 | #define STORE_F_STORE_LIST_CRL_ENDP 154 | ||
| 471 | #define STORE_F_STORE_LIST_CRL_NEXT 118 | ||
| 472 | #define STORE_F_STORE_LIST_CRL_START 119 | ||
| 473 | #define STORE_F_STORE_LIST_PRIVATE_KEY_END 120 | ||
| 474 | #define STORE_F_STORE_LIST_PRIVATE_KEY_ENDP 155 | ||
| 475 | #define STORE_F_STORE_LIST_PRIVATE_KEY_NEXT 121 | ||
| 476 | #define STORE_F_STORE_LIST_PRIVATE_KEY_START 122 | ||
| 477 | #define STORE_F_STORE_LIST_PUBLIC_KEY_END 123 | ||
| 478 | #define STORE_F_STORE_LIST_PUBLIC_KEY_ENDP 156 | ||
| 479 | #define STORE_F_STORE_LIST_PUBLIC_KEY_NEXT 124 | ||
| 480 | #define STORE_F_STORE_LIST_PUBLIC_KEY_START 125 | ||
| 481 | #define STORE_F_STORE_MODIFY_ARBITRARY 162 | ||
| 482 | #define STORE_F_STORE_MODIFY_CERTIFICATE 163 | ||
| 483 | #define STORE_F_STORE_MODIFY_CRL 164 | ||
| 484 | #define STORE_F_STORE_MODIFY_NUMBER 165 | ||
| 485 | #define STORE_F_STORE_MODIFY_PRIVATE_KEY 166 | ||
| 486 | #define STORE_F_STORE_MODIFY_PUBLIC_KEY 167 | ||
| 487 | #define STORE_F_STORE_NEW_ENGINE 133 | ||
| 488 | #define STORE_F_STORE_NEW_METHOD 132 | ||
| 489 | #define STORE_F_STORE_PARSE_ATTRS_END 151 | ||
| 490 | #define STORE_F_STORE_PARSE_ATTRS_ENDP 172 | ||
| 491 | #define STORE_F_STORE_PARSE_ATTRS_NEXT 152 | ||
| 492 | #define STORE_F_STORE_PARSE_ATTRS_START 171 | ||
| 493 | #define STORE_F_STORE_REVOKE_CERTIFICATE 129 | ||
| 494 | #define STORE_F_STORE_REVOKE_PRIVATE_KEY 130 | ||
| 495 | #define STORE_F_STORE_REVOKE_PUBLIC_KEY 131 | ||
| 496 | #define STORE_F_STORE_STORE_ARBITRARY 157 | ||
| 497 | #define STORE_F_STORE_STORE_CERTIFICATE 100 | ||
| 498 | #define STORE_F_STORE_STORE_CRL 101 | ||
| 499 | #define STORE_F_STORE_STORE_NUMBER 126 | ||
| 500 | #define STORE_F_STORE_STORE_PRIVATE_KEY 127 | ||
| 501 | #define STORE_F_STORE_STORE_PUBLIC_KEY 128 | ||
| 502 | |||
| 503 | /* Reason codes. */ | ||
| 504 | #define STORE_R_ALREADY_HAS_A_VALUE 127 | ||
| 505 | #define STORE_R_FAILED_DELETING_ARBITRARY 132 | ||
| 506 | #define STORE_R_FAILED_DELETING_CERTIFICATE 100 | ||
| 507 | #define STORE_R_FAILED_DELETING_KEY 101 | ||
| 508 | #define STORE_R_FAILED_DELETING_NUMBER 102 | ||
| 509 | #define STORE_R_FAILED_GENERATING_CRL 103 | ||
| 510 | #define STORE_R_FAILED_GENERATING_KEY 104 | ||
| 511 | #define STORE_R_FAILED_GETTING_ARBITRARY 133 | ||
| 512 | #define STORE_R_FAILED_GETTING_CERTIFICATE 105 | ||
| 513 | #define STORE_R_FAILED_GETTING_KEY 106 | ||
| 514 | #define STORE_R_FAILED_GETTING_NUMBER 107 | ||
| 515 | #define STORE_R_FAILED_LISTING_CERTIFICATES 108 | ||
| 516 | #define STORE_R_FAILED_LISTING_KEYS 109 | ||
| 517 | #define STORE_R_FAILED_MODIFYING_ARBITRARY 138 | ||
| 518 | #define STORE_R_FAILED_MODIFYING_CERTIFICATE 139 | ||
| 519 | #define STORE_R_FAILED_MODIFYING_CRL 140 | ||
| 520 | #define STORE_R_FAILED_MODIFYING_NUMBER 141 | ||
| 521 | #define STORE_R_FAILED_MODIFYING_PRIVATE_KEY 142 | ||
| 522 | #define STORE_R_FAILED_MODIFYING_PUBLIC_KEY 143 | ||
| 523 | #define STORE_R_FAILED_REVOKING_CERTIFICATE 110 | ||
| 524 | #define STORE_R_FAILED_REVOKING_KEY 111 | ||
| 525 | #define STORE_R_FAILED_STORING_ARBITRARY 134 | ||
| 526 | #define STORE_R_FAILED_STORING_CERTIFICATE 112 | ||
| 527 | #define STORE_R_FAILED_STORING_KEY 113 | ||
| 528 | #define STORE_R_FAILED_STORING_NUMBER 114 | ||
| 529 | #define STORE_R_NOT_IMPLEMENTED 128 | ||
| 530 | #define STORE_R_NO_CONTROL_FUNCTION 144 | ||
| 531 | #define STORE_R_NO_DELETE_ARBITRARY_FUNCTION 135 | ||
| 532 | #define STORE_R_NO_DELETE_NUMBER_FUNCTION 115 | ||
| 533 | #define STORE_R_NO_DELETE_OBJECT_FUNCTION 116 | ||
| 534 | #define STORE_R_NO_GENERATE_CRL_FUNCTION 117 | ||
| 535 | #define STORE_R_NO_GENERATE_OBJECT_FUNCTION 118 | ||
| 536 | #define STORE_R_NO_GET_OBJECT_ARBITRARY_FUNCTION 136 | ||
| 537 | #define STORE_R_NO_GET_OBJECT_FUNCTION 119 | ||
| 538 | #define STORE_R_NO_GET_OBJECT_NUMBER_FUNCTION 120 | ||
| 539 | #define STORE_R_NO_LIST_OBJECT_ENDP_FUNCTION 131 | ||
| 540 | #define STORE_R_NO_LIST_OBJECT_END_FUNCTION 121 | ||
| 541 | #define STORE_R_NO_LIST_OBJECT_NEXT_FUNCTION 122 | ||
| 542 | #define STORE_R_NO_LIST_OBJECT_START_FUNCTION 123 | ||
| 543 | #define STORE_R_NO_MODIFY_OBJECT_FUNCTION 145 | ||
| 544 | #define STORE_R_NO_REVOKE_OBJECT_FUNCTION 124 | ||
| 545 | #define STORE_R_NO_STORE 129 | ||
| 546 | #define STORE_R_NO_STORE_OBJECT_ARBITRARY_FUNCTION 137 | ||
| 547 | #define STORE_R_NO_STORE_OBJECT_FUNCTION 125 | ||
| 548 | #define STORE_R_NO_STORE_OBJECT_NUMBER_FUNCTION 126 | ||
| 549 | #define STORE_R_NO_VALUE 130 | ||
| 550 | |||
| 551 | #ifdef __cplusplus | ||
| 552 | } | ||
| 553 | #endif | ||
| 554 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/store/str_err.c b/src/lib/libssl/src/crypto/store/str_err.c new file mode 100644 index 0000000000..6fee649822 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/str_err.c | |||
| @@ -0,0 +1,211 @@ | |||
| 1 | /* crypto/store/str_err.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* NOTE: this file was auto generated by the mkerr.pl script: any changes | ||
| 57 | * made to it will be overwritten when the script next updates this file, | ||
| 58 | * only reason strings will be preserved. | ||
| 59 | */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/store.h> | ||
| 64 | |||
| 65 | /* BEGIN ERROR CODES */ | ||
| 66 | #ifndef OPENSSL_NO_ERR | ||
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(ERR_LIB_STORE,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(ERR_LIB_STORE,0,reason) | ||
| 70 | |||
| 71 | static ERR_STRING_DATA STORE_str_functs[]= | ||
| 72 | { | ||
| 73 | {ERR_FUNC(STORE_F_MEM_DELETE), "MEM_DELETE"}, | ||
| 74 | {ERR_FUNC(STORE_F_MEM_GENERATE), "MEM_GENERATE"}, | ||
| 75 | {ERR_FUNC(STORE_F_MEM_LIST_END), "MEM_LIST_END"}, | ||
| 76 | {ERR_FUNC(STORE_F_MEM_LIST_NEXT), "MEM_LIST_NEXT"}, | ||
| 77 | {ERR_FUNC(STORE_F_MEM_LIST_START), "MEM_LIST_START"}, | ||
| 78 | {ERR_FUNC(STORE_F_MEM_MODIFY), "MEM_MODIFY"}, | ||
| 79 | {ERR_FUNC(STORE_F_MEM_STORE), "MEM_STORE"}, | ||
| 80 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_GET0_CSTR), "STORE_ATTR_INFO_get0_cstr"}, | ||
| 81 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_GET0_DN), "STORE_ATTR_INFO_get0_dn"}, | ||
| 82 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_GET0_NUMBER), "STORE_ATTR_INFO_get0_number"}, | ||
| 83 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_GET0_SHA1STR), "STORE_ATTR_INFO_get0_sha1str"}, | ||
| 84 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_MODIFY_CSTR), "STORE_ATTR_INFO_modify_cstr"}, | ||
| 85 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_MODIFY_DN), "STORE_ATTR_INFO_modify_dn"}, | ||
| 86 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_MODIFY_NUMBER), "STORE_ATTR_INFO_modify_number"}, | ||
| 87 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_MODIFY_SHA1STR), "STORE_ATTR_INFO_modify_sha1str"}, | ||
| 88 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_SET_CSTR), "STORE_ATTR_INFO_set_cstr"}, | ||
| 89 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_SET_DN), "STORE_ATTR_INFO_set_dn"}, | ||
| 90 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_SET_NUMBER), "STORE_ATTR_INFO_set_number"}, | ||
| 91 | {ERR_FUNC(STORE_F_STORE_ATTR_INFO_SET_SHA1STR), "STORE_ATTR_INFO_set_sha1str"}, | ||
| 92 | {ERR_FUNC(STORE_F_STORE_CERTIFICATE), "STORE_CERTIFICATE"}, | ||
| 93 | {ERR_FUNC(STORE_F_STORE_CTRL), "STORE_ctrl"}, | ||
| 94 | {ERR_FUNC(STORE_F_STORE_DELETE_ARBITRARY), "STORE_delete_arbitrary"}, | ||
| 95 | {ERR_FUNC(STORE_F_STORE_DELETE_CERTIFICATE), "STORE_delete_certificate"}, | ||
| 96 | {ERR_FUNC(STORE_F_STORE_DELETE_CRL), "STORE_delete_crl"}, | ||
| 97 | {ERR_FUNC(STORE_F_STORE_DELETE_NUMBER), "STORE_delete_number"}, | ||
| 98 | {ERR_FUNC(STORE_F_STORE_DELETE_PRIVATE_KEY), "STORE_delete_private_key"}, | ||
| 99 | {ERR_FUNC(STORE_F_STORE_DELETE_PUBLIC_KEY), "STORE_delete_public_key"}, | ||
| 100 | {ERR_FUNC(STORE_F_STORE_GENERATE_CRL), "STORE_generate_crl"}, | ||
| 101 | {ERR_FUNC(STORE_F_STORE_GENERATE_KEY), "STORE_generate_key"}, | ||
| 102 | {ERR_FUNC(STORE_F_STORE_GET_ARBITRARY), "STORE_get_arbitrary"}, | ||
| 103 | {ERR_FUNC(STORE_F_STORE_GET_CERTIFICATE), "STORE_get_certificate"}, | ||
| 104 | {ERR_FUNC(STORE_F_STORE_GET_CRL), "STORE_get_crl"}, | ||
| 105 | {ERR_FUNC(STORE_F_STORE_GET_NUMBER), "STORE_get_number"}, | ||
| 106 | {ERR_FUNC(STORE_F_STORE_GET_PRIVATE_KEY), "STORE_get_private_key"}, | ||
| 107 | {ERR_FUNC(STORE_F_STORE_GET_PUBLIC_KEY), "STORE_get_public_key"}, | ||
| 108 | {ERR_FUNC(STORE_F_STORE_LIST_CERTIFICATE_END), "STORE_list_certificate_end"}, | ||
| 109 | {ERR_FUNC(STORE_F_STORE_LIST_CERTIFICATE_ENDP), "STORE_list_certificate_endp"}, | ||
| 110 | {ERR_FUNC(STORE_F_STORE_LIST_CERTIFICATE_NEXT), "STORE_list_certificate_next"}, | ||
| 111 | {ERR_FUNC(STORE_F_STORE_LIST_CERTIFICATE_START), "STORE_list_certificate_start"}, | ||
| 112 | {ERR_FUNC(STORE_F_STORE_LIST_CRL_END), "STORE_list_crl_end"}, | ||
| 113 | {ERR_FUNC(STORE_F_STORE_LIST_CRL_ENDP), "STORE_list_crl_endp"}, | ||
| 114 | {ERR_FUNC(STORE_F_STORE_LIST_CRL_NEXT), "STORE_list_crl_next"}, | ||
| 115 | {ERR_FUNC(STORE_F_STORE_LIST_CRL_START), "STORE_list_crl_start"}, | ||
| 116 | {ERR_FUNC(STORE_F_STORE_LIST_PRIVATE_KEY_END), "STORE_list_private_key_end"}, | ||
| 117 | {ERR_FUNC(STORE_F_STORE_LIST_PRIVATE_KEY_ENDP), "STORE_list_private_key_endp"}, | ||
| 118 | {ERR_FUNC(STORE_F_STORE_LIST_PRIVATE_KEY_NEXT), "STORE_list_private_key_next"}, | ||
| 119 | {ERR_FUNC(STORE_F_STORE_LIST_PRIVATE_KEY_START), "STORE_list_private_key_start"}, | ||
| 120 | {ERR_FUNC(STORE_F_STORE_LIST_PUBLIC_KEY_END), "STORE_list_public_key_end"}, | ||
| 121 | {ERR_FUNC(STORE_F_STORE_LIST_PUBLIC_KEY_ENDP), "STORE_list_public_key_endp"}, | ||
| 122 | {ERR_FUNC(STORE_F_STORE_LIST_PUBLIC_KEY_NEXT), "STORE_list_public_key_next"}, | ||
| 123 | {ERR_FUNC(STORE_F_STORE_LIST_PUBLIC_KEY_START), "STORE_list_public_key_start"}, | ||
| 124 | {ERR_FUNC(STORE_F_STORE_MODIFY_ARBITRARY), "STORE_modify_arbitrary"}, | ||
| 125 | {ERR_FUNC(STORE_F_STORE_MODIFY_CERTIFICATE), "STORE_modify_certificate"}, | ||
| 126 | {ERR_FUNC(STORE_F_STORE_MODIFY_CRL), "STORE_modify_crl"}, | ||
| 127 | {ERR_FUNC(STORE_F_STORE_MODIFY_NUMBER), "STORE_modify_number"}, | ||
| 128 | {ERR_FUNC(STORE_F_STORE_MODIFY_PRIVATE_KEY), "STORE_modify_private_key"}, | ||
| 129 | {ERR_FUNC(STORE_F_STORE_MODIFY_PUBLIC_KEY), "STORE_modify_public_key"}, | ||
| 130 | {ERR_FUNC(STORE_F_STORE_NEW_ENGINE), "STORE_new_engine"}, | ||
| 131 | {ERR_FUNC(STORE_F_STORE_NEW_METHOD), "STORE_new_method"}, | ||
| 132 | {ERR_FUNC(STORE_F_STORE_PARSE_ATTRS_END), "STORE_parse_attrs_end"}, | ||
| 133 | {ERR_FUNC(STORE_F_STORE_PARSE_ATTRS_ENDP), "STORE_parse_attrs_endp"}, | ||
| 134 | {ERR_FUNC(STORE_F_STORE_PARSE_ATTRS_NEXT), "STORE_parse_attrs_next"}, | ||
| 135 | {ERR_FUNC(STORE_F_STORE_PARSE_ATTRS_START), "STORE_parse_attrs_start"}, | ||
| 136 | {ERR_FUNC(STORE_F_STORE_REVOKE_CERTIFICATE), "STORE_revoke_certificate"}, | ||
| 137 | {ERR_FUNC(STORE_F_STORE_REVOKE_PRIVATE_KEY), "STORE_revoke_private_key"}, | ||
| 138 | {ERR_FUNC(STORE_F_STORE_REVOKE_PUBLIC_KEY), "STORE_revoke_public_key"}, | ||
| 139 | {ERR_FUNC(STORE_F_STORE_STORE_ARBITRARY), "STORE_store_arbitrary"}, | ||
| 140 | {ERR_FUNC(STORE_F_STORE_STORE_CERTIFICATE), "STORE_store_certificate"}, | ||
| 141 | {ERR_FUNC(STORE_F_STORE_STORE_CRL), "STORE_store_crl"}, | ||
| 142 | {ERR_FUNC(STORE_F_STORE_STORE_NUMBER), "STORE_store_number"}, | ||
| 143 | {ERR_FUNC(STORE_F_STORE_STORE_PRIVATE_KEY), "STORE_store_private_key"}, | ||
| 144 | {ERR_FUNC(STORE_F_STORE_STORE_PUBLIC_KEY), "STORE_store_public_key"}, | ||
| 145 | {0,NULL} | ||
| 146 | }; | ||
| 147 | |||
| 148 | static ERR_STRING_DATA STORE_str_reasons[]= | ||
| 149 | { | ||
| 150 | {ERR_REASON(STORE_R_ALREADY_HAS_A_VALUE) ,"already has a value"}, | ||
| 151 | {ERR_REASON(STORE_R_FAILED_DELETING_ARBITRARY),"failed deleting arbitrary"}, | ||
| 152 | {ERR_REASON(STORE_R_FAILED_DELETING_CERTIFICATE),"failed deleting certificate"}, | ||
| 153 | {ERR_REASON(STORE_R_FAILED_DELETING_KEY) ,"failed deleting key"}, | ||
| 154 | {ERR_REASON(STORE_R_FAILED_DELETING_NUMBER),"failed deleting number"}, | ||
| 155 | {ERR_REASON(STORE_R_FAILED_GENERATING_CRL),"failed generating crl"}, | ||
| 156 | {ERR_REASON(STORE_R_FAILED_GENERATING_KEY),"failed generating key"}, | ||
| 157 | {ERR_REASON(STORE_R_FAILED_GETTING_ARBITRARY),"failed getting arbitrary"}, | ||
| 158 | {ERR_REASON(STORE_R_FAILED_GETTING_CERTIFICATE),"failed getting certificate"}, | ||
| 159 | {ERR_REASON(STORE_R_FAILED_GETTING_KEY) ,"failed getting key"}, | ||
| 160 | {ERR_REASON(STORE_R_FAILED_GETTING_NUMBER),"failed getting number"}, | ||
| 161 | {ERR_REASON(STORE_R_FAILED_LISTING_CERTIFICATES),"failed listing certificates"}, | ||
| 162 | {ERR_REASON(STORE_R_FAILED_LISTING_KEYS) ,"failed listing keys"}, | ||
| 163 | {ERR_REASON(STORE_R_FAILED_MODIFYING_ARBITRARY),"failed modifying arbitrary"}, | ||
| 164 | {ERR_REASON(STORE_R_FAILED_MODIFYING_CERTIFICATE),"failed modifying certificate"}, | ||
| 165 | {ERR_REASON(STORE_R_FAILED_MODIFYING_CRL),"failed modifying crl"}, | ||
| 166 | {ERR_REASON(STORE_R_FAILED_MODIFYING_NUMBER),"failed modifying number"}, | ||
| 167 | {ERR_REASON(STORE_R_FAILED_MODIFYING_PRIVATE_KEY),"failed modifying private key"}, | ||
| 168 | {ERR_REASON(STORE_R_FAILED_MODIFYING_PUBLIC_KEY),"failed modifying public key"}, | ||
| 169 | {ERR_REASON(STORE_R_FAILED_REVOKING_CERTIFICATE),"failed revoking certificate"}, | ||
| 170 | {ERR_REASON(STORE_R_FAILED_REVOKING_KEY) ,"failed revoking key"}, | ||
| 171 | {ERR_REASON(STORE_R_FAILED_STORING_ARBITRARY),"failed storing arbitrary"}, | ||
| 172 | {ERR_REASON(STORE_R_FAILED_STORING_CERTIFICATE),"failed storing certificate"}, | ||
| 173 | {ERR_REASON(STORE_R_FAILED_STORING_KEY) ,"failed storing key"}, | ||
| 174 | {ERR_REASON(STORE_R_FAILED_STORING_NUMBER),"failed storing number"}, | ||
| 175 | {ERR_REASON(STORE_R_NOT_IMPLEMENTED) ,"not implemented"}, | ||
| 176 | {ERR_REASON(STORE_R_NO_CONTROL_FUNCTION) ,"no control function"}, | ||
| 177 | {ERR_REASON(STORE_R_NO_DELETE_ARBITRARY_FUNCTION),"no delete arbitrary function"}, | ||
| 178 | {ERR_REASON(STORE_R_NO_DELETE_NUMBER_FUNCTION),"no delete number function"}, | ||
| 179 | {ERR_REASON(STORE_R_NO_DELETE_OBJECT_FUNCTION),"no delete object function"}, | ||
| 180 | {ERR_REASON(STORE_R_NO_GENERATE_CRL_FUNCTION),"no generate crl function"}, | ||
| 181 | {ERR_REASON(STORE_R_NO_GENERATE_OBJECT_FUNCTION),"no generate object function"}, | ||
| 182 | {ERR_REASON(STORE_R_NO_GET_OBJECT_ARBITRARY_FUNCTION),"no get object arbitrary function"}, | ||
| 183 | {ERR_REASON(STORE_R_NO_GET_OBJECT_FUNCTION),"no get object function"}, | ||
| 184 | {ERR_REASON(STORE_R_NO_GET_OBJECT_NUMBER_FUNCTION),"no get object number function"}, | ||
| 185 | {ERR_REASON(STORE_R_NO_LIST_OBJECT_ENDP_FUNCTION),"no list object endp function"}, | ||
| 186 | {ERR_REASON(STORE_R_NO_LIST_OBJECT_END_FUNCTION),"no list object end function"}, | ||
| 187 | {ERR_REASON(STORE_R_NO_LIST_OBJECT_NEXT_FUNCTION),"no list object next function"}, | ||
| 188 | {ERR_REASON(STORE_R_NO_LIST_OBJECT_START_FUNCTION),"no list object start function"}, | ||
| 189 | {ERR_REASON(STORE_R_NO_MODIFY_OBJECT_FUNCTION),"no modify object function"}, | ||
| 190 | {ERR_REASON(STORE_R_NO_REVOKE_OBJECT_FUNCTION),"no revoke object function"}, | ||
| 191 | {ERR_REASON(STORE_R_NO_STORE) ,"no store"}, | ||
| 192 | {ERR_REASON(STORE_R_NO_STORE_OBJECT_ARBITRARY_FUNCTION),"no store object arbitrary function"}, | ||
| 193 | {ERR_REASON(STORE_R_NO_STORE_OBJECT_FUNCTION),"no store object function"}, | ||
| 194 | {ERR_REASON(STORE_R_NO_STORE_OBJECT_NUMBER_FUNCTION),"no store object number function"}, | ||
| 195 | {ERR_REASON(STORE_R_NO_VALUE) ,"no value"}, | ||
| 196 | {0,NULL} | ||
| 197 | }; | ||
| 198 | |||
| 199 | #endif | ||
| 200 | |||
| 201 | void ERR_load_STORE_strings(void) | ||
| 202 | { | ||
| 203 | #ifndef OPENSSL_NO_ERR | ||
| 204 | |||
| 205 | if (ERR_func_error_string(STORE_str_functs[0].error) == NULL) | ||
| 206 | { | ||
| 207 | ERR_load_strings(0,STORE_str_functs); | ||
| 208 | ERR_load_strings(0,STORE_str_reasons); | ||
| 209 | } | ||
| 210 | #endif | ||
| 211 | } | ||
diff --git a/src/lib/libssl/src/crypto/store/str_lib.c b/src/lib/libssl/src/crypto/store/str_lib.c new file mode 100644 index 0000000000..32ae5bd395 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/str_lib.c | |||
| @@ -0,0 +1,1824 @@ | |||
| 1 | /* crypto/store/str_lib.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Written by Richard Levitte (richard@levitte.org) for the OpenSSL | ||
| 3 | * project 2003. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <string.h> | ||
| 60 | #include <openssl/bn.h> | ||
| 61 | #include <openssl/err.h> | ||
| 62 | #ifndef OPENSSL_NO_ENGINE | ||
| 63 | #include <openssl/engine.h> | ||
| 64 | #endif | ||
| 65 | #include <openssl/sha.h> | ||
| 66 | #include <openssl/x509.h> | ||
| 67 | #include "str_locl.h" | ||
| 68 | |||
| 69 | const char * const STORE_object_type_string[STORE_OBJECT_TYPE_NUM+1] = | ||
| 70 | { | ||
| 71 | 0, | ||
| 72 | "X.509 Certificate", | ||
| 73 | "X.509 CRL", | ||
| 74 | "Private Key", | ||
| 75 | "Public Key", | ||
| 76 | "Number", | ||
| 77 | "Arbitrary Data" | ||
| 78 | }; | ||
| 79 | |||
| 80 | const int STORE_param_sizes[STORE_PARAM_TYPE_NUM+1] = | ||
| 81 | { | ||
| 82 | 0, | ||
| 83 | sizeof(int), /* EVP_TYPE */ | ||
| 84 | sizeof(size_t), /* BITS */ | ||
| 85 | -1, /* KEY_PARAMETERS */ | ||
| 86 | 0 /* KEY_NO_PARAMETERS */ | ||
| 87 | }; | ||
| 88 | |||
| 89 | const int STORE_attr_sizes[STORE_ATTR_TYPE_NUM+1] = | ||
| 90 | { | ||
| 91 | 0, | ||
| 92 | -1, /* FRIENDLYNAME: C string */ | ||
| 93 | SHA_DIGEST_LENGTH, /* KEYID: SHA1 digest, 160 bits */ | ||
| 94 | SHA_DIGEST_LENGTH, /* ISSUERKEYID: SHA1 digest, 160 bits */ | ||
| 95 | SHA_DIGEST_LENGTH, /* SUBJECTKEYID: SHA1 digest, 160 bits */ | ||
| 96 | SHA_DIGEST_LENGTH, /* ISSUERSERIALHASH: SHA1 digest, 160 bits */ | ||
| 97 | sizeof(X509_NAME *), /* ISSUER: X509_NAME * */ | ||
| 98 | sizeof(BIGNUM *), /* SERIAL: BIGNUM * */ | ||
| 99 | sizeof(X509_NAME *), /* SUBJECT: X509_NAME * */ | ||
| 100 | SHA_DIGEST_LENGTH, /* CERTHASH: SHA1 digest, 160 bits */ | ||
| 101 | -1, /* EMAIL: C string */ | ||
| 102 | -1, /* FILENAME: C string */ | ||
| 103 | }; | ||
| 104 | |||
| 105 | STORE *STORE_new_method(const STORE_METHOD *method) | ||
| 106 | { | ||
| 107 | STORE *ret; | ||
| 108 | |||
| 109 | if (method == NULL) | ||
| 110 | { | ||
| 111 | STOREerr(STORE_F_STORE_NEW_METHOD,ERR_R_PASSED_NULL_PARAMETER); | ||
| 112 | return NULL; | ||
| 113 | } | ||
| 114 | |||
| 115 | ret=(STORE *)OPENSSL_malloc(sizeof(STORE)); | ||
| 116 | if (ret == NULL) | ||
| 117 | { | ||
| 118 | STOREerr(STORE_F_STORE_NEW_METHOD,ERR_R_MALLOC_FAILURE); | ||
| 119 | return NULL; | ||
| 120 | } | ||
| 121 | |||
| 122 | ret->meth=method; | ||
| 123 | |||
| 124 | CRYPTO_new_ex_data(CRYPTO_EX_INDEX_STORE, ret, &ret->ex_data); | ||
| 125 | if (ret->meth->init && !ret->meth->init(ret)) | ||
| 126 | { | ||
| 127 | STORE_free(ret); | ||
| 128 | ret = NULL; | ||
| 129 | } | ||
| 130 | return ret; | ||
| 131 | } | ||
| 132 | |||
| 133 | STORE *STORE_new_engine(ENGINE *engine) | ||
| 134 | { | ||
| 135 | STORE *ret = NULL; | ||
| 136 | ENGINE *e = engine; | ||
| 137 | const STORE_METHOD *meth = 0; | ||
| 138 | |||
| 139 | #ifdef OPENSSL_NO_ENGINE | ||
| 140 | e = NULL; | ||
| 141 | #else | ||
| 142 | if (engine) | ||
| 143 | { | ||
| 144 | if (!ENGINE_init(engine)) | ||
| 145 | { | ||
| 146 | STOREerr(STORE_F_STORE_NEW_ENGINE, ERR_R_ENGINE_LIB); | ||
| 147 | return NULL; | ||
| 148 | } | ||
| 149 | e = engine; | ||
| 150 | } | ||
| 151 | else | ||
| 152 | { | ||
| 153 | STOREerr(STORE_F_STORE_NEW_ENGINE,ERR_R_PASSED_NULL_PARAMETER); | ||
| 154 | return NULL; | ||
| 155 | } | ||
| 156 | if(e) | ||
| 157 | { | ||
| 158 | meth = ENGINE_get_STORE(e); | ||
| 159 | if(!meth) | ||
| 160 | { | ||
| 161 | STOREerr(STORE_F_STORE_NEW_ENGINE, | ||
| 162 | ERR_R_ENGINE_LIB); | ||
| 163 | ENGINE_finish(e); | ||
| 164 | return NULL; | ||
| 165 | } | ||
| 166 | } | ||
| 167 | #endif | ||
| 168 | |||
| 169 | ret = STORE_new_method(meth); | ||
| 170 | if (ret == NULL) | ||
| 171 | { | ||
| 172 | STOREerr(STORE_F_STORE_NEW_ENGINE,ERR_R_STORE_LIB); | ||
| 173 | return NULL; | ||
| 174 | } | ||
| 175 | |||
| 176 | ret->engine = e; | ||
| 177 | |||
| 178 | return(ret); | ||
| 179 | } | ||
| 180 | |||
| 181 | void STORE_free(STORE *store) | ||
| 182 | { | ||
| 183 | if (store == NULL) | ||
| 184 | return; | ||
| 185 | if (store->meth->clean) | ||
| 186 | store->meth->clean(store); | ||
| 187 | CRYPTO_free_ex_data(CRYPTO_EX_INDEX_STORE, store, &store->ex_data); | ||
| 188 | OPENSSL_free(store); | ||
| 189 | } | ||
| 190 | |||
| 191 | int STORE_ctrl(STORE *store, int cmd, long i, void *p, void (*f)(void)) | ||
| 192 | { | ||
| 193 | if (store == NULL) | ||
| 194 | { | ||
| 195 | STOREerr(STORE_F_STORE_CTRL,ERR_R_PASSED_NULL_PARAMETER); | ||
| 196 | return 0; | ||
| 197 | } | ||
| 198 | if (store->meth->ctrl) | ||
| 199 | return store->meth->ctrl(store, cmd, i, p, f); | ||
| 200 | STOREerr(STORE_F_STORE_CTRL,STORE_R_NO_CONTROL_FUNCTION); | ||
| 201 | return 0; | ||
| 202 | } | ||
| 203 | |||
| 204 | |||
| 205 | int STORE_get_ex_new_index(long argl, void *argp, CRYPTO_EX_new *new_func, | ||
| 206 | CRYPTO_EX_dup *dup_func, CRYPTO_EX_free *free_func) | ||
| 207 | { | ||
| 208 | return CRYPTO_get_ex_new_index(CRYPTO_EX_INDEX_STORE, argl, argp, | ||
| 209 | new_func, dup_func, free_func); | ||
| 210 | } | ||
| 211 | |||
| 212 | int STORE_set_ex_data(STORE *r, int idx, void *arg) | ||
| 213 | { | ||
| 214 | return(CRYPTO_set_ex_data(&r->ex_data,idx,arg)); | ||
| 215 | } | ||
| 216 | |||
| 217 | void *STORE_get_ex_data(STORE *r, int idx) | ||
| 218 | { | ||
| 219 | return(CRYPTO_get_ex_data(&r->ex_data,idx)); | ||
| 220 | } | ||
| 221 | |||
| 222 | const STORE_METHOD *STORE_get_method(STORE *store) | ||
| 223 | { | ||
| 224 | return store->meth; | ||
| 225 | } | ||
| 226 | |||
| 227 | const STORE_METHOD *STORE_set_method(STORE *store, const STORE_METHOD *meth) | ||
| 228 | { | ||
| 229 | store->meth=meth; | ||
| 230 | return store->meth; | ||
| 231 | } | ||
| 232 | |||
| 233 | |||
| 234 | /* API helpers */ | ||
| 235 | |||
| 236 | #define check_store(s,fncode,fnname,fnerrcode) \ | ||
| 237 | do \ | ||
| 238 | { \ | ||
| 239 | if ((s) == NULL || (s)->meth == NULL) \ | ||
| 240 | { \ | ||
| 241 | STOREerr((fncode), ERR_R_PASSED_NULL_PARAMETER); \ | ||
| 242 | return 0; \ | ||
| 243 | } \ | ||
| 244 | if ((s)->meth->fnname == NULL) \ | ||
| 245 | { \ | ||
| 246 | STOREerr((fncode), (fnerrcode)); \ | ||
| 247 | return 0; \ | ||
| 248 | } \ | ||
| 249 | } \ | ||
| 250 | while(0) | ||
| 251 | |||
| 252 | /* API functions */ | ||
| 253 | |||
| 254 | X509 *STORE_get_certificate(STORE *s, OPENSSL_ITEM attributes[], | ||
| 255 | OPENSSL_ITEM parameters[]) | ||
| 256 | { | ||
| 257 | STORE_OBJECT *object; | ||
| 258 | X509 *x; | ||
| 259 | |||
| 260 | check_store(s,STORE_F_STORE_GET_CERTIFICATE, | ||
| 261 | get_object,STORE_R_NO_GET_OBJECT_FUNCTION); | ||
| 262 | |||
| 263 | object = s->meth->get_object(s, STORE_OBJECT_TYPE_X509_CERTIFICATE, | ||
| 264 | attributes, parameters); | ||
| 265 | if (!object || !object->data.x509.certificate) | ||
| 266 | { | ||
| 267 | STOREerr(STORE_F_STORE_GET_CERTIFICATE, | ||
| 268 | STORE_R_FAILED_GETTING_CERTIFICATE); | ||
| 269 | return 0; | ||
| 270 | } | ||
| 271 | CRYPTO_add(&object->data.x509.certificate->references,1,CRYPTO_LOCK_X509); | ||
| 272 | #ifdef REF_PRINT | ||
| 273 | REF_PRINT("X509",data); | ||
| 274 | #endif | ||
| 275 | x = object->data.x509.certificate; | ||
| 276 | STORE_OBJECT_free(object); | ||
| 277 | return x; | ||
| 278 | } | ||
| 279 | |||
| 280 | int STORE_store_certificate(STORE *s, X509 *data, OPENSSL_ITEM attributes[], | ||
| 281 | OPENSSL_ITEM parameters[]) | ||
| 282 | { | ||
| 283 | STORE_OBJECT *object; | ||
| 284 | int i; | ||
| 285 | |||
| 286 | check_store(s,STORE_F_STORE_CERTIFICATE, | ||
| 287 | store_object,STORE_R_NO_STORE_OBJECT_FUNCTION); | ||
| 288 | |||
| 289 | object = STORE_OBJECT_new(); | ||
| 290 | if (!object) | ||
| 291 | { | ||
| 292 | STOREerr(STORE_F_STORE_STORE_CERTIFICATE, | ||
| 293 | ERR_R_MALLOC_FAILURE); | ||
| 294 | return 0; | ||
| 295 | } | ||
| 296 | |||
| 297 | CRYPTO_add(&data->references,1,CRYPTO_LOCK_X509); | ||
| 298 | #ifdef REF_PRINT | ||
| 299 | REF_PRINT("X509",data); | ||
| 300 | #endif | ||
| 301 | object->data.x509.certificate = data; | ||
| 302 | |||
| 303 | i = s->meth->store_object(s, STORE_OBJECT_TYPE_X509_CERTIFICATE, | ||
| 304 | object, attributes, parameters); | ||
| 305 | |||
| 306 | STORE_OBJECT_free(object); | ||
| 307 | |||
| 308 | if (!i) | ||
| 309 | { | ||
| 310 | STOREerr(STORE_F_STORE_STORE_CERTIFICATE, | ||
| 311 | STORE_R_FAILED_STORING_CERTIFICATE); | ||
| 312 | return 0; | ||
| 313 | } | ||
| 314 | return 1; | ||
| 315 | } | ||
| 316 | |||
| 317 | int STORE_modify_certificate(STORE *s, OPENSSL_ITEM search_attributes[], | ||
| 318 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 319 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]) | ||
| 320 | { | ||
| 321 | check_store(s,STORE_F_STORE_MODIFY_CERTIFICATE, | ||
| 322 | modify_object,STORE_R_NO_MODIFY_OBJECT_FUNCTION); | ||
| 323 | |||
| 324 | if (!s->meth->modify_object(s, STORE_OBJECT_TYPE_X509_CERTIFICATE, | ||
| 325 | search_attributes, add_attributes, modify_attributes, | ||
| 326 | delete_attributes, parameters)) | ||
| 327 | { | ||
| 328 | STOREerr(STORE_F_STORE_MODIFY_CERTIFICATE, | ||
| 329 | STORE_R_FAILED_MODIFYING_CERTIFICATE); | ||
| 330 | return 0; | ||
| 331 | } | ||
| 332 | return 1; | ||
| 333 | } | ||
| 334 | |||
| 335 | int STORE_revoke_certificate(STORE *s, OPENSSL_ITEM attributes[], | ||
| 336 | OPENSSL_ITEM parameters[]) | ||
| 337 | { | ||
| 338 | check_store(s,STORE_F_STORE_REVOKE_CERTIFICATE, | ||
| 339 | revoke_object,STORE_R_NO_REVOKE_OBJECT_FUNCTION); | ||
| 340 | |||
| 341 | if (!s->meth->revoke_object(s, STORE_OBJECT_TYPE_X509_CERTIFICATE, | ||
| 342 | attributes, parameters)) | ||
| 343 | { | ||
| 344 | STOREerr(STORE_F_STORE_REVOKE_CERTIFICATE, | ||
| 345 | STORE_R_FAILED_REVOKING_CERTIFICATE); | ||
| 346 | return 0; | ||
| 347 | } | ||
| 348 | return 1; | ||
| 349 | } | ||
| 350 | |||
| 351 | int STORE_delete_certificate(STORE *s, OPENSSL_ITEM attributes[], | ||
| 352 | OPENSSL_ITEM parameters[]) | ||
| 353 | { | ||
| 354 | check_store(s,STORE_F_STORE_DELETE_CERTIFICATE, | ||
| 355 | delete_object,STORE_R_NO_DELETE_OBJECT_FUNCTION); | ||
| 356 | |||
| 357 | if (!s->meth->delete_object(s, STORE_OBJECT_TYPE_X509_CERTIFICATE, | ||
| 358 | attributes, parameters)) | ||
| 359 | { | ||
| 360 | STOREerr(STORE_F_STORE_DELETE_CERTIFICATE, | ||
| 361 | STORE_R_FAILED_DELETING_CERTIFICATE); | ||
| 362 | return 0; | ||
| 363 | } | ||
| 364 | return 1; | ||
| 365 | } | ||
| 366 | |||
| 367 | void *STORE_list_certificate_start(STORE *s, OPENSSL_ITEM attributes[], | ||
| 368 | OPENSSL_ITEM parameters[]) | ||
| 369 | { | ||
| 370 | void *handle; | ||
| 371 | |||
| 372 | check_store(s,STORE_F_STORE_LIST_CERTIFICATE_START, | ||
| 373 | list_object_start,STORE_R_NO_LIST_OBJECT_START_FUNCTION); | ||
| 374 | |||
| 375 | handle = s->meth->list_object_start(s, | ||
| 376 | STORE_OBJECT_TYPE_X509_CERTIFICATE, attributes, parameters); | ||
| 377 | if (!handle) | ||
| 378 | { | ||
| 379 | STOREerr(STORE_F_STORE_LIST_CERTIFICATE_START, | ||
| 380 | STORE_R_FAILED_LISTING_CERTIFICATES); | ||
| 381 | return 0; | ||
| 382 | } | ||
| 383 | return handle; | ||
| 384 | } | ||
| 385 | |||
| 386 | X509 *STORE_list_certificate_next(STORE *s, void *handle) | ||
| 387 | { | ||
| 388 | STORE_OBJECT *object; | ||
| 389 | X509 *x; | ||
| 390 | |||
| 391 | check_store(s,STORE_F_STORE_LIST_CERTIFICATE_NEXT, | ||
| 392 | list_object_next,STORE_R_NO_LIST_OBJECT_NEXT_FUNCTION); | ||
| 393 | |||
| 394 | object = s->meth->list_object_next(s, handle); | ||
| 395 | if (!object || !object->data.x509.certificate) | ||
| 396 | { | ||
| 397 | STOREerr(STORE_F_STORE_LIST_CERTIFICATE_NEXT, | ||
| 398 | STORE_R_FAILED_LISTING_CERTIFICATES); | ||
| 399 | return 0; | ||
| 400 | } | ||
| 401 | CRYPTO_add(&object->data.x509.certificate->references,1,CRYPTO_LOCK_X509); | ||
| 402 | #ifdef REF_PRINT | ||
| 403 | REF_PRINT("X509",data); | ||
| 404 | #endif | ||
| 405 | x = object->data.x509.certificate; | ||
| 406 | STORE_OBJECT_free(object); | ||
| 407 | return x; | ||
| 408 | } | ||
| 409 | |||
| 410 | int STORE_list_certificate_end(STORE *s, void *handle) | ||
| 411 | { | ||
| 412 | check_store(s,STORE_F_STORE_LIST_CERTIFICATE_END, | ||
| 413 | list_object_end,STORE_R_NO_LIST_OBJECT_END_FUNCTION); | ||
| 414 | |||
| 415 | if (!s->meth->list_object_end(s, handle)) | ||
| 416 | { | ||
| 417 | STOREerr(STORE_F_STORE_LIST_CERTIFICATE_END, | ||
| 418 | STORE_R_FAILED_LISTING_CERTIFICATES); | ||
| 419 | return 0; | ||
| 420 | } | ||
| 421 | return 1; | ||
| 422 | } | ||
| 423 | |||
| 424 | int STORE_list_certificate_endp(STORE *s, void *handle) | ||
| 425 | { | ||
| 426 | check_store(s,STORE_F_STORE_LIST_CERTIFICATE_ENDP, | ||
| 427 | list_object_endp,STORE_R_NO_LIST_OBJECT_ENDP_FUNCTION); | ||
| 428 | |||
| 429 | if (!s->meth->list_object_endp(s, handle)) | ||
| 430 | { | ||
| 431 | STOREerr(STORE_F_STORE_LIST_CERTIFICATE_ENDP, | ||
| 432 | STORE_R_FAILED_LISTING_CERTIFICATES); | ||
| 433 | return 0; | ||
| 434 | } | ||
| 435 | return 1; | ||
| 436 | } | ||
| 437 | |||
| 438 | EVP_PKEY *STORE_generate_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 439 | OPENSSL_ITEM parameters[]) | ||
| 440 | { | ||
| 441 | STORE_OBJECT *object; | ||
| 442 | EVP_PKEY *pkey; | ||
| 443 | |||
| 444 | check_store(s,STORE_F_STORE_GENERATE_KEY, | ||
| 445 | generate_object,STORE_R_NO_GENERATE_OBJECT_FUNCTION); | ||
| 446 | |||
| 447 | object = s->meth->generate_object(s, STORE_OBJECT_TYPE_PRIVATE_KEY, | ||
| 448 | attributes, parameters); | ||
| 449 | if (!object || !object->data.key) | ||
| 450 | { | ||
| 451 | STOREerr(STORE_F_STORE_GENERATE_KEY, | ||
| 452 | STORE_R_FAILED_GENERATING_KEY); | ||
| 453 | return 0; | ||
| 454 | } | ||
| 455 | CRYPTO_add(&object->data.key->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 456 | #ifdef REF_PRINT | ||
| 457 | REF_PRINT("EVP_PKEY",data); | ||
| 458 | #endif | ||
| 459 | pkey = object->data.key; | ||
| 460 | STORE_OBJECT_free(object); | ||
| 461 | return pkey; | ||
| 462 | } | ||
| 463 | |||
| 464 | EVP_PKEY *STORE_get_private_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 465 | OPENSSL_ITEM parameters[]) | ||
| 466 | { | ||
| 467 | STORE_OBJECT *object; | ||
| 468 | EVP_PKEY *pkey; | ||
| 469 | |||
| 470 | check_store(s,STORE_F_STORE_GET_PRIVATE_KEY, | ||
| 471 | get_object,STORE_R_NO_GET_OBJECT_FUNCTION); | ||
| 472 | |||
| 473 | object = s->meth->get_object(s, STORE_OBJECT_TYPE_PRIVATE_KEY, | ||
| 474 | attributes, parameters); | ||
| 475 | if (!object || !object->data.key || !object->data.key) | ||
| 476 | { | ||
| 477 | STOREerr(STORE_F_STORE_GET_PRIVATE_KEY, | ||
| 478 | STORE_R_FAILED_GETTING_KEY); | ||
| 479 | return 0; | ||
| 480 | } | ||
| 481 | CRYPTO_add(&object->data.key->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 482 | #ifdef REF_PRINT | ||
| 483 | REF_PRINT("EVP_PKEY",data); | ||
| 484 | #endif | ||
| 485 | pkey = object->data.key; | ||
| 486 | STORE_OBJECT_free(object); | ||
| 487 | return pkey; | ||
| 488 | } | ||
| 489 | |||
| 490 | int STORE_store_private_key(STORE *s, EVP_PKEY *data, OPENSSL_ITEM attributes[], | ||
| 491 | OPENSSL_ITEM parameters[]) | ||
| 492 | { | ||
| 493 | STORE_OBJECT *object; | ||
| 494 | int i; | ||
| 495 | |||
| 496 | check_store(s,STORE_F_STORE_STORE_PRIVATE_KEY, | ||
| 497 | store_object,STORE_R_NO_STORE_OBJECT_FUNCTION); | ||
| 498 | |||
| 499 | object = STORE_OBJECT_new(); | ||
| 500 | if (!object) | ||
| 501 | { | ||
| 502 | STOREerr(STORE_F_STORE_STORE_PRIVATE_KEY, | ||
| 503 | ERR_R_MALLOC_FAILURE); | ||
| 504 | return 0; | ||
| 505 | } | ||
| 506 | object->data.key = EVP_PKEY_new(); | ||
| 507 | if (!object->data.key) | ||
| 508 | { | ||
| 509 | STOREerr(STORE_F_STORE_STORE_PRIVATE_KEY, | ||
| 510 | ERR_R_MALLOC_FAILURE); | ||
| 511 | return 0; | ||
| 512 | } | ||
| 513 | |||
| 514 | CRYPTO_add(&data->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 515 | #ifdef REF_PRINT | ||
| 516 | REF_PRINT("EVP_PKEY",data); | ||
| 517 | #endif | ||
| 518 | object->data.key = data; | ||
| 519 | |||
| 520 | i = s->meth->store_object(s, STORE_OBJECT_TYPE_PRIVATE_KEY, object, | ||
| 521 | attributes, parameters); | ||
| 522 | |||
| 523 | STORE_OBJECT_free(object); | ||
| 524 | |||
| 525 | if (!i) | ||
| 526 | { | ||
| 527 | STOREerr(STORE_F_STORE_STORE_PRIVATE_KEY, | ||
| 528 | STORE_R_FAILED_STORING_KEY); | ||
| 529 | return 0; | ||
| 530 | } | ||
| 531 | return i; | ||
| 532 | } | ||
| 533 | |||
| 534 | int STORE_modify_private_key(STORE *s, OPENSSL_ITEM search_attributes[], | ||
| 535 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 536 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]) | ||
| 537 | { | ||
| 538 | check_store(s,STORE_F_STORE_MODIFY_PRIVATE_KEY, | ||
| 539 | modify_object,STORE_R_NO_MODIFY_OBJECT_FUNCTION); | ||
| 540 | |||
| 541 | if (!s->meth->modify_object(s, STORE_OBJECT_TYPE_PRIVATE_KEY, | ||
| 542 | search_attributes, add_attributes, modify_attributes, | ||
| 543 | delete_attributes, parameters)) | ||
| 544 | { | ||
| 545 | STOREerr(STORE_F_STORE_MODIFY_PRIVATE_KEY, | ||
| 546 | STORE_R_FAILED_MODIFYING_PRIVATE_KEY); | ||
| 547 | return 0; | ||
| 548 | } | ||
| 549 | return 1; | ||
| 550 | } | ||
| 551 | |||
| 552 | int STORE_revoke_private_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 553 | OPENSSL_ITEM parameters[]) | ||
| 554 | { | ||
| 555 | int i; | ||
| 556 | |||
| 557 | check_store(s,STORE_F_STORE_REVOKE_PRIVATE_KEY, | ||
| 558 | revoke_object,STORE_R_NO_REVOKE_OBJECT_FUNCTION); | ||
| 559 | |||
| 560 | i = s->meth->revoke_object(s, STORE_OBJECT_TYPE_PRIVATE_KEY, | ||
| 561 | attributes, parameters); | ||
| 562 | |||
| 563 | if (!i) | ||
| 564 | { | ||
| 565 | STOREerr(STORE_F_STORE_REVOKE_PRIVATE_KEY, | ||
| 566 | STORE_R_FAILED_REVOKING_KEY); | ||
| 567 | return 0; | ||
| 568 | } | ||
| 569 | return i; | ||
| 570 | } | ||
| 571 | |||
| 572 | int STORE_delete_private_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 573 | OPENSSL_ITEM parameters[]) | ||
| 574 | { | ||
| 575 | check_store(s,STORE_F_STORE_DELETE_PRIVATE_KEY, | ||
| 576 | delete_object,STORE_R_NO_DELETE_OBJECT_FUNCTION); | ||
| 577 | |||
| 578 | if (!s->meth->delete_object(s, STORE_OBJECT_TYPE_PRIVATE_KEY, | ||
| 579 | attributes, parameters)) | ||
| 580 | { | ||
| 581 | STOREerr(STORE_F_STORE_DELETE_PRIVATE_KEY, | ||
| 582 | STORE_R_FAILED_DELETING_KEY); | ||
| 583 | return 0; | ||
| 584 | } | ||
| 585 | return 1; | ||
| 586 | } | ||
| 587 | |||
| 588 | void *STORE_list_private_key_start(STORE *s, OPENSSL_ITEM attributes[], | ||
| 589 | OPENSSL_ITEM parameters[]) | ||
| 590 | { | ||
| 591 | void *handle; | ||
| 592 | |||
| 593 | check_store(s,STORE_F_STORE_LIST_PRIVATE_KEY_START, | ||
| 594 | list_object_start,STORE_R_NO_LIST_OBJECT_START_FUNCTION); | ||
| 595 | |||
| 596 | handle = s->meth->list_object_start(s, STORE_OBJECT_TYPE_PRIVATE_KEY, | ||
| 597 | attributes, parameters); | ||
| 598 | if (!handle) | ||
| 599 | { | ||
| 600 | STOREerr(STORE_F_STORE_LIST_PRIVATE_KEY_START, | ||
| 601 | STORE_R_FAILED_LISTING_KEYS); | ||
| 602 | return 0; | ||
| 603 | } | ||
| 604 | return handle; | ||
| 605 | } | ||
| 606 | |||
| 607 | EVP_PKEY *STORE_list_private_key_next(STORE *s, void *handle) | ||
| 608 | { | ||
| 609 | STORE_OBJECT *object; | ||
| 610 | EVP_PKEY *pkey; | ||
| 611 | |||
| 612 | check_store(s,STORE_F_STORE_LIST_PRIVATE_KEY_NEXT, | ||
| 613 | list_object_next,STORE_R_NO_LIST_OBJECT_NEXT_FUNCTION); | ||
| 614 | |||
| 615 | object = s->meth->list_object_next(s, handle); | ||
| 616 | if (!object || !object->data.key || !object->data.key) | ||
| 617 | { | ||
| 618 | STOREerr(STORE_F_STORE_LIST_PRIVATE_KEY_NEXT, | ||
| 619 | STORE_R_FAILED_LISTING_KEYS); | ||
| 620 | return 0; | ||
| 621 | } | ||
| 622 | CRYPTO_add(&object->data.key->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 623 | #ifdef REF_PRINT | ||
| 624 | REF_PRINT("EVP_PKEY",data); | ||
| 625 | #endif | ||
| 626 | pkey = object->data.key; | ||
| 627 | STORE_OBJECT_free(object); | ||
| 628 | return pkey; | ||
| 629 | } | ||
| 630 | |||
| 631 | int STORE_list_private_key_end(STORE *s, void *handle) | ||
| 632 | { | ||
| 633 | check_store(s,STORE_F_STORE_LIST_PRIVATE_KEY_END, | ||
| 634 | list_object_end,STORE_R_NO_LIST_OBJECT_END_FUNCTION); | ||
| 635 | |||
| 636 | if (!s->meth->list_object_end(s, handle)) | ||
| 637 | { | ||
| 638 | STOREerr(STORE_F_STORE_LIST_PRIVATE_KEY_END, | ||
| 639 | STORE_R_FAILED_LISTING_KEYS); | ||
| 640 | return 0; | ||
| 641 | } | ||
| 642 | return 1; | ||
| 643 | } | ||
| 644 | |||
| 645 | int STORE_list_private_key_endp(STORE *s, void *handle) | ||
| 646 | { | ||
| 647 | check_store(s,STORE_F_STORE_LIST_PRIVATE_KEY_ENDP, | ||
| 648 | list_object_endp,STORE_R_NO_LIST_OBJECT_ENDP_FUNCTION); | ||
| 649 | |||
| 650 | if (!s->meth->list_object_endp(s, handle)) | ||
| 651 | { | ||
| 652 | STOREerr(STORE_F_STORE_LIST_PRIVATE_KEY_ENDP, | ||
| 653 | STORE_R_FAILED_LISTING_KEYS); | ||
| 654 | return 0; | ||
| 655 | } | ||
| 656 | return 1; | ||
| 657 | } | ||
| 658 | |||
| 659 | EVP_PKEY *STORE_get_public_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 660 | OPENSSL_ITEM parameters[]) | ||
| 661 | { | ||
| 662 | STORE_OBJECT *object; | ||
| 663 | EVP_PKEY *pkey; | ||
| 664 | |||
| 665 | check_store(s,STORE_F_STORE_GET_PUBLIC_KEY, | ||
| 666 | get_object,STORE_R_NO_GET_OBJECT_FUNCTION); | ||
| 667 | |||
| 668 | object = s->meth->get_object(s, STORE_OBJECT_TYPE_PUBLIC_KEY, | ||
| 669 | attributes, parameters); | ||
| 670 | if (!object || !object->data.key || !object->data.key) | ||
| 671 | { | ||
| 672 | STOREerr(STORE_F_STORE_GET_PUBLIC_KEY, | ||
| 673 | STORE_R_FAILED_GETTING_KEY); | ||
| 674 | return 0; | ||
| 675 | } | ||
| 676 | CRYPTO_add(&object->data.key->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 677 | #ifdef REF_PRINT | ||
| 678 | REF_PRINT("EVP_PKEY",data); | ||
| 679 | #endif | ||
| 680 | pkey = object->data.key; | ||
| 681 | STORE_OBJECT_free(object); | ||
| 682 | return pkey; | ||
| 683 | } | ||
| 684 | |||
| 685 | int STORE_store_public_key(STORE *s, EVP_PKEY *data, OPENSSL_ITEM attributes[], | ||
| 686 | OPENSSL_ITEM parameters[]) | ||
| 687 | { | ||
| 688 | STORE_OBJECT *object; | ||
| 689 | int i; | ||
| 690 | |||
| 691 | check_store(s,STORE_F_STORE_STORE_PUBLIC_KEY, | ||
| 692 | store_object,STORE_R_NO_STORE_OBJECT_FUNCTION); | ||
| 693 | |||
| 694 | object = STORE_OBJECT_new(); | ||
| 695 | if (!object) | ||
| 696 | { | ||
| 697 | STOREerr(STORE_F_STORE_STORE_PUBLIC_KEY, | ||
| 698 | ERR_R_MALLOC_FAILURE); | ||
| 699 | return 0; | ||
| 700 | } | ||
| 701 | object->data.key = EVP_PKEY_new(); | ||
| 702 | if (!object->data.key) | ||
| 703 | { | ||
| 704 | STOREerr(STORE_F_STORE_STORE_PUBLIC_KEY, | ||
| 705 | ERR_R_MALLOC_FAILURE); | ||
| 706 | return 0; | ||
| 707 | } | ||
| 708 | |||
| 709 | CRYPTO_add(&data->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 710 | #ifdef REF_PRINT | ||
| 711 | REF_PRINT("EVP_PKEY",data); | ||
| 712 | #endif | ||
| 713 | object->data.key = data; | ||
| 714 | |||
| 715 | i = s->meth->store_object(s, STORE_OBJECT_TYPE_PUBLIC_KEY, object, | ||
| 716 | attributes, parameters); | ||
| 717 | |||
| 718 | STORE_OBJECT_free(object); | ||
| 719 | |||
| 720 | if (!i) | ||
| 721 | { | ||
| 722 | STOREerr(STORE_F_STORE_STORE_PUBLIC_KEY, | ||
| 723 | STORE_R_FAILED_STORING_KEY); | ||
| 724 | return 0; | ||
| 725 | } | ||
| 726 | return i; | ||
| 727 | } | ||
| 728 | |||
| 729 | int STORE_modify_public_key(STORE *s, OPENSSL_ITEM search_attributes[], | ||
| 730 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 731 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]) | ||
| 732 | { | ||
| 733 | check_store(s,STORE_F_STORE_MODIFY_PUBLIC_KEY, | ||
| 734 | modify_object,STORE_R_NO_MODIFY_OBJECT_FUNCTION); | ||
| 735 | |||
| 736 | if (!s->meth->modify_object(s, STORE_OBJECT_TYPE_PUBLIC_KEY, | ||
| 737 | search_attributes, add_attributes, modify_attributes, | ||
| 738 | delete_attributes, parameters)) | ||
| 739 | { | ||
| 740 | STOREerr(STORE_F_STORE_MODIFY_PUBLIC_KEY, | ||
| 741 | STORE_R_FAILED_MODIFYING_PUBLIC_KEY); | ||
| 742 | return 0; | ||
| 743 | } | ||
| 744 | return 1; | ||
| 745 | } | ||
| 746 | |||
| 747 | int STORE_revoke_public_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 748 | OPENSSL_ITEM parameters[]) | ||
| 749 | { | ||
| 750 | int i; | ||
| 751 | |||
| 752 | check_store(s,STORE_F_STORE_REVOKE_PUBLIC_KEY, | ||
| 753 | revoke_object,STORE_R_NO_REVOKE_OBJECT_FUNCTION); | ||
| 754 | |||
| 755 | i = s->meth->revoke_object(s, STORE_OBJECT_TYPE_PUBLIC_KEY, | ||
| 756 | attributes, parameters); | ||
| 757 | |||
| 758 | if (!i) | ||
| 759 | { | ||
| 760 | STOREerr(STORE_F_STORE_REVOKE_PUBLIC_KEY, | ||
| 761 | STORE_R_FAILED_REVOKING_KEY); | ||
| 762 | return 0; | ||
| 763 | } | ||
| 764 | return i; | ||
| 765 | } | ||
| 766 | |||
| 767 | int STORE_delete_public_key(STORE *s, OPENSSL_ITEM attributes[], | ||
| 768 | OPENSSL_ITEM parameters[]) | ||
| 769 | { | ||
| 770 | check_store(s,STORE_F_STORE_DELETE_PUBLIC_KEY, | ||
| 771 | delete_object,STORE_R_NO_DELETE_OBJECT_FUNCTION); | ||
| 772 | |||
| 773 | if (!s->meth->delete_object(s, STORE_OBJECT_TYPE_PUBLIC_KEY, | ||
| 774 | attributes, parameters)) | ||
| 775 | { | ||
| 776 | STOREerr(STORE_F_STORE_DELETE_PUBLIC_KEY, | ||
| 777 | STORE_R_FAILED_DELETING_KEY); | ||
| 778 | return 0; | ||
| 779 | } | ||
| 780 | return 1; | ||
| 781 | } | ||
| 782 | |||
| 783 | void *STORE_list_public_key_start(STORE *s, OPENSSL_ITEM attributes[], | ||
| 784 | OPENSSL_ITEM parameters[]) | ||
| 785 | { | ||
| 786 | void *handle; | ||
| 787 | |||
| 788 | check_store(s,STORE_F_STORE_LIST_PUBLIC_KEY_START, | ||
| 789 | list_object_start,STORE_R_NO_LIST_OBJECT_START_FUNCTION); | ||
| 790 | |||
| 791 | handle = s->meth->list_object_start(s, STORE_OBJECT_TYPE_PUBLIC_KEY, | ||
| 792 | attributes, parameters); | ||
| 793 | if (!handle) | ||
| 794 | { | ||
| 795 | STOREerr(STORE_F_STORE_LIST_PUBLIC_KEY_START, | ||
| 796 | STORE_R_FAILED_LISTING_KEYS); | ||
| 797 | return 0; | ||
| 798 | } | ||
| 799 | return handle; | ||
| 800 | } | ||
| 801 | |||
| 802 | EVP_PKEY *STORE_list_public_key_next(STORE *s, void *handle) | ||
| 803 | { | ||
| 804 | STORE_OBJECT *object; | ||
| 805 | EVP_PKEY *pkey; | ||
| 806 | |||
| 807 | check_store(s,STORE_F_STORE_LIST_PUBLIC_KEY_NEXT, | ||
| 808 | list_object_next,STORE_R_NO_LIST_OBJECT_NEXT_FUNCTION); | ||
| 809 | |||
| 810 | object = s->meth->list_object_next(s, handle); | ||
| 811 | if (!object || !object->data.key || !object->data.key) | ||
| 812 | { | ||
| 813 | STOREerr(STORE_F_STORE_LIST_PUBLIC_KEY_NEXT, | ||
| 814 | STORE_R_FAILED_LISTING_KEYS); | ||
| 815 | return 0; | ||
| 816 | } | ||
| 817 | CRYPTO_add(&object->data.key->references,1,CRYPTO_LOCK_EVP_PKEY); | ||
| 818 | #ifdef REF_PRINT | ||
| 819 | REF_PRINT("EVP_PKEY",data); | ||
| 820 | #endif | ||
| 821 | pkey = object->data.key; | ||
| 822 | STORE_OBJECT_free(object); | ||
| 823 | return pkey; | ||
| 824 | } | ||
| 825 | |||
| 826 | int STORE_list_public_key_end(STORE *s, void *handle) | ||
| 827 | { | ||
| 828 | check_store(s,STORE_F_STORE_LIST_PUBLIC_KEY_END, | ||
| 829 | list_object_end,STORE_R_NO_LIST_OBJECT_END_FUNCTION); | ||
| 830 | |||
| 831 | if (!s->meth->list_object_end(s, handle)) | ||
| 832 | { | ||
| 833 | STOREerr(STORE_F_STORE_LIST_PUBLIC_KEY_END, | ||
| 834 | STORE_R_FAILED_LISTING_KEYS); | ||
| 835 | return 0; | ||
| 836 | } | ||
| 837 | return 1; | ||
| 838 | } | ||
| 839 | |||
| 840 | int STORE_list_public_key_endp(STORE *s, void *handle) | ||
| 841 | { | ||
| 842 | check_store(s,STORE_F_STORE_LIST_PUBLIC_KEY_ENDP, | ||
| 843 | list_object_endp,STORE_R_NO_LIST_OBJECT_ENDP_FUNCTION); | ||
| 844 | |||
| 845 | if (!s->meth->list_object_endp(s, handle)) | ||
| 846 | { | ||
| 847 | STOREerr(STORE_F_STORE_LIST_PUBLIC_KEY_ENDP, | ||
| 848 | STORE_R_FAILED_LISTING_KEYS); | ||
| 849 | return 0; | ||
| 850 | } | ||
| 851 | return 1; | ||
| 852 | } | ||
| 853 | |||
| 854 | X509_CRL *STORE_generate_crl(STORE *s, OPENSSL_ITEM attributes[], | ||
| 855 | OPENSSL_ITEM parameters[]) | ||
| 856 | { | ||
| 857 | STORE_OBJECT *object; | ||
| 858 | X509_CRL *crl; | ||
| 859 | |||
| 860 | check_store(s,STORE_F_STORE_GENERATE_CRL, | ||
| 861 | generate_object,STORE_R_NO_GENERATE_CRL_FUNCTION); | ||
| 862 | |||
| 863 | object = s->meth->generate_object(s, STORE_OBJECT_TYPE_X509_CRL, | ||
| 864 | attributes, parameters); | ||
| 865 | if (!object || !object->data.crl) | ||
| 866 | { | ||
| 867 | STOREerr(STORE_F_STORE_GENERATE_CRL, | ||
| 868 | STORE_R_FAILED_GENERATING_CRL); | ||
| 869 | return 0; | ||
| 870 | } | ||
| 871 | CRYPTO_add(&object->data.crl->references,1,CRYPTO_LOCK_X509_CRL); | ||
| 872 | #ifdef REF_PRINT | ||
| 873 | REF_PRINT("X509_CRL",data); | ||
| 874 | #endif | ||
| 875 | crl = object->data.crl; | ||
| 876 | STORE_OBJECT_free(object); | ||
| 877 | return crl; | ||
| 878 | } | ||
| 879 | |||
| 880 | X509_CRL *STORE_get_crl(STORE *s, OPENSSL_ITEM attributes[], | ||
| 881 | OPENSSL_ITEM parameters[]) | ||
| 882 | { | ||
| 883 | STORE_OBJECT *object; | ||
| 884 | X509_CRL *crl; | ||
| 885 | |||
| 886 | check_store(s,STORE_F_STORE_GET_CRL, | ||
| 887 | get_object,STORE_R_NO_GET_OBJECT_FUNCTION); | ||
| 888 | |||
| 889 | object = s->meth->get_object(s, STORE_OBJECT_TYPE_X509_CRL, | ||
| 890 | attributes, parameters); | ||
| 891 | if (!object || !object->data.crl) | ||
| 892 | { | ||
| 893 | STOREerr(STORE_F_STORE_GET_CRL, | ||
| 894 | STORE_R_FAILED_GETTING_KEY); | ||
| 895 | return 0; | ||
| 896 | } | ||
| 897 | CRYPTO_add(&object->data.crl->references,1,CRYPTO_LOCK_X509_CRL); | ||
| 898 | #ifdef REF_PRINT | ||
| 899 | REF_PRINT("X509_CRL",data); | ||
| 900 | #endif | ||
| 901 | crl = object->data.crl; | ||
| 902 | STORE_OBJECT_free(object); | ||
| 903 | return crl; | ||
| 904 | } | ||
| 905 | |||
| 906 | int STORE_store_crl(STORE *s, X509_CRL *data, OPENSSL_ITEM attributes[], | ||
| 907 | OPENSSL_ITEM parameters[]) | ||
| 908 | { | ||
| 909 | STORE_OBJECT *object; | ||
| 910 | int i; | ||
| 911 | |||
| 912 | check_store(s,STORE_F_STORE_STORE_CRL, | ||
| 913 | store_object,STORE_R_NO_STORE_OBJECT_FUNCTION); | ||
| 914 | |||
| 915 | object = STORE_OBJECT_new(); | ||
| 916 | if (!object) | ||
| 917 | { | ||
| 918 | STOREerr(STORE_F_STORE_STORE_CRL, | ||
| 919 | ERR_R_MALLOC_FAILURE); | ||
| 920 | return 0; | ||
| 921 | } | ||
| 922 | |||
| 923 | CRYPTO_add(&data->references,1,CRYPTO_LOCK_X509_CRL); | ||
| 924 | #ifdef REF_PRINT | ||
| 925 | REF_PRINT("X509_CRL",data); | ||
| 926 | #endif | ||
| 927 | object->data.crl = data; | ||
| 928 | |||
| 929 | i = s->meth->store_object(s, STORE_OBJECT_TYPE_X509_CRL, object, | ||
| 930 | attributes, parameters); | ||
| 931 | |||
| 932 | STORE_OBJECT_free(object); | ||
| 933 | |||
| 934 | if (!i) | ||
| 935 | { | ||
| 936 | STOREerr(STORE_F_STORE_STORE_CRL, | ||
| 937 | STORE_R_FAILED_STORING_KEY); | ||
| 938 | return 0; | ||
| 939 | } | ||
| 940 | return i; | ||
| 941 | } | ||
| 942 | |||
| 943 | int STORE_modify_crl(STORE *s, OPENSSL_ITEM search_attributes[], | ||
| 944 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 945 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]) | ||
| 946 | { | ||
| 947 | check_store(s,STORE_F_STORE_MODIFY_CRL, | ||
| 948 | modify_object,STORE_R_NO_MODIFY_OBJECT_FUNCTION); | ||
| 949 | |||
| 950 | if (!s->meth->modify_object(s, STORE_OBJECT_TYPE_X509_CRL, | ||
| 951 | search_attributes, add_attributes, modify_attributes, | ||
| 952 | delete_attributes, parameters)) | ||
| 953 | { | ||
| 954 | STOREerr(STORE_F_STORE_MODIFY_CRL, | ||
| 955 | STORE_R_FAILED_MODIFYING_CRL); | ||
| 956 | return 0; | ||
| 957 | } | ||
| 958 | return 1; | ||
| 959 | } | ||
| 960 | |||
| 961 | int STORE_delete_crl(STORE *s, OPENSSL_ITEM attributes[], | ||
| 962 | OPENSSL_ITEM parameters[]) | ||
| 963 | { | ||
| 964 | check_store(s,STORE_F_STORE_DELETE_CRL, | ||
| 965 | delete_object,STORE_R_NO_DELETE_OBJECT_FUNCTION); | ||
| 966 | |||
| 967 | if (!s->meth->delete_object(s, STORE_OBJECT_TYPE_X509_CRL, | ||
| 968 | attributes, parameters)) | ||
| 969 | { | ||
| 970 | STOREerr(STORE_F_STORE_DELETE_CRL, | ||
| 971 | STORE_R_FAILED_DELETING_KEY); | ||
| 972 | return 0; | ||
| 973 | } | ||
| 974 | return 1; | ||
| 975 | } | ||
| 976 | |||
| 977 | void *STORE_list_crl_start(STORE *s, OPENSSL_ITEM attributes[], | ||
| 978 | OPENSSL_ITEM parameters[]) | ||
| 979 | { | ||
| 980 | void *handle; | ||
| 981 | |||
| 982 | check_store(s,STORE_F_STORE_LIST_CRL_START, | ||
| 983 | list_object_start,STORE_R_NO_LIST_OBJECT_START_FUNCTION); | ||
| 984 | |||
| 985 | handle = s->meth->list_object_start(s, STORE_OBJECT_TYPE_X509_CRL, | ||
| 986 | attributes, parameters); | ||
| 987 | if (!handle) | ||
| 988 | { | ||
| 989 | STOREerr(STORE_F_STORE_LIST_CRL_START, | ||
| 990 | STORE_R_FAILED_LISTING_KEYS); | ||
| 991 | return 0; | ||
| 992 | } | ||
| 993 | return handle; | ||
| 994 | } | ||
| 995 | |||
| 996 | X509_CRL *STORE_list_crl_next(STORE *s, void *handle) | ||
| 997 | { | ||
| 998 | STORE_OBJECT *object; | ||
| 999 | X509_CRL *crl; | ||
| 1000 | |||
| 1001 | check_store(s,STORE_F_STORE_LIST_CRL_NEXT, | ||
| 1002 | list_object_next,STORE_R_NO_LIST_OBJECT_NEXT_FUNCTION); | ||
| 1003 | |||
| 1004 | object = s->meth->list_object_next(s, handle); | ||
| 1005 | if (!object || !object->data.crl) | ||
| 1006 | { | ||
| 1007 | STOREerr(STORE_F_STORE_LIST_CRL_NEXT, | ||
| 1008 | STORE_R_FAILED_LISTING_KEYS); | ||
| 1009 | return 0; | ||
| 1010 | } | ||
| 1011 | CRYPTO_add(&object->data.crl->references,1,CRYPTO_LOCK_X509_CRL); | ||
| 1012 | #ifdef REF_PRINT | ||
| 1013 | REF_PRINT("X509_CRL",data); | ||
| 1014 | #endif | ||
| 1015 | crl = object->data.crl; | ||
| 1016 | STORE_OBJECT_free(object); | ||
| 1017 | return crl; | ||
| 1018 | } | ||
| 1019 | |||
| 1020 | int STORE_list_crl_end(STORE *s, void *handle) | ||
| 1021 | { | ||
| 1022 | check_store(s,STORE_F_STORE_LIST_CRL_END, | ||
| 1023 | list_object_end,STORE_R_NO_LIST_OBJECT_END_FUNCTION); | ||
| 1024 | |||
| 1025 | if (!s->meth->list_object_end(s, handle)) | ||
| 1026 | { | ||
| 1027 | STOREerr(STORE_F_STORE_LIST_CRL_END, | ||
| 1028 | STORE_R_FAILED_LISTING_KEYS); | ||
| 1029 | return 0; | ||
| 1030 | } | ||
| 1031 | return 1; | ||
| 1032 | } | ||
| 1033 | |||
| 1034 | int STORE_list_crl_endp(STORE *s, void *handle) | ||
| 1035 | { | ||
| 1036 | check_store(s,STORE_F_STORE_LIST_CRL_ENDP, | ||
| 1037 | list_object_endp,STORE_R_NO_LIST_OBJECT_ENDP_FUNCTION); | ||
| 1038 | |||
| 1039 | if (!s->meth->list_object_endp(s, handle)) | ||
| 1040 | { | ||
| 1041 | STOREerr(STORE_F_STORE_LIST_CRL_ENDP, | ||
| 1042 | STORE_R_FAILED_LISTING_KEYS); | ||
| 1043 | return 0; | ||
| 1044 | } | ||
| 1045 | return 1; | ||
| 1046 | } | ||
| 1047 | |||
| 1048 | int STORE_store_number(STORE *s, BIGNUM *data, OPENSSL_ITEM attributes[], | ||
| 1049 | OPENSSL_ITEM parameters[]) | ||
| 1050 | { | ||
| 1051 | STORE_OBJECT *object; | ||
| 1052 | int i; | ||
| 1053 | |||
| 1054 | check_store(s,STORE_F_STORE_STORE_NUMBER, | ||
| 1055 | store_object,STORE_R_NO_STORE_OBJECT_NUMBER_FUNCTION); | ||
| 1056 | |||
| 1057 | object = STORE_OBJECT_new(); | ||
| 1058 | if (!object) | ||
| 1059 | { | ||
| 1060 | STOREerr(STORE_F_STORE_STORE_NUMBER, | ||
| 1061 | ERR_R_MALLOC_FAILURE); | ||
| 1062 | return 0; | ||
| 1063 | } | ||
| 1064 | |||
| 1065 | object->data.number = data; | ||
| 1066 | |||
| 1067 | i = s->meth->store_object(s, STORE_OBJECT_TYPE_NUMBER, object, | ||
| 1068 | attributes, parameters); | ||
| 1069 | |||
| 1070 | STORE_OBJECT_free(object); | ||
| 1071 | |||
| 1072 | if (!i) | ||
| 1073 | { | ||
| 1074 | STOREerr(STORE_F_STORE_STORE_NUMBER, | ||
| 1075 | STORE_R_FAILED_STORING_NUMBER); | ||
| 1076 | return 0; | ||
| 1077 | } | ||
| 1078 | return 1; | ||
| 1079 | } | ||
| 1080 | |||
| 1081 | int STORE_modify_number(STORE *s, OPENSSL_ITEM search_attributes[], | ||
| 1082 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 1083 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]) | ||
| 1084 | { | ||
| 1085 | check_store(s,STORE_F_STORE_MODIFY_NUMBER, | ||
| 1086 | modify_object,STORE_R_NO_MODIFY_OBJECT_FUNCTION); | ||
| 1087 | |||
| 1088 | if (!s->meth->modify_object(s, STORE_OBJECT_TYPE_NUMBER, | ||
| 1089 | search_attributes, add_attributes, modify_attributes, | ||
| 1090 | delete_attributes, parameters)) | ||
| 1091 | { | ||
| 1092 | STOREerr(STORE_F_STORE_MODIFY_NUMBER, | ||
| 1093 | STORE_R_FAILED_MODIFYING_NUMBER); | ||
| 1094 | return 0; | ||
| 1095 | } | ||
| 1096 | return 1; | ||
| 1097 | } | ||
| 1098 | |||
| 1099 | BIGNUM *STORE_get_number(STORE *s, OPENSSL_ITEM attributes[], | ||
| 1100 | OPENSSL_ITEM parameters[]) | ||
| 1101 | { | ||
| 1102 | STORE_OBJECT *object; | ||
| 1103 | BIGNUM *n; | ||
| 1104 | |||
| 1105 | check_store(s,STORE_F_STORE_GET_NUMBER, | ||
| 1106 | get_object,STORE_R_NO_GET_OBJECT_NUMBER_FUNCTION); | ||
| 1107 | |||
| 1108 | object = s->meth->get_object(s, STORE_OBJECT_TYPE_NUMBER, attributes, | ||
| 1109 | parameters); | ||
| 1110 | if (!object || !object->data.number) | ||
| 1111 | { | ||
| 1112 | STOREerr(STORE_F_STORE_GET_NUMBER, | ||
| 1113 | STORE_R_FAILED_GETTING_NUMBER); | ||
| 1114 | return 0; | ||
| 1115 | } | ||
| 1116 | n = object->data.number; | ||
| 1117 | object->data.number = NULL; | ||
| 1118 | STORE_OBJECT_free(object); | ||
| 1119 | return n; | ||
| 1120 | } | ||
| 1121 | |||
| 1122 | int STORE_delete_number(STORE *s, OPENSSL_ITEM attributes[], | ||
| 1123 | OPENSSL_ITEM parameters[]) | ||
| 1124 | { | ||
| 1125 | check_store(s,STORE_F_STORE_DELETE_NUMBER, | ||
| 1126 | delete_object,STORE_R_NO_DELETE_NUMBER_FUNCTION); | ||
| 1127 | |||
| 1128 | if (!s->meth->delete_object(s, STORE_OBJECT_TYPE_NUMBER, attributes, | ||
| 1129 | parameters)) | ||
| 1130 | { | ||
| 1131 | STOREerr(STORE_F_STORE_DELETE_NUMBER, | ||
| 1132 | STORE_R_FAILED_DELETING_NUMBER); | ||
| 1133 | return 0; | ||
| 1134 | } | ||
| 1135 | return 1; | ||
| 1136 | } | ||
| 1137 | |||
| 1138 | int STORE_store_arbitrary(STORE *s, BUF_MEM *data, OPENSSL_ITEM attributes[], | ||
| 1139 | OPENSSL_ITEM parameters[]) | ||
| 1140 | { | ||
| 1141 | STORE_OBJECT *object; | ||
| 1142 | int i; | ||
| 1143 | |||
| 1144 | check_store(s,STORE_F_STORE_STORE_ARBITRARY, | ||
| 1145 | store_object,STORE_R_NO_STORE_OBJECT_ARBITRARY_FUNCTION); | ||
| 1146 | |||
| 1147 | object = STORE_OBJECT_new(); | ||
| 1148 | if (!object) | ||
| 1149 | { | ||
| 1150 | STOREerr(STORE_F_STORE_STORE_ARBITRARY, | ||
| 1151 | ERR_R_MALLOC_FAILURE); | ||
| 1152 | return 0; | ||
| 1153 | } | ||
| 1154 | |||
| 1155 | object->data.arbitrary = data; | ||
| 1156 | |||
| 1157 | i = s->meth->store_object(s, STORE_OBJECT_TYPE_ARBITRARY, object, | ||
| 1158 | attributes, parameters); | ||
| 1159 | |||
| 1160 | STORE_OBJECT_free(object); | ||
| 1161 | |||
| 1162 | if (!i) | ||
| 1163 | { | ||
| 1164 | STOREerr(STORE_F_STORE_STORE_ARBITRARY, | ||
| 1165 | STORE_R_FAILED_STORING_ARBITRARY); | ||
| 1166 | return 0; | ||
| 1167 | } | ||
| 1168 | return 1; | ||
| 1169 | } | ||
| 1170 | |||
| 1171 | int STORE_modify_arbitrary(STORE *s, OPENSSL_ITEM search_attributes[], | ||
| 1172 | OPENSSL_ITEM add_attributes[], OPENSSL_ITEM modify_attributes[], | ||
| 1173 | OPENSSL_ITEM delete_attributes[], OPENSSL_ITEM parameters[]) | ||
| 1174 | { | ||
| 1175 | check_store(s,STORE_F_STORE_MODIFY_ARBITRARY, | ||
| 1176 | modify_object,STORE_R_NO_MODIFY_OBJECT_FUNCTION); | ||
| 1177 | |||
| 1178 | if (!s->meth->modify_object(s, STORE_OBJECT_TYPE_ARBITRARY, | ||
| 1179 | search_attributes, add_attributes, modify_attributes, | ||
| 1180 | delete_attributes, parameters)) | ||
| 1181 | { | ||
| 1182 | STOREerr(STORE_F_STORE_MODIFY_ARBITRARY, | ||
| 1183 | STORE_R_FAILED_MODIFYING_ARBITRARY); | ||
| 1184 | return 0; | ||
| 1185 | } | ||
| 1186 | return 1; | ||
| 1187 | } | ||
| 1188 | |||
| 1189 | BUF_MEM *STORE_get_arbitrary(STORE *s, OPENSSL_ITEM attributes[], | ||
| 1190 | OPENSSL_ITEM parameters[]) | ||
| 1191 | { | ||
| 1192 | STORE_OBJECT *object; | ||
| 1193 | BUF_MEM *b; | ||
| 1194 | |||
| 1195 | check_store(s,STORE_F_STORE_GET_ARBITRARY, | ||
| 1196 | get_object,STORE_R_NO_GET_OBJECT_ARBITRARY_FUNCTION); | ||
| 1197 | |||
| 1198 | object = s->meth->get_object(s, STORE_OBJECT_TYPE_ARBITRARY, | ||
| 1199 | attributes, parameters); | ||
| 1200 | if (!object || !object->data.arbitrary) | ||
| 1201 | { | ||
| 1202 | STOREerr(STORE_F_STORE_GET_ARBITRARY, | ||
| 1203 | STORE_R_FAILED_GETTING_ARBITRARY); | ||
| 1204 | return 0; | ||
| 1205 | } | ||
| 1206 | b = object->data.arbitrary; | ||
| 1207 | object->data.arbitrary = NULL; | ||
| 1208 | STORE_OBJECT_free(object); | ||
| 1209 | return b; | ||
| 1210 | } | ||
| 1211 | |||
| 1212 | int STORE_delete_arbitrary(STORE *s, OPENSSL_ITEM attributes[], | ||
| 1213 | OPENSSL_ITEM parameters[]) | ||
| 1214 | { | ||
| 1215 | check_store(s,STORE_F_STORE_DELETE_ARBITRARY, | ||
| 1216 | delete_object,STORE_R_NO_DELETE_ARBITRARY_FUNCTION); | ||
| 1217 | |||
| 1218 | if (!s->meth->delete_object(s, STORE_OBJECT_TYPE_ARBITRARY, attributes, | ||
| 1219 | parameters)) | ||
| 1220 | { | ||
| 1221 | STOREerr(STORE_F_STORE_DELETE_ARBITRARY, | ||
| 1222 | STORE_R_FAILED_DELETING_ARBITRARY); | ||
| 1223 | return 0; | ||
| 1224 | } | ||
| 1225 | return 1; | ||
| 1226 | } | ||
| 1227 | |||
| 1228 | STORE_OBJECT *STORE_OBJECT_new(void) | ||
| 1229 | { | ||
| 1230 | STORE_OBJECT *object = OPENSSL_malloc(sizeof(STORE_OBJECT)); | ||
| 1231 | if (object) memset(object, 0, sizeof(STORE_OBJECT)); | ||
| 1232 | return object; | ||
| 1233 | } | ||
| 1234 | void STORE_OBJECT_free(STORE_OBJECT *data) | ||
| 1235 | { | ||
| 1236 | if (!data) return; | ||
| 1237 | switch (data->type) | ||
| 1238 | { | ||
| 1239 | case STORE_OBJECT_TYPE_X509_CERTIFICATE: | ||
| 1240 | X509_free(data->data.x509.certificate); | ||
| 1241 | break; | ||
| 1242 | case STORE_OBJECT_TYPE_X509_CRL: | ||
| 1243 | X509_CRL_free(data->data.crl); | ||
| 1244 | break; | ||
| 1245 | case STORE_OBJECT_TYPE_PRIVATE_KEY: | ||
| 1246 | case STORE_OBJECT_TYPE_PUBLIC_KEY: | ||
| 1247 | EVP_PKEY_free(data->data.key); | ||
| 1248 | break; | ||
| 1249 | case STORE_OBJECT_TYPE_NUMBER: | ||
| 1250 | BN_free(data->data.number); | ||
| 1251 | break; | ||
| 1252 | case STORE_OBJECT_TYPE_ARBITRARY: | ||
| 1253 | BUF_MEM_free(data->data.arbitrary); | ||
| 1254 | break; | ||
| 1255 | } | ||
| 1256 | OPENSSL_free(data); | ||
| 1257 | } | ||
| 1258 | |||
| 1259 | IMPLEMENT_STACK_OF(STORE_OBJECT*) | ||
| 1260 | |||
| 1261 | |||
| 1262 | struct STORE_attr_info_st | ||
| 1263 | { | ||
| 1264 | unsigned char set[(STORE_ATTR_TYPE_NUM + 8) / 8]; | ||
| 1265 | union | ||
| 1266 | { | ||
| 1267 | char *cstring; | ||
| 1268 | unsigned char *sha1string; | ||
| 1269 | X509_NAME *dn; | ||
| 1270 | BIGNUM *number; | ||
| 1271 | void *any; | ||
| 1272 | } values[STORE_ATTR_TYPE_NUM+1]; | ||
| 1273 | size_t value_sizes[STORE_ATTR_TYPE_NUM+1]; | ||
| 1274 | }; | ||
| 1275 | |||
| 1276 | #define ATTR_IS_SET(a,i) ((i) > 0 && (i) < STORE_ATTR_TYPE_NUM \ | ||
| 1277 | && ((a)->set[(i) / 8] & (1 << ((i) % 8)))) | ||
| 1278 | #define SET_ATTRBIT(a,i) ((a)->set[(i) / 8] |= (1 << ((i) % 8))) | ||
| 1279 | #define CLEAR_ATTRBIT(a,i) ((a)->set[(i) / 8] &= ~(1 << ((i) % 8))) | ||
| 1280 | |||
| 1281 | STORE_ATTR_INFO *STORE_ATTR_INFO_new(void) | ||
| 1282 | { | ||
| 1283 | return (STORE_ATTR_INFO *)OPENSSL_malloc(sizeof(STORE_ATTR_INFO)); | ||
| 1284 | } | ||
| 1285 | static void STORE_ATTR_INFO_attr_free(STORE_ATTR_INFO *attrs, | ||
| 1286 | STORE_ATTR_TYPES code) | ||
| 1287 | { | ||
| 1288 | if (ATTR_IS_SET(attrs,code)) | ||
| 1289 | { | ||
| 1290 | switch(code) | ||
| 1291 | { | ||
| 1292 | case STORE_ATTR_FRIENDLYNAME: | ||
| 1293 | case STORE_ATTR_EMAIL: | ||
| 1294 | case STORE_ATTR_FILENAME: | ||
| 1295 | STORE_ATTR_INFO_modify_cstr(attrs, code, NULL, 0); | ||
| 1296 | break; | ||
| 1297 | case STORE_ATTR_KEYID: | ||
| 1298 | case STORE_ATTR_ISSUERKEYID: | ||
| 1299 | case STORE_ATTR_SUBJECTKEYID: | ||
| 1300 | case STORE_ATTR_ISSUERSERIALHASH: | ||
| 1301 | case STORE_ATTR_CERTHASH: | ||
| 1302 | STORE_ATTR_INFO_modify_sha1str(attrs, code, NULL, 0); | ||
| 1303 | break; | ||
| 1304 | case STORE_ATTR_ISSUER: | ||
| 1305 | case STORE_ATTR_SUBJECT: | ||
| 1306 | STORE_ATTR_INFO_modify_dn(attrs, code, NULL); | ||
| 1307 | break; | ||
| 1308 | case STORE_ATTR_SERIAL: | ||
| 1309 | STORE_ATTR_INFO_modify_number(attrs, code, NULL); | ||
| 1310 | break; | ||
| 1311 | default: | ||
| 1312 | break; | ||
| 1313 | } | ||
| 1314 | } | ||
| 1315 | } | ||
| 1316 | int STORE_ATTR_INFO_free(STORE_ATTR_INFO *attrs) | ||
| 1317 | { | ||
| 1318 | if (attrs) | ||
| 1319 | { | ||
| 1320 | STORE_ATTR_TYPES i; | ||
| 1321 | for(i = 0; i++ < STORE_ATTR_TYPE_NUM;) | ||
| 1322 | STORE_ATTR_INFO_attr_free(attrs, i); | ||
| 1323 | OPENSSL_free(attrs); | ||
| 1324 | } | ||
| 1325 | return 1; | ||
| 1326 | } | ||
| 1327 | char *STORE_ATTR_INFO_get0_cstr(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code) | ||
| 1328 | { | ||
| 1329 | if (!attrs) | ||
| 1330 | { | ||
| 1331 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_CSTR, | ||
| 1332 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1333 | return NULL; | ||
| 1334 | } | ||
| 1335 | if (ATTR_IS_SET(attrs,code)) | ||
| 1336 | return attrs->values[code].cstring; | ||
| 1337 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_CSTR, | ||
| 1338 | STORE_R_NO_VALUE); | ||
| 1339 | return NULL; | ||
| 1340 | } | ||
| 1341 | unsigned char *STORE_ATTR_INFO_get0_sha1str(STORE_ATTR_INFO *attrs, | ||
| 1342 | STORE_ATTR_TYPES code) | ||
| 1343 | { | ||
| 1344 | if (!attrs) | ||
| 1345 | { | ||
| 1346 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_SHA1STR, | ||
| 1347 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1348 | return NULL; | ||
| 1349 | } | ||
| 1350 | if (ATTR_IS_SET(attrs,code)) | ||
| 1351 | return attrs->values[code].sha1string; | ||
| 1352 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_SHA1STR, | ||
| 1353 | STORE_R_NO_VALUE); | ||
| 1354 | return NULL; | ||
| 1355 | } | ||
| 1356 | X509_NAME *STORE_ATTR_INFO_get0_dn(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code) | ||
| 1357 | { | ||
| 1358 | if (!attrs) | ||
| 1359 | { | ||
| 1360 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_DN, | ||
| 1361 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1362 | return NULL; | ||
| 1363 | } | ||
| 1364 | if (ATTR_IS_SET(attrs,code)) | ||
| 1365 | return attrs->values[code].dn; | ||
| 1366 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_DN, | ||
| 1367 | STORE_R_NO_VALUE); | ||
| 1368 | return NULL; | ||
| 1369 | } | ||
| 1370 | BIGNUM *STORE_ATTR_INFO_get0_number(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code) | ||
| 1371 | { | ||
| 1372 | if (!attrs) | ||
| 1373 | { | ||
| 1374 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_NUMBER, | ||
| 1375 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1376 | return NULL; | ||
| 1377 | } | ||
| 1378 | if (ATTR_IS_SET(attrs,code)) | ||
| 1379 | return attrs->values[code].number; | ||
| 1380 | STOREerr(STORE_F_STORE_ATTR_INFO_GET0_NUMBER, | ||
| 1381 | STORE_R_NO_VALUE); | ||
| 1382 | return NULL; | ||
| 1383 | } | ||
| 1384 | int STORE_ATTR_INFO_set_cstr(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1385 | char *cstr, size_t cstr_size) | ||
| 1386 | { | ||
| 1387 | if (!attrs) | ||
| 1388 | { | ||
| 1389 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_CSTR, | ||
| 1390 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1391 | return 0; | ||
| 1392 | } | ||
| 1393 | if (!ATTR_IS_SET(attrs,code)) | ||
| 1394 | { | ||
| 1395 | if ((attrs->values[code].cstring = BUF_strndup(cstr, cstr_size))) | ||
| 1396 | return 1; | ||
| 1397 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_CSTR, | ||
| 1398 | ERR_R_MALLOC_FAILURE); | ||
| 1399 | return 0; | ||
| 1400 | } | ||
| 1401 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_CSTR, STORE_R_ALREADY_HAS_A_VALUE); | ||
| 1402 | return 0; | ||
| 1403 | } | ||
| 1404 | int STORE_ATTR_INFO_set_sha1str(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1405 | unsigned char *sha1str, size_t sha1str_size) | ||
| 1406 | { | ||
| 1407 | if (!attrs) | ||
| 1408 | { | ||
| 1409 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_SHA1STR, | ||
| 1410 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1411 | return 0; | ||
| 1412 | } | ||
| 1413 | if (!ATTR_IS_SET(attrs,code)) | ||
| 1414 | { | ||
| 1415 | if ((attrs->values[code].sha1string = | ||
| 1416 | (unsigned char *)BUF_memdup(sha1str, | ||
| 1417 | sha1str_size))) | ||
| 1418 | return 1; | ||
| 1419 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_SHA1STR, | ||
| 1420 | ERR_R_MALLOC_FAILURE); | ||
| 1421 | return 0; | ||
| 1422 | } | ||
| 1423 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_SHA1STR, STORE_R_ALREADY_HAS_A_VALUE); | ||
| 1424 | return 0; | ||
| 1425 | } | ||
| 1426 | int STORE_ATTR_INFO_set_dn(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1427 | X509_NAME *dn) | ||
| 1428 | { | ||
| 1429 | if (!attrs) | ||
| 1430 | { | ||
| 1431 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_DN, | ||
| 1432 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1433 | return 0; | ||
| 1434 | } | ||
| 1435 | if (!ATTR_IS_SET(attrs,code)) | ||
| 1436 | { | ||
| 1437 | if ((attrs->values[code].dn = X509_NAME_dup(dn))) | ||
| 1438 | return 1; | ||
| 1439 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_DN, | ||
| 1440 | ERR_R_MALLOC_FAILURE); | ||
| 1441 | return 0; | ||
| 1442 | } | ||
| 1443 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_DN, STORE_R_ALREADY_HAS_A_VALUE); | ||
| 1444 | return 0; | ||
| 1445 | } | ||
| 1446 | int STORE_ATTR_INFO_set_number(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1447 | BIGNUM *number) | ||
| 1448 | { | ||
| 1449 | if (!attrs) | ||
| 1450 | { | ||
| 1451 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_NUMBER, | ||
| 1452 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1453 | return 0; | ||
| 1454 | } | ||
| 1455 | if (!ATTR_IS_SET(attrs,code)) | ||
| 1456 | { | ||
| 1457 | if ((attrs->values[code].number = BN_dup(number))) | ||
| 1458 | return 1; | ||
| 1459 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_NUMBER, | ||
| 1460 | ERR_R_MALLOC_FAILURE); | ||
| 1461 | return 0; | ||
| 1462 | } | ||
| 1463 | STOREerr(STORE_F_STORE_ATTR_INFO_SET_NUMBER, STORE_R_ALREADY_HAS_A_VALUE); | ||
| 1464 | return 0; | ||
| 1465 | } | ||
| 1466 | int STORE_ATTR_INFO_modify_cstr(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1467 | char *cstr, size_t cstr_size) | ||
| 1468 | { | ||
| 1469 | if (!attrs) | ||
| 1470 | { | ||
| 1471 | STOREerr(STORE_F_STORE_ATTR_INFO_MODIFY_CSTR, | ||
| 1472 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1473 | return 0; | ||
| 1474 | } | ||
| 1475 | if (ATTR_IS_SET(attrs,code)) | ||
| 1476 | { | ||
| 1477 | OPENSSL_free(attrs->values[code].cstring); | ||
| 1478 | attrs->values[code].cstring = NULL; | ||
| 1479 | CLEAR_ATTRBIT(attrs, code); | ||
| 1480 | } | ||
| 1481 | return STORE_ATTR_INFO_set_cstr(attrs, code, cstr, cstr_size); | ||
| 1482 | } | ||
| 1483 | int STORE_ATTR_INFO_modify_sha1str(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1484 | unsigned char *sha1str, size_t sha1str_size) | ||
| 1485 | { | ||
| 1486 | if (!attrs) | ||
| 1487 | { | ||
| 1488 | STOREerr(STORE_F_STORE_ATTR_INFO_MODIFY_SHA1STR, | ||
| 1489 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1490 | return 0; | ||
| 1491 | } | ||
| 1492 | if (ATTR_IS_SET(attrs,code)) | ||
| 1493 | { | ||
| 1494 | OPENSSL_free(attrs->values[code].sha1string); | ||
| 1495 | attrs->values[code].sha1string = NULL; | ||
| 1496 | CLEAR_ATTRBIT(attrs, code); | ||
| 1497 | } | ||
| 1498 | return STORE_ATTR_INFO_set_sha1str(attrs, code, sha1str, sha1str_size); | ||
| 1499 | } | ||
| 1500 | int STORE_ATTR_INFO_modify_dn(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1501 | X509_NAME *dn) | ||
| 1502 | { | ||
| 1503 | if (!attrs) | ||
| 1504 | { | ||
| 1505 | STOREerr(STORE_F_STORE_ATTR_INFO_MODIFY_DN, | ||
| 1506 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1507 | return 0; | ||
| 1508 | } | ||
| 1509 | if (ATTR_IS_SET(attrs,code)) | ||
| 1510 | { | ||
| 1511 | OPENSSL_free(attrs->values[code].dn); | ||
| 1512 | attrs->values[code].dn = NULL; | ||
| 1513 | CLEAR_ATTRBIT(attrs, code); | ||
| 1514 | } | ||
| 1515 | return STORE_ATTR_INFO_set_dn(attrs, code, dn); | ||
| 1516 | } | ||
| 1517 | int STORE_ATTR_INFO_modify_number(STORE_ATTR_INFO *attrs, STORE_ATTR_TYPES code, | ||
| 1518 | BIGNUM *number) | ||
| 1519 | { | ||
| 1520 | if (!attrs) | ||
| 1521 | { | ||
| 1522 | STOREerr(STORE_F_STORE_ATTR_INFO_MODIFY_NUMBER, | ||
| 1523 | ERR_R_PASSED_NULL_PARAMETER); | ||
| 1524 | return 0; | ||
| 1525 | } | ||
| 1526 | if (ATTR_IS_SET(attrs,code)) | ||
| 1527 | { | ||
| 1528 | OPENSSL_free(attrs->values[code].number); | ||
| 1529 | attrs->values[code].number = NULL; | ||
| 1530 | CLEAR_ATTRBIT(attrs, code); | ||
| 1531 | } | ||
| 1532 | return STORE_ATTR_INFO_set_number(attrs, code, number); | ||
| 1533 | } | ||
| 1534 | |||
| 1535 | struct attr_list_ctx_st | ||
| 1536 | { | ||
| 1537 | OPENSSL_ITEM *attributes; | ||
| 1538 | }; | ||
| 1539 | void *STORE_parse_attrs_start(OPENSSL_ITEM *attributes) | ||
| 1540 | { | ||
| 1541 | if (attributes) | ||
| 1542 | { | ||
| 1543 | struct attr_list_ctx_st *context = | ||
| 1544 | (struct attr_list_ctx_st *)OPENSSL_malloc(sizeof(struct attr_list_ctx_st)); | ||
| 1545 | if (context) | ||
| 1546 | context->attributes = attributes; | ||
| 1547 | else | ||
| 1548 | STOREerr(STORE_F_STORE_PARSE_ATTRS_START, | ||
| 1549 | ERR_R_MALLOC_FAILURE); | ||
| 1550 | return context; | ||
| 1551 | } | ||
| 1552 | STOREerr(STORE_F_STORE_PARSE_ATTRS_START, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1553 | return 0; | ||
| 1554 | } | ||
| 1555 | STORE_ATTR_INFO *STORE_parse_attrs_next(void *handle) | ||
| 1556 | { | ||
| 1557 | struct attr_list_ctx_st *context = (struct attr_list_ctx_st *)handle; | ||
| 1558 | |||
| 1559 | if (context && context->attributes) | ||
| 1560 | { | ||
| 1561 | STORE_ATTR_INFO *attrs = NULL; | ||
| 1562 | |||
| 1563 | while(context->attributes | ||
| 1564 | && context->attributes->code != STORE_ATTR_OR | ||
| 1565 | && context->attributes->code != STORE_ATTR_END) | ||
| 1566 | { | ||
| 1567 | switch(context->attributes->code) | ||
| 1568 | { | ||
| 1569 | case STORE_ATTR_FRIENDLYNAME: | ||
| 1570 | case STORE_ATTR_EMAIL: | ||
| 1571 | case STORE_ATTR_FILENAME: | ||
| 1572 | if (!attrs) attrs = STORE_ATTR_INFO_new(); | ||
| 1573 | if (attrs == NULL) | ||
| 1574 | { | ||
| 1575 | STOREerr(STORE_F_STORE_PARSE_ATTRS_NEXT, | ||
| 1576 | ERR_R_MALLOC_FAILURE); | ||
| 1577 | goto err; | ||
| 1578 | } | ||
| 1579 | STORE_ATTR_INFO_set_cstr(attrs, | ||
| 1580 | context->attributes->code, | ||
| 1581 | context->attributes->value, | ||
| 1582 | context->attributes->value_size); | ||
| 1583 | break; | ||
| 1584 | case STORE_ATTR_KEYID: | ||
| 1585 | case STORE_ATTR_ISSUERKEYID: | ||
| 1586 | case STORE_ATTR_SUBJECTKEYID: | ||
| 1587 | case STORE_ATTR_ISSUERSERIALHASH: | ||
| 1588 | case STORE_ATTR_CERTHASH: | ||
| 1589 | if (!attrs) attrs = STORE_ATTR_INFO_new(); | ||
| 1590 | if (attrs == NULL) | ||
| 1591 | { | ||
| 1592 | STOREerr(STORE_F_STORE_PARSE_ATTRS_NEXT, | ||
| 1593 | ERR_R_MALLOC_FAILURE); | ||
| 1594 | goto err; | ||
| 1595 | } | ||
| 1596 | STORE_ATTR_INFO_set_sha1str(attrs, | ||
| 1597 | context->attributes->code, | ||
| 1598 | context->attributes->value, | ||
| 1599 | context->attributes->value_size); | ||
| 1600 | break; | ||
| 1601 | case STORE_ATTR_ISSUER: | ||
| 1602 | case STORE_ATTR_SUBJECT: | ||
| 1603 | if (!attrs) attrs = STORE_ATTR_INFO_new(); | ||
| 1604 | if (attrs == NULL) | ||
| 1605 | { | ||
| 1606 | STOREerr(STORE_F_STORE_PARSE_ATTRS_NEXT, | ||
| 1607 | ERR_R_MALLOC_FAILURE); | ||
| 1608 | goto err; | ||
| 1609 | } | ||
| 1610 | STORE_ATTR_INFO_modify_dn(attrs, | ||
| 1611 | context->attributes->code, | ||
| 1612 | context->attributes->value); | ||
| 1613 | break; | ||
| 1614 | case STORE_ATTR_SERIAL: | ||
| 1615 | if (!attrs) attrs = STORE_ATTR_INFO_new(); | ||
| 1616 | if (attrs == NULL) | ||
| 1617 | { | ||
| 1618 | STOREerr(STORE_F_STORE_PARSE_ATTRS_NEXT, | ||
| 1619 | ERR_R_MALLOC_FAILURE); | ||
| 1620 | goto err; | ||
| 1621 | } | ||
| 1622 | STORE_ATTR_INFO_modify_number(attrs, | ||
| 1623 | context->attributes->code, | ||
| 1624 | context->attributes->value); | ||
| 1625 | break; | ||
| 1626 | } | ||
| 1627 | context->attributes++; | ||
| 1628 | } | ||
| 1629 | if (context->attributes->code == STORE_ATTR_OR) | ||
| 1630 | context->attributes++; | ||
| 1631 | return attrs; | ||
| 1632 | err: | ||
| 1633 | while(context->attributes | ||
| 1634 | && context->attributes->code != STORE_ATTR_OR | ||
| 1635 | && context->attributes->code != STORE_ATTR_END) | ||
| 1636 | context->attributes++; | ||
| 1637 | if (context->attributes->code == STORE_ATTR_OR) | ||
| 1638 | context->attributes++; | ||
| 1639 | return NULL; | ||
| 1640 | } | ||
| 1641 | STOREerr(STORE_F_STORE_PARSE_ATTRS_NEXT, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1642 | return NULL; | ||
| 1643 | } | ||
| 1644 | int STORE_parse_attrs_end(void *handle) | ||
| 1645 | { | ||
| 1646 | struct attr_list_ctx_st *context = (struct attr_list_ctx_st *)handle; | ||
| 1647 | |||
| 1648 | if (context && context->attributes) | ||
| 1649 | { | ||
| 1650 | #if 0 | ||
| 1651 | OPENSSL_ITEM *attributes = context->attributes; | ||
| 1652 | #endif | ||
| 1653 | OPENSSL_free(context); | ||
| 1654 | return 1; | ||
| 1655 | } | ||
| 1656 | STOREerr(STORE_F_STORE_PARSE_ATTRS_END, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1657 | return 0; | ||
| 1658 | } | ||
| 1659 | |||
| 1660 | int STORE_parse_attrs_endp(void *handle) | ||
| 1661 | { | ||
| 1662 | struct attr_list_ctx_st *context = (struct attr_list_ctx_st *)handle; | ||
| 1663 | |||
| 1664 | if (context && context->attributes) | ||
| 1665 | { | ||
| 1666 | return context->attributes->code == STORE_ATTR_END; | ||
| 1667 | } | ||
| 1668 | STOREerr(STORE_F_STORE_PARSE_ATTRS_ENDP, ERR_R_PASSED_NULL_PARAMETER); | ||
| 1669 | return 0; | ||
| 1670 | } | ||
| 1671 | |||
| 1672 | static int attr_info_compare_compute_range( | ||
| 1673 | unsigned char *abits, unsigned char *bbits, | ||
| 1674 | unsigned int *alowp, unsigned int *ahighp, | ||
| 1675 | unsigned int *blowp, unsigned int *bhighp) | ||
| 1676 | { | ||
| 1677 | unsigned int alow = (unsigned int)-1, ahigh = 0; | ||
| 1678 | unsigned int blow = (unsigned int)-1, bhigh = 0; | ||
| 1679 | int i, res = 0; | ||
| 1680 | |||
| 1681 | for (i = 0; i < (STORE_ATTR_TYPE_NUM + 8) / 8; i++, abits++, bbits++) | ||
| 1682 | { | ||
| 1683 | if (res == 0) | ||
| 1684 | { | ||
| 1685 | if (*abits < *bbits) res = -1; | ||
| 1686 | if (*abits > *bbits) res = 1; | ||
| 1687 | } | ||
| 1688 | if (*abits) | ||
| 1689 | { | ||
| 1690 | if (alow == (unsigned int)-1) | ||
| 1691 | { | ||
| 1692 | alow = i * 8; | ||
| 1693 | if (!(*abits & 0x01)) alow++; | ||
| 1694 | if (!(*abits & 0x02)) alow++; | ||
| 1695 | if (!(*abits & 0x04)) alow++; | ||
| 1696 | if (!(*abits & 0x08)) alow++; | ||
| 1697 | if (!(*abits & 0x10)) alow++; | ||
| 1698 | if (!(*abits & 0x20)) alow++; | ||
| 1699 | if (!(*abits & 0x40)) alow++; | ||
| 1700 | } | ||
| 1701 | ahigh = i * 8 + 7; | ||
| 1702 | if (!(*abits & 0x80)) ahigh++; | ||
| 1703 | if (!(*abits & 0x40)) ahigh++; | ||
| 1704 | if (!(*abits & 0x20)) ahigh++; | ||
| 1705 | if (!(*abits & 0x10)) ahigh++; | ||
| 1706 | if (!(*abits & 0x08)) ahigh++; | ||
| 1707 | if (!(*abits & 0x04)) ahigh++; | ||
| 1708 | if (!(*abits & 0x02)) ahigh++; | ||
| 1709 | } | ||
| 1710 | if (*bbits) | ||
| 1711 | { | ||
| 1712 | if (blow == (unsigned int)-1) | ||
| 1713 | { | ||
| 1714 | blow = i * 8; | ||
| 1715 | if (!(*bbits & 0x01)) blow++; | ||
| 1716 | if (!(*bbits & 0x02)) blow++; | ||
| 1717 | if (!(*bbits & 0x04)) blow++; | ||
| 1718 | if (!(*bbits & 0x08)) blow++; | ||
| 1719 | if (!(*bbits & 0x10)) blow++; | ||
| 1720 | if (!(*bbits & 0x20)) blow++; | ||
| 1721 | if (!(*bbits & 0x40)) blow++; | ||
| 1722 | } | ||
| 1723 | bhigh = i * 8 + 7; | ||
| 1724 | if (!(*bbits & 0x80)) bhigh++; | ||
| 1725 | if (!(*bbits & 0x40)) bhigh++; | ||
| 1726 | if (!(*bbits & 0x20)) bhigh++; | ||
| 1727 | if (!(*bbits & 0x10)) bhigh++; | ||
| 1728 | if (!(*bbits & 0x08)) bhigh++; | ||
| 1729 | if (!(*bbits & 0x04)) bhigh++; | ||
| 1730 | if (!(*bbits & 0x02)) bhigh++; | ||
| 1731 | } | ||
| 1732 | } | ||
| 1733 | if (ahigh + alow < bhigh + blow) res = -1; | ||
| 1734 | if (ahigh + alow > bhigh + blow) res = 1; | ||
| 1735 | if (alowp) *alowp = alow; | ||
| 1736 | if (ahighp) *ahighp = ahigh; | ||
| 1737 | if (blowp) *blowp = blow; | ||
| 1738 | if (bhighp) *bhighp = bhigh; | ||
| 1739 | return res; | ||
| 1740 | } | ||
| 1741 | |||
| 1742 | int STORE_ATTR_INFO_compare(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b) | ||
| 1743 | { | ||
| 1744 | if (a == b) return 0; | ||
| 1745 | if (!a) return -1; | ||
| 1746 | if (!b) return 1; | ||
| 1747 | return attr_info_compare_compute_range(a->set, b->set, 0, 0, 0, 0); | ||
| 1748 | } | ||
| 1749 | int STORE_ATTR_INFO_in_range(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b) | ||
| 1750 | { | ||
| 1751 | unsigned int alow, ahigh, blow, bhigh; | ||
| 1752 | |||
| 1753 | if (a == b) return 1; | ||
| 1754 | if (!a) return 0; | ||
| 1755 | if (!b) return 0; | ||
| 1756 | attr_info_compare_compute_range(a->set, b->set, | ||
| 1757 | &alow, &ahigh, &blow, &bhigh); | ||
| 1758 | if (alow >= blow && ahigh <= bhigh) | ||
| 1759 | return 1; | ||
| 1760 | return 0; | ||
| 1761 | } | ||
| 1762 | int STORE_ATTR_INFO_in(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b) | ||
| 1763 | { | ||
| 1764 | unsigned char *abits, *bbits; | ||
| 1765 | int i; | ||
| 1766 | |||
| 1767 | if (a == b) return 1; | ||
| 1768 | if (!a) return 0; | ||
| 1769 | if (!b) return 0; | ||
| 1770 | abits = a->set; | ||
| 1771 | bbits = b->set; | ||
| 1772 | for (i = 0; i < (STORE_ATTR_TYPE_NUM + 8) / 8; i++, abits++, bbits++) | ||
| 1773 | { | ||
| 1774 | if (*abits && (*bbits & *abits) != *abits) | ||
| 1775 | return 0; | ||
| 1776 | } | ||
| 1777 | return 1; | ||
| 1778 | } | ||
| 1779 | int STORE_ATTR_INFO_in_ex(STORE_ATTR_INFO *a, STORE_ATTR_INFO *b) | ||
| 1780 | { | ||
| 1781 | STORE_ATTR_TYPES i; | ||
| 1782 | |||
| 1783 | if (a == b) return 1; | ||
| 1784 | if (!STORE_ATTR_INFO_in(a, b)) return 0; | ||
| 1785 | for (i = 1; i < STORE_ATTR_TYPE_NUM; i++) | ||
| 1786 | if (ATTR_IS_SET(a, i)) | ||
| 1787 | { | ||
| 1788 | switch(i) | ||
| 1789 | { | ||
| 1790 | case STORE_ATTR_FRIENDLYNAME: | ||
| 1791 | case STORE_ATTR_EMAIL: | ||
| 1792 | case STORE_ATTR_FILENAME: | ||
| 1793 | if (strcmp(a->values[i].cstring, | ||
| 1794 | b->values[i].cstring)) | ||
| 1795 | return 0; | ||
| 1796 | break; | ||
| 1797 | case STORE_ATTR_KEYID: | ||
| 1798 | case STORE_ATTR_ISSUERKEYID: | ||
| 1799 | case STORE_ATTR_SUBJECTKEYID: | ||
| 1800 | case STORE_ATTR_ISSUERSERIALHASH: | ||
| 1801 | case STORE_ATTR_CERTHASH: | ||
| 1802 | if (memcmp(a->values[i].sha1string, | ||
| 1803 | b->values[i].sha1string, | ||
| 1804 | a->value_sizes[i])) | ||
| 1805 | return 0; | ||
| 1806 | break; | ||
| 1807 | case STORE_ATTR_ISSUER: | ||
| 1808 | case STORE_ATTR_SUBJECT: | ||
| 1809 | if (X509_NAME_cmp(a->values[i].dn, | ||
| 1810 | b->values[i].dn)) | ||
| 1811 | return 0; | ||
| 1812 | break; | ||
| 1813 | case STORE_ATTR_SERIAL: | ||
| 1814 | if (BN_cmp(a->values[i].number, | ||
| 1815 | b->values[i].number)) | ||
| 1816 | return 0; | ||
| 1817 | break; | ||
| 1818 | default: | ||
| 1819 | break; | ||
| 1820 | } | ||
| 1821 | } | ||
| 1822 | |||
| 1823 | return 1; | ||
| 1824 | } | ||
diff --git a/src/lib/libssl/src/crypto/store/str_locl.h b/src/lib/libssl/src/crypto/store/str_locl.h new file mode 100644 index 0000000000..3f8cb75619 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/str_locl.h | |||
| @@ -0,0 +1,124 @@ | |||
| 1 | /* crypto/store/str_locl.h -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Written by Richard Levitte (richard@levitte.org) for the OpenSSL | ||
| 3 | * project 2003. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #ifndef HEADER_STORE_LOCL_H | ||
| 60 | #define HEADER_STORE_LOCL_H | ||
| 61 | |||
| 62 | #include <openssl/crypto.h> | ||
| 63 | #include <openssl/store.h> | ||
| 64 | |||
| 65 | #ifdef __cplusplus | ||
| 66 | extern "C" { | ||
| 67 | #endif | ||
| 68 | |||
| 69 | struct store_method_st | ||
| 70 | { | ||
| 71 | char *name; | ||
| 72 | |||
| 73 | /* All the functions return a positive integer or non-NULL for success | ||
| 74 | and 0, a negative integer or NULL for failure */ | ||
| 75 | |||
| 76 | /* Initialise the STORE with private data */ | ||
| 77 | STORE_INITIALISE_FUNC_PTR init; | ||
| 78 | /* Initialise the STORE with private data */ | ||
| 79 | STORE_CLEANUP_FUNC_PTR clean; | ||
| 80 | /* Generate an object of a given type */ | ||
| 81 | STORE_GENERATE_OBJECT_FUNC_PTR generate_object; | ||
| 82 | /* Get an object of a given type. This function isn't really very | ||
| 83 | useful since the listing functions (below) can be used for the | ||
| 84 | same purpose and are much more general. */ | ||
| 85 | STORE_GET_OBJECT_FUNC_PTR get_object; | ||
| 86 | /* Store an object of a given type. */ | ||
| 87 | STORE_STORE_OBJECT_FUNC_PTR store_object; | ||
| 88 | /* Modify the attributes bound to an object of a given type. */ | ||
| 89 | STORE_MODIFY_OBJECT_FUNC_PTR modify_object; | ||
| 90 | /* Revoke an object of a given type. */ | ||
| 91 | STORE_HANDLE_OBJECT_FUNC_PTR revoke_object; | ||
| 92 | /* Delete an object of a given type. */ | ||
| 93 | STORE_HANDLE_OBJECT_FUNC_PTR delete_object; | ||
| 94 | /* List a bunch of objects of a given type and with the associated | ||
| 95 | attributes. */ | ||
| 96 | STORE_START_OBJECT_FUNC_PTR list_object_start; | ||
| 97 | STORE_NEXT_OBJECT_FUNC_PTR list_object_next; | ||
| 98 | STORE_END_OBJECT_FUNC_PTR list_object_end; | ||
| 99 | STORE_END_OBJECT_FUNC_PTR list_object_endp; | ||
| 100 | /* Store-level function to make any necessary update operations. */ | ||
| 101 | STORE_GENERIC_FUNC_PTR update_store; | ||
| 102 | /* Store-level function to get exclusive access to the store. */ | ||
| 103 | STORE_GENERIC_FUNC_PTR lock_store; | ||
| 104 | /* Store-level function to release exclusive access to the store. */ | ||
| 105 | STORE_GENERIC_FUNC_PTR unlock_store; | ||
| 106 | |||
| 107 | /* Generic control function */ | ||
| 108 | STORE_CTRL_FUNC_PTR ctrl; | ||
| 109 | }; | ||
| 110 | |||
| 111 | struct store_st | ||
| 112 | { | ||
| 113 | const STORE_METHOD *meth; | ||
| 114 | /* functional reference if 'meth' is ENGINE-provided */ | ||
| 115 | ENGINE *engine; | ||
| 116 | |||
| 117 | CRYPTO_EX_DATA ex_data; | ||
| 118 | int references; | ||
| 119 | }; | ||
| 120 | #ifdef __cplusplus | ||
| 121 | } | ||
| 122 | #endif | ||
| 123 | |||
| 124 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/store/str_mem.c b/src/lib/libssl/src/crypto/store/str_mem.c new file mode 100644 index 0000000000..527757ae09 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/str_mem.c | |||
| @@ -0,0 +1,357 @@ | |||
| 1 | /* crypto/store/str_mem.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Written by Richard Levitte (richard@levitte.org) for the OpenSSL | ||
| 3 | * project 2003. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <string.h> | ||
| 60 | #include <openssl/err.h> | ||
| 61 | #include "str_locl.h" | ||
| 62 | |||
| 63 | /* The memory store is currently highly experimental. It's meant to become | ||
| 64 | a base store used by other stores for internal caching (for full caching | ||
| 65 | support, aging needs to be added). | ||
| 66 | |||
| 67 | The database use is meant to support as much attribute association as | ||
| 68 | possible, while providing for as small search ranges as possible. | ||
| 69 | This is currently provided for by sorting the entries by numbers that | ||
| 70 | are composed of bits set at the positions indicated by attribute type | ||
| 71 | codes. This provides for ranges determined by the highest attribute | ||
| 72 | type code value. A better idea might be to sort by values computed | ||
| 73 | from the range of attributes associated with the object (basically, | ||
| 74 | the difference between the highest and lowest attribute type code) | ||
| 75 | and it's distance from a base (basically, the lowest associated | ||
| 76 | attribute type code). | ||
| 77 | */ | ||
| 78 | |||
| 79 | struct mem_object_data_st | ||
| 80 | { | ||
| 81 | STORE_OBJECT *object; | ||
| 82 | STORE_ATTR_INFO *attr_info; | ||
| 83 | int references; | ||
| 84 | }; | ||
| 85 | |||
| 86 | struct mem_data_st | ||
| 87 | { | ||
| 88 | STACK *data; /* A stack of mem_object_data_st, | ||
| 89 | sorted with STORE_ATTR_INFO_compare(). */ | ||
| 90 | unsigned int compute_components : 1; /* Currently unused, but can | ||
| 91 | be used to add attributes | ||
| 92 | from parts of the data. */ | ||
| 93 | }; | ||
| 94 | |||
| 95 | struct mem_ctx_st | ||
| 96 | { | ||
| 97 | int type; /* The type we're searching for */ | ||
| 98 | STACK *search_attributes; /* Sets of attributes to search for. | ||
| 99 | Each element is a STORE_ATTR_INFO. */ | ||
| 100 | int search_index; /* which of the search attributes we found a match | ||
| 101 | for, -1 when we still haven't found any */ | ||
| 102 | int index; /* -1 as long as we're searching for the first */ | ||
| 103 | }; | ||
| 104 | |||
| 105 | static int mem_init(STORE *s); | ||
| 106 | static void mem_clean(STORE *s); | ||
| 107 | static STORE_OBJECT *mem_generate(STORE *s, STORE_OBJECT_TYPES type, | ||
| 108 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 109 | static STORE_OBJECT *mem_get(STORE *s, STORE_OBJECT_TYPES type, | ||
| 110 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 111 | static int mem_store(STORE *s, STORE_OBJECT_TYPES type, | ||
| 112 | STORE_OBJECT *data, OPENSSL_ITEM attributes[], | ||
| 113 | OPENSSL_ITEM parameters[]); | ||
| 114 | static int mem_modify(STORE *s, STORE_OBJECT_TYPES type, | ||
| 115 | OPENSSL_ITEM search_attributes[], OPENSSL_ITEM add_attributes[], | ||
| 116 | OPENSSL_ITEM modify_attributes[], OPENSSL_ITEM delete_attributes[], | ||
| 117 | OPENSSL_ITEM parameters[]); | ||
| 118 | static int mem_delete(STORE *s, STORE_OBJECT_TYPES type, | ||
| 119 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 120 | static void *mem_list_start(STORE *s, STORE_OBJECT_TYPES type, | ||
| 121 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]); | ||
| 122 | static STORE_OBJECT *mem_list_next(STORE *s, void *handle); | ||
| 123 | static int mem_list_end(STORE *s, void *handle); | ||
| 124 | static int mem_list_endp(STORE *s, void *handle); | ||
| 125 | static int mem_lock(STORE *s, OPENSSL_ITEM attributes[], | ||
| 126 | OPENSSL_ITEM parameters[]); | ||
| 127 | static int mem_unlock(STORE *s, OPENSSL_ITEM attributes[], | ||
| 128 | OPENSSL_ITEM parameters[]); | ||
| 129 | static int mem_ctrl(STORE *s, int cmd, long l, void *p, void (*f)(void)); | ||
| 130 | |||
| 131 | static STORE_METHOD store_memory = | ||
| 132 | { | ||
| 133 | "OpenSSL memory store interface", | ||
| 134 | mem_init, | ||
| 135 | mem_clean, | ||
| 136 | mem_generate, | ||
| 137 | mem_get, | ||
| 138 | mem_store, | ||
| 139 | mem_modify, | ||
| 140 | NULL, /* revoke */ | ||
| 141 | mem_delete, | ||
| 142 | mem_list_start, | ||
| 143 | mem_list_next, | ||
| 144 | mem_list_end, | ||
| 145 | mem_list_endp, | ||
| 146 | NULL, /* update */ | ||
| 147 | mem_lock, | ||
| 148 | mem_unlock, | ||
| 149 | mem_ctrl | ||
| 150 | }; | ||
| 151 | |||
| 152 | const STORE_METHOD *STORE_Memory(void) | ||
| 153 | { | ||
| 154 | return &store_memory; | ||
| 155 | } | ||
| 156 | |||
| 157 | static int mem_init(STORE *s) | ||
| 158 | { | ||
| 159 | return 1; | ||
| 160 | } | ||
| 161 | |||
| 162 | static void mem_clean(STORE *s) | ||
| 163 | { | ||
| 164 | return; | ||
| 165 | } | ||
| 166 | |||
| 167 | static STORE_OBJECT *mem_generate(STORE *s, STORE_OBJECT_TYPES type, | ||
| 168 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]) | ||
| 169 | { | ||
| 170 | STOREerr(STORE_F_MEM_GENERATE, STORE_R_NOT_IMPLEMENTED); | ||
| 171 | return 0; | ||
| 172 | } | ||
| 173 | static STORE_OBJECT *mem_get(STORE *s, STORE_OBJECT_TYPES type, | ||
| 174 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]) | ||
| 175 | { | ||
| 176 | void *context = mem_list_start(s, type, attributes, parameters); | ||
| 177 | |||
| 178 | if (context) | ||
| 179 | { | ||
| 180 | STORE_OBJECT *object = mem_list_next(s, context); | ||
| 181 | |||
| 182 | if (mem_list_end(s, context)) | ||
| 183 | return object; | ||
| 184 | } | ||
| 185 | return NULL; | ||
| 186 | } | ||
| 187 | static int mem_store(STORE *s, STORE_OBJECT_TYPES type, | ||
| 188 | STORE_OBJECT *data, OPENSSL_ITEM attributes[], | ||
| 189 | OPENSSL_ITEM parameters[]) | ||
| 190 | { | ||
| 191 | STOREerr(STORE_F_MEM_STORE, STORE_R_NOT_IMPLEMENTED); | ||
| 192 | return 0; | ||
| 193 | } | ||
| 194 | static int mem_modify(STORE *s, STORE_OBJECT_TYPES type, | ||
| 195 | OPENSSL_ITEM search_attributes[], OPENSSL_ITEM add_attributes[], | ||
| 196 | OPENSSL_ITEM modify_attributes[], OPENSSL_ITEM delete_attributes[], | ||
| 197 | OPENSSL_ITEM parameters[]) | ||
| 198 | { | ||
| 199 | STOREerr(STORE_F_MEM_MODIFY, STORE_R_NOT_IMPLEMENTED); | ||
| 200 | return 0; | ||
| 201 | } | ||
| 202 | static int mem_delete(STORE *s, STORE_OBJECT_TYPES type, | ||
| 203 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]) | ||
| 204 | { | ||
| 205 | STOREerr(STORE_F_MEM_DELETE, STORE_R_NOT_IMPLEMENTED); | ||
| 206 | return 0; | ||
| 207 | } | ||
| 208 | |||
| 209 | /* The list functions may be the hardest to understand. Basically, | ||
| 210 | mem_list_start compiles a stack of attribute info elements, and | ||
| 211 | puts that stack into the context to be returned. mem_list_next | ||
| 212 | will then find the first matching element in the store, and then | ||
| 213 | walk all the way to the end of the store (since any combination | ||
| 214 | of attribute bits above the starting point may match the searched | ||
| 215 | for bit pattern...). */ | ||
| 216 | static void *mem_list_start(STORE *s, STORE_OBJECT_TYPES type, | ||
| 217 | OPENSSL_ITEM attributes[], OPENSSL_ITEM parameters[]) | ||
| 218 | { | ||
| 219 | struct mem_ctx_st *context = | ||
| 220 | (struct mem_ctx_st *)OPENSSL_malloc(sizeof(struct mem_ctx_st)); | ||
| 221 | void *attribute_context = NULL; | ||
| 222 | STORE_ATTR_INFO *attrs = NULL; | ||
| 223 | |||
| 224 | if (!context) | ||
| 225 | { | ||
| 226 | STOREerr(STORE_F_MEM_LIST_START, ERR_R_MALLOC_FAILURE); | ||
| 227 | return 0; | ||
| 228 | } | ||
| 229 | memset(context, 0, sizeof(struct mem_ctx_st)); | ||
| 230 | |||
| 231 | attribute_context = STORE_parse_attrs_start(attributes); | ||
| 232 | if (!attribute_context) | ||
| 233 | { | ||
| 234 | STOREerr(STORE_F_MEM_LIST_START, ERR_R_STORE_LIB); | ||
| 235 | goto err; | ||
| 236 | } | ||
| 237 | |||
| 238 | while((attrs = STORE_parse_attrs_next(attribute_context))) | ||
| 239 | { | ||
| 240 | if (context->search_attributes == NULL) | ||
| 241 | { | ||
| 242 | context->search_attributes = | ||
| 243 | sk_new((int (*)(const char * const *, const char * const *))STORE_ATTR_INFO_compare); | ||
| 244 | if (!context->search_attributes) | ||
| 245 | { | ||
| 246 | STOREerr(STORE_F_MEM_LIST_START, | ||
| 247 | ERR_R_MALLOC_FAILURE); | ||
| 248 | goto err; | ||
| 249 | } | ||
| 250 | } | ||
| 251 | sk_push(context->search_attributes,(char *)attrs); | ||
| 252 | } | ||
| 253 | if (!STORE_parse_attrs_endp(attribute_context)) | ||
| 254 | goto err; | ||
| 255 | STORE_parse_attrs_end(attribute_context); | ||
| 256 | context->search_index = -1; | ||
| 257 | context->index = -1; | ||
| 258 | return context; | ||
| 259 | err: | ||
| 260 | if (attribute_context) STORE_parse_attrs_end(attribute_context); | ||
| 261 | mem_list_end(s, context); | ||
| 262 | return NULL; | ||
| 263 | } | ||
| 264 | static STORE_OBJECT *mem_list_next(STORE *s, void *handle) | ||
| 265 | { | ||
| 266 | int i; | ||
| 267 | struct mem_ctx_st *context = (struct mem_ctx_st *)handle; | ||
| 268 | struct mem_object_data_st key = { 0, 0, 1 }; | ||
| 269 | struct mem_data_st *store = | ||
| 270 | (struct mem_data_st *)STORE_get_ex_data(s, 1); | ||
| 271 | int srch; | ||
| 272 | int cres = 0; | ||
| 273 | |||
| 274 | if (!context) | ||
| 275 | { | ||
| 276 | STOREerr(STORE_F_MEM_LIST_NEXT, ERR_R_PASSED_NULL_PARAMETER); | ||
| 277 | return NULL; | ||
| 278 | } | ||
| 279 | if (!store) | ||
| 280 | { | ||
| 281 | STOREerr(STORE_F_MEM_LIST_NEXT, STORE_R_NO_STORE); | ||
| 282 | return NULL; | ||
| 283 | } | ||
| 284 | |||
| 285 | if (context->search_index == -1) | ||
| 286 | { | ||
| 287 | for (i = 0; i < sk_num(context->search_attributes); i++) | ||
| 288 | { | ||
| 289 | key.attr_info = | ||
| 290 | (STORE_ATTR_INFO *)sk_value(context->search_attributes, i); | ||
| 291 | srch = sk_find_ex(store->data, (char *)&key); | ||
| 292 | |||
| 293 | if (srch >= 0) | ||
| 294 | { | ||
| 295 | context->search_index = srch; | ||
| 296 | break; | ||
| 297 | } | ||
| 298 | } | ||
| 299 | } | ||
| 300 | if (context->search_index < 0) | ||
| 301 | return NULL; | ||
| 302 | |||
| 303 | key.attr_info = | ||
| 304 | (STORE_ATTR_INFO *)sk_value(context->search_attributes, | ||
| 305 | context->search_index); | ||
| 306 | for(srch = context->search_index; | ||
| 307 | srch < sk_num(store->data) | ||
| 308 | && STORE_ATTR_INFO_in_range(key.attr_info, | ||
| 309 | (STORE_ATTR_INFO *)sk_value(store->data, srch)) | ||
| 310 | && !(cres = STORE_ATTR_INFO_in_ex(key.attr_info, | ||
| 311 | (STORE_ATTR_INFO *)sk_value(store->data, srch))); | ||
| 312 | srch++) | ||
| 313 | ; | ||
| 314 | |||
| 315 | context->search_index = srch; | ||
| 316 | if (cres) | ||
| 317 | return ((struct mem_object_data_st *)sk_value(store->data, | ||
| 318 | srch))->object; | ||
| 319 | return NULL; | ||
| 320 | } | ||
| 321 | static int mem_list_end(STORE *s, void *handle) | ||
| 322 | { | ||
| 323 | struct mem_ctx_st *context = (struct mem_ctx_st *)handle; | ||
| 324 | |||
| 325 | if (!context) | ||
| 326 | { | ||
| 327 | STOREerr(STORE_F_MEM_LIST_END, ERR_R_PASSED_NULL_PARAMETER); | ||
| 328 | return 0; | ||
| 329 | } | ||
| 330 | if (context && context->search_attributes) | ||
| 331 | sk_free(context->search_attributes); | ||
| 332 | if (context) OPENSSL_free(context); | ||
| 333 | return 1; | ||
| 334 | } | ||
| 335 | static int mem_list_endp(STORE *s, void *handle) | ||
| 336 | { | ||
| 337 | struct mem_ctx_st *context = (struct mem_ctx_st *)handle; | ||
| 338 | |||
| 339 | if (!context | ||
| 340 | || context->search_index == sk_num(context->search_attributes)) | ||
| 341 | return 1; | ||
| 342 | return 0; | ||
| 343 | } | ||
| 344 | static int mem_lock(STORE *s, OPENSSL_ITEM attributes[], | ||
| 345 | OPENSSL_ITEM parameters[]) | ||
| 346 | { | ||
| 347 | return 1; | ||
| 348 | } | ||
| 349 | static int mem_unlock(STORE *s, OPENSSL_ITEM attributes[], | ||
| 350 | OPENSSL_ITEM parameters[]) | ||
| 351 | { | ||
| 352 | return 1; | ||
| 353 | } | ||
| 354 | static int mem_ctrl(STORE *s, int cmd, long l, void *p, void (*f)(void)) | ||
| 355 | { | ||
| 356 | return 1; | ||
| 357 | } | ||
diff --git a/src/lib/libssl/src/crypto/store/str_meth.c b/src/lib/libssl/src/crypto/store/str_meth.c new file mode 100644 index 0000000000..a46de03a26 --- /dev/null +++ b/src/lib/libssl/src/crypto/store/str_meth.c | |||
| @@ -0,0 +1,250 @@ | |||
| 1 | /* crypto/store/str_meth.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* Written by Richard Levitte (richard@levitte.org) for the OpenSSL | ||
| 3 | * project 2003. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * openssl-core@openssl.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <string.h> | ||
| 60 | #include <openssl/buffer.h> | ||
| 61 | #include "str_locl.h" | ||
| 62 | |||
| 63 | STORE_METHOD *STORE_create_method(char *name) | ||
| 64 | { | ||
| 65 | STORE_METHOD *store_method = (STORE_METHOD *)OPENSSL_malloc(sizeof(STORE_METHOD)); | ||
| 66 | |||
| 67 | if (store_method) | ||
| 68 | { | ||
| 69 | memset(store_method, 0, sizeof(*store_method)); | ||
| 70 | store_method->name = BUF_strdup(name); | ||
| 71 | } | ||
| 72 | return store_method; | ||
| 73 | } | ||
| 74 | |||
| 75 | /* BIG FSCKING WARNING!!!! If you use this on a statically allocated method | ||
| 76 | (that is, it hasn't been allocated using STORE_create_method(), you deserve | ||
| 77 | anything Murphy can throw at you and more! You have been warned. */ | ||
| 78 | void STORE_destroy_method(STORE_METHOD *store_method) | ||
| 79 | { | ||
| 80 | if (!store_method) return; | ||
| 81 | OPENSSL_free(store_method->name); | ||
| 82 | store_method->name = NULL; | ||
| 83 | OPENSSL_free(store_method); | ||
| 84 | } | ||
| 85 | |||
| 86 | int STORE_method_set_initialise_function(STORE_METHOD *sm, STORE_INITIALISE_FUNC_PTR init_f) | ||
| 87 | { | ||
| 88 | sm->init = init_f; | ||
| 89 | return 1; | ||
| 90 | } | ||
| 91 | |||
| 92 | int STORE_method_set_cleanup_function(STORE_METHOD *sm, STORE_CLEANUP_FUNC_PTR clean_f) | ||
| 93 | { | ||
| 94 | sm->clean = clean_f; | ||
| 95 | return 1; | ||
| 96 | } | ||
| 97 | |||
| 98 | int STORE_method_set_generate_function(STORE_METHOD *sm, STORE_GENERATE_OBJECT_FUNC_PTR generate_f) | ||
| 99 | { | ||
| 100 | sm->generate_object = generate_f; | ||
| 101 | return 1; | ||
| 102 | } | ||
| 103 | |||
| 104 | int STORE_method_set_get_function(STORE_METHOD *sm, STORE_GET_OBJECT_FUNC_PTR get_f) | ||
| 105 | { | ||
| 106 | sm->get_object = get_f; | ||
| 107 | return 1; | ||
| 108 | } | ||
| 109 | |||
| 110 | int STORE_method_set_store_function(STORE_METHOD *sm, STORE_STORE_OBJECT_FUNC_PTR store_f) | ||
| 111 | { | ||
| 112 | sm->store_object = store_f; | ||
| 113 | return 1; | ||
| 114 | } | ||
| 115 | |||
| 116 | int STORE_method_set_modify_function(STORE_METHOD *sm, STORE_MODIFY_OBJECT_FUNC_PTR modify_f) | ||
| 117 | { | ||
| 118 | sm->modify_object = modify_f; | ||
| 119 | return 1; | ||
| 120 | } | ||
| 121 | |||
| 122 | int STORE_method_set_revoke_function(STORE_METHOD *sm, STORE_HANDLE_OBJECT_FUNC_PTR revoke_f) | ||
| 123 | { | ||
| 124 | sm->revoke_object = revoke_f; | ||
| 125 | return 1; | ||
| 126 | } | ||
| 127 | |||
| 128 | int STORE_method_set_delete_function(STORE_METHOD *sm, STORE_HANDLE_OBJECT_FUNC_PTR delete_f) | ||
| 129 | { | ||
| 130 | sm->delete_object = delete_f; | ||
| 131 | return 1; | ||
| 132 | } | ||
| 133 | |||
| 134 | int STORE_method_set_list_start_function(STORE_METHOD *sm, STORE_START_OBJECT_FUNC_PTR list_start_f) | ||
| 135 | { | ||
| 136 | sm->list_object_start = list_start_f; | ||
| 137 | return 1; | ||
| 138 | } | ||
| 139 | |||
| 140 | int STORE_method_set_list_next_function(STORE_METHOD *sm, STORE_NEXT_OBJECT_FUNC_PTR list_next_f) | ||
| 141 | { | ||
| 142 | sm->list_object_next = list_next_f; | ||
| 143 | return 1; | ||
| 144 | } | ||
| 145 | |||
| 146 | int STORE_method_set_list_end_function(STORE_METHOD *sm, STORE_END_OBJECT_FUNC_PTR list_end_f) | ||
| 147 | { | ||
| 148 | sm->list_object_end = list_end_f; | ||
| 149 | return 1; | ||
| 150 | } | ||
| 151 | |||
| 152 | int STORE_method_set_update_store_function(STORE_METHOD *sm, STORE_GENERIC_FUNC_PTR update_f) | ||
| 153 | { | ||
| 154 | sm->update_store = update_f; | ||
| 155 | return 1; | ||
| 156 | } | ||
| 157 | |||
| 158 | int STORE_method_set_lock_store_function(STORE_METHOD *sm, STORE_GENERIC_FUNC_PTR lock_f) | ||
| 159 | { | ||
| 160 | sm->lock_store = lock_f; | ||
| 161 | return 1; | ||
| 162 | } | ||
| 163 | |||
| 164 | int STORE_method_set_unlock_store_function(STORE_METHOD *sm, STORE_GENERIC_FUNC_PTR unlock_f) | ||
| 165 | { | ||
| 166 | sm->unlock_store = unlock_f; | ||
| 167 | return 1; | ||
| 168 | } | ||
| 169 | |||
| 170 | int STORE_method_set_ctrl_function(STORE_METHOD *sm, STORE_CTRL_FUNC_PTR ctrl_f) | ||
| 171 | { | ||
| 172 | sm->ctrl = ctrl_f; | ||
| 173 | return 1; | ||
| 174 | } | ||
| 175 | |||
| 176 | STORE_INITIALISE_FUNC_PTR STORE_method_get_initialise_function(STORE_METHOD *sm) | ||
| 177 | { | ||
| 178 | return sm->init; | ||
| 179 | } | ||
| 180 | |||
| 181 | STORE_CLEANUP_FUNC_PTR STORE_method_get_cleanup_function(STORE_METHOD *sm) | ||
| 182 | { | ||
| 183 | return sm->clean; | ||
| 184 | } | ||
| 185 | |||
| 186 | STORE_GENERATE_OBJECT_FUNC_PTR STORE_method_get_generate_function(STORE_METHOD *sm) | ||
| 187 | { | ||
| 188 | return sm->generate_object; | ||
| 189 | } | ||
| 190 | |||
| 191 | STORE_GET_OBJECT_FUNC_PTR STORE_method_get_get_function(STORE_METHOD *sm) | ||
| 192 | { | ||
| 193 | return sm->get_object; | ||
| 194 | } | ||
| 195 | |||
| 196 | STORE_STORE_OBJECT_FUNC_PTR STORE_method_get_store_function(STORE_METHOD *sm) | ||
| 197 | { | ||
| 198 | return sm->store_object; | ||
| 199 | } | ||
| 200 | |||
| 201 | STORE_MODIFY_OBJECT_FUNC_PTR STORE_method_get_modify_function(STORE_METHOD *sm) | ||
| 202 | { | ||
| 203 | return sm->modify_object; | ||
| 204 | } | ||
| 205 | |||
| 206 | STORE_HANDLE_OBJECT_FUNC_PTR STORE_method_get_revoke_function(STORE_METHOD *sm) | ||
| 207 | { | ||
| 208 | return sm->revoke_object; | ||
| 209 | } | ||
| 210 | |||
| 211 | STORE_HANDLE_OBJECT_FUNC_PTR STORE_method_get_delete_function(STORE_METHOD *sm) | ||
| 212 | { | ||
| 213 | return sm->delete_object; | ||
| 214 | } | ||
| 215 | |||
| 216 | STORE_START_OBJECT_FUNC_PTR STORE_method_get_list_start_function(STORE_METHOD *sm) | ||
| 217 | { | ||
| 218 | return sm->list_object_start; | ||
| 219 | } | ||
| 220 | |||
| 221 | STORE_NEXT_OBJECT_FUNC_PTR STORE_method_get_list_next_function(STORE_METHOD *sm) | ||
| 222 | { | ||
| 223 | return sm->list_object_next; | ||
| 224 | } | ||
| 225 | |||
| 226 | STORE_END_OBJECT_FUNC_PTR STORE_method_get_list_end_function(STORE_METHOD *sm) | ||
| 227 | { | ||
| 228 | return sm->list_object_end; | ||
| 229 | } | ||
| 230 | |||
| 231 | STORE_GENERIC_FUNC_PTR STORE_method_get_update_store_function(STORE_METHOD *sm) | ||
| 232 | { | ||
| 233 | return sm->update_store; | ||
| 234 | } | ||
| 235 | |||
| 236 | STORE_GENERIC_FUNC_PTR STORE_method_get_lock_store_function(STORE_METHOD *sm) | ||
| 237 | { | ||
| 238 | return sm->lock_store; | ||
| 239 | } | ||
| 240 | |||
| 241 | STORE_GENERIC_FUNC_PTR STORE_method_get_unlock_store_function(STORE_METHOD *sm) | ||
| 242 | { | ||
| 243 | return sm->unlock_store; | ||
| 244 | } | ||
| 245 | |||
| 246 | STORE_CTRL_FUNC_PTR STORE_method_get_ctrl_function(STORE_METHOD *sm) | ||
| 247 | { | ||
| 248 | return sm->ctrl; | ||
| 249 | } | ||
| 250 | |||
diff --git a/src/lib/libssl/src/crypto/threads/netware.bat b/src/lib/libssl/src/crypto/threads/netware.bat new file mode 100644 index 0000000000..0b3eca3caf --- /dev/null +++ b/src/lib/libssl/src/crypto/threads/netware.bat | |||
| @@ -0,0 +1,79 @@ | |||
| 1 | @echo off | ||
| 2 | rem batch file to build multi-thread test ( mttest.nlm ) | ||
| 3 | |||
| 4 | rem command line arguments: | ||
| 5 | rem debug => build using debug settings | ||
| 6 | |||
| 7 | rem | ||
| 8 | rem After building, copy mttest.nlm to the server and run it, you'll probably | ||
| 9 | rem want to redirect stdout and stderr. An example command line would be | ||
| 10 | rem "mttest.nlm -thread 20 -loops 10 -CAfile \openssl\apps\server.pem >mttest.out 2>mttest.err" | ||
| 11 | rem | ||
| 12 | |||
| 13 | del mttest.nlm | ||
| 14 | |||
| 15 | set BLD_DEBUG= | ||
| 16 | set CFLAGS= | ||
| 17 | set LFLAGS= | ||
| 18 | set LIBS= | ||
| 19 | |||
| 20 | if "%1" == "DEBUG" set BLD_DEBUG=YES | ||
| 21 | if "%1" == "debug" set BLD_DEBUG=YES | ||
| 22 | |||
| 23 | if "%MWCIncludes%" == "" goto inc_error | ||
| 24 | if "%PRELUDE%" == "" goto prelude_error | ||
| 25 | if "%IMPORTS%" == "" goto imports_error | ||
| 26 | |||
| 27 | set CFLAGS=-c -I..\..\outinc_nw -nosyspath -DOPENSSL_SYS_NETWARE -opt off -g -sym internal -maxerrors 20 | ||
| 28 | |||
| 29 | if "%BLD_DEBUG%" == "YES" set LIBS=..\..\out_nw.dbg\ssl.lib ..\..\out_nw.dbg\crypto.lib | ||
| 30 | if "%BLD_DEBUG%" == "" set LIBS=..\..\out_nw\ssl.lib ..\..\out_nw\crypto.lib | ||
| 31 | |||
| 32 | set LFLAGS=-msgstyle gcc -zerobss -stacksize 32768 -nostdlib -sym internal | ||
| 33 | |||
| 34 | rem generate command file for metrowerks | ||
| 35 | echo. | ||
| 36 | echo Generating Metrowerks command file: mttest.def | ||
| 37 | echo # dynamically generated command file for metrowerks build > mttest.def | ||
| 38 | echo IMPORT @%IMPORTS%\clib.imp >> mttest.def | ||
| 39 | echo IMPORT @%IMPORTS%\threads.imp >> mttest.def | ||
| 40 | echo IMPORT @%IMPORTS%\ws2nlm.imp >> mttest.def | ||
| 41 | echo IMPORT GetProcessSwitchCount >> mttest.def | ||
| 42 | echo MODULE clib >> mttest.def | ||
| 43 | |||
| 44 | rem compile | ||
| 45 | echo. | ||
| 46 | echo Compiling mttest.c | ||
| 47 | mwccnlm.exe mttest.c %CFLAGS% | ||
| 48 | if errorlevel 1 goto end | ||
| 49 | |||
| 50 | rem link | ||
| 51 | echo. | ||
| 52 | echo Linking mttest.nlm | ||
| 53 | mwldnlm.exe %LFLAGS% -screenname mttest -commandfile mttest.def mttest.o "%PRELUDE%" %LIBS% -o mttest.nlm | ||
| 54 | if errorlevel 1 goto end | ||
| 55 | |||
| 56 | goto end | ||
| 57 | |||
| 58 | :inc_error | ||
| 59 | echo. | ||
| 60 | echo Environment variable MWCIncludes is not set - see install.nw | ||
| 61 | goto end | ||
| 62 | |||
| 63 | :prelude_error | ||
| 64 | echo. | ||
| 65 | echo Environment variable PRELUDE is not set - see install.nw | ||
| 66 | goto end | ||
| 67 | |||
| 68 | :imports_error | ||
| 69 | echo. | ||
| 70 | echo Environment variable IMPORTS is not set - see install.nw | ||
| 71 | goto end | ||
| 72 | |||
| 73 | |||
| 74 | :end | ||
| 75 | set BLD_DEBUG= | ||
| 76 | set CFLAGS= | ||
| 77 | set LFLAGS= | ||
| 78 | set LIBS= | ||
| 79 | |||
diff --git a/src/lib/libssl/src/crypto/x509/x509_vpm.c b/src/lib/libssl/src/crypto/x509/x509_vpm.c new file mode 100644 index 0000000000..e9db6d62a7 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509/x509_vpm.c | |||
| @@ -0,0 +1,420 @@ | |||
| 1 | /* x509_vpm.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | |||
| 61 | #include "cryptlib.h" | ||
| 62 | #include <openssl/crypto.h> | ||
| 63 | #include <openssl/lhash.h> | ||
| 64 | #include <openssl/buffer.h> | ||
| 65 | #include <openssl/x509.h> | ||
| 66 | #include <openssl/x509v3.h> | ||
| 67 | |||
| 68 | /* X509_VERIFY_PARAM functions */ | ||
| 69 | |||
| 70 | static void x509_verify_param_zero(X509_VERIFY_PARAM *param) | ||
| 71 | { | ||
| 72 | if (!param) | ||
| 73 | return; | ||
| 74 | param->name = NULL; | ||
| 75 | param->purpose = 0; | ||
| 76 | param->trust = 0; | ||
| 77 | param->inh_flags = X509_VP_FLAG_DEFAULT; | ||
| 78 | param->flags = 0; | ||
| 79 | param->depth = -1; | ||
| 80 | if (param->policies) | ||
| 81 | { | ||
| 82 | sk_ASN1_OBJECT_pop_free(param->policies, ASN1_OBJECT_free); | ||
| 83 | param->policies = NULL; | ||
| 84 | } | ||
| 85 | } | ||
| 86 | |||
| 87 | X509_VERIFY_PARAM *X509_VERIFY_PARAM_new(void) | ||
| 88 | { | ||
| 89 | X509_VERIFY_PARAM *param; | ||
| 90 | param = OPENSSL_malloc(sizeof(X509_VERIFY_PARAM)); | ||
| 91 | memset(param, 0, sizeof(X509_VERIFY_PARAM)); | ||
| 92 | x509_verify_param_zero(param); | ||
| 93 | return param; | ||
| 94 | } | ||
| 95 | |||
| 96 | void X509_VERIFY_PARAM_free(X509_VERIFY_PARAM *param) | ||
| 97 | { | ||
| 98 | x509_verify_param_zero(param); | ||
| 99 | OPENSSL_free(param); | ||
| 100 | } | ||
| 101 | |||
| 102 | /* This function determines how parameters are "inherited" from one structure | ||
| 103 | * to another. There are several different ways this can happen. | ||
| 104 | * | ||
| 105 | * 1. If a child structure needs to have its values initialized from a parent | ||
| 106 | * they are simply copied across. For example SSL_CTX copied to SSL. | ||
| 107 | * 2. If the structure should take on values only if they are currently unset. | ||
| 108 | * For example the values in an SSL structure will take appropriate value | ||
| 109 | * for SSL servers or clients but only if the application has not set new | ||
| 110 | * ones. | ||
| 111 | * | ||
| 112 | * The "inh_flags" field determines how this function behaves. | ||
| 113 | * | ||
| 114 | * Normally any values which are set in the default are not copied from the | ||
| 115 | * destination and verify flags are ORed together. | ||
| 116 | * | ||
| 117 | * If X509_VP_FLAG_DEFAULT is set then anything set in the source is copied | ||
| 118 | * to the destination. Effectively the values in "to" become default values | ||
| 119 | * which will be used only if nothing new is set in "from". | ||
| 120 | * | ||
| 121 | * If X509_VP_FLAG_OVERWRITE is set then all value are copied across whether | ||
| 122 | * they are set or not. Flags is still Ored though. | ||
| 123 | * | ||
| 124 | * If X509_VP_FLAG_RESET_FLAGS is set then the flags value is copied instead | ||
| 125 | * of ORed. | ||
| 126 | * | ||
| 127 | * If X509_VP_FLAG_LOCKED is set then no values are copied. | ||
| 128 | * | ||
| 129 | * If X509_VP_FLAG_ONCE is set then the current inh_flags setting is zeroed | ||
| 130 | * after the next call. | ||
| 131 | */ | ||
| 132 | |||
| 133 | /* Macro to test if a field should be copied from src to dest */ | ||
| 134 | |||
| 135 | #define test_x509_verify_param_copy(field, def) \ | ||
| 136 | (to_overwrite || \ | ||
| 137 | ((src->field != def) && (to_default || (dest->field == def)))) | ||
| 138 | |||
| 139 | /* Macro to test and copy a field if necessary */ | ||
| 140 | |||
| 141 | #define x509_verify_param_copy(field, def) \ | ||
| 142 | if (test_x509_verify_param_copy(field, def)) \ | ||
| 143 | dest->field = src->field | ||
| 144 | |||
| 145 | |||
| 146 | int X509_VERIFY_PARAM_inherit(X509_VERIFY_PARAM *dest, | ||
| 147 | const X509_VERIFY_PARAM *src) | ||
| 148 | { | ||
| 149 | unsigned long inh_flags; | ||
| 150 | int to_default, to_overwrite; | ||
| 151 | if (!src) | ||
| 152 | return 1; | ||
| 153 | inh_flags = dest->inh_flags | src->inh_flags; | ||
| 154 | |||
| 155 | if (inh_flags & X509_VP_FLAG_ONCE) | ||
| 156 | dest->inh_flags = 0; | ||
| 157 | |||
| 158 | if (inh_flags & X509_VP_FLAG_LOCKED) | ||
| 159 | return 1; | ||
| 160 | |||
| 161 | if (inh_flags & X509_VP_FLAG_DEFAULT) | ||
| 162 | to_default = 1; | ||
| 163 | else | ||
| 164 | to_default = 0; | ||
| 165 | |||
| 166 | if (inh_flags & X509_VP_FLAG_OVERWRITE) | ||
| 167 | to_overwrite = 1; | ||
| 168 | else | ||
| 169 | to_overwrite = 0; | ||
| 170 | |||
| 171 | x509_verify_param_copy(purpose, 0); | ||
| 172 | x509_verify_param_copy(trust, 0); | ||
| 173 | x509_verify_param_copy(depth, -1); | ||
| 174 | |||
| 175 | /* If overwrite or check time not set, copy across */ | ||
| 176 | |||
| 177 | if (to_overwrite || !(dest->flags & X509_V_FLAG_USE_CHECK_TIME)) | ||
| 178 | { | ||
| 179 | dest->check_time = src->check_time; | ||
| 180 | dest->flags &= ~X509_V_FLAG_USE_CHECK_TIME; | ||
| 181 | /* Don't need to copy flag: that is done below */ | ||
| 182 | } | ||
| 183 | |||
| 184 | if (inh_flags & X509_VP_FLAG_RESET_FLAGS) | ||
| 185 | dest->flags = 0; | ||
| 186 | |||
| 187 | dest->flags |= src->flags; | ||
| 188 | |||
| 189 | if (test_x509_verify_param_copy(policies, NULL)) | ||
| 190 | { | ||
| 191 | if (!X509_VERIFY_PARAM_set1_policies(dest, src->policies)) | ||
| 192 | return 0; | ||
| 193 | } | ||
| 194 | |||
| 195 | return 1; | ||
| 196 | } | ||
| 197 | |||
| 198 | int X509_VERIFY_PARAM_set1(X509_VERIFY_PARAM *to, | ||
| 199 | const X509_VERIFY_PARAM *from) | ||
| 200 | { | ||
| 201 | to->inh_flags |= X509_VP_FLAG_DEFAULT; | ||
| 202 | return X509_VERIFY_PARAM_inherit(to, from); | ||
| 203 | } | ||
| 204 | |||
| 205 | int X509_VERIFY_PARAM_set1_name(X509_VERIFY_PARAM *param, const char *name) | ||
| 206 | { | ||
| 207 | if (param->name) | ||
| 208 | OPENSSL_free(param->name); | ||
| 209 | param->name = BUF_strdup(name); | ||
| 210 | if (param->name) | ||
| 211 | return 1; | ||
| 212 | return 0; | ||
| 213 | } | ||
| 214 | |||
| 215 | int X509_VERIFY_PARAM_set_flags(X509_VERIFY_PARAM *param, unsigned long flags) | ||
| 216 | { | ||
| 217 | param->flags |= flags; | ||
| 218 | if (flags & X509_V_FLAG_POLICY_MASK) | ||
| 219 | param->flags |= X509_V_FLAG_POLICY_CHECK; | ||
| 220 | return 1; | ||
| 221 | } | ||
| 222 | |||
| 223 | int X509_VERIFY_PARAM_clear_flags(X509_VERIFY_PARAM *param, unsigned long flags) | ||
| 224 | { | ||
| 225 | param->flags &= ~flags; | ||
| 226 | return 1; | ||
| 227 | } | ||
| 228 | |||
| 229 | unsigned long X509_VERIFY_PARAM_get_flags(X509_VERIFY_PARAM *param) | ||
| 230 | { | ||
| 231 | return param->flags; | ||
| 232 | } | ||
| 233 | |||
| 234 | int X509_VERIFY_PARAM_set_purpose(X509_VERIFY_PARAM *param, int purpose) | ||
| 235 | { | ||
| 236 | return X509_PURPOSE_set(¶m->purpose, purpose); | ||
| 237 | } | ||
| 238 | |||
| 239 | int X509_VERIFY_PARAM_set_trust(X509_VERIFY_PARAM *param, int trust) | ||
| 240 | { | ||
| 241 | return X509_TRUST_set(¶m->trust, trust); | ||
| 242 | } | ||
| 243 | |||
| 244 | void X509_VERIFY_PARAM_set_depth(X509_VERIFY_PARAM *param, int depth) | ||
| 245 | { | ||
| 246 | param->depth = depth; | ||
| 247 | } | ||
| 248 | |||
| 249 | void X509_VERIFY_PARAM_set_time(X509_VERIFY_PARAM *param, time_t t) | ||
| 250 | { | ||
| 251 | param->check_time = t; | ||
| 252 | param->flags |= X509_V_FLAG_USE_CHECK_TIME; | ||
| 253 | } | ||
| 254 | |||
| 255 | int X509_VERIFY_PARAM_add0_policy(X509_VERIFY_PARAM *param, ASN1_OBJECT *policy) | ||
| 256 | { | ||
| 257 | if (!param->policies) | ||
| 258 | { | ||
| 259 | param->policies = sk_ASN1_OBJECT_new_null(); | ||
| 260 | if (!param->policies) | ||
| 261 | return 0; | ||
| 262 | } | ||
| 263 | if (!sk_ASN1_OBJECT_push(param->policies, policy)) | ||
| 264 | return 0; | ||
| 265 | return 1; | ||
| 266 | } | ||
| 267 | |||
| 268 | int X509_VERIFY_PARAM_set1_policies(X509_VERIFY_PARAM *param, | ||
| 269 | STACK_OF(ASN1_OBJECT) *policies) | ||
| 270 | { | ||
| 271 | int i; | ||
| 272 | ASN1_OBJECT *oid, *doid; | ||
| 273 | if (!param) | ||
| 274 | return 0; | ||
| 275 | if (param->policies) | ||
| 276 | sk_ASN1_OBJECT_pop_free(param->policies, ASN1_OBJECT_free); | ||
| 277 | |||
| 278 | if (!policies) | ||
| 279 | { | ||
| 280 | param->policies = NULL; | ||
| 281 | return 1; | ||
| 282 | } | ||
| 283 | |||
| 284 | param->policies = sk_ASN1_OBJECT_new_null(); | ||
| 285 | if (!param->policies) | ||
| 286 | return 0; | ||
| 287 | |||
| 288 | for (i = 0; i < sk_ASN1_OBJECT_num(policies); i++) | ||
| 289 | { | ||
| 290 | oid = sk_ASN1_OBJECT_value(policies, i); | ||
| 291 | doid = OBJ_dup(oid); | ||
| 292 | if (!doid) | ||
| 293 | return 0; | ||
| 294 | if (!sk_ASN1_OBJECT_push(param->policies, doid)) | ||
| 295 | { | ||
| 296 | ASN1_OBJECT_free(doid); | ||
| 297 | return 0; | ||
| 298 | } | ||
| 299 | } | ||
| 300 | param->flags |= X509_V_FLAG_POLICY_CHECK; | ||
| 301 | return 1; | ||
| 302 | } | ||
| 303 | |||
| 304 | int X509_VERIFY_PARAM_get_depth(const X509_VERIFY_PARAM *param) | ||
| 305 | { | ||
| 306 | return param->depth; | ||
| 307 | } | ||
| 308 | |||
| 309 | /* Default verify parameters: these are used for various | ||
| 310 | * applications and can be overridden by the user specified table. | ||
| 311 | * NB: the 'name' field *must* be in alphabetical order because it | ||
| 312 | * will be searched using OBJ_search. | ||
| 313 | */ | ||
| 314 | |||
| 315 | static const X509_VERIFY_PARAM default_table[] = { | ||
| 316 | { | ||
| 317 | "default", /* X509 default parameters */ | ||
| 318 | 0, /* Check time */ | ||
| 319 | 0, /* internal flags */ | ||
| 320 | 0, /* flags */ | ||
| 321 | 0, /* purpose */ | ||
| 322 | 0, /* trust */ | ||
| 323 | 9, /* depth */ | ||
| 324 | NULL /* policies */ | ||
| 325 | }, | ||
| 326 | { | ||
| 327 | "pkcs7", /* SSL/TLS client parameters */ | ||
| 328 | 0, /* Check time */ | ||
| 329 | 0, /* internal flags */ | ||
| 330 | 0, /* flags */ | ||
| 331 | X509_PURPOSE_SMIME_SIGN, /* purpose */ | ||
| 332 | X509_TRUST_EMAIL, /* trust */ | ||
| 333 | -1, /* depth */ | ||
| 334 | NULL /* policies */ | ||
| 335 | }, | ||
| 336 | { | ||
| 337 | "ssl_client", /* SSL/TLS client parameters */ | ||
| 338 | 0, /* Check time */ | ||
| 339 | 0, /* internal flags */ | ||
| 340 | 0, /* flags */ | ||
| 341 | X509_PURPOSE_SSL_CLIENT, /* purpose */ | ||
| 342 | X509_TRUST_SSL_CLIENT, /* trust */ | ||
| 343 | -1, /* depth */ | ||
| 344 | NULL /* policies */ | ||
| 345 | }, | ||
| 346 | { | ||
| 347 | "ssl_server", /* SSL/TLS server parameters */ | ||
| 348 | 0, /* Check time */ | ||
| 349 | 0, /* internal flags */ | ||
| 350 | 0, /* flags */ | ||
| 351 | X509_PURPOSE_SSL_SERVER, /* purpose */ | ||
| 352 | X509_TRUST_SSL_SERVER, /* trust */ | ||
| 353 | -1, /* depth */ | ||
| 354 | NULL /* policies */ | ||
| 355 | }}; | ||
| 356 | |||
| 357 | static STACK_OF(X509_VERIFY_PARAM) *param_table = NULL; | ||
| 358 | |||
| 359 | static int table_cmp(const void *pa, const void *pb) | ||
| 360 | { | ||
| 361 | const X509_VERIFY_PARAM *a = pa, *b = pb; | ||
| 362 | return strcmp(a->name, b->name); | ||
| 363 | } | ||
| 364 | |||
| 365 | static int param_cmp(const X509_VERIFY_PARAM * const *a, | ||
| 366 | const X509_VERIFY_PARAM * const *b) | ||
| 367 | { | ||
| 368 | return strcmp((*a)->name, (*b)->name); | ||
| 369 | } | ||
| 370 | |||
| 371 | int X509_VERIFY_PARAM_add0_table(X509_VERIFY_PARAM *param) | ||
| 372 | { | ||
| 373 | int idx; | ||
| 374 | X509_VERIFY_PARAM *ptmp; | ||
| 375 | if (!param_table) | ||
| 376 | { | ||
| 377 | param_table = sk_X509_VERIFY_PARAM_new(param_cmp); | ||
| 378 | if (!param_table) | ||
| 379 | return 0; | ||
| 380 | } | ||
| 381 | else | ||
| 382 | { | ||
| 383 | idx = sk_X509_VERIFY_PARAM_find(param_table, param); | ||
| 384 | if (idx != -1) | ||
| 385 | { | ||
| 386 | ptmp = sk_X509_VERIFY_PARAM_value(param_table, idx); | ||
| 387 | X509_VERIFY_PARAM_free(ptmp); | ||
| 388 | (void)sk_X509_VERIFY_PARAM_delete(param_table, idx); | ||
| 389 | } | ||
| 390 | } | ||
| 391 | if (!sk_X509_VERIFY_PARAM_push(param_table, param)) | ||
| 392 | return 0; | ||
| 393 | return 1; | ||
| 394 | } | ||
| 395 | |||
| 396 | const X509_VERIFY_PARAM *X509_VERIFY_PARAM_lookup(const char *name) | ||
| 397 | { | ||
| 398 | int idx; | ||
| 399 | X509_VERIFY_PARAM pm; | ||
| 400 | pm.name = (char *)name; | ||
| 401 | if (param_table) | ||
| 402 | { | ||
| 403 | idx = sk_X509_VERIFY_PARAM_find(param_table, &pm); | ||
| 404 | if (idx != -1) | ||
| 405 | return sk_X509_VERIFY_PARAM_value(param_table, idx); | ||
| 406 | } | ||
| 407 | return (const X509_VERIFY_PARAM *) OBJ_bsearch((char *)&pm, | ||
| 408 | (char *)&default_table, | ||
| 409 | sizeof(default_table)/sizeof(X509_VERIFY_PARAM), | ||
| 410 | sizeof(X509_VERIFY_PARAM), | ||
| 411 | table_cmp); | ||
| 412 | } | ||
| 413 | |||
| 414 | void X509_VERIFY_PARAM_table_cleanup(void) | ||
| 415 | { | ||
| 416 | if (param_table) | ||
| 417 | sk_X509_VERIFY_PARAM_pop_free(param_table, | ||
| 418 | X509_VERIFY_PARAM_free); | ||
| 419 | param_table = NULL; | ||
| 420 | } | ||
diff --git a/src/lib/libssl/src/crypto/x509v3/pcy_cache.c b/src/lib/libssl/src/crypto/x509v3/pcy_cache.c new file mode 100644 index 0000000000..c18beb89f5 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/pcy_cache.c | |||
| @@ -0,0 +1,287 @@ | |||
| 1 | /* pcy_cache.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "cryptlib.h" | ||
| 60 | #include <openssl/x509.h> | ||
| 61 | #include <openssl/x509v3.h> | ||
| 62 | |||
| 63 | #include "pcy_int.h" | ||
| 64 | |||
| 65 | static int policy_data_cmp(const X509_POLICY_DATA * const *a, | ||
| 66 | const X509_POLICY_DATA * const *b); | ||
| 67 | static int policy_cache_set_int(long *out, ASN1_INTEGER *value); | ||
| 68 | |||
| 69 | /* Set cache entry according to CertificatePolicies extension. | ||
| 70 | * Note: this destroys the passed CERTIFICATEPOLICIES structure. | ||
| 71 | */ | ||
| 72 | |||
| 73 | static int policy_cache_create(X509 *x, | ||
| 74 | CERTIFICATEPOLICIES *policies, int crit) | ||
| 75 | { | ||
| 76 | int i; | ||
| 77 | int ret = 0; | ||
| 78 | X509_POLICY_CACHE *cache = x->policy_cache; | ||
| 79 | X509_POLICY_DATA *data = NULL; | ||
| 80 | POLICYINFO *policy; | ||
| 81 | if (sk_POLICYINFO_num(policies) == 0) | ||
| 82 | goto bad_policy; | ||
| 83 | cache->data = sk_X509_POLICY_DATA_new(policy_data_cmp); | ||
| 84 | if (!cache->data) | ||
| 85 | goto bad_policy; | ||
| 86 | for (i = 0; i < sk_POLICYINFO_num(policies); i++) | ||
| 87 | { | ||
| 88 | policy = sk_POLICYINFO_value(policies, i); | ||
| 89 | data = policy_data_new(policy, NULL, crit); | ||
| 90 | if (!data) | ||
| 91 | goto bad_policy; | ||
| 92 | /* Duplicate policy OIDs are illegal: reject if matches | ||
| 93 | * found. | ||
| 94 | */ | ||
| 95 | if (OBJ_obj2nid(data->valid_policy) == NID_any_policy) | ||
| 96 | { | ||
| 97 | if (cache->anyPolicy) | ||
| 98 | { | ||
| 99 | ret = -1; | ||
| 100 | goto bad_policy; | ||
| 101 | } | ||
| 102 | cache->anyPolicy = data; | ||
| 103 | } | ||
| 104 | else if (sk_X509_POLICY_DATA_find(cache->data, data) != -1) | ||
| 105 | { | ||
| 106 | ret = -1; | ||
| 107 | goto bad_policy; | ||
| 108 | } | ||
| 109 | else if (!sk_X509_POLICY_DATA_push(cache->data, data)) | ||
| 110 | goto bad_policy; | ||
| 111 | data = NULL; | ||
| 112 | } | ||
| 113 | ret = 1; | ||
| 114 | bad_policy: | ||
| 115 | if (ret == -1) | ||
| 116 | x->ex_flags |= EXFLAG_INVALID_POLICY; | ||
| 117 | if (data) | ||
| 118 | policy_data_free(data); | ||
| 119 | sk_POLICYINFO_pop_free(policies, POLICYINFO_free); | ||
| 120 | if (ret <= 0) | ||
| 121 | { | ||
| 122 | sk_X509_POLICY_DATA_pop_free(cache->data, policy_data_free); | ||
| 123 | cache->data = NULL; | ||
| 124 | } | ||
| 125 | return ret; | ||
| 126 | } | ||
| 127 | |||
| 128 | |||
| 129 | static int policy_cache_new(X509 *x) | ||
| 130 | { | ||
| 131 | X509_POLICY_CACHE *cache; | ||
| 132 | ASN1_INTEGER *ext_any = NULL; | ||
| 133 | POLICY_CONSTRAINTS *ext_pcons = NULL; | ||
| 134 | CERTIFICATEPOLICIES *ext_cpols = NULL; | ||
| 135 | POLICY_MAPPINGS *ext_pmaps = NULL; | ||
| 136 | int i; | ||
| 137 | cache = OPENSSL_malloc(sizeof(X509_POLICY_CACHE)); | ||
| 138 | if (!cache) | ||
| 139 | return 0; | ||
| 140 | cache->anyPolicy = NULL; | ||
| 141 | cache->data = NULL; | ||
| 142 | cache->maps = NULL; | ||
| 143 | cache->any_skip = -1; | ||
| 144 | cache->explicit_skip = -1; | ||
| 145 | cache->map_skip = -1; | ||
| 146 | |||
| 147 | x->policy_cache = cache; | ||
| 148 | |||
| 149 | /* Handle requireExplicitPolicy *first*. Need to process this | ||
| 150 | * even if we don't have any policies. | ||
| 151 | */ | ||
| 152 | ext_pcons = X509_get_ext_d2i(x, NID_policy_constraints, &i, NULL); | ||
| 153 | |||
| 154 | if (!ext_pcons) | ||
| 155 | { | ||
| 156 | if (i != -1) | ||
| 157 | goto bad_cache; | ||
| 158 | } | ||
| 159 | else | ||
| 160 | { | ||
| 161 | if (!ext_pcons->requireExplicitPolicy | ||
| 162 | && !ext_pcons->inhibitPolicyMapping) | ||
| 163 | goto bad_cache; | ||
| 164 | if (!policy_cache_set_int(&cache->explicit_skip, | ||
| 165 | ext_pcons->requireExplicitPolicy)) | ||
| 166 | goto bad_cache; | ||
| 167 | if (!policy_cache_set_int(&cache->map_skip, | ||
| 168 | ext_pcons->inhibitPolicyMapping)) | ||
| 169 | goto bad_cache; | ||
| 170 | } | ||
| 171 | |||
| 172 | /* Process CertificatePolicies */ | ||
| 173 | |||
| 174 | ext_cpols = X509_get_ext_d2i(x, NID_certificate_policies, &i, NULL); | ||
| 175 | /* If no CertificatePolicies extension or problem decoding then | ||
| 176 | * there is no point continuing because the valid policies will be | ||
| 177 | * NULL. | ||
| 178 | */ | ||
| 179 | if (!ext_cpols) | ||
| 180 | { | ||
| 181 | /* If not absent some problem with extension */ | ||
| 182 | if (i != -1) | ||
| 183 | goto bad_cache; | ||
| 184 | return 1; | ||
| 185 | } | ||
| 186 | |||
| 187 | i = policy_cache_create(x, ext_cpols, i); | ||
| 188 | |||
| 189 | /* NB: ext_cpols freed by policy_cache_set_policies */ | ||
| 190 | |||
| 191 | if (i <= 0) | ||
| 192 | return i; | ||
| 193 | |||
| 194 | ext_pmaps = X509_get_ext_d2i(x, NID_policy_mappings, &i, NULL); | ||
| 195 | |||
| 196 | if (!ext_pmaps) | ||
| 197 | { | ||
| 198 | /* If not absent some problem with extension */ | ||
| 199 | if (i != -1) | ||
| 200 | goto bad_cache; | ||
| 201 | } | ||
| 202 | else | ||
| 203 | { | ||
| 204 | i = policy_cache_set_mapping(x, ext_pmaps); | ||
| 205 | if (i <= 0) | ||
| 206 | goto bad_cache; | ||
| 207 | } | ||
| 208 | |||
| 209 | ext_any = X509_get_ext_d2i(x, NID_inhibit_any_policy, &i, NULL); | ||
| 210 | |||
| 211 | if (!ext_any) | ||
| 212 | { | ||
| 213 | if (i != -1) | ||
| 214 | goto bad_cache; | ||
| 215 | } | ||
| 216 | else if (!policy_cache_set_int(&cache->any_skip, ext_any)) | ||
| 217 | goto bad_cache; | ||
| 218 | |||
| 219 | if (0) | ||
| 220 | { | ||
| 221 | bad_cache: | ||
| 222 | x->ex_flags |= EXFLAG_INVALID_POLICY; | ||
| 223 | } | ||
| 224 | |||
| 225 | if(ext_pcons) | ||
| 226 | POLICY_CONSTRAINTS_free(ext_pcons); | ||
| 227 | |||
| 228 | if (ext_any) | ||
| 229 | ASN1_INTEGER_free(ext_any); | ||
| 230 | |||
| 231 | return 1; | ||
| 232 | |||
| 233 | |||
| 234 | } | ||
| 235 | |||
| 236 | void policy_cache_free(X509_POLICY_CACHE *cache) | ||
| 237 | { | ||
| 238 | if (!cache) | ||
| 239 | return; | ||
| 240 | if (cache->anyPolicy) | ||
| 241 | policy_data_free(cache->anyPolicy); | ||
| 242 | if (cache->data) | ||
| 243 | sk_X509_POLICY_DATA_pop_free(cache->data, policy_data_free); | ||
| 244 | OPENSSL_free(cache); | ||
| 245 | } | ||
| 246 | |||
| 247 | const X509_POLICY_CACHE *policy_cache_set(X509 *x) | ||
| 248 | { | ||
| 249 | |||
| 250 | if (x->policy_cache == NULL) | ||
| 251 | { | ||
| 252 | CRYPTO_w_lock(CRYPTO_LOCK_X509); | ||
| 253 | policy_cache_new(x); | ||
| 254 | CRYPTO_w_unlock(CRYPTO_LOCK_X509); | ||
| 255 | } | ||
| 256 | |||
| 257 | return x->policy_cache; | ||
| 258 | |||
| 259 | } | ||
| 260 | |||
| 261 | X509_POLICY_DATA *policy_cache_find_data(const X509_POLICY_CACHE *cache, | ||
| 262 | const ASN1_OBJECT *id) | ||
| 263 | { | ||
| 264 | int idx; | ||
| 265 | X509_POLICY_DATA tmp; | ||
| 266 | tmp.valid_policy = (ASN1_OBJECT *)id; | ||
| 267 | idx = sk_X509_POLICY_DATA_find(cache->data, &tmp); | ||
| 268 | if (idx == -1) | ||
| 269 | return NULL; | ||
| 270 | return sk_X509_POLICY_DATA_value(cache->data, idx); | ||
| 271 | } | ||
| 272 | |||
| 273 | static int policy_data_cmp(const X509_POLICY_DATA * const *a, | ||
| 274 | const X509_POLICY_DATA * const *b) | ||
| 275 | { | ||
| 276 | return OBJ_cmp((*a)->valid_policy, (*b)->valid_policy); | ||
| 277 | } | ||
| 278 | |||
| 279 | static int policy_cache_set_int(long *out, ASN1_INTEGER *value) | ||
| 280 | { | ||
| 281 | if (value == NULL) | ||
| 282 | return 1; | ||
| 283 | if (value->type == V_ASN1_NEG_INTEGER) | ||
| 284 | return 0; | ||
| 285 | *out = ASN1_INTEGER_get(value); | ||
| 286 | return 1; | ||
| 287 | } | ||
diff --git a/src/lib/libssl/src/crypto/x509v3/pcy_data.c b/src/lib/libssl/src/crypto/x509v3/pcy_data.c new file mode 100644 index 0000000000..614d2b4935 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/pcy_data.c | |||
| @@ -0,0 +1,123 @@ | |||
| 1 | /* pcy_data.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "cryptlib.h" | ||
| 60 | #include <openssl/x509.h> | ||
| 61 | #include <openssl/x509v3.h> | ||
| 62 | |||
| 63 | #include "pcy_int.h" | ||
| 64 | |||
| 65 | /* Policy Node routines */ | ||
| 66 | |||
| 67 | void policy_data_free(X509_POLICY_DATA *data) | ||
| 68 | { | ||
| 69 | ASN1_OBJECT_free(data->valid_policy); | ||
| 70 | /* Don't free qualifiers if shared */ | ||
| 71 | if (!(data->flags & POLICY_DATA_FLAG_SHARED_QUALIFIERS)) | ||
| 72 | sk_POLICYQUALINFO_pop_free(data->qualifier_set, | ||
| 73 | POLICYQUALINFO_free); | ||
| 74 | sk_ASN1_OBJECT_pop_free(data->expected_policy_set, ASN1_OBJECT_free); | ||
| 75 | OPENSSL_free(data); | ||
| 76 | } | ||
| 77 | |||
| 78 | /* Create a data based on an existing policy. If 'id' is NULL use the | ||
| 79 | * oid in the policy, otherwise use 'id'. This behaviour covers the two | ||
| 80 | * types of data in RFC3280: data with from a CertificatePolcies extension | ||
| 81 | * and additional data with just the qualifiers of anyPolicy and ID from | ||
| 82 | * another source. | ||
| 83 | */ | ||
| 84 | |||
| 85 | X509_POLICY_DATA *policy_data_new(POLICYINFO *policy, ASN1_OBJECT *id, int crit) | ||
| 86 | { | ||
| 87 | X509_POLICY_DATA *ret; | ||
| 88 | if (!policy && !id) | ||
| 89 | return NULL; | ||
| 90 | ret = OPENSSL_malloc(sizeof(X509_POLICY_DATA)); | ||
| 91 | if (!ret) | ||
| 92 | return NULL; | ||
| 93 | ret->expected_policy_set = sk_ASN1_OBJECT_new_null(); | ||
| 94 | if (!ret->expected_policy_set) | ||
| 95 | { | ||
| 96 | OPENSSL_free(ret); | ||
| 97 | return NULL; | ||
| 98 | } | ||
| 99 | |||
| 100 | if (crit) | ||
| 101 | ret->flags = POLICY_DATA_FLAG_CRITICAL; | ||
| 102 | else | ||
| 103 | ret->flags = 0; | ||
| 104 | |||
| 105 | if (id) | ||
| 106 | ret->valid_policy = id; | ||
| 107 | else | ||
| 108 | { | ||
| 109 | ret->valid_policy = policy->policyid; | ||
| 110 | policy->policyid = NULL; | ||
| 111 | } | ||
| 112 | |||
| 113 | if (policy) | ||
| 114 | { | ||
| 115 | ret->qualifier_set = policy->qualifiers; | ||
| 116 | policy->qualifiers = NULL; | ||
| 117 | } | ||
| 118 | else | ||
| 119 | ret->qualifier_set = NULL; | ||
| 120 | |||
| 121 | return ret; | ||
| 122 | } | ||
| 123 | |||
diff --git a/src/lib/libssl/src/crypto/x509v3/pcy_int.h b/src/lib/libssl/src/crypto/x509v3/pcy_int.h new file mode 100644 index 0000000000..ba62a209da --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/pcy_int.h | |||
| @@ -0,0 +1,223 @@ | |||
| 1 | /* pcy_int.h */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | DECLARE_STACK_OF(X509_POLICY_DATA) | ||
| 60 | DECLARE_STACK_OF(X509_POLICY_REF) | ||
| 61 | DECLARE_STACK_OF(X509_POLICY_NODE) | ||
| 62 | |||
| 63 | typedef struct X509_POLICY_DATA_st X509_POLICY_DATA; | ||
| 64 | typedef struct X509_POLICY_REF_st X509_POLICY_REF; | ||
| 65 | |||
| 66 | /* Internal structures */ | ||
| 67 | |||
| 68 | /* This structure and the field names correspond to the Policy 'node' of | ||
| 69 | * RFC3280. NB this structure contains no pointers to parent or child | ||
| 70 | * data: X509_POLICY_NODE contains that. This means that the main policy data | ||
| 71 | * can be kept static and cached with the certificate. | ||
| 72 | */ | ||
| 73 | |||
| 74 | struct X509_POLICY_DATA_st | ||
| 75 | { | ||
| 76 | unsigned int flags; | ||
| 77 | /* Policy OID and qualifiers for this data */ | ||
| 78 | ASN1_OBJECT *valid_policy; | ||
| 79 | STACK_OF(POLICYQUALINFO) *qualifier_set; | ||
| 80 | STACK_OF(ASN1_OBJECT) *expected_policy_set; | ||
| 81 | }; | ||
| 82 | |||
| 83 | /* X509_POLICY_DATA flags values */ | ||
| 84 | |||
| 85 | /* This flag indicates the structure has been mapped using a policy mapping | ||
| 86 | * extension. If policy mapping is not active its references get deleted. | ||
| 87 | */ | ||
| 88 | |||
| 89 | #define POLICY_DATA_FLAG_MAPPED 0x1 | ||
| 90 | |||
| 91 | /* This flag indicates the data doesn't correspond to a policy in Certificate | ||
| 92 | * Policies: it has been mapped to any policy. | ||
| 93 | */ | ||
| 94 | |||
| 95 | #define POLICY_DATA_FLAG_MAPPED_ANY 0x2 | ||
| 96 | |||
| 97 | /* AND with flags to see if any mapping has occurred */ | ||
| 98 | |||
| 99 | #define POLICY_DATA_FLAG_MAP_MASK 0x3 | ||
| 100 | |||
| 101 | /* qualifiers are shared and shouldn't be freed */ | ||
| 102 | |||
| 103 | #define POLICY_DATA_FLAG_SHARED_QUALIFIERS 0x4 | ||
| 104 | |||
| 105 | /* Parent node is an extra node and should be freed */ | ||
| 106 | |||
| 107 | #define POLICY_DATA_FLAG_EXTRA_NODE 0x8 | ||
| 108 | |||
| 109 | /* Corresponding CertificatePolicies is critical */ | ||
| 110 | |||
| 111 | #define POLICY_DATA_FLAG_CRITICAL 0x10 | ||
| 112 | |||
| 113 | /* This structure is an entry from a table of mapped policies which | ||
| 114 | * cross reference the policy it refers to. | ||
| 115 | */ | ||
| 116 | |||
| 117 | struct X509_POLICY_REF_st | ||
| 118 | { | ||
| 119 | ASN1_OBJECT *subjectDomainPolicy; | ||
| 120 | const X509_POLICY_DATA *data; | ||
| 121 | }; | ||
| 122 | |||
| 123 | /* This structure is cached with a certificate */ | ||
| 124 | |||
| 125 | struct X509_POLICY_CACHE_st { | ||
| 126 | /* anyPolicy data or NULL if no anyPolicy */ | ||
| 127 | X509_POLICY_DATA *anyPolicy; | ||
| 128 | /* other policy data */ | ||
| 129 | STACK_OF(X509_POLICY_DATA) *data; | ||
| 130 | /* If policyMappings extension present a table of mapped policies */ | ||
| 131 | STACK_OF(X509_POLICY_REF) *maps; | ||
| 132 | /* If InhibitAnyPolicy present this is its value or -1 if absent. */ | ||
| 133 | long any_skip; | ||
| 134 | /* If policyConstraints and requireExplicitPolicy present this is its | ||
| 135 | * value or -1 if absent. | ||
| 136 | */ | ||
| 137 | long explicit_skip; | ||
| 138 | /* If policyConstraints and policyMapping present this is its | ||
| 139 | * value or -1 if absent. | ||
| 140 | */ | ||
| 141 | long map_skip; | ||
| 142 | }; | ||
| 143 | |||
| 144 | /*#define POLICY_CACHE_FLAG_CRITICAL POLICY_DATA_FLAG_CRITICAL*/ | ||
| 145 | |||
| 146 | /* This structure represents the relationship between nodes */ | ||
| 147 | |||
| 148 | struct X509_POLICY_NODE_st | ||
| 149 | { | ||
| 150 | /* node data this refers to */ | ||
| 151 | const X509_POLICY_DATA *data; | ||
| 152 | /* Parent node */ | ||
| 153 | X509_POLICY_NODE *parent; | ||
| 154 | /* Number of child nodes */ | ||
| 155 | int nchild; | ||
| 156 | }; | ||
| 157 | |||
| 158 | struct X509_POLICY_LEVEL_st | ||
| 159 | { | ||
| 160 | /* Cert for this level */ | ||
| 161 | X509 *cert; | ||
| 162 | /* nodes at this level */ | ||
| 163 | STACK_OF(X509_POLICY_NODE) *nodes; | ||
| 164 | /* anyPolicy node */ | ||
| 165 | X509_POLICY_NODE *anyPolicy; | ||
| 166 | /* Extra data */ | ||
| 167 | /*STACK_OF(X509_POLICY_DATA) *extra_data;*/ | ||
| 168 | unsigned int flags; | ||
| 169 | }; | ||
| 170 | |||
| 171 | struct X509_POLICY_TREE_st | ||
| 172 | { | ||
| 173 | /* This is the tree 'level' data */ | ||
| 174 | X509_POLICY_LEVEL *levels; | ||
| 175 | int nlevel; | ||
| 176 | /* Extra policy data when additional nodes (not from the certificate) | ||
| 177 | * are required. | ||
| 178 | */ | ||
| 179 | STACK_OF(X509_POLICY_DATA) *extra_data; | ||
| 180 | /* This is the authority constained policy set */ | ||
| 181 | STACK_OF(X509_POLICY_NODE) *auth_policies; | ||
| 182 | STACK_OF(X509_POLICY_NODE) *user_policies; | ||
| 183 | unsigned int flags; | ||
| 184 | }; | ||
| 185 | |||
| 186 | /* Set if anyPolicy present in user policies */ | ||
| 187 | #define POLICY_FLAG_ANY_POLICY 0x2 | ||
| 188 | |||
| 189 | /* Useful macros */ | ||
| 190 | |||
| 191 | #define node_data_critical(data) (data->flags & POLICY_DATA_FLAG_CRITICAL) | ||
| 192 | #define node_critical(node) node_data_critical(node->data) | ||
| 193 | |||
| 194 | /* Internal functions */ | ||
| 195 | |||
| 196 | X509_POLICY_DATA *policy_data_new(POLICYINFO *policy, ASN1_OBJECT *id, | ||
| 197 | int crit); | ||
| 198 | void policy_data_free(X509_POLICY_DATA *data); | ||
| 199 | |||
| 200 | X509_POLICY_DATA *policy_cache_find_data(const X509_POLICY_CACHE *cache, | ||
| 201 | const ASN1_OBJECT *id); | ||
| 202 | int policy_cache_set_mapping(X509 *x, POLICY_MAPPINGS *maps); | ||
| 203 | |||
| 204 | |||
| 205 | STACK_OF(X509_POLICY_NODE) *policy_node_cmp_new(void); | ||
| 206 | |||
| 207 | void policy_cache_init(void); | ||
| 208 | |||
| 209 | void policy_cache_free(X509_POLICY_CACHE *cache); | ||
| 210 | |||
| 211 | X509_POLICY_NODE *level_find_node(const X509_POLICY_LEVEL *level, | ||
| 212 | const ASN1_OBJECT *id); | ||
| 213 | |||
| 214 | X509_POLICY_NODE *tree_find_sk(STACK_OF(X509_POLICY_NODE) *sk, | ||
| 215 | const ASN1_OBJECT *id); | ||
| 216 | |||
| 217 | X509_POLICY_NODE *level_add_node(X509_POLICY_LEVEL *level, | ||
| 218 | X509_POLICY_DATA *data, | ||
| 219 | X509_POLICY_NODE *parent, | ||
| 220 | X509_POLICY_TREE *tree); | ||
| 221 | void policy_node_free(X509_POLICY_NODE *node); | ||
| 222 | |||
| 223 | const X509_POLICY_CACHE *policy_cache_set(X509 *x); | ||
diff --git a/src/lib/libssl/src/crypto/x509v3/pcy_lib.c b/src/lib/libssl/src/crypto/x509v3/pcy_lib.c new file mode 100644 index 0000000000..dae4840bc5 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/pcy_lib.c | |||
| @@ -0,0 +1,167 @@ | |||
| 1 | /* pcy_lib.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | |||
| 60 | #include "cryptlib.h" | ||
| 61 | #include <openssl/x509.h> | ||
| 62 | #include <openssl/x509v3.h> | ||
| 63 | |||
| 64 | #include "pcy_int.h" | ||
| 65 | |||
| 66 | /* accessor functions */ | ||
| 67 | |||
| 68 | /* X509_POLICY_TREE stuff */ | ||
| 69 | |||
| 70 | int X509_policy_tree_level_count(const X509_POLICY_TREE *tree) | ||
| 71 | { | ||
| 72 | if (!tree) | ||
| 73 | return 0; | ||
| 74 | return tree->nlevel; | ||
| 75 | } | ||
| 76 | |||
| 77 | X509_POLICY_LEVEL * | ||
| 78 | X509_policy_tree_get0_level(const X509_POLICY_TREE *tree, int i) | ||
| 79 | { | ||
| 80 | if (!tree || (i < 0) || (i >= tree->nlevel)) | ||
| 81 | return NULL; | ||
| 82 | return tree->levels + i; | ||
| 83 | } | ||
| 84 | |||
| 85 | STACK_OF(X509_POLICY_NODE) * | ||
| 86 | X509_policy_tree_get0_policies(const X509_POLICY_TREE *tree) | ||
| 87 | { | ||
| 88 | if (!tree) | ||
| 89 | return NULL; | ||
| 90 | return tree->auth_policies; | ||
| 91 | } | ||
| 92 | |||
| 93 | STACK_OF(X509_POLICY_NODE) * | ||
| 94 | X509_policy_tree_get0_user_policies(const X509_POLICY_TREE *tree) | ||
| 95 | { | ||
| 96 | if (!tree) | ||
| 97 | return NULL; | ||
| 98 | if (tree->flags & POLICY_FLAG_ANY_POLICY) | ||
| 99 | return tree->auth_policies; | ||
| 100 | else | ||
| 101 | return tree->user_policies; | ||
| 102 | } | ||
| 103 | |||
| 104 | /* X509_POLICY_LEVEL stuff */ | ||
| 105 | |||
| 106 | int X509_policy_level_node_count(X509_POLICY_LEVEL *level) | ||
| 107 | { | ||
| 108 | int n; | ||
| 109 | if (!level) | ||
| 110 | return 0; | ||
| 111 | if (level->anyPolicy) | ||
| 112 | n = 1; | ||
| 113 | else | ||
| 114 | n = 0; | ||
| 115 | if (level->nodes) | ||
| 116 | n += sk_X509_POLICY_NODE_num(level->nodes); | ||
| 117 | return n; | ||
| 118 | } | ||
| 119 | |||
| 120 | X509_POLICY_NODE *X509_policy_level_get0_node(X509_POLICY_LEVEL *level, int i) | ||
| 121 | { | ||
| 122 | if (!level) | ||
| 123 | return NULL; | ||
| 124 | if (level->anyPolicy) | ||
| 125 | { | ||
| 126 | if (i == 0) | ||
| 127 | return level->anyPolicy; | ||
| 128 | i--; | ||
| 129 | } | ||
| 130 | return sk_X509_POLICY_NODE_value(level->nodes, i); | ||
| 131 | } | ||
| 132 | |||
| 133 | /* X509_POLICY_NODE stuff */ | ||
| 134 | |||
| 135 | const ASN1_OBJECT *X509_policy_node_get0_policy(const X509_POLICY_NODE *node) | ||
| 136 | { | ||
| 137 | if (!node) | ||
| 138 | return NULL; | ||
| 139 | return node->data->valid_policy; | ||
| 140 | } | ||
| 141 | |||
| 142 | #if 0 | ||
| 143 | int X509_policy_node_get_critical(const X509_POLICY_NODE *node) | ||
| 144 | { | ||
| 145 | if (node_critical(node)) | ||
| 146 | return 1; | ||
| 147 | return 0; | ||
| 148 | } | ||
| 149 | #endif | ||
| 150 | |||
| 151 | STACK_OF(POLICYQUALINFO) * | ||
| 152 | X509_policy_node_get0_qualifiers(const X509_POLICY_NODE *node) | ||
| 153 | { | ||
| 154 | if (!node) | ||
| 155 | return NULL; | ||
| 156 | return node->data->qualifier_set; | ||
| 157 | } | ||
| 158 | |||
| 159 | const X509_POLICY_NODE * | ||
| 160 | X509_policy_node_get0_parent(const X509_POLICY_NODE *node) | ||
| 161 | { | ||
| 162 | if (!node) | ||
| 163 | return NULL; | ||
| 164 | return node->parent; | ||
| 165 | } | ||
| 166 | |||
| 167 | |||
diff --git a/src/lib/libssl/src/crypto/x509v3/pcy_map.c b/src/lib/libssl/src/crypto/x509v3/pcy_map.c new file mode 100644 index 0000000000..35221e8ba8 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/pcy_map.c | |||
| @@ -0,0 +1,186 @@ | |||
| 1 | /* pcy_map.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "cryptlib.h" | ||
| 60 | #include <openssl/x509.h> | ||
| 61 | #include <openssl/x509v3.h> | ||
| 62 | |||
| 63 | #include "pcy_int.h" | ||
| 64 | |||
| 65 | static int ref_cmp(const X509_POLICY_REF * const *a, | ||
| 66 | const X509_POLICY_REF * const *b) | ||
| 67 | { | ||
| 68 | return OBJ_cmp((*a)->subjectDomainPolicy, (*b)->subjectDomainPolicy); | ||
| 69 | } | ||
| 70 | |||
| 71 | static void policy_map_free(X509_POLICY_REF *map) | ||
| 72 | { | ||
| 73 | if (map->subjectDomainPolicy) | ||
| 74 | ASN1_OBJECT_free(map->subjectDomainPolicy); | ||
| 75 | OPENSSL_free(map); | ||
| 76 | } | ||
| 77 | |||
| 78 | static X509_POLICY_REF *policy_map_find(X509_POLICY_CACHE *cache, ASN1_OBJECT *id) | ||
| 79 | { | ||
| 80 | X509_POLICY_REF tmp; | ||
| 81 | int idx; | ||
| 82 | tmp.subjectDomainPolicy = id; | ||
| 83 | |||
| 84 | idx = sk_X509_POLICY_REF_find(cache->maps, &tmp); | ||
| 85 | if (idx == -1) | ||
| 86 | return NULL; | ||
| 87 | return sk_X509_POLICY_REF_value(cache->maps, idx); | ||
| 88 | } | ||
| 89 | |||
| 90 | /* Set policy mapping entries in cache. | ||
| 91 | * Note: this modifies the passed POLICY_MAPPINGS structure | ||
| 92 | */ | ||
| 93 | |||
| 94 | int policy_cache_set_mapping(X509 *x, POLICY_MAPPINGS *maps) | ||
| 95 | { | ||
| 96 | POLICY_MAPPING *map; | ||
| 97 | X509_POLICY_REF *ref = NULL; | ||
| 98 | X509_POLICY_DATA *data; | ||
| 99 | X509_POLICY_CACHE *cache = x->policy_cache; | ||
| 100 | int i; | ||
| 101 | int ret = 0; | ||
| 102 | if (sk_POLICY_MAPPING_num(maps) == 0) | ||
| 103 | { | ||
| 104 | ret = -1; | ||
| 105 | goto bad_mapping; | ||
| 106 | } | ||
| 107 | cache->maps = sk_X509_POLICY_REF_new(ref_cmp); | ||
| 108 | for (i = 0; i < sk_POLICY_MAPPING_num(maps); i++) | ||
| 109 | { | ||
| 110 | map = sk_POLICY_MAPPING_value(maps, i); | ||
| 111 | /* Reject if map to or from anyPolicy */ | ||
| 112 | if ((OBJ_obj2nid(map->subjectDomainPolicy) == NID_any_policy) | ||
| 113 | || (OBJ_obj2nid(map->issuerDomainPolicy) == NID_any_policy)) | ||
| 114 | { | ||
| 115 | ret = -1; | ||
| 116 | goto bad_mapping; | ||
| 117 | } | ||
| 118 | |||
| 119 | /* If we've already mapped from this OID bad mapping */ | ||
| 120 | if (policy_map_find(cache, map->subjectDomainPolicy) != NULL) | ||
| 121 | { | ||
| 122 | ret = -1; | ||
| 123 | goto bad_mapping; | ||
| 124 | } | ||
| 125 | |||
| 126 | /* Attempt to find matching policy data */ | ||
| 127 | data = policy_cache_find_data(cache, map->issuerDomainPolicy); | ||
| 128 | /* If we don't have anyPolicy can't map */ | ||
| 129 | if (!data && !cache->anyPolicy) | ||
| 130 | continue; | ||
| 131 | |||
| 132 | /* Create a NODE from anyPolicy */ | ||
| 133 | if (!data) | ||
| 134 | { | ||
| 135 | data = policy_data_new(NULL, map->issuerDomainPolicy, | ||
| 136 | cache->anyPolicy->flags | ||
| 137 | & POLICY_DATA_FLAG_CRITICAL); | ||
| 138 | if (!data) | ||
| 139 | goto bad_mapping; | ||
| 140 | data->qualifier_set = cache->anyPolicy->qualifier_set; | ||
| 141 | map->issuerDomainPolicy = NULL; | ||
| 142 | data->flags |= POLICY_DATA_FLAG_MAPPED_ANY; | ||
| 143 | data->flags |= POLICY_DATA_FLAG_SHARED_QUALIFIERS; | ||
| 144 | if (!sk_X509_POLICY_DATA_push(cache->data, data)) | ||
| 145 | { | ||
| 146 | policy_data_free(data); | ||
| 147 | goto bad_mapping; | ||
| 148 | } | ||
| 149 | } | ||
| 150 | else | ||
| 151 | data->flags |= POLICY_DATA_FLAG_MAPPED; | ||
| 152 | |||
| 153 | if (!sk_ASN1_OBJECT_push(data->expected_policy_set, | ||
| 154 | map->subjectDomainPolicy)) | ||
| 155 | goto bad_mapping; | ||
| 156 | |||
| 157 | ref = OPENSSL_malloc(sizeof(X509_POLICY_REF)); | ||
| 158 | if (!ref) | ||
| 159 | goto bad_mapping; | ||
| 160 | |||
| 161 | ref->subjectDomainPolicy = map->subjectDomainPolicy; | ||
| 162 | map->subjectDomainPolicy = NULL; | ||
| 163 | ref->data = data; | ||
| 164 | |||
| 165 | if (!sk_X509_POLICY_REF_push(cache->maps, ref)) | ||
| 166 | goto bad_mapping; | ||
| 167 | |||
| 168 | ref = NULL; | ||
| 169 | |||
| 170 | } | ||
| 171 | |||
| 172 | ret = 1; | ||
| 173 | bad_mapping: | ||
| 174 | if (ret == -1) | ||
| 175 | x->ex_flags |= EXFLAG_INVALID_POLICY; | ||
| 176 | if (ref) | ||
| 177 | policy_map_free(ref); | ||
| 178 | if (ret <= 0) | ||
| 179 | { | ||
| 180 | sk_X509_POLICY_REF_pop_free(cache->maps, policy_map_free); | ||
| 181 | cache->maps = NULL; | ||
| 182 | } | ||
| 183 | sk_POLICY_MAPPING_pop_free(maps, POLICY_MAPPING_free); | ||
| 184 | return ret; | ||
| 185 | |||
| 186 | } | ||
diff --git a/src/lib/libssl/src/crypto/ec/ecp_recp.c b/src/lib/libssl/src/crypto/x509v3/pcy_node.c index fec843b5c8..dcc1554e29 100644 --- a/src/lib/libssl/src/crypto/ec/ecp_recp.c +++ b/src/lib/libssl/src/crypto/x509v3/pcy_node.c | |||
| @@ -1,6 +1,9 @@ | |||
| 1 | /* crypto/ec/ecp_recp.c */ | 1 | /* pcy_node.c */ |
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 2 | /* ==================================================================== | 5 | /* ==================================================================== |
| 3 | * Copyright (c) 1998-2001 The OpenSSL Project. All rights reserved. | 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. |
| 4 | * | 7 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 8 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 9 | * modification, are permitted provided that the following conditions |
| @@ -17,12 +20,12 @@ | |||
| 17 | * 3. All advertising materials mentioning features or use of this | 20 | * 3. All advertising materials mentioning features or use of this |
| 18 | * software must display the following acknowledgment: | 21 | * software must display the following acknowledgment: |
| 19 | * "This product includes software developed by the OpenSSL Project | 22 | * "This product includes software developed by the OpenSSL Project |
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" |
| 21 | * | 24 | * |
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to |
| 23 | * endorse or promote products derived from this software without | 26 | * endorse or promote products derived from this software without |
| 24 | * prior written permission. For written permission, please contact | 27 | * prior written permission. For written permission, please contact |
| 25 | * openssl-core@openssl.org. | 28 | * licensing@OpenSSL.org. |
| 26 | * | 29 | * |
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | 30 | * 5. Products derived from this software may not be called "OpenSSL" |
| 28 | * nor may "OpenSSL" appear in their names without prior written | 31 | * nor may "OpenSSL" appear in their names without prior written |
| @@ -31,7 +34,7 @@ | |||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | 34 | * 6. Redistributions of any form whatsoever must retain the following |
| 32 | * acknowledgment: | 35 | * acknowledgment: |
| 33 | * "This product includes software developed by the OpenSSL Project | 36 | * "This product includes software developed by the OpenSSL Project |
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" |
| 35 | * | 38 | * |
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY |
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE |
| @@ -53,81 +56,103 @@ | |||
| 53 | * | 56 | * |
| 54 | */ | 57 | */ |
| 55 | 58 | ||
| 56 | #include "ec_lcl.h" | 59 | #include <openssl/asn1.h> |
| 60 | #include <openssl/x509.h> | ||
| 61 | #include <openssl/x509v3.h> | ||
| 62 | |||
| 63 | #include "pcy_int.h" | ||
| 57 | 64 | ||
| 58 | #if 0 | 65 | static int node_cmp(const X509_POLICY_NODE * const *a, |
| 59 | const EC_METHOD *EC_GFp_recp_method(void) | 66 | const X509_POLICY_NODE * const *b) |
| 60 | { | 67 | { |
| 61 | static const EC_METHOD ret = { | 68 | return OBJ_cmp((*a)->data->valid_policy, (*b)->data->valid_policy); |
| 62 | ec_GFp_recp_group_init, | ||
| 63 | ec_GFp_recp_group_finish, | ||
| 64 | ec_GFp_recp_group_clear_finish, | ||
| 65 | ec_GFp_recp_group_copy, | ||
| 66 | ec_GFp_recp_group_set_curve_GFp, | ||
| 67 | ec_GFp_simple_group_get_curve_GFp, | ||
| 68 | ec_GFp_simple_group_set_generator, | ||
| 69 | ec_GFp_simple_group_get0_generator, | ||
| 70 | ec_GFp_simple_group_get_order, | ||
| 71 | ec_GFp_simple_group_get_cofactor, | ||
| 72 | ec_GFp_simple_point_init, | ||
| 73 | ec_GFp_simple_point_finish, | ||
| 74 | ec_GFp_simple_point_clear_finish, | ||
| 75 | ec_GFp_simple_point_copy, | ||
| 76 | ec_GFp_simple_point_set_to_infinity, | ||
| 77 | ec_GFp_simple_set_Jprojective_coordinates_GFp, | ||
| 78 | ec_GFp_simple_get_Jprojective_coordinates_GFp, | ||
| 79 | ec_GFp_simple_point_set_affine_coordinates_GFp, | ||
| 80 | ec_GFp_simple_point_get_affine_coordinates_GFp, | ||
| 81 | ec_GFp_simple_set_compressed_coordinates_GFp, | ||
| 82 | ec_GFp_simple_point2oct, | ||
| 83 | ec_GFp_simple_oct2point, | ||
| 84 | ec_GFp_simple_add, | ||
| 85 | ec_GFp_simple_dbl, | ||
| 86 | ec_GFp_simple_invert, | ||
| 87 | ec_GFp_simple_is_at_infinity, | ||
| 88 | ec_GFp_simple_is_on_curve, | ||
| 89 | ec_GFp_simple_cmp, | ||
| 90 | ec_GFp_simple_make_affine, | ||
| 91 | ec_GFp_simple_points_make_affine, | ||
| 92 | ec_GFp_recp_field_mul, | ||
| 93 | ec_GFp_recp_field_sqr, | ||
| 94 | 0 /* field_encode */, | ||
| 95 | 0 /* field_decode */, | ||
| 96 | 0 /* field_set_to_one */ }; | ||
| 97 | |||
| 98 | return &ret; | ||
| 99 | } | 69 | } |
| 100 | #endif | ||
| 101 | 70 | ||
| 102 | int ec_GFp_recp_group_init(EC_GROUP *group) | 71 | STACK_OF(X509_POLICY_NODE) *policy_node_cmp_new(void) |
| 103 | { | 72 | { |
| 104 | int ok; | 73 | return sk_X509_POLICY_NODE_new(node_cmp); |
| 105 | |||
| 106 | ok = ec_GFp_simple_group_init(group); | ||
| 107 | group->field_data1 = NULL; | ||
| 108 | return ok; | ||
| 109 | } | 74 | } |
| 110 | 75 | ||
| 76 | X509_POLICY_NODE *tree_find_sk(STACK_OF(X509_POLICY_NODE) *nodes, | ||
| 77 | const ASN1_OBJECT *id) | ||
| 78 | { | ||
| 79 | X509_POLICY_DATA n; | ||
| 80 | X509_POLICY_NODE l; | ||
| 81 | int idx; | ||
| 111 | 82 | ||
| 112 | int ec_GFp_recp_group_set_curve_GFp(EC_GROUP *group, const BIGNUM *p, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx); | 83 | n.valid_policy = (ASN1_OBJECT *)id; |
| 113 | /* TODO */ | 84 | l.data = &n; |
| 114 | |||
| 115 | 85 | ||
| 116 | void ec_GFp_recp_group_finish(EC_GROUP *group); | 86 | idx = sk_X509_POLICY_NODE_find(nodes, &l); |
| 117 | /* TODO */ | 87 | if (idx == -1) |
| 88 | return NULL; | ||
| 118 | 89 | ||
| 90 | return sk_X509_POLICY_NODE_value(nodes, idx); | ||
| 119 | 91 | ||
| 120 | void ec_GFp_recp_group_clear_finish(EC_GROUP *group); | 92 | } |
| 121 | /* TODO */ | ||
| 122 | 93 | ||
| 94 | X509_POLICY_NODE *level_find_node(const X509_POLICY_LEVEL *level, | ||
| 95 | const ASN1_OBJECT *id) | ||
| 96 | { | ||
| 97 | return tree_find_sk(level->nodes, id); | ||
| 98 | } | ||
| 123 | 99 | ||
| 124 | int ec_GFp_recp_group_copy(EC_GROUP *dest, const EC_GROUP *src); | 100 | X509_POLICY_NODE *level_add_node(X509_POLICY_LEVEL *level, |
| 125 | /* TODO */ | 101 | X509_POLICY_DATA *data, |
| 102 | X509_POLICY_NODE *parent, | ||
| 103 | X509_POLICY_TREE *tree) | ||
| 104 | { | ||
| 105 | X509_POLICY_NODE *node; | ||
| 106 | node = OPENSSL_malloc(sizeof(X509_POLICY_NODE)); | ||
| 107 | if (!node) | ||
| 108 | return NULL; | ||
| 109 | node->data = data; | ||
| 110 | node->parent = parent; | ||
| 111 | node->nchild = 0; | ||
| 112 | if (level) | ||
| 113 | { | ||
| 114 | if (OBJ_obj2nid(data->valid_policy) == NID_any_policy) | ||
| 115 | { | ||
| 116 | if (level->anyPolicy) | ||
| 117 | goto node_error; | ||
| 118 | level->anyPolicy = node; | ||
| 119 | } | ||
| 120 | else | ||
| 121 | { | ||
| 122 | |||
| 123 | if (!level->nodes) | ||
| 124 | level->nodes = policy_node_cmp_new(); | ||
| 125 | if (!level->nodes) | ||
| 126 | goto node_error; | ||
| 127 | if (!sk_X509_POLICY_NODE_push(level->nodes, node)) | ||
| 128 | goto node_error; | ||
| 129 | } | ||
| 130 | } | ||
| 131 | |||
| 132 | if (tree) | ||
| 133 | { | ||
| 134 | if (!tree->extra_data) | ||
| 135 | tree->extra_data = sk_X509_POLICY_DATA_new_null(); | ||
| 136 | if (!tree->extra_data) | ||
| 137 | goto node_error; | ||
| 138 | if (!sk_X509_POLICY_DATA_push(tree->extra_data, data)) | ||
| 139 | goto node_error; | ||
| 140 | } | ||
| 141 | |||
| 142 | if (parent) | ||
| 143 | parent->nchild++; | ||
| 144 | |||
| 145 | return node; | ||
| 146 | |||
| 147 | node_error: | ||
| 148 | policy_node_free(node); | ||
| 149 | return 0; | ||
| 126 | 150 | ||
| 151 | } | ||
| 127 | 152 | ||
| 128 | int ec_GFp_recp_field_mul(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, const BIGNUM *b, BN_CTX *ctx); | 153 | void policy_node_free(X509_POLICY_NODE *node) |
| 129 | /* TODO */ | 154 | { |
| 155 | OPENSSL_free(node); | ||
| 156 | } | ||
| 130 | 157 | ||
| 131 | 158 | ||
| 132 | int ec_GFp_recp_field_sqr(const EC_GROUP *group, BIGNUM *r, const BIGNUM *a, BN_CTX *ctx); | ||
| 133 | /* TODO */ | ||
diff --git a/src/lib/libssl/src/crypto/x509v3/pcy_tree.c b/src/lib/libssl/src/crypto/x509v3/pcy_tree.c new file mode 100644 index 0000000000..4fda1d419a --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/pcy_tree.c | |||
| @@ -0,0 +1,692 @@ | |||
| 1 | /* pcy_tree.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2004. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "cryptlib.h" | ||
| 60 | #include <openssl/x509.h> | ||
| 61 | #include <openssl/x509v3.h> | ||
| 62 | |||
| 63 | #include "pcy_int.h" | ||
| 64 | |||
| 65 | /* Initialize policy tree. Return values: | ||
| 66 | * 0 Some internal error occured. | ||
| 67 | * -1 Inconsistent or invalid extensions in certificates. | ||
| 68 | * 1 Tree initialized OK. | ||
| 69 | * 2 Policy tree is empty. | ||
| 70 | * 5 Tree OK and requireExplicitPolicy true. | ||
| 71 | * 6 Tree empty and requireExplicitPolicy true. | ||
| 72 | */ | ||
| 73 | |||
| 74 | static int tree_init(X509_POLICY_TREE **ptree, STACK_OF(X509) *certs, | ||
| 75 | unsigned int flags) | ||
| 76 | { | ||
| 77 | X509_POLICY_TREE *tree; | ||
| 78 | X509_POLICY_LEVEL *level; | ||
| 79 | const X509_POLICY_CACHE *cache; | ||
| 80 | X509_POLICY_DATA *data = NULL; | ||
| 81 | X509 *x; | ||
| 82 | int ret = 1; | ||
| 83 | int i, n; | ||
| 84 | int explicit_policy; | ||
| 85 | int any_skip; | ||
| 86 | int map_skip; | ||
| 87 | *ptree = NULL; | ||
| 88 | n = sk_X509_num(certs); | ||
| 89 | |||
| 90 | /* Disable policy mapping for now... */ | ||
| 91 | flags |= X509_V_FLAG_INHIBIT_MAP; | ||
| 92 | |||
| 93 | if (flags & X509_V_FLAG_EXPLICIT_POLICY) | ||
| 94 | explicit_policy = 0; | ||
| 95 | else | ||
| 96 | explicit_policy = n + 1; | ||
| 97 | |||
| 98 | if (flags & X509_V_FLAG_INHIBIT_ANY) | ||
| 99 | any_skip = 0; | ||
| 100 | else | ||
| 101 | any_skip = n + 1; | ||
| 102 | |||
| 103 | if (flags & X509_V_FLAG_INHIBIT_MAP) | ||
| 104 | map_skip = 0; | ||
| 105 | else | ||
| 106 | map_skip = n + 1; | ||
| 107 | |||
| 108 | /* Can't do anything with just a trust anchor */ | ||
| 109 | if (n == 1) | ||
| 110 | return 1; | ||
| 111 | /* First setup policy cache in all certificates apart from the | ||
| 112 | * trust anchor. Note any bad cache results on the way. Also can | ||
| 113 | * calculate explicit_policy value at this point. | ||
| 114 | */ | ||
| 115 | for (i = n - 2; i >= 0; i--) | ||
| 116 | { | ||
| 117 | x = sk_X509_value(certs, i); | ||
| 118 | X509_check_purpose(x, -1, -1); | ||
| 119 | cache = policy_cache_set(x); | ||
| 120 | /* If cache NULL something bad happened: return immediately */ | ||
| 121 | if (cache == NULL) | ||
| 122 | return 0; | ||
| 123 | /* If inconsistent extensions keep a note of it but continue */ | ||
| 124 | if (x->ex_flags & EXFLAG_INVALID_POLICY) | ||
| 125 | ret = -1; | ||
| 126 | /* Otherwise if we have no data (hence no CertificatePolicies) | ||
| 127 | * and haven't already set an inconsistent code note it. | ||
| 128 | */ | ||
| 129 | else if ((ret == 1) && !cache->data) | ||
| 130 | ret = 2; | ||
| 131 | if (explicit_policy > 0) | ||
| 132 | { | ||
| 133 | explicit_policy--; | ||
| 134 | if (!(x->ex_flags & EXFLAG_SS) | ||
| 135 | && (cache->explicit_skip != -1) | ||
| 136 | && (cache->explicit_skip < explicit_policy)) | ||
| 137 | explicit_policy = cache->explicit_skip; | ||
| 138 | } | ||
| 139 | } | ||
| 140 | |||
| 141 | if (ret != 1) | ||
| 142 | { | ||
| 143 | if (ret == 2 && !explicit_policy) | ||
| 144 | return 6; | ||
| 145 | return ret; | ||
| 146 | } | ||
| 147 | |||
| 148 | |||
| 149 | /* If we get this far initialize the tree */ | ||
| 150 | |||
| 151 | tree = OPENSSL_malloc(sizeof(X509_POLICY_TREE)); | ||
| 152 | |||
| 153 | if (!tree) | ||
| 154 | return 0; | ||
| 155 | |||
| 156 | tree->flags = 0; | ||
| 157 | tree->levels = OPENSSL_malloc(sizeof(X509_POLICY_LEVEL) * n); | ||
| 158 | tree->nlevel = 0; | ||
| 159 | tree->extra_data = NULL; | ||
| 160 | tree->auth_policies = NULL; | ||
| 161 | tree->user_policies = NULL; | ||
| 162 | |||
| 163 | if (!tree) | ||
| 164 | { | ||
| 165 | OPENSSL_free(tree); | ||
| 166 | return 0; | ||
| 167 | } | ||
| 168 | |||
| 169 | memset(tree->levels, 0, n * sizeof(X509_POLICY_LEVEL)); | ||
| 170 | |||
| 171 | tree->nlevel = n; | ||
| 172 | |||
| 173 | level = tree->levels; | ||
| 174 | |||
| 175 | /* Root data: initialize to anyPolicy */ | ||
| 176 | |||
| 177 | data = policy_data_new(NULL, OBJ_nid2obj(NID_any_policy), 0); | ||
| 178 | |||
| 179 | if (!data || !level_add_node(level, data, NULL, tree)) | ||
| 180 | goto bad_tree; | ||
| 181 | |||
| 182 | for (i = n - 2; i >= 0; i--) | ||
| 183 | { | ||
| 184 | level++; | ||
| 185 | x = sk_X509_value(certs, i); | ||
| 186 | cache = policy_cache_set(x); | ||
| 187 | |||
| 188 | CRYPTO_add(&x->references, 1, CRYPTO_LOCK_X509); | ||
| 189 | level->cert = x; | ||
| 190 | |||
| 191 | if (!cache->anyPolicy) | ||
| 192 | level->flags |= X509_V_FLAG_INHIBIT_ANY; | ||
| 193 | |||
| 194 | /* Determine inhibit any and inhibit map flags */ | ||
| 195 | if (any_skip == 0) | ||
| 196 | { | ||
| 197 | /* Any matching allowed if certificate is self | ||
| 198 | * issued and not the last in the chain. | ||
| 199 | */ | ||
| 200 | if (!(x->ex_flags & EXFLAG_SS) || (i == 0)) | ||
| 201 | level->flags |= X509_V_FLAG_INHIBIT_ANY; | ||
| 202 | } | ||
| 203 | else | ||
| 204 | { | ||
| 205 | any_skip--; | ||
| 206 | if ((cache->any_skip > 0) | ||
| 207 | && (cache->any_skip < any_skip)) | ||
| 208 | any_skip = cache->any_skip; | ||
| 209 | } | ||
| 210 | |||
| 211 | if (map_skip == 0) | ||
| 212 | level->flags |= X509_V_FLAG_INHIBIT_MAP; | ||
| 213 | else | ||
| 214 | { | ||
| 215 | map_skip--; | ||
| 216 | if ((cache->map_skip > 0) | ||
| 217 | && (cache->map_skip < map_skip)) | ||
| 218 | map_skip = cache->map_skip; | ||
| 219 | } | ||
| 220 | |||
| 221 | |||
| 222 | } | ||
| 223 | |||
| 224 | *ptree = tree; | ||
| 225 | |||
| 226 | if (explicit_policy) | ||
| 227 | return 1; | ||
| 228 | else | ||
| 229 | return 5; | ||
| 230 | |||
| 231 | bad_tree: | ||
| 232 | |||
| 233 | X509_policy_tree_free(tree); | ||
| 234 | |||
| 235 | return 0; | ||
| 236 | |||
| 237 | } | ||
| 238 | |||
| 239 | /* This corresponds to RFC3280 XXXX XXXXX: | ||
| 240 | * link any data from CertificatePolicies onto matching parent | ||
| 241 | * or anyPolicy if no match. | ||
| 242 | */ | ||
| 243 | |||
| 244 | static int tree_link_nodes(X509_POLICY_LEVEL *curr, | ||
| 245 | const X509_POLICY_CACHE *cache) | ||
| 246 | { | ||
| 247 | int i; | ||
| 248 | X509_POLICY_LEVEL *last; | ||
| 249 | X509_POLICY_DATA *data; | ||
| 250 | X509_POLICY_NODE *parent; | ||
| 251 | last = curr - 1; | ||
| 252 | for (i = 0; i < sk_X509_POLICY_DATA_num(cache->data); i++) | ||
| 253 | { | ||
| 254 | data = sk_X509_POLICY_DATA_value(cache->data, i); | ||
| 255 | /* If a node is mapped any it doesn't have a corresponding | ||
| 256 | * CertificatePolicies entry. | ||
| 257 | * However such an identical node would be created | ||
| 258 | * if anyPolicy matching is enabled because there would be | ||
| 259 | * no match with the parent valid_policy_set. So we create | ||
| 260 | * link because then it will have the mapping flags | ||
| 261 | * right and we can prune it later. | ||
| 262 | */ | ||
| 263 | if ((data->flags & POLICY_DATA_FLAG_MAPPED_ANY) | ||
| 264 | && !(curr->flags & X509_V_FLAG_INHIBIT_ANY)) | ||
| 265 | continue; | ||
| 266 | /* Look for matching node in parent */ | ||
| 267 | parent = level_find_node(last, data->valid_policy); | ||
| 268 | /* If no match link to anyPolicy */ | ||
| 269 | if (!parent) | ||
| 270 | parent = last->anyPolicy; | ||
| 271 | if (parent && !level_add_node(curr, data, parent, NULL)) | ||
| 272 | return 0; | ||
| 273 | } | ||
| 274 | return 1; | ||
| 275 | } | ||
| 276 | |||
| 277 | /* This corresponds to RFC3280 XXXX XXXXX: | ||
| 278 | * Create new data for any unmatched policies in the parent and link | ||
| 279 | * to anyPolicy. | ||
| 280 | */ | ||
| 281 | |||
| 282 | static int tree_link_any(X509_POLICY_LEVEL *curr, | ||
| 283 | const X509_POLICY_CACHE *cache, | ||
| 284 | X509_POLICY_TREE *tree) | ||
| 285 | { | ||
| 286 | int i; | ||
| 287 | X509_POLICY_DATA *data; | ||
| 288 | X509_POLICY_NODE *node; | ||
| 289 | X509_POLICY_LEVEL *last; | ||
| 290 | |||
| 291 | last = curr - 1; | ||
| 292 | |||
| 293 | for (i = 0; i < sk_X509_POLICY_NODE_num(last->nodes); i++) | ||
| 294 | { | ||
| 295 | node = sk_X509_POLICY_NODE_value(last->nodes, i); | ||
| 296 | |||
| 297 | /* Skip any node with any children: we only want unmathced | ||
| 298 | * nodes. | ||
| 299 | * | ||
| 300 | * Note: need something better for policy mapping | ||
| 301 | * because each node may have multiple children | ||
| 302 | */ | ||
| 303 | if (node->nchild) | ||
| 304 | continue; | ||
| 305 | /* Create a new node with qualifiers from anyPolicy and | ||
| 306 | * id from unmatched node. | ||
| 307 | */ | ||
| 308 | data = policy_data_new(NULL, node->data->valid_policy, | ||
| 309 | node_critical(node)); | ||
| 310 | |||
| 311 | if (data == NULL) | ||
| 312 | return 0; | ||
| 313 | data->qualifier_set = curr->anyPolicy->data->qualifier_set; | ||
| 314 | data->flags |= POLICY_DATA_FLAG_SHARED_QUALIFIERS; | ||
| 315 | if (!level_add_node(curr, data, node, tree)) | ||
| 316 | { | ||
| 317 | policy_data_free(data); | ||
| 318 | return 0; | ||
| 319 | } | ||
| 320 | } | ||
| 321 | /* Finally add link to anyPolicy */ | ||
| 322 | if (last->anyPolicy) | ||
| 323 | { | ||
| 324 | if (!level_add_node(curr, cache->anyPolicy, | ||
| 325 | last->anyPolicy, NULL)) | ||
| 326 | return 0; | ||
| 327 | } | ||
| 328 | return 1; | ||
| 329 | } | ||
| 330 | |||
| 331 | /* Prune the tree: delete any child mapped child data on the current level | ||
| 332 | * then proceed up the tree deleting any data with no children. If we ever | ||
| 333 | * have no data on a level we can halt because the tree will be empty. | ||
| 334 | */ | ||
| 335 | |||
| 336 | static int tree_prune(X509_POLICY_TREE *tree, X509_POLICY_LEVEL *curr) | ||
| 337 | { | ||
| 338 | X509_POLICY_NODE *node; | ||
| 339 | int i; | ||
| 340 | for (i = sk_X509_POLICY_NODE_num(curr->nodes) - 1; i >= 0; i--) | ||
| 341 | { | ||
| 342 | node = sk_X509_POLICY_NODE_value(curr->nodes, i); | ||
| 343 | /* Delete any mapped data: see RFC3280 XXXX */ | ||
| 344 | if (node->data->flags & POLICY_DATA_FLAG_MAP_MASK) | ||
| 345 | { | ||
| 346 | node->parent->nchild--; | ||
| 347 | OPENSSL_free(node); | ||
| 348 | (void)sk_X509_POLICY_NODE_delete(curr->nodes, i); | ||
| 349 | } | ||
| 350 | } | ||
| 351 | |||
| 352 | for(;;) { | ||
| 353 | --curr; | ||
| 354 | for (i = sk_X509_POLICY_NODE_num(curr->nodes) - 1; i >= 0; i--) | ||
| 355 | { | ||
| 356 | node = sk_X509_POLICY_NODE_value(curr->nodes, i); | ||
| 357 | if (node->nchild == 0) | ||
| 358 | { | ||
| 359 | node->parent->nchild--; | ||
| 360 | OPENSSL_free(node); | ||
| 361 | (void)sk_X509_POLICY_NODE_delete(curr->nodes, i); | ||
| 362 | } | ||
| 363 | } | ||
| 364 | if (curr->anyPolicy && !curr->anyPolicy->nchild) | ||
| 365 | { | ||
| 366 | if (curr->anyPolicy->parent) | ||
| 367 | curr->anyPolicy->parent->nchild--; | ||
| 368 | OPENSSL_free(curr->anyPolicy); | ||
| 369 | curr->anyPolicy = NULL; | ||
| 370 | } | ||
| 371 | if (curr == tree->levels) | ||
| 372 | { | ||
| 373 | /* If we zapped anyPolicy at top then tree is empty */ | ||
| 374 | if (!curr->anyPolicy) | ||
| 375 | return 2; | ||
| 376 | return 1; | ||
| 377 | } | ||
| 378 | } | ||
| 379 | |||
| 380 | return 1; | ||
| 381 | |||
| 382 | } | ||
| 383 | |||
| 384 | static int tree_add_auth_node(STACK_OF(X509_POLICY_NODE) **pnodes, | ||
| 385 | X509_POLICY_NODE *pcy) | ||
| 386 | { | ||
| 387 | if (!*pnodes) | ||
| 388 | { | ||
| 389 | *pnodes = policy_node_cmp_new(); | ||
| 390 | if (!*pnodes) | ||
| 391 | return 0; | ||
| 392 | } | ||
| 393 | else if (sk_X509_POLICY_NODE_find(*pnodes, pcy) != -1) | ||
| 394 | return 1; | ||
| 395 | |||
| 396 | if (!sk_X509_POLICY_NODE_push(*pnodes, pcy)) | ||
| 397 | return 0; | ||
| 398 | |||
| 399 | return 1; | ||
| 400 | |||
| 401 | } | ||
| 402 | |||
| 403 | /* Calculate the authority set based on policy tree. | ||
| 404 | * The 'pnodes' parameter is used as a store for the set of policy nodes | ||
| 405 | * used to calculate the user set. If the authority set is not anyPolicy | ||
| 406 | * then pnodes will just point to the authority set. If however the authority | ||
| 407 | * set is anyPolicy then the set of valid policies (other than anyPolicy) | ||
| 408 | * is store in pnodes. The return value of '2' is used in this case to indicate | ||
| 409 | * that pnodes should be freed. | ||
| 410 | */ | ||
| 411 | |||
| 412 | static int tree_calculate_authority_set(X509_POLICY_TREE *tree, | ||
| 413 | STACK_OF(X509_POLICY_NODE) **pnodes) | ||
| 414 | { | ||
| 415 | X509_POLICY_LEVEL *curr; | ||
| 416 | X509_POLICY_NODE *node, *anyptr; | ||
| 417 | STACK_OF(X509_POLICY_NODE) **addnodes; | ||
| 418 | int i, j; | ||
| 419 | curr = tree->levels + tree->nlevel - 1; | ||
| 420 | |||
| 421 | /* If last level contains anyPolicy set is anyPolicy */ | ||
| 422 | if (curr->anyPolicy) | ||
| 423 | { | ||
| 424 | if (!tree_add_auth_node(&tree->auth_policies, curr->anyPolicy)) | ||
| 425 | return 0; | ||
| 426 | addnodes = pnodes; | ||
| 427 | } | ||
| 428 | else | ||
| 429 | /* Add policies to authority set */ | ||
| 430 | addnodes = &tree->auth_policies; | ||
| 431 | |||
| 432 | curr = tree->levels; | ||
| 433 | for (i = 1; i < tree->nlevel; i++) | ||
| 434 | { | ||
| 435 | /* If no anyPolicy node on this this level it can't | ||
| 436 | * appear on lower levels so end search. | ||
| 437 | */ | ||
| 438 | if (!(anyptr = curr->anyPolicy)) | ||
| 439 | break; | ||
| 440 | curr++; | ||
| 441 | for (j = 0; j < sk_X509_POLICY_NODE_num(curr->nodes); j++) | ||
| 442 | { | ||
| 443 | node = sk_X509_POLICY_NODE_value(curr->nodes, j); | ||
| 444 | if ((node->parent == anyptr) | ||
| 445 | && !tree_add_auth_node(addnodes, node)) | ||
| 446 | return 0; | ||
| 447 | } | ||
| 448 | } | ||
| 449 | |||
| 450 | if (addnodes == pnodes) | ||
| 451 | return 2; | ||
| 452 | |||
| 453 | *pnodes = tree->auth_policies; | ||
| 454 | |||
| 455 | return 1; | ||
| 456 | } | ||
| 457 | |||
| 458 | static int tree_calculate_user_set(X509_POLICY_TREE *tree, | ||
| 459 | STACK_OF(ASN1_OBJECT) *policy_oids, | ||
| 460 | STACK_OF(X509_POLICY_NODE) *auth_nodes) | ||
| 461 | { | ||
| 462 | int i; | ||
| 463 | X509_POLICY_NODE *node; | ||
| 464 | ASN1_OBJECT *oid; | ||
| 465 | |||
| 466 | X509_POLICY_NODE *anyPolicy; | ||
| 467 | X509_POLICY_DATA *extra; | ||
| 468 | |||
| 469 | /* Check if anyPolicy present in authority constrained policy set: | ||
| 470 | * this will happen if it is a leaf node. | ||
| 471 | */ | ||
| 472 | |||
| 473 | if (sk_ASN1_OBJECT_num(policy_oids) <= 0) | ||
| 474 | return 1; | ||
| 475 | |||
| 476 | anyPolicy = tree->levels[tree->nlevel - 1].anyPolicy; | ||
| 477 | |||
| 478 | for (i = 0; i < sk_ASN1_OBJECT_num(policy_oids); i++) | ||
| 479 | { | ||
| 480 | oid = sk_ASN1_OBJECT_value(policy_oids, i); | ||
| 481 | if (OBJ_obj2nid(oid) == NID_any_policy) | ||
| 482 | { | ||
| 483 | tree->flags |= POLICY_FLAG_ANY_POLICY; | ||
| 484 | return 1; | ||
| 485 | } | ||
| 486 | } | ||
| 487 | |||
| 488 | for (i = 0; i < sk_ASN1_OBJECT_num(policy_oids); i++) | ||
| 489 | { | ||
| 490 | oid = sk_ASN1_OBJECT_value(policy_oids, i); | ||
| 491 | node = tree_find_sk(auth_nodes, oid); | ||
| 492 | if (!node) | ||
| 493 | { | ||
| 494 | if (!anyPolicy) | ||
| 495 | continue; | ||
| 496 | /* Create a new node with policy ID from user set | ||
| 497 | * and qualifiers from anyPolicy. | ||
| 498 | */ | ||
| 499 | extra = policy_data_new(NULL, oid, | ||
| 500 | node_critical(anyPolicy)); | ||
| 501 | if (!extra) | ||
| 502 | return 0; | ||
| 503 | extra->qualifier_set = anyPolicy->data->qualifier_set; | ||
| 504 | extra->flags = POLICY_DATA_FLAG_SHARED_QUALIFIERS | ||
| 505 | | POLICY_DATA_FLAG_EXTRA_NODE; | ||
| 506 | node = level_add_node(NULL, extra, anyPolicy->parent, | ||
| 507 | tree); | ||
| 508 | } | ||
| 509 | if (!tree->user_policies) | ||
| 510 | { | ||
| 511 | tree->user_policies = sk_X509_POLICY_NODE_new_null(); | ||
| 512 | if (!tree->user_policies) | ||
| 513 | return 1; | ||
| 514 | } | ||
| 515 | if (!sk_X509_POLICY_NODE_push(tree->user_policies, node)) | ||
| 516 | return 0; | ||
| 517 | } | ||
| 518 | return 1; | ||
| 519 | |||
| 520 | } | ||
| 521 | |||
| 522 | static int tree_evaluate(X509_POLICY_TREE *tree) | ||
| 523 | { | ||
| 524 | int ret, i; | ||
| 525 | X509_POLICY_LEVEL *curr = tree->levels + 1; | ||
| 526 | const X509_POLICY_CACHE *cache; | ||
| 527 | |||
| 528 | for(i = 1; i < tree->nlevel; i++, curr++) | ||
| 529 | { | ||
| 530 | cache = policy_cache_set(curr->cert); | ||
| 531 | if (!tree_link_nodes(curr, cache)) | ||
| 532 | return 0; | ||
| 533 | |||
| 534 | if (!(curr->flags & X509_V_FLAG_INHIBIT_ANY) | ||
| 535 | && !tree_link_any(curr, cache, tree)) | ||
| 536 | return 0; | ||
| 537 | ret = tree_prune(tree, curr); | ||
| 538 | if (ret != 1) | ||
| 539 | return ret; | ||
| 540 | } | ||
| 541 | |||
| 542 | return 1; | ||
| 543 | |||
| 544 | } | ||
| 545 | |||
| 546 | static void exnode_free(X509_POLICY_NODE *node) | ||
| 547 | { | ||
| 548 | if (node->data && (node->data->flags & POLICY_DATA_FLAG_EXTRA_NODE)) | ||
| 549 | OPENSSL_free(node); | ||
| 550 | } | ||
| 551 | |||
| 552 | |||
| 553 | void X509_policy_tree_free(X509_POLICY_TREE *tree) | ||
| 554 | { | ||
| 555 | X509_POLICY_LEVEL *curr; | ||
| 556 | int i; | ||
| 557 | |||
| 558 | if (!tree) | ||
| 559 | return; | ||
| 560 | |||
| 561 | sk_X509_POLICY_NODE_free(tree->auth_policies); | ||
| 562 | sk_X509_POLICY_NODE_pop_free(tree->user_policies, exnode_free); | ||
| 563 | |||
| 564 | for(i = 0, curr = tree->levels; i < tree->nlevel; i++, curr++) | ||
| 565 | { | ||
| 566 | if (curr->cert) | ||
| 567 | X509_free(curr->cert); | ||
| 568 | if (curr->nodes) | ||
| 569 | sk_X509_POLICY_NODE_pop_free(curr->nodes, | ||
| 570 | policy_node_free); | ||
| 571 | if (curr->anyPolicy) | ||
| 572 | policy_node_free(curr->anyPolicy); | ||
| 573 | } | ||
| 574 | |||
| 575 | if (tree->extra_data) | ||
| 576 | sk_X509_POLICY_DATA_pop_free(tree->extra_data, | ||
| 577 | policy_data_free); | ||
| 578 | |||
| 579 | OPENSSL_free(tree->levels); | ||
| 580 | OPENSSL_free(tree); | ||
| 581 | |||
| 582 | } | ||
| 583 | |||
| 584 | /* Application policy checking function. | ||
| 585 | * Return codes: | ||
| 586 | * 0 Internal Error. | ||
| 587 | * 1 Successful. | ||
| 588 | * -1 One or more certificates contain invalid or inconsistent extensions | ||
| 589 | * -2 User constrained policy set empty and requireExplicit true. | ||
| 590 | */ | ||
| 591 | |||
| 592 | int X509_policy_check(X509_POLICY_TREE **ptree, int *pexplicit_policy, | ||
| 593 | STACK_OF(X509) *certs, | ||
| 594 | STACK_OF(ASN1_OBJECT) *policy_oids, | ||
| 595 | unsigned int flags) | ||
| 596 | { | ||
| 597 | int ret; | ||
| 598 | X509_POLICY_TREE *tree = NULL; | ||
| 599 | STACK_OF(X509_POLICY_NODE) *nodes, *auth_nodes = NULL; | ||
| 600 | *ptree = NULL; | ||
| 601 | |||
| 602 | *pexplicit_policy = 0; | ||
| 603 | ret = tree_init(&tree, certs, flags); | ||
| 604 | |||
| 605 | |||
| 606 | switch (ret) | ||
| 607 | { | ||
| 608 | |||
| 609 | /* Tree empty requireExplicit False: OK */ | ||
| 610 | case 2: | ||
| 611 | return 1; | ||
| 612 | |||
| 613 | /* Some internal error */ | ||
| 614 | case 0: | ||
| 615 | return 0; | ||
| 616 | |||
| 617 | /* Tree empty requireExplicit True: Error */ | ||
| 618 | |||
| 619 | case 6: | ||
| 620 | *pexplicit_policy = 1; | ||
| 621 | return -2; | ||
| 622 | |||
| 623 | /* Tree OK requireExplicit True: OK and continue */ | ||
| 624 | case 5: | ||
| 625 | *pexplicit_policy = 1; | ||
| 626 | break; | ||
| 627 | |||
| 628 | /* Tree OK: continue */ | ||
| 629 | |||
| 630 | case 1: | ||
| 631 | if (!tree) | ||
| 632 | /* | ||
| 633 | * tree_init() returns success and a null tree | ||
| 634 | * if it's just looking at a trust anchor. | ||
| 635 | * I'm not sure that returning success here is | ||
| 636 | * correct, but I'm sure that reporting this | ||
| 637 | * as an internal error which our caller | ||
| 638 | * interprets as a malloc failure is wrong. | ||
| 639 | */ | ||
| 640 | return 1; | ||
| 641 | break; | ||
| 642 | } | ||
| 643 | |||
| 644 | if (!tree) goto error; | ||
| 645 | ret = tree_evaluate(tree); | ||
| 646 | |||
| 647 | if (ret <= 0) | ||
| 648 | goto error; | ||
| 649 | |||
| 650 | /* Return value 2 means tree empty */ | ||
| 651 | if (ret == 2) | ||
| 652 | { | ||
| 653 | X509_policy_tree_free(tree); | ||
| 654 | if (*pexplicit_policy) | ||
| 655 | return -2; | ||
| 656 | else | ||
| 657 | return 1; | ||
| 658 | } | ||
| 659 | |||
| 660 | /* Tree is not empty: continue */ | ||
| 661 | |||
| 662 | ret = tree_calculate_authority_set(tree, &auth_nodes); | ||
| 663 | |||
| 664 | if (!ret) | ||
| 665 | goto error; | ||
| 666 | |||
| 667 | if (!tree_calculate_user_set(tree, policy_oids, auth_nodes)) | ||
| 668 | goto error; | ||
| 669 | |||
| 670 | if (ret == 2) | ||
| 671 | sk_X509_POLICY_NODE_free(auth_nodes); | ||
| 672 | |||
| 673 | if (tree) | ||
| 674 | *ptree = tree; | ||
| 675 | |||
| 676 | if (*pexplicit_policy) | ||
| 677 | { | ||
| 678 | nodes = X509_policy_tree_get0_user_policies(tree); | ||
| 679 | if (sk_X509_POLICY_NODE_num(nodes) <= 0) | ||
| 680 | return -2; | ||
| 681 | } | ||
| 682 | |||
| 683 | return 1; | ||
| 684 | |||
| 685 | error: | ||
| 686 | |||
| 687 | X509_policy_tree_free(tree); | ||
| 688 | |||
| 689 | return 0; | ||
| 690 | |||
| 691 | } | ||
| 692 | |||
diff --git a/src/lib/libssl/src/crypto/x509v3/v3_addr.c b/src/lib/libssl/src/crypto/x509v3/v3_addr.c new file mode 100644 index 0000000000..ed9847b307 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/v3_addr.c | |||
| @@ -0,0 +1,1280 @@ | |||
| 1 | /* | ||
| 2 | * Contributed to the OpenSSL Project by the American Registry for | ||
| 3 | * Internet Numbers ("ARIN"). | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | */ | ||
| 57 | |||
| 58 | /* | ||
| 59 | * Implementation of RFC 3779 section 2.2. | ||
| 60 | */ | ||
| 61 | |||
| 62 | #include <stdio.h> | ||
| 63 | #include <stdlib.h> | ||
| 64 | #include <assert.h> | ||
| 65 | #include "cryptlib.h" | ||
| 66 | #include <openssl/conf.h> | ||
| 67 | #include <openssl/asn1.h> | ||
| 68 | #include <openssl/asn1t.h> | ||
| 69 | #include <openssl/buffer.h> | ||
| 70 | #include <openssl/x509v3.h> | ||
| 71 | |||
| 72 | #ifndef OPENSSL_NO_RFC3779 | ||
| 73 | |||
| 74 | /* | ||
| 75 | * OpenSSL ASN.1 template translation of RFC 3779 2.2.3. | ||
| 76 | */ | ||
| 77 | |||
| 78 | ASN1_SEQUENCE(IPAddressRange) = { | ||
| 79 | ASN1_SIMPLE(IPAddressRange, min, ASN1_BIT_STRING), | ||
| 80 | ASN1_SIMPLE(IPAddressRange, max, ASN1_BIT_STRING) | ||
| 81 | } ASN1_SEQUENCE_END(IPAddressRange) | ||
| 82 | |||
| 83 | ASN1_CHOICE(IPAddressOrRange) = { | ||
| 84 | ASN1_SIMPLE(IPAddressOrRange, u.addressPrefix, ASN1_BIT_STRING), | ||
| 85 | ASN1_SIMPLE(IPAddressOrRange, u.addressRange, IPAddressRange) | ||
| 86 | } ASN1_CHOICE_END(IPAddressOrRange) | ||
| 87 | |||
| 88 | ASN1_CHOICE(IPAddressChoice) = { | ||
| 89 | ASN1_SIMPLE(IPAddressChoice, u.inherit, ASN1_NULL), | ||
| 90 | ASN1_SEQUENCE_OF(IPAddressChoice, u.addressesOrRanges, IPAddressOrRange) | ||
| 91 | } ASN1_CHOICE_END(IPAddressChoice) | ||
| 92 | |||
| 93 | ASN1_SEQUENCE(IPAddressFamily) = { | ||
| 94 | ASN1_SIMPLE(IPAddressFamily, addressFamily, ASN1_OCTET_STRING), | ||
| 95 | ASN1_SIMPLE(IPAddressFamily, ipAddressChoice, IPAddressChoice) | ||
| 96 | } ASN1_SEQUENCE_END(IPAddressFamily) | ||
| 97 | |||
| 98 | ASN1_ITEM_TEMPLATE(IPAddrBlocks) = | ||
| 99 | ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SEQUENCE_OF, 0, | ||
| 100 | IPAddrBlocks, IPAddressFamily) | ||
| 101 | ASN1_ITEM_TEMPLATE_END(IPAddrBlocks) | ||
| 102 | |||
| 103 | IMPLEMENT_ASN1_FUNCTIONS(IPAddressRange) | ||
| 104 | IMPLEMENT_ASN1_FUNCTIONS(IPAddressOrRange) | ||
| 105 | IMPLEMENT_ASN1_FUNCTIONS(IPAddressChoice) | ||
| 106 | IMPLEMENT_ASN1_FUNCTIONS(IPAddressFamily) | ||
| 107 | |||
| 108 | /* | ||
| 109 | * How much buffer space do we need for a raw address? | ||
| 110 | */ | ||
| 111 | #define ADDR_RAW_BUF_LEN 16 | ||
| 112 | |||
| 113 | /* | ||
| 114 | * What's the address length associated with this AFI? | ||
| 115 | */ | ||
| 116 | static int length_from_afi(const unsigned afi) | ||
| 117 | { | ||
| 118 | switch (afi) { | ||
| 119 | case IANA_AFI_IPV4: | ||
| 120 | return 4; | ||
| 121 | case IANA_AFI_IPV6: | ||
| 122 | return 16; | ||
| 123 | default: | ||
| 124 | return 0; | ||
| 125 | } | ||
| 126 | } | ||
| 127 | |||
| 128 | /* | ||
| 129 | * Extract the AFI from an IPAddressFamily. | ||
| 130 | */ | ||
| 131 | unsigned v3_addr_get_afi(const IPAddressFamily *f) | ||
| 132 | { | ||
| 133 | return ((f != NULL && | ||
| 134 | f->addressFamily != NULL && | ||
| 135 | f->addressFamily->data != NULL) | ||
| 136 | ? ((f->addressFamily->data[0] << 8) | | ||
| 137 | (f->addressFamily->data[1])) | ||
| 138 | : 0); | ||
| 139 | } | ||
| 140 | |||
| 141 | /* | ||
| 142 | * Expand the bitstring form of an address into a raw byte array. | ||
| 143 | * At the moment this is coded for simplicity, not speed. | ||
| 144 | */ | ||
| 145 | static void addr_expand(unsigned char *addr, | ||
| 146 | const ASN1_BIT_STRING *bs, | ||
| 147 | const int length, | ||
| 148 | const unsigned char fill) | ||
| 149 | { | ||
| 150 | assert(bs->length >= 0 && bs->length <= length); | ||
| 151 | if (bs->length > 0) { | ||
| 152 | memcpy(addr, bs->data, bs->length); | ||
| 153 | if ((bs->flags & 7) != 0) { | ||
| 154 | unsigned char mask = 0xFF >> (8 - (bs->flags & 7)); | ||
| 155 | if (fill == 0) | ||
| 156 | addr[bs->length - 1] &= ~mask; | ||
| 157 | else | ||
| 158 | addr[bs->length - 1] |= mask; | ||
| 159 | } | ||
| 160 | } | ||
| 161 | memset(addr + bs->length, fill, length - bs->length); | ||
| 162 | } | ||
| 163 | |||
| 164 | /* | ||
| 165 | * Extract the prefix length from a bitstring. | ||
| 166 | */ | ||
| 167 | #define addr_prefixlen(bs) ((int) ((bs)->length * 8 - ((bs)->flags & 7))) | ||
| 168 | |||
| 169 | /* | ||
| 170 | * i2r handler for one address bitstring. | ||
| 171 | */ | ||
| 172 | static int i2r_address(BIO *out, | ||
| 173 | const unsigned afi, | ||
| 174 | const unsigned char fill, | ||
| 175 | const ASN1_BIT_STRING *bs) | ||
| 176 | { | ||
| 177 | unsigned char addr[ADDR_RAW_BUF_LEN]; | ||
| 178 | int i, n; | ||
| 179 | |||
| 180 | switch (afi) { | ||
| 181 | case IANA_AFI_IPV4: | ||
| 182 | addr_expand(addr, bs, 4, fill); | ||
| 183 | BIO_printf(out, "%d.%d.%d.%d", addr[0], addr[1], addr[2], addr[3]); | ||
| 184 | break; | ||
| 185 | case IANA_AFI_IPV6: | ||
| 186 | addr_expand(addr, bs, 16, fill); | ||
| 187 | for (n = 16; n > 1 && addr[n-1] == 0x00 && addr[n-2] == 0x00; n -= 2) | ||
| 188 | ; | ||
| 189 | for (i = 0; i < n; i += 2) | ||
| 190 | BIO_printf(out, "%x%s", (addr[i] << 8) | addr[i+1], (i < 14 ? ":" : "")); | ||
| 191 | if (i < 16) | ||
| 192 | BIO_puts(out, ":"); | ||
| 193 | break; | ||
| 194 | default: | ||
| 195 | for (i = 0; i < bs->length; i++) | ||
| 196 | BIO_printf(out, "%s%02x", (i > 0 ? ":" : ""), bs->data[i]); | ||
| 197 | BIO_printf(out, "[%d]", (int) (bs->flags & 7)); | ||
| 198 | break; | ||
| 199 | } | ||
| 200 | return 1; | ||
| 201 | } | ||
| 202 | |||
| 203 | /* | ||
| 204 | * i2r handler for a sequence of addresses and ranges. | ||
| 205 | */ | ||
| 206 | static int i2r_IPAddressOrRanges(BIO *out, | ||
| 207 | const int indent, | ||
| 208 | const IPAddressOrRanges *aors, | ||
| 209 | const unsigned afi) | ||
| 210 | { | ||
| 211 | int i; | ||
| 212 | for (i = 0; i < sk_IPAddressOrRange_num(aors); i++) { | ||
| 213 | const IPAddressOrRange *aor = sk_IPAddressOrRange_value(aors, i); | ||
| 214 | BIO_printf(out, "%*s", indent, ""); | ||
| 215 | switch (aor->type) { | ||
| 216 | case IPAddressOrRange_addressPrefix: | ||
| 217 | if (!i2r_address(out, afi, 0x00, aor->u.addressPrefix)) | ||
| 218 | return 0; | ||
| 219 | BIO_printf(out, "/%d\n", addr_prefixlen(aor->u.addressPrefix)); | ||
| 220 | continue; | ||
| 221 | case IPAddressOrRange_addressRange: | ||
| 222 | if (!i2r_address(out, afi, 0x00, aor->u.addressRange->min)) | ||
| 223 | return 0; | ||
| 224 | BIO_puts(out, "-"); | ||
| 225 | if (!i2r_address(out, afi, 0xFF, aor->u.addressRange->max)) | ||
| 226 | return 0; | ||
| 227 | BIO_puts(out, "\n"); | ||
| 228 | continue; | ||
| 229 | } | ||
| 230 | } | ||
| 231 | return 1; | ||
| 232 | } | ||
| 233 | |||
| 234 | /* | ||
| 235 | * i2r handler for an IPAddrBlocks extension. | ||
| 236 | */ | ||
| 237 | static int i2r_IPAddrBlocks(X509V3_EXT_METHOD *method, | ||
| 238 | void *ext, | ||
| 239 | BIO *out, | ||
| 240 | int indent) | ||
| 241 | { | ||
| 242 | const IPAddrBlocks *addr = ext; | ||
| 243 | int i; | ||
| 244 | for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { | ||
| 245 | IPAddressFamily *f = sk_IPAddressFamily_value(addr, i); | ||
| 246 | const unsigned afi = v3_addr_get_afi(f); | ||
| 247 | switch (afi) { | ||
| 248 | case IANA_AFI_IPV4: | ||
| 249 | BIO_printf(out, "%*sIPv4", indent, ""); | ||
| 250 | break; | ||
| 251 | case IANA_AFI_IPV6: | ||
| 252 | BIO_printf(out, "%*sIPv6", indent, ""); | ||
| 253 | break; | ||
| 254 | default: | ||
| 255 | BIO_printf(out, "%*sUnknown AFI %u", indent, "", afi); | ||
| 256 | break; | ||
| 257 | } | ||
| 258 | if (f->addressFamily->length > 2) { | ||
| 259 | switch (f->addressFamily->data[2]) { | ||
| 260 | case 1: | ||
| 261 | BIO_puts(out, " (Unicast)"); | ||
| 262 | break; | ||
| 263 | case 2: | ||
| 264 | BIO_puts(out, " (Multicast)"); | ||
| 265 | break; | ||
| 266 | case 3: | ||
| 267 | BIO_puts(out, " (Unicast/Multicast)"); | ||
| 268 | break; | ||
| 269 | case 4: | ||
| 270 | BIO_puts(out, " (MPLS)"); | ||
| 271 | break; | ||
| 272 | case 64: | ||
| 273 | BIO_puts(out, " (Tunnel)"); | ||
| 274 | break; | ||
| 275 | case 65: | ||
| 276 | BIO_puts(out, " (VPLS)"); | ||
| 277 | break; | ||
| 278 | case 66: | ||
| 279 | BIO_puts(out, " (BGP MDT)"); | ||
| 280 | break; | ||
| 281 | case 128: | ||
| 282 | BIO_puts(out, " (MPLS-labeled VPN)"); | ||
| 283 | break; | ||
| 284 | default: | ||
| 285 | BIO_printf(out, " (Unknown SAFI %u)", | ||
| 286 | (unsigned) f->addressFamily->data[2]); | ||
| 287 | break; | ||
| 288 | } | ||
| 289 | } | ||
| 290 | switch (f->ipAddressChoice->type) { | ||
| 291 | case IPAddressChoice_inherit: | ||
| 292 | BIO_puts(out, ": inherit\n"); | ||
| 293 | break; | ||
| 294 | case IPAddressChoice_addressesOrRanges: | ||
| 295 | BIO_puts(out, ":\n"); | ||
| 296 | if (!i2r_IPAddressOrRanges(out, | ||
| 297 | indent + 2, | ||
| 298 | f->ipAddressChoice->u.addressesOrRanges, | ||
| 299 | afi)) | ||
| 300 | return 0; | ||
| 301 | break; | ||
| 302 | } | ||
| 303 | } | ||
| 304 | return 1; | ||
| 305 | } | ||
| 306 | |||
| 307 | /* | ||
| 308 | * Sort comparison function for a sequence of IPAddressOrRange | ||
| 309 | * elements. | ||
| 310 | */ | ||
| 311 | static int IPAddressOrRange_cmp(const IPAddressOrRange *a, | ||
| 312 | const IPAddressOrRange *b, | ||
| 313 | const int length) | ||
| 314 | { | ||
| 315 | unsigned char addr_a[ADDR_RAW_BUF_LEN], addr_b[ADDR_RAW_BUF_LEN]; | ||
| 316 | int prefixlen_a = 0; | ||
| 317 | int prefixlen_b = 0; | ||
| 318 | int r; | ||
| 319 | |||
| 320 | switch (a->type) { | ||
| 321 | case IPAddressOrRange_addressPrefix: | ||
| 322 | addr_expand(addr_a, a->u.addressPrefix, length, 0x00); | ||
| 323 | prefixlen_a = addr_prefixlen(a->u.addressPrefix); | ||
| 324 | break; | ||
| 325 | case IPAddressOrRange_addressRange: | ||
| 326 | addr_expand(addr_a, a->u.addressRange->min, length, 0x00); | ||
| 327 | prefixlen_a = length * 8; | ||
| 328 | break; | ||
| 329 | } | ||
| 330 | |||
| 331 | switch (b->type) { | ||
| 332 | case IPAddressOrRange_addressPrefix: | ||
| 333 | addr_expand(addr_b, b->u.addressPrefix, length, 0x00); | ||
| 334 | prefixlen_b = addr_prefixlen(b->u.addressPrefix); | ||
| 335 | break; | ||
| 336 | case IPAddressOrRange_addressRange: | ||
| 337 | addr_expand(addr_b, b->u.addressRange->min, length, 0x00); | ||
| 338 | prefixlen_b = length * 8; | ||
| 339 | break; | ||
| 340 | } | ||
| 341 | |||
| 342 | if ((r = memcmp(addr_a, addr_b, length)) != 0) | ||
| 343 | return r; | ||
| 344 | else | ||
| 345 | return prefixlen_a - prefixlen_b; | ||
| 346 | } | ||
| 347 | |||
| 348 | /* | ||
| 349 | * IPv4-specific closure over IPAddressOrRange_cmp, since sk_sort() | ||
| 350 | * comparision routines are only allowed two arguments. | ||
| 351 | */ | ||
| 352 | static int v4IPAddressOrRange_cmp(const IPAddressOrRange * const *a, | ||
| 353 | const IPAddressOrRange * const *b) | ||
| 354 | { | ||
| 355 | return IPAddressOrRange_cmp(*a, *b, 4); | ||
| 356 | } | ||
| 357 | |||
| 358 | /* | ||
| 359 | * IPv6-specific closure over IPAddressOrRange_cmp, since sk_sort() | ||
| 360 | * comparision routines are only allowed two arguments. | ||
| 361 | */ | ||
| 362 | static int v6IPAddressOrRange_cmp(const IPAddressOrRange * const *a, | ||
| 363 | const IPAddressOrRange * const *b) | ||
| 364 | { | ||
| 365 | return IPAddressOrRange_cmp(*a, *b, 16); | ||
| 366 | } | ||
| 367 | |||
| 368 | /* | ||
| 369 | * Calculate whether a range collapses to a prefix. | ||
| 370 | * See last paragraph of RFC 3779 2.2.3.7. | ||
| 371 | */ | ||
| 372 | static int range_should_be_prefix(const unsigned char *min, | ||
| 373 | const unsigned char *max, | ||
| 374 | const int length) | ||
| 375 | { | ||
| 376 | unsigned char mask; | ||
| 377 | int i, j; | ||
| 378 | |||
| 379 | for (i = 0; i < length && min[i] == max[i]; i++) | ||
| 380 | ; | ||
| 381 | for (j = length - 1; j >= 0 && min[j] == 0x00 && max[j] == 0xFF; j--) | ||
| 382 | ; | ||
| 383 | if (i < j) | ||
| 384 | return -1; | ||
| 385 | if (i > j) | ||
| 386 | return i * 8; | ||
| 387 | mask = min[i] ^ max[i]; | ||
| 388 | switch (mask) { | ||
| 389 | case 0x01: j = 7; break; | ||
| 390 | case 0x03: j = 6; break; | ||
| 391 | case 0x07: j = 5; break; | ||
| 392 | case 0x0F: j = 4; break; | ||
| 393 | case 0x1F: j = 3; break; | ||
| 394 | case 0x3F: j = 2; break; | ||
| 395 | case 0x7F: j = 1; break; | ||
| 396 | default: return -1; | ||
| 397 | } | ||
| 398 | if ((min[i] & mask) != 0 || (max[i] & mask) != mask) | ||
| 399 | return -1; | ||
| 400 | else | ||
| 401 | return i * 8 + j; | ||
| 402 | } | ||
| 403 | |||
| 404 | /* | ||
| 405 | * Construct a prefix. | ||
| 406 | */ | ||
| 407 | static int make_addressPrefix(IPAddressOrRange **result, | ||
| 408 | unsigned char *addr, | ||
| 409 | const int prefixlen) | ||
| 410 | { | ||
| 411 | int bytelen = (prefixlen + 7) / 8, bitlen = prefixlen % 8; | ||
| 412 | IPAddressOrRange *aor = IPAddressOrRange_new(); | ||
| 413 | |||
| 414 | if (aor == NULL) | ||
| 415 | return 0; | ||
| 416 | aor->type = IPAddressOrRange_addressPrefix; | ||
| 417 | if (aor->u.addressPrefix == NULL && | ||
| 418 | (aor->u.addressPrefix = ASN1_BIT_STRING_new()) == NULL) | ||
| 419 | goto err; | ||
| 420 | if (!ASN1_BIT_STRING_set(aor->u.addressPrefix, addr, bytelen)) | ||
| 421 | goto err; | ||
| 422 | aor->u.addressPrefix->flags &= ~7; | ||
| 423 | aor->u.addressPrefix->flags |= ASN1_STRING_FLAG_BITS_LEFT; | ||
| 424 | if (bitlen > 0) { | ||
| 425 | aor->u.addressPrefix->data[bytelen - 1] &= ~(0xFF >> bitlen); | ||
| 426 | aor->u.addressPrefix->flags |= 8 - bitlen; | ||
| 427 | } | ||
| 428 | |||
| 429 | *result = aor; | ||
| 430 | return 1; | ||
| 431 | |||
| 432 | err: | ||
| 433 | IPAddressOrRange_free(aor); | ||
| 434 | return 0; | ||
| 435 | } | ||
| 436 | |||
| 437 | /* | ||
| 438 | * Construct a range. If it can be expressed as a prefix, | ||
| 439 | * return a prefix instead. Doing this here simplifies | ||
| 440 | * the rest of the code considerably. | ||
| 441 | */ | ||
| 442 | static int make_addressRange(IPAddressOrRange **result, | ||
| 443 | unsigned char *min, | ||
| 444 | unsigned char *max, | ||
| 445 | const int length) | ||
| 446 | { | ||
| 447 | IPAddressOrRange *aor; | ||
| 448 | int i, prefixlen; | ||
| 449 | |||
| 450 | if ((prefixlen = range_should_be_prefix(min, max, length)) >= 0) | ||
| 451 | return make_addressPrefix(result, min, prefixlen); | ||
| 452 | |||
| 453 | if ((aor = IPAddressOrRange_new()) == NULL) | ||
| 454 | return 0; | ||
| 455 | aor->type = IPAddressOrRange_addressRange; | ||
| 456 | assert(aor->u.addressRange == NULL); | ||
| 457 | if ((aor->u.addressRange = IPAddressRange_new()) == NULL) | ||
| 458 | goto err; | ||
| 459 | if (aor->u.addressRange->min == NULL && | ||
| 460 | (aor->u.addressRange->min = ASN1_BIT_STRING_new()) == NULL) | ||
| 461 | goto err; | ||
| 462 | if (aor->u.addressRange->max == NULL && | ||
| 463 | (aor->u.addressRange->max = ASN1_BIT_STRING_new()) == NULL) | ||
| 464 | goto err; | ||
| 465 | |||
| 466 | for (i = length; i > 0 && min[i - 1] == 0x00; --i) | ||
| 467 | ; | ||
| 468 | if (!ASN1_BIT_STRING_set(aor->u.addressRange->min, min, i)) | ||
| 469 | goto err; | ||
| 470 | aor->u.addressRange->min->flags &= ~7; | ||
| 471 | aor->u.addressRange->min->flags |= ASN1_STRING_FLAG_BITS_LEFT; | ||
| 472 | if (i > 0) { | ||
| 473 | unsigned char b = min[i - 1]; | ||
| 474 | int j = 1; | ||
| 475 | while ((b & (0xFFU >> j)) != 0) | ||
| 476 | ++j; | ||
| 477 | aor->u.addressRange->min->flags |= 8 - j; | ||
| 478 | } | ||
| 479 | |||
| 480 | for (i = length; i > 0 && max[i - 1] == 0xFF; --i) | ||
| 481 | ; | ||
| 482 | if (!ASN1_BIT_STRING_set(aor->u.addressRange->max, max, i)) | ||
| 483 | goto err; | ||
| 484 | aor->u.addressRange->max->flags &= ~7; | ||
| 485 | aor->u.addressRange->max->flags |= ASN1_STRING_FLAG_BITS_LEFT; | ||
| 486 | if (i > 0) { | ||
| 487 | unsigned char b = max[i - 1]; | ||
| 488 | int j = 1; | ||
| 489 | while ((b & (0xFFU >> j)) != (0xFFU >> j)) | ||
| 490 | ++j; | ||
| 491 | aor->u.addressRange->max->flags |= 8 - j; | ||
| 492 | } | ||
| 493 | |||
| 494 | *result = aor; | ||
| 495 | return 1; | ||
| 496 | |||
| 497 | err: | ||
| 498 | IPAddressOrRange_free(aor); | ||
| 499 | return 0; | ||
| 500 | } | ||
| 501 | |||
| 502 | /* | ||
| 503 | * Construct a new address family or find an existing one. | ||
| 504 | */ | ||
| 505 | static IPAddressFamily *make_IPAddressFamily(IPAddrBlocks *addr, | ||
| 506 | const unsigned afi, | ||
| 507 | const unsigned *safi) | ||
| 508 | { | ||
| 509 | IPAddressFamily *f; | ||
| 510 | unsigned char key[3]; | ||
| 511 | unsigned keylen; | ||
| 512 | int i; | ||
| 513 | |||
| 514 | key[0] = (afi >> 8) & 0xFF; | ||
| 515 | key[1] = afi & 0xFF; | ||
| 516 | if (safi != NULL) { | ||
| 517 | key[2] = *safi & 0xFF; | ||
| 518 | keylen = 3; | ||
| 519 | } else { | ||
| 520 | keylen = 2; | ||
| 521 | } | ||
| 522 | |||
| 523 | for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { | ||
| 524 | f = sk_IPAddressFamily_value(addr, i); | ||
| 525 | assert(f->addressFamily->data != NULL); | ||
| 526 | if (f->addressFamily->length == keylen && | ||
| 527 | !memcmp(f->addressFamily->data, key, keylen)) | ||
| 528 | return f; | ||
| 529 | } | ||
| 530 | |||
| 531 | if ((f = IPAddressFamily_new()) == NULL) | ||
| 532 | goto err; | ||
| 533 | if (f->ipAddressChoice == NULL && | ||
| 534 | (f->ipAddressChoice = IPAddressChoice_new()) == NULL) | ||
| 535 | goto err; | ||
| 536 | if (f->addressFamily == NULL && | ||
| 537 | (f->addressFamily = ASN1_OCTET_STRING_new()) == NULL) | ||
| 538 | goto err; | ||
| 539 | if (!ASN1_OCTET_STRING_set(f->addressFamily, key, keylen)) | ||
| 540 | goto err; | ||
| 541 | if (!sk_IPAddressFamily_push(addr, f)) | ||
| 542 | goto err; | ||
| 543 | |||
| 544 | return f; | ||
| 545 | |||
| 546 | err: | ||
| 547 | IPAddressFamily_free(f); | ||
| 548 | return NULL; | ||
| 549 | } | ||
| 550 | |||
| 551 | /* | ||
| 552 | * Add an inheritance element. | ||
| 553 | */ | ||
| 554 | int v3_addr_add_inherit(IPAddrBlocks *addr, | ||
| 555 | const unsigned afi, | ||
| 556 | const unsigned *safi) | ||
| 557 | { | ||
| 558 | IPAddressFamily *f = make_IPAddressFamily(addr, afi, safi); | ||
| 559 | if (f == NULL || | ||
| 560 | f->ipAddressChoice == NULL || | ||
| 561 | (f->ipAddressChoice->type == IPAddressChoice_addressesOrRanges && | ||
| 562 | f->ipAddressChoice->u.addressesOrRanges != NULL)) | ||
| 563 | return 0; | ||
| 564 | if (f->ipAddressChoice->type == IPAddressChoice_inherit && | ||
| 565 | f->ipAddressChoice->u.inherit != NULL) | ||
| 566 | return 1; | ||
| 567 | if (f->ipAddressChoice->u.inherit == NULL && | ||
| 568 | (f->ipAddressChoice->u.inherit = ASN1_NULL_new()) == NULL) | ||
| 569 | return 0; | ||
| 570 | f->ipAddressChoice->type = IPAddressChoice_inherit; | ||
| 571 | return 1; | ||
| 572 | } | ||
| 573 | |||
| 574 | /* | ||
| 575 | * Construct an IPAddressOrRange sequence, or return an existing one. | ||
| 576 | */ | ||
| 577 | static IPAddressOrRanges *make_prefix_or_range(IPAddrBlocks *addr, | ||
| 578 | const unsigned afi, | ||
| 579 | const unsigned *safi) | ||
| 580 | { | ||
| 581 | IPAddressFamily *f = make_IPAddressFamily(addr, afi, safi); | ||
| 582 | IPAddressOrRanges *aors = NULL; | ||
| 583 | |||
| 584 | if (f == NULL || | ||
| 585 | f->ipAddressChoice == NULL || | ||
| 586 | (f->ipAddressChoice->type == IPAddressChoice_inherit && | ||
| 587 | f->ipAddressChoice->u.inherit != NULL)) | ||
| 588 | return NULL; | ||
| 589 | if (f->ipAddressChoice->type == IPAddressChoice_addressesOrRanges) | ||
| 590 | aors = f->ipAddressChoice->u.addressesOrRanges; | ||
| 591 | if (aors != NULL) | ||
| 592 | return aors; | ||
| 593 | if ((aors = sk_IPAddressOrRange_new_null()) == NULL) | ||
| 594 | return NULL; | ||
| 595 | switch (afi) { | ||
| 596 | case IANA_AFI_IPV4: | ||
| 597 | sk_IPAddressOrRange_set_cmp_func(aors, v4IPAddressOrRange_cmp); | ||
| 598 | break; | ||
| 599 | case IANA_AFI_IPV6: | ||
| 600 | sk_IPAddressOrRange_set_cmp_func(aors, v6IPAddressOrRange_cmp); | ||
| 601 | break; | ||
| 602 | } | ||
| 603 | f->ipAddressChoice->type = IPAddressChoice_addressesOrRanges; | ||
| 604 | f->ipAddressChoice->u.addressesOrRanges = aors; | ||
| 605 | return aors; | ||
| 606 | } | ||
| 607 | |||
| 608 | /* | ||
| 609 | * Add a prefix. | ||
| 610 | */ | ||
| 611 | int v3_addr_add_prefix(IPAddrBlocks *addr, | ||
| 612 | const unsigned afi, | ||
| 613 | const unsigned *safi, | ||
| 614 | unsigned char *a, | ||
| 615 | const int prefixlen) | ||
| 616 | { | ||
| 617 | IPAddressOrRanges *aors = make_prefix_or_range(addr, afi, safi); | ||
| 618 | IPAddressOrRange *aor; | ||
| 619 | if (aors == NULL || !make_addressPrefix(&aor, a, prefixlen)) | ||
| 620 | return 0; | ||
| 621 | if (sk_IPAddressOrRange_push(aors, aor)) | ||
| 622 | return 1; | ||
| 623 | IPAddressOrRange_free(aor); | ||
| 624 | return 0; | ||
| 625 | } | ||
| 626 | |||
| 627 | /* | ||
| 628 | * Add a range. | ||
| 629 | */ | ||
| 630 | int v3_addr_add_range(IPAddrBlocks *addr, | ||
| 631 | const unsigned afi, | ||
| 632 | const unsigned *safi, | ||
| 633 | unsigned char *min, | ||
| 634 | unsigned char *max) | ||
| 635 | { | ||
| 636 | IPAddressOrRanges *aors = make_prefix_or_range(addr, afi, safi); | ||
| 637 | IPAddressOrRange *aor; | ||
| 638 | int length = length_from_afi(afi); | ||
| 639 | if (aors == NULL) | ||
| 640 | return 0; | ||
| 641 | if (!make_addressRange(&aor, min, max, length)) | ||
| 642 | return 0; | ||
| 643 | if (sk_IPAddressOrRange_push(aors, aor)) | ||
| 644 | return 1; | ||
| 645 | IPAddressOrRange_free(aor); | ||
| 646 | return 0; | ||
| 647 | } | ||
| 648 | |||
| 649 | /* | ||
| 650 | * Extract min and max values from an IPAddressOrRange. | ||
| 651 | */ | ||
| 652 | static void extract_min_max(IPAddressOrRange *aor, | ||
| 653 | unsigned char *min, | ||
| 654 | unsigned char *max, | ||
| 655 | int length) | ||
| 656 | { | ||
| 657 | assert(aor != NULL && min != NULL && max != NULL); | ||
| 658 | switch (aor->type) { | ||
| 659 | case IPAddressOrRange_addressPrefix: | ||
| 660 | addr_expand(min, aor->u.addressPrefix, length, 0x00); | ||
| 661 | addr_expand(max, aor->u.addressPrefix, length, 0xFF); | ||
| 662 | return; | ||
| 663 | case IPAddressOrRange_addressRange: | ||
| 664 | addr_expand(min, aor->u.addressRange->min, length, 0x00); | ||
| 665 | addr_expand(max, aor->u.addressRange->max, length, 0xFF); | ||
| 666 | return; | ||
| 667 | } | ||
| 668 | } | ||
| 669 | |||
| 670 | /* | ||
| 671 | * Public wrapper for extract_min_max(). | ||
| 672 | */ | ||
| 673 | int v3_addr_get_range(IPAddressOrRange *aor, | ||
| 674 | const unsigned afi, | ||
| 675 | unsigned char *min, | ||
| 676 | unsigned char *max, | ||
| 677 | const int length) | ||
| 678 | { | ||
| 679 | int afi_length = length_from_afi(afi); | ||
| 680 | if (aor == NULL || min == NULL || max == NULL || | ||
| 681 | afi_length == 0 || length < afi_length || | ||
| 682 | (aor->type != IPAddressOrRange_addressPrefix && | ||
| 683 | aor->type != IPAddressOrRange_addressRange)) | ||
| 684 | return 0; | ||
| 685 | extract_min_max(aor, min, max, afi_length); | ||
| 686 | return afi_length; | ||
| 687 | } | ||
| 688 | |||
| 689 | /* | ||
| 690 | * Sort comparision function for a sequence of IPAddressFamily. | ||
| 691 | * | ||
| 692 | * The last paragraph of RFC 3779 2.2.3.3 is slightly ambiguous about | ||
| 693 | * the ordering: I can read it as meaning that IPv6 without a SAFI | ||
| 694 | * comes before IPv4 with a SAFI, which seems pretty weird. The | ||
| 695 | * examples in appendix B suggest that the author intended the | ||
| 696 | * null-SAFI rule to apply only within a single AFI, which is what I | ||
| 697 | * would have expected and is what the following code implements. | ||
| 698 | */ | ||
| 699 | static int IPAddressFamily_cmp(const IPAddressFamily * const *a_, | ||
| 700 | const IPAddressFamily * const *b_) | ||
| 701 | { | ||
| 702 | const ASN1_OCTET_STRING *a = (*a_)->addressFamily; | ||
| 703 | const ASN1_OCTET_STRING *b = (*b_)->addressFamily; | ||
| 704 | int len = ((a->length <= b->length) ? a->length : b->length); | ||
| 705 | int cmp = memcmp(a->data, b->data, len); | ||
| 706 | return cmp ? cmp : a->length - b->length; | ||
| 707 | } | ||
| 708 | |||
| 709 | /* | ||
| 710 | * Check whether an IPAddrBLocks is in canonical form. | ||
| 711 | */ | ||
| 712 | int v3_addr_is_canonical(IPAddrBlocks *addr) | ||
| 713 | { | ||
| 714 | unsigned char a_min[ADDR_RAW_BUF_LEN], a_max[ADDR_RAW_BUF_LEN]; | ||
| 715 | unsigned char b_min[ADDR_RAW_BUF_LEN], b_max[ADDR_RAW_BUF_LEN]; | ||
| 716 | IPAddressOrRanges *aors; | ||
| 717 | int i, j, k; | ||
| 718 | |||
| 719 | /* | ||
| 720 | * Empty extension is cannonical. | ||
| 721 | */ | ||
| 722 | if (addr == NULL) | ||
| 723 | return 1; | ||
| 724 | |||
| 725 | /* | ||
| 726 | * Check whether the top-level list is in order. | ||
| 727 | */ | ||
| 728 | for (i = 0; i < sk_IPAddressFamily_num(addr) - 1; i++) { | ||
| 729 | const IPAddressFamily *a = sk_IPAddressFamily_value(addr, i); | ||
| 730 | const IPAddressFamily *b = sk_IPAddressFamily_value(addr, i + 1); | ||
| 731 | if (IPAddressFamily_cmp(&a, &b) >= 0) | ||
| 732 | return 0; | ||
| 733 | } | ||
| 734 | |||
| 735 | /* | ||
| 736 | * Top level's ok, now check each address family. | ||
| 737 | */ | ||
| 738 | for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { | ||
| 739 | IPAddressFamily *f = sk_IPAddressFamily_value(addr, i); | ||
| 740 | int length = length_from_afi(v3_addr_get_afi(f)); | ||
| 741 | |||
| 742 | /* | ||
| 743 | * Inheritance is canonical. Anything other than inheritance or | ||
| 744 | * a SEQUENCE OF IPAddressOrRange is an ASN.1 error or something. | ||
| 745 | */ | ||
| 746 | if (f == NULL || f->ipAddressChoice == NULL) | ||
| 747 | return 0; | ||
| 748 | switch (f->ipAddressChoice->type) { | ||
| 749 | case IPAddressChoice_inherit: | ||
| 750 | continue; | ||
| 751 | case IPAddressChoice_addressesOrRanges: | ||
| 752 | break; | ||
| 753 | default: | ||
| 754 | return 0; | ||
| 755 | } | ||
| 756 | |||
| 757 | /* | ||
| 758 | * It's an IPAddressOrRanges sequence, check it. | ||
| 759 | */ | ||
| 760 | aors = f->ipAddressChoice->u.addressesOrRanges; | ||
| 761 | if (sk_IPAddressOrRange_num(aors) == 0) | ||
| 762 | return 0; | ||
| 763 | for (j = 0; j < sk_IPAddressOrRange_num(aors) - 1; j++) { | ||
| 764 | IPAddressOrRange *a = sk_IPAddressOrRange_value(aors, j); | ||
| 765 | IPAddressOrRange *b = sk_IPAddressOrRange_value(aors, j + 1); | ||
| 766 | |||
| 767 | extract_min_max(a, a_min, a_max, length); | ||
| 768 | extract_min_max(b, b_min, b_max, length); | ||
| 769 | |||
| 770 | /* | ||
| 771 | * Punt misordered list, overlapping start, or inverted range. | ||
| 772 | */ | ||
| 773 | if (memcmp(a_min, b_min, length) >= 0 || | ||
| 774 | memcmp(a_min, a_max, length) > 0 || | ||
| 775 | memcmp(b_min, b_max, length) > 0) | ||
| 776 | return 0; | ||
| 777 | |||
| 778 | /* | ||
| 779 | * Punt if adjacent or overlapping. Check for adjacency by | ||
| 780 | * subtracting one from b_min first. | ||
| 781 | */ | ||
| 782 | for (k = length - 1; k >= 0 && b_min[k]-- == 0x00; k--) | ||
| 783 | ; | ||
| 784 | if (memcmp(a_max, b_min, length) >= 0) | ||
| 785 | return 0; | ||
| 786 | |||
| 787 | /* | ||
| 788 | * Check for range that should be expressed as a prefix. | ||
| 789 | */ | ||
| 790 | if (a->type == IPAddressOrRange_addressRange && | ||
| 791 | range_should_be_prefix(a_min, a_max, length) >= 0) | ||
| 792 | return 0; | ||
| 793 | } | ||
| 794 | |||
| 795 | /* | ||
| 796 | * Check final range to see if it should be a prefix. | ||
| 797 | */ | ||
| 798 | j = sk_IPAddressOrRange_num(aors) - 1; | ||
| 799 | { | ||
| 800 | IPAddressOrRange *a = sk_IPAddressOrRange_value(aors, j); | ||
| 801 | if (a->type == IPAddressOrRange_addressRange) { | ||
| 802 | extract_min_max(a, a_min, a_max, length); | ||
| 803 | if (range_should_be_prefix(a_min, a_max, length) >= 0) | ||
| 804 | return 0; | ||
| 805 | } | ||
| 806 | } | ||
| 807 | } | ||
| 808 | |||
| 809 | /* | ||
| 810 | * If we made it through all that, we're happy. | ||
| 811 | */ | ||
| 812 | return 1; | ||
| 813 | } | ||
| 814 | |||
| 815 | /* | ||
| 816 | * Whack an IPAddressOrRanges into canonical form. | ||
| 817 | */ | ||
| 818 | static int IPAddressOrRanges_canonize(IPAddressOrRanges *aors, | ||
| 819 | const unsigned afi) | ||
| 820 | { | ||
| 821 | int i, j, length = length_from_afi(afi); | ||
| 822 | |||
| 823 | /* | ||
| 824 | * Sort the IPAddressOrRanges sequence. | ||
| 825 | */ | ||
| 826 | sk_IPAddressOrRange_sort(aors); | ||
| 827 | |||
| 828 | /* | ||
| 829 | * Clean up representation issues, punt on duplicates or overlaps. | ||
| 830 | */ | ||
| 831 | for (i = 0; i < sk_IPAddressOrRange_num(aors) - 1; i++) { | ||
| 832 | IPAddressOrRange *a = sk_IPAddressOrRange_value(aors, i); | ||
| 833 | IPAddressOrRange *b = sk_IPAddressOrRange_value(aors, i + 1); | ||
| 834 | unsigned char a_min[ADDR_RAW_BUF_LEN], a_max[ADDR_RAW_BUF_LEN]; | ||
| 835 | unsigned char b_min[ADDR_RAW_BUF_LEN], b_max[ADDR_RAW_BUF_LEN]; | ||
| 836 | |||
| 837 | extract_min_max(a, a_min, a_max, length); | ||
| 838 | extract_min_max(b, b_min, b_max, length); | ||
| 839 | |||
| 840 | /* | ||
| 841 | * Punt overlaps. | ||
| 842 | */ | ||
| 843 | if (memcmp(a_max, b_min, length) >= 0) | ||
| 844 | return 0; | ||
| 845 | |||
| 846 | /* | ||
| 847 | * Merge if a and b are adjacent. We check for | ||
| 848 | * adjacency by subtracting one from b_min first. | ||
| 849 | */ | ||
| 850 | for (j = length - 1; j >= 0 && b_min[j]-- == 0x00; j--) | ||
| 851 | ; | ||
| 852 | if (memcmp(a_max, b_min, length) == 0) { | ||
| 853 | IPAddressOrRange *merged; | ||
| 854 | if (!make_addressRange(&merged, a_min, b_max, length)) | ||
| 855 | return 0; | ||
| 856 | sk_IPAddressOrRange_set(aors, i, merged); | ||
| 857 | sk_IPAddressOrRange_delete(aors, i + 1); | ||
| 858 | IPAddressOrRange_free(a); | ||
| 859 | IPAddressOrRange_free(b); | ||
| 860 | --i; | ||
| 861 | continue; | ||
| 862 | } | ||
| 863 | } | ||
| 864 | |||
| 865 | return 1; | ||
| 866 | } | ||
| 867 | |||
| 868 | /* | ||
| 869 | * Whack an IPAddrBlocks extension into canonical form. | ||
| 870 | */ | ||
| 871 | int v3_addr_canonize(IPAddrBlocks *addr) | ||
| 872 | { | ||
| 873 | int i; | ||
| 874 | for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { | ||
| 875 | IPAddressFamily *f = sk_IPAddressFamily_value(addr, i); | ||
| 876 | if (f->ipAddressChoice->type == IPAddressChoice_addressesOrRanges && | ||
| 877 | !IPAddressOrRanges_canonize(f->ipAddressChoice->u.addressesOrRanges, | ||
| 878 | v3_addr_get_afi(f))) | ||
| 879 | return 0; | ||
| 880 | } | ||
| 881 | sk_IPAddressFamily_sort(addr); | ||
| 882 | assert(v3_addr_is_canonical(addr)); | ||
| 883 | return 1; | ||
| 884 | } | ||
| 885 | |||
| 886 | /* | ||
| 887 | * v2i handler for the IPAddrBlocks extension. | ||
| 888 | */ | ||
| 889 | static void *v2i_IPAddrBlocks(struct v3_ext_method *method, | ||
| 890 | struct v3_ext_ctx *ctx, | ||
| 891 | STACK_OF(CONF_VALUE) *values) | ||
| 892 | { | ||
| 893 | static const char v4addr_chars[] = "0123456789."; | ||
| 894 | static const char v6addr_chars[] = "0123456789.:abcdefABCDEF"; | ||
| 895 | IPAddrBlocks *addr = NULL; | ||
| 896 | char *s = NULL, *t; | ||
| 897 | int i; | ||
| 898 | |||
| 899 | if ((addr = sk_IPAddressFamily_new(IPAddressFamily_cmp)) == NULL) { | ||
| 900 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, ERR_R_MALLOC_FAILURE); | ||
| 901 | return NULL; | ||
| 902 | } | ||
| 903 | |||
| 904 | for (i = 0; i < sk_CONF_VALUE_num(values); i++) { | ||
| 905 | CONF_VALUE *val = sk_CONF_VALUE_value(values, i); | ||
| 906 | unsigned char min[ADDR_RAW_BUF_LEN], max[ADDR_RAW_BUF_LEN]; | ||
| 907 | unsigned afi, *safi = NULL, safi_; | ||
| 908 | const char *addr_chars; | ||
| 909 | int prefixlen, i1, i2, delim, length; | ||
| 910 | |||
| 911 | if ( !name_cmp(val->name, "IPv4")) { | ||
| 912 | afi = IANA_AFI_IPV4; | ||
| 913 | } else if (!name_cmp(val->name, "IPv6")) { | ||
| 914 | afi = IANA_AFI_IPV6; | ||
| 915 | } else if (!name_cmp(val->name, "IPv4-SAFI")) { | ||
| 916 | afi = IANA_AFI_IPV4; | ||
| 917 | safi = &safi_; | ||
| 918 | } else if (!name_cmp(val->name, "IPv6-SAFI")) { | ||
| 919 | afi = IANA_AFI_IPV6; | ||
| 920 | safi = &safi_; | ||
| 921 | } else { | ||
| 922 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_EXTENSION_NAME_ERROR); | ||
| 923 | X509V3_conf_err(val); | ||
| 924 | goto err; | ||
| 925 | } | ||
| 926 | |||
| 927 | switch (afi) { | ||
| 928 | case IANA_AFI_IPV4: | ||
| 929 | addr_chars = v4addr_chars; | ||
| 930 | break; | ||
| 931 | case IANA_AFI_IPV6: | ||
| 932 | addr_chars = v6addr_chars; | ||
| 933 | break; | ||
| 934 | } | ||
| 935 | |||
| 936 | length = length_from_afi(afi); | ||
| 937 | |||
| 938 | /* | ||
| 939 | * Handle SAFI, if any, and BUF_strdup() so we can null-terminate | ||
| 940 | * the other input values. | ||
| 941 | */ | ||
| 942 | if (safi != NULL) { | ||
| 943 | *safi = strtoul(val->value, &t, 0); | ||
| 944 | t += strspn(t, " \t"); | ||
| 945 | if (*safi > 0xFF || *t++ != ':') { | ||
| 946 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_INVALID_SAFI); | ||
| 947 | X509V3_conf_err(val); | ||
| 948 | goto err; | ||
| 949 | } | ||
| 950 | t += strspn(t, " \t"); | ||
| 951 | s = BUF_strdup(t); | ||
| 952 | } else { | ||
| 953 | s = BUF_strdup(val->value); | ||
| 954 | } | ||
| 955 | if (s == NULL) { | ||
| 956 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, ERR_R_MALLOC_FAILURE); | ||
| 957 | goto err; | ||
| 958 | } | ||
| 959 | |||
| 960 | /* | ||
| 961 | * Check for inheritance. Not worth additional complexity to | ||
| 962 | * optimize this (seldom-used) case. | ||
| 963 | */ | ||
| 964 | if (!strcmp(s, "inherit")) { | ||
| 965 | if (!v3_addr_add_inherit(addr, afi, safi)) { | ||
| 966 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_INVALID_INHERITANCE); | ||
| 967 | X509V3_conf_err(val); | ||
| 968 | goto err; | ||
| 969 | } | ||
| 970 | OPENSSL_free(s); | ||
| 971 | s = NULL; | ||
| 972 | continue; | ||
| 973 | } | ||
| 974 | |||
| 975 | i1 = strspn(s, addr_chars); | ||
| 976 | i2 = i1 + strspn(s + i1, " \t"); | ||
| 977 | delim = s[i2++]; | ||
| 978 | s[i1] = '\0'; | ||
| 979 | |||
| 980 | if (a2i_ipadd(min, s) != length) { | ||
| 981 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_INVALID_IPADDRESS); | ||
| 982 | X509V3_conf_err(val); | ||
| 983 | goto err; | ||
| 984 | } | ||
| 985 | |||
| 986 | switch (delim) { | ||
| 987 | case '/': | ||
| 988 | prefixlen = (int) strtoul(s + i2, &t, 10); | ||
| 989 | if (t == s + i2 || *t != '\0') { | ||
| 990 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_EXTENSION_VALUE_ERROR); | ||
| 991 | X509V3_conf_err(val); | ||
| 992 | goto err; | ||
| 993 | } | ||
| 994 | if (!v3_addr_add_prefix(addr, afi, safi, min, prefixlen)) { | ||
| 995 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, ERR_R_MALLOC_FAILURE); | ||
| 996 | goto err; | ||
| 997 | } | ||
| 998 | break; | ||
| 999 | case '-': | ||
| 1000 | i1 = i2 + strspn(s + i2, " \t"); | ||
| 1001 | i2 = i1 + strspn(s + i1, addr_chars); | ||
| 1002 | if (i1 == i2 || s[i2] != '\0') { | ||
| 1003 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_EXTENSION_VALUE_ERROR); | ||
| 1004 | X509V3_conf_err(val); | ||
| 1005 | goto err; | ||
| 1006 | } | ||
| 1007 | if (a2i_ipadd(max, s + i1) != length) { | ||
| 1008 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_INVALID_IPADDRESS); | ||
| 1009 | X509V3_conf_err(val); | ||
| 1010 | goto err; | ||
| 1011 | } | ||
| 1012 | if (!v3_addr_add_range(addr, afi, safi, min, max)) { | ||
| 1013 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, ERR_R_MALLOC_FAILURE); | ||
| 1014 | goto err; | ||
| 1015 | } | ||
| 1016 | break; | ||
| 1017 | case '\0': | ||
| 1018 | if (!v3_addr_add_prefix(addr, afi, safi, min, length * 8)) { | ||
| 1019 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, ERR_R_MALLOC_FAILURE); | ||
| 1020 | goto err; | ||
| 1021 | } | ||
| 1022 | break; | ||
| 1023 | default: | ||
| 1024 | X509V3err(X509V3_F_V2I_IPADDRBLOCKS, X509V3_R_EXTENSION_VALUE_ERROR); | ||
| 1025 | X509V3_conf_err(val); | ||
| 1026 | goto err; | ||
| 1027 | } | ||
| 1028 | |||
| 1029 | OPENSSL_free(s); | ||
| 1030 | s = NULL; | ||
| 1031 | } | ||
| 1032 | |||
| 1033 | /* | ||
| 1034 | * Canonize the result, then we're done. | ||
| 1035 | */ | ||
| 1036 | if (!v3_addr_canonize(addr)) | ||
| 1037 | goto err; | ||
| 1038 | return addr; | ||
| 1039 | |||
| 1040 | err: | ||
| 1041 | OPENSSL_free(s); | ||
| 1042 | sk_IPAddressFamily_pop_free(addr, IPAddressFamily_free); | ||
| 1043 | return NULL; | ||
| 1044 | } | ||
| 1045 | |||
| 1046 | /* | ||
| 1047 | * OpenSSL dispatch | ||
| 1048 | */ | ||
| 1049 | const X509V3_EXT_METHOD v3_addr = { | ||
| 1050 | NID_sbgp_ipAddrBlock, /* nid */ | ||
| 1051 | 0, /* flags */ | ||
| 1052 | ASN1_ITEM_ref(IPAddrBlocks), /* template */ | ||
| 1053 | 0, 0, 0, 0, /* old functions, ignored */ | ||
| 1054 | 0, /* i2s */ | ||
| 1055 | 0, /* s2i */ | ||
| 1056 | 0, /* i2v */ | ||
| 1057 | v2i_IPAddrBlocks, /* v2i */ | ||
| 1058 | i2r_IPAddrBlocks, /* i2r */ | ||
| 1059 | 0, /* r2i */ | ||
| 1060 | NULL /* extension-specific data */ | ||
| 1061 | }; | ||
| 1062 | |||
| 1063 | /* | ||
| 1064 | * Figure out whether extension sues inheritance. | ||
| 1065 | */ | ||
| 1066 | int v3_addr_inherits(IPAddrBlocks *addr) | ||
| 1067 | { | ||
| 1068 | int i; | ||
| 1069 | if (addr == NULL) | ||
| 1070 | return 0; | ||
| 1071 | for (i = 0; i < sk_IPAddressFamily_num(addr); i++) { | ||
| 1072 | IPAddressFamily *f = sk_IPAddressFamily_value(addr, i); | ||
| 1073 | if (f->ipAddressChoice->type == IPAddressChoice_inherit) | ||
| 1074 | return 1; | ||
| 1075 | } | ||
| 1076 | return 0; | ||
| 1077 | } | ||
| 1078 | |||
| 1079 | /* | ||
| 1080 | * Figure out whether parent contains child. | ||
| 1081 | */ | ||
| 1082 | static int addr_contains(IPAddressOrRanges *parent, | ||
| 1083 | IPAddressOrRanges *child, | ||
| 1084 | int length) | ||
| 1085 | { | ||
| 1086 | unsigned char p_min[ADDR_RAW_BUF_LEN], p_max[ADDR_RAW_BUF_LEN]; | ||
| 1087 | unsigned char c_min[ADDR_RAW_BUF_LEN], c_max[ADDR_RAW_BUF_LEN]; | ||
| 1088 | int p, c; | ||
| 1089 | |||
| 1090 | if (child == NULL || parent == child) | ||
| 1091 | return 1; | ||
| 1092 | if (parent == NULL) | ||
| 1093 | return 0; | ||
| 1094 | |||
| 1095 | p = 0; | ||
| 1096 | for (c = 0; c < sk_IPAddressOrRange_num(child); c++) { | ||
| 1097 | extract_min_max(sk_IPAddressOrRange_value(child, c), | ||
| 1098 | c_min, c_max, length); | ||
| 1099 | for (;; p++) { | ||
| 1100 | if (p >= sk_IPAddressOrRange_num(parent)) | ||
| 1101 | return 0; | ||
| 1102 | extract_min_max(sk_IPAddressOrRange_value(parent, p), | ||
| 1103 | p_min, p_max, length); | ||
| 1104 | if (memcmp(p_max, c_max, length) < 0) | ||
| 1105 | continue; | ||
| 1106 | if (memcmp(p_min, c_min, length) > 0) | ||
| 1107 | return 0; | ||
| 1108 | break; | ||
| 1109 | } | ||
| 1110 | } | ||
| 1111 | |||
| 1112 | return 1; | ||
| 1113 | } | ||
| 1114 | |||
| 1115 | /* | ||
| 1116 | * Test whether a is a subset of b. | ||
| 1117 | */ | ||
| 1118 | int v3_addr_subset(IPAddrBlocks *a, IPAddrBlocks *b) | ||
| 1119 | { | ||
| 1120 | int i; | ||
| 1121 | if (a == NULL || a == b) | ||
| 1122 | return 1; | ||
| 1123 | if (b == NULL || v3_addr_inherits(a) || v3_addr_inherits(b)) | ||
| 1124 | return 0; | ||
| 1125 | sk_IPAddressFamily_set_cmp_func(b, IPAddressFamily_cmp); | ||
| 1126 | for (i = 0; i < sk_IPAddressFamily_num(a); i++) { | ||
| 1127 | IPAddressFamily *fa = sk_IPAddressFamily_value(a, i); | ||
| 1128 | int j = sk_IPAddressFamily_find(b, fa); | ||
| 1129 | IPAddressFamily *fb = sk_IPAddressFamily_value(b, j); | ||
| 1130 | if (!addr_contains(fb->ipAddressChoice->u.addressesOrRanges, | ||
| 1131 | fa->ipAddressChoice->u.addressesOrRanges, | ||
| 1132 | length_from_afi(v3_addr_get_afi(fb)))) | ||
| 1133 | return 0; | ||
| 1134 | } | ||
| 1135 | return 1; | ||
| 1136 | } | ||
| 1137 | |||
| 1138 | /* | ||
| 1139 | * Validation error handling via callback. | ||
| 1140 | */ | ||
| 1141 | #define validation_err(_err_) \ | ||
| 1142 | do { \ | ||
| 1143 | if (ctx != NULL) { \ | ||
| 1144 | ctx->error = _err_; \ | ||
| 1145 | ctx->error_depth = i; \ | ||
| 1146 | ctx->current_cert = x; \ | ||
| 1147 | ret = ctx->verify_cb(0, ctx); \ | ||
| 1148 | } else { \ | ||
| 1149 | ret = 0; \ | ||
| 1150 | } \ | ||
| 1151 | if (!ret) \ | ||
| 1152 | goto done; \ | ||
| 1153 | } while (0) | ||
| 1154 | |||
| 1155 | /* | ||
| 1156 | * Core code for RFC 3779 2.3 path validation. | ||
| 1157 | */ | ||
| 1158 | static int v3_addr_validate_path_internal(X509_STORE_CTX *ctx, | ||
| 1159 | STACK_OF(X509) *chain, | ||
| 1160 | IPAddrBlocks *ext) | ||
| 1161 | { | ||
| 1162 | IPAddrBlocks *child = NULL; | ||
| 1163 | int i, j, ret = 1; | ||
| 1164 | X509 *x = NULL; | ||
| 1165 | |||
| 1166 | assert(chain != NULL && sk_X509_num(chain) > 0); | ||
| 1167 | assert(ctx != NULL || ext != NULL); | ||
| 1168 | assert(ctx == NULL || ctx->verify_cb != NULL); | ||
| 1169 | |||
| 1170 | /* | ||
| 1171 | * Figure out where to start. If we don't have an extension to | ||
| 1172 | * check, we're done. Otherwise, check canonical form and | ||
| 1173 | * set up for walking up the chain. | ||
| 1174 | */ | ||
| 1175 | if (ext != NULL) { | ||
| 1176 | i = -1; | ||
| 1177 | } else { | ||
| 1178 | i = 0; | ||
| 1179 | x = sk_X509_value(chain, i); | ||
| 1180 | assert(x != NULL); | ||
| 1181 | if ((ext = x->rfc3779_addr) == NULL) | ||
| 1182 | goto done; | ||
| 1183 | } | ||
| 1184 | if (!v3_addr_is_canonical(ext)) | ||
| 1185 | validation_err(X509_V_ERR_INVALID_EXTENSION); | ||
| 1186 | sk_IPAddressFamily_set_cmp_func(ext, IPAddressFamily_cmp); | ||
| 1187 | if ((child = sk_IPAddressFamily_dup(ext)) == NULL) { | ||
| 1188 | X509V3err(X509V3_F_V3_ADDR_VALIDATE_PATH_INTERNAL, ERR_R_MALLOC_FAILURE); | ||
| 1189 | ret = 0; | ||
| 1190 | goto done; | ||
| 1191 | } | ||
| 1192 | |||
| 1193 | /* | ||
| 1194 | * Now walk up the chain. No cert may list resources that its | ||
| 1195 | * parent doesn't list. | ||
| 1196 | */ | ||
| 1197 | for (i++; i < sk_X509_num(chain); i++) { | ||
| 1198 | x = sk_X509_value(chain, i); | ||
| 1199 | assert(x != NULL); | ||
| 1200 | if (!v3_addr_is_canonical(x->rfc3779_addr)) | ||
| 1201 | validation_err(X509_V_ERR_INVALID_EXTENSION); | ||
| 1202 | if (x->rfc3779_addr == NULL) { | ||
| 1203 | for (j = 0; j < sk_IPAddressFamily_num(child); j++) { | ||
| 1204 | IPAddressFamily *fc = sk_IPAddressFamily_value(child, j); | ||
| 1205 | if (fc->ipAddressChoice->type != IPAddressChoice_inherit) { | ||
| 1206 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 1207 | break; | ||
| 1208 | } | ||
| 1209 | } | ||
| 1210 | continue; | ||
| 1211 | } | ||
| 1212 | sk_IPAddressFamily_set_cmp_func(x->rfc3779_addr, IPAddressFamily_cmp); | ||
| 1213 | for (j = 0; j < sk_IPAddressFamily_num(child); j++) { | ||
| 1214 | IPAddressFamily *fc = sk_IPAddressFamily_value(child, j); | ||
| 1215 | int k = sk_IPAddressFamily_find(x->rfc3779_addr, fc); | ||
| 1216 | IPAddressFamily *fp = sk_IPAddressFamily_value(x->rfc3779_addr, k); | ||
| 1217 | if (fp == NULL) { | ||
| 1218 | if (fc->ipAddressChoice->type == IPAddressChoice_addressesOrRanges) { | ||
| 1219 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 1220 | break; | ||
| 1221 | } | ||
| 1222 | continue; | ||
| 1223 | } | ||
| 1224 | if (fp->ipAddressChoice->type == IPAddressChoice_addressesOrRanges) { | ||
| 1225 | if (fc->ipAddressChoice->type == IPAddressChoice_inherit || | ||
| 1226 | addr_contains(fp->ipAddressChoice->u.addressesOrRanges, | ||
| 1227 | fc->ipAddressChoice->u.addressesOrRanges, | ||
| 1228 | length_from_afi(v3_addr_get_afi(fc)))) | ||
| 1229 | sk_IPAddressFamily_set(child, j, fp); | ||
| 1230 | else | ||
| 1231 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 1232 | } | ||
| 1233 | } | ||
| 1234 | } | ||
| 1235 | |||
| 1236 | /* | ||
| 1237 | * Trust anchor can't inherit. | ||
| 1238 | */ | ||
| 1239 | if (x->rfc3779_addr != NULL) { | ||
| 1240 | for (j = 0; j < sk_IPAddressFamily_num(x->rfc3779_addr); j++) { | ||
| 1241 | IPAddressFamily *fp = sk_IPAddressFamily_value(x->rfc3779_addr, j); | ||
| 1242 | if (fp->ipAddressChoice->type == IPAddressChoice_inherit && | ||
| 1243 | sk_IPAddressFamily_find(child, fp) >= 0) | ||
| 1244 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 1245 | } | ||
| 1246 | } | ||
| 1247 | |||
| 1248 | done: | ||
| 1249 | sk_IPAddressFamily_free(child); | ||
| 1250 | return ret; | ||
| 1251 | } | ||
| 1252 | |||
| 1253 | #undef validation_err | ||
| 1254 | |||
| 1255 | /* | ||
| 1256 | * RFC 3779 2.3 path validation -- called from X509_verify_cert(). | ||
| 1257 | */ | ||
| 1258 | int v3_addr_validate_path(X509_STORE_CTX *ctx) | ||
| 1259 | { | ||
| 1260 | return v3_addr_validate_path_internal(ctx, ctx->chain, NULL); | ||
| 1261 | } | ||
| 1262 | |||
| 1263 | /* | ||
| 1264 | * RFC 3779 2.3 path validation of an extension. | ||
| 1265 | * Test whether chain covers extension. | ||
| 1266 | */ | ||
| 1267 | int v3_addr_validate_resource_set(STACK_OF(X509) *chain, | ||
| 1268 | IPAddrBlocks *ext, | ||
| 1269 | int allow_inheritance) | ||
| 1270 | { | ||
| 1271 | if (ext == NULL) | ||
| 1272 | return 1; | ||
| 1273 | if (chain == NULL || sk_X509_num(chain) == 0) | ||
| 1274 | return 0; | ||
| 1275 | if (!allow_inheritance && v3_addr_inherits(ext)) | ||
| 1276 | return 0; | ||
| 1277 | return v3_addr_validate_path_internal(NULL, chain, ext); | ||
| 1278 | } | ||
| 1279 | |||
| 1280 | #endif /* OPENSSL_NO_RFC3779 */ | ||
diff --git a/src/lib/libssl/src/crypto/x509v3/v3_asid.c b/src/lib/libssl/src/crypto/x509v3/v3_asid.c new file mode 100644 index 0000000000..271930f967 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/v3_asid.c | |||
| @@ -0,0 +1,842 @@ | |||
| 1 | /* | ||
| 2 | * Contributed to the OpenSSL Project by the American Registry for | ||
| 3 | * Internet Numbers ("ARIN"). | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | */ | ||
| 57 | |||
| 58 | /* | ||
| 59 | * Implementation of RFC 3779 section 3.2. | ||
| 60 | */ | ||
| 61 | |||
| 62 | #include <stdio.h> | ||
| 63 | #include <string.h> | ||
| 64 | #include <assert.h> | ||
| 65 | #include "cryptlib.h" | ||
| 66 | #include <openssl/conf.h> | ||
| 67 | #include <openssl/asn1.h> | ||
| 68 | #include <openssl/asn1t.h> | ||
| 69 | #include <openssl/x509v3.h> | ||
| 70 | #include <openssl/x509.h> | ||
| 71 | #include <openssl/bn.h> | ||
| 72 | |||
| 73 | #ifndef OPENSSL_NO_RFC3779 | ||
| 74 | |||
| 75 | /* | ||
| 76 | * OpenSSL ASN.1 template translation of RFC 3779 3.2.3. | ||
| 77 | */ | ||
| 78 | |||
| 79 | ASN1_SEQUENCE(ASRange) = { | ||
| 80 | ASN1_SIMPLE(ASRange, min, ASN1_INTEGER), | ||
| 81 | ASN1_SIMPLE(ASRange, max, ASN1_INTEGER) | ||
| 82 | } ASN1_SEQUENCE_END(ASRange) | ||
| 83 | |||
| 84 | ASN1_CHOICE(ASIdOrRange) = { | ||
| 85 | ASN1_SIMPLE(ASIdOrRange, u.id, ASN1_INTEGER), | ||
| 86 | ASN1_SIMPLE(ASIdOrRange, u.range, ASRange) | ||
| 87 | } ASN1_CHOICE_END(ASIdOrRange) | ||
| 88 | |||
| 89 | ASN1_CHOICE(ASIdentifierChoice) = { | ||
| 90 | ASN1_SIMPLE(ASIdentifierChoice, u.inherit, ASN1_NULL), | ||
| 91 | ASN1_SEQUENCE_OF(ASIdentifierChoice, u.asIdsOrRanges, ASIdOrRange) | ||
| 92 | } ASN1_CHOICE_END(ASIdentifierChoice) | ||
| 93 | |||
| 94 | ASN1_SEQUENCE(ASIdentifiers) = { | ||
| 95 | ASN1_EXP_OPT(ASIdentifiers, asnum, ASIdentifierChoice, 0), | ||
| 96 | ASN1_EXP_OPT(ASIdentifiers, rdi, ASIdentifierChoice, 1) | ||
| 97 | } ASN1_SEQUENCE_END(ASIdentifiers) | ||
| 98 | |||
| 99 | IMPLEMENT_ASN1_FUNCTIONS(ASRange) | ||
| 100 | IMPLEMENT_ASN1_FUNCTIONS(ASIdOrRange) | ||
| 101 | IMPLEMENT_ASN1_FUNCTIONS(ASIdentifierChoice) | ||
| 102 | IMPLEMENT_ASN1_FUNCTIONS(ASIdentifiers) | ||
| 103 | |||
| 104 | /* | ||
| 105 | * i2r method for an ASIdentifierChoice. | ||
| 106 | */ | ||
| 107 | static int i2r_ASIdentifierChoice(BIO *out, | ||
| 108 | ASIdentifierChoice *choice, | ||
| 109 | int indent, | ||
| 110 | const char *msg) | ||
| 111 | { | ||
| 112 | int i; | ||
| 113 | char *s; | ||
| 114 | if (choice == NULL) | ||
| 115 | return 1; | ||
| 116 | BIO_printf(out, "%*s%s:\n", indent, "", msg); | ||
| 117 | switch (choice->type) { | ||
| 118 | case ASIdentifierChoice_inherit: | ||
| 119 | BIO_printf(out, "%*sinherit\n", indent + 2, ""); | ||
| 120 | break; | ||
| 121 | case ASIdentifierChoice_asIdsOrRanges: | ||
| 122 | for (i = 0; i < sk_ASIdOrRange_num(choice->u.asIdsOrRanges); i++) { | ||
| 123 | ASIdOrRange *aor = sk_ASIdOrRange_value(choice->u.asIdsOrRanges, i); | ||
| 124 | switch (aor->type) { | ||
| 125 | case ASIdOrRange_id: | ||
| 126 | if ((s = i2s_ASN1_INTEGER(NULL, aor->u.id)) == NULL) | ||
| 127 | return 0; | ||
| 128 | BIO_printf(out, "%*s%s\n", indent + 2, "", s); | ||
| 129 | OPENSSL_free(s); | ||
| 130 | break; | ||
| 131 | case ASIdOrRange_range: | ||
| 132 | if ((s = i2s_ASN1_INTEGER(NULL, aor->u.range->min)) == NULL) | ||
| 133 | return 0; | ||
| 134 | BIO_printf(out, "%*s%s-", indent + 2, "", s); | ||
| 135 | OPENSSL_free(s); | ||
| 136 | if ((s = i2s_ASN1_INTEGER(NULL, aor->u.range->max)) == NULL) | ||
| 137 | return 0; | ||
| 138 | BIO_printf(out, "%s\n", s); | ||
| 139 | OPENSSL_free(s); | ||
| 140 | break; | ||
| 141 | default: | ||
| 142 | return 0; | ||
| 143 | } | ||
| 144 | } | ||
| 145 | break; | ||
| 146 | default: | ||
| 147 | return 0; | ||
| 148 | } | ||
| 149 | return 1; | ||
| 150 | } | ||
| 151 | |||
| 152 | /* | ||
| 153 | * i2r method for an ASIdentifier extension. | ||
| 154 | */ | ||
| 155 | static int i2r_ASIdentifiers(X509V3_EXT_METHOD *method, | ||
| 156 | void *ext, | ||
| 157 | BIO *out, | ||
| 158 | int indent) | ||
| 159 | { | ||
| 160 | ASIdentifiers *asid = ext; | ||
| 161 | return (i2r_ASIdentifierChoice(out, asid->asnum, indent, | ||
| 162 | "Autonomous System Numbers") && | ||
| 163 | i2r_ASIdentifierChoice(out, asid->rdi, indent, | ||
| 164 | "Routing Domain Identifiers")); | ||
| 165 | } | ||
| 166 | |||
| 167 | /* | ||
| 168 | * Sort comparision function for a sequence of ASIdOrRange elements. | ||
| 169 | */ | ||
| 170 | static int ASIdOrRange_cmp(const ASIdOrRange * const *a_, | ||
| 171 | const ASIdOrRange * const *b_) | ||
| 172 | { | ||
| 173 | const ASIdOrRange *a = *a_, *b = *b_; | ||
| 174 | |||
| 175 | assert((a->type == ASIdOrRange_id && a->u.id != NULL) || | ||
| 176 | (a->type == ASIdOrRange_range && a->u.range != NULL && | ||
| 177 | a->u.range->min != NULL && a->u.range->max != NULL)); | ||
| 178 | |||
| 179 | assert((b->type == ASIdOrRange_id && b->u.id != NULL) || | ||
| 180 | (b->type == ASIdOrRange_range && b->u.range != NULL && | ||
| 181 | b->u.range->min != NULL && b->u.range->max != NULL)); | ||
| 182 | |||
| 183 | if (a->type == ASIdOrRange_id && b->type == ASIdOrRange_id) | ||
| 184 | return ASN1_INTEGER_cmp(a->u.id, b->u.id); | ||
| 185 | |||
| 186 | if (a->type == ASIdOrRange_range && b->type == ASIdOrRange_range) { | ||
| 187 | int r = ASN1_INTEGER_cmp(a->u.range->min, b->u.range->min); | ||
| 188 | return r != 0 ? r : ASN1_INTEGER_cmp(a->u.range->max, b->u.range->max); | ||
| 189 | } | ||
| 190 | |||
| 191 | if (a->type == ASIdOrRange_id) | ||
| 192 | return ASN1_INTEGER_cmp(a->u.id, b->u.range->min); | ||
| 193 | else | ||
| 194 | return ASN1_INTEGER_cmp(a->u.range->min, b->u.id); | ||
| 195 | } | ||
| 196 | |||
| 197 | /* | ||
| 198 | * Add an inherit element. | ||
| 199 | */ | ||
| 200 | int v3_asid_add_inherit(ASIdentifiers *asid, int which) | ||
| 201 | { | ||
| 202 | ASIdentifierChoice **choice; | ||
| 203 | if (asid == NULL) | ||
| 204 | return 0; | ||
| 205 | switch (which) { | ||
| 206 | case V3_ASID_ASNUM: | ||
| 207 | choice = &asid->asnum; | ||
| 208 | break; | ||
| 209 | case V3_ASID_RDI: | ||
| 210 | choice = &asid->rdi; | ||
| 211 | break; | ||
| 212 | default: | ||
| 213 | return 0; | ||
| 214 | } | ||
| 215 | if (*choice == NULL) { | ||
| 216 | if ((*choice = ASIdentifierChoice_new()) == NULL) | ||
| 217 | return 0; | ||
| 218 | assert((*choice)->u.inherit == NULL); | ||
| 219 | if (((*choice)->u.inherit = ASN1_NULL_new()) == NULL) | ||
| 220 | return 0; | ||
| 221 | (*choice)->type = ASIdentifierChoice_inherit; | ||
| 222 | } | ||
| 223 | return (*choice)->type == ASIdentifierChoice_inherit; | ||
| 224 | } | ||
| 225 | |||
| 226 | /* | ||
| 227 | * Add an ID or range to an ASIdentifierChoice. | ||
| 228 | */ | ||
| 229 | int v3_asid_add_id_or_range(ASIdentifiers *asid, | ||
| 230 | int which, | ||
| 231 | ASN1_INTEGER *min, | ||
| 232 | ASN1_INTEGER *max) | ||
| 233 | { | ||
| 234 | ASIdentifierChoice **choice; | ||
| 235 | ASIdOrRange *aor; | ||
| 236 | if (asid == NULL) | ||
| 237 | return 0; | ||
| 238 | switch (which) { | ||
| 239 | case V3_ASID_ASNUM: | ||
| 240 | choice = &asid->asnum; | ||
| 241 | break; | ||
| 242 | case V3_ASID_RDI: | ||
| 243 | choice = &asid->rdi; | ||
| 244 | break; | ||
| 245 | default: | ||
| 246 | return 0; | ||
| 247 | } | ||
| 248 | if (*choice != NULL && (*choice)->type == ASIdentifierChoice_inherit) | ||
| 249 | return 0; | ||
| 250 | if (*choice == NULL) { | ||
| 251 | if ((*choice = ASIdentifierChoice_new()) == NULL) | ||
| 252 | return 0; | ||
| 253 | assert((*choice)->u.asIdsOrRanges == NULL); | ||
| 254 | (*choice)->u.asIdsOrRanges = sk_ASIdOrRange_new(ASIdOrRange_cmp); | ||
| 255 | if ((*choice)->u.asIdsOrRanges == NULL) | ||
| 256 | return 0; | ||
| 257 | (*choice)->type = ASIdentifierChoice_asIdsOrRanges; | ||
| 258 | } | ||
| 259 | if ((aor = ASIdOrRange_new()) == NULL) | ||
| 260 | return 0; | ||
| 261 | if (max == NULL) { | ||
| 262 | aor->type = ASIdOrRange_id; | ||
| 263 | aor->u.id = min; | ||
| 264 | } else { | ||
| 265 | aor->type = ASIdOrRange_range; | ||
| 266 | if ((aor->u.range = ASRange_new()) == NULL) | ||
| 267 | goto err; | ||
| 268 | ASN1_INTEGER_free(aor->u.range->min); | ||
| 269 | aor->u.range->min = min; | ||
| 270 | ASN1_INTEGER_free(aor->u.range->max); | ||
| 271 | aor->u.range->max = max; | ||
| 272 | } | ||
| 273 | if (!(sk_ASIdOrRange_push((*choice)->u.asIdsOrRanges, aor))) | ||
| 274 | goto err; | ||
| 275 | return 1; | ||
| 276 | |||
| 277 | err: | ||
| 278 | ASIdOrRange_free(aor); | ||
| 279 | return 0; | ||
| 280 | } | ||
| 281 | |||
| 282 | /* | ||
| 283 | * Extract min and max values from an ASIdOrRange. | ||
| 284 | */ | ||
| 285 | static void extract_min_max(ASIdOrRange *aor, | ||
| 286 | ASN1_INTEGER **min, | ||
| 287 | ASN1_INTEGER **max) | ||
| 288 | { | ||
| 289 | assert(aor != NULL && min != NULL && max != NULL); | ||
| 290 | switch (aor->type) { | ||
| 291 | case ASIdOrRange_id: | ||
| 292 | *min = aor->u.id; | ||
| 293 | *max = aor->u.id; | ||
| 294 | return; | ||
| 295 | case ASIdOrRange_range: | ||
| 296 | *min = aor->u.range->min; | ||
| 297 | *max = aor->u.range->max; | ||
| 298 | return; | ||
| 299 | } | ||
| 300 | } | ||
| 301 | |||
| 302 | /* | ||
| 303 | * Check whether an ASIdentifierChoice is in canonical form. | ||
| 304 | */ | ||
| 305 | static int ASIdentifierChoice_is_canonical(ASIdentifierChoice *choice) | ||
| 306 | { | ||
| 307 | ASN1_INTEGER *a_max_plus_one = NULL; | ||
| 308 | BIGNUM *bn = NULL; | ||
| 309 | int i, ret = 0; | ||
| 310 | |||
| 311 | /* | ||
| 312 | * Empty element or inheritance is canonical. | ||
| 313 | */ | ||
| 314 | if (choice == NULL || choice->type == ASIdentifierChoice_inherit) | ||
| 315 | return 1; | ||
| 316 | |||
| 317 | /* | ||
| 318 | * If not a list, or if empty list, it's broken. | ||
| 319 | */ | ||
| 320 | if (choice->type != ASIdentifierChoice_asIdsOrRanges || | ||
| 321 | sk_ASIdOrRange_num(choice->u.asIdsOrRanges) == 0) | ||
| 322 | return 0; | ||
| 323 | |||
| 324 | /* | ||
| 325 | * It's a list, check it. | ||
| 326 | */ | ||
| 327 | for (i = 0; i < sk_ASIdOrRange_num(choice->u.asIdsOrRanges) - 1; i++) { | ||
| 328 | ASIdOrRange *a = sk_ASIdOrRange_value(choice->u.asIdsOrRanges, i); | ||
| 329 | ASIdOrRange *b = sk_ASIdOrRange_value(choice->u.asIdsOrRanges, i + 1); | ||
| 330 | ASN1_INTEGER *a_min, *a_max, *b_min, *b_max; | ||
| 331 | |||
| 332 | extract_min_max(a, &a_min, &a_max); | ||
| 333 | extract_min_max(b, &b_min, &b_max); | ||
| 334 | |||
| 335 | /* | ||
| 336 | * Punt misordered list, overlapping start, or inverted range. | ||
| 337 | */ | ||
| 338 | if (ASN1_INTEGER_cmp(a_min, b_min) >= 0 || | ||
| 339 | ASN1_INTEGER_cmp(a_min, a_max) > 0 || | ||
| 340 | ASN1_INTEGER_cmp(b_min, b_max) > 0) | ||
| 341 | goto done; | ||
| 342 | |||
| 343 | /* | ||
| 344 | * Calculate a_max + 1 to check for adjacency. | ||
| 345 | */ | ||
| 346 | if ((bn == NULL && (bn = BN_new()) == NULL) || | ||
| 347 | ASN1_INTEGER_to_BN(a_max, bn) == NULL || | ||
| 348 | !BN_add_word(bn, 1) || | ||
| 349 | (a_max_plus_one = BN_to_ASN1_INTEGER(bn, a_max_plus_one)) == NULL) { | ||
| 350 | X509V3err(X509V3_F_ASIDENTIFIERCHOICE_IS_CANONICAL, | ||
| 351 | ERR_R_MALLOC_FAILURE); | ||
| 352 | goto done; | ||
| 353 | } | ||
| 354 | |||
| 355 | /* | ||
| 356 | * Punt if adjacent or overlapping. | ||
| 357 | */ | ||
| 358 | if (ASN1_INTEGER_cmp(a_max_plus_one, b_min) >= 0) | ||
| 359 | goto done; | ||
| 360 | } | ||
| 361 | |||
| 362 | ret = 1; | ||
| 363 | |||
| 364 | done: | ||
| 365 | ASN1_INTEGER_free(a_max_plus_one); | ||
| 366 | BN_free(bn); | ||
| 367 | return ret; | ||
| 368 | } | ||
| 369 | |||
| 370 | /* | ||
| 371 | * Check whether an ASIdentifier extension is in canonical form. | ||
| 372 | */ | ||
| 373 | int v3_asid_is_canonical(ASIdentifiers *asid) | ||
| 374 | { | ||
| 375 | return (asid == NULL || | ||
| 376 | (ASIdentifierChoice_is_canonical(asid->asnum) || | ||
| 377 | ASIdentifierChoice_is_canonical(asid->rdi))); | ||
| 378 | } | ||
| 379 | |||
| 380 | /* | ||
| 381 | * Whack an ASIdentifierChoice into canonical form. | ||
| 382 | */ | ||
| 383 | static int ASIdentifierChoice_canonize(ASIdentifierChoice *choice) | ||
| 384 | { | ||
| 385 | ASN1_INTEGER *a_max_plus_one = NULL; | ||
| 386 | BIGNUM *bn = NULL; | ||
| 387 | int i, ret = 0; | ||
| 388 | |||
| 389 | /* | ||
| 390 | * Nothing to do for empty element or inheritance. | ||
| 391 | */ | ||
| 392 | if (choice == NULL || choice->type == ASIdentifierChoice_inherit) | ||
| 393 | return 1; | ||
| 394 | |||
| 395 | /* | ||
| 396 | * We have a list. Sort it. | ||
| 397 | */ | ||
| 398 | assert(choice->type == ASIdentifierChoice_asIdsOrRanges); | ||
| 399 | sk_ASIdOrRange_sort(choice->u.asIdsOrRanges); | ||
| 400 | |||
| 401 | /* | ||
| 402 | * Now check for errors and suboptimal encoding, rejecting the | ||
| 403 | * former and fixing the latter. | ||
| 404 | */ | ||
| 405 | for (i = 0; i < sk_ASIdOrRange_num(choice->u.asIdsOrRanges) - 1; i++) { | ||
| 406 | ASIdOrRange *a = sk_ASIdOrRange_value(choice->u.asIdsOrRanges, i); | ||
| 407 | ASIdOrRange *b = sk_ASIdOrRange_value(choice->u.asIdsOrRanges, i + 1); | ||
| 408 | ASN1_INTEGER *a_min, *a_max, *b_min, *b_max; | ||
| 409 | |||
| 410 | extract_min_max(a, &a_min, &a_max); | ||
| 411 | extract_min_max(b, &b_min, &b_max); | ||
| 412 | |||
| 413 | /* | ||
| 414 | * Make sure we're properly sorted (paranoia). | ||
| 415 | */ | ||
| 416 | assert(ASN1_INTEGER_cmp(a_min, b_min) <= 0); | ||
| 417 | |||
| 418 | /* | ||
| 419 | * Check for overlaps. | ||
| 420 | */ | ||
| 421 | if (ASN1_INTEGER_cmp(a_max, b_min) >= 0) { | ||
| 422 | X509V3err(X509V3_F_ASIDENTIFIERCHOICE_CANONIZE, | ||
| 423 | X509V3_R_EXTENSION_VALUE_ERROR); | ||
| 424 | goto done; | ||
| 425 | } | ||
| 426 | |||
| 427 | /* | ||
| 428 | * Calculate a_max + 1 to check for adjacency. | ||
| 429 | */ | ||
| 430 | if ((bn == NULL && (bn = BN_new()) == NULL) || | ||
| 431 | ASN1_INTEGER_to_BN(a_max, bn) == NULL || | ||
| 432 | !BN_add_word(bn, 1) || | ||
| 433 | (a_max_plus_one = BN_to_ASN1_INTEGER(bn, a_max_plus_one)) == NULL) { | ||
| 434 | X509V3err(X509V3_F_ASIDENTIFIERCHOICE_CANONIZE, ERR_R_MALLOC_FAILURE); | ||
| 435 | goto done; | ||
| 436 | } | ||
| 437 | |||
| 438 | /* | ||
| 439 | * If a and b are adjacent, merge them. | ||
| 440 | */ | ||
| 441 | if (ASN1_INTEGER_cmp(a_max_plus_one, b_min) == 0) { | ||
| 442 | ASRange *r; | ||
| 443 | switch (a->type) { | ||
| 444 | case ASIdOrRange_id: | ||
| 445 | if ((r = OPENSSL_malloc(sizeof(ASRange))) == NULL) { | ||
| 446 | X509V3err(X509V3_F_ASIDENTIFIERCHOICE_CANONIZE, | ||
| 447 | ERR_R_MALLOC_FAILURE); | ||
| 448 | goto done; | ||
| 449 | } | ||
| 450 | r->min = a_min; | ||
| 451 | r->max = b_max; | ||
| 452 | a->type = ASIdOrRange_range; | ||
| 453 | a->u.range = r; | ||
| 454 | break; | ||
| 455 | case ASIdOrRange_range: | ||
| 456 | ASN1_INTEGER_free(a->u.range->max); | ||
| 457 | a->u.range->max = b_max; | ||
| 458 | break; | ||
| 459 | } | ||
| 460 | switch (b->type) { | ||
| 461 | case ASIdOrRange_id: | ||
| 462 | b->u.id = NULL; | ||
| 463 | break; | ||
| 464 | case ASIdOrRange_range: | ||
| 465 | b->u.range->max = NULL; | ||
| 466 | break; | ||
| 467 | } | ||
| 468 | ASIdOrRange_free(b); | ||
| 469 | sk_ASIdOrRange_delete(choice->u.asIdsOrRanges, i + 1); | ||
| 470 | i--; | ||
| 471 | continue; | ||
| 472 | } | ||
| 473 | } | ||
| 474 | |||
| 475 | assert(ASIdentifierChoice_is_canonical(choice)); /* Paranoia */ | ||
| 476 | |||
| 477 | ret = 1; | ||
| 478 | |||
| 479 | done: | ||
| 480 | ASN1_INTEGER_free(a_max_plus_one); | ||
| 481 | BN_free(bn); | ||
| 482 | return ret; | ||
| 483 | } | ||
| 484 | |||
| 485 | /* | ||
| 486 | * Whack an ASIdentifier extension into canonical form. | ||
| 487 | */ | ||
| 488 | int v3_asid_canonize(ASIdentifiers *asid) | ||
| 489 | { | ||
| 490 | return (asid == NULL || | ||
| 491 | (ASIdentifierChoice_canonize(asid->asnum) && | ||
| 492 | ASIdentifierChoice_canonize(asid->rdi))); | ||
| 493 | } | ||
| 494 | |||
| 495 | /* | ||
| 496 | * v2i method for an ASIdentifier extension. | ||
| 497 | */ | ||
| 498 | static void *v2i_ASIdentifiers(struct v3_ext_method *method, | ||
| 499 | struct v3_ext_ctx *ctx, | ||
| 500 | STACK_OF(CONF_VALUE) *values) | ||
| 501 | { | ||
| 502 | ASIdentifiers *asid = NULL; | ||
| 503 | int i; | ||
| 504 | |||
| 505 | if ((asid = ASIdentifiers_new()) == NULL) { | ||
| 506 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, ERR_R_MALLOC_FAILURE); | ||
| 507 | return NULL; | ||
| 508 | } | ||
| 509 | |||
| 510 | for (i = 0; i < sk_CONF_VALUE_num(values); i++) { | ||
| 511 | CONF_VALUE *val = sk_CONF_VALUE_value(values, i); | ||
| 512 | ASN1_INTEGER *min = NULL, *max = NULL; | ||
| 513 | int i1, i2, i3, is_range, which; | ||
| 514 | |||
| 515 | /* | ||
| 516 | * Figure out whether this is an AS or an RDI. | ||
| 517 | */ | ||
| 518 | if ( !name_cmp(val->name, "AS")) { | ||
| 519 | which = V3_ASID_ASNUM; | ||
| 520 | } else if (!name_cmp(val->name, "RDI")) { | ||
| 521 | which = V3_ASID_RDI; | ||
| 522 | } else { | ||
| 523 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, X509V3_R_EXTENSION_NAME_ERROR); | ||
| 524 | X509V3_conf_err(val); | ||
| 525 | goto err; | ||
| 526 | } | ||
| 527 | |||
| 528 | /* | ||
| 529 | * Handle inheritance. | ||
| 530 | */ | ||
| 531 | if (!strcmp(val->value, "inherit")) { | ||
| 532 | if (v3_asid_add_inherit(asid, which)) | ||
| 533 | continue; | ||
| 534 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, X509V3_R_INVALID_INHERITANCE); | ||
| 535 | X509V3_conf_err(val); | ||
| 536 | goto err; | ||
| 537 | } | ||
| 538 | |||
| 539 | /* | ||
| 540 | * Number, range, or mistake, pick it apart and figure out which. | ||
| 541 | */ | ||
| 542 | i1 = strspn(val->value, "0123456789"); | ||
| 543 | if (val->value[i1] == '\0') { | ||
| 544 | is_range = 0; | ||
| 545 | } else { | ||
| 546 | is_range = 1; | ||
| 547 | i2 = i1 + strspn(val->value + i1, " \t"); | ||
| 548 | if (val->value[i2] != '-') { | ||
| 549 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, X509V3_R_INVALID_ASNUMBER); | ||
| 550 | X509V3_conf_err(val); | ||
| 551 | goto err; | ||
| 552 | } | ||
| 553 | i2++; | ||
| 554 | i2 = i2 + strspn(val->value + i2, " \t"); | ||
| 555 | i3 = i2 + strspn(val->value + i2, "0123456789"); | ||
| 556 | if (val->value[i3] != '\0') { | ||
| 557 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, X509V3_R_INVALID_ASRANGE); | ||
| 558 | X509V3_conf_err(val); | ||
| 559 | goto err; | ||
| 560 | } | ||
| 561 | } | ||
| 562 | |||
| 563 | /* | ||
| 564 | * Syntax is ok, read and add it. | ||
| 565 | */ | ||
| 566 | if (!is_range) { | ||
| 567 | if (!X509V3_get_value_int(val, &min)) { | ||
| 568 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, ERR_R_MALLOC_FAILURE); | ||
| 569 | goto err; | ||
| 570 | } | ||
| 571 | } else { | ||
| 572 | char *s = BUF_strdup(val->value); | ||
| 573 | if (s == NULL) { | ||
| 574 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, ERR_R_MALLOC_FAILURE); | ||
| 575 | goto err; | ||
| 576 | } | ||
| 577 | s[i1] = '\0'; | ||
| 578 | min = s2i_ASN1_INTEGER(NULL, s); | ||
| 579 | max = s2i_ASN1_INTEGER(NULL, s + i2); | ||
| 580 | OPENSSL_free(s); | ||
| 581 | if (min == NULL || max == NULL) { | ||
| 582 | ASN1_INTEGER_free(min); | ||
| 583 | ASN1_INTEGER_free(max); | ||
| 584 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, ERR_R_MALLOC_FAILURE); | ||
| 585 | goto err; | ||
| 586 | } | ||
| 587 | } | ||
| 588 | if (!v3_asid_add_id_or_range(asid, which, min, max)) { | ||
| 589 | ASN1_INTEGER_free(min); | ||
| 590 | ASN1_INTEGER_free(max); | ||
| 591 | X509V3err(X509V3_F_V2I_ASIDENTIFIERS, ERR_R_MALLOC_FAILURE); | ||
| 592 | goto err; | ||
| 593 | } | ||
| 594 | } | ||
| 595 | |||
| 596 | /* | ||
| 597 | * Canonize the result, then we're done. | ||
| 598 | */ | ||
| 599 | if (!v3_asid_canonize(asid)) | ||
| 600 | goto err; | ||
| 601 | return asid; | ||
| 602 | |||
| 603 | err: | ||
| 604 | ASIdentifiers_free(asid); | ||
| 605 | return NULL; | ||
| 606 | } | ||
| 607 | |||
| 608 | /* | ||
| 609 | * OpenSSL dispatch. | ||
| 610 | */ | ||
| 611 | const X509V3_EXT_METHOD v3_asid = { | ||
| 612 | NID_sbgp_autonomousSysNum, /* nid */ | ||
| 613 | 0, /* flags */ | ||
| 614 | ASN1_ITEM_ref(ASIdentifiers), /* template */ | ||
| 615 | 0, 0, 0, 0, /* old functions, ignored */ | ||
| 616 | 0, /* i2s */ | ||
| 617 | 0, /* s2i */ | ||
| 618 | 0, /* i2v */ | ||
| 619 | v2i_ASIdentifiers, /* v2i */ | ||
| 620 | i2r_ASIdentifiers, /* i2r */ | ||
| 621 | 0, /* r2i */ | ||
| 622 | NULL /* extension-specific data */ | ||
| 623 | }; | ||
| 624 | |||
| 625 | /* | ||
| 626 | * Figure out whether extension uses inheritance. | ||
| 627 | */ | ||
| 628 | int v3_asid_inherits(ASIdentifiers *asid) | ||
| 629 | { | ||
| 630 | return (asid != NULL && | ||
| 631 | ((asid->asnum != NULL && | ||
| 632 | asid->asnum->type == ASIdentifierChoice_inherit) || | ||
| 633 | (asid->rdi != NULL && | ||
| 634 | asid->rdi->type == ASIdentifierChoice_inherit))); | ||
| 635 | } | ||
| 636 | |||
| 637 | /* | ||
| 638 | * Figure out whether parent contains child. | ||
| 639 | */ | ||
| 640 | static int asid_contains(ASIdOrRanges *parent, ASIdOrRanges *child) | ||
| 641 | { | ||
| 642 | ASN1_INTEGER *p_min, *p_max, *c_min, *c_max; | ||
| 643 | int p, c; | ||
| 644 | |||
| 645 | if (child == NULL || parent == child) | ||
| 646 | return 1; | ||
| 647 | if (parent == NULL) | ||
| 648 | return 0; | ||
| 649 | |||
| 650 | p = 0; | ||
| 651 | for (c = 0; c < sk_ASIdOrRange_num(child); c++) { | ||
| 652 | extract_min_max(sk_ASIdOrRange_value(child, c), &c_min, &c_max); | ||
| 653 | for (;; p++) { | ||
| 654 | if (p >= sk_ASIdOrRange_num(parent)) | ||
| 655 | return 0; | ||
| 656 | extract_min_max(sk_ASIdOrRange_value(parent, p), &p_min, &p_max); | ||
| 657 | if (ASN1_INTEGER_cmp(p_max, c_max) < 0) | ||
| 658 | continue; | ||
| 659 | if (ASN1_INTEGER_cmp(p_min, c_min) > 0) | ||
| 660 | return 0; | ||
| 661 | break; | ||
| 662 | } | ||
| 663 | } | ||
| 664 | |||
| 665 | return 1; | ||
| 666 | } | ||
| 667 | |||
| 668 | /* | ||
| 669 | * Test whether a is a subet of b. | ||
| 670 | */ | ||
| 671 | int v3_asid_subset(ASIdentifiers *a, ASIdentifiers *b) | ||
| 672 | { | ||
| 673 | return (a == NULL || | ||
| 674 | a == b || | ||
| 675 | (b != NULL && | ||
| 676 | !v3_asid_inherits(a) && | ||
| 677 | !v3_asid_inherits(b) && | ||
| 678 | asid_contains(b->asnum->u.asIdsOrRanges, | ||
| 679 | a->asnum->u.asIdsOrRanges) && | ||
| 680 | asid_contains(b->rdi->u.asIdsOrRanges, | ||
| 681 | a->rdi->u.asIdsOrRanges))); | ||
| 682 | } | ||
| 683 | |||
| 684 | /* | ||
| 685 | * Validation error handling via callback. | ||
| 686 | */ | ||
| 687 | #define validation_err(_err_) \ | ||
| 688 | do { \ | ||
| 689 | if (ctx != NULL) { \ | ||
| 690 | ctx->error = _err_; \ | ||
| 691 | ctx->error_depth = i; \ | ||
| 692 | ctx->current_cert = x; \ | ||
| 693 | ret = ctx->verify_cb(0, ctx); \ | ||
| 694 | } else { \ | ||
| 695 | ret = 0; \ | ||
| 696 | } \ | ||
| 697 | if (!ret) \ | ||
| 698 | goto done; \ | ||
| 699 | } while (0) | ||
| 700 | |||
| 701 | /* | ||
| 702 | * Core code for RFC 3779 3.3 path validation. | ||
| 703 | */ | ||
| 704 | static int v3_asid_validate_path_internal(X509_STORE_CTX *ctx, | ||
| 705 | STACK_OF(X509) *chain, | ||
| 706 | ASIdentifiers *ext) | ||
| 707 | { | ||
| 708 | ASIdOrRanges *child_as = NULL, *child_rdi = NULL; | ||
| 709 | int i, ret = 1, inherit_as = 0, inherit_rdi = 0; | ||
| 710 | X509 *x = NULL; | ||
| 711 | |||
| 712 | assert(chain != NULL && sk_X509_num(chain) > 0); | ||
| 713 | assert(ctx != NULL || ext != NULL); | ||
| 714 | assert(ctx == NULL || ctx->verify_cb != NULL); | ||
| 715 | |||
| 716 | /* | ||
| 717 | * Figure out where to start. If we don't have an extension to | ||
| 718 | * check, we're done. Otherwise, check canonical form and | ||
| 719 | * set up for walking up the chain. | ||
| 720 | */ | ||
| 721 | if (ext != NULL) { | ||
| 722 | i = -1; | ||
| 723 | } else { | ||
| 724 | i = 0; | ||
| 725 | x = sk_X509_value(chain, i); | ||
| 726 | assert(x != NULL); | ||
| 727 | if ((ext = x->rfc3779_asid) == NULL) | ||
| 728 | goto done; | ||
| 729 | } | ||
| 730 | if (!v3_asid_is_canonical(ext)) | ||
| 731 | validation_err(X509_V_ERR_INVALID_EXTENSION); | ||
| 732 | if (ext->asnum != NULL) { | ||
| 733 | switch (ext->asnum->type) { | ||
| 734 | case ASIdentifierChoice_inherit: | ||
| 735 | inherit_as = 1; | ||
| 736 | break; | ||
| 737 | case ASIdentifierChoice_asIdsOrRanges: | ||
| 738 | child_as = ext->asnum->u.asIdsOrRanges; | ||
| 739 | break; | ||
| 740 | } | ||
| 741 | } | ||
| 742 | if (ext->rdi != NULL) { | ||
| 743 | switch (ext->rdi->type) { | ||
| 744 | case ASIdentifierChoice_inherit: | ||
| 745 | inherit_rdi = 1; | ||
| 746 | break; | ||
| 747 | case ASIdentifierChoice_asIdsOrRanges: | ||
| 748 | child_rdi = ext->rdi->u.asIdsOrRanges; | ||
| 749 | break; | ||
| 750 | } | ||
| 751 | } | ||
| 752 | |||
| 753 | /* | ||
| 754 | * Now walk up the chain. Extensions must be in canonical form, no | ||
| 755 | * cert may list resources that its parent doesn't list. | ||
| 756 | */ | ||
| 757 | for (i++; i < sk_X509_num(chain); i++) { | ||
| 758 | x = sk_X509_value(chain, i); | ||
| 759 | assert(x != NULL); | ||
| 760 | if (x->rfc3779_asid == NULL) { | ||
| 761 | if (child_as != NULL || child_rdi != NULL) | ||
| 762 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 763 | continue; | ||
| 764 | } | ||
| 765 | if (!v3_asid_is_canonical(x->rfc3779_asid)) | ||
| 766 | validation_err(X509_V_ERR_INVALID_EXTENSION); | ||
| 767 | if (x->rfc3779_asid->asnum == NULL && child_as != NULL) { | ||
| 768 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 769 | child_as = NULL; | ||
| 770 | inherit_as = 0; | ||
| 771 | } | ||
| 772 | if (x->rfc3779_asid->asnum != NULL && | ||
| 773 | x->rfc3779_asid->asnum->type == ASIdentifierChoice_asIdsOrRanges) { | ||
| 774 | if (inherit_as || | ||
| 775 | asid_contains(x->rfc3779_asid->asnum->u.asIdsOrRanges, child_as)) { | ||
| 776 | child_as = x->rfc3779_asid->asnum->u.asIdsOrRanges; | ||
| 777 | inherit_as = 0; | ||
| 778 | } else { | ||
| 779 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 780 | } | ||
| 781 | } | ||
| 782 | if (x->rfc3779_asid->rdi == NULL && child_rdi != NULL) { | ||
| 783 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 784 | child_rdi = NULL; | ||
| 785 | inherit_rdi = 0; | ||
| 786 | } | ||
| 787 | if (x->rfc3779_asid->rdi != NULL && | ||
| 788 | x->rfc3779_asid->rdi->type == ASIdentifierChoice_asIdsOrRanges) { | ||
| 789 | if (inherit_rdi || | ||
| 790 | asid_contains(x->rfc3779_asid->rdi->u.asIdsOrRanges, child_rdi)) { | ||
| 791 | child_rdi = x->rfc3779_asid->rdi->u.asIdsOrRanges; | ||
| 792 | inherit_rdi = 0; | ||
| 793 | } else { | ||
| 794 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 795 | } | ||
| 796 | } | ||
| 797 | } | ||
| 798 | |||
| 799 | /* | ||
| 800 | * Trust anchor can't inherit. | ||
| 801 | */ | ||
| 802 | if (x->rfc3779_asid != NULL) { | ||
| 803 | if (x->rfc3779_asid->asnum != NULL && | ||
| 804 | x->rfc3779_asid->asnum->type == ASIdentifierChoice_inherit) | ||
| 805 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 806 | if (x->rfc3779_asid->rdi != NULL && | ||
| 807 | x->rfc3779_asid->rdi->type == ASIdentifierChoice_inherit) | ||
| 808 | validation_err(X509_V_ERR_UNNESTED_RESOURCE); | ||
| 809 | } | ||
| 810 | |||
| 811 | done: | ||
| 812 | return ret; | ||
| 813 | } | ||
| 814 | |||
| 815 | #undef validation_err | ||
| 816 | |||
| 817 | /* | ||
| 818 | * RFC 3779 3.3 path validation -- called from X509_verify_cert(). | ||
| 819 | */ | ||
| 820 | int v3_asid_validate_path(X509_STORE_CTX *ctx) | ||
| 821 | { | ||
| 822 | return v3_asid_validate_path_internal(ctx, ctx->chain, NULL); | ||
| 823 | } | ||
| 824 | |||
| 825 | /* | ||
| 826 | * RFC 3779 3.3 path validation of an extension. | ||
| 827 | * Test whether chain covers extension. | ||
| 828 | */ | ||
| 829 | int v3_asid_validate_resource_set(STACK_OF(X509) *chain, | ||
| 830 | ASIdentifiers *ext, | ||
| 831 | int allow_inheritance) | ||
| 832 | { | ||
| 833 | if (ext == NULL) | ||
| 834 | return 1; | ||
| 835 | if (chain == NULL || sk_X509_num(chain) == 0) | ||
| 836 | return 0; | ||
| 837 | if (!allow_inheritance && v3_asid_inherits(ext)) | ||
| 838 | return 0; | ||
| 839 | return v3_asid_validate_path_internal(NULL, chain, ext); | ||
| 840 | } | ||
| 841 | |||
| 842 | #endif /* OPENSSL_NO_RFC3779 */ | ||
diff --git a/src/lib/libssl/src/crypto/x509v3/v3_ncons.c b/src/lib/libssl/src/crypto/x509v3/v3_ncons.c new file mode 100644 index 0000000000..42e7f5a879 --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/v3_ncons.c | |||
| @@ -0,0 +1,220 @@ | |||
| 1 | /* v3_ncons.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include "cryptlib.h" | ||
| 62 | #include <openssl/asn1t.h> | ||
| 63 | #include <openssl/conf.h> | ||
| 64 | #include <openssl/x509v3.h> | ||
| 65 | |||
| 66 | static void *v2i_NAME_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 67 | X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval); | ||
| 68 | static int i2r_NAME_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 69 | void *a, BIO *bp, int ind); | ||
| 70 | static int do_i2r_name_constraints(X509V3_EXT_METHOD *method, | ||
| 71 | STACK_OF(GENERAL_SUBTREE) *trees, | ||
| 72 | BIO *bp, int ind, char *name); | ||
| 73 | static int print_nc_ipadd(BIO *bp, ASN1_OCTET_STRING *ip); | ||
| 74 | |||
| 75 | const X509V3_EXT_METHOD v3_name_constraints = { | ||
| 76 | NID_name_constraints, 0, | ||
| 77 | ASN1_ITEM_ref(NAME_CONSTRAINTS), | ||
| 78 | 0,0,0,0, | ||
| 79 | 0,0, | ||
| 80 | 0, v2i_NAME_CONSTRAINTS, | ||
| 81 | i2r_NAME_CONSTRAINTS,0, | ||
| 82 | NULL | ||
| 83 | }; | ||
| 84 | |||
| 85 | ASN1_SEQUENCE(GENERAL_SUBTREE) = { | ||
| 86 | ASN1_SIMPLE(GENERAL_SUBTREE, base, GENERAL_NAME), | ||
| 87 | ASN1_IMP_OPT(GENERAL_SUBTREE, minimum, ASN1_INTEGER, 0), | ||
| 88 | ASN1_IMP_OPT(GENERAL_SUBTREE, maximum, ASN1_INTEGER, 1) | ||
| 89 | } ASN1_SEQUENCE_END(GENERAL_SUBTREE) | ||
| 90 | |||
| 91 | ASN1_SEQUENCE(NAME_CONSTRAINTS) = { | ||
| 92 | ASN1_IMP_SEQUENCE_OF_OPT(NAME_CONSTRAINTS, permittedSubtrees, | ||
| 93 | GENERAL_SUBTREE, 0), | ||
| 94 | ASN1_IMP_SEQUENCE_OF_OPT(NAME_CONSTRAINTS, excludedSubtrees, | ||
| 95 | GENERAL_SUBTREE, 1), | ||
| 96 | } ASN1_SEQUENCE_END(NAME_CONSTRAINTS) | ||
| 97 | |||
| 98 | |||
| 99 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(GENERAL_SUBTREE) | ||
| 100 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(NAME_CONSTRAINTS) | ||
| 101 | |||
| 102 | static void *v2i_NAME_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 103 | X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval) | ||
| 104 | { | ||
| 105 | int i; | ||
| 106 | CONF_VALUE tval, *val; | ||
| 107 | STACK_OF(GENERAL_SUBTREE) **ptree = NULL; | ||
| 108 | NAME_CONSTRAINTS *ncons = NULL; | ||
| 109 | GENERAL_SUBTREE *sub = NULL; | ||
| 110 | ncons = NAME_CONSTRAINTS_new(); | ||
| 111 | if (!ncons) | ||
| 112 | goto memerr; | ||
| 113 | for(i = 0; i < sk_CONF_VALUE_num(nval); i++) | ||
| 114 | { | ||
| 115 | val = sk_CONF_VALUE_value(nval, i); | ||
| 116 | if (!strncmp(val->name, "permitted", 9) && val->name[9]) | ||
| 117 | { | ||
| 118 | ptree = &ncons->permittedSubtrees; | ||
| 119 | tval.name = val->name + 10; | ||
| 120 | } | ||
| 121 | else if (!strncmp(val->name, "excluded", 8) && val->name[8]) | ||
| 122 | { | ||
| 123 | ptree = &ncons->excludedSubtrees; | ||
| 124 | tval.name = val->name + 9; | ||
| 125 | } | ||
| 126 | else | ||
| 127 | { | ||
| 128 | X509V3err(X509V3_F_V2I_NAME_CONSTRAINTS, X509V3_R_INVALID_SYNTAX); | ||
| 129 | goto err; | ||
| 130 | } | ||
| 131 | tval.value = val->value; | ||
| 132 | sub = GENERAL_SUBTREE_new(); | ||
| 133 | if (!v2i_GENERAL_NAME_ex(sub->base, method, ctx, &tval, 1)) | ||
| 134 | goto err; | ||
| 135 | if (!*ptree) | ||
| 136 | *ptree = sk_GENERAL_SUBTREE_new_null(); | ||
| 137 | if (!*ptree || !sk_GENERAL_SUBTREE_push(*ptree, sub)) | ||
| 138 | goto memerr; | ||
| 139 | sub = NULL; | ||
| 140 | } | ||
| 141 | |||
| 142 | return ncons; | ||
| 143 | |||
| 144 | memerr: | ||
| 145 | X509V3err(X509V3_F_V2I_NAME_CONSTRAINTS, ERR_R_MALLOC_FAILURE); | ||
| 146 | err: | ||
| 147 | if (ncons) | ||
| 148 | NAME_CONSTRAINTS_free(ncons); | ||
| 149 | if (sub) | ||
| 150 | GENERAL_SUBTREE_free(sub); | ||
| 151 | |||
| 152 | return NULL; | ||
| 153 | } | ||
| 154 | |||
| 155 | |||
| 156 | |||
| 157 | |||
| 158 | static int i2r_NAME_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 159 | void *a, BIO *bp, int ind) | ||
| 160 | { | ||
| 161 | NAME_CONSTRAINTS *ncons = a; | ||
| 162 | do_i2r_name_constraints(method, ncons->permittedSubtrees, | ||
| 163 | bp, ind, "Permitted"); | ||
| 164 | do_i2r_name_constraints(method, ncons->excludedSubtrees, | ||
| 165 | bp, ind, "Excluded"); | ||
| 166 | return 1; | ||
| 167 | } | ||
| 168 | |||
| 169 | static int do_i2r_name_constraints(X509V3_EXT_METHOD *method, | ||
| 170 | STACK_OF(GENERAL_SUBTREE) *trees, | ||
| 171 | BIO *bp, int ind, char *name) | ||
| 172 | { | ||
| 173 | GENERAL_SUBTREE *tree; | ||
| 174 | int i; | ||
| 175 | if (sk_GENERAL_SUBTREE_num(trees) > 0) | ||
| 176 | BIO_printf(bp, "%*s%s:\n", ind, "", name); | ||
| 177 | for(i = 0; i < sk_GENERAL_SUBTREE_num(trees); i++) | ||
| 178 | { | ||
| 179 | tree = sk_GENERAL_SUBTREE_value(trees, i); | ||
| 180 | BIO_printf(bp, "%*s", ind + 2, ""); | ||
| 181 | if (tree->base->type == GEN_IPADD) | ||
| 182 | print_nc_ipadd(bp, tree->base->d.ip); | ||
| 183 | else | ||
| 184 | GENERAL_NAME_print(bp, tree->base); | ||
| 185 | tree = sk_GENERAL_SUBTREE_value(trees, i); | ||
| 186 | BIO_puts(bp, "\n"); | ||
| 187 | } | ||
| 188 | return 1; | ||
| 189 | } | ||
| 190 | |||
| 191 | static int print_nc_ipadd(BIO *bp, ASN1_OCTET_STRING *ip) | ||
| 192 | { | ||
| 193 | int i, len; | ||
| 194 | unsigned char *p; | ||
| 195 | p = ip->data; | ||
| 196 | len = ip->length; | ||
| 197 | BIO_puts(bp, "IP:"); | ||
| 198 | if(len == 8) | ||
| 199 | { | ||
| 200 | BIO_printf(bp, "%d.%d.%d.%d/%d.%d.%d.%d", | ||
| 201 | p[0], p[1], p[2], p[3], | ||
| 202 | p[4], p[5], p[6], p[7]); | ||
| 203 | } | ||
| 204 | else if(len == 32) | ||
| 205 | { | ||
| 206 | for (i = 0; i < 16; i++) | ||
| 207 | { | ||
| 208 | BIO_printf(bp, "%X", p[0] << 8 | p[1]); | ||
| 209 | p += 2; | ||
| 210 | if (i == 7) | ||
| 211 | BIO_puts(bp, "/"); | ||
| 212 | else if (i != 15) | ||
| 213 | BIO_puts(bp, ":"); | ||
| 214 | } | ||
| 215 | } | ||
| 216 | else | ||
| 217 | BIO_printf(bp, "IP Address:<invalid>"); | ||
| 218 | return 1; | ||
| 219 | } | ||
| 220 | |||
diff --git a/src/lib/libssl/src/crypto/x509v3/v3_pcons.c b/src/lib/libssl/src/crypto/x509v3/v3_pcons.c new file mode 100644 index 0000000000..13248c2ada --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/v3_pcons.c | |||
| @@ -0,0 +1,136 @@ | |||
| 1 | /* v3_pcons.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include "cryptlib.h" | ||
| 62 | #include <openssl/asn1.h> | ||
| 63 | #include <openssl/asn1t.h> | ||
| 64 | #include <openssl/conf.h> | ||
| 65 | #include <openssl/x509v3.h> | ||
| 66 | |||
| 67 | static STACK_OF(CONF_VALUE) *i2v_POLICY_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 68 | void *bcons, STACK_OF(CONF_VALUE) *extlist); | ||
| 69 | static void *v2i_POLICY_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 70 | X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *values); | ||
| 71 | |||
| 72 | const X509V3_EXT_METHOD v3_policy_constraints = { | ||
| 73 | NID_policy_constraints, 0, | ||
| 74 | ASN1_ITEM_ref(POLICY_CONSTRAINTS), | ||
| 75 | 0,0,0,0, | ||
| 76 | 0,0, | ||
| 77 | i2v_POLICY_CONSTRAINTS, | ||
| 78 | v2i_POLICY_CONSTRAINTS, | ||
| 79 | NULL,NULL, | ||
| 80 | NULL | ||
| 81 | }; | ||
| 82 | |||
| 83 | ASN1_SEQUENCE(POLICY_CONSTRAINTS) = { | ||
| 84 | ASN1_IMP_OPT(POLICY_CONSTRAINTS, requireExplicitPolicy, ASN1_INTEGER,0), | ||
| 85 | ASN1_IMP_OPT(POLICY_CONSTRAINTS, inhibitPolicyMapping, ASN1_INTEGER,1) | ||
| 86 | } ASN1_SEQUENCE_END(POLICY_CONSTRAINTS) | ||
| 87 | |||
| 88 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(POLICY_CONSTRAINTS) | ||
| 89 | |||
| 90 | |||
| 91 | static STACK_OF(CONF_VALUE) *i2v_POLICY_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 92 | void *a, STACK_OF(CONF_VALUE) *extlist) | ||
| 93 | { | ||
| 94 | POLICY_CONSTRAINTS *pcons = a; | ||
| 95 | X509V3_add_value_int("Require Explicit Policy", | ||
| 96 | pcons->requireExplicitPolicy, &extlist); | ||
| 97 | X509V3_add_value_int("Inhibit Policy Mapping", | ||
| 98 | pcons->inhibitPolicyMapping, &extlist); | ||
| 99 | return extlist; | ||
| 100 | } | ||
| 101 | |||
| 102 | static void *v2i_POLICY_CONSTRAINTS(X509V3_EXT_METHOD *method, | ||
| 103 | X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *values) | ||
| 104 | { | ||
| 105 | POLICY_CONSTRAINTS *pcons=NULL; | ||
| 106 | CONF_VALUE *val; | ||
| 107 | int i; | ||
| 108 | if(!(pcons = POLICY_CONSTRAINTS_new())) { | ||
| 109 | X509V3err(X509V3_F_V2I_POLICY_CONSTRAINTS, ERR_R_MALLOC_FAILURE); | ||
| 110 | return NULL; | ||
| 111 | } | ||
| 112 | for(i = 0; i < sk_CONF_VALUE_num(values); i++) { | ||
| 113 | val = sk_CONF_VALUE_value(values, i); | ||
| 114 | if(!strcmp(val->name, "requireExplicitPolicy")) { | ||
| 115 | if(!X509V3_get_value_int(val, | ||
| 116 | &pcons->requireExplicitPolicy)) goto err; | ||
| 117 | } else if(!strcmp(val->name, "inhibitPolicyMapping")) { | ||
| 118 | if(!X509V3_get_value_int(val, | ||
| 119 | &pcons->inhibitPolicyMapping)) goto err; | ||
| 120 | } else { | ||
| 121 | X509V3err(X509V3_F_V2I_POLICY_CONSTRAINTS, X509V3_R_INVALID_NAME); | ||
| 122 | X509V3_conf_err(val); | ||
| 123 | goto err; | ||
| 124 | } | ||
| 125 | } | ||
| 126 | if (!pcons->inhibitPolicyMapping && !pcons->requireExplicitPolicy) { | ||
| 127 | X509V3err(X509V3_F_V2I_POLICY_CONSTRAINTS, X509V3_R_ILLEGAL_EMPTY_EXTENSION); | ||
| 128 | goto err; | ||
| 129 | } | ||
| 130 | |||
| 131 | return pcons; | ||
| 132 | err: | ||
| 133 | POLICY_CONSTRAINTS_free(pcons); | ||
| 134 | return NULL; | ||
| 135 | } | ||
| 136 | |||
diff --git a/src/lib/libssl/src/crypto/x509v3/v3_pmaps.c b/src/lib/libssl/src/crypto/x509v3/v3_pmaps.c new file mode 100644 index 0000000000..626303264f --- /dev/null +++ b/src/lib/libssl/src/crypto/x509v3/v3_pmaps.c | |||
| @@ -0,0 +1,153 @@ | |||
| 1 | /* v3_pmaps.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include "cryptlib.h" | ||
| 62 | #include <openssl/asn1t.h> | ||
| 63 | #include <openssl/conf.h> | ||
| 64 | #include <openssl/x509v3.h> | ||
| 65 | |||
| 66 | static void *v2i_POLICY_MAPPINGS(X509V3_EXT_METHOD *method, | ||
| 67 | X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval); | ||
| 68 | static STACK_OF(CONF_VALUE) *i2v_POLICY_MAPPINGS(X509V3_EXT_METHOD *method, | ||
| 69 | void *pmps, STACK_OF(CONF_VALUE) *extlist); | ||
| 70 | |||
| 71 | const X509V3_EXT_METHOD v3_policy_mappings = { | ||
| 72 | NID_policy_mappings, 0, | ||
| 73 | ASN1_ITEM_ref(POLICY_MAPPINGS), | ||
| 74 | 0,0,0,0, | ||
| 75 | 0,0, | ||
| 76 | i2v_POLICY_MAPPINGS, | ||
| 77 | v2i_POLICY_MAPPINGS, | ||
| 78 | 0,0, | ||
| 79 | NULL | ||
| 80 | }; | ||
| 81 | |||
| 82 | ASN1_SEQUENCE(POLICY_MAPPING) = { | ||
| 83 | ASN1_SIMPLE(POLICY_MAPPING, issuerDomainPolicy, ASN1_OBJECT), | ||
| 84 | ASN1_SIMPLE(POLICY_MAPPING, subjectDomainPolicy, ASN1_OBJECT) | ||
| 85 | } ASN1_SEQUENCE_END(POLICY_MAPPING) | ||
| 86 | |||
| 87 | ASN1_ITEM_TEMPLATE(POLICY_MAPPINGS) = | ||
| 88 | ASN1_EX_TEMPLATE_TYPE(ASN1_TFLG_SEQUENCE_OF, 0, POLICY_MAPPINGS, | ||
| 89 | POLICY_MAPPING) | ||
| 90 | ASN1_ITEM_TEMPLATE_END(POLICY_MAPPINGS) | ||
| 91 | |||
| 92 | IMPLEMENT_ASN1_ALLOC_FUNCTIONS(POLICY_MAPPING) | ||
| 93 | |||
| 94 | |||
| 95 | static STACK_OF(CONF_VALUE) *i2v_POLICY_MAPPINGS(X509V3_EXT_METHOD *method, | ||
| 96 | void *a, STACK_OF(CONF_VALUE) *ext_list) | ||
| 97 | { | ||
| 98 | POLICY_MAPPINGS *pmaps = a; | ||
| 99 | POLICY_MAPPING *pmap; | ||
| 100 | int i; | ||
| 101 | char obj_tmp1[80]; | ||
| 102 | char obj_tmp2[80]; | ||
| 103 | for(i = 0; i < sk_POLICY_MAPPING_num(pmaps); i++) { | ||
| 104 | pmap = sk_POLICY_MAPPING_value(pmaps, i); | ||
| 105 | i2t_ASN1_OBJECT(obj_tmp1, 80, pmap->issuerDomainPolicy); | ||
| 106 | i2t_ASN1_OBJECT(obj_tmp2, 80, pmap->subjectDomainPolicy); | ||
| 107 | X509V3_add_value(obj_tmp1, obj_tmp2, &ext_list); | ||
| 108 | } | ||
| 109 | return ext_list; | ||
| 110 | } | ||
| 111 | |||
| 112 | static void *v2i_POLICY_MAPPINGS(X509V3_EXT_METHOD *method, | ||
| 113 | X509V3_CTX *ctx, STACK_OF(CONF_VALUE) *nval) | ||
| 114 | { | ||
| 115 | POLICY_MAPPINGS *pmaps; | ||
| 116 | POLICY_MAPPING *pmap; | ||
| 117 | ASN1_OBJECT *obj1, *obj2; | ||
| 118 | CONF_VALUE *val; | ||
| 119 | int i; | ||
| 120 | |||
| 121 | if(!(pmaps = sk_POLICY_MAPPING_new_null())) { | ||
| 122 | X509V3err(X509V3_F_V2I_POLICY_MAPPINGS,ERR_R_MALLOC_FAILURE); | ||
| 123 | return NULL; | ||
| 124 | } | ||
| 125 | |||
| 126 | for(i = 0; i < sk_CONF_VALUE_num(nval); i++) { | ||
| 127 | val = sk_CONF_VALUE_value(nval, i); | ||
| 128 | if(!val->value || !val->name) { | ||
| 129 | sk_POLICY_MAPPING_pop_free(pmaps, POLICY_MAPPING_free); | ||
| 130 | X509V3err(X509V3_F_V2I_POLICY_MAPPINGS,X509V3_R_INVALID_OBJECT_IDENTIFIER); | ||
| 131 | X509V3_conf_err(val); | ||
| 132 | return NULL; | ||
| 133 | } | ||
| 134 | obj1 = OBJ_txt2obj(val->name, 0); | ||
| 135 | obj2 = OBJ_txt2obj(val->value, 0); | ||
| 136 | if(!obj1 || !obj2) { | ||
| 137 | sk_POLICY_MAPPING_pop_free(pmaps, POLICY_MAPPING_free); | ||
| 138 | X509V3err(X509V3_F_V2I_POLICY_MAPPINGS,X509V3_R_INVALID_OBJECT_IDENTIFIER); | ||
| 139 | X509V3_conf_err(val); | ||
| 140 | return NULL; | ||
| 141 | } | ||
| 142 | pmap = POLICY_MAPPING_new(); | ||
| 143 | if (!pmap) { | ||
| 144 | sk_POLICY_MAPPING_pop_free(pmaps, POLICY_MAPPING_free); | ||
| 145 | X509V3err(X509V3_F_V2I_POLICY_MAPPINGS,ERR_R_MALLOC_FAILURE); | ||
| 146 | return NULL; | ||
| 147 | } | ||
| 148 | pmap->issuerDomainPolicy = obj1; | ||
| 149 | pmap->subjectDomainPolicy = obj2; | ||
| 150 | sk_POLICY_MAPPING_push(pmaps, pmap); | ||
| 151 | } | ||
| 152 | return pmaps; | ||
| 153 | } | ||
diff --git a/src/lib/libssl/src/crypto/x86_64cpuid.pl b/src/lib/libssl/src/crypto/x86_64cpuid.pl new file mode 100644 index 0000000000..2616a03da6 --- /dev/null +++ b/src/lib/libssl/src/crypto/x86_64cpuid.pl | |||
| @@ -0,0 +1,159 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | |||
| 3 | $output=shift; | ||
| 4 | $masm=1 if ($output =~ /\.asm/); | ||
| 5 | open STDOUT,">$output" || die "can't open $output: $!"; | ||
| 6 | |||
| 7 | print<<___ if(defined($masm)); | ||
| 8 | _TEXT SEGMENT | ||
| 9 | PUBLIC OPENSSL_rdtsc | ||
| 10 | |||
| 11 | PUBLIC OPENSSL_atomic_add | ||
| 12 | ALIGN 16 | ||
| 13 | OPENSSL_atomic_add PROC | ||
| 14 | mov eax,DWORD PTR[rcx] | ||
| 15 | \$Lspin: lea r8,DWORD PTR[rdx+rax] | ||
| 16 | lock cmpxchg DWORD PTR[rcx],r8d | ||
| 17 | jne \$Lspin | ||
| 18 | mov eax,r8d | ||
| 19 | cdqe | ||
| 20 | ret | ||
| 21 | OPENSSL_atomic_add ENDP | ||
| 22 | |||
| 23 | PUBLIC OPENSSL_wipe_cpu | ||
| 24 | ALIGN 16 | ||
| 25 | OPENSSL_wipe_cpu PROC | ||
| 26 | pxor xmm0,xmm0 | ||
| 27 | pxor xmm1,xmm1 | ||
| 28 | pxor xmm2,xmm2 | ||
| 29 | pxor xmm3,xmm3 | ||
| 30 | pxor xmm4,xmm4 | ||
| 31 | pxor xmm5,xmm5 | ||
| 32 | xor rcx,rcx | ||
| 33 | xor rdx,rdx | ||
| 34 | xor r8,r8 | ||
| 35 | xor r9,r9 | ||
| 36 | xor r10,r10 | ||
| 37 | xor r11,r11 | ||
| 38 | lea rax,QWORD PTR[rsp+8] | ||
| 39 | ret | ||
| 40 | OPENSSL_wipe_cpu ENDP | ||
| 41 | _TEXT ENDS | ||
| 42 | |||
| 43 | CRT\$XIU SEGMENT | ||
| 44 | EXTRN OPENSSL_cpuid_setup:PROC | ||
| 45 | DQ OPENSSL_cpuid_setup | ||
| 46 | CRT\$XIU ENDS | ||
| 47 | |||
| 48 | ___ | ||
| 49 | print<<___ if(!defined($masm)); | ||
| 50 | .text | ||
| 51 | |||
| 52 | .globl OPENSSL_atomic_add | ||
| 53 | .type OPENSSL_atomic_add,\@function | ||
| 54 | .align 16 | ||
| 55 | OPENSSL_atomic_add: | ||
| 56 | movl (%rdi),%eax | ||
| 57 | .Lspin: leaq (%rsi,%rax),%r8 | ||
| 58 | lock; cmpxchgl %r8d,(%rdi) | ||
| 59 | jne .Lspin | ||
| 60 | movl %r8d,%eax | ||
| 61 | .byte 0x48,0x98 | ||
| 62 | ret | ||
| 63 | .size OPENSSL_atomic_add,.-OPENSSL_atomic_add | ||
| 64 | |||
| 65 | .globl OPENSSL_wipe_cpu | ||
| 66 | .type OPENSSL_wipe_cpu,\@function | ||
| 67 | .align 16 | ||
| 68 | OPENSSL_wipe_cpu: | ||
| 69 | pxor %xmm0,%xmm0 | ||
| 70 | pxor %xmm1,%xmm1 | ||
| 71 | pxor %xmm2,%xmm2 | ||
| 72 | pxor %xmm3,%xmm3 | ||
| 73 | pxor %xmm4,%xmm4 | ||
| 74 | pxor %xmm5,%xmm5 | ||
| 75 | pxor %xmm6,%xmm6 | ||
| 76 | pxor %xmm7,%xmm7 | ||
| 77 | pxor %xmm8,%xmm8 | ||
| 78 | pxor %xmm9,%xmm9 | ||
| 79 | pxor %xmm10,%xmm10 | ||
| 80 | pxor %xmm11,%xmm11 | ||
| 81 | pxor %xmm12,%xmm12 | ||
| 82 | pxor %xmm13,%xmm13 | ||
| 83 | pxor %xmm14,%xmm14 | ||
| 84 | pxor %xmm15,%xmm15 | ||
| 85 | xorq %rcx,%rcx | ||
| 86 | xorq %rdx,%rdx | ||
| 87 | xorq %rsi,%rsi | ||
| 88 | xorq %rdi,%rdi | ||
| 89 | xorq %r8,%r8 | ||
| 90 | xorq %r9,%r9 | ||
| 91 | xorq %r10,%r10 | ||
| 92 | xorq %r11,%r11 | ||
| 93 | leaq 8(%rsp),%rax | ||
| 94 | ret | ||
| 95 | .size OPENSSL_wipe_cpu,.-OPENSSL_wipe_cpu | ||
| 96 | |||
| 97 | .section .init | ||
| 98 | call OPENSSL_cpuid_setup | ||
| 99 | |||
| 100 | ___ | ||
| 101 | |||
| 102 | open STDOUT,"| $^X perlasm/x86_64-xlate.pl $output"; | ||
| 103 | print<<___; | ||
| 104 | .text | ||
| 105 | |||
| 106 | .globl OPENSSL_rdtsc | ||
| 107 | .type OPENSSL_rdtsc,\@abi-omnipotent | ||
| 108 | .align 16 | ||
| 109 | OPENSSL_rdtsc: | ||
| 110 | rdtsc | ||
| 111 | shl \$32,%rdx | ||
| 112 | or %rdx,%rax | ||
| 113 | ret | ||
| 114 | .size OPENSSL_rdtsc,.-OPENSSL_rdtsc | ||
| 115 | |||
| 116 | .globl OPENSSL_ia32_cpuid | ||
| 117 | .type OPENSSL_ia32_cpuid,\@abi-omnipotent | ||
| 118 | .align 16 | ||
| 119 | OPENSSL_ia32_cpuid: | ||
| 120 | mov %rbx,%r8 | ||
| 121 | |||
| 122 | xor %eax,%eax | ||
| 123 | cpuid | ||
| 124 | xor %eax,%eax | ||
| 125 | cmp \$0x756e6547,%ebx # "Genu" | ||
| 126 | setne %al | ||
| 127 | mov %eax,%r9d | ||
| 128 | cmp \$0x49656e69,%edx # "ineI" | ||
| 129 | setne %al | ||
| 130 | or %eax,%r9d | ||
| 131 | cmp \$0x6c65746e,%ecx # "ntel" | ||
| 132 | setne %al | ||
| 133 | or %eax,%r9d | ||
| 134 | |||
| 135 | mov \$1,%eax | ||
| 136 | cpuid | ||
| 137 | cmp \$0,%r9d | ||
| 138 | jne .Lnotintel | ||
| 139 | or \$0x00100000,%edx # use reserved 20th bit to engage RC4_CHAR | ||
| 140 | and \$15,%ah | ||
| 141 | cmp \$15,%ah # examine Family ID | ||
| 142 | je .Lnotintel | ||
| 143 | or \$0x40000000,%edx # use reserved bit to skip unrolled loop | ||
| 144 | .Lnotintel: | ||
| 145 | bt \$28,%edx # test hyper-threading bit | ||
| 146 | jnc .Ldone | ||
| 147 | shr \$16,%ebx | ||
| 148 | cmp \$1,%bl # see if cache is shared | ||
| 149 | ja .Ldone | ||
| 150 | and \$0xefffffff,%edx # ~(1<<28) | ||
| 151 | .Ldone: | ||
| 152 | shl \$32,%rcx | ||
| 153 | mov %edx,%eax | ||
| 154 | mov %r8,%rbx | ||
| 155 | or %rcx,%rax | ||
| 156 | ret | ||
| 157 | .size OPENSSL_ia32_cpuid,.-OPENSSL_ia32_cpuid | ||
| 158 | ___ | ||
| 159 | close STDOUT; # flush | ||
diff --git a/src/lib/libssl/src/crypto/x86cpuid.pl b/src/lib/libssl/src/crypto/x86cpuid.pl new file mode 100644 index 0000000000..4408ef2936 --- /dev/null +++ b/src/lib/libssl/src/crypto/x86cpuid.pl | |||
| @@ -0,0 +1,225 @@ | |||
| 1 | #!/usr/bin/env perl | ||
| 2 | |||
| 3 | push(@INC,"perlasm"); | ||
| 4 | require "x86asm.pl"; | ||
| 5 | |||
| 6 | &asm_init($ARGV[0],"x86cpuid"); | ||
| 7 | |||
| 8 | for (@ARGV) { $sse2=1 if (/-DOPENSSL_IA32_SSE2/); } | ||
| 9 | |||
| 10 | &function_begin("OPENSSL_ia32_cpuid"); | ||
| 11 | &xor ("edx","edx"); | ||
| 12 | &pushf (); | ||
| 13 | &pop ("eax"); | ||
| 14 | &mov ("ecx","eax"); | ||
| 15 | &xor ("eax",1<<21); | ||
| 16 | &push ("eax"); | ||
| 17 | &popf (); | ||
| 18 | &pushf (); | ||
| 19 | &pop ("eax"); | ||
| 20 | &xor ("ecx","eax"); | ||
| 21 | &bt ("ecx",21); | ||
| 22 | &jnc (&label("done")); | ||
| 23 | &xor ("eax","eax"); | ||
| 24 | &cpuid (); | ||
| 25 | &xor ("eax","eax"); | ||
| 26 | &cmp ("ebx",0x756e6547); # "Genu" | ||
| 27 | &data_byte(0x0f,0x95,0xc0); #&setne (&LB("eax")); | ||
| 28 | &mov ("ebp","eax"); | ||
| 29 | &cmp ("edx",0x49656e69); # "ineI" | ||
| 30 | &data_byte(0x0f,0x95,0xc0); #&setne (&LB("eax")); | ||
| 31 | &or ("ebp","eax"); | ||
| 32 | &cmp ("ecx",0x6c65746e); # "ntel" | ||
| 33 | &data_byte(0x0f,0x95,0xc0); #&setne (&LB("eax")); | ||
| 34 | &or ("ebp","eax"); | ||
| 35 | &mov ("eax",1); | ||
| 36 | &cpuid (); | ||
| 37 | &cmp ("ebp",0); | ||
| 38 | &jne (&label("notP4")); | ||
| 39 | &and ("eax",15<<8); # familiy ID | ||
| 40 | &cmp ("eax",15<<8); # P4? | ||
| 41 | &jne (&label("notP4")); | ||
| 42 | &or ("edx",1<<20); # use reserved bit to engage RC4_CHAR | ||
| 43 | &set_label("notP4"); | ||
| 44 | &bt ("edx",28); # test hyper-threading bit | ||
| 45 | &jnc (&label("done")); | ||
| 46 | &shr ("ebx",16); | ||
| 47 | &and ("ebx",0xff); | ||
| 48 | &cmp ("ebx",1); # see if cache is shared(*) | ||
| 49 | &ja (&label("done")); | ||
| 50 | &and ("edx",0xefffffff); # clear hyper-threading bit if not | ||
| 51 | &set_label("done"); | ||
| 52 | &mov ("eax","edx"); | ||
| 53 | &mov ("edx","ecx"); | ||
| 54 | &function_end("OPENSSL_ia32_cpuid"); | ||
| 55 | # (*) on Core2 this value is set to 2 denoting the fact that L2 | ||
| 56 | # cache is shared between cores. | ||
| 57 | |||
| 58 | &external_label("OPENSSL_ia32cap_P"); | ||
| 59 | |||
| 60 | &function_begin_B("OPENSSL_rdtsc","EXTRN\t_OPENSSL_ia32cap_P:DWORD"); | ||
| 61 | &xor ("eax","eax"); | ||
| 62 | &xor ("edx","edx"); | ||
| 63 | &picmeup("ecx","OPENSSL_ia32cap_P"); | ||
| 64 | &bt (&DWP(0,"ecx"),4); | ||
| 65 | &jnc (&label("notsc")); | ||
| 66 | &rdtsc (); | ||
| 67 | &set_label("notsc"); | ||
| 68 | &ret (); | ||
| 69 | &function_end_B("OPENSSL_rdtsc"); | ||
| 70 | |||
| 71 | # This works in Ring 0 only [read DJGPP+MS-DOS+privileged DPMI host], | ||
| 72 | # but it's safe to call it on any [supported] 32-bit platform... | ||
| 73 | # Just check for [non-]zero return value... | ||
| 74 | &function_begin_B("OPENSSL_instrument_halt","EXTRN\t_OPENSSL_ia32cap_P:DWORD"); | ||
| 75 | &picmeup("ecx","OPENSSL_ia32cap_P"); | ||
| 76 | &bt (&DWP(0,"ecx"),4); | ||
| 77 | &jnc (&label("nohalt")); # no TSC | ||
| 78 | |||
| 79 | &data_word(0x9058900e); # push %cs; pop %eax | ||
| 80 | &and ("eax",3); | ||
| 81 | &jnz (&label("nohalt")); # not enough privileges | ||
| 82 | |||
| 83 | &pushf (); | ||
| 84 | &pop ("eax") | ||
| 85 | &bt ("eax",9); | ||
| 86 | &jnc (&label("nohalt")); # interrupts are disabled | ||
| 87 | |||
| 88 | &rdtsc (); | ||
| 89 | &push ("edx"); | ||
| 90 | &push ("eax"); | ||
| 91 | &halt (); | ||
| 92 | &rdtsc (); | ||
| 93 | |||
| 94 | &sub ("eax",&DWP(0,"esp")); | ||
| 95 | &sbb ("edx",&DWP(4,"esp")); | ||
| 96 | &add ("esp",8); | ||
| 97 | &ret (); | ||
| 98 | |||
| 99 | &set_label("nohalt"); | ||
| 100 | &xor ("eax","eax"); | ||
| 101 | &xor ("edx","edx"); | ||
| 102 | &ret (); | ||
| 103 | &function_end_B("OPENSSL_instrument_halt"); | ||
| 104 | |||
| 105 | # Essentially there is only one use for this function. Under DJGPP: | ||
| 106 | # | ||
| 107 | # #include <go32.h> | ||
| 108 | # ... | ||
| 109 | # i=OPENSSL_far_spin(_dos_ds,0x46c); | ||
| 110 | # ... | ||
| 111 | # to obtain the number of spins till closest timer interrupt. | ||
| 112 | |||
| 113 | &function_begin_B("OPENSSL_far_spin"); | ||
| 114 | &pushf (); | ||
| 115 | &pop ("eax") | ||
| 116 | &bt ("eax",9); | ||
| 117 | &jnc (&label("nospin")); # interrupts are disabled | ||
| 118 | |||
| 119 | &mov ("eax",&DWP(4,"esp")); | ||
| 120 | &mov ("ecx",&DWP(8,"esp")); | ||
| 121 | &data_word (0x90d88e1e); # push %ds, mov %eax,%ds | ||
| 122 | &xor ("eax","eax"); | ||
| 123 | &mov ("edx",&DWP(0,"ecx")); | ||
| 124 | &jmp (&label("spin")); | ||
| 125 | |||
| 126 | &align (16); | ||
| 127 | &set_label("spin"); | ||
| 128 | &inc ("eax"); | ||
| 129 | &cmp ("edx",&DWP(0,"ecx")); | ||
| 130 | &je (&label("spin")); | ||
| 131 | |||
| 132 | &data_word (0x1f909090); # pop %ds | ||
| 133 | &ret (); | ||
| 134 | |||
| 135 | &set_label("nospin"); | ||
| 136 | &xor ("eax","eax"); | ||
| 137 | &xor ("edx","edx"); | ||
| 138 | &ret (); | ||
| 139 | &function_end_B("OPENSSL_far_spin"); | ||
| 140 | |||
| 141 | &function_begin_B("OPENSSL_wipe_cpu","EXTRN\t_OPENSSL_ia32cap_P:DWORD"); | ||
| 142 | &xor ("eax","eax"); | ||
| 143 | &xor ("edx","edx"); | ||
| 144 | &picmeup("ecx","OPENSSL_ia32cap_P"); | ||
| 145 | &mov ("ecx",&DWP(0,"ecx")); | ||
| 146 | &bt (&DWP(0,"ecx"),1); | ||
| 147 | &jnc (&label("no_x87")); | ||
| 148 | if ($sse2) { | ||
| 149 | &bt (&DWP(0,"ecx"),26); | ||
| 150 | &jnc (&label("no_sse2")); | ||
| 151 | &pxor ("xmm0","xmm0"); | ||
| 152 | &pxor ("xmm1","xmm1"); | ||
| 153 | &pxor ("xmm2","xmm2"); | ||
| 154 | &pxor ("xmm3","xmm3"); | ||
| 155 | &pxor ("xmm4","xmm4"); | ||
| 156 | &pxor ("xmm5","xmm5"); | ||
| 157 | &pxor ("xmm6","xmm6"); | ||
| 158 | &pxor ("xmm7","xmm7"); | ||
| 159 | &set_label("no_sse2"); | ||
| 160 | } | ||
| 161 | # just a bunch of fldz to zap the fp/mm bank followed by finit... | ||
| 162 | &data_word(0xeed9eed9,0xeed9eed9,0xeed9eed9,0xeed9eed9,0x90e3db9b); | ||
| 163 | &set_label("no_x87"); | ||
| 164 | &lea ("eax",&DWP(4,"esp")); | ||
| 165 | &ret (); | ||
| 166 | &function_end_B("OPENSSL_wipe_cpu"); | ||
| 167 | |||
| 168 | &function_begin_B("OPENSSL_atomic_add"); | ||
| 169 | &mov ("edx",&DWP(4,"esp")); # fetch the pointer, 1st arg | ||
| 170 | &mov ("ecx",&DWP(8,"esp")); # fetch the increment, 2nd arg | ||
| 171 | &push ("ebx"); | ||
| 172 | &nop (); | ||
| 173 | &mov ("eax",&DWP(0,"edx")); | ||
| 174 | &set_label("spin"); | ||
| 175 | &lea ("ebx",&DWP(0,"eax","ecx")); | ||
| 176 | &nop (); | ||
| 177 | &data_word(0x1ab10ff0); # lock; cmpxchg %ebx,(%edx) # %eax is envolved and is always reloaded | ||
| 178 | &jne (&label("spin")); | ||
| 179 | &mov ("eax","ebx"); # OpenSSL expects the new value | ||
| 180 | &pop ("ebx"); | ||
| 181 | &ret (); | ||
| 182 | &function_end_B("OPENSSL_atomic_add"); | ||
| 183 | |||
| 184 | # This function can become handy under Win32 in situations when | ||
| 185 | # we don't know which calling convention, __stdcall or __cdecl(*), | ||
| 186 | # indirect callee is using. In C it can be deployed as | ||
| 187 | # | ||
| 188 | #ifdef OPENSSL_CPUID_OBJ | ||
| 189 | # type OPENSSL_indirect_call(void *f,...); | ||
| 190 | # ... | ||
| 191 | # OPENSSL_indirect_call(func,[up to $max arguments]); | ||
| 192 | #endif | ||
| 193 | # | ||
| 194 | # (*) it's designed to work even for __fastcall if number of | ||
| 195 | # arguments is 1 or 2! | ||
| 196 | &function_begin_B("OPENSSL_indirect_call"); | ||
| 197 | { | ||
| 198 | my $i,$max=7; # $max has to be chosen as 4*n-1 | ||
| 199 | # in order to preserve eventual | ||
| 200 | # stack alignment | ||
| 201 | &push ("ebp"); | ||
| 202 | &mov ("ebp","esp"); | ||
| 203 | &sub ("esp",$max*4); | ||
| 204 | &mov ("ecx",&DWP(12,"ebp")); | ||
| 205 | &mov (&DWP(0,"esp"),"ecx"); | ||
| 206 | &mov ("edx",&DWP(16,"ebp")); | ||
| 207 | &mov (&DWP(4,"esp"),"edx"); | ||
| 208 | for($i=2;$i<$max;$i++) | ||
| 209 | { | ||
| 210 | # Some copies will be redundant/bogus... | ||
| 211 | &mov ("eax",&DWP(12+$i*4,"ebp")); | ||
| 212 | &mov (&DWP(0+$i*4,"esp"),"eax"); | ||
| 213 | } | ||
| 214 | &call_ptr (&DWP(8,"ebp"));# make the call... | ||
| 215 | &mov ("esp","ebp"); # ... and just restore the stack pointer | ||
| 216 | # without paying attention to what we called, | ||
| 217 | # (__cdecl *func) or (__stdcall *one). | ||
| 218 | &pop ("ebp"); | ||
| 219 | &ret (); | ||
| 220 | } | ||
| 221 | &function_end_B("OPENSSL_indirect_call"); | ||
| 222 | |||
| 223 | &initseg("OPENSSL_cpuid_setup"); | ||
| 224 | |||
| 225 | &asm_finish(); | ||
diff --git a/src/lib/libssl/src/demos/ssltest-ecc/ECC-RSAcertgen.sh b/src/lib/libssl/src/demos/ssltest-ecc/ECC-RSAcertgen.sh new file mode 100755 index 0000000000..b31a4f1ee0 --- /dev/null +++ b/src/lib/libssl/src/demos/ssltest-ecc/ECC-RSAcertgen.sh | |||
| @@ -0,0 +1,98 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | |||
| 3 | # For a list of supported curves, use "apps/openssl ecparam -list_curves". | ||
| 4 | |||
| 5 | # Path to the openssl distribution | ||
| 6 | OPENSSL_DIR=../.. | ||
| 7 | # Path to the openssl program | ||
| 8 | OPENSSL_CMD=$OPENSSL_DIR/apps/openssl | ||
| 9 | # Option to find configuration file | ||
| 10 | OPENSSL_CNF="-config $OPENSSL_DIR/apps/openssl.cnf" | ||
| 11 | # Directory where certificates are stored | ||
| 12 | CERTS_DIR=./Certs | ||
| 13 | # Directory where private key files are stored | ||
| 14 | KEYS_DIR=$CERTS_DIR | ||
| 15 | # Directory where combo files (containing a certificate and corresponding | ||
| 16 | # private key together) are stored | ||
| 17 | COMBO_DIR=$CERTS_DIR | ||
| 18 | # cat command | ||
| 19 | CAT=/bin/cat | ||
| 20 | # rm command | ||
| 21 | RM=/bin/rm | ||
| 22 | # mkdir command | ||
| 23 | MKDIR=/bin/mkdir | ||
| 24 | # The certificate will expire these many days after the issue date. | ||
| 25 | DAYS=1500 | ||
| 26 | TEST_CA_FILE=rsa1024TestCA | ||
| 27 | |||
| 28 | TEST_SERVER_CURVE=sect163r1 | ||
| 29 | TEST_SERVER_FILE=sect163r1-rsaTestServer | ||
| 30 | TEST_SERVER_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test Server (sect163r1 key signed with RSA)" | ||
| 31 | |||
| 32 | TEST_CLIENT_CURVE=sect163r1 | ||
| 33 | TEST_CLIENT_FILE=sect163r1-rsaTestClient | ||
| 34 | TEST_CLIENT_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test Client (sect163r1 key signed with RSA)" | ||
| 35 | |||
| 36 | # Generating an EC certificate involves the following main steps | ||
| 37 | # 1. Generating curve parameters (if needed) | ||
| 38 | # 2. Generating a certificate request | ||
| 39 | # 3. Signing the certificate request | ||
| 40 | # 4. [Optional] One can combine the cert and private key into a single | ||
| 41 | # file and also delete the certificate request | ||
| 42 | |||
| 43 | $MKDIR -p $CERTS_DIR | ||
| 44 | $MKDIR -p $KEYS_DIR | ||
| 45 | $MKDIR -p $COMBO_DIR | ||
| 46 | |||
| 47 | echo "GENERATING A TEST SERVER CERTIFICATE (ECC key signed with RSA)" | ||
| 48 | echo "==============================================================" | ||
| 49 | $OPENSSL_CMD ecparam -name $TEST_SERVER_CURVE -out $TEST_SERVER_CURVE.pem | ||
| 50 | |||
| 51 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_SERVER_DN" \ | ||
| 52 | -keyout $KEYS_DIR/$TEST_SERVER_FILE.key.pem \ | ||
| 53 | -newkey ec:$TEST_SERVER_CURVE.pem -new \ | ||
| 54 | -out $CERTS_DIR/$TEST_SERVER_FILE.req.pem | ||
| 55 | |||
| 56 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 57 | -in $CERTS_DIR/$TEST_SERVER_FILE.req.pem \ | ||
| 58 | -CA $CERTS_DIR/$TEST_CA_FILE.cert.pem \ | ||
| 59 | -CAkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 60 | -out $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -CAcreateserial | ||
| 61 | |||
| 62 | # Display the certificate | ||
| 63 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -text | ||
| 64 | |||
| 65 | # Place the certificate and key in a common file | ||
| 66 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -issuer -subject \ | ||
| 67 | > $COMBO_DIR/$TEST_SERVER_FILE.pem | ||
| 68 | $CAT $KEYS_DIR/$TEST_SERVER_FILE.key.pem >> $COMBO_DIR/$TEST_SERVER_FILE.pem | ||
| 69 | |||
| 70 | # Remove the cert request file (no longer needed) | ||
| 71 | $RM $CERTS_DIR/$TEST_SERVER_FILE.req.pem | ||
| 72 | |||
| 73 | echo "GENERATING A TEST CLIENT CERTIFICATE (ECC key signed with RSA)" | ||
| 74 | echo "==============================================================" | ||
| 75 | $OPENSSL_CMD ecparam -name $TEST_CLIENT_CURVE -out $TEST_CLIENT_CURVE.pem | ||
| 76 | |||
| 77 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_CLIENT_DN" \ | ||
| 78 | -keyout $KEYS_DIR/$TEST_CLIENT_FILE.key.pem \ | ||
| 79 | -newkey ec:$TEST_CLIENT_CURVE.pem -new \ | ||
| 80 | -out $CERTS_DIR/$TEST_CLIENT_FILE.req.pem | ||
| 81 | |||
| 82 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 83 | -in $CERTS_DIR/$TEST_CLIENT_FILE.req.pem \ | ||
| 84 | -CA $CERTS_DIR/$TEST_CA_FILE.cert.pem \ | ||
| 85 | -CAkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 86 | -out $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -CAcreateserial | ||
| 87 | |||
| 88 | # Display the certificate | ||
| 89 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -text | ||
| 90 | |||
| 91 | # Place the certificate and key in a common file | ||
| 92 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -issuer -subject \ | ||
| 93 | > $COMBO_DIR/$TEST_CLIENT_FILE.pem | ||
| 94 | $CAT $KEYS_DIR/$TEST_CLIENT_FILE.key.pem >> $COMBO_DIR/$TEST_CLIENT_FILE.pem | ||
| 95 | |||
| 96 | # Remove the cert request file (no longer needed) | ||
| 97 | $RM $CERTS_DIR/$TEST_CLIENT_FILE.req.pem | ||
| 98 | |||
diff --git a/src/lib/libssl/src/demos/ssltest-ecc/ECCcertgen.sh b/src/lib/libssl/src/demos/ssltest-ecc/ECCcertgen.sh new file mode 100755 index 0000000000..a47b8bb0b5 --- /dev/null +++ b/src/lib/libssl/src/demos/ssltest-ecc/ECCcertgen.sh | |||
| @@ -0,0 +1,164 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | |||
| 3 | # For a list of supported curves, use "apps/openssl ecparam -list_curves". | ||
| 4 | |||
| 5 | # Path to the openssl distribution | ||
| 6 | OPENSSL_DIR=../.. | ||
| 7 | # Path to the openssl program | ||
| 8 | OPENSSL_CMD=$OPENSSL_DIR/apps/openssl | ||
| 9 | # Option to find configuration file | ||
| 10 | OPENSSL_CNF="-config $OPENSSL_DIR/apps/openssl.cnf" | ||
| 11 | # Directory where certificates are stored | ||
| 12 | CERTS_DIR=./Certs | ||
| 13 | # Directory where private key files are stored | ||
| 14 | KEYS_DIR=$CERTS_DIR | ||
| 15 | # Directory where combo files (containing a certificate and corresponding | ||
| 16 | # private key together) are stored | ||
| 17 | COMBO_DIR=$CERTS_DIR | ||
| 18 | # cat command | ||
| 19 | CAT=/bin/cat | ||
| 20 | # rm command | ||
| 21 | RM=/bin/rm | ||
| 22 | # mkdir command | ||
| 23 | MKDIR=/bin/mkdir | ||
| 24 | # The certificate will expire these many days after the issue date. | ||
| 25 | DAYS=1500 | ||
| 26 | TEST_CA_CURVE=secp160r1 | ||
| 27 | TEST_CA_FILE=secp160r1TestCA | ||
| 28 | TEST_CA_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test CA (Elliptic curve secp160r1)" | ||
| 29 | |||
| 30 | TEST_SERVER_CURVE=secp160r2 | ||
| 31 | TEST_SERVER_FILE=secp160r2TestServer | ||
| 32 | TEST_SERVER_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test Server (Elliptic curve secp160r2)" | ||
| 33 | |||
| 34 | TEST_CLIENT_CURVE=secp160r2 | ||
| 35 | TEST_CLIENT_FILE=secp160r2TestClient | ||
| 36 | TEST_CLIENT_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test Client (Elliptic curve secp160r2)" | ||
| 37 | |||
| 38 | # Generating an EC certificate involves the following main steps | ||
| 39 | # 1. Generating curve parameters (if needed) | ||
| 40 | # 2. Generating a certificate request | ||
| 41 | # 3. Signing the certificate request | ||
| 42 | # 4. [Optional] One can combine the cert and private key into a single | ||
| 43 | # file and also delete the certificate request | ||
| 44 | |||
| 45 | $MKDIR -p $CERTS_DIR | ||
| 46 | $MKDIR -p $KEYS_DIR | ||
| 47 | $MKDIR -p $COMBO_DIR | ||
| 48 | |||
| 49 | echo "Generating self-signed CA certificate (on curve $TEST_CA_CURVE)" | ||
| 50 | echo "===============================================================" | ||
| 51 | $OPENSSL_CMD ecparam -name $TEST_CA_CURVE -out $TEST_CA_CURVE.pem | ||
| 52 | |||
| 53 | # Generate a new certificate request in $TEST_CA_FILE.req.pem. A | ||
| 54 | # new ecdsa (actually ECC) key pair is generated on the parameters in | ||
| 55 | # $TEST_CA_CURVE.pem and the private key is saved in $TEST_CA_FILE.key.pem | ||
| 56 | # WARNING: By using the -nodes option, we force the private key to be | ||
| 57 | # stored in the clear (rather than encrypted with a password). | ||
| 58 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_CA_DN" \ | ||
| 59 | -keyout $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 60 | -newkey ec:$TEST_CA_CURVE.pem -new \ | ||
| 61 | -out $CERTS_DIR/$TEST_CA_FILE.req.pem | ||
| 62 | |||
| 63 | # Sign the certificate request in $TEST_CA_FILE.req.pem using the | ||
| 64 | # private key in $TEST_CA_FILE.key.pem and include the CA extension. | ||
| 65 | # Make the certificate valid for 1500 days from the time of signing. | ||
| 66 | # The certificate is written into $TEST_CA_FILE.cert.pem | ||
| 67 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 68 | -in $CERTS_DIR/$TEST_CA_FILE.req.pem \ | ||
| 69 | -extfile $OPENSSL_DIR/apps/openssl.cnf \ | ||
| 70 | -extensions v3_ca \ | ||
| 71 | -signkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 72 | -out $CERTS_DIR/$TEST_CA_FILE.cert.pem | ||
| 73 | |||
| 74 | # Display the certificate | ||
| 75 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CA_FILE.cert.pem -text | ||
| 76 | |||
| 77 | # Place the certificate and key in a common file | ||
| 78 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CA_FILE.cert.pem -issuer -subject \ | ||
| 79 | > $COMBO_DIR/$TEST_CA_FILE.pem | ||
| 80 | $CAT $KEYS_DIR/$TEST_CA_FILE.key.pem >> $COMBO_DIR/$TEST_CA_FILE.pem | ||
| 81 | |||
| 82 | # Remove the cert request file (no longer needed) | ||
| 83 | $RM $CERTS_DIR/$TEST_CA_FILE.req.pem | ||
| 84 | |||
| 85 | echo "GENERATING A TEST SERVER CERTIFICATE (on elliptic curve $TEST_SERVER_CURVE)" | ||
| 86 | echo "==========================================================================" | ||
| 87 | # Generate parameters for curve $TEST_SERVER_CURVE, if needed | ||
| 88 | $OPENSSL_CMD ecparam -name $TEST_SERVER_CURVE -out $TEST_SERVER_CURVE.pem | ||
| 89 | |||
| 90 | # Generate a new certificate request in $TEST_SERVER_FILE.req.pem. A | ||
| 91 | # new ecdsa (actually ECC) key pair is generated on the parameters in | ||
| 92 | # $TEST_SERVER_CURVE.pem and the private key is saved in | ||
| 93 | # $TEST_SERVER_FILE.key.pem | ||
| 94 | # WARNING: By using the -nodes option, we force the private key to be | ||
| 95 | # stored in the clear (rather than encrypted with a password). | ||
| 96 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_SERVER_DN" \ | ||
| 97 | -keyout $KEYS_DIR/$TEST_SERVER_FILE.key.pem \ | ||
| 98 | -newkey ec:$TEST_SERVER_CURVE.pem -new \ | ||
| 99 | -out $CERTS_DIR/$TEST_SERVER_FILE.req.pem | ||
| 100 | |||
| 101 | # Sign the certificate request in $TEST_SERVER_FILE.req.pem using the | ||
| 102 | # CA certificate in $TEST_CA_FILE.cert.pem and the CA private key in | ||
| 103 | # $TEST_CA_FILE.key.pem. Since we do not have an existing serial number | ||
| 104 | # file for this CA, create one. Make the certificate valid for $DAYS days | ||
| 105 | # from the time of signing. The certificate is written into | ||
| 106 | # $TEST_SERVER_FILE.cert.pem | ||
| 107 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 108 | -in $CERTS_DIR/$TEST_SERVER_FILE.req.pem \ | ||
| 109 | -CA $CERTS_DIR/$TEST_CA_FILE.cert.pem \ | ||
| 110 | -CAkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 111 | -out $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -CAcreateserial | ||
| 112 | |||
| 113 | # Display the certificate | ||
| 114 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -text | ||
| 115 | |||
| 116 | # Place the certificate and key in a common file | ||
| 117 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -issuer -subject \ | ||
| 118 | > $COMBO_DIR/$TEST_SERVER_FILE.pem | ||
| 119 | $CAT $KEYS_DIR/$TEST_SERVER_FILE.key.pem >> $COMBO_DIR/$TEST_SERVER_FILE.pem | ||
| 120 | |||
| 121 | # Remove the cert request file (no longer needed) | ||
| 122 | $RM $CERTS_DIR/$TEST_SERVER_FILE.req.pem | ||
| 123 | |||
| 124 | echo "GENERATING A TEST CLIENT CERTIFICATE (on elliptic curve $TEST_CLIENT_CURVE)" | ||
| 125 | echo "==========================================================================" | ||
| 126 | # Generate parameters for curve $TEST_CLIENT_CURVE, if needed | ||
| 127 | $OPENSSL_CMD ecparam -name $TEST_CLIENT_CURVE -out $TEST_CLIENT_CURVE.pem | ||
| 128 | |||
| 129 | # Generate a new certificate request in $TEST_CLIENT_FILE.req.pem. A | ||
| 130 | # new ecdsa (actually ECC) key pair is generated on the parameters in | ||
| 131 | # $TEST_CLIENT_CURVE.pem and the private key is saved in | ||
| 132 | # $TEST_CLIENT_FILE.key.pem | ||
| 133 | # WARNING: By using the -nodes option, we force the private key to be | ||
| 134 | # stored in the clear (rather than encrypted with a password). | ||
| 135 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_CLIENT_DN" \ | ||
| 136 | -keyout $KEYS_DIR/$TEST_CLIENT_FILE.key.pem \ | ||
| 137 | -newkey ec:$TEST_CLIENT_CURVE.pem -new \ | ||
| 138 | -out $CERTS_DIR/$TEST_CLIENT_FILE.req.pem | ||
| 139 | |||
| 140 | # Sign the certificate request in $TEST_CLIENT_FILE.req.pem using the | ||
| 141 | # CA certificate in $TEST_CA_FILE.cert.pem and the CA private key in | ||
| 142 | # $TEST_CA_FILE.key.pem. Since we do not have an existing serial number | ||
| 143 | # file for this CA, create one. Make the certificate valid for $DAYS days | ||
| 144 | # from the time of signing. The certificate is written into | ||
| 145 | # $TEST_CLIENT_FILE.cert.pem | ||
| 146 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 147 | -in $CERTS_DIR/$TEST_CLIENT_FILE.req.pem \ | ||
| 148 | -CA $CERTS_DIR/$TEST_CA_FILE.cert.pem \ | ||
| 149 | -CAkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 150 | -out $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -CAcreateserial | ||
| 151 | |||
| 152 | # Display the certificate | ||
| 153 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -text | ||
| 154 | |||
| 155 | # Place the certificate and key in a common file | ||
| 156 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -issuer -subject \ | ||
| 157 | > $COMBO_DIR/$TEST_CLIENT_FILE.pem | ||
| 158 | $CAT $KEYS_DIR/$TEST_CLIENT_FILE.key.pem >> $COMBO_DIR/$TEST_CLIENT_FILE.pem | ||
| 159 | |||
| 160 | # Remove the cert request file (no longer needed) | ||
| 161 | $RM $CERTS_DIR/$TEST_CLIENT_FILE.req.pem | ||
| 162 | |||
| 163 | |||
| 164 | |||
diff --git a/src/lib/libssl/src/demos/ssltest-ecc/README b/src/lib/libssl/src/demos/ssltest-ecc/README new file mode 100644 index 0000000000..71c070af16 --- /dev/null +++ b/src/lib/libssl/src/demos/ssltest-ecc/README | |||
| @@ -0,0 +1,15 @@ | |||
| 1 | Scripts for using ECC ciphersuites with test/testssl | ||
| 2 | (these ciphersuites are described in the Internet Draft available at | ||
| 3 | http://www.ietf.org/internet-drafts/draft-ietf-tls-ecc-03.txt). | ||
| 4 | |||
| 5 | Use ECCcertgen.sh, RSAcertgen.sh, ECC-RSAcertgen.sh to generate | ||
| 6 | root, client and server certs of the following types: | ||
| 7 | |||
| 8 | ECC certs signed with ECDSA | ||
| 9 | RSA certs signed with RSA | ||
| 10 | ECC certs signed with RSA | ||
| 11 | |||
| 12 | Afterwards, you can use ssltest.sh to run the various tests; | ||
| 13 | specify one of the following options: | ||
| 14 | |||
| 15 | aecdh, ecdh-ecdsa, ecdhe-ecdsa, ecdh-rsa, ecdhe-rsa | ||
diff --git a/src/lib/libssl/src/demos/ssltest-ecc/RSAcertgen.sh b/src/lib/libssl/src/demos/ssltest-ecc/RSAcertgen.sh new file mode 100755 index 0000000000..0cb0153596 --- /dev/null +++ b/src/lib/libssl/src/demos/ssltest-ecc/RSAcertgen.sh | |||
| @@ -0,0 +1,121 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | |||
| 3 | # For a list of supported curves, use "apps/openssl ecparam -list_curves". | ||
| 4 | |||
| 5 | # Path to the openssl distribution | ||
| 6 | OPENSSL_DIR=../.. | ||
| 7 | # Path to the openssl program | ||
| 8 | OPENSSL_CMD=$OPENSSL_DIR/apps/openssl | ||
| 9 | # Option to find configuration file | ||
| 10 | OPENSSL_CNF="-config $OPENSSL_DIR/apps/openssl.cnf" | ||
| 11 | # Directory where certificates are stored | ||
| 12 | CERTS_DIR=./Certs | ||
| 13 | # Directory where private key files are stored | ||
| 14 | KEYS_DIR=$CERTS_DIR | ||
| 15 | # Directory where combo files (containing a certificate and corresponding | ||
| 16 | # private key together) are stored | ||
| 17 | COMBO_DIR=$CERTS_DIR | ||
| 18 | # cat command | ||
| 19 | CAT=/bin/cat | ||
| 20 | # rm command | ||
| 21 | RM=/bin/rm | ||
| 22 | # mkdir command | ||
| 23 | MKDIR=/bin/mkdir | ||
| 24 | # The certificate will expire these many days after the issue date. | ||
| 25 | DAYS=1500 | ||
| 26 | TEST_CA_FILE=rsa1024TestCA | ||
| 27 | TEST_CA_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test CA (1024 bit RSA)" | ||
| 28 | |||
| 29 | TEST_SERVER_FILE=rsa1024TestServer | ||
| 30 | TEST_SERVER_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test Server (1024 bit RSA)" | ||
| 31 | |||
| 32 | TEST_CLIENT_FILE=rsa1024TestClient | ||
| 33 | TEST_CLIENT_DN="/C=US/ST=CA/L=Mountain View/O=Sun Microsystems, Inc./OU=Sun Microsystems Laboratories/CN=Test Client (1024 bit RSA)" | ||
| 34 | |||
| 35 | # Generating an EC certificate involves the following main steps | ||
| 36 | # 1. Generating curve parameters (if needed) | ||
| 37 | # 2. Generating a certificate request | ||
| 38 | # 3. Signing the certificate request | ||
| 39 | # 4. [Optional] One can combine the cert and private key into a single | ||
| 40 | # file and also delete the certificate request | ||
| 41 | |||
| 42 | $MKDIR -p $CERTS_DIR | ||
| 43 | $MKDIR -p $KEYS_DIR | ||
| 44 | $MKDIR -p $COMBO_DIR | ||
| 45 | |||
| 46 | echo "Generating self-signed CA certificate (RSA)" | ||
| 47 | echo "===========================================" | ||
| 48 | |||
| 49 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_CA_DN" \ | ||
| 50 | -keyout $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 51 | -newkey rsa:1024 -new \ | ||
| 52 | -out $CERTS_DIR/$TEST_CA_FILE.req.pem | ||
| 53 | |||
| 54 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 55 | -in $CERTS_DIR/$TEST_CA_FILE.req.pem \ | ||
| 56 | -extfile $OPENSSL_DIR/apps/openssl.cnf \ | ||
| 57 | -extensions v3_ca \ | ||
| 58 | -signkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 59 | -out $CERTS_DIR/$TEST_CA_FILE.cert.pem | ||
| 60 | |||
| 61 | # Display the certificate | ||
| 62 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CA_FILE.cert.pem -text | ||
| 63 | |||
| 64 | # Place the certificate and key in a common file | ||
| 65 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CA_FILE.cert.pem -issuer -subject \ | ||
| 66 | > $COMBO_DIR/$TEST_CA_FILE.pem | ||
| 67 | $CAT $KEYS_DIR/$TEST_CA_FILE.key.pem >> $COMBO_DIR/$TEST_CA_FILE.pem | ||
| 68 | |||
| 69 | # Remove the cert request file (no longer needed) | ||
| 70 | $RM $CERTS_DIR/$TEST_CA_FILE.req.pem | ||
| 71 | |||
| 72 | echo "GENERATING A TEST SERVER CERTIFICATE (RSA)" | ||
| 73 | echo "==========================================" | ||
| 74 | |||
| 75 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_SERVER_DN" \ | ||
| 76 | -keyout $KEYS_DIR/$TEST_SERVER_FILE.key.pem \ | ||
| 77 | -newkey rsa:1024 -new \ | ||
| 78 | -out $CERTS_DIR/$TEST_SERVER_FILE.req.pem | ||
| 79 | |||
| 80 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 81 | -in $CERTS_DIR/$TEST_SERVER_FILE.req.pem \ | ||
| 82 | -CA $CERTS_DIR/$TEST_CA_FILE.cert.pem \ | ||
| 83 | -CAkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 84 | -out $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -CAcreateserial | ||
| 85 | |||
| 86 | # Display the certificate | ||
| 87 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -text | ||
| 88 | |||
| 89 | # Place the certificate and key in a common file | ||
| 90 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_SERVER_FILE.cert.pem -issuer -subject \ | ||
| 91 | > $COMBO_DIR/$TEST_SERVER_FILE.pem | ||
| 92 | $CAT $KEYS_DIR/$TEST_SERVER_FILE.key.pem >> $COMBO_DIR/$TEST_SERVER_FILE.pem | ||
| 93 | |||
| 94 | # Remove the cert request file (no longer needed) | ||
| 95 | $RM $CERTS_DIR/$TEST_SERVER_FILE.req.pem | ||
| 96 | |||
| 97 | echo "GENERATING A TEST CLIENT CERTIFICATE (RSA)" | ||
| 98 | echo "==========================================" | ||
| 99 | |||
| 100 | $OPENSSL_CMD req $OPENSSL_CNF -nodes -subj "$TEST_CLIENT_DN" \ | ||
| 101 | -keyout $KEYS_DIR/$TEST_CLIENT_FILE.key.pem \ | ||
| 102 | -newkey rsa:1024 -new \ | ||
| 103 | -out $CERTS_DIR/$TEST_CLIENT_FILE.req.pem | ||
| 104 | |||
| 105 | $OPENSSL_CMD x509 -req -days $DAYS \ | ||
| 106 | -in $CERTS_DIR/$TEST_CLIENT_FILE.req.pem \ | ||
| 107 | -CA $CERTS_DIR/$TEST_CA_FILE.cert.pem \ | ||
| 108 | -CAkey $KEYS_DIR/$TEST_CA_FILE.key.pem \ | ||
| 109 | -out $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -CAcreateserial | ||
| 110 | |||
| 111 | # Display the certificate | ||
| 112 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -text | ||
| 113 | |||
| 114 | # Place the certificate and key in a common file | ||
| 115 | $OPENSSL_CMD x509 -in $CERTS_DIR/$TEST_CLIENT_FILE.cert.pem -issuer -subject \ | ||
| 116 | > $COMBO_DIR/$TEST_CLIENT_FILE.pem | ||
| 117 | $CAT $KEYS_DIR/$TEST_CLIENT_FILE.key.pem >> $COMBO_DIR/$TEST_CLIENT_FILE.pem | ||
| 118 | |||
| 119 | # Remove the cert request file (no longer needed) | ||
| 120 | $RM $CERTS_DIR/$TEST_CLIENT_FILE.req.pem | ||
| 121 | |||
diff --git a/src/lib/libssl/src/demos/ssltest-ecc/ssltest.sh b/src/lib/libssl/src/demos/ssltest-ecc/ssltest.sh new file mode 100755 index 0000000000..923ca43824 --- /dev/null +++ b/src/lib/libssl/src/demos/ssltest-ecc/ssltest.sh | |||
| @@ -0,0 +1,188 @@ | |||
| 1 | #! /bin/sh | ||
| 2 | # Tests ECC cipher suites using ssltest. Requires one argument which could | ||
| 3 | # be aecdh or ecdh-ecdsa or ecdhe-ecdsa or ecdh-rsa or ecdhe-rsa. | ||
| 4 | # A second optional argument can be one of ssl2 ssl3 or tls1 | ||
| 5 | |||
| 6 | if [ "$1" = "" ]; then | ||
| 7 | (echo "Usage: $0 test [ protocol ]" | ||
| 8 | echo " where test is one of aecdh, ecdh-ecdsa, ecdhe-ecdsa, ecdh-rsa, ecdhe-rsa" | ||
| 9 | echo " and protocol (optional) is one of ssl2, ssl3, tls1" | ||
| 10 | echo "Run RSAcertgen.sh, ECC-RSAcertgen.sh, ECCcertgen.sh first." | ||
| 11 | ) >&2 | ||
| 12 | exit 1 | ||
| 13 | fi | ||
| 14 | |||
| 15 | |||
| 16 | OPENSSL_DIR=../.. | ||
| 17 | CERTS_DIR=./Certs | ||
| 18 | SSLTEST=$OPENSSL_DIR/test/ssltest | ||
| 19 | # SSL protocol version to test (one of ssl2 ssl3 or tls1)" | ||
| 20 | SSLVERSION= | ||
| 21 | |||
| 22 | # These don't really require any certificates | ||
| 23 | AECDH_CIPHER_LIST="AECDH-AES256-SHA AECDH-AES128-SHA AECDH-DES-CBC3-SHA AECDH-RC4-SHA AECDH-NULL-SHA" | ||
| 24 | |||
| 25 | # These require ECC certificates signed with ECDSA | ||
| 26 | # The EC public key must be authorized for key agreement. | ||
| 27 | ECDH_ECDSA_CIPHER_LIST="ECDH-ECDSA-AES256-SHA ECDH-ECDSA-AES128-SHA ECDH-ECDSA-DES-CBC3-SHA ECDH-ECDSA-RC4-SHA ECDH-ECDSA-NULL-SHA" | ||
| 28 | |||
| 29 | # These require ECC certificates. | ||
| 30 | # The EC public key must be authorized for digital signature. | ||
| 31 | ECDHE_ECDSA_CIPHER_LIST="ECDHE-ECDSA-AES256-SHA ECDHE-ECDSA-AES128-SHA ECDHE-ECDSA-DES-CBC3-SHA ECDHE-ECDSA-RC4-SHA ECDHE-ECDSA-NULL-SHA" | ||
| 32 | |||
| 33 | # These require ECC certificates signed with RSA. | ||
| 34 | # The EC public key must be authorized for key agreement. | ||
| 35 | ECDH_RSA_CIPHER_LIST="ECDH-RSA-AES256-SHA ECDH-RSA-AES128-SHA ECDH-RSA-DES-CBC3-SHA ECDH-RSA-RC4-SHA ECDH-RSA-NULL-SHA" | ||
| 36 | |||
| 37 | # These require RSA certificates. | ||
| 38 | # The RSA public key must be authorized for digital signature. | ||
| 39 | ECDHE_RSA_CIPHER_LIST="ECDHE-RSA-AES256-SHA ECDHE-RSA-AES128-SHA ECDHE-RSA-DES-CBC3-SHA ECDHE-RSA-RC4-SHA ECDHE-RSA-NULL-SHA" | ||
| 40 | |||
| 41 | # List of Elliptic curves over which we wish to test generation of | ||
| 42 | # ephemeral ECDH keys when using AECDH or ECDHE ciphers | ||
| 43 | # NOTE: secp192r1 = prime192v1 and secp256r1 = prime256v1 | ||
| 44 | #ELLIPTIC_CURVE_LIST="secp112r1 sect113r2 secp128r1 sect131r1 secp160k1 sect163r2 wap-wsg-idm-ecid-wtls7 c2pnb163v3 c2pnb176v3 c2tnb191v3 secp192r1 prime192v3 sect193r2 secp224r1 wap-wsg-idm-ecid-wtls10 sect239k1 prime239v2 secp256r1 prime256v1 sect283k1 secp384r1 sect409r1 secp521r1 sect571r1" | ||
| 45 | ELLIPTIC_CURVE_LIST="sect163k1 sect163r1 sect163r2 sect193r1 sect193r2 sect233k1 sect233r1 sect239k1 sect283k1 sect283r1 sect409k1 sect409r1 sect571k1 sect571r1 secp160k1 secp160r1 secp160r2 secp192k1 prime192v1 secp224k1 secp224r1 secp256k1 prime256v1 secp384r1 secp521r1" | ||
| 46 | |||
| 47 | DEFAULT_CURVE="sect163r2" | ||
| 48 | |||
| 49 | if [ "$2" = "" ]; then | ||
| 50 | if [ "$SSL_VERSION" = "" ]; then | ||
| 51 | SSL_VERSION="" | ||
| 52 | else | ||
| 53 | SSL_VERSION="-$SSL_VERSION" | ||
| 54 | fi | ||
| 55 | else | ||
| 56 | SSL_VERSION="-$2" | ||
| 57 | fi | ||
| 58 | |||
| 59 | #============================================================== | ||
| 60 | # Anonymous cipher suites do not require key or certificate files | ||
| 61 | # but ssltest expects a cert file and complains if it can't | ||
| 62 | # open the default one. | ||
| 63 | SERVER_PEM=$OPENSSL_DIR/apps/server.pem | ||
| 64 | |||
| 65 | if [ "$1" = "aecdh" ]; then | ||
| 66 | for cipher in $AECDH_CIPHER_LIST | ||
| 67 | do | ||
| 68 | echo "Testing $cipher" | ||
| 69 | $SSLTEST $SSL_VERSION -cert $SERVER_PEM -cipher $cipher | ||
| 70 | done | ||
| 71 | #-------------------------------------------------------------- | ||
| 72 | for curve in $ELLIPTIC_CURVE_LIST | ||
| 73 | do | ||
| 74 | echo "Testing AECDH-NULL-SHA (with $curve)" | ||
| 75 | $SSLTEST $SSL_VERSION -cert $SERVER_PEM \ | ||
| 76 | -named_curve $curve -cipher AECDH-NULL-SHA | ||
| 77 | done | ||
| 78 | |||
| 79 | for curve in $ELLIPTIC_CURVE_LIST | ||
| 80 | do | ||
| 81 | echo "Testing AECDH-RC4-SHA (with $curve)" | ||
| 82 | $SSLTEST $SSL_VERSION -cert $SERVER_PEM \ | ||
| 83 | -named_curve $curve -cipher AECDH-RC4-SHA | ||
| 84 | done | ||
| 85 | fi | ||
| 86 | |||
| 87 | #============================================================== | ||
| 88 | # Both ECDH-ECDSA and ECDHE-ECDSA cipher suites require | ||
| 89 | # the server to have an ECC certificate signed with ECDSA. | ||
| 90 | CA_PEM=$CERTS_DIR/secp160r1TestCA.pem | ||
| 91 | SERVER_PEM=$CERTS_DIR/secp160r2TestServer.pem | ||
| 92 | CLIENT_PEM=$CERTS_DIR/secp160r2TestClient.pem | ||
| 93 | |||
| 94 | if [ "$1" = "ecdh-ecdsa" ]; then | ||
| 95 | for cipher in $ECDH_ECDSA_CIPHER_LIST | ||
| 96 | do | ||
| 97 | echo "Testing $cipher (with server authentication)" | ||
| 98 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 99 | -cert $SERVER_PEM -server_auth \ | ||
| 100 | -cipher $cipher | ||
| 101 | |||
| 102 | echo "Testing $cipher (with server and client authentication)" | ||
| 103 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 104 | -cert $SERVER_PEM -server_auth \ | ||
| 105 | -c_cert $CLIENT_PEM -client_auth \ | ||
| 106 | -cipher $cipher | ||
| 107 | done | ||
| 108 | fi | ||
| 109 | |||
| 110 | #============================================================== | ||
| 111 | if [ "$1" = "ecdhe-ecdsa" ]; then | ||
| 112 | for cipher in $ECDHE_ECDSA_CIPHER_LIST | ||
| 113 | do | ||
| 114 | echo "Testing $cipher (with server authentication)" | ||
| 115 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 116 | -cert $SERVER_PEM -server_auth \ | ||
| 117 | -cipher $cipher -named_curve $DEFAULT_CURVE | ||
| 118 | |||
| 119 | echo "Testing $cipher (with server and client authentication)" | ||
| 120 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 121 | -cert $SERVER_PEM -server_auth \ | ||
| 122 | -c_cert $CLIENT_PEM -client_auth \ | ||
| 123 | -cipher $cipher -named_curve $DEFAULT_CURVE | ||
| 124 | done | ||
| 125 | |||
| 126 | #-------------------------------------------------------------- | ||
| 127 | for curve in $ELLIPTIC_CURVE_LIST | ||
| 128 | do | ||
| 129 | echo "Testing ECDHE-ECDSA-AES128-SHA (2-way auth with $curve)" | ||
| 130 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 131 | -cert $SERVER_PEM -server_auth \ | ||
| 132 | -c_cert $CLIENT_PEM -client_auth \ | ||
| 133 | -cipher ECDHE-ECDSA-AES128-SHA -named_curve $curve | ||
| 134 | done | ||
| 135 | fi | ||
| 136 | |||
| 137 | #============================================================== | ||
| 138 | # ECDH-RSA cipher suites require the server to have an ECC | ||
| 139 | # certificate signed with RSA. | ||
| 140 | CA_PEM=$CERTS_DIR/rsa1024TestCA.pem | ||
| 141 | SERVER_PEM=$CERTS_DIR/sect163r1-rsaTestServer.pem | ||
| 142 | CLIENT_PEM=$CERTS_DIR/sect163r1-rsaTestClient.pem | ||
| 143 | |||
| 144 | if [ "$1" = "ecdh-rsa" ]; then | ||
| 145 | for cipher in $ECDH_RSA_CIPHER_LIST | ||
| 146 | do | ||
| 147 | echo "Testing $cipher (with server authentication)" | ||
| 148 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 149 | -cert $SERVER_PEM -server_auth \ | ||
| 150 | -cipher $cipher | ||
| 151 | |||
| 152 | echo "Testing $cipher (with server and client authentication)" | ||
| 153 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 154 | -cert $SERVER_PEM -server_auth \ | ||
| 155 | -c_cert $CLIENT_PEM -client_auth \ | ||
| 156 | -cipher $cipher | ||
| 157 | done | ||
| 158 | fi | ||
| 159 | |||
| 160 | #============================================================== | ||
| 161 | # ECDHE-RSA cipher suites require the server to have an RSA cert. | ||
| 162 | CA_PEM=$CERTS_DIR/rsa1024TestCA.pem | ||
| 163 | SERVER_PEM=$CERTS_DIR/rsa1024TestServer.pem | ||
| 164 | CLIENT_PEM=$CERTS_DIR/rsa1024TestClient.pem | ||
| 165 | |||
| 166 | if [ "$1" = "ecdhe-rsa" ]; then | ||
| 167 | for cipher in $ECDHE_RSA_CIPHER_LIST | ||
| 168 | do | ||
| 169 | echo "Testing $cipher (with server authentication)" | ||
| 170 | echo $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 171 | -cert $SERVER_PEM -server_auth \ | ||
| 172 | -cipher $cipher -named_curve $DEFAULT_CURVE | ||
| 173 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 174 | -cert $SERVER_PEM -server_auth \ | ||
| 175 | -cipher $cipher -named_curve $DEFAULT_CURVE | ||
| 176 | |||
| 177 | echo "Testing $cipher (with server and client authentication)" | ||
| 178 | $SSLTEST $SSL_VERSION -CAfile $CA_PEM \ | ||
| 179 | -cert $SERVER_PEM -server_auth \ | ||
| 180 | -c_cert $CLIENT_PEM -client_auth \ | ||
| 181 | -cipher $cipher -named_curve $DEFAULT_CURVE | ||
| 182 | done | ||
| 183 | fi | ||
| 184 | #============================================================== | ||
| 185 | |||
| 186 | |||
| 187 | |||
| 188 | |||
diff --git a/src/lib/libssl/src/demos/tunala/test.sh b/src/lib/libssl/src/demos/tunala/test.sh new file mode 100755 index 0000000000..105b447333 --- /dev/null +++ b/src/lib/libssl/src/demos/tunala/test.sh | |||
| @@ -0,0 +1,107 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | |||
| 3 | HTTP="localhost:8080" | ||
| 4 | CLIENT_PORT="9020" | ||
| 5 | SERVER_PORT="9021" | ||
| 6 | |||
| 7 | sub_test () | ||
| 8 | { | ||
| 9 | echo "STARTING - $VER $CIPHER" | ||
| 10 | ./tunala -listen localhost:$CLIENT_PORT -proxy localhost:$SERVER_PORT \ | ||
| 11 | -cacert CA.pem -cert A-client.pem -server 0 \ | ||
| 12 | -dh_special standard -v_peer -v_strict \ | ||
| 13 | $VER -cipher $CIPHER 1> tc1.txt 2> tc2.txt & | ||
| 14 | ./tunala -listen localhost:$SERVER_PORT -proxy $HTTP \ | ||
| 15 | -cacert CA.pem -cert A-server.pem -server 1 \ | ||
| 16 | -dh_special standard -v_peer -v_strict \ | ||
| 17 | $VER -cipher $CIPHER 1> ts1.txt 2> ts2.txt & | ||
| 18 | # Wait for the servers to be listening before starting the wget test | ||
| 19 | DONE="no" | ||
| 20 | while [ "$DONE" != "yes" ]; do | ||
| 21 | L1=`netstat -a | egrep "LISTEN[\t ]*$" | grep ":$CLIENT_PORT"` | ||
| 22 | L2=`netstat -a | egrep "LISTEN[\t ]*$" | grep ":$SERVER_PORT"` | ||
| 23 | if [ "x$L1" != "x" ]; then | ||
| 24 | DONE="yes" | ||
| 25 | elif [ "x$L2" != "x" ]; then | ||
| 26 | DONE="yes" | ||
| 27 | else | ||
| 28 | sleep 1 | ||
| 29 | fi | ||
| 30 | done | ||
| 31 | HTML=`wget -O - -T 1 http://localhost:$CLIENT_PORT 2> /dev/null | grep "<HTML>"` | ||
| 32 | if [ "x$HTML" != "x" ]; then | ||
| 33 | echo "OK - $CIPHER ($VER)" | ||
| 34 | else | ||
| 35 | echo "FAIL - $CIPHER ($VER)" | ||
| 36 | killall tunala | ||
| 37 | exit 1 | ||
| 38 | fi | ||
| 39 | killall tunala | ||
| 40 | # Wait for the servers to stop before returning - otherwise the next | ||
| 41 | # test my fail to start ... (fscking race conditions) | ||
| 42 | DONE="yes" | ||
| 43 | while [ "$DONE" != "no" ]; do | ||
| 44 | L1=`netstat -a | egrep "LISTEN[\t ]*$" | grep ":$CLIENT_PORT"` | ||
| 45 | L2=`netstat -a | egrep "LISTEN[\t ]*$" | grep ":$SERVER_PORT"` | ||
| 46 | if [ "x$L1" != "x" ]; then | ||
| 47 | DONE="yes" | ||
| 48 | elif [ "x$L2" != "x" ]; then | ||
| 49 | DONE="yes" | ||
| 50 | else | ||
| 51 | DONE="no" | ||
| 52 | fi | ||
| 53 | done | ||
| 54 | exit 0 | ||
| 55 | } | ||
| 56 | |||
| 57 | run_test () | ||
| 58 | { | ||
| 59 | (sub_test 1> /dev/null) || exit 1 | ||
| 60 | } | ||
| 61 | |||
| 62 | run_ssl_test () | ||
| 63 | { | ||
| 64 | killall tunala 1> /dev/null 2> /dev/null | ||
| 65 | echo "" | ||
| 66 | echo "Starting all $PRETTY tests" | ||
| 67 | if [ "$PRETTY" != "SSLv2" ]; then | ||
| 68 | if [ "$PRETTY" != "SSLv3" ]; then | ||
| 69 | export VER="-no_ssl2 -no_ssl3" | ||
| 70 | export OSSL="-tls1" | ||
| 71 | else | ||
| 72 | export VER="-no_ssl2 -no_tls1" | ||
| 73 | export OSSL="-ssl3" | ||
| 74 | fi | ||
| 75 | else | ||
| 76 | export VER="-no_ssl3 -no_tls1" | ||
| 77 | export OSSL="-ssl2" | ||
| 78 | fi | ||
| 79 | LIST="`../../apps/openssl ciphers $OSSL | sed -e 's/:/ /g'`" | ||
| 80 | #echo "$LIST" | ||
| 81 | for i in $LIST; do \ | ||
| 82 | DSS=`echo "$i" | grep "DSS"` | ||
| 83 | if [ "x$DSS" != "x" ]; then | ||
| 84 | echo "---- skipping $i (no DSA cert/keys) ----" | ||
| 85 | else | ||
| 86 | export CIPHER=$i | ||
| 87 | run_test | ||
| 88 | echo "SUCCESS: $i" | ||
| 89 | fi | ||
| 90 | done; | ||
| 91 | } | ||
| 92 | |||
| 93 | # Welcome the user | ||
| 94 | echo "Tests will assume an http server running at $HTTP" | ||
| 95 | |||
| 96 | # TLSv1 test | ||
| 97 | export PRETTY="TLSv1" | ||
| 98 | run_ssl_test | ||
| 99 | |||
| 100 | # SSLv3 test | ||
| 101 | export PRETTY="SSLv3" | ||
| 102 | run_ssl_test | ||
| 103 | |||
| 104 | # SSLv2 test | ||
| 105 | export PRETTY="SSLv2" | ||
| 106 | run_ssl_test | ||
| 107 | |||
diff --git a/src/lib/libssl/src/doc/apps/ec.pod b/src/lib/libssl/src/doc/apps/ec.pod new file mode 100644 index 0000000000..1d4a36dbf4 --- /dev/null +++ b/src/lib/libssl/src/doc/apps/ec.pod | |||
| @@ -0,0 +1,190 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | ec - EC key processing | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | B<openssl> B<ec> | ||
| 10 | [B<-inform PEM|DER>] | ||
| 11 | [B<-outform PEM|DER>] | ||
| 12 | [B<-in filename>] | ||
| 13 | [B<-passin arg>] | ||
| 14 | [B<-out filename>] | ||
| 15 | [B<-passout arg>] | ||
| 16 | [B<-des>] | ||
| 17 | [B<-des3>] | ||
| 18 | [B<-idea>] | ||
| 19 | [B<-text>] | ||
| 20 | [B<-noout>] | ||
| 21 | [B<-param_out>] | ||
| 22 | [B<-pubin>] | ||
| 23 | [B<-pubout>] | ||
| 24 | [B<-conv_form arg>] | ||
| 25 | [B<-param_enc arg>] | ||
| 26 | [B<-engine id>] | ||
| 27 | |||
| 28 | =head1 DESCRIPTION | ||
| 29 | |||
| 30 | The B<ec> command processes EC keys. They can be converted between various | ||
| 31 | forms and their components printed out. B<Note> OpenSSL uses the | ||
| 32 | private key format specified in 'SEC 1: Elliptic Curve Cryptography' | ||
| 33 | (http://www.secg.org/). To convert a OpenSSL EC private key into the | ||
| 34 | PKCS#8 private key format use the B<pkcs8> command. | ||
| 35 | |||
| 36 | =head1 COMMAND OPTIONS | ||
| 37 | |||
| 38 | =over 4 | ||
| 39 | |||
| 40 | =item B<-inform DER|PEM> | ||
| 41 | |||
| 42 | This specifies the input format. The B<DER> option with a private key uses | ||
| 43 | an ASN.1 DER encoded SEC1 private key. When used with a public key it | ||
| 44 | uses the SubjectPublicKeyInfo structur as specified in RFC 3280. | ||
| 45 | The B<PEM> form is the default format: it consists of the B<DER> format base64 | ||
| 46 | encoded with additional header and footer lines. In the case of a private key | ||
| 47 | PKCS#8 format is also accepted. | ||
| 48 | |||
| 49 | =item B<-outform DER|PEM> | ||
| 50 | |||
| 51 | This specifies the output format, the options have the same meaning as the | ||
| 52 | B<-inform> option. | ||
| 53 | |||
| 54 | =item B<-in filename> | ||
| 55 | |||
| 56 | This specifies the input filename to read a key from or standard input if this | ||
| 57 | option is not specified. If the key is encrypted a pass phrase will be | ||
| 58 | prompted for. | ||
| 59 | |||
| 60 | =item B<-passin arg> | ||
| 61 | |||
| 62 | the input file password source. For more information about the format of B<arg> | ||
| 63 | see the B<PASS PHRASE ARGUMENTS> section in L<openssl(1)|openssl(1)>. | ||
| 64 | |||
| 65 | =item B<-out filename> | ||
| 66 | |||
| 67 | This specifies the output filename to write a key to or standard output by | ||
| 68 | is not specified. If any encryption options are set then a pass phrase will be | ||
| 69 | prompted for. The output filename should B<not> be the same as the input | ||
| 70 | filename. | ||
| 71 | |||
| 72 | =item B<-passout arg> | ||
| 73 | |||
| 74 | the output file password source. For more information about the format of B<arg> | ||
| 75 | see the B<PASS PHRASE ARGUMENTS> section in L<openssl(1)|openssl(1)>. | ||
| 76 | |||
| 77 | =item B<-des|-des3|-idea> | ||
| 78 | |||
| 79 | These options encrypt the private key with the DES, triple DES, IDEA or | ||
| 80 | any other cipher supported by OpenSSL before outputting it. A pass phrase is | ||
| 81 | prompted for. | ||
| 82 | If none of these options is specified the key is written in plain text. This | ||
| 83 | means that using the B<ec> utility to read in an encrypted key with no | ||
| 84 | encryption option can be used to remove the pass phrase from a key, or by | ||
| 85 | setting the encryption options it can be use to add or change the pass phrase. | ||
| 86 | These options can only be used with PEM format output files. | ||
| 87 | |||
| 88 | =item B<-text> | ||
| 89 | |||
| 90 | prints out the public, private key components and parameters. | ||
| 91 | |||
| 92 | =item B<-noout> | ||
| 93 | |||
| 94 | this option prevents output of the encoded version of the key. | ||
| 95 | |||
| 96 | =item B<-modulus> | ||
| 97 | |||
| 98 | this option prints out the value of the public key component of the key. | ||
| 99 | |||
| 100 | =item B<-pubin> | ||
| 101 | |||
| 102 | by default a private key is read from the input file: with this option a | ||
| 103 | public key is read instead. | ||
| 104 | |||
| 105 | =item B<-pubout> | ||
| 106 | |||
| 107 | by default a private key is output. With this option a public | ||
| 108 | key will be output instead. This option is automatically set if the input is | ||
| 109 | a public key. | ||
| 110 | |||
| 111 | =item B<-conv_form> | ||
| 112 | |||
| 113 | This specifies how the points on the elliptic curve are converted | ||
| 114 | into octet strings. Possible values are: B<compressed> (the default | ||
| 115 | value), B<uncompressed> and B<hybrid>. For more information regarding | ||
| 116 | the point conversion forms please read the X9.62 standard. | ||
| 117 | B<Note> Due to patent issues the B<compressed> option is disabled | ||
| 118 | by default for binary curves and can be enabled by defining | ||
| 119 | the preprocessor macro B<OPENSSL_EC_BIN_PT_COMP> at compile time. | ||
| 120 | |||
| 121 | =item B<-param_enc arg> | ||
| 122 | |||
| 123 | This specifies how the elliptic curve parameters are encoded. | ||
| 124 | Possible value are: B<named_curve>, i.e. the ec parameters are | ||
| 125 | specified by a OID, or B<explicit> where the ec parameters are | ||
| 126 | explicitly given (see RFC 3279 for the definition of the | ||
| 127 | EC parameters structures). The default value is B<named_curve>. | ||
| 128 | B<Note> the B<implicitlyCA> alternative ,as specified in RFC 3279, | ||
| 129 | is currently not implemented in OpenSSL. | ||
| 130 | |||
| 131 | =item B<-engine id> | ||
| 132 | |||
| 133 | specifying an engine (by it's unique B<id> string) will cause B<req> | ||
| 134 | to attempt to obtain a functional reference to the specified engine, | ||
| 135 | thus initialising it if needed. The engine will then be set as the default | ||
| 136 | for all available algorithms. | ||
| 137 | |||
| 138 | =back | ||
| 139 | |||
| 140 | =head1 NOTES | ||
| 141 | |||
| 142 | The PEM private key format uses the header and footer lines: | ||
| 143 | |||
| 144 | -----BEGIN EC PRIVATE KEY----- | ||
| 145 | -----END EC PRIVATE KEY----- | ||
| 146 | |||
| 147 | The PEM public key format uses the header and footer lines: | ||
| 148 | |||
| 149 | -----BEGIN PUBLIC KEY----- | ||
| 150 | -----END PUBLIC KEY----- | ||
| 151 | |||
| 152 | =head1 EXAMPLES | ||
| 153 | |||
| 154 | To encrypt a private key using triple DES: | ||
| 155 | |||
| 156 | openssl ec -in key.pem -des3 -out keyout.pem | ||
| 157 | |||
| 158 | To convert a private key from PEM to DER format: | ||
| 159 | |||
| 160 | openssl ec -in key.pem -outform DER -out keyout.der | ||
| 161 | |||
| 162 | To print out the components of a private key to standard output: | ||
| 163 | |||
| 164 | openssl ec -in key.pem -text -noout | ||
| 165 | |||
| 166 | To just output the public part of a private key: | ||
| 167 | |||
| 168 | openssl ec -in key.pem -pubout -out pubkey.pem | ||
| 169 | |||
| 170 | To change the parameters encoding to B<explicit>: | ||
| 171 | |||
| 172 | openssl ec -in key.pem -param_enc explicit -out keyout.pem | ||
| 173 | |||
| 174 | To change the point conversion form to B<compressed>: | ||
| 175 | |||
| 176 | openssl ec -in key.pem -conv_form compressed -out keyout.pem | ||
| 177 | |||
| 178 | =head1 SEE ALSO | ||
| 179 | |||
| 180 | L<ecparam(1)|ecparam(1)>, L<dsa(1)|dsa(1)>, L<rsa(1)|rsa(1)> | ||
| 181 | |||
| 182 | =head1 HISTORY | ||
| 183 | |||
| 184 | The ec command was first introduced in OpenSSL 0.9.8. | ||
| 185 | |||
| 186 | =head1 AUTHOR | ||
| 187 | |||
| 188 | Nils Larsch for the OpenSSL project (http://www.openssl.org). | ||
| 189 | |||
| 190 | =cut | ||
diff --git a/src/lib/libssl/src/doc/apps/ecparam.pod b/src/lib/libssl/src/doc/apps/ecparam.pod new file mode 100644 index 0000000000..1a12105da7 --- /dev/null +++ b/src/lib/libssl/src/doc/apps/ecparam.pod | |||
| @@ -0,0 +1,179 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | ecparam - EC parameter manipulation and generation | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | B<openssl ecparam> | ||
| 10 | [B<-inform DER|PEM>] | ||
| 11 | [B<-outform DER|PEM>] | ||
| 12 | [B<-in filename>] | ||
| 13 | [B<-out filename>] | ||
| 14 | [B<-noout>] | ||
| 15 | [B<-text>] | ||
| 16 | [B<-C>] | ||
| 17 | [B<-check>] | ||
| 18 | [B<-name arg>] | ||
| 19 | [B<-list_curve>] | ||
| 20 | [B<-conv_form arg>] | ||
| 21 | [B<-param_enc arg>] | ||
| 22 | [B<-no_seed>] | ||
| 23 | [B<-rand file(s)>] | ||
| 24 | [B<-genkey>] | ||
| 25 | [B<-engine id>] | ||
| 26 | |||
| 27 | =head1 DESCRIPTION | ||
| 28 | |||
| 29 | This command is used to manipulate or generate EC parameter files. | ||
| 30 | |||
| 31 | =head1 OPTIONS | ||
| 32 | |||
| 33 | =over 4 | ||
| 34 | |||
| 35 | =item B<-inform DER|PEM> | ||
| 36 | |||
| 37 | This specifies the input format. The B<DER> option uses an ASN.1 DER encoded | ||
| 38 | form compatible with RFC 3279 EcpkParameters. The PEM form is the default | ||
| 39 | format: it consists of the B<DER> format base64 encoded with additional | ||
| 40 | header and footer lines. | ||
| 41 | |||
| 42 | =item B<-outform DER|PEM> | ||
| 43 | |||
| 44 | This specifies the output format, the options have the same meaning as the | ||
| 45 | B<-inform> option. | ||
| 46 | |||
| 47 | =item B<-in filename> | ||
| 48 | |||
| 49 | This specifies the input filename to read parameters from or standard input if | ||
| 50 | this option is not specified. | ||
| 51 | |||
| 52 | =item B<-out filename> | ||
| 53 | |||
| 54 | This specifies the output filename parameters to. Standard output is used | ||
| 55 | if this option is not present. The output filename should B<not> be the same | ||
| 56 | as the input filename. | ||
| 57 | |||
| 58 | =item B<-noout> | ||
| 59 | |||
| 60 | This option inhibits the output of the encoded version of the parameters. | ||
| 61 | |||
| 62 | =item B<-text> | ||
| 63 | |||
| 64 | This option prints out the EC parameters in human readable form. | ||
| 65 | |||
| 66 | =item B<-C> | ||
| 67 | |||
| 68 | This option converts the EC parameters into C code. The parameters can then | ||
| 69 | be loaded by calling the B<get_ec_group_XXX()> function. | ||
| 70 | |||
| 71 | =item B<-check> | ||
| 72 | |||
| 73 | Validate the elliptic curve parameters. | ||
| 74 | |||
| 75 | =item B<-name arg> | ||
| 76 | |||
| 77 | Use the EC parameters with the specified 'short' name. Use B<-list_curves> | ||
| 78 | to get a list of all currently implemented EC parameters. | ||
| 79 | |||
| 80 | =item B<-list_curves> | ||
| 81 | |||
| 82 | If this options is specified B<ecparam> will print out a list of all | ||
| 83 | currently implemented EC parameters names and exit. | ||
| 84 | |||
| 85 | =item B<-conv_form> | ||
| 86 | |||
| 87 | This specifies how the points on the elliptic curve are converted | ||
| 88 | into octet strings. Possible values are: B<compressed> (the default | ||
| 89 | value), B<uncompressed> and B<hybrid>. For more information regarding | ||
| 90 | the point conversion forms please read the X9.62 standard. | ||
| 91 | B<Note> Due to patent issues the B<compressed> option is disabled | ||
| 92 | by default for binary curves and can be enabled by defining | ||
| 93 | the preprocessor macro B<OPENSSL_EC_BIN_PT_COMP> at compile time. | ||
| 94 | |||
| 95 | =item B<-param_enc arg> | ||
| 96 | |||
| 97 | This specifies how the elliptic curve parameters are encoded. | ||
| 98 | Possible value are: B<named_curve>, i.e. the ec parameters are | ||
| 99 | specified by a OID, or B<explicit> where the ec parameters are | ||
| 100 | explicitly given (see RFC 3279 for the definition of the | ||
| 101 | EC parameters structures). The default value is B<named_curve>. | ||
| 102 | B<Note> the B<implicitlyCA> alternative ,as specified in RFC 3279, | ||
| 103 | is currently not implemented in OpenSSL. | ||
| 104 | |||
| 105 | =item B<-no_seed> | ||
| 106 | |||
| 107 | This option inhibits that the 'seed' for the parameter generation | ||
| 108 | is included in the ECParameters structure (see RFC 3279). | ||
| 109 | |||
| 110 | =item B<-genkey> | ||
| 111 | |||
| 112 | This option will generate a EC private key using the specified parameters. | ||
| 113 | |||
| 114 | =item B<-rand file(s)> | ||
| 115 | |||
| 116 | a file or files containing random data used to seed the random number | ||
| 117 | generator, or an EGD socket (see L<RAND_egd(3)|RAND_egd(3)>). | ||
| 118 | Multiple files can be specified separated by a OS-dependent character. | ||
| 119 | The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for | ||
| 120 | all others. | ||
| 121 | |||
| 122 | =item B<-engine id> | ||
| 123 | |||
| 124 | specifying an engine (by it's unique B<id> string) will cause B<req> | ||
| 125 | to attempt to obtain a functional reference to the specified engine, | ||
| 126 | thus initialising it if needed. The engine will then be set as the default | ||
| 127 | for all available algorithms. | ||
| 128 | |||
| 129 | =back | ||
| 130 | |||
| 131 | =head1 NOTES | ||
| 132 | |||
| 133 | PEM format EC parameters use the header and footer lines: | ||
| 134 | |||
| 135 | -----BEGIN EC PARAMETERS----- | ||
| 136 | -----END EC PARAMETERS----- | ||
| 137 | |||
| 138 | OpenSSL is currently not able to generate new groups and therefore | ||
| 139 | B<ecparam> can only create EC parameters from known (named) curves. | ||
| 140 | |||
| 141 | =head1 EXAMPLES | ||
| 142 | |||
| 143 | To create EC parameters with the group 'prime192v1': | ||
| 144 | |||
| 145 | openssl ecparam -out ec_param.pem -name prime192v1 | ||
| 146 | |||
| 147 | To create EC parameters with explicit parameters: | ||
| 148 | |||
| 149 | openssl ecparam -out ec_param.pem -name prime192v1 -param_enc explicit | ||
| 150 | |||
| 151 | To validate given EC parameters: | ||
| 152 | |||
| 153 | openssl ecparam -in ec_param.pem -check | ||
| 154 | |||
| 155 | To create EC parameters and a private key: | ||
| 156 | |||
| 157 | openssl ecparam -out ec_key.pem -name prime192v1 -genkey | ||
| 158 | |||
| 159 | To change the point encoding to 'compressed': | ||
| 160 | |||
| 161 | openssl ecparam -in ec_in.pem -out ec_out.pem -conv_form compressed | ||
| 162 | |||
| 163 | To print out the EC parameters to standard output: | ||
| 164 | |||
| 165 | openssl ecparam -in ec_param.pem -noout -text | ||
| 166 | |||
| 167 | =head1 SEE ALSO | ||
| 168 | |||
| 169 | L<ec(1)|ec(1)>, L<dsaparam(1)|dsaparam(1)> | ||
| 170 | |||
| 171 | =head1 HISTORY | ||
| 172 | |||
| 173 | The ecparam command was first introduced in OpenSSL 0.9.8. | ||
| 174 | |||
| 175 | =head1 AUTHOR | ||
| 176 | |||
| 177 | Nils Larsch for the OpenSSL project (http://www.openssl.org) | ||
| 178 | |||
| 179 | =cut | ||
diff --git a/src/lib/libssl/src/doc/apps/x509v3_config.pod b/src/lib/libssl/src/doc/apps/x509v3_config.pod new file mode 100644 index 0000000000..38c46e85c4 --- /dev/null +++ b/src/lib/libssl/src/doc/apps/x509v3_config.pod | |||
| @@ -0,0 +1,456 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =for comment openssl_manual_section:5 | ||
| 4 | |||
| 5 | =head1 NAME | ||
| 6 | |||
| 7 | x509v3_config - X509 V3 certificate extension configuration format | ||
| 8 | |||
| 9 | =head1 DESCRIPTION | ||
| 10 | |||
| 11 | Several of the OpenSSL utilities can add extensions to a certificate or | ||
| 12 | certificate request based on the contents of a configuration file. | ||
| 13 | |||
| 14 | Typically the application will contain an option to point to an extension | ||
| 15 | section. Each line of the extension section takes the form: | ||
| 16 | |||
| 17 | extension_name=[critical,] extension_options | ||
| 18 | |||
| 19 | If B<critical> is present then the extension will be critical. | ||
| 20 | |||
| 21 | The format of B<extension_options> depends on the value of B<extension_name>. | ||
| 22 | |||
| 23 | There are four main types of extension: I<string> extensions, I<multi-valued> | ||
| 24 | extensions, I<raw> and I<arbitrary> extensions. | ||
| 25 | |||
| 26 | String extensions simply have a string which contains either the value itself | ||
| 27 | or how it is obtained. | ||
| 28 | |||
| 29 | For example: | ||
| 30 | |||
| 31 | nsComment="This is a Comment" | ||
| 32 | |||
| 33 | Multi-valued extensions have a short form and a long form. The short form | ||
| 34 | is a list of names and values: | ||
| 35 | |||
| 36 | basicConstraints=critical,CA:true,pathlen:1 | ||
| 37 | |||
| 38 | The long form allows the values to be placed in a separate section: | ||
| 39 | |||
| 40 | basicConstraints=critical,@bs_section | ||
| 41 | |||
| 42 | [bs_section] | ||
| 43 | |||
| 44 | CA=true | ||
| 45 | pathlen=1 | ||
| 46 | |||
| 47 | Both forms are equivalent. | ||
| 48 | |||
| 49 | The syntax of raw extensions is governed by the extension code: it can | ||
| 50 | for example contain data in multiple sections. The correct syntax to | ||
| 51 | use is defined by the extension code itself: check out the certificate | ||
| 52 | policies extension for an example. | ||
| 53 | |||
| 54 | If an extension type is unsupported then the I<arbitrary> extension syntax | ||
| 55 | must be used, see the L<ARBITRART EXTENSIONS|/"ARBITRARY EXTENSIONS"> section for more details. | ||
| 56 | |||
| 57 | =head1 STANDARD EXTENSIONS | ||
| 58 | |||
| 59 | The following sections describe each supported extension in detail. | ||
| 60 | |||
| 61 | =head2 Basic Constraints. | ||
| 62 | |||
| 63 | This is a multi valued extension which indicates whether a certificate is | ||
| 64 | a CA certificate. The first (mandatory) name is B<CA> followed by B<TRUE> or | ||
| 65 | B<FALSE>. If B<CA> is B<TRUE> then an optional B<pathlen> name followed by an | ||
| 66 | non-negative value can be included. | ||
| 67 | |||
| 68 | For example: | ||
| 69 | |||
| 70 | basicConstraints=CA:TRUE | ||
| 71 | |||
| 72 | basicConstraints=CA:FALSE | ||
| 73 | |||
| 74 | basicConstraints=critical,CA:TRUE, pathlen:0 | ||
| 75 | |||
| 76 | A CA certificate B<must> include the basicConstraints value with the CA field | ||
| 77 | set to TRUE. An end user certificate must either set CA to FALSE or exclude the | ||
| 78 | extension entirely. Some software may require the inclusion of basicConstraints | ||
| 79 | with CA set to FALSE for end entity certificates. | ||
| 80 | |||
| 81 | The pathlen parameter indicates the maximum number of CAs that can appear | ||
| 82 | below this one in a chain. So if you have a CA with a pathlen of zero it can | ||
| 83 | only be used to sign end user certificates and not further CAs. | ||
| 84 | |||
| 85 | |||
| 86 | =head2 Key Usage. | ||
| 87 | |||
| 88 | Key usage is a multi valued extension consisting of a list of names of the | ||
| 89 | permitted key usages. | ||
| 90 | |||
| 91 | The supporte names are: digitalSignature, nonRepudiation, keyEncipherment, | ||
| 92 | dataEncipherment, keyAgreement, keyCertSign, cRLSign, encipherOnly | ||
| 93 | and decipherOnly. | ||
| 94 | |||
| 95 | Examples: | ||
| 96 | |||
| 97 | keyUsage=digitalSignature, nonRepudiation | ||
| 98 | |||
| 99 | keyUsage=critical, keyCertSign | ||
| 100 | |||
| 101 | |||
| 102 | =head2 Extended Key Usage. | ||
| 103 | |||
| 104 | This extensions consists of a list of usages indicating purposes for which | ||
| 105 | the certificate public key can be used for, | ||
| 106 | |||
| 107 | These can either be object short names of the dotted numerical form of OIDs. | ||
| 108 | While any OID can be used only certain values make sense. In particular the | ||
| 109 | following PKIX, NS and MS values are meaningful: | ||
| 110 | |||
| 111 | Value Meaning | ||
| 112 | ----- ------- | ||
| 113 | serverAuth SSL/TLS Web Server Authentication. | ||
| 114 | clientAuth SSL/TLS Web Client Authentication. | ||
| 115 | codeSigning Code signing. | ||
| 116 | emailProtection E-mail Protection (S/MIME). | ||
| 117 | timeStamping Trusted Timestamping | ||
| 118 | msCodeInd Microsoft Individual Code Signing (authenticode) | ||
| 119 | msCodeCom Microsoft Commercial Code Signing (authenticode) | ||
| 120 | msCTLSign Microsoft Trust List Signing | ||
| 121 | msSGC Microsoft Server Gated Crypto | ||
| 122 | msEFS Microsoft Encrypted File System | ||
| 123 | nsSGC Netscape Server Gated Crypto | ||
| 124 | |||
| 125 | Examples: | ||
| 126 | |||
| 127 | extendedKeyUsage=critical,codeSigning,1.2.3.4 | ||
| 128 | extendedKeyUsage=nsSGC,msSGC | ||
| 129 | |||
| 130 | |||
| 131 | =head2 Subject Key Identifier. | ||
| 132 | |||
| 133 | This is really a string extension and can take two possible values. Either | ||
| 134 | the word B<hash> which will automatically follow the guidelines in RFC3280 | ||
| 135 | or a hex string giving the extension value to include. The use of the hex | ||
| 136 | string is strongly discouraged. | ||
| 137 | |||
| 138 | Example: | ||
| 139 | |||
| 140 | subjectKeyIdentifier=hash | ||
| 141 | |||
| 142 | |||
| 143 | =head2 Authority Key Identifier. | ||
| 144 | |||
| 145 | The authority key identifier extension permits two options. keyid and issuer: | ||
| 146 | both can take the optional value "always". | ||
| 147 | |||
| 148 | If the keyid option is present an attempt is made to copy the subject key | ||
| 149 | identifier from the parent certificate. If the value "always" is present | ||
| 150 | then an error is returned if the option fails. | ||
| 151 | |||
| 152 | The issuer option copies the issuer and serial number from the issuer | ||
| 153 | certificate. This will only be done if the keyid option fails or | ||
| 154 | is not included unless the "always" flag will always include the value. | ||
| 155 | |||
| 156 | Example: | ||
| 157 | |||
| 158 | authorityKeyIdentifier=keyid,issuer | ||
| 159 | |||
| 160 | |||
| 161 | =head2 Subject Alternative Name. | ||
| 162 | |||
| 163 | The subject alternative name extension allows various literal values to be | ||
| 164 | included in the configuration file. These include B<email> (an email address) | ||
| 165 | B<URI> a uniform resource indicator, B<DNS> (a DNS domain name), B<RID> (a | ||
| 166 | registered ID: OBJECT IDENTIFIER), B<IP> (an IP address), B<dirName> | ||
| 167 | (a distinguished name) and otherName. | ||
| 168 | |||
| 169 | The email option include a special 'copy' value. This will automatically | ||
| 170 | include and email addresses contained in the certificate subject name in | ||
| 171 | the extension. | ||
| 172 | |||
| 173 | The IP address used in the B<IP> options can be in either IPv4 or IPv6 format. | ||
| 174 | |||
| 175 | The value of B<dirName> should point to a section containing the distinguished | ||
| 176 | name to use as a set of name value pairs. Multi values AVAs can be formed by | ||
| 177 | preceeding the name with a B<+> character. | ||
| 178 | |||
| 179 | otherName can include arbitrary data associated with an OID: the value | ||
| 180 | should be the OID followed by a semicolon and the content in standard | ||
| 181 | ASN1_generate_nconf() format. | ||
| 182 | |||
| 183 | Examples: | ||
| 184 | |||
| 185 | subjectAltName=email:copy,email:my@other.address,URI:http://my.url.here/ | ||
| 186 | subjectAltName=IP:192.168.7.1 | ||
| 187 | subjectAltName=IP:13::17 | ||
| 188 | subjectAltName=email:my@other.address,RID:1.2.3.4 | ||
| 189 | subjectAltName=otherName:1.2.3.4;UTF8:some other identifier | ||
| 190 | |||
| 191 | subjectAltName=dirName:dir_sect | ||
| 192 | |||
| 193 | [dir_sect] | ||
| 194 | C=UK | ||
| 195 | O=My Organization | ||
| 196 | OU=My Unit | ||
| 197 | CN=My Name | ||
| 198 | |||
| 199 | |||
| 200 | =head2 Issuer Alternative Name. | ||
| 201 | |||
| 202 | The issuer alternative name option supports all the literal options of | ||
| 203 | subject alternative name. It does B<not> support the email:copy option because | ||
| 204 | that would not make sense. It does support an additional issuer:copy option | ||
| 205 | that will copy all the subject alternative name values from the issuer | ||
| 206 | certificate (if possible). | ||
| 207 | |||
| 208 | Example: | ||
| 209 | |||
| 210 | issuserAltName = issuer:copy | ||
| 211 | |||
| 212 | |||
| 213 | =head2 Authority Info Access. | ||
| 214 | |||
| 215 | The authority information access extension gives details about how to access | ||
| 216 | certain information relating to the CA. Its syntax is accessOID;location | ||
| 217 | where I<location> has the same syntax as subject alternative name (except | ||
| 218 | that email:copy is not supported). accessOID can be any valid OID but only | ||
| 219 | certain values are meaningful, for example OCSP and caIssuers. | ||
| 220 | |||
| 221 | Example: | ||
| 222 | |||
| 223 | authorityInfoAccess = OCSP;URI:http://ocsp.my.host/ | ||
| 224 | authorityInfoAccess = caIssuers;URI:http://my.ca/ca.html | ||
| 225 | |||
| 226 | |||
| 227 | =head2 CRL distribution points. | ||
| 228 | |||
| 229 | This is a multi-valued extension that supports all the literal options of | ||
| 230 | subject alternative name. Of the few software packages that currently interpret | ||
| 231 | this extension most only interpret the URI option. | ||
| 232 | |||
| 233 | Currently each option will set a new DistributionPoint with the fullName | ||
| 234 | field set to the given value. | ||
| 235 | |||
| 236 | Other fields like cRLissuer and reasons cannot currently be set or displayed: | ||
| 237 | at this time no examples were available that used these fields. | ||
| 238 | |||
| 239 | Examples: | ||
| 240 | |||
| 241 | crlDistributionPoints=URI:http://myhost.com/myca.crl | ||
| 242 | crlDistributionPoints=URI:http://my.com/my.crl,URI:http://oth.com/my.crl | ||
| 243 | |||
| 244 | =head2 Certificate Policies. | ||
| 245 | |||
| 246 | This is a I<raw> extension. All the fields of this extension can be set by | ||
| 247 | using the appropriate syntax. | ||
| 248 | |||
| 249 | If you follow the PKIX recommendations and just using one OID then you just | ||
| 250 | include the value of that OID. Multiple OIDs can be set separated by commas, | ||
| 251 | for example: | ||
| 252 | |||
| 253 | certificatePolicies= 1.2.4.5, 1.1.3.4 | ||
| 254 | |||
| 255 | If you wish to include qualifiers then the policy OID and qualifiers need to | ||
| 256 | be specified in a separate section: this is done by using the @section syntax | ||
| 257 | instead of a literal OID value. | ||
| 258 | |||
| 259 | The section referred to must include the policy OID using the name | ||
| 260 | policyIdentifier, cPSuri qualifiers can be included using the syntax: | ||
| 261 | |||
| 262 | CPS.nnn=value | ||
| 263 | |||
| 264 | userNotice qualifiers can be set using the syntax: | ||
| 265 | |||
| 266 | userNotice.nnn=@notice | ||
| 267 | |||
| 268 | The value of the userNotice qualifier is specified in the relevant section. | ||
| 269 | This section can include explicitText, organization and noticeNumbers | ||
| 270 | options. explicitText and organization are text strings, noticeNumbers is a | ||
| 271 | comma separated list of numbers. The organization and noticeNumbers options | ||
| 272 | (if included) must BOTH be present. If you use the userNotice option with IE5 | ||
| 273 | then you need the 'ia5org' option at the top level to modify the encoding: | ||
| 274 | otherwise it will not be interpreted properly. | ||
| 275 | |||
| 276 | Example: | ||
| 277 | |||
| 278 | certificatePolicies=ia5org,1.2.3.4,1.5.6.7.8,@polsect | ||
| 279 | |||
| 280 | [polsect] | ||
| 281 | |||
| 282 | policyIdentifier = 1.3.5.8 | ||
| 283 | CPS.1="http://my.host.name/" | ||
| 284 | CPS.2="http://my.your.name/" | ||
| 285 | userNotice.1=@notice | ||
| 286 | |||
| 287 | [notice] | ||
| 288 | |||
| 289 | explicitText="Explicit Text Here" | ||
| 290 | organization="Organisation Name" | ||
| 291 | noticeNumbers=1,2,3,4 | ||
| 292 | |||
| 293 | The B<ia5org> option changes the type of the I<organization> field. In RFC2459 | ||
| 294 | it can only be of type DisplayText. In RFC3280 IA5Strring is also permissible. | ||
| 295 | Some software (for example some versions of MSIE) may require ia5org. | ||
| 296 | |||
| 297 | =head2 Policy Constraints | ||
| 298 | |||
| 299 | This is a multi-valued extension which consisting of the names | ||
| 300 | B<requireExplicitPolicy> or B<inhibitPolicyMapping> and a non negative intger | ||
| 301 | value. At least one component must be present. | ||
| 302 | |||
| 303 | Example: | ||
| 304 | |||
| 305 | policyConstraints = requireExplicitPolicy:3 | ||
| 306 | |||
| 307 | |||
| 308 | =head2 Inhibit Any Policy | ||
| 309 | |||
| 310 | This is a string extension whose value must be a non negative integer. | ||
| 311 | |||
| 312 | Example: | ||
| 313 | |||
| 314 | inhibitAnyPolicy = 2 | ||
| 315 | |||
| 316 | |||
| 317 | =head2 Name Constraints | ||
| 318 | |||
| 319 | The name constraints extension is a multi-valued extension. The name should | ||
| 320 | begin with the word B<permitted> or B<excluded> followed by a B<;>. The rest of | ||
| 321 | the name and the value follows the syntax of subjectAltName except email:copy | ||
| 322 | is not supported and the B<IP> form should consist of an IP addresses and | ||
| 323 | subnet mask separated by a B</>. | ||
| 324 | |||
| 325 | Examples: | ||
| 326 | |||
| 327 | nameConstraints=permitted;IP:192.168.0.0/255.255.0.0 | ||
| 328 | |||
| 329 | nameConstraints=permitted;email:.somedomain.com | ||
| 330 | |||
| 331 | nameConstraints=excluded;email:.com | ||
| 332 | |||
| 333 | =head1 DEPRECATED EXTENSIONS | ||
| 334 | |||
| 335 | The following extensions are non standard, Netscape specific and largely | ||
| 336 | obsolete. Their use in new applications is discouraged. | ||
| 337 | |||
| 338 | =head2 Netscape String extensions. | ||
| 339 | |||
| 340 | Netscape Comment (B<nsComment>) is a string extension containing a comment | ||
| 341 | which will be displayed when the certificate is viewed in some browsers. | ||
| 342 | |||
| 343 | Example: | ||
| 344 | |||
| 345 | nsComment = "Some Random Comment" | ||
| 346 | |||
| 347 | Other supported extensions in this category are: B<nsBaseUrl>, | ||
| 348 | B<nsRevocationUrl>, B<nsCaRevocationUrl>, B<nsRenewalUrl>, B<nsCaPolicyUrl> | ||
| 349 | and B<nsSslServerName>. | ||
| 350 | |||
| 351 | |||
| 352 | =head2 Netscape Certificate Type | ||
| 353 | |||
| 354 | This is a multi-valued extensions which consists of a list of flags to be | ||
| 355 | included. It was used to indicate the purposes for which a certificate could | ||
| 356 | be used. The basicConstraints, keyUsage and extended key usage extensions are | ||
| 357 | now used instead. | ||
| 358 | |||
| 359 | Acceptable values for nsCertType are: B<client>, B<server>, B<email>, | ||
| 360 | B<objsign>, B<reserved>, B<sslCA>, B<emailCA>, B<objCA>. | ||
| 361 | |||
| 362 | |||
| 363 | =head1 ARBITRARY EXTENSIONS | ||
| 364 | |||
| 365 | If an extension is not supported by the OpenSSL code then it must be encoded | ||
| 366 | using the arbitrary extension format. It is also possible to use the arbitrary | ||
| 367 | format for supported extensions. Extreme care should be taken to ensure that | ||
| 368 | the data is formatted correctly for the given extension type. | ||
| 369 | |||
| 370 | There are two ways to encode arbitrary extensions. | ||
| 371 | |||
| 372 | The first way is to use the word ASN1 followed by the extension content | ||
| 373 | using the same syntax as ASN1_generate_nconf(). For example: | ||
| 374 | |||
| 375 | 1.2.3.4=critical,ASN1:UTF8String:Some random data | ||
| 376 | |||
| 377 | 1.2.3.4=ASN1:SEQUENCE:seq_sect | ||
| 378 | |||
| 379 | [seq_sect] | ||
| 380 | |||
| 381 | field1 = UTF8:field1 | ||
| 382 | field2 = UTF8:field2 | ||
| 383 | |||
| 384 | It is also possible to use the word DER to include the raw encoded data in any | ||
| 385 | extension. | ||
| 386 | |||
| 387 | 1.2.3.4=critical,DER:01:02:03:04 | ||
| 388 | 1.2.3.4=DER:01020304 | ||
| 389 | |||
| 390 | The value following DER is a hex dump of the DER encoding of the extension | ||
| 391 | Any extension can be placed in this form to override the default behaviour. | ||
| 392 | For example: | ||
| 393 | |||
| 394 | basicConstraints=critical,DER:00:01:02:03 | ||
| 395 | |||
| 396 | =head1 WARNING | ||
| 397 | |||
| 398 | There is no guarantee that a specific implementation will process a given | ||
| 399 | extension. It may therefore be sometimes possible to use certificates for | ||
| 400 | purposes prohibited by their extensions because a specific application does | ||
| 401 | not recognize or honour the values of the relevant extensions. | ||
| 402 | |||
| 403 | The DER and ASN1 options should be used with caution. It is possible to create | ||
| 404 | totally invalid extensions if they are not used carefully. | ||
| 405 | |||
| 406 | |||
| 407 | =head1 NOTES | ||
| 408 | |||
| 409 | If an extension is multi-value and a field value must contain a comma the long | ||
| 410 | form must be used otherwise the comma would be misinterpreted as a field | ||
| 411 | separator. For example: | ||
| 412 | |||
| 413 | subjectAltName=URI:ldap://somehost.com/CN=foo,OU=bar | ||
| 414 | |||
| 415 | will produce an error but the equivalent form: | ||
| 416 | |||
| 417 | subjectAltName=@subject_alt_section | ||
| 418 | |||
| 419 | [subject_alt_section] | ||
| 420 | subjectAltName=URI:ldap://somehost.com/CN=foo,OU=bar | ||
| 421 | |||
| 422 | is valid. | ||
| 423 | |||
| 424 | Due to the behaviour of the OpenSSL B<conf> library the same field name | ||
| 425 | can only occur once in a section. This means that: | ||
| 426 | |||
| 427 | subjectAltName=@alt_section | ||
| 428 | |||
| 429 | [alt_section] | ||
| 430 | |||
| 431 | email=steve@here | ||
| 432 | email=steve@there | ||
| 433 | |||
| 434 | will only recognize the last value. This can be worked around by using the form: | ||
| 435 | |||
| 436 | [alt_section] | ||
| 437 | |||
| 438 | email.1=steve@here | ||
| 439 | email.2=steve@there | ||
| 440 | |||
| 441 | =head1 HISTORY | ||
| 442 | |||
| 443 | The X509v3 extension code was first added to OpenSSL 0.9.2. | ||
| 444 | |||
| 445 | Policy mappings, inhibit any policy and name constraints support was added in | ||
| 446 | OpenSSL 0.9.8 | ||
| 447 | |||
| 448 | The B<directoryName> and B<otherName> option as well as the B<ASN1> option | ||
| 449 | for arbitrary extensions was added in OpenSSL 0.9.8 | ||
| 450 | |||
| 451 | =head1 SEE ALSO | ||
| 452 | |||
| 453 | L<req(1)|req(1)>, L<ca(1)|ca(1)>, L<x509(1)|x509(1)> | ||
| 454 | |||
| 455 | |||
| 456 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/ASN1_generate_nconf.pod b/src/lib/libssl/src/doc/crypto/ASN1_generate_nconf.pod new file mode 100644 index 0000000000..1157cff510 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/ASN1_generate_nconf.pod | |||
| @@ -0,0 +1,262 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | ASN1_generate_nconf, ASN1_generate_v3 - ASN1 generation functions | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | ASN1_TYPE *ASN1_generate_nconf(char *str, CONF *nconf); | ||
| 10 | ASN1_TYPE *ASN1_generate_v3(char *str, X509V3_CTX *cnf); | ||
| 11 | |||
| 12 | =head1 DESCRIPTION | ||
| 13 | |||
| 14 | These functions generate the ASN1 encoding of a string | ||
| 15 | in an B<ASN1_TYPE> structure. | ||
| 16 | |||
| 17 | B<str> contains the string to encode B<nconf> or B<cnf> contains | ||
| 18 | the optional configuration information where additional strings | ||
| 19 | will be read from. B<nconf> will typically come from a config | ||
| 20 | file wherease B<cnf> is obtained from an B<X509V3_CTX> structure | ||
| 21 | which will typically be used by X509 v3 certificate extension | ||
| 22 | functions. B<cnf> or B<nconf> can be set to B<NULL> if no additional | ||
| 23 | configuration will be used. | ||
| 24 | |||
| 25 | =head1 GENERATION STRING FORMAT | ||
| 26 | |||
| 27 | The actual data encoded is determined by the string B<str> and | ||
| 28 | the configuration information. The general format of the string | ||
| 29 | is: | ||
| 30 | |||
| 31 | =over 2 | ||
| 32 | |||
| 33 | =item B<[modifier,]type[:value]> | ||
| 34 | |||
| 35 | =back | ||
| 36 | |||
| 37 | That is zero or more comma separated modifiers followed by a type | ||
| 38 | followed by an optional colon and a value. The formats of B<type>, | ||
| 39 | B<value> and B<modifier> are explained below. | ||
| 40 | |||
| 41 | =head2 SUPPORTED TYPES | ||
| 42 | |||
| 43 | The supported types are listed below. Unless otherwise specified | ||
| 44 | only the B<ASCII> format is permissible. | ||
| 45 | |||
| 46 | =over 2 | ||
| 47 | |||
| 48 | =item B<BOOLEAN>, B<BOOL> | ||
| 49 | |||
| 50 | This encodes a boolean type. The B<value> string is mandatory and | ||
| 51 | should be B<TRUE> or B<FALSE>. Additionally B<TRUE>, B<true>, B<Y>, | ||
| 52 | B<y>, B<YES>, B<yes>, B<FALSE>, B<false>, B<N>, B<n>, B<NO> and B<no> | ||
| 53 | are acceptable. | ||
| 54 | |||
| 55 | =item B<NULL> | ||
| 56 | |||
| 57 | Encode the B<NULL> type, the B<value> string must not be present. | ||
| 58 | |||
| 59 | =item B<INTEGER>, B<INT> | ||
| 60 | |||
| 61 | Encodes an ASN1 B<INTEGER> type. The B<value> string represents | ||
| 62 | the value of the integer, it can be preceeded by a minus sign and | ||
| 63 | is normally interpreted as a decimal value unless the prefix B<0x> | ||
| 64 | is included. | ||
| 65 | |||
| 66 | =item B<ENUMERATED>, B<ENUM> | ||
| 67 | |||
| 68 | Encodes the ASN1 B<ENUMERATED> type, it is otherwise identical to | ||
| 69 | B<INTEGER>. | ||
| 70 | |||
| 71 | =item B<OBJECT>, B<OID> | ||
| 72 | |||
| 73 | Encodes an ASN1 B<OBJECT IDENTIFIER>, the B<value> string can be | ||
| 74 | a short name, a long name or numerical format. | ||
| 75 | |||
| 76 | =item B<UTCTIME>, B<UTC> | ||
| 77 | |||
| 78 | Encodes an ASN1 B<UTCTime> structure, the value should be in | ||
| 79 | the format B<YYMMDDHHMMSSZ>. | ||
| 80 | |||
| 81 | =item B<GENERALIZEDTIME>, B<GENTIME> | ||
| 82 | |||
| 83 | Encodes an ASN1 B<GeneralizedTime> structure, the value should be in | ||
| 84 | the format B<YYYYMMDDHHMMSSZ>. | ||
| 85 | |||
| 86 | =item B<OCTETSTRING>, B<OCT> | ||
| 87 | |||
| 88 | Encodes an ASN1 B<OCTET STRING>. B<value> represents the contents | ||
| 89 | of this structure, the format strings B<ASCII> and B<HEX> can be | ||
| 90 | used to specify the format of B<value>. | ||
| 91 | |||
| 92 | =item B<BITSTRING>, B<BITSTR> | ||
| 93 | |||
| 94 | Encodes an ASN1 B<BIT STRING>. B<value> represents the contents | ||
| 95 | of this structure, the format strings B<ASCII>, B<HEX> and B<BITLIST> | ||
| 96 | can be used to specify the format of B<value>. | ||
| 97 | |||
| 98 | If the format is anything other than B<BITLIST> the number of unused | ||
| 99 | bits is set to zero. | ||
| 100 | |||
| 101 | =item B<UNIVERSALSTRING>, B<UNIV>, B<IA5>, B<IA5STRING>, B<UTF8>, | ||
| 102 | B<UTF8String>, B<BMP>, B<BMPSTRING>, B<VISIBLESTRING>, | ||
| 103 | B<VISIBLE>, B<PRINTABLESTRING>, B<PRINTABLE>, B<T61>, | ||
| 104 | B<T61STRING>, B<TELETEXSTRING>, B<GeneralString> | ||
| 105 | |||
| 106 | These encode the corresponding string types. B<value> represents the | ||
| 107 | contents of this structure. The format can be B<ASCII> or B<UTF8>. | ||
| 108 | |||
| 109 | =item B<SEQUENCE>, B<SEQ>, B<SET> | ||
| 110 | |||
| 111 | Formats the result as an ASN1 B<SEQUENCE> or B<SET> type. B<value> | ||
| 112 | should be a section name which will contain the contents. The | ||
| 113 | field names in the section are ignored and the values are in the | ||
| 114 | generated string format. If B<value> is absent then an empty SEQUENCE | ||
| 115 | will be encoded. | ||
| 116 | |||
| 117 | =back | ||
| 118 | |||
| 119 | =head2 MODIFIERS | ||
| 120 | |||
| 121 | Modifiers affect the following structure, they can be used to | ||
| 122 | add EXPLICIT or IMPLICIT tagging, add wrappers or to change | ||
| 123 | the string format of the final type and value. The supported | ||
| 124 | formats are documented below. | ||
| 125 | |||
| 126 | =over 2 | ||
| 127 | |||
| 128 | =item B<EXPLICIT>, B<EXP> | ||
| 129 | |||
| 130 | Add an explicit tag to the following structure. This string | ||
| 131 | should be followed by a colon and the tag value to use as a | ||
| 132 | decimal value. | ||
| 133 | |||
| 134 | By following the number with B<U>, B<A>, B<P> or B<C> UNIVERSAL, | ||
| 135 | APPLICATION, PRIVATE or CONTEXT SPECIFIC tagging can be used, | ||
| 136 | the default is CONTEXT SPECIFIC. | ||
| 137 | |||
| 138 | =item B<IMPLICIT>, B<IMP> | ||
| 139 | |||
| 140 | This is the same as B<EXPLICIT> except IMPLICIT tagging is used | ||
| 141 | instead. | ||
| 142 | |||
| 143 | =item B<OCTWRAP>, B<SEQWRAP>, B<SETWRAP>, B<BITWRAP> | ||
| 144 | |||
| 145 | The following structure is surrounded by an OCTET STRING, a SEQUENCE, | ||
| 146 | a SET or a BIT STRING respectively. For a BIT STRING the number of unused | ||
| 147 | bits is set to zero. | ||
| 148 | |||
| 149 | =item B<FORMAT> | ||
| 150 | |||
| 151 | This specifies the format of the ultimate value. It should be followed | ||
| 152 | by a colon and one of the strings B<ASCII>, B<UTF8>, B<HEX> or B<BITLIST>. | ||
| 153 | |||
| 154 | If no format specifier is included then B<ASCII> is used. If B<UTF8> is | ||
| 155 | specified then the value string must be a valid B<UTF8> string. For B<HEX> the | ||
| 156 | output must be a set of hex digits. B<BITLIST> (which is only valid for a BIT | ||
| 157 | STRING) is a comma separated list of the indices of the set bits, all other | ||
| 158 | bits are zero. | ||
| 159 | |||
| 160 | =back | ||
| 161 | |||
| 162 | =head1 EXAMPLES | ||
| 163 | |||
| 164 | A simple IA5String: | ||
| 165 | |||
| 166 | IA5STRING:Hello World | ||
| 167 | |||
| 168 | An IA5String explicitly tagged: | ||
| 169 | |||
| 170 | EXPLICIT:0,IA5STRING:Hello World | ||
| 171 | |||
| 172 | An IA5String explicitly tagged using APPLICATION tagging: | ||
| 173 | |||
| 174 | EXPLICIT:0A,IA5STRING:Hello World | ||
| 175 | |||
| 176 | A BITSTRING with bits 1 and 5 set and all others zero: | ||
| 177 | |||
| 178 | FORMAT=BITLIST,BITSTRING:1,5 | ||
| 179 | |||
| 180 | A more complex example using a config file to produce a | ||
| 181 | SEQUENCE consiting of a BOOL an OID and a UTF8String: | ||
| 182 | |||
| 183 | asn1 = SEQUENCE:seq_section | ||
| 184 | |||
| 185 | [seq_section] | ||
| 186 | |||
| 187 | field1 = BOOLEAN:TRUE | ||
| 188 | field2 = OID:commonName | ||
| 189 | field3 = UTF8:Third field | ||
| 190 | |||
| 191 | This example produces an RSAPrivateKey structure, this is the | ||
| 192 | key contained in the file client.pem in all OpenSSL distributions | ||
| 193 | (note: the field names such as 'coeff' are ignored and are present just | ||
| 194 | for clarity): | ||
| 195 | |||
| 196 | asn1=SEQUENCE:private_key | ||
| 197 | [private_key] | ||
| 198 | version=INTEGER:0 | ||
| 199 | |||
| 200 | n=INTEGER:0xBB6FE79432CC6EA2D8F970675A5A87BFBE1AFF0BE63E879F2AFFB93644\ | ||
| 201 | D4D2C6D000430DEC66ABF47829E74B8C5108623A1C0EE8BE217B3AD8D36D5EB4FCA1D9 | ||
| 202 | |||
| 203 | e=INTEGER:0x010001 | ||
| 204 | |||
| 205 | d=INTEGER:0x6F05EAD2F27FFAEC84BEC360C4B928FD5F3A9865D0FCAAD291E2A52F4A\ | ||
| 206 | F810DC6373278C006A0ABBA27DC8C63BF97F7E666E27C5284D7D3B1FFFE16B7A87B51D | ||
| 207 | |||
| 208 | p=INTEGER:0xF3929B9435608F8A22C208D86795271D54EBDFB09DDEF539AB083DA912\ | ||
| 209 | D4BD57 | ||
| 210 | |||
| 211 | q=INTEGER:0xC50016F89DFF2561347ED1186A46E150E28BF2D0F539A1594BBD7FE467\ | ||
| 212 | 46EC4F | ||
| 213 | |||
| 214 | exp1=INTEGER:0x9E7D4326C924AFC1DEA40B45650134966D6F9DFA3A7F9D698CD4ABEA\ | ||
| 215 | 9C0A39B9 | ||
| 216 | |||
| 217 | exp2=INTEGER:0xBA84003BB95355AFB7C50DF140C60513D0BA51D637272E355E397779\ | ||
| 218 | E7B2458F | ||
| 219 | |||
| 220 | coeff=INTEGER:0x30B9E4F2AFA5AC679F920FC83F1F2DF1BAF1779CF989447FABC2F5\ | ||
| 221 | 628657053A | ||
| 222 | |||
| 223 | This example is the corresponding public key in a SubjectPublicKeyInfo | ||
| 224 | structure: | ||
| 225 | |||
| 226 | # Start with a SEQUENCE | ||
| 227 | asn1=SEQUENCE:pubkeyinfo | ||
| 228 | |||
| 229 | # pubkeyinfo contains an algorithm identifier and the public key wrapped | ||
| 230 | # in a BIT STRING | ||
| 231 | [pubkeyinfo] | ||
| 232 | algorithm=SEQUENCE:rsa_alg | ||
| 233 | pubkey=BITWRAP,SEQUENCE:rsapubkey | ||
| 234 | |||
| 235 | # algorithm ID for RSA is just an OID and a NULL | ||
| 236 | [rsa_alg] | ||
| 237 | algorithm=OID:rsaEncryption | ||
| 238 | parameter=NULL | ||
| 239 | |||
| 240 | # Actual public key: modulus and exponent | ||
| 241 | [rsapubkey] | ||
| 242 | n=INTEGER:0xBB6FE79432CC6EA2D8F970675A5A87BFBE1AFF0BE63E879F2AFFB93644\ | ||
| 243 | D4D2C6D000430DEC66ABF47829E74B8C5108623A1C0EE8BE217B3AD8D36D5EB4FCA1D9 | ||
| 244 | |||
| 245 | e=INTEGER:0x010001 | ||
| 246 | |||
| 247 | =head1 RETURN VALUES | ||
| 248 | |||
| 249 | ASN1_generate_nconf() and ASN1_generate_v3() return the encoded | ||
| 250 | data as an B<ASN1_TYPE> structure or B<NULL> if an error occurred. | ||
| 251 | |||
| 252 | The error codes that can be obtained by L<ERR_get_error(3)|ERR_get_error(3)>. | ||
| 253 | |||
| 254 | =head1 SEE ALSO | ||
| 255 | |||
| 256 | L<ERR_get_error(3)|ERR_get_error(3)> | ||
| 257 | |||
| 258 | =head1 HISTORY | ||
| 259 | |||
| 260 | ASN1_generate_nconf() and ASN1_generate_v3() were added to OpenSSL 0.9.8 | ||
| 261 | |||
| 262 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/BN_BLINDING_new.pod b/src/lib/libssl/src/doc/crypto/BN_BLINDING_new.pod new file mode 100644 index 0000000000..7b087f7288 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/BN_BLINDING_new.pod | |||
| @@ -0,0 +1,109 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | BN_BLINDING_new, BN_BLINDING_free, BN_BLINDING_update, BN_BLINDING_convert, | ||
| 6 | BN_BLINDING_invert, BN_BLINDING_convert_ex, BN_BLINDING_invert_ex, | ||
| 7 | BN_BLINDING_get_thread_id, BN_BLINDING_set_thread_id, BN_BLINDING_get_flags, | ||
| 8 | BN_BLINDING_set_flags, BN_BLINDING_create_param - blinding related BIGNUM | ||
| 9 | functions. | ||
| 10 | |||
| 11 | =head1 SYNOPSIS | ||
| 12 | |||
| 13 | #include <openssl/bn.h> | ||
| 14 | |||
| 15 | BN_BLINDING *BN_BLINDING_new(const BIGNUM *A, const BIGNUM *Ai, | ||
| 16 | BIGNUM *mod); | ||
| 17 | void BN_BLINDING_free(BN_BLINDING *b); | ||
| 18 | int BN_BLINDING_update(BN_BLINDING *b,BN_CTX *ctx); | ||
| 19 | int BN_BLINDING_convert(BIGNUM *n, BN_BLINDING *b, BN_CTX *ctx); | ||
| 20 | int BN_BLINDING_invert(BIGNUM *n, BN_BLINDING *b, BN_CTX *ctx); | ||
| 21 | int BN_BLINDING_convert_ex(BIGNUM *n, BIGNUM *r, BN_BLINDING *b, | ||
| 22 | BN_CTX *ctx); | ||
| 23 | int BN_BLINDING_invert_ex(BIGNUM *n, const BIGNUM *r, BN_BLINDING *b, | ||
| 24 | BN_CTX *ctx); | ||
| 25 | unsigned long BN_BLINDING_get_thread_id(const BN_BLINDING *); | ||
| 26 | void BN_BLINDING_set_thread_id(BN_BLINDING *, unsigned long); | ||
| 27 | unsigned long BN_BLINDING_get_flags(const BN_BLINDING *); | ||
| 28 | void BN_BLINDING_set_flags(BN_BLINDING *, unsigned long); | ||
| 29 | BN_BLINDING *BN_BLINDING_create_param(BN_BLINDING *b, | ||
| 30 | const BIGNUM *e, BIGNUM *m, BN_CTX *ctx, | ||
| 31 | int (*bn_mod_exp)(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | ||
| 32 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx), | ||
| 33 | BN_MONT_CTX *m_ctx); | ||
| 34 | |||
| 35 | =head1 DESCRIPTION | ||
| 36 | |||
| 37 | BN_BLINDING_new() allocates a new B<BN_BLINDING> structure and copies | ||
| 38 | the B<A> and B<Ai> values into the newly created B<BN_BLINDING> object. | ||
| 39 | |||
| 40 | BN_BLINDING_free() frees the B<BN_BLINDING> structure. | ||
| 41 | |||
| 42 | BN_BLINDING_update() updates the B<BN_BLINDING> parameters by squaring | ||
| 43 | the B<A> and B<Ai> or, after specific number of uses and if the | ||
| 44 | necessary parameters are set, by re-creating the blinding parameters. | ||
| 45 | |||
| 46 | BN_BLINDING_convert_ex() multiplies B<n> with the blinding factor B<A>. | ||
| 47 | If B<r> is not NULL a copy the inverse blinding factor B<Ai> will be | ||
| 48 | returned in B<r> (this is useful if a B<RSA> object is shared amoung | ||
| 49 | several threads). BN_BLINDING_invert_ex() multiplies B<n> with the | ||
| 50 | inverse blinding factor B<Ai>. If B<r> is not NULL it will be used as | ||
| 51 | the inverse blinding. | ||
| 52 | |||
| 53 | BN_BLINDING_convert() and BN_BLINDING_invert() are wrapper | ||
| 54 | functions for BN_BLINDING_convert_ex() and BN_BLINDING_invert_ex() | ||
| 55 | with B<r> set to NULL. | ||
| 56 | |||
| 57 | BN_BLINDING_set_thread_id() and BN_BLINDING_get_thread_id() | ||
| 58 | set and get the "thread id" value of the B<BN_BLINDING> structure, | ||
| 59 | a field provided to users of B<BN_BLINDING> structure to help them | ||
| 60 | provide proper locking if needed for multi-threaded use. The | ||
| 61 | "thread id" of a newly allocated B<BN_BLINDING> structure is zero. | ||
| 62 | |||
| 63 | BN_BLINDING_get_flags() returns the BN_BLINDING flags. Currently | ||
| 64 | there are two supported flags: B<BN_BLINDING_NO_UPDATE> and | ||
| 65 | B<BN_BLINDING_NO_RECREATE>. B<BN_BLINDING_NO_UPDATE> inhibits the | ||
| 66 | automatic update of the B<BN_BLINDING> parameters after each use | ||
| 67 | and B<BN_BLINDING_NO_RECREATE> inhibits the automatic re-creation | ||
| 68 | of the B<BN_BLINDING> parameters after a fixed number of uses (currently | ||
| 69 | 32). In newly allocated B<BN_BLINDING> objects no flags are set. | ||
| 70 | BN_BLINDING_set_flags() sets the B<BN_BLINDING> parameters flags. | ||
| 71 | |||
| 72 | BN_BLINDING_create_param() creates new B<BN_BLINDING> parameters | ||
| 73 | using the exponent B<e> and the modulus B<m>. B<bn_mod_exp> and | ||
| 74 | B<m_ctx> can be used to pass special functions for exponentiation | ||
| 75 | (normally BN_mod_exp_mont() and B<BN_MONT_CTX>). | ||
| 76 | |||
| 77 | =head1 RETURN VALUES | ||
| 78 | |||
| 79 | BN_BLINDING_new() returns the newly allocated B<BN_BLINDING> structure | ||
| 80 | or NULL in case of an error. | ||
| 81 | |||
| 82 | BN_BLINDING_update(), BN_BLINDING_convert(), BN_BLINDING_invert(), | ||
| 83 | BN_BLINDING_convert_ex() and BN_BLINDING_invert_ex() return 1 on | ||
| 84 | success and 0 if an error occured. | ||
| 85 | |||
| 86 | BN_BLINDING_get_thread_id() returns the thread id (a B<unsigned long> | ||
| 87 | value) or 0 if not set. | ||
| 88 | |||
| 89 | BN_BLINDING_get_flags() returns the currently set B<BN_BLINDING> flags | ||
| 90 | (a B<unsigned long> value). | ||
| 91 | |||
| 92 | BN_BLINDING_create_param() returns the newly created B<BN_BLINDING> | ||
| 93 | parameters or NULL on error. | ||
| 94 | |||
| 95 | =head1 SEE ALSO | ||
| 96 | |||
| 97 | L<bn(3)|bn(3)> | ||
| 98 | |||
| 99 | =head1 HISTORY | ||
| 100 | |||
| 101 | BN_BLINDING_convert_ex, BN_BLINDIND_invert_ex, BN_BLINDING_get_thread_id, | ||
| 102 | BN_BLINDING_set_thread_id, BN_BLINDING_set_flags, BN_BLINDING_get_flags | ||
| 103 | and BN_BLINDING_create_param were first introduced in OpenSSL 0.9.8 | ||
| 104 | |||
| 105 | =head1 AUTHOR | ||
| 106 | |||
| 107 | Nils Larsch for the OpenSSL project (http://www.openssl.org). | ||
| 108 | |||
| 109 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/ERR_set_mark.pod b/src/lib/libssl/src/doc/crypto/ERR_set_mark.pod new file mode 100644 index 0000000000..d3ca4f2e77 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/ERR_set_mark.pod | |||
| @@ -0,0 +1,38 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | ERR_set_mark, ERR_pop_to_mark - set marks and pop errors until mark | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | #include <openssl/err.h> | ||
| 10 | |||
| 11 | int ERR_set_mark(void); | ||
| 12 | |||
| 13 | int ERR_pop_to_mark(void); | ||
| 14 | |||
| 15 | =head1 DESCRIPTION | ||
| 16 | |||
| 17 | ERR_set_mark() sets a mark on the current topmost error record if there | ||
| 18 | is one. | ||
| 19 | |||
| 20 | ERR_pop_to_mark() will pop the top of the error stack until a mark is found. | ||
| 21 | The mark is then removed. If there is no mark, the whole stack is removed. | ||
| 22 | |||
| 23 | =head1 RETURN VALUES | ||
| 24 | |||
| 25 | ERR_set_mark() returns 0 if the error stack is empty, otherwise 1. | ||
| 26 | |||
| 27 | ERR_pop_to_mark() returns 0 if there was no mark in the error stack, which | ||
| 28 | implies that the stack became empty, otherwise 1. | ||
| 29 | |||
| 30 | =head1 SEE ALSO | ||
| 31 | |||
| 32 | L<err(3)|err(3)> | ||
| 33 | |||
| 34 | =head1 HISTORY | ||
| 35 | |||
| 36 | ERR_set_mark() and ERR_pop_to_mark() were added in OpenSSL 0.9.8. | ||
| 37 | |||
| 38 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/OPENSSL_Applink.pod b/src/lib/libssl/src/doc/crypto/OPENSSL_Applink.pod new file mode 100644 index 0000000000..e54de12cc8 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/OPENSSL_Applink.pod | |||
| @@ -0,0 +1,21 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | OPENSSL_Applink - glue between OpenSSL BIO and Win32 compiler run-time | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | __declspec(dllexport) void **OPENSSL_Applink(); | ||
| 10 | |||
| 11 | =head1 DESCRIPTION | ||
| 12 | |||
| 13 | OPENSSL_Applink is application-side interface which provides a glue | ||
| 14 | between OpenSSL BIO layer and Win32 compiler run-time environment. | ||
| 15 | Even though it appears at application side, it's essentially OpenSSL | ||
| 16 | private interface. For this reason application developers are not | ||
| 17 | expected to implement it, but to compile provided module with | ||
| 18 | compiler of their choice and link it into the target application. | ||
| 19 | The referred module is available as <openssl>/ms/applink.c. | ||
| 20 | |||
| 21 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/OPENSSL_ia32cap.pod b/src/lib/libssl/src/doc/crypto/OPENSSL_ia32cap.pod new file mode 100644 index 0000000000..2e659d34a5 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/OPENSSL_ia32cap.pod | |||
| @@ -0,0 +1,43 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | OPENSSL_ia32cap - finding the IA-32 processor capabilities | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | unsigned long *OPENSSL_ia32cap_loc(void); | ||
| 10 | #define OPENSSL_ia32cap (*(OPENSSL_ia32cap_loc())) | ||
| 11 | |||
| 12 | =head1 DESCRIPTION | ||
| 13 | |||
| 14 | Value returned by OPENSSL_ia32cap_loc() is address of a variable | ||
| 15 | containing IA-32 processor capabilities bit vector as it appears in EDX | ||
| 16 | register after executing CPUID instruction with EAX=1 input value (see | ||
| 17 | Intel Application Note #241618). Naturally it's meaningful on IA-32[E] | ||
| 18 | platforms only. The variable is normally set up automatically upon | ||
| 19 | toolkit initialization, but can be manipulated afterwards to modify | ||
| 20 | crypto library behaviour. For the moment of this writing six bits are | ||
| 21 | significant, namely: | ||
| 22 | |||
| 23 | 1. bit #28 denoting Hyperthreading, which is used to distiguish | ||
| 24 | cores with shared cache; | ||
| 25 | 2. bit #26 denoting SSE2 support; | ||
| 26 | 3. bit #25 denoting SSE support; | ||
| 27 | 4. bit #23 denoting MMX support; | ||
| 28 | 5. bit #20, reserved by Intel, is used to choose between RC4 code | ||
| 29 | pathes; | ||
| 30 | 6. bit #4 denoting presence of Time-Stamp Counter. | ||
| 31 | |||
| 32 | For example, clearing bit #26 at run-time disables high-performance | ||
| 33 | SSE2 code present in the crypto library. You might have to do this if | ||
| 34 | target OpenSSL application is executed on SSE2 capable CPU, but under | ||
| 35 | control of OS which does not support SSE2 extentions. Even though you | ||
| 36 | can manipulate the value programmatically, you most likely will find it | ||
| 37 | more appropriate to set up an environment variable with the same name | ||
| 38 | prior starting target application, e.g. on Intel P4 processor 'env | ||
| 39 | OPENSSL_ia32cap=0x12900010 apps/openssl', to achieve same effect | ||
| 40 | without modifying the application source code. Alternatively you can | ||
| 41 | reconfigure the toolkit with no-sse2 option and recompile. | ||
| 42 | |||
| 43 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/ecdsa.pod b/src/lib/libssl/src/doc/crypto/ecdsa.pod new file mode 100644 index 0000000000..49b10f2249 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/ecdsa.pod | |||
| @@ -0,0 +1,210 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | ecdsa - Elliptic Curve Digital Signature Algorithm | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | #include <openssl/ecdsa.h> | ||
| 10 | |||
| 11 | ECDSA_SIG* ECDSA_SIG_new(void); | ||
| 12 | void ECDSA_SIG_free(ECDSA_SIG *sig); | ||
| 13 | int i2d_ECDSA_SIG(const ECDSA_SIG *sig, unsigned char **pp); | ||
| 14 | ECDSA_SIG* d2i_ECDSA_SIG(ECDSA_SIG **sig, const unsigned char **pp, | ||
| 15 | long len); | ||
| 16 | |||
| 17 | ECDSA_SIG* ECDSA_do_sign(const unsigned char *dgst, int dgst_len, | ||
| 18 | EC_KEY *eckey); | ||
| 19 | ECDSA_SIG* ECDSA_do_sign_ex(const unsigned char *dgst, int dgstlen, | ||
| 20 | const BIGNUM *kinv, const BIGNUM *rp, | ||
| 21 | EC_KEY *eckey); | ||
| 22 | int ECDSA_do_verify(const unsigned char *dgst, int dgst_len, | ||
| 23 | const ECDSA_SIG *sig, EC_KEY* eckey); | ||
| 24 | int ECDSA_sign_setup(EC_KEY *eckey, BN_CTX *ctx, | ||
| 25 | BIGNUM **kinv, BIGNUM **rp); | ||
| 26 | int ECDSA_sign(int type, const unsigned char *dgst, | ||
| 27 | int dgstlen, unsigned char *sig, | ||
| 28 | unsigned int *siglen, EC_KEY *eckey); | ||
| 29 | int ECDSA_sign_ex(int type, const unsigned char *dgst, | ||
| 30 | int dgstlen, unsigned char *sig, | ||
| 31 | unsigned int *siglen, const BIGNUM *kinv, | ||
| 32 | const BIGNUM *rp, EC_KEY *eckey); | ||
| 33 | int ECDSA_verify(int type, const unsigned char *dgst, | ||
| 34 | int dgstlen, const unsigned char *sig, | ||
| 35 | int siglen, EC_KEY *eckey); | ||
| 36 | int ECDSA_size(const EC_KEY *eckey); | ||
| 37 | |||
| 38 | const ECDSA_METHOD* ECDSA_OpenSSL(void); | ||
| 39 | void ECDSA_set_default_method(const ECDSA_METHOD *meth); | ||
| 40 | const ECDSA_METHOD* ECDSA_get_default_method(void); | ||
| 41 | int ECDSA_set_method(EC_KEY *eckey,const ECDSA_METHOD *meth); | ||
| 42 | |||
| 43 | int ECDSA_get_ex_new_index(long argl, void *argp, | ||
| 44 | CRYPTO_EX_new *new_func, | ||
| 45 | CRYPTO_EX_dup *dup_func, | ||
| 46 | CRYPTO_EX_free *free_func); | ||
| 47 | int ECDSA_set_ex_data(EC_KEY *d, int idx, void *arg); | ||
| 48 | void* ECDSA_get_ex_data(EC_KEY *d, int idx); | ||
| 49 | |||
| 50 | =head1 DESCRIPTION | ||
| 51 | |||
| 52 | The B<ECDSA_SIG> structure consists of two BIGNUMs for the | ||
| 53 | r and s value of a ECDSA signature (see X9.62 or FIPS 186-2). | ||
| 54 | |||
| 55 | struct | ||
| 56 | { | ||
| 57 | BIGNUM *r; | ||
| 58 | BIGNUM *s; | ||
| 59 | } ECDSA_SIG; | ||
| 60 | |||
| 61 | ECDSA_SIG_new() allocates a new B<ECDSA_SIG> structure (note: this | ||
| 62 | function also allocates the BIGNUMs) and initialize it. | ||
| 63 | |||
| 64 | ECDSA_SIG_free() frees the B<ECDSA_SIG> structure B<sig>. | ||
| 65 | |||
| 66 | i2d_ECDSA_SIG() creates the DER encoding of the ECDSA signature | ||
| 67 | B<sig> and writes the encoded signature to B<*pp> (note: if B<pp> | ||
| 68 | is NULL B<i2d_ECDSA_SIG> returns the expected length in bytes of | ||
| 69 | the DER encoded signature). B<i2d_ECDSA_SIG> returns the length | ||
| 70 | of the DER encoded signature (or 0 on error). | ||
| 71 | |||
| 72 | d2i_ECDSA_SIG() decodes a DER encoded ECDSA signature and returns | ||
| 73 | the decoded signature in a newly allocated B<ECDSA_SIG> structure. | ||
| 74 | B<*sig> points to the buffer containing the DER encoded signature | ||
| 75 | of size B<len>. | ||
| 76 | |||
| 77 | ECDSA_size() returns the maximum length of a DER encoded | ||
| 78 | ECDSA signature created with the private EC key B<eckey>. | ||
| 79 | |||
| 80 | ECDSA_sign_setup() may be used to precompute parts of the | ||
| 81 | signing operation. B<eckey> is the private EC key and B<ctx> | ||
| 82 | is a pointer to B<BN_CTX> structure (or NULL). The precomputed | ||
| 83 | values or returned in B<kinv> and B<rp> and can be used in a | ||
| 84 | later call to B<ECDSA_sign_ex> or B<ECDSA_do_sign_ex>. | ||
| 85 | |||
| 86 | ECDSA_sign() is wrapper function for ECDSA_sign_ex with B<kinv> | ||
| 87 | and B<rp> set to NULL. | ||
| 88 | |||
| 89 | ECDSA_sign_ex() computes a digital signature of the B<dgstlen> bytes | ||
| 90 | hash value B<dgst> using the private EC key B<eckey> and the optional | ||
| 91 | pre-computed values B<kinv> and B<rp>. The DER encoded signatures is | ||
| 92 | stored in B<sig> and it's length is returned in B<sig_len>. Note: B<sig> | ||
| 93 | must point to B<ECDSA_size> bytes of memory. The parameter B<type> | ||
| 94 | is ignored. | ||
| 95 | |||
| 96 | ECDSA_verify() verifies that the signature in B<sig> of size | ||
| 97 | B<siglen> is a valid ECDSA signature of the hash value | ||
| 98 | value B<dgst> of size B<dgstlen> using the public key B<eckey>. | ||
| 99 | The parameter B<type> is ignored. | ||
| 100 | |||
| 101 | ECDSA_do_sign() is wrapper function for ECDSA_do_sign_ex with B<kinv> | ||
| 102 | and B<rp> set to NULL. | ||
| 103 | |||
| 104 | ECDSA_do_sign_ex() computes a digital signature of the B<dgst_len> | ||
| 105 | bytes hash value B<dgst> using the private key B<eckey> and the | ||
| 106 | optional pre-computed values B<kinv> and B<rp>. The signature is | ||
| 107 | returned in a newly allocated B<ECDSA_SIG> structure (or NULL on error). | ||
| 108 | |||
| 109 | ECDSA_do_verify() verifies that the signature B<sig> is a valid | ||
| 110 | ECDSA signature of the hash value B<dgst> of size B<dgst_len> | ||
| 111 | using the public key B<eckey>. | ||
| 112 | |||
| 113 | =head1 RETURN VALUES | ||
| 114 | |||
| 115 | ECDSA_size() returns the maximum length signature or 0 on error. | ||
| 116 | |||
| 117 | ECDSA_sign_setup() and ECDSA_sign() return 1 if successful or -1 | ||
| 118 | on error. | ||
| 119 | |||
| 120 | ECDSA_verify() and ECDSA_do_verify() return 1 for a valid | ||
| 121 | signature, 0 for an invalid signature and -1 on error. | ||
| 122 | The error codes can be obtained by L<ERR_get_error(3)|ERR_get_error(3)>. | ||
| 123 | |||
| 124 | =head1 EXAMPLES | ||
| 125 | |||
| 126 | Creating a ECDSA signature of given SHA-1 hash value using the | ||
| 127 | named curve secp192k1. | ||
| 128 | |||
| 129 | First step: create a EC_KEY object (note: this part is B<not> ECDSA | ||
| 130 | specific) | ||
| 131 | |||
| 132 | int ret; | ||
| 133 | ECDSA_SIG *sig; | ||
| 134 | EC_KEY *eckey = EC_KEY_new(); | ||
| 135 | if (eckey == NULL) | ||
| 136 | { | ||
| 137 | /* error */ | ||
| 138 | } | ||
| 139 | key->group = EC_GROUP_new_by_nid(NID_secp192k1); | ||
| 140 | if (key->group == NULL) | ||
| 141 | { | ||
| 142 | /* error */ | ||
| 143 | } | ||
| 144 | if (!EC_KEY_generate_key(eckey)) | ||
| 145 | { | ||
| 146 | /* error */ | ||
| 147 | } | ||
| 148 | |||
| 149 | Second step: compute the ECDSA signature of a SHA-1 hash value | ||
| 150 | using B<ECDSA_do_sign> | ||
| 151 | |||
| 152 | sig = ECDSA_do_sign(digest, 20, eckey); | ||
| 153 | if (sig == NULL) | ||
| 154 | { | ||
| 155 | /* error */ | ||
| 156 | } | ||
| 157 | |||
| 158 | or using B<ECDSA_sign> | ||
| 159 | |||
| 160 | unsigned char *buffer, *pp; | ||
| 161 | int buf_len; | ||
| 162 | buf_len = ECDSA_size(eckey); | ||
| 163 | buffer = OPENSSL_malloc(buf_len); | ||
| 164 | pp = buffer; | ||
| 165 | if (!ECDSA_sign(0, dgst, dgstlen, pp, &buf_len, eckey); | ||
| 166 | { | ||
| 167 | /* error */ | ||
| 168 | } | ||
| 169 | |||
| 170 | Third step: verify the created ECDSA signature using B<ECDSA_do_verify> | ||
| 171 | |||
| 172 | ret = ECDSA_do_verify(digest, 20, sig, eckey); | ||
| 173 | |||
| 174 | or using B<ECDSA_verify> | ||
| 175 | |||
| 176 | ret = ECDSA_verify(0, digest, 20, buffer, buf_len, eckey); | ||
| 177 | |||
| 178 | and finally evaluate the return value: | ||
| 179 | |||
| 180 | if (ret == -1) | ||
| 181 | { | ||
| 182 | /* error */ | ||
| 183 | } | ||
| 184 | else if (ret == 0) | ||
| 185 | { | ||
| 186 | /* incorrect signature */ | ||
| 187 | } | ||
| 188 | else /* ret == 1 */ | ||
| 189 | { | ||
| 190 | /* signature ok */ | ||
| 191 | } | ||
| 192 | |||
| 193 | =head1 CONFORMING TO | ||
| 194 | |||
| 195 | ANSI X9.62, US Federal Information Processing Standard FIPS 186-2 | ||
| 196 | (Digital Signature Standard, DSS) | ||
| 197 | |||
| 198 | =head1 SEE ALSO | ||
| 199 | |||
| 200 | L<dsa(3)|dsa(3)>, L<rsa(3)|rsa(3)> | ||
| 201 | |||
| 202 | =head1 HISTORY | ||
| 203 | |||
| 204 | The ecdsa implementation was first introduced in OpenSSL 0.9.8 | ||
| 205 | |||
| 206 | =head1 AUTHOR | ||
| 207 | |||
| 208 | Nils Larsch for the OpenSSL project (http://www.openssl.org). | ||
| 209 | |||
| 210 | =cut | ||
diff --git a/src/lib/libssl/src/doc/crypto/x509.pod b/src/lib/libssl/src/doc/crypto/x509.pod new file mode 100644 index 0000000000..f9e58e0e41 --- /dev/null +++ b/src/lib/libssl/src/doc/crypto/x509.pod | |||
| @@ -0,0 +1,64 @@ | |||
| 1 | =pod | ||
| 2 | |||
| 3 | =head1 NAME | ||
| 4 | |||
| 5 | x509 - X.509 certificate handling | ||
| 6 | |||
| 7 | =head1 SYNOPSIS | ||
| 8 | |||
| 9 | #include <openssl/x509.h> | ||
| 10 | |||
| 11 | =head1 DESCRIPTION | ||
| 12 | |||
| 13 | A X.509 certificate is a structured grouping of information about | ||
| 14 | an individual, a device, or anything one can imagine. A X.509 CRL | ||
| 15 | (certificate revocation list) is a tool to help determine if a | ||
| 16 | certificate is still valid. The exact definition of those can be | ||
| 17 | found in the X.509 document from ITU-T, or in RFC3280 from PKIX. | ||
| 18 | In OpenSSL, the type X509 is used to express such a certificate, and | ||
| 19 | the type X509_CRL is used to express a CRL. | ||
| 20 | |||
| 21 | A related structure is a certificate request, defined in PKCS#10 from | ||
| 22 | RSA Security, Inc, also reflected in RFC2896. In OpenSSL, the type | ||
| 23 | X509_REQ is used to express such a certificate request. | ||
| 24 | |||
| 25 | To handle some complex parts of a certificate, there are the types | ||
| 26 | X509_NAME (to express a certificate name), X509_ATTRIBUTE (to express | ||
| 27 | a certificate attributes), X509_EXTENSION (to express a certificate | ||
| 28 | extension) and a few more. | ||
| 29 | |||
| 30 | Finally, there's the supertype X509_INFO, which can contain a CRL, a | ||
| 31 | certificate and a corresponding private key. | ||
| 32 | |||
| 33 | B<X509_>I<...>, B<d2i_X509_>I<...> and B<i2d_X509_>I<...> handle X.509 | ||
| 34 | certificates, with some exceptions, shown below. | ||
| 35 | |||
| 36 | B<X509_CRL_>I<...>, B<d2i_X509_CRL_>I<...> and B<i2d_X509_CRL_>I<...> | ||
| 37 | handle X.509 CRLs. | ||
| 38 | |||
| 39 | B<X509_REQ_>I<...>, B<d2i_X509_REQ_>I<...> and B<i2d_X509_REQ_>I<...> | ||
| 40 | handle PKCS#10 certificate requests. | ||
| 41 | |||
| 42 | B<X509_NAME_>I<...> handle certificate names. | ||
| 43 | |||
| 44 | B<X509_ATTRIBUTE_>I<...> handle certificate attributes. | ||
| 45 | |||
| 46 | B<X509_EXTENSION_>I<...> handle certificate extensions. | ||
| 47 | |||
| 48 | =head1 SEE ALSO | ||
| 49 | |||
| 50 | L<X509_NAME_ENTRY_get_object(3)|X509_NAME_ENTRY_get_object(3)>, | ||
| 51 | L<X509_NAME_add_entry_by_txt(3)|X509_NAME_add_entry_by_txt(3)>, | ||
| 52 | L<X509_NAME_add_entry_by_NID(3)|X509_NAME_add_entry_by_NID(3)>, | ||
| 53 | L<X509_NAME_print_ex(3)|X509_NAME_print_ex(3)>, | ||
| 54 | L<X509_NAME_new(3)|X509_NAME_new(3)>, | ||
| 55 | L<d2i_X509(3)|d2i_X509(3)>, | ||
| 56 | L<d2i_X509_ALGOR(3)|d2i_X509_ALGOR(3)>, | ||
| 57 | L<d2i_X509_CRL(3)|d2i_X509_CRL(3)>, | ||
| 58 | L<d2i_X509_NAME(3)|d2i_X509_NAME(3)>, | ||
| 59 | L<d2i_X509_REQ(3)|d2i_X509_REQ(3)>, | ||
| 60 | L<d2i_X509_SIG(3)|d2i_X509_SIG(3)>, | ||
| 61 | L<crypto(3)|crypto(3)>, | ||
| 62 | L<x509v3(3)|x509v3(3)> | ||
| 63 | |||
| 64 | =cut | ||
diff --git a/src/lib/libssl/src/engines/Makefile b/src/lib/libssl/src/engines/Makefile new file mode 100644 index 0000000000..88f8390d0e --- /dev/null +++ b/src/lib/libssl/src/engines/Makefile | |||
| @@ -0,0 +1,249 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/engines/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= engines | ||
| 6 | TOP= .. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= -I../include | ||
| 9 | CFLAG=-g | ||
| 10 | MAKEFILE= Makefile | ||
| 11 | AR= ar r | ||
| 12 | |||
| 13 | PEX_LIBS= | ||
| 14 | EX_LIBS= | ||
| 15 | |||
| 16 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 17 | |||
| 18 | GENERAL=Makefile engines.com install.com engine_vector.mar | ||
| 19 | TEST= | ||
| 20 | APPS= | ||
| 21 | |||
| 22 | LIB=$(TOP)/libcrypto.a | ||
| 23 | LIBNAMES= 4758cca aep atalla cswift gmp chil nuron sureware ubsec | ||
| 24 | |||
| 25 | LIBSRC= e_4758cca.c \ | ||
| 26 | e_aep.c \ | ||
| 27 | e_atalla.c \ | ||
| 28 | e_cswift.c \ | ||
| 29 | e_gmp.c \ | ||
| 30 | e_chil.c \ | ||
| 31 | e_nuron.c \ | ||
| 32 | e_sureware.c \ | ||
| 33 | e_ubsec.c | ||
| 34 | LIBOBJ= e_4758cca.o \ | ||
| 35 | e_aep.o \ | ||
| 36 | e_atalla.o \ | ||
| 37 | e_cswift.o \ | ||
| 38 | e_gmp.o \ | ||
| 39 | e_chil.o \ | ||
| 40 | e_nuron.o \ | ||
| 41 | e_sureware.o \ | ||
| 42 | e_ubsec.o | ||
| 43 | |||
| 44 | SRC= $(LIBSRC) | ||
| 45 | |||
| 46 | EXHEADER= | ||
| 47 | HEADER= e_4758cca_err.c e_4758cca_err.h \ | ||
| 48 | e_aep_err.c e_aep_err.h \ | ||
| 49 | e_atalla_err.c e_atalla_err.h \ | ||
| 50 | e_cswift_err.c e_cswift_err.h \ | ||
| 51 | e_gmp_err.c e_gmp_err.h \ | ||
| 52 | e_chil_err.c e_chil_err.h \ | ||
| 53 | e_nuron_err.c e_nuron_err.h \ | ||
| 54 | e_sureware_err.c e_sureware_err.h \ | ||
| 55 | e_ubsec_err.c e_ubsec_err.h | ||
| 56 | |||
| 57 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 58 | |||
| 59 | top: | ||
| 60 | (cd ..; $(MAKE) DIRS=$(DIR) all) | ||
| 61 | |||
| 62 | all: lib | ||
| 63 | |||
| 64 | lib: $(LIBOBJ) | ||
| 65 | @if [ -n "$(SHARED_LIBS)" ]; then \ | ||
| 66 | set -e; \ | ||
| 67 | for l in $(LIBNAMES); do \ | ||
| 68 | $(MAKE) -f ../Makefile.shared -e \ | ||
| 69 | LIBNAME=$$l LIBEXTRAS=e_$$l.o \ | ||
| 70 | LIBDEPS='-L.. -lcrypto $(EX_LIBS)' \ | ||
| 71 | link_o.$(SHLIB_TARGET); \ | ||
| 72 | done; \ | ||
| 73 | else \ | ||
| 74 | $(AR) $(LIB) $(LIBOBJ); \ | ||
| 75 | $(RANLIB) $(LIB) || echo Never mind.; \ | ||
| 76 | fi; \ | ||
| 77 | touch lib | ||
| 78 | |||
| 79 | files: | ||
| 80 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 81 | |||
| 82 | links: | ||
| 83 | |||
| 84 | # XXXXX This currently only works on systems that use .so as suffix | ||
| 85 | # for shared libraries as well as for Cygwin which uses the | ||
| 86 | # dlfcn_name_converter and therefore stores the engines with .so suffix, too. | ||
| 87 | # XXXXX This was extended to HP-UX dl targets, which use .sl suffix. | ||
| 88 | install: | ||
| 89 | @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile... | ||
| 90 | @if [ -n "$(SHARED_LIBS)" ]; then \ | ||
| 91 | set -e; \ | ||
| 92 | for l in $(LIBNAMES); do \ | ||
| 93 | ( echo installing $$l; \ | ||
| 94 | if [ "$(PLATFORM)" != "Cygwin" ]; then \ | ||
| 95 | case "$(CFLAGS)" in \ | ||
| 96 | *DSO_DLFCN*) sfx="so";; \ | ||
| 97 | *DSO_DL*) sfx="sl";; \ | ||
| 98 | *) sfx="bad";; \ | ||
| 99 | esac; \ | ||
| 100 | cp lib$$l.$$sfx $(INSTALL_PREFIX)$(INSTALLTOP)/lib/engines/lib$$l.$$sfx.new; \ | ||
| 101 | else \ | ||
| 102 | sfx="so"; \ | ||
| 103 | cp cyg$$l.dll $(INSTALL_PREFIX)$(INSTALLTOP)/lib/engines/lib$$l.$$sfx.new; \ | ||
| 104 | fi; \ | ||
| 105 | chmod 555 $(INSTALL_PREFIX)$(INSTALLTOP)/lib/engines/lib$$l.$$sfx.new; \ | ||
| 106 | mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/lib/engines/lib$$l.$$sfx.new $(INSTALL_PREFIX)$(INSTALLTOP)/lib/engines/lib$$l.$$sfx ); \ | ||
| 107 | done; \ | ||
| 108 | fi | ||
| 109 | |||
| 110 | tags: | ||
| 111 | ctags $(SRC) | ||
| 112 | |||
| 113 | errors: | ||
| 114 | set -e; for l in $(LIBNAMES); do \ | ||
| 115 | $(PERL) ../util/mkerr.pl -conf e_$$l.ec \ | ||
| 116 | -nostatic -staticloader -write e_$$l.c; \ | ||
| 117 | done | ||
| 118 | |||
| 119 | tests: | ||
| 120 | |||
| 121 | lint: | ||
| 122 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 123 | |||
| 124 | depend: | ||
| 125 | @if [ -z "$(THIS)" ]; then \ | ||
| 126 | $(MAKE) -f $(TOP)/Makefile reflect THIS=$@; \ | ||
| 127 | else \ | ||
| 128 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC); \ | ||
| 129 | fi | ||
| 130 | |||
| 131 | dclean: | ||
| 132 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 133 | mv -f Makefile.new $(MAKEFILE) | ||
| 134 | |||
| 135 | clean: | ||
| 136 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 137 | |||
| 138 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 139 | |||
| 140 | e_4758cca.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 141 | e_4758cca.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 142 | e_4758cca.o: ../include/openssl/crypto.h ../include/openssl/dso.h | ||
| 143 | e_4758cca.o: ../include/openssl/e_os2.h ../include/openssl/ec.h | ||
| 144 | e_4758cca.o: ../include/openssl/ecdh.h ../include/openssl/ecdsa.h | ||
| 145 | e_4758cca.o: ../include/openssl/engine.h ../include/openssl/err.h | ||
| 146 | e_4758cca.o: ../include/openssl/evp.h ../include/openssl/lhash.h | ||
| 147 | e_4758cca.o: ../include/openssl/obj_mac.h ../include/openssl/objects.h | ||
| 148 | e_4758cca.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 149 | e_4758cca.o: ../include/openssl/ossl_typ.h ../include/openssl/pkcs7.h | ||
| 150 | e_4758cca.o: ../include/openssl/rand.h ../include/openssl/rsa.h | ||
| 151 | e_4758cca.o: ../include/openssl/safestack.h ../include/openssl/sha.h | ||
| 152 | e_4758cca.o: ../include/openssl/stack.h ../include/openssl/symhacks.h | ||
| 153 | e_4758cca.o: ../include/openssl/x509.h ../include/openssl/x509_vfy.h | ||
| 154 | e_4758cca.o: e_4758cca.c e_4758cca_err.c e_4758cca_err.h | ||
| 155 | e_4758cca.o: vendor_defns/hw_4758_cca.h | ||
| 156 | e_aep.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 157 | e_aep.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 158 | e_aep.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 159 | e_aep.o: ../include/openssl/dsa.h ../include/openssl/dso.h | ||
| 160 | e_aep.o: ../include/openssl/e_os2.h ../include/openssl/engine.h | ||
| 161 | e_aep.o: ../include/openssl/err.h ../include/openssl/lhash.h | ||
| 162 | e_aep.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 163 | e_aep.o: ../include/openssl/ossl_typ.h ../include/openssl/rsa.h | ||
| 164 | e_aep.o: ../include/openssl/safestack.h ../include/openssl/stack.h | ||
| 165 | e_aep.o: ../include/openssl/symhacks.h e_aep.c e_aep_err.c e_aep_err.h | ||
| 166 | e_aep.o: vendor_defns/aep.h | ||
| 167 | e_atalla.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 168 | e_atalla.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 169 | e_atalla.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 170 | e_atalla.o: ../include/openssl/dsa.h ../include/openssl/dso.h | ||
| 171 | e_atalla.o: ../include/openssl/e_os2.h ../include/openssl/engine.h | ||
| 172 | e_atalla.o: ../include/openssl/err.h ../include/openssl/lhash.h | ||
| 173 | e_atalla.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 174 | e_atalla.o: ../include/openssl/ossl_typ.h ../include/openssl/rsa.h | ||
| 175 | e_atalla.o: ../include/openssl/safestack.h ../include/openssl/stack.h | ||
| 176 | e_atalla.o: ../include/openssl/symhacks.h e_atalla.c e_atalla_err.c | ||
| 177 | e_atalla.o: e_atalla_err.h vendor_defns/atalla.h | ||
| 178 | e_chil.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 179 | e_chil.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 180 | e_chil.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 181 | e_chil.o: ../include/openssl/dso.h ../include/openssl/e_os2.h | ||
| 182 | e_chil.o: ../include/openssl/ec.h ../include/openssl/ecdh.h | ||
| 183 | e_chil.o: ../include/openssl/ecdsa.h ../include/openssl/engine.h | ||
| 184 | e_chil.o: ../include/openssl/err.h ../include/openssl/evp.h | ||
| 185 | e_chil.o: ../include/openssl/lhash.h ../include/openssl/obj_mac.h | ||
| 186 | e_chil.o: ../include/openssl/objects.h ../include/openssl/opensslconf.h | ||
| 187 | e_chil.o: ../include/openssl/opensslv.h ../include/openssl/ossl_typ.h | ||
| 188 | e_chil.o: ../include/openssl/pem.h ../include/openssl/pem2.h | ||
| 189 | e_chil.o: ../include/openssl/pkcs7.h ../include/openssl/rand.h | ||
| 190 | e_chil.o: ../include/openssl/rsa.h ../include/openssl/safestack.h | ||
| 191 | e_chil.o: ../include/openssl/sha.h ../include/openssl/stack.h | ||
| 192 | e_chil.o: ../include/openssl/symhacks.h ../include/openssl/ui.h | ||
| 193 | e_chil.o: ../include/openssl/x509.h ../include/openssl/x509_vfy.h e_chil.c | ||
| 194 | e_chil.o: e_chil_err.c e_chil_err.h vendor_defns/hwcryptohook.h | ||
| 195 | e_cswift.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 196 | e_cswift.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 197 | e_cswift.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 198 | e_cswift.o: ../include/openssl/dsa.h ../include/openssl/dso.h | ||
| 199 | e_cswift.o: ../include/openssl/e_os2.h ../include/openssl/engine.h | ||
| 200 | e_cswift.o: ../include/openssl/err.h ../include/openssl/lhash.h | ||
| 201 | e_cswift.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 202 | e_cswift.o: ../include/openssl/ossl_typ.h ../include/openssl/rand.h | ||
| 203 | e_cswift.o: ../include/openssl/rsa.h ../include/openssl/safestack.h | ||
| 204 | e_cswift.o: ../include/openssl/stack.h ../include/openssl/symhacks.h e_cswift.c | ||
| 205 | e_cswift.o: e_cswift_err.c e_cswift_err.h vendor_defns/cswift.h | ||
| 206 | e_gmp.o: ../include/openssl/buffer.h ../include/openssl/crypto.h | ||
| 207 | e_gmp.o: ../include/openssl/e_os2.h ../include/openssl/engine.h | ||
| 208 | e_gmp.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 209 | e_gmp.o: ../include/openssl/ossl_typ.h ../include/openssl/safestack.h | ||
| 210 | e_gmp.o: ../include/openssl/stack.h ../include/openssl/symhacks.h e_gmp.c | ||
| 211 | e_nuron.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 212 | e_nuron.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 213 | e_nuron.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 214 | e_nuron.o: ../include/openssl/dsa.h ../include/openssl/dso.h | ||
| 215 | e_nuron.o: ../include/openssl/e_os2.h ../include/openssl/engine.h | ||
| 216 | e_nuron.o: ../include/openssl/err.h ../include/openssl/lhash.h | ||
| 217 | e_nuron.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 218 | e_nuron.o: ../include/openssl/ossl_typ.h ../include/openssl/rsa.h | ||
| 219 | e_nuron.o: ../include/openssl/safestack.h ../include/openssl/stack.h | ||
| 220 | e_nuron.o: ../include/openssl/symhacks.h e_nuron.c e_nuron_err.c e_nuron_err.h | ||
| 221 | e_sureware.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 222 | e_sureware.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 223 | e_sureware.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 224 | e_sureware.o: ../include/openssl/dsa.h ../include/openssl/dso.h | ||
| 225 | e_sureware.o: ../include/openssl/e_os2.h ../include/openssl/ec.h | ||
| 226 | e_sureware.o: ../include/openssl/ecdh.h ../include/openssl/ecdsa.h | ||
| 227 | e_sureware.o: ../include/openssl/engine.h ../include/openssl/err.h | ||
| 228 | e_sureware.o: ../include/openssl/evp.h ../include/openssl/lhash.h | ||
| 229 | e_sureware.o: ../include/openssl/obj_mac.h ../include/openssl/objects.h | ||
| 230 | e_sureware.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 231 | e_sureware.o: ../include/openssl/ossl_typ.h ../include/openssl/pem.h | ||
| 232 | e_sureware.o: ../include/openssl/pem2.h ../include/openssl/pkcs7.h | ||
| 233 | e_sureware.o: ../include/openssl/rand.h ../include/openssl/rsa.h | ||
| 234 | e_sureware.o: ../include/openssl/safestack.h ../include/openssl/sha.h | ||
| 235 | e_sureware.o: ../include/openssl/stack.h ../include/openssl/symhacks.h | ||
| 236 | e_sureware.o: ../include/openssl/x509.h ../include/openssl/x509_vfy.h | ||
| 237 | e_sureware.o: e_sureware.c e_sureware_err.c e_sureware_err.h | ||
| 238 | e_sureware.o: vendor_defns/sureware.h | ||
| 239 | e_ubsec.o: ../include/openssl/asn1.h ../include/openssl/bio.h | ||
| 240 | e_ubsec.o: ../include/openssl/bn.h ../include/openssl/buffer.h | ||
| 241 | e_ubsec.o: ../include/openssl/crypto.h ../include/openssl/dh.h | ||
| 242 | e_ubsec.o: ../include/openssl/dsa.h ../include/openssl/dso.h | ||
| 243 | e_ubsec.o: ../include/openssl/e_os2.h ../include/openssl/engine.h | ||
| 244 | e_ubsec.o: ../include/openssl/err.h ../include/openssl/lhash.h | ||
| 245 | e_ubsec.o: ../include/openssl/opensslconf.h ../include/openssl/opensslv.h | ||
| 246 | e_ubsec.o: ../include/openssl/ossl_typ.h ../include/openssl/rsa.h | ||
| 247 | e_ubsec.o: ../include/openssl/safestack.h ../include/openssl/stack.h | ||
| 248 | e_ubsec.o: ../include/openssl/symhacks.h e_ubsec.c e_ubsec_err.c e_ubsec_err.h | ||
| 249 | e_ubsec.o: vendor_defns/hw_ubsec.h | ||
diff --git a/src/lib/libssl/src/engines/axp.opt b/src/lib/libssl/src/engines/axp.opt new file mode 100644 index 0000000000..1dc71bf4b7 --- /dev/null +++ b/src/lib/libssl/src/engines/axp.opt | |||
| @@ -0,0 +1 @@ | |||
| SYMBOL_VECTOR=(bind_engine=PROCEDURE,v_check=PROCEDURE) | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_4758_cca.c b/src/lib/libssl/src/engines/e_4758cca.c index 4f5ae8a46d..0f1dae7567 100644 --- a/src/lib/libssl/src/crypto/engine/hw_4758_cca.c +++ b/src/lib/libssl/src/engines/e_4758cca.c | |||
| @@ -54,13 +54,17 @@ | |||
| 54 | */ | 54 | */ |
| 55 | 55 | ||
| 56 | #include <stdio.h> | 56 | #include <stdio.h> |
| 57 | #include <string.h> | ||
| 57 | #include <openssl/crypto.h> | 58 | #include <openssl/crypto.h> |
| 58 | /* #include <openssl/pem.h> */ | ||
| 59 | #include "cryptlib.h" | ||
| 60 | #include <openssl/dso.h> | 59 | #include <openssl/dso.h> |
| 61 | #include <openssl/x509.h> | 60 | #include <openssl/x509.h> |
| 62 | #include <openssl/objects.h> | 61 | #include <openssl/objects.h> |
| 63 | #include <openssl/engine.h> | 62 | #include <openssl/engine.h> |
| 63 | #include <openssl/rand.h> | ||
| 64 | #ifndef OPENSSL_NO_RSA | ||
| 65 | #include <openssl/rsa.h> | ||
| 66 | #endif | ||
| 67 | #include <openssl/bn.h> | ||
| 64 | 68 | ||
| 65 | #ifndef OPENSSL_NO_HW | 69 | #ifndef OPENSSL_NO_HW |
| 66 | #ifndef OPENSSL_NO_HW_4758_CCA | 70 | #ifndef OPENSSL_NO_HW_4758_CCA |
| @@ -71,12 +75,12 @@ | |||
| 71 | #include "vendor_defns/hw_4758_cca.h" | 75 | #include "vendor_defns/hw_4758_cca.h" |
| 72 | #endif | 76 | #endif |
| 73 | 77 | ||
| 74 | #include "hw_4758_cca_err.c" | 78 | #include "e_4758cca_err.c" |
| 75 | 79 | ||
| 76 | static int ibm_4758_cca_destroy(ENGINE *e); | 80 | static int ibm_4758_cca_destroy(ENGINE *e); |
| 77 | static int ibm_4758_cca_init(ENGINE *e); | 81 | static int ibm_4758_cca_init(ENGINE *e); |
| 78 | static int ibm_4758_cca_finish(ENGINE *e); | 82 | static int ibm_4758_cca_finish(ENGINE *e); |
| 79 | static int ibm_4758_cca_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 83 | static int ibm_4758_cca_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 80 | 84 | ||
| 81 | /* rsa functions */ | 85 | /* rsa functions */ |
| 82 | /*---------------*/ | 86 | /*---------------*/ |
| @@ -107,8 +111,10 @@ static int getModulusAndExponent(const unsigned char *token, long *exponentLengt | |||
| 107 | static int cca_get_random_bytes(unsigned char*, int ); | 111 | static int cca_get_random_bytes(unsigned char*, int ); |
| 108 | static int cca_random_status(void); | 112 | static int cca_random_status(void); |
| 109 | 113 | ||
| 114 | #ifndef OPENSSL_NO_RSA | ||
| 110 | static void cca_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | 115 | static void cca_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, |
| 111 | int idx,long argl, void *argp); | 116 | int idx,long argl, void *argp); |
| 117 | #endif | ||
| 112 | 118 | ||
| 113 | /* Function pointers for CCA verbs */ | 119 | /* Function pointers for CCA verbs */ |
| 114 | /*---------------------------------*/ | 120 | /*---------------------------------*/ |
| @@ -152,7 +158,9 @@ static const char* n_pkaDecrypt = CSNDPKD; | |||
| 152 | #endif | 158 | #endif |
| 153 | static const char* n_randomNumberGenerate = CSNBRNG; | 159 | static const char* n_randomNumberGenerate = CSNBRNG; |
| 154 | 160 | ||
| 161 | #ifndef OPENSSL_NO_RSA | ||
| 155 | static int hndidx = -1; | 162 | static int hndidx = -1; |
| 163 | #endif | ||
| 156 | static DSO *dso = NULL; | 164 | static DSO *dso = NULL; |
| 157 | 165 | ||
| 158 | /* openssl engine initialization structures */ | 166 | /* openssl engine initialization structures */ |
| @@ -182,7 +190,8 @@ static RSA_METHOD ibm_4758_cca_rsa = | |||
| 182 | RSA_FLAG_SIGN_VER, /* flags */ | 190 | RSA_FLAG_SIGN_VER, /* flags */ |
| 183 | NULL, /* app_data */ | 191 | NULL, /* app_data */ |
| 184 | cca_rsa_sign, /* rsa_sign */ | 192 | cca_rsa_sign, /* rsa_sign */ |
| 185 | cca_rsa_verify /* rsa_verify */ | 193 | cca_rsa_verify, /* rsa_verify */ |
| 194 | NULL /* rsa_keygen */ | ||
| 186 | }; | 195 | }; |
| 187 | #endif | 196 | #endif |
| 188 | 197 | ||
| @@ -199,6 +208,10 @@ static RAND_METHOD ibm_4758_cca_rand = | |||
| 199 | 208 | ||
| 200 | static const char *engine_4758_cca_id = "4758cca"; | 209 | static const char *engine_4758_cca_id = "4758cca"; |
| 201 | static const char *engine_4758_cca_name = "IBM 4758 CCA hardware engine support"; | 210 | static const char *engine_4758_cca_name = "IBM 4758 CCA hardware engine support"; |
| 211 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE | ||
| 212 | /* Compatibility hack, the dynamic library uses this form in the path */ | ||
| 213 | static const char *engine_4758_cca_id_alt = "4758_cca"; | ||
| 214 | #endif | ||
| 202 | 215 | ||
| 203 | /* engine implementation */ | 216 | /* engine implementation */ |
| 204 | /*-----------------------*/ | 217 | /*-----------------------*/ |
| @@ -214,8 +227,10 @@ static int bind_helper(ENGINE *e) | |||
| 214 | !ENGINE_set_init_function(e, ibm_4758_cca_init) || | 227 | !ENGINE_set_init_function(e, ibm_4758_cca_init) || |
| 215 | !ENGINE_set_finish_function(e, ibm_4758_cca_finish) || | 228 | !ENGINE_set_finish_function(e, ibm_4758_cca_finish) || |
| 216 | !ENGINE_set_ctrl_function(e, ibm_4758_cca_ctrl) || | 229 | !ENGINE_set_ctrl_function(e, ibm_4758_cca_ctrl) || |
| 230 | #ifndef OPENSSL_NO_RSA | ||
| 217 | !ENGINE_set_load_privkey_function(e, ibm_4758_load_privkey) || | 231 | !ENGINE_set_load_privkey_function(e, ibm_4758_load_privkey) || |
| 218 | !ENGINE_set_load_pubkey_function(e, ibm_4758_load_pubkey) || | 232 | !ENGINE_set_load_pubkey_function(e, ibm_4758_load_pubkey) || |
| 233 | #endif | ||
| 219 | !ENGINE_set_cmd_defns(e, cca4758_cmd_defns)) | 234 | !ENGINE_set_cmd_defns(e, cca4758_cmd_defns)) |
| 220 | return 0; | 235 | return 0; |
| 221 | /* Ensure the error handling is set up */ | 236 | /* Ensure the error handling is set up */ |
| @@ -223,7 +238,7 @@ static int bind_helper(ENGINE *e) | |||
| 223 | return 1; | 238 | return 1; |
| 224 | } | 239 | } |
| 225 | 240 | ||
| 226 | #ifndef ENGINE_DYNAMIC_SUPPORT | 241 | #ifdef OPENSSL_NO_DYNAMIC_ENGINE |
| 227 | static ENGINE *engine_4758_cca(void) | 242 | static ENGINE *engine_4758_cca(void) |
| 228 | { | 243 | { |
| 229 | ENGINE *ret = ENGINE_new(); | 244 | ENGINE *ret = ENGINE_new(); |
| @@ -297,8 +312,10 @@ static int ibm_4758_cca_init(ENGINE *e) | |||
| 297 | } | 312 | } |
| 298 | #endif | 313 | #endif |
| 299 | 314 | ||
| 315 | #ifndef OPENSSL_NO_RSA | ||
| 300 | hndidx = RSA_get_ex_new_index(0, "IBM 4758 CCA RSA key handle", | 316 | hndidx = RSA_get_ex_new_index(0, "IBM 4758 CCA RSA key handle", |
| 301 | NULL, NULL, cca_ex_free); | 317 | NULL, NULL, cca_ex_free); |
| 318 | #endif | ||
| 302 | 319 | ||
| 303 | return 1; | 320 | return 1; |
| 304 | err: | 321 | err: |
| @@ -306,13 +323,15 @@ err: | |||
| 306 | DSO_free(dso); | 323 | DSO_free(dso); |
| 307 | dso = NULL; | 324 | dso = NULL; |
| 308 | 325 | ||
| 326 | #ifndef OPENSSL_NO_RSA | ||
| 309 | keyRecordRead = (F_KEYRECORDREAD)0; | 327 | keyRecordRead = (F_KEYRECORDREAD)0; |
| 310 | randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0; | ||
| 311 | digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)0; | 328 | digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)0; |
| 312 | digitalSignatureVerify = (F_DIGITALSIGNATUREVERIFY)0; | 329 | digitalSignatureVerify = (F_DIGITALSIGNATUREVERIFY)0; |
| 313 | publicKeyExtract = (F_PUBLICKEYEXTRACT)0; | 330 | publicKeyExtract = (F_PUBLICKEYEXTRACT)0; |
| 314 | pkaEncrypt = (F_PKAENCRYPT)0; | 331 | pkaEncrypt = (F_PKAENCRYPT)0; |
| 315 | pkaDecrypt = (F_PKADECRYPT)0; | 332 | pkaDecrypt = (F_PKADECRYPT)0; |
| 333 | #endif | ||
| 334 | randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0; | ||
| 316 | return 0; | 335 | return 0; |
| 317 | } | 336 | } |
| 318 | 337 | ||
| @@ -332,6 +351,7 @@ static int ibm_4758_cca_finish(ENGINE *e) | |||
| 332 | return 0; | 351 | return 0; |
| 333 | } | 352 | } |
| 334 | dso = NULL; | 353 | dso = NULL; |
| 354 | #ifndef OPENSSL_NO_RSA | ||
| 335 | keyRecordRead = (F_KEYRECORDREAD)0; | 355 | keyRecordRead = (F_KEYRECORDREAD)0; |
| 336 | randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0; | 356 | randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0; |
| 337 | digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)0; | 357 | digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)0; |
| @@ -339,10 +359,12 @@ static int ibm_4758_cca_finish(ENGINE *e) | |||
| 339 | publicKeyExtract = (F_PUBLICKEYEXTRACT)0; | 359 | publicKeyExtract = (F_PUBLICKEYEXTRACT)0; |
| 340 | pkaEncrypt = (F_PKAENCRYPT)0; | 360 | pkaEncrypt = (F_PKAENCRYPT)0; |
| 341 | pkaDecrypt = (F_PKADECRYPT)0; | 361 | pkaDecrypt = (F_PKADECRYPT)0; |
| 362 | #endif | ||
| 363 | randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0; | ||
| 342 | return 1; | 364 | return 1; |
| 343 | } | 365 | } |
| 344 | 366 | ||
| 345 | static int ibm_4758_cca_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 367 | static int ibm_4758_cca_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 346 | { | 368 | { |
| 347 | int initialised = ((dso == NULL) ? 0 : 1); | 369 | int initialised = ((dso == NULL) ? 0 : 1); |
| 348 | switch(cmd) | 370 | switch(cmd) |
| @@ -389,7 +411,7 @@ static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id, | |||
| 389 | unsigned char exitData[8]; | 411 | unsigned char exitData[8]; |
| 390 | unsigned char ruleArray[8]; | 412 | unsigned char ruleArray[8]; |
| 391 | unsigned char keyLabel[64]; | 413 | unsigned char keyLabel[64]; |
| 392 | long keyLabelLength = strlen(key_id); | 414 | unsigned long keyLabelLength = strlen(key_id); |
| 393 | unsigned char modulus[256]; | 415 | unsigned char modulus[256]; |
| 394 | long modulusFieldLength = sizeof(modulus); | 416 | long modulusFieldLength = sizeof(modulus); |
| 395 | long modulusLength = 0; | 417 | long modulusLength = 0; |
| @@ -398,7 +420,7 @@ static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id, | |||
| 398 | 420 | ||
| 399 | if (keyLabelLength > sizeof(keyLabel)) | 421 | if (keyLabelLength > sizeof(keyLabel)) |
| 400 | { | 422 | { |
| 401 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 423 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY, |
| 402 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 424 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 403 | return NULL; | 425 | return NULL; |
| 404 | } | 426 | } |
| @@ -409,7 +431,7 @@ static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id, | |||
| 409 | keyToken = OPENSSL_malloc(MAX_CCA_PKA_TOKEN_SIZE + sizeof(long)); | 431 | keyToken = OPENSSL_malloc(MAX_CCA_PKA_TOKEN_SIZE + sizeof(long)); |
| 410 | if (!keyToken) | 432 | if (!keyToken) |
| 411 | { | 433 | { |
| 412 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 434 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY, |
| 413 | ERR_R_MALLOC_FAILURE); | 435 | ERR_R_MALLOC_FAILURE); |
| 414 | goto err; | 436 | goto err; |
| 415 | } | 437 | } |
| @@ -420,7 +442,7 @@ static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id, | |||
| 420 | 442 | ||
| 421 | if (returnCode) | 443 | if (returnCode) |
| 422 | { | 444 | { |
| 423 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 445 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY, |
| 424 | CCA4758_R_FAILED_LOADING_PRIVATE_KEY); | 446 | CCA4758_R_FAILED_LOADING_PRIVATE_KEY); |
| 425 | goto err; | 447 | goto err; |
| 426 | } | 448 | } |
| @@ -431,7 +453,7 @@ static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id, | |||
| 431 | 453 | ||
| 432 | if (returnCode) | 454 | if (returnCode) |
| 433 | { | 455 | { |
| 434 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 456 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY, |
| 435 | CCA4758_R_FAILED_LOADING_PRIVATE_KEY); | 457 | CCA4758_R_FAILED_LOADING_PRIVATE_KEY); |
| 436 | goto err; | 458 | goto err; |
| 437 | } | 459 | } |
| @@ -440,7 +462,7 @@ static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id, | |||
| 440 | exponent, &modulusLength, &modulusFieldLength, | 462 | exponent, &modulusLength, &modulusFieldLength, |
| 441 | modulus)) | 463 | modulus)) |
| 442 | { | 464 | { |
| 443 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 465 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY, |
| 444 | CCA4758_R_FAILED_LOADING_PRIVATE_KEY); | 466 | CCA4758_R_FAILED_LOADING_PRIVATE_KEY); |
| 445 | goto err; | 467 | goto err; |
| 446 | } | 468 | } |
| @@ -481,7 +503,7 @@ static EVP_PKEY *ibm_4758_load_pubkey(ENGINE* e, const char* key_id, | |||
| 481 | unsigned char exitData[8]; | 503 | unsigned char exitData[8]; |
| 482 | unsigned char ruleArray[8]; | 504 | unsigned char ruleArray[8]; |
| 483 | unsigned char keyLabel[64]; | 505 | unsigned char keyLabel[64]; |
| 484 | long keyLabelLength = strlen(key_id); | 506 | unsigned long keyLabelLength = strlen(key_id); |
| 485 | unsigned char modulus[512]; | 507 | unsigned char modulus[512]; |
| 486 | long modulusFieldLength = sizeof(modulus); | 508 | long modulusFieldLength = sizeof(modulus); |
| 487 | long modulusLength = 0; | 509 | long modulusLength = 0; |
| @@ -490,7 +512,7 @@ static EVP_PKEY *ibm_4758_load_pubkey(ENGINE* e, const char* key_id, | |||
| 490 | 512 | ||
| 491 | if (keyLabelLength > sizeof(keyLabel)) | 513 | if (keyLabelLength > sizeof(keyLabel)) |
| 492 | { | 514 | { |
| 493 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 515 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PUBKEY, |
| 494 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 516 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 495 | return NULL; | 517 | return NULL; |
| 496 | } | 518 | } |
| @@ -501,7 +523,7 @@ static EVP_PKEY *ibm_4758_load_pubkey(ENGINE* e, const char* key_id, | |||
| 501 | keyToken = OPENSSL_malloc(MAX_CCA_PKA_TOKEN_SIZE + sizeof(long)); | 523 | keyToken = OPENSSL_malloc(MAX_CCA_PKA_TOKEN_SIZE + sizeof(long)); |
| 502 | if (!keyToken) | 524 | if (!keyToken) |
| 503 | { | 525 | { |
| 504 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PUBKEY, | 526 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PUBKEY, |
| 505 | ERR_R_MALLOC_FAILURE); | 527 | ERR_R_MALLOC_FAILURE); |
| 506 | goto err; | 528 | goto err; |
| 507 | } | 529 | } |
| @@ -512,7 +534,7 @@ static EVP_PKEY *ibm_4758_load_pubkey(ENGINE* e, const char* key_id, | |||
| 512 | 534 | ||
| 513 | if (returnCode) | 535 | if (returnCode) |
| 514 | { | 536 | { |
| 515 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 537 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PUBKEY, |
| 516 | ERR_R_MALLOC_FAILURE); | 538 | ERR_R_MALLOC_FAILURE); |
| 517 | goto err; | 539 | goto err; |
| 518 | } | 540 | } |
| @@ -520,7 +542,7 @@ static EVP_PKEY *ibm_4758_load_pubkey(ENGINE* e, const char* key_id, | |||
| 520 | if (!getModulusAndExponent(keyToken+sizeof(long), &exponentLength, | 542 | if (!getModulusAndExponent(keyToken+sizeof(long), &exponentLength, |
| 521 | exponent, &modulusLength, &modulusFieldLength, modulus)) | 543 | exponent, &modulusLength, &modulusFieldLength, modulus)) |
| 522 | { | 544 | { |
| 523 | CCA4758err(CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY, | 545 | CCA4758err(CCA4758_F_IBM_4758_LOAD_PUBKEY, |
| 524 | CCA4758_R_FAILED_LOADING_PUBLIC_KEY); | 546 | CCA4758_R_FAILED_LOADING_PUBLIC_KEY); |
| 525 | goto err; | 547 | goto err; |
| 526 | } | 548 | } |
| @@ -633,14 +655,14 @@ static int cca_rsa_verify(int type, const unsigned char *m, unsigned int m_len, | |||
| 633 | 655 | ||
| 634 | if (!algorithm.algorithm) | 656 | if (!algorithm.algorithm) |
| 635 | { | 657 | { |
| 636 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 658 | CCA4758err(CCA4758_F_CCA_RSA_VERIFY, |
| 637 | CCA4758_R_UNKNOWN_ALGORITHM_TYPE); | 659 | CCA4758_R_UNKNOWN_ALGORITHM_TYPE); |
| 638 | return 0; | 660 | return 0; |
| 639 | } | 661 | } |
| 640 | 662 | ||
| 641 | if (!algorithm.algorithm->length) | 663 | if (!algorithm.algorithm->length) |
| 642 | { | 664 | { |
| 643 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 665 | CCA4758err(CCA4758_F_CCA_RSA_VERIFY, |
| 644 | CCA4758_R_ASN1_OID_UNKNOWN_FOR_MD); | 666 | CCA4758_R_ASN1_OID_UNKNOWN_FOR_MD); |
| 645 | return 0; | 667 | return 0; |
| 646 | } | 668 | } |
| @@ -660,7 +682,7 @@ static int cca_rsa_verify(int type, const unsigned char *m, unsigned int m_len, | |||
| 660 | 682 | ||
| 661 | if (length - RSA_PKCS1_PADDING > keyLength) | 683 | if (length - RSA_PKCS1_PADDING > keyLength) |
| 662 | { | 684 | { |
| 663 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 685 | CCA4758err(CCA4758_F_CCA_RSA_VERIFY, |
| 664 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 686 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 665 | return 0; | 687 | return 0; |
| 666 | } | 688 | } |
| @@ -670,7 +692,7 @@ static int cca_rsa_verify(int type, const unsigned char *m, unsigned int m_len, | |||
| 670 | case NID_md5_sha1 : | 692 | case NID_md5_sha1 : |
| 671 | if (m_len != SSL_SIG_LEN) | 693 | if (m_len != SSL_SIG_LEN) |
| 672 | { | 694 | { |
| 673 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 695 | CCA4758err(CCA4758_F_CCA_RSA_VERIFY, |
| 674 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 696 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 675 | return 0; | 697 | return 0; |
| 676 | } | 698 | } |
| @@ -685,7 +707,7 @@ static int cca_rsa_verify(int type, const unsigned char *m, unsigned int m_len, | |||
| 685 | (unsigned int)keyLength+1); | 707 | (unsigned int)keyLength+1); |
| 686 | if (!hashBuffer) | 708 | if (!hashBuffer) |
| 687 | { | 709 | { |
| 688 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 710 | CCA4758err(CCA4758_F_CCA_RSA_VERIFY, |
| 689 | ERR_R_MALLOC_FAILURE); | 711 | ERR_R_MALLOC_FAILURE); |
| 690 | return 0; | 712 | return 0; |
| 691 | } | 713 | } |
| @@ -700,7 +722,7 @@ static int cca_rsa_verify(int type, const unsigned char *m, unsigned int m_len, | |||
| 700 | (unsigned int)keyLength+1); | 722 | (unsigned int)keyLength+1); |
| 701 | if (!hashBuffer) | 723 | if (!hashBuffer) |
| 702 | { | 724 | { |
| 703 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 725 | CCA4758err(CCA4758_F_CCA_RSA_VERIFY, |
| 704 | ERR_R_MALLOC_FAILURE); | 726 | ERR_R_MALLOC_FAILURE); |
| 705 | return 0; | 727 | return 0; |
| 706 | } | 728 | } |
| @@ -757,14 +779,14 @@ static int cca_rsa_sign(int type, const unsigned char *m, unsigned int m_len, | |||
| 757 | 779 | ||
| 758 | if (!algorithm.algorithm) | 780 | if (!algorithm.algorithm) |
| 759 | { | 781 | { |
| 760 | CCA4758err(CCA4758_F_IBM_4758_CCA_SIGN, | 782 | CCA4758err(CCA4758_F_CCA_RSA_SIGN, |
| 761 | CCA4758_R_UNKNOWN_ALGORITHM_TYPE); | 783 | CCA4758_R_UNKNOWN_ALGORITHM_TYPE); |
| 762 | return 0; | 784 | return 0; |
| 763 | } | 785 | } |
| 764 | 786 | ||
| 765 | if (!algorithm.algorithm->length) | 787 | if (!algorithm.algorithm->length) |
| 766 | { | 788 | { |
| 767 | CCA4758err(CCA4758_F_IBM_4758_CCA_SIGN, | 789 | CCA4758err(CCA4758_F_CCA_RSA_SIGN, |
| 768 | CCA4758_R_ASN1_OID_UNKNOWN_FOR_MD); | 790 | CCA4758_R_ASN1_OID_UNKNOWN_FOR_MD); |
| 769 | return 0; | 791 | return 0; |
| 770 | } | 792 | } |
| @@ -784,7 +806,7 @@ static int cca_rsa_sign(int type, const unsigned char *m, unsigned int m_len, | |||
| 784 | 806 | ||
| 785 | if (length - RSA_PKCS1_PADDING > keyLength) | 807 | if (length - RSA_PKCS1_PADDING > keyLength) |
| 786 | { | 808 | { |
| 787 | CCA4758err(CCA4758_F_IBM_4758_CCA_SIGN, | 809 | CCA4758err(CCA4758_F_CCA_RSA_SIGN, |
| 788 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 810 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 789 | return 0; | 811 | return 0; |
| 790 | } | 812 | } |
| @@ -794,7 +816,7 @@ static int cca_rsa_sign(int type, const unsigned char *m, unsigned int m_len, | |||
| 794 | case NID_md5_sha1 : | 816 | case NID_md5_sha1 : |
| 795 | if (m_len != SSL_SIG_LEN) | 817 | if (m_len != SSL_SIG_LEN) |
| 796 | { | 818 | { |
| 797 | CCA4758err(CCA4758_F_IBM_4758_CCA_SIGN, | 819 | CCA4758err(CCA4758_F_CCA_RSA_SIGN, |
| 798 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 820 | CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 799 | return 0; | 821 | return 0; |
| 800 | } | 822 | } |
| @@ -808,7 +830,7 @@ static int cca_rsa_sign(int type, const unsigned char *m, unsigned int m_len, | |||
| 808 | (unsigned int)keyLength+1); | 830 | (unsigned int)keyLength+1); |
| 809 | if (!hashBuffer) | 831 | if (!hashBuffer) |
| 810 | { | 832 | { |
| 811 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 833 | CCA4758err(CCA4758_F_CCA_RSA_SIGN, |
| 812 | ERR_R_MALLOC_FAILURE); | 834 | ERR_R_MALLOC_FAILURE); |
| 813 | return 0; | 835 | return 0; |
| 814 | } | 836 | } |
| @@ -822,7 +844,7 @@ static int cca_rsa_sign(int type, const unsigned char *m, unsigned int m_len, | |||
| 822 | (unsigned int)keyLength+1); | 844 | (unsigned int)keyLength+1); |
| 823 | if (!hashBuffer) | 845 | if (!hashBuffer) |
| 824 | { | 846 | { |
| 825 | CCA4758err(CCA4758_F_IBM_4758_CCA_VERIFY, | 847 | CCA4758err(CCA4758_F_CCA_RSA_SIGN, |
| 826 | ERR_R_MALLOC_FAILURE); | 848 | ERR_R_MALLOC_FAILURE); |
| 827 | return 0; | 849 | return 0; |
| 828 | } | 850 | } |
| @@ -921,7 +943,7 @@ static int cca_get_random_bytes(unsigned char* buf, int num) | |||
| 921 | unsigned char form[] = "RANDOM "; | 943 | unsigned char form[] = "RANDOM "; |
| 922 | unsigned char rand_buf[8]; | 944 | unsigned char rand_buf[8]; |
| 923 | 945 | ||
| 924 | while(num >= sizeof(rand_buf)) | 946 | while(num >= (int)sizeof(rand_buf)) |
| 925 | { | 947 | { |
| 926 | randomNumberGenerate(&ret_code, &reason_code, &exit_data_length, | 948 | randomNumberGenerate(&ret_code, &reason_code, &exit_data_length, |
| 927 | exit_data, form, rand_buf); | 949 | exit_data, form, rand_buf); |
| @@ -944,18 +966,21 @@ static int cca_get_random_bytes(unsigned char* buf, int num) | |||
| 944 | return 1; | 966 | return 1; |
| 945 | } | 967 | } |
| 946 | 968 | ||
| 969 | #ifndef OPENSSL_NO_RSA | ||
| 947 | static void cca_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, int idx, | 970 | static void cca_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, int idx, |
| 948 | long argl, void *argp) | 971 | long argl, void *argp) |
| 949 | { | 972 | { |
| 950 | if (item) | 973 | if (item) |
| 951 | OPENSSL_free(item); | 974 | OPENSSL_free(item); |
| 952 | } | 975 | } |
| 976 | #endif | ||
| 953 | 977 | ||
| 954 | /* Goo to handle building as a dynamic engine */ | 978 | /* Goo to handle building as a dynamic engine */ |
| 955 | #ifdef ENGINE_DYNAMIC_SUPPORT | 979 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 956 | static int bind_fn(ENGINE *e, const char *id) | 980 | static int bind_fn(ENGINE *e, const char *id) |
| 957 | { | 981 | { |
| 958 | if(id && (strcmp(id, engine_4758_cca_id) != 0)) | 982 | if(id && (strcmp(id, engine_4758_cca_id) != 0) && |
| 983 | (strcmp(id, engine_4758_cca_id_alt) != 0)) | ||
| 959 | return 0; | 984 | return 0; |
| 960 | if(!bind_helper(e)) | 985 | if(!bind_helper(e)) |
| 961 | return 0; | 986 | return 0; |
| @@ -963,7 +988,7 @@ static int bind_fn(ENGINE *e, const char *id) | |||
| 963 | } | 988 | } |
| 964 | IMPLEMENT_DYNAMIC_CHECK_FN() | 989 | IMPLEMENT_DYNAMIC_CHECK_FN() |
| 965 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | 990 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
| 966 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | 991 | #endif /* OPENSSL_NO_DYNAMIC_ENGINE */ |
| 967 | 992 | ||
| 968 | #endif /* !OPENSSL_NO_HW_4758_CCA */ | 993 | #endif /* !OPENSSL_NO_HW_4758_CCA */ |
| 969 | #endif /* !OPENSSL_NO_HW */ | 994 | #endif /* !OPENSSL_NO_HW */ |
diff --git a/src/lib/libssl/src/engines/e_4758cca.ec b/src/lib/libssl/src/engines/e_4758cca.ec new file mode 100644 index 0000000000..f30ed02c05 --- /dev/null +++ b/src/lib/libssl/src/engines/e_4758cca.ec | |||
| @@ -0,0 +1 @@ | |||
| L CCA4758 e_4758cca_err.h e_4758cca_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_4758_cca_err.c b/src/lib/libssl/src/engines/e_4758cca_err.c index 7ea5c63707..6ecdc6e627 100644 --- a/src/lib/libssl/src/crypto/engine/hw_4758_cca_err.c +++ b/src/lib/libssl/src/engines/e_4758cca_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_4758_cca_err.c */ | 1 | /* e_4758cca_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999-2002 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,34 +60,38 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_4758_cca_err.h" | 63 | #include "e_4758cca_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA CCA4758_str_functs[]= | 71 | static ERR_STRING_DATA CCA4758_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_CTRL,0), "IBM_4758_CCA_CTRL"}, | 73 | {ERR_FUNC(CCA4758_F_CCA_RSA_SIGN), "CCA_RSA_SIGN"}, |
| 70 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_FINISH,0), "IBM_4758_CCA_FINISH"}, | 74 | {ERR_FUNC(CCA4758_F_CCA_RSA_VERIFY), "CCA_RSA_VERIFY"}, |
| 71 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_INIT,0), "IBM_4758_CCA_INIT"}, | 75 | {ERR_FUNC(CCA4758_F_IBM_4758_CCA_CTRL), "IBM_4758_CCA_CTRL"}, |
| 72 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY,0), "IBM_4758_CCA_LOAD_PRIVKEY"}, | 76 | {ERR_FUNC(CCA4758_F_IBM_4758_CCA_FINISH), "IBM_4758_CCA_FINISH"}, |
| 73 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_LOAD_PUBKEY,0), "IBM_4758_CCA_LOAD_PUBKEY"}, | 77 | {ERR_FUNC(CCA4758_F_IBM_4758_CCA_INIT), "IBM_4758_CCA_INIT"}, |
| 74 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_SIGN,0), "IBM_4758_CCA_SIGN"}, | 78 | {ERR_FUNC(CCA4758_F_IBM_4758_LOAD_PRIVKEY), "IBM_4758_LOAD_PRIVKEY"}, |
| 75 | {ERR_PACK(0,CCA4758_F_IBM_4758_CCA_VERIFY,0), "IBM_4758_CCA_VERIFY"}, | 79 | {ERR_FUNC(CCA4758_F_IBM_4758_LOAD_PUBKEY), "IBM_4758_LOAD_PUBKEY"}, |
| 76 | {0,NULL} | 80 | {0,NULL} |
| 77 | }; | 81 | }; |
| 78 | 82 | ||
| 79 | static ERR_STRING_DATA CCA4758_str_reasons[]= | 83 | static ERR_STRING_DATA CCA4758_str_reasons[]= |
| 80 | { | 84 | { |
| 81 | {CCA4758_R_ALREADY_LOADED ,"already loaded"}, | 85 | {ERR_REASON(CCA4758_R_ALREADY_LOADED) ,"already loaded"}, |
| 82 | {CCA4758_R_ASN1_OID_UNKNOWN_FOR_MD ,"asn1 oid unknown for md"}, | 86 | {ERR_REASON(CCA4758_R_ASN1_OID_UNKNOWN_FOR_MD),"asn1 oid unknown for md"}, |
| 83 | {CCA4758_R_COMMAND_NOT_IMPLEMENTED ,"command not implemented"}, | 87 | {ERR_REASON(CCA4758_R_COMMAND_NOT_IMPLEMENTED),"command not implemented"}, |
| 84 | {CCA4758_R_DSO_FAILURE ,"dso failure"}, | 88 | {ERR_REASON(CCA4758_R_DSO_FAILURE) ,"dso failure"}, |
| 85 | {CCA4758_R_FAILED_LOADING_PRIVATE_KEY ,"failed loading private key"}, | 89 | {ERR_REASON(CCA4758_R_FAILED_LOADING_PRIVATE_KEY),"failed loading private key"}, |
| 86 | {CCA4758_R_FAILED_LOADING_PUBLIC_KEY ,"failed loading public key"}, | 90 | {ERR_REASON(CCA4758_R_FAILED_LOADING_PUBLIC_KEY),"failed loading public key"}, |
| 87 | {CCA4758_R_NOT_LOADED ,"not loaded"}, | 91 | {ERR_REASON(CCA4758_R_NOT_LOADED) ,"not loaded"}, |
| 88 | {CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL ,"size too large or too small"}, | 92 | {ERR_REASON(CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL),"size too large or too small"}, |
| 89 | {CCA4758_R_UNIT_FAILURE ,"unit failure"}, | 93 | {ERR_REASON(CCA4758_R_UNIT_FAILURE) ,"unit failure"}, |
| 90 | {CCA4758_R_UNKNOWN_ALGORITHM_TYPE ,"unknown algorithm type"}, | 94 | {ERR_REASON(CCA4758_R_UNKNOWN_ALGORITHM_TYPE),"unknown algorithm type"}, |
| 91 | {0,NULL} | 95 | {0,NULL} |
| 92 | }; | 96 | }; |
| 93 | 97 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_4758_cca_err.h b/src/lib/libssl/src/engines/e_4758cca_err.h index 2fc563ab11..26087edbfa 100644 --- a/src/lib/libssl/src/crypto/engine/hw_4758_cca_err.h +++ b/src/lib/libssl/src/engines/e_4758cca_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_CCA4758_ERR_H | 55 | #ifndef HEADER_CCA4758_ERR_H |
| 56 | #define HEADER_CCA4758_ERR_H | 56 | #define HEADER_CCA4758_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
| @@ -67,13 +71,13 @@ static void ERR_CCA4758_error(int function, int reason, char *file, int line); | |||
| 67 | /* Error codes for the CCA4758 functions. */ | 71 | /* Error codes for the CCA4758 functions. */ |
| 68 | 72 | ||
| 69 | /* Function codes. */ | 73 | /* Function codes. */ |
| 74 | #define CCA4758_F_CCA_RSA_SIGN 105 | ||
| 75 | #define CCA4758_F_CCA_RSA_VERIFY 106 | ||
| 70 | #define CCA4758_F_IBM_4758_CCA_CTRL 100 | 76 | #define CCA4758_F_IBM_4758_CCA_CTRL 100 |
| 71 | #define CCA4758_F_IBM_4758_CCA_FINISH 101 | 77 | #define CCA4758_F_IBM_4758_CCA_FINISH 101 |
| 72 | #define CCA4758_F_IBM_4758_CCA_INIT 102 | 78 | #define CCA4758_F_IBM_4758_CCA_INIT 102 |
| 73 | #define CCA4758_F_IBM_4758_CCA_LOAD_PRIVKEY 103 | 79 | #define CCA4758_F_IBM_4758_LOAD_PRIVKEY 103 |
| 74 | #define CCA4758_F_IBM_4758_CCA_LOAD_PUBKEY 104 | 80 | #define CCA4758_F_IBM_4758_LOAD_PUBKEY 104 |
| 75 | #define CCA4758_F_IBM_4758_CCA_SIGN 105 | ||
| 76 | #define CCA4758_F_IBM_4758_CCA_VERIFY 106 | ||
| 77 | 81 | ||
| 78 | /* Reason codes. */ | 82 | /* Reason codes. */ |
| 79 | #define CCA4758_R_ALREADY_LOADED 100 | 83 | #define CCA4758_R_ALREADY_LOADED 100 |
diff --git a/src/lib/libssl/src/crypto/engine/hw_aep.c b/src/lib/libssl/src/engines/e_aep.c index 5f1772ea99..ffdc354cdc 100644 --- a/src/lib/libssl/src/crypto/engine/hw_aep.c +++ b/src/lib/libssl/src/engines/e_aep.c | |||
| @@ -1,6 +1,3 @@ | |||
| 1 | /* crypto/engine/hw_aep.c */ | ||
| 2 | /* | ||
| 3 | */ | ||
| 4 | /* ==================================================================== | 1 | /* ==================================================================== |
| 5 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 2 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. |
| 6 | * | 3 | * |
| @@ -68,10 +65,25 @@ | |||
| 68 | typedef int pid_t; | 65 | typedef int pid_t; |
| 69 | #endif | 66 | #endif |
| 70 | 67 | ||
| 68 | #if defined(OPENSSL_SYS_NETWARE) && defined(NETWARE_CLIB) | ||
| 69 | #define getpid GetThreadID | ||
| 70 | extern int GetThreadID(void); | ||
| 71 | #endif | ||
| 72 | |||
| 71 | #include <openssl/crypto.h> | 73 | #include <openssl/crypto.h> |
| 72 | #include <openssl/dso.h> | 74 | #include <openssl/dso.h> |
| 73 | #include <openssl/engine.h> | 75 | #include <openssl/engine.h> |
| 74 | #include <openssl/buffer.h> | 76 | #include <openssl/buffer.h> |
| 77 | #ifndef OPENSSL_NO_RSA | ||
| 78 | #include <openssl/rsa.h> | ||
| 79 | #endif | ||
| 80 | #ifndef OPENSSL_NO_DSA | ||
| 81 | #include <openssl/dsa.h> | ||
| 82 | #endif | ||
| 83 | #ifndef OPENSSL_NO_DH | ||
| 84 | #include <openssl/dh.h> | ||
| 85 | #endif | ||
| 86 | #include <openssl/bn.h> | ||
| 75 | 87 | ||
| 76 | #ifndef OPENSSL_NO_HW | 88 | #ifndef OPENSSL_NO_HW |
| 77 | #ifndef OPENSSL_NO_HW_AEP | 89 | #ifndef OPENSSL_NO_HW_AEP |
| @@ -84,11 +96,11 @@ typedef int pid_t; | |||
| 84 | #define AEP_LIB_NAME "aep engine" | 96 | #define AEP_LIB_NAME "aep engine" |
| 85 | #define FAIL_TO_SW 0x10101010 | 97 | #define FAIL_TO_SW 0x10101010 |
| 86 | 98 | ||
| 87 | #include "hw_aep_err.c" | 99 | #include "e_aep_err.c" |
| 88 | 100 | ||
| 89 | static int aep_init(ENGINE *e); | 101 | static int aep_init(ENGINE *e); |
| 90 | static int aep_finish(ENGINE *e); | 102 | static int aep_finish(ENGINE *e); |
| 91 | static int aep_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 103 | static int aep_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 92 | static int aep_destroy(ENGINE *e); | 104 | static int aep_destroy(ENGINE *e); |
| 93 | 105 | ||
| 94 | static AEP_RV aep_get_connection(AEP_CONNECTION_HNDL_PTR hConnection); | 106 | static AEP_RV aep_get_connection(AEP_CONNECTION_HNDL_PTR hConnection); |
| @@ -97,21 +109,25 @@ static AEP_RV aep_close_connection(AEP_CONNECTION_HNDL hConnection); | |||
| 97 | static AEP_RV aep_close_all_connections(int use_engine_lock, int *in_use); | 109 | static AEP_RV aep_close_all_connections(int use_engine_lock, int *in_use); |
| 98 | 110 | ||
| 99 | /* BIGNUM stuff */ | 111 | /* BIGNUM stuff */ |
| 112 | #ifndef OPENSSL_NO_RSA | ||
| 100 | static int aep_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 113 | static int aep_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 101 | const BIGNUM *m, BN_CTX *ctx); | 114 | const BIGNUM *m, BN_CTX *ctx); |
| 102 | 115 | ||
| 103 | static AEP_RV aep_mod_exp_crt(BIGNUM *r,const BIGNUM *a, const BIGNUM *p, | 116 | static AEP_RV aep_mod_exp_crt(BIGNUM *r,const BIGNUM *a, const BIGNUM *p, |
| 104 | const BIGNUM *q, const BIGNUM *dmp1,const BIGNUM *dmq1, | 117 | const BIGNUM *q, const BIGNUM *dmp1,const BIGNUM *dmq1, |
| 105 | const BIGNUM *iqmp, BN_CTX *ctx); | 118 | const BIGNUM *iqmp, BN_CTX *ctx); |
| 119 | #endif | ||
| 106 | 120 | ||
| 107 | /* RSA stuff */ | 121 | /* RSA stuff */ |
| 108 | #ifndef OPENSSL_NO_RSA | 122 | #ifndef OPENSSL_NO_RSA |
| 109 | static int aep_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa); | 123 | static int aep_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx); |
| 110 | #endif | 124 | #endif |
| 111 | 125 | ||
| 112 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 126 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 127 | #ifndef OPENSSL_NO_RSA | ||
| 113 | static int aep_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 128 | static int aep_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 114 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | 129 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); |
| 130 | #endif | ||
| 115 | 131 | ||
| 116 | /* DSA stuff */ | 132 | /* DSA stuff */ |
| 117 | #ifndef OPENSSL_NO_DSA | 133 | #ifndef OPENSSL_NO_DSA |
| @@ -172,7 +188,8 @@ static RSA_METHOD aep_rsa = | |||
| 172 | 0, /*flags*/ | 188 | 0, /*flags*/ |
| 173 | NULL, /*app_data*/ | 189 | NULL, /*app_data*/ |
| 174 | NULL, /*rsa_sign*/ | 190 | NULL, /*rsa_sign*/ |
| 175 | NULL /*rsa_verify*/ | 191 | NULL, /*rsa_verify*/ |
| 192 | NULL /*rsa_keygen*/ | ||
| 176 | }; | 193 | }; |
| 177 | #endif | 194 | #endif |
| 178 | 195 | ||
| @@ -189,7 +206,9 @@ static DSA_METHOD aep_dsa = | |||
| 189 | NULL, /* init */ | 206 | NULL, /* init */ |
| 190 | NULL, /* finish */ | 207 | NULL, /* finish */ |
| 191 | 0, /* flags */ | 208 | 0, /* flags */ |
| 192 | NULL /* app_data */ | 209 | NULL, /* app_data */ |
| 210 | NULL, /* dsa_paramgen */ | ||
| 211 | NULL /* dsa_keygen */ | ||
| 193 | }; | 212 | }; |
| 194 | #endif | 213 | #endif |
| 195 | 214 | ||
| @@ -204,6 +223,7 @@ static DH_METHOD aep_dh = | |||
| 204 | NULL, | 223 | NULL, |
| 205 | NULL, | 224 | NULL, |
| 206 | 0, | 225 | 0, |
| 226 | NULL, | ||
| 207 | NULL | 227 | NULL |
| 208 | }; | 228 | }; |
| 209 | #endif | 229 | #endif |
| @@ -318,7 +338,7 @@ static int bind_aep(ENGINE *e) | |||
| 318 | return 1; | 338 | return 1; |
| 319 | } | 339 | } |
| 320 | 340 | ||
| 321 | #ifdef ENGINE_DYNAMIC_SUPPORT | 341 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 322 | static int bind_helper(ENGINE *e, const char *id) | 342 | static int bind_helper(ENGINE *e, const char *id) |
| 323 | { | 343 | { |
| 324 | if(id && (strcmp(id, engine_aep_id) != 0)) | 344 | if(id && (strcmp(id, engine_aep_id) != 0)) |
| @@ -551,7 +571,7 @@ static int aep_finish(ENGINE *e) | |||
| 551 | return to_return; | 571 | return to_return; |
| 552 | } | 572 | } |
| 553 | 573 | ||
| 554 | static int aep_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 574 | static int aep_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 555 | { | 575 | { |
| 556 | int initialised = ((aep_dso == NULL) ? 0 : 1); | 576 | int initialised = ((aep_dso == NULL) ? 0 : 1); |
| 557 | switch(cmd) | 577 | switch(cmd) |
| @@ -616,7 +636,7 @@ static int aep_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 616 | rv = aep_return_connection(hConnection); | 636 | rv = aep_return_connection(hConnection); |
| 617 | if (rv != AEP_R_OK) | 637 | if (rv != AEP_R_OK) |
| 618 | { | 638 | { |
| 619 | AEPHKerr(AEPHK_F_AEP_RAND,AEPHK_R_RETURN_CONNECTION_FAILED); | 639 | AEPHKerr(AEPHK_F_AEP_MOD_EXP,AEPHK_R_RETURN_CONNECTION_FAILED); |
| 620 | goto err; | 640 | goto err; |
| 621 | } | 641 | } |
| 622 | 642 | ||
| @@ -625,6 +645,7 @@ static int aep_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 625 | return to_return; | 645 | return to_return; |
| 626 | } | 646 | } |
| 627 | 647 | ||
| 648 | #ifndef OPENSSL_NO_RSA | ||
| 628 | static AEP_RV aep_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 649 | static AEP_RV aep_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 629 | const BIGNUM *q, const BIGNUM *dmp1, | 650 | const BIGNUM *q, const BIGNUM *dmp1, |
| 630 | const BIGNUM *dmq1,const BIGNUM *iqmp, BN_CTX *ctx) | 651 | const BIGNUM *dmq1,const BIGNUM *iqmp, BN_CTX *ctx) |
| @@ -654,13 +675,14 @@ static AEP_RV aep_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 654 | rv = aep_return_connection(hConnection); | 675 | rv = aep_return_connection(hConnection); |
| 655 | if (rv != AEP_R_OK) | 676 | if (rv != AEP_R_OK) |
| 656 | { | 677 | { |
| 657 | AEPHKerr(AEPHK_F_AEP_RAND,AEPHK_R_RETURN_CONNECTION_FAILED); | 678 | AEPHKerr(AEPHK_F_AEP_MOD_EXP_CRT,AEPHK_R_RETURN_CONNECTION_FAILED); |
| 658 | goto err; | 679 | goto err; |
| 659 | } | 680 | } |
| 660 | 681 | ||
| 661 | err: | 682 | err: |
| 662 | return rv; | 683 | return rv; |
| 663 | } | 684 | } |
| 685 | #endif | ||
| 664 | 686 | ||
| 665 | 687 | ||
| 666 | #ifdef AEPRAND | 688 | #ifdef AEPRAND |
| @@ -742,15 +764,11 @@ static int aep_rand_status(void) | |||
| 742 | #endif | 764 | #endif |
| 743 | 765 | ||
| 744 | #ifndef OPENSSL_NO_RSA | 766 | #ifndef OPENSSL_NO_RSA |
| 745 | static int aep_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | 767 | static int aep_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) |
| 746 | { | 768 | { |
| 747 | BN_CTX *ctx = NULL; | ||
| 748 | int to_return = 0; | 769 | int to_return = 0; |
| 749 | AEP_RV rv = AEP_R_OK; | 770 | AEP_RV rv = AEP_R_OK; |
| 750 | 771 | ||
| 751 | if ((ctx = BN_CTX_new()) == NULL) | ||
| 752 | goto err; | ||
| 753 | |||
| 754 | if (!aep_dso) | 772 | if (!aep_dso) |
| 755 | { | 773 | { |
| 756 | AEPHKerr(AEPHK_F_AEP_RSA_MOD_EXP,AEPHK_R_NOT_LOADED); | 774 | AEPHKerr(AEPHK_F_AEP_RSA_MOD_EXP,AEPHK_R_NOT_LOADED); |
| @@ -764,7 +782,7 @@ static int aep_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | |||
| 764 | 782 | ||
| 765 | if (rv == FAIL_TO_SW){ | 783 | if (rv == FAIL_TO_SW){ |
| 766 | const RSA_METHOD *meth = RSA_PKCS1_SSLeay(); | 784 | const RSA_METHOD *meth = RSA_PKCS1_SSLeay(); |
| 767 | to_return = (*meth->rsa_mod_exp)(r0, I, rsa); | 785 | to_return = (*meth->rsa_mod_exp)(r0, I, rsa, ctx); |
| 768 | goto err; | 786 | goto err; |
| 769 | } | 787 | } |
| 770 | else if (rv != AEP_R_OK) | 788 | else if (rv != AEP_R_OK) |
| @@ -787,8 +805,6 @@ static int aep_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | |||
| 787 | to_return = 1; | 805 | to_return = 1; |
| 788 | 806 | ||
| 789 | err: | 807 | err: |
| 790 | if(ctx) | ||
| 791 | BN_CTX_free(ctx); | ||
| 792 | return to_return; | 808 | return to_return; |
| 793 | } | 809 | } |
| 794 | #endif | 810 | #endif |
| @@ -822,12 +838,14 @@ static int aep_mod_exp_dsa(DSA *dsa, BIGNUM *r, BIGNUM *a, | |||
| 822 | } | 838 | } |
| 823 | #endif | 839 | #endif |
| 824 | 840 | ||
| 841 | #ifndef OPENSSL_NO_RSA | ||
| 825 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 842 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 826 | static int aep_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 843 | static int aep_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 827 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) | 844 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) |
| 828 | { | 845 | { |
| 829 | return aep_mod_exp(r, a, p, m, ctx); | 846 | return aep_mod_exp(r, a, p, m, ctx); |
| 830 | } | 847 | } |
| 848 | #endif | ||
| 831 | 849 | ||
| 832 | #ifndef OPENSSL_NO_DH | 850 | #ifndef OPENSSL_NO_DH |
| 833 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ | 851 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ |
| @@ -849,7 +867,11 @@ static AEP_RV aep_get_connection(AEP_CONNECTION_HNDL_PTR phConnection) | |||
| 849 | 867 | ||
| 850 | CRYPTO_w_lock(CRYPTO_LOCK_ENGINE); | 868 | CRYPTO_w_lock(CRYPTO_LOCK_ENGINE); |
| 851 | 869 | ||
| 870 | #ifndef NETWARE_CLIB | ||
| 852 | curr_pid = getpid(); | 871 | curr_pid = getpid(); |
| 872 | #else | ||
| 873 | curr_pid = GetThreadID(); | ||
| 874 | #endif | ||
| 853 | 875 | ||
| 854 | /*Check if this is the first time this is being called from the current | 876 | /*Check if this is the first time this is being called from the current |
| 855 | process*/ | 877 | process*/ |
diff --git a/src/lib/libssl/src/engines/e_aep.ec b/src/lib/libssl/src/engines/e_aep.ec new file mode 100644 index 0000000000..8eae642e06 --- /dev/null +++ b/src/lib/libssl/src/engines/e_aep.ec | |||
| @@ -0,0 +1 @@ | |||
| L AEPHK e_aep_err.h e_aep_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_aep_err.c b/src/lib/libssl/src/engines/e_aep_err.c index 092f532946..3f95881cab 100644 --- a/src/lib/libssl/src/crypto/engine/hw_aep_err.c +++ b/src/lib/libssl/src/engines/e_aep_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_aep_err.c */ | 1 | /* e_aep_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,42 +60,46 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_aep_err.h" | 63 | #include "e_aep_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA AEPHK_str_functs[]= | 71 | static ERR_STRING_DATA AEPHK_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,AEPHK_F_AEP_CTRL,0), "AEP_CTRL"}, | 73 | {ERR_FUNC(AEPHK_F_AEP_CTRL), "AEP_CTRL"}, |
| 70 | {ERR_PACK(0,AEPHK_F_AEP_FINISH,0), "AEP_FINISH"}, | 74 | {ERR_FUNC(AEPHK_F_AEP_FINISH), "AEP_FINISH"}, |
| 71 | {ERR_PACK(0,AEPHK_F_AEP_GET_CONNECTION,0), "AEP_GET_CONNECTION"}, | 75 | {ERR_FUNC(AEPHK_F_AEP_GET_CONNECTION), "AEP_GET_CONNECTION"}, |
| 72 | {ERR_PACK(0,AEPHK_F_AEP_INIT,0), "AEP_INIT"}, | 76 | {ERR_FUNC(AEPHK_F_AEP_INIT), "AEP_INIT"}, |
| 73 | {ERR_PACK(0,AEPHK_F_AEP_MOD_EXP,0), "AEP_MOD_EXP"}, | 77 | {ERR_FUNC(AEPHK_F_AEP_MOD_EXP), "AEP_MOD_EXP"}, |
| 74 | {ERR_PACK(0,AEPHK_F_AEP_MOD_EXP_CRT,0), "AEP_MOD_EXP_CRT"}, | 78 | {ERR_FUNC(AEPHK_F_AEP_MOD_EXP_CRT), "AEP_MOD_EXP_CRT"}, |
| 75 | {ERR_PACK(0,AEPHK_F_AEP_RAND,0), "AEP_RAND"}, | 79 | {ERR_FUNC(AEPHK_F_AEP_RAND), "AEP_RAND"}, |
| 76 | {ERR_PACK(0,AEPHK_F_AEP_RSA_MOD_EXP,0), "AEP_RSA_MOD_EXP"}, | 80 | {ERR_FUNC(AEPHK_F_AEP_RSA_MOD_EXP), "AEP_RSA_MOD_EXP"}, |
| 77 | {0,NULL} | 81 | {0,NULL} |
| 78 | }; | 82 | }; |
| 79 | 83 | ||
| 80 | static ERR_STRING_DATA AEPHK_str_reasons[]= | 84 | static ERR_STRING_DATA AEPHK_str_reasons[]= |
| 81 | { | 85 | { |
| 82 | {AEPHK_R_ALREADY_LOADED ,"already loaded"}, | 86 | {ERR_REASON(AEPHK_R_ALREADY_LOADED) ,"already loaded"}, |
| 83 | {AEPHK_R_CLOSE_HANDLES_FAILED ,"close handles failed"}, | 87 | {ERR_REASON(AEPHK_R_CLOSE_HANDLES_FAILED),"close handles failed"}, |
| 84 | {AEPHK_R_CONNECTIONS_IN_USE ,"connections in use"}, | 88 | {ERR_REASON(AEPHK_R_CONNECTIONS_IN_USE) ,"connections in use"}, |
| 85 | {AEPHK_R_CTRL_COMMAND_NOT_IMPLEMENTED ,"ctrl command not implemented"}, | 89 | {ERR_REASON(AEPHK_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, |
| 86 | {AEPHK_R_FINALIZE_FAILED ,"finalize failed"}, | 90 | {ERR_REASON(AEPHK_R_FINALIZE_FAILED) ,"finalize failed"}, |
| 87 | {AEPHK_R_GET_HANDLE_FAILED ,"get handle failed"}, | 91 | {ERR_REASON(AEPHK_R_GET_HANDLE_FAILED) ,"get handle failed"}, |
| 88 | {AEPHK_R_GET_RANDOM_FAILED ,"get random failed"}, | 92 | {ERR_REASON(AEPHK_R_GET_RANDOM_FAILED) ,"get random failed"}, |
| 89 | {AEPHK_R_INIT_FAILURE ,"init failure"}, | 93 | {ERR_REASON(AEPHK_R_INIT_FAILURE) ,"init failure"}, |
| 90 | {AEPHK_R_MISSING_KEY_COMPONENTS ,"missing key components"}, | 94 | {ERR_REASON(AEPHK_R_MISSING_KEY_COMPONENTS),"missing key components"}, |
| 91 | {AEPHK_R_MOD_EXP_CRT_FAILED ,"mod exp crt failed"}, | 95 | {ERR_REASON(AEPHK_R_MOD_EXP_CRT_FAILED) ,"mod exp crt failed"}, |
| 92 | {AEPHK_R_MOD_EXP_FAILED ,"mod exp failed"}, | 96 | {ERR_REASON(AEPHK_R_MOD_EXP_FAILED) ,"mod exp failed"}, |
| 93 | {AEPHK_R_NOT_LOADED ,"not loaded"}, | 97 | {ERR_REASON(AEPHK_R_NOT_LOADED) ,"not loaded"}, |
| 94 | {AEPHK_R_OK ,"ok"}, | 98 | {ERR_REASON(AEPHK_R_OK) ,"ok"}, |
| 95 | {AEPHK_R_RETURN_CONNECTION_FAILED ,"return connection failed"}, | 99 | {ERR_REASON(AEPHK_R_RETURN_CONNECTION_FAILED),"return connection failed"}, |
| 96 | {AEPHK_R_SETBNCALLBACK_FAILURE ,"setbncallback failure"}, | 100 | {ERR_REASON(AEPHK_R_SETBNCALLBACK_FAILURE),"setbncallback failure"}, |
| 97 | {AEPHK_R_SIZE_TOO_LARGE_OR_TOO_SMALL ,"size too large or too small"}, | 101 | {ERR_REASON(AEPHK_R_SIZE_TOO_LARGE_OR_TOO_SMALL),"size too large or too small"}, |
| 98 | {AEPHK_R_UNIT_FAILURE ,"unit failure"}, | 102 | {ERR_REASON(AEPHK_R_UNIT_FAILURE) ,"unit failure"}, |
| 99 | {0,NULL} | 103 | {0,NULL} |
| 100 | }; | 104 | }; |
| 101 | 105 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_aep_err.h b/src/lib/libssl/src/engines/e_aep_err.h index 8fe4cf921f..35b2e74260 100644 --- a/src/lib/libssl/src/crypto/engine/hw_aep_err.h +++ b/src/lib/libssl/src/engines/e_aep_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_AEPHK_ERR_H | 55 | #ifndef HEADER_AEPHK_ERR_H |
| 56 | #define HEADER_AEPHK_ERR_H | 56 | #define HEADER_AEPHK_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
diff --git a/src/lib/libssl/src/crypto/engine/hw_atalla.c b/src/lib/libssl/src/engines/e_atalla.c index 2b8342bbdd..fabaa86a52 100644 --- a/src/lib/libssl/src/crypto/engine/hw_atalla.c +++ b/src/lib/libssl/src/engines/e_atalla.c | |||
| @@ -57,10 +57,21 @@ | |||
| 57 | */ | 57 | */ |
| 58 | 58 | ||
| 59 | #include <stdio.h> | 59 | #include <stdio.h> |
| 60 | #include <string.h> | ||
| 60 | #include <openssl/crypto.h> | 61 | #include <openssl/crypto.h> |
| 61 | #include "cryptlib.h" | 62 | #include <openssl/buffer.h> |
| 62 | #include <openssl/dso.h> | 63 | #include <openssl/dso.h> |
| 63 | #include <openssl/engine.h> | 64 | #include <openssl/engine.h> |
| 65 | #ifndef OPENSSL_NO_RSA | ||
| 66 | #include <openssl/rsa.h> | ||
| 67 | #endif | ||
| 68 | #ifndef OPENSSL_NO_DSA | ||
| 69 | #include <openssl/dsa.h> | ||
| 70 | #endif | ||
| 71 | #ifndef OPENSSL_NO_DH | ||
| 72 | #include <openssl/dh.h> | ||
| 73 | #endif | ||
| 74 | #include <openssl/bn.h> | ||
| 64 | 75 | ||
| 65 | #ifndef OPENSSL_NO_HW | 76 | #ifndef OPENSSL_NO_HW |
| 66 | #ifndef OPENSSL_NO_HW_ATALLA | 77 | #ifndef OPENSSL_NO_HW_ATALLA |
| @@ -72,12 +83,12 @@ | |||
| 72 | #endif | 83 | #endif |
| 73 | 84 | ||
| 74 | #define ATALLA_LIB_NAME "atalla engine" | 85 | #define ATALLA_LIB_NAME "atalla engine" |
| 75 | #include "hw_atalla_err.c" | 86 | #include "e_atalla_err.c" |
| 76 | 87 | ||
| 77 | static int atalla_destroy(ENGINE *e); | 88 | static int atalla_destroy(ENGINE *e); |
| 78 | static int atalla_init(ENGINE *e); | 89 | static int atalla_init(ENGINE *e); |
| 79 | static int atalla_finish(ENGINE *e); | 90 | static int atalla_finish(ENGINE *e); |
| 80 | static int atalla_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 91 | static int atalla_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 81 | 92 | ||
| 82 | /* BIGNUM stuff */ | 93 | /* BIGNUM stuff */ |
| 83 | static int atalla_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 94 | static int atalla_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| @@ -85,11 +96,11 @@ static int atalla_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 85 | 96 | ||
| 86 | #ifndef OPENSSL_NO_RSA | 97 | #ifndef OPENSSL_NO_RSA |
| 87 | /* RSA stuff */ | 98 | /* RSA stuff */ |
| 88 | static int atalla_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa); | 99 | static int atalla_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx); |
| 89 | #endif | ||
| 90 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 100 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 91 | static int atalla_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 101 | static int atalla_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 92 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | 102 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); |
| 103 | #endif | ||
| 93 | 104 | ||
| 94 | #ifndef OPENSSL_NO_DSA | 105 | #ifndef OPENSSL_NO_DSA |
| 95 | /* DSA stuff */ | 106 | /* DSA stuff */ |
| @@ -135,6 +146,7 @@ static RSA_METHOD atalla_rsa = | |||
| 135 | 0, | 146 | 0, |
| 136 | NULL, | 147 | NULL, |
| 137 | NULL, | 148 | NULL, |
| 149 | NULL, | ||
| 138 | NULL | 150 | NULL |
| 139 | }; | 151 | }; |
| 140 | #endif | 152 | #endif |
| @@ -152,7 +164,9 @@ static DSA_METHOD atalla_dsa = | |||
| 152 | NULL, /* init */ | 164 | NULL, /* init */ |
| 153 | NULL, /* finish */ | 165 | NULL, /* finish */ |
| 154 | 0, /* flags */ | 166 | 0, /* flags */ |
| 155 | NULL /* app_data */ | 167 | NULL, /* app_data */ |
| 168 | NULL, /* dsa_paramgen */ | ||
| 169 | NULL /* dsa_keygen */ | ||
| 156 | }; | 170 | }; |
| 157 | #endif | 171 | #endif |
| 158 | 172 | ||
| @@ -167,6 +181,7 @@ static DH_METHOD atalla_dh = | |||
| 167 | NULL, | 181 | NULL, |
| 168 | NULL, | 182 | NULL, |
| 169 | 0, | 183 | 0, |
| 184 | NULL, | ||
| 170 | NULL | 185 | NULL |
| 171 | }; | 186 | }; |
| 172 | #endif | 187 | #endif |
| @@ -242,7 +257,7 @@ static int bind_helper(ENGINE *e) | |||
| 242 | return 1; | 257 | return 1; |
| 243 | } | 258 | } |
| 244 | 259 | ||
| 245 | #ifndef ENGINE_DYNAMIC_SUPPORT | 260 | #ifdef OPENSSL_NO_DYNAMIC_ENGINE |
| 246 | static ENGINE *engine_atalla(void) | 261 | static ENGINE *engine_atalla(void) |
| 247 | { | 262 | { |
| 248 | ENGINE *ret = ENGINE_new(); | 263 | ENGINE *ret = ENGINE_new(); |
| @@ -402,7 +417,7 @@ static int atalla_finish(ENGINE *e) | |||
| 402 | return 1; | 417 | return 1; |
| 403 | } | 418 | } |
| 404 | 419 | ||
| 405 | static int atalla_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 420 | static int atalla_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 406 | { | 421 | { |
| 407 | int initialised = ((atalla_dso == NULL) ? 0 : 1); | 422 | int initialised = ((atalla_dso == NULL) ? 0 : 1); |
| 408 | switch(cmd) | 423 | switch(cmd) |
| @@ -498,9 +513,8 @@ err: | |||
| 498 | } | 513 | } |
| 499 | 514 | ||
| 500 | #ifndef OPENSSL_NO_RSA | 515 | #ifndef OPENSSL_NO_RSA |
| 501 | static int atalla_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | 516 | static int atalla_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) |
| 502 | { | 517 | { |
| 503 | BN_CTX *ctx = NULL; | ||
| 504 | int to_return = 0; | 518 | int to_return = 0; |
| 505 | 519 | ||
| 506 | if(!atalla_dso) | 520 | if(!atalla_dso) |
| @@ -508,8 +522,6 @@ static int atalla_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | |||
| 508 | ATALLAerr(ATALLA_F_ATALLA_RSA_MOD_EXP,ATALLA_R_NOT_LOADED); | 522 | ATALLAerr(ATALLA_F_ATALLA_RSA_MOD_EXP,ATALLA_R_NOT_LOADED); |
| 509 | goto err; | 523 | goto err; |
| 510 | } | 524 | } |
| 511 | if((ctx = BN_CTX_new()) == NULL) | ||
| 512 | goto err; | ||
| 513 | if(!rsa->d || !rsa->n) | 525 | if(!rsa->d || !rsa->n) |
| 514 | { | 526 | { |
| 515 | ATALLAerr(ATALLA_F_ATALLA_RSA_MOD_EXP,ATALLA_R_MISSING_KEY_COMPONENTS); | 527 | ATALLAerr(ATALLA_F_ATALLA_RSA_MOD_EXP,ATALLA_R_MISSING_KEY_COMPONENTS); |
| @@ -517,8 +529,6 @@ static int atalla_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | |||
| 517 | } | 529 | } |
| 518 | to_return = atalla_mod_exp(r0, I, rsa->d, rsa->n, ctx); | 530 | to_return = atalla_mod_exp(r0, I, rsa->d, rsa->n, ctx); |
| 519 | err: | 531 | err: |
| 520 | if(ctx) | ||
| 521 | BN_CTX_free(ctx); | ||
| 522 | return to_return; | 532 | return to_return; |
| 523 | } | 533 | } |
| 524 | #endif | 534 | #endif |
| @@ -559,12 +569,14 @@ static int atalla_mod_exp_dsa(DSA *dsa, BIGNUM *r, BIGNUM *a, | |||
| 559 | } | 569 | } |
| 560 | #endif | 570 | #endif |
| 561 | 571 | ||
| 572 | #ifndef OPENSSL_NO_RSA | ||
| 562 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 573 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 563 | static int atalla_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 574 | static int atalla_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 564 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) | 575 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) |
| 565 | { | 576 | { |
| 566 | return atalla_mod_exp(r, a, p, m, ctx); | 577 | return atalla_mod_exp(r, a, p, m, ctx); |
| 567 | } | 578 | } |
| 579 | #endif | ||
| 568 | 580 | ||
| 569 | #ifndef OPENSSL_NO_DH | 581 | #ifndef OPENSSL_NO_DH |
| 570 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ | 582 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ |
| @@ -578,7 +590,7 @@ static int atalla_mod_exp_dh(const DH *dh, BIGNUM *r, | |||
| 578 | 590 | ||
| 579 | /* This stuff is needed if this ENGINE is being compiled into a self-contained | 591 | /* This stuff is needed if this ENGINE is being compiled into a self-contained |
| 580 | * shared-library. */ | 592 | * shared-library. */ |
| 581 | #ifdef ENGINE_DYNAMIC_SUPPORT | 593 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 582 | static int bind_fn(ENGINE *e, const char *id) | 594 | static int bind_fn(ENGINE *e, const char *id) |
| 583 | { | 595 | { |
| 584 | if(id && (strcmp(id, engine_atalla_id) != 0)) | 596 | if(id && (strcmp(id, engine_atalla_id) != 0)) |
| @@ -589,7 +601,7 @@ static int bind_fn(ENGINE *e, const char *id) | |||
| 589 | } | 601 | } |
| 590 | IMPLEMENT_DYNAMIC_CHECK_FN() | 602 | IMPLEMENT_DYNAMIC_CHECK_FN() |
| 591 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | 603 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
| 592 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | 604 | #endif /* OPENSSL_NO_DYNAMIC_ENGINE */ |
| 593 | 605 | ||
| 594 | #endif /* !OPENSSL_NO_HW_ATALLA */ | 606 | #endif /* !OPENSSL_NO_HW_ATALLA */ |
| 595 | #endif /* !OPENSSL_NO_HW */ | 607 | #endif /* !OPENSSL_NO_HW */ |
diff --git a/src/lib/libssl/src/engines/e_atalla.ec b/src/lib/libssl/src/engines/e_atalla.ec new file mode 100644 index 0000000000..1d735e1b20 --- /dev/null +++ b/src/lib/libssl/src/engines/e_atalla.ec | |||
| @@ -0,0 +1 @@ | |||
| L ATALLA e_atalla_err.h e_atalla_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_atalla_err.c b/src/lib/libssl/src/engines/e_atalla_err.c index 1df9c4570c..fd3e0049ce 100644 --- a/src/lib/libssl/src/crypto/engine/hw_atalla_err.c +++ b/src/lib/libssl/src/engines/e_atalla_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_atalla_err.c */ | 1 | /* e_atalla_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,30 +60,34 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_atalla_err.h" | 63 | #include "e_atalla_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA ATALLA_str_functs[]= | 71 | static ERR_STRING_DATA ATALLA_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,ATALLA_F_ATALLA_CTRL,0), "ATALLA_CTRL"}, | 73 | {ERR_FUNC(ATALLA_F_ATALLA_CTRL), "ATALLA_CTRL"}, |
| 70 | {ERR_PACK(0,ATALLA_F_ATALLA_FINISH,0), "ATALLA_FINISH"}, | 74 | {ERR_FUNC(ATALLA_F_ATALLA_FINISH), "ATALLA_FINISH"}, |
| 71 | {ERR_PACK(0,ATALLA_F_ATALLA_INIT,0), "ATALLA_INIT"}, | 75 | {ERR_FUNC(ATALLA_F_ATALLA_INIT), "ATALLA_INIT"}, |
| 72 | {ERR_PACK(0,ATALLA_F_ATALLA_MOD_EXP,0), "ATALLA_MOD_EXP"}, | 76 | {ERR_FUNC(ATALLA_F_ATALLA_MOD_EXP), "ATALLA_MOD_EXP"}, |
| 73 | {ERR_PACK(0,ATALLA_F_ATALLA_RSA_MOD_EXP,0), "ATALLA_RSA_MOD_EXP"}, | 77 | {ERR_FUNC(ATALLA_F_ATALLA_RSA_MOD_EXP), "ATALLA_RSA_MOD_EXP"}, |
| 74 | {0,NULL} | 78 | {0,NULL} |
| 75 | }; | 79 | }; |
| 76 | 80 | ||
| 77 | static ERR_STRING_DATA ATALLA_str_reasons[]= | 81 | static ERR_STRING_DATA ATALLA_str_reasons[]= |
| 78 | { | 82 | { |
| 79 | {ATALLA_R_ALREADY_LOADED ,"already loaded"}, | 83 | {ERR_REASON(ATALLA_R_ALREADY_LOADED) ,"already loaded"}, |
| 80 | {ATALLA_R_BN_CTX_FULL ,"bn ctx full"}, | 84 | {ERR_REASON(ATALLA_R_BN_CTX_FULL) ,"bn ctx full"}, |
| 81 | {ATALLA_R_BN_EXPAND_FAIL ,"bn expand fail"}, | 85 | {ERR_REASON(ATALLA_R_BN_EXPAND_FAIL) ,"bn expand fail"}, |
| 82 | {ATALLA_R_CTRL_COMMAND_NOT_IMPLEMENTED ,"ctrl command not implemented"}, | 86 | {ERR_REASON(ATALLA_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, |
| 83 | {ATALLA_R_MISSING_KEY_COMPONENTS ,"missing key components"}, | 87 | {ERR_REASON(ATALLA_R_MISSING_KEY_COMPONENTS),"missing key components"}, |
| 84 | {ATALLA_R_NOT_LOADED ,"not loaded"}, | 88 | {ERR_REASON(ATALLA_R_NOT_LOADED) ,"not loaded"}, |
| 85 | {ATALLA_R_REQUEST_FAILED ,"request failed"}, | 89 | {ERR_REASON(ATALLA_R_REQUEST_FAILED) ,"request failed"}, |
| 86 | {ATALLA_R_UNIT_FAILURE ,"unit failure"}, | 90 | {ERR_REASON(ATALLA_R_UNIT_FAILURE) ,"unit failure"}, |
| 87 | {0,NULL} | 91 | {0,NULL} |
| 88 | }; | 92 | }; |
| 89 | 93 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_atalla_err.h b/src/lib/libssl/src/engines/e_atalla_err.h index cdac052d8c..36e09bf42f 100644 --- a/src/lib/libssl/src/crypto/engine/hw_atalla_err.h +++ b/src/lib/libssl/src/engines/e_atalla_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_ATALLA_ERR_H | 55 | #ifndef HEADER_ATALLA_ERR_H |
| 56 | #define HEADER_ATALLA_ERR_H | 56 | #define HEADER_ATALLA_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
diff --git a/src/lib/libssl/src/crypto/engine/hw_ncipher.c b/src/lib/libssl/src/engines/e_chil.c index 0d1c6b8df0..26108caa64 100644 --- a/src/lib/libssl/src/crypto/engine/hw_ncipher.c +++ b/src/lib/libssl/src/engines/e_chil.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* crypto/engine/hw_ncipher.c -*- mode: C; c-file-style: "eay" -*- */ | 1 | /* crypto/engine/e_chil.c -*- mode: C; c-file-style: "eay" -*- */ |
| 2 | /* Written by Richard Levitte (richard@levitte.org), Geoff Thorpe | 2 | /* Written by Richard Levitte (richard@levitte.org), Geoff Thorpe |
| 3 | * (geoff@geoffthorpe.net) and Dr Stephen N Henson (shenson@bigfoot.com) | 3 | * (geoff@geoffthorpe.net) and Dr Stephen N Henson (shenson@bigfoot.com) |
| 4 | * for the OpenSSL project 2000. | 4 | * for the OpenSSL project 2000. |
| @@ -59,15 +59,22 @@ | |||
| 59 | 59 | ||
| 60 | #include <stdio.h> | 60 | #include <stdio.h> |
| 61 | #include <string.h> | 61 | #include <string.h> |
| 62 | #include "cryptlib.h" | ||
| 63 | #include <openssl/crypto.h> | 62 | #include <openssl/crypto.h> |
| 64 | #include <openssl/pem.h> | 63 | #include <openssl/pem.h> |
| 65 | #include <openssl/dso.h> | 64 | #include <openssl/dso.h> |
| 66 | #include <openssl/engine.h> | 65 | #include <openssl/engine.h> |
| 67 | #include <openssl/ui.h> | 66 | #include <openssl/ui.h> |
| 67 | #include <openssl/rand.h> | ||
| 68 | #ifndef OPENSSL_NO_RSA | ||
| 69 | #include <openssl/rsa.h> | ||
| 70 | #endif | ||
| 71 | #ifndef OPENSSL_NO_DH | ||
| 72 | #include <openssl/dh.h> | ||
| 73 | #endif | ||
| 74 | #include <openssl/bn.h> | ||
| 68 | 75 | ||
| 69 | #ifndef OPENSSL_NO_HW | 76 | #ifndef OPENSSL_NO_HW |
| 70 | #ifndef OPENSSL_NO_HW_NCIPHER | 77 | #ifndef OPENSSL_NO_HW_CHIL |
| 71 | 78 | ||
| 72 | /* Attribution notice: nCipher have said several times that it's OK for | 79 | /* Attribution notice: nCipher have said several times that it's OK for |
| 73 | * us to implement a general interface to their boxes, and recently declared | 80 | * us to implement a general interface to their boxes, and recently declared |
| @@ -83,27 +90,19 @@ | |||
| 83 | #include "vendor_defns/hwcryptohook.h" | 90 | #include "vendor_defns/hwcryptohook.h" |
| 84 | #endif | 91 | #endif |
| 85 | 92 | ||
| 86 | #define HWCRHK_LIB_NAME "hwcrhk engine" | 93 | #define HWCRHK_LIB_NAME "CHIL engine" |
| 87 | #include "hw_ncipher_err.c" | 94 | #include "e_chil_err.c" |
| 88 | 95 | ||
| 89 | static int hwcrhk_destroy(ENGINE *e); | 96 | static int hwcrhk_destroy(ENGINE *e); |
| 90 | static int hwcrhk_init(ENGINE *e); | 97 | static int hwcrhk_init(ENGINE *e); |
| 91 | static int hwcrhk_finish(ENGINE *e); | 98 | static int hwcrhk_finish(ENGINE *e); |
| 92 | static int hwcrhk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 99 | static int hwcrhk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 93 | 100 | ||
| 94 | /* Functions to handle mutexes if have dynamic locks */ | 101 | /* Functions to handle mutexes */ |
| 95 | static int hwcrhk_mutex_init(HWCryptoHook_Mutex*, HWCryptoHook_CallerContext*); | 102 | static int hwcrhk_mutex_init(HWCryptoHook_Mutex*, HWCryptoHook_CallerContext*); |
| 96 | static int hwcrhk_mutex_lock(HWCryptoHook_Mutex*); | 103 | static int hwcrhk_mutex_lock(HWCryptoHook_Mutex*); |
| 97 | static void hwcrhk_mutex_unlock(HWCryptoHook_Mutex*); | 104 | static void hwcrhk_mutex_unlock(HWCryptoHook_Mutex*); |
| 98 | static void hwcrhk_mutex_destroy(HWCryptoHook_Mutex*); | 105 | static void hwcrhk_mutex_destroy(HWCryptoHook_Mutex*); |
| 99 | #if 1 /* This is a HACK which will disappear in 0.9.8 */ | ||
| 100 | /* Functions to handle mutexes if only have static locks */ | ||
| 101 | static int hwcrhk_static_mutex_init(HWCryptoHook_Mutex *m, | ||
| 102 | HWCryptoHook_CallerContext *c); | ||
| 103 | static int hwcrhk_static_mutex_lock(HWCryptoHook_Mutex *m); | ||
| 104 | static void hwcrhk_static_mutex_unlock(HWCryptoHook_Mutex *m); | ||
| 105 | static void hwcrhk_static_mutex_destroy(HWCryptoHook_Mutex *m); | ||
| 106 | #endif | ||
| 107 | 106 | ||
| 108 | /* BIGNUM stuff */ | 107 | /* BIGNUM stuff */ |
| 109 | static int hwcrhk_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 108 | static int hwcrhk_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| @@ -111,11 +110,13 @@ static int hwcrhk_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 111 | 110 | ||
| 112 | #ifndef OPENSSL_NO_RSA | 111 | #ifndef OPENSSL_NO_RSA |
| 113 | /* RSA stuff */ | 112 | /* RSA stuff */ |
| 114 | static int hwcrhk_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa); | 113 | static int hwcrhk_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa, BN_CTX *ctx); |
| 115 | #endif | 114 | #endif |
| 115 | #ifndef OPENSSL_NO_RSA | ||
| 116 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 116 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 117 | static int hwcrhk_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 117 | static int hwcrhk_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 118 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | 118 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); |
| 119 | #endif | ||
| 119 | 120 | ||
| 120 | #ifndef OPENSSL_NO_DH | 121 | #ifndef OPENSSL_NO_DH |
| 121 | /* DH stuff */ | 122 | /* DH stuff */ |
| @@ -134,8 +135,10 @@ static EVP_PKEY *hwcrhk_load_privkey(ENGINE *eng, const char *key_id, | |||
| 134 | UI_METHOD *ui_method, void *callback_data); | 135 | UI_METHOD *ui_method, void *callback_data); |
| 135 | static EVP_PKEY *hwcrhk_load_pubkey(ENGINE *eng, const char *key_id, | 136 | static EVP_PKEY *hwcrhk_load_pubkey(ENGINE *eng, const char *key_id, |
| 136 | UI_METHOD *ui_method, void *callback_data); | 137 | UI_METHOD *ui_method, void *callback_data); |
| 138 | #ifndef OPENSSL_NO_RSA | ||
| 137 | static void hwcrhk_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | 139 | static void hwcrhk_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, |
| 138 | int ind,long argl, void *argp); | 140 | int ind,long argl, void *argp); |
| 141 | #endif | ||
| 139 | 142 | ||
| 140 | /* Interaction stuff */ | 143 | /* Interaction stuff */ |
| 141 | static int hwcrhk_insert_card(const char *prompt_info, | 144 | static int hwcrhk_insert_card(const char *prompt_info, |
| @@ -182,7 +185,7 @@ static const ENGINE_CMD_DEFN hwcrhk_cmd_defns[] = { | |||
| 182 | /* Our internal RSA_METHOD that we provide pointers to */ | 185 | /* Our internal RSA_METHOD that we provide pointers to */ |
| 183 | static RSA_METHOD hwcrhk_rsa = | 186 | static RSA_METHOD hwcrhk_rsa = |
| 184 | { | 187 | { |
| 185 | "nCipher RSA method", | 188 | "CHIL RSA method", |
| 186 | NULL, | 189 | NULL, |
| 187 | NULL, | 190 | NULL, |
| 188 | NULL, | 191 | NULL, |
| @@ -194,6 +197,7 @@ static RSA_METHOD hwcrhk_rsa = | |||
| 194 | 0, | 197 | 0, |
| 195 | NULL, | 198 | NULL, |
| 196 | NULL, | 199 | NULL, |
| 200 | NULL, | ||
| 197 | NULL | 201 | NULL |
| 198 | }; | 202 | }; |
| 199 | #endif | 203 | #endif |
| @@ -202,20 +206,21 @@ static RSA_METHOD hwcrhk_rsa = | |||
| 202 | /* Our internal DH_METHOD that we provide pointers to */ | 206 | /* Our internal DH_METHOD that we provide pointers to */ |
| 203 | static DH_METHOD hwcrhk_dh = | 207 | static DH_METHOD hwcrhk_dh = |
| 204 | { | 208 | { |
| 205 | "nCipher DH method", | 209 | "CHIL DH method", |
| 206 | NULL, | 210 | NULL, |
| 207 | NULL, | 211 | NULL, |
| 208 | hwcrhk_mod_exp_dh, | 212 | hwcrhk_mod_exp_dh, |
| 209 | NULL, | 213 | NULL, |
| 210 | NULL, | 214 | NULL, |
| 211 | 0, | 215 | 0, |
| 216 | NULL, | ||
| 212 | NULL | 217 | NULL |
| 213 | }; | 218 | }; |
| 214 | #endif | 219 | #endif |
| 215 | 220 | ||
| 216 | static RAND_METHOD hwcrhk_rand = | 221 | static RAND_METHOD hwcrhk_rand = |
| 217 | { | 222 | { |
| 218 | /* "nCipher RAND method", */ | 223 | /* "CHIL RAND method", */ |
| 219 | NULL, | 224 | NULL, |
| 220 | hwcrhk_rand_bytes, | 225 | hwcrhk_rand_bytes, |
| 221 | NULL, | 226 | NULL, |
| @@ -226,7 +231,12 @@ static RAND_METHOD hwcrhk_rand = | |||
| 226 | 231 | ||
| 227 | /* Constants used when creating the ENGINE */ | 232 | /* Constants used when creating the ENGINE */ |
| 228 | static const char *engine_hwcrhk_id = "chil"; | 233 | static const char *engine_hwcrhk_id = "chil"; |
| 229 | static const char *engine_hwcrhk_name = "nCipher hardware engine support"; | 234 | static const char *engine_hwcrhk_name = "CHIL hardware engine support"; |
| 235 | |||
| 236 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE | ||
| 237 | /* Compatibility hack, the dynamic library uses this form in the path */ | ||
| 238 | static const char *engine_hwcrhk_id_alt = "ncipher"; | ||
| 239 | #endif | ||
| 230 | 240 | ||
| 231 | /* Internal stuff for HWCryptoHook */ | 241 | /* Internal stuff for HWCryptoHook */ |
| 232 | 242 | ||
| @@ -326,7 +336,7 @@ static HWCryptoHook_InitInfo hwcrhk_globals = { | |||
| 326 | 336 | ||
| 327 | /* Now, to our own code */ | 337 | /* Now, to our own code */ |
| 328 | 338 | ||
| 329 | /* This internal function is used by ENGINE_ncipher() and possibly by the | 339 | /* This internal function is used by ENGINE_chil() and possibly by the |
| 330 | * "dynamic" ENGINE support too */ | 340 | * "dynamic" ENGINE support too */ |
| 331 | static int bind_helper(ENGINE *e) | 341 | static int bind_helper(ENGINE *e) |
| 332 | { | 342 | { |
| @@ -381,8 +391,8 @@ static int bind_helper(ENGINE *e) | |||
| 381 | return 1; | 391 | return 1; |
| 382 | } | 392 | } |
| 383 | 393 | ||
| 384 | #ifndef ENGINE_DYNAMIC_SUPPORT | 394 | #ifdef OPENSSL_NO_DYNAMIC_ENGINE |
| 385 | static ENGINE *engine_ncipher(void) | 395 | static ENGINE *engine_chil(void) |
| 386 | { | 396 | { |
| 387 | ENGINE *ret = ENGINE_new(); | 397 | ENGINE *ret = ENGINE_new(); |
| 388 | if(!ret) | 398 | if(!ret) |
| @@ -398,7 +408,7 @@ static ENGINE *engine_ncipher(void) | |||
| 398 | void ENGINE_load_chil(void) | 408 | void ENGINE_load_chil(void) |
| 399 | { | 409 | { |
| 400 | /* Copied from eng_[openssl|dyn].c */ | 410 | /* Copied from eng_[openssl|dyn].c */ |
| 401 | ENGINE *toadd = engine_ncipher(); | 411 | ENGINE *toadd = engine_chil(); |
| 402 | if(!toadd) return; | 412 | if(!toadd) return; |
| 403 | ENGINE_add(toadd); | 413 | ENGINE_add(toadd); |
| 404 | ENGINE_free(toadd); | 414 | ENGINE_free(toadd); |
| @@ -494,7 +504,7 @@ static void release_context(HWCryptoHook_ContextHandle hac) | |||
| 494 | p_hwcrhk_Finish(hac); | 504 | p_hwcrhk_Finish(hac); |
| 495 | } | 505 | } |
| 496 | 506 | ||
| 497 | /* Destructor (complements the "ENGINE_ncipher()" constructor) */ | 507 | /* Destructor (complements the "ENGINE_chil()" constructor) */ |
| 498 | static int hwcrhk_destroy(ENGINE *e) | 508 | static int hwcrhk_destroy(ENGINE *e) |
| 499 | { | 509 | { |
| 500 | free_HWCRHK_LIBNAME(); | 510 | free_HWCRHK_LIBNAME(); |
| @@ -581,17 +591,9 @@ static int hwcrhk_init(ENGINE *e) | |||
| 581 | } | 591 | } |
| 582 | else if (CRYPTO_get_locking_callback() != NULL) | 592 | else if (CRYPTO_get_locking_callback() != NULL) |
| 583 | { | 593 | { |
| 584 | HWCRHKerr(HWCRHK_F_HWCRHK_INIT,HWCRHK_R_DYNAMIC_LOCKING_MISSING); | 594 | HWCRHKerr(HWCRHK_F_HWCRHK_INIT,HWCRHK_R_LOCKING_MISSING); |
| 585 | ERR_add_error_data(1,"You HAVE to add dynamic locking callbacks via CRYPTO_set_dynlock_{create,lock,destroy}_callback()"); | 595 | ERR_add_error_data(1,"You HAVE to add dynamic locking callbacks via CRYPTO_set_dynlock_{create,lock,destroy}_callback()"); |
| 586 | #if 1 /* This is a HACK which will disappear in 0.9.8 */ | ||
| 587 | hwcrhk_globals.maxmutexes = 1; /* Only have one lock */ | ||
| 588 | hwcrhk_globals.mutex_init = hwcrhk_static_mutex_init; | ||
| 589 | hwcrhk_globals.mutex_acquire = hwcrhk_static_mutex_lock; | ||
| 590 | hwcrhk_globals.mutex_release = hwcrhk_static_mutex_unlock; | ||
| 591 | hwcrhk_globals.mutex_destroy = hwcrhk_static_mutex_destroy; | ||
| 592 | #else | ||
| 593 | goto err; | 596 | goto err; |
| 594 | #endif | ||
| 595 | } | 597 | } |
| 596 | } | 598 | } |
| 597 | 599 | ||
| @@ -663,7 +665,7 @@ static int hwcrhk_finish(ENGINE *e) | |||
| 663 | return to_return; | 665 | return to_return; |
| 664 | } | 666 | } |
| 665 | 667 | ||
| 666 | static int hwcrhk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 668 | static int hwcrhk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 667 | { | 669 | { |
| 668 | int to_return = 1; | 670 | int to_return = 1; |
| 669 | 671 | ||
| @@ -769,8 +771,8 @@ static EVP_PKEY *hwcrhk_load_privkey(ENGINE *eng, const char *key_id, | |||
| 769 | #if !defined(OPENSSL_NO_RSA) | 771 | #if !defined(OPENSSL_NO_RSA) |
| 770 | char tempbuf[1024]; | 772 | char tempbuf[1024]; |
| 771 | HWCryptoHook_ErrMsgBuf rmsg; | 773 | HWCryptoHook_ErrMsgBuf rmsg; |
| 772 | #endif | ||
| 773 | HWCryptoHook_PassphraseContext ppctx; | 774 | HWCryptoHook_PassphraseContext ppctx; |
| 775 | #endif | ||
| 774 | 776 | ||
| 775 | #if !defined(OPENSSL_NO_RSA) | 777 | #if !defined(OPENSSL_NO_RSA) |
| 776 | rmsg.buf = tempbuf; | 778 | rmsg.buf = tempbuf; |
| @@ -819,7 +821,7 @@ static EVP_PKEY *hwcrhk_load_privkey(ENGINE *eng, const char *key_id, | |||
| 819 | if (p_hwcrhk_RSAGetPublicKey(*hptr, &n, &e, &rmsg) | 821 | if (p_hwcrhk_RSAGetPublicKey(*hptr, &n, &e, &rmsg) |
| 820 | != HWCRYPTOHOOK_ERROR_MPISIZE) | 822 | != HWCRYPTOHOOK_ERROR_MPISIZE) |
| 821 | { | 823 | { |
| 822 | HWCRHKerr(HWCRHK_F_HWCRHK_LOAD_PUBKEY,HWCRHK_R_CHIL_ERROR); | 824 | HWCRHKerr(HWCRHK_F_HWCRHK_LOAD_PRIVKEY,HWCRHK_R_CHIL_ERROR); |
| 823 | ERR_add_error_data(1,rmsg.buf); | 825 | ERR_add_error_data(1,rmsg.buf); |
| 824 | goto err; | 826 | goto err; |
| 825 | } | 827 | } |
| @@ -831,7 +833,7 @@ static EVP_PKEY *hwcrhk_load_privkey(ENGINE *eng, const char *key_id, | |||
| 831 | 833 | ||
| 832 | if (p_hwcrhk_RSAGetPublicKey(*hptr, &n, &e, &rmsg)) | 834 | if (p_hwcrhk_RSAGetPublicKey(*hptr, &n, &e, &rmsg)) |
| 833 | { | 835 | { |
| 834 | HWCRHKerr(HWCRHK_F_HWCRHK_LOAD_PUBKEY, | 836 | HWCRHKerr(HWCRHK_F_HWCRHK_LOAD_PRIVKEY, |
| 835 | HWCRHK_R_CHIL_ERROR); | 837 | HWCRHK_R_CHIL_ERROR); |
| 836 | ERR_add_error_data(1,rmsg.buf); | 838 | ERR_add_error_data(1,rmsg.buf); |
| 837 | goto err; | 839 | goto err; |
| @@ -846,7 +848,7 @@ static EVP_PKEY *hwcrhk_load_privkey(ENGINE *eng, const char *key_id, | |||
| 846 | #endif | 848 | #endif |
| 847 | 849 | ||
| 848 | if (!res) | 850 | if (!res) |
| 849 | HWCRHKerr(HWCRHK_F_HWCRHK_LOAD_PUBKEY, | 851 | HWCRHKerr(HWCRHK_F_HWCRHK_LOAD_PRIVKEY, |
| 850 | HWCRHK_R_PRIVATE_KEY_ALGORITHMS_DISABLED); | 852 | HWCRHK_R_PRIVATE_KEY_ALGORITHMS_DISABLED); |
| 851 | 853 | ||
| 852 | return res; | 854 | return res; |
| @@ -961,7 +963,7 @@ err: | |||
| 961 | } | 963 | } |
| 962 | 964 | ||
| 963 | #ifndef OPENSSL_NO_RSA | 965 | #ifndef OPENSSL_NO_RSA |
| 964 | static int hwcrhk_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa) | 966 | static int hwcrhk_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) |
| 965 | { | 967 | { |
| 966 | char tempbuf[1024]; | 968 | char tempbuf[1024]; |
| 967 | HWCryptoHook_ErrMsgBuf rmsg; | 969 | HWCryptoHook_ErrMsgBuf rmsg; |
| @@ -973,7 +975,7 @@ static int hwcrhk_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa) | |||
| 973 | 975 | ||
| 974 | if(!hwcrhk_context) | 976 | if(!hwcrhk_context) |
| 975 | { | 977 | { |
| 976 | HWCRHKerr(HWCRHK_F_HWCRHK_MOD_EXP,HWCRHK_R_NOT_INITIALISED); | 978 | HWCRHKerr(HWCRHK_F_HWCRHK_RSA_MOD_EXP,HWCRHK_R_NOT_INITIALISED); |
| 977 | goto err; | 979 | goto err; |
| 978 | } | 980 | } |
| 979 | 981 | ||
| @@ -1078,12 +1080,14 @@ err: | |||
| 1078 | } | 1080 | } |
| 1079 | #endif | 1081 | #endif |
| 1080 | 1082 | ||
| 1083 | #ifndef OPENSSL_NO_RSA | ||
| 1081 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 1084 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 1082 | static int hwcrhk_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 1085 | static int hwcrhk_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 1083 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) | 1086 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) |
| 1084 | { | 1087 | { |
| 1085 | return hwcrhk_mod_exp(r, a, p, m, ctx); | 1088 | return hwcrhk_mod_exp(r, a, p, m, ctx); |
| 1086 | } | 1089 | } |
| 1090 | #endif | ||
| 1087 | 1091 | ||
| 1088 | #ifndef OPENSSL_NO_DH | 1092 | #ifndef OPENSSL_NO_DH |
| 1089 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ | 1093 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ |
| @@ -1142,7 +1146,7 @@ static int hwcrhk_rand_status(void) | |||
| 1142 | } | 1146 | } |
| 1143 | 1147 | ||
| 1144 | /* This cleans up an RSA KM key, called when ex_data is freed */ | 1148 | /* This cleans up an RSA KM key, called when ex_data is freed */ |
| 1145 | 1149 | #ifndef OPENSSL_NO_RSA | |
| 1146 | static void hwcrhk_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | 1150 | static void hwcrhk_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, |
| 1147 | int ind,long argl, void *argp) | 1151 | int ind,long argl, void *argp) |
| 1148 | { | 1152 | { |
| @@ -1167,6 +1171,7 @@ static void hwcrhk_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | |||
| 1167 | } | 1171 | } |
| 1168 | #endif | 1172 | #endif |
| 1169 | } | 1173 | } |
| 1174 | #endif | ||
| 1170 | 1175 | ||
| 1171 | /* Mutex calls: since the HWCryptoHook model closely follows the POSIX model | 1176 | /* Mutex calls: since the HWCryptoHook model closely follows the POSIX model |
| 1172 | * these just wrap the POSIX functions and add some logging. | 1177 | * these just wrap the POSIX functions and add some logging. |
| @@ -1197,26 +1202,6 @@ static void hwcrhk_mutex_destroy(HWCryptoHook_Mutex *mt) | |||
| 1197 | CRYPTO_destroy_dynlockid(mt->lockid); | 1202 | CRYPTO_destroy_dynlockid(mt->lockid); |
| 1198 | } | 1203 | } |
| 1199 | 1204 | ||
| 1200 | /* Mutex upcalls to use if the application does not support dynamic locks */ | ||
| 1201 | |||
| 1202 | static int hwcrhk_static_mutex_init(HWCryptoHook_Mutex *m, | ||
| 1203 | HWCryptoHook_CallerContext *c) | ||
| 1204 | { | ||
| 1205 | return 0; | ||
| 1206 | } | ||
| 1207 | static int hwcrhk_static_mutex_lock(HWCryptoHook_Mutex *m) | ||
| 1208 | { | ||
| 1209 | CRYPTO_w_lock(CRYPTO_LOCK_HWCRHK); | ||
| 1210 | return 0; | ||
| 1211 | } | ||
| 1212 | static void hwcrhk_static_mutex_unlock(HWCryptoHook_Mutex *m) | ||
| 1213 | { | ||
| 1214 | CRYPTO_w_unlock(CRYPTO_LOCK_HWCRHK); | ||
| 1215 | } | ||
| 1216 | static void hwcrhk_static_mutex_destroy(HWCryptoHook_Mutex *m) | ||
| 1217 | { | ||
| 1218 | } | ||
| 1219 | |||
| 1220 | static int hwcrhk_get_pass(const char *prompt_info, | 1205 | static int hwcrhk_get_pass(const char *prompt_info, |
| 1221 | int *len_io, char *buf, | 1206 | int *len_io, char *buf, |
| 1222 | HWCryptoHook_PassphraseContext *ppctx, | 1207 | HWCryptoHook_PassphraseContext *ppctx, |
| @@ -1371,10 +1356,11 @@ static void hwcrhk_log_message(void *logstr, const char *message) | |||
| 1371 | 1356 | ||
| 1372 | /* This stuff is needed if this ENGINE is being compiled into a self-contained | 1357 | /* This stuff is needed if this ENGINE is being compiled into a self-contained |
| 1373 | * shared-library. */ | 1358 | * shared-library. */ |
| 1374 | #ifdef ENGINE_DYNAMIC_SUPPORT | 1359 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 1375 | static int bind_fn(ENGINE *e, const char *id) | 1360 | static int bind_fn(ENGINE *e, const char *id) |
| 1376 | { | 1361 | { |
| 1377 | if(id && (strcmp(id, engine_hwcrhk_id) != 0)) | 1362 | if(id && (strcmp(id, engine_hwcrhk_id) != 0) && |
| 1363 | (strcmp(id, engine_hwcrhk_id_alt) != 0)) | ||
| 1378 | return 0; | 1364 | return 0; |
| 1379 | if(!bind_helper(e)) | 1365 | if(!bind_helper(e)) |
| 1380 | return 0; | 1366 | return 0; |
| @@ -1382,7 +1368,7 @@ static int bind_fn(ENGINE *e, const char *id) | |||
| 1382 | } | 1368 | } |
| 1383 | IMPLEMENT_DYNAMIC_CHECK_FN() | 1369 | IMPLEMENT_DYNAMIC_CHECK_FN() |
| 1384 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | 1370 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
| 1385 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | 1371 | #endif /* OPENSSL_NO_DYNAMIC_ENGINE */ |
| 1386 | 1372 | ||
| 1387 | #endif /* !OPENSSL_NO_HW_NCIPHER */ | 1373 | #endif /* !OPENSSL_NO_HW_CHIL */ |
| 1388 | #endif /* !OPENSSL_NO_HW */ | 1374 | #endif /* !OPENSSL_NO_HW */ |
diff --git a/src/lib/libssl/src/engines/e_chil.ec b/src/lib/libssl/src/engines/e_chil.ec new file mode 100644 index 0000000000..b5a76e17df --- /dev/null +++ b/src/lib/libssl/src/engines/e_chil.ec | |||
| @@ -0,0 +1 @@ | |||
| L HWCRHK e_chil_err.h e_chil_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_ncipher_err.c b/src/lib/libssl/src/engines/e_chil_err.c index 5bc94581b7..3fec95a272 100644 --- a/src/lib/libssl/src/crypto/engine/hw_ncipher_err.c +++ b/src/lib/libssl/src/engines/e_chil_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_ncipher_err.c */ | 1 | /* e_chil_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999-2002 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,42 +60,46 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_ncipher_err.h" | 63 | #include "e_chil_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA HWCRHK_str_functs[]= | 71 | static ERR_STRING_DATA HWCRHK_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,HWCRHK_F_HWCRHK_CTRL,0), "HWCRHK_CTRL"}, | 73 | {ERR_FUNC(HWCRHK_F_HWCRHK_CTRL), "HWCRHK_CTRL"}, |
| 70 | {ERR_PACK(0,HWCRHK_F_HWCRHK_FINISH,0), "HWCRHK_FINISH"}, | 74 | {ERR_FUNC(HWCRHK_F_HWCRHK_FINISH), "HWCRHK_FINISH"}, |
| 71 | {ERR_PACK(0,HWCRHK_F_HWCRHK_GET_PASS,0), "HWCRHK_GET_PASS"}, | 75 | {ERR_FUNC(HWCRHK_F_HWCRHK_GET_PASS), "HWCRHK_GET_PASS"}, |
| 72 | {ERR_PACK(0,HWCRHK_F_HWCRHK_INIT,0), "HWCRHK_INIT"}, | 76 | {ERR_FUNC(HWCRHK_F_HWCRHK_INIT), "HWCRHK_INIT"}, |
| 73 | {ERR_PACK(0,HWCRHK_F_HWCRHK_INSERT_CARD,0), "HWCRHK_INSERT_CARD"}, | 77 | {ERR_FUNC(HWCRHK_F_HWCRHK_INSERT_CARD), "HWCRHK_INSERT_CARD"}, |
| 74 | {ERR_PACK(0,HWCRHK_F_HWCRHK_LOAD_PRIVKEY,0), "HWCRHK_LOAD_PRIVKEY"}, | 78 | {ERR_FUNC(HWCRHK_F_HWCRHK_LOAD_PRIVKEY), "HWCRHK_LOAD_PRIVKEY"}, |
| 75 | {ERR_PACK(0,HWCRHK_F_HWCRHK_LOAD_PUBKEY,0), "HWCRHK_LOAD_PUBKEY"}, | 79 | {ERR_FUNC(HWCRHK_F_HWCRHK_LOAD_PUBKEY), "HWCRHK_LOAD_PUBKEY"}, |
| 76 | {ERR_PACK(0,HWCRHK_F_HWCRHK_MOD_EXP,0), "HWCRHK_MOD_EXP"}, | 80 | {ERR_FUNC(HWCRHK_F_HWCRHK_MOD_EXP), "HWCRHK_MOD_EXP"}, |
| 77 | {ERR_PACK(0,HWCRHK_F_HWCRHK_RAND_BYTES,0), "HWCRHK_RAND_BYTES"}, | 81 | {ERR_FUNC(HWCRHK_F_HWCRHK_RAND_BYTES), "HWCRHK_RAND_BYTES"}, |
| 78 | {ERR_PACK(0,HWCRHK_F_HWCRHK_RSA_MOD_EXP,0), "HWCRHK_RSA_MOD_EXP"}, | 82 | {ERR_FUNC(HWCRHK_F_HWCRHK_RSA_MOD_EXP), "HWCRHK_RSA_MOD_EXP"}, |
| 79 | {0,NULL} | 83 | {0,NULL} |
| 80 | }; | 84 | }; |
| 81 | 85 | ||
| 82 | static ERR_STRING_DATA HWCRHK_str_reasons[]= | 86 | static ERR_STRING_DATA HWCRHK_str_reasons[]= |
| 83 | { | 87 | { |
| 84 | {HWCRHK_R_ALREADY_LOADED ,"already loaded"}, | 88 | {ERR_REASON(HWCRHK_R_ALREADY_LOADED) ,"already loaded"}, |
| 85 | {HWCRHK_R_BIO_WAS_FREED ,"bio was freed"}, | 89 | {ERR_REASON(HWCRHK_R_BIO_WAS_FREED) ,"bio was freed"}, |
| 86 | {HWCRHK_R_CHIL_ERROR ,"chil error"}, | 90 | {ERR_REASON(HWCRHK_R_CHIL_ERROR) ,"chil error"}, |
| 87 | {HWCRHK_R_CTRL_COMMAND_NOT_IMPLEMENTED ,"ctrl command not implemented"}, | 91 | {ERR_REASON(HWCRHK_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, |
| 88 | {HWCRHK_R_DSO_FAILURE ,"dso failure"}, | 92 | {ERR_REASON(HWCRHK_R_DSO_FAILURE) ,"dso failure"}, |
| 89 | {HWCRHK_R_DYNAMIC_LOCKING_MISSING ,"dynamic locking missing"}, | 93 | {ERR_REASON(HWCRHK_R_LOCKING_MISSING) ,"locking missing"}, |
| 90 | {HWCRHK_R_MISSING_KEY_COMPONENTS ,"missing key components"}, | 94 | {ERR_REASON(HWCRHK_R_MISSING_KEY_COMPONENTS),"missing key components"}, |
| 91 | {HWCRHK_R_NOT_INITIALISED ,"not initialised"}, | 95 | {ERR_REASON(HWCRHK_R_NOT_INITIALISED) ,"not initialised"}, |
| 92 | {HWCRHK_R_NOT_LOADED ,"not loaded"}, | 96 | {ERR_REASON(HWCRHK_R_NOT_LOADED) ,"not loaded"}, |
| 93 | {HWCRHK_R_NO_CALLBACK ,"no callback"}, | 97 | {ERR_REASON(HWCRHK_R_NO_CALLBACK) ,"no callback"}, |
| 94 | {HWCRHK_R_NO_KEY ,"no key"}, | 98 | {ERR_REASON(HWCRHK_R_NO_KEY) ,"no key"}, |
| 95 | {HWCRHK_R_PRIVATE_KEY_ALGORITHMS_DISABLED,"private key algorithms disabled"}, | 99 | {ERR_REASON(HWCRHK_R_PRIVATE_KEY_ALGORITHMS_DISABLED),"private key algorithms disabled"}, |
| 96 | {HWCRHK_R_REQUEST_FAILED ,"request failed"}, | 100 | {ERR_REASON(HWCRHK_R_REQUEST_FAILED) ,"request failed"}, |
| 97 | {HWCRHK_R_REQUEST_FALLBACK ,"request fallback"}, | 101 | {ERR_REASON(HWCRHK_R_REQUEST_FALLBACK) ,"request fallback"}, |
| 98 | {HWCRHK_R_UNIT_FAILURE ,"unit failure"}, | 102 | {ERR_REASON(HWCRHK_R_UNIT_FAILURE) ,"unit failure"}, |
| 99 | {0,NULL} | 103 | {0,NULL} |
| 100 | }; | 104 | }; |
| 101 | 105 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_ncipher_err.h b/src/lib/libssl/src/engines/e_chil_err.h index d232d02319..051854950a 100644 --- a/src/lib/libssl/src/crypto/engine/hw_ncipher_err.h +++ b/src/lib/libssl/src/engines/e_chil_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_HWCRHK_ERR_H | 55 | #ifndef HEADER_HWCRHK_ERR_H |
| 56 | #define HEADER_HWCRHK_ERR_H | 56 | #define HEADER_HWCRHK_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
| @@ -84,7 +88,7 @@ static void ERR_HWCRHK_error(int function, int reason, char *file, int line); | |||
| 84 | #define HWCRHK_R_CHIL_ERROR 102 | 88 | #define HWCRHK_R_CHIL_ERROR 102 |
| 85 | #define HWCRHK_R_CTRL_COMMAND_NOT_IMPLEMENTED 103 | 89 | #define HWCRHK_R_CTRL_COMMAND_NOT_IMPLEMENTED 103 |
| 86 | #define HWCRHK_R_DSO_FAILURE 104 | 90 | #define HWCRHK_R_DSO_FAILURE 104 |
| 87 | #define HWCRHK_R_DYNAMIC_LOCKING_MISSING 114 | 91 | #define HWCRHK_R_LOCKING_MISSING 114 |
| 88 | #define HWCRHK_R_MISSING_KEY_COMPONENTS 105 | 92 | #define HWCRHK_R_MISSING_KEY_COMPONENTS 105 |
| 89 | #define HWCRHK_R_NOT_INITIALISED 106 | 93 | #define HWCRHK_R_NOT_INITIALISED 106 |
| 90 | #define HWCRHK_R_NOT_LOADED 107 | 94 | #define HWCRHK_R_NOT_LOADED 107 |
diff --git a/src/lib/libssl/src/crypto/engine/hw_cswift.c b/src/lib/libssl/src/engines/e_cswift.c index 1411fd8333..bc65179846 100644 --- a/src/lib/libssl/src/crypto/engine/hw_cswift.c +++ b/src/lib/libssl/src/engines/e_cswift.c | |||
| @@ -57,10 +57,22 @@ | |||
| 57 | */ | 57 | */ |
| 58 | 58 | ||
| 59 | #include <stdio.h> | 59 | #include <stdio.h> |
| 60 | #include <string.h> | ||
| 60 | #include <openssl/crypto.h> | 61 | #include <openssl/crypto.h> |
| 61 | #include "cryptlib.h" | 62 | #include <openssl/buffer.h> |
| 62 | #include <openssl/dso.h> | 63 | #include <openssl/dso.h> |
| 63 | #include <openssl/engine.h> | 64 | #include <openssl/engine.h> |
| 65 | #ifndef OPENSSL_NO_RSA | ||
| 66 | #include <openssl/rsa.h> | ||
| 67 | #endif | ||
| 68 | #ifndef OPENSSL_NO_DSA | ||
| 69 | #include <openssl/dsa.h> | ||
| 70 | #endif | ||
| 71 | #ifndef OPENSSL_NO_DH | ||
| 72 | #include <openssl/dh.h> | ||
| 73 | #endif | ||
| 74 | #include <openssl/rand.h> | ||
| 75 | #include <openssl/bn.h> | ||
| 64 | 76 | ||
| 65 | #ifndef OPENSSL_NO_HW | 77 | #ifndef OPENSSL_NO_HW |
| 66 | #ifndef OPENSSL_NO_HW_CSWIFT | 78 | #ifndef OPENSSL_NO_HW_CSWIFT |
| @@ -84,28 +96,34 @@ | |||
| 84 | #endif | 96 | #endif |
| 85 | 97 | ||
| 86 | #define CSWIFT_LIB_NAME "cswift engine" | 98 | #define CSWIFT_LIB_NAME "cswift engine" |
| 87 | #include "hw_cswift_err.c" | 99 | #include "e_cswift_err.c" |
| 100 | |||
| 101 | #define DECIMAL_SIZE(type) ((sizeof(type)*8+2)/3+1) | ||
| 88 | 102 | ||
| 89 | static int cswift_destroy(ENGINE *e); | 103 | static int cswift_destroy(ENGINE *e); |
| 90 | static int cswift_init(ENGINE *e); | 104 | static int cswift_init(ENGINE *e); |
| 91 | static int cswift_finish(ENGINE *e); | 105 | static int cswift_finish(ENGINE *e); |
| 92 | static int cswift_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 106 | static int cswift_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 107 | #ifndef OPENSSL_NO_RSA | ||
| 93 | static int cswift_bn_32copy(SW_LARGENUMBER * out, const BIGNUM * in); | 108 | static int cswift_bn_32copy(SW_LARGENUMBER * out, const BIGNUM * in); |
| 109 | #endif | ||
| 94 | 110 | ||
| 95 | /* BIGNUM stuff */ | 111 | /* BIGNUM stuff */ |
| 96 | static int cswift_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 112 | static int cswift_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 97 | const BIGNUM *m, BN_CTX *ctx); | 113 | const BIGNUM *m, BN_CTX *ctx); |
| 114 | #ifndef OPENSSL_NO_RSA | ||
| 98 | static int cswift_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 115 | static int cswift_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 99 | const BIGNUM *q, const BIGNUM *dmp1, const BIGNUM *dmq1, | 116 | const BIGNUM *q, const BIGNUM *dmp1, const BIGNUM *dmq1, |
| 100 | const BIGNUM *iqmp, BN_CTX *ctx); | 117 | const BIGNUM *iqmp, BN_CTX *ctx); |
| 118 | #endif | ||
| 101 | 119 | ||
| 102 | #ifndef OPENSSL_NO_RSA | 120 | #ifndef OPENSSL_NO_RSA |
| 103 | /* RSA stuff */ | 121 | /* RSA stuff */ |
| 104 | static int cswift_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa); | 122 | static int cswift_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx); |
| 105 | #endif | ||
| 106 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 123 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 107 | static int cswift_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 124 | static int cswift_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 108 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | 125 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); |
| 126 | #endif | ||
| 109 | 127 | ||
| 110 | #ifndef OPENSSL_NO_DSA | 128 | #ifndef OPENSSL_NO_DSA |
| 111 | /* DSA stuff */ | 129 | /* DSA stuff */ |
| @@ -152,6 +170,7 @@ static RSA_METHOD cswift_rsa = | |||
| 152 | 0, | 170 | 0, |
| 153 | NULL, | 171 | NULL, |
| 154 | NULL, | 172 | NULL, |
| 173 | NULL, | ||
| 155 | NULL | 174 | NULL |
| 156 | }; | 175 | }; |
| 157 | #endif | 176 | #endif |
| @@ -169,7 +188,9 @@ static DSA_METHOD cswift_dsa = | |||
| 169 | NULL, /* init */ | 188 | NULL, /* init */ |
| 170 | NULL, /* finish */ | 189 | NULL, /* finish */ |
| 171 | 0, /* flags */ | 190 | 0, /* flags */ |
| 172 | NULL /* app_data */ | 191 | NULL, /* app_data */ |
| 192 | NULL, /* dsa_paramgen */ | ||
| 193 | NULL /* dsa_keygen */ | ||
| 173 | }; | 194 | }; |
| 174 | #endif | 195 | #endif |
| 175 | 196 | ||
| @@ -184,6 +205,7 @@ static DH_METHOD cswift_dh = | |||
| 184 | NULL, | 205 | NULL, |
| 185 | NULL, | 206 | NULL, |
| 186 | 0, | 207 | 0, |
| 208 | NULL, | ||
| 187 | NULL | 209 | NULL |
| 188 | }; | 210 | }; |
| 189 | #endif | 211 | #endif |
| @@ -260,7 +282,7 @@ static int bind_helper(ENGINE *e) | |||
| 260 | return 1; | 282 | return 1; |
| 261 | } | 283 | } |
| 262 | 284 | ||
| 263 | #ifndef ENGINE_DYNAMIC_SUPPORT | 285 | #ifdef OPENSSL_NO_DYNAMIC_ENGINE |
| 264 | static ENGINE *engine_cswift(void) | 286 | static ENGINE *engine_cswift(void) |
| 265 | { | 287 | { |
| 266 | ENGINE *ret = ENGINE_new(); | 288 | ENGINE *ret = ENGINE_new(); |
| @@ -436,7 +458,7 @@ static int cswift_finish(ENGINE *e) | |||
| 436 | return 1; | 458 | return 1; |
| 437 | } | 459 | } |
| 438 | 460 | ||
| 439 | static int cswift_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 461 | static int cswift_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 440 | { | 462 | { |
| 441 | int initialised = ((cswift_dso == NULL) ? 0 : 1); | 463 | int initialised = ((cswift_dso == NULL) ? 0 : 1); |
| 442 | switch(cmd) | 464 | switch(cmd) |
| @@ -558,6 +580,7 @@ err: | |||
| 558 | } | 580 | } |
| 559 | 581 | ||
| 560 | 582 | ||
| 583 | #ifndef OPENSSL_NO_RSA | ||
| 561 | int cswift_bn_32copy(SW_LARGENUMBER * out, const BIGNUM * in) | 584 | int cswift_bn_32copy(SW_LARGENUMBER * out, const BIGNUM * in) |
| 562 | { | 585 | { |
| 563 | int mod; | 586 | int mod; |
| @@ -579,7 +602,9 @@ int cswift_bn_32copy(SW_LARGENUMBER * out, const BIGNUM * in) | |||
| 579 | 602 | ||
| 580 | return 1; | 603 | return 1; |
| 581 | } | 604 | } |
| 605 | #endif | ||
| 582 | 606 | ||
| 607 | #ifndef OPENSSL_NO_RSA | ||
| 583 | /* Un petit mod_exp chinois */ | 608 | /* Un petit mod_exp chinois */ |
| 584 | static int cswift_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 609 | static int cswift_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 585 | const BIGNUM *q, const BIGNUM *dmp1, | 610 | const BIGNUM *q, const BIGNUM *dmp1, |
| @@ -711,14 +736,20 @@ err: | |||
| 711 | release_context(hac); | 736 | release_context(hac); |
| 712 | return to_return; | 737 | return to_return; |
| 713 | } | 738 | } |
| 739 | #endif | ||
| 714 | 740 | ||
| 715 | #ifndef OPENSSL_NO_RSA | 741 | #ifndef OPENSSL_NO_RSA |
| 716 | static int cswift_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | 742 | static int cswift_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) |
| 717 | { | 743 | { |
| 718 | BN_CTX *ctx; | ||
| 719 | int to_return = 0; | 744 | int to_return = 0; |
| 720 | const RSA_METHOD * def_rsa_method; | 745 | const RSA_METHOD * def_rsa_method; |
| 721 | 746 | ||
| 747 | if(!rsa->p || !rsa->q || !rsa->dmp1 || !rsa->dmq1 || !rsa->iqmp) | ||
| 748 | { | ||
| 749 | CSWIFTerr(CSWIFT_F_CSWIFT_RSA_MOD_EXP,CSWIFT_R_MISSING_KEY_COMPONENTS); | ||
| 750 | goto err; | ||
| 751 | } | ||
| 752 | |||
| 722 | /* Try the limits of RSA (2048 bits) */ | 753 | /* Try the limits of RSA (2048 bits) */ |
| 723 | if(BN_num_bytes(rsa->p) > 128 || | 754 | if(BN_num_bytes(rsa->p) > 128 || |
| 724 | BN_num_bytes(rsa->q) > 128 || | 755 | BN_num_bytes(rsa->q) > 128 || |
| @@ -736,24 +767,14 @@ static int cswift_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | |||
| 736 | #endif | 767 | #endif |
| 737 | #endif | 768 | #endif |
| 738 | if(def_rsa_method) | 769 | if(def_rsa_method) |
| 739 | return def_rsa_method->rsa_mod_exp(r0, I, rsa); | 770 | return def_rsa_method->rsa_mod_exp(r0, I, rsa, ctx); |
| 740 | } | 771 | } |
| 741 | 772 | ||
| 742 | if((ctx = BN_CTX_new()) == NULL) | ||
| 743 | goto err; | ||
| 744 | if(!rsa->p || !rsa->q || !rsa->dmp1 || !rsa->dmq1 || !rsa->iqmp) | ||
| 745 | { | ||
| 746 | CSWIFTerr(CSWIFT_F_CSWIFT_RSA_MOD_EXP,CSWIFT_R_MISSING_KEY_COMPONENTS); | ||
| 747 | goto err; | ||
| 748 | } | ||
| 749 | to_return = cswift_mod_exp_crt(r0, I, rsa->p, rsa->q, rsa->dmp1, | 773 | to_return = cswift_mod_exp_crt(r0, I, rsa->p, rsa->q, rsa->dmp1, |
| 750 | rsa->dmq1, rsa->iqmp, ctx); | 774 | rsa->dmq1, rsa->iqmp, ctx); |
| 751 | err: | 775 | err: |
| 752 | if(ctx) | ||
| 753 | BN_CTX_free(ctx); | ||
| 754 | return to_return; | 776 | return to_return; |
| 755 | } | 777 | } |
| 756 | #endif | ||
| 757 | 778 | ||
| 758 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 779 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 759 | static int cswift_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 780 | static int cswift_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| @@ -781,6 +802,7 @@ static int cswift_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 781 | 802 | ||
| 782 | return cswift_mod_exp(r, a, p, m, ctx); | 803 | return cswift_mod_exp(r, a, p, m, ctx); |
| 783 | } | 804 | } |
| 805 | #endif /* OPENSSL_NO_RSA */ | ||
| 784 | 806 | ||
| 785 | #ifndef OPENSSL_NO_DSA | 807 | #ifndef OPENSSL_NO_DSA |
| 786 | static DSA_SIG *cswift_dsa_sign(const unsigned char *dgst, int dlen, DSA *dsa) | 808 | static DSA_SIG *cswift_dsa_sign(const unsigned char *dgst, int dlen, DSA *dsa) |
| @@ -1030,7 +1052,7 @@ static int cswift_rand_bytes(unsigned char *buf, int num) | |||
| 1030 | 1052 | ||
| 1031 | if (!get_context(&hac)) | 1053 | if (!get_context(&hac)) |
| 1032 | { | 1054 | { |
| 1033 | CSWIFTerr(CSWIFT_F_CSWIFT_CTRL, CSWIFT_R_UNIT_FAILURE); | 1055 | CSWIFTerr(CSWIFT_F_CSWIFT_RAND_BYTES, CSWIFT_R_UNIT_FAILURE); |
| 1034 | goto err; | 1056 | goto err; |
| 1035 | } | 1057 | } |
| 1036 | acquired = 1; | 1058 | acquired = 1; |
| @@ -1041,7 +1063,7 @@ static int cswift_rand_bytes(unsigned char *buf, int num) | |||
| 1041 | /* limitation of cswift with values not a multiple of 32 */ | 1063 | /* limitation of cswift with values not a multiple of 32 */ |
| 1042 | /************************************************************************/ | 1064 | /************************************************************************/ |
| 1043 | 1065 | ||
| 1044 | while(num >= sizeof(buf32)) | 1066 | while(num >= (int)sizeof(buf32)) |
| 1045 | { | 1067 | { |
| 1046 | largenum.value = buf; | 1068 | largenum.value = buf; |
| 1047 | largenum.nbytes = sizeof(buf32); | 1069 | largenum.nbytes = sizeof(buf32); |
| @@ -1052,7 +1074,7 @@ static int cswift_rand_bytes(unsigned char *buf, int num) | |||
| 1052 | if (swrc != SW_OK) | 1074 | if (swrc != SW_OK) |
| 1053 | { | 1075 | { |
| 1054 | char tmpbuf[20]; | 1076 | char tmpbuf[20]; |
| 1055 | CSWIFTerr(CSWIFT_F_CSWIFT_CTRL, CSWIFT_R_REQUEST_FAILED); | 1077 | CSWIFTerr(CSWIFT_F_CSWIFT_RAND_BYTES, CSWIFT_R_REQUEST_FAILED); |
| 1056 | sprintf(tmpbuf, "%ld", swrc); | 1078 | sprintf(tmpbuf, "%ld", swrc); |
| 1057 | ERR_add_error_data(2, "CryptoSwift error number is ", tmpbuf); | 1079 | ERR_add_error_data(2, "CryptoSwift error number is ", tmpbuf); |
| 1058 | goto err; | 1080 | goto err; |
| @@ -1068,7 +1090,7 @@ static int cswift_rand_bytes(unsigned char *buf, int num) | |||
| 1068 | if (swrc != SW_OK) | 1090 | if (swrc != SW_OK) |
| 1069 | { | 1091 | { |
| 1070 | char tmpbuf[20]; | 1092 | char tmpbuf[20]; |
| 1071 | CSWIFTerr(CSWIFT_F_CSWIFT_CTRL, CSWIFT_R_REQUEST_FAILED); | 1093 | CSWIFTerr(CSWIFT_F_CSWIFT_RAND_BYTES, CSWIFT_R_REQUEST_FAILED); |
| 1072 | sprintf(tmpbuf, "%ld", swrc); | 1094 | sprintf(tmpbuf, "%ld", swrc); |
| 1073 | ERR_add_error_data(2, "CryptoSwift error number is ", tmpbuf); | 1095 | ERR_add_error_data(2, "CryptoSwift error number is ", tmpbuf); |
| 1074 | goto err; | 1096 | goto err; |
| @@ -1092,7 +1114,7 @@ static int cswift_rand_status(void) | |||
| 1092 | 1114 | ||
| 1093 | /* This stuff is needed if this ENGINE is being compiled into a self-contained | 1115 | /* This stuff is needed if this ENGINE is being compiled into a self-contained |
| 1094 | * shared-library. */ | 1116 | * shared-library. */ |
| 1095 | #ifdef ENGINE_DYNAMIC_SUPPORT | 1117 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 1096 | static int bind_fn(ENGINE *e, const char *id) | 1118 | static int bind_fn(ENGINE *e, const char *id) |
| 1097 | { | 1119 | { |
| 1098 | if(id && (strcmp(id, engine_cswift_id) != 0)) | 1120 | if(id && (strcmp(id, engine_cswift_id) != 0)) |
| @@ -1103,7 +1125,7 @@ static int bind_fn(ENGINE *e, const char *id) | |||
| 1103 | } | 1125 | } |
| 1104 | IMPLEMENT_DYNAMIC_CHECK_FN() | 1126 | IMPLEMENT_DYNAMIC_CHECK_FN() |
| 1105 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | 1127 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
| 1106 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | 1128 | #endif /* OPENSSL_NO_DYNAMIC_ENGINE */ |
| 1107 | 1129 | ||
| 1108 | #endif /* !OPENSSL_NO_HW_CSWIFT */ | 1130 | #endif /* !OPENSSL_NO_HW_CSWIFT */ |
| 1109 | #endif /* !OPENSSL_NO_HW */ | 1131 | #endif /* !OPENSSL_NO_HW */ |
diff --git a/src/lib/libssl/src/engines/e_cswift.ec b/src/lib/libssl/src/engines/e_cswift.ec new file mode 100644 index 0000000000..a7f9d11434 --- /dev/null +++ b/src/lib/libssl/src/engines/e_cswift.ec | |||
| @@ -0,0 +1 @@ | |||
| L CSWIFT e_cswift_err.h e_cswift_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_cswift_err.c b/src/lib/libssl/src/engines/e_cswift_err.c index 684f53bf27..c7942a31fc 100644 --- a/src/lib/libssl/src/crypto/engine/hw_cswift_err.c +++ b/src/lib/libssl/src/engines/e_cswift_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_cswift_err.c */ | 1 | /* e_cswift_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,34 +60,39 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_cswift_err.h" | 63 | #include "e_cswift_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA CSWIFT_str_functs[]= | 71 | static ERR_STRING_DATA CSWIFT_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,CSWIFT_F_CSWIFT_CTRL,0), "CSWIFT_CTRL"}, | 73 | {ERR_FUNC(CSWIFT_F_CSWIFT_CTRL), "CSWIFT_CTRL"}, |
| 70 | {ERR_PACK(0,CSWIFT_F_CSWIFT_DSA_SIGN,0), "CSWIFT_DSA_SIGN"}, | 74 | {ERR_FUNC(CSWIFT_F_CSWIFT_DSA_SIGN), "CSWIFT_DSA_SIGN"}, |
| 71 | {ERR_PACK(0,CSWIFT_F_CSWIFT_DSA_VERIFY,0), "CSWIFT_DSA_VERIFY"}, | 75 | {ERR_FUNC(CSWIFT_F_CSWIFT_DSA_VERIFY), "CSWIFT_DSA_VERIFY"}, |
| 72 | {ERR_PACK(0,CSWIFT_F_CSWIFT_FINISH,0), "CSWIFT_FINISH"}, | 76 | {ERR_FUNC(CSWIFT_F_CSWIFT_FINISH), "CSWIFT_FINISH"}, |
| 73 | {ERR_PACK(0,CSWIFT_F_CSWIFT_INIT,0), "CSWIFT_INIT"}, | 77 | {ERR_FUNC(CSWIFT_F_CSWIFT_INIT), "CSWIFT_INIT"}, |
| 74 | {ERR_PACK(0,CSWIFT_F_CSWIFT_MOD_EXP,0), "CSWIFT_MOD_EXP"}, | 78 | {ERR_FUNC(CSWIFT_F_CSWIFT_MOD_EXP), "CSWIFT_MOD_EXP"}, |
| 75 | {ERR_PACK(0,CSWIFT_F_CSWIFT_MOD_EXP_CRT,0), "CSWIFT_MOD_EXP_CRT"}, | 79 | {ERR_FUNC(CSWIFT_F_CSWIFT_MOD_EXP_CRT), "CSWIFT_MOD_EXP_CRT"}, |
| 76 | {ERR_PACK(0,CSWIFT_F_CSWIFT_RSA_MOD_EXP,0), "CSWIFT_RSA_MOD_EXP"}, | 80 | {ERR_FUNC(CSWIFT_F_CSWIFT_RAND_BYTES), "CSWIFT_RAND_BYTES"}, |
| 81 | {ERR_FUNC(CSWIFT_F_CSWIFT_RSA_MOD_EXP), "CSWIFT_RSA_MOD_EXP"}, | ||
| 77 | {0,NULL} | 82 | {0,NULL} |
| 78 | }; | 83 | }; |
| 79 | 84 | ||
| 80 | static ERR_STRING_DATA CSWIFT_str_reasons[]= | 85 | static ERR_STRING_DATA CSWIFT_str_reasons[]= |
| 81 | { | 86 | { |
| 82 | {CSWIFT_R_ALREADY_LOADED ,"already loaded"}, | 87 | {ERR_REASON(CSWIFT_R_ALREADY_LOADED) ,"already loaded"}, |
| 83 | {CSWIFT_R_BAD_KEY_SIZE ,"bad key size"}, | 88 | {ERR_REASON(CSWIFT_R_BAD_KEY_SIZE) ,"bad key size"}, |
| 84 | {CSWIFT_R_BN_CTX_FULL ,"bn ctx full"}, | 89 | {ERR_REASON(CSWIFT_R_BN_CTX_FULL) ,"bn ctx full"}, |
| 85 | {CSWIFT_R_BN_EXPAND_FAIL ,"bn expand fail"}, | 90 | {ERR_REASON(CSWIFT_R_BN_EXPAND_FAIL) ,"bn expand fail"}, |
| 86 | {CSWIFT_R_CTRL_COMMAND_NOT_IMPLEMENTED ,"ctrl command not implemented"}, | 91 | {ERR_REASON(CSWIFT_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, |
| 87 | {CSWIFT_R_MISSING_KEY_COMPONENTS ,"missing key components"}, | 92 | {ERR_REASON(CSWIFT_R_MISSING_KEY_COMPONENTS),"missing key components"}, |
| 88 | {CSWIFT_R_NOT_LOADED ,"not loaded"}, | 93 | {ERR_REASON(CSWIFT_R_NOT_LOADED) ,"not loaded"}, |
| 89 | {CSWIFT_R_REQUEST_FAILED ,"request failed"}, | 94 | {ERR_REASON(CSWIFT_R_REQUEST_FAILED) ,"request failed"}, |
| 90 | {CSWIFT_R_UNIT_FAILURE ,"unit failure"}, | 95 | {ERR_REASON(CSWIFT_R_UNIT_FAILURE) ,"unit failure"}, |
| 91 | {0,NULL} | 96 | {0,NULL} |
| 92 | }; | 97 | }; |
| 93 | 98 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_cswift_err.h b/src/lib/libssl/src/engines/e_cswift_err.h index 7120c3216f..69c2a9f874 100644 --- a/src/lib/libssl/src/crypto/engine/hw_cswift_err.h +++ b/src/lib/libssl/src/engines/e_cswift_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_CSWIFT_ERR_H | 55 | #ifndef HEADER_CSWIFT_ERR_H |
| 56 | #define HEADER_CSWIFT_ERR_H | 56 | #define HEADER_CSWIFT_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
| @@ -74,6 +78,7 @@ static void ERR_CSWIFT_error(int function, int reason, char *file, int line); | |||
| 74 | #define CSWIFT_F_CSWIFT_INIT 104 | 78 | #define CSWIFT_F_CSWIFT_INIT 104 |
| 75 | #define CSWIFT_F_CSWIFT_MOD_EXP 105 | 79 | #define CSWIFT_F_CSWIFT_MOD_EXP 105 |
| 76 | #define CSWIFT_F_CSWIFT_MOD_EXP_CRT 106 | 80 | #define CSWIFT_F_CSWIFT_MOD_EXP_CRT 106 |
| 81 | #define CSWIFT_F_CSWIFT_RAND_BYTES 108 | ||
| 77 | #define CSWIFT_F_CSWIFT_RSA_MOD_EXP 107 | 82 | #define CSWIFT_F_CSWIFT_RSA_MOD_EXP 107 |
| 78 | 83 | ||
| 79 | /* Reason codes. */ | 84 | /* Reason codes. */ |
diff --git a/src/lib/libssl/src/engines/e_gmp.c b/src/lib/libssl/src/engines/e_gmp.c new file mode 100644 index 0000000000..e62e6fcd07 --- /dev/null +++ b/src/lib/libssl/src/engines/e_gmp.c | |||
| @@ -0,0 +1,471 @@ | |||
| 1 | /* crypto/engine/e_gmp.c */ | ||
| 2 | /* Written by Geoff Thorpe (geoff@geoffthorpe.net) for the OpenSSL | ||
| 3 | * project 2003. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 1999-2001 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | /* This engine is not (currently) compiled in by default. Do enable it, | ||
| 60 | * reconfigure OpenSSL with "enable-gmp -lgmp". The GMP libraries and | ||
| 61 | * headers must reside in one of the paths searched by the compiler/linker, | ||
| 62 | * otherwise paths must be specified - eg. try configuring with | ||
| 63 | * "enable-gmp -I<includepath> -L<libpath> -lgmp". YMMV. */ | ||
| 64 | |||
| 65 | /* As for what this does - it's a largely unoptimised implementation of an | ||
| 66 | * ENGINE that uses the GMP library to perform RSA private key operations. To | ||
| 67 | * obtain more information about what "unoptimised" means, see my original mail | ||
| 68 | * on the subject (though ignore the build instructions which have since | ||
| 69 | * changed); | ||
| 70 | * | ||
| 71 | * http://www.mail-archive.com/openssl-dev@openssl.org/msg12227.html | ||
| 72 | * | ||
| 73 | * On my athlon system at least, it appears the builtin OpenSSL code is now | ||
| 74 | * slightly faster, which is to say that the RSA-related MPI performance | ||
| 75 | * between OpenSSL's BIGNUM and GMP's mpz implementations is probably pretty | ||
| 76 | * balanced for this chip, and so the performance degradation in this ENGINE by | ||
| 77 | * having to convert to/from GMP formats (and not being able to cache | ||
| 78 | * montgomery forms) is probably the difference. However, if some unconfirmed | ||
| 79 | * reports from users is anything to go by, the situation on some other | ||
| 80 | * chipsets might be a good deal more favourable to the GMP version (eg. PPC). | ||
| 81 | * Feedback welcome. */ | ||
| 82 | |||
| 83 | #include <stdio.h> | ||
| 84 | #include <string.h> | ||
| 85 | #include <openssl/crypto.h> | ||
| 86 | #include <openssl/buffer.h> | ||
| 87 | #include <openssl/engine.h> | ||
| 88 | #include <openssl/rsa.h> | ||
| 89 | #include <openssl/bn.h> | ||
| 90 | |||
| 91 | #ifndef OPENSSL_NO_HW | ||
| 92 | #ifndef OPENSSL_NO_GMP | ||
| 93 | |||
| 94 | #include <gmp.h> | ||
| 95 | |||
| 96 | #define E_GMP_LIB_NAME "gmp engine" | ||
| 97 | #include "e_gmp_err.c" | ||
| 98 | |||
| 99 | static int e_gmp_destroy(ENGINE *e); | ||
| 100 | static int e_gmp_init(ENGINE *e); | ||
| 101 | static int e_gmp_finish(ENGINE *e); | ||
| 102 | static int e_gmp_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); | ||
| 103 | |||
| 104 | #ifndef OPENSSL_NO_RSA | ||
| 105 | /* RSA stuff */ | ||
| 106 | static int e_gmp_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa, BN_CTX *ctx); | ||
| 107 | static int e_gmp_rsa_finish(RSA *r); | ||
| 108 | #endif | ||
| 109 | |||
| 110 | /* The definitions for control commands specific to this engine */ | ||
| 111 | /* #define E_GMP_CMD_SO_PATH ENGINE_CMD_BASE */ | ||
| 112 | static const ENGINE_CMD_DEFN e_gmp_cmd_defns[] = { | ||
| 113 | #if 0 | ||
| 114 | {E_GMP_CMD_SO_PATH, | ||
| 115 | "SO_PATH", | ||
| 116 | "Specifies the path to the 'e_gmp' shared library", | ||
| 117 | ENGINE_CMD_FLAG_STRING}, | ||
| 118 | #endif | ||
| 119 | {0, NULL, NULL, 0} | ||
| 120 | }; | ||
| 121 | |||
| 122 | #ifndef OPENSSL_NO_RSA | ||
| 123 | /* Our internal RSA_METHOD that we provide pointers to */ | ||
| 124 | static RSA_METHOD e_gmp_rsa = | ||
| 125 | { | ||
| 126 | "GMP RSA method", | ||
| 127 | NULL, | ||
| 128 | NULL, | ||
| 129 | NULL, | ||
| 130 | NULL, | ||
| 131 | e_gmp_rsa_mod_exp, | ||
| 132 | NULL, | ||
| 133 | NULL, | ||
| 134 | e_gmp_rsa_finish, | ||
| 135 | /* These flags initialise montgomery crud that GMP ignores, however it | ||
| 136 | * makes sure the public key ops (which are done in openssl) don't seem | ||
| 137 | * *slower* than usual :-) */ | ||
| 138 | RSA_FLAG_CACHE_PUBLIC|RSA_FLAG_CACHE_PRIVATE, | ||
| 139 | NULL, | ||
| 140 | NULL, | ||
| 141 | NULL | ||
| 142 | }; | ||
| 143 | #endif | ||
| 144 | |||
| 145 | /* Constants used when creating the ENGINE */ | ||
| 146 | static const char *engine_e_gmp_id = "gmp"; | ||
| 147 | static const char *engine_e_gmp_name = "GMP engine support"; | ||
| 148 | |||
| 149 | /* This internal function is used by ENGINE_gmp() and possibly by the | ||
| 150 | * "dynamic" ENGINE support too */ | ||
| 151 | static int bind_helper(ENGINE *e) | ||
| 152 | { | ||
| 153 | #ifndef OPENSSL_NO_RSA | ||
| 154 | const RSA_METHOD *meth1; | ||
| 155 | #endif | ||
| 156 | if(!ENGINE_set_id(e, engine_e_gmp_id) || | ||
| 157 | !ENGINE_set_name(e, engine_e_gmp_name) || | ||
| 158 | #ifndef OPENSSL_NO_RSA | ||
| 159 | !ENGINE_set_RSA(e, &e_gmp_rsa) || | ||
| 160 | #endif | ||
| 161 | !ENGINE_set_destroy_function(e, e_gmp_destroy) || | ||
| 162 | !ENGINE_set_init_function(e, e_gmp_init) || | ||
| 163 | !ENGINE_set_finish_function(e, e_gmp_finish) || | ||
| 164 | !ENGINE_set_ctrl_function(e, e_gmp_ctrl) || | ||
| 165 | !ENGINE_set_cmd_defns(e, e_gmp_cmd_defns)) | ||
| 166 | return 0; | ||
| 167 | |||
| 168 | #ifndef OPENSSL_NO_RSA | ||
| 169 | meth1 = RSA_PKCS1_SSLeay(); | ||
| 170 | e_gmp_rsa.rsa_pub_enc = meth1->rsa_pub_enc; | ||
| 171 | e_gmp_rsa.rsa_pub_dec = meth1->rsa_pub_dec; | ||
| 172 | e_gmp_rsa.rsa_priv_enc = meth1->rsa_priv_enc; | ||
| 173 | e_gmp_rsa.rsa_priv_dec = meth1->rsa_priv_dec; | ||
| 174 | e_gmp_rsa.bn_mod_exp = meth1->bn_mod_exp; | ||
| 175 | #endif | ||
| 176 | |||
| 177 | /* Ensure the e_gmp error handling is set up */ | ||
| 178 | ERR_load_GMP_strings(); | ||
| 179 | return 1; | ||
| 180 | } | ||
| 181 | |||
| 182 | static ENGINE *engine_gmp(void) | ||
| 183 | { | ||
| 184 | ENGINE *ret = ENGINE_new(); | ||
| 185 | if(!ret) | ||
| 186 | return NULL; | ||
| 187 | if(!bind_helper(ret)) | ||
| 188 | { | ||
| 189 | ENGINE_free(ret); | ||
| 190 | return NULL; | ||
| 191 | } | ||
| 192 | return ret; | ||
| 193 | } | ||
| 194 | |||
| 195 | void ENGINE_load_gmp(void) | ||
| 196 | { | ||
| 197 | /* Copied from eng_[openssl|dyn].c */ | ||
| 198 | ENGINE *toadd = engine_gmp(); | ||
| 199 | if(!toadd) return; | ||
| 200 | ENGINE_add(toadd); | ||
| 201 | ENGINE_free(toadd); | ||
| 202 | ERR_clear_error(); | ||
| 203 | } | ||
| 204 | |||
| 205 | #ifndef OPENSSL_NO_RSA | ||
| 206 | /* Used to attach our own key-data to an RSA structure */ | ||
| 207 | static int hndidx_rsa = -1; | ||
| 208 | #endif | ||
| 209 | |||
| 210 | static int e_gmp_destroy(ENGINE *e) | ||
| 211 | { | ||
| 212 | ERR_unload_GMP_strings(); | ||
| 213 | return 1; | ||
| 214 | } | ||
| 215 | |||
| 216 | /* (de)initialisation functions. */ | ||
| 217 | static int e_gmp_init(ENGINE *e) | ||
| 218 | { | ||
| 219 | #ifndef OPENSSL_NO_RSA | ||
| 220 | if (hndidx_rsa == -1) | ||
| 221 | hndidx_rsa = RSA_get_ex_new_index(0, | ||
| 222 | "GMP-based RSA key handle", | ||
| 223 | NULL, NULL, NULL); | ||
| 224 | #endif | ||
| 225 | if (hndidx_rsa == -1) | ||
| 226 | return 0; | ||
| 227 | return 1; | ||
| 228 | } | ||
| 229 | |||
| 230 | static int e_gmp_finish(ENGINE *e) | ||
| 231 | { | ||
| 232 | return 1; | ||
| 233 | } | ||
| 234 | |||
| 235 | static int e_gmp_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) | ||
| 236 | { | ||
| 237 | int to_return = 1; | ||
| 238 | |||
| 239 | switch(cmd) | ||
| 240 | { | ||
| 241 | #if 0 | ||
| 242 | case E_GMP_CMD_SO_PATH: | ||
| 243 | /* ... */ | ||
| 244 | #endif | ||
| 245 | /* The command isn't understood by this engine */ | ||
| 246 | default: | ||
| 247 | GMPerr(GMP_F_E_GMP_CTRL, | ||
| 248 | GMP_R_CTRL_COMMAND_NOT_IMPLEMENTED); | ||
| 249 | to_return = 0; | ||
| 250 | break; | ||
| 251 | } | ||
| 252 | |||
| 253 | return to_return; | ||
| 254 | } | ||
| 255 | |||
| 256 | |||
| 257 | /* Most often limb sizes will be the same. If not, we use hex conversion | ||
| 258 | * which is neat, but extremely inefficient. */ | ||
| 259 | static int bn2gmp(const BIGNUM *bn, mpz_t g) | ||
| 260 | { | ||
| 261 | bn_check_top(bn); | ||
| 262 | if(((sizeof(bn->d[0]) * 8) == GMP_NUMB_BITS) && | ||
| 263 | (BN_BITS2 == GMP_NUMB_BITS)) | ||
| 264 | { | ||
| 265 | /* The common case */ | ||
| 266 | if(!_mpz_realloc (g, bn->top)) | ||
| 267 | return 0; | ||
| 268 | memcpy(&g->_mp_d[0], &bn->d[0], bn->top * sizeof(bn->d[0])); | ||
| 269 | g->_mp_size = bn->top; | ||
| 270 | if(bn->neg) | ||
| 271 | g->_mp_size = -g->_mp_size; | ||
| 272 | return 1; | ||
| 273 | } | ||
| 274 | else | ||
| 275 | { | ||
| 276 | int toret; | ||
| 277 | char *tmpchar = BN_bn2hex(bn); | ||
| 278 | if(!tmpchar) return 0; | ||
| 279 | toret = (mpz_set_str(g, tmpchar, 16) == 0 ? 1 : 0); | ||
| 280 | OPENSSL_free(tmpchar); | ||
| 281 | return toret; | ||
| 282 | } | ||
| 283 | } | ||
| 284 | |||
| 285 | static int gmp2bn(mpz_t g, BIGNUM *bn) | ||
| 286 | { | ||
| 287 | if(((sizeof(bn->d[0]) * 8) == GMP_NUMB_BITS) && | ||
| 288 | (BN_BITS2 == GMP_NUMB_BITS)) | ||
| 289 | { | ||
| 290 | /* The common case */ | ||
| 291 | int s = (g->_mp_size >= 0) ? g->_mp_size : -g->_mp_size; | ||
| 292 | BN_zero(bn); | ||
| 293 | if(bn_expand2 (bn, s) == NULL) | ||
| 294 | return 0; | ||
| 295 | bn->top = s; | ||
| 296 | memcpy(&bn->d[0], &g->_mp_d[0], s * sizeof(bn->d[0])); | ||
| 297 | bn_correct_top(bn); | ||
| 298 | bn->neg = g->_mp_size >= 0 ? 0 : 1; | ||
| 299 | return 1; | ||
| 300 | } | ||
| 301 | else | ||
| 302 | { | ||
| 303 | int toret; | ||
| 304 | char *tmpchar = OPENSSL_malloc(mpz_sizeinbase(g, 16) + 10); | ||
| 305 | if(!tmpchar) return 0; | ||
| 306 | mpz_get_str(tmpchar, 16, g); | ||
| 307 | toret = BN_hex2bn(&bn, tmpchar); | ||
| 308 | OPENSSL_free(tmpchar); | ||
| 309 | return toret; | ||
| 310 | } | ||
| 311 | } | ||
| 312 | |||
| 313 | #ifndef OPENSSL_NO_RSA | ||
| 314 | typedef struct st_e_gmp_rsa_ctx | ||
| 315 | { | ||
| 316 | int public_only; | ||
| 317 | mpz_t n; | ||
| 318 | mpz_t d; | ||
| 319 | mpz_t e; | ||
| 320 | mpz_t p; | ||
| 321 | mpz_t q; | ||
| 322 | mpz_t dmp1; | ||
| 323 | mpz_t dmq1; | ||
| 324 | mpz_t iqmp; | ||
| 325 | mpz_t r0, r1, I0, m1; | ||
| 326 | } E_GMP_RSA_CTX; | ||
| 327 | |||
| 328 | static E_GMP_RSA_CTX *e_gmp_get_rsa(RSA *rsa) | ||
| 329 | { | ||
| 330 | E_GMP_RSA_CTX *hptr = RSA_get_ex_data(rsa, hndidx_rsa); | ||
| 331 | if(hptr) return hptr; | ||
| 332 | hptr = OPENSSL_malloc(sizeof(E_GMP_RSA_CTX)); | ||
| 333 | if(!hptr) return NULL; | ||
| 334 | /* These inits could probably be replaced by more intelligent | ||
| 335 | * mpz_init2() versions, to reduce malloc-thrashing. */ | ||
| 336 | mpz_init(hptr->n); | ||
| 337 | mpz_init(hptr->d); | ||
| 338 | mpz_init(hptr->e); | ||
| 339 | mpz_init(hptr->p); | ||
| 340 | mpz_init(hptr->q); | ||
| 341 | mpz_init(hptr->dmp1); | ||
| 342 | mpz_init(hptr->dmq1); | ||
| 343 | mpz_init(hptr->iqmp); | ||
| 344 | mpz_init(hptr->r0); | ||
| 345 | mpz_init(hptr->r1); | ||
| 346 | mpz_init(hptr->I0); | ||
| 347 | mpz_init(hptr->m1); | ||
| 348 | if(!bn2gmp(rsa->n, hptr->n) || !bn2gmp(rsa->e, hptr->e)) | ||
| 349 | goto err; | ||
| 350 | if(!rsa->p || !rsa->q || !rsa->d || !rsa->dmp1 || !rsa->dmq1 || !rsa->iqmp) | ||
| 351 | { | ||
| 352 | hptr->public_only = 1; | ||
| 353 | return hptr; | ||
| 354 | } | ||
| 355 | if(!bn2gmp(rsa->d, hptr->d) || !bn2gmp(rsa->p, hptr->p) || | ||
| 356 | !bn2gmp(rsa->q, hptr->q) || !bn2gmp(rsa->dmp1, hptr->dmp1) || | ||
| 357 | !bn2gmp(rsa->dmq1, hptr->dmq1) || !bn2gmp(rsa->iqmp, hptr->iqmp)) | ||
| 358 | goto err; | ||
| 359 | hptr->public_only = 0; | ||
| 360 | RSA_set_ex_data(rsa, hndidx_rsa, hptr); | ||
| 361 | return hptr; | ||
| 362 | err: | ||
| 363 | mpz_clear(hptr->n); | ||
| 364 | mpz_clear(hptr->d); | ||
| 365 | mpz_clear(hptr->e); | ||
| 366 | mpz_clear(hptr->p); | ||
| 367 | mpz_clear(hptr->q); | ||
| 368 | mpz_clear(hptr->dmp1); | ||
| 369 | mpz_clear(hptr->dmq1); | ||
| 370 | mpz_clear(hptr->iqmp); | ||
| 371 | mpz_clear(hptr->r0); | ||
| 372 | mpz_clear(hptr->r1); | ||
| 373 | mpz_clear(hptr->I0); | ||
| 374 | mpz_clear(hptr->m1); | ||
| 375 | OPENSSL_free(hptr); | ||
| 376 | return NULL; | ||
| 377 | } | ||
| 378 | |||
| 379 | static int e_gmp_rsa_finish(RSA *rsa) | ||
| 380 | { | ||
| 381 | E_GMP_RSA_CTX *hptr = RSA_get_ex_data(rsa, hndidx_rsa); | ||
| 382 | if(!hptr) return 0; | ||
| 383 | mpz_clear(hptr->n); | ||
| 384 | mpz_clear(hptr->d); | ||
| 385 | mpz_clear(hptr->e); | ||
| 386 | mpz_clear(hptr->p); | ||
| 387 | mpz_clear(hptr->q); | ||
| 388 | mpz_clear(hptr->dmp1); | ||
| 389 | mpz_clear(hptr->dmq1); | ||
| 390 | mpz_clear(hptr->iqmp); | ||
| 391 | mpz_clear(hptr->r0); | ||
| 392 | mpz_clear(hptr->r1); | ||
| 393 | mpz_clear(hptr->I0); | ||
| 394 | mpz_clear(hptr->m1); | ||
| 395 | OPENSSL_free(hptr); | ||
| 396 | RSA_set_ex_data(rsa, hndidx_rsa, NULL); | ||
| 397 | return 1; | ||
| 398 | } | ||
| 399 | |||
| 400 | static int e_gmp_rsa_mod_exp(BIGNUM *r, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) | ||
| 401 | { | ||
| 402 | E_GMP_RSA_CTX *hptr; | ||
| 403 | int to_return = 0; | ||
| 404 | |||
| 405 | hptr = e_gmp_get_rsa(rsa); | ||
| 406 | if(!hptr) | ||
| 407 | { | ||
| 408 | GMPerr(GMP_F_E_GMP_RSA_MOD_EXP, | ||
| 409 | GMP_R_KEY_CONTEXT_ERROR); | ||
| 410 | return 0; | ||
| 411 | } | ||
| 412 | if(hptr->public_only) | ||
| 413 | { | ||
| 414 | GMPerr(GMP_F_E_GMP_RSA_MOD_EXP, | ||
| 415 | GMP_R_MISSING_KEY_COMPONENTS); | ||
| 416 | return 0; | ||
| 417 | } | ||
| 418 | |||
| 419 | /* ugh!!! */ | ||
| 420 | if(!bn2gmp(I, hptr->I0)) | ||
| 421 | return 0; | ||
| 422 | |||
| 423 | /* This is basically the CRT logic in crypto/rsa/rsa_eay.c reworded into | ||
| 424 | * GMP-speak. It may be that GMP's API facilitates cleaner formulations | ||
| 425 | * of this stuff, eg. better handling of negatives, or functions that | ||
| 426 | * combine operations. */ | ||
| 427 | |||
| 428 | mpz_mod(hptr->r1, hptr->I0, hptr->q); | ||
| 429 | mpz_powm(hptr->m1, hptr->r1, hptr->dmq1, hptr->q); | ||
| 430 | |||
| 431 | mpz_mod(hptr->r1, hptr->I0, hptr->p); | ||
| 432 | mpz_powm(hptr->r0, hptr->r1, hptr->dmp1, hptr->p); | ||
| 433 | |||
| 434 | mpz_sub(hptr->r0, hptr->r0, hptr->m1); | ||
| 435 | |||
| 436 | if(mpz_sgn(hptr->r0) < 0) | ||
| 437 | mpz_add(hptr->r0, hptr->r0, hptr->p); | ||
| 438 | mpz_mul(hptr->r1, hptr->r0, hptr->iqmp); | ||
| 439 | mpz_mod(hptr->r0, hptr->r1, hptr->p); | ||
| 440 | |||
| 441 | if(mpz_sgn(hptr->r0) < 0) | ||
| 442 | mpz_add(hptr->r0, hptr->r0, hptr->p); | ||
| 443 | mpz_mul(hptr->r1, hptr->r0, hptr->q); | ||
| 444 | mpz_add(hptr->r0, hptr->r1, hptr->m1); | ||
| 445 | |||
| 446 | /* ugh!!! */ | ||
| 447 | if(gmp2bn(hptr->r0, r)) | ||
| 448 | to_return = 1; | ||
| 449 | |||
| 450 | return 1; | ||
| 451 | } | ||
| 452 | #endif | ||
| 453 | |||
| 454 | /* This stuff is needed if this ENGINE is being compiled into a self-contained | ||
| 455 | * shared-library. */ | ||
| 456 | #ifndef ENGINE_NO_DYNAMIC_SUPPORT | ||
| 457 | static int bind_fn(ENGINE *e, const char *id) | ||
| 458 | { | ||
| 459 | if(id && (strcmp(id, engine_e_gmp_id) != 0)) | ||
| 460 | return 0; | ||
| 461 | if(!bind_helper(e)) | ||
| 462 | return 0; | ||
| 463 | return 1; | ||
| 464 | } | ||
| 465 | IMPLEMENT_DYNAMIC_CHECK_FN() | ||
| 466 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | ||
| 467 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | ||
| 468 | |||
| 469 | #endif /* !OPENSSL_NO_GMP */ | ||
| 470 | #endif /* !OPENSSL_NO_HW */ | ||
| 471 | |||
diff --git a/src/lib/libssl/src/engines/e_gmp.ec b/src/lib/libssl/src/engines/e_gmp.ec new file mode 100644 index 0000000000..72ec447fb7 --- /dev/null +++ b/src/lib/libssl/src/engines/e_gmp.ec | |||
| @@ -0,0 +1 @@ | |||
| L GMP e_gmp_err.h e_gmp_err.c | |||
diff --git a/src/lib/libssl/src/engines/e_gmp_err.c b/src/lib/libssl/src/engines/e_gmp_err.c new file mode 100644 index 0000000000..61db956796 --- /dev/null +++ b/src/lib/libssl/src/engines/e_gmp_err.c | |||
| @@ -0,0 +1,141 @@ | |||
| 1 | /* e_gmp_err.c */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* NOTE: this file was auto generated by the mkerr.pl script: any changes | ||
| 57 | * made to it will be overwritten when the script next updates this file, | ||
| 58 | * only reason strings will be preserved. | ||
| 59 | */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include "e_gmp_err.h" | ||
| 64 | |||
| 65 | /* BEGIN ERROR CODES */ | ||
| 66 | #ifndef OPENSSL_NO_ERR | ||
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 71 | static ERR_STRING_DATA GMP_str_functs[]= | ||
| 72 | { | ||
| 73 | {ERR_FUNC(GMP_F_E_GMP_CTRL), "E_GMP_CTRL"}, | ||
| 74 | {ERR_FUNC(GMP_F_E_GMP_RSA_MOD_EXP), "E_GMP_RSA_MOD_EXP"}, | ||
| 75 | {0,NULL} | ||
| 76 | }; | ||
| 77 | |||
| 78 | static ERR_STRING_DATA GMP_str_reasons[]= | ||
| 79 | { | ||
| 80 | {ERR_REASON(GMP_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, | ||
| 81 | {ERR_REASON(GMP_R_KEY_CONTEXT_ERROR) ,"key context error"}, | ||
| 82 | {ERR_REASON(GMP_R_MISSING_KEY_COMPONENTS),"missing key components"}, | ||
| 83 | {0,NULL} | ||
| 84 | }; | ||
| 85 | |||
| 86 | #endif | ||
| 87 | |||
| 88 | #ifdef GMP_LIB_NAME | ||
| 89 | static ERR_STRING_DATA GMP_lib_name[]= | ||
| 90 | { | ||
| 91 | {0 ,GMP_LIB_NAME}, | ||
| 92 | {0,NULL} | ||
| 93 | }; | ||
| 94 | #endif | ||
| 95 | |||
| 96 | |||
| 97 | static int GMP_lib_error_code=0; | ||
| 98 | static int GMP_error_init=1; | ||
| 99 | |||
| 100 | static void ERR_load_GMP_strings(void) | ||
| 101 | { | ||
| 102 | if (GMP_lib_error_code == 0) | ||
| 103 | GMP_lib_error_code=ERR_get_next_error_library(); | ||
| 104 | |||
| 105 | if (GMP_error_init) | ||
| 106 | { | ||
| 107 | GMP_error_init=0; | ||
| 108 | #ifndef OPENSSL_NO_ERR | ||
| 109 | ERR_load_strings(GMP_lib_error_code,GMP_str_functs); | ||
| 110 | ERR_load_strings(GMP_lib_error_code,GMP_str_reasons); | ||
| 111 | #endif | ||
| 112 | |||
| 113 | #ifdef GMP_LIB_NAME | ||
| 114 | GMP_lib_name->error = ERR_PACK(GMP_lib_error_code,0,0); | ||
| 115 | ERR_load_strings(0,GMP_lib_name); | ||
| 116 | #endif | ||
| 117 | } | ||
| 118 | } | ||
| 119 | |||
| 120 | static void ERR_unload_GMP_strings(void) | ||
| 121 | { | ||
| 122 | if (GMP_error_init == 0) | ||
| 123 | { | ||
| 124 | #ifndef OPENSSL_NO_ERR | ||
| 125 | ERR_unload_strings(GMP_lib_error_code,GMP_str_functs); | ||
| 126 | ERR_unload_strings(GMP_lib_error_code,GMP_str_reasons); | ||
| 127 | #endif | ||
| 128 | |||
| 129 | #ifdef GMP_LIB_NAME | ||
| 130 | ERR_unload_strings(0,GMP_lib_name); | ||
| 131 | #endif | ||
| 132 | GMP_error_init=1; | ||
| 133 | } | ||
| 134 | } | ||
| 135 | |||
| 136 | static void ERR_GMP_error(int function, int reason, char *file, int line) | ||
| 137 | { | ||
| 138 | if (GMP_lib_error_code == 0) | ||
| 139 | GMP_lib_error_code=ERR_get_next_error_library(); | ||
| 140 | ERR_PUT_error(GMP_lib_error_code,function,reason,file,line); | ||
| 141 | } | ||
diff --git a/src/lib/libssl/src/engines/e_gmp_err.h b/src/lib/libssl/src/engines/e_gmp_err.h new file mode 100644 index 0000000000..dd05dfd800 --- /dev/null +++ b/src/lib/libssl/src/engines/e_gmp_err.h | |||
| @@ -0,0 +1,85 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2001-2002 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * ==================================================================== | ||
| 48 | * | ||
| 49 | * This product includes cryptographic software written by Eric Young | ||
| 50 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 51 | * Hudson (tjh@cryptsoft.com). | ||
| 52 | * | ||
| 53 | */ | ||
| 54 | |||
| 55 | #ifndef HEADER_GMP_ERR_H | ||
| 56 | #define HEADER_GMP_ERR_H | ||
| 57 | |||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 62 | /* BEGIN ERROR CODES */ | ||
| 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 64 | * made after this point may be overwritten when the script is next run. | ||
| 65 | */ | ||
| 66 | static void ERR_load_GMP_strings(void); | ||
| 67 | static void ERR_unload_GMP_strings(void); | ||
| 68 | static void ERR_GMP_error(int function, int reason, char *file, int line); | ||
| 69 | #define GMPerr(f,r) ERR_GMP_error((f),(r),__FILE__,__LINE__) | ||
| 70 | |||
| 71 | /* Error codes for the GMP functions. */ | ||
| 72 | |||
| 73 | /* Function codes. */ | ||
| 74 | #define GMP_F_E_GMP_CTRL 100 | ||
| 75 | #define GMP_F_E_GMP_RSA_MOD_EXP 101 | ||
| 76 | |||
| 77 | /* Reason codes. */ | ||
| 78 | #define GMP_R_CTRL_COMMAND_NOT_IMPLEMENTED 100 | ||
| 79 | #define GMP_R_KEY_CONTEXT_ERROR 101 | ||
| 80 | #define GMP_R_MISSING_KEY_COMPONENTS 102 | ||
| 81 | |||
| 82 | #ifdef __cplusplus | ||
| 83 | } | ||
| 84 | #endif | ||
| 85 | #endif | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_nuron.c b/src/lib/libssl/src/engines/e_nuron.c index fb9188bfe5..4c2537cbc3 100644 --- a/src/lib/libssl/src/crypto/engine/hw_nuron.c +++ b/src/lib/libssl/src/engines/e_nuron.c | |||
| @@ -57,17 +57,27 @@ | |||
| 57 | */ | 57 | */ |
| 58 | 58 | ||
| 59 | #include <stdio.h> | 59 | #include <stdio.h> |
| 60 | #include <string.h> | ||
| 60 | #include <openssl/crypto.h> | 61 | #include <openssl/crypto.h> |
| 61 | #include "cryptlib.h" | 62 | #include <openssl/buffer.h> |
| 62 | #include <openssl/dso.h> | 63 | #include <openssl/dso.h> |
| 63 | #include <openssl/engine.h> | 64 | #include <openssl/engine.h> |
| 64 | 65 | #ifndef OPENSSL_NO_RSA | |
| 66 | #include <openssl/rsa.h> | ||
| 67 | #endif | ||
| 68 | #ifndef OPENSSL_NO_DSA | ||
| 69 | #include <openssl/dsa.h> | ||
| 70 | #endif | ||
| 71 | #ifndef OPENSSL_NO_DH | ||
| 72 | #include <openssl/dh.h> | ||
| 73 | #endif | ||
| 74 | #include <openssl/bn.h> | ||
| 65 | 75 | ||
| 66 | #ifndef OPENSSL_NO_HW | 76 | #ifndef OPENSSL_NO_HW |
| 67 | #ifndef OPENSSL_NO_HW_NURON | 77 | #ifndef OPENSSL_NO_HW_NURON |
| 68 | 78 | ||
| 69 | #define NURON_LIB_NAME "nuron engine" | 79 | #define NURON_LIB_NAME "nuron engine" |
| 70 | #include "hw_nuron_err.c" | 80 | #include "e_nuron_err.c" |
| 71 | 81 | ||
| 72 | static const char *NURON_LIBNAME = NULL; | 82 | static const char *NURON_LIBNAME = NULL; |
| 73 | static const char *get_NURON_LIBNAME(void) | 83 | static const char *get_NURON_LIBNAME(void) |
| @@ -155,7 +165,7 @@ static int nuron_finish(ENGINE *e) | |||
| 155 | return 1; | 165 | return 1; |
| 156 | } | 166 | } |
| 157 | 167 | ||
| 158 | static int nuron_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 168 | static int nuron_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 159 | { | 169 | { |
| 160 | int initialised = ((pvDSOHandle == NULL) ? 0 : 1); | 170 | int initialised = ((pvDSOHandle == NULL) ? 0 : 1); |
| 161 | switch(cmd) | 171 | switch(cmd) |
| @@ -191,9 +201,9 @@ static int nuron_mod_exp(BIGNUM *r,const BIGNUM *a,const BIGNUM *p, | |||
| 191 | } | 201 | } |
| 192 | 202 | ||
| 193 | #ifndef OPENSSL_NO_RSA | 203 | #ifndef OPENSSL_NO_RSA |
| 194 | static int nuron_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | 204 | static int nuron_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) |
| 195 | { | 205 | { |
| 196 | return nuron_mod_exp(r0,I,rsa->d,rsa->n,NULL); | 206 | return nuron_mod_exp(r0,I,rsa->d,rsa->n,ctx); |
| 197 | } | 207 | } |
| 198 | #endif | 208 | #endif |
| 199 | 209 | ||
| @@ -238,11 +248,13 @@ static int nuron_mod_exp_dsa(DSA *dsa, BIGNUM *r, BIGNUM *a, | |||
| 238 | #endif | 248 | #endif |
| 239 | 249 | ||
| 240 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ | 250 | /* This function is aliased to mod_exp (with the mont stuff dropped). */ |
| 251 | #ifndef OPENSSL_NO_RSA | ||
| 241 | static int nuron_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 252 | static int nuron_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 242 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) | 253 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx) |
| 243 | { | 254 | { |
| 244 | return nuron_mod_exp(r, a, p, m, ctx); | 255 | return nuron_mod_exp(r, a, p, m, ctx); |
| 245 | } | 256 | } |
| 257 | #endif | ||
| 246 | 258 | ||
| 247 | #ifndef OPENSSL_NO_DH | 259 | #ifndef OPENSSL_NO_DH |
| 248 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ | 260 | /* This function is aliased to mod_exp (with the dh and mont dropped). */ |
| @@ -269,6 +281,7 @@ static RSA_METHOD nuron_rsa = | |||
| 269 | 0, | 281 | 0, |
| 270 | NULL, | 282 | NULL, |
| 271 | NULL, | 283 | NULL, |
| 284 | NULL, | ||
| 272 | NULL | 285 | NULL |
| 273 | }; | 286 | }; |
| 274 | #endif | 287 | #endif |
| @@ -285,7 +298,9 @@ static DSA_METHOD nuron_dsa = | |||
| 285 | NULL, /* init */ | 298 | NULL, /* init */ |
| 286 | NULL, /* finish */ | 299 | NULL, /* finish */ |
| 287 | 0, /* flags */ | 300 | 0, /* flags */ |
| 288 | NULL /* app_data */ | 301 | NULL, /* app_data */ |
| 302 | NULL, /* dsa_paramgen */ | ||
| 303 | NULL /* dsa_keygen */ | ||
| 289 | }; | 304 | }; |
| 290 | #endif | 305 | #endif |
| 291 | 306 | ||
| @@ -299,6 +314,7 @@ static DH_METHOD nuron_dh = | |||
| 299 | NULL, | 314 | NULL, |
| 300 | NULL, | 315 | NULL, |
| 301 | 0, | 316 | 0, |
| 317 | NULL, | ||
| 302 | NULL | 318 | NULL |
| 303 | }; | 319 | }; |
| 304 | #endif | 320 | #endif |
| @@ -374,7 +390,7 @@ static int bind_helper(ENGINE *e) | |||
| 374 | return 1; | 390 | return 1; |
| 375 | } | 391 | } |
| 376 | 392 | ||
| 377 | #ifndef ENGINE_DYNAMIC_SUPPORT | 393 | #ifdef OPENSSL_NO_DYNAMIC_ENGINE |
| 378 | static ENGINE *engine_nuron(void) | 394 | static ENGINE *engine_nuron(void) |
| 379 | { | 395 | { |
| 380 | ENGINE *ret = ENGINE_new(); | 396 | ENGINE *ret = ENGINE_new(); |
| @@ -401,7 +417,7 @@ void ENGINE_load_nuron(void) | |||
| 401 | 417 | ||
| 402 | /* This stuff is needed if this ENGINE is being compiled into a self-contained | 418 | /* This stuff is needed if this ENGINE is being compiled into a self-contained |
| 403 | * shared-library. */ | 419 | * shared-library. */ |
| 404 | #ifdef ENGINE_DYNAMIC_SUPPORT | 420 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 405 | static int bind_fn(ENGINE *e, const char *id) | 421 | static int bind_fn(ENGINE *e, const char *id) |
| 406 | { | 422 | { |
| 407 | if(id && (strcmp(id, engine_nuron_id) != 0)) | 423 | if(id && (strcmp(id, engine_nuron_id) != 0)) |
| @@ -412,7 +428,7 @@ static int bind_fn(ENGINE *e, const char *id) | |||
| 412 | } | 428 | } |
| 413 | IMPLEMENT_DYNAMIC_CHECK_FN() | 429 | IMPLEMENT_DYNAMIC_CHECK_FN() |
| 414 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | 430 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
| 415 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | 431 | #endif /* OPENSSL_NO_DYNAMIC_ENGINE */ |
| 416 | 432 | ||
| 417 | #endif /* !OPENSSL_NO_HW_NURON */ | 433 | #endif /* !OPENSSL_NO_HW_NURON */ |
| 418 | #endif /* !OPENSSL_NO_HW */ | 434 | #endif /* !OPENSSL_NO_HW */ |
diff --git a/src/lib/libssl/src/engines/e_nuron.ec b/src/lib/libssl/src/engines/e_nuron.ec new file mode 100644 index 0000000000..cfa430dfcd --- /dev/null +++ b/src/lib/libssl/src/engines/e_nuron.ec | |||
| @@ -0,0 +1 @@ | |||
| L NURON e_nuron_err.h e_nuron_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_nuron_err.c b/src/lib/libssl/src/engines/e_nuron_err.c index df9d7bde76..9a7864f42f 100644 --- a/src/lib/libssl/src/crypto/engine/hw_nuron_err.c +++ b/src/lib/libssl/src/engines/e_nuron_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_nuron_err.c */ | 1 | /* e_nuron_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,27 +60,31 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_nuron_err.h" | 63 | #include "e_nuron_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA NURON_str_functs[]= | 71 | static ERR_STRING_DATA NURON_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,NURON_F_NURON_CTRL,0), "NURON_CTRL"}, | 73 | {ERR_FUNC(NURON_F_NURON_CTRL), "NURON_CTRL"}, |
| 70 | {ERR_PACK(0,NURON_F_NURON_FINISH,0), "NURON_FINISH"}, | 74 | {ERR_FUNC(NURON_F_NURON_FINISH), "NURON_FINISH"}, |
| 71 | {ERR_PACK(0,NURON_F_NURON_INIT,0), "NURON_INIT"}, | 75 | {ERR_FUNC(NURON_F_NURON_INIT), "NURON_INIT"}, |
| 72 | {ERR_PACK(0,NURON_F_NURON_MOD_EXP,0), "NURON_MOD_EXP"}, | 76 | {ERR_FUNC(NURON_F_NURON_MOD_EXP), "NURON_MOD_EXP"}, |
| 73 | {0,NULL} | 77 | {0,NULL} |
| 74 | }; | 78 | }; |
| 75 | 79 | ||
| 76 | static ERR_STRING_DATA NURON_str_reasons[]= | 80 | static ERR_STRING_DATA NURON_str_reasons[]= |
| 77 | { | 81 | { |
| 78 | {NURON_R_ALREADY_LOADED ,"already loaded"}, | 82 | {ERR_REASON(NURON_R_ALREADY_LOADED) ,"already loaded"}, |
| 79 | {NURON_R_CTRL_COMMAND_NOT_IMPLEMENTED ,"ctrl command not implemented"}, | 83 | {ERR_REASON(NURON_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, |
| 80 | {NURON_R_DSO_FAILURE ,"dso failure"}, | 84 | {ERR_REASON(NURON_R_DSO_FAILURE) ,"dso failure"}, |
| 81 | {NURON_R_DSO_FUNCTION_NOT_FOUND ,"dso function not found"}, | 85 | {ERR_REASON(NURON_R_DSO_FUNCTION_NOT_FOUND),"dso function not found"}, |
| 82 | {NURON_R_DSO_NOT_FOUND ,"dso not found"}, | 86 | {ERR_REASON(NURON_R_DSO_NOT_FOUND) ,"dso not found"}, |
| 83 | {NURON_R_NOT_LOADED ,"not loaded"}, | 87 | {ERR_REASON(NURON_R_NOT_LOADED) ,"not loaded"}, |
| 84 | {0,NULL} | 88 | {0,NULL} |
| 85 | }; | 89 | }; |
| 86 | 90 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_nuron_err.h b/src/lib/libssl/src/engines/e_nuron_err.h index a56bfdf303..219babbb45 100644 --- a/src/lib/libssl/src/crypto/engine/hw_nuron_err.h +++ b/src/lib/libssl/src/engines/e_nuron_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_NURON_ERR_H | 55 | #ifndef HEADER_NURON_ERR_H |
| 56 | #define HEADER_NURON_ERR_H | 56 | #define HEADER_NURON_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
diff --git a/src/lib/libssl/src/crypto/engine/hw_sureware.c b/src/lib/libssl/src/engines/e_sureware.c index fca467e690..58fa9a98ee 100644 --- a/src/lib/libssl/src/crypto/engine/hw_sureware.c +++ b/src/lib/libssl/src/engines/e_sureware.c | |||
| @@ -51,13 +51,22 @@ | |||
| 51 | ====================================================================*/ | 51 | ====================================================================*/ |
| 52 | 52 | ||
| 53 | #include <stdio.h> | 53 | #include <stdio.h> |
| 54 | #include "cryptlib.h" | 54 | #include <string.h> |
| 55 | #include <openssl/crypto.h> | 55 | #include <openssl/crypto.h> |
| 56 | #include <openssl/pem.h> | 56 | #include <openssl/pem.h> |
| 57 | #include <openssl/dso.h> | 57 | #include <openssl/dso.h> |
| 58 | #include "eng_int.h" | ||
| 59 | #include "engine.h" | ||
| 60 | #include <openssl/engine.h> | 58 | #include <openssl/engine.h> |
| 59 | #include <openssl/rand.h> | ||
| 60 | #ifndef OPENSSL_NO_RSA | ||
| 61 | #include <openssl/rsa.h> | ||
| 62 | #endif | ||
| 63 | #ifndef OPENSSL_NO_DSA | ||
| 64 | #include <openssl/dsa.h> | ||
| 65 | #endif | ||
| 66 | #ifndef OPENSSL_NO_DH | ||
| 67 | #include <openssl/dh.h> | ||
| 68 | #endif | ||
| 69 | #include <openssl/bn.h> | ||
| 61 | 70 | ||
| 62 | #ifndef OPENSSL_NO_HW | 71 | #ifndef OPENSSL_NO_HW |
| 63 | #ifndef OPENSSL_NO_HW_SUREWARE | 72 | #ifndef OPENSSL_NO_HW_SUREWARE |
| @@ -69,9 +78,9 @@ | |||
| 69 | #endif | 78 | #endif |
| 70 | 79 | ||
| 71 | #define SUREWARE_LIB_NAME "sureware engine" | 80 | #define SUREWARE_LIB_NAME "sureware engine" |
| 72 | #include "hw_sureware_err.c" | 81 | #include "e_sureware_err.c" |
| 73 | 82 | ||
| 74 | static int surewarehk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 83 | static int surewarehk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 75 | static int surewarehk_destroy(ENGINE *e); | 84 | static int surewarehk_destroy(ENGINE *e); |
| 76 | static int surewarehk_init(ENGINE *e); | 85 | static int surewarehk_init(ENGINE *e); |
| 77 | static int surewarehk_finish(ENGINE *e); | 86 | static int surewarehk_finish(ENGINE *e); |
| @@ -79,10 +88,12 @@ static int surewarehk_modexp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 79 | const BIGNUM *m, BN_CTX *ctx); | 88 | const BIGNUM *m, BN_CTX *ctx); |
| 80 | 89 | ||
| 81 | /* RSA stuff */ | 90 | /* RSA stuff */ |
| 91 | #ifndef OPENSSL_NO_RSA | ||
| 82 | static int surewarehk_rsa_priv_dec(int flen,const unsigned char *from,unsigned char *to, | 92 | static int surewarehk_rsa_priv_dec(int flen,const unsigned char *from,unsigned char *to, |
| 83 | RSA *rsa,int padding); | 93 | RSA *rsa,int padding); |
| 84 | static int surewarehk_rsa_sign(int flen,const unsigned char *from,unsigned char *to, | 94 | static int surewarehk_rsa_sign(int flen,const unsigned char *from,unsigned char *to, |
| 85 | RSA *rsa,int padding); | 95 | RSA *rsa,int padding); |
| 96 | #endif | ||
| 86 | 97 | ||
| 87 | /* RAND stuff */ | 98 | /* RAND stuff */ |
| 88 | static int surewarehk_rand_bytes(unsigned char *buf, int num); | 99 | static int surewarehk_rand_bytes(unsigned char *buf, int num); |
| @@ -124,7 +135,8 @@ static RSA_METHOD surewarehk_rsa = | |||
| 124 | 0, /* RSA flag*/ | 135 | 0, /* RSA flag*/ |
| 125 | NULL, | 136 | NULL, |
| 126 | NULL, /* OpenSSL sign*/ | 137 | NULL, /* OpenSSL sign*/ |
| 127 | NULL /* OpenSSL verify*/ | 138 | NULL, /* OpenSSL verify*/ |
| 139 | NULL /* keygen */ | ||
| 128 | }; | 140 | }; |
| 129 | #endif | 141 | #endif |
| 130 | 142 | ||
| @@ -146,7 +158,8 @@ static DH_METHOD surewarehk_dh = | |||
| 146 | NULL, /* init*/ | 158 | NULL, /* init*/ |
| 147 | NULL, /* finish*/ | 159 | NULL, /* finish*/ |
| 148 | 0, /* flags*/ | 160 | 0, /* flags*/ |
| 149 | NULL | 161 | NULL, |
| 162 | NULL | ||
| 150 | }; | 163 | }; |
| 151 | #endif | 164 | #endif |
| 152 | 165 | ||
| @@ -195,6 +208,8 @@ static DSA_METHOD surewarehk_dsa = | |||
| 195 | NULL,/*finish*/ | 208 | NULL,/*finish*/ |
| 196 | 0, | 209 | 0, |
| 197 | NULL, | 210 | NULL, |
| 211 | NULL, | ||
| 212 | NULL | ||
| 198 | }; | 213 | }; |
| 199 | #endif | 214 | #endif |
| 200 | 215 | ||
| @@ -278,7 +293,7 @@ static int bind_sureware(ENGINE *e) | |||
| 278 | return 1; | 293 | return 1; |
| 279 | } | 294 | } |
| 280 | 295 | ||
| 281 | #ifdef ENGINE_DYNAMIC_SUPPORT | 296 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 282 | static int bind_helper(ENGINE *e, const char *id) | 297 | static int bind_helper(ENGINE *e, const char *id) |
| 283 | { | 298 | { |
| 284 | if(id && (strcmp(id, engine_sureware_id) != 0)) | 299 | if(id && (strcmp(id, engine_sureware_id) != 0)) |
| @@ -366,7 +381,7 @@ static BIO *logstream = NULL; | |||
| 366 | * called, the checking and error handling is probably down there. | 381 | * called, the checking and error handling is probably down there. |
| 367 | */ | 382 | */ |
| 368 | static int threadsafe=1; | 383 | static int threadsafe=1; |
| 369 | static int surewarehk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 384 | static int surewarehk_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 370 | { | 385 | { |
| 371 | int to_return = 1; | 386 | int to_return = 1; |
| 372 | 387 | ||
| @@ -578,7 +593,7 @@ static void surewarehk_error_handling(char *const msg,int func,int ret) | |||
| 578 | ENGINEerr(func,SUREWARE_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 593 | ENGINEerr(func,SUREWARE_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 579 | break; | 594 | break; |
| 580 | case SUREWAREHOOK_ERROR_INVALID_PAD: | 595 | case SUREWAREHOOK_ERROR_INVALID_PAD: |
| 581 | ENGINEerr(func,RSA_R_PADDING_CHECK_FAILED); | 596 | ENGINEerr(func,SUREWARE_R_PADDING_CHECK_FAILED); |
| 582 | break; | 597 | break; |
| 583 | default: | 598 | default: |
| 584 | ENGINEerr(func,SUREWARE_R_REQUEST_FAILED); | 599 | ENGINEerr(func,SUREWARE_R_REQUEST_FAILED); |
| @@ -647,7 +662,7 @@ static EVP_PKEY* sureware_load_public(ENGINE *e,const char *key_id,char *hptr,un | |||
| 647 | int ret=0; | 662 | int ret=0; |
| 648 | if(!p_surewarehk_Load_Rsa_Pubkey || !p_surewarehk_Load_Dsa_Pubkey) | 663 | if(!p_surewarehk_Load_Rsa_Pubkey || !p_surewarehk_Load_Dsa_Pubkey) |
| 649 | { | 664 | { |
| 650 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY,ENGINE_R_NOT_INITIALISED); | 665 | SUREWAREerr(SUREWARE_F_SUREWARE_LOAD_PUBLIC,ENGINE_R_NOT_INITIALISED); |
| 651 | goto err; | 666 | goto err; |
| 652 | } | 667 | } |
| 653 | switch (keytype) | 668 | switch (keytype) |
| @@ -670,10 +685,10 @@ static EVP_PKEY* sureware_load_public(ENGINE *e,const char *key_id,char *hptr,un | |||
| 670 | ret=p_surewarehk_Load_Rsa_Pubkey(msg,key_id,el, | 685 | ret=p_surewarehk_Load_Rsa_Pubkey(msg,key_id,el, |
| 671 | (unsigned long *)rsatmp->n->d, | 686 | (unsigned long *)rsatmp->n->d, |
| 672 | (unsigned long *)rsatmp->e->d); | 687 | (unsigned long *)rsatmp->e->d); |
| 673 | surewarehk_error_handling(msg,SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY,ret); | 688 | surewarehk_error_handling(msg,SUREWARE_F_SUREWARE_LOAD_PUBLIC,ret); |
| 674 | if (ret!=1) | 689 | if (ret!=1) |
| 675 | { | 690 | { |
| 676 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY,ENGINE_R_FAILED_LOADING_PUBLIC_KEY); | 691 | SUREWAREerr(SUREWARE_F_SUREWARE_LOAD_PUBLIC,ENGINE_R_FAILED_LOADING_PUBLIC_KEY); |
| 677 | goto err; | 692 | goto err; |
| 678 | } | 693 | } |
| 679 | /* normalise pub e and pub n */ | 694 | /* normalise pub e and pub n */ |
| @@ -714,10 +729,10 @@ static EVP_PKEY* sureware_load_public(ENGINE *e,const char *key_id,char *hptr,un | |||
| 714 | (unsigned long *)dsatmp->p->d, | 729 | (unsigned long *)dsatmp->p->d, |
| 715 | (unsigned long *)dsatmp->q->d, | 730 | (unsigned long *)dsatmp->q->d, |
| 716 | (unsigned long *)dsatmp->g->d); | 731 | (unsigned long *)dsatmp->g->d); |
| 717 | surewarehk_error_handling(msg,SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY,ret); | 732 | surewarehk_error_handling(msg,SUREWARE_F_SUREWARE_LOAD_PUBLIC,ret); |
| 718 | if (ret!=1) | 733 | if (ret!=1) |
| 719 | { | 734 | { |
| 720 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY,ENGINE_R_FAILED_LOADING_PUBLIC_KEY); | 735 | SUREWAREerr(SUREWARE_F_SUREWARE_LOAD_PUBLIC,ENGINE_R_FAILED_LOADING_PUBLIC_KEY); |
| 721 | goto err; | 736 | goto err; |
| 722 | } | 737 | } |
| 723 | /* set parameters */ | 738 | /* set parameters */ |
| @@ -738,7 +753,7 @@ static EVP_PKEY* sureware_load_public(ENGINE *e,const char *key_id,char *hptr,un | |||
| 738 | #endif | 753 | #endif |
| 739 | 754 | ||
| 740 | default: | 755 | default: |
| 741 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY,ENGINE_R_FAILED_LOADING_PRIVATE_KEY); | 756 | SUREWAREerr(SUREWARE_F_SUREWARE_LOAD_PUBLIC,ENGINE_R_FAILED_LOADING_PRIVATE_KEY); |
| 742 | goto err; | 757 | goto err; |
| 743 | } | 758 | } |
| 744 | return res; | 759 | return res; |
| @@ -768,14 +783,14 @@ static EVP_PKEY *surewarehk_load_privkey(ENGINE *e, const char *key_id, | |||
| 768 | 783 | ||
| 769 | if(!p_surewarehk_Load_Privkey) | 784 | if(!p_surewarehk_Load_Privkey) |
| 770 | { | 785 | { |
| 771 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY,ENGINE_R_NOT_INITIALISED); | 786 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVKEY,ENGINE_R_NOT_INITIALISED); |
| 772 | } | 787 | } |
| 773 | else | 788 | else |
| 774 | { | 789 | { |
| 775 | ret=p_surewarehk_Load_Privkey(msg,key_id,&hptr,&el,&keytype); | 790 | ret=p_surewarehk_Load_Privkey(msg,key_id,&hptr,&el,&keytype); |
| 776 | if (ret!=1) | 791 | if (ret!=1) |
| 777 | { | 792 | { |
| 778 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY,ENGINE_R_FAILED_LOADING_PRIVATE_KEY); | 793 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PRIVKEY,ENGINE_R_FAILED_LOADING_PRIVATE_KEY); |
| 779 | ERR_add_error_data(1,msg); | 794 | ERR_add_error_data(1,msg); |
| 780 | } | 795 | } |
| 781 | else | 796 | else |
| @@ -796,7 +811,7 @@ static EVP_PKEY *surewarehk_load_pubkey(ENGINE *e, const char *key_id, | |||
| 796 | 811 | ||
| 797 | if(!p_surewarehk_Info_Pubkey) | 812 | if(!p_surewarehk_Info_Pubkey) |
| 798 | { | 813 | { |
| 799 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY,ENGINE_R_NOT_INITIALISED); | 814 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PUBKEY,ENGINE_R_NOT_INITIALISED); |
| 800 | } | 815 | } |
| 801 | else | 816 | else |
| 802 | { | 817 | { |
| @@ -804,7 +819,7 @@ static EVP_PKEY *surewarehk_load_pubkey(ENGINE *e, const char *key_id, | |||
| 804 | ret=p_surewarehk_Info_Pubkey(msg,key_id,&el,&keytype); | 819 | ret=p_surewarehk_Info_Pubkey(msg,key_id,&el,&keytype); |
| 805 | if (ret!=1) | 820 | if (ret!=1) |
| 806 | { | 821 | { |
| 807 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY,ENGINE_R_FAILED_LOADING_PUBLIC_KEY); | 822 | SUREWAREerr(SUREWARE_F_SUREWAREHK_LOAD_PUBKEY,ENGINE_R_FAILED_LOADING_PUBLIC_KEY); |
| 808 | ERR_add_error_data(1,msg); | 823 | ERR_add_error_data(1,msg); |
| 809 | } | 824 | } |
| 810 | else | 825 | else |
| @@ -827,6 +842,7 @@ static void surewarehk_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | |||
| 827 | } | 842 | } |
| 828 | 843 | ||
| 829 | #if 0 | 844 | #if 0 |
| 845 | /* not currently used (bug?) */ | ||
| 830 | /* This cleans up an DH KM key (destroys the key into hardware), | 846 | /* This cleans up an DH KM key (destroys the key into hardware), |
| 831 | called when ex_data is freed */ | 847 | called when ex_data is freed */ |
| 832 | static void surewarehk_dh_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | 848 | static void surewarehk_dh_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, |
| @@ -834,7 +850,7 @@ static void surewarehk_dh_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad, | |||
| 834 | { | 850 | { |
| 835 | if(!p_surewarehk_Free) | 851 | if(!p_surewarehk_Free) |
| 836 | { | 852 | { |
| 837 | SUREWAREerr(SUREWARE_F_SUREWAREHK_EX_FREE,ENGINE_R_NOT_INITIALISED); | 853 | SUREWAREerr(SUREWARE_F_SUREWAREHK_DH_EX_FREE,ENGINE_R_NOT_INITIALISED); |
| 838 | } | 854 | } |
| 839 | else | 855 | else |
| 840 | p_surewarehk_Free((char *)item,1); | 856 | p_surewarehk_Free((char *)item,1); |
| @@ -880,7 +896,7 @@ static int surewarehk_rsa_priv_dec(int flen,const unsigned char *from,unsigned c | |||
| 880 | /* intermediate buffer for padding */ | 896 | /* intermediate buffer for padding */ |
| 881 | if ((buf=OPENSSL_malloc(tlen)) == NULL) | 897 | if ((buf=OPENSSL_malloc(tlen)) == NULL) |
| 882 | { | 898 | { |
| 883 | RSAerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,ERR_R_MALLOC_FAILURE); | 899 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,ERR_R_MALLOC_FAILURE); |
| 884 | goto err; | 900 | goto err; |
| 885 | } | 901 | } |
| 886 | memcpy(buf,to,tlen);/* transfert to into buf */ | 902 | memcpy(buf,to,tlen);/* transfert to into buf */ |
| @@ -898,11 +914,11 @@ static int surewarehk_rsa_priv_dec(int flen,const unsigned char *from,unsigned c | |||
| 898 | ret=RSA_padding_check_none(to,tlen,(unsigned char *)buf,flen,tlen); | 914 | ret=RSA_padding_check_none(to,tlen,(unsigned char *)buf,flen,tlen); |
| 899 | break; | 915 | break; |
| 900 | default: | 916 | default: |
| 901 | RSAerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,RSA_R_UNKNOWN_PADDING_TYPE); | 917 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,SUREWARE_R_UNKNOWN_PADDING_TYPE); |
| 902 | goto err; | 918 | goto err; |
| 903 | } | 919 | } |
| 904 | if (ret < 0) | 920 | if (ret < 0) |
| 905 | RSAerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,RSA_R_PADDING_CHECK_FAILED); | 921 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,SUREWARE_R_PADDING_CHECK_FAILED); |
| 906 | } | 922 | } |
| 907 | err: | 923 | err: |
| 908 | if (buf) | 924 | if (buf) |
| @@ -924,12 +940,12 @@ static int surewarehk_rsa_sign(int flen,const unsigned char *from,unsigned char | |||
| 924 | char msg[64]="ENGINE_rsa_sign"; | 940 | char msg[64]="ENGINE_rsa_sign"; |
| 925 | if (!p_surewarehk_Rsa_Sign) | 941 | if (!p_surewarehk_Rsa_Sign) |
| 926 | { | 942 | { |
| 927 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_ENC,ENGINE_R_NOT_INITIALISED); | 943 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_SIGN,ENGINE_R_NOT_INITIALISED); |
| 928 | } | 944 | } |
| 929 | /* extract ref to private key */ | 945 | /* extract ref to private key */ |
| 930 | else if (!(hptr=RSA_get_ex_data(rsa, rsaHndidx))) | 946 | else if (!(hptr=RSA_get_ex_data(rsa, rsaHndidx))) |
| 931 | { | 947 | { |
| 932 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_ENC,SUREWARE_R_MISSING_KEY_COMPONENTS); | 948 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_SIGN,SUREWARE_R_MISSING_KEY_COMPONENTS); |
| 933 | } | 949 | } |
| 934 | else | 950 | else |
| 935 | { | 951 | { |
| @@ -937,11 +953,11 @@ static int surewarehk_rsa_sign(int flen,const unsigned char *from,unsigned char | |||
| 937 | { | 953 | { |
| 938 | case RSA_PKCS1_PADDING: /* do it in one shot */ | 954 | case RSA_PKCS1_PADDING: /* do it in one shot */ |
| 939 | ret=p_surewarehk_Rsa_Sign(msg,flen,(unsigned char *)from,&tlen,to,hptr,SUREWARE_PKCS1_PAD); | 955 | ret=p_surewarehk_Rsa_Sign(msg,flen,(unsigned char *)from,&tlen,to,hptr,SUREWARE_PKCS1_PAD); |
| 940 | surewarehk_error_handling(msg,SUREWARE_F_SUREWAREHK_RSA_PRIV_ENC,ret); | 956 | surewarehk_error_handling(msg,SUREWARE_F_SUREWAREHK_RSA_SIGN,ret); |
| 941 | break; | 957 | break; |
| 942 | case RSA_NO_PADDING: | 958 | case RSA_NO_PADDING: |
| 943 | default: | 959 | default: |
| 944 | RSAerr(SUREWARE_F_SUREWAREHK_RSA_PRIV_ENC,RSA_R_UNKNOWN_PADDING_TYPE); | 960 | SUREWAREerr(SUREWARE_F_SUREWAREHK_RSA_SIGN,SUREWARE_R_UNKNOWN_PADDING_TYPE); |
| 945 | } | 961 | } |
| 946 | } | 962 | } |
| 947 | return ret==1 ? tlen : ret; | 963 | return ret==1 ? tlen : ret; |
| @@ -960,11 +976,13 @@ static DSA_SIG * surewarehk_dsa_do_sign(const unsigned char *from, int flen, DSA | |||
| 960 | if (!p_surewarehk_Dsa_Sign) | 976 | if (!p_surewarehk_Dsa_Sign) |
| 961 | { | 977 | { |
| 962 | SUREWAREerr(SUREWARE_F_SUREWAREHK_DSA_DO_SIGN,ENGINE_R_NOT_INITIALISED); | 978 | SUREWAREerr(SUREWARE_F_SUREWAREHK_DSA_DO_SIGN,ENGINE_R_NOT_INITIALISED); |
| 979 | goto err; | ||
| 963 | } | 980 | } |
| 964 | /* extract ref to private key */ | 981 | /* extract ref to private key */ |
| 965 | else if (!(hptr=DSA_get_ex_data(dsa, dsaHndidx))) | 982 | else if (!(hptr=DSA_get_ex_data(dsa, dsaHndidx))) |
| 966 | { | 983 | { |
| 967 | SUREWAREerr(SUREWARE_F_SUREWAREHK_DSA_DO_SIGN,SUREWARE_R_MISSING_KEY_COMPONENTS); | 984 | SUREWAREerr(SUREWARE_F_SUREWAREHK_DSA_DO_SIGN,SUREWARE_R_MISSING_KEY_COMPONENTS); |
| 985 | goto err; | ||
| 968 | } | 986 | } |
| 969 | else | 987 | else |
| 970 | { | 988 | { |
| @@ -1008,7 +1026,7 @@ static int surewarehk_modexp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 1008 | char msg[64]="ENGINE_modexp"; | 1026 | char msg[64]="ENGINE_modexp"; |
| 1009 | if (!p_surewarehk_Mod_Exp) | 1027 | if (!p_surewarehk_Mod_Exp) |
| 1010 | { | 1028 | { |
| 1011 | SUREWAREerr(SUREWARE_F_SUREWAREHK_MOD_EXP,ENGINE_R_NOT_INITIALISED); | 1029 | SUREWAREerr(SUREWARE_F_SUREWAREHK_MODEXP,ENGINE_R_NOT_INITIALISED); |
| 1012 | } | 1030 | } |
| 1013 | else | 1031 | else |
| 1014 | { | 1032 | { |
| @@ -1024,7 +1042,7 @@ static int surewarehk_modexp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 1024 | a->top*sizeof(BN_ULONG), | 1042 | a->top*sizeof(BN_ULONG), |
| 1025 | (unsigned long *)a->d, | 1043 | (unsigned long *)a->d, |
| 1026 | (unsigned long *)r->d); | 1044 | (unsigned long *)r->d); |
| 1027 | surewarehk_error_handling(msg,SUREWARE_F_SUREWAREHK_MOD_EXP,ret); | 1045 | surewarehk_error_handling(msg,SUREWARE_F_SUREWAREHK_MODEXP,ret); |
| 1028 | if (ret==1) | 1046 | if (ret==1) |
| 1029 | { | 1047 | { |
| 1030 | /* normalise result */ | 1048 | /* normalise result */ |
diff --git a/src/lib/libssl/src/engines/e_sureware.ec b/src/lib/libssl/src/engines/e_sureware.ec new file mode 100644 index 0000000000..3d266b8b7c --- /dev/null +++ b/src/lib/libssl/src/engines/e_sureware.ec | |||
| @@ -0,0 +1 @@ | |||
| L SUREWARE e_sureware_err.h e_sureware_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_sureware_err.c b/src/lib/libssl/src/engines/e_sureware_err.c index 69955dadbb..d4ca68c1db 100644 --- a/src/lib/libssl/src/crypto/engine/hw_sureware_err.c +++ b/src/lib/libssl/src/engines/e_sureware_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_sureware_err.c */ | 1 | /* e_sureware_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,35 +60,43 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_sureware_err.h" | 63 | #include "e_sureware_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA SUREWARE_str_functs[]= | 71 | static ERR_STRING_DATA SUREWARE_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_CTRL,0), "SUREWAREHK_CTRL"}, | 73 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_CTRL), "SUREWAREHK_CTRL"}, |
| 70 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_DSA_DO_SIGN,0), "SUREWAREHK_DSA_DO_SIGN"}, | 74 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_DH_EX_FREE), "SUREWAREHK_DH_EX_FREE"}, |
| 71 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_EX_FREE,0), "SUREWAREHK_EX_FREE"}, | 75 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_DSA_DO_SIGN), "SUREWAREHK_DSA_DO_SIGN"}, |
| 72 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_FINISH,0), "SUREWAREHK_FINISH"}, | 76 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_EX_FREE), "SUREWAREHK_EX_FREE"}, |
| 73 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_INIT,0), "SUREWAREHK_INIT"}, | 77 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_FINISH), "SUREWAREHK_FINISH"}, |
| 74 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY,0), "SUREWAREHK_LOAD_PRIVATE_KEY"}, | 78 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_INIT), "SUREWAREHK_INIT"}, |
| 75 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY,0), "SUREWAREHK_LOAD_PUBLIC_KEY"}, | 79 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_LOAD_PRIVKEY), "SUREWAREHK_LOAD_PRIVKEY"}, |
| 76 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_MOD_EXP,0), "SUREWAREHK_MOD_EXP"}, | 80 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_LOAD_PUBKEY), "SUREWAREHK_LOAD_PUBKEY"}, |
| 77 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_RAND_BYTES,0), "SUREWAREHK_RAND_BYTES"}, | 81 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_MODEXP), "SUREWAREHK_MODEXP"}, |
| 78 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_RAND_SEED,0), "SUREWAREHK_RAND_SEED"}, | 82 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_RAND_BYTES), "SUREWAREHK_RAND_BYTES"}, |
| 79 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC,0), "SUREWAREHK_RSA_PRIV_DEC"}, | 83 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_RAND_SEED), "SUREWAREHK_RAND_SEED"}, |
| 80 | {ERR_PACK(0,SUREWARE_F_SUREWAREHK_RSA_PRIV_ENC,0), "SUREWAREHK_RSA_PRIV_ENC"}, | 84 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC), "SUREWAREHK_RSA_PRIV_DEC"}, |
| 85 | {ERR_FUNC(SUREWARE_F_SUREWAREHK_RSA_SIGN), "SUREWAREHK_RSA_SIGN"}, | ||
| 86 | {ERR_FUNC(SUREWARE_F_SUREWARE_LOAD_PUBLIC), "SUREWARE_LOAD_PUBLIC"}, | ||
| 81 | {0,NULL} | 87 | {0,NULL} |
| 82 | }; | 88 | }; |
| 83 | 89 | ||
| 84 | static ERR_STRING_DATA SUREWARE_str_reasons[]= | 90 | static ERR_STRING_DATA SUREWARE_str_reasons[]= |
| 85 | { | 91 | { |
| 86 | {SUREWARE_R_BIO_WAS_FREED ,"bio was freed"}, | 92 | {ERR_REASON(SUREWARE_R_BIO_WAS_FREED) ,"bio was freed"}, |
| 87 | {SUREWARE_R_MISSING_KEY_COMPONENTS ,"missing key components"}, | 93 | {ERR_REASON(SUREWARE_R_MISSING_KEY_COMPONENTS),"missing key components"}, |
| 88 | {SUREWARE_R_REQUEST_FAILED ,"request failed"}, | 94 | {ERR_REASON(SUREWARE_R_PADDING_CHECK_FAILED),"padding check failed"}, |
| 89 | {SUREWARE_R_REQUEST_FALLBACK ,"request fallback"}, | 95 | {ERR_REASON(SUREWARE_R_REQUEST_FAILED) ,"request failed"}, |
| 90 | {SUREWARE_R_SIZE_TOO_LARGE_OR_TOO_SMALL ,"size too large or too small"}, | 96 | {ERR_REASON(SUREWARE_R_REQUEST_FALLBACK) ,"request fallback"}, |
| 91 | {SUREWARE_R_UNIT_FAILURE ,"unit failure"}, | 97 | {ERR_REASON(SUREWARE_R_SIZE_TOO_LARGE_OR_TOO_SMALL),"size too large or too small"}, |
| 98 | {ERR_REASON(SUREWARE_R_UNIT_FAILURE) ,"unit failure"}, | ||
| 99 | {ERR_REASON(SUREWARE_R_UNKNOWN_PADDING_TYPE),"unknown padding type"}, | ||
| 92 | {0,NULL} | 100 | {0,NULL} |
| 93 | }; | 101 | }; |
| 94 | 102 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_sureware_err.h b/src/lib/libssl/src/engines/e_sureware_err.h index bc52af5e05..ec8ed0c59b 100644 --- a/src/lib/libssl/src/crypto/engine/hw_sureware_err.h +++ b/src/lib/libssl/src/engines/e_sureware_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_SUREWARE_ERR_H | 55 | #ifndef HEADER_SUREWARE_ERR_H |
| 56 | #define HEADER_SUREWARE_ERR_H | 56 | #define HEADER_SUREWARE_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
| @@ -68,25 +72,29 @@ static void ERR_SUREWARE_error(int function, int reason, char *file, int line); | |||
| 68 | 72 | ||
| 69 | /* Function codes. */ | 73 | /* Function codes. */ |
| 70 | #define SUREWARE_F_SUREWAREHK_CTRL 100 | 74 | #define SUREWARE_F_SUREWAREHK_CTRL 100 |
| 75 | #define SUREWARE_F_SUREWAREHK_DH_EX_FREE 112 | ||
| 71 | #define SUREWARE_F_SUREWAREHK_DSA_DO_SIGN 101 | 76 | #define SUREWARE_F_SUREWAREHK_DSA_DO_SIGN 101 |
| 72 | #define SUREWARE_F_SUREWAREHK_EX_FREE 102 | 77 | #define SUREWARE_F_SUREWAREHK_EX_FREE 102 |
| 73 | #define SUREWARE_F_SUREWAREHK_FINISH 103 | 78 | #define SUREWARE_F_SUREWAREHK_FINISH 103 |
| 74 | #define SUREWARE_F_SUREWAREHK_INIT 104 | 79 | #define SUREWARE_F_SUREWAREHK_INIT 104 |
| 75 | #define SUREWARE_F_SUREWAREHK_LOAD_PRIVATE_KEY 105 | 80 | #define SUREWARE_F_SUREWAREHK_LOAD_PRIVKEY 105 |
| 76 | #define SUREWARE_F_SUREWAREHK_LOAD_PUBLIC_KEY 106 | 81 | #define SUREWARE_F_SUREWAREHK_LOAD_PUBKEY 113 |
| 77 | #define SUREWARE_F_SUREWAREHK_MOD_EXP 107 | 82 | #define SUREWARE_F_SUREWAREHK_MODEXP 107 |
| 78 | #define SUREWARE_F_SUREWAREHK_RAND_BYTES 108 | 83 | #define SUREWARE_F_SUREWAREHK_RAND_BYTES 108 |
| 79 | #define SUREWARE_F_SUREWAREHK_RAND_SEED 109 | 84 | #define SUREWARE_F_SUREWAREHK_RAND_SEED 109 |
| 80 | #define SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC 110 | 85 | #define SUREWARE_F_SUREWAREHK_RSA_PRIV_DEC 110 |
| 81 | #define SUREWARE_F_SUREWAREHK_RSA_PRIV_ENC 111 | 86 | #define SUREWARE_F_SUREWAREHK_RSA_SIGN 111 |
| 87 | #define SUREWARE_F_SUREWARE_LOAD_PUBLIC 106 | ||
| 82 | 88 | ||
| 83 | /* Reason codes. */ | 89 | /* Reason codes. */ |
| 84 | #define SUREWARE_R_BIO_WAS_FREED 100 | 90 | #define SUREWARE_R_BIO_WAS_FREED 100 |
| 85 | #define SUREWARE_R_MISSING_KEY_COMPONENTS 105 | 91 | #define SUREWARE_R_MISSING_KEY_COMPONENTS 105 |
| 92 | #define SUREWARE_R_PADDING_CHECK_FAILED 106 | ||
| 86 | #define SUREWARE_R_REQUEST_FAILED 101 | 93 | #define SUREWARE_R_REQUEST_FAILED 101 |
| 87 | #define SUREWARE_R_REQUEST_FALLBACK 102 | 94 | #define SUREWARE_R_REQUEST_FALLBACK 102 |
| 88 | #define SUREWARE_R_SIZE_TOO_LARGE_OR_TOO_SMALL 103 | 95 | #define SUREWARE_R_SIZE_TOO_LARGE_OR_TOO_SMALL 103 |
| 89 | #define SUREWARE_R_UNIT_FAILURE 104 | 96 | #define SUREWARE_R_UNIT_FAILURE 104 |
| 97 | #define SUREWARE_R_UNKNOWN_PADDING_TYPE 107 | ||
| 90 | 98 | ||
| 91 | #ifdef __cplusplus | 99 | #ifdef __cplusplus |
| 92 | } | 100 | } |
diff --git a/src/lib/libssl/src/crypto/engine/hw_ubsec.c b/src/lib/libssl/src/engines/e_ubsec.c index 8fb834af31..e8389de6a1 100644 --- a/src/lib/libssl/src/crypto/engine/hw_ubsec.c +++ b/src/lib/libssl/src/engines/e_ubsec.c | |||
| @@ -59,10 +59,21 @@ | |||
| 59 | */ | 59 | */ |
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <string.h> | ||
| 62 | #include <openssl/crypto.h> | 63 | #include <openssl/crypto.h> |
| 63 | #include "cryptlib.h" | 64 | #include <openssl/buffer.h> |
| 64 | #include <openssl/dso.h> | 65 | #include <openssl/dso.h> |
| 65 | #include <openssl/engine.h> | 66 | #include <openssl/engine.h> |
| 67 | #ifndef OPENSSL_NO_RSA | ||
| 68 | #include <openssl/rsa.h> | ||
| 69 | #endif | ||
| 70 | #ifndef OPENSSL_NO_DSA | ||
| 71 | #include <openssl/dsa.h> | ||
| 72 | #endif | ||
| 73 | #ifndef OPENSSL_NO_DH | ||
| 74 | #include <openssl/dh.h> | ||
| 75 | #endif | ||
| 76 | #include <openssl/bn.h> | ||
| 66 | 77 | ||
| 67 | #ifndef OPENSSL_NO_HW | 78 | #ifndef OPENSSL_NO_HW |
| 68 | #ifndef OPENSSL_NO_HW_UBSEC | 79 | #ifndef OPENSSL_NO_HW_UBSEC |
| @@ -74,21 +85,21 @@ | |||
| 74 | #endif | 85 | #endif |
| 75 | 86 | ||
| 76 | #define UBSEC_LIB_NAME "ubsec engine" | 87 | #define UBSEC_LIB_NAME "ubsec engine" |
| 77 | #include "hw_ubsec_err.c" | 88 | #include "e_ubsec_err.c" |
| 78 | 89 | ||
| 79 | #define FAIL_TO_SOFTWARE -15 | 90 | #define FAIL_TO_SOFTWARE -15 |
| 80 | 91 | ||
| 81 | static int ubsec_destroy(ENGINE *e); | 92 | static int ubsec_destroy(ENGINE *e); |
| 82 | static int ubsec_init(ENGINE *e); | 93 | static int ubsec_init(ENGINE *e); |
| 83 | static int ubsec_finish(ENGINE *e); | 94 | static int ubsec_finish(ENGINE *e); |
| 84 | static int ubsec_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()); | 95 | static int ubsec_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)); |
| 85 | static int ubsec_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 96 | static int ubsec_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 86 | const BIGNUM *m, BN_CTX *ctx); | 97 | const BIGNUM *m, BN_CTX *ctx); |
| 87 | static int ubsec_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 98 | static int ubsec_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 88 | const BIGNUM *q, const BIGNUM *dp, | 99 | const BIGNUM *q, const BIGNUM *dp, |
| 89 | const BIGNUM *dq, const BIGNUM *qinv, BN_CTX *ctx); | 100 | const BIGNUM *dq, const BIGNUM *qinv, BN_CTX *ctx); |
| 90 | #ifndef OPENSSL_NO_RSA | 101 | #ifndef OPENSSL_NO_RSA |
| 91 | static int ubsec_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa); | 102 | static int ubsec_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx); |
| 92 | #endif | 103 | #endif |
| 93 | static int ubsec_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | 104 | static int ubsec_mod_exp_mont(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, |
| 94 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); | 105 | const BIGNUM *m, BN_CTX *ctx, BN_MONT_CTX *m_ctx); |
| @@ -143,6 +154,7 @@ static RSA_METHOD ubsec_rsa = | |||
| 143 | 0, | 154 | 0, |
| 144 | NULL, | 155 | NULL, |
| 145 | NULL, | 156 | NULL, |
| 157 | NULL, | ||
| 146 | NULL | 158 | NULL |
| 147 | }; | 159 | }; |
| 148 | #endif | 160 | #endif |
| @@ -160,7 +172,9 @@ static DSA_METHOD ubsec_dsa = | |||
| 160 | NULL, /* init */ | 172 | NULL, /* init */ |
| 161 | NULL, /* finish */ | 173 | NULL, /* finish */ |
| 162 | 0, /* flags */ | 174 | 0, /* flags */ |
| 163 | NULL /* app_data */ | 175 | NULL, /* app_data */ |
| 176 | NULL, /* dsa_paramgen */ | ||
| 177 | NULL /* dsa_keygen */ | ||
| 164 | }; | 178 | }; |
| 165 | #endif | 179 | #endif |
| 166 | 180 | ||
| @@ -175,6 +189,7 @@ static DH_METHOD ubsec_dh = | |||
| 175 | NULL, | 189 | NULL, |
| 176 | NULL, | 190 | NULL, |
| 177 | 0, | 191 | 0, |
| 192 | NULL, | ||
| 178 | NULL | 193 | NULL |
| 179 | }; | 194 | }; |
| 180 | #endif | 195 | #endif |
| @@ -242,7 +257,7 @@ static int bind_helper(ENGINE *e) | |||
| 242 | return 1; | 257 | return 1; |
| 243 | } | 258 | } |
| 244 | 259 | ||
| 245 | #ifndef ENGINE_DYNAMIC_SUPPORT | 260 | #ifdef OPENSSL_NO_DYNAMIC_ENGINE |
| 246 | static ENGINE *engine_ubsec(void) | 261 | static ENGINE *engine_ubsec(void) |
| 247 | { | 262 | { |
| 248 | ENGINE *ret = ENGINE_new(); | 263 | ENGINE *ret = ENGINE_new(); |
| @@ -514,7 +529,7 @@ static int ubsec_finish(ENGINE *e) | |||
| 514 | return 1; | 529 | return 1; |
| 515 | } | 530 | } |
| 516 | 531 | ||
| 517 | static int ubsec_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)()) | 532 | static int ubsec_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void)) |
| 518 | { | 533 | { |
| 519 | int initialised = ((ubsec_dso == NULL) ? 0 : 1); | 534 | int initialised = ((ubsec_dso == NULL) ? 0 : 1); |
| 520 | switch(cmd) | 535 | switch(cmd) |
| @@ -565,7 +580,7 @@ static int ubsec_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 565 | 580 | ||
| 566 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { | 581 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { |
| 567 | fd = 0; | 582 | fd = 0; |
| 568 | UBSECerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 583 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP, UBSEC_R_UNIT_FAILURE); |
| 569 | return BN_mod_exp(r, a, p, m, ctx); | 584 | return BN_mod_exp(r, a, p, m, ctx); |
| 570 | } | 585 | } |
| 571 | 586 | ||
| @@ -586,14 +601,10 @@ static int ubsec_mod_exp(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 586 | } | 601 | } |
| 587 | 602 | ||
| 588 | #ifndef OPENSSL_NO_RSA | 603 | #ifndef OPENSSL_NO_RSA |
| 589 | static int ubsec_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | 604 | static int ubsec_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa, BN_CTX *ctx) |
| 590 | { | 605 | { |
| 591 | BN_CTX *ctx; | ||
| 592 | int to_return = 0; | 606 | int to_return = 0; |
| 593 | 607 | ||
| 594 | if((ctx = BN_CTX_new()) == NULL) | ||
| 595 | goto err; | ||
| 596 | |||
| 597 | if(!rsa->p || !rsa->q || !rsa->dmp1 || !rsa->dmq1 || !rsa->iqmp) | 608 | if(!rsa->p || !rsa->q || !rsa->dmp1 || !rsa->dmq1 || !rsa->iqmp) |
| 598 | { | 609 | { |
| 599 | UBSECerr(UBSEC_F_UBSEC_RSA_MOD_EXP, UBSEC_R_MISSING_KEY_COMPONENTS); | 610 | UBSECerr(UBSEC_F_UBSEC_RSA_MOD_EXP, UBSEC_R_MISSING_KEY_COMPONENTS); |
| @@ -608,11 +619,9 @@ static int ubsec_rsa_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | |||
| 608 | * Do in software as hardware failed. | 619 | * Do in software as hardware failed. |
| 609 | */ | 620 | */ |
| 610 | const RSA_METHOD *meth = RSA_PKCS1_SSLeay(); | 621 | const RSA_METHOD *meth = RSA_PKCS1_SSLeay(); |
| 611 | to_return = (*meth->rsa_mod_exp)(r0, I, rsa); | 622 | to_return = (*meth->rsa_mod_exp)(r0, I, rsa, ctx); |
| 612 | } | 623 | } |
| 613 | err: | 624 | err: |
| 614 | if(ctx) | ||
| 615 | BN_CTX_free(ctx); | ||
| 616 | return to_return; | 625 | return to_return; |
| 617 | } | 626 | } |
| 618 | #endif | 627 | #endif |
| @@ -630,18 +639,18 @@ static int ubsec_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 630 | 639 | ||
| 631 | /* Check if hardware can't handle this argument. */ | 640 | /* Check if hardware can't handle this argument. */ |
| 632 | if (y_len > max_key_len) { | 641 | if (y_len > max_key_len) { |
| 633 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP, UBSEC_R_SIZE_TOO_LARGE_OR_TOO_SMALL); | 642 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP_CRT, UBSEC_R_SIZE_TOO_LARGE_OR_TOO_SMALL); |
| 634 | return FAIL_TO_SOFTWARE; | 643 | return FAIL_TO_SOFTWARE; |
| 635 | } | 644 | } |
| 636 | 645 | ||
| 637 | if (!bn_wexpand(r, p->top + q->top + 1)) { | 646 | if (!bn_wexpand(r, p->top + q->top + 1)) { |
| 638 | UBSECerr(UBSEC_F_UBSEC_RSA_MOD_EXP_CRT, UBSEC_R_BN_EXPAND_FAIL); | 647 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP_CRT, UBSEC_R_BN_EXPAND_FAIL); |
| 639 | return 0; | 648 | return 0; |
| 640 | } | 649 | } |
| 641 | 650 | ||
| 642 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { | 651 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { |
| 643 | fd = 0; | 652 | fd = 0; |
| 644 | UBSECerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 653 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP_CRT, UBSEC_R_UNIT_FAILURE); |
| 645 | return FAIL_TO_SOFTWARE; | 654 | return FAIL_TO_SOFTWARE; |
| 646 | } | 655 | } |
| 647 | 656 | ||
| @@ -653,7 +662,7 @@ static int ubsec_mod_exp_crt(BIGNUM *r, const BIGNUM *a, const BIGNUM *p, | |||
| 653 | (unsigned char *)dq->d, BN_num_bits(dq), | 662 | (unsigned char *)dq->d, BN_num_bits(dq), |
| 654 | (unsigned char *)q->d, BN_num_bits(q), | 663 | (unsigned char *)q->d, BN_num_bits(q), |
| 655 | (unsigned char *)r->d, &y_len) != 0) { | 664 | (unsigned char *)r->d, &y_len) != 0) { |
| 656 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP, UBSEC_R_REQUEST_FAILED); | 665 | UBSECerr(UBSEC_F_UBSEC_MOD_EXP_CRT, UBSEC_R_REQUEST_FAILED); |
| 657 | p_UBSEC_ubsec_close(fd); | 666 | p_UBSEC_ubsec_close(fd); |
| 658 | return FAIL_TO_SOFTWARE; | 667 | return FAIL_TO_SOFTWARE; |
| 659 | } | 668 | } |
| @@ -747,19 +756,19 @@ static DSA_SIG *ubsec_dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa) | |||
| 747 | 756 | ||
| 748 | if(!bn_wexpand(r, (160+BN_BITS2-1)/BN_BITS2) || | 757 | if(!bn_wexpand(r, (160+BN_BITS2-1)/BN_BITS2) || |
| 749 | (!bn_wexpand(s, (160+BN_BITS2-1)/BN_BITS2))) { | 758 | (!bn_wexpand(s, (160+BN_BITS2-1)/BN_BITS2))) { |
| 750 | UBSECerr(UBSEC_F_UBSEC_DSA_SIGN, UBSEC_R_BN_EXPAND_FAIL); | 759 | UBSECerr(UBSEC_F_UBSEC_DSA_DO_SIGN, UBSEC_R_BN_EXPAND_FAIL); |
| 751 | goto err; | 760 | goto err; |
| 752 | } | 761 | } |
| 753 | 762 | ||
| 754 | if (BN_bin2bn(dgst,dlen,&m) == NULL) { | 763 | if (BN_bin2bn(dgst,dlen,&m) == NULL) { |
| 755 | UBSECerr(UBSEC_F_UBSEC_DSA_SIGN, UBSEC_R_BN_EXPAND_FAIL); | 764 | UBSECerr(UBSEC_F_UBSEC_DSA_DO_SIGN, UBSEC_R_BN_EXPAND_FAIL); |
| 756 | goto err; | 765 | goto err; |
| 757 | } | 766 | } |
| 758 | 767 | ||
| 759 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { | 768 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { |
| 760 | const DSA_METHOD *meth; | 769 | const DSA_METHOD *meth; |
| 761 | fd = 0; | 770 | fd = 0; |
| 762 | UBSECerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 771 | UBSECerr(UBSEC_F_UBSEC_DSA_DO_SIGN, UBSEC_R_UNIT_FAILURE); |
| 763 | meth = DSA_OpenSSL(); | 772 | meth = DSA_OpenSSL(); |
| 764 | to_return = meth->dsa_do_sign(dgst, dlen, dsa); | 773 | to_return = meth->dsa_do_sign(dgst, dlen, dsa); |
| 765 | goto err; | 774 | goto err; |
| @@ -776,7 +785,7 @@ static DSA_SIG *ubsec_dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa) | |||
| 776 | (unsigned char *)s->d, &s_len ) != 0) { | 785 | (unsigned char *)s->d, &s_len ) != 0) { |
| 777 | const DSA_METHOD *meth; | 786 | const DSA_METHOD *meth; |
| 778 | 787 | ||
| 779 | UBSECerr(UBSEC_F_UBSEC_DSA_SIGN, UBSEC_R_REQUEST_FAILED); | 788 | UBSECerr(UBSEC_F_UBSEC_DSA_DO_SIGN, UBSEC_R_REQUEST_FAILED); |
| 780 | p_UBSEC_ubsec_close(fd); | 789 | p_UBSEC_ubsec_close(fd); |
| 781 | meth = DSA_OpenSSL(); | 790 | meth = DSA_OpenSSL(); |
| 782 | to_return = meth->dsa_do_sign(dgst, dlen, dsa); | 791 | to_return = meth->dsa_do_sign(dgst, dlen, dsa); |
| @@ -791,7 +800,7 @@ static DSA_SIG *ubsec_dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa) | |||
| 791 | 800 | ||
| 792 | to_return = DSA_SIG_new(); | 801 | to_return = DSA_SIG_new(); |
| 793 | if(to_return == NULL) { | 802 | if(to_return == NULL) { |
| 794 | UBSECerr(UBSEC_F_UBSEC_DSA_SIGN, UBSEC_R_BN_EXPAND_FAIL); | 803 | UBSECerr(UBSEC_F_UBSEC_DSA_DO_SIGN, UBSEC_R_BN_EXPAND_FAIL); |
| 795 | goto err; | 804 | goto err; |
| 796 | } | 805 | } |
| 797 | 806 | ||
| @@ -813,12 +822,12 @@ static int ubsec_dsa_verify(const unsigned char *dgst, int dgst_len, | |||
| 813 | int v_len, d_len; | 822 | int v_len, d_len; |
| 814 | int to_return = 0; | 823 | int to_return = 0; |
| 815 | int fd; | 824 | int fd; |
| 816 | BIGNUM v; | 825 | BIGNUM v, *pv = &v; |
| 817 | 826 | ||
| 818 | BN_init(&v); | 827 | BN_init(&v); |
| 819 | 828 | ||
| 820 | if(!bn_wexpand(&v, dsa->p->top)) { | 829 | if(!bn_wexpand(pv, dsa->p->top)) { |
| 821 | UBSECerr(UBSEC_F_UBSEC_DSA_VERIFY ,UBSEC_R_BN_EXPAND_FAIL); | 830 | UBSECerr(UBSEC_F_UBSEC_DSA_VERIFY, UBSEC_R_BN_EXPAND_FAIL); |
| 822 | goto err; | 831 | goto err; |
| 823 | } | 832 | } |
| 824 | 833 | ||
| @@ -829,7 +838,7 @@ static int ubsec_dsa_verify(const unsigned char *dgst, int dgst_len, | |||
| 829 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { | 838 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) { |
| 830 | const DSA_METHOD *meth; | 839 | const DSA_METHOD *meth; |
| 831 | fd = 0; | 840 | fd = 0; |
| 832 | UBSECerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 841 | UBSECerr(UBSEC_F_UBSEC_DSA_VERIFY, UBSEC_R_UNIT_FAILURE); |
| 833 | meth = DSA_OpenSSL(); | 842 | meth = DSA_OpenSSL(); |
| 834 | to_return = meth->dsa_do_verify(dgst, dgst_len, sig, dsa); | 843 | to_return = meth->dsa_do_verify(dgst, dgst_len, sig, dsa); |
| 835 | goto err; | 844 | goto err; |
| @@ -845,7 +854,7 @@ static int ubsec_dsa_verify(const unsigned char *dgst, int dgst_len, | |||
| 845 | (unsigned char *)sig->s->d, BN_num_bits(sig->s), | 854 | (unsigned char *)sig->s->d, BN_num_bits(sig->s), |
| 846 | (unsigned char *)v.d, &v_len) != 0) { | 855 | (unsigned char *)v.d, &v_len) != 0) { |
| 847 | const DSA_METHOD *meth; | 856 | const DSA_METHOD *meth; |
| 848 | UBSECerr(UBSEC_F_UBSEC_DSA_VERIFY , UBSEC_R_REQUEST_FAILED); | 857 | UBSECerr(UBSEC_F_UBSEC_DSA_VERIFY, UBSEC_R_REQUEST_FAILED); |
| 849 | p_UBSEC_ubsec_close(fd); | 858 | p_UBSEC_ubsec_close(fd); |
| 850 | 859 | ||
| 851 | meth = DSA_OpenSSL(); | 860 | meth = DSA_OpenSSL(); |
| @@ -864,7 +873,7 @@ err: | |||
| 864 | #endif | 873 | #endif |
| 865 | 874 | ||
| 866 | #ifndef OPENSSL_NO_DH | 875 | #ifndef OPENSSL_NO_DH |
| 867 | static int ubsec_dh_compute_key (unsigned char *key,const BIGNUM *pub_key,DH *dh) | 876 | static int ubsec_dh_compute_key(unsigned char *key,const BIGNUM *pub_key,DH *dh) |
| 868 | { | 877 | { |
| 869 | int ret = -1, | 878 | int ret = -1, |
| 870 | k_len, | 879 | k_len, |
| @@ -875,7 +884,7 @@ static int ubsec_dh_compute_key (unsigned char *key,const BIGNUM *pub_key,DH *dh | |||
| 875 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) | 884 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) |
| 876 | { | 885 | { |
| 877 | const DH_METHOD *meth; | 886 | const DH_METHOD *meth; |
| 878 | ENGINEerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 887 | UBSECerr(UBSEC_F_UBSEC_DH_COMPUTE_KEY, UBSEC_R_UNIT_FAILURE); |
| 879 | meth = DH_OpenSSL(); | 888 | meth = DH_OpenSSL(); |
| 880 | ret = meth->compute_key(key, pub_key, dh); | 889 | ret = meth->compute_key(key, pub_key, dh); |
| 881 | goto err; | 890 | goto err; |
| @@ -889,7 +898,7 @@ static int ubsec_dh_compute_key (unsigned char *key,const BIGNUM *pub_key,DH *dh | |||
| 889 | { | 898 | { |
| 890 | /* Hardware's a no go, failover to software */ | 899 | /* Hardware's a no go, failover to software */ |
| 891 | const DH_METHOD *meth; | 900 | const DH_METHOD *meth; |
| 892 | ENGINEerr(UBSEC_F_UBSEC_DH_COMPUTE_KEY, UBSEC_R_REQUEST_FAILED); | 901 | UBSECerr(UBSEC_F_UBSEC_DH_COMPUTE_KEY, UBSEC_R_REQUEST_FAILED); |
| 893 | p_UBSEC_ubsec_close(fd); | 902 | p_UBSEC_ubsec_close(fd); |
| 894 | 903 | ||
| 895 | meth = DH_OpenSSL(); | 904 | meth = DH_OpenSSL(); |
| @@ -905,7 +914,7 @@ err: | |||
| 905 | return ret; | 914 | return ret; |
| 906 | } | 915 | } |
| 907 | 916 | ||
| 908 | static int ubsec_dh_generate_key (DH *dh) | 917 | static int ubsec_dh_generate_key(DH *dh) |
| 909 | { | 918 | { |
| 910 | int ret = 0, | 919 | int ret = 0, |
| 911 | random_bits = 0, | 920 | random_bits = 0, |
| @@ -951,7 +960,7 @@ static int ubsec_dh_generate_key (DH *dh) | |||
| 951 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) | 960 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) |
| 952 | { | 961 | { |
| 953 | const DH_METHOD *meth; | 962 | const DH_METHOD *meth; |
| 954 | ENGINEerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 963 | UBSECerr(UBSEC_F_UBSEC_DH_GENERATE_KEY, UBSEC_R_UNIT_FAILURE); |
| 955 | meth = DH_OpenSSL(); | 964 | meth = DH_OpenSSL(); |
| 956 | ret = meth->generate_key(dh); | 965 | ret = meth->generate_key(dh); |
| 957 | goto err; | 966 | goto err; |
| @@ -967,7 +976,7 @@ static int ubsec_dh_generate_key (DH *dh) | |||
| 967 | /* Hardware's a no go, failover to software */ | 976 | /* Hardware's a no go, failover to software */ |
| 968 | const DH_METHOD *meth; | 977 | const DH_METHOD *meth; |
| 969 | 978 | ||
| 970 | ENGINEerr(UBSEC_F_UBSEC_DH_COMPUTE_KEY, UBSEC_R_REQUEST_FAILED); | 979 | UBSECerr(UBSEC_F_UBSEC_DH_GENERATE_KEY, UBSEC_R_REQUEST_FAILED); |
| 971 | p_UBSEC_ubsec_close(fd); | 980 | p_UBSEC_ubsec_close(fd); |
| 972 | 981 | ||
| 973 | meth = DH_OpenSSL(); | 982 | meth = DH_OpenSSL(); |
| @@ -999,7 +1008,7 @@ static int ubsec_rand_bytes(unsigned char * buf, | |||
| 999 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) | 1008 | if ((fd = p_UBSEC_ubsec_open(UBSEC_KEY_DEVICE_NAME)) <= 0) |
| 1000 | { | 1009 | { |
| 1001 | const RAND_METHOD *meth; | 1010 | const RAND_METHOD *meth; |
| 1002 | ENGINEerr(UBSEC_F_UBSEC_INIT, UBSEC_R_UNIT_FAILURE); | 1011 | UBSECerr(UBSEC_F_UBSEC_RAND_BYTES, UBSEC_R_UNIT_FAILURE); |
| 1003 | num = p_UBSEC_ubsec_bits_to_bytes(num); | 1012 | num = p_UBSEC_ubsec_bits_to_bytes(num); |
| 1004 | meth = RAND_SSLeay(); | 1013 | meth = RAND_SSLeay(); |
| 1005 | meth->seed(buf, num); | 1014 | meth->seed(buf, num); |
| @@ -1017,7 +1026,7 @@ static int ubsec_rand_bytes(unsigned char * buf, | |||
| 1017 | /* Hardware's a no go, failover to software */ | 1026 | /* Hardware's a no go, failover to software */ |
| 1018 | const RAND_METHOD *meth; | 1027 | const RAND_METHOD *meth; |
| 1019 | 1028 | ||
| 1020 | ENGINEerr(UBSEC_F_UBSEC_RNG_BYTES, UBSEC_R_REQUEST_FAILED); | 1029 | UBSECerr(UBSEC_F_UBSEC_RAND_BYTES, UBSEC_R_REQUEST_FAILED); |
| 1021 | p_UBSEC_ubsec_close(fd); | 1030 | p_UBSEC_ubsec_close(fd); |
| 1022 | 1031 | ||
| 1023 | num = p_UBSEC_ubsec_bits_to_bytes(num); | 1032 | num = p_UBSEC_ubsec_bits_to_bytes(num); |
| @@ -1044,7 +1053,7 @@ static int ubsec_rand_status(void) | |||
| 1044 | 1053 | ||
| 1045 | /* This stuff is needed if this ENGINE is being compiled into a self-contained | 1054 | /* This stuff is needed if this ENGINE is being compiled into a self-contained |
| 1046 | * shared-library. */ | 1055 | * shared-library. */ |
| 1047 | #ifdef ENGINE_DYNAMIC_SUPPORT | 1056 | #ifndef OPENSSL_NO_DYNAMIC_ENGINE |
| 1048 | static int bind_fn(ENGINE *e, const char *id) | 1057 | static int bind_fn(ENGINE *e, const char *id) |
| 1049 | { | 1058 | { |
| 1050 | if(id && (strcmp(id, engine_ubsec_id) != 0)) | 1059 | if(id && (strcmp(id, engine_ubsec_id) != 0)) |
| @@ -1055,7 +1064,7 @@ static int bind_fn(ENGINE *e, const char *id) | |||
| 1055 | } | 1064 | } |
| 1056 | IMPLEMENT_DYNAMIC_CHECK_FN() | 1065 | IMPLEMENT_DYNAMIC_CHECK_FN() |
| 1057 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) | 1066 | IMPLEMENT_DYNAMIC_BIND_FN(bind_fn) |
| 1058 | #endif /* ENGINE_DYNAMIC_SUPPORT */ | 1067 | #endif /* OPENSSL_NO_DYNAMIC_ENGINE */ |
| 1059 | 1068 | ||
| 1060 | #endif /* !OPENSSL_NO_HW_UBSEC */ | 1069 | #endif /* !OPENSSL_NO_HW_UBSEC */ |
| 1061 | #endif /* !OPENSSL_NO_HW */ | 1070 | #endif /* !OPENSSL_NO_HW */ |
diff --git a/src/lib/libssl/src/engines/e_ubsec.ec b/src/lib/libssl/src/engines/e_ubsec.ec new file mode 100644 index 0000000000..99b9233569 --- /dev/null +++ b/src/lib/libssl/src/engines/e_ubsec.ec | |||
| @@ -0,0 +1 @@ | |||
| L UBSEC e_ubsec_err.h e_ubsec_err.c | |||
diff --git a/src/lib/libssl/src/crypto/engine/hw_ubsec_err.c b/src/lib/libssl/src/engines/e_ubsec_err.c index d707331fc2..14c3d61e24 100644 --- a/src/lib/libssl/src/crypto/engine/hw_ubsec_err.c +++ b/src/lib/libssl/src/engines/e_ubsec_err.c | |||
| @@ -1,6 +1,6 @@ | |||
| 1 | /* hw_ubsec_err.c */ | 1 | /* e_ubsec_err.c */ |
| 2 | /* ==================================================================== | 2 | /* ==================================================================== |
| 3 | * Copyright (c) 1999 The OpenSSL Project. All rights reserved. | 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. |
| 4 | * | 4 | * |
| 5 | * Redistribution and use in source and binary forms, with or without | 5 | * Redistribution and use in source and binary forms, with or without |
| 6 | * modification, are permitted provided that the following conditions | 6 | * modification, are permitted provided that the following conditions |
| @@ -60,36 +60,42 @@ | |||
| 60 | 60 | ||
| 61 | #include <stdio.h> | 61 | #include <stdio.h> |
| 62 | #include <openssl/err.h> | 62 | #include <openssl/err.h> |
| 63 | #include "hw_ubsec_err.h" | 63 | #include "e_ubsec_err.h" |
| 64 | 64 | ||
| 65 | /* BEGIN ERROR CODES */ | 65 | /* BEGIN ERROR CODES */ |
| 66 | #ifndef OPENSSL_NO_ERR | 66 | #ifndef OPENSSL_NO_ERR |
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(0,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(0,0,reason) | ||
| 70 | |||
| 67 | static ERR_STRING_DATA UBSEC_str_functs[]= | 71 | static ERR_STRING_DATA UBSEC_str_functs[]= |
| 68 | { | 72 | { |
| 69 | {ERR_PACK(0,UBSEC_F_UBSEC_CTRL,0), "UBSEC_CTRL"}, | 73 | {ERR_FUNC(UBSEC_F_UBSEC_CTRL), "UBSEC_CTRL"}, |
| 70 | {ERR_PACK(0,UBSEC_F_UBSEC_DH_COMPUTE_KEY,0), "UBSEC_DH_COMPUTE_KEY"}, | 74 | {ERR_FUNC(UBSEC_F_UBSEC_DH_COMPUTE_KEY), "UBSEC_DH_COMPUTE_KEY"}, |
| 71 | {ERR_PACK(0,UBSEC_F_UBSEC_DSA_SIGN,0), "UBSEC_DSA_SIGN"}, | 75 | {ERR_FUNC(UBSEC_F_UBSEC_DH_GENERATE_KEY), "UBSEC_DH_GENERATE_KEY"}, |
| 72 | {ERR_PACK(0,UBSEC_F_UBSEC_DSA_VERIFY,0), "UBSEC_DSA_VERIFY"}, | 76 | {ERR_FUNC(UBSEC_F_UBSEC_DSA_DO_SIGN), "UBSEC_DSA_DO_SIGN"}, |
| 73 | {ERR_PACK(0,UBSEC_F_UBSEC_FINISH,0), "UBSEC_FINISH"}, | 77 | {ERR_FUNC(UBSEC_F_UBSEC_DSA_VERIFY), "UBSEC_DSA_VERIFY"}, |
| 74 | {ERR_PACK(0,UBSEC_F_UBSEC_INIT,0), "UBSEC_INIT"}, | 78 | {ERR_FUNC(UBSEC_F_UBSEC_FINISH), "UBSEC_FINISH"}, |
| 75 | {ERR_PACK(0,UBSEC_F_UBSEC_MOD_EXP,0), "UBSEC_MOD_EXP"}, | 79 | {ERR_FUNC(UBSEC_F_UBSEC_INIT), "UBSEC_INIT"}, |
| 76 | {ERR_PACK(0,UBSEC_F_UBSEC_RNG_BYTES,0), "UBSEC_RNG_BYTES"}, | 80 | {ERR_FUNC(UBSEC_F_UBSEC_MOD_EXP), "UBSEC_MOD_EXP"}, |
| 77 | {ERR_PACK(0,UBSEC_F_UBSEC_RSA_MOD_EXP,0), "UBSEC_RSA_MOD_EXP"}, | 81 | {ERR_FUNC(UBSEC_F_UBSEC_MOD_EXP_CRT), "UBSEC_MOD_EXP_CRT"}, |
| 78 | {ERR_PACK(0,UBSEC_F_UBSEC_RSA_MOD_EXP_CRT,0), "UBSEC_RSA_MOD_EXP_CRT"}, | 82 | {ERR_FUNC(UBSEC_F_UBSEC_RAND_BYTES), "UBSEC_RAND_BYTES"}, |
| 83 | {ERR_FUNC(UBSEC_F_UBSEC_RSA_MOD_EXP), "UBSEC_RSA_MOD_EXP"}, | ||
| 84 | {ERR_FUNC(UBSEC_F_UBSEC_RSA_MOD_EXP_CRT), "UBSEC_RSA_MOD_EXP_CRT"}, | ||
| 79 | {0,NULL} | 85 | {0,NULL} |
| 80 | }; | 86 | }; |
| 81 | 87 | ||
| 82 | static ERR_STRING_DATA UBSEC_str_reasons[]= | 88 | static ERR_STRING_DATA UBSEC_str_reasons[]= |
| 83 | { | 89 | { |
| 84 | {UBSEC_R_ALREADY_LOADED ,"already loaded"}, | 90 | {ERR_REASON(UBSEC_R_ALREADY_LOADED) ,"already loaded"}, |
| 85 | {UBSEC_R_BN_EXPAND_FAIL ,"bn expand fail"}, | 91 | {ERR_REASON(UBSEC_R_BN_EXPAND_FAIL) ,"bn expand fail"}, |
| 86 | {UBSEC_R_CTRL_COMMAND_NOT_IMPLEMENTED ,"ctrl command not implemented"}, | 92 | {ERR_REASON(UBSEC_R_CTRL_COMMAND_NOT_IMPLEMENTED),"ctrl command not implemented"}, |
| 87 | {UBSEC_R_DSO_FAILURE ,"dso failure"}, | 93 | {ERR_REASON(UBSEC_R_DSO_FAILURE) ,"dso failure"}, |
| 88 | {UBSEC_R_MISSING_KEY_COMPONENTS ,"missing key components"}, | 94 | {ERR_REASON(UBSEC_R_MISSING_KEY_COMPONENTS),"missing key components"}, |
| 89 | {UBSEC_R_NOT_LOADED ,"not loaded"}, | 95 | {ERR_REASON(UBSEC_R_NOT_LOADED) ,"not loaded"}, |
| 90 | {UBSEC_R_REQUEST_FAILED ,"request failed"}, | 96 | {ERR_REASON(UBSEC_R_REQUEST_FAILED) ,"request failed"}, |
| 91 | {UBSEC_R_SIZE_TOO_LARGE_OR_TOO_SMALL ,"size too large or too small"}, | 97 | {ERR_REASON(UBSEC_R_SIZE_TOO_LARGE_OR_TOO_SMALL),"size too large or too small"}, |
| 92 | {UBSEC_R_UNIT_FAILURE ,"unit failure"}, | 98 | {ERR_REASON(UBSEC_R_UNIT_FAILURE) ,"unit failure"}, |
| 93 | {0,NULL} | 99 | {0,NULL} |
| 94 | }; | 100 | }; |
| 95 | 101 | ||
diff --git a/src/lib/libssl/src/crypto/engine/hw_ubsec_err.h b/src/lib/libssl/src/engines/e_ubsec_err.h index 023d3be771..b10b2387f2 100644 --- a/src/lib/libssl/src/crypto/engine/hw_ubsec_err.h +++ b/src/lib/libssl/src/engines/e_ubsec_err.h | |||
| @@ -55,6 +55,10 @@ | |||
| 55 | #ifndef HEADER_UBSEC_ERR_H | 55 | #ifndef HEADER_UBSEC_ERR_H |
| 56 | #define HEADER_UBSEC_ERR_H | 56 | #define HEADER_UBSEC_ERR_H |
| 57 | 57 | ||
| 58 | #ifdef __cplusplus | ||
| 59 | extern "C" { | ||
| 60 | #endif | ||
| 61 | |||
| 58 | /* BEGIN ERROR CODES */ | 62 | /* BEGIN ERROR CODES */ |
| 59 | /* The following lines are auto generated by the script mkerr.pl. Any changes | 63 | /* The following lines are auto generated by the script mkerr.pl. Any changes |
| 60 | * made after this point may be overwritten when the script is next run. | 64 | * made after this point may be overwritten when the script is next run. |
| @@ -69,12 +73,14 @@ static void ERR_UBSEC_error(int function, int reason, char *file, int line); | |||
| 69 | /* Function codes. */ | 73 | /* Function codes. */ |
| 70 | #define UBSEC_F_UBSEC_CTRL 100 | 74 | #define UBSEC_F_UBSEC_CTRL 100 |
| 71 | #define UBSEC_F_UBSEC_DH_COMPUTE_KEY 101 | 75 | #define UBSEC_F_UBSEC_DH_COMPUTE_KEY 101 |
| 72 | #define UBSEC_F_UBSEC_DSA_SIGN 102 | 76 | #define UBSEC_F_UBSEC_DH_GENERATE_KEY 111 |
| 77 | #define UBSEC_F_UBSEC_DSA_DO_SIGN 102 | ||
| 73 | #define UBSEC_F_UBSEC_DSA_VERIFY 103 | 78 | #define UBSEC_F_UBSEC_DSA_VERIFY 103 |
| 74 | #define UBSEC_F_UBSEC_FINISH 104 | 79 | #define UBSEC_F_UBSEC_FINISH 104 |
| 75 | #define UBSEC_F_UBSEC_INIT 105 | 80 | #define UBSEC_F_UBSEC_INIT 105 |
| 76 | #define UBSEC_F_UBSEC_MOD_EXP 106 | 81 | #define UBSEC_F_UBSEC_MOD_EXP 106 |
| 77 | #define UBSEC_F_UBSEC_RNG_BYTES 107 | 82 | #define UBSEC_F_UBSEC_MOD_EXP_CRT 110 |
| 83 | #define UBSEC_F_UBSEC_RAND_BYTES 107 | ||
| 78 | #define UBSEC_F_UBSEC_RSA_MOD_EXP 108 | 84 | #define UBSEC_F_UBSEC_RSA_MOD_EXP 108 |
| 79 | #define UBSEC_F_UBSEC_RSA_MOD_EXP_CRT 109 | 85 | #define UBSEC_F_UBSEC_RSA_MOD_EXP_CRT 109 |
| 80 | 86 | ||
diff --git a/src/lib/libssl/src/engines/engine_vector.mar b/src/lib/libssl/src/engines/engine_vector.mar new file mode 100644 index 0000000000..7d968e7b40 --- /dev/null +++ b/src/lib/libssl/src/engines/engine_vector.mar | |||
| @@ -0,0 +1,24 @@ | |||
| 1 | ; | ||
| 2 | ; Transfer vector for VAX shareable image | ||
| 3 | ; | ||
| 4 | .TITLE ENGINE | ||
| 5 | .IDENT /ENGINE/ | ||
| 6 | ; | ||
| 7 | ; Define macro to assist in building transfer vector entries. Each entry | ||
| 8 | ; should take no more than 8 bytes. | ||
| 9 | ; | ||
| 10 | .MACRO FTRANSFER_ENTRY routine | ||
| 11 | .ALIGN QUAD | ||
| 12 | .TRANSFER routine | ||
| 13 | .MASK routine | ||
| 14 | JMP routine+2 | ||
| 15 | .ENDM FTRANSFER_ENTRY | ||
| 16 | ; | ||
| 17 | ; Place entries in own program section. | ||
| 18 | ; | ||
| 19 | .PSECT $$ENGINE,QUAD,PIC,USR,CON,REL,LCL,SHR,EXE,RD,NOWRT | ||
| 20 | ENGINE_xfer: | ||
| 21 | FTRANSFER_ENTRY bind_engine | ||
| 22 | FTRANSFER_ENTRY v_check | ||
| 23 | .BLKB 32768-<.-ENGINE_xfer> ; 64 pages total. | ||
| 24 | .END | ||
diff --git a/src/lib/libssl/src/engines/vax.opt b/src/lib/libssl/src/engines/vax.opt new file mode 100644 index 0000000000..72e6bd895f --- /dev/null +++ b/src/lib/libssl/src/engines/vax.opt | |||
| @@ -0,0 +1,9 @@ | |||
| 1 | ! | ||
| 2 | ! Ensure transfer vector is at beginning of image | ||
| 3 | ! | ||
| 4 | CLUSTER=FIRST | ||
| 5 | COLLECT=FIRST,$$ENGINE | ||
| 6 | ! | ||
| 7 | ! make psects nonshareable so image can be installed. | ||
| 8 | ! | ||
| 9 | PSECT_ATTR=$CHAR_STRING_CONSTANTS,NOWRT | ||
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/aep.h b/src/lib/libssl/src/engines/vendor_defns/aep.h index 2b2792d2d6..5e9754fe43 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/aep.h +++ b/src/lib/libssl/src/engines/vendor_defns/aep.h | |||
| @@ -171,8 +171,8 @@ typedef AEP_RV t_AEP_GenRandom(AEP_CONNECTION_HNDL hConnection, | |||
| 171 | #endif | 171 | #endif |
| 172 | 172 | ||
| 173 | typedef AEP_RV t_AEP_Initialize(AEP_VOID_PTR pInitArgs); | 173 | typedef AEP_RV t_AEP_Initialize(AEP_VOID_PTR pInitArgs); |
| 174 | typedef AEP_RV t_AEP_Finalize(); | 174 | typedef AEP_RV t_AEP_Finalize(void); |
| 175 | typedef AEP_RV t_AEP_SetBNCallBacks(AEP_RV (*GetBigNumSizeFunc)(), | 175 | typedef AEP_RV t_AEP_SetBNCallBacks(AEP_RV (*GetBigNumSizeFunc)(AEP_VOID_PTR ArbBigNum, AEP_U32* BigNumSize), |
| 176 | AEP_RV (*MakeAEPBigNumFunc)(), | 176 | AEP_RV (*MakeAEPBigNumFunc)(AEP_VOID_PTR ArbBigNum, AEP_U32 BigNumSize, unsigned char* AEP_BigNum), |
| 177 | AEP_RV (*ConverAEPBigNumFunc)()); | 177 | AEP_RV (*ConverAEPBigNumFunc)(void* ArbBigNum, AEP_U32 BigNumSize, unsigned char* AEP_BigNum)); |
| 178 | 178 | ||
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/atalla.h b/src/lib/libssl/src/engines/vendor_defns/atalla.h index 149970d441..149970d441 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/atalla.h +++ b/src/lib/libssl/src/engines/vendor_defns/atalla.h | |||
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/cswift.h b/src/lib/libssl/src/engines/vendor_defns/cswift.h index 60079326bb..60079326bb 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/cswift.h +++ b/src/lib/libssl/src/engines/vendor_defns/cswift.h | |||
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/hw_4758_cca.h b/src/lib/libssl/src/engines/vendor_defns/hw_4758_cca.h index 296636e81a..296636e81a 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/hw_4758_cca.h +++ b/src/lib/libssl/src/engines/vendor_defns/hw_4758_cca.h | |||
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/hw_ubsec.h b/src/lib/libssl/src/engines/vendor_defns/hw_ubsec.h index b6619d40f2..b6619d40f2 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/hw_ubsec.h +++ b/src/lib/libssl/src/engines/vendor_defns/hw_ubsec.h | |||
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/hwcryptohook.h b/src/lib/libssl/src/engines/vendor_defns/hwcryptohook.h index aaa4d4575e..3c32feda62 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/hwcryptohook.h +++ b/src/lib/libssl/src/engines/vendor_defns/hwcryptohook.h | |||
| @@ -65,7 +65,7 @@ | |||
| 65 | * please contact nCipher. | 65 | * please contact nCipher. |
| 66 | * | 66 | * |
| 67 | * | 67 | * |
| 68 | * $Id: hwcryptohook.h,v 1.1.1.1 2003/05/11 21:35:16 markus Exp $ | 68 | * $Id: hwcryptohook.h,v 1.1.1.1 2008/09/06 12:15:50 djm Exp $ |
| 69 | */ | 69 | */ |
| 70 | 70 | ||
| 71 | #ifndef HWCRYPTOHOOK_H | 71 | #ifndef HWCRYPTOHOOK_H |
diff --git a/src/lib/libssl/src/crypto/engine/vendor_defns/sureware.h b/src/lib/libssl/src/engines/vendor_defns/sureware.h index 4bc22027f9..e46b000ddc 100644 --- a/src/lib/libssl/src/crypto/engine/vendor_defns/sureware.h +++ b/src/lib/libssl/src/engines/vendor_defns/sureware.h | |||
| @@ -47,7 +47,7 @@ extern SW_EXPORT SureWareHook_Init_t SureWareHook_Init; | |||
| 47 | /* | 47 | /* |
| 48 | * SureWare Finish function | 48 | * SureWare Finish function |
| 49 | */ | 49 | */ |
| 50 | typedef void SureWareHook_Finish_t(); | 50 | typedef void SureWareHook_Finish_t(void); |
| 51 | extern SW_EXPORT SureWareHook_Finish_t SureWareHook_Finish; | 51 | extern SW_EXPORT SureWareHook_Finish_t SureWareHook_Finish; |
| 52 | /* | 52 | /* |
| 53 | * PRE_CONDITION: | 53 | * PRE_CONDITION: |
diff --git a/src/lib/libssl/src/fips-1.0/Makefile b/src/lib/libssl/src/fips-1.0/Makefile deleted file mode 100644 index 891a40b36a..0000000000 --- a/src/lib/libssl/src/fips-1.0/Makefile +++ /dev/null | |||
| @@ -1,242 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= fips-1.0 | ||
| 6 | TOP= .. | ||
| 7 | CC= cc | ||
| 8 | INCLUDE= -I. -I$(TOP) -I../include | ||
| 9 | INCLUDES= -I.. -I../.. -I../../include | ||
| 10 | CFLAG= -g | ||
| 11 | INSTALL_PREFIX= | ||
| 12 | OPENSSLDIR= /usr/local/ssl | ||
| 13 | INSTALLTOP= /usr/local/ssl | ||
| 14 | MAKEFILE= Makefile | ||
| 15 | MAKEDEPPROG= makedepend | ||
| 16 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 17 | PERL= perl | ||
| 18 | RM= rm -f | ||
| 19 | AR= ar r | ||
| 20 | |||
| 21 | PEX_LIBS= | ||
| 22 | EX_LIBS= | ||
| 23 | |||
| 24 | CFLAGS= $(INCLUDE) $(CFLAG) -DHMAC_EXT=\"$${HMAC_EXT:-sha1}\" | ||
| 25 | |||
| 26 | |||
| 27 | LIBS= | ||
| 28 | |||
| 29 | FDIRS=sha rand des aes dsa rsa dh hmac | ||
| 30 | |||
| 31 | GENERAL=Makefile README fips-lib.com install.com | ||
| 32 | |||
| 33 | LIB= $(TOP)/libcrypto.a | ||
| 34 | SHARED_LIB= libcrypto$(SHLIB_EXT) | ||
| 35 | LIBSRC=fips.c fips_err_wrapper.c fipshashes.c | ||
| 36 | LIBOBJ=fips.o fips_err_wrapper.o fipshashes.o | ||
| 37 | |||
| 38 | FIPS_OBJ_LISTS=sha/lib hmac/lib rand/lib des/lib aes/lib dsa/lib rsa/lib dh/lib | ||
| 39 | |||
| 40 | SRC= $(LIBSRC) | ||
| 41 | |||
| 42 | EXHEADER=fips.h | ||
| 43 | HEADER=$(EXHEADER) fips_err.h | ||
| 44 | EXE=fipsld | ||
| 45 | TEST=fips_test_suite.c | ||
| 46 | |||
| 47 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 48 | |||
| 49 | top: | ||
| 50 | @(cd ..; $(MAKE) DIRS=$(DIR) all) | ||
| 51 | |||
| 52 | all: | ||
| 53 | @if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \ | ||
| 54 | $(MAKE) -e subdirs check lib shared; \ | ||
| 55 | fi | ||
| 56 | |||
| 57 | check: | ||
| 58 | # $(PERL) ../util/checkhash.pl || (rm fipscanister.o* 2>/dev/null; exit 1) | ||
| 59 | echo FIPS module not built: no check done | ||
| 60 | |||
| 61 | # Idea behind fipscanister.o is to "seize" the sequestered code between | ||
| 62 | # known symbols for fingerprinting purposes, which would be commonly | ||
| 63 | # done with ld -r start.o ... end.o. The latter however presents a minor | ||
| 64 | # challenge on multi-ABI platforms. As just implied, we'd rather use ld, | ||
| 65 | # but the trouble is that we don't generally know how ABI-selection | ||
| 66 | # compiler flag is translated to corresponding linker flag. All compiler | ||
| 67 | # drivers seem to recognize -r flag and pass it down to linker, but some | ||
| 68 | # of them, including gcc, erroneously add -lc, as well as run-time | ||
| 69 | # components, such as crt1.o and alike. Fortunately among those vendor | ||
| 70 | # compilers which were observed to misinterpret -r flag multi-ABI ones | ||
| 71 | # are equipped with smart linkers, which don't require any ABI-selection | ||
| 72 | # flag and simply assume that all objects are of the same type as first | ||
| 73 | # one in command line. So the idea is to identify gcc and deficient | ||
| 74 | # vendor compiler drivers... | ||
| 75 | |||
| 76 | fipscanister.o: fips_start.o $(LIBOBJ) $(FIPS_OBJ_LISTS) fips_end.o | ||
| 77 | @objs="fips_start.o $(LIBOBJ)"; \ | ||
| 78 | for i in $(FIPS_OBJ_LISTS); do \ | ||
| 79 | dir=`dirname $$i`; script="s|^|$$dir/|;s| | $$dir/|g"; \ | ||
| 80 | objs="$$objs `sed "$$script" $$i`"; \ | ||
| 81 | done; \ | ||
| 82 | objs="$$objs fips_end.o" ; \ | ||
| 83 | if [ -n "${FIPS_SITE_LD}" ]; then \ | ||
| 84 | set -x; ${FIPS_SITE_LD} -r -o $@ $$objs; \ | ||
| 85 | elif $(CC) -dumpversion >/dev/null 2>&1; then \ | ||
| 86 | set -x; $(CC) $(CFLAGS) -r -nostdlib -o $@ $$objs ; \ | ||
| 87 | else case "`(uname -s) 2>/dev/null`" in \ | ||
| 88 | HP-UX|OSF1|SunOS) set -x; /usr/ccs/bin/ld -r -o $@ $$objs ;; \ | ||
| 89 | *) set -x; $(CC) $(CFLAGS) -r -o $@ $$objs ;; \ | ||
| 90 | esac fi | ||
| 91 | sha/fips_standalone_sha1 fipscanister.o > fipscanister.o.sha1 | ||
| 92 | |||
| 93 | # If another exception is immediately required, assign approprite | ||
| 94 | # site-specific ld command to FIPS_SITE_LD environment variable. | ||
| 95 | |||
| 96 | fips_start.o: fips_canister.c | ||
| 97 | $(CC) $(CFLAGS) -DFIPS_START -c -o $@ fips_canister.c | ||
| 98 | fips_end.o: fips_canister.c | ||
| 99 | $(CC) $(CFLAGS) -DFIPS_END -c -o $@ fips_canister.c | ||
| 100 | fips_premain_dso$(EXE_EXT): fips_premain.c | ||
| 101 | $(CC) $(CFLAGS) -DFINGERPRINT_PREMAIN_DSO_LOAD -o $@ fips_premain.c \ | ||
| 102 | ../libcrypto.a $(EX_LIBS) | ||
| 103 | |||
| 104 | subdirs: | ||
| 105 | @for i in $(FDIRS) ;\ | ||
| 106 | do \ | ||
| 107 | (cd $$i && echo "making all in fips/$$i..." && \ | ||
| 108 | $(MAKE) CC='$(CC)' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' BN_ASM='${BN_ASM}' DES_ENC='${DES_ENC}' FIPS_DES_ENC='${FIPS_DES_ENC}' SHA1_ASM_OBJ='${SHA1_ASM_OBJ}' FIPS_SHA1_ASM_OBJ='${FIPS_SHA1_ASM_OBJ}' MD5_ASM_OBJ='${MD5_ASM_OBJ}' RMD160_ASM_OBJ='${RMD160_ASM_OBJ}' BF_ENC='${BF_ENC}' CAST_ENC='${CAST_ENC}' RC4_ENC='${RC4_ENC}' RC5_ENC='${RC5_ENC}' AR='${AR}' PROCESSOR='${PROCESSOR}' PERL='${PERL}' RANLIB='${RANLIB}' all ) || exit 1; \ | ||
| 109 | done; | ||
| 110 | |||
| 111 | sub_target: | ||
| 112 | @for i in $(FDIRS) ;\ | ||
| 113 | do \ | ||
| 114 | (cd $$i && echo "making $(TARGET) in fips/$$i..." && \ | ||
| 115 | $(MAKE) CC='$(CC)' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' BN_ASM='${BN_ASM}' DES_ENC='${DES_ENC}' FIPS_DES_ENC='${FIPS_DES_ENC}' SHA1_ASM_OBJ='${SHA1_ASM_OBJ}' FIPS_SHA1_ASM_OBJ='${FIPS_SHA1_ASM_OBJ}' MD5_ASM_OBJ='${MD5_ASM_OBJ}' RMD160_ASM_OBJ='${RMD160_ASM_OBJ}' BF_ENC='${BF_ENC}' CAST_ENC='${CAST_ENC}' RC4_ENC='${RC4_ENC}' RC5_ENC='${RC5_ENC}' AR='${AR}' PROCESSOR='${PROCESSOR}' PERL='${PERL}' RANLIB='${RANLIB}' $(TARGET) ) || exit 1; \ | ||
| 116 | done; | ||
| 117 | |||
| 118 | files: | ||
| 119 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 120 | @for i in $(FDIRS) ;\ | ||
| 121 | do \ | ||
| 122 | (cd $$i && echo "making 'files' in fips/$$i..." && \ | ||
| 123 | $(MAKE) PERL='${PERL}' files ); \ | ||
| 124 | done; | ||
| 125 | |||
| 126 | links: | ||
| 127 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 128 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 129 | @for i in $(FDIRS); do \ | ||
| 130 | (cd $$i && echo "making links in fips/$$i..." && \ | ||
| 131 | $(MAKE) CC='$(CC)' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' BN_ASM='${BN_ASM}' DES_ENC='${DES_ENC}' FIPS_DES_ENC='${FIPS_DES_ENC}' SHA1_ASM_OBJ='${SHA1_ASM_OBJ}' FIPS_SHA1_ASM_OBJ='${FIPS_SHA1_ASM_OBJ}' MD5_ASM_OBJ='${MD5_ASM_OBJ}' RMD160_ASM_OBJ='${RMD160_ASM_OBJ}' BF_ENC='${BF_ENC}' CAST_ENC='${CAST_ENC}' RC4_ENC='${RC4_ENC}' RC5_ENC='${RC5_ENC}' AR='${AR}' PERL='${PERL}' links ); \ | ||
| 132 | done; | ||
| 133 | |||
| 134 | lib: $(FIPSLIBDIR)/fipscanister.o | ||
| 135 | $(AR) $(LIB) $(FIPSLIBDIR)/fipscanister.o | ||
| 136 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 137 | @touch lib | ||
| 138 | |||
| 139 | shared: fips_premain_dso$(EXE_EXT) | ||
| 140 | if [ -n "$(SHARED_LIBS)" ]; then \ | ||
| 141 | (cd ..; $(MAKE) FIPSLD_CC=$(CC) FIPSLD=fips-1.0/fipsld $(SHARED_LIB)); \ | ||
| 142 | fi | ||
| 143 | |||
| 144 | libs: | ||
| 145 | @for i in $(FDIRS) ;\ | ||
| 146 | do \ | ||
| 147 | (cd $$i && echo "making libs in fips/$$i..." && \ | ||
| 148 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALL_PREFIX='${INSTALL_PREFIX}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' AR='${AR}' lib ); \ | ||
| 149 | done; | ||
| 150 | |||
| 151 | tests: | ||
| 152 | (cd ..; make DIRS=test) | ||
| 153 | |||
| 154 | fips_test: top tests | ||
| 155 | -cd testvectors && perl -p -i -e 's/COUNT=/COUNT = /' des[23]/req/*.req | ||
| 156 | @for i in dsa sha aes des hmac rand rsa; \ | ||
| 157 | do \ | ||
| 158 | (cd $$i && echo "making fips_test in fips/$$i..." && $(MAKE) fips_test) \ | ||
| 159 | done; | ||
| 160 | |||
| 161 | install: | ||
| 162 | @headerlist="$(EXHEADER)"; for i in $$headerlist ;\ | ||
| 163 | do \ | ||
| 164 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 165 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 166 | done; | ||
| 167 | @for i in $(FDIRS) ;\ | ||
| 168 | do \ | ||
| 169 | (cd $$i && echo "making install in fips/$$i..." && \ | ||
| 170 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALL_PREFIX='${INSTALL_PREFIX}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' install ); \ | ||
| 171 | done; | ||
| 172 | @for i in $(EXE) ; \ | ||
| 173 | do \ | ||
| 174 | echo "installing $$i"; \ | ||
| 175 | cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i.new; \ | ||
| 176 | chmod 755 $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i.new; \ | ||
| 177 | mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i.new $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i; \ | ||
| 178 | done | ||
| 179 | @cp -p -f fipscanister.o fipscanister.o.sha1 fips_premain.c \ | ||
| 180 | $(INSTALL_PREFIX)$(INSTALLTOP)/lib/; \ | ||
| 181 | strings fipscanister.o | grep "HMAC-SHA1(fips_premain\\.c)" > \ | ||
| 182 | $(INSTALL_PREFIX)$(INSTALLTOP)/lib/fips_premain.c.sha1; \ | ||
| 183 | chmod 0444 $(INSTALL_PREFIX)$(INSTALLTOP)/lib/fips* | ||
| 184 | |||
| 185 | lint: | ||
| 186 | @for i in $(FDIRS) ;\ | ||
| 187 | do \ | ||
| 188 | (cd $$i && echo "making lint in fips/$$i..." && \ | ||
| 189 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' lint ); \ | ||
| 190 | done; | ||
| 191 | |||
| 192 | depend: | ||
| 193 | if [ ! -f buildinf.h ]; then touch buildinf.h; fi # fake buildinf.h if it does not exist | ||
| 194 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDE) $(DEPFLAG) -- $(SRC) | ||
| 195 | if [ ! -s buildinf.h ]; then rm buildinf.h; fi | ||
| 196 | @for i in $(FDIRS) ;\ | ||
| 197 | do \ | ||
| 198 | (cd $$i && echo "making depend in fips/$$i..." && \ | ||
| 199 | $(MAKE) MAKEFILE='${MAKEFILE}' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' DEPFLAG='${DEPFLAG}' MAKEDEPPROG='${MAKEDEPPROG}' KRB5_INCLUDES='${KRB5_INCLUDES}' PERL='${PERL}' depend ); \ | ||
| 200 | done; | ||
| 201 | |||
| 202 | clean: | ||
| 203 | rm -f buildinf.h *.o *.obj fips_premain_dso$(EXE_EXT) lib tags core .pure .nfs* *.old *.bak fluff | ||
| 204 | @for i in $(FDIRS) ;\ | ||
| 205 | do \ | ||
| 206 | (cd $$i && echo "making clean in fips/$$i..." && \ | ||
| 207 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' clean ); \ | ||
| 208 | done; | ||
| 209 | |||
| 210 | dclean: | ||
| 211 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 212 | mv -f Makefile.new $(MAKEFILE) | ||
| 213 | @for i in $(FDIRS) ;\ | ||
| 214 | do \ | ||
| 215 | (cd $$i && echo "making dclean in fips/$$i..." && \ | ||
| 216 | $(MAKE) PERL='${PERL}' CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' dclean ); \ | ||
| 217 | done; | ||
| 218 | |||
| 219 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 220 | |||
| 221 | fips.o: ../include/openssl/aes.h ../include/openssl/asn1.h | ||
| 222 | fips.o: ../include/openssl/bio.h ../include/openssl/blowfish.h | ||
| 223 | fips.o: ../include/openssl/bn.h ../include/openssl/cast.h | ||
| 224 | fips.o: ../include/openssl/crypto.h ../include/openssl/des.h | ||
| 225 | fips.o: ../include/openssl/des_old.h ../include/openssl/dh.h | ||
| 226 | fips.o: ../include/openssl/dsa.h ../include/openssl/e_os2.h | ||
| 227 | fips.o: ../include/openssl/err.h ../include/openssl/evp.h | ||
| 228 | fips.o: ../include/openssl/fips.h ../include/openssl/fips_rand.h | ||
| 229 | fips.o: ../include/openssl/hmac.h ../include/openssl/idea.h | ||
| 230 | fips.o: ../include/openssl/lhash.h ../include/openssl/md2.h | ||
| 231 | fips.o: ../include/openssl/md4.h ../include/openssl/md5.h | ||
| 232 | fips.o: ../include/openssl/mdc2.h ../include/openssl/obj_mac.h | ||
| 233 | fips.o: ../include/openssl/objects.h ../include/openssl/opensslconf.h | ||
| 234 | fips.o: ../include/openssl/opensslv.h ../include/openssl/ossl_typ.h | ||
| 235 | fips.o: ../include/openssl/rand.h ../include/openssl/rc2.h | ||
| 236 | fips.o: ../include/openssl/rc4.h ../include/openssl/rc5.h | ||
| 237 | fips.o: ../include/openssl/ripemd.h ../include/openssl/rsa.h | ||
| 238 | fips.o: ../include/openssl/safestack.h ../include/openssl/sha.h | ||
| 239 | fips.o: ../include/openssl/stack.h ../include/openssl/symhacks.h | ||
| 240 | fips.o: ../include/openssl/ui.h ../include/openssl/ui_compat.h fips.c | ||
| 241 | fips.o: fips_locl.h | ||
| 242 | fips_err_wrapper.o: ../include/openssl/opensslconf.h fips_err_wrapper.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/aes/Makefile b/src/lib/libssl/src/fips-1.0/aes/Makefile deleted file mode 100644 index d2a72b3988..0000000000 --- a/src/lib/libssl/src/fips-1.0/aes/Makefile +++ /dev/null | |||
| @@ -1,121 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/aes/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= aes | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | FIPS_AES_ENC=fips_aes_core.o | ||
| 19 | |||
| 20 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 21 | |||
| 22 | GENERAL=Makefile | ||
| 23 | TEST=fips_aesavs.c | ||
| 24 | TESTDATA=fips_aes_data | ||
| 25 | APPS= | ||
| 26 | |||
| 27 | LIB=$(TOP)/libcrypto.a | ||
| 28 | LIBSRC=fips_aes_core.c asm/fips-ax86-elf.s fips_aes_selftest.c | ||
| 29 | LIBOBJ=$(FIPS_AES_ENC) fips_aes_selftest.o | ||
| 30 | |||
| 31 | SRC= $(LIBSRC) | ||
| 32 | |||
| 33 | EXHEADER= | ||
| 34 | HEADER= $(EXHEADER) fips_aes_locl.h | ||
| 35 | |||
| 36 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 37 | |||
| 38 | top: | ||
| 39 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 40 | |||
| 41 | all: lib | ||
| 42 | |||
| 43 | lib: $(LIBOBJ) | ||
| 44 | @echo $(LIBOBJ) > lib | ||
| 45 | |||
| 46 | files: | ||
| 47 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 48 | |||
| 49 | links: | ||
| 50 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 51 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 52 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TESTDATA) | ||
| 53 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 54 | |||
| 55 | install: | ||
| 56 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 57 | do \ | ||
| 58 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 59 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 60 | done | ||
| 61 | |||
| 62 | tags: | ||
| 63 | ctags $(SRC) | ||
| 64 | |||
| 65 | tests: | ||
| 66 | |||
| 67 | fips_test: | ||
| 68 | -find ../testvectors/aes/req -name '*.req' > testlist | ||
| 69 | -rm -rf ../testvectors/aes/rsp | ||
| 70 | mkdir ../testvectors/aes/rsp | ||
| 71 | if [ -s testlist ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_aesavs -d testlist; fi | ||
| 72 | |||
| 73 | lint: | ||
| 74 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 75 | |||
| 76 | depend: | ||
| 77 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) \ | ||
| 78 | $(SRC) $(TEST) | ||
| 79 | |||
| 80 | dclean: | ||
| 81 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 82 | mv -f Makefile.new $(MAKEFILE) | ||
| 83 | |||
| 84 | clean: | ||
| 85 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 86 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 87 | |||
| 88 | fips_aes_core.o: ../../include/openssl/aes.h ../../include/openssl/e_os2.h | ||
| 89 | fips_aes_core.o: ../../include/openssl/fips.h | ||
| 90 | fips_aes_core.o: ../../include/openssl/opensslconf.h fips_aes_core.c | ||
| 91 | fips_aes_core.o: fips_aes_locl.h | ||
| 92 | fips_aes_selftest.o: ../../include/openssl/aes.h ../../include/openssl/bio.h | ||
| 93 | fips_aes_selftest.o: ../../include/openssl/crypto.h | ||
| 94 | fips_aes_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 95 | fips_aes_selftest.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 96 | fips_aes_selftest.o: ../../include/openssl/opensslconf.h | ||
| 97 | fips_aes_selftest.o: ../../include/openssl/opensslv.h | ||
| 98 | fips_aes_selftest.o: ../../include/openssl/safestack.h | ||
| 99 | fips_aes_selftest.o: ../../include/openssl/stack.h | ||
| 100 | fips_aes_selftest.o: ../../include/openssl/symhacks.h fips_aes_selftest.c | ||
| 101 | fips_aesavs.o: ../../e_os.h ../../include/openssl/aes.h | ||
| 102 | fips_aesavs.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 103 | fips_aesavs.o: ../../include/openssl/blowfish.h ../../include/openssl/bn.h | ||
| 104 | fips_aesavs.o: ../../include/openssl/cast.h ../../include/openssl/crypto.h | ||
| 105 | fips_aesavs.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 106 | fips_aesavs.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 107 | fips_aesavs.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 108 | fips_aesavs.o: ../../include/openssl/evp.h ../../include/openssl/fips.h | ||
| 109 | fips_aesavs.o: ../../include/openssl/idea.h ../../include/openssl/lhash.h | ||
| 110 | fips_aesavs.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 111 | fips_aesavs.o: ../../include/openssl/md5.h ../../include/openssl/mdc2.h | ||
| 112 | fips_aesavs.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 113 | fips_aesavs.o: ../../include/openssl/opensslconf.h | ||
| 114 | fips_aesavs.o: ../../include/openssl/opensslv.h | ||
| 115 | fips_aesavs.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rc2.h | ||
| 116 | fips_aesavs.o: ../../include/openssl/rc4.h ../../include/openssl/rc5.h | ||
| 117 | fips_aesavs.o: ../../include/openssl/ripemd.h ../../include/openssl/rsa.h | ||
| 118 | fips_aesavs.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 119 | fips_aesavs.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 120 | fips_aesavs.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 121 | fips_aesavs.o: fips_aesavs.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/aes/asm/fips-ax86-elf.s b/src/lib/libssl/src/fips-1.0/aes/asm/fips-ax86-elf.s deleted file mode 100644 index a3aa8fa9d9..0000000000 --- a/src/lib/libssl/src/fips-1.0/aes/asm/fips-ax86-elf.s +++ /dev/null | |||
| @@ -1,1711 +0,0 @@ | |||
| 1 | |||
| 2 | |||
| 3 | |||
| 4 | |||
| 5 | |||
| 6 | |||
| 7 | .file "aes-586.s" | ||
| 8 | .globl AES_Te | ||
| 9 | .text | ||
| 10 | .globl _x86_AES_encrypt | ||
| 11 | .type _x86_AES_encrypt,@function | ||
| 12 | .align 16 | ||
| 13 | _x86_AES_encrypt: | ||
| 14 | movl %edi, 12(%esp) | ||
| 15 | xorl (%edi), %eax | ||
| 16 | xorl 4(%edi), %ebx | ||
| 17 | xorl 8(%edi), %ecx | ||
| 18 | xorl 12(%edi), %edx | ||
| 19 | movl 240(%edi), %esi | ||
| 20 | leal -2(%esi,%esi), %esi | ||
| 21 | leal (%edi,%esi,8), %esi | ||
| 22 | movl %esi, 16(%esp) | ||
| 23 | .align 4 | ||
| 24 | .L000loop: | ||
| 25 | movl %eax, %esi | ||
| 26 | andl $255, %esi | ||
| 27 | movl (%ebp,%esi,8), %esi | ||
| 28 | movzbl %bh, %edi | ||
| 29 | xorl 3(%ebp,%edi,8), %esi | ||
| 30 | movl %ecx, %edi | ||
| 31 | shrl $16, %edi | ||
| 32 | andl $255, %edi | ||
| 33 | xorl 2(%ebp,%edi,8), %esi | ||
| 34 | movl %edx, %edi | ||
| 35 | shrl $24, %edi | ||
| 36 | xorl 1(%ebp,%edi,8), %esi | ||
| 37 | movl %esi, 4(%esp) | ||
| 38 | |||
| 39 | movl %ebx, %esi | ||
| 40 | andl $255, %esi | ||
| 41 | shrl $16, %ebx | ||
| 42 | movl (%ebp,%esi,8), %esi | ||
| 43 | movzbl %ch, %edi | ||
| 44 | xorl 3(%ebp,%edi,8), %esi | ||
| 45 | movl %edx, %edi | ||
| 46 | shrl $16, %edi | ||
| 47 | andl $255, %edi | ||
| 48 | xorl 2(%ebp,%edi,8), %esi | ||
| 49 | movl %eax, %edi | ||
| 50 | shrl $24, %edi | ||
| 51 | xorl 1(%ebp,%edi,8), %esi | ||
| 52 | movl %esi, 8(%esp) | ||
| 53 | |||
| 54 | movl %ecx, %esi | ||
| 55 | andl $255, %esi | ||
| 56 | shrl $24, %ecx | ||
| 57 | movl (%ebp,%esi,8), %esi | ||
| 58 | movzbl %dh, %edi | ||
| 59 | xorl 3(%ebp,%edi,8), %esi | ||
| 60 | movl %eax, %edi | ||
| 61 | shrl $16, %edi | ||
| 62 | andl $255, %edx | ||
| 63 | andl $255, %edi | ||
| 64 | xorl 2(%ebp,%edi,8), %esi | ||
| 65 | movzbl %bh, %edi | ||
| 66 | xorl 1(%ebp,%edi,8), %esi | ||
| 67 | |||
| 68 | movl 12(%esp), %edi | ||
| 69 | movl (%ebp,%edx,8), %edx | ||
| 70 | movzbl %ah, %eax | ||
| 71 | xorl 3(%ebp,%eax,8), %edx | ||
| 72 | movl 4(%esp), %eax | ||
| 73 | andl $255, %ebx | ||
| 74 | xorl 2(%ebp,%ebx,8), %edx | ||
| 75 | movl 8(%esp), %ebx | ||
| 76 | xorl 1(%ebp,%ecx,8), %edx | ||
| 77 | movl %esi, %ecx | ||
| 78 | |||
| 79 | addl $16, %edi | ||
| 80 | xorl (%edi), %eax | ||
| 81 | xorl 4(%edi), %ebx | ||
| 82 | xorl 8(%edi), %ecx | ||
| 83 | xorl 12(%edi), %edx | ||
| 84 | cmpl 16(%esp), %edi | ||
| 85 | movl %edi, 12(%esp) | ||
| 86 | jb .L000loop | ||
| 87 | movl %eax, %esi | ||
| 88 | andl $255, %esi | ||
| 89 | movl 2(%ebp,%esi,8), %esi | ||
| 90 | andl $255, %esi | ||
| 91 | movzbl %bh, %edi | ||
| 92 | movl (%ebp,%edi,8), %edi | ||
| 93 | andl $65280, %edi | ||
| 94 | xorl %edi, %esi | ||
| 95 | movl %ecx, %edi | ||
| 96 | shrl $16, %edi | ||
| 97 | andl $255, %edi | ||
| 98 | movl (%ebp,%edi,8), %edi | ||
| 99 | andl $16711680, %edi | ||
| 100 | xorl %edi, %esi | ||
| 101 | movl %edx, %edi | ||
| 102 | shrl $24, %edi | ||
| 103 | movl 2(%ebp,%edi,8), %edi | ||
| 104 | andl $4278190080, %edi | ||
| 105 | xorl %edi, %esi | ||
| 106 | movl %esi, 4(%esp) | ||
| 107 | movl %ebx, %esi | ||
| 108 | andl $255, %esi | ||
| 109 | shrl $16, %ebx | ||
| 110 | movl 2(%ebp,%esi,8), %esi | ||
| 111 | andl $255, %esi | ||
| 112 | movzbl %ch, %edi | ||
| 113 | movl (%ebp,%edi,8), %edi | ||
| 114 | andl $65280, %edi | ||
| 115 | xorl %edi, %esi | ||
| 116 | movl %edx, %edi | ||
| 117 | shrl $16, %edi | ||
| 118 | andl $255, %edi | ||
| 119 | movl (%ebp,%edi,8), %edi | ||
| 120 | andl $16711680, %edi | ||
| 121 | xorl %edi, %esi | ||
| 122 | movl %eax, %edi | ||
| 123 | shrl $24, %edi | ||
| 124 | movl 2(%ebp,%edi,8), %edi | ||
| 125 | andl $4278190080, %edi | ||
| 126 | xorl %edi, %esi | ||
| 127 | movl %esi, 8(%esp) | ||
| 128 | movl %ecx, %esi | ||
| 129 | andl $255, %esi | ||
| 130 | shrl $24, %ecx | ||
| 131 | movl 2(%ebp,%esi,8), %esi | ||
| 132 | andl $255, %esi | ||
| 133 | movzbl %dh, %edi | ||
| 134 | movl (%ebp,%edi,8), %edi | ||
| 135 | andl $65280, %edi | ||
| 136 | xorl %edi, %esi | ||
| 137 | movl %eax, %edi | ||
| 138 | shrl $16, %edi | ||
| 139 | andl $255, %edx | ||
| 140 | andl $255, %edi | ||
| 141 | movl (%ebp,%edi,8), %edi | ||
| 142 | andl $16711680, %edi | ||
| 143 | xorl %edi, %esi | ||
| 144 | movzbl %bh, %edi | ||
| 145 | movl 2(%ebp,%edi,8), %edi | ||
| 146 | andl $4278190080, %edi | ||
| 147 | xorl %edi, %esi | ||
| 148 | movl 12(%esp), %edi | ||
| 149 | andl $255, %edx | ||
| 150 | movl 2(%ebp,%edx,8), %edx | ||
| 151 | andl $255, %edx | ||
| 152 | movzbl %ah, %eax | ||
| 153 | movl (%ebp,%eax,8), %eax | ||
| 154 | andl $65280, %eax | ||
| 155 | xorl %eax, %edx | ||
| 156 | movl 4(%esp), %eax | ||
| 157 | andl $255, %ebx | ||
| 158 | movl (%ebp,%ebx,8), %ebx | ||
| 159 | andl $16711680, %ebx | ||
| 160 | xorl %ebx, %edx | ||
| 161 | movl 8(%esp), %ebx | ||
| 162 | movl 2(%ebp,%ecx,8), %ecx | ||
| 163 | andl $4278190080, %ecx | ||
| 164 | xorl %ecx, %edx | ||
| 165 | movl %esi, %ecx | ||
| 166 | addl $16, %edi | ||
| 167 | xorl (%edi), %eax | ||
| 168 | xorl 4(%edi), %ebx | ||
| 169 | xorl 8(%edi), %ecx | ||
| 170 | xorl 12(%edi), %edx | ||
| 171 | ret | ||
| 172 | .align 64 | ||
| 173 | AES_Te: | ||
| 174 | .long 2774754246,2774754246 | ||
| 175 | .long 2222750968,2222750968 | ||
| 176 | .long 2574743534,2574743534 | ||
| 177 | .long 2373680118,2373680118 | ||
| 178 | .long 234025727,234025727 | ||
| 179 | .long 3177933782,3177933782 | ||
| 180 | .long 2976870366,2976870366 | ||
| 181 | .long 1422247313,1422247313 | ||
| 182 | .long 1345335392,1345335392 | ||
| 183 | .long 50397442,50397442 | ||
| 184 | .long 2842126286,2842126286 | ||
| 185 | .long 2099981142,2099981142 | ||
| 186 | .long 436141799,436141799 | ||
| 187 | .long 1658312629,1658312629 | ||
| 188 | .long 3870010189,3870010189 | ||
| 189 | .long 2591454956,2591454956 | ||
| 190 | .long 1170918031,1170918031 | ||
| 191 | .long 2642575903,2642575903 | ||
| 192 | .long 1086966153,1086966153 | ||
| 193 | .long 2273148410,2273148410 | ||
| 194 | .long 368769775,368769775 | ||
| 195 | .long 3948501426,3948501426 | ||
| 196 | .long 3376891790,3376891790 | ||
| 197 | .long 200339707,200339707 | ||
| 198 | .long 3970805057,3970805057 | ||
| 199 | .long 1742001331,1742001331 | ||
| 200 | .long 4255294047,4255294047 | ||
| 201 | .long 3937382213,3937382213 | ||
| 202 | .long 3214711843,3214711843 | ||
| 203 | .long 4154762323,4154762323 | ||
| 204 | .long 2524082916,2524082916 | ||
| 205 | .long 1539358875,1539358875 | ||
| 206 | .long 3266819957,3266819957 | ||
| 207 | .long 486407649,486407649 | ||
| 208 | .long 2928907069,2928907069 | ||
| 209 | .long 1780885068,1780885068 | ||
| 210 | .long 1513502316,1513502316 | ||
| 211 | .long 1094664062,1094664062 | ||
| 212 | .long 49805301,49805301 | ||
| 213 | .long 1338821763,1338821763 | ||
| 214 | .long 1546925160,1546925160 | ||
| 215 | .long 4104496465,4104496465 | ||
| 216 | .long 887481809,887481809 | ||
| 217 | .long 150073849,150073849 | ||
| 218 | .long 2473685474,2473685474 | ||
| 219 | .long 1943591083,1943591083 | ||
| 220 | .long 1395732834,1395732834 | ||
| 221 | .long 1058346282,1058346282 | ||
| 222 | .long 201589768,201589768 | ||
| 223 | .long 1388824469,1388824469 | ||
| 224 | .long 1696801606,1696801606 | ||
| 225 | .long 1589887901,1589887901 | ||
| 226 | .long 672667696,672667696 | ||
| 227 | .long 2711000631,2711000631 | ||
| 228 | .long 251987210,251987210 | ||
| 229 | .long 3046808111,3046808111 | ||
| 230 | .long 151455502,151455502 | ||
| 231 | .long 907153956,907153956 | ||
| 232 | .long 2608889883,2608889883 | ||
| 233 | .long 1038279391,1038279391 | ||
| 234 | .long 652995533,652995533 | ||
| 235 | .long 1764173646,1764173646 | ||
| 236 | .long 3451040383,3451040383 | ||
| 237 | .long 2675275242,2675275242 | ||
| 238 | .long 453576978,453576978 | ||
| 239 | .long 2659418909,2659418909 | ||
| 240 | .long 1949051992,1949051992 | ||
| 241 | .long 773462580,773462580 | ||
| 242 | .long 756751158,756751158 | ||
| 243 | .long 2993581788,2993581788 | ||
| 244 | .long 3998898868,3998898868 | ||
| 245 | .long 4221608027,4221608027 | ||
| 246 | .long 4132590244,4132590244 | ||
| 247 | .long 1295727478,1295727478 | ||
| 248 | .long 1641469623,1641469623 | ||
| 249 | .long 3467883389,3467883389 | ||
| 250 | .long 2066295122,2066295122 | ||
| 251 | .long 1055122397,1055122397 | ||
| 252 | .long 1898917726,1898917726 | ||
| 253 | .long 2542044179,2542044179 | ||
| 254 | .long 4115878822,4115878822 | ||
| 255 | .long 1758581177,1758581177 | ||
| 256 | .long 0,0 | ||
| 257 | .long 753790401,753790401 | ||
| 258 | .long 1612718144,1612718144 | ||
| 259 | .long 536673507,536673507 | ||
| 260 | .long 3367088505,3367088505 | ||
| 261 | .long 3982187446,3982187446 | ||
| 262 | .long 3194645204,3194645204 | ||
| 263 | .long 1187761037,1187761037 | ||
| 264 | .long 3653156455,3653156455 | ||
| 265 | .long 1262041458,1262041458 | ||
| 266 | .long 3729410708,3729410708 | ||
| 267 | .long 3561770136,3561770136 | ||
| 268 | .long 3898103984,3898103984 | ||
| 269 | .long 1255133061,1255133061 | ||
| 270 | .long 1808847035,1808847035 | ||
| 271 | .long 720367557,720367557 | ||
| 272 | .long 3853167183,3853167183 | ||
| 273 | .long 385612781,385612781 | ||
| 274 | .long 3309519750,3309519750 | ||
| 275 | .long 3612167578,3612167578 | ||
| 276 | .long 1429418854,1429418854 | ||
| 277 | .long 2491778321,2491778321 | ||
| 278 | .long 3477423498,3477423498 | ||
| 279 | .long 284817897,284817897 | ||
| 280 | .long 100794884,100794884 | ||
| 281 | .long 2172616702,2172616702 | ||
| 282 | .long 4031795360,4031795360 | ||
| 283 | .long 1144798328,1144798328 | ||
| 284 | .long 3131023141,3131023141 | ||
| 285 | .long 3819481163,3819481163 | ||
| 286 | .long 4082192802,4082192802 | ||
| 287 | .long 4272137053,4272137053 | ||
| 288 | .long 3225436288,3225436288 | ||
| 289 | .long 2324664069,2324664069 | ||
| 290 | .long 2912064063,2912064063 | ||
| 291 | .long 3164445985,3164445985 | ||
| 292 | .long 1211644016,1211644016 | ||
| 293 | .long 83228145,83228145 | ||
| 294 | .long 3753688163,3753688163 | ||
| 295 | .long 3249976951,3249976951 | ||
| 296 | .long 1977277103,1977277103 | ||
| 297 | .long 1663115586,1663115586 | ||
| 298 | .long 806359072,806359072 | ||
| 299 | .long 452984805,452984805 | ||
| 300 | .long 250868733,250868733 | ||
| 301 | .long 1842533055,1842533055 | ||
| 302 | .long 1288555905,1288555905 | ||
| 303 | .long 336333848,336333848 | ||
| 304 | .long 890442534,890442534 | ||
| 305 | .long 804056259,804056259 | ||
| 306 | .long 3781124030,3781124030 | ||
| 307 | .long 2727843637,2727843637 | ||
| 308 | .long 3427026056,3427026056 | ||
| 309 | .long 957814574,957814574 | ||
| 310 | .long 1472513171,1472513171 | ||
| 311 | .long 4071073621,4071073621 | ||
| 312 | .long 2189328124,2189328124 | ||
| 313 | .long 1195195770,1195195770 | ||
| 314 | .long 2892260552,2892260552 | ||
| 315 | .long 3881655738,3881655738 | ||
| 316 | .long 723065138,723065138 | ||
| 317 | .long 2507371494,2507371494 | ||
| 318 | .long 2690670784,2690670784 | ||
| 319 | .long 2558624025,2558624025 | ||
| 320 | .long 3511635870,3511635870 | ||
| 321 | .long 2145180835,2145180835 | ||
| 322 | .long 1713513028,1713513028 | ||
| 323 | .long 2116692564,2116692564 | ||
| 324 | .long 2878378043,2878378043 | ||
| 325 | .long 2206763019,2206763019 | ||
| 326 | .long 3393603212,3393603212 | ||
| 327 | .long 703524551,703524551 | ||
| 328 | .long 3552098411,3552098411 | ||
| 329 | .long 1007948840,1007948840 | ||
| 330 | .long 2044649127,2044649127 | ||
| 331 | .long 3797835452,3797835452 | ||
| 332 | .long 487262998,487262998 | ||
| 333 | .long 1994120109,1994120109 | ||
| 334 | .long 1004593371,1004593371 | ||
| 335 | .long 1446130276,1446130276 | ||
| 336 | .long 1312438900,1312438900 | ||
| 337 | .long 503974420,503974420 | ||
| 338 | .long 3679013266,3679013266 | ||
| 339 | .long 168166924,168166924 | ||
| 340 | .long 1814307912,1814307912 | ||
| 341 | .long 3831258296,3831258296 | ||
| 342 | .long 1573044895,1573044895 | ||
| 343 | .long 1859376061,1859376061 | ||
| 344 | .long 4021070915,4021070915 | ||
| 345 | .long 2791465668,2791465668 | ||
| 346 | .long 2828112185,2828112185 | ||
| 347 | .long 2761266481,2761266481 | ||
| 348 | .long 937747667,937747667 | ||
| 349 | .long 2339994098,2339994098 | ||
| 350 | .long 854058965,854058965 | ||
| 351 | .long 1137232011,1137232011 | ||
| 352 | .long 1496790894,1496790894 | ||
| 353 | .long 3077402074,3077402074 | ||
| 354 | .long 2358086913,2358086913 | ||
| 355 | .long 1691735473,1691735473 | ||
| 356 | .long 3528347292,3528347292 | ||
| 357 | .long 3769215305,3769215305 | ||
| 358 | .long 3027004632,3027004632 | ||
| 359 | .long 4199962284,4199962284 | ||
| 360 | .long 133494003,133494003 | ||
| 361 | .long 636152527,636152527 | ||
| 362 | .long 2942657994,2942657994 | ||
| 363 | .long 2390391540,2390391540 | ||
| 364 | .long 3920539207,3920539207 | ||
| 365 | .long 403179536,403179536 | ||
| 366 | .long 3585784431,3585784431 | ||
| 367 | .long 2289596656,2289596656 | ||
| 368 | .long 1864705354,1864705354 | ||
| 369 | .long 1915629148,1915629148 | ||
| 370 | .long 605822008,605822008 | ||
| 371 | .long 4054230615,4054230615 | ||
| 372 | .long 3350508659,3350508659 | ||
| 373 | .long 1371981463,1371981463 | ||
| 374 | .long 602466507,602466507 | ||
| 375 | .long 2094914977,2094914977 | ||
| 376 | .long 2624877800,2624877800 | ||
| 377 | .long 555687742,555687742 | ||
| 378 | .long 3712699286,3712699286 | ||
| 379 | .long 3703422305,3703422305 | ||
| 380 | .long 2257292045,2257292045 | ||
| 381 | .long 2240449039,2240449039 | ||
| 382 | .long 2423288032,2423288032 | ||
| 383 | .long 1111375484,1111375484 | ||
| 384 | .long 3300242801,3300242801 | ||
| 385 | .long 2858837708,2858837708 | ||
| 386 | .long 3628615824,3628615824 | ||
| 387 | .long 84083462,84083462 | ||
| 388 | .long 32962295,32962295 | ||
| 389 | .long 302911004,302911004 | ||
| 390 | .long 2741068226,2741068226 | ||
| 391 | .long 1597322602,1597322602 | ||
| 392 | .long 4183250862,4183250862 | ||
| 393 | .long 3501832553,3501832553 | ||
| 394 | .long 2441512471,2441512471 | ||
| 395 | .long 1489093017,1489093017 | ||
| 396 | .long 656219450,656219450 | ||
| 397 | .long 3114180135,3114180135 | ||
| 398 | .long 954327513,954327513 | ||
| 399 | .long 335083755,335083755 | ||
| 400 | .long 3013122091,3013122091 | ||
| 401 | .long 856756514,856756514 | ||
| 402 | .long 3144247762,3144247762 | ||
| 403 | .long 1893325225,1893325225 | ||
| 404 | .long 2307821063,2307821063 | ||
| 405 | .long 2811532339,2811532339 | ||
| 406 | .long 3063651117,3063651117 | ||
| 407 | .long 572399164,572399164 | ||
| 408 | .long 2458355477,2458355477 | ||
| 409 | .long 552200649,552200649 | ||
| 410 | .long 1238290055,1238290055 | ||
| 411 | .long 4283782570,4283782570 | ||
| 412 | .long 2015897680,2015897680 | ||
| 413 | .long 2061492133,2061492133 | ||
| 414 | .long 2408352771,2408352771 | ||
| 415 | .long 4171342169,4171342169 | ||
| 416 | .long 2156497161,2156497161 | ||
| 417 | .long 386731290,386731290 | ||
| 418 | .long 3669999461,3669999461 | ||
| 419 | .long 837215959,837215959 | ||
| 420 | .long 3326231172,3326231172 | ||
| 421 | .long 3093850320,3093850320 | ||
| 422 | .long 3275833730,3275833730 | ||
| 423 | .long 2962856233,2962856233 | ||
| 424 | .long 1999449434,1999449434 | ||
| 425 | .long 286199582,286199582 | ||
| 426 | .long 3417354363,3417354363 | ||
| 427 | .long 4233385128,4233385128 | ||
| 428 | .long 3602627437,3602627437 | ||
| 429 | .long 974525996,974525996 | ||
| 430 | .long 1,2,4,8 | ||
| 431 | .long 16,32,64,128 | ||
| 432 | .long 27,54,0,0, | ||
| 433 | .long 0,0,0,0 | ||
| 434 | .L__x86_AES_encrypt_end: | ||
| 435 | .size _x86_AES_encrypt,.L__x86_AES_encrypt_end-_x86_AES_encrypt | ||
| 436 | .ident "_x86_AES_encrypt" | ||
| 437 | .globl AES_Te | ||
| 438 | .text | ||
| 439 | .globl AES_encrypt | ||
| 440 | .type AES_encrypt,@function | ||
| 441 | .align 16 | ||
| 442 | AES_encrypt: | ||
| 443 | pushl %ebp | ||
| 444 | pushl %ebx | ||
| 445 | pushl %esi | ||
| 446 | pushl %edi | ||
| 447 | |||
| 448 | movl 20(%esp), %esi | ||
| 449 | movl 28(%esp), %edi | ||
| 450 | movl %esp, %eax | ||
| 451 | subl $24, %esp | ||
| 452 | andl $-64, %esp | ||
| 453 | addl $4, %esp | ||
| 454 | movl %eax, 16(%esp) | ||
| 455 | call .L001pic_point | ||
| 456 | .L001pic_point: | ||
| 457 | popl %ebp | ||
| 458 | leal AES_Te-.L001pic_point(%ebp),%ebp | ||
| 459 | movl (%esi), %eax | ||
| 460 | movl 4(%esi), %ebx | ||
| 461 | movl 8(%esi), %ecx | ||
| 462 | movl 12(%esi), %edx | ||
| 463 | call _x86_AES_encrypt | ||
| 464 | movl 16(%esp), %esp | ||
| 465 | movl 24(%esp), %esi | ||
| 466 | movl %eax, (%esi) | ||
| 467 | movl %ebx, 4(%esi) | ||
| 468 | movl %ecx, 8(%esi) | ||
| 469 | movl %edx, 12(%esi) | ||
| 470 | popl %edi | ||
| 471 | popl %esi | ||
| 472 | popl %ebx | ||
| 473 | popl %ebp | ||
| 474 | ret | ||
| 475 | .L_AES_encrypt_end: | ||
| 476 | .size AES_encrypt,.L_AES_encrypt_end-AES_encrypt | ||
| 477 | .ident "AES_encrypt" | ||
| 478 | .globl AES_Td | ||
| 479 | .text | ||
| 480 | .globl _x86_AES_decrypt | ||
| 481 | .type _x86_AES_decrypt,@function | ||
| 482 | .align 16 | ||
| 483 | _x86_AES_decrypt: | ||
| 484 | movl %edi, 12(%esp) | ||
| 485 | xorl (%edi), %eax | ||
| 486 | xorl 4(%edi), %ebx | ||
| 487 | xorl 8(%edi), %ecx | ||
| 488 | xorl 12(%edi), %edx | ||
| 489 | movl 240(%edi), %esi | ||
| 490 | leal -2(%esi,%esi), %esi | ||
| 491 | leal (%edi,%esi,8), %esi | ||
| 492 | movl %esi, 16(%esp) | ||
| 493 | .align 4 | ||
| 494 | .L002loop: | ||
| 495 | movl %eax, %esi | ||
| 496 | andl $255, %esi | ||
| 497 | movl (%ebp,%esi,8), %esi | ||
| 498 | movzbl %dh, %edi | ||
| 499 | xorl 3(%ebp,%edi,8), %esi | ||
| 500 | movl %ecx, %edi | ||
| 501 | shrl $16, %edi | ||
| 502 | andl $255, %edi | ||
| 503 | xorl 2(%ebp,%edi,8), %esi | ||
| 504 | movl %ebx, %edi | ||
| 505 | shrl $24, %edi | ||
| 506 | xorl 1(%ebp,%edi,8), %esi | ||
| 507 | movl %esi, 4(%esp) | ||
| 508 | |||
| 509 | movl %ebx, %esi | ||
| 510 | andl $255, %esi | ||
| 511 | movl (%ebp,%esi,8), %esi | ||
| 512 | movzbl %ah, %edi | ||
| 513 | xorl 3(%ebp,%edi,8), %esi | ||
| 514 | movl %edx, %edi | ||
| 515 | shrl $16, %edi | ||
| 516 | andl $255, %edi | ||
| 517 | xorl 2(%ebp,%edi,8), %esi | ||
| 518 | movl %ecx, %edi | ||
| 519 | shrl $24, %edi | ||
| 520 | xorl 1(%ebp,%edi,8), %esi | ||
| 521 | movl %esi, 8(%esp) | ||
| 522 | |||
| 523 | movl %ecx, %esi | ||
| 524 | andl $255, %esi | ||
| 525 | movl (%ebp,%esi,8), %esi | ||
| 526 | movzbl %bh, %edi | ||
| 527 | xorl 3(%ebp,%edi,8), %esi | ||
| 528 | movl %eax, %edi | ||
| 529 | shrl $16, %edi | ||
| 530 | andl $255, %edi | ||
| 531 | xorl 2(%ebp,%edi,8), %esi | ||
| 532 | movl %edx, %edi | ||
| 533 | shrl $24, %edi | ||
| 534 | xorl 1(%ebp,%edi,8), %esi | ||
| 535 | |||
| 536 | movl 12(%esp), %edi | ||
| 537 | andl $255, %edx | ||
| 538 | movl (%ebp,%edx,8), %edx | ||
| 539 | movzbl %ch, %ecx | ||
| 540 | xorl 3(%ebp,%ecx,8), %edx | ||
| 541 | movl %esi, %ecx | ||
| 542 | shrl $16, %ebx | ||
| 543 | andl $255, %ebx | ||
| 544 | xorl 2(%ebp,%ebx,8), %edx | ||
| 545 | movl 8(%esp), %ebx | ||
| 546 | shrl $24, %eax | ||
| 547 | xorl 1(%ebp,%eax,8), %edx | ||
| 548 | movl 4(%esp), %eax | ||
| 549 | |||
| 550 | addl $16, %edi | ||
| 551 | xorl (%edi), %eax | ||
| 552 | xorl 4(%edi), %ebx | ||
| 553 | xorl 8(%edi), %ecx | ||
| 554 | xorl 12(%edi), %edx | ||
| 555 | cmpl 16(%esp), %edi | ||
| 556 | movl %edi, 12(%esp) | ||
| 557 | jb .L002loop | ||
| 558 | movl %eax, %esi | ||
| 559 | andl $255, %esi | ||
| 560 | movl 2048(%ebp,%esi,4),%esi | ||
| 561 | andl $255, %esi | ||
| 562 | movzbl %dh, %edi | ||
| 563 | movl 2048(%ebp,%edi,4),%edi | ||
| 564 | andl $65280, %edi | ||
| 565 | xorl %edi, %esi | ||
| 566 | movl %ecx, %edi | ||
| 567 | shrl $16, %edi | ||
| 568 | andl $255, %edi | ||
| 569 | movl 2048(%ebp,%edi,4),%edi | ||
| 570 | andl $16711680, %edi | ||
| 571 | xorl %edi, %esi | ||
| 572 | movl %ebx, %edi | ||
| 573 | shrl $24, %edi | ||
| 574 | movl 2048(%ebp,%edi,4),%edi | ||
| 575 | andl $4278190080, %edi | ||
| 576 | xorl %edi, %esi | ||
| 577 | movl %esi, 4(%esp) | ||
| 578 | movl %ebx, %esi | ||
| 579 | andl $255, %esi | ||
| 580 | movl 2048(%ebp,%esi,4),%esi | ||
| 581 | andl $255, %esi | ||
| 582 | movzbl %ah, %edi | ||
| 583 | movl 2048(%ebp,%edi,4),%edi | ||
| 584 | andl $65280, %edi | ||
| 585 | xorl %edi, %esi | ||
| 586 | movl %edx, %edi | ||
| 587 | shrl $16, %edi | ||
| 588 | andl $255, %edi | ||
| 589 | movl 2048(%ebp,%edi,4),%edi | ||
| 590 | andl $16711680, %edi | ||
| 591 | xorl %edi, %esi | ||
| 592 | movl %ecx, %edi | ||
| 593 | shrl $24, %edi | ||
| 594 | movl 2048(%ebp,%edi,4),%edi | ||
| 595 | andl $4278190080, %edi | ||
| 596 | xorl %edi, %esi | ||
| 597 | movl %esi, 8(%esp) | ||
| 598 | movl %ecx, %esi | ||
| 599 | andl $255, %esi | ||
| 600 | movl 2048(%ebp,%esi,4),%esi | ||
| 601 | andl $255, %esi | ||
| 602 | movzbl %bh, %edi | ||
| 603 | movl 2048(%ebp,%edi,4),%edi | ||
| 604 | andl $65280, %edi | ||
| 605 | xorl %edi, %esi | ||
| 606 | movl %eax, %edi | ||
| 607 | shrl $16, %edi | ||
| 608 | andl $255, %edi | ||
| 609 | movl 2048(%ebp,%edi,4),%edi | ||
| 610 | andl $16711680, %edi | ||
| 611 | xorl %edi, %esi | ||
| 612 | movl %edx, %edi | ||
| 613 | shrl $24, %edi | ||
| 614 | movl 2048(%ebp,%edi,4),%edi | ||
| 615 | andl $4278190080, %edi | ||
| 616 | xorl %edi, %esi | ||
| 617 | movl 12(%esp), %edi | ||
| 618 | andl $255, %edx | ||
| 619 | movl 2048(%ebp,%edx,4),%edx | ||
| 620 | andl $255, %edx | ||
| 621 | movzbl %ch, %ecx | ||
| 622 | movl 2048(%ebp,%ecx,4),%ecx | ||
| 623 | andl $65280, %ecx | ||
| 624 | xorl %ecx, %edx | ||
| 625 | movl %esi, %ecx | ||
| 626 | shrl $16, %ebx | ||
| 627 | andl $255, %ebx | ||
| 628 | movl 2048(%ebp,%ebx,4),%ebx | ||
| 629 | andl $16711680, %ebx | ||
| 630 | xorl %ebx, %edx | ||
| 631 | movl 8(%esp), %ebx | ||
| 632 | shrl $24, %eax | ||
| 633 | movl 2048(%ebp,%eax,4),%eax | ||
| 634 | andl $4278190080, %eax | ||
| 635 | xorl %eax, %edx | ||
| 636 | movl 4(%esp), %eax | ||
| 637 | addl $16, %edi | ||
| 638 | xorl (%edi), %eax | ||
| 639 | xorl 4(%edi), %ebx | ||
| 640 | xorl 8(%edi), %ecx | ||
| 641 | xorl 12(%edi), %edx | ||
| 642 | ret | ||
| 643 | .align 64 | ||
| 644 | AES_Td: | ||
| 645 | .long 1353184337,1353184337 | ||
| 646 | .long 1399144830,1399144830 | ||
| 647 | .long 3282310938,3282310938 | ||
| 648 | .long 2522752826,2522752826 | ||
| 649 | .long 3412831035,3412831035 | ||
| 650 | .long 4047871263,4047871263 | ||
| 651 | .long 2874735276,2874735276 | ||
| 652 | .long 2466505547,2466505547 | ||
| 653 | .long 1442459680,1442459680 | ||
| 654 | .long 4134368941,4134368941 | ||
| 655 | .long 2440481928,2440481928 | ||
| 656 | .long 625738485,625738485 | ||
| 657 | .long 4242007375,4242007375 | ||
| 658 | .long 3620416197,3620416197 | ||
| 659 | .long 2151953702,2151953702 | ||
| 660 | .long 2409849525,2409849525 | ||
| 661 | .long 1230680542,1230680542 | ||
| 662 | .long 1729870373,1729870373 | ||
| 663 | .long 2551114309,2551114309 | ||
| 664 | .long 3787521629,3787521629 | ||
| 665 | .long 41234371,41234371 | ||
| 666 | .long 317738113,317738113 | ||
| 667 | .long 2744600205,2744600205 | ||
| 668 | .long 3338261355,3338261355 | ||
| 669 | .long 3881799427,3881799427 | ||
| 670 | .long 2510066197,2510066197 | ||
| 671 | .long 3950669247,3950669247 | ||
| 672 | .long 3663286933,3663286933 | ||
| 673 | .long 763608788,763608788 | ||
| 674 | .long 3542185048,3542185048 | ||
| 675 | .long 694804553,694804553 | ||
| 676 | .long 1154009486,1154009486 | ||
| 677 | .long 1787413109,1787413109 | ||
| 678 | .long 2021232372,2021232372 | ||
| 679 | .long 1799248025,1799248025 | ||
| 680 | .long 3715217703,3715217703 | ||
| 681 | .long 3058688446,3058688446 | ||
| 682 | .long 397248752,397248752 | ||
| 683 | .long 1722556617,1722556617 | ||
| 684 | .long 3023752829,3023752829 | ||
| 685 | .long 407560035,407560035 | ||
| 686 | .long 2184256229,2184256229 | ||
| 687 | .long 1613975959,1613975959 | ||
| 688 | .long 1165972322,1165972322 | ||
| 689 | .long 3765920945,3765920945 | ||
| 690 | .long 2226023355,2226023355 | ||
| 691 | .long 480281086,480281086 | ||
| 692 | .long 2485848313,2485848313 | ||
| 693 | .long 1483229296,1483229296 | ||
| 694 | .long 436028815,436028815 | ||
| 695 | .long 2272059028,2272059028 | ||
| 696 | .long 3086515026,3086515026 | ||
| 697 | .long 601060267,601060267 | ||
| 698 | .long 3791801202,3791801202 | ||
| 699 | .long 1468997603,1468997603 | ||
| 700 | .long 715871590,715871590 | ||
| 701 | .long 120122290,120122290 | ||
| 702 | .long 63092015,63092015 | ||
| 703 | .long 2591802758,2591802758 | ||
| 704 | .long 2768779219,2768779219 | ||
| 705 | .long 4068943920,4068943920 | ||
| 706 | .long 2997206819,2997206819 | ||
| 707 | .long 3127509762,3127509762 | ||
| 708 | .long 1552029421,1552029421 | ||
| 709 | .long 723308426,723308426 | ||
| 710 | .long 2461301159,2461301159 | ||
| 711 | .long 4042393587,4042393587 | ||
| 712 | .long 2715969870,2715969870 | ||
| 713 | .long 3455375973,3455375973 | ||
| 714 | .long 3586000134,3586000134 | ||
| 715 | .long 526529745,526529745 | ||
| 716 | .long 2331944644,2331944644 | ||
| 717 | .long 2639474228,2639474228 | ||
| 718 | .long 2689987490,2689987490 | ||
| 719 | .long 853641733,853641733 | ||
| 720 | .long 1978398372,1978398372 | ||
| 721 | .long 971801355,971801355 | ||
| 722 | .long 2867814464,2867814464 | ||
| 723 | .long 111112542,111112542 | ||
| 724 | .long 1360031421,1360031421 | ||
| 725 | .long 4186579262,4186579262 | ||
| 726 | .long 1023860118,1023860118 | ||
| 727 | .long 2919579357,2919579357 | ||
| 728 | .long 1186850381,1186850381 | ||
| 729 | .long 3045938321,3045938321 | ||
| 730 | .long 90031217,90031217 | ||
| 731 | .long 1876166148,1876166148 | ||
| 732 | .long 4279586912,4279586912 | ||
| 733 | .long 620468249,620468249 | ||
| 734 | .long 2548678102,2548678102 | ||
| 735 | .long 3426959497,3426959497 | ||
| 736 | .long 2006899047,2006899047 | ||
| 737 | .long 3175278768,3175278768 | ||
| 738 | .long 2290845959,2290845959 | ||
| 739 | .long 945494503,945494503 | ||
| 740 | .long 3689859193,3689859193 | ||
| 741 | .long 1191869601,1191869601 | ||
| 742 | .long 3910091388,3910091388 | ||
| 743 | .long 3374220536,3374220536 | ||
| 744 | .long 0,0 | ||
| 745 | .long 2206629897,2206629897 | ||
| 746 | .long 1223502642,1223502642 | ||
| 747 | .long 2893025566,2893025566 | ||
| 748 | .long 1316117100,1316117100 | ||
| 749 | .long 4227796733,4227796733 | ||
| 750 | .long 1446544655,1446544655 | ||
| 751 | .long 517320253,517320253 | ||
| 752 | .long 658058550,658058550 | ||
| 753 | .long 1691946762,1691946762 | ||
| 754 | .long 564550760,564550760 | ||
| 755 | .long 3511966619,3511966619 | ||
| 756 | .long 976107044,976107044 | ||
| 757 | .long 2976320012,2976320012 | ||
| 758 | .long 266819475,266819475 | ||
| 759 | .long 3533106868,3533106868 | ||
| 760 | .long 2660342555,2660342555 | ||
| 761 | .long 1338359936,1338359936 | ||
| 762 | .long 2720062561,2720062561 | ||
| 763 | .long 1766553434,1766553434 | ||
| 764 | .long 370807324,370807324 | ||
| 765 | .long 179999714,179999714 | ||
| 766 | .long 3844776128,3844776128 | ||
| 767 | .long 1138762300,1138762300 | ||
| 768 | .long 488053522,488053522 | ||
| 769 | .long 185403662,185403662 | ||
| 770 | .long 2915535858,2915535858 | ||
| 771 | .long 3114841645,3114841645 | ||
| 772 | .long 3366526484,3366526484 | ||
| 773 | .long 2233069911,2233069911 | ||
| 774 | .long 1275557295,1275557295 | ||
| 775 | .long 3151862254,3151862254 | ||
| 776 | .long 4250959779,4250959779 | ||
| 777 | .long 2670068215,2670068215 | ||
| 778 | .long 3170202204,3170202204 | ||
| 779 | .long 3309004356,3309004356 | ||
| 780 | .long 880737115,880737115 | ||
| 781 | .long 1982415755,1982415755 | ||
| 782 | .long 3703972811,3703972811 | ||
| 783 | .long 1761406390,1761406390 | ||
| 784 | .long 1676797112,1676797112 | ||
| 785 | .long 3403428311,3403428311 | ||
| 786 | .long 277177154,277177154 | ||
| 787 | .long 1076008723,1076008723 | ||
| 788 | .long 538035844,538035844 | ||
| 789 | .long 2099530373,2099530373 | ||
| 790 | .long 4164795346,4164795346 | ||
| 791 | .long 288553390,288553390 | ||
| 792 | .long 1839278535,1839278535 | ||
| 793 | .long 1261411869,1261411869 | ||
| 794 | .long 4080055004,4080055004 | ||
| 795 | .long 3964831245,3964831245 | ||
| 796 | .long 3504587127,3504587127 | ||
| 797 | .long 1813426987,1813426987 | ||
| 798 | .long 2579067049,2579067049 | ||
| 799 | .long 4199060497,4199060497 | ||
| 800 | .long 577038663,577038663 | ||
| 801 | .long 3297574056,3297574056 | ||
| 802 | .long 440397984,440397984 | ||
| 803 | .long 3626794326,3626794326 | ||
| 804 | .long 4019204898,4019204898 | ||
| 805 | .long 3343796615,3343796615 | ||
| 806 | .long 3251714265,3251714265 | ||
| 807 | .long 4272081548,4272081548 | ||
| 808 | .long 906744984,906744984 | ||
| 809 | .long 3481400742,3481400742 | ||
| 810 | .long 685669029,685669029 | ||
| 811 | .long 646887386,646887386 | ||
| 812 | .long 2764025151,2764025151 | ||
| 813 | .long 3835509292,3835509292 | ||
| 814 | .long 227702864,227702864 | ||
| 815 | .long 2613862250,2613862250 | ||
| 816 | .long 1648787028,1648787028 | ||
| 817 | .long 3256061430,3256061430 | ||
| 818 | .long 3904428176,3904428176 | ||
| 819 | .long 1593260334,1593260334 | ||
| 820 | .long 4121936770,4121936770 | ||
| 821 | .long 3196083615,3196083615 | ||
| 822 | .long 2090061929,2090061929 | ||
| 823 | .long 2838353263,2838353263 | ||
| 824 | .long 3004310991,3004310991 | ||
| 825 | .long 999926984,999926984 | ||
| 826 | .long 2809993232,2809993232 | ||
| 827 | .long 1852021992,1852021992 | ||
| 828 | .long 2075868123,2075868123 | ||
| 829 | .long 158869197,158869197 | ||
| 830 | .long 4095236462,4095236462 | ||
| 831 | .long 28809964,28809964 | ||
| 832 | .long 2828685187,2828685187 | ||
| 833 | .long 1701746150,1701746150 | ||
| 834 | .long 2129067946,2129067946 | ||
| 835 | .long 147831841,147831841 | ||
| 836 | .long 3873969647,3873969647 | ||
| 837 | .long 3650873274,3650873274 | ||
| 838 | .long 3459673930,3459673930 | ||
| 839 | .long 3557400554,3557400554 | ||
| 840 | .long 3598495785,3598495785 | ||
| 841 | .long 2947720241,2947720241 | ||
| 842 | .long 824393514,824393514 | ||
| 843 | .long 815048134,815048134 | ||
| 844 | .long 3227951669,3227951669 | ||
| 845 | .long 935087732,935087732 | ||
| 846 | .long 2798289660,2798289660 | ||
| 847 | .long 2966458592,2966458592 | ||
| 848 | .long 366520115,366520115 | ||
| 849 | .long 1251476721,1251476721 | ||
| 850 | .long 4158319681,4158319681 | ||
| 851 | .long 240176511,240176511 | ||
| 852 | .long 804688151,804688151 | ||
| 853 | .long 2379631990,2379631990 | ||
| 854 | .long 1303441219,1303441219 | ||
| 855 | .long 1414376140,1414376140 | ||
| 856 | .long 3741619940,3741619940 | ||
| 857 | .long 3820343710,3820343710 | ||
| 858 | .long 461924940,461924940 | ||
| 859 | .long 3089050817,3089050817 | ||
| 860 | .long 2136040774,2136040774 | ||
| 861 | .long 82468509,82468509 | ||
| 862 | .long 1563790337,1563790337 | ||
| 863 | .long 1937016826,1937016826 | ||
| 864 | .long 776014843,776014843 | ||
| 865 | .long 1511876531,1511876531 | ||
| 866 | .long 1389550482,1389550482 | ||
| 867 | .long 861278441,861278441 | ||
| 868 | .long 323475053,323475053 | ||
| 869 | .long 2355222426,2355222426 | ||
| 870 | .long 2047648055,2047648055 | ||
| 871 | .long 2383738969,2383738969 | ||
| 872 | .long 2302415851,2302415851 | ||
| 873 | .long 3995576782,3995576782 | ||
| 874 | .long 902390199,902390199 | ||
| 875 | .long 3991215329,3991215329 | ||
| 876 | .long 1018251130,1018251130 | ||
| 877 | .long 1507840668,1507840668 | ||
| 878 | .long 1064563285,1064563285 | ||
| 879 | .long 2043548696,2043548696 | ||
| 880 | .long 3208103795,3208103795 | ||
| 881 | .long 3939366739,3939366739 | ||
| 882 | .long 1537932639,1537932639 | ||
| 883 | .long 342834655,342834655 | ||
| 884 | .long 2262516856,2262516856 | ||
| 885 | .long 2180231114,2180231114 | ||
| 886 | .long 1053059257,1053059257 | ||
| 887 | .long 741614648,741614648 | ||
| 888 | .long 1598071746,1598071746 | ||
| 889 | .long 1925389590,1925389590 | ||
| 890 | .long 203809468,203809468 | ||
| 891 | .long 2336832552,2336832552 | ||
| 892 | .long 1100287487,1100287487 | ||
| 893 | .long 1895934009,1895934009 | ||
| 894 | .long 3736275976,3736275976 | ||
| 895 | .long 2632234200,2632234200 | ||
| 896 | .long 2428589668,2428589668 | ||
| 897 | .long 1636092795,1636092795 | ||
| 898 | .long 1890988757,1890988757 | ||
| 899 | .long 1952214088,1952214088 | ||
| 900 | .long 1113045200,1113045200 | ||
| 901 | .long 1381126738,151587081,1785358954,3587560917 | ||
| 902 | .long 808464432,909522486,2779096485,943208504 | ||
| 903 | .long 3217014719,1077952576,2745410467,2661195422 | ||
| 904 | .long 2172748161,4092851187,3621246935,4227595259 | ||
| 905 | .long 2088533116,3823363043,960051513,2189591170 | ||
| 906 | .long 2610666395,791621423,4294967295,2273806215 | ||
| 907 | .long 875836468,2391707278,1128481603,1145324612 | ||
| 908 | .long 3301229764,3739147998,3924421097,3419130827 | ||
| 909 | .long 1414812756,2071690107,2492765332,842150450 | ||
| 910 | .long 2795939494,3267543746,589505315,1027423549 | ||
| 911 | .long 4008636142,1280068684,2509608341,185273099 | ||
| 912 | .long 1111638594,4210752250,3284386755,1313754702 | ||
| 913 | .long 134744072,774778414,2711724449,1717986918 | ||
| 914 | .long 673720360,3654932953,606348324,2998055602 | ||
| 915 | .long 1987475062,1532713819,2728567458,1229539657 | ||
| 916 | .long 1835887981,2341178251,3520188881,623191333 | ||
| 917 | .long 1920103026,4177066232,4143380214,1684300900 | ||
| 918 | .long 2256963206,1751672936,2560137368,370546198 | ||
| 919 | .long 3570717908,2762253476,1549556828,3435973836 | ||
| 920 | .long 1566399837,1701143909,3065427638,2459079314 | ||
| 921 | .long 1819044972,1886417008,1212696648,1347440720 | ||
| 922 | .long 4261281277,3991793133,3115956665,3671775962 | ||
| 923 | .long 1583242846,353703189,1179010630,1465341783 | ||
| 924 | .long 2812782503,2374864269,2644352413,2223277188 | ||
| 925 | .long 2425393296,3638089944,2880154539,0 | ||
| 926 | .long 2358021260,3166485692,3553874899,168430090 | ||
| 927 | .long 4160223223,3840206052,1482184792,84215045 | ||
| 928 | .long 3099113656,3014898611,1162167621,101058054 | ||
| 929 | .long 3503345872,741092396,505290270,2408550287 | ||
| 930 | .long 3402287818,1061109567,252645135,33686018 | ||
| 931 | .long 3250700737,2947526575,3183328701,50529027 | ||
| 932 | .long 16843009,320017171,2324335242,1802201963 | ||
| 933 | .long 976894522,2442236305,286331153,1094795585 | ||
| 934 | .long 1330597711,1734829927,3705461980,3941264106 | ||
| 935 | .long 2543294359,4076008178,3486502863,3469659854 | ||
| 936 | .long 4042322160,3031741620,3873892070,1936946035 | ||
| 937 | .long 2526451350,2896997548,1953789044,572662306 | ||
| 938 | .long 3890735079,2913840557,892679477,2240120197 | ||
| 939 | .long 3806520034,4193909241,926365495,3907578088 | ||
| 940 | .long 471604252,1970632053,3755991007,1852730990 | ||
| 941 | .long 1195853639,4059165169,437918234,1903260017 | ||
| 942 | .long 488447261,690563369,3318072773,2307492233 | ||
| 943 | .long 1869573999,3082270647,1650614882,235802126 | ||
| 944 | .long 2863311530,404232216,3200171710,454761243 | ||
| 945 | .long 4244438268,1448498774,1044266558,1263225675 | ||
| 946 | .long 3334915782,3537031890,2038004089,538976288 | ||
| 947 | .long 2593823386,3688618971,3233857728,4278124286 | ||
| 948 | .long 2021161080,3452816845,1515870810,4109694196 | ||
| 949 | .long 522133279,3722304989,2829625512,858993459 | ||
| 950 | .long 2290649224,117901063,3351758791,825307441 | ||
| 951 | .long 2981212593,303174162,269488144,1499027801 | ||
| 952 | .long 656877351,2155905152,3974950124,1600085855 | ||
| 953 | .long 1616928864,1364283729,2139062143,2846468521 | ||
| 954 | .long 421075225,3048584629,1246382666,218959117 | ||
| 955 | .long 757935405,3857049061,2054847098,2678038431 | ||
| 956 | .long 2475922323,3385444809,2627509404,4025479151 | ||
| 957 | .long 2694881440,3772834016,993737531,1296911693 | ||
| 958 | .long 2930683566,707406378,4126537205,2964369584 | ||
| 959 | .long 3368601800,3958107115,3149642683,1010580540 | ||
| 960 | .long 2206434179,1397969747,2576980377,1633771873 | ||
| 961 | .long 387389207,724249387,67372036,2122219134 | ||
| 962 | .long 3132799674,2004318071,3604403926,640034342 | ||
| 963 | .long 3789677025,1768515945,336860180,1667457891 | ||
| 964 | .long 1431655765,555819297,202116108,2105376125 | ||
| 965 | .L__x86_AES_decrypt_end: | ||
| 966 | .size _x86_AES_decrypt,.L__x86_AES_decrypt_end-_x86_AES_decrypt | ||
| 967 | .ident "_x86_AES_decrypt" | ||
| 968 | .globl AES_Td | ||
| 969 | .text | ||
| 970 | .globl AES_decrypt | ||
| 971 | .type AES_decrypt,@function | ||
| 972 | .align 16 | ||
| 973 | AES_decrypt: | ||
| 974 | pushl %ebp | ||
| 975 | pushl %ebx | ||
| 976 | pushl %esi | ||
| 977 | pushl %edi | ||
| 978 | |||
| 979 | movl 20(%esp), %esi | ||
| 980 | movl 28(%esp), %edi | ||
| 981 | movl %esp, %eax | ||
| 982 | subl $24, %esp | ||
| 983 | andl $-64, %esp | ||
| 984 | addl $4, %esp | ||
| 985 | movl %eax, 16(%esp) | ||
| 986 | call .L003pic_point | ||
| 987 | .L003pic_point: | ||
| 988 | popl %ebp | ||
| 989 | leal AES_Td-.L003pic_point(%ebp),%ebp | ||
| 990 | movl (%esi), %eax | ||
| 991 | movl 4(%esi), %ebx | ||
| 992 | movl 8(%esi), %ecx | ||
| 993 | movl 12(%esi), %edx | ||
| 994 | call _x86_AES_decrypt | ||
| 995 | movl 16(%esp), %esp | ||
| 996 | movl 24(%esp), %esi | ||
| 997 | movl %eax, (%esi) | ||
| 998 | movl %ebx, 4(%esi) | ||
| 999 | movl %ecx, 8(%esi) | ||
| 1000 | movl %edx, 12(%esi) | ||
| 1001 | popl %edi | ||
| 1002 | popl %esi | ||
| 1003 | popl %ebx | ||
| 1004 | popl %ebp | ||
| 1005 | ret | ||
| 1006 | .L_AES_decrypt_end: | ||
| 1007 | .size AES_decrypt,.L_AES_decrypt_end-AES_decrypt | ||
| 1008 | .ident "AES_decrypt" | ||
| 1009 | .globl AES_Te | ||
| 1010 | .globl AES_Td | ||
| 1011 | .text | ||
| 1012 | .globl AES_cbc_encrypt | ||
| 1013 | .type AES_cbc_encrypt,@function | ||
| 1014 | .align 16 | ||
| 1015 | AES_cbc_encrypt: | ||
| 1016 | pushl %ebp | ||
| 1017 | pushl %ebx | ||
| 1018 | pushl %esi | ||
| 1019 | pushl %edi | ||
| 1020 | |||
| 1021 | movl 28(%esp), %ecx | ||
| 1022 | cmpl $0, %ecx | ||
| 1023 | je .L004enc_out | ||
| 1024 | call .L005pic_point | ||
| 1025 | .L005pic_point: | ||
| 1026 | popl %ebp | ||
| 1027 | pushfl | ||
| 1028 | cld | ||
| 1029 | cmpl $0, 44(%esp) | ||
| 1030 | je .L006DECRYPT | ||
| 1031 | leal AES_Te-.L005pic_point(%ebp),%ebp | ||
| 1032 | leal -308(%esp), %edi | ||
| 1033 | andl $-64, %edi | ||
| 1034 | movl %ebp, %eax | ||
| 1035 | leal 2048(%ebp), %ebx | ||
| 1036 | movl %edi, %edx | ||
| 1037 | andl $4095, %eax | ||
| 1038 | andl $4095, %ebx | ||
| 1039 | andl $4095, %edx | ||
| 1040 | cmpl %ebx, %edx | ||
| 1041 | jb .L007te_break_out | ||
| 1042 | subl %ebx, %edx | ||
| 1043 | subl %edx, %edi | ||
| 1044 | jmp .L008te_ok | ||
| 1045 | .L007te_break_out: | ||
| 1046 | subl %eax, %edx | ||
| 1047 | andl $4095, %edx | ||
| 1048 | addl $320, %edx | ||
| 1049 | subl %edx, %edi | ||
| 1050 | .align 4 | ||
| 1051 | .L008te_ok: | ||
| 1052 | movl 24(%esp), %eax | ||
| 1053 | movl 28(%esp), %ebx | ||
| 1054 | movl 36(%esp), %edx | ||
| 1055 | movl 40(%esp), %esi | ||
| 1056 | xchgl %edi, %esp | ||
| 1057 | addl $4, %esp | ||
| 1058 | movl %edi, 16(%esp) | ||
| 1059 | movl %eax, 20(%esp) | ||
| 1060 | movl %ebx, 24(%esp) | ||
| 1061 | movl %ecx, 28(%esp) | ||
| 1062 | movl %edx, 32(%esp) | ||
| 1063 | movl %esi, 36(%esp) | ||
| 1064 | movl $61, %ecx | ||
| 1065 | movl %edx, %esi | ||
| 1066 | leal 60(%esp), %edi | ||
| 1067 | movl %edi, 32(%esp) | ||
| 1068 | .align 4 | ||
| 1069 | .long 4136216051 | ||
| 1070 | movl %eax, %esi | ||
| 1071 | movl $16, %edi | ||
| 1072 | .align 4 | ||
| 1073 | .L009prefetch_te: | ||
| 1074 | movl (%ebp), %eax | ||
| 1075 | movl 32(%ebp), %ebx | ||
| 1076 | movl 64(%ebp), %ecx | ||
| 1077 | movl 96(%ebp), %edx | ||
| 1078 | leal 128(%ebp), %ebp | ||
| 1079 | decl %edi | ||
| 1080 | jnz .L009prefetch_te | ||
| 1081 | subl $2048, %ebp | ||
| 1082 | movl 28(%esp), %ecx | ||
| 1083 | movl 36(%esp), %edi | ||
| 1084 | testl $4294967280, %ecx | ||
| 1085 | jz .L010enc_tail | ||
| 1086 | movl (%edi), %eax | ||
| 1087 | movl 4(%edi), %ebx | ||
| 1088 | .align 4 | ||
| 1089 | .L011enc_loop: | ||
| 1090 | movl 8(%edi), %ecx | ||
| 1091 | movl 12(%edi), %edx | ||
| 1092 | xorl (%esi), %eax | ||
| 1093 | xorl 4(%esi), %ebx | ||
| 1094 | xorl 8(%esi), %ecx | ||
| 1095 | xorl 12(%esi), %edx | ||
| 1096 | movl 32(%esp), %edi | ||
| 1097 | call _x86_AES_encrypt | ||
| 1098 | movl 20(%esp), %esi | ||
| 1099 | movl 24(%esp), %edi | ||
| 1100 | movl %eax, (%edi) | ||
| 1101 | movl %ebx, 4(%edi) | ||
| 1102 | movl %ecx, 8(%edi) | ||
| 1103 | movl %edx, 12(%edi) | ||
| 1104 | movl 28(%esp), %ecx | ||
| 1105 | leal 16(%esi), %esi | ||
| 1106 | movl %esi, 20(%esp) | ||
| 1107 | leal 16(%edi), %edx | ||
| 1108 | movl %edx, 24(%esp) | ||
| 1109 | subl $16, %ecx | ||
| 1110 | testl $4294967280, %ecx | ||
| 1111 | movl %ecx, 28(%esp) | ||
| 1112 | jnz .L011enc_loop | ||
| 1113 | testl $15, %ecx | ||
| 1114 | jnz .L010enc_tail | ||
| 1115 | movl 36(%esp), %esi | ||
| 1116 | movl 8(%edi), %ecx | ||
| 1117 | movl 12(%edi), %edx | ||
| 1118 | movl %eax, (%esi) | ||
| 1119 | movl %ebx, 4(%esi) | ||
| 1120 | movl %ecx, 8(%esi) | ||
| 1121 | movl %edx, 12(%esi) | ||
| 1122 | movl 32(%esp), %edi | ||
| 1123 | movl 16(%esp), %esp | ||
| 1124 | movl $60, %ecx | ||
| 1125 | xorl %eax, %eax | ||
| 1126 | .align 4 | ||
| 1127 | .long 4136217587 | ||
| 1128 | popfl | ||
| 1129 | .L004enc_out: | ||
| 1130 | popl %edi | ||
| 1131 | popl %esi | ||
| 1132 | popl %ebx | ||
| 1133 | popl %ebp | ||
| 1134 | ret | ||
| 1135 | pushfl | ||
| 1136 | .align 4 | ||
| 1137 | .L010enc_tail: | ||
| 1138 | pushl %edi | ||
| 1139 | movl 24(%esp), %edi | ||
| 1140 | movl $16, %ebx | ||
| 1141 | subl %ecx, %ebx | ||
| 1142 | cmpl %esi, %edi | ||
| 1143 | je .L012enc_in_place | ||
| 1144 | .align 4 | ||
| 1145 | .long 4136215795 | ||
| 1146 | jmp .L013enc_skip_in_place | ||
| 1147 | .L012enc_in_place: | ||
| 1148 | leal (%edi,%ecx), %edi | ||
| 1149 | .L013enc_skip_in_place: | ||
| 1150 | movl %ebx, %ecx | ||
| 1151 | xorl %eax, %eax | ||
| 1152 | .align 4 | ||
| 1153 | .long 4136217331 | ||
| 1154 | popl %edi | ||
| 1155 | movl 24(%esp), %esi | ||
| 1156 | movl (%edi), %eax | ||
| 1157 | movl 4(%edi), %ebx | ||
| 1158 | movl $16, 28(%esp) | ||
| 1159 | jmp .L011enc_loop | ||
| 1160 | .align 4 | ||
| 1161 | .L006DECRYPT: | ||
| 1162 | leal AES_Td-.L005pic_point(%ebp),%ebp | ||
| 1163 | leal -308(%esp), %edi | ||
| 1164 | andl $-64, %edi | ||
| 1165 | movl %ebp, %eax | ||
| 1166 | leal 3072(%ebp), %ebx | ||
| 1167 | movl %edi, %edx | ||
| 1168 | andl $4095, %eax | ||
| 1169 | andl $4095, %ebx | ||
| 1170 | andl $4095, %edx | ||
| 1171 | cmpl %ebx, %edx | ||
| 1172 | jb .L014td_break_out | ||
| 1173 | subl %ebx, %edx | ||
| 1174 | subl %edx, %edi | ||
| 1175 | jmp .L015td_ok | ||
| 1176 | .L014td_break_out: | ||
| 1177 | subl %eax, %edx | ||
| 1178 | andl $4095, %edx | ||
| 1179 | addl $320, %edx | ||
| 1180 | subl %edx, %edi | ||
| 1181 | .align 4 | ||
| 1182 | .L015td_ok: | ||
| 1183 | movl 24(%esp), %eax | ||
| 1184 | movl 28(%esp), %ebx | ||
| 1185 | movl 36(%esp), %edx | ||
| 1186 | movl 40(%esp), %esi | ||
| 1187 | xchgl %edi, %esp | ||
| 1188 | addl $4, %esp | ||
| 1189 | movl %edi, 16(%esp) | ||
| 1190 | movl %eax, 20(%esp) | ||
| 1191 | movl %ebx, 24(%esp) | ||
| 1192 | movl %ecx, 28(%esp) | ||
| 1193 | movl %edx, 32(%esp) | ||
| 1194 | movl %esi, 36(%esp) | ||
| 1195 | movl $61, %ecx | ||
| 1196 | movl %edx, %esi | ||
| 1197 | leal 60(%esp), %edi | ||
| 1198 | movl %edi, 32(%esp) | ||
| 1199 | .align 4 | ||
| 1200 | .long 4136216051 | ||
| 1201 | movl %eax, %esi | ||
| 1202 | movl $24, %edi | ||
| 1203 | .align 4 | ||
| 1204 | .L016prefetch_td: | ||
| 1205 | movl (%ebp), %eax | ||
| 1206 | movl 32(%ebp), %ebx | ||
| 1207 | movl 64(%ebp), %ecx | ||
| 1208 | movl 96(%ebp), %edx | ||
| 1209 | leal 128(%ebp), %ebp | ||
| 1210 | decl %edi | ||
| 1211 | jnz .L016prefetch_td | ||
| 1212 | subl $3072, %ebp | ||
| 1213 | cmpl 24(%esp), %esi | ||
| 1214 | je .L017dec_in_place | ||
| 1215 | movl 36(%esp), %edi | ||
| 1216 | movl %edi, 40(%esp) | ||
| 1217 | .align 4 | ||
| 1218 | .L018dec_loop: | ||
| 1219 | movl (%esi), %eax | ||
| 1220 | movl 4(%esi), %ebx | ||
| 1221 | movl 8(%esi), %ecx | ||
| 1222 | movl 12(%esi), %edx | ||
| 1223 | movl 32(%esp), %edi | ||
| 1224 | call _x86_AES_decrypt | ||
| 1225 | movl 40(%esp), %edi | ||
| 1226 | movl 28(%esp), %esi | ||
| 1227 | xorl (%edi), %eax | ||
| 1228 | xorl 4(%edi), %ebx | ||
| 1229 | xorl 8(%edi), %ecx | ||
| 1230 | xorl 12(%edi), %edx | ||
| 1231 | subl $16, %esi | ||
| 1232 | jc .L019dec_partial | ||
| 1233 | movl %esi, 28(%esp) | ||
| 1234 | movl 20(%esp), %esi | ||
| 1235 | movl 24(%esp), %edi | ||
| 1236 | movl %eax, (%edi) | ||
| 1237 | movl %ebx, 4(%edi) | ||
| 1238 | movl %ecx, 8(%edi) | ||
| 1239 | movl %edx, 12(%edi) | ||
| 1240 | movl %esi, 40(%esp) | ||
| 1241 | leal 16(%esi), %esi | ||
| 1242 | movl %esi, 20(%esp) | ||
| 1243 | leal 16(%edi), %edi | ||
| 1244 | movl %edi, 24(%esp) | ||
| 1245 | jnz .L018dec_loop | ||
| 1246 | movl 40(%esp), %edi | ||
| 1247 | .L020dec_end: | ||
| 1248 | movl 36(%esp), %esi | ||
| 1249 | movl (%edi), %eax | ||
| 1250 | movl 4(%edi), %ebx | ||
| 1251 | movl 8(%edi), %ecx | ||
| 1252 | movl 12(%edi), %edx | ||
| 1253 | movl %eax, (%esi) | ||
| 1254 | movl %ebx, 4(%esi) | ||
| 1255 | movl %ecx, 8(%esi) | ||
| 1256 | movl %edx, 12(%esi) | ||
| 1257 | jmp .L021dec_out | ||
| 1258 | .align 4 | ||
| 1259 | .L019dec_partial: | ||
| 1260 | leal 44(%esp), %edi | ||
| 1261 | movl %eax, (%edi) | ||
| 1262 | movl %ebx, 4(%edi) | ||
| 1263 | movl %ecx, 8(%edi) | ||
| 1264 | movl %edx, 12(%edi) | ||
| 1265 | leal 16(%esi), %ecx | ||
| 1266 | movl %edi, %esi | ||
| 1267 | movl 24(%esp), %edi | ||
| 1268 | .long 4136215795 | ||
| 1269 | movl 20(%esp), %edi | ||
| 1270 | jmp .L020dec_end | ||
| 1271 | .align 4 | ||
| 1272 | .L017dec_in_place: | ||
| 1273 | .L022dec_in_place_loop: | ||
| 1274 | leal 44(%esp), %edi | ||
| 1275 | movl (%esi), %eax | ||
| 1276 | movl 4(%esi), %ebx | ||
| 1277 | movl 8(%esi), %ecx | ||
| 1278 | movl 12(%esi), %edx | ||
| 1279 | movl %eax, (%edi) | ||
| 1280 | movl %ebx, 4(%edi) | ||
| 1281 | movl %ecx, 8(%edi) | ||
| 1282 | movl %edx, 12(%edi) | ||
| 1283 | movl 32(%esp), %edi | ||
| 1284 | call _x86_AES_decrypt | ||
| 1285 | movl 36(%esp), %edi | ||
| 1286 | movl 24(%esp), %esi | ||
| 1287 | xorl (%edi), %eax | ||
| 1288 | xorl 4(%edi), %ebx | ||
| 1289 | xorl 8(%edi), %ecx | ||
| 1290 | xorl 12(%edi), %edx | ||
| 1291 | movl %eax, (%esi) | ||
| 1292 | movl %ebx, 4(%esi) | ||
| 1293 | movl %ecx, 8(%esi) | ||
| 1294 | movl %edx, 12(%esi) | ||
| 1295 | leal 16(%esi), %esi | ||
| 1296 | movl %esi, 24(%esp) | ||
| 1297 | leal 44(%esp), %esi | ||
| 1298 | movl (%esi), %eax | ||
| 1299 | movl 4(%esi), %ebx | ||
| 1300 | movl 8(%esi), %ecx | ||
| 1301 | movl 12(%esi), %edx | ||
| 1302 | movl %eax, (%edi) | ||
| 1303 | movl %ebx, 4(%edi) | ||
| 1304 | movl %ecx, 8(%edi) | ||
| 1305 | movl %edx, 12(%edi) | ||
| 1306 | movl 20(%esp), %esi | ||
| 1307 | leal 16(%esi), %esi | ||
| 1308 | movl %esi, 20(%esp) | ||
| 1309 | movl 28(%esp), %ecx | ||
| 1310 | subl $16, %ecx | ||
| 1311 | jc .L023dec_in_place_partial | ||
| 1312 | movl %ecx, 28(%esp) | ||
| 1313 | jnz .L022dec_in_place_loop | ||
| 1314 | jmp .L021dec_out | ||
| 1315 | .align 4 | ||
| 1316 | .L023dec_in_place_partial: | ||
| 1317 | movl 24(%esp), %edi | ||
| 1318 | leal 44(%esp), %esi | ||
| 1319 | leal (%edi,%ecx), %edi | ||
| 1320 | leal 16(%esi,%ecx), %esi | ||
| 1321 | negl %ecx | ||
| 1322 | .long 4136215795 | ||
| 1323 | .align 4 | ||
| 1324 | .L021dec_out: | ||
| 1325 | movl 32(%esp), %edi | ||
| 1326 | movl 16(%esp), %esp | ||
| 1327 | movl $60, %ecx | ||
| 1328 | xorl %eax, %eax | ||
| 1329 | .align 4 | ||
| 1330 | .long 4136217587 | ||
| 1331 | popfl | ||
| 1332 | popl %edi | ||
| 1333 | popl %esi | ||
| 1334 | popl %ebx | ||
| 1335 | popl %ebp | ||
| 1336 | ret | ||
| 1337 | .L_AES_cbc_encrypt_end: | ||
| 1338 | .size AES_cbc_encrypt,.L_AES_cbc_encrypt_end-AES_cbc_encrypt | ||
| 1339 | .ident "AES_cbc_encrypt" | ||
| 1340 | .globl AES_Te | ||
| 1341 | .text | ||
| 1342 | .globl AES_set_encrypt_key | ||
| 1343 | .type AES_set_encrypt_key,@function | ||
| 1344 | .align 16 | ||
| 1345 | AES_set_encrypt_key: | ||
| 1346 | pushl %ebp | ||
| 1347 | pushl %ebx | ||
| 1348 | pushl %esi | ||
| 1349 | pushl %edi | ||
| 1350 | |||
| 1351 | call FIPS_selftest_failed | ||
| 1352 | cmpl $0,%eax | ||
| 1353 | mov $-3,%eax | ||
| 1354 | jne .L029exit | ||
| 1355 | |||
| 1356 | movl 20(%esp), %esi | ||
| 1357 | movl 28(%esp), %edi | ||
| 1358 | testl $-1, %esi | ||
| 1359 | jz .L024badpointer | ||
| 1360 | testl $-1, %edi | ||
| 1361 | jz .L024badpointer | ||
| 1362 | call .L025pic_point | ||
| 1363 | .L025pic_point: | ||
| 1364 | popl %ebp | ||
| 1365 | leal AES_Te-.L025pic_point(%ebp),%ebp | ||
| 1366 | movl 24(%esp), %ecx | ||
| 1367 | cmpl $128, %ecx | ||
| 1368 | je .L02610rounds | ||
| 1369 | cmpl $192, %ecx | ||
| 1370 | je .L02712rounds | ||
| 1371 | cmpl $256, %ecx | ||
| 1372 | je .L02814rounds | ||
| 1373 | movl $-2, %eax | ||
| 1374 | jmp .L029exit | ||
| 1375 | .L02610rounds: | ||
| 1376 | movl (%esi), %eax | ||
| 1377 | movl 4(%esi), %ebx | ||
| 1378 | movl 8(%esi), %ecx | ||
| 1379 | movl 12(%esi), %edx | ||
| 1380 | movl %eax, (%edi) | ||
| 1381 | movl %ebx, 4(%edi) | ||
| 1382 | movl %ecx, 8(%edi) | ||
| 1383 | movl %edx, 12(%edi) | ||
| 1384 | xorl %ecx, %ecx | ||
| 1385 | jmp .L03010shortcut | ||
| 1386 | .align 4 | ||
| 1387 | .L03110loop: | ||
| 1388 | movl (%edi), %eax | ||
| 1389 | movl 12(%edi), %edx | ||
| 1390 | .L03010shortcut: | ||
| 1391 | movzbl %dl, %esi | ||
| 1392 | movl 2(%ebp,%esi,8), %ebx | ||
| 1393 | movzbl %dh, %esi | ||
| 1394 | andl $4278190080, %ebx | ||
| 1395 | xorl %ebx, %eax | ||
| 1396 | movl 2(%ebp,%esi,8), %ebx | ||
| 1397 | shrl $16, %edx | ||
| 1398 | andl $255, %ebx | ||
| 1399 | movzbl %dl, %esi | ||
| 1400 | xorl %ebx, %eax | ||
| 1401 | movl (%ebp,%esi,8), %ebx | ||
| 1402 | movzbl %dh, %esi | ||
| 1403 | andl $65280, %ebx | ||
| 1404 | xorl %ebx, %eax | ||
| 1405 | movl (%ebp,%esi,8), %ebx | ||
| 1406 | andl $16711680, %ebx | ||
| 1407 | xorl %ebx, %eax | ||
| 1408 | xorl 2048(%ebp,%ecx,4),%eax | ||
| 1409 | movl %eax, 16(%edi) | ||
| 1410 | xorl 4(%edi), %eax | ||
| 1411 | movl %eax, 20(%edi) | ||
| 1412 | xorl 8(%edi), %eax | ||
| 1413 | movl %eax, 24(%edi) | ||
| 1414 | xorl 12(%edi), %eax | ||
| 1415 | movl %eax, 28(%edi) | ||
| 1416 | incl %ecx | ||
| 1417 | addl $16, %edi | ||
| 1418 | cmpl $10, %ecx | ||
| 1419 | jl .L03110loop | ||
| 1420 | movl $10, 80(%edi) | ||
| 1421 | xorl %eax, %eax | ||
| 1422 | jmp .L029exit | ||
| 1423 | .L02712rounds: | ||
| 1424 | movl (%esi), %eax | ||
| 1425 | movl 4(%esi), %ebx | ||
| 1426 | movl 8(%esi), %ecx | ||
| 1427 | movl 12(%esi), %edx | ||
| 1428 | movl %eax, (%edi) | ||
| 1429 | movl %ebx, 4(%edi) | ||
| 1430 | movl %ecx, 8(%edi) | ||
| 1431 | movl %edx, 12(%edi) | ||
| 1432 | movl 16(%esi), %ecx | ||
| 1433 | movl 20(%esi), %edx | ||
| 1434 | movl %ecx, 16(%edi) | ||
| 1435 | movl %edx, 20(%edi) | ||
| 1436 | xorl %ecx, %ecx | ||
| 1437 | jmp .L03212shortcut | ||
| 1438 | .align 4 | ||
| 1439 | .L03312loop: | ||
| 1440 | movl (%edi), %eax | ||
| 1441 | movl 20(%edi), %edx | ||
| 1442 | .L03212shortcut: | ||
| 1443 | movzbl %dl, %esi | ||
| 1444 | movl 2(%ebp,%esi,8), %ebx | ||
| 1445 | movzbl %dh, %esi | ||
| 1446 | andl $4278190080, %ebx | ||
| 1447 | xorl %ebx, %eax | ||
| 1448 | movl 2(%ebp,%esi,8), %ebx | ||
| 1449 | shrl $16, %edx | ||
| 1450 | andl $255, %ebx | ||
| 1451 | movzbl %dl, %esi | ||
| 1452 | xorl %ebx, %eax | ||
| 1453 | movl (%ebp,%esi,8), %ebx | ||
| 1454 | movzbl %dh, %esi | ||
| 1455 | andl $65280, %ebx | ||
| 1456 | xorl %ebx, %eax | ||
| 1457 | movl (%ebp,%esi,8), %ebx | ||
| 1458 | andl $16711680, %ebx | ||
| 1459 | xorl %ebx, %eax | ||
| 1460 | xorl 2048(%ebp,%ecx,4),%eax | ||
| 1461 | movl %eax, 24(%edi) | ||
| 1462 | xorl 4(%edi), %eax | ||
| 1463 | movl %eax, 28(%edi) | ||
| 1464 | xorl 8(%edi), %eax | ||
| 1465 | movl %eax, 32(%edi) | ||
| 1466 | xorl 12(%edi), %eax | ||
| 1467 | movl %eax, 36(%edi) | ||
| 1468 | cmpl $7, %ecx | ||
| 1469 | je .L03412break | ||
| 1470 | incl %ecx | ||
| 1471 | xorl 16(%edi), %eax | ||
| 1472 | movl %eax, 40(%edi) | ||
| 1473 | xorl 20(%edi), %eax | ||
| 1474 | movl %eax, 44(%edi) | ||
| 1475 | addl $24, %edi | ||
| 1476 | jmp .L03312loop | ||
| 1477 | .L03412break: | ||
| 1478 | movl $12, 72(%edi) | ||
| 1479 | xorl %eax, %eax | ||
| 1480 | jmp .L029exit | ||
| 1481 | .L02814rounds: | ||
| 1482 | movl (%esi), %eax | ||
| 1483 | movl 4(%esi), %ebx | ||
| 1484 | movl 8(%esi), %ecx | ||
| 1485 | movl 12(%esi), %edx | ||
| 1486 | movl %eax, (%edi) | ||
| 1487 | movl %ebx, 4(%edi) | ||
| 1488 | movl %ecx, 8(%edi) | ||
| 1489 | movl %edx, 12(%edi) | ||
| 1490 | movl 16(%esi), %eax | ||
| 1491 | movl 20(%esi), %ebx | ||
| 1492 | movl 24(%esi), %ecx | ||
| 1493 | movl 28(%esi), %edx | ||
| 1494 | movl %eax, 16(%edi) | ||
| 1495 | movl %ebx, 20(%edi) | ||
| 1496 | movl %ecx, 24(%edi) | ||
| 1497 | movl %edx, 28(%edi) | ||
| 1498 | xorl %ecx, %ecx | ||
| 1499 | jmp .L03514shortcut | ||
| 1500 | .align 4 | ||
| 1501 | .L03614loop: | ||
| 1502 | movl 28(%edi), %edx | ||
| 1503 | .L03514shortcut: | ||
| 1504 | movl (%edi), %eax | ||
| 1505 | movzbl %dl, %esi | ||
| 1506 | movl 2(%ebp,%esi,8), %ebx | ||
| 1507 | movzbl %dh, %esi | ||
| 1508 | andl $4278190080, %ebx | ||
| 1509 | xorl %ebx, %eax | ||
| 1510 | movl 2(%ebp,%esi,8), %ebx | ||
| 1511 | shrl $16, %edx | ||
| 1512 | andl $255, %ebx | ||
| 1513 | movzbl %dl, %esi | ||
| 1514 | xorl %ebx, %eax | ||
| 1515 | movl (%ebp,%esi,8), %ebx | ||
| 1516 | movzbl %dh, %esi | ||
| 1517 | andl $65280, %ebx | ||
| 1518 | xorl %ebx, %eax | ||
| 1519 | movl (%ebp,%esi,8), %ebx | ||
| 1520 | andl $16711680, %ebx | ||
| 1521 | xorl %ebx, %eax | ||
| 1522 | xorl 2048(%ebp,%ecx,4),%eax | ||
| 1523 | movl %eax, 32(%edi) | ||
| 1524 | xorl 4(%edi), %eax | ||
| 1525 | movl %eax, 36(%edi) | ||
| 1526 | xorl 8(%edi), %eax | ||
| 1527 | movl %eax, 40(%edi) | ||
| 1528 | xorl 12(%edi), %eax | ||
| 1529 | movl %eax, 44(%edi) | ||
| 1530 | cmpl $6, %ecx | ||
| 1531 | je .L03714break | ||
| 1532 | incl %ecx | ||
| 1533 | movl %eax, %edx | ||
| 1534 | movl 16(%edi), %eax | ||
| 1535 | movzbl %dl, %esi | ||
| 1536 | movl 2(%ebp,%esi,8), %ebx | ||
| 1537 | movzbl %dh, %esi | ||
| 1538 | andl $255, %ebx | ||
| 1539 | xorl %ebx, %eax | ||
| 1540 | movl (%ebp,%esi,8), %ebx | ||
| 1541 | shrl $16, %edx | ||
| 1542 | andl $65280, %ebx | ||
| 1543 | movzbl %dl, %esi | ||
| 1544 | xorl %ebx, %eax | ||
| 1545 | movl (%ebp,%esi,8), %ebx | ||
| 1546 | movzbl %dh, %esi | ||
| 1547 | andl $16711680, %ebx | ||
| 1548 | xorl %ebx, %eax | ||
| 1549 | movl 2(%ebp,%esi,8), %ebx | ||
| 1550 | andl $4278190080, %ebx | ||
| 1551 | xorl %ebx, %eax | ||
| 1552 | movl %eax, 48(%edi) | ||
| 1553 | xorl 20(%edi), %eax | ||
| 1554 | movl %eax, 52(%edi) | ||
| 1555 | xorl 24(%edi), %eax | ||
| 1556 | movl %eax, 56(%edi) | ||
| 1557 | xorl 28(%edi), %eax | ||
| 1558 | movl %eax, 60(%edi) | ||
| 1559 | addl $32, %edi | ||
| 1560 | jmp .L03614loop | ||
| 1561 | .L03714break: | ||
| 1562 | movl $14, 48(%edi) | ||
| 1563 | xorl %eax, %eax | ||
| 1564 | jmp .L029exit | ||
| 1565 | .L024badpointer: | ||
| 1566 | movl $-1, %eax | ||
| 1567 | .L029exit: | ||
| 1568 | popl %edi | ||
| 1569 | popl %esi | ||
| 1570 | popl %ebx | ||
| 1571 | popl %ebp | ||
| 1572 | ret | ||
| 1573 | .L_AES_set_encrypt_key_end: | ||
| 1574 | .size AES_set_encrypt_key,.L_AES_set_encrypt_key_end-AES_set_encrypt_key | ||
| 1575 | .ident "AES_set_encrypt_key" | ||
| 1576 | .globl AES_Td | ||
| 1577 | .globl AES_Te | ||
| 1578 | .text | ||
| 1579 | .globl AES_set_decrypt_key | ||
| 1580 | .type AES_set_decrypt_key,@function | ||
| 1581 | .align 16 | ||
| 1582 | AES_set_decrypt_key: | ||
| 1583 | movl 4(%esp), %eax | ||
| 1584 | movl 8(%esp), %ecx | ||
| 1585 | movl 12(%esp), %edx | ||
| 1586 | subl $12, %esp | ||
| 1587 | movl %eax, (%esp) | ||
| 1588 | movl %ecx, 4(%esp) | ||
| 1589 | movl %edx, 8(%esp) | ||
| 1590 | call AES_set_encrypt_key | ||
| 1591 | addl $12, %esp | ||
| 1592 | cmpl $0, %eax | ||
| 1593 | je .L038proceed | ||
| 1594 | ret | ||
| 1595 | .L038proceed: | ||
| 1596 | pushl %ebp | ||
| 1597 | pushl %ebx | ||
| 1598 | pushl %esi | ||
| 1599 | pushl %edi | ||
| 1600 | movl 28(%esp), %esi | ||
| 1601 | movl 240(%esi), %ecx | ||
| 1602 | leal (,%ecx,4), %ecx | ||
| 1603 | leal (%esi,%ecx,4), %edi | ||
| 1604 | .align 4 | ||
| 1605 | .L039invert: | ||
| 1606 | movl (%esi), %eax | ||
| 1607 | movl 4(%esi), %ebx | ||
| 1608 | movl (%edi), %ecx | ||
| 1609 | movl 4(%edi), %edx | ||
| 1610 | movl %eax, (%edi) | ||
| 1611 | movl %ebx, 4(%edi) | ||
| 1612 | movl %ecx, (%esi) | ||
| 1613 | movl %edx, 4(%esi) | ||
| 1614 | movl 8(%esi), %eax | ||
| 1615 | movl 12(%esi), %ebx | ||
| 1616 | movl 8(%edi), %ecx | ||
| 1617 | movl 12(%edi), %edx | ||
| 1618 | movl %eax, 8(%edi) | ||
| 1619 | movl %ebx, 12(%edi) | ||
| 1620 | movl %ecx, 8(%esi) | ||
| 1621 | movl %edx, 12(%esi) | ||
| 1622 | addl $16, %esi | ||
| 1623 | subl $16, %edi | ||
| 1624 | cmpl %edi, %esi | ||
| 1625 | jne .L039invert | ||
| 1626 | call .L040pic_point | ||
| 1627 | .L040pic_point: | ||
| 1628 | popl %ebp | ||
| 1629 | leal AES_Td-.L040pic_point(%ebp),%edi | ||
| 1630 | leal AES_Te-.L040pic_point(%ebp),%ebp | ||
| 1631 | movl 28(%esp), %esi | ||
| 1632 | movl 240(%esi), %ecx | ||
| 1633 | decl %ecx | ||
| 1634 | .align 4 | ||
| 1635 | .L041permute: | ||
| 1636 | addl $16, %esi | ||
| 1637 | movl (%esi), %eax | ||
| 1638 | movl %eax, %edx | ||
| 1639 | movzbl %ah, %ebx | ||
| 1640 | shrl $16, %edx | ||
| 1641 | andl $255, %eax | ||
| 1642 | movzbl 2(%ebp,%eax,8), %eax | ||
| 1643 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1644 | movl (%edi,%eax,8), %eax | ||
| 1645 | xorl 3(%edi,%ebx,8), %eax | ||
| 1646 | movzbl %dh, %ebx | ||
| 1647 | andl $255, %edx | ||
| 1648 | movzbl 2(%ebp,%edx,8), %edx | ||
| 1649 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1650 | xorl 2(%edi,%edx,8), %eax | ||
| 1651 | xorl 1(%edi,%ebx,8), %eax | ||
| 1652 | movl %eax, (%esi) | ||
| 1653 | movl 4(%esi), %eax | ||
| 1654 | movl %eax, %edx | ||
| 1655 | movzbl %ah, %ebx | ||
| 1656 | shrl $16, %edx | ||
| 1657 | andl $255, %eax | ||
| 1658 | movzbl 2(%ebp,%eax,8), %eax | ||
| 1659 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1660 | movl (%edi,%eax,8), %eax | ||
| 1661 | xorl 3(%edi,%ebx,8), %eax | ||
| 1662 | movzbl %dh, %ebx | ||
| 1663 | andl $255, %edx | ||
| 1664 | movzbl 2(%ebp,%edx,8), %edx | ||
| 1665 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1666 | xorl 2(%edi,%edx,8), %eax | ||
| 1667 | xorl 1(%edi,%ebx,8), %eax | ||
| 1668 | movl %eax, 4(%esi) | ||
| 1669 | movl 8(%esi), %eax | ||
| 1670 | movl %eax, %edx | ||
| 1671 | movzbl %ah, %ebx | ||
| 1672 | shrl $16, %edx | ||
| 1673 | andl $255, %eax | ||
| 1674 | movzbl 2(%ebp,%eax,8), %eax | ||
| 1675 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1676 | movl (%edi,%eax,8), %eax | ||
| 1677 | xorl 3(%edi,%ebx,8), %eax | ||
| 1678 | movzbl %dh, %ebx | ||
| 1679 | andl $255, %edx | ||
| 1680 | movzbl 2(%ebp,%edx,8), %edx | ||
| 1681 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1682 | xorl 2(%edi,%edx,8), %eax | ||
| 1683 | xorl 1(%edi,%ebx,8), %eax | ||
| 1684 | movl %eax, 8(%esi) | ||
| 1685 | movl 12(%esi), %eax | ||
| 1686 | movl %eax, %edx | ||
| 1687 | movzbl %ah, %ebx | ||
| 1688 | shrl $16, %edx | ||
| 1689 | andl $255, %eax | ||
| 1690 | movzbl 2(%ebp,%eax,8), %eax | ||
| 1691 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1692 | movl (%edi,%eax,8), %eax | ||
| 1693 | xorl 3(%edi,%ebx,8), %eax | ||
| 1694 | movzbl %dh, %ebx | ||
| 1695 | andl $255, %edx | ||
| 1696 | movzbl 2(%ebp,%edx,8), %edx | ||
| 1697 | movzbl 2(%ebp,%ebx,8), %ebx | ||
| 1698 | xorl 2(%edi,%edx,8), %eax | ||
| 1699 | xorl 1(%edi,%ebx,8), %eax | ||
| 1700 | movl %eax, 12(%esi) | ||
| 1701 | decl %ecx | ||
| 1702 | jnz .L041permute | ||
| 1703 | xorl %eax, %eax | ||
| 1704 | popl %edi | ||
| 1705 | popl %esi | ||
| 1706 | popl %ebx | ||
| 1707 | popl %ebp | ||
| 1708 | ret | ||
| 1709 | .L_AES_set_decrypt_key_end: | ||
| 1710 | .size AES_set_decrypt_key,.L_AES_set_decrypt_key_end-AES_set_decrypt_key | ||
| 1711 | .ident "AES_set_decrypt_key" | ||
diff --git a/src/lib/libssl/src/fips-1.0/aes/fips_aes_core.c b/src/lib/libssl/src/fips-1.0/aes/fips_aes_core.c deleted file mode 100644 index 82199c92e6..0000000000 --- a/src/lib/libssl/src/fips-1.0/aes/fips_aes_core.c +++ /dev/null | |||
| @@ -1,1263 +0,0 @@ | |||
| 1 | /* crypto/aes/aes_core.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /** | ||
| 3 | * rijndael-alg-fst.c | ||
| 4 | * | ||
| 5 | * @version 3.0 (December 2000) | ||
| 6 | * | ||
| 7 | * Optimised ANSI C code for the Rijndael cipher (now AES) | ||
| 8 | * | ||
| 9 | * @author Vincent Rijmen <vincent.rijmen@esat.kuleuven.ac.be> | ||
| 10 | * @author Antoon Bosselaers <antoon.bosselaers@esat.kuleuven.ac.be> | ||
| 11 | * @author Paulo Barreto <paulo.barreto@terra.com.br> | ||
| 12 | * | ||
| 13 | * This code is hereby placed in the public domain. | ||
| 14 | * | ||
| 15 | * THIS SOFTWARE IS PROVIDED BY THE AUTHORS ''AS IS'' AND ANY EXPRESS | ||
| 16 | * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED | ||
| 17 | * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 18 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE | ||
| 19 | * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR | ||
| 20 | * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF | ||
| 21 | * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR | ||
| 22 | * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, | ||
| 23 | * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE | ||
| 24 | * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, | ||
| 25 | * EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 26 | */ | ||
| 27 | |||
| 28 | /* Note: rewritten a little bit to provide error control and an OpenSSL- | ||
| 29 | compatible API */ | ||
| 30 | |||
| 31 | #ifndef AES_DEBUG | ||
| 32 | # ifndef NDEBUG | ||
| 33 | # define NDEBUG | ||
| 34 | # endif | ||
| 35 | #endif | ||
| 36 | #include <assert.h> | ||
| 37 | |||
| 38 | #include <stdlib.h> | ||
| 39 | #include <openssl/aes.h> | ||
| 40 | #include "fips_aes_locl.h" | ||
| 41 | #include <openssl/fips.h> | ||
| 42 | |||
| 43 | #ifdef OPENSSL_FIPS | ||
| 44 | |||
| 45 | /* | ||
| 46 | Te0[x] = S [x].[02, 01, 01, 03]; | ||
| 47 | Te1[x] = S [x].[03, 02, 01, 01]; | ||
| 48 | Te2[x] = S [x].[01, 03, 02, 01]; | ||
| 49 | Te3[x] = S [x].[01, 01, 03, 02]; | ||
| 50 | Te4[x] = S [x].[01, 01, 01, 01]; | ||
| 51 | |||
| 52 | Td0[x] = Si[x].[0e, 09, 0d, 0b]; | ||
| 53 | Td1[x] = Si[x].[0b, 0e, 09, 0d]; | ||
| 54 | Td2[x] = Si[x].[0d, 0b, 0e, 09]; | ||
| 55 | Td3[x] = Si[x].[09, 0d, 0b, 0e]; | ||
| 56 | Td4[x] = Si[x].[01, 01, 01, 01]; | ||
| 57 | */ | ||
| 58 | |||
| 59 | static const u32 Te0[256] = { | ||
| 60 | 0xc66363a5U, 0xf87c7c84U, 0xee777799U, 0xf67b7b8dU, | ||
| 61 | 0xfff2f20dU, 0xd66b6bbdU, 0xde6f6fb1U, 0x91c5c554U, | ||
| 62 | 0x60303050U, 0x02010103U, 0xce6767a9U, 0x562b2b7dU, | ||
| 63 | 0xe7fefe19U, 0xb5d7d762U, 0x4dababe6U, 0xec76769aU, | ||
| 64 | 0x8fcaca45U, 0x1f82829dU, 0x89c9c940U, 0xfa7d7d87U, | ||
| 65 | 0xeffafa15U, 0xb25959ebU, 0x8e4747c9U, 0xfbf0f00bU, | ||
| 66 | 0x41adadecU, 0xb3d4d467U, 0x5fa2a2fdU, 0x45afafeaU, | ||
| 67 | 0x239c9cbfU, 0x53a4a4f7U, 0xe4727296U, 0x9bc0c05bU, | ||
| 68 | 0x75b7b7c2U, 0xe1fdfd1cU, 0x3d9393aeU, 0x4c26266aU, | ||
| 69 | 0x6c36365aU, 0x7e3f3f41U, 0xf5f7f702U, 0x83cccc4fU, | ||
| 70 | 0x6834345cU, 0x51a5a5f4U, 0xd1e5e534U, 0xf9f1f108U, | ||
| 71 | 0xe2717193U, 0xabd8d873U, 0x62313153U, 0x2a15153fU, | ||
| 72 | 0x0804040cU, 0x95c7c752U, 0x46232365U, 0x9dc3c35eU, | ||
| 73 | 0x30181828U, 0x379696a1U, 0x0a05050fU, 0x2f9a9ab5U, | ||
| 74 | 0x0e070709U, 0x24121236U, 0x1b80809bU, 0xdfe2e23dU, | ||
| 75 | 0xcdebeb26U, 0x4e272769U, 0x7fb2b2cdU, 0xea75759fU, | ||
| 76 | 0x1209091bU, 0x1d83839eU, 0x582c2c74U, 0x341a1a2eU, | ||
| 77 | 0x361b1b2dU, 0xdc6e6eb2U, 0xb45a5aeeU, 0x5ba0a0fbU, | ||
| 78 | 0xa45252f6U, 0x763b3b4dU, 0xb7d6d661U, 0x7db3b3ceU, | ||
| 79 | 0x5229297bU, 0xdde3e33eU, 0x5e2f2f71U, 0x13848497U, | ||
| 80 | 0xa65353f5U, 0xb9d1d168U, 0x00000000U, 0xc1eded2cU, | ||
| 81 | 0x40202060U, 0xe3fcfc1fU, 0x79b1b1c8U, 0xb65b5bedU, | ||
| 82 | 0xd46a6abeU, 0x8dcbcb46U, 0x67bebed9U, 0x7239394bU, | ||
| 83 | 0x944a4adeU, 0x984c4cd4U, 0xb05858e8U, 0x85cfcf4aU, | ||
| 84 | 0xbbd0d06bU, 0xc5efef2aU, 0x4faaaae5U, 0xedfbfb16U, | ||
| 85 | 0x864343c5U, 0x9a4d4dd7U, 0x66333355U, 0x11858594U, | ||
| 86 | 0x8a4545cfU, 0xe9f9f910U, 0x04020206U, 0xfe7f7f81U, | ||
| 87 | 0xa05050f0U, 0x783c3c44U, 0x259f9fbaU, 0x4ba8a8e3U, | ||
| 88 | 0xa25151f3U, 0x5da3a3feU, 0x804040c0U, 0x058f8f8aU, | ||
| 89 | 0x3f9292adU, 0x219d9dbcU, 0x70383848U, 0xf1f5f504U, | ||
| 90 | 0x63bcbcdfU, 0x77b6b6c1U, 0xafdada75U, 0x42212163U, | ||
| 91 | 0x20101030U, 0xe5ffff1aU, 0xfdf3f30eU, 0xbfd2d26dU, | ||
| 92 | 0x81cdcd4cU, 0x180c0c14U, 0x26131335U, 0xc3ecec2fU, | ||
| 93 | 0xbe5f5fe1U, 0x359797a2U, 0x884444ccU, 0x2e171739U, | ||
| 94 | 0x93c4c457U, 0x55a7a7f2U, 0xfc7e7e82U, 0x7a3d3d47U, | ||
| 95 | 0xc86464acU, 0xba5d5de7U, 0x3219192bU, 0xe6737395U, | ||
| 96 | 0xc06060a0U, 0x19818198U, 0x9e4f4fd1U, 0xa3dcdc7fU, | ||
| 97 | 0x44222266U, 0x542a2a7eU, 0x3b9090abU, 0x0b888883U, | ||
| 98 | 0x8c4646caU, 0xc7eeee29U, 0x6bb8b8d3U, 0x2814143cU, | ||
| 99 | 0xa7dede79U, 0xbc5e5ee2U, 0x160b0b1dU, 0xaddbdb76U, | ||
| 100 | 0xdbe0e03bU, 0x64323256U, 0x743a3a4eU, 0x140a0a1eU, | ||
| 101 | 0x924949dbU, 0x0c06060aU, 0x4824246cU, 0xb85c5ce4U, | ||
| 102 | 0x9fc2c25dU, 0xbdd3d36eU, 0x43acacefU, 0xc46262a6U, | ||
| 103 | 0x399191a8U, 0x319595a4U, 0xd3e4e437U, 0xf279798bU, | ||
| 104 | 0xd5e7e732U, 0x8bc8c843U, 0x6e373759U, 0xda6d6db7U, | ||
| 105 | 0x018d8d8cU, 0xb1d5d564U, 0x9c4e4ed2U, 0x49a9a9e0U, | ||
| 106 | 0xd86c6cb4U, 0xac5656faU, 0xf3f4f407U, 0xcfeaea25U, | ||
| 107 | 0xca6565afU, 0xf47a7a8eU, 0x47aeaee9U, 0x10080818U, | ||
| 108 | 0x6fbabad5U, 0xf0787888U, 0x4a25256fU, 0x5c2e2e72U, | ||
| 109 | 0x381c1c24U, 0x57a6a6f1U, 0x73b4b4c7U, 0x97c6c651U, | ||
| 110 | 0xcbe8e823U, 0xa1dddd7cU, 0xe874749cU, 0x3e1f1f21U, | ||
| 111 | 0x964b4bddU, 0x61bdbddcU, 0x0d8b8b86U, 0x0f8a8a85U, | ||
| 112 | 0xe0707090U, 0x7c3e3e42U, 0x71b5b5c4U, 0xcc6666aaU, | ||
| 113 | 0x904848d8U, 0x06030305U, 0xf7f6f601U, 0x1c0e0e12U, | ||
| 114 | 0xc26161a3U, 0x6a35355fU, 0xae5757f9U, 0x69b9b9d0U, | ||
| 115 | 0x17868691U, 0x99c1c158U, 0x3a1d1d27U, 0x279e9eb9U, | ||
| 116 | 0xd9e1e138U, 0xebf8f813U, 0x2b9898b3U, 0x22111133U, | ||
| 117 | 0xd26969bbU, 0xa9d9d970U, 0x078e8e89U, 0x339494a7U, | ||
| 118 | 0x2d9b9bb6U, 0x3c1e1e22U, 0x15878792U, 0xc9e9e920U, | ||
| 119 | 0x87cece49U, 0xaa5555ffU, 0x50282878U, 0xa5dfdf7aU, | ||
| 120 | 0x038c8c8fU, 0x59a1a1f8U, 0x09898980U, 0x1a0d0d17U, | ||
| 121 | 0x65bfbfdaU, 0xd7e6e631U, 0x844242c6U, 0xd06868b8U, | ||
| 122 | 0x824141c3U, 0x299999b0U, 0x5a2d2d77U, 0x1e0f0f11U, | ||
| 123 | 0x7bb0b0cbU, 0xa85454fcU, 0x6dbbbbd6U, 0x2c16163aU, | ||
| 124 | }; | ||
| 125 | static const u32 Te1[256] = { | ||
| 126 | 0xa5c66363U, 0x84f87c7cU, 0x99ee7777U, 0x8df67b7bU, | ||
| 127 | 0x0dfff2f2U, 0xbdd66b6bU, 0xb1de6f6fU, 0x5491c5c5U, | ||
| 128 | 0x50603030U, 0x03020101U, 0xa9ce6767U, 0x7d562b2bU, | ||
| 129 | 0x19e7fefeU, 0x62b5d7d7U, 0xe64dababU, 0x9aec7676U, | ||
| 130 | 0x458fcacaU, 0x9d1f8282U, 0x4089c9c9U, 0x87fa7d7dU, | ||
| 131 | 0x15effafaU, 0xebb25959U, 0xc98e4747U, 0x0bfbf0f0U, | ||
| 132 | 0xec41adadU, 0x67b3d4d4U, 0xfd5fa2a2U, 0xea45afafU, | ||
| 133 | 0xbf239c9cU, 0xf753a4a4U, 0x96e47272U, 0x5b9bc0c0U, | ||
| 134 | 0xc275b7b7U, 0x1ce1fdfdU, 0xae3d9393U, 0x6a4c2626U, | ||
| 135 | 0x5a6c3636U, 0x417e3f3fU, 0x02f5f7f7U, 0x4f83ccccU, | ||
| 136 | 0x5c683434U, 0xf451a5a5U, 0x34d1e5e5U, 0x08f9f1f1U, | ||
| 137 | 0x93e27171U, 0x73abd8d8U, 0x53623131U, 0x3f2a1515U, | ||
| 138 | 0x0c080404U, 0x5295c7c7U, 0x65462323U, 0x5e9dc3c3U, | ||
| 139 | 0x28301818U, 0xa1379696U, 0x0f0a0505U, 0xb52f9a9aU, | ||
| 140 | 0x090e0707U, 0x36241212U, 0x9b1b8080U, 0x3ddfe2e2U, | ||
| 141 | 0x26cdebebU, 0x694e2727U, 0xcd7fb2b2U, 0x9fea7575U, | ||
| 142 | 0x1b120909U, 0x9e1d8383U, 0x74582c2cU, 0x2e341a1aU, | ||
| 143 | 0x2d361b1bU, 0xb2dc6e6eU, 0xeeb45a5aU, 0xfb5ba0a0U, | ||
| 144 | 0xf6a45252U, 0x4d763b3bU, 0x61b7d6d6U, 0xce7db3b3U, | ||
| 145 | 0x7b522929U, 0x3edde3e3U, 0x715e2f2fU, 0x97138484U, | ||
| 146 | 0xf5a65353U, 0x68b9d1d1U, 0x00000000U, 0x2cc1ededU, | ||
| 147 | 0x60402020U, 0x1fe3fcfcU, 0xc879b1b1U, 0xedb65b5bU, | ||
| 148 | 0xbed46a6aU, 0x468dcbcbU, 0xd967bebeU, 0x4b723939U, | ||
| 149 | 0xde944a4aU, 0xd4984c4cU, 0xe8b05858U, 0x4a85cfcfU, | ||
| 150 | 0x6bbbd0d0U, 0x2ac5efefU, 0xe54faaaaU, 0x16edfbfbU, | ||
| 151 | 0xc5864343U, 0xd79a4d4dU, 0x55663333U, 0x94118585U, | ||
| 152 | 0xcf8a4545U, 0x10e9f9f9U, 0x06040202U, 0x81fe7f7fU, | ||
| 153 | 0xf0a05050U, 0x44783c3cU, 0xba259f9fU, 0xe34ba8a8U, | ||
| 154 | 0xf3a25151U, 0xfe5da3a3U, 0xc0804040U, 0x8a058f8fU, | ||
| 155 | 0xad3f9292U, 0xbc219d9dU, 0x48703838U, 0x04f1f5f5U, | ||
| 156 | 0xdf63bcbcU, 0xc177b6b6U, 0x75afdadaU, 0x63422121U, | ||
| 157 | 0x30201010U, 0x1ae5ffffU, 0x0efdf3f3U, 0x6dbfd2d2U, | ||
| 158 | 0x4c81cdcdU, 0x14180c0cU, 0x35261313U, 0x2fc3ececU, | ||
| 159 | 0xe1be5f5fU, 0xa2359797U, 0xcc884444U, 0x392e1717U, | ||
| 160 | 0x5793c4c4U, 0xf255a7a7U, 0x82fc7e7eU, 0x477a3d3dU, | ||
| 161 | 0xacc86464U, 0xe7ba5d5dU, 0x2b321919U, 0x95e67373U, | ||
| 162 | 0xa0c06060U, 0x98198181U, 0xd19e4f4fU, 0x7fa3dcdcU, | ||
| 163 | 0x66442222U, 0x7e542a2aU, 0xab3b9090U, 0x830b8888U, | ||
| 164 | 0xca8c4646U, 0x29c7eeeeU, 0xd36bb8b8U, 0x3c281414U, | ||
| 165 | 0x79a7dedeU, 0xe2bc5e5eU, 0x1d160b0bU, 0x76addbdbU, | ||
| 166 | 0x3bdbe0e0U, 0x56643232U, 0x4e743a3aU, 0x1e140a0aU, | ||
| 167 | 0xdb924949U, 0x0a0c0606U, 0x6c482424U, 0xe4b85c5cU, | ||
| 168 | 0x5d9fc2c2U, 0x6ebdd3d3U, 0xef43acacU, 0xa6c46262U, | ||
| 169 | 0xa8399191U, 0xa4319595U, 0x37d3e4e4U, 0x8bf27979U, | ||
| 170 | 0x32d5e7e7U, 0x438bc8c8U, 0x596e3737U, 0xb7da6d6dU, | ||
| 171 | 0x8c018d8dU, 0x64b1d5d5U, 0xd29c4e4eU, 0xe049a9a9U, | ||
| 172 | 0xb4d86c6cU, 0xfaac5656U, 0x07f3f4f4U, 0x25cfeaeaU, | ||
| 173 | 0xafca6565U, 0x8ef47a7aU, 0xe947aeaeU, 0x18100808U, | ||
| 174 | 0xd56fbabaU, 0x88f07878U, 0x6f4a2525U, 0x725c2e2eU, | ||
| 175 | 0x24381c1cU, 0xf157a6a6U, 0xc773b4b4U, 0x5197c6c6U, | ||
| 176 | 0x23cbe8e8U, 0x7ca1ddddU, 0x9ce87474U, 0x213e1f1fU, | ||
| 177 | 0xdd964b4bU, 0xdc61bdbdU, 0x860d8b8bU, 0x850f8a8aU, | ||
| 178 | 0x90e07070U, 0x427c3e3eU, 0xc471b5b5U, 0xaacc6666U, | ||
| 179 | 0xd8904848U, 0x05060303U, 0x01f7f6f6U, 0x121c0e0eU, | ||
| 180 | 0xa3c26161U, 0x5f6a3535U, 0xf9ae5757U, 0xd069b9b9U, | ||
| 181 | 0x91178686U, 0x5899c1c1U, 0x273a1d1dU, 0xb9279e9eU, | ||
| 182 | 0x38d9e1e1U, 0x13ebf8f8U, 0xb32b9898U, 0x33221111U, | ||
| 183 | 0xbbd26969U, 0x70a9d9d9U, 0x89078e8eU, 0xa7339494U, | ||
| 184 | 0xb62d9b9bU, 0x223c1e1eU, 0x92158787U, 0x20c9e9e9U, | ||
| 185 | 0x4987ceceU, 0xffaa5555U, 0x78502828U, 0x7aa5dfdfU, | ||
| 186 | 0x8f038c8cU, 0xf859a1a1U, 0x80098989U, 0x171a0d0dU, | ||
| 187 | 0xda65bfbfU, 0x31d7e6e6U, 0xc6844242U, 0xb8d06868U, | ||
| 188 | 0xc3824141U, 0xb0299999U, 0x775a2d2dU, 0x111e0f0fU, | ||
| 189 | 0xcb7bb0b0U, 0xfca85454U, 0xd66dbbbbU, 0x3a2c1616U, | ||
| 190 | }; | ||
| 191 | static const u32 Te2[256] = { | ||
| 192 | 0x63a5c663U, 0x7c84f87cU, 0x7799ee77U, 0x7b8df67bU, | ||
| 193 | 0xf20dfff2U, 0x6bbdd66bU, 0x6fb1de6fU, 0xc55491c5U, | ||
| 194 | 0x30506030U, 0x01030201U, 0x67a9ce67U, 0x2b7d562bU, | ||
| 195 | 0xfe19e7feU, 0xd762b5d7U, 0xabe64dabU, 0x769aec76U, | ||
| 196 | 0xca458fcaU, 0x829d1f82U, 0xc94089c9U, 0x7d87fa7dU, | ||
| 197 | 0xfa15effaU, 0x59ebb259U, 0x47c98e47U, 0xf00bfbf0U, | ||
| 198 | 0xadec41adU, 0xd467b3d4U, 0xa2fd5fa2U, 0xafea45afU, | ||
| 199 | 0x9cbf239cU, 0xa4f753a4U, 0x7296e472U, 0xc05b9bc0U, | ||
| 200 | 0xb7c275b7U, 0xfd1ce1fdU, 0x93ae3d93U, 0x266a4c26U, | ||
| 201 | 0x365a6c36U, 0x3f417e3fU, 0xf702f5f7U, 0xcc4f83ccU, | ||
| 202 | 0x345c6834U, 0xa5f451a5U, 0xe534d1e5U, 0xf108f9f1U, | ||
| 203 | 0x7193e271U, 0xd873abd8U, 0x31536231U, 0x153f2a15U, | ||
| 204 | 0x040c0804U, 0xc75295c7U, 0x23654623U, 0xc35e9dc3U, | ||
| 205 | 0x18283018U, 0x96a13796U, 0x050f0a05U, 0x9ab52f9aU, | ||
| 206 | 0x07090e07U, 0x12362412U, 0x809b1b80U, 0xe23ddfe2U, | ||
| 207 | 0xeb26cdebU, 0x27694e27U, 0xb2cd7fb2U, 0x759fea75U, | ||
| 208 | 0x091b1209U, 0x839e1d83U, 0x2c74582cU, 0x1a2e341aU, | ||
| 209 | 0x1b2d361bU, 0x6eb2dc6eU, 0x5aeeb45aU, 0xa0fb5ba0U, | ||
| 210 | 0x52f6a452U, 0x3b4d763bU, 0xd661b7d6U, 0xb3ce7db3U, | ||
| 211 | 0x297b5229U, 0xe33edde3U, 0x2f715e2fU, 0x84971384U, | ||
| 212 | 0x53f5a653U, 0xd168b9d1U, 0x00000000U, 0xed2cc1edU, | ||
| 213 | 0x20604020U, 0xfc1fe3fcU, 0xb1c879b1U, 0x5bedb65bU, | ||
| 214 | 0x6abed46aU, 0xcb468dcbU, 0xbed967beU, 0x394b7239U, | ||
| 215 | 0x4ade944aU, 0x4cd4984cU, 0x58e8b058U, 0xcf4a85cfU, | ||
| 216 | 0xd06bbbd0U, 0xef2ac5efU, 0xaae54faaU, 0xfb16edfbU, | ||
| 217 | 0x43c58643U, 0x4dd79a4dU, 0x33556633U, 0x85941185U, | ||
| 218 | 0x45cf8a45U, 0xf910e9f9U, 0x02060402U, 0x7f81fe7fU, | ||
| 219 | 0x50f0a050U, 0x3c44783cU, 0x9fba259fU, 0xa8e34ba8U, | ||
| 220 | 0x51f3a251U, 0xa3fe5da3U, 0x40c08040U, 0x8f8a058fU, | ||
| 221 | 0x92ad3f92U, 0x9dbc219dU, 0x38487038U, 0xf504f1f5U, | ||
| 222 | 0xbcdf63bcU, 0xb6c177b6U, 0xda75afdaU, 0x21634221U, | ||
| 223 | 0x10302010U, 0xff1ae5ffU, 0xf30efdf3U, 0xd26dbfd2U, | ||
| 224 | 0xcd4c81cdU, 0x0c14180cU, 0x13352613U, 0xec2fc3ecU, | ||
| 225 | 0x5fe1be5fU, 0x97a23597U, 0x44cc8844U, 0x17392e17U, | ||
| 226 | 0xc45793c4U, 0xa7f255a7U, 0x7e82fc7eU, 0x3d477a3dU, | ||
| 227 | 0x64acc864U, 0x5de7ba5dU, 0x192b3219U, 0x7395e673U, | ||
| 228 | 0x60a0c060U, 0x81981981U, 0x4fd19e4fU, 0xdc7fa3dcU, | ||
| 229 | 0x22664422U, 0x2a7e542aU, 0x90ab3b90U, 0x88830b88U, | ||
| 230 | 0x46ca8c46U, 0xee29c7eeU, 0xb8d36bb8U, 0x143c2814U, | ||
| 231 | 0xde79a7deU, 0x5ee2bc5eU, 0x0b1d160bU, 0xdb76addbU, | ||
| 232 | 0xe03bdbe0U, 0x32566432U, 0x3a4e743aU, 0x0a1e140aU, | ||
| 233 | 0x49db9249U, 0x060a0c06U, 0x246c4824U, 0x5ce4b85cU, | ||
| 234 | 0xc25d9fc2U, 0xd36ebdd3U, 0xacef43acU, 0x62a6c462U, | ||
| 235 | 0x91a83991U, 0x95a43195U, 0xe437d3e4U, 0x798bf279U, | ||
| 236 | 0xe732d5e7U, 0xc8438bc8U, 0x37596e37U, 0x6db7da6dU, | ||
| 237 | 0x8d8c018dU, 0xd564b1d5U, 0x4ed29c4eU, 0xa9e049a9U, | ||
| 238 | 0x6cb4d86cU, 0x56faac56U, 0xf407f3f4U, 0xea25cfeaU, | ||
| 239 | 0x65afca65U, 0x7a8ef47aU, 0xaee947aeU, 0x08181008U, | ||
| 240 | 0xbad56fbaU, 0x7888f078U, 0x256f4a25U, 0x2e725c2eU, | ||
| 241 | 0x1c24381cU, 0xa6f157a6U, 0xb4c773b4U, 0xc65197c6U, | ||
| 242 | 0xe823cbe8U, 0xdd7ca1ddU, 0x749ce874U, 0x1f213e1fU, | ||
| 243 | 0x4bdd964bU, 0xbddc61bdU, 0x8b860d8bU, 0x8a850f8aU, | ||
| 244 | 0x7090e070U, 0x3e427c3eU, 0xb5c471b5U, 0x66aacc66U, | ||
| 245 | 0x48d89048U, 0x03050603U, 0xf601f7f6U, 0x0e121c0eU, | ||
| 246 | 0x61a3c261U, 0x355f6a35U, 0x57f9ae57U, 0xb9d069b9U, | ||
| 247 | 0x86911786U, 0xc15899c1U, 0x1d273a1dU, 0x9eb9279eU, | ||
| 248 | 0xe138d9e1U, 0xf813ebf8U, 0x98b32b98U, 0x11332211U, | ||
| 249 | 0x69bbd269U, 0xd970a9d9U, 0x8e89078eU, 0x94a73394U, | ||
| 250 | 0x9bb62d9bU, 0x1e223c1eU, 0x87921587U, 0xe920c9e9U, | ||
| 251 | 0xce4987ceU, 0x55ffaa55U, 0x28785028U, 0xdf7aa5dfU, | ||
| 252 | 0x8c8f038cU, 0xa1f859a1U, 0x89800989U, 0x0d171a0dU, | ||
| 253 | 0xbfda65bfU, 0xe631d7e6U, 0x42c68442U, 0x68b8d068U, | ||
| 254 | 0x41c38241U, 0x99b02999U, 0x2d775a2dU, 0x0f111e0fU, | ||
| 255 | 0xb0cb7bb0U, 0x54fca854U, 0xbbd66dbbU, 0x163a2c16U, | ||
| 256 | }; | ||
| 257 | static const u32 Te3[256] = { | ||
| 258 | |||
| 259 | 0x6363a5c6U, 0x7c7c84f8U, 0x777799eeU, 0x7b7b8df6U, | ||
| 260 | 0xf2f20dffU, 0x6b6bbdd6U, 0x6f6fb1deU, 0xc5c55491U, | ||
| 261 | 0x30305060U, 0x01010302U, 0x6767a9ceU, 0x2b2b7d56U, | ||
| 262 | 0xfefe19e7U, 0xd7d762b5U, 0xababe64dU, 0x76769aecU, | ||
| 263 | 0xcaca458fU, 0x82829d1fU, 0xc9c94089U, 0x7d7d87faU, | ||
| 264 | 0xfafa15efU, 0x5959ebb2U, 0x4747c98eU, 0xf0f00bfbU, | ||
| 265 | 0xadadec41U, 0xd4d467b3U, 0xa2a2fd5fU, 0xafafea45U, | ||
| 266 | 0x9c9cbf23U, 0xa4a4f753U, 0x727296e4U, 0xc0c05b9bU, | ||
| 267 | 0xb7b7c275U, 0xfdfd1ce1U, 0x9393ae3dU, 0x26266a4cU, | ||
| 268 | 0x36365a6cU, 0x3f3f417eU, 0xf7f702f5U, 0xcccc4f83U, | ||
| 269 | 0x34345c68U, 0xa5a5f451U, 0xe5e534d1U, 0xf1f108f9U, | ||
| 270 | 0x717193e2U, 0xd8d873abU, 0x31315362U, 0x15153f2aU, | ||
| 271 | 0x04040c08U, 0xc7c75295U, 0x23236546U, 0xc3c35e9dU, | ||
| 272 | 0x18182830U, 0x9696a137U, 0x05050f0aU, 0x9a9ab52fU, | ||
| 273 | 0x0707090eU, 0x12123624U, 0x80809b1bU, 0xe2e23ddfU, | ||
| 274 | 0xebeb26cdU, 0x2727694eU, 0xb2b2cd7fU, 0x75759feaU, | ||
| 275 | 0x09091b12U, 0x83839e1dU, 0x2c2c7458U, 0x1a1a2e34U, | ||
| 276 | 0x1b1b2d36U, 0x6e6eb2dcU, 0x5a5aeeb4U, 0xa0a0fb5bU, | ||
| 277 | 0x5252f6a4U, 0x3b3b4d76U, 0xd6d661b7U, 0xb3b3ce7dU, | ||
| 278 | 0x29297b52U, 0xe3e33eddU, 0x2f2f715eU, 0x84849713U, | ||
| 279 | 0x5353f5a6U, 0xd1d168b9U, 0x00000000U, 0xeded2cc1U, | ||
| 280 | 0x20206040U, 0xfcfc1fe3U, 0xb1b1c879U, 0x5b5bedb6U, | ||
| 281 | 0x6a6abed4U, 0xcbcb468dU, 0xbebed967U, 0x39394b72U, | ||
| 282 | 0x4a4ade94U, 0x4c4cd498U, 0x5858e8b0U, 0xcfcf4a85U, | ||
| 283 | 0xd0d06bbbU, 0xefef2ac5U, 0xaaaae54fU, 0xfbfb16edU, | ||
| 284 | 0x4343c586U, 0x4d4dd79aU, 0x33335566U, 0x85859411U, | ||
| 285 | 0x4545cf8aU, 0xf9f910e9U, 0x02020604U, 0x7f7f81feU, | ||
| 286 | 0x5050f0a0U, 0x3c3c4478U, 0x9f9fba25U, 0xa8a8e34bU, | ||
| 287 | 0x5151f3a2U, 0xa3a3fe5dU, 0x4040c080U, 0x8f8f8a05U, | ||
| 288 | 0x9292ad3fU, 0x9d9dbc21U, 0x38384870U, 0xf5f504f1U, | ||
| 289 | 0xbcbcdf63U, 0xb6b6c177U, 0xdada75afU, 0x21216342U, | ||
| 290 | 0x10103020U, 0xffff1ae5U, 0xf3f30efdU, 0xd2d26dbfU, | ||
| 291 | 0xcdcd4c81U, 0x0c0c1418U, 0x13133526U, 0xecec2fc3U, | ||
| 292 | 0x5f5fe1beU, 0x9797a235U, 0x4444cc88U, 0x1717392eU, | ||
| 293 | 0xc4c45793U, 0xa7a7f255U, 0x7e7e82fcU, 0x3d3d477aU, | ||
| 294 | 0x6464acc8U, 0x5d5de7baU, 0x19192b32U, 0x737395e6U, | ||
| 295 | 0x6060a0c0U, 0x81819819U, 0x4f4fd19eU, 0xdcdc7fa3U, | ||
| 296 | 0x22226644U, 0x2a2a7e54U, 0x9090ab3bU, 0x8888830bU, | ||
| 297 | 0x4646ca8cU, 0xeeee29c7U, 0xb8b8d36bU, 0x14143c28U, | ||
| 298 | 0xdede79a7U, 0x5e5ee2bcU, 0x0b0b1d16U, 0xdbdb76adU, | ||
| 299 | 0xe0e03bdbU, 0x32325664U, 0x3a3a4e74U, 0x0a0a1e14U, | ||
| 300 | 0x4949db92U, 0x06060a0cU, 0x24246c48U, 0x5c5ce4b8U, | ||
| 301 | 0xc2c25d9fU, 0xd3d36ebdU, 0xacacef43U, 0x6262a6c4U, | ||
| 302 | 0x9191a839U, 0x9595a431U, 0xe4e437d3U, 0x79798bf2U, | ||
| 303 | 0xe7e732d5U, 0xc8c8438bU, 0x3737596eU, 0x6d6db7daU, | ||
| 304 | 0x8d8d8c01U, 0xd5d564b1U, 0x4e4ed29cU, 0xa9a9e049U, | ||
| 305 | 0x6c6cb4d8U, 0x5656faacU, 0xf4f407f3U, 0xeaea25cfU, | ||
| 306 | 0x6565afcaU, 0x7a7a8ef4U, 0xaeaee947U, 0x08081810U, | ||
| 307 | 0xbabad56fU, 0x787888f0U, 0x25256f4aU, 0x2e2e725cU, | ||
| 308 | 0x1c1c2438U, 0xa6a6f157U, 0xb4b4c773U, 0xc6c65197U, | ||
| 309 | 0xe8e823cbU, 0xdddd7ca1U, 0x74749ce8U, 0x1f1f213eU, | ||
| 310 | 0x4b4bdd96U, 0xbdbddc61U, 0x8b8b860dU, 0x8a8a850fU, | ||
| 311 | 0x707090e0U, 0x3e3e427cU, 0xb5b5c471U, 0x6666aaccU, | ||
| 312 | 0x4848d890U, 0x03030506U, 0xf6f601f7U, 0x0e0e121cU, | ||
| 313 | 0x6161a3c2U, 0x35355f6aU, 0x5757f9aeU, 0xb9b9d069U, | ||
| 314 | 0x86869117U, 0xc1c15899U, 0x1d1d273aU, 0x9e9eb927U, | ||
| 315 | 0xe1e138d9U, 0xf8f813ebU, 0x9898b32bU, 0x11113322U, | ||
| 316 | 0x6969bbd2U, 0xd9d970a9U, 0x8e8e8907U, 0x9494a733U, | ||
| 317 | 0x9b9bb62dU, 0x1e1e223cU, 0x87879215U, 0xe9e920c9U, | ||
| 318 | 0xcece4987U, 0x5555ffaaU, 0x28287850U, 0xdfdf7aa5U, | ||
| 319 | 0x8c8c8f03U, 0xa1a1f859U, 0x89898009U, 0x0d0d171aU, | ||
| 320 | 0xbfbfda65U, 0xe6e631d7U, 0x4242c684U, 0x6868b8d0U, | ||
| 321 | 0x4141c382U, 0x9999b029U, 0x2d2d775aU, 0x0f0f111eU, | ||
| 322 | 0xb0b0cb7bU, 0x5454fca8U, 0xbbbbd66dU, 0x16163a2cU, | ||
| 323 | }; | ||
| 324 | static const u32 Te4[256] = { | ||
| 325 | 0x63636363U, 0x7c7c7c7cU, 0x77777777U, 0x7b7b7b7bU, | ||
| 326 | 0xf2f2f2f2U, 0x6b6b6b6bU, 0x6f6f6f6fU, 0xc5c5c5c5U, | ||
| 327 | 0x30303030U, 0x01010101U, 0x67676767U, 0x2b2b2b2bU, | ||
| 328 | 0xfefefefeU, 0xd7d7d7d7U, 0xababababU, 0x76767676U, | ||
| 329 | 0xcacacacaU, 0x82828282U, 0xc9c9c9c9U, 0x7d7d7d7dU, | ||
| 330 | 0xfafafafaU, 0x59595959U, 0x47474747U, 0xf0f0f0f0U, | ||
| 331 | 0xadadadadU, 0xd4d4d4d4U, 0xa2a2a2a2U, 0xafafafafU, | ||
| 332 | 0x9c9c9c9cU, 0xa4a4a4a4U, 0x72727272U, 0xc0c0c0c0U, | ||
| 333 | 0xb7b7b7b7U, 0xfdfdfdfdU, 0x93939393U, 0x26262626U, | ||
| 334 | 0x36363636U, 0x3f3f3f3fU, 0xf7f7f7f7U, 0xccccccccU, | ||
| 335 | 0x34343434U, 0xa5a5a5a5U, 0xe5e5e5e5U, 0xf1f1f1f1U, | ||
| 336 | 0x71717171U, 0xd8d8d8d8U, 0x31313131U, 0x15151515U, | ||
| 337 | 0x04040404U, 0xc7c7c7c7U, 0x23232323U, 0xc3c3c3c3U, | ||
| 338 | 0x18181818U, 0x96969696U, 0x05050505U, 0x9a9a9a9aU, | ||
| 339 | 0x07070707U, 0x12121212U, 0x80808080U, 0xe2e2e2e2U, | ||
| 340 | 0xebebebebU, 0x27272727U, 0xb2b2b2b2U, 0x75757575U, | ||
| 341 | 0x09090909U, 0x83838383U, 0x2c2c2c2cU, 0x1a1a1a1aU, | ||
| 342 | 0x1b1b1b1bU, 0x6e6e6e6eU, 0x5a5a5a5aU, 0xa0a0a0a0U, | ||
| 343 | 0x52525252U, 0x3b3b3b3bU, 0xd6d6d6d6U, 0xb3b3b3b3U, | ||
| 344 | 0x29292929U, 0xe3e3e3e3U, 0x2f2f2f2fU, 0x84848484U, | ||
| 345 | 0x53535353U, 0xd1d1d1d1U, 0x00000000U, 0xededededU, | ||
| 346 | 0x20202020U, 0xfcfcfcfcU, 0xb1b1b1b1U, 0x5b5b5b5bU, | ||
| 347 | 0x6a6a6a6aU, 0xcbcbcbcbU, 0xbebebebeU, 0x39393939U, | ||
| 348 | 0x4a4a4a4aU, 0x4c4c4c4cU, 0x58585858U, 0xcfcfcfcfU, | ||
| 349 | 0xd0d0d0d0U, 0xefefefefU, 0xaaaaaaaaU, 0xfbfbfbfbU, | ||
| 350 | 0x43434343U, 0x4d4d4d4dU, 0x33333333U, 0x85858585U, | ||
| 351 | 0x45454545U, 0xf9f9f9f9U, 0x02020202U, 0x7f7f7f7fU, | ||
| 352 | 0x50505050U, 0x3c3c3c3cU, 0x9f9f9f9fU, 0xa8a8a8a8U, | ||
| 353 | 0x51515151U, 0xa3a3a3a3U, 0x40404040U, 0x8f8f8f8fU, | ||
| 354 | 0x92929292U, 0x9d9d9d9dU, 0x38383838U, 0xf5f5f5f5U, | ||
| 355 | 0xbcbcbcbcU, 0xb6b6b6b6U, 0xdadadadaU, 0x21212121U, | ||
| 356 | 0x10101010U, 0xffffffffU, 0xf3f3f3f3U, 0xd2d2d2d2U, | ||
| 357 | 0xcdcdcdcdU, 0x0c0c0c0cU, 0x13131313U, 0xececececU, | ||
| 358 | 0x5f5f5f5fU, 0x97979797U, 0x44444444U, 0x17171717U, | ||
| 359 | 0xc4c4c4c4U, 0xa7a7a7a7U, 0x7e7e7e7eU, 0x3d3d3d3dU, | ||
| 360 | 0x64646464U, 0x5d5d5d5dU, 0x19191919U, 0x73737373U, | ||
| 361 | 0x60606060U, 0x81818181U, 0x4f4f4f4fU, 0xdcdcdcdcU, | ||
| 362 | 0x22222222U, 0x2a2a2a2aU, 0x90909090U, 0x88888888U, | ||
| 363 | 0x46464646U, 0xeeeeeeeeU, 0xb8b8b8b8U, 0x14141414U, | ||
| 364 | 0xdedededeU, 0x5e5e5e5eU, 0x0b0b0b0bU, 0xdbdbdbdbU, | ||
| 365 | 0xe0e0e0e0U, 0x32323232U, 0x3a3a3a3aU, 0x0a0a0a0aU, | ||
| 366 | 0x49494949U, 0x06060606U, 0x24242424U, 0x5c5c5c5cU, | ||
| 367 | 0xc2c2c2c2U, 0xd3d3d3d3U, 0xacacacacU, 0x62626262U, | ||
| 368 | 0x91919191U, 0x95959595U, 0xe4e4e4e4U, 0x79797979U, | ||
| 369 | 0xe7e7e7e7U, 0xc8c8c8c8U, 0x37373737U, 0x6d6d6d6dU, | ||
| 370 | 0x8d8d8d8dU, 0xd5d5d5d5U, 0x4e4e4e4eU, 0xa9a9a9a9U, | ||
| 371 | 0x6c6c6c6cU, 0x56565656U, 0xf4f4f4f4U, 0xeaeaeaeaU, | ||
| 372 | 0x65656565U, 0x7a7a7a7aU, 0xaeaeaeaeU, 0x08080808U, | ||
| 373 | 0xbabababaU, 0x78787878U, 0x25252525U, 0x2e2e2e2eU, | ||
| 374 | 0x1c1c1c1cU, 0xa6a6a6a6U, 0xb4b4b4b4U, 0xc6c6c6c6U, | ||
| 375 | 0xe8e8e8e8U, 0xddddddddU, 0x74747474U, 0x1f1f1f1fU, | ||
| 376 | 0x4b4b4b4bU, 0xbdbdbdbdU, 0x8b8b8b8bU, 0x8a8a8a8aU, | ||
| 377 | 0x70707070U, 0x3e3e3e3eU, 0xb5b5b5b5U, 0x66666666U, | ||
| 378 | 0x48484848U, 0x03030303U, 0xf6f6f6f6U, 0x0e0e0e0eU, | ||
| 379 | 0x61616161U, 0x35353535U, 0x57575757U, 0xb9b9b9b9U, | ||
| 380 | 0x86868686U, 0xc1c1c1c1U, 0x1d1d1d1dU, 0x9e9e9e9eU, | ||
| 381 | 0xe1e1e1e1U, 0xf8f8f8f8U, 0x98989898U, 0x11111111U, | ||
| 382 | 0x69696969U, 0xd9d9d9d9U, 0x8e8e8e8eU, 0x94949494U, | ||
| 383 | 0x9b9b9b9bU, 0x1e1e1e1eU, 0x87878787U, 0xe9e9e9e9U, | ||
| 384 | 0xcecececeU, 0x55555555U, 0x28282828U, 0xdfdfdfdfU, | ||
| 385 | 0x8c8c8c8cU, 0xa1a1a1a1U, 0x89898989U, 0x0d0d0d0dU, | ||
| 386 | 0xbfbfbfbfU, 0xe6e6e6e6U, 0x42424242U, 0x68686868U, | ||
| 387 | 0x41414141U, 0x99999999U, 0x2d2d2d2dU, 0x0f0f0f0fU, | ||
| 388 | 0xb0b0b0b0U, 0x54545454U, 0xbbbbbbbbU, 0x16161616U, | ||
| 389 | }; | ||
| 390 | static const u32 Td0[256] = { | ||
| 391 | 0x51f4a750U, 0x7e416553U, 0x1a17a4c3U, 0x3a275e96U, | ||
| 392 | 0x3bab6bcbU, 0x1f9d45f1U, 0xacfa58abU, 0x4be30393U, | ||
| 393 | 0x2030fa55U, 0xad766df6U, 0x88cc7691U, 0xf5024c25U, | ||
| 394 | 0x4fe5d7fcU, 0xc52acbd7U, 0x26354480U, 0xb562a38fU, | ||
| 395 | 0xdeb15a49U, 0x25ba1b67U, 0x45ea0e98U, 0x5dfec0e1U, | ||
| 396 | 0xc32f7502U, 0x814cf012U, 0x8d4697a3U, 0x6bd3f9c6U, | ||
| 397 | 0x038f5fe7U, 0x15929c95U, 0xbf6d7aebU, 0x955259daU, | ||
| 398 | 0xd4be832dU, 0x587421d3U, 0x49e06929U, 0x8ec9c844U, | ||
| 399 | 0x75c2896aU, 0xf48e7978U, 0x99583e6bU, 0x27b971ddU, | ||
| 400 | 0xbee14fb6U, 0xf088ad17U, 0xc920ac66U, 0x7dce3ab4U, | ||
| 401 | 0x63df4a18U, 0xe51a3182U, 0x97513360U, 0x62537f45U, | ||
| 402 | 0xb16477e0U, 0xbb6bae84U, 0xfe81a01cU, 0xf9082b94U, | ||
| 403 | 0x70486858U, 0x8f45fd19U, 0x94de6c87U, 0x527bf8b7U, | ||
| 404 | 0xab73d323U, 0x724b02e2U, 0xe31f8f57U, 0x6655ab2aU, | ||
| 405 | 0xb2eb2807U, 0x2fb5c203U, 0x86c57b9aU, 0xd33708a5U, | ||
| 406 | 0x302887f2U, 0x23bfa5b2U, 0x02036abaU, 0xed16825cU, | ||
| 407 | 0x8acf1c2bU, 0xa779b492U, 0xf307f2f0U, 0x4e69e2a1U, | ||
| 408 | 0x65daf4cdU, 0x0605bed5U, 0xd134621fU, 0xc4a6fe8aU, | ||
| 409 | 0x342e539dU, 0xa2f355a0U, 0x058ae132U, 0xa4f6eb75U, | ||
| 410 | 0x0b83ec39U, 0x4060efaaU, 0x5e719f06U, 0xbd6e1051U, | ||
| 411 | 0x3e218af9U, 0x96dd063dU, 0xdd3e05aeU, 0x4de6bd46U, | ||
| 412 | 0x91548db5U, 0x71c45d05U, 0x0406d46fU, 0x605015ffU, | ||
| 413 | 0x1998fb24U, 0xd6bde997U, 0x894043ccU, 0x67d99e77U, | ||
| 414 | 0xb0e842bdU, 0x07898b88U, 0xe7195b38U, 0x79c8eedbU, | ||
| 415 | 0xa17c0a47U, 0x7c420fe9U, 0xf8841ec9U, 0x00000000U, | ||
| 416 | 0x09808683U, 0x322bed48U, 0x1e1170acU, 0x6c5a724eU, | ||
| 417 | 0xfd0efffbU, 0x0f853856U, 0x3daed51eU, 0x362d3927U, | ||
| 418 | 0x0a0fd964U, 0x685ca621U, 0x9b5b54d1U, 0x24362e3aU, | ||
| 419 | 0x0c0a67b1U, 0x9357e70fU, 0xb4ee96d2U, 0x1b9b919eU, | ||
| 420 | 0x80c0c54fU, 0x61dc20a2U, 0x5a774b69U, 0x1c121a16U, | ||
| 421 | 0xe293ba0aU, 0xc0a02ae5U, 0x3c22e043U, 0x121b171dU, | ||
| 422 | 0x0e090d0bU, 0xf28bc7adU, 0x2db6a8b9U, 0x141ea9c8U, | ||
| 423 | 0x57f11985U, 0xaf75074cU, 0xee99ddbbU, 0xa37f60fdU, | ||
| 424 | 0xf701269fU, 0x5c72f5bcU, 0x44663bc5U, 0x5bfb7e34U, | ||
| 425 | 0x8b432976U, 0xcb23c6dcU, 0xb6edfc68U, 0xb8e4f163U, | ||
| 426 | 0xd731dccaU, 0x42638510U, 0x13972240U, 0x84c61120U, | ||
| 427 | 0x854a247dU, 0xd2bb3df8U, 0xaef93211U, 0xc729a16dU, | ||
| 428 | 0x1d9e2f4bU, 0xdcb230f3U, 0x0d8652ecU, 0x77c1e3d0U, | ||
| 429 | 0x2bb3166cU, 0xa970b999U, 0x119448faU, 0x47e96422U, | ||
| 430 | 0xa8fc8cc4U, 0xa0f03f1aU, 0x567d2cd8U, 0x223390efU, | ||
| 431 | 0x87494ec7U, 0xd938d1c1U, 0x8ccaa2feU, 0x98d40b36U, | ||
| 432 | 0xa6f581cfU, 0xa57ade28U, 0xdab78e26U, 0x3fadbfa4U, | ||
| 433 | 0x2c3a9de4U, 0x5078920dU, 0x6a5fcc9bU, 0x547e4662U, | ||
| 434 | 0xf68d13c2U, 0x90d8b8e8U, 0x2e39f75eU, 0x82c3aff5U, | ||
| 435 | 0x9f5d80beU, 0x69d0937cU, 0x6fd52da9U, 0xcf2512b3U, | ||
| 436 | 0xc8ac993bU, 0x10187da7U, 0xe89c636eU, 0xdb3bbb7bU, | ||
| 437 | 0xcd267809U, 0x6e5918f4U, 0xec9ab701U, 0x834f9aa8U, | ||
| 438 | 0xe6956e65U, 0xaaffe67eU, 0x21bccf08U, 0xef15e8e6U, | ||
| 439 | 0xbae79bd9U, 0x4a6f36ceU, 0xea9f09d4U, 0x29b07cd6U, | ||
| 440 | 0x31a4b2afU, 0x2a3f2331U, 0xc6a59430U, 0x35a266c0U, | ||
| 441 | 0x744ebc37U, 0xfc82caa6U, 0xe090d0b0U, 0x33a7d815U, | ||
| 442 | 0xf104984aU, 0x41ecdaf7U, 0x7fcd500eU, 0x1791f62fU, | ||
| 443 | 0x764dd68dU, 0x43efb04dU, 0xccaa4d54U, 0xe49604dfU, | ||
| 444 | 0x9ed1b5e3U, 0x4c6a881bU, 0xc12c1fb8U, 0x4665517fU, | ||
| 445 | 0x9d5eea04U, 0x018c355dU, 0xfa877473U, 0xfb0b412eU, | ||
| 446 | 0xb3671d5aU, 0x92dbd252U, 0xe9105633U, 0x6dd64713U, | ||
| 447 | 0x9ad7618cU, 0x37a10c7aU, 0x59f8148eU, 0xeb133c89U, | ||
| 448 | 0xcea927eeU, 0xb761c935U, 0xe11ce5edU, 0x7a47b13cU, | ||
| 449 | 0x9cd2df59U, 0x55f2733fU, 0x1814ce79U, 0x73c737bfU, | ||
| 450 | 0x53f7cdeaU, 0x5ffdaa5bU, 0xdf3d6f14U, 0x7844db86U, | ||
| 451 | 0xcaaff381U, 0xb968c43eU, 0x3824342cU, 0xc2a3405fU, | ||
| 452 | 0x161dc372U, 0xbce2250cU, 0x283c498bU, 0xff0d9541U, | ||
| 453 | 0x39a80171U, 0x080cb3deU, 0xd8b4e49cU, 0x6456c190U, | ||
| 454 | 0x7bcb8461U, 0xd532b670U, 0x486c5c74U, 0xd0b85742U, | ||
| 455 | }; | ||
| 456 | static const u32 Td1[256] = { | ||
| 457 | 0x5051f4a7U, 0x537e4165U, 0xc31a17a4U, 0x963a275eU, | ||
| 458 | 0xcb3bab6bU, 0xf11f9d45U, 0xabacfa58U, 0x934be303U, | ||
| 459 | 0x552030faU, 0xf6ad766dU, 0x9188cc76U, 0x25f5024cU, | ||
| 460 | 0xfc4fe5d7U, 0xd7c52acbU, 0x80263544U, 0x8fb562a3U, | ||
| 461 | 0x49deb15aU, 0x6725ba1bU, 0x9845ea0eU, 0xe15dfec0U, | ||
| 462 | 0x02c32f75U, 0x12814cf0U, 0xa38d4697U, 0xc66bd3f9U, | ||
| 463 | 0xe7038f5fU, 0x9515929cU, 0xebbf6d7aU, 0xda955259U, | ||
| 464 | 0x2dd4be83U, 0xd3587421U, 0x2949e069U, 0x448ec9c8U, | ||
| 465 | 0x6a75c289U, 0x78f48e79U, 0x6b99583eU, 0xdd27b971U, | ||
| 466 | 0xb6bee14fU, 0x17f088adU, 0x66c920acU, 0xb47dce3aU, | ||
| 467 | 0x1863df4aU, 0x82e51a31U, 0x60975133U, 0x4562537fU, | ||
| 468 | 0xe0b16477U, 0x84bb6baeU, 0x1cfe81a0U, 0x94f9082bU, | ||
| 469 | 0x58704868U, 0x198f45fdU, 0x8794de6cU, 0xb7527bf8U, | ||
| 470 | 0x23ab73d3U, 0xe2724b02U, 0x57e31f8fU, 0x2a6655abU, | ||
| 471 | 0x07b2eb28U, 0x032fb5c2U, 0x9a86c57bU, 0xa5d33708U, | ||
| 472 | 0xf2302887U, 0xb223bfa5U, 0xba02036aU, 0x5ced1682U, | ||
| 473 | 0x2b8acf1cU, 0x92a779b4U, 0xf0f307f2U, 0xa14e69e2U, | ||
| 474 | 0xcd65daf4U, 0xd50605beU, 0x1fd13462U, 0x8ac4a6feU, | ||
| 475 | 0x9d342e53U, 0xa0a2f355U, 0x32058ae1U, 0x75a4f6ebU, | ||
| 476 | 0x390b83ecU, 0xaa4060efU, 0x065e719fU, 0x51bd6e10U, | ||
| 477 | 0xf93e218aU, 0x3d96dd06U, 0xaedd3e05U, 0x464de6bdU, | ||
| 478 | 0xb591548dU, 0x0571c45dU, 0x6f0406d4U, 0xff605015U, | ||
| 479 | 0x241998fbU, 0x97d6bde9U, 0xcc894043U, 0x7767d99eU, | ||
| 480 | 0xbdb0e842U, 0x8807898bU, 0x38e7195bU, 0xdb79c8eeU, | ||
| 481 | 0x47a17c0aU, 0xe97c420fU, 0xc9f8841eU, 0x00000000U, | ||
| 482 | 0x83098086U, 0x48322bedU, 0xac1e1170U, 0x4e6c5a72U, | ||
| 483 | 0xfbfd0effU, 0x560f8538U, 0x1e3daed5U, 0x27362d39U, | ||
| 484 | 0x640a0fd9U, 0x21685ca6U, 0xd19b5b54U, 0x3a24362eU, | ||
| 485 | 0xb10c0a67U, 0x0f9357e7U, 0xd2b4ee96U, 0x9e1b9b91U, | ||
| 486 | 0x4f80c0c5U, 0xa261dc20U, 0x695a774bU, 0x161c121aU, | ||
| 487 | 0x0ae293baU, 0xe5c0a02aU, 0x433c22e0U, 0x1d121b17U, | ||
| 488 | 0x0b0e090dU, 0xadf28bc7U, 0xb92db6a8U, 0xc8141ea9U, | ||
| 489 | 0x8557f119U, 0x4caf7507U, 0xbbee99ddU, 0xfda37f60U, | ||
| 490 | 0x9ff70126U, 0xbc5c72f5U, 0xc544663bU, 0x345bfb7eU, | ||
| 491 | 0x768b4329U, 0xdccb23c6U, 0x68b6edfcU, 0x63b8e4f1U, | ||
| 492 | 0xcad731dcU, 0x10426385U, 0x40139722U, 0x2084c611U, | ||
| 493 | 0x7d854a24U, 0xf8d2bb3dU, 0x11aef932U, 0x6dc729a1U, | ||
| 494 | 0x4b1d9e2fU, 0xf3dcb230U, 0xec0d8652U, 0xd077c1e3U, | ||
| 495 | 0x6c2bb316U, 0x99a970b9U, 0xfa119448U, 0x2247e964U, | ||
| 496 | 0xc4a8fc8cU, 0x1aa0f03fU, 0xd8567d2cU, 0xef223390U, | ||
| 497 | 0xc787494eU, 0xc1d938d1U, 0xfe8ccaa2U, 0x3698d40bU, | ||
| 498 | 0xcfa6f581U, 0x28a57adeU, 0x26dab78eU, 0xa43fadbfU, | ||
| 499 | 0xe42c3a9dU, 0x0d507892U, 0x9b6a5fccU, 0x62547e46U, | ||
| 500 | 0xc2f68d13U, 0xe890d8b8U, 0x5e2e39f7U, 0xf582c3afU, | ||
| 501 | 0xbe9f5d80U, 0x7c69d093U, 0xa96fd52dU, 0xb3cf2512U, | ||
| 502 | 0x3bc8ac99U, 0xa710187dU, 0x6ee89c63U, 0x7bdb3bbbU, | ||
| 503 | 0x09cd2678U, 0xf46e5918U, 0x01ec9ab7U, 0xa8834f9aU, | ||
| 504 | 0x65e6956eU, 0x7eaaffe6U, 0x0821bccfU, 0xe6ef15e8U, | ||
| 505 | 0xd9bae79bU, 0xce4a6f36U, 0xd4ea9f09U, 0xd629b07cU, | ||
| 506 | 0xaf31a4b2U, 0x312a3f23U, 0x30c6a594U, 0xc035a266U, | ||
| 507 | 0x37744ebcU, 0xa6fc82caU, 0xb0e090d0U, 0x1533a7d8U, | ||
| 508 | 0x4af10498U, 0xf741ecdaU, 0x0e7fcd50U, 0x2f1791f6U, | ||
| 509 | 0x8d764dd6U, 0x4d43efb0U, 0x54ccaa4dU, 0xdfe49604U, | ||
| 510 | 0xe39ed1b5U, 0x1b4c6a88U, 0xb8c12c1fU, 0x7f466551U, | ||
| 511 | 0x049d5eeaU, 0x5d018c35U, 0x73fa8774U, 0x2efb0b41U, | ||
| 512 | 0x5ab3671dU, 0x5292dbd2U, 0x33e91056U, 0x136dd647U, | ||
| 513 | 0x8c9ad761U, 0x7a37a10cU, 0x8e59f814U, 0x89eb133cU, | ||
| 514 | 0xeecea927U, 0x35b761c9U, 0xede11ce5U, 0x3c7a47b1U, | ||
| 515 | 0x599cd2dfU, 0x3f55f273U, 0x791814ceU, 0xbf73c737U, | ||
| 516 | 0xea53f7cdU, 0x5b5ffdaaU, 0x14df3d6fU, 0x867844dbU, | ||
| 517 | 0x81caaff3U, 0x3eb968c4U, 0x2c382434U, 0x5fc2a340U, | ||
| 518 | 0x72161dc3U, 0x0cbce225U, 0x8b283c49U, 0x41ff0d95U, | ||
| 519 | 0x7139a801U, 0xde080cb3U, 0x9cd8b4e4U, 0x906456c1U, | ||
| 520 | 0x617bcb84U, 0x70d532b6U, 0x74486c5cU, 0x42d0b857U, | ||
| 521 | }; | ||
| 522 | static const u32 Td2[256] = { | ||
| 523 | 0xa75051f4U, 0x65537e41U, 0xa4c31a17U, 0x5e963a27U, | ||
| 524 | 0x6bcb3babU, 0x45f11f9dU, 0x58abacfaU, 0x03934be3U, | ||
| 525 | 0xfa552030U, 0x6df6ad76U, 0x769188ccU, 0x4c25f502U, | ||
| 526 | 0xd7fc4fe5U, 0xcbd7c52aU, 0x44802635U, 0xa38fb562U, | ||
| 527 | 0x5a49deb1U, 0x1b6725baU, 0x0e9845eaU, 0xc0e15dfeU, | ||
| 528 | 0x7502c32fU, 0xf012814cU, 0x97a38d46U, 0xf9c66bd3U, | ||
| 529 | 0x5fe7038fU, 0x9c951592U, 0x7aebbf6dU, 0x59da9552U, | ||
| 530 | 0x832dd4beU, 0x21d35874U, 0x692949e0U, 0xc8448ec9U, | ||
| 531 | 0x896a75c2U, 0x7978f48eU, 0x3e6b9958U, 0x71dd27b9U, | ||
| 532 | 0x4fb6bee1U, 0xad17f088U, 0xac66c920U, 0x3ab47dceU, | ||
| 533 | 0x4a1863dfU, 0x3182e51aU, 0x33609751U, 0x7f456253U, | ||
| 534 | 0x77e0b164U, 0xae84bb6bU, 0xa01cfe81U, 0x2b94f908U, | ||
| 535 | 0x68587048U, 0xfd198f45U, 0x6c8794deU, 0xf8b7527bU, | ||
| 536 | 0xd323ab73U, 0x02e2724bU, 0x8f57e31fU, 0xab2a6655U, | ||
| 537 | 0x2807b2ebU, 0xc2032fb5U, 0x7b9a86c5U, 0x08a5d337U, | ||
| 538 | 0x87f23028U, 0xa5b223bfU, 0x6aba0203U, 0x825ced16U, | ||
| 539 | 0x1c2b8acfU, 0xb492a779U, 0xf2f0f307U, 0xe2a14e69U, | ||
| 540 | 0xf4cd65daU, 0xbed50605U, 0x621fd134U, 0xfe8ac4a6U, | ||
| 541 | 0x539d342eU, 0x55a0a2f3U, 0xe132058aU, 0xeb75a4f6U, | ||
| 542 | 0xec390b83U, 0xefaa4060U, 0x9f065e71U, 0x1051bd6eU, | ||
| 543 | |||
| 544 | 0x8af93e21U, 0x063d96ddU, 0x05aedd3eU, 0xbd464de6U, | ||
| 545 | 0x8db59154U, 0x5d0571c4U, 0xd46f0406U, 0x15ff6050U, | ||
| 546 | 0xfb241998U, 0xe997d6bdU, 0x43cc8940U, 0x9e7767d9U, | ||
| 547 | 0x42bdb0e8U, 0x8b880789U, 0x5b38e719U, 0xeedb79c8U, | ||
| 548 | 0x0a47a17cU, 0x0fe97c42U, 0x1ec9f884U, 0x00000000U, | ||
| 549 | 0x86830980U, 0xed48322bU, 0x70ac1e11U, 0x724e6c5aU, | ||
| 550 | 0xfffbfd0eU, 0x38560f85U, 0xd51e3daeU, 0x3927362dU, | ||
| 551 | 0xd9640a0fU, 0xa621685cU, 0x54d19b5bU, 0x2e3a2436U, | ||
| 552 | 0x67b10c0aU, 0xe70f9357U, 0x96d2b4eeU, 0x919e1b9bU, | ||
| 553 | 0xc54f80c0U, 0x20a261dcU, 0x4b695a77U, 0x1a161c12U, | ||
| 554 | 0xba0ae293U, 0x2ae5c0a0U, 0xe0433c22U, 0x171d121bU, | ||
| 555 | 0x0d0b0e09U, 0xc7adf28bU, 0xa8b92db6U, 0xa9c8141eU, | ||
| 556 | 0x198557f1U, 0x074caf75U, 0xddbbee99U, 0x60fda37fU, | ||
| 557 | 0x269ff701U, 0xf5bc5c72U, 0x3bc54466U, 0x7e345bfbU, | ||
| 558 | 0x29768b43U, 0xc6dccb23U, 0xfc68b6edU, 0xf163b8e4U, | ||
| 559 | 0xdccad731U, 0x85104263U, 0x22401397U, 0x112084c6U, | ||
| 560 | 0x247d854aU, 0x3df8d2bbU, 0x3211aef9U, 0xa16dc729U, | ||
| 561 | 0x2f4b1d9eU, 0x30f3dcb2U, 0x52ec0d86U, 0xe3d077c1U, | ||
| 562 | 0x166c2bb3U, 0xb999a970U, 0x48fa1194U, 0x642247e9U, | ||
| 563 | 0x8cc4a8fcU, 0x3f1aa0f0U, 0x2cd8567dU, 0x90ef2233U, | ||
| 564 | 0x4ec78749U, 0xd1c1d938U, 0xa2fe8ccaU, 0x0b3698d4U, | ||
| 565 | 0x81cfa6f5U, 0xde28a57aU, 0x8e26dab7U, 0xbfa43fadU, | ||
| 566 | 0x9de42c3aU, 0x920d5078U, 0xcc9b6a5fU, 0x4662547eU, | ||
| 567 | 0x13c2f68dU, 0xb8e890d8U, 0xf75e2e39U, 0xaff582c3U, | ||
| 568 | 0x80be9f5dU, 0x937c69d0U, 0x2da96fd5U, 0x12b3cf25U, | ||
| 569 | 0x993bc8acU, 0x7da71018U, 0x636ee89cU, 0xbb7bdb3bU, | ||
| 570 | 0x7809cd26U, 0x18f46e59U, 0xb701ec9aU, 0x9aa8834fU, | ||
| 571 | 0x6e65e695U, 0xe67eaaffU, 0xcf0821bcU, 0xe8e6ef15U, | ||
| 572 | 0x9bd9bae7U, 0x36ce4a6fU, 0x09d4ea9fU, 0x7cd629b0U, | ||
| 573 | 0xb2af31a4U, 0x23312a3fU, 0x9430c6a5U, 0x66c035a2U, | ||
| 574 | 0xbc37744eU, 0xcaa6fc82U, 0xd0b0e090U, 0xd81533a7U, | ||
| 575 | 0x984af104U, 0xdaf741ecU, 0x500e7fcdU, 0xf62f1791U, | ||
| 576 | 0xd68d764dU, 0xb04d43efU, 0x4d54ccaaU, 0x04dfe496U, | ||
| 577 | 0xb5e39ed1U, 0x881b4c6aU, 0x1fb8c12cU, 0x517f4665U, | ||
| 578 | 0xea049d5eU, 0x355d018cU, 0x7473fa87U, 0x412efb0bU, | ||
| 579 | 0x1d5ab367U, 0xd25292dbU, 0x5633e910U, 0x47136dd6U, | ||
| 580 | 0x618c9ad7U, 0x0c7a37a1U, 0x148e59f8U, 0x3c89eb13U, | ||
| 581 | 0x27eecea9U, 0xc935b761U, 0xe5ede11cU, 0xb13c7a47U, | ||
| 582 | 0xdf599cd2U, 0x733f55f2U, 0xce791814U, 0x37bf73c7U, | ||
| 583 | 0xcdea53f7U, 0xaa5b5ffdU, 0x6f14df3dU, 0xdb867844U, | ||
| 584 | 0xf381caafU, 0xc43eb968U, 0x342c3824U, 0x405fc2a3U, | ||
| 585 | 0xc372161dU, 0x250cbce2U, 0x498b283cU, 0x9541ff0dU, | ||
| 586 | 0x017139a8U, 0xb3de080cU, 0xe49cd8b4U, 0xc1906456U, | ||
| 587 | 0x84617bcbU, 0xb670d532U, 0x5c74486cU, 0x5742d0b8U, | ||
| 588 | }; | ||
| 589 | static const u32 Td3[256] = { | ||
| 590 | 0xf4a75051U, 0x4165537eU, 0x17a4c31aU, 0x275e963aU, | ||
| 591 | 0xab6bcb3bU, 0x9d45f11fU, 0xfa58abacU, 0xe303934bU, | ||
| 592 | 0x30fa5520U, 0x766df6adU, 0xcc769188U, 0x024c25f5U, | ||
| 593 | 0xe5d7fc4fU, 0x2acbd7c5U, 0x35448026U, 0x62a38fb5U, | ||
| 594 | 0xb15a49deU, 0xba1b6725U, 0xea0e9845U, 0xfec0e15dU, | ||
| 595 | 0x2f7502c3U, 0x4cf01281U, 0x4697a38dU, 0xd3f9c66bU, | ||
| 596 | 0x8f5fe703U, 0x929c9515U, 0x6d7aebbfU, 0x5259da95U, | ||
| 597 | 0xbe832dd4U, 0x7421d358U, 0xe0692949U, 0xc9c8448eU, | ||
| 598 | 0xc2896a75U, 0x8e7978f4U, 0x583e6b99U, 0xb971dd27U, | ||
| 599 | 0xe14fb6beU, 0x88ad17f0U, 0x20ac66c9U, 0xce3ab47dU, | ||
| 600 | 0xdf4a1863U, 0x1a3182e5U, 0x51336097U, 0x537f4562U, | ||
| 601 | 0x6477e0b1U, 0x6bae84bbU, 0x81a01cfeU, 0x082b94f9U, | ||
| 602 | 0x48685870U, 0x45fd198fU, 0xde6c8794U, 0x7bf8b752U, | ||
| 603 | 0x73d323abU, 0x4b02e272U, 0x1f8f57e3U, 0x55ab2a66U, | ||
| 604 | 0xeb2807b2U, 0xb5c2032fU, 0xc57b9a86U, 0x3708a5d3U, | ||
| 605 | 0x2887f230U, 0xbfa5b223U, 0x036aba02U, 0x16825cedU, | ||
| 606 | 0xcf1c2b8aU, 0x79b492a7U, 0x07f2f0f3U, 0x69e2a14eU, | ||
| 607 | 0xdaf4cd65U, 0x05bed506U, 0x34621fd1U, 0xa6fe8ac4U, | ||
| 608 | 0x2e539d34U, 0xf355a0a2U, 0x8ae13205U, 0xf6eb75a4U, | ||
| 609 | 0x83ec390bU, 0x60efaa40U, 0x719f065eU, 0x6e1051bdU, | ||
| 610 | 0x218af93eU, 0xdd063d96U, 0x3e05aeddU, 0xe6bd464dU, | ||
| 611 | 0x548db591U, 0xc45d0571U, 0x06d46f04U, 0x5015ff60U, | ||
| 612 | 0x98fb2419U, 0xbde997d6U, 0x4043cc89U, 0xd99e7767U, | ||
| 613 | 0xe842bdb0U, 0x898b8807U, 0x195b38e7U, 0xc8eedb79U, | ||
| 614 | 0x7c0a47a1U, 0x420fe97cU, 0x841ec9f8U, 0x00000000U, | ||
| 615 | 0x80868309U, 0x2bed4832U, 0x1170ac1eU, 0x5a724e6cU, | ||
| 616 | 0x0efffbfdU, 0x8538560fU, 0xaed51e3dU, 0x2d392736U, | ||
| 617 | 0x0fd9640aU, 0x5ca62168U, 0x5b54d19bU, 0x362e3a24U, | ||
| 618 | 0x0a67b10cU, 0x57e70f93U, 0xee96d2b4U, 0x9b919e1bU, | ||
| 619 | 0xc0c54f80U, 0xdc20a261U, 0x774b695aU, 0x121a161cU, | ||
| 620 | 0x93ba0ae2U, 0xa02ae5c0U, 0x22e0433cU, 0x1b171d12U, | ||
| 621 | 0x090d0b0eU, 0x8bc7adf2U, 0xb6a8b92dU, 0x1ea9c814U, | ||
| 622 | 0xf1198557U, 0x75074cafU, 0x99ddbbeeU, 0x7f60fda3U, | ||
| 623 | 0x01269ff7U, 0x72f5bc5cU, 0x663bc544U, 0xfb7e345bU, | ||
| 624 | 0x4329768bU, 0x23c6dccbU, 0xedfc68b6U, 0xe4f163b8U, | ||
| 625 | 0x31dccad7U, 0x63851042U, 0x97224013U, 0xc6112084U, | ||
| 626 | 0x4a247d85U, 0xbb3df8d2U, 0xf93211aeU, 0x29a16dc7U, | ||
| 627 | 0x9e2f4b1dU, 0xb230f3dcU, 0x8652ec0dU, 0xc1e3d077U, | ||
| 628 | 0xb3166c2bU, 0x70b999a9U, 0x9448fa11U, 0xe9642247U, | ||
| 629 | 0xfc8cc4a8U, 0xf03f1aa0U, 0x7d2cd856U, 0x3390ef22U, | ||
| 630 | 0x494ec787U, 0x38d1c1d9U, 0xcaa2fe8cU, 0xd40b3698U, | ||
| 631 | 0xf581cfa6U, 0x7ade28a5U, 0xb78e26daU, 0xadbfa43fU, | ||
| 632 | 0x3a9de42cU, 0x78920d50U, 0x5fcc9b6aU, 0x7e466254U, | ||
| 633 | 0x8d13c2f6U, 0xd8b8e890U, 0x39f75e2eU, 0xc3aff582U, | ||
| 634 | 0x5d80be9fU, 0xd0937c69U, 0xd52da96fU, 0x2512b3cfU, | ||
| 635 | 0xac993bc8U, 0x187da710U, 0x9c636ee8U, 0x3bbb7bdbU, | ||
| 636 | 0x267809cdU, 0x5918f46eU, 0x9ab701ecU, 0x4f9aa883U, | ||
| 637 | 0x956e65e6U, 0xffe67eaaU, 0xbccf0821U, 0x15e8e6efU, | ||
| 638 | 0xe79bd9baU, 0x6f36ce4aU, 0x9f09d4eaU, 0xb07cd629U, | ||
| 639 | 0xa4b2af31U, 0x3f23312aU, 0xa59430c6U, 0xa266c035U, | ||
| 640 | 0x4ebc3774U, 0x82caa6fcU, 0x90d0b0e0U, 0xa7d81533U, | ||
| 641 | 0x04984af1U, 0xecdaf741U, 0xcd500e7fU, 0x91f62f17U, | ||
| 642 | 0x4dd68d76U, 0xefb04d43U, 0xaa4d54ccU, 0x9604dfe4U, | ||
| 643 | 0xd1b5e39eU, 0x6a881b4cU, 0x2c1fb8c1U, 0x65517f46U, | ||
| 644 | 0x5eea049dU, 0x8c355d01U, 0x877473faU, 0x0b412efbU, | ||
| 645 | 0x671d5ab3U, 0xdbd25292U, 0x105633e9U, 0xd647136dU, | ||
| 646 | 0xd7618c9aU, 0xa10c7a37U, 0xf8148e59U, 0x133c89ebU, | ||
| 647 | 0xa927eeceU, 0x61c935b7U, 0x1ce5ede1U, 0x47b13c7aU, | ||
| 648 | 0xd2df599cU, 0xf2733f55U, 0x14ce7918U, 0xc737bf73U, | ||
| 649 | 0xf7cdea53U, 0xfdaa5b5fU, 0x3d6f14dfU, 0x44db8678U, | ||
| 650 | 0xaff381caU, 0x68c43eb9U, 0x24342c38U, 0xa3405fc2U, | ||
| 651 | 0x1dc37216U, 0xe2250cbcU, 0x3c498b28U, 0x0d9541ffU, | ||
| 652 | 0xa8017139U, 0x0cb3de08U, 0xb4e49cd8U, 0x56c19064U, | ||
| 653 | 0xcb84617bU, 0x32b670d5U, 0x6c5c7448U, 0xb85742d0U, | ||
| 654 | }; | ||
| 655 | static const u32 Td4[256] = { | ||
| 656 | 0x52525252U, 0x09090909U, 0x6a6a6a6aU, 0xd5d5d5d5U, | ||
| 657 | 0x30303030U, 0x36363636U, 0xa5a5a5a5U, 0x38383838U, | ||
| 658 | 0xbfbfbfbfU, 0x40404040U, 0xa3a3a3a3U, 0x9e9e9e9eU, | ||
| 659 | 0x81818181U, 0xf3f3f3f3U, 0xd7d7d7d7U, 0xfbfbfbfbU, | ||
| 660 | 0x7c7c7c7cU, 0xe3e3e3e3U, 0x39393939U, 0x82828282U, | ||
| 661 | 0x9b9b9b9bU, 0x2f2f2f2fU, 0xffffffffU, 0x87878787U, | ||
| 662 | 0x34343434U, 0x8e8e8e8eU, 0x43434343U, 0x44444444U, | ||
| 663 | 0xc4c4c4c4U, 0xdedededeU, 0xe9e9e9e9U, 0xcbcbcbcbU, | ||
| 664 | 0x54545454U, 0x7b7b7b7bU, 0x94949494U, 0x32323232U, | ||
| 665 | 0xa6a6a6a6U, 0xc2c2c2c2U, 0x23232323U, 0x3d3d3d3dU, | ||
| 666 | 0xeeeeeeeeU, 0x4c4c4c4cU, 0x95959595U, 0x0b0b0b0bU, | ||
| 667 | 0x42424242U, 0xfafafafaU, 0xc3c3c3c3U, 0x4e4e4e4eU, | ||
| 668 | 0x08080808U, 0x2e2e2e2eU, 0xa1a1a1a1U, 0x66666666U, | ||
| 669 | 0x28282828U, 0xd9d9d9d9U, 0x24242424U, 0xb2b2b2b2U, | ||
| 670 | 0x76767676U, 0x5b5b5b5bU, 0xa2a2a2a2U, 0x49494949U, | ||
| 671 | 0x6d6d6d6dU, 0x8b8b8b8bU, 0xd1d1d1d1U, 0x25252525U, | ||
| 672 | 0x72727272U, 0xf8f8f8f8U, 0xf6f6f6f6U, 0x64646464U, | ||
| 673 | 0x86868686U, 0x68686868U, 0x98989898U, 0x16161616U, | ||
| 674 | 0xd4d4d4d4U, 0xa4a4a4a4U, 0x5c5c5c5cU, 0xccccccccU, | ||
| 675 | 0x5d5d5d5dU, 0x65656565U, 0xb6b6b6b6U, 0x92929292U, | ||
| 676 | 0x6c6c6c6cU, 0x70707070U, 0x48484848U, 0x50505050U, | ||
| 677 | 0xfdfdfdfdU, 0xededededU, 0xb9b9b9b9U, 0xdadadadaU, | ||
| 678 | 0x5e5e5e5eU, 0x15151515U, 0x46464646U, 0x57575757U, | ||
| 679 | 0xa7a7a7a7U, 0x8d8d8d8dU, 0x9d9d9d9dU, 0x84848484U, | ||
| 680 | 0x90909090U, 0xd8d8d8d8U, 0xababababU, 0x00000000U, | ||
| 681 | 0x8c8c8c8cU, 0xbcbcbcbcU, 0xd3d3d3d3U, 0x0a0a0a0aU, | ||
| 682 | 0xf7f7f7f7U, 0xe4e4e4e4U, 0x58585858U, 0x05050505U, | ||
| 683 | 0xb8b8b8b8U, 0xb3b3b3b3U, 0x45454545U, 0x06060606U, | ||
| 684 | 0xd0d0d0d0U, 0x2c2c2c2cU, 0x1e1e1e1eU, 0x8f8f8f8fU, | ||
| 685 | 0xcacacacaU, 0x3f3f3f3fU, 0x0f0f0f0fU, 0x02020202U, | ||
| 686 | 0xc1c1c1c1U, 0xafafafafU, 0xbdbdbdbdU, 0x03030303U, | ||
| 687 | 0x01010101U, 0x13131313U, 0x8a8a8a8aU, 0x6b6b6b6bU, | ||
| 688 | 0x3a3a3a3aU, 0x91919191U, 0x11111111U, 0x41414141U, | ||
| 689 | 0x4f4f4f4fU, 0x67676767U, 0xdcdcdcdcU, 0xeaeaeaeaU, | ||
| 690 | 0x97979797U, 0xf2f2f2f2U, 0xcfcfcfcfU, 0xcecececeU, | ||
| 691 | 0xf0f0f0f0U, 0xb4b4b4b4U, 0xe6e6e6e6U, 0x73737373U, | ||
| 692 | 0x96969696U, 0xacacacacU, 0x74747474U, 0x22222222U, | ||
| 693 | 0xe7e7e7e7U, 0xadadadadU, 0x35353535U, 0x85858585U, | ||
| 694 | 0xe2e2e2e2U, 0xf9f9f9f9U, 0x37373737U, 0xe8e8e8e8U, | ||
| 695 | 0x1c1c1c1cU, 0x75757575U, 0xdfdfdfdfU, 0x6e6e6e6eU, | ||
| 696 | 0x47474747U, 0xf1f1f1f1U, 0x1a1a1a1aU, 0x71717171U, | ||
| 697 | 0x1d1d1d1dU, 0x29292929U, 0xc5c5c5c5U, 0x89898989U, | ||
| 698 | 0x6f6f6f6fU, 0xb7b7b7b7U, 0x62626262U, 0x0e0e0e0eU, | ||
| 699 | 0xaaaaaaaaU, 0x18181818U, 0xbebebebeU, 0x1b1b1b1bU, | ||
| 700 | 0xfcfcfcfcU, 0x56565656U, 0x3e3e3e3eU, 0x4b4b4b4bU, | ||
| 701 | 0xc6c6c6c6U, 0xd2d2d2d2U, 0x79797979U, 0x20202020U, | ||
| 702 | 0x9a9a9a9aU, 0xdbdbdbdbU, 0xc0c0c0c0U, 0xfefefefeU, | ||
| 703 | 0x78787878U, 0xcdcdcdcdU, 0x5a5a5a5aU, 0xf4f4f4f4U, | ||
| 704 | 0x1f1f1f1fU, 0xddddddddU, 0xa8a8a8a8U, 0x33333333U, | ||
| 705 | 0x88888888U, 0x07070707U, 0xc7c7c7c7U, 0x31313131U, | ||
| 706 | 0xb1b1b1b1U, 0x12121212U, 0x10101010U, 0x59595959U, | ||
| 707 | 0x27272727U, 0x80808080U, 0xececececU, 0x5f5f5f5fU, | ||
| 708 | 0x60606060U, 0x51515151U, 0x7f7f7f7fU, 0xa9a9a9a9U, | ||
| 709 | 0x19191919U, 0xb5b5b5b5U, 0x4a4a4a4aU, 0x0d0d0d0dU, | ||
| 710 | 0x2d2d2d2dU, 0xe5e5e5e5U, 0x7a7a7a7aU, 0x9f9f9f9fU, | ||
| 711 | 0x93939393U, 0xc9c9c9c9U, 0x9c9c9c9cU, 0xefefefefU, | ||
| 712 | 0xa0a0a0a0U, 0xe0e0e0e0U, 0x3b3b3b3bU, 0x4d4d4d4dU, | ||
| 713 | 0xaeaeaeaeU, 0x2a2a2a2aU, 0xf5f5f5f5U, 0xb0b0b0b0U, | ||
| 714 | 0xc8c8c8c8U, 0xebebebebU, 0xbbbbbbbbU, 0x3c3c3c3cU, | ||
| 715 | 0x83838383U, 0x53535353U, 0x99999999U, 0x61616161U, | ||
| 716 | 0x17171717U, 0x2b2b2b2bU, 0x04040404U, 0x7e7e7e7eU, | ||
| 717 | 0xbabababaU, 0x77777777U, 0xd6d6d6d6U, 0x26262626U, | ||
| 718 | 0xe1e1e1e1U, 0x69696969U, 0x14141414U, 0x63636363U, | ||
| 719 | 0x55555555U, 0x21212121U, 0x0c0c0c0cU, 0x7d7d7d7dU, | ||
| 720 | }; | ||
| 721 | static const u32 rcon[] = { | ||
| 722 | 0x01000000, 0x02000000, 0x04000000, 0x08000000, | ||
| 723 | 0x10000000, 0x20000000, 0x40000000, 0x80000000, | ||
| 724 | 0x1B000000, 0x36000000, /* for 128-bit blocks, Rijndael never uses more than 10 rcon values */ | ||
| 725 | }; | ||
| 726 | |||
| 727 | /** | ||
| 728 | * Expand the cipher key into the encryption key schedule. | ||
| 729 | */ | ||
| 730 | int AES_set_encrypt_key(const unsigned char *userKey, | ||
| 731 | const FIPS_AES_SIZE_T bits, AES_KEY *key) { | ||
| 732 | |||
| 733 | u32 *rk; | ||
| 734 | int i = 0; | ||
| 735 | u32 temp; | ||
| 736 | |||
| 737 | if (!userKey || !key) | ||
| 738 | return -1; | ||
| 739 | if (bits != 128 && bits != 192 && bits != 256) | ||
| 740 | return -2; | ||
| 741 | if(FIPS_selftest_failed()) | ||
| 742 | return -3; | ||
| 743 | |||
| 744 | rk = key->rd_key; | ||
| 745 | |||
| 746 | if (bits==128) | ||
| 747 | key->rounds = 10; | ||
| 748 | else if (bits==192) | ||
| 749 | key->rounds = 12; | ||
| 750 | else | ||
| 751 | key->rounds = 14; | ||
| 752 | |||
| 753 | rk[0] = GETU32(userKey ); | ||
| 754 | rk[1] = GETU32(userKey + 4); | ||
| 755 | rk[2] = GETU32(userKey + 8); | ||
| 756 | rk[3] = GETU32(userKey + 12); | ||
| 757 | if (bits == 128) { | ||
| 758 | while (1) { | ||
| 759 | temp = rk[3]; | ||
| 760 | rk[4] = rk[0] ^ | ||
| 761 | (Te4[(temp >> 16) & 0xff] & 0xff000000) ^ | ||
| 762 | (Te4[(temp >> 8) & 0xff] & 0x00ff0000) ^ | ||
| 763 | (Te4[(temp ) & 0xff] & 0x0000ff00) ^ | ||
| 764 | (Te4[(temp >> 24) ] & 0x000000ff) ^ | ||
| 765 | rcon[i]; | ||
| 766 | rk[5] = rk[1] ^ rk[4]; | ||
| 767 | rk[6] = rk[2] ^ rk[5]; | ||
| 768 | rk[7] = rk[3] ^ rk[6]; | ||
| 769 | if (++i == 10) { | ||
| 770 | return 0; | ||
| 771 | } | ||
| 772 | rk += 4; | ||
| 773 | } | ||
| 774 | } | ||
| 775 | rk[4] = GETU32(userKey + 16); | ||
| 776 | rk[5] = GETU32(userKey + 20); | ||
| 777 | if (bits == 192) { | ||
| 778 | while (1) { | ||
| 779 | temp = rk[ 5]; | ||
| 780 | rk[ 6] = rk[ 0] ^ | ||
| 781 | (Te4[(temp >> 16) & 0xff] & 0xff000000) ^ | ||
| 782 | (Te4[(temp >> 8) & 0xff] & 0x00ff0000) ^ | ||
| 783 | (Te4[(temp ) & 0xff] & 0x0000ff00) ^ | ||
| 784 | (Te4[(temp >> 24) ] & 0x000000ff) ^ | ||
| 785 | rcon[i]; | ||
| 786 | rk[ 7] = rk[ 1] ^ rk[ 6]; | ||
| 787 | rk[ 8] = rk[ 2] ^ rk[ 7]; | ||
| 788 | rk[ 9] = rk[ 3] ^ rk[ 8]; | ||
| 789 | if (++i == 8) { | ||
| 790 | return 0; | ||
| 791 | } | ||
| 792 | rk[10] = rk[ 4] ^ rk[ 9]; | ||
| 793 | rk[11] = rk[ 5] ^ rk[10]; | ||
| 794 | rk += 6; | ||
| 795 | } | ||
| 796 | } | ||
| 797 | rk[6] = GETU32(userKey + 24); | ||
| 798 | rk[7] = GETU32(userKey + 28); | ||
| 799 | if (bits == 256) { | ||
| 800 | while (1) { | ||
| 801 | temp = rk[ 7]; | ||
| 802 | rk[ 8] = rk[ 0] ^ | ||
| 803 | (Te4[(temp >> 16) & 0xff] & 0xff000000) ^ | ||
| 804 | (Te4[(temp >> 8) & 0xff] & 0x00ff0000) ^ | ||
| 805 | (Te4[(temp ) & 0xff] & 0x0000ff00) ^ | ||
| 806 | (Te4[(temp >> 24) ] & 0x000000ff) ^ | ||
| 807 | rcon[i]; | ||
| 808 | rk[ 9] = rk[ 1] ^ rk[ 8]; | ||
| 809 | rk[10] = rk[ 2] ^ rk[ 9]; | ||
| 810 | rk[11] = rk[ 3] ^ rk[10]; | ||
| 811 | if (++i == 7) { | ||
| 812 | return 0; | ||
| 813 | } | ||
| 814 | temp = rk[11]; | ||
| 815 | rk[12] = rk[ 4] ^ | ||
| 816 | (Te4[(temp >> 24) ] & 0xff000000) ^ | ||
| 817 | (Te4[(temp >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 818 | (Te4[(temp >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 819 | (Te4[(temp ) & 0xff] & 0x000000ff); | ||
| 820 | rk[13] = rk[ 5] ^ rk[12]; | ||
| 821 | rk[14] = rk[ 6] ^ rk[13]; | ||
| 822 | rk[15] = rk[ 7] ^ rk[14]; | ||
| 823 | |||
| 824 | rk += 8; | ||
| 825 | } | ||
| 826 | } | ||
| 827 | return 0; | ||
| 828 | } | ||
| 829 | |||
| 830 | /** | ||
| 831 | * Expand the cipher key into the decryption key schedule. | ||
| 832 | */ | ||
| 833 | int AES_set_decrypt_key(const unsigned char *userKey, | ||
| 834 | const FIPS_AES_SIZE_T bits, AES_KEY *key) { | ||
| 835 | |||
| 836 | u32 *rk; | ||
| 837 | int i, j, status; | ||
| 838 | u32 temp; | ||
| 839 | |||
| 840 | /* first, start with an encryption schedule */ | ||
| 841 | status = AES_set_encrypt_key(userKey, bits, key); | ||
| 842 | if (status < 0) | ||
| 843 | return status; | ||
| 844 | |||
| 845 | rk = key->rd_key; | ||
| 846 | |||
| 847 | /* invert the order of the round keys: */ | ||
| 848 | for (i = 0, j = 4*(key->rounds); i < j; i += 4, j -= 4) { | ||
| 849 | temp = rk[i ]; rk[i ] = rk[j ]; rk[j ] = temp; | ||
| 850 | temp = rk[i + 1]; rk[i + 1] = rk[j + 1]; rk[j + 1] = temp; | ||
| 851 | temp = rk[i + 2]; rk[i + 2] = rk[j + 2]; rk[j + 2] = temp; | ||
| 852 | temp = rk[i + 3]; rk[i + 3] = rk[j + 3]; rk[j + 3] = temp; | ||
| 853 | } | ||
| 854 | /* apply the inverse MixColumn transform to all round keys but the first and the last: */ | ||
| 855 | for (i = 1; i < (key->rounds); i++) { | ||
| 856 | rk += 4; | ||
| 857 | rk[0] = | ||
| 858 | Td0[Te4[(rk[0] >> 24) ] & 0xff] ^ | ||
| 859 | Td1[Te4[(rk[0] >> 16) & 0xff] & 0xff] ^ | ||
| 860 | Td2[Te4[(rk[0] >> 8) & 0xff] & 0xff] ^ | ||
| 861 | Td3[Te4[(rk[0] ) & 0xff] & 0xff]; | ||
| 862 | rk[1] = | ||
| 863 | Td0[Te4[(rk[1] >> 24) ] & 0xff] ^ | ||
| 864 | Td1[Te4[(rk[1] >> 16) & 0xff] & 0xff] ^ | ||
| 865 | Td2[Te4[(rk[1] >> 8) & 0xff] & 0xff] ^ | ||
| 866 | Td3[Te4[(rk[1] ) & 0xff] & 0xff]; | ||
| 867 | rk[2] = | ||
| 868 | Td0[Te4[(rk[2] >> 24) ] & 0xff] ^ | ||
| 869 | Td1[Te4[(rk[2] >> 16) & 0xff] & 0xff] ^ | ||
| 870 | Td2[Te4[(rk[2] >> 8) & 0xff] & 0xff] ^ | ||
| 871 | Td3[Te4[(rk[2] ) & 0xff] & 0xff]; | ||
| 872 | rk[3] = | ||
| 873 | Td0[Te4[(rk[3] >> 24) ] & 0xff] ^ | ||
| 874 | Td1[Te4[(rk[3] >> 16) & 0xff] & 0xff] ^ | ||
| 875 | Td2[Te4[(rk[3] >> 8) & 0xff] & 0xff] ^ | ||
| 876 | Td3[Te4[(rk[3] ) & 0xff] & 0xff]; | ||
| 877 | } | ||
| 878 | return 0; | ||
| 879 | } | ||
| 880 | |||
| 881 | /* | ||
| 882 | * Encrypt a single block | ||
| 883 | * in and out can overlap | ||
| 884 | */ | ||
| 885 | void AES_encrypt(const unsigned char *in, unsigned char *out, | ||
| 886 | const AES_KEY *key) { | ||
| 887 | |||
| 888 | const u32 *rk; | ||
| 889 | u32 s0, s1, s2, s3, t0, t1, t2, t3; | ||
| 890 | #ifndef FULL_UNROLL | ||
| 891 | int r; | ||
| 892 | #endif /* ?FULL_UNROLL */ | ||
| 893 | |||
| 894 | assert(in && out && key); | ||
| 895 | rk = key->rd_key; | ||
| 896 | |||
| 897 | /* | ||
| 898 | * map byte array block to cipher state | ||
| 899 | * and add initial round key: | ||
| 900 | */ | ||
| 901 | s0 = GETU32(in ) ^ rk[0]; | ||
| 902 | s1 = GETU32(in + 4) ^ rk[1]; | ||
| 903 | s2 = GETU32(in + 8) ^ rk[2]; | ||
| 904 | s3 = GETU32(in + 12) ^ rk[3]; | ||
| 905 | #ifdef FULL_UNROLL | ||
| 906 | /* round 1: */ | ||
| 907 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[ 4]; | ||
| 908 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[ 5]; | ||
| 909 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[ 6]; | ||
| 910 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[ 7]; | ||
| 911 | /* round 2: */ | ||
| 912 | s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >> 8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[ 8]; | ||
| 913 | s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >> 8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[ 9]; | ||
| 914 | s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >> 8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[10]; | ||
| 915 | s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >> 8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[11]; | ||
| 916 | /* round 3: */ | ||
| 917 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[12]; | ||
| 918 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[13]; | ||
| 919 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[14]; | ||
| 920 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[15]; | ||
| 921 | /* round 4: */ | ||
| 922 | s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >> 8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[16]; | ||
| 923 | s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >> 8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[17]; | ||
| 924 | s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >> 8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[18]; | ||
| 925 | s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >> 8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[19]; | ||
| 926 | /* round 5: */ | ||
| 927 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[20]; | ||
| 928 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[21]; | ||
| 929 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[22]; | ||
| 930 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[23]; | ||
| 931 | /* round 6: */ | ||
| 932 | s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >> 8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[24]; | ||
| 933 | s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >> 8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[25]; | ||
| 934 | s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >> 8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[26]; | ||
| 935 | s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >> 8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[27]; | ||
| 936 | /* round 7: */ | ||
| 937 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[28]; | ||
| 938 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[29]; | ||
| 939 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[30]; | ||
| 940 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[31]; | ||
| 941 | /* round 8: */ | ||
| 942 | s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >> 8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[32]; | ||
| 943 | s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >> 8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[33]; | ||
| 944 | s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >> 8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[34]; | ||
| 945 | s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >> 8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[35]; | ||
| 946 | /* round 9: */ | ||
| 947 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[36]; | ||
| 948 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[37]; | ||
| 949 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[38]; | ||
| 950 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[39]; | ||
| 951 | if (key->rounds > 10) { | ||
| 952 | /* round 10: */ | ||
| 953 | s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >> 8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[40]; | ||
| 954 | s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >> 8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[41]; | ||
| 955 | s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >> 8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[42]; | ||
| 956 | s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >> 8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[43]; | ||
| 957 | /* round 11: */ | ||
| 958 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[44]; | ||
| 959 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[45]; | ||
| 960 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[46]; | ||
| 961 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[47]; | ||
| 962 | if (key->rounds > 12) { | ||
| 963 | /* round 12: */ | ||
| 964 | s0 = Te0[t0 >> 24] ^ Te1[(t1 >> 16) & 0xff] ^ Te2[(t2 >> 8) & 0xff] ^ Te3[t3 & 0xff] ^ rk[48]; | ||
| 965 | s1 = Te0[t1 >> 24] ^ Te1[(t2 >> 16) & 0xff] ^ Te2[(t3 >> 8) & 0xff] ^ Te3[t0 & 0xff] ^ rk[49]; | ||
| 966 | s2 = Te0[t2 >> 24] ^ Te1[(t3 >> 16) & 0xff] ^ Te2[(t0 >> 8) & 0xff] ^ Te3[t1 & 0xff] ^ rk[50]; | ||
| 967 | s3 = Te0[t3 >> 24] ^ Te1[(t0 >> 16) & 0xff] ^ Te2[(t1 >> 8) & 0xff] ^ Te3[t2 & 0xff] ^ rk[51]; | ||
| 968 | /* round 13: */ | ||
| 969 | t0 = Te0[s0 >> 24] ^ Te1[(s1 >> 16) & 0xff] ^ Te2[(s2 >> 8) & 0xff] ^ Te3[s3 & 0xff] ^ rk[52]; | ||
| 970 | t1 = Te0[s1 >> 24] ^ Te1[(s2 >> 16) & 0xff] ^ Te2[(s3 >> 8) & 0xff] ^ Te3[s0 & 0xff] ^ rk[53]; | ||
| 971 | t2 = Te0[s2 >> 24] ^ Te1[(s3 >> 16) & 0xff] ^ Te2[(s0 >> 8) & 0xff] ^ Te3[s1 & 0xff] ^ rk[54]; | ||
| 972 | t3 = Te0[s3 >> 24] ^ Te1[(s0 >> 16) & 0xff] ^ Te2[(s1 >> 8) & 0xff] ^ Te3[s2 & 0xff] ^ rk[55]; | ||
| 973 | } | ||
| 974 | } | ||
| 975 | rk += key->rounds << 2; | ||
| 976 | #else /* !FULL_UNROLL */ | ||
| 977 | /* | ||
| 978 | * Nr - 1 full rounds: | ||
| 979 | */ | ||
| 980 | r = key->rounds >> 1; | ||
| 981 | for (;;) { | ||
| 982 | t0 = | ||
| 983 | Te0[(s0 >> 24) ] ^ | ||
| 984 | Te1[(s1 >> 16) & 0xff] ^ | ||
| 985 | Te2[(s2 >> 8) & 0xff] ^ | ||
| 986 | Te3[(s3 ) & 0xff] ^ | ||
| 987 | rk[4]; | ||
| 988 | t1 = | ||
| 989 | Te0[(s1 >> 24) ] ^ | ||
| 990 | Te1[(s2 >> 16) & 0xff] ^ | ||
| 991 | Te2[(s3 >> 8) & 0xff] ^ | ||
| 992 | Te3[(s0 ) & 0xff] ^ | ||
| 993 | rk[5]; | ||
| 994 | t2 = | ||
| 995 | Te0[(s2 >> 24) ] ^ | ||
| 996 | Te1[(s3 >> 16) & 0xff] ^ | ||
| 997 | Te2[(s0 >> 8) & 0xff] ^ | ||
| 998 | Te3[(s1 ) & 0xff] ^ | ||
| 999 | rk[6]; | ||
| 1000 | t3 = | ||
| 1001 | Te0[(s3 >> 24) ] ^ | ||
| 1002 | Te1[(s0 >> 16) & 0xff] ^ | ||
| 1003 | Te2[(s1 >> 8) & 0xff] ^ | ||
| 1004 | Te3[(s2 ) & 0xff] ^ | ||
| 1005 | rk[7]; | ||
| 1006 | |||
| 1007 | rk += 8; | ||
| 1008 | if (--r == 0) { | ||
| 1009 | break; | ||
| 1010 | } | ||
| 1011 | |||
| 1012 | s0 = | ||
| 1013 | Te0[(t0 >> 24) ] ^ | ||
| 1014 | Te1[(t1 >> 16) & 0xff] ^ | ||
| 1015 | Te2[(t2 >> 8) & 0xff] ^ | ||
| 1016 | Te3[(t3 ) & 0xff] ^ | ||
| 1017 | rk[0]; | ||
| 1018 | s1 = | ||
| 1019 | Te0[(t1 >> 24) ] ^ | ||
| 1020 | Te1[(t2 >> 16) & 0xff] ^ | ||
| 1021 | Te2[(t3 >> 8) & 0xff] ^ | ||
| 1022 | Te3[(t0 ) & 0xff] ^ | ||
| 1023 | rk[1]; | ||
| 1024 | s2 = | ||
| 1025 | Te0[(t2 >> 24) ] ^ | ||
| 1026 | Te1[(t3 >> 16) & 0xff] ^ | ||
| 1027 | Te2[(t0 >> 8) & 0xff] ^ | ||
| 1028 | Te3[(t1 ) & 0xff] ^ | ||
| 1029 | rk[2]; | ||
| 1030 | s3 = | ||
| 1031 | Te0[(t3 >> 24) ] ^ | ||
| 1032 | Te1[(t0 >> 16) & 0xff] ^ | ||
| 1033 | Te2[(t1 >> 8) & 0xff] ^ | ||
| 1034 | Te3[(t2 ) & 0xff] ^ | ||
| 1035 | rk[3]; | ||
| 1036 | } | ||
| 1037 | #endif /* ?FULL_UNROLL */ | ||
| 1038 | /* | ||
| 1039 | * apply last round and | ||
| 1040 | * map cipher state to byte array block: | ||
| 1041 | */ | ||
| 1042 | s0 = | ||
| 1043 | (Te4[(t0 >> 24) ] & 0xff000000) ^ | ||
| 1044 | (Te4[(t1 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1045 | (Te4[(t2 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1046 | (Te4[(t3 ) & 0xff] & 0x000000ff) ^ | ||
| 1047 | rk[0]; | ||
| 1048 | PUTU32(out , s0); | ||
| 1049 | s1 = | ||
| 1050 | (Te4[(t1 >> 24) ] & 0xff000000) ^ | ||
| 1051 | (Te4[(t2 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1052 | (Te4[(t3 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1053 | (Te4[(t0 ) & 0xff] & 0x000000ff) ^ | ||
| 1054 | rk[1]; | ||
| 1055 | PUTU32(out + 4, s1); | ||
| 1056 | s2 = | ||
| 1057 | (Te4[(t2 >> 24) ] & 0xff000000) ^ | ||
| 1058 | (Te4[(t3 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1059 | (Te4[(t0 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1060 | (Te4[(t1 ) & 0xff] & 0x000000ff) ^ | ||
| 1061 | rk[2]; | ||
| 1062 | PUTU32(out + 8, s2); | ||
| 1063 | s3 = | ||
| 1064 | (Te4[(t3 >> 24) ] & 0xff000000) ^ | ||
| 1065 | (Te4[(t0 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1066 | (Te4[(t1 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1067 | (Te4[(t2 ) & 0xff] & 0x000000ff) ^ | ||
| 1068 | rk[3]; | ||
| 1069 | PUTU32(out + 12, s3); | ||
| 1070 | } | ||
| 1071 | |||
| 1072 | /* | ||
| 1073 | * Decrypt a single block | ||
| 1074 | * in and out can overlap | ||
| 1075 | */ | ||
| 1076 | void AES_decrypt(const unsigned char *in, unsigned char *out, | ||
| 1077 | const AES_KEY *key) { | ||
| 1078 | |||
| 1079 | const u32 *rk; | ||
| 1080 | u32 s0, s1, s2, s3, t0, t1, t2, t3; | ||
| 1081 | #ifndef FULL_UNROLL | ||
| 1082 | int r; | ||
| 1083 | #endif /* ?FULL_UNROLL */ | ||
| 1084 | |||
| 1085 | assert(in && out && key); | ||
| 1086 | rk = key->rd_key; | ||
| 1087 | |||
| 1088 | /* | ||
| 1089 | * map byte array block to cipher state | ||
| 1090 | * and add initial round key: | ||
| 1091 | */ | ||
| 1092 | s0 = GETU32(in ) ^ rk[0]; | ||
| 1093 | s1 = GETU32(in + 4) ^ rk[1]; | ||
| 1094 | s2 = GETU32(in + 8) ^ rk[2]; | ||
| 1095 | s3 = GETU32(in + 12) ^ rk[3]; | ||
| 1096 | #ifdef FULL_UNROLL | ||
| 1097 | /* round 1: */ | ||
| 1098 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[ 4]; | ||
| 1099 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[ 5]; | ||
| 1100 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[ 6]; | ||
| 1101 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[ 7]; | ||
| 1102 | /* round 2: */ | ||
| 1103 | s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >> 8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[ 8]; | ||
| 1104 | s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >> 8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[ 9]; | ||
| 1105 | s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >> 8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[10]; | ||
| 1106 | s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >> 8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[11]; | ||
| 1107 | /* round 3: */ | ||
| 1108 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[12]; | ||
| 1109 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[13]; | ||
| 1110 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[14]; | ||
| 1111 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[15]; | ||
| 1112 | /* round 4: */ | ||
| 1113 | s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >> 8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[16]; | ||
| 1114 | s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >> 8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[17]; | ||
| 1115 | s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >> 8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[18]; | ||
| 1116 | s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >> 8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[19]; | ||
| 1117 | /* round 5: */ | ||
| 1118 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[20]; | ||
| 1119 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[21]; | ||
| 1120 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[22]; | ||
| 1121 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[23]; | ||
| 1122 | /* round 6: */ | ||
| 1123 | s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >> 8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[24]; | ||
| 1124 | s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >> 8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[25]; | ||
| 1125 | s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >> 8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[26]; | ||
| 1126 | s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >> 8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[27]; | ||
| 1127 | /* round 7: */ | ||
| 1128 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[28]; | ||
| 1129 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[29]; | ||
| 1130 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[30]; | ||
| 1131 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[31]; | ||
| 1132 | /* round 8: */ | ||
| 1133 | s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >> 8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[32]; | ||
| 1134 | s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >> 8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[33]; | ||
| 1135 | s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >> 8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[34]; | ||
| 1136 | s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >> 8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[35]; | ||
| 1137 | /* round 9: */ | ||
| 1138 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[36]; | ||
| 1139 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[37]; | ||
| 1140 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[38]; | ||
| 1141 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[39]; | ||
| 1142 | if (key->rounds > 10) { | ||
| 1143 | /* round 10: */ | ||
| 1144 | s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >> 8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[40]; | ||
| 1145 | s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >> 8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[41]; | ||
| 1146 | s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >> 8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[42]; | ||
| 1147 | s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >> 8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[43]; | ||
| 1148 | /* round 11: */ | ||
| 1149 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[44]; | ||
| 1150 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[45]; | ||
| 1151 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[46]; | ||
| 1152 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[47]; | ||
| 1153 | if (key->rounds > 12) { | ||
| 1154 | /* round 12: */ | ||
| 1155 | s0 = Td0[t0 >> 24] ^ Td1[(t3 >> 16) & 0xff] ^ Td2[(t2 >> 8) & 0xff] ^ Td3[t1 & 0xff] ^ rk[48]; | ||
| 1156 | s1 = Td0[t1 >> 24] ^ Td1[(t0 >> 16) & 0xff] ^ Td2[(t3 >> 8) & 0xff] ^ Td3[t2 & 0xff] ^ rk[49]; | ||
| 1157 | s2 = Td0[t2 >> 24] ^ Td1[(t1 >> 16) & 0xff] ^ Td2[(t0 >> 8) & 0xff] ^ Td3[t3 & 0xff] ^ rk[50]; | ||
| 1158 | s3 = Td0[t3 >> 24] ^ Td1[(t2 >> 16) & 0xff] ^ Td2[(t1 >> 8) & 0xff] ^ Td3[t0 & 0xff] ^ rk[51]; | ||
| 1159 | /* round 13: */ | ||
| 1160 | t0 = Td0[s0 >> 24] ^ Td1[(s3 >> 16) & 0xff] ^ Td2[(s2 >> 8) & 0xff] ^ Td3[s1 & 0xff] ^ rk[52]; | ||
| 1161 | t1 = Td0[s1 >> 24] ^ Td1[(s0 >> 16) & 0xff] ^ Td2[(s3 >> 8) & 0xff] ^ Td3[s2 & 0xff] ^ rk[53]; | ||
| 1162 | t2 = Td0[s2 >> 24] ^ Td1[(s1 >> 16) & 0xff] ^ Td2[(s0 >> 8) & 0xff] ^ Td3[s3 & 0xff] ^ rk[54]; | ||
| 1163 | t3 = Td0[s3 >> 24] ^ Td1[(s2 >> 16) & 0xff] ^ Td2[(s1 >> 8) & 0xff] ^ Td3[s0 & 0xff] ^ rk[55]; | ||
| 1164 | } | ||
| 1165 | } | ||
| 1166 | rk += key->rounds << 2; | ||
| 1167 | #else /* !FULL_UNROLL */ | ||
| 1168 | /* | ||
| 1169 | * Nr - 1 full rounds: | ||
| 1170 | */ | ||
| 1171 | r = key->rounds >> 1; | ||
| 1172 | for (;;) { | ||
| 1173 | t0 = | ||
| 1174 | Td0[(s0 >> 24) ] ^ | ||
| 1175 | Td1[(s3 >> 16) & 0xff] ^ | ||
| 1176 | Td2[(s2 >> 8) & 0xff] ^ | ||
| 1177 | Td3[(s1 ) & 0xff] ^ | ||
| 1178 | rk[4]; | ||
| 1179 | t1 = | ||
| 1180 | Td0[(s1 >> 24) ] ^ | ||
| 1181 | Td1[(s0 >> 16) & 0xff] ^ | ||
| 1182 | Td2[(s3 >> 8) & 0xff] ^ | ||
| 1183 | Td3[(s2 ) & 0xff] ^ | ||
| 1184 | rk[5]; | ||
| 1185 | t2 = | ||
| 1186 | Td0[(s2 >> 24) ] ^ | ||
| 1187 | Td1[(s1 >> 16) & 0xff] ^ | ||
| 1188 | Td2[(s0 >> 8) & 0xff] ^ | ||
| 1189 | Td3[(s3 ) & 0xff] ^ | ||
| 1190 | rk[6]; | ||
| 1191 | t3 = | ||
| 1192 | Td0[(s3 >> 24) ] ^ | ||
| 1193 | Td1[(s2 >> 16) & 0xff] ^ | ||
| 1194 | Td2[(s1 >> 8) & 0xff] ^ | ||
| 1195 | Td3[(s0 ) & 0xff] ^ | ||
| 1196 | rk[7]; | ||
| 1197 | |||
| 1198 | rk += 8; | ||
| 1199 | if (--r == 0) { | ||
| 1200 | break; | ||
| 1201 | } | ||
| 1202 | |||
| 1203 | s0 = | ||
| 1204 | Td0[(t0 >> 24) ] ^ | ||
| 1205 | Td1[(t3 >> 16) & 0xff] ^ | ||
| 1206 | Td2[(t2 >> 8) & 0xff] ^ | ||
| 1207 | Td3[(t1 ) & 0xff] ^ | ||
| 1208 | rk[0]; | ||
| 1209 | s1 = | ||
| 1210 | Td0[(t1 >> 24) ] ^ | ||
| 1211 | Td1[(t0 >> 16) & 0xff] ^ | ||
| 1212 | Td2[(t3 >> 8) & 0xff] ^ | ||
| 1213 | Td3[(t2 ) & 0xff] ^ | ||
| 1214 | rk[1]; | ||
| 1215 | s2 = | ||
| 1216 | Td0[(t2 >> 24) ] ^ | ||
| 1217 | Td1[(t1 >> 16) & 0xff] ^ | ||
| 1218 | Td2[(t0 >> 8) & 0xff] ^ | ||
| 1219 | Td3[(t3 ) & 0xff] ^ | ||
| 1220 | rk[2]; | ||
| 1221 | s3 = | ||
| 1222 | Td0[(t3 >> 24) ] ^ | ||
| 1223 | Td1[(t2 >> 16) & 0xff] ^ | ||
| 1224 | Td2[(t1 >> 8) & 0xff] ^ | ||
| 1225 | Td3[(t0 ) & 0xff] ^ | ||
| 1226 | rk[3]; | ||
| 1227 | } | ||
| 1228 | #endif /* ?FULL_UNROLL */ | ||
| 1229 | /* | ||
| 1230 | * apply last round and | ||
| 1231 | * map cipher state to byte array block: | ||
| 1232 | */ | ||
| 1233 | s0 = | ||
| 1234 | (Td4[(t0 >> 24) ] & 0xff000000) ^ | ||
| 1235 | (Td4[(t3 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1236 | (Td4[(t2 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1237 | (Td4[(t1 ) & 0xff] & 0x000000ff) ^ | ||
| 1238 | rk[0]; | ||
| 1239 | PUTU32(out , s0); | ||
| 1240 | s1 = | ||
| 1241 | (Td4[(t1 >> 24) ] & 0xff000000) ^ | ||
| 1242 | (Td4[(t0 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1243 | (Td4[(t3 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1244 | (Td4[(t2 ) & 0xff] & 0x000000ff) ^ | ||
| 1245 | rk[1]; | ||
| 1246 | PUTU32(out + 4, s1); | ||
| 1247 | s2 = | ||
| 1248 | (Td4[(t2 >> 24) ] & 0xff000000) ^ | ||
| 1249 | (Td4[(t1 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1250 | (Td4[(t0 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1251 | (Td4[(t3 ) & 0xff] & 0x000000ff) ^ | ||
| 1252 | rk[2]; | ||
| 1253 | PUTU32(out + 8, s2); | ||
| 1254 | s3 = | ||
| 1255 | (Td4[(t3 >> 24) ] & 0xff000000) ^ | ||
| 1256 | (Td4[(t2 >> 16) & 0xff] & 0x00ff0000) ^ | ||
| 1257 | (Td4[(t1 >> 8) & 0xff] & 0x0000ff00) ^ | ||
| 1258 | (Td4[(t0 ) & 0xff] & 0x000000ff) ^ | ||
| 1259 | rk[3]; | ||
| 1260 | PUTU32(out + 12, s3); | ||
| 1261 | } | ||
| 1262 | |||
| 1263 | #endif /* def OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips-1.0/aes/fips_aes_selftest.c b/src/lib/libssl/src/fips-1.0/aes/fips_aes_selftest.c deleted file mode 100644 index 0e53d21bd0..0000000000 --- a/src/lib/libssl/src/fips-1.0/aes/fips_aes_selftest.c +++ /dev/null | |||
| @@ -1,112 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/aes.h> | ||
| 54 | |||
| 55 | #ifdef OPENSSL_FIPS | ||
| 56 | static struct | ||
| 57 | { | ||
| 58 | unsigned char key[16]; | ||
| 59 | unsigned char plaintext[16]; | ||
| 60 | unsigned char ciphertext[16]; | ||
| 61 | } tests[]= | ||
| 62 | { | ||
| 63 | { | ||
| 64 | { 0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07, | ||
| 65 | 0x08,0x09,0x0A,0x0B,0x0C,0x0D,0x0E,0x0F }, | ||
| 66 | { 0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77, | ||
| 67 | 0x88,0x99,0xAA,0xBB,0xCC,0xDD,0xEE,0xFF }, | ||
| 68 | { 0x69,0xC4,0xE0,0xD8,0x6A,0x7B,0x04,0x30, | ||
| 69 | 0xD8,0xCD,0xB7,0x80,0x70,0xB4,0xC5,0x5A }, | ||
| 70 | }, | ||
| 71 | }; | ||
| 72 | |||
| 73 | void FIPS_corrupt_aes() | ||
| 74 | { | ||
| 75 | tests[0].key[0]++; | ||
| 76 | } | ||
| 77 | |||
| 78 | int FIPS_selftest_aes() | ||
| 79 | { | ||
| 80 | int n; | ||
| 81 | |||
| 82 | /* Encrypt and check against known ciphertext */ | ||
| 83 | for(n=0 ; n < 1 ; ++n) | ||
| 84 | { | ||
| 85 | AES_KEY key; | ||
| 86 | unsigned char buf[16]; | ||
| 87 | |||
| 88 | AES_set_encrypt_key(tests[n].key,128,&key); | ||
| 89 | AES_encrypt(tests[n].plaintext,buf,&key); | ||
| 90 | if(memcmp(buf,tests[n].ciphertext,sizeof buf)) | ||
| 91 | { | ||
| 92 | FIPSerr(FIPS_F_FIPS_SELFTEST_AES,FIPS_R_SELFTEST_FAILED); | ||
| 93 | return 0; | ||
| 94 | } | ||
| 95 | } | ||
| 96 | /* Decrypt and check against known plaintext */ | ||
| 97 | for(n=0 ; n < 1 ; ++n) | ||
| 98 | { | ||
| 99 | AES_KEY key; | ||
| 100 | unsigned char buf[16]; | ||
| 101 | |||
| 102 | AES_set_decrypt_key(tests[n].key,128,&key); | ||
| 103 | AES_decrypt(tests[n].ciphertext,buf,&key); | ||
| 104 | if(memcmp(buf,tests[n].plaintext,sizeof buf)) | ||
| 105 | { | ||
| 106 | FIPSerr(FIPS_F_FIPS_SELFTEST_AES,FIPS_R_SELFTEST_FAILED); | ||
| 107 | return 0; | ||
| 108 | } | ||
| 109 | } | ||
| 110 | return 1; | ||
| 111 | } | ||
| 112 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/aes/fips_aesavs.c b/src/lib/libssl/src/fips-1.0/aes/fips_aesavs.c deleted file mode 100644 index 6bb9b899c8..0000000000 --- a/src/lib/libssl/src/fips-1.0/aes/fips_aesavs.c +++ /dev/null | |||
| @@ -1,1005 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | /*--------------------------------------------- | ||
| 50 | NIST AES Algorithm Validation Suite | ||
| 51 | Test Program | ||
| 52 | |||
| 53 | Donated to OpenSSL by: | ||
| 54 | V-ONE Corporation | ||
| 55 | 20250 Century Blvd, Suite 300 | ||
| 56 | Germantown, MD 20874 | ||
| 57 | U.S.A. | ||
| 58 | ----------------------------------------------*/ | ||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include <stdlib.h> | ||
| 62 | #include <string.h> | ||
| 63 | #include <errno.h> | ||
| 64 | #include <assert.h> | ||
| 65 | |||
| 66 | #include <openssl/aes.h> | ||
| 67 | #include <openssl/evp.h> | ||
| 68 | #include <openssl/fips.h> | ||
| 69 | #include <openssl/err.h> | ||
| 70 | #include "e_os.h" | ||
| 71 | |||
| 72 | #define AES_BLOCK_SIZE 16 | ||
| 73 | |||
| 74 | #define VERBOSE 1 | ||
| 75 | |||
| 76 | /*-----------------------------------------------*/ | ||
| 77 | |||
| 78 | int AESTest(EVP_CIPHER_CTX *ctx, | ||
| 79 | char *amode, int akeysz, unsigned char *aKey, | ||
| 80 | unsigned char *iVec, | ||
| 81 | int dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 82 | unsigned char *plaintext, unsigned char *ciphertext, int len) | ||
| 83 | { | ||
| 84 | const EVP_CIPHER *cipher = NULL; | ||
| 85 | int ret = 1; | ||
| 86 | int kt = 0; | ||
| 87 | |||
| 88 | if (ctx) | ||
| 89 | memset(ctx, 0, sizeof(EVP_CIPHER_CTX)); | ||
| 90 | |||
| 91 | if (strcasecmp(amode, "CBC") == 0) | ||
| 92 | kt = 1000; | ||
| 93 | else if (strcasecmp(amode, "ECB") == 0) | ||
| 94 | kt = 2000; | ||
| 95 | else if (strcasecmp(amode, "CFB128") == 0) | ||
| 96 | kt = 3000; | ||
| 97 | else if (strncasecmp(amode, "OFB", 3) == 0) | ||
| 98 | kt = 4000; | ||
| 99 | else if(!strcasecmp(amode,"CFB1")) | ||
| 100 | kt=5000; | ||
| 101 | else if(!strcasecmp(amode,"CFB8")) | ||
| 102 | kt=6000; | ||
| 103 | else | ||
| 104 | { | ||
| 105 | printf("Unknown mode: %s\n", amode); | ||
| 106 | EXIT(1); | ||
| 107 | } | ||
| 108 | if (ret) | ||
| 109 | { | ||
| 110 | if ((akeysz != 128) && (akeysz != 192) && (akeysz != 256)) | ||
| 111 | { | ||
| 112 | printf("Invalid key size: %d\n", akeysz); | ||
| 113 | ret = 0; | ||
| 114 | } | ||
| 115 | else | ||
| 116 | { | ||
| 117 | kt += akeysz; | ||
| 118 | switch (kt) | ||
| 119 | { | ||
| 120 | case 1128: /* CBC 128 */ | ||
| 121 | cipher = EVP_aes_128_cbc(); | ||
| 122 | break; | ||
| 123 | case 1192: /* CBC 192 */ | ||
| 124 | cipher = EVP_aes_192_cbc(); | ||
| 125 | break; | ||
| 126 | case 1256: /* CBC 256 */ | ||
| 127 | cipher = EVP_aes_256_cbc(); | ||
| 128 | break; | ||
| 129 | case 2128: /* ECB 128 */ | ||
| 130 | cipher = EVP_aes_128_ecb(); | ||
| 131 | break; | ||
| 132 | case 2192: /* ECB 192 */ | ||
| 133 | cipher = EVP_aes_192_ecb(); | ||
| 134 | break; | ||
| 135 | case 2256: /* ECB 256 */ | ||
| 136 | cipher = EVP_aes_256_ecb(); | ||
| 137 | break; | ||
| 138 | case 3128: /* CFB 128 */ | ||
| 139 | cipher = EVP_aes_128_cfb(); | ||
| 140 | break; | ||
| 141 | case 3192: /* CFB 192 */ | ||
| 142 | cipher = EVP_aes_192_cfb(); | ||
| 143 | break; | ||
| 144 | case 3256: /* CFB 256 */ | ||
| 145 | cipher = EVP_aes_256_cfb(); | ||
| 146 | break; | ||
| 147 | case 4128: /* OFB 128 */ | ||
| 148 | cipher = EVP_aes_128_ofb(); | ||
| 149 | break; | ||
| 150 | case 4192: /* OFB 192 */ | ||
| 151 | cipher = EVP_aes_192_ofb(); | ||
| 152 | break; | ||
| 153 | case 4256: /* OFB 256 */ | ||
| 154 | cipher = EVP_aes_256_ofb(); | ||
| 155 | break; | ||
| 156 | case 5128: | ||
| 157 | cipher=EVP_aes_128_cfb1(); | ||
| 158 | break; | ||
| 159 | case 5192: | ||
| 160 | cipher=EVP_aes_192_cfb1(); | ||
| 161 | break; | ||
| 162 | case 5256: | ||
| 163 | cipher=EVP_aes_256_cfb1(); | ||
| 164 | break; | ||
| 165 | case 6128: | ||
| 166 | cipher=EVP_aes_128_cfb8(); | ||
| 167 | break; | ||
| 168 | case 6192: | ||
| 169 | cipher=EVP_aes_192_cfb8(); | ||
| 170 | break; | ||
| 171 | case 6256: | ||
| 172 | cipher=EVP_aes_256_cfb8(); | ||
| 173 | break; | ||
| 174 | default: | ||
| 175 | printf("Didn't handle mode %d\n",kt); | ||
| 176 | EXIT(1); | ||
| 177 | } | ||
| 178 | if (dir) | ||
| 179 | { /* encrypt */ | ||
| 180 | if(!EVP_CipherInit(ctx, cipher, aKey, iVec, AES_ENCRYPT)) | ||
| 181 | { | ||
| 182 | ERR_print_errors_fp(stderr); | ||
| 183 | EXIT(1); | ||
| 184 | } | ||
| 185 | |||
| 186 | EVP_Cipher(ctx, ciphertext, (unsigned char*)plaintext, len); | ||
| 187 | } | ||
| 188 | else | ||
| 189 | { /* decrypt */ | ||
| 190 | if(!EVP_CipherInit(ctx, cipher, aKey, iVec, AES_DECRYPT)) | ||
| 191 | { | ||
| 192 | ERR_print_errors_fp(stderr); | ||
| 193 | EXIT(1); | ||
| 194 | } | ||
| 195 | EVP_Cipher(ctx, (unsigned char*)plaintext, ciphertext, len); | ||
| 196 | } | ||
| 197 | } | ||
| 198 | } | ||
| 199 | return ret; | ||
| 200 | } | ||
| 201 | |||
| 202 | /*-----------------------------------------------*/ | ||
| 203 | |||
| 204 | int hex2bin(char *in, int len, unsigned char *out) | ||
| 205 | { | ||
| 206 | int n1, n2; | ||
| 207 | unsigned char ch; | ||
| 208 | |||
| 209 | for (n1 = 0, n2 = 0; n1 < len; ) | ||
| 210 | { /* first byte */ | ||
| 211 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 212 | ch = in[n1++] - '0'; | ||
| 213 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 214 | ch = in[n1++] - 'A' + 10; | ||
| 215 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 216 | ch = in[n1++] - 'a' + 10; | ||
| 217 | else | ||
| 218 | return -1; | ||
| 219 | if(len == 1) | ||
| 220 | { | ||
| 221 | out[n2++]=ch; | ||
| 222 | break; | ||
| 223 | } | ||
| 224 | out[n2] = ch << 4; | ||
| 225 | /* second byte */ | ||
| 226 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 227 | ch = in[n1++] - '0'; | ||
| 228 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 229 | ch = in[n1++] - 'A' + 10; | ||
| 230 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 231 | ch = in[n1++] - 'a' + 10; | ||
| 232 | else | ||
| 233 | return -1; | ||
| 234 | out[n2++] |= ch; | ||
| 235 | } | ||
| 236 | return n2; | ||
| 237 | } | ||
| 238 | |||
| 239 | /*-----------------------------------------------*/ | ||
| 240 | |||
| 241 | int bin2hex(unsigned char *in, int len, char *out) | ||
| 242 | { | ||
| 243 | int n1, n2; | ||
| 244 | unsigned char ch; | ||
| 245 | |||
| 246 | for (n1 = 0, n2 = 0; n1 < len; ++n1) | ||
| 247 | { | ||
| 248 | /* first nibble */ | ||
| 249 | ch = in[n1] >> 4; | ||
| 250 | if (ch <= 0x09) | ||
| 251 | out[n2++] = ch + '0'; | ||
| 252 | else | ||
| 253 | out[n2++] = ch - 10 + 'a'; | ||
| 254 | /* second nibble */ | ||
| 255 | ch = in[n1] & 0x0f; | ||
| 256 | if (ch <= 0x09) | ||
| 257 | out[n2++] = ch + '0'; | ||
| 258 | else | ||
| 259 | out[n2++] = ch - 10 + 'a'; | ||
| 260 | } | ||
| 261 | return n2; | ||
| 262 | } | ||
| 263 | |||
| 264 | /* NB: this return the number of _bits_ read */ | ||
| 265 | int bint2bin(const char *in, int len, unsigned char *out) | ||
| 266 | { | ||
| 267 | int n; | ||
| 268 | |||
| 269 | memset(out,0,len); | ||
| 270 | for(n=0 ; n < len ; ++n) | ||
| 271 | if(in[n] == '1') | ||
| 272 | out[n/8]|=(0x80 >> (n%8)); | ||
| 273 | return len; | ||
| 274 | } | ||
| 275 | |||
| 276 | int bin2bint(const unsigned char *in,int len,char *out) | ||
| 277 | { | ||
| 278 | int n; | ||
| 279 | |||
| 280 | for(n=0 ; n < len ; ++n) | ||
| 281 | out[n]=(in[n/8]&(0x80 >> (n%8))) ? '1' : '0'; | ||
| 282 | return n; | ||
| 283 | } | ||
| 284 | |||
| 285 | /*-----------------------------------------------*/ | ||
| 286 | |||
| 287 | void PrintValue(char *tag, unsigned char *val, int len) | ||
| 288 | { | ||
| 289 | #if VERBOSE | ||
| 290 | char obuf[2048]; | ||
| 291 | int olen; | ||
| 292 | olen = bin2hex(val, len, obuf); | ||
| 293 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 294 | #endif | ||
| 295 | } | ||
| 296 | |||
| 297 | void OutputValue(char *tag, unsigned char *val, int len, FILE *rfp,int bitmode) | ||
| 298 | { | ||
| 299 | char obuf[2048]; | ||
| 300 | int olen; | ||
| 301 | |||
| 302 | if(bitmode) | ||
| 303 | olen=bin2bint(val,len,obuf); | ||
| 304 | else | ||
| 305 | olen=bin2hex(val,len,obuf); | ||
| 306 | |||
| 307 | fprintf(rfp, "%s = %.*s\n", tag, olen, obuf); | ||
| 308 | #if VERBOSE | ||
| 309 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 310 | #endif | ||
| 311 | } | ||
| 312 | |||
| 313 | /*-----------------------------------------------*/ | ||
| 314 | char *t_tag[2] = {"PLAINTEXT", "CIPHERTEXT"}; | ||
| 315 | char *t_mode[6] = {"CBC","ECB","OFB","CFB1","CFB8","CFB128"}; | ||
| 316 | enum Mode {CBC, ECB, OFB, CFB1, CFB8, CFB128}; | ||
| 317 | enum XCrypt {XDECRYPT, XENCRYPT}; | ||
| 318 | |||
| 319 | /*=============================*/ | ||
| 320 | /* Monte Carlo Tests */ | ||
| 321 | /*-----------------------------*/ | ||
| 322 | |||
| 323 | /*#define gb(a,b) (((a)[(b)/8] >> ((b)%8))&1)*/ | ||
| 324 | /*#define sb(a,b,v) ((a)[(b)/8]=((a)[(b)/8]&~(1 << ((b)%8)))|(!!(v) << ((b)%8)))*/ | ||
| 325 | |||
| 326 | #define gb(a,b) (((a)[(b)/8] >> (7-(b)%8))&1) | ||
| 327 | #define sb(a,b,v) ((a)[(b)/8]=((a)[(b)/8]&~(1 << (7-(b)%8)))|(!!(v) << (7-(b)%8))) | ||
| 328 | |||
| 329 | int do_mct(char *amode, | ||
| 330 | int akeysz, unsigned char *aKey,unsigned char *iVec, | ||
| 331 | int dir, unsigned char *text, int len, | ||
| 332 | FILE *rfp) | ||
| 333 | { | ||
| 334 | int ret = 0; | ||
| 335 | unsigned char key[101][32]; | ||
| 336 | unsigned char iv[101][AES_BLOCK_SIZE]; | ||
| 337 | unsigned char ptext[1001][32]; | ||
| 338 | unsigned char ctext[1001][32]; | ||
| 339 | unsigned char ciphertext[64+4]; | ||
| 340 | int i, j, n, n1, n2; | ||
| 341 | int imode = 0, nkeysz = akeysz/8; | ||
| 342 | EVP_CIPHER_CTX ctx; | ||
| 343 | |||
| 344 | if (len > 32) | ||
| 345 | { | ||
| 346 | printf("\n>>>> Length exceeds 32 for %s %d <<<<\n\n", | ||
| 347 | amode, akeysz); | ||
| 348 | return -1; | ||
| 349 | } | ||
| 350 | for (imode = 0; imode < 6; ++imode) | ||
| 351 | if (strcmp(amode, t_mode[imode]) == 0) | ||
| 352 | break; | ||
| 353 | if (imode == 6) | ||
| 354 | { | ||
| 355 | printf("Unrecognized mode: %s\n", amode); | ||
| 356 | return -1; | ||
| 357 | } | ||
| 358 | |||
| 359 | memcpy(key[0], aKey, nkeysz); | ||
| 360 | if (iVec) | ||
| 361 | memcpy(iv[0], iVec, AES_BLOCK_SIZE); | ||
| 362 | if (dir == XENCRYPT) | ||
| 363 | memcpy(ptext[0], text, len); | ||
| 364 | else | ||
| 365 | memcpy(ctext[0], text, len); | ||
| 366 | for (i = 0; i < 100; ++i) | ||
| 367 | { | ||
| 368 | /* printf("Iteration %d\n", i); */ | ||
| 369 | if (i > 0) | ||
| 370 | { | ||
| 371 | fprintf(rfp,"COUNT = %d\n",i); | ||
| 372 | OutputValue("KEY",key[i],nkeysz,rfp,0); | ||
| 373 | if (imode != ECB) /* ECB */ | ||
| 374 | OutputValue("IV",iv[i],AES_BLOCK_SIZE,rfp,0); | ||
| 375 | /* Output Ciphertext | Plaintext */ | ||
| 376 | OutputValue(t_tag[dir^1],dir ? ptext[0] : ctext[0],len,rfp, | ||
| 377 | imode == CFB1); | ||
| 378 | } | ||
| 379 | for (j = 0; j < 1000; ++j) | ||
| 380 | { | ||
| 381 | switch (imode) | ||
| 382 | { | ||
| 383 | case ECB: | ||
| 384 | if (j == 0) | ||
| 385 | { /* set up encryption */ | ||
| 386 | ret = AESTest(&ctx, amode, akeysz, key[i], NULL, | ||
| 387 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 388 | ptext[j], ctext[j], len); | ||
| 389 | if (dir == XENCRYPT) | ||
| 390 | memcpy(ptext[j+1], ctext[j], len); | ||
| 391 | else | ||
| 392 | memcpy(ctext[j+1], ptext[j], len); | ||
| 393 | } | ||
| 394 | else | ||
| 395 | { | ||
| 396 | if (dir == XENCRYPT) | ||
| 397 | { | ||
| 398 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 399 | memcpy(ptext[j+1], ctext[j], len); | ||
| 400 | } | ||
| 401 | else | ||
| 402 | { | ||
| 403 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 404 | memcpy(ctext[j+1], ptext[j], len); | ||
| 405 | } | ||
| 406 | } | ||
| 407 | break; | ||
| 408 | |||
| 409 | case CBC: | ||
| 410 | case OFB: | ||
| 411 | case CFB128: | ||
| 412 | if (j == 0) | ||
| 413 | { | ||
| 414 | ret = AESTest(&ctx, amode, akeysz, key[i], iv[i], | ||
| 415 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 416 | ptext[j], ctext[j], len); | ||
| 417 | if (dir == XENCRYPT) | ||
| 418 | memcpy(ptext[j+1], iv[i], len); | ||
| 419 | else | ||
| 420 | memcpy(ctext[j+1], iv[i], len); | ||
| 421 | } | ||
| 422 | else | ||
| 423 | { | ||
| 424 | if (dir == XENCRYPT) | ||
| 425 | { | ||
| 426 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 427 | memcpy(ptext[j+1], ctext[j-1], len); | ||
| 428 | } | ||
| 429 | else | ||
| 430 | { | ||
| 431 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 432 | memcpy(ctext[j+1], ptext[j-1], len); | ||
| 433 | } | ||
| 434 | } | ||
| 435 | break; | ||
| 436 | |||
| 437 | case CFB8: | ||
| 438 | if (j == 0) | ||
| 439 | { | ||
| 440 | ret = AESTest(&ctx, amode, akeysz, key[i], iv[i], | ||
| 441 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 442 | ptext[j], ctext[j], len); | ||
| 443 | } | ||
| 444 | else | ||
| 445 | { | ||
| 446 | if (dir == XENCRYPT) | ||
| 447 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 448 | else | ||
| 449 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 450 | } | ||
| 451 | if (dir == XENCRYPT) | ||
| 452 | { | ||
| 453 | if (j < 16) | ||
| 454 | memcpy(ptext[j+1], &iv[i][j], len); | ||
| 455 | else | ||
| 456 | memcpy(ptext[j+1], ctext[j-16], len); | ||
| 457 | } | ||
| 458 | else | ||
| 459 | { | ||
| 460 | if (j < 16) | ||
| 461 | memcpy(ctext[j+1], &iv[i][j], len); | ||
| 462 | else | ||
| 463 | memcpy(ctext[j+1], ptext[j-16], len); | ||
| 464 | } | ||
| 465 | break; | ||
| 466 | |||
| 467 | case CFB1: | ||
| 468 | if(j == 0) | ||
| 469 | { | ||
| 470 | /* compensate for wrong endianness of input file */ | ||
| 471 | if(i == 0) | ||
| 472 | ptext[0][0]<<=7; | ||
| 473 | ret=AESTest(&ctx,amode,akeysz,key[i],iv[i],dir, | ||
| 474 | ptext[j], ctext[j], len); | ||
| 475 | } | ||
| 476 | else | ||
| 477 | { | ||
| 478 | if (dir == XENCRYPT) | ||
| 479 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 480 | else | ||
| 481 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 482 | |||
| 483 | } | ||
| 484 | if(dir == XENCRYPT) | ||
| 485 | { | ||
| 486 | if(j < 128) | ||
| 487 | sb(ptext[j+1],0,gb(iv[i],j)); | ||
| 488 | else | ||
| 489 | sb(ptext[j+1],0,gb(ctext[j-128],0)); | ||
| 490 | } | ||
| 491 | else | ||
| 492 | { | ||
| 493 | if(j < 128) | ||
| 494 | sb(ctext[j+1],0,gb(iv[i],j)); | ||
| 495 | else | ||
| 496 | sb(ctext[j+1],0,gb(ptext[j-128],0)); | ||
| 497 | } | ||
| 498 | break; | ||
| 499 | } | ||
| 500 | } | ||
| 501 | --j; /* reset to last of range */ | ||
| 502 | /* Output Ciphertext | Plaintext */ | ||
| 503 | OutputValue(t_tag[dir],dir ? ctext[j] : ptext[j],len,rfp, | ||
| 504 | imode == CFB1); | ||
| 505 | fprintf(rfp, "\n"); /* add separator */ | ||
| 506 | |||
| 507 | /* Compute next KEY */ | ||
| 508 | if (dir == XENCRYPT) | ||
| 509 | { | ||
| 510 | if (imode == CFB8) | ||
| 511 | { /* ct = CT[j-15] || CT[j-14] || ... || CT[j] */ | ||
| 512 | for (n1 = 0, n2 = nkeysz-1; n1 < nkeysz; ++n1, --n2) | ||
| 513 | ciphertext[n1] = ctext[j-n2][0]; | ||
| 514 | } | ||
| 515 | else if(imode == CFB1) | ||
| 516 | { | ||
| 517 | for(n1=0,n2=akeysz-1 ; n1 < akeysz ; ++n1,--n2) | ||
| 518 | sb(ciphertext,n1,gb(ctext[j-n2],0)); | ||
| 519 | } | ||
| 520 | else | ||
| 521 | switch (akeysz) | ||
| 522 | { | ||
| 523 | case 128: | ||
| 524 | memcpy(ciphertext, ctext[j], 16); | ||
| 525 | break; | ||
| 526 | case 192: | ||
| 527 | memcpy(ciphertext, ctext[j-1]+8, 8); | ||
| 528 | memcpy(ciphertext+8, ctext[j], 16); | ||
| 529 | break; | ||
| 530 | case 256: | ||
| 531 | memcpy(ciphertext, ctext[j-1], 16); | ||
| 532 | memcpy(ciphertext+16, ctext[j], 16); | ||
| 533 | break; | ||
| 534 | } | ||
| 535 | } | ||
| 536 | else | ||
| 537 | { | ||
| 538 | if (imode == CFB8) | ||
| 539 | { /* ct = CT[j-15] || CT[j-14] || ... || CT[j] */ | ||
| 540 | for (n1 = 0, n2 = nkeysz-1; n1 < nkeysz; ++n1, --n2) | ||
| 541 | ciphertext[n1] = ptext[j-n2][0]; | ||
| 542 | } | ||
| 543 | else if(imode == CFB1) | ||
| 544 | { | ||
| 545 | for(n1=0,n2=akeysz-1 ; n1 < akeysz ; ++n1,--n2) | ||
| 546 | sb(ciphertext,n1,gb(ptext[j-n2],0)); | ||
| 547 | } | ||
| 548 | else | ||
| 549 | switch (akeysz) | ||
| 550 | { | ||
| 551 | case 128: | ||
| 552 | memcpy(ciphertext, ptext[j], 16); | ||
| 553 | break; | ||
| 554 | case 192: | ||
| 555 | memcpy(ciphertext, ptext[j-1]+8, 8); | ||
| 556 | memcpy(ciphertext+8, ptext[j], 16); | ||
| 557 | break; | ||
| 558 | case 256: | ||
| 559 | memcpy(ciphertext, ptext[j-1], 16); | ||
| 560 | memcpy(ciphertext+16, ptext[j], 16); | ||
| 561 | break; | ||
| 562 | } | ||
| 563 | } | ||
| 564 | /* Compute next key: Key[i+1] = Key[i] xor ct */ | ||
| 565 | for (n = 0; n < nkeysz; ++n) | ||
| 566 | key[i+1][n] = key[i][n] ^ ciphertext[n]; | ||
| 567 | |||
| 568 | /* Compute next IV and text */ | ||
| 569 | if (dir == XENCRYPT) | ||
| 570 | { | ||
| 571 | switch (imode) | ||
| 572 | { | ||
| 573 | case ECB: | ||
| 574 | memcpy(ptext[0], ctext[j], AES_BLOCK_SIZE); | ||
| 575 | break; | ||
| 576 | case CBC: | ||
| 577 | case OFB: | ||
| 578 | case CFB128: | ||
| 579 | memcpy(iv[i+1], ctext[j], AES_BLOCK_SIZE); | ||
| 580 | memcpy(ptext[0], ctext[j-1], AES_BLOCK_SIZE); | ||
| 581 | break; | ||
| 582 | case CFB8: | ||
| 583 | /* IV[i+1] = ct */ | ||
| 584 | for (n1 = 0, n2 = 15; n1 < 16; ++n1, --n2) | ||
| 585 | iv[i+1][n1] = ctext[j-n2][0]; | ||
| 586 | ptext[0][0] = ctext[j-16][0]; | ||
| 587 | break; | ||
| 588 | case CFB1: | ||
| 589 | for(n1=0,n2=127 ; n1 < 128 ; ++n1,--n2) | ||
| 590 | sb(iv[i+1],n1,gb(ctext[j-n2],0)); | ||
| 591 | ptext[0][0]=ctext[j-128][0]&0x80; | ||
| 592 | break; | ||
| 593 | } | ||
| 594 | } | ||
| 595 | else | ||
| 596 | { | ||
| 597 | switch (imode) | ||
| 598 | { | ||
| 599 | case ECB: | ||
| 600 | memcpy(ctext[0], ptext[j], AES_BLOCK_SIZE); | ||
| 601 | break; | ||
| 602 | case CBC: | ||
| 603 | case OFB: | ||
| 604 | case CFB128: | ||
| 605 | memcpy(iv[i+1], ptext[j], AES_BLOCK_SIZE); | ||
| 606 | memcpy(ctext[0], ptext[j-1], AES_BLOCK_SIZE); | ||
| 607 | break; | ||
| 608 | case CFB8: | ||
| 609 | for (n1 = 0, n2 = 15; n1 < 16; ++n1, --n2) | ||
| 610 | iv[i+1][n1] = ptext[j-n2][0]; | ||
| 611 | ctext[0][0] = ptext[j-16][0]; | ||
| 612 | break; | ||
| 613 | case CFB1: | ||
| 614 | for(n1=0,n2=127 ; n1 < 128 ; ++n1,--n2) | ||
| 615 | sb(iv[i+1],n1,gb(ptext[j-n2],0)); | ||
| 616 | ctext[0][0]=ptext[j-128][0]&0x80; | ||
| 617 | break; | ||
| 618 | } | ||
| 619 | } | ||
| 620 | } | ||
| 621 | |||
| 622 | return ret; | ||
| 623 | } | ||
| 624 | |||
| 625 | /*================================================*/ | ||
| 626 | /*---------------------------- | ||
| 627 | # Config info for v-one | ||
| 628 | # AESVS MMT test data for ECB | ||
| 629 | # State : Encrypt and Decrypt | ||
| 630 | # Key Length : 256 | ||
| 631 | # Fri Aug 30 04:07:22 PM | ||
| 632 | ----------------------------*/ | ||
| 633 | |||
| 634 | int proc_file(char *rqfile) | ||
| 635 | { | ||
| 636 | char afn[256], rfn[256]; | ||
| 637 | FILE *afp = NULL, *rfp = NULL; | ||
| 638 | char ibuf[2048]; | ||
| 639 | int ilen, len, ret = 0; | ||
| 640 | char algo[8] = ""; | ||
| 641 | char amode[8] = ""; | ||
| 642 | char atest[8] = ""; | ||
| 643 | int akeysz = 0; | ||
| 644 | unsigned char iVec[20], aKey[40]; | ||
| 645 | int dir = -1, err = 0, step = 0; | ||
| 646 | unsigned char plaintext[2048]; | ||
| 647 | unsigned char ciphertext[2048]; | ||
| 648 | char *rp; | ||
| 649 | EVP_CIPHER_CTX ctx; | ||
| 650 | |||
| 651 | if (!rqfile || !(*rqfile)) | ||
| 652 | { | ||
| 653 | printf("No req file\n"); | ||
| 654 | return -1; | ||
| 655 | } | ||
| 656 | strcpy(afn, rqfile); | ||
| 657 | |||
| 658 | if ((afp = fopen(afn, "r")) == NULL) | ||
| 659 | { | ||
| 660 | printf("Cannot open file: %s, %s\n", | ||
| 661 | afn, strerror(errno)); | ||
| 662 | return -1; | ||
| 663 | } | ||
| 664 | strcpy(rfn,afn); | ||
| 665 | rp=strstr(rfn,"req/"); | ||
| 666 | assert(rp); | ||
| 667 | memcpy(rp,"rsp",3); | ||
| 668 | rp = strstr(rfn, ".req"); | ||
| 669 | memcpy(rp, ".rsp", 4); | ||
| 670 | if ((rfp = fopen(rfn, "w")) == NULL) | ||
| 671 | { | ||
| 672 | printf("Cannot open file: %s, %s\n", | ||
| 673 | rfn, strerror(errno)); | ||
| 674 | fclose(afp); | ||
| 675 | afp = NULL; | ||
| 676 | return -1; | ||
| 677 | } | ||
| 678 | while (!err && (fgets(ibuf, sizeof(ibuf), afp)) != NULL) | ||
| 679 | { | ||
| 680 | ilen = strlen(ibuf); | ||
| 681 | /* printf("step=%d ibuf=%s",step,ibuf); */ | ||
| 682 | switch (step) | ||
| 683 | { | ||
| 684 | case 0: /* read preamble */ | ||
| 685 | if (ibuf[0] == '\n') | ||
| 686 | { /* end of preamble */ | ||
| 687 | if ((*algo == '\0') || | ||
| 688 | (*amode == '\0') || | ||
| 689 | (akeysz == 0)) | ||
| 690 | { | ||
| 691 | printf("Missing Algorithm, Mode or KeySize (%s/%s/%d)\n", | ||
| 692 | algo,amode,akeysz); | ||
| 693 | err = 1; | ||
| 694 | } | ||
| 695 | else | ||
| 696 | { | ||
| 697 | fputs(ibuf, rfp); | ||
| 698 | ++ step; | ||
| 699 | } | ||
| 700 | } | ||
| 701 | else if (ibuf[0] != '#') | ||
| 702 | { | ||
| 703 | printf("Invalid preamble item: %s\n", ibuf); | ||
| 704 | err = 1; | ||
| 705 | } | ||
| 706 | else | ||
| 707 | { /* process preamble */ | ||
| 708 | char *xp, *pp = ibuf+2; | ||
| 709 | int n; | ||
| 710 | if (akeysz) | ||
| 711 | { /* insert current time & date */ | ||
| 712 | time_t rtim = time(0); | ||
| 713 | fprintf(rfp, "# %s", ctime(&rtim)); | ||
| 714 | } | ||
| 715 | else | ||
| 716 | { | ||
| 717 | fputs(ibuf, rfp); | ||
| 718 | if (strncmp(pp, "AESVS ", 6) == 0) | ||
| 719 | { | ||
| 720 | strcpy(algo, "AES"); | ||
| 721 | /* get test type */ | ||
| 722 | pp += 6; | ||
| 723 | xp = strchr(pp, ' '); | ||
| 724 | n = xp-pp; | ||
| 725 | strncpy(atest, pp, n); | ||
| 726 | atest[n] = '\0'; | ||
| 727 | /* get mode */ | ||
| 728 | xp = strrchr(pp, ' '); /* get mode" */ | ||
| 729 | n = strlen(xp+1)-1; | ||
| 730 | strncpy(amode, xp+1, n); | ||
| 731 | amode[n] = '\0'; | ||
| 732 | /* amode[3] = '\0'; */ | ||
| 733 | printf("Test = %s, Mode = %s\n", atest, amode); | ||
| 734 | } | ||
| 735 | else if (strncasecmp(pp, "Key Length : ", 13) == 0) | ||
| 736 | { | ||
| 737 | akeysz = atoi(pp+13); | ||
| 738 | printf("Key size = %d\n", akeysz); | ||
| 739 | } | ||
| 740 | } | ||
| 741 | } | ||
| 742 | break; | ||
| 743 | |||
| 744 | case 1: /* [ENCRYPT] | [DECRYPT] */ | ||
| 745 | if (ibuf[0] == '[') | ||
| 746 | { | ||
| 747 | fputs(ibuf, rfp); | ||
| 748 | ++step; | ||
| 749 | if (strncasecmp(ibuf, "[ENCRYPT]", 9) == 0) | ||
| 750 | dir = 1; | ||
| 751 | else if (strncasecmp(ibuf, "[DECRYPT]", 9) == 0) | ||
| 752 | dir = 0; | ||
| 753 | else | ||
| 754 | { | ||
| 755 | printf("Invalid keyword: %s\n", ibuf); | ||
| 756 | err = 1; | ||
| 757 | } | ||
| 758 | break; | ||
| 759 | } | ||
| 760 | else if (dir == -1) | ||
| 761 | { | ||
| 762 | err = 1; | ||
| 763 | printf("Missing ENCRYPT/DECRYPT keyword\n"); | ||
| 764 | break; | ||
| 765 | } | ||
| 766 | else | ||
| 767 | step = 2; | ||
| 768 | |||
| 769 | case 2: /* KEY = xxxx */ | ||
| 770 | fputs(ibuf, rfp); | ||
| 771 | if(*ibuf == '\n') | ||
| 772 | break; | ||
| 773 | if(!strncasecmp(ibuf,"COUNT = ",8)) | ||
| 774 | break; | ||
| 775 | |||
| 776 | if (strncasecmp(ibuf, "KEY = ", 6) != 0) | ||
| 777 | { | ||
| 778 | printf("Missing KEY\n"); | ||
| 779 | err = 1; | ||
| 780 | } | ||
| 781 | else | ||
| 782 | { | ||
| 783 | len = hex2bin((char*)ibuf+6, strlen(ibuf+6)-1, aKey); | ||
| 784 | if (len < 0) | ||
| 785 | { | ||
| 786 | printf("Invalid KEY\n"); | ||
| 787 | err =1; | ||
| 788 | break; | ||
| 789 | } | ||
| 790 | PrintValue("KEY", aKey, len); | ||
| 791 | if (strcmp(amode, "ECB") == 0) | ||
| 792 | { | ||
| 793 | memset(iVec, 0, sizeof(iVec)); | ||
| 794 | step = (dir)? 4: 5; /* no ivec for ECB */ | ||
| 795 | } | ||
| 796 | else | ||
| 797 | ++step; | ||
| 798 | } | ||
| 799 | break; | ||
| 800 | |||
| 801 | case 3: /* IV = xxxx */ | ||
| 802 | fputs(ibuf, rfp); | ||
| 803 | if (strncasecmp(ibuf, "IV = ", 5) != 0) | ||
| 804 | { | ||
| 805 | printf("Missing IV\n"); | ||
| 806 | err = 1; | ||
| 807 | } | ||
| 808 | else | ||
| 809 | { | ||
| 810 | len = hex2bin((char*)ibuf+5, strlen(ibuf+5)-1, iVec); | ||
| 811 | if (len < 0) | ||
| 812 | { | ||
| 813 | printf("Invalid IV\n"); | ||
| 814 | err =1; | ||
| 815 | break; | ||
| 816 | } | ||
| 817 | PrintValue("IV", iVec, len); | ||
| 818 | step = (dir)? 4: 5; | ||
| 819 | } | ||
| 820 | break; | ||
| 821 | |||
| 822 | case 4: /* PLAINTEXT = xxxx */ | ||
| 823 | fputs(ibuf, rfp); | ||
| 824 | if (strncasecmp(ibuf, "PLAINTEXT = ", 12) != 0) | ||
| 825 | { | ||
| 826 | printf("Missing PLAINTEXT\n"); | ||
| 827 | err = 1; | ||
| 828 | } | ||
| 829 | else | ||
| 830 | { | ||
| 831 | int nn = strlen(ibuf+12); | ||
| 832 | if(!strcmp(amode,"CFB1")) | ||
| 833 | len=bint2bin(ibuf+12,nn-1,plaintext); | ||
| 834 | else | ||
| 835 | len=hex2bin(ibuf+12, nn-1,plaintext); | ||
| 836 | if (len < 0) | ||
| 837 | { | ||
| 838 | printf("Invalid PLAINTEXT: %s", ibuf+12); | ||
| 839 | err =1; | ||
| 840 | break; | ||
| 841 | } | ||
| 842 | if (len >= sizeof(plaintext)) | ||
| 843 | { | ||
| 844 | printf("Buffer overflow\n"); | ||
| 845 | } | ||
| 846 | PrintValue("PLAINTEXT", (unsigned char*)plaintext, len); | ||
| 847 | if (strcmp(atest, "MCT") == 0) /* Monte Carlo Test */ | ||
| 848 | { | ||
| 849 | if(do_mct(amode, akeysz, aKey, iVec, | ||
| 850 | dir, (unsigned char*)plaintext, len, | ||
| 851 | rfp) < 0) | ||
| 852 | EXIT(1); | ||
| 853 | } | ||
| 854 | else | ||
| 855 | { | ||
| 856 | ret = AESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 857 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 858 | plaintext, ciphertext, len); | ||
| 859 | OutputValue("CIPHERTEXT",ciphertext,len,rfp, | ||
| 860 | !strcmp(amode,"CFB1")); | ||
| 861 | } | ||
| 862 | step = 6; | ||
| 863 | } | ||
| 864 | break; | ||
| 865 | |||
| 866 | case 5: /* CIPHERTEXT = xxxx */ | ||
| 867 | fputs(ibuf, rfp); | ||
| 868 | if (strncasecmp(ibuf, "CIPHERTEXT = ", 13) != 0) | ||
| 869 | { | ||
| 870 | printf("Missing KEY\n"); | ||
| 871 | err = 1; | ||
| 872 | } | ||
| 873 | else | ||
| 874 | { | ||
| 875 | if(!strcmp(amode,"CFB1")) | ||
| 876 | len=bint2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 877 | else | ||
| 878 | len = hex2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 879 | if (len < 0) | ||
| 880 | { | ||
| 881 | printf("Invalid CIPHERTEXT\n"); | ||
| 882 | err =1; | ||
| 883 | break; | ||
| 884 | } | ||
| 885 | |||
| 886 | PrintValue("CIPHERTEXT", ciphertext, len); | ||
| 887 | if (strcmp(atest, "MCT") == 0) /* Monte Carlo Test */ | ||
| 888 | { | ||
| 889 | do_mct(amode, akeysz, aKey, iVec, | ||
| 890 | dir, ciphertext, len, rfp); | ||
| 891 | } | ||
| 892 | else | ||
| 893 | { | ||
| 894 | ret = AESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 895 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 896 | plaintext, ciphertext, len); | ||
| 897 | OutputValue("PLAINTEXT",(unsigned char *)plaintext,len,rfp, | ||
| 898 | !strcmp(amode,"CFB1")); | ||
| 899 | } | ||
| 900 | step = 6; | ||
| 901 | } | ||
| 902 | break; | ||
| 903 | |||
| 904 | case 6: | ||
| 905 | if (ibuf[0] != '\n') | ||
| 906 | { | ||
| 907 | err = 1; | ||
| 908 | printf("Missing terminator\n"); | ||
| 909 | } | ||
| 910 | else if (strcmp(atest, "MCT") != 0) | ||
| 911 | { /* MCT already added terminating nl */ | ||
| 912 | fputs(ibuf, rfp); | ||
| 913 | } | ||
| 914 | step = 1; | ||
| 915 | break; | ||
| 916 | } | ||
| 917 | } | ||
| 918 | if (rfp) | ||
| 919 | fclose(rfp); | ||
| 920 | if (afp) | ||
| 921 | fclose(afp); | ||
| 922 | return err; | ||
| 923 | } | ||
| 924 | |||
| 925 | /*-------------------------------------------------- | ||
| 926 | Processes either a single file or | ||
| 927 | a set of files whose names are passed in a file. | ||
| 928 | A single file is specified as: | ||
| 929 | aes_test -f xxx.req | ||
| 930 | A set of files is specified as: | ||
| 931 | aes_test -d xxxxx.xxx | ||
| 932 | The default is: -d req.txt | ||
| 933 | --------------------------------------------------*/ | ||
| 934 | int main(int argc, char **argv) | ||
| 935 | { | ||
| 936 | char *rqlist = "req.txt"; | ||
| 937 | FILE *fp = NULL; | ||
| 938 | char fn[250] = "", rfn[256] = ""; | ||
| 939 | int f_opt = 0, d_opt = 1; | ||
| 940 | |||
| 941 | #ifdef OPENSSL_FIPS | ||
| 942 | if(!FIPS_mode_set(1)) | ||
| 943 | { | ||
| 944 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 945 | EXIT(1); | ||
| 946 | } | ||
| 947 | #endif | ||
| 948 | ERR_load_crypto_strings(); | ||
| 949 | if (argc > 1) | ||
| 950 | { | ||
| 951 | if (strcasecmp(argv[1], "-d") == 0) | ||
| 952 | { | ||
| 953 | d_opt = 1; | ||
| 954 | } | ||
| 955 | else if (strcasecmp(argv[1], "-f") == 0) | ||
| 956 | { | ||
| 957 | f_opt = 1; | ||
| 958 | d_opt = 0; | ||
| 959 | } | ||
| 960 | else | ||
| 961 | { | ||
| 962 | printf("Invalid parameter: %s\n", argv[1]); | ||
| 963 | return 0; | ||
| 964 | } | ||
| 965 | if (argc < 3) | ||
| 966 | { | ||
| 967 | printf("Missing parameter\n"); | ||
| 968 | return 0; | ||
| 969 | } | ||
| 970 | if (d_opt) | ||
| 971 | rqlist = argv[2]; | ||
| 972 | else | ||
| 973 | strcpy(fn, argv[2]); | ||
| 974 | } | ||
| 975 | if (d_opt) | ||
| 976 | { /* list of files (directory) */ | ||
| 977 | if (!(fp = fopen(rqlist, "r"))) | ||
| 978 | { | ||
| 979 | printf("Cannot open req list file\n"); | ||
| 980 | return -1; | ||
| 981 | } | ||
| 982 | while (fgets(fn, sizeof(fn), fp)) | ||
| 983 | { | ||
| 984 | strtok(fn, "\r\n"); | ||
| 985 | strcpy(rfn, fn); | ||
| 986 | printf("Processing: %s\n", rfn); | ||
| 987 | if (proc_file(rfn)) | ||
| 988 | { | ||
| 989 | printf(">>> Processing failed for: %s <<<\n", rfn); | ||
| 990 | EXIT(1); | ||
| 991 | } | ||
| 992 | } | ||
| 993 | fclose(fp); | ||
| 994 | } | ||
| 995 | else /* single file */ | ||
| 996 | { | ||
| 997 | printf("Processing: %s\n", fn); | ||
| 998 | if (proc_file(fn)) | ||
| 999 | { | ||
| 1000 | printf(">>> Processing failed for: %s <<<\n", fn); | ||
| 1001 | } | ||
| 1002 | } | ||
| 1003 | EXIT(0); | ||
| 1004 | return 0; | ||
| 1005 | } | ||
diff --git a/src/lib/libssl/src/fips-1.0/des/Makefile b/src/lib/libssl/src/fips-1.0/des/Makefile deleted file mode 100644 index 772d775790..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/Makefile +++ /dev/null | |||
| @@ -1,135 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/des/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= des | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | FIPS_DES_ENC=fips_des_enc.o | ||
| 19 | |||
| 20 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 21 | |||
| 22 | GENERAL=Makefile | ||
| 23 | TEST= fips_desmovs.c | ||
| 24 | APPS= | ||
| 25 | |||
| 26 | LIB=$(TOP)/libcrypto.a | ||
| 27 | LIBSRC=fips_des_enc.c asm/fips-dx86-elf.s fips_des_selftest.c fips_set_key.c | ||
| 28 | LIBOBJ=$(FIPS_DES_ENC) fips_des_selftest.o fips_set_key.o | ||
| 29 | |||
| 30 | SRC= $(LIBSRC) | ||
| 31 | |||
| 32 | EXHEADER= | ||
| 33 | HEADER= $(EXHEADER) fips_des_locl.h | ||
| 34 | |||
| 35 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 36 | |||
| 37 | top: | ||
| 38 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 39 | |||
| 40 | all: lib | ||
| 41 | |||
| 42 | lib: $(LIBOBJ) | ||
| 43 | @echo $(LIBOBJ) > lib | ||
| 44 | |||
| 45 | files: | ||
| 46 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 47 | |||
| 48 | links: | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 50 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 51 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 52 | |||
| 53 | install: | ||
| 54 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 55 | do \ | ||
| 56 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 57 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 58 | done | ||
| 59 | |||
| 60 | tags: | ||
| 61 | ctags $(SRC) | ||
| 62 | |||
| 63 | tests: | ||
| 64 | |||
| 65 | fips_test: | ||
| 66 | -find ../testvectors/tdes/req -name '*.req' > testlist | ||
| 67 | -rm -rf ../testvectors/tdes/rsp | ||
| 68 | mkdir ../testvectors/tdes/rsp | ||
| 69 | if [ -s testlist ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_desmovs -d testlist; fi | ||
| 70 | |||
| 71 | lint: | ||
| 72 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 73 | |||
| 74 | depend: | ||
| 75 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) \ | ||
| 76 | $(SRC) $(TEST) | ||
| 77 | dclean: | ||
| 78 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 79 | mv -f Makefile.new $(MAKEFILE) | ||
| 80 | |||
| 81 | clean: | ||
| 82 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 83 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 84 | |||
| 85 | fips_des_enc.o: ../../e_os.h ../../include/openssl/crypto.h | ||
| 86 | fips_des_enc.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 87 | fips_des_enc.o: ../../include/openssl/e_os2.h ../../include/openssl/fips.h | ||
| 88 | fips_des_enc.o: ../../include/openssl/opensslconf.h | ||
| 89 | fips_des_enc.o: ../../include/openssl/opensslv.h | ||
| 90 | fips_des_enc.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 91 | fips_des_enc.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 92 | fips_des_enc.o: ../../include/openssl/ui_compat.h fips_des_enc.c | ||
| 93 | fips_des_enc.o: fips_des_locl.h | ||
| 94 | fips_des_selftest.o: ../../include/openssl/bio.h ../../include/openssl/crypto.h | ||
| 95 | fips_des_selftest.o: ../../include/openssl/des.h | ||
| 96 | fips_des_selftest.o: ../../include/openssl/des_old.h | ||
| 97 | fips_des_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 98 | fips_des_selftest.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 99 | fips_des_selftest.o: ../../include/openssl/opensslconf.h | ||
| 100 | fips_des_selftest.o: ../../include/openssl/opensslv.h | ||
| 101 | fips_des_selftest.o: ../../include/openssl/safestack.h | ||
| 102 | fips_des_selftest.o: ../../include/openssl/stack.h | ||
| 103 | fips_des_selftest.o: ../../include/openssl/symhacks.h | ||
| 104 | fips_des_selftest.o: ../../include/openssl/ui.h | ||
| 105 | fips_des_selftest.o: ../../include/openssl/ui_compat.h fips_des_selftest.c | ||
| 106 | fips_desmovs.o: ../../e_os.h ../../include/openssl/aes.h | ||
| 107 | fips_desmovs.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 108 | fips_desmovs.o: ../../include/openssl/blowfish.h ../../include/openssl/bn.h | ||
| 109 | fips_desmovs.o: ../../include/openssl/cast.h ../../include/openssl/crypto.h | ||
| 110 | fips_desmovs.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 111 | fips_desmovs.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 112 | fips_desmovs.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 113 | fips_desmovs.o: ../../include/openssl/evp.h ../../include/openssl/fips.h | ||
| 114 | fips_desmovs.o: ../../include/openssl/idea.h ../../include/openssl/lhash.h | ||
| 115 | fips_desmovs.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 116 | fips_desmovs.o: ../../include/openssl/md5.h ../../include/openssl/mdc2.h | ||
| 117 | fips_desmovs.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 118 | fips_desmovs.o: ../../include/openssl/opensslconf.h | ||
| 119 | fips_desmovs.o: ../../include/openssl/opensslv.h | ||
| 120 | fips_desmovs.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rc2.h | ||
| 121 | fips_desmovs.o: ../../include/openssl/rc4.h ../../include/openssl/rc5.h | ||
| 122 | fips_desmovs.o: ../../include/openssl/ripemd.h ../../include/openssl/rsa.h | ||
| 123 | fips_desmovs.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 124 | fips_desmovs.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 125 | fips_desmovs.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 126 | fips_desmovs.o: fips_desmovs.c | ||
| 127 | fips_set_key.o: ../../e_os.h ../../include/openssl/crypto.h | ||
| 128 | fips_set_key.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 129 | fips_set_key.o: ../../include/openssl/e_os2.h ../../include/openssl/fips.h | ||
| 130 | fips_set_key.o: ../../include/openssl/opensslconf.h | ||
| 131 | fips_set_key.o: ../../include/openssl/opensslv.h | ||
| 132 | fips_set_key.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 133 | fips_set_key.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 134 | fips_set_key.o: ../../include/openssl/ui_compat.h fips_des_locl.h | ||
| 135 | fips_set_key.o: fips_set_key.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/des/asm/fips-dx86-elf.s b/src/lib/libssl/src/fips-1.0/des/asm/fips-dx86-elf.s deleted file mode 100644 index 7b4b11f0f3..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/asm/fips-dx86-elf.s +++ /dev/null | |||
| @@ -1,2707 +0,0 @@ | |||
| 1 | |||
| 2 | |||
| 3 | |||
| 4 | |||
| 5 | |||
| 6 | |||
| 7 | .file "des-586.s" | ||
| 8 | .version "01.01" | ||
| 9 | gcc2_compiled.: | ||
| 10 | .text | ||
| 11 | .align 16 | ||
| 12 | .globl DES_encrypt1 | ||
| 13 | .type DES_encrypt1,@function | ||
| 14 | DES_encrypt1: | ||
| 15 | pushl %esi | ||
| 16 | pushl %edi | ||
| 17 | |||
| 18 | |||
| 19 | movl 12(%esp), %esi | ||
| 20 | xorl %ecx, %ecx | ||
| 21 | pushl %ebx | ||
| 22 | pushl %ebp | ||
| 23 | movl (%esi), %eax | ||
| 24 | movl 28(%esp), %ebx | ||
| 25 | movl 4(%esi), %edi | ||
| 26 | |||
| 27 | |||
| 28 | roll $4, %eax | ||
| 29 | movl %eax, %esi | ||
| 30 | xorl %edi, %eax | ||
| 31 | andl $0xf0f0f0f0, %eax | ||
| 32 | xorl %eax, %esi | ||
| 33 | xorl %eax, %edi | ||
| 34 | |||
| 35 | roll $20, %edi | ||
| 36 | movl %edi, %eax | ||
| 37 | xorl %esi, %edi | ||
| 38 | andl $0xfff0000f, %edi | ||
| 39 | xorl %edi, %eax | ||
| 40 | xorl %edi, %esi | ||
| 41 | |||
| 42 | roll $14, %eax | ||
| 43 | movl %eax, %edi | ||
| 44 | xorl %esi, %eax | ||
| 45 | andl $0x33333333, %eax | ||
| 46 | xorl %eax, %edi | ||
| 47 | xorl %eax, %esi | ||
| 48 | |||
| 49 | roll $22, %esi | ||
| 50 | movl %esi, %eax | ||
| 51 | xorl %edi, %esi | ||
| 52 | andl $0x03fc03fc, %esi | ||
| 53 | xorl %esi, %eax | ||
| 54 | xorl %esi, %edi | ||
| 55 | |||
| 56 | roll $9, %eax | ||
| 57 | movl %eax, %esi | ||
| 58 | xorl %edi, %eax | ||
| 59 | andl $0xaaaaaaaa, %eax | ||
| 60 | xorl %eax, %esi | ||
| 61 | xorl %eax, %edi | ||
| 62 | |||
| 63 | .byte 209 | ||
| 64 | .byte 199 | ||
| 65 | .align 8 | ||
| 66 | call .L000PIC_me_up | ||
| 67 | .L000PIC_me_up: | ||
| 68 | popl %ebp | ||
| 69 | addl $_GLOBAL_OFFSET_TABLE_+[.-.L000PIC_me_up],%ebp | ||
| 70 | movl DES_SPtrans@GOT(%ebp),%ebp | ||
| 71 | movl 24(%esp), %ecx | ||
| 72 | cmpl $0, %ebx | ||
| 73 | je .L001start_decrypt | ||
| 74 | |||
| 75 | |||
| 76 | movl (%ecx), %eax | ||
| 77 | xorl %ebx, %ebx | ||
| 78 | movl 4(%ecx), %edx | ||
| 79 | xorl %esi, %eax | ||
| 80 | xorl %ecx, %ecx | ||
| 81 | xorl %esi, %edx | ||
| 82 | andl $0xfcfcfcfc, %eax | ||
| 83 | andl $0xcfcfcfcf, %edx | ||
| 84 | movb %al, %bl | ||
| 85 | movb %ah, %cl | ||
| 86 | rorl $4, %edx | ||
| 87 | xorl (%ebp,%ebx),%edi | ||
| 88 | movb %dl, %bl | ||
| 89 | xorl 0x200(%ebp,%ecx),%edi | ||
| 90 | movb %dh, %cl | ||
| 91 | shrl $16, %eax | ||
| 92 | xorl 0x100(%ebp,%ebx),%edi | ||
| 93 | movb %ah, %bl | ||
| 94 | shrl $16, %edx | ||
| 95 | xorl 0x300(%ebp,%ecx),%edi | ||
| 96 | movb %dh, %cl | ||
| 97 | andl $0xff, %eax | ||
| 98 | andl $0xff, %edx | ||
| 99 | xorl 0x600(%ebp,%ebx),%edi | ||
| 100 | xorl 0x700(%ebp,%ecx),%edi | ||
| 101 | movl 24(%esp), %ecx | ||
| 102 | xorl 0x400(%ebp,%eax),%edi | ||
| 103 | xorl 0x500(%ebp,%edx),%edi | ||
| 104 | |||
| 105 | |||
| 106 | movl 8(%ecx), %eax | ||
| 107 | xorl %ebx, %ebx | ||
| 108 | movl 12(%ecx), %edx | ||
| 109 | xorl %edi, %eax | ||
| 110 | xorl %ecx, %ecx | ||
| 111 | xorl %edi, %edx | ||
| 112 | andl $0xfcfcfcfc, %eax | ||
| 113 | andl $0xcfcfcfcf, %edx | ||
| 114 | movb %al, %bl | ||
| 115 | movb %ah, %cl | ||
| 116 | rorl $4, %edx | ||
| 117 | xorl (%ebp,%ebx),%esi | ||
| 118 | movb %dl, %bl | ||
| 119 | xorl 0x200(%ebp,%ecx),%esi | ||
| 120 | movb %dh, %cl | ||
| 121 | shrl $16, %eax | ||
| 122 | xorl 0x100(%ebp,%ebx),%esi | ||
| 123 | movb %ah, %bl | ||
| 124 | shrl $16, %edx | ||
| 125 | xorl 0x300(%ebp,%ecx),%esi | ||
| 126 | movb %dh, %cl | ||
| 127 | andl $0xff, %eax | ||
| 128 | andl $0xff, %edx | ||
| 129 | xorl 0x600(%ebp,%ebx),%esi | ||
| 130 | xorl 0x700(%ebp,%ecx),%esi | ||
| 131 | movl 24(%esp), %ecx | ||
| 132 | xorl 0x400(%ebp,%eax),%esi | ||
| 133 | xorl 0x500(%ebp,%edx),%esi | ||
| 134 | |||
| 135 | |||
| 136 | movl 16(%ecx), %eax | ||
| 137 | xorl %ebx, %ebx | ||
| 138 | movl 20(%ecx), %edx | ||
| 139 | xorl %esi, %eax | ||
| 140 | xorl %ecx, %ecx | ||
| 141 | xorl %esi, %edx | ||
| 142 | andl $0xfcfcfcfc, %eax | ||
| 143 | andl $0xcfcfcfcf, %edx | ||
| 144 | movb %al, %bl | ||
| 145 | movb %ah, %cl | ||
| 146 | rorl $4, %edx | ||
| 147 | xorl (%ebp,%ebx),%edi | ||
| 148 | movb %dl, %bl | ||
| 149 | xorl 0x200(%ebp,%ecx),%edi | ||
| 150 | movb %dh, %cl | ||
| 151 | shrl $16, %eax | ||
| 152 | xorl 0x100(%ebp,%ebx),%edi | ||
| 153 | movb %ah, %bl | ||
| 154 | shrl $16, %edx | ||
| 155 | xorl 0x300(%ebp,%ecx),%edi | ||
| 156 | movb %dh, %cl | ||
| 157 | andl $0xff, %eax | ||
| 158 | andl $0xff, %edx | ||
| 159 | xorl 0x600(%ebp,%ebx),%edi | ||
| 160 | xorl 0x700(%ebp,%ecx),%edi | ||
| 161 | movl 24(%esp), %ecx | ||
| 162 | xorl 0x400(%ebp,%eax),%edi | ||
| 163 | xorl 0x500(%ebp,%edx),%edi | ||
| 164 | |||
| 165 | |||
| 166 | movl 24(%ecx), %eax | ||
| 167 | xorl %ebx, %ebx | ||
| 168 | movl 28(%ecx), %edx | ||
| 169 | xorl %edi, %eax | ||
| 170 | xorl %ecx, %ecx | ||
| 171 | xorl %edi, %edx | ||
| 172 | andl $0xfcfcfcfc, %eax | ||
| 173 | andl $0xcfcfcfcf, %edx | ||
| 174 | movb %al, %bl | ||
| 175 | movb %ah, %cl | ||
| 176 | rorl $4, %edx | ||
| 177 | xorl (%ebp,%ebx),%esi | ||
| 178 | movb %dl, %bl | ||
| 179 | xorl 0x200(%ebp,%ecx),%esi | ||
| 180 | movb %dh, %cl | ||
| 181 | shrl $16, %eax | ||
| 182 | xorl 0x100(%ebp,%ebx),%esi | ||
| 183 | movb %ah, %bl | ||
| 184 | shrl $16, %edx | ||
| 185 | xorl 0x300(%ebp,%ecx),%esi | ||
| 186 | movb %dh, %cl | ||
| 187 | andl $0xff, %eax | ||
| 188 | andl $0xff, %edx | ||
| 189 | xorl 0x600(%ebp,%ebx),%esi | ||
| 190 | xorl 0x700(%ebp,%ecx),%esi | ||
| 191 | movl 24(%esp), %ecx | ||
| 192 | xorl 0x400(%ebp,%eax),%esi | ||
| 193 | xorl 0x500(%ebp,%edx),%esi | ||
| 194 | |||
| 195 | |||
| 196 | movl 32(%ecx), %eax | ||
| 197 | xorl %ebx, %ebx | ||
| 198 | movl 36(%ecx), %edx | ||
| 199 | xorl %esi, %eax | ||
| 200 | xorl %ecx, %ecx | ||
| 201 | xorl %esi, %edx | ||
| 202 | andl $0xfcfcfcfc, %eax | ||
| 203 | andl $0xcfcfcfcf, %edx | ||
| 204 | movb %al, %bl | ||
| 205 | movb %ah, %cl | ||
| 206 | rorl $4, %edx | ||
| 207 | xorl (%ebp,%ebx),%edi | ||
| 208 | movb %dl, %bl | ||
| 209 | xorl 0x200(%ebp,%ecx),%edi | ||
| 210 | movb %dh, %cl | ||
| 211 | shrl $16, %eax | ||
| 212 | xorl 0x100(%ebp,%ebx),%edi | ||
| 213 | movb %ah, %bl | ||
| 214 | shrl $16, %edx | ||
| 215 | xorl 0x300(%ebp,%ecx),%edi | ||
| 216 | movb %dh, %cl | ||
| 217 | andl $0xff, %eax | ||
| 218 | andl $0xff, %edx | ||
| 219 | xorl 0x600(%ebp,%ebx),%edi | ||
| 220 | xorl 0x700(%ebp,%ecx),%edi | ||
| 221 | movl 24(%esp), %ecx | ||
| 222 | xorl 0x400(%ebp,%eax),%edi | ||
| 223 | xorl 0x500(%ebp,%edx),%edi | ||
| 224 | |||
| 225 | |||
| 226 | movl 40(%ecx), %eax | ||
| 227 | xorl %ebx, %ebx | ||
| 228 | movl 44(%ecx), %edx | ||
| 229 | xorl %edi, %eax | ||
| 230 | xorl %ecx, %ecx | ||
| 231 | xorl %edi, %edx | ||
| 232 | andl $0xfcfcfcfc, %eax | ||
| 233 | andl $0xcfcfcfcf, %edx | ||
| 234 | movb %al, %bl | ||
| 235 | movb %ah, %cl | ||
| 236 | rorl $4, %edx | ||
| 237 | xorl (%ebp,%ebx),%esi | ||
| 238 | movb %dl, %bl | ||
| 239 | xorl 0x200(%ebp,%ecx),%esi | ||
| 240 | movb %dh, %cl | ||
| 241 | shrl $16, %eax | ||
| 242 | xorl 0x100(%ebp,%ebx),%esi | ||
| 243 | movb %ah, %bl | ||
| 244 | shrl $16, %edx | ||
| 245 | xorl 0x300(%ebp,%ecx),%esi | ||
| 246 | movb %dh, %cl | ||
| 247 | andl $0xff, %eax | ||
| 248 | andl $0xff, %edx | ||
| 249 | xorl 0x600(%ebp,%ebx),%esi | ||
| 250 | xorl 0x700(%ebp,%ecx),%esi | ||
| 251 | movl 24(%esp), %ecx | ||
| 252 | xorl 0x400(%ebp,%eax),%esi | ||
| 253 | xorl 0x500(%ebp,%edx),%esi | ||
| 254 | |||
| 255 | |||
| 256 | movl 48(%ecx), %eax | ||
| 257 | xorl %ebx, %ebx | ||
| 258 | movl 52(%ecx), %edx | ||
| 259 | xorl %esi, %eax | ||
| 260 | xorl %ecx, %ecx | ||
| 261 | xorl %esi, %edx | ||
| 262 | andl $0xfcfcfcfc, %eax | ||
| 263 | andl $0xcfcfcfcf, %edx | ||
| 264 | movb %al, %bl | ||
| 265 | movb %ah, %cl | ||
| 266 | rorl $4, %edx | ||
| 267 | xorl (%ebp,%ebx),%edi | ||
| 268 | movb %dl, %bl | ||
| 269 | xorl 0x200(%ebp,%ecx),%edi | ||
| 270 | movb %dh, %cl | ||
| 271 | shrl $16, %eax | ||
| 272 | xorl 0x100(%ebp,%ebx),%edi | ||
| 273 | movb %ah, %bl | ||
| 274 | shrl $16, %edx | ||
| 275 | xorl 0x300(%ebp,%ecx),%edi | ||
| 276 | movb %dh, %cl | ||
| 277 | andl $0xff, %eax | ||
| 278 | andl $0xff, %edx | ||
| 279 | xorl 0x600(%ebp,%ebx),%edi | ||
| 280 | xorl 0x700(%ebp,%ecx),%edi | ||
| 281 | movl 24(%esp), %ecx | ||
| 282 | xorl 0x400(%ebp,%eax),%edi | ||
| 283 | xorl 0x500(%ebp,%edx),%edi | ||
| 284 | |||
| 285 | |||
| 286 | movl 56(%ecx), %eax | ||
| 287 | xorl %ebx, %ebx | ||
| 288 | movl 60(%ecx), %edx | ||
| 289 | xorl %edi, %eax | ||
| 290 | xorl %ecx, %ecx | ||
| 291 | xorl %edi, %edx | ||
| 292 | andl $0xfcfcfcfc, %eax | ||
| 293 | andl $0xcfcfcfcf, %edx | ||
| 294 | movb %al, %bl | ||
| 295 | movb %ah, %cl | ||
| 296 | rorl $4, %edx | ||
| 297 | xorl (%ebp,%ebx),%esi | ||
| 298 | movb %dl, %bl | ||
| 299 | xorl 0x200(%ebp,%ecx),%esi | ||
| 300 | movb %dh, %cl | ||
| 301 | shrl $16, %eax | ||
| 302 | xorl 0x100(%ebp,%ebx),%esi | ||
| 303 | movb %ah, %bl | ||
| 304 | shrl $16, %edx | ||
| 305 | xorl 0x300(%ebp,%ecx),%esi | ||
| 306 | movb %dh, %cl | ||
| 307 | andl $0xff, %eax | ||
| 308 | andl $0xff, %edx | ||
| 309 | xorl 0x600(%ebp,%ebx),%esi | ||
| 310 | xorl 0x700(%ebp,%ecx),%esi | ||
| 311 | movl 24(%esp), %ecx | ||
| 312 | xorl 0x400(%ebp,%eax),%esi | ||
| 313 | xorl 0x500(%ebp,%edx),%esi | ||
| 314 | |||
| 315 | |||
| 316 | movl 64(%ecx), %eax | ||
| 317 | xorl %ebx, %ebx | ||
| 318 | movl 68(%ecx), %edx | ||
| 319 | xorl %esi, %eax | ||
| 320 | xorl %ecx, %ecx | ||
| 321 | xorl %esi, %edx | ||
| 322 | andl $0xfcfcfcfc, %eax | ||
| 323 | andl $0xcfcfcfcf, %edx | ||
| 324 | movb %al, %bl | ||
| 325 | movb %ah, %cl | ||
| 326 | rorl $4, %edx | ||
| 327 | xorl (%ebp,%ebx),%edi | ||
| 328 | movb %dl, %bl | ||
| 329 | xorl 0x200(%ebp,%ecx),%edi | ||
| 330 | movb %dh, %cl | ||
| 331 | shrl $16, %eax | ||
| 332 | xorl 0x100(%ebp,%ebx),%edi | ||
| 333 | movb %ah, %bl | ||
| 334 | shrl $16, %edx | ||
| 335 | xorl 0x300(%ebp,%ecx),%edi | ||
| 336 | movb %dh, %cl | ||
| 337 | andl $0xff, %eax | ||
| 338 | andl $0xff, %edx | ||
| 339 | xorl 0x600(%ebp,%ebx),%edi | ||
| 340 | xorl 0x700(%ebp,%ecx),%edi | ||
| 341 | movl 24(%esp), %ecx | ||
| 342 | xorl 0x400(%ebp,%eax),%edi | ||
| 343 | xorl 0x500(%ebp,%edx),%edi | ||
| 344 | |||
| 345 | |||
| 346 | movl 72(%ecx), %eax | ||
| 347 | xorl %ebx, %ebx | ||
| 348 | movl 76(%ecx), %edx | ||
| 349 | xorl %edi, %eax | ||
| 350 | xorl %ecx, %ecx | ||
| 351 | xorl %edi, %edx | ||
| 352 | andl $0xfcfcfcfc, %eax | ||
| 353 | andl $0xcfcfcfcf, %edx | ||
| 354 | movb %al, %bl | ||
| 355 | movb %ah, %cl | ||
| 356 | rorl $4, %edx | ||
| 357 | xorl (%ebp,%ebx),%esi | ||
| 358 | movb %dl, %bl | ||
| 359 | xorl 0x200(%ebp,%ecx),%esi | ||
| 360 | movb %dh, %cl | ||
| 361 | shrl $16, %eax | ||
| 362 | xorl 0x100(%ebp,%ebx),%esi | ||
| 363 | movb %ah, %bl | ||
| 364 | shrl $16, %edx | ||
| 365 | xorl 0x300(%ebp,%ecx),%esi | ||
| 366 | movb %dh, %cl | ||
| 367 | andl $0xff, %eax | ||
| 368 | andl $0xff, %edx | ||
| 369 | xorl 0x600(%ebp,%ebx),%esi | ||
| 370 | xorl 0x700(%ebp,%ecx),%esi | ||
| 371 | movl 24(%esp), %ecx | ||
| 372 | xorl 0x400(%ebp,%eax),%esi | ||
| 373 | xorl 0x500(%ebp,%edx),%esi | ||
| 374 | |||
| 375 | |||
| 376 | movl 80(%ecx), %eax | ||
| 377 | xorl %ebx, %ebx | ||
| 378 | movl 84(%ecx), %edx | ||
| 379 | xorl %esi, %eax | ||
| 380 | xorl %ecx, %ecx | ||
| 381 | xorl %esi, %edx | ||
| 382 | andl $0xfcfcfcfc, %eax | ||
| 383 | andl $0xcfcfcfcf, %edx | ||
| 384 | movb %al, %bl | ||
| 385 | movb %ah, %cl | ||
| 386 | rorl $4, %edx | ||
| 387 | xorl (%ebp,%ebx),%edi | ||
| 388 | movb %dl, %bl | ||
| 389 | xorl 0x200(%ebp,%ecx),%edi | ||
| 390 | movb %dh, %cl | ||
| 391 | shrl $16, %eax | ||
| 392 | xorl 0x100(%ebp,%ebx),%edi | ||
| 393 | movb %ah, %bl | ||
| 394 | shrl $16, %edx | ||
| 395 | xorl 0x300(%ebp,%ecx),%edi | ||
| 396 | movb %dh, %cl | ||
| 397 | andl $0xff, %eax | ||
| 398 | andl $0xff, %edx | ||
| 399 | xorl 0x600(%ebp,%ebx),%edi | ||
| 400 | xorl 0x700(%ebp,%ecx),%edi | ||
| 401 | movl 24(%esp), %ecx | ||
| 402 | xorl 0x400(%ebp,%eax),%edi | ||
| 403 | xorl 0x500(%ebp,%edx),%edi | ||
| 404 | |||
| 405 | |||
| 406 | movl 88(%ecx), %eax | ||
| 407 | xorl %ebx, %ebx | ||
| 408 | movl 92(%ecx), %edx | ||
| 409 | xorl %edi, %eax | ||
| 410 | xorl %ecx, %ecx | ||
| 411 | xorl %edi, %edx | ||
| 412 | andl $0xfcfcfcfc, %eax | ||
| 413 | andl $0xcfcfcfcf, %edx | ||
| 414 | movb %al, %bl | ||
| 415 | movb %ah, %cl | ||
| 416 | rorl $4, %edx | ||
| 417 | xorl (%ebp,%ebx),%esi | ||
| 418 | movb %dl, %bl | ||
| 419 | xorl 0x200(%ebp,%ecx),%esi | ||
| 420 | movb %dh, %cl | ||
| 421 | shrl $16, %eax | ||
| 422 | xorl 0x100(%ebp,%ebx),%esi | ||
| 423 | movb %ah, %bl | ||
| 424 | shrl $16, %edx | ||
| 425 | xorl 0x300(%ebp,%ecx),%esi | ||
| 426 | movb %dh, %cl | ||
| 427 | andl $0xff, %eax | ||
| 428 | andl $0xff, %edx | ||
| 429 | xorl 0x600(%ebp,%ebx),%esi | ||
| 430 | xorl 0x700(%ebp,%ecx),%esi | ||
| 431 | movl 24(%esp), %ecx | ||
| 432 | xorl 0x400(%ebp,%eax),%esi | ||
| 433 | xorl 0x500(%ebp,%edx),%esi | ||
| 434 | |||
| 435 | |||
| 436 | movl 96(%ecx), %eax | ||
| 437 | xorl %ebx, %ebx | ||
| 438 | movl 100(%ecx), %edx | ||
| 439 | xorl %esi, %eax | ||
| 440 | xorl %ecx, %ecx | ||
| 441 | xorl %esi, %edx | ||
| 442 | andl $0xfcfcfcfc, %eax | ||
| 443 | andl $0xcfcfcfcf, %edx | ||
| 444 | movb %al, %bl | ||
| 445 | movb %ah, %cl | ||
| 446 | rorl $4, %edx | ||
| 447 | xorl (%ebp,%ebx),%edi | ||
| 448 | movb %dl, %bl | ||
| 449 | xorl 0x200(%ebp,%ecx),%edi | ||
| 450 | movb %dh, %cl | ||
| 451 | shrl $16, %eax | ||
| 452 | xorl 0x100(%ebp,%ebx),%edi | ||
| 453 | movb %ah, %bl | ||
| 454 | shrl $16, %edx | ||
| 455 | xorl 0x300(%ebp,%ecx),%edi | ||
| 456 | movb %dh, %cl | ||
| 457 | andl $0xff, %eax | ||
| 458 | andl $0xff, %edx | ||
| 459 | xorl 0x600(%ebp,%ebx),%edi | ||
| 460 | xorl 0x700(%ebp,%ecx),%edi | ||
| 461 | movl 24(%esp), %ecx | ||
| 462 | xorl 0x400(%ebp,%eax),%edi | ||
| 463 | xorl 0x500(%ebp,%edx),%edi | ||
| 464 | |||
| 465 | |||
| 466 | movl 104(%ecx), %eax | ||
| 467 | xorl %ebx, %ebx | ||
| 468 | movl 108(%ecx), %edx | ||
| 469 | xorl %edi, %eax | ||
| 470 | xorl %ecx, %ecx | ||
| 471 | xorl %edi, %edx | ||
| 472 | andl $0xfcfcfcfc, %eax | ||
| 473 | andl $0xcfcfcfcf, %edx | ||
| 474 | movb %al, %bl | ||
| 475 | movb %ah, %cl | ||
| 476 | rorl $4, %edx | ||
| 477 | xorl (%ebp,%ebx),%esi | ||
| 478 | movb %dl, %bl | ||
| 479 | xorl 0x200(%ebp,%ecx),%esi | ||
| 480 | movb %dh, %cl | ||
| 481 | shrl $16, %eax | ||
| 482 | xorl 0x100(%ebp,%ebx),%esi | ||
| 483 | movb %ah, %bl | ||
| 484 | shrl $16, %edx | ||
| 485 | xorl 0x300(%ebp,%ecx),%esi | ||
| 486 | movb %dh, %cl | ||
| 487 | andl $0xff, %eax | ||
| 488 | andl $0xff, %edx | ||
| 489 | xorl 0x600(%ebp,%ebx),%esi | ||
| 490 | xorl 0x700(%ebp,%ecx),%esi | ||
| 491 | movl 24(%esp), %ecx | ||
| 492 | xorl 0x400(%ebp,%eax),%esi | ||
| 493 | xorl 0x500(%ebp,%edx),%esi | ||
| 494 | |||
| 495 | |||
| 496 | movl 112(%ecx), %eax | ||
| 497 | xorl %ebx, %ebx | ||
| 498 | movl 116(%ecx), %edx | ||
| 499 | xorl %esi, %eax | ||
| 500 | xorl %ecx, %ecx | ||
| 501 | xorl %esi, %edx | ||
| 502 | andl $0xfcfcfcfc, %eax | ||
| 503 | andl $0xcfcfcfcf, %edx | ||
| 504 | movb %al, %bl | ||
| 505 | movb %ah, %cl | ||
| 506 | rorl $4, %edx | ||
| 507 | xorl (%ebp,%ebx),%edi | ||
| 508 | movb %dl, %bl | ||
| 509 | xorl 0x200(%ebp,%ecx),%edi | ||
| 510 | movb %dh, %cl | ||
| 511 | shrl $16, %eax | ||
| 512 | xorl 0x100(%ebp,%ebx),%edi | ||
| 513 | movb %ah, %bl | ||
| 514 | shrl $16, %edx | ||
| 515 | xorl 0x300(%ebp,%ecx),%edi | ||
| 516 | movb %dh, %cl | ||
| 517 | andl $0xff, %eax | ||
| 518 | andl $0xff, %edx | ||
| 519 | xorl 0x600(%ebp,%ebx),%edi | ||
| 520 | xorl 0x700(%ebp,%ecx),%edi | ||
| 521 | movl 24(%esp), %ecx | ||
| 522 | xorl 0x400(%ebp,%eax),%edi | ||
| 523 | xorl 0x500(%ebp,%edx),%edi | ||
| 524 | |||
| 525 | |||
| 526 | movl 120(%ecx), %eax | ||
| 527 | xorl %ebx, %ebx | ||
| 528 | movl 124(%ecx), %edx | ||
| 529 | xorl %edi, %eax | ||
| 530 | xorl %ecx, %ecx | ||
| 531 | xorl %edi, %edx | ||
| 532 | andl $0xfcfcfcfc, %eax | ||
| 533 | andl $0xcfcfcfcf, %edx | ||
| 534 | movb %al, %bl | ||
| 535 | movb %ah, %cl | ||
| 536 | rorl $4, %edx | ||
| 537 | xorl (%ebp,%ebx),%esi | ||
| 538 | movb %dl, %bl | ||
| 539 | xorl 0x200(%ebp,%ecx),%esi | ||
| 540 | movb %dh, %cl | ||
| 541 | shrl $16, %eax | ||
| 542 | xorl 0x100(%ebp,%ebx),%esi | ||
| 543 | movb %ah, %bl | ||
| 544 | shrl $16, %edx | ||
| 545 | xorl 0x300(%ebp,%ecx),%esi | ||
| 546 | movb %dh, %cl | ||
| 547 | andl $0xff, %eax | ||
| 548 | andl $0xff, %edx | ||
| 549 | xorl 0x600(%ebp,%ebx),%esi | ||
| 550 | xorl 0x700(%ebp,%ecx),%esi | ||
| 551 | movl 24(%esp), %ecx | ||
| 552 | xorl 0x400(%ebp,%eax),%esi | ||
| 553 | xorl 0x500(%ebp,%edx),%esi | ||
| 554 | jmp .L002end | ||
| 555 | .L001start_decrypt: | ||
| 556 | |||
| 557 | |||
| 558 | movl 120(%ecx), %eax | ||
| 559 | xorl %ebx, %ebx | ||
| 560 | movl 124(%ecx), %edx | ||
| 561 | xorl %esi, %eax | ||
| 562 | xorl %ecx, %ecx | ||
| 563 | xorl %esi, %edx | ||
| 564 | andl $0xfcfcfcfc, %eax | ||
| 565 | andl $0xcfcfcfcf, %edx | ||
| 566 | movb %al, %bl | ||
| 567 | movb %ah, %cl | ||
| 568 | rorl $4, %edx | ||
| 569 | xorl (%ebp,%ebx),%edi | ||
| 570 | movb %dl, %bl | ||
| 571 | xorl 0x200(%ebp,%ecx),%edi | ||
| 572 | movb %dh, %cl | ||
| 573 | shrl $16, %eax | ||
| 574 | xorl 0x100(%ebp,%ebx),%edi | ||
| 575 | movb %ah, %bl | ||
| 576 | shrl $16, %edx | ||
| 577 | xorl 0x300(%ebp,%ecx),%edi | ||
| 578 | movb %dh, %cl | ||
| 579 | andl $0xff, %eax | ||
| 580 | andl $0xff, %edx | ||
| 581 | xorl 0x600(%ebp,%ebx),%edi | ||
| 582 | xorl 0x700(%ebp,%ecx),%edi | ||
| 583 | movl 24(%esp), %ecx | ||
| 584 | xorl 0x400(%ebp,%eax),%edi | ||
| 585 | xorl 0x500(%ebp,%edx),%edi | ||
| 586 | |||
| 587 | |||
| 588 | movl 112(%ecx), %eax | ||
| 589 | xorl %ebx, %ebx | ||
| 590 | movl 116(%ecx), %edx | ||
| 591 | xorl %edi, %eax | ||
| 592 | xorl %ecx, %ecx | ||
| 593 | xorl %edi, %edx | ||
| 594 | andl $0xfcfcfcfc, %eax | ||
| 595 | andl $0xcfcfcfcf, %edx | ||
| 596 | movb %al, %bl | ||
| 597 | movb %ah, %cl | ||
| 598 | rorl $4, %edx | ||
| 599 | xorl (%ebp,%ebx),%esi | ||
| 600 | movb %dl, %bl | ||
| 601 | xorl 0x200(%ebp,%ecx),%esi | ||
| 602 | movb %dh, %cl | ||
| 603 | shrl $16, %eax | ||
| 604 | xorl 0x100(%ebp,%ebx),%esi | ||
| 605 | movb %ah, %bl | ||
| 606 | shrl $16, %edx | ||
| 607 | xorl 0x300(%ebp,%ecx),%esi | ||
| 608 | movb %dh, %cl | ||
| 609 | andl $0xff, %eax | ||
| 610 | andl $0xff, %edx | ||
| 611 | xorl 0x600(%ebp,%ebx),%esi | ||
| 612 | xorl 0x700(%ebp,%ecx),%esi | ||
| 613 | movl 24(%esp), %ecx | ||
| 614 | xorl 0x400(%ebp,%eax),%esi | ||
| 615 | xorl 0x500(%ebp,%edx),%esi | ||
| 616 | |||
| 617 | |||
| 618 | movl 104(%ecx), %eax | ||
| 619 | xorl %ebx, %ebx | ||
| 620 | movl 108(%ecx), %edx | ||
| 621 | xorl %esi, %eax | ||
| 622 | xorl %ecx, %ecx | ||
| 623 | xorl %esi, %edx | ||
| 624 | andl $0xfcfcfcfc, %eax | ||
| 625 | andl $0xcfcfcfcf, %edx | ||
| 626 | movb %al, %bl | ||
| 627 | movb %ah, %cl | ||
| 628 | rorl $4, %edx | ||
| 629 | xorl (%ebp,%ebx),%edi | ||
| 630 | movb %dl, %bl | ||
| 631 | xorl 0x200(%ebp,%ecx),%edi | ||
| 632 | movb %dh, %cl | ||
| 633 | shrl $16, %eax | ||
| 634 | xorl 0x100(%ebp,%ebx),%edi | ||
| 635 | movb %ah, %bl | ||
| 636 | shrl $16, %edx | ||
| 637 | xorl 0x300(%ebp,%ecx),%edi | ||
| 638 | movb %dh, %cl | ||
| 639 | andl $0xff, %eax | ||
| 640 | andl $0xff, %edx | ||
| 641 | xorl 0x600(%ebp,%ebx),%edi | ||
| 642 | xorl 0x700(%ebp,%ecx),%edi | ||
| 643 | movl 24(%esp), %ecx | ||
| 644 | xorl 0x400(%ebp,%eax),%edi | ||
| 645 | xorl 0x500(%ebp,%edx),%edi | ||
| 646 | |||
| 647 | |||
| 648 | movl 96(%ecx), %eax | ||
| 649 | xorl %ebx, %ebx | ||
| 650 | movl 100(%ecx), %edx | ||
| 651 | xorl %edi, %eax | ||
| 652 | xorl %ecx, %ecx | ||
| 653 | xorl %edi, %edx | ||
| 654 | andl $0xfcfcfcfc, %eax | ||
| 655 | andl $0xcfcfcfcf, %edx | ||
| 656 | movb %al, %bl | ||
| 657 | movb %ah, %cl | ||
| 658 | rorl $4, %edx | ||
| 659 | xorl (%ebp,%ebx),%esi | ||
| 660 | movb %dl, %bl | ||
| 661 | xorl 0x200(%ebp,%ecx),%esi | ||
| 662 | movb %dh, %cl | ||
| 663 | shrl $16, %eax | ||
| 664 | xorl 0x100(%ebp,%ebx),%esi | ||
| 665 | movb %ah, %bl | ||
| 666 | shrl $16, %edx | ||
| 667 | xorl 0x300(%ebp,%ecx),%esi | ||
| 668 | movb %dh, %cl | ||
| 669 | andl $0xff, %eax | ||
| 670 | andl $0xff, %edx | ||
| 671 | xorl 0x600(%ebp,%ebx),%esi | ||
| 672 | xorl 0x700(%ebp,%ecx),%esi | ||
| 673 | movl 24(%esp), %ecx | ||
| 674 | xorl 0x400(%ebp,%eax),%esi | ||
| 675 | xorl 0x500(%ebp,%edx),%esi | ||
| 676 | |||
| 677 | |||
| 678 | movl 88(%ecx), %eax | ||
| 679 | xorl %ebx, %ebx | ||
| 680 | movl 92(%ecx), %edx | ||
| 681 | xorl %esi, %eax | ||
| 682 | xorl %ecx, %ecx | ||
| 683 | xorl %esi, %edx | ||
| 684 | andl $0xfcfcfcfc, %eax | ||
| 685 | andl $0xcfcfcfcf, %edx | ||
| 686 | movb %al, %bl | ||
| 687 | movb %ah, %cl | ||
| 688 | rorl $4, %edx | ||
| 689 | xorl (%ebp,%ebx),%edi | ||
| 690 | movb %dl, %bl | ||
| 691 | xorl 0x200(%ebp,%ecx),%edi | ||
| 692 | movb %dh, %cl | ||
| 693 | shrl $16, %eax | ||
| 694 | xorl 0x100(%ebp,%ebx),%edi | ||
| 695 | movb %ah, %bl | ||
| 696 | shrl $16, %edx | ||
| 697 | xorl 0x300(%ebp,%ecx),%edi | ||
| 698 | movb %dh, %cl | ||
| 699 | andl $0xff, %eax | ||
| 700 | andl $0xff, %edx | ||
| 701 | xorl 0x600(%ebp,%ebx),%edi | ||
| 702 | xorl 0x700(%ebp,%ecx),%edi | ||
| 703 | movl 24(%esp), %ecx | ||
| 704 | xorl 0x400(%ebp,%eax),%edi | ||
| 705 | xorl 0x500(%ebp,%edx),%edi | ||
| 706 | |||
| 707 | |||
| 708 | movl 80(%ecx), %eax | ||
| 709 | xorl %ebx, %ebx | ||
| 710 | movl 84(%ecx), %edx | ||
| 711 | xorl %edi, %eax | ||
| 712 | xorl %ecx, %ecx | ||
| 713 | xorl %edi, %edx | ||
| 714 | andl $0xfcfcfcfc, %eax | ||
| 715 | andl $0xcfcfcfcf, %edx | ||
| 716 | movb %al, %bl | ||
| 717 | movb %ah, %cl | ||
| 718 | rorl $4, %edx | ||
| 719 | xorl (%ebp,%ebx),%esi | ||
| 720 | movb %dl, %bl | ||
| 721 | xorl 0x200(%ebp,%ecx),%esi | ||
| 722 | movb %dh, %cl | ||
| 723 | shrl $16, %eax | ||
| 724 | xorl 0x100(%ebp,%ebx),%esi | ||
| 725 | movb %ah, %bl | ||
| 726 | shrl $16, %edx | ||
| 727 | xorl 0x300(%ebp,%ecx),%esi | ||
| 728 | movb %dh, %cl | ||
| 729 | andl $0xff, %eax | ||
| 730 | andl $0xff, %edx | ||
| 731 | xorl 0x600(%ebp,%ebx),%esi | ||
| 732 | xorl 0x700(%ebp,%ecx),%esi | ||
| 733 | movl 24(%esp), %ecx | ||
| 734 | xorl 0x400(%ebp,%eax),%esi | ||
| 735 | xorl 0x500(%ebp,%edx),%esi | ||
| 736 | |||
| 737 | |||
| 738 | movl 72(%ecx), %eax | ||
| 739 | xorl %ebx, %ebx | ||
| 740 | movl 76(%ecx), %edx | ||
| 741 | xorl %esi, %eax | ||
| 742 | xorl %ecx, %ecx | ||
| 743 | xorl %esi, %edx | ||
| 744 | andl $0xfcfcfcfc, %eax | ||
| 745 | andl $0xcfcfcfcf, %edx | ||
| 746 | movb %al, %bl | ||
| 747 | movb %ah, %cl | ||
| 748 | rorl $4, %edx | ||
| 749 | xorl (%ebp,%ebx),%edi | ||
| 750 | movb %dl, %bl | ||
| 751 | xorl 0x200(%ebp,%ecx),%edi | ||
| 752 | movb %dh, %cl | ||
| 753 | shrl $16, %eax | ||
| 754 | xorl 0x100(%ebp,%ebx),%edi | ||
| 755 | movb %ah, %bl | ||
| 756 | shrl $16, %edx | ||
| 757 | xorl 0x300(%ebp,%ecx),%edi | ||
| 758 | movb %dh, %cl | ||
| 759 | andl $0xff, %eax | ||
| 760 | andl $0xff, %edx | ||
| 761 | xorl 0x600(%ebp,%ebx),%edi | ||
| 762 | xorl 0x700(%ebp,%ecx),%edi | ||
| 763 | movl 24(%esp), %ecx | ||
| 764 | xorl 0x400(%ebp,%eax),%edi | ||
| 765 | xorl 0x500(%ebp,%edx),%edi | ||
| 766 | |||
| 767 | |||
| 768 | movl 64(%ecx), %eax | ||
| 769 | xorl %ebx, %ebx | ||
| 770 | movl 68(%ecx), %edx | ||
| 771 | xorl %edi, %eax | ||
| 772 | xorl %ecx, %ecx | ||
| 773 | xorl %edi, %edx | ||
| 774 | andl $0xfcfcfcfc, %eax | ||
| 775 | andl $0xcfcfcfcf, %edx | ||
| 776 | movb %al, %bl | ||
| 777 | movb %ah, %cl | ||
| 778 | rorl $4, %edx | ||
| 779 | xorl (%ebp,%ebx),%esi | ||
| 780 | movb %dl, %bl | ||
| 781 | xorl 0x200(%ebp,%ecx),%esi | ||
| 782 | movb %dh, %cl | ||
| 783 | shrl $16, %eax | ||
| 784 | xorl 0x100(%ebp,%ebx),%esi | ||
| 785 | movb %ah, %bl | ||
| 786 | shrl $16, %edx | ||
| 787 | xorl 0x300(%ebp,%ecx),%esi | ||
| 788 | movb %dh, %cl | ||
| 789 | andl $0xff, %eax | ||
| 790 | andl $0xff, %edx | ||
| 791 | xorl 0x600(%ebp,%ebx),%esi | ||
| 792 | xorl 0x700(%ebp,%ecx),%esi | ||
| 793 | movl 24(%esp), %ecx | ||
| 794 | xorl 0x400(%ebp,%eax),%esi | ||
| 795 | xorl 0x500(%ebp,%edx),%esi | ||
| 796 | |||
| 797 | |||
| 798 | movl 56(%ecx), %eax | ||
| 799 | xorl %ebx, %ebx | ||
| 800 | movl 60(%ecx), %edx | ||
| 801 | xorl %esi, %eax | ||
| 802 | xorl %ecx, %ecx | ||
| 803 | xorl %esi, %edx | ||
| 804 | andl $0xfcfcfcfc, %eax | ||
| 805 | andl $0xcfcfcfcf, %edx | ||
| 806 | movb %al, %bl | ||
| 807 | movb %ah, %cl | ||
| 808 | rorl $4, %edx | ||
| 809 | xorl (%ebp,%ebx),%edi | ||
| 810 | movb %dl, %bl | ||
| 811 | xorl 0x200(%ebp,%ecx),%edi | ||
| 812 | movb %dh, %cl | ||
| 813 | shrl $16, %eax | ||
| 814 | xorl 0x100(%ebp,%ebx),%edi | ||
| 815 | movb %ah, %bl | ||
| 816 | shrl $16, %edx | ||
| 817 | xorl 0x300(%ebp,%ecx),%edi | ||
| 818 | movb %dh, %cl | ||
| 819 | andl $0xff, %eax | ||
| 820 | andl $0xff, %edx | ||
| 821 | xorl 0x600(%ebp,%ebx),%edi | ||
| 822 | xorl 0x700(%ebp,%ecx),%edi | ||
| 823 | movl 24(%esp), %ecx | ||
| 824 | xorl 0x400(%ebp,%eax),%edi | ||
| 825 | xorl 0x500(%ebp,%edx),%edi | ||
| 826 | |||
| 827 | |||
| 828 | movl 48(%ecx), %eax | ||
| 829 | xorl %ebx, %ebx | ||
| 830 | movl 52(%ecx), %edx | ||
| 831 | xorl %edi, %eax | ||
| 832 | xorl %ecx, %ecx | ||
| 833 | xorl %edi, %edx | ||
| 834 | andl $0xfcfcfcfc, %eax | ||
| 835 | andl $0xcfcfcfcf, %edx | ||
| 836 | movb %al, %bl | ||
| 837 | movb %ah, %cl | ||
| 838 | rorl $4, %edx | ||
| 839 | xorl (%ebp,%ebx),%esi | ||
| 840 | movb %dl, %bl | ||
| 841 | xorl 0x200(%ebp,%ecx),%esi | ||
| 842 | movb %dh, %cl | ||
| 843 | shrl $16, %eax | ||
| 844 | xorl 0x100(%ebp,%ebx),%esi | ||
| 845 | movb %ah, %bl | ||
| 846 | shrl $16, %edx | ||
| 847 | xorl 0x300(%ebp,%ecx),%esi | ||
| 848 | movb %dh, %cl | ||
| 849 | andl $0xff, %eax | ||
| 850 | andl $0xff, %edx | ||
| 851 | xorl 0x600(%ebp,%ebx),%esi | ||
| 852 | xorl 0x700(%ebp,%ecx),%esi | ||
| 853 | movl 24(%esp), %ecx | ||
| 854 | xorl 0x400(%ebp,%eax),%esi | ||
| 855 | xorl 0x500(%ebp,%edx),%esi | ||
| 856 | |||
| 857 | |||
| 858 | movl 40(%ecx), %eax | ||
| 859 | xorl %ebx, %ebx | ||
| 860 | movl 44(%ecx), %edx | ||
| 861 | xorl %esi, %eax | ||
| 862 | xorl %ecx, %ecx | ||
| 863 | xorl %esi, %edx | ||
| 864 | andl $0xfcfcfcfc, %eax | ||
| 865 | andl $0xcfcfcfcf, %edx | ||
| 866 | movb %al, %bl | ||
| 867 | movb %ah, %cl | ||
| 868 | rorl $4, %edx | ||
| 869 | xorl (%ebp,%ebx),%edi | ||
| 870 | movb %dl, %bl | ||
| 871 | xorl 0x200(%ebp,%ecx),%edi | ||
| 872 | movb %dh, %cl | ||
| 873 | shrl $16, %eax | ||
| 874 | xorl 0x100(%ebp,%ebx),%edi | ||
| 875 | movb %ah, %bl | ||
| 876 | shrl $16, %edx | ||
| 877 | xorl 0x300(%ebp,%ecx),%edi | ||
| 878 | movb %dh, %cl | ||
| 879 | andl $0xff, %eax | ||
| 880 | andl $0xff, %edx | ||
| 881 | xorl 0x600(%ebp,%ebx),%edi | ||
| 882 | xorl 0x700(%ebp,%ecx),%edi | ||
| 883 | movl 24(%esp), %ecx | ||
| 884 | xorl 0x400(%ebp,%eax),%edi | ||
| 885 | xorl 0x500(%ebp,%edx),%edi | ||
| 886 | |||
| 887 | |||
| 888 | movl 32(%ecx), %eax | ||
| 889 | xorl %ebx, %ebx | ||
| 890 | movl 36(%ecx), %edx | ||
| 891 | xorl %edi, %eax | ||
| 892 | xorl %ecx, %ecx | ||
| 893 | xorl %edi, %edx | ||
| 894 | andl $0xfcfcfcfc, %eax | ||
| 895 | andl $0xcfcfcfcf, %edx | ||
| 896 | movb %al, %bl | ||
| 897 | movb %ah, %cl | ||
| 898 | rorl $4, %edx | ||
| 899 | xorl (%ebp,%ebx),%esi | ||
| 900 | movb %dl, %bl | ||
| 901 | xorl 0x200(%ebp,%ecx),%esi | ||
| 902 | movb %dh, %cl | ||
| 903 | shrl $16, %eax | ||
| 904 | xorl 0x100(%ebp,%ebx),%esi | ||
| 905 | movb %ah, %bl | ||
| 906 | shrl $16, %edx | ||
| 907 | xorl 0x300(%ebp,%ecx),%esi | ||
| 908 | movb %dh, %cl | ||
| 909 | andl $0xff, %eax | ||
| 910 | andl $0xff, %edx | ||
| 911 | xorl 0x600(%ebp,%ebx),%esi | ||
| 912 | xorl 0x700(%ebp,%ecx),%esi | ||
| 913 | movl 24(%esp), %ecx | ||
| 914 | xorl 0x400(%ebp,%eax),%esi | ||
| 915 | xorl 0x500(%ebp,%edx),%esi | ||
| 916 | |||
| 917 | |||
| 918 | movl 24(%ecx), %eax | ||
| 919 | xorl %ebx, %ebx | ||
| 920 | movl 28(%ecx), %edx | ||
| 921 | xorl %esi, %eax | ||
| 922 | xorl %ecx, %ecx | ||
| 923 | xorl %esi, %edx | ||
| 924 | andl $0xfcfcfcfc, %eax | ||
| 925 | andl $0xcfcfcfcf, %edx | ||
| 926 | movb %al, %bl | ||
| 927 | movb %ah, %cl | ||
| 928 | rorl $4, %edx | ||
| 929 | xorl (%ebp,%ebx),%edi | ||
| 930 | movb %dl, %bl | ||
| 931 | xorl 0x200(%ebp,%ecx),%edi | ||
| 932 | movb %dh, %cl | ||
| 933 | shrl $16, %eax | ||
| 934 | xorl 0x100(%ebp,%ebx),%edi | ||
| 935 | movb %ah, %bl | ||
| 936 | shrl $16, %edx | ||
| 937 | xorl 0x300(%ebp,%ecx),%edi | ||
| 938 | movb %dh, %cl | ||
| 939 | andl $0xff, %eax | ||
| 940 | andl $0xff, %edx | ||
| 941 | xorl 0x600(%ebp,%ebx),%edi | ||
| 942 | xorl 0x700(%ebp,%ecx),%edi | ||
| 943 | movl 24(%esp), %ecx | ||
| 944 | xorl 0x400(%ebp,%eax),%edi | ||
| 945 | xorl 0x500(%ebp,%edx),%edi | ||
| 946 | |||
| 947 | |||
| 948 | movl 16(%ecx), %eax | ||
| 949 | xorl %ebx, %ebx | ||
| 950 | movl 20(%ecx), %edx | ||
| 951 | xorl %edi, %eax | ||
| 952 | xorl %ecx, %ecx | ||
| 953 | xorl %edi, %edx | ||
| 954 | andl $0xfcfcfcfc, %eax | ||
| 955 | andl $0xcfcfcfcf, %edx | ||
| 956 | movb %al, %bl | ||
| 957 | movb %ah, %cl | ||
| 958 | rorl $4, %edx | ||
| 959 | xorl (%ebp,%ebx),%esi | ||
| 960 | movb %dl, %bl | ||
| 961 | xorl 0x200(%ebp,%ecx),%esi | ||
| 962 | movb %dh, %cl | ||
| 963 | shrl $16, %eax | ||
| 964 | xorl 0x100(%ebp,%ebx),%esi | ||
| 965 | movb %ah, %bl | ||
| 966 | shrl $16, %edx | ||
| 967 | xorl 0x300(%ebp,%ecx),%esi | ||
| 968 | movb %dh, %cl | ||
| 969 | andl $0xff, %eax | ||
| 970 | andl $0xff, %edx | ||
| 971 | xorl 0x600(%ebp,%ebx),%esi | ||
| 972 | xorl 0x700(%ebp,%ecx),%esi | ||
| 973 | movl 24(%esp), %ecx | ||
| 974 | xorl 0x400(%ebp,%eax),%esi | ||
| 975 | xorl 0x500(%ebp,%edx),%esi | ||
| 976 | |||
| 977 | |||
| 978 | movl 8(%ecx), %eax | ||
| 979 | xorl %ebx, %ebx | ||
| 980 | movl 12(%ecx), %edx | ||
| 981 | xorl %esi, %eax | ||
| 982 | xorl %ecx, %ecx | ||
| 983 | xorl %esi, %edx | ||
| 984 | andl $0xfcfcfcfc, %eax | ||
| 985 | andl $0xcfcfcfcf, %edx | ||
| 986 | movb %al, %bl | ||
| 987 | movb %ah, %cl | ||
| 988 | rorl $4, %edx | ||
| 989 | xorl (%ebp,%ebx),%edi | ||
| 990 | movb %dl, %bl | ||
| 991 | xorl 0x200(%ebp,%ecx),%edi | ||
| 992 | movb %dh, %cl | ||
| 993 | shrl $16, %eax | ||
| 994 | xorl 0x100(%ebp,%ebx),%edi | ||
| 995 | movb %ah, %bl | ||
| 996 | shrl $16, %edx | ||
| 997 | xorl 0x300(%ebp,%ecx),%edi | ||
| 998 | movb %dh, %cl | ||
| 999 | andl $0xff, %eax | ||
| 1000 | andl $0xff, %edx | ||
| 1001 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1002 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1003 | movl 24(%esp), %ecx | ||
| 1004 | xorl 0x400(%ebp,%eax),%edi | ||
| 1005 | xorl 0x500(%ebp,%edx),%edi | ||
| 1006 | |||
| 1007 | |||
| 1008 | movl (%ecx), %eax | ||
| 1009 | xorl %ebx, %ebx | ||
| 1010 | movl 4(%ecx), %edx | ||
| 1011 | xorl %edi, %eax | ||
| 1012 | xorl %ecx, %ecx | ||
| 1013 | xorl %edi, %edx | ||
| 1014 | andl $0xfcfcfcfc, %eax | ||
| 1015 | andl $0xcfcfcfcf, %edx | ||
| 1016 | movb %al, %bl | ||
| 1017 | movb %ah, %cl | ||
| 1018 | rorl $4, %edx | ||
| 1019 | xorl (%ebp,%ebx),%esi | ||
| 1020 | movb %dl, %bl | ||
| 1021 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1022 | movb %dh, %cl | ||
| 1023 | shrl $16, %eax | ||
| 1024 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1025 | movb %ah, %bl | ||
| 1026 | shrl $16, %edx | ||
| 1027 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1028 | movb %dh, %cl | ||
| 1029 | andl $0xff, %eax | ||
| 1030 | andl $0xff, %edx | ||
| 1031 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1032 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1033 | movl 24(%esp), %ecx | ||
| 1034 | xorl 0x400(%ebp,%eax),%esi | ||
| 1035 | xorl 0x500(%ebp,%edx),%esi | ||
| 1036 | .L002end: | ||
| 1037 | |||
| 1038 | |||
| 1039 | movl 20(%esp), %edx | ||
| 1040 | .byte 209 | ||
| 1041 | .byte 206 | ||
| 1042 | movl %edi, %eax | ||
| 1043 | xorl %esi, %edi | ||
| 1044 | andl $0xaaaaaaaa, %edi | ||
| 1045 | xorl %edi, %eax | ||
| 1046 | xorl %edi, %esi | ||
| 1047 | |||
| 1048 | roll $23, %eax | ||
| 1049 | movl %eax, %edi | ||
| 1050 | xorl %esi, %eax | ||
| 1051 | andl $0x03fc03fc, %eax | ||
| 1052 | xorl %eax, %edi | ||
| 1053 | xorl %eax, %esi | ||
| 1054 | |||
| 1055 | roll $10, %edi | ||
| 1056 | movl %edi, %eax | ||
| 1057 | xorl %esi, %edi | ||
| 1058 | andl $0x33333333, %edi | ||
| 1059 | xorl %edi, %eax | ||
| 1060 | xorl %edi, %esi | ||
| 1061 | |||
| 1062 | roll $18, %esi | ||
| 1063 | movl %esi, %edi | ||
| 1064 | xorl %eax, %esi | ||
| 1065 | andl $0xfff0000f, %esi | ||
| 1066 | xorl %esi, %edi | ||
| 1067 | xorl %esi, %eax | ||
| 1068 | |||
| 1069 | roll $12, %edi | ||
| 1070 | movl %edi, %esi | ||
| 1071 | xorl %eax, %edi | ||
| 1072 | andl $0xf0f0f0f0, %edi | ||
| 1073 | xorl %edi, %esi | ||
| 1074 | xorl %edi, %eax | ||
| 1075 | |||
| 1076 | rorl $4, %eax | ||
| 1077 | movl %eax, (%edx) | ||
| 1078 | movl %esi, 4(%edx) | ||
| 1079 | popl %ebp | ||
| 1080 | popl %ebx | ||
| 1081 | popl %edi | ||
| 1082 | popl %esi | ||
| 1083 | ret | ||
| 1084 | .L_DES_encrypt1_end: | ||
| 1085 | .size DES_encrypt1,.L_DES_encrypt1_end-DES_encrypt1 | ||
| 1086 | .ident "desasm.pl" | ||
| 1087 | .text | ||
| 1088 | .align 16 | ||
| 1089 | .globl DES_encrypt2 | ||
| 1090 | .type DES_encrypt2,@function | ||
| 1091 | DES_encrypt2: | ||
| 1092 | pushl %esi | ||
| 1093 | pushl %edi | ||
| 1094 | |||
| 1095 | |||
| 1096 | movl 12(%esp), %eax | ||
| 1097 | xorl %ecx, %ecx | ||
| 1098 | pushl %ebx | ||
| 1099 | pushl %ebp | ||
| 1100 | movl (%eax), %esi | ||
| 1101 | movl 28(%esp), %ebx | ||
| 1102 | roll $3, %esi | ||
| 1103 | movl 4(%eax), %edi | ||
| 1104 | roll $3, %edi | ||
| 1105 | .align 8 | ||
| 1106 | call .L003PIC_me_up | ||
| 1107 | .L003PIC_me_up: | ||
| 1108 | popl %ebp | ||
| 1109 | addl $_GLOBAL_OFFSET_TABLE_+[.-.L003PIC_me_up],%ebp | ||
| 1110 | movl DES_SPtrans@GOT(%ebp),%ebp | ||
| 1111 | movl 24(%esp), %ecx | ||
| 1112 | cmpl $0, %ebx | ||
| 1113 | je .L004start_decrypt | ||
| 1114 | |||
| 1115 | |||
| 1116 | movl (%ecx), %eax | ||
| 1117 | xorl %ebx, %ebx | ||
| 1118 | movl 4(%ecx), %edx | ||
| 1119 | xorl %esi, %eax | ||
| 1120 | xorl %ecx, %ecx | ||
| 1121 | xorl %esi, %edx | ||
| 1122 | andl $0xfcfcfcfc, %eax | ||
| 1123 | andl $0xcfcfcfcf, %edx | ||
| 1124 | movb %al, %bl | ||
| 1125 | movb %ah, %cl | ||
| 1126 | rorl $4, %edx | ||
| 1127 | xorl (%ebp,%ebx),%edi | ||
| 1128 | movb %dl, %bl | ||
| 1129 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1130 | movb %dh, %cl | ||
| 1131 | shrl $16, %eax | ||
| 1132 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1133 | movb %ah, %bl | ||
| 1134 | shrl $16, %edx | ||
| 1135 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1136 | movb %dh, %cl | ||
| 1137 | andl $0xff, %eax | ||
| 1138 | andl $0xff, %edx | ||
| 1139 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1140 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1141 | movl 24(%esp), %ecx | ||
| 1142 | xorl 0x400(%ebp,%eax),%edi | ||
| 1143 | xorl 0x500(%ebp,%edx),%edi | ||
| 1144 | |||
| 1145 | |||
| 1146 | movl 8(%ecx), %eax | ||
| 1147 | xorl %ebx, %ebx | ||
| 1148 | movl 12(%ecx), %edx | ||
| 1149 | xorl %edi, %eax | ||
| 1150 | xorl %ecx, %ecx | ||
| 1151 | xorl %edi, %edx | ||
| 1152 | andl $0xfcfcfcfc, %eax | ||
| 1153 | andl $0xcfcfcfcf, %edx | ||
| 1154 | movb %al, %bl | ||
| 1155 | movb %ah, %cl | ||
| 1156 | rorl $4, %edx | ||
| 1157 | xorl (%ebp,%ebx),%esi | ||
| 1158 | movb %dl, %bl | ||
| 1159 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1160 | movb %dh, %cl | ||
| 1161 | shrl $16, %eax | ||
| 1162 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1163 | movb %ah, %bl | ||
| 1164 | shrl $16, %edx | ||
| 1165 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1166 | movb %dh, %cl | ||
| 1167 | andl $0xff, %eax | ||
| 1168 | andl $0xff, %edx | ||
| 1169 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1170 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1171 | movl 24(%esp), %ecx | ||
| 1172 | xorl 0x400(%ebp,%eax),%esi | ||
| 1173 | xorl 0x500(%ebp,%edx),%esi | ||
| 1174 | |||
| 1175 | |||
| 1176 | movl 16(%ecx), %eax | ||
| 1177 | xorl %ebx, %ebx | ||
| 1178 | movl 20(%ecx), %edx | ||
| 1179 | xorl %esi, %eax | ||
| 1180 | xorl %ecx, %ecx | ||
| 1181 | xorl %esi, %edx | ||
| 1182 | andl $0xfcfcfcfc, %eax | ||
| 1183 | andl $0xcfcfcfcf, %edx | ||
| 1184 | movb %al, %bl | ||
| 1185 | movb %ah, %cl | ||
| 1186 | rorl $4, %edx | ||
| 1187 | xorl (%ebp,%ebx),%edi | ||
| 1188 | movb %dl, %bl | ||
| 1189 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1190 | movb %dh, %cl | ||
| 1191 | shrl $16, %eax | ||
| 1192 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1193 | movb %ah, %bl | ||
| 1194 | shrl $16, %edx | ||
| 1195 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1196 | movb %dh, %cl | ||
| 1197 | andl $0xff, %eax | ||
| 1198 | andl $0xff, %edx | ||
| 1199 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1200 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1201 | movl 24(%esp), %ecx | ||
| 1202 | xorl 0x400(%ebp,%eax),%edi | ||
| 1203 | xorl 0x500(%ebp,%edx),%edi | ||
| 1204 | |||
| 1205 | |||
| 1206 | movl 24(%ecx), %eax | ||
| 1207 | xorl %ebx, %ebx | ||
| 1208 | movl 28(%ecx), %edx | ||
| 1209 | xorl %edi, %eax | ||
| 1210 | xorl %ecx, %ecx | ||
| 1211 | xorl %edi, %edx | ||
| 1212 | andl $0xfcfcfcfc, %eax | ||
| 1213 | andl $0xcfcfcfcf, %edx | ||
| 1214 | movb %al, %bl | ||
| 1215 | movb %ah, %cl | ||
| 1216 | rorl $4, %edx | ||
| 1217 | xorl (%ebp,%ebx),%esi | ||
| 1218 | movb %dl, %bl | ||
| 1219 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1220 | movb %dh, %cl | ||
| 1221 | shrl $16, %eax | ||
| 1222 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1223 | movb %ah, %bl | ||
| 1224 | shrl $16, %edx | ||
| 1225 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1226 | movb %dh, %cl | ||
| 1227 | andl $0xff, %eax | ||
| 1228 | andl $0xff, %edx | ||
| 1229 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1230 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1231 | movl 24(%esp), %ecx | ||
| 1232 | xorl 0x400(%ebp,%eax),%esi | ||
| 1233 | xorl 0x500(%ebp,%edx),%esi | ||
| 1234 | |||
| 1235 | |||
| 1236 | movl 32(%ecx), %eax | ||
| 1237 | xorl %ebx, %ebx | ||
| 1238 | movl 36(%ecx), %edx | ||
| 1239 | xorl %esi, %eax | ||
| 1240 | xorl %ecx, %ecx | ||
| 1241 | xorl %esi, %edx | ||
| 1242 | andl $0xfcfcfcfc, %eax | ||
| 1243 | andl $0xcfcfcfcf, %edx | ||
| 1244 | movb %al, %bl | ||
| 1245 | movb %ah, %cl | ||
| 1246 | rorl $4, %edx | ||
| 1247 | xorl (%ebp,%ebx),%edi | ||
| 1248 | movb %dl, %bl | ||
| 1249 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1250 | movb %dh, %cl | ||
| 1251 | shrl $16, %eax | ||
| 1252 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1253 | movb %ah, %bl | ||
| 1254 | shrl $16, %edx | ||
| 1255 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1256 | movb %dh, %cl | ||
| 1257 | andl $0xff, %eax | ||
| 1258 | andl $0xff, %edx | ||
| 1259 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1260 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1261 | movl 24(%esp), %ecx | ||
| 1262 | xorl 0x400(%ebp,%eax),%edi | ||
| 1263 | xorl 0x500(%ebp,%edx),%edi | ||
| 1264 | |||
| 1265 | |||
| 1266 | movl 40(%ecx), %eax | ||
| 1267 | xorl %ebx, %ebx | ||
| 1268 | movl 44(%ecx), %edx | ||
| 1269 | xorl %edi, %eax | ||
| 1270 | xorl %ecx, %ecx | ||
| 1271 | xorl %edi, %edx | ||
| 1272 | andl $0xfcfcfcfc, %eax | ||
| 1273 | andl $0xcfcfcfcf, %edx | ||
| 1274 | movb %al, %bl | ||
| 1275 | movb %ah, %cl | ||
| 1276 | rorl $4, %edx | ||
| 1277 | xorl (%ebp,%ebx),%esi | ||
| 1278 | movb %dl, %bl | ||
| 1279 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1280 | movb %dh, %cl | ||
| 1281 | shrl $16, %eax | ||
| 1282 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1283 | movb %ah, %bl | ||
| 1284 | shrl $16, %edx | ||
| 1285 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1286 | movb %dh, %cl | ||
| 1287 | andl $0xff, %eax | ||
| 1288 | andl $0xff, %edx | ||
| 1289 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1290 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1291 | movl 24(%esp), %ecx | ||
| 1292 | xorl 0x400(%ebp,%eax),%esi | ||
| 1293 | xorl 0x500(%ebp,%edx),%esi | ||
| 1294 | |||
| 1295 | |||
| 1296 | movl 48(%ecx), %eax | ||
| 1297 | xorl %ebx, %ebx | ||
| 1298 | movl 52(%ecx), %edx | ||
| 1299 | xorl %esi, %eax | ||
| 1300 | xorl %ecx, %ecx | ||
| 1301 | xorl %esi, %edx | ||
| 1302 | andl $0xfcfcfcfc, %eax | ||
| 1303 | andl $0xcfcfcfcf, %edx | ||
| 1304 | movb %al, %bl | ||
| 1305 | movb %ah, %cl | ||
| 1306 | rorl $4, %edx | ||
| 1307 | xorl (%ebp,%ebx),%edi | ||
| 1308 | movb %dl, %bl | ||
| 1309 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1310 | movb %dh, %cl | ||
| 1311 | shrl $16, %eax | ||
| 1312 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1313 | movb %ah, %bl | ||
| 1314 | shrl $16, %edx | ||
| 1315 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1316 | movb %dh, %cl | ||
| 1317 | andl $0xff, %eax | ||
| 1318 | andl $0xff, %edx | ||
| 1319 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1320 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1321 | movl 24(%esp), %ecx | ||
| 1322 | xorl 0x400(%ebp,%eax),%edi | ||
| 1323 | xorl 0x500(%ebp,%edx),%edi | ||
| 1324 | |||
| 1325 | |||
| 1326 | movl 56(%ecx), %eax | ||
| 1327 | xorl %ebx, %ebx | ||
| 1328 | movl 60(%ecx), %edx | ||
| 1329 | xorl %edi, %eax | ||
| 1330 | xorl %ecx, %ecx | ||
| 1331 | xorl %edi, %edx | ||
| 1332 | andl $0xfcfcfcfc, %eax | ||
| 1333 | andl $0xcfcfcfcf, %edx | ||
| 1334 | movb %al, %bl | ||
| 1335 | movb %ah, %cl | ||
| 1336 | rorl $4, %edx | ||
| 1337 | xorl (%ebp,%ebx),%esi | ||
| 1338 | movb %dl, %bl | ||
| 1339 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1340 | movb %dh, %cl | ||
| 1341 | shrl $16, %eax | ||
| 1342 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1343 | movb %ah, %bl | ||
| 1344 | shrl $16, %edx | ||
| 1345 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1346 | movb %dh, %cl | ||
| 1347 | andl $0xff, %eax | ||
| 1348 | andl $0xff, %edx | ||
| 1349 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1350 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1351 | movl 24(%esp), %ecx | ||
| 1352 | xorl 0x400(%ebp,%eax),%esi | ||
| 1353 | xorl 0x500(%ebp,%edx),%esi | ||
| 1354 | |||
| 1355 | |||
| 1356 | movl 64(%ecx), %eax | ||
| 1357 | xorl %ebx, %ebx | ||
| 1358 | movl 68(%ecx), %edx | ||
| 1359 | xorl %esi, %eax | ||
| 1360 | xorl %ecx, %ecx | ||
| 1361 | xorl %esi, %edx | ||
| 1362 | andl $0xfcfcfcfc, %eax | ||
| 1363 | andl $0xcfcfcfcf, %edx | ||
| 1364 | movb %al, %bl | ||
| 1365 | movb %ah, %cl | ||
| 1366 | rorl $4, %edx | ||
| 1367 | xorl (%ebp,%ebx),%edi | ||
| 1368 | movb %dl, %bl | ||
| 1369 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1370 | movb %dh, %cl | ||
| 1371 | shrl $16, %eax | ||
| 1372 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1373 | movb %ah, %bl | ||
| 1374 | shrl $16, %edx | ||
| 1375 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1376 | movb %dh, %cl | ||
| 1377 | andl $0xff, %eax | ||
| 1378 | andl $0xff, %edx | ||
| 1379 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1380 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1381 | movl 24(%esp), %ecx | ||
| 1382 | xorl 0x400(%ebp,%eax),%edi | ||
| 1383 | xorl 0x500(%ebp,%edx),%edi | ||
| 1384 | |||
| 1385 | |||
| 1386 | movl 72(%ecx), %eax | ||
| 1387 | xorl %ebx, %ebx | ||
| 1388 | movl 76(%ecx), %edx | ||
| 1389 | xorl %edi, %eax | ||
| 1390 | xorl %ecx, %ecx | ||
| 1391 | xorl %edi, %edx | ||
| 1392 | andl $0xfcfcfcfc, %eax | ||
| 1393 | andl $0xcfcfcfcf, %edx | ||
| 1394 | movb %al, %bl | ||
| 1395 | movb %ah, %cl | ||
| 1396 | rorl $4, %edx | ||
| 1397 | xorl (%ebp,%ebx),%esi | ||
| 1398 | movb %dl, %bl | ||
| 1399 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1400 | movb %dh, %cl | ||
| 1401 | shrl $16, %eax | ||
| 1402 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1403 | movb %ah, %bl | ||
| 1404 | shrl $16, %edx | ||
| 1405 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1406 | movb %dh, %cl | ||
| 1407 | andl $0xff, %eax | ||
| 1408 | andl $0xff, %edx | ||
| 1409 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1410 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1411 | movl 24(%esp), %ecx | ||
| 1412 | xorl 0x400(%ebp,%eax),%esi | ||
| 1413 | xorl 0x500(%ebp,%edx),%esi | ||
| 1414 | |||
| 1415 | |||
| 1416 | movl 80(%ecx), %eax | ||
| 1417 | xorl %ebx, %ebx | ||
| 1418 | movl 84(%ecx), %edx | ||
| 1419 | xorl %esi, %eax | ||
| 1420 | xorl %ecx, %ecx | ||
| 1421 | xorl %esi, %edx | ||
| 1422 | andl $0xfcfcfcfc, %eax | ||
| 1423 | andl $0xcfcfcfcf, %edx | ||
| 1424 | movb %al, %bl | ||
| 1425 | movb %ah, %cl | ||
| 1426 | rorl $4, %edx | ||
| 1427 | xorl (%ebp,%ebx),%edi | ||
| 1428 | movb %dl, %bl | ||
| 1429 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1430 | movb %dh, %cl | ||
| 1431 | shrl $16, %eax | ||
| 1432 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1433 | movb %ah, %bl | ||
| 1434 | shrl $16, %edx | ||
| 1435 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1436 | movb %dh, %cl | ||
| 1437 | andl $0xff, %eax | ||
| 1438 | andl $0xff, %edx | ||
| 1439 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1440 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1441 | movl 24(%esp), %ecx | ||
| 1442 | xorl 0x400(%ebp,%eax),%edi | ||
| 1443 | xorl 0x500(%ebp,%edx),%edi | ||
| 1444 | |||
| 1445 | |||
| 1446 | movl 88(%ecx), %eax | ||
| 1447 | xorl %ebx, %ebx | ||
| 1448 | movl 92(%ecx), %edx | ||
| 1449 | xorl %edi, %eax | ||
| 1450 | xorl %ecx, %ecx | ||
| 1451 | xorl %edi, %edx | ||
| 1452 | andl $0xfcfcfcfc, %eax | ||
| 1453 | andl $0xcfcfcfcf, %edx | ||
| 1454 | movb %al, %bl | ||
| 1455 | movb %ah, %cl | ||
| 1456 | rorl $4, %edx | ||
| 1457 | xorl (%ebp,%ebx),%esi | ||
| 1458 | movb %dl, %bl | ||
| 1459 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1460 | movb %dh, %cl | ||
| 1461 | shrl $16, %eax | ||
| 1462 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1463 | movb %ah, %bl | ||
| 1464 | shrl $16, %edx | ||
| 1465 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1466 | movb %dh, %cl | ||
| 1467 | andl $0xff, %eax | ||
| 1468 | andl $0xff, %edx | ||
| 1469 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1470 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1471 | movl 24(%esp), %ecx | ||
| 1472 | xorl 0x400(%ebp,%eax),%esi | ||
| 1473 | xorl 0x500(%ebp,%edx),%esi | ||
| 1474 | |||
| 1475 | |||
| 1476 | movl 96(%ecx), %eax | ||
| 1477 | xorl %ebx, %ebx | ||
| 1478 | movl 100(%ecx), %edx | ||
| 1479 | xorl %esi, %eax | ||
| 1480 | xorl %ecx, %ecx | ||
| 1481 | xorl %esi, %edx | ||
| 1482 | andl $0xfcfcfcfc, %eax | ||
| 1483 | andl $0xcfcfcfcf, %edx | ||
| 1484 | movb %al, %bl | ||
| 1485 | movb %ah, %cl | ||
| 1486 | rorl $4, %edx | ||
| 1487 | xorl (%ebp,%ebx),%edi | ||
| 1488 | movb %dl, %bl | ||
| 1489 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1490 | movb %dh, %cl | ||
| 1491 | shrl $16, %eax | ||
| 1492 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1493 | movb %ah, %bl | ||
| 1494 | shrl $16, %edx | ||
| 1495 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1496 | movb %dh, %cl | ||
| 1497 | andl $0xff, %eax | ||
| 1498 | andl $0xff, %edx | ||
| 1499 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1500 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1501 | movl 24(%esp), %ecx | ||
| 1502 | xorl 0x400(%ebp,%eax),%edi | ||
| 1503 | xorl 0x500(%ebp,%edx),%edi | ||
| 1504 | |||
| 1505 | |||
| 1506 | movl 104(%ecx), %eax | ||
| 1507 | xorl %ebx, %ebx | ||
| 1508 | movl 108(%ecx), %edx | ||
| 1509 | xorl %edi, %eax | ||
| 1510 | xorl %ecx, %ecx | ||
| 1511 | xorl %edi, %edx | ||
| 1512 | andl $0xfcfcfcfc, %eax | ||
| 1513 | andl $0xcfcfcfcf, %edx | ||
| 1514 | movb %al, %bl | ||
| 1515 | movb %ah, %cl | ||
| 1516 | rorl $4, %edx | ||
| 1517 | xorl (%ebp,%ebx),%esi | ||
| 1518 | movb %dl, %bl | ||
| 1519 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1520 | movb %dh, %cl | ||
| 1521 | shrl $16, %eax | ||
| 1522 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1523 | movb %ah, %bl | ||
| 1524 | shrl $16, %edx | ||
| 1525 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1526 | movb %dh, %cl | ||
| 1527 | andl $0xff, %eax | ||
| 1528 | andl $0xff, %edx | ||
| 1529 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1530 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1531 | movl 24(%esp), %ecx | ||
| 1532 | xorl 0x400(%ebp,%eax),%esi | ||
| 1533 | xorl 0x500(%ebp,%edx),%esi | ||
| 1534 | |||
| 1535 | |||
| 1536 | movl 112(%ecx), %eax | ||
| 1537 | xorl %ebx, %ebx | ||
| 1538 | movl 116(%ecx), %edx | ||
| 1539 | xorl %esi, %eax | ||
| 1540 | xorl %ecx, %ecx | ||
| 1541 | xorl %esi, %edx | ||
| 1542 | andl $0xfcfcfcfc, %eax | ||
| 1543 | andl $0xcfcfcfcf, %edx | ||
| 1544 | movb %al, %bl | ||
| 1545 | movb %ah, %cl | ||
| 1546 | rorl $4, %edx | ||
| 1547 | xorl (%ebp,%ebx),%edi | ||
| 1548 | movb %dl, %bl | ||
| 1549 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1550 | movb %dh, %cl | ||
| 1551 | shrl $16, %eax | ||
| 1552 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1553 | movb %ah, %bl | ||
| 1554 | shrl $16, %edx | ||
| 1555 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1556 | movb %dh, %cl | ||
| 1557 | andl $0xff, %eax | ||
| 1558 | andl $0xff, %edx | ||
| 1559 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1560 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1561 | movl 24(%esp), %ecx | ||
| 1562 | xorl 0x400(%ebp,%eax),%edi | ||
| 1563 | xorl 0x500(%ebp,%edx),%edi | ||
| 1564 | |||
| 1565 | |||
| 1566 | movl 120(%ecx), %eax | ||
| 1567 | xorl %ebx, %ebx | ||
| 1568 | movl 124(%ecx), %edx | ||
| 1569 | xorl %edi, %eax | ||
| 1570 | xorl %ecx, %ecx | ||
| 1571 | xorl %edi, %edx | ||
| 1572 | andl $0xfcfcfcfc, %eax | ||
| 1573 | andl $0xcfcfcfcf, %edx | ||
| 1574 | movb %al, %bl | ||
| 1575 | movb %ah, %cl | ||
| 1576 | rorl $4, %edx | ||
| 1577 | xorl (%ebp,%ebx),%esi | ||
| 1578 | movb %dl, %bl | ||
| 1579 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1580 | movb %dh, %cl | ||
| 1581 | shrl $16, %eax | ||
| 1582 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1583 | movb %ah, %bl | ||
| 1584 | shrl $16, %edx | ||
| 1585 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1586 | movb %dh, %cl | ||
| 1587 | andl $0xff, %eax | ||
| 1588 | andl $0xff, %edx | ||
| 1589 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1590 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1591 | movl 24(%esp), %ecx | ||
| 1592 | xorl 0x400(%ebp,%eax),%esi | ||
| 1593 | xorl 0x500(%ebp,%edx),%esi | ||
| 1594 | jmp .L005end | ||
| 1595 | .L004start_decrypt: | ||
| 1596 | |||
| 1597 | |||
| 1598 | movl 120(%ecx), %eax | ||
| 1599 | xorl %ebx, %ebx | ||
| 1600 | movl 124(%ecx), %edx | ||
| 1601 | xorl %esi, %eax | ||
| 1602 | xorl %ecx, %ecx | ||
| 1603 | xorl %esi, %edx | ||
| 1604 | andl $0xfcfcfcfc, %eax | ||
| 1605 | andl $0xcfcfcfcf, %edx | ||
| 1606 | movb %al, %bl | ||
| 1607 | movb %ah, %cl | ||
| 1608 | rorl $4, %edx | ||
| 1609 | xorl (%ebp,%ebx),%edi | ||
| 1610 | movb %dl, %bl | ||
| 1611 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1612 | movb %dh, %cl | ||
| 1613 | shrl $16, %eax | ||
| 1614 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1615 | movb %ah, %bl | ||
| 1616 | shrl $16, %edx | ||
| 1617 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1618 | movb %dh, %cl | ||
| 1619 | andl $0xff, %eax | ||
| 1620 | andl $0xff, %edx | ||
| 1621 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1622 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1623 | movl 24(%esp), %ecx | ||
| 1624 | xorl 0x400(%ebp,%eax),%edi | ||
| 1625 | xorl 0x500(%ebp,%edx),%edi | ||
| 1626 | |||
| 1627 | |||
| 1628 | movl 112(%ecx), %eax | ||
| 1629 | xorl %ebx, %ebx | ||
| 1630 | movl 116(%ecx), %edx | ||
| 1631 | xorl %edi, %eax | ||
| 1632 | xorl %ecx, %ecx | ||
| 1633 | xorl %edi, %edx | ||
| 1634 | andl $0xfcfcfcfc, %eax | ||
| 1635 | andl $0xcfcfcfcf, %edx | ||
| 1636 | movb %al, %bl | ||
| 1637 | movb %ah, %cl | ||
| 1638 | rorl $4, %edx | ||
| 1639 | xorl (%ebp,%ebx),%esi | ||
| 1640 | movb %dl, %bl | ||
| 1641 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1642 | movb %dh, %cl | ||
| 1643 | shrl $16, %eax | ||
| 1644 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1645 | movb %ah, %bl | ||
| 1646 | shrl $16, %edx | ||
| 1647 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1648 | movb %dh, %cl | ||
| 1649 | andl $0xff, %eax | ||
| 1650 | andl $0xff, %edx | ||
| 1651 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1652 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1653 | movl 24(%esp), %ecx | ||
| 1654 | xorl 0x400(%ebp,%eax),%esi | ||
| 1655 | xorl 0x500(%ebp,%edx),%esi | ||
| 1656 | |||
| 1657 | |||
| 1658 | movl 104(%ecx), %eax | ||
| 1659 | xorl %ebx, %ebx | ||
| 1660 | movl 108(%ecx), %edx | ||
| 1661 | xorl %esi, %eax | ||
| 1662 | xorl %ecx, %ecx | ||
| 1663 | xorl %esi, %edx | ||
| 1664 | andl $0xfcfcfcfc, %eax | ||
| 1665 | andl $0xcfcfcfcf, %edx | ||
| 1666 | movb %al, %bl | ||
| 1667 | movb %ah, %cl | ||
| 1668 | rorl $4, %edx | ||
| 1669 | xorl (%ebp,%ebx),%edi | ||
| 1670 | movb %dl, %bl | ||
| 1671 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1672 | movb %dh, %cl | ||
| 1673 | shrl $16, %eax | ||
| 1674 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1675 | movb %ah, %bl | ||
| 1676 | shrl $16, %edx | ||
| 1677 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1678 | movb %dh, %cl | ||
| 1679 | andl $0xff, %eax | ||
| 1680 | andl $0xff, %edx | ||
| 1681 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1682 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1683 | movl 24(%esp), %ecx | ||
| 1684 | xorl 0x400(%ebp,%eax),%edi | ||
| 1685 | xorl 0x500(%ebp,%edx),%edi | ||
| 1686 | |||
| 1687 | |||
| 1688 | movl 96(%ecx), %eax | ||
| 1689 | xorl %ebx, %ebx | ||
| 1690 | movl 100(%ecx), %edx | ||
| 1691 | xorl %edi, %eax | ||
| 1692 | xorl %ecx, %ecx | ||
| 1693 | xorl %edi, %edx | ||
| 1694 | andl $0xfcfcfcfc, %eax | ||
| 1695 | andl $0xcfcfcfcf, %edx | ||
| 1696 | movb %al, %bl | ||
| 1697 | movb %ah, %cl | ||
| 1698 | rorl $4, %edx | ||
| 1699 | xorl (%ebp,%ebx),%esi | ||
| 1700 | movb %dl, %bl | ||
| 1701 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1702 | movb %dh, %cl | ||
| 1703 | shrl $16, %eax | ||
| 1704 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1705 | movb %ah, %bl | ||
| 1706 | shrl $16, %edx | ||
| 1707 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1708 | movb %dh, %cl | ||
| 1709 | andl $0xff, %eax | ||
| 1710 | andl $0xff, %edx | ||
| 1711 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1712 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1713 | movl 24(%esp), %ecx | ||
| 1714 | xorl 0x400(%ebp,%eax),%esi | ||
| 1715 | xorl 0x500(%ebp,%edx),%esi | ||
| 1716 | |||
| 1717 | |||
| 1718 | movl 88(%ecx), %eax | ||
| 1719 | xorl %ebx, %ebx | ||
| 1720 | movl 92(%ecx), %edx | ||
| 1721 | xorl %esi, %eax | ||
| 1722 | xorl %ecx, %ecx | ||
| 1723 | xorl %esi, %edx | ||
| 1724 | andl $0xfcfcfcfc, %eax | ||
| 1725 | andl $0xcfcfcfcf, %edx | ||
| 1726 | movb %al, %bl | ||
| 1727 | movb %ah, %cl | ||
| 1728 | rorl $4, %edx | ||
| 1729 | xorl (%ebp,%ebx),%edi | ||
| 1730 | movb %dl, %bl | ||
| 1731 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1732 | movb %dh, %cl | ||
| 1733 | shrl $16, %eax | ||
| 1734 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1735 | movb %ah, %bl | ||
| 1736 | shrl $16, %edx | ||
| 1737 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1738 | movb %dh, %cl | ||
| 1739 | andl $0xff, %eax | ||
| 1740 | andl $0xff, %edx | ||
| 1741 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1742 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1743 | movl 24(%esp), %ecx | ||
| 1744 | xorl 0x400(%ebp,%eax),%edi | ||
| 1745 | xorl 0x500(%ebp,%edx),%edi | ||
| 1746 | |||
| 1747 | |||
| 1748 | movl 80(%ecx), %eax | ||
| 1749 | xorl %ebx, %ebx | ||
| 1750 | movl 84(%ecx), %edx | ||
| 1751 | xorl %edi, %eax | ||
| 1752 | xorl %ecx, %ecx | ||
| 1753 | xorl %edi, %edx | ||
| 1754 | andl $0xfcfcfcfc, %eax | ||
| 1755 | andl $0xcfcfcfcf, %edx | ||
| 1756 | movb %al, %bl | ||
| 1757 | movb %ah, %cl | ||
| 1758 | rorl $4, %edx | ||
| 1759 | xorl (%ebp,%ebx),%esi | ||
| 1760 | movb %dl, %bl | ||
| 1761 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1762 | movb %dh, %cl | ||
| 1763 | shrl $16, %eax | ||
| 1764 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1765 | movb %ah, %bl | ||
| 1766 | shrl $16, %edx | ||
| 1767 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1768 | movb %dh, %cl | ||
| 1769 | andl $0xff, %eax | ||
| 1770 | andl $0xff, %edx | ||
| 1771 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1772 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1773 | movl 24(%esp), %ecx | ||
| 1774 | xorl 0x400(%ebp,%eax),%esi | ||
| 1775 | xorl 0x500(%ebp,%edx),%esi | ||
| 1776 | |||
| 1777 | |||
| 1778 | movl 72(%ecx), %eax | ||
| 1779 | xorl %ebx, %ebx | ||
| 1780 | movl 76(%ecx), %edx | ||
| 1781 | xorl %esi, %eax | ||
| 1782 | xorl %ecx, %ecx | ||
| 1783 | xorl %esi, %edx | ||
| 1784 | andl $0xfcfcfcfc, %eax | ||
| 1785 | andl $0xcfcfcfcf, %edx | ||
| 1786 | movb %al, %bl | ||
| 1787 | movb %ah, %cl | ||
| 1788 | rorl $4, %edx | ||
| 1789 | xorl (%ebp,%ebx),%edi | ||
| 1790 | movb %dl, %bl | ||
| 1791 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1792 | movb %dh, %cl | ||
| 1793 | shrl $16, %eax | ||
| 1794 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1795 | movb %ah, %bl | ||
| 1796 | shrl $16, %edx | ||
| 1797 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1798 | movb %dh, %cl | ||
| 1799 | andl $0xff, %eax | ||
| 1800 | andl $0xff, %edx | ||
| 1801 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1802 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1803 | movl 24(%esp), %ecx | ||
| 1804 | xorl 0x400(%ebp,%eax),%edi | ||
| 1805 | xorl 0x500(%ebp,%edx),%edi | ||
| 1806 | |||
| 1807 | |||
| 1808 | movl 64(%ecx), %eax | ||
| 1809 | xorl %ebx, %ebx | ||
| 1810 | movl 68(%ecx), %edx | ||
| 1811 | xorl %edi, %eax | ||
| 1812 | xorl %ecx, %ecx | ||
| 1813 | xorl %edi, %edx | ||
| 1814 | andl $0xfcfcfcfc, %eax | ||
| 1815 | andl $0xcfcfcfcf, %edx | ||
| 1816 | movb %al, %bl | ||
| 1817 | movb %ah, %cl | ||
| 1818 | rorl $4, %edx | ||
| 1819 | xorl (%ebp,%ebx),%esi | ||
| 1820 | movb %dl, %bl | ||
| 1821 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1822 | movb %dh, %cl | ||
| 1823 | shrl $16, %eax | ||
| 1824 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1825 | movb %ah, %bl | ||
| 1826 | shrl $16, %edx | ||
| 1827 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1828 | movb %dh, %cl | ||
| 1829 | andl $0xff, %eax | ||
| 1830 | andl $0xff, %edx | ||
| 1831 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1832 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1833 | movl 24(%esp), %ecx | ||
| 1834 | xorl 0x400(%ebp,%eax),%esi | ||
| 1835 | xorl 0x500(%ebp,%edx),%esi | ||
| 1836 | |||
| 1837 | |||
| 1838 | movl 56(%ecx), %eax | ||
| 1839 | xorl %ebx, %ebx | ||
| 1840 | movl 60(%ecx), %edx | ||
| 1841 | xorl %esi, %eax | ||
| 1842 | xorl %ecx, %ecx | ||
| 1843 | xorl %esi, %edx | ||
| 1844 | andl $0xfcfcfcfc, %eax | ||
| 1845 | andl $0xcfcfcfcf, %edx | ||
| 1846 | movb %al, %bl | ||
| 1847 | movb %ah, %cl | ||
| 1848 | rorl $4, %edx | ||
| 1849 | xorl (%ebp,%ebx),%edi | ||
| 1850 | movb %dl, %bl | ||
| 1851 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1852 | movb %dh, %cl | ||
| 1853 | shrl $16, %eax | ||
| 1854 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1855 | movb %ah, %bl | ||
| 1856 | shrl $16, %edx | ||
| 1857 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1858 | movb %dh, %cl | ||
| 1859 | andl $0xff, %eax | ||
| 1860 | andl $0xff, %edx | ||
| 1861 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1862 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1863 | movl 24(%esp), %ecx | ||
| 1864 | xorl 0x400(%ebp,%eax),%edi | ||
| 1865 | xorl 0x500(%ebp,%edx),%edi | ||
| 1866 | |||
| 1867 | |||
| 1868 | movl 48(%ecx), %eax | ||
| 1869 | xorl %ebx, %ebx | ||
| 1870 | movl 52(%ecx), %edx | ||
| 1871 | xorl %edi, %eax | ||
| 1872 | xorl %ecx, %ecx | ||
| 1873 | xorl %edi, %edx | ||
| 1874 | andl $0xfcfcfcfc, %eax | ||
| 1875 | andl $0xcfcfcfcf, %edx | ||
| 1876 | movb %al, %bl | ||
| 1877 | movb %ah, %cl | ||
| 1878 | rorl $4, %edx | ||
| 1879 | xorl (%ebp,%ebx),%esi | ||
| 1880 | movb %dl, %bl | ||
| 1881 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1882 | movb %dh, %cl | ||
| 1883 | shrl $16, %eax | ||
| 1884 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1885 | movb %ah, %bl | ||
| 1886 | shrl $16, %edx | ||
| 1887 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1888 | movb %dh, %cl | ||
| 1889 | andl $0xff, %eax | ||
| 1890 | andl $0xff, %edx | ||
| 1891 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1892 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1893 | movl 24(%esp), %ecx | ||
| 1894 | xorl 0x400(%ebp,%eax),%esi | ||
| 1895 | xorl 0x500(%ebp,%edx),%esi | ||
| 1896 | |||
| 1897 | |||
| 1898 | movl 40(%ecx), %eax | ||
| 1899 | xorl %ebx, %ebx | ||
| 1900 | movl 44(%ecx), %edx | ||
| 1901 | xorl %esi, %eax | ||
| 1902 | xorl %ecx, %ecx | ||
| 1903 | xorl %esi, %edx | ||
| 1904 | andl $0xfcfcfcfc, %eax | ||
| 1905 | andl $0xcfcfcfcf, %edx | ||
| 1906 | movb %al, %bl | ||
| 1907 | movb %ah, %cl | ||
| 1908 | rorl $4, %edx | ||
| 1909 | xorl (%ebp,%ebx),%edi | ||
| 1910 | movb %dl, %bl | ||
| 1911 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1912 | movb %dh, %cl | ||
| 1913 | shrl $16, %eax | ||
| 1914 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1915 | movb %ah, %bl | ||
| 1916 | shrl $16, %edx | ||
| 1917 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1918 | movb %dh, %cl | ||
| 1919 | andl $0xff, %eax | ||
| 1920 | andl $0xff, %edx | ||
| 1921 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1922 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1923 | movl 24(%esp), %ecx | ||
| 1924 | xorl 0x400(%ebp,%eax),%edi | ||
| 1925 | xorl 0x500(%ebp,%edx),%edi | ||
| 1926 | |||
| 1927 | |||
| 1928 | movl 32(%ecx), %eax | ||
| 1929 | xorl %ebx, %ebx | ||
| 1930 | movl 36(%ecx), %edx | ||
| 1931 | xorl %edi, %eax | ||
| 1932 | xorl %ecx, %ecx | ||
| 1933 | xorl %edi, %edx | ||
| 1934 | andl $0xfcfcfcfc, %eax | ||
| 1935 | andl $0xcfcfcfcf, %edx | ||
| 1936 | movb %al, %bl | ||
| 1937 | movb %ah, %cl | ||
| 1938 | rorl $4, %edx | ||
| 1939 | xorl (%ebp,%ebx),%esi | ||
| 1940 | movb %dl, %bl | ||
| 1941 | xorl 0x200(%ebp,%ecx),%esi | ||
| 1942 | movb %dh, %cl | ||
| 1943 | shrl $16, %eax | ||
| 1944 | xorl 0x100(%ebp,%ebx),%esi | ||
| 1945 | movb %ah, %bl | ||
| 1946 | shrl $16, %edx | ||
| 1947 | xorl 0x300(%ebp,%ecx),%esi | ||
| 1948 | movb %dh, %cl | ||
| 1949 | andl $0xff, %eax | ||
| 1950 | andl $0xff, %edx | ||
| 1951 | xorl 0x600(%ebp,%ebx),%esi | ||
| 1952 | xorl 0x700(%ebp,%ecx),%esi | ||
| 1953 | movl 24(%esp), %ecx | ||
| 1954 | xorl 0x400(%ebp,%eax),%esi | ||
| 1955 | xorl 0x500(%ebp,%edx),%esi | ||
| 1956 | |||
| 1957 | |||
| 1958 | movl 24(%ecx), %eax | ||
| 1959 | xorl %ebx, %ebx | ||
| 1960 | movl 28(%ecx), %edx | ||
| 1961 | xorl %esi, %eax | ||
| 1962 | xorl %ecx, %ecx | ||
| 1963 | xorl %esi, %edx | ||
| 1964 | andl $0xfcfcfcfc, %eax | ||
| 1965 | andl $0xcfcfcfcf, %edx | ||
| 1966 | movb %al, %bl | ||
| 1967 | movb %ah, %cl | ||
| 1968 | rorl $4, %edx | ||
| 1969 | xorl (%ebp,%ebx),%edi | ||
| 1970 | movb %dl, %bl | ||
| 1971 | xorl 0x200(%ebp,%ecx),%edi | ||
| 1972 | movb %dh, %cl | ||
| 1973 | shrl $16, %eax | ||
| 1974 | xorl 0x100(%ebp,%ebx),%edi | ||
| 1975 | movb %ah, %bl | ||
| 1976 | shrl $16, %edx | ||
| 1977 | xorl 0x300(%ebp,%ecx),%edi | ||
| 1978 | movb %dh, %cl | ||
| 1979 | andl $0xff, %eax | ||
| 1980 | andl $0xff, %edx | ||
| 1981 | xorl 0x600(%ebp,%ebx),%edi | ||
| 1982 | xorl 0x700(%ebp,%ecx),%edi | ||
| 1983 | movl 24(%esp), %ecx | ||
| 1984 | xorl 0x400(%ebp,%eax),%edi | ||
| 1985 | xorl 0x500(%ebp,%edx),%edi | ||
| 1986 | |||
| 1987 | |||
| 1988 | movl 16(%ecx), %eax | ||
| 1989 | xorl %ebx, %ebx | ||
| 1990 | movl 20(%ecx), %edx | ||
| 1991 | xorl %edi, %eax | ||
| 1992 | xorl %ecx, %ecx | ||
| 1993 | xorl %edi, %edx | ||
| 1994 | andl $0xfcfcfcfc, %eax | ||
| 1995 | andl $0xcfcfcfcf, %edx | ||
| 1996 | movb %al, %bl | ||
| 1997 | movb %ah, %cl | ||
| 1998 | rorl $4, %edx | ||
| 1999 | xorl (%ebp,%ebx),%esi | ||
| 2000 | movb %dl, %bl | ||
| 2001 | xorl 0x200(%ebp,%ecx),%esi | ||
| 2002 | movb %dh, %cl | ||
| 2003 | shrl $16, %eax | ||
| 2004 | xorl 0x100(%ebp,%ebx),%esi | ||
| 2005 | movb %ah, %bl | ||
| 2006 | shrl $16, %edx | ||
| 2007 | xorl 0x300(%ebp,%ecx),%esi | ||
| 2008 | movb %dh, %cl | ||
| 2009 | andl $0xff, %eax | ||
| 2010 | andl $0xff, %edx | ||
| 2011 | xorl 0x600(%ebp,%ebx),%esi | ||
| 2012 | xorl 0x700(%ebp,%ecx),%esi | ||
| 2013 | movl 24(%esp), %ecx | ||
| 2014 | xorl 0x400(%ebp,%eax),%esi | ||
| 2015 | xorl 0x500(%ebp,%edx),%esi | ||
| 2016 | |||
| 2017 | |||
| 2018 | movl 8(%ecx), %eax | ||
| 2019 | xorl %ebx, %ebx | ||
| 2020 | movl 12(%ecx), %edx | ||
| 2021 | xorl %esi, %eax | ||
| 2022 | xorl %ecx, %ecx | ||
| 2023 | xorl %esi, %edx | ||
| 2024 | andl $0xfcfcfcfc, %eax | ||
| 2025 | andl $0xcfcfcfcf, %edx | ||
| 2026 | movb %al, %bl | ||
| 2027 | movb %ah, %cl | ||
| 2028 | rorl $4, %edx | ||
| 2029 | xorl (%ebp,%ebx),%edi | ||
| 2030 | movb %dl, %bl | ||
| 2031 | xorl 0x200(%ebp,%ecx),%edi | ||
| 2032 | movb %dh, %cl | ||
| 2033 | shrl $16, %eax | ||
| 2034 | xorl 0x100(%ebp,%ebx),%edi | ||
| 2035 | movb %ah, %bl | ||
| 2036 | shrl $16, %edx | ||
| 2037 | xorl 0x300(%ebp,%ecx),%edi | ||
| 2038 | movb %dh, %cl | ||
| 2039 | andl $0xff, %eax | ||
| 2040 | andl $0xff, %edx | ||
| 2041 | xorl 0x600(%ebp,%ebx),%edi | ||
| 2042 | xorl 0x700(%ebp,%ecx),%edi | ||
| 2043 | movl 24(%esp), %ecx | ||
| 2044 | xorl 0x400(%ebp,%eax),%edi | ||
| 2045 | xorl 0x500(%ebp,%edx),%edi | ||
| 2046 | |||
| 2047 | |||
| 2048 | movl (%ecx), %eax | ||
| 2049 | xorl %ebx, %ebx | ||
| 2050 | movl 4(%ecx), %edx | ||
| 2051 | xorl %edi, %eax | ||
| 2052 | xorl %ecx, %ecx | ||
| 2053 | xorl %edi, %edx | ||
| 2054 | andl $0xfcfcfcfc, %eax | ||
| 2055 | andl $0xcfcfcfcf, %edx | ||
| 2056 | movb %al, %bl | ||
| 2057 | movb %ah, %cl | ||
| 2058 | rorl $4, %edx | ||
| 2059 | xorl (%ebp,%ebx),%esi | ||
| 2060 | movb %dl, %bl | ||
| 2061 | xorl 0x200(%ebp,%ecx),%esi | ||
| 2062 | movb %dh, %cl | ||
| 2063 | shrl $16, %eax | ||
| 2064 | xorl 0x100(%ebp,%ebx),%esi | ||
| 2065 | movb %ah, %bl | ||
| 2066 | shrl $16, %edx | ||
| 2067 | xorl 0x300(%ebp,%ecx),%esi | ||
| 2068 | movb %dh, %cl | ||
| 2069 | andl $0xff, %eax | ||
| 2070 | andl $0xff, %edx | ||
| 2071 | xorl 0x600(%ebp,%ebx),%esi | ||
| 2072 | xorl 0x700(%ebp,%ecx),%esi | ||
| 2073 | movl 24(%esp), %ecx | ||
| 2074 | xorl 0x400(%ebp,%eax),%esi | ||
| 2075 | xorl 0x500(%ebp,%edx),%esi | ||
| 2076 | .L005end: | ||
| 2077 | |||
| 2078 | |||
| 2079 | rorl $3, %edi | ||
| 2080 | movl 20(%esp), %eax | ||
| 2081 | rorl $3, %esi | ||
| 2082 | movl %edi, (%eax) | ||
| 2083 | movl %esi, 4(%eax) | ||
| 2084 | popl %ebp | ||
| 2085 | popl %ebx | ||
| 2086 | popl %edi | ||
| 2087 | popl %esi | ||
| 2088 | ret | ||
| 2089 | .L_DES_encrypt2_end: | ||
| 2090 | .size DES_encrypt2,.L_DES_encrypt2_end-DES_encrypt2 | ||
| 2091 | .ident "desasm.pl" | ||
| 2092 | .text | ||
| 2093 | .align 16 | ||
| 2094 | .globl DES_encrypt3 | ||
| 2095 | .type DES_encrypt3,@function | ||
| 2096 | DES_encrypt3: | ||
| 2097 | pushl %ebx | ||
| 2098 | movl 8(%esp), %ebx | ||
| 2099 | pushl %ebp | ||
| 2100 | pushl %esi | ||
| 2101 | pushl %edi | ||
| 2102 | |||
| 2103 | |||
| 2104 | movl (%ebx), %edi | ||
| 2105 | movl 4(%ebx), %esi | ||
| 2106 | subl $12, %esp | ||
| 2107 | |||
| 2108 | |||
| 2109 | roll $4, %edi | ||
| 2110 | movl %edi, %edx | ||
| 2111 | xorl %esi, %edi | ||
| 2112 | andl $0xf0f0f0f0, %edi | ||
| 2113 | xorl %edi, %edx | ||
| 2114 | xorl %edi, %esi | ||
| 2115 | |||
| 2116 | roll $20, %esi | ||
| 2117 | movl %esi, %edi | ||
| 2118 | xorl %edx, %esi | ||
| 2119 | andl $0xfff0000f, %esi | ||
| 2120 | xorl %esi, %edi | ||
| 2121 | xorl %esi, %edx | ||
| 2122 | |||
| 2123 | roll $14, %edi | ||
| 2124 | movl %edi, %esi | ||
| 2125 | xorl %edx, %edi | ||
| 2126 | andl $0x33333333, %edi | ||
| 2127 | xorl %edi, %esi | ||
| 2128 | xorl %edi, %edx | ||
| 2129 | |||
| 2130 | roll $22, %edx | ||
| 2131 | movl %edx, %edi | ||
| 2132 | xorl %esi, %edx | ||
| 2133 | andl $0x03fc03fc, %edx | ||
| 2134 | xorl %edx, %edi | ||
| 2135 | xorl %edx, %esi | ||
| 2136 | |||
| 2137 | roll $9, %edi | ||
| 2138 | movl %edi, %edx | ||
| 2139 | xorl %esi, %edi | ||
| 2140 | andl $0xaaaaaaaa, %edi | ||
| 2141 | xorl %edi, %edx | ||
| 2142 | xorl %edi, %esi | ||
| 2143 | |||
| 2144 | rorl $3, %edx | ||
| 2145 | rorl $2, %esi | ||
| 2146 | movl %esi, 4(%ebx) | ||
| 2147 | movl 36(%esp), %eax | ||
| 2148 | movl %edx, (%ebx) | ||
| 2149 | movl 40(%esp), %edi | ||
| 2150 | movl 44(%esp), %esi | ||
| 2151 | movl $1, 8(%esp) | ||
| 2152 | movl %eax, 4(%esp) | ||
| 2153 | movl %ebx, (%esp) | ||
| 2154 | call DES_encrypt2 | ||
| 2155 | movl $0, 8(%esp) | ||
| 2156 | movl %edi, 4(%esp) | ||
| 2157 | movl %ebx, (%esp) | ||
| 2158 | call DES_encrypt2 | ||
| 2159 | movl $1, 8(%esp) | ||
| 2160 | movl %esi, 4(%esp) | ||
| 2161 | movl %ebx, (%esp) | ||
| 2162 | call DES_encrypt2 | ||
| 2163 | addl $12, %esp | ||
| 2164 | movl (%ebx), %edi | ||
| 2165 | movl 4(%ebx), %esi | ||
| 2166 | |||
| 2167 | |||
| 2168 | roll $2, %esi | ||
| 2169 | roll $3, %edi | ||
| 2170 | movl %edi, %eax | ||
| 2171 | xorl %esi, %edi | ||
| 2172 | andl $0xaaaaaaaa, %edi | ||
| 2173 | xorl %edi, %eax | ||
| 2174 | xorl %edi, %esi | ||
| 2175 | |||
| 2176 | roll $23, %eax | ||
| 2177 | movl %eax, %edi | ||
| 2178 | xorl %esi, %eax | ||
| 2179 | andl $0x03fc03fc, %eax | ||
| 2180 | xorl %eax, %edi | ||
| 2181 | xorl %eax, %esi | ||
| 2182 | |||
| 2183 | roll $10, %edi | ||
| 2184 | movl %edi, %eax | ||
| 2185 | xorl %esi, %edi | ||
| 2186 | andl $0x33333333, %edi | ||
| 2187 | xorl %edi, %eax | ||
| 2188 | xorl %edi, %esi | ||
| 2189 | |||
| 2190 | roll $18, %esi | ||
| 2191 | movl %esi, %edi | ||
| 2192 | xorl %eax, %esi | ||
| 2193 | andl $0xfff0000f, %esi | ||
| 2194 | xorl %esi, %edi | ||
| 2195 | xorl %esi, %eax | ||
| 2196 | |||
| 2197 | roll $12, %edi | ||
| 2198 | movl %edi, %esi | ||
| 2199 | xorl %eax, %edi | ||
| 2200 | andl $0xf0f0f0f0, %edi | ||
| 2201 | xorl %edi, %esi | ||
| 2202 | xorl %edi, %eax | ||
| 2203 | |||
| 2204 | rorl $4, %eax | ||
| 2205 | movl %eax, (%ebx) | ||
| 2206 | movl %esi, 4(%ebx) | ||
| 2207 | popl %edi | ||
| 2208 | popl %esi | ||
| 2209 | popl %ebp | ||
| 2210 | popl %ebx | ||
| 2211 | ret | ||
| 2212 | .L_DES_encrypt3_end: | ||
| 2213 | .size DES_encrypt3,.L_DES_encrypt3_end-DES_encrypt3 | ||
| 2214 | .ident "desasm.pl" | ||
| 2215 | .text | ||
| 2216 | .align 16 | ||
| 2217 | .globl DES_decrypt3 | ||
| 2218 | .type DES_decrypt3,@function | ||
| 2219 | DES_decrypt3: | ||
| 2220 | pushl %ebx | ||
| 2221 | movl 8(%esp), %ebx | ||
| 2222 | pushl %ebp | ||
| 2223 | pushl %esi | ||
| 2224 | pushl %edi | ||
| 2225 | |||
| 2226 | |||
| 2227 | movl (%ebx), %edi | ||
| 2228 | movl 4(%ebx), %esi | ||
| 2229 | subl $12, %esp | ||
| 2230 | |||
| 2231 | |||
| 2232 | roll $4, %edi | ||
| 2233 | movl %edi, %edx | ||
| 2234 | xorl %esi, %edi | ||
| 2235 | andl $0xf0f0f0f0, %edi | ||
| 2236 | xorl %edi, %edx | ||
| 2237 | xorl %edi, %esi | ||
| 2238 | |||
| 2239 | roll $20, %esi | ||
| 2240 | movl %esi, %edi | ||
| 2241 | xorl %edx, %esi | ||
| 2242 | andl $0xfff0000f, %esi | ||
| 2243 | xorl %esi, %edi | ||
| 2244 | xorl %esi, %edx | ||
| 2245 | |||
| 2246 | roll $14, %edi | ||
| 2247 | movl %edi, %esi | ||
| 2248 | xorl %edx, %edi | ||
| 2249 | andl $0x33333333, %edi | ||
| 2250 | xorl %edi, %esi | ||
| 2251 | xorl %edi, %edx | ||
| 2252 | |||
| 2253 | roll $22, %edx | ||
| 2254 | movl %edx, %edi | ||
| 2255 | xorl %esi, %edx | ||
| 2256 | andl $0x03fc03fc, %edx | ||
| 2257 | xorl %edx, %edi | ||
| 2258 | xorl %edx, %esi | ||
| 2259 | |||
| 2260 | roll $9, %edi | ||
| 2261 | movl %edi, %edx | ||
| 2262 | xorl %esi, %edi | ||
| 2263 | andl $0xaaaaaaaa, %edi | ||
| 2264 | xorl %edi, %edx | ||
| 2265 | xorl %edi, %esi | ||
| 2266 | |||
| 2267 | rorl $3, %edx | ||
| 2268 | rorl $2, %esi | ||
| 2269 | movl %esi, 4(%ebx) | ||
| 2270 | movl 36(%esp), %esi | ||
| 2271 | movl %edx, (%ebx) | ||
| 2272 | movl 40(%esp), %edi | ||
| 2273 | movl 44(%esp), %eax | ||
| 2274 | movl $0, 8(%esp) | ||
| 2275 | movl %eax, 4(%esp) | ||
| 2276 | movl %ebx, (%esp) | ||
| 2277 | call DES_encrypt2 | ||
| 2278 | movl $1, 8(%esp) | ||
| 2279 | movl %edi, 4(%esp) | ||
| 2280 | movl %ebx, (%esp) | ||
| 2281 | call DES_encrypt2 | ||
| 2282 | movl $0, 8(%esp) | ||
| 2283 | movl %esi, 4(%esp) | ||
| 2284 | movl %ebx, (%esp) | ||
| 2285 | call DES_encrypt2 | ||
| 2286 | addl $12, %esp | ||
| 2287 | movl (%ebx), %edi | ||
| 2288 | movl 4(%ebx), %esi | ||
| 2289 | |||
| 2290 | |||
| 2291 | roll $2, %esi | ||
| 2292 | roll $3, %edi | ||
| 2293 | movl %edi, %eax | ||
| 2294 | xorl %esi, %edi | ||
| 2295 | andl $0xaaaaaaaa, %edi | ||
| 2296 | xorl %edi, %eax | ||
| 2297 | xorl %edi, %esi | ||
| 2298 | |||
| 2299 | roll $23, %eax | ||
| 2300 | movl %eax, %edi | ||
| 2301 | xorl %esi, %eax | ||
| 2302 | andl $0x03fc03fc, %eax | ||
| 2303 | xorl %eax, %edi | ||
| 2304 | xorl %eax, %esi | ||
| 2305 | |||
| 2306 | roll $10, %edi | ||
| 2307 | movl %edi, %eax | ||
| 2308 | xorl %esi, %edi | ||
| 2309 | andl $0x33333333, %edi | ||
| 2310 | xorl %edi, %eax | ||
| 2311 | xorl %edi, %esi | ||
| 2312 | |||
| 2313 | roll $18, %esi | ||
| 2314 | movl %esi, %edi | ||
| 2315 | xorl %eax, %esi | ||
| 2316 | andl $0xfff0000f, %esi | ||
| 2317 | xorl %esi, %edi | ||
| 2318 | xorl %esi, %eax | ||
| 2319 | |||
| 2320 | roll $12, %edi | ||
| 2321 | movl %edi, %esi | ||
| 2322 | xorl %eax, %edi | ||
| 2323 | andl $0xf0f0f0f0, %edi | ||
| 2324 | xorl %edi, %esi | ||
| 2325 | xorl %edi, %eax | ||
| 2326 | |||
| 2327 | rorl $4, %eax | ||
| 2328 | movl %eax, (%ebx) | ||
| 2329 | movl %esi, 4(%ebx) | ||
| 2330 | popl %edi | ||
| 2331 | popl %esi | ||
| 2332 | popl %ebp | ||
| 2333 | popl %ebx | ||
| 2334 | ret | ||
| 2335 | .L_DES_decrypt3_end: | ||
| 2336 | .size DES_decrypt3,.L_DES_decrypt3_end-DES_decrypt3 | ||
| 2337 | .ident "desasm.pl" | ||
| 2338 | .text | ||
| 2339 | .align 16 | ||
| 2340 | .globl DES_ncbc_encrypt | ||
| 2341 | .type DES_ncbc_encrypt,@function | ||
| 2342 | DES_ncbc_encrypt: | ||
| 2343 | |||
| 2344 | pushl %ebp | ||
| 2345 | pushl %ebx | ||
| 2346 | pushl %esi | ||
| 2347 | pushl %edi | ||
| 2348 | movl 28(%esp), %ebp | ||
| 2349 | |||
| 2350 | movl 36(%esp), %ebx | ||
| 2351 | movl (%ebx), %esi | ||
| 2352 | movl 4(%ebx), %edi | ||
| 2353 | pushl %edi | ||
| 2354 | pushl %esi | ||
| 2355 | pushl %edi | ||
| 2356 | pushl %esi | ||
| 2357 | movl %esp, %ebx | ||
| 2358 | movl 36(%esp), %esi | ||
| 2359 | movl 40(%esp), %edi | ||
| 2360 | |||
| 2361 | movl 56(%esp), %ecx | ||
| 2362 | |||
| 2363 | pushl %ecx | ||
| 2364 | |||
| 2365 | movl 52(%esp), %eax | ||
| 2366 | pushl %eax | ||
| 2367 | pushl %ebx | ||
| 2368 | cmpl $0, %ecx | ||
| 2369 | jz .L006decrypt | ||
| 2370 | andl $4294967288, %ebp | ||
| 2371 | movl 12(%esp), %eax | ||
| 2372 | movl 16(%esp), %ebx | ||
| 2373 | jz .L007encrypt_finish | ||
| 2374 | .L008encrypt_loop: | ||
| 2375 | movl (%esi), %ecx | ||
| 2376 | movl 4(%esi), %edx | ||
| 2377 | xorl %ecx, %eax | ||
| 2378 | xorl %edx, %ebx | ||
| 2379 | movl %eax, 12(%esp) | ||
| 2380 | movl %ebx, 16(%esp) | ||
| 2381 | call DES_encrypt1 | ||
| 2382 | movl 12(%esp), %eax | ||
| 2383 | movl 16(%esp), %ebx | ||
| 2384 | movl %eax, (%edi) | ||
| 2385 | movl %ebx, 4(%edi) | ||
| 2386 | addl $8, %esi | ||
| 2387 | addl $8, %edi | ||
| 2388 | subl $8, %ebp | ||
| 2389 | jnz .L008encrypt_loop | ||
| 2390 | .L007encrypt_finish: | ||
| 2391 | movl 56(%esp), %ebp | ||
| 2392 | andl $7, %ebp | ||
| 2393 | jz .L009finish | ||
| 2394 | call .L010PIC_point | ||
| 2395 | .L010PIC_point: | ||
| 2396 | popl %edx | ||
| 2397 | leal .L011cbc_enc_jmp_table-.L010PIC_point(%edx),%ecx | ||
| 2398 | movl (%ecx,%ebp,4), %ebp | ||
| 2399 | addl %edx, %ebp | ||
| 2400 | xorl %ecx, %ecx | ||
| 2401 | xorl %edx, %edx | ||
| 2402 | jmp *%ebp | ||
| 2403 | .L012ej7: | ||
| 2404 | movb 6(%esi), %dh | ||
| 2405 | sall $8, %edx | ||
| 2406 | .L013ej6: | ||
| 2407 | movb 5(%esi), %dh | ||
| 2408 | .L014ej5: | ||
| 2409 | movb 4(%esi), %dl | ||
| 2410 | .L015ej4: | ||
| 2411 | movl (%esi), %ecx | ||
| 2412 | jmp .L016ejend | ||
| 2413 | .L017ej3: | ||
| 2414 | movb 2(%esi), %ch | ||
| 2415 | sall $8, %ecx | ||
| 2416 | .L018ej2: | ||
| 2417 | movb 1(%esi), %ch | ||
| 2418 | .L019ej1: | ||
| 2419 | movb (%esi), %cl | ||
| 2420 | .L016ejend: | ||
| 2421 | xorl %ecx, %eax | ||
| 2422 | xorl %edx, %ebx | ||
| 2423 | movl %eax, 12(%esp) | ||
| 2424 | movl %ebx, 16(%esp) | ||
| 2425 | call DES_encrypt1 | ||
| 2426 | movl 12(%esp), %eax | ||
| 2427 | movl 16(%esp), %ebx | ||
| 2428 | movl %eax, (%edi) | ||
| 2429 | movl %ebx, 4(%edi) | ||
| 2430 | jmp .L009finish | ||
| 2431 | .align 16 | ||
| 2432 | .L006decrypt: | ||
| 2433 | andl $4294967288, %ebp | ||
| 2434 | movl 20(%esp), %eax | ||
| 2435 | movl 24(%esp), %ebx | ||
| 2436 | jz .L020decrypt_finish | ||
| 2437 | .L021decrypt_loop: | ||
| 2438 | movl (%esi), %eax | ||
| 2439 | movl 4(%esi), %ebx | ||
| 2440 | movl %eax, 12(%esp) | ||
| 2441 | movl %ebx, 16(%esp) | ||
| 2442 | call DES_encrypt1 | ||
| 2443 | movl 12(%esp), %eax | ||
| 2444 | movl 16(%esp), %ebx | ||
| 2445 | movl 20(%esp), %ecx | ||
| 2446 | movl 24(%esp), %edx | ||
| 2447 | xorl %eax, %ecx | ||
| 2448 | xorl %ebx, %edx | ||
| 2449 | movl (%esi), %eax | ||
| 2450 | movl 4(%esi), %ebx | ||
| 2451 | movl %ecx, (%edi) | ||
| 2452 | movl %edx, 4(%edi) | ||
| 2453 | movl %eax, 20(%esp) | ||
| 2454 | movl %ebx, 24(%esp) | ||
| 2455 | addl $8, %esi | ||
| 2456 | addl $8, %edi | ||
| 2457 | subl $8, %ebp | ||
| 2458 | jnz .L021decrypt_loop | ||
| 2459 | .L020decrypt_finish: | ||
| 2460 | movl 56(%esp), %ebp | ||
| 2461 | andl $7, %ebp | ||
| 2462 | jz .L009finish | ||
| 2463 | movl (%esi), %eax | ||
| 2464 | movl 4(%esi), %ebx | ||
| 2465 | movl %eax, 12(%esp) | ||
| 2466 | movl %ebx, 16(%esp) | ||
| 2467 | call DES_encrypt1 | ||
| 2468 | movl 12(%esp), %eax | ||
| 2469 | movl 16(%esp), %ebx | ||
| 2470 | movl 20(%esp), %ecx | ||
| 2471 | movl 24(%esp), %edx | ||
| 2472 | xorl %eax, %ecx | ||
| 2473 | xorl %ebx, %edx | ||
| 2474 | movl (%esi), %eax | ||
| 2475 | movl 4(%esi), %ebx | ||
| 2476 | .L022dj7: | ||
| 2477 | rorl $16, %edx | ||
| 2478 | movb %dl, 6(%edi) | ||
| 2479 | shrl $16, %edx | ||
| 2480 | .L023dj6: | ||
| 2481 | movb %dh, 5(%edi) | ||
| 2482 | .L024dj5: | ||
| 2483 | movb %dl, 4(%edi) | ||
| 2484 | .L025dj4: | ||
| 2485 | movl %ecx, (%edi) | ||
| 2486 | jmp .L026djend | ||
| 2487 | .L027dj3: | ||
| 2488 | rorl $16, %ecx | ||
| 2489 | movb %cl, 2(%edi) | ||
| 2490 | sall $16, %ecx | ||
| 2491 | .L028dj2: | ||
| 2492 | movb %ch, 1(%esi) | ||
| 2493 | .L029dj1: | ||
| 2494 | movb %cl, (%esi) | ||
| 2495 | .L026djend: | ||
| 2496 | jmp .L009finish | ||
| 2497 | .align 16 | ||
| 2498 | .L009finish: | ||
| 2499 | movl 64(%esp), %ecx | ||
| 2500 | addl $28, %esp | ||
| 2501 | movl %eax, (%ecx) | ||
| 2502 | movl %ebx, 4(%ecx) | ||
| 2503 | popl %edi | ||
| 2504 | popl %esi | ||
| 2505 | popl %ebx | ||
| 2506 | popl %ebp | ||
| 2507 | ret | ||
| 2508 | .align 16 | ||
| 2509 | .L011cbc_enc_jmp_table: | ||
| 2510 | .long 0 | ||
| 2511 | .long .L019ej1-.L010PIC_point | ||
| 2512 | .long .L018ej2-.L010PIC_point | ||
| 2513 | .long .L017ej3-.L010PIC_point | ||
| 2514 | .long .L015ej4-.L010PIC_point | ||
| 2515 | .long .L014ej5-.L010PIC_point | ||
| 2516 | .long .L013ej6-.L010PIC_point | ||
| 2517 | .long .L012ej7-.L010PIC_point | ||
| 2518 | .L_DES_ncbc_encrypt_end: | ||
| 2519 | .size DES_ncbc_encrypt,.L_DES_ncbc_encrypt_end-DES_ncbc_encrypt | ||
| 2520 | .ident "desasm.pl" | ||
| 2521 | .text | ||
| 2522 | .align 16 | ||
| 2523 | .globl DES_ede3_cbc_encrypt | ||
| 2524 | .type DES_ede3_cbc_encrypt,@function | ||
| 2525 | DES_ede3_cbc_encrypt: | ||
| 2526 | |||
| 2527 | pushl %ebp | ||
| 2528 | pushl %ebx | ||
| 2529 | pushl %esi | ||
| 2530 | pushl %edi | ||
| 2531 | movl 28(%esp), %ebp | ||
| 2532 | |||
| 2533 | movl 44(%esp), %ebx | ||
| 2534 | movl (%ebx), %esi | ||
| 2535 | movl 4(%ebx), %edi | ||
| 2536 | pushl %edi | ||
| 2537 | pushl %esi | ||
| 2538 | pushl %edi | ||
| 2539 | pushl %esi | ||
| 2540 | movl %esp, %ebx | ||
| 2541 | movl 36(%esp), %esi | ||
| 2542 | movl 40(%esp), %edi | ||
| 2543 | |||
| 2544 | movl 64(%esp), %ecx | ||
| 2545 | |||
| 2546 | movl 56(%esp), %eax | ||
| 2547 | pushl %eax | ||
| 2548 | |||
| 2549 | movl 56(%esp), %eax | ||
| 2550 | pushl %eax | ||
| 2551 | |||
| 2552 | movl 56(%esp), %eax | ||
| 2553 | pushl %eax | ||
| 2554 | pushl %ebx | ||
| 2555 | cmpl $0, %ecx | ||
| 2556 | jz .L030decrypt | ||
| 2557 | andl $4294967288, %ebp | ||
| 2558 | movl 16(%esp), %eax | ||
| 2559 | movl 20(%esp), %ebx | ||
| 2560 | jz .L031encrypt_finish | ||
| 2561 | .L032encrypt_loop: | ||
| 2562 | movl (%esi), %ecx | ||
| 2563 | movl 4(%esi), %edx | ||
| 2564 | xorl %ecx, %eax | ||
| 2565 | xorl %edx, %ebx | ||
| 2566 | movl %eax, 16(%esp) | ||
| 2567 | movl %ebx, 20(%esp) | ||
| 2568 | call DES_encrypt3 | ||
| 2569 | movl 16(%esp), %eax | ||
| 2570 | movl 20(%esp), %ebx | ||
| 2571 | movl %eax, (%edi) | ||
| 2572 | movl %ebx, 4(%edi) | ||
| 2573 | addl $8, %esi | ||
| 2574 | addl $8, %edi | ||
| 2575 | subl $8, %ebp | ||
| 2576 | jnz .L032encrypt_loop | ||
| 2577 | .L031encrypt_finish: | ||
| 2578 | movl 60(%esp), %ebp | ||
| 2579 | andl $7, %ebp | ||
| 2580 | jz .L033finish | ||
| 2581 | call .L034PIC_point | ||
| 2582 | .L034PIC_point: | ||
| 2583 | popl %edx | ||
| 2584 | leal .L035cbc_enc_jmp_table-.L034PIC_point(%edx),%ecx | ||
| 2585 | movl (%ecx,%ebp,4), %ebp | ||
| 2586 | addl %edx, %ebp | ||
| 2587 | xorl %ecx, %ecx | ||
| 2588 | xorl %edx, %edx | ||
| 2589 | jmp *%ebp | ||
| 2590 | .L036ej7: | ||
| 2591 | movb 6(%esi), %dh | ||
| 2592 | sall $8, %edx | ||
| 2593 | .L037ej6: | ||
| 2594 | movb 5(%esi), %dh | ||
| 2595 | .L038ej5: | ||
| 2596 | movb 4(%esi), %dl | ||
| 2597 | .L039ej4: | ||
| 2598 | movl (%esi), %ecx | ||
| 2599 | jmp .L040ejend | ||
| 2600 | .L041ej3: | ||
| 2601 | movb 2(%esi), %ch | ||
| 2602 | sall $8, %ecx | ||
| 2603 | .L042ej2: | ||
| 2604 | movb 1(%esi), %ch | ||
| 2605 | .L043ej1: | ||
| 2606 | movb (%esi), %cl | ||
| 2607 | .L040ejend: | ||
| 2608 | xorl %ecx, %eax | ||
| 2609 | xorl %edx, %ebx | ||
| 2610 | movl %eax, 16(%esp) | ||
| 2611 | movl %ebx, 20(%esp) | ||
| 2612 | call DES_encrypt3 | ||
| 2613 | movl 16(%esp), %eax | ||
| 2614 | movl 20(%esp), %ebx | ||
| 2615 | movl %eax, (%edi) | ||
| 2616 | movl %ebx, 4(%edi) | ||
| 2617 | jmp .L033finish | ||
| 2618 | .align 16 | ||
| 2619 | .L030decrypt: | ||
| 2620 | andl $4294967288, %ebp | ||
| 2621 | movl 24(%esp), %eax | ||
| 2622 | movl 28(%esp), %ebx | ||
| 2623 | jz .L044decrypt_finish | ||
| 2624 | .L045decrypt_loop: | ||
| 2625 | movl (%esi), %eax | ||
| 2626 | movl 4(%esi), %ebx | ||
| 2627 | movl %eax, 16(%esp) | ||
| 2628 | movl %ebx, 20(%esp) | ||
| 2629 | call DES_decrypt3 | ||
| 2630 | movl 16(%esp), %eax | ||
| 2631 | movl 20(%esp), %ebx | ||
| 2632 | movl 24(%esp), %ecx | ||
| 2633 | movl 28(%esp), %edx | ||
| 2634 | xorl %eax, %ecx | ||
| 2635 | xorl %ebx, %edx | ||
| 2636 | movl (%esi), %eax | ||
| 2637 | movl 4(%esi), %ebx | ||
| 2638 | movl %ecx, (%edi) | ||
| 2639 | movl %edx, 4(%edi) | ||
| 2640 | movl %eax, 24(%esp) | ||
| 2641 | movl %ebx, 28(%esp) | ||
| 2642 | addl $8, %esi | ||
| 2643 | addl $8, %edi | ||
| 2644 | subl $8, %ebp | ||
| 2645 | jnz .L045decrypt_loop | ||
| 2646 | .L044decrypt_finish: | ||
| 2647 | movl 60(%esp), %ebp | ||
| 2648 | andl $7, %ebp | ||
| 2649 | jz .L033finish | ||
| 2650 | movl (%esi), %eax | ||
| 2651 | movl 4(%esi), %ebx | ||
| 2652 | movl %eax, 16(%esp) | ||
| 2653 | movl %ebx, 20(%esp) | ||
| 2654 | call DES_decrypt3 | ||
| 2655 | movl 16(%esp), %eax | ||
| 2656 | movl 20(%esp), %ebx | ||
| 2657 | movl 24(%esp), %ecx | ||
| 2658 | movl 28(%esp), %edx | ||
| 2659 | xorl %eax, %ecx | ||
| 2660 | xorl %ebx, %edx | ||
| 2661 | movl (%esi), %eax | ||
| 2662 | movl 4(%esi), %ebx | ||
| 2663 | .L046dj7: | ||
| 2664 | rorl $16, %edx | ||
| 2665 | movb %dl, 6(%edi) | ||
| 2666 | shrl $16, %edx | ||
| 2667 | .L047dj6: | ||
| 2668 | movb %dh, 5(%edi) | ||
| 2669 | .L048dj5: | ||
| 2670 | movb %dl, 4(%edi) | ||
| 2671 | .L049dj4: | ||
| 2672 | movl %ecx, (%edi) | ||
| 2673 | jmp .L050djend | ||
| 2674 | .L051dj3: | ||
| 2675 | rorl $16, %ecx | ||
| 2676 | movb %cl, 2(%edi) | ||
| 2677 | sall $16, %ecx | ||
| 2678 | .L052dj2: | ||
| 2679 | movb %ch, 1(%esi) | ||
| 2680 | .L053dj1: | ||
| 2681 | movb %cl, (%esi) | ||
| 2682 | .L050djend: | ||
| 2683 | jmp .L033finish | ||
| 2684 | .align 16 | ||
| 2685 | .L033finish: | ||
| 2686 | movl 76(%esp), %ecx | ||
| 2687 | addl $32, %esp | ||
| 2688 | movl %eax, (%ecx) | ||
| 2689 | movl %ebx, 4(%ecx) | ||
| 2690 | popl %edi | ||
| 2691 | popl %esi | ||
| 2692 | popl %ebx | ||
| 2693 | popl %ebp | ||
| 2694 | ret | ||
| 2695 | .align 16 | ||
| 2696 | .L035cbc_enc_jmp_table: | ||
| 2697 | .long 0 | ||
| 2698 | .long .L043ej1-.L034PIC_point | ||
| 2699 | .long .L042ej2-.L034PIC_point | ||
| 2700 | .long .L041ej3-.L034PIC_point | ||
| 2701 | .long .L039ej4-.L034PIC_point | ||
| 2702 | .long .L038ej5-.L034PIC_point | ||
| 2703 | .long .L037ej6-.L034PIC_point | ||
| 2704 | .long .L036ej7-.L034PIC_point | ||
| 2705 | .L_DES_ede3_cbc_encrypt_end: | ||
| 2706 | .size DES_ede3_cbc_encrypt,.L_DES_ede3_cbc_encrypt_end-DES_ede3_cbc_encrypt | ||
| 2707 | .ident "desasm.pl" | ||
diff --git a/src/lib/libssl/src/fips-1.0/des/fips_des_enc.c b/src/lib/libssl/src/fips-1.0/des/fips_des_enc.c deleted file mode 100644 index 40e25efa58..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/fips_des_enc.c +++ /dev/null | |||
| @@ -1,310 +0,0 @@ | |||
| 1 | /* crypto/des/des_enc.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include "fips_des_locl.h" | ||
| 60 | #include <openssl/fips.h> | ||
| 61 | |||
| 62 | #ifdef OPENSSL_FIPS | ||
| 63 | |||
| 64 | void DES_encrypt1(DES_LONG *data, DES_key_schedule *ks, int enc) | ||
| 65 | { | ||
| 66 | register DES_LONG l,r,t,u; | ||
| 67 | #ifdef DES_PTR | ||
| 68 | register const unsigned char *des_SP=(const unsigned char *)DES_SPtrans; | ||
| 69 | #endif | ||
| 70 | #ifndef DES_UNROLL | ||
| 71 | register int i; | ||
| 72 | #endif | ||
| 73 | register DES_LONG *s; | ||
| 74 | |||
| 75 | if(FIPS_selftest_failed()) | ||
| 76 | { | ||
| 77 | data[0]=data[1]=0; | ||
| 78 | return; | ||
| 79 | } | ||
| 80 | |||
| 81 | r=data[0]; | ||
| 82 | l=data[1]; | ||
| 83 | |||
| 84 | IP(r,l); | ||
| 85 | /* Things have been modified so that the initial rotate is | ||
| 86 | * done outside the loop. This required the | ||
| 87 | * DES_SPtrans values in sp.h to be rotated 1 bit to the right. | ||
| 88 | * One perl script later and things have a 5% speed up on a sparc2. | ||
| 89 | * Thanks to Richard Outerbridge <71755.204@CompuServe.COM> | ||
| 90 | * for pointing this out. */ | ||
| 91 | /* clear the top bits on machines with 8byte longs */ | ||
| 92 | /* shift left by 2 */ | ||
| 93 | r=ROTATE(r,29)&0xffffffffL; | ||
| 94 | l=ROTATE(l,29)&0xffffffffL; | ||
| 95 | |||
| 96 | s=ks->ks->deslong; | ||
| 97 | /* I don't know if it is worth the effort of loop unrolling the | ||
| 98 | * inner loop */ | ||
| 99 | if (enc) | ||
| 100 | { | ||
| 101 | #ifdef DES_UNROLL | ||
| 102 | D_ENCRYPT(l,r, 0); /* 1 */ | ||
| 103 | D_ENCRYPT(r,l, 2); /* 2 */ | ||
| 104 | D_ENCRYPT(l,r, 4); /* 3 */ | ||
| 105 | D_ENCRYPT(r,l, 6); /* 4 */ | ||
| 106 | D_ENCRYPT(l,r, 8); /* 5 */ | ||
| 107 | D_ENCRYPT(r,l,10); /* 6 */ | ||
| 108 | D_ENCRYPT(l,r,12); /* 7 */ | ||
| 109 | D_ENCRYPT(r,l,14); /* 8 */ | ||
| 110 | D_ENCRYPT(l,r,16); /* 9 */ | ||
| 111 | D_ENCRYPT(r,l,18); /* 10 */ | ||
| 112 | D_ENCRYPT(l,r,20); /* 11 */ | ||
| 113 | D_ENCRYPT(r,l,22); /* 12 */ | ||
| 114 | D_ENCRYPT(l,r,24); /* 13 */ | ||
| 115 | D_ENCRYPT(r,l,26); /* 14 */ | ||
| 116 | D_ENCRYPT(l,r,28); /* 15 */ | ||
| 117 | D_ENCRYPT(r,l,30); /* 16 */ | ||
| 118 | #else | ||
| 119 | for (i=0; i<32; i+=8) | ||
| 120 | { | ||
| 121 | D_ENCRYPT(l,r,i+0); /* 1 */ | ||
| 122 | D_ENCRYPT(r,l,i+2); /* 2 */ | ||
| 123 | D_ENCRYPT(l,r,i+4); /* 3 */ | ||
| 124 | D_ENCRYPT(r,l,i+6); /* 4 */ | ||
| 125 | } | ||
| 126 | #endif | ||
| 127 | } | ||
| 128 | else | ||
| 129 | { | ||
| 130 | #ifdef DES_UNROLL | ||
| 131 | D_ENCRYPT(l,r,30); /* 16 */ | ||
| 132 | D_ENCRYPT(r,l,28); /* 15 */ | ||
| 133 | D_ENCRYPT(l,r,26); /* 14 */ | ||
| 134 | D_ENCRYPT(r,l,24); /* 13 */ | ||
| 135 | D_ENCRYPT(l,r,22); /* 12 */ | ||
| 136 | D_ENCRYPT(r,l,20); /* 11 */ | ||
| 137 | D_ENCRYPT(l,r,18); /* 10 */ | ||
| 138 | D_ENCRYPT(r,l,16); /* 9 */ | ||
| 139 | D_ENCRYPT(l,r,14); /* 8 */ | ||
| 140 | D_ENCRYPT(r,l,12); /* 7 */ | ||
| 141 | D_ENCRYPT(l,r,10); /* 6 */ | ||
| 142 | D_ENCRYPT(r,l, 8); /* 5 */ | ||
| 143 | D_ENCRYPT(l,r, 6); /* 4 */ | ||
| 144 | D_ENCRYPT(r,l, 4); /* 3 */ | ||
| 145 | D_ENCRYPT(l,r, 2); /* 2 */ | ||
| 146 | D_ENCRYPT(r,l, 0); /* 1 */ | ||
| 147 | #else | ||
| 148 | for (i=30; i>0; i-=8) | ||
| 149 | { | ||
| 150 | D_ENCRYPT(l,r,i-0); /* 16 */ | ||
| 151 | D_ENCRYPT(r,l,i-2); /* 15 */ | ||
| 152 | D_ENCRYPT(l,r,i-4); /* 14 */ | ||
| 153 | D_ENCRYPT(r,l,i-6); /* 13 */ | ||
| 154 | } | ||
| 155 | #endif | ||
| 156 | } | ||
| 157 | |||
| 158 | /* rotate and clear the top bits on machines with 8byte longs */ | ||
| 159 | l=ROTATE(l,3)&0xffffffffL; | ||
| 160 | r=ROTATE(r,3)&0xffffffffL; | ||
| 161 | |||
| 162 | FP(r,l); | ||
| 163 | data[0]=l; | ||
| 164 | data[1]=r; | ||
| 165 | l=r=t=u=0; | ||
| 166 | } | ||
| 167 | |||
| 168 | void DES_encrypt2(DES_LONG *data, DES_key_schedule *ks, int enc) | ||
| 169 | { | ||
| 170 | register DES_LONG l,r,t,u; | ||
| 171 | #ifdef DES_PTR | ||
| 172 | register const unsigned char *des_SP=(const unsigned char *)DES_SPtrans; | ||
| 173 | #endif | ||
| 174 | #ifndef DES_UNROLL | ||
| 175 | register int i; | ||
| 176 | #endif | ||
| 177 | register DES_LONG *s; | ||
| 178 | |||
| 179 | if(FIPS_selftest_failed()) | ||
| 180 | { | ||
| 181 | data[0]=data[1]=0; | ||
| 182 | return; | ||
| 183 | } | ||
| 184 | |||
| 185 | r=data[0]; | ||
| 186 | l=data[1]; | ||
| 187 | |||
| 188 | /* Things have been modified so that the initial rotate is | ||
| 189 | * done outside the loop. This required the | ||
| 190 | * DES_SPtrans values in sp.h to be rotated 1 bit to the right. | ||
| 191 | * One perl script later and things have a 5% speed up on a sparc2. | ||
| 192 | * Thanks to Richard Outerbridge <71755.204@CompuServe.COM> | ||
| 193 | * for pointing this out. */ | ||
| 194 | /* clear the top bits on machines with 8byte longs */ | ||
| 195 | r=ROTATE(r,29)&0xffffffffL; | ||
| 196 | l=ROTATE(l,29)&0xffffffffL; | ||
| 197 | |||
| 198 | s=ks->ks->deslong; | ||
| 199 | /* I don't know if it is worth the effort of loop unrolling the | ||
| 200 | * inner loop */ | ||
| 201 | if (enc) | ||
| 202 | { | ||
| 203 | #ifdef DES_UNROLL | ||
| 204 | D_ENCRYPT(l,r, 0); /* 1 */ | ||
| 205 | D_ENCRYPT(r,l, 2); /* 2 */ | ||
| 206 | D_ENCRYPT(l,r, 4); /* 3 */ | ||
| 207 | D_ENCRYPT(r,l, 6); /* 4 */ | ||
| 208 | D_ENCRYPT(l,r, 8); /* 5 */ | ||
| 209 | D_ENCRYPT(r,l,10); /* 6 */ | ||
| 210 | D_ENCRYPT(l,r,12); /* 7 */ | ||
| 211 | D_ENCRYPT(r,l,14); /* 8 */ | ||
| 212 | D_ENCRYPT(l,r,16); /* 9 */ | ||
| 213 | D_ENCRYPT(r,l,18); /* 10 */ | ||
| 214 | D_ENCRYPT(l,r,20); /* 11 */ | ||
| 215 | D_ENCRYPT(r,l,22); /* 12 */ | ||
| 216 | D_ENCRYPT(l,r,24); /* 13 */ | ||
| 217 | D_ENCRYPT(r,l,26); /* 14 */ | ||
| 218 | D_ENCRYPT(l,r,28); /* 15 */ | ||
| 219 | D_ENCRYPT(r,l,30); /* 16 */ | ||
| 220 | #else | ||
| 221 | for (i=0; i<32; i+=8) | ||
| 222 | { | ||
| 223 | D_ENCRYPT(l,r,i+0); /* 1 */ | ||
| 224 | D_ENCRYPT(r,l,i+2); /* 2 */ | ||
| 225 | D_ENCRYPT(l,r,i+4); /* 3 */ | ||
| 226 | D_ENCRYPT(r,l,i+6); /* 4 */ | ||
| 227 | } | ||
| 228 | #endif | ||
| 229 | } | ||
| 230 | else | ||
| 231 | { | ||
| 232 | #ifdef DES_UNROLL | ||
| 233 | D_ENCRYPT(l,r,30); /* 16 */ | ||
| 234 | D_ENCRYPT(r,l,28); /* 15 */ | ||
| 235 | D_ENCRYPT(l,r,26); /* 14 */ | ||
| 236 | D_ENCRYPT(r,l,24); /* 13 */ | ||
| 237 | D_ENCRYPT(l,r,22); /* 12 */ | ||
| 238 | D_ENCRYPT(r,l,20); /* 11 */ | ||
| 239 | D_ENCRYPT(l,r,18); /* 10 */ | ||
| 240 | D_ENCRYPT(r,l,16); /* 9 */ | ||
| 241 | D_ENCRYPT(l,r,14); /* 8 */ | ||
| 242 | D_ENCRYPT(r,l,12); /* 7 */ | ||
| 243 | D_ENCRYPT(l,r,10); /* 6 */ | ||
| 244 | D_ENCRYPT(r,l, 8); /* 5 */ | ||
| 245 | D_ENCRYPT(l,r, 6); /* 4 */ | ||
| 246 | D_ENCRYPT(r,l, 4); /* 3 */ | ||
| 247 | D_ENCRYPT(l,r, 2); /* 2 */ | ||
| 248 | D_ENCRYPT(r,l, 0); /* 1 */ | ||
| 249 | #else | ||
| 250 | for (i=30; i>0; i-=8) | ||
| 251 | { | ||
| 252 | D_ENCRYPT(l,r,i-0); /* 16 */ | ||
| 253 | D_ENCRYPT(r,l,i-2); /* 15 */ | ||
| 254 | D_ENCRYPT(l,r,i-4); /* 14 */ | ||
| 255 | D_ENCRYPT(r,l,i-6); /* 13 */ | ||
| 256 | } | ||
| 257 | #endif | ||
| 258 | } | ||
| 259 | /* rotate and clear the top bits on machines with 8byte longs */ | ||
| 260 | data[0]=ROTATE(l,3)&0xffffffffL; | ||
| 261 | data[1]=ROTATE(r,3)&0xffffffffL; | ||
| 262 | l=r=t=u=0; | ||
| 263 | } | ||
| 264 | |||
| 265 | void DES_encrypt3(DES_LONG *data, DES_key_schedule *ks1, | ||
| 266 | DES_key_schedule *ks2, DES_key_schedule *ks3) | ||
| 267 | { | ||
| 268 | register DES_LONG l,r; | ||
| 269 | |||
| 270 | l=data[0]; | ||
| 271 | r=data[1]; | ||
| 272 | IP(l,r); | ||
| 273 | data[0]=l; | ||
| 274 | data[1]=r; | ||
| 275 | DES_encrypt2((DES_LONG *)data,ks1,DES_ENCRYPT); | ||
| 276 | DES_encrypt2((DES_LONG *)data,ks2,DES_DECRYPT); | ||
| 277 | DES_encrypt2((DES_LONG *)data,ks3,DES_ENCRYPT); | ||
| 278 | l=data[0]; | ||
| 279 | r=data[1]; | ||
| 280 | FP(r,l); | ||
| 281 | data[0]=l; | ||
| 282 | data[1]=r; | ||
| 283 | } | ||
| 284 | |||
| 285 | void DES_decrypt3(DES_LONG *data, DES_key_schedule *ks1, | ||
| 286 | DES_key_schedule *ks2, DES_key_schedule *ks3) | ||
| 287 | { | ||
| 288 | register DES_LONG l,r; | ||
| 289 | |||
| 290 | l=data[0]; | ||
| 291 | r=data[1]; | ||
| 292 | IP(l,r); | ||
| 293 | data[0]=l; | ||
| 294 | data[1]=r; | ||
| 295 | DES_encrypt2((DES_LONG *)data,ks3,DES_DECRYPT); | ||
| 296 | DES_encrypt2((DES_LONG *)data,ks2,DES_ENCRYPT); | ||
| 297 | DES_encrypt2((DES_LONG *)data,ks1,DES_DECRYPT); | ||
| 298 | l=data[0]; | ||
| 299 | r=data[1]; | ||
| 300 | FP(r,l); | ||
| 301 | data[0]=l; | ||
| 302 | data[1]=r; | ||
| 303 | } | ||
| 304 | |||
| 305 | #else /* ndef OPENSSL_FIPS */ | ||
| 306 | |||
| 307 | static void *dummy=&dummy; | ||
| 308 | |||
| 309 | #endif /* ndef OPENSSL_FIPS */ | ||
| 310 | |||
diff --git a/src/lib/libssl/src/fips-1.0/des/fips_des_locl.h b/src/lib/libssl/src/fips-1.0/des/fips_des_locl.h deleted file mode 100644 index 5c466a5561..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/fips_des_locl.h +++ /dev/null | |||
| @@ -1,428 +0,0 @@ | |||
| 1 | /* crypto/des/des_locl.h */ | ||
| 2 | /* Copyright (C) 1995-1997 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #ifndef HEADER_DES_LOCL_H | ||
| 60 | #define HEADER_DES_LOCL_H | ||
| 61 | |||
| 62 | #include "e_os.h" | ||
| 63 | |||
| 64 | #if defined(OPENSSL_SYS_WIN32) || defined(OPENSSL_SYS_WIN16) | ||
| 65 | #ifndef OPENSSL_SYS_MSDOS | ||
| 66 | #define OPENSSL_SYS_MSDOS | ||
| 67 | #endif | ||
| 68 | #endif | ||
| 69 | |||
| 70 | #include <stdio.h> | ||
| 71 | #include <stdlib.h> | ||
| 72 | |||
| 73 | #ifndef OPENSSL_SYS_MSDOS | ||
| 74 | #if !defined(OPENSSL_SYS_VMS) || defined(__DECC) | ||
| 75 | #ifdef OPENSSL_UNISTD | ||
| 76 | # include OPENSSL_UNISTD | ||
| 77 | #else | ||
| 78 | # include <unistd.h> | ||
| 79 | #endif | ||
| 80 | #include <math.h> | ||
| 81 | #endif | ||
| 82 | #endif | ||
| 83 | #include <openssl/des.h> | ||
| 84 | |||
| 85 | #ifdef OPENSSL_SYS_MSDOS /* Visual C++ 2.1 (Windows NT/95) */ | ||
| 86 | #include <stdlib.h> | ||
| 87 | #include <errno.h> | ||
| 88 | #include <time.h> | ||
| 89 | #include <io.h> | ||
| 90 | #endif | ||
| 91 | |||
| 92 | #if defined(__STDC__) || defined(OPENSSL_SYS_VMS) || defined(M_XENIX) || defined(OPENSSL_SYS_MSDOS) | ||
| 93 | #include <string.h> | ||
| 94 | #endif | ||
| 95 | |||
| 96 | #ifdef OPENSSL_BUILD_SHLIBCRYPTO | ||
| 97 | # undef OPENSSL_EXTERN | ||
| 98 | # define OPENSSL_EXTERN OPENSSL_EXPORT | ||
| 99 | #endif | ||
| 100 | |||
| 101 | #define ITERATIONS 16 | ||
| 102 | #define HALF_ITERATIONS 8 | ||
| 103 | |||
| 104 | /* used in des_read and des_write */ | ||
| 105 | #define MAXWRITE (1024*16) | ||
| 106 | #define BSIZE (MAXWRITE+4) | ||
| 107 | |||
| 108 | #define c2l(c,l) (l =((DES_LONG)(*((c)++))) , \ | ||
| 109 | l|=((DES_LONG)(*((c)++)))<< 8L, \ | ||
| 110 | l|=((DES_LONG)(*((c)++)))<<16L, \ | ||
| 111 | l|=((DES_LONG)(*((c)++)))<<24L) | ||
| 112 | |||
| 113 | /* NOTE - c is not incremented as per c2l */ | ||
| 114 | #define c2ln(c,l1,l2,n) { \ | ||
| 115 | c+=n; \ | ||
| 116 | l1=l2=0; \ | ||
| 117 | switch (n) { \ | ||
| 118 | case 8: l2 =((DES_LONG)(*(--(c))))<<24L; \ | ||
| 119 | case 7: l2|=((DES_LONG)(*(--(c))))<<16L; \ | ||
| 120 | case 6: l2|=((DES_LONG)(*(--(c))))<< 8L; \ | ||
| 121 | case 5: l2|=((DES_LONG)(*(--(c)))); \ | ||
| 122 | case 4: l1 =((DES_LONG)(*(--(c))))<<24L; \ | ||
| 123 | case 3: l1|=((DES_LONG)(*(--(c))))<<16L; \ | ||
| 124 | case 2: l1|=((DES_LONG)(*(--(c))))<< 8L; \ | ||
| 125 | case 1: l1|=((DES_LONG)(*(--(c)))); \ | ||
| 126 | } \ | ||
| 127 | } | ||
| 128 | |||
| 129 | #define l2c(l,c) (*((c)++)=(unsigned char)(((l) )&0xff), \ | ||
| 130 | *((c)++)=(unsigned char)(((l)>> 8L)&0xff), \ | ||
| 131 | *((c)++)=(unsigned char)(((l)>>16L)&0xff), \ | ||
| 132 | *((c)++)=(unsigned char)(((l)>>24L)&0xff)) | ||
| 133 | |||
| 134 | /* replacements for htonl and ntohl since I have no idea what to do | ||
| 135 | * when faced with machines with 8 byte longs. */ | ||
| 136 | #define HDRSIZE 4 | ||
| 137 | |||
| 138 | #define n2l(c,l) (l =((DES_LONG)(*((c)++)))<<24L, \ | ||
| 139 | l|=((DES_LONG)(*((c)++)))<<16L, \ | ||
| 140 | l|=((DES_LONG)(*((c)++)))<< 8L, \ | ||
| 141 | l|=((DES_LONG)(*((c)++)))) | ||
| 142 | |||
| 143 | #define l2n(l,c) (*((c)++)=(unsigned char)(((l)>>24L)&0xff), \ | ||
| 144 | *((c)++)=(unsigned char)(((l)>>16L)&0xff), \ | ||
| 145 | *((c)++)=(unsigned char)(((l)>> 8L)&0xff), \ | ||
| 146 | *((c)++)=(unsigned char)(((l) )&0xff)) | ||
| 147 | |||
| 148 | /* NOTE - c is not incremented as per l2c */ | ||
| 149 | #define l2cn(l1,l2,c,n) { \ | ||
| 150 | c+=n; \ | ||
| 151 | switch (n) { \ | ||
| 152 | case 8: *(--(c))=(unsigned char)(((l2)>>24L)&0xff); \ | ||
| 153 | case 7: *(--(c))=(unsigned char)(((l2)>>16L)&0xff); \ | ||
| 154 | case 6: *(--(c))=(unsigned char)(((l2)>> 8L)&0xff); \ | ||
| 155 | case 5: *(--(c))=(unsigned char)(((l2) )&0xff); \ | ||
| 156 | case 4: *(--(c))=(unsigned char)(((l1)>>24L)&0xff); \ | ||
| 157 | case 3: *(--(c))=(unsigned char)(((l1)>>16L)&0xff); \ | ||
| 158 | case 2: *(--(c))=(unsigned char)(((l1)>> 8L)&0xff); \ | ||
| 159 | case 1: *(--(c))=(unsigned char)(((l1) )&0xff); \ | ||
| 160 | } \ | ||
| 161 | } | ||
| 162 | |||
| 163 | #if defined(OPENSSL_SYS_WIN32) && defined(_MSC_VER) | ||
| 164 | #define ROTATE(a,n) (_lrotr(a,n)) | ||
| 165 | #elif defined(__GNUC__) && __GNUC__>=2 && !defined(__STRICT_ANSI__) && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) && !defined(PEDANTIC) | ||
| 166 | # if defined(__i386) || defined(__i386__) || defined(__x86_64) || defined(__x86_64__) | ||
| 167 | # define ROTATE(a,n) ({ register unsigned int ret; \ | ||
| 168 | asm ("rorl %1,%0" \ | ||
| 169 | : "=r"(ret) \ | ||
| 170 | : "I"(n),"0"(a) \ | ||
| 171 | : "cc"); \ | ||
| 172 | ret; \ | ||
| 173 | }) | ||
| 174 | # endif | ||
| 175 | #endif | ||
| 176 | #ifndef ROTATE | ||
| 177 | #define ROTATE(a,n) (((a)>>(n))+((a)<<(32-(n)))) | ||
| 178 | #endif | ||
| 179 | |||
| 180 | /* Don't worry about the LOAD_DATA() stuff, that is used by | ||
| 181 | * fcrypt() to add it's little bit to the front */ | ||
| 182 | |||
| 183 | #ifdef DES_FCRYPT | ||
| 184 | |||
| 185 | #define LOAD_DATA_tmp(R,S,u,t,E0,E1) \ | ||
| 186 | { DES_LONG tmp; LOAD_DATA(R,S,u,t,E0,E1,tmp); } | ||
| 187 | |||
| 188 | #define LOAD_DATA(R,S,u,t,E0,E1,tmp) \ | ||
| 189 | t=R^(R>>16L); \ | ||
| 190 | u=t&E0; t&=E1; \ | ||
| 191 | tmp=(u<<16); u^=R^s[S ]; u^=tmp; \ | ||
| 192 | tmp=(t<<16); t^=R^s[S+1]; t^=tmp | ||
| 193 | #else | ||
| 194 | #define LOAD_DATA_tmp(a,b,c,d,e,f) LOAD_DATA(a,b,c,d,e,f,g) | ||
| 195 | #define LOAD_DATA(R,S,u,t,E0,E1,tmp) \ | ||
| 196 | u=R^s[S ]; \ | ||
| 197 | t=R^s[S+1] | ||
| 198 | #endif | ||
| 199 | |||
| 200 | /* The changes to this macro may help or hinder, depending on the | ||
| 201 | * compiler and the architecture. gcc2 always seems to do well :-). | ||
| 202 | * Inspired by Dana How <how@isl.stanford.edu> | ||
| 203 | * DO NOT use the alternative version on machines with 8 byte longs. | ||
| 204 | * It does not seem to work on the Alpha, even when DES_LONG is 4 | ||
| 205 | * bytes, probably an issue of accessing non-word aligned objects :-( */ | ||
| 206 | #ifdef DES_PTR | ||
| 207 | |||
| 208 | /* It recently occurred to me that 0^0^0^0^0^0^0 == 0, so there | ||
| 209 | * is no reason to not xor all the sub items together. This potentially | ||
| 210 | * saves a register since things can be xored directly into L */ | ||
| 211 | |||
| 212 | #if defined(DES_RISC1) || defined(DES_RISC2) | ||
| 213 | #ifdef DES_RISC1 | ||
| 214 | #define D_ENCRYPT(LL,R,S) { \ | ||
| 215 | unsigned int u1,u2,u3; \ | ||
| 216 | LOAD_DATA(R,S,u,t,E0,E1,u1); \ | ||
| 217 | u2=(int)u>>8L; \ | ||
| 218 | u1=(int)u&0xfc; \ | ||
| 219 | u2&=0xfc; \ | ||
| 220 | t=ROTATE(t,4); \ | ||
| 221 | u>>=16L; \ | ||
| 222 | LL^= *(const DES_LONG *)(des_SP +u1); \ | ||
| 223 | LL^= *(const DES_LONG *)(des_SP+0x200+u2); \ | ||
| 224 | u3=(int)(u>>8L); \ | ||
| 225 | u1=(int)u&0xfc; \ | ||
| 226 | u3&=0xfc; \ | ||
| 227 | LL^= *(const DES_LONG *)(des_SP+0x400+u1); \ | ||
| 228 | LL^= *(const DES_LONG *)(des_SP+0x600+u3); \ | ||
| 229 | u2=(int)t>>8L; \ | ||
| 230 | u1=(int)t&0xfc; \ | ||
| 231 | u2&=0xfc; \ | ||
| 232 | t>>=16L; \ | ||
| 233 | LL^= *(const DES_LONG *)(des_SP+0x100+u1); \ | ||
| 234 | LL^= *(const DES_LONG *)(des_SP+0x300+u2); \ | ||
| 235 | u3=(int)t>>8L; \ | ||
| 236 | u1=(int)t&0xfc; \ | ||
| 237 | u3&=0xfc; \ | ||
| 238 | LL^= *(const DES_LONG *)(des_SP+0x500+u1); \ | ||
| 239 | LL^= *(const DES_LONG *)(des_SP+0x700+u3); } | ||
| 240 | #endif | ||
| 241 | #ifdef DES_RISC2 | ||
| 242 | #define D_ENCRYPT(LL,R,S) { \ | ||
| 243 | unsigned int u1,u2,s1,s2; \ | ||
| 244 | LOAD_DATA(R,S,u,t,E0,E1,u1); \ | ||
| 245 | u2=(int)u>>8L; \ | ||
| 246 | u1=(int)u&0xfc; \ | ||
| 247 | u2&=0xfc; \ | ||
| 248 | t=ROTATE(t,4); \ | ||
| 249 | LL^= *(const DES_LONG *)(des_SP +u1); \ | ||
| 250 | LL^= *(const DES_LONG *)(des_SP+0x200+u2); \ | ||
| 251 | s1=(int)(u>>16L); \ | ||
| 252 | s2=(int)(u>>24L); \ | ||
| 253 | s1&=0xfc; \ | ||
| 254 | s2&=0xfc; \ | ||
| 255 | LL^= *(const DES_LONG *)(des_SP+0x400+s1); \ | ||
| 256 | LL^= *(const DES_LONG *)(des_SP+0x600+s2); \ | ||
| 257 | u2=(int)t>>8L; \ | ||
| 258 | u1=(int)t&0xfc; \ | ||
| 259 | u2&=0xfc; \ | ||
| 260 | LL^= *(const DES_LONG *)(des_SP+0x100+u1); \ | ||
| 261 | LL^= *(const DES_LONG *)(des_SP+0x300+u2); \ | ||
| 262 | s1=(int)(t>>16L); \ | ||
| 263 | s2=(int)(t>>24L); \ | ||
| 264 | s1&=0xfc; \ | ||
| 265 | s2&=0xfc; \ | ||
| 266 | LL^= *(const DES_LONG *)(des_SP+0x500+s1); \ | ||
| 267 | LL^= *(const DES_LONG *)(des_SP+0x700+s2); } | ||
| 268 | #endif | ||
| 269 | #else | ||
| 270 | #define D_ENCRYPT(LL,R,S) { \ | ||
| 271 | LOAD_DATA_tmp(R,S,u,t,E0,E1); \ | ||
| 272 | t=ROTATE(t,4); \ | ||
| 273 | LL^= \ | ||
| 274 | *(const DES_LONG *)(des_SP +((u )&0xfc))^ \ | ||
| 275 | *(const DES_LONG *)(des_SP+0x200+((u>> 8L)&0xfc))^ \ | ||
| 276 | *(const DES_LONG *)(des_SP+0x400+((u>>16L)&0xfc))^ \ | ||
| 277 | *(const DES_LONG *)(des_SP+0x600+((u>>24L)&0xfc))^ \ | ||
| 278 | *(const DES_LONG *)(des_SP+0x100+((t )&0xfc))^ \ | ||
| 279 | *(const DES_LONG *)(des_SP+0x300+((t>> 8L)&0xfc))^ \ | ||
| 280 | *(const DES_LONG *)(des_SP+0x500+((t>>16L)&0xfc))^ \ | ||
| 281 | *(const DES_LONG *)(des_SP+0x700+((t>>24L)&0xfc)); } | ||
| 282 | #endif | ||
| 283 | |||
| 284 | #else /* original version */ | ||
| 285 | |||
| 286 | #if defined(DES_RISC1) || defined(DES_RISC2) | ||
| 287 | #ifdef DES_RISC1 | ||
| 288 | #define D_ENCRYPT(LL,R,S) {\ | ||
| 289 | unsigned int u1,u2,u3; \ | ||
| 290 | LOAD_DATA(R,S,u,t,E0,E1,u1); \ | ||
| 291 | u>>=2L; \ | ||
| 292 | t=ROTATE(t,6); \ | ||
| 293 | u2=(int)u>>8L; \ | ||
| 294 | u1=(int)u&0x3f; \ | ||
| 295 | u2&=0x3f; \ | ||
| 296 | u>>=16L; \ | ||
| 297 | LL^=DES_SPtrans[0][u1]; \ | ||
| 298 | LL^=DES_SPtrans[2][u2]; \ | ||
| 299 | u3=(int)u>>8L; \ | ||
| 300 | u1=(int)u&0x3f; \ | ||
| 301 | u3&=0x3f; \ | ||
| 302 | LL^=DES_SPtrans[4][u1]; \ | ||
| 303 | LL^=DES_SPtrans[6][u3]; \ | ||
| 304 | u2=(int)t>>8L; \ | ||
| 305 | u1=(int)t&0x3f; \ | ||
| 306 | u2&=0x3f; \ | ||
| 307 | t>>=16L; \ | ||
| 308 | LL^=DES_SPtrans[1][u1]; \ | ||
| 309 | LL^=DES_SPtrans[3][u2]; \ | ||
| 310 | u3=(int)t>>8L; \ | ||
| 311 | u1=(int)t&0x3f; \ | ||
| 312 | u3&=0x3f; \ | ||
| 313 | LL^=DES_SPtrans[5][u1]; \ | ||
| 314 | LL^=DES_SPtrans[7][u3]; } | ||
| 315 | #endif | ||
| 316 | #ifdef DES_RISC2 | ||
| 317 | #define D_ENCRYPT(LL,R,S) {\ | ||
| 318 | unsigned int u1,u2,s1,s2; \ | ||
| 319 | LOAD_DATA(R,S,u,t,E0,E1,u1); \ | ||
| 320 | u>>=2L; \ | ||
| 321 | t=ROTATE(t,6); \ | ||
| 322 | u2=(int)u>>8L; \ | ||
| 323 | u1=(int)u&0x3f; \ | ||
| 324 | u2&=0x3f; \ | ||
| 325 | LL^=DES_SPtrans[0][u1]; \ | ||
| 326 | LL^=DES_SPtrans[2][u2]; \ | ||
| 327 | s1=(int)u>>16L; \ | ||
| 328 | s2=(int)u>>24L; \ | ||
| 329 | s1&=0x3f; \ | ||
| 330 | s2&=0x3f; \ | ||
| 331 | LL^=DES_SPtrans[4][s1]; \ | ||
| 332 | LL^=DES_SPtrans[6][s2]; \ | ||
| 333 | u2=(int)t>>8L; \ | ||
| 334 | u1=(int)t&0x3f; \ | ||
| 335 | u2&=0x3f; \ | ||
| 336 | LL^=DES_SPtrans[1][u1]; \ | ||
| 337 | LL^=DES_SPtrans[3][u2]; \ | ||
| 338 | s1=(int)t>>16; \ | ||
| 339 | s2=(int)t>>24L; \ | ||
| 340 | s1&=0x3f; \ | ||
| 341 | s2&=0x3f; \ | ||
| 342 | LL^=DES_SPtrans[5][s1]; \ | ||
| 343 | LL^=DES_SPtrans[7][s2]; } | ||
| 344 | #endif | ||
| 345 | |||
| 346 | #else | ||
| 347 | |||
| 348 | #define D_ENCRYPT(LL,R,S) {\ | ||
| 349 | LOAD_DATA_tmp(R,S,u,t,E0,E1); \ | ||
| 350 | t=ROTATE(t,4); \ | ||
| 351 | LL^=\ | ||
| 352 | DES_SPtrans[0][(u>> 2L)&0x3f]^ \ | ||
| 353 | DES_SPtrans[2][(u>>10L)&0x3f]^ \ | ||
| 354 | DES_SPtrans[4][(u>>18L)&0x3f]^ \ | ||
| 355 | DES_SPtrans[6][(u>>26L)&0x3f]^ \ | ||
| 356 | DES_SPtrans[1][(t>> 2L)&0x3f]^ \ | ||
| 357 | DES_SPtrans[3][(t>>10L)&0x3f]^ \ | ||
| 358 | DES_SPtrans[5][(t>>18L)&0x3f]^ \ | ||
| 359 | DES_SPtrans[7][(t>>26L)&0x3f]; } | ||
| 360 | #endif | ||
| 361 | #endif | ||
| 362 | |||
| 363 | /* IP and FP | ||
| 364 | * The problem is more of a geometric problem that random bit fiddling. | ||
| 365 | 0 1 2 3 4 5 6 7 62 54 46 38 30 22 14 6 | ||
| 366 | 8 9 10 11 12 13 14 15 60 52 44 36 28 20 12 4 | ||
| 367 | 16 17 18 19 20 21 22 23 58 50 42 34 26 18 10 2 | ||
| 368 | 24 25 26 27 28 29 30 31 to 56 48 40 32 24 16 8 0 | ||
| 369 | |||
| 370 | 32 33 34 35 36 37 38 39 63 55 47 39 31 23 15 7 | ||
| 371 | 40 41 42 43 44 45 46 47 61 53 45 37 29 21 13 5 | ||
| 372 | 48 49 50 51 52 53 54 55 59 51 43 35 27 19 11 3 | ||
| 373 | 56 57 58 59 60 61 62 63 57 49 41 33 25 17 9 1 | ||
| 374 | |||
| 375 | The output has been subject to swaps of the form | ||
| 376 | 0 1 -> 3 1 but the odd and even bits have been put into | ||
| 377 | 2 3 2 0 | ||
| 378 | different words. The main trick is to remember that | ||
| 379 | t=((l>>size)^r)&(mask); | ||
| 380 | r^=t; | ||
| 381 | l^=(t<<size); | ||
| 382 | can be used to swap and move bits between words. | ||
| 383 | |||
| 384 | So l = 0 1 2 3 r = 16 17 18 19 | ||
| 385 | 4 5 6 7 20 21 22 23 | ||
| 386 | 8 9 10 11 24 25 26 27 | ||
| 387 | 12 13 14 15 28 29 30 31 | ||
| 388 | becomes (for size == 2 and mask == 0x3333) | ||
| 389 | t = 2^16 3^17 -- -- l = 0 1 16 17 r = 2 3 18 19 | ||
| 390 | 6^20 7^21 -- -- 4 5 20 21 6 7 22 23 | ||
| 391 | 10^24 11^25 -- -- 8 9 24 25 10 11 24 25 | ||
| 392 | 14^28 15^29 -- -- 12 13 28 29 14 15 28 29 | ||
| 393 | |||
| 394 | Thanks for hints from Richard Outerbridge - he told me IP&FP | ||
| 395 | could be done in 15 xor, 10 shifts and 5 ands. | ||
| 396 | When I finally started to think of the problem in 2D | ||
| 397 | I first got ~42 operations without xors. When I remembered | ||
| 398 | how to use xors :-) I got it to its final state. | ||
| 399 | */ | ||
| 400 | #define PERM_OP(a,b,t,n,m) ((t)=((((a)>>(n))^(b))&(m)),\ | ||
| 401 | (b)^=(t),\ | ||
| 402 | (a)^=((t)<<(n))) | ||
| 403 | |||
| 404 | #define IP(l,r) \ | ||
| 405 | { \ | ||
| 406 | register DES_LONG tt; \ | ||
| 407 | PERM_OP(r,l,tt, 4,0x0f0f0f0fL); \ | ||
| 408 | PERM_OP(l,r,tt,16,0x0000ffffL); \ | ||
| 409 | PERM_OP(r,l,tt, 2,0x33333333L); \ | ||
| 410 | PERM_OP(l,r,tt, 8,0x00ff00ffL); \ | ||
| 411 | PERM_OP(r,l,tt, 1,0x55555555L); \ | ||
| 412 | } | ||
| 413 | |||
| 414 | #define FP(l,r) \ | ||
| 415 | { \ | ||
| 416 | register DES_LONG tt; \ | ||
| 417 | PERM_OP(l,r,tt, 1,0x55555555L); \ | ||
| 418 | PERM_OP(r,l,tt, 8,0x00ff00ffL); \ | ||
| 419 | PERM_OP(l,r,tt, 2,0x33333333L); \ | ||
| 420 | PERM_OP(r,l,tt,16,0x0000ffffL); \ | ||
| 421 | PERM_OP(l,r,tt, 4,0x0f0f0f0fL); \ | ||
| 422 | } | ||
| 423 | |||
| 424 | extern const DES_LONG DES_SPtrans[8][64]; | ||
| 425 | |||
| 426 | void fcrypt_body(DES_LONG *out,DES_key_schedule *ks, | ||
| 427 | DES_LONG Eswap0, DES_LONG Eswap1); | ||
| 428 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/des/fips_des_selftest.c b/src/lib/libssl/src/fips-1.0/des/fips_des_selftest.c deleted file mode 100644 index 3e0778eb5e..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/fips_des_selftest.c +++ /dev/null | |||
| @@ -1,200 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/des.h> | ||
| 54 | #include <openssl/opensslconf.h> | ||
| 55 | |||
| 56 | #ifdef OPENSSL_FIPS | ||
| 57 | static struct | ||
| 58 | { | ||
| 59 | DES_cblock key; | ||
| 60 | unsigned char plaintext[8]; | ||
| 61 | unsigned char ciphertext[8]; | ||
| 62 | } tests[]= | ||
| 63 | { | ||
| 64 | { | ||
| 65 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 66 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 67 | { 0x8C,0xA6,0x4D,0xE9,0xC1,0xB1,0x23,0xA7 } | ||
| 68 | }, | ||
| 69 | { | ||
| 70 | { 0xFE,0xDC,0xBA,0x98,0x76,0x54,0x32,0x10 }, | ||
| 71 | { 0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF }, | ||
| 72 | { 0xED,0x39,0xD9,0x50,0xFA,0x74,0xBC,0xC4 }, | ||
| 73 | }, | ||
| 74 | }; | ||
| 75 | |||
| 76 | static struct | ||
| 77 | { | ||
| 78 | DES_cblock key1; | ||
| 79 | DES_cblock key2; | ||
| 80 | unsigned char plaintext[8]; | ||
| 81 | unsigned char ciphertext[8]; | ||
| 82 | } tests2[]= | ||
| 83 | { | ||
| 84 | { | ||
| 85 | { 0x7c,0x4f,0x6e,0xf7,0xa2,0x04,0x16,0xec }, | ||
| 86 | { 0x0b,0x6b,0x7c,0x9e,0x5e,0x19,0xa7,0xc4 }, | ||
| 87 | { 0x06,0xa7,0xd8,0x79,0xaa,0xce,0x69,0xef }, | ||
| 88 | { 0x4c,0x11,0x17,0x55,0xbf,0xc4,0x4e,0xfd } | ||
| 89 | }, | ||
| 90 | { | ||
| 91 | { 0x5d,0x9e,0x01,0xd3,0x25,0xc7,0x3e,0x34 }, | ||
| 92 | { 0x01,0x16,0x7c,0x85,0x23,0xdf,0xe0,0x68 }, | ||
| 93 | { 0x9c,0x50,0x09,0x0f,0x5e,0x7d,0x69,0x7e }, | ||
| 94 | { 0xd2,0x0b,0x18,0xdf,0xd9,0x0d,0x9e,0xff }, | ||
| 95 | } | ||
| 96 | }; | ||
| 97 | |||
| 98 | static struct | ||
| 99 | { | ||
| 100 | DES_cblock key1; | ||
| 101 | DES_cblock key2; | ||
| 102 | DES_cblock key3; | ||
| 103 | unsigned char plaintext[8]; | ||
| 104 | unsigned char ciphertext[8]; | ||
| 105 | } tests3[]= | ||
| 106 | { | ||
| 107 | { | ||
| 108 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 109 | { 0xFE,0xDC,0xBA,0x98,0x76,0x54,0x32,0x10 }, | ||
| 110 | { 0x12,0x34,0x56,0x78,0x9a,0xbc,0xde,0xf0 }, | ||
| 111 | { 0x8f,0x8f,0xbf,0x9b,0x5d,0x48,0xb4,0x1c}, | ||
| 112 | { 0x59,0x8c,0xe5,0xd3,0x6c,0xa2,0xea,0x1b}, | ||
| 113 | }, | ||
| 114 | { | ||
| 115 | { 0xDC,0xBA,0x98,0x76,0x54,0x32,0x10,0xFE }, | ||
| 116 | { 0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF }, | ||
| 117 | { 0xED,0x39,0xD9,0x50,0xFA,0x74,0xBC,0xC4 }, | ||
| 118 | { 0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF }, | ||
| 119 | { 0x11,0x25,0xb0,0x35,0xbe,0xa0,0x82,0x86 }, | ||
| 120 | }, | ||
| 121 | }; | ||
| 122 | |||
| 123 | void FIPS_corrupt_des() | ||
| 124 | { | ||
| 125 | tests[0].plaintext[0]++; | ||
| 126 | } | ||
| 127 | |||
| 128 | int FIPS_selftest_des() | ||
| 129 | { | ||
| 130 | int n; | ||
| 131 | |||
| 132 | /* Encrypt/decrypt with DES and compare to known answers */ | ||
| 133 | for(n=0 ; n < 2 ; ++n) | ||
| 134 | { | ||
| 135 | DES_key_schedule key; | ||
| 136 | DES_cblock buf; | ||
| 137 | |||
| 138 | DES_set_key(&tests[n].key,&key); | ||
| 139 | DES_ecb_encrypt(&tests[n].plaintext,&buf,&key,1); | ||
| 140 | if(memcmp(buf,tests[n].ciphertext,sizeof buf)) | ||
| 141 | { | ||
| 142 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 143 | return 0; | ||
| 144 | } | ||
| 145 | DES_ecb_encrypt(&tests[n].ciphertext,&buf,&key,0); | ||
| 146 | if(memcmp(buf,tests[n].plaintext,sizeof buf)) | ||
| 147 | { | ||
| 148 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 149 | return 0; | ||
| 150 | } | ||
| 151 | } | ||
| 152 | |||
| 153 | /* Encrypt/decrypt with 2-key 3DES and compare to known answers */ | ||
| 154 | for(n=0 ; n < 2 ; ++n) | ||
| 155 | { | ||
| 156 | DES_key_schedule key1, key2; | ||
| 157 | unsigned char buf[8]; | ||
| 158 | |||
| 159 | DES_set_key(&tests2[n].key1,&key1); | ||
| 160 | DES_set_key(&tests2[n].key2,&key2); | ||
| 161 | DES_ecb2_encrypt(tests2[n].plaintext,buf,&key1,&key2,1); | ||
| 162 | if(memcmp(buf,tests2[n].ciphertext,sizeof buf)) | ||
| 163 | { | ||
| 164 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 165 | return 0; | ||
| 166 | } | ||
| 167 | DES_ecb2_encrypt(tests2[n].ciphertext,buf,&key1,&key2,0); | ||
| 168 | if(memcmp(buf,tests2[n].plaintext,sizeof buf)) | ||
| 169 | { | ||
| 170 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 171 | return 0; | ||
| 172 | } | ||
| 173 | } | ||
| 174 | |||
| 175 | /* Encrypt/decrypt with 3DES and compare to known answers */ | ||
| 176 | for(n=0 ; n < 2 ; ++n) | ||
| 177 | { | ||
| 178 | DES_key_schedule key1, key2, key3; | ||
| 179 | unsigned char buf[8]; | ||
| 180 | |||
| 181 | DES_set_key(&tests3[n].key1,&key1); | ||
| 182 | DES_set_key(&tests3[n].key2,&key2); | ||
| 183 | DES_set_key(&tests3[n].key3,&key3); | ||
| 184 | DES_ecb3_encrypt(tests3[n].plaintext,buf,&key1,&key2,&key3,1); | ||
| 185 | if(memcmp(buf,tests3[n].ciphertext,sizeof buf)) | ||
| 186 | { | ||
| 187 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 188 | return 0; | ||
| 189 | } | ||
| 190 | DES_ecb3_encrypt(tests3[n].ciphertext,buf,&key1,&key2,&key3,0); | ||
| 191 | if(memcmp(buf,tests3[n].plaintext,sizeof buf)) | ||
| 192 | { | ||
| 193 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 194 | return 0; | ||
| 195 | } | ||
| 196 | } | ||
| 197 | |||
| 198 | return 1; | ||
| 199 | } | ||
| 200 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/des/fips_desmovs.c b/src/lib/libssl/src/fips-1.0/des/fips_desmovs.c deleted file mode 100644 index 5eb55726e3..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/fips_desmovs.c +++ /dev/null | |||
| @@ -1,833 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | /*--------------------------------------------- | ||
| 50 | NIST DES Modes of Operation Validation System | ||
| 51 | Test Program | ||
| 52 | |||
| 53 | Based on the AES Validation Suite, which was: | ||
| 54 | Donated to OpenSSL by: | ||
| 55 | V-ONE Corporation | ||
| 56 | 20250 Century Blvd, Suite 300 | ||
| 57 | Germantown, MD 20874 | ||
| 58 | U.S.A. | ||
| 59 | ----------------------------------------------*/ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <stdlib.h> | ||
| 63 | #include <string.h> | ||
| 64 | #include <errno.h> | ||
| 65 | #include <assert.h> | ||
| 66 | |||
| 67 | #include <openssl/des.h> | ||
| 68 | #include <openssl/evp.h> | ||
| 69 | #include <openssl/fips.h> | ||
| 70 | #include <openssl/err.h> | ||
| 71 | #include "e_os.h" | ||
| 72 | |||
| 73 | /*#define AES_BLOCK_SIZE 16*/ | ||
| 74 | |||
| 75 | #define VERBOSE 0 | ||
| 76 | |||
| 77 | /*-----------------------------------------------*/ | ||
| 78 | |||
| 79 | int DESTest(EVP_CIPHER_CTX *ctx, | ||
| 80 | char *amode, int akeysz, unsigned char *aKey, | ||
| 81 | unsigned char *iVec, | ||
| 82 | int dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 83 | unsigned char *out, unsigned char *in, int len) | ||
| 84 | { | ||
| 85 | const EVP_CIPHER *cipher = NULL; | ||
| 86 | int kt = 0; | ||
| 87 | |||
| 88 | if (ctx) | ||
| 89 | memset(ctx, 0, sizeof(EVP_CIPHER_CTX)); | ||
| 90 | |||
| 91 | if (strcasecmp(amode, "CBC") == 0) | ||
| 92 | kt = 1000; | ||
| 93 | else if (strcasecmp(amode, "ECB") == 0) | ||
| 94 | kt = 2000; | ||
| 95 | else if (strcasecmp(amode, "CFB64") == 0) | ||
| 96 | kt = 3000; | ||
| 97 | else if (strncasecmp(amode, "OFB", 3) == 0) | ||
| 98 | kt = 4000; | ||
| 99 | else if(!strcasecmp(amode,"CFB1")) | ||
| 100 | kt=5000; | ||
| 101 | else if(!strcasecmp(amode,"CFB8")) | ||
| 102 | kt=6000; | ||
| 103 | else | ||
| 104 | { | ||
| 105 | printf("Unknown mode: %s\n", amode); | ||
| 106 | EXIT(1); | ||
| 107 | } | ||
| 108 | if (akeysz != 64 && akeysz != 192) | ||
| 109 | { | ||
| 110 | printf("Invalid key size: %d\n", akeysz); | ||
| 111 | EXIT(1); | ||
| 112 | } | ||
| 113 | else | ||
| 114 | { | ||
| 115 | kt += akeysz; | ||
| 116 | switch (kt) | ||
| 117 | { | ||
| 118 | case 1064: | ||
| 119 | cipher=EVP_des_cbc(); | ||
| 120 | break; | ||
| 121 | case 1192: | ||
| 122 | cipher=EVP_des_ede3_cbc(); | ||
| 123 | break; | ||
| 124 | case 2064: | ||
| 125 | cipher=EVP_des_ecb(); | ||
| 126 | break; | ||
| 127 | case 2192: | ||
| 128 | cipher=EVP_des_ede3_ecb(); | ||
| 129 | break; | ||
| 130 | case 3064: | ||
| 131 | cipher=EVP_des_cfb64(); | ||
| 132 | break; | ||
| 133 | case 3192: | ||
| 134 | cipher=EVP_des_ede3_cfb64(); | ||
| 135 | break; | ||
| 136 | case 4064: | ||
| 137 | cipher=EVP_des_ofb(); | ||
| 138 | break; | ||
| 139 | case 4192: | ||
| 140 | cipher=EVP_des_ede3_ofb(); | ||
| 141 | break; | ||
| 142 | case 5064: | ||
| 143 | cipher=EVP_des_cfb1(); | ||
| 144 | break; | ||
| 145 | case 5192: | ||
| 146 | cipher=EVP_des_ede3_cfb1(); | ||
| 147 | break; | ||
| 148 | case 6064: | ||
| 149 | cipher=EVP_des_cfb8(); | ||
| 150 | break; | ||
| 151 | case 6192: | ||
| 152 | cipher=EVP_des_ede3_cfb8(); | ||
| 153 | break; | ||
| 154 | default: | ||
| 155 | printf("Didn't handle mode %d\n",kt); | ||
| 156 | EXIT(1); | ||
| 157 | } | ||
| 158 | if(!EVP_CipherInit(ctx, cipher, aKey, iVec, dir)) | ||
| 159 | { | ||
| 160 | ERR_print_errors_fp(stderr); | ||
| 161 | EXIT(1); | ||
| 162 | } | ||
| 163 | EVP_Cipher(ctx, out, in, len); | ||
| 164 | } | ||
| 165 | return 1; | ||
| 166 | } | ||
| 167 | |||
| 168 | /*-----------------------------------------------*/ | ||
| 169 | |||
| 170 | int hex2bin(char *in, int len, unsigned char *out) | ||
| 171 | { | ||
| 172 | int n1, n2; | ||
| 173 | unsigned char ch; | ||
| 174 | |||
| 175 | for (n1 = 0, n2 = 0; n1 < len; ) | ||
| 176 | { /* first byte */ | ||
| 177 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 178 | ch = in[n1++] - '0'; | ||
| 179 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 180 | ch = in[n1++] - 'A' + 10; | ||
| 181 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 182 | ch = in[n1++] - 'a' + 10; | ||
| 183 | else | ||
| 184 | return -1; | ||
| 185 | if(len == 1) | ||
| 186 | { | ||
| 187 | out[n2++]=ch; | ||
| 188 | break; | ||
| 189 | } | ||
| 190 | out[n2] = ch << 4; | ||
| 191 | /* second byte */ | ||
| 192 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 193 | ch = in[n1++] - '0'; | ||
| 194 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 195 | ch = in[n1++] - 'A' + 10; | ||
| 196 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 197 | ch = in[n1++] - 'a' + 10; | ||
| 198 | else | ||
| 199 | return -1; | ||
| 200 | out[n2++] |= ch; | ||
| 201 | } | ||
| 202 | return n2; | ||
| 203 | } | ||
| 204 | |||
| 205 | /*-----------------------------------------------*/ | ||
| 206 | |||
| 207 | int bin2hex(unsigned char *in, int len, char *out) | ||
| 208 | { | ||
| 209 | int n1, n2; | ||
| 210 | unsigned char ch; | ||
| 211 | |||
| 212 | for (n1 = 0, n2 = 0; n1 < len; ++n1) | ||
| 213 | { | ||
| 214 | /* first nibble */ | ||
| 215 | ch = in[n1] >> 4; | ||
| 216 | if (ch <= 0x09) | ||
| 217 | out[n2++] = ch + '0'; | ||
| 218 | else | ||
| 219 | out[n2++] = ch - 10 + 'a'; | ||
| 220 | /* second nibble */ | ||
| 221 | ch = in[n1] & 0x0f; | ||
| 222 | if (ch <= 0x09) | ||
| 223 | out[n2++] = ch + '0'; | ||
| 224 | else | ||
| 225 | out[n2++] = ch - 10 + 'a'; | ||
| 226 | } | ||
| 227 | return n2; | ||
| 228 | } | ||
| 229 | |||
| 230 | /* NB: this return the number of _bits_ read */ | ||
| 231 | int bint2bin(const char *in, int len, unsigned char *out) | ||
| 232 | { | ||
| 233 | int n; | ||
| 234 | |||
| 235 | memset(out,0,len); | ||
| 236 | for(n=0 ; n < len ; ++n) | ||
| 237 | if(in[n] == '1') | ||
| 238 | out[n/8]|=(0x80 >> (n%8)); | ||
| 239 | return len; | ||
| 240 | } | ||
| 241 | |||
| 242 | int bin2bint(const unsigned char *in,int len,char *out) | ||
| 243 | { | ||
| 244 | int n; | ||
| 245 | |||
| 246 | for(n=0 ; n < len ; ++n) | ||
| 247 | out[n]=(in[n/8]&(0x80 >> (n%8))) ? '1' : '0'; | ||
| 248 | return n; | ||
| 249 | } | ||
| 250 | |||
| 251 | /*-----------------------------------------------*/ | ||
| 252 | |||
| 253 | void PrintValue(char *tag, unsigned char *val, int len) | ||
| 254 | { | ||
| 255 | #if VERBOSE | ||
| 256 | char obuf[2048]; | ||
| 257 | int olen; | ||
| 258 | olen = bin2hex(val, len, obuf); | ||
| 259 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 260 | #endif | ||
| 261 | } | ||
| 262 | |||
| 263 | void DebugValue(char *tag, unsigned char *val, int len) | ||
| 264 | { | ||
| 265 | char obuf[2048]; | ||
| 266 | int olen; | ||
| 267 | olen = bin2hex(val, len, obuf); | ||
| 268 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 269 | } | ||
| 270 | |||
| 271 | void OutputValue(char *tag, unsigned char *val, int len, FILE *rfp,int bitmode) | ||
| 272 | { | ||
| 273 | char obuf[2048]; | ||
| 274 | int olen; | ||
| 275 | |||
| 276 | if(bitmode) | ||
| 277 | olen=bin2bint(val,len,obuf); | ||
| 278 | else | ||
| 279 | olen=bin2hex(val,len,obuf); | ||
| 280 | |||
| 281 | fprintf(rfp, "%s = %.*s\n", tag, olen, obuf); | ||
| 282 | #if VERBOSE | ||
| 283 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 284 | #endif | ||
| 285 | } | ||
| 286 | |||
| 287 | void shiftin(unsigned char *dst,unsigned char *src,int nbits) | ||
| 288 | { | ||
| 289 | int n; | ||
| 290 | |||
| 291 | /* move the bytes... */ | ||
| 292 | memmove(dst,dst+nbits/8,3*8-nbits/8); | ||
| 293 | /* append new data */ | ||
| 294 | memcpy(dst+3*8-nbits/8,src,(nbits+7)/8); | ||
| 295 | /* left shift the bits */ | ||
| 296 | if(nbits%8) | ||
| 297 | for(n=0 ; n < 3*8 ; ++n) | ||
| 298 | dst[n]=(dst[n] << (nbits%8))|(dst[n+1] >> (8-nbits%8)); | ||
| 299 | } | ||
| 300 | |||
| 301 | /*-----------------------------------------------*/ | ||
| 302 | char *t_tag[2] = {"PLAINTEXT", "CIPHERTEXT"}; | ||
| 303 | char *t_mode[6] = {"CBC","ECB","OFB","CFB1","CFB8","CFB64"}; | ||
| 304 | enum Mode {CBC, ECB, OFB, CFB1, CFB8, CFB64}; | ||
| 305 | int Sizes[6]={64,64,64,1,8,64}; | ||
| 306 | |||
| 307 | void do_mct(char *amode, | ||
| 308 | int akeysz, int numkeys, unsigned char *akey,unsigned char *ivec, | ||
| 309 | int dir, unsigned char *text, int len, | ||
| 310 | FILE *rfp) | ||
| 311 | { | ||
| 312 | int i,imode; | ||
| 313 | unsigned char nk[4*8]; /* longest key+8 */ | ||
| 314 | unsigned char text0[8]; | ||
| 315 | |||
| 316 | for (imode=0 ; imode < 6 ; ++imode) | ||
| 317 | if(!strcmp(amode,t_mode[imode])) | ||
| 318 | break; | ||
| 319 | if (imode == 6) | ||
| 320 | { | ||
| 321 | printf("Unrecognized mode: %s\n", amode); | ||
| 322 | EXIT(1); | ||
| 323 | } | ||
| 324 | |||
| 325 | for(i=0 ; i < 400 ; ++i) | ||
| 326 | { | ||
| 327 | int j; | ||
| 328 | int n; | ||
| 329 | EVP_CIPHER_CTX ctx; | ||
| 330 | int kp=akeysz/64; | ||
| 331 | unsigned char old_iv[8]; | ||
| 332 | |||
| 333 | fprintf(rfp,"\nCOUNT = %d\n",i); | ||
| 334 | if(kp == 1) | ||
| 335 | OutputValue("KEY",akey,8,rfp,0); | ||
| 336 | else | ||
| 337 | for(n=0 ; n < kp ; ++n) | ||
| 338 | { | ||
| 339 | fprintf(rfp,"KEY%d",n+1); | ||
| 340 | OutputValue("",akey+n*8,8,rfp,0); | ||
| 341 | } | ||
| 342 | |||
| 343 | if(imode != ECB) | ||
| 344 | OutputValue("IV",ivec,8,rfp,0); | ||
| 345 | OutputValue(t_tag[dir^1],text,len,rfp,imode == CFB1); | ||
| 346 | |||
| 347 | /* compensate for endianness */ | ||
| 348 | if(imode == CFB1) | ||
| 349 | text[0]<<=7; | ||
| 350 | |||
| 351 | memcpy(text0,text,8); | ||
| 352 | |||
| 353 | for(j=0 ; j < 10000 ; ++j) | ||
| 354 | { | ||
| 355 | unsigned char old_text[8]; | ||
| 356 | |||
| 357 | memcpy(old_text,text,8); | ||
| 358 | if(j == 0) | ||
| 359 | { | ||
| 360 | memcpy(old_iv,ivec,8); | ||
| 361 | DESTest(&ctx,amode,akeysz,akey,ivec,dir,text,text,len); | ||
| 362 | } | ||
| 363 | else | ||
| 364 | { | ||
| 365 | memcpy(old_iv,ctx.iv,8); | ||
| 366 | EVP_Cipher(&ctx,text,text,len); | ||
| 367 | } | ||
| 368 | if(j == 9999) | ||
| 369 | { | ||
| 370 | OutputValue(t_tag[dir],text,len,rfp,imode == CFB1); | ||
| 371 | /* memcpy(ivec,text,8); */ | ||
| 372 | } | ||
| 373 | /* DebugValue("iv",ctx.iv,8); */ | ||
| 374 | /* accumulate material for the next key */ | ||
| 375 | shiftin(nk,text,Sizes[imode]); | ||
| 376 | /* DebugValue("nk",nk,24);*/ | ||
| 377 | if((dir && (imode == CFB1 || imode == CFB8 || imode == CFB64 | ||
| 378 | || imode == CBC)) || imode == OFB) | ||
| 379 | memcpy(text,old_iv,8); | ||
| 380 | |||
| 381 | if(!dir && (imode == CFB1 || imode == CFB8 || imode == CFB64)) | ||
| 382 | { | ||
| 383 | /* the test specifies using the output of the raw DES operation | ||
| 384 | which we don't have, so reconstruct it... */ | ||
| 385 | for(n=0 ; n < 8 ; ++n) | ||
| 386 | text[n]^=old_text[n]; | ||
| 387 | } | ||
| 388 | } | ||
| 389 | for(n=0 ; n < 8 ; ++n) | ||
| 390 | akey[n]^=nk[16+n]; | ||
| 391 | for(n=0 ; n < 8 ; ++n) | ||
| 392 | akey[8+n]^=nk[8+n]; | ||
| 393 | for(n=0 ; n < 8 ; ++n) | ||
| 394 | akey[16+n]^=nk[n]; | ||
| 395 | if(numkeys < 3) | ||
| 396 | memcpy(&akey[2*8],akey,8); | ||
| 397 | if(numkeys < 2) | ||
| 398 | memcpy(&akey[8],akey,8); | ||
| 399 | DES_set_odd_parity((DES_cblock *)akey); | ||
| 400 | DES_set_odd_parity((DES_cblock *)(akey+8)); | ||
| 401 | DES_set_odd_parity((DES_cblock *)(akey+16)); | ||
| 402 | memcpy(ivec,ctx.iv,8); | ||
| 403 | |||
| 404 | /* pointless exercise - the final text doesn't depend on the | ||
| 405 | initial text in OFB mode, so who cares what it is? (Who | ||
| 406 | designed these tests?) */ | ||
| 407 | if(imode == OFB) | ||
| 408 | for(n=0 ; n < 8 ; ++n) | ||
| 409 | text[n]=text0[n]^old_iv[n]; | ||
| 410 | } | ||
| 411 | } | ||
| 412 | |||
| 413 | int proc_file(char *rqfile) | ||
| 414 | { | ||
| 415 | char afn[256], rfn[256]; | ||
| 416 | FILE *afp = NULL, *rfp = NULL; | ||
| 417 | char ibuf[2048]; | ||
| 418 | int ilen, len, ret = 0; | ||
| 419 | char amode[8] = ""; | ||
| 420 | char atest[100] = ""; | ||
| 421 | int akeysz=0; | ||
| 422 | unsigned char iVec[20], aKey[40]; | ||
| 423 | int dir = -1, err = 0, step = 0; | ||
| 424 | unsigned char plaintext[2048]; | ||
| 425 | unsigned char ciphertext[2048]; | ||
| 426 | char *rp; | ||
| 427 | EVP_CIPHER_CTX ctx; | ||
| 428 | int numkeys=1; | ||
| 429 | |||
| 430 | if (!rqfile || !(*rqfile)) | ||
| 431 | { | ||
| 432 | printf("No req file\n"); | ||
| 433 | return -1; | ||
| 434 | } | ||
| 435 | strcpy(afn, rqfile); | ||
| 436 | |||
| 437 | if ((afp = fopen(afn, "r")) == NULL) | ||
| 438 | { | ||
| 439 | printf("Cannot open file: %s, %s\n", | ||
| 440 | afn, strerror(errno)); | ||
| 441 | return -1; | ||
| 442 | } | ||
| 443 | strcpy(rfn,afn); | ||
| 444 | rp=strstr(rfn,"req/"); | ||
| 445 | assert(rp); | ||
| 446 | memcpy(rp,"rsp",3); | ||
| 447 | rp = strstr(rfn, ".req"); | ||
| 448 | memcpy(rp, ".rsp", 4); | ||
| 449 | if ((rfp = fopen(rfn, "w")) == NULL) | ||
| 450 | { | ||
| 451 | printf("Cannot open file: %s, %s\n", | ||
| 452 | rfn, strerror(errno)); | ||
| 453 | fclose(afp); | ||
| 454 | afp = NULL; | ||
| 455 | return -1; | ||
| 456 | } | ||
| 457 | while (!err && (fgets(ibuf, sizeof(ibuf), afp)) != NULL) | ||
| 458 | { | ||
| 459 | ilen = strlen(ibuf); | ||
| 460 | /* printf("step=%d ibuf=%s",step,ibuf);*/ | ||
| 461 | if(step == 3 && !strcmp(amode,"ECB")) | ||
| 462 | { | ||
| 463 | memset(iVec, 0, sizeof(iVec)); | ||
| 464 | step = (dir)? 4: 5; /* no ivec for ECB */ | ||
| 465 | } | ||
| 466 | switch (step) | ||
| 467 | { | ||
| 468 | case 0: /* read preamble */ | ||
| 469 | if (ibuf[0] == '\n') | ||
| 470 | { /* end of preamble */ | ||
| 471 | if (*amode == '\0') | ||
| 472 | { | ||
| 473 | printf("Missing Mode\n"); | ||
| 474 | err = 1; | ||
| 475 | } | ||
| 476 | else | ||
| 477 | { | ||
| 478 | fputs(ibuf, rfp); | ||
| 479 | ++ step; | ||
| 480 | } | ||
| 481 | } | ||
| 482 | else if (ibuf[0] != '#') | ||
| 483 | { | ||
| 484 | printf("Invalid preamble item: %s\n", ibuf); | ||
| 485 | err = 1; | ||
| 486 | } | ||
| 487 | else | ||
| 488 | { /* process preamble */ | ||
| 489 | char *xp, *pp = ibuf+2; | ||
| 490 | int n; | ||
| 491 | if(*amode) | ||
| 492 | { /* insert current time & date */ | ||
| 493 | time_t rtim = time(0); | ||
| 494 | fprintf(rfp, "# %s", ctime(&rtim)); | ||
| 495 | } | ||
| 496 | else | ||
| 497 | { | ||
| 498 | fputs(ibuf, rfp); | ||
| 499 | if(!strncmp(pp,"INVERSE ",8) || !strncmp(pp,"DES ",4) | ||
| 500 | || !strncmp(pp,"TDES ",5) | ||
| 501 | || !strncmp(pp,"PERMUTATION ",12) | ||
| 502 | || !strncmp(pp,"SUBSTITUTION ",13) | ||
| 503 | || !strncmp(pp,"VARIABLE ",9)) | ||
| 504 | { | ||
| 505 | /* get test type */ | ||
| 506 | if(!strncmp(pp,"DES ",4)) | ||
| 507 | pp+=4; | ||
| 508 | else if(!strncmp(pp,"TDES ",5)) | ||
| 509 | pp+=5; | ||
| 510 | xp = strchr(pp, ' '); | ||
| 511 | n = xp-pp; | ||
| 512 | strncpy(atest, pp, n); | ||
| 513 | atest[n] = '\0'; | ||
| 514 | /* get mode */ | ||
| 515 | xp = strrchr(pp, ' '); /* get mode" */ | ||
| 516 | n = strlen(xp+1)-1; | ||
| 517 | strncpy(amode, xp+1, n); | ||
| 518 | amode[n] = '\0'; | ||
| 519 | /* amode[3] = '\0'; */ | ||
| 520 | printf("Test=%s, Mode=%s\n",atest,amode); | ||
| 521 | } | ||
| 522 | } | ||
| 523 | } | ||
| 524 | break; | ||
| 525 | |||
| 526 | case 1: /* [ENCRYPT] | [DECRYPT] */ | ||
| 527 | if(ibuf[0] == '\n') | ||
| 528 | break; | ||
| 529 | if (ibuf[0] == '[') | ||
| 530 | { | ||
| 531 | fputs(ibuf, rfp); | ||
| 532 | ++step; | ||
| 533 | if (strncasecmp(ibuf, "[ENCRYPT]", 9) == 0) | ||
| 534 | dir = 1; | ||
| 535 | else if (strncasecmp(ibuf, "[DECRYPT]", 9) == 0) | ||
| 536 | dir = 0; | ||
| 537 | else | ||
| 538 | { | ||
| 539 | printf("Invalid keyword: %s\n", ibuf); | ||
| 540 | err = 1; | ||
| 541 | } | ||
| 542 | break; | ||
| 543 | } | ||
| 544 | else if (dir == -1) | ||
| 545 | { | ||
| 546 | err = 1; | ||
| 547 | printf("Missing ENCRYPT/DECRYPT keyword\n"); | ||
| 548 | break; | ||
| 549 | } | ||
| 550 | else | ||
| 551 | step = 2; | ||
| 552 | |||
| 553 | case 2: /* KEY = xxxx */ | ||
| 554 | if(*ibuf == '\n') | ||
| 555 | { | ||
| 556 | fputs(ibuf, rfp); | ||
| 557 | break; | ||
| 558 | } | ||
| 559 | if(!strncasecmp(ibuf,"COUNT = ",8)) | ||
| 560 | { | ||
| 561 | fputs(ibuf, rfp); | ||
| 562 | break; | ||
| 563 | } | ||
| 564 | if(!strncasecmp(ibuf,"COUNT=",6)) | ||
| 565 | { | ||
| 566 | fputs(ibuf, rfp); | ||
| 567 | break; | ||
| 568 | } | ||
| 569 | if(!strncasecmp(ibuf,"NumKeys = ",10)) | ||
| 570 | { | ||
| 571 | numkeys=atoi(ibuf+10); | ||
| 572 | break; | ||
| 573 | } | ||
| 574 | |||
| 575 | fputs(ibuf, rfp); | ||
| 576 | if(!strncasecmp(ibuf,"KEY = ",6)) | ||
| 577 | { | ||
| 578 | akeysz=64; | ||
| 579 | len = hex2bin((char*)ibuf+6, strlen(ibuf+6)-1, aKey); | ||
| 580 | if (len < 0) | ||
| 581 | { | ||
| 582 | printf("Invalid KEY\n"); | ||
| 583 | err=1; | ||
| 584 | break; | ||
| 585 | } | ||
| 586 | PrintValue("KEY", aKey, len); | ||
| 587 | ++step; | ||
| 588 | } | ||
| 589 | else if(!strncasecmp(ibuf,"KEYs = ",7)) | ||
| 590 | { | ||
| 591 | akeysz=64*3; | ||
| 592 | len=hex2bin(ibuf+7,strlen(ibuf+7)-1,aKey); | ||
| 593 | if(len != 8) | ||
| 594 | { | ||
| 595 | printf("Invalid KEY\n"); | ||
| 596 | err=1; | ||
| 597 | break; | ||
| 598 | } | ||
| 599 | memcpy(aKey+8,aKey,8); | ||
| 600 | memcpy(aKey+16,aKey,8); | ||
| 601 | ibuf[4]='\0'; | ||
| 602 | PrintValue("KEYs",aKey,len); | ||
| 603 | ++step; | ||
| 604 | } | ||
| 605 | else if(!strncasecmp(ibuf,"KEY",3)) | ||
| 606 | { | ||
| 607 | int n=ibuf[3]-'1'; | ||
| 608 | |||
| 609 | akeysz=64*3; | ||
| 610 | len=hex2bin(ibuf+7,strlen(ibuf+7)-1,aKey+n*8); | ||
| 611 | if(len != 8) | ||
| 612 | { | ||
| 613 | printf("Invalid KEY\n"); | ||
| 614 | err=1; | ||
| 615 | break; | ||
| 616 | } | ||
| 617 | ibuf[4]='\0'; | ||
| 618 | PrintValue(ibuf,aKey,len); | ||
| 619 | if(n == 2) | ||
| 620 | ++step; | ||
| 621 | } | ||
| 622 | else | ||
| 623 | { | ||
| 624 | printf("Missing KEY\n"); | ||
| 625 | err = 1; | ||
| 626 | } | ||
| 627 | break; | ||
| 628 | |||
| 629 | case 3: /* IV = xxxx */ | ||
| 630 | fputs(ibuf, rfp); | ||
| 631 | if (strncasecmp(ibuf, "IV = ", 5) != 0) | ||
| 632 | { | ||
| 633 | printf("Missing IV\n"); | ||
| 634 | err = 1; | ||
| 635 | } | ||
| 636 | else | ||
| 637 | { | ||
| 638 | len = hex2bin((char*)ibuf+5, strlen(ibuf+5)-1, iVec); | ||
| 639 | if (len < 0) | ||
| 640 | { | ||
| 641 | printf("Invalid IV\n"); | ||
| 642 | err =1; | ||
| 643 | break; | ||
| 644 | } | ||
| 645 | PrintValue("IV", iVec, len); | ||
| 646 | step = (dir)? 4: 5; | ||
| 647 | } | ||
| 648 | break; | ||
| 649 | |||
| 650 | case 4: /* PLAINTEXT = xxxx */ | ||
| 651 | fputs(ibuf, rfp); | ||
| 652 | if (strncasecmp(ibuf, "PLAINTEXT = ", 12) != 0) | ||
| 653 | { | ||
| 654 | printf("Missing PLAINTEXT\n"); | ||
| 655 | err = 1; | ||
| 656 | } | ||
| 657 | else | ||
| 658 | { | ||
| 659 | int nn = strlen(ibuf+12); | ||
| 660 | if(!strcmp(amode,"CFB1")) | ||
| 661 | len=bint2bin(ibuf+12,nn-1,plaintext); | ||
| 662 | else | ||
| 663 | len=hex2bin(ibuf+12, nn-1,plaintext); | ||
| 664 | if (len < 0) | ||
| 665 | { | ||
| 666 | printf("Invalid PLAINTEXT: %s", ibuf+12); | ||
| 667 | err =1; | ||
| 668 | break; | ||
| 669 | } | ||
| 670 | if (len >= sizeof(plaintext)) | ||
| 671 | { | ||
| 672 | printf("Buffer overflow\n"); | ||
| 673 | } | ||
| 674 | PrintValue("PLAINTEXT", (unsigned char*)plaintext, len); | ||
| 675 | if (strcmp(atest, "Monte") == 0) /* Monte Carlo Test */ | ||
| 676 | { | ||
| 677 | do_mct(amode,akeysz,numkeys,aKey,iVec,dir,plaintext,len,rfp); | ||
| 678 | } | ||
| 679 | else | ||
| 680 | { | ||
| 681 | assert(dir == 1); | ||
| 682 | ret = DESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 683 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 684 | ciphertext, plaintext, len); | ||
| 685 | OutputValue("CIPHERTEXT",ciphertext,len,rfp, | ||
| 686 | !strcmp(amode,"CFB1")); | ||
| 687 | } | ||
| 688 | step = 6; | ||
| 689 | } | ||
| 690 | break; | ||
| 691 | |||
| 692 | case 5: /* CIPHERTEXT = xxxx */ | ||
| 693 | fputs(ibuf, rfp); | ||
| 694 | if (strncasecmp(ibuf, "CIPHERTEXT = ", 13) != 0) | ||
| 695 | { | ||
| 696 | printf("Missing KEY\n"); | ||
| 697 | err = 1; | ||
| 698 | } | ||
| 699 | else | ||
| 700 | { | ||
| 701 | if(!strcmp(amode,"CFB1")) | ||
| 702 | len=bint2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 703 | else | ||
| 704 | len = hex2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 705 | if (len < 0) | ||
| 706 | { | ||
| 707 | printf("Invalid CIPHERTEXT\n"); | ||
| 708 | err =1; | ||
| 709 | break; | ||
| 710 | } | ||
| 711 | |||
| 712 | PrintValue("CIPHERTEXT", ciphertext, len); | ||
| 713 | if (strcmp(atest, "Monte") == 0) /* Monte Carlo Test */ | ||
| 714 | { | ||
| 715 | do_mct(amode, akeysz, numkeys, aKey, iVec, | ||
| 716 | dir, ciphertext, len, rfp); | ||
| 717 | } | ||
| 718 | else | ||
| 719 | { | ||
| 720 | assert(dir == 0); | ||
| 721 | ret = DESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 722 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 723 | plaintext, ciphertext, len); | ||
| 724 | OutputValue("PLAINTEXT",(unsigned char *)plaintext,len,rfp, | ||
| 725 | !strcmp(amode,"CFB1")); | ||
| 726 | } | ||
| 727 | step = 6; | ||
| 728 | } | ||
| 729 | break; | ||
| 730 | |||
| 731 | case 6: | ||
| 732 | if (ibuf[0] != '\n') | ||
| 733 | { | ||
| 734 | err = 1; | ||
| 735 | printf("Missing terminator\n"); | ||
| 736 | } | ||
| 737 | else if (strcmp(atest, "MCT") != 0) | ||
| 738 | { /* MCT already added terminating nl */ | ||
| 739 | fputs(ibuf, rfp); | ||
| 740 | } | ||
| 741 | step = 1; | ||
| 742 | break; | ||
| 743 | } | ||
| 744 | } | ||
| 745 | if (rfp) | ||
| 746 | fclose(rfp); | ||
| 747 | if (afp) | ||
| 748 | fclose(afp); | ||
| 749 | return err; | ||
| 750 | } | ||
| 751 | |||
| 752 | /*-------------------------------------------------- | ||
| 753 | Processes either a single file or | ||
| 754 | a set of files whose names are passed in a file. | ||
| 755 | A single file is specified as: | ||
| 756 | aes_test -f xxx.req | ||
| 757 | A set of files is specified as: | ||
| 758 | aes_test -d xxxxx.xxx | ||
| 759 | The default is: -d req.txt | ||
| 760 | --------------------------------------------------*/ | ||
| 761 | int main(int argc, char **argv) | ||
| 762 | { | ||
| 763 | char *rqlist = "req.txt"; | ||
| 764 | FILE *fp = NULL; | ||
| 765 | char fn[250] = "", rfn[256] = ""; | ||
| 766 | int f_opt = 0, d_opt = 1; | ||
| 767 | |||
| 768 | #ifdef OPENSSL_FIPS | ||
| 769 | if(!FIPS_mode_set(1)) | ||
| 770 | { | ||
| 771 | ERR_load_crypto_strings(); | ||
| 772 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 773 | EXIT(1); | ||
| 774 | } | ||
| 775 | #endif | ||
| 776 | ERR_load_crypto_strings(); | ||
| 777 | if (argc > 1) | ||
| 778 | { | ||
| 779 | if (strcasecmp(argv[1], "-d") == 0) | ||
| 780 | { | ||
| 781 | d_opt = 1; | ||
| 782 | } | ||
| 783 | else if (strcasecmp(argv[1], "-f") == 0) | ||
| 784 | { | ||
| 785 | f_opt = 1; | ||
| 786 | d_opt = 0; | ||
| 787 | } | ||
| 788 | else | ||
| 789 | { | ||
| 790 | printf("Invalid parameter: %s\n", argv[1]); | ||
| 791 | return 0; | ||
| 792 | } | ||
| 793 | if (argc < 3) | ||
| 794 | { | ||
| 795 | printf("Missing parameter\n"); | ||
| 796 | return 0; | ||
| 797 | } | ||
| 798 | if (d_opt) | ||
| 799 | rqlist = argv[2]; | ||
| 800 | else | ||
| 801 | strcpy(fn, argv[2]); | ||
| 802 | } | ||
| 803 | if (d_opt) | ||
| 804 | { /* list of files (directory) */ | ||
| 805 | if (!(fp = fopen(rqlist, "r"))) | ||
| 806 | { | ||
| 807 | printf("Cannot open req list file\n"); | ||
| 808 | return -1; | ||
| 809 | } | ||
| 810 | while (fgets(fn, sizeof(fn), fp)) | ||
| 811 | { | ||
| 812 | strtok(fn, "\r\n"); | ||
| 813 | strcpy(rfn, fn); | ||
| 814 | printf("Processing: %s\n", rfn); | ||
| 815 | if (proc_file(rfn)) | ||
| 816 | { | ||
| 817 | printf(">>> Processing failed for: %s <<<\n", rfn); | ||
| 818 | EXIT(1); | ||
| 819 | } | ||
| 820 | } | ||
| 821 | fclose(fp); | ||
| 822 | } | ||
| 823 | else /* single file */ | ||
| 824 | { | ||
| 825 | printf("Processing: %s\n", fn); | ||
| 826 | if (proc_file(fn)) | ||
| 827 | { | ||
| 828 | printf(">>> Processing failed for: %s <<<\n", fn); | ||
| 829 | } | ||
| 830 | } | ||
| 831 | EXIT(0); | ||
| 832 | return 0; | ||
| 833 | } | ||
diff --git a/src/lib/libssl/src/fips-1.0/des/fips_set_key.c b/src/lib/libssl/src/fips-1.0/des/fips_set_key.c deleted file mode 100644 index a508ee5acb..0000000000 --- a/src/lib/libssl/src/fips-1.0/des/fips_set_key.c +++ /dev/null | |||
| @@ -1,417 +0,0 @@ | |||
| 1 | /* crypto/des/set_key.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | /* set_key.c v 1.4 eay 24/9/91 | ||
| 60 | * 1.4 Speed up by 400% :-) | ||
| 61 | * 1.3 added register declarations. | ||
| 62 | * 1.2 unrolled make_key_sched a bit more | ||
| 63 | * 1.1 added norm_expand_bits | ||
| 64 | * 1.0 First working version | ||
| 65 | */ | ||
| 66 | #include "fips_des_locl.h" | ||
| 67 | #include <openssl/fips.h> | ||
| 68 | |||
| 69 | #ifdef OPENSSL_FIPS | ||
| 70 | |||
| 71 | OPENSSL_IMPLEMENT_GLOBAL(int,DES_check_key); /* defaults to false */ | ||
| 72 | |||
| 73 | static const unsigned char odd_parity[256]={ | ||
| 74 | 1, 1, 2, 2, 4, 4, 7, 7, 8, 8, 11, 11, 13, 13, 14, 14, | ||
| 75 | 16, 16, 19, 19, 21, 21, 22, 22, 25, 25, 26, 26, 28, 28, 31, 31, | ||
| 76 | 32, 32, 35, 35, 37, 37, 38, 38, 41, 41, 42, 42, 44, 44, 47, 47, | ||
| 77 | 49, 49, 50, 50, 52, 52, 55, 55, 56, 56, 59, 59, 61, 61, 62, 62, | ||
| 78 | 64, 64, 67, 67, 69, 69, 70, 70, 73, 73, 74, 74, 76, 76, 79, 79, | ||
| 79 | 81, 81, 82, 82, 84, 84, 87, 87, 88, 88, 91, 91, 93, 93, 94, 94, | ||
| 80 | 97, 97, 98, 98,100,100,103,103,104,104,107,107,109,109,110,110, | ||
| 81 | 112,112,115,115,117,117,118,118,121,121,122,122,124,124,127,127, | ||
| 82 | 128,128,131,131,133,133,134,134,137,137,138,138,140,140,143,143, | ||
| 83 | 145,145,146,146,148,148,151,151,152,152,155,155,157,157,158,158, | ||
| 84 | 161,161,162,162,164,164,167,167,168,168,171,171,173,173,174,174, | ||
| 85 | 176,176,179,179,181,181,182,182,185,185,186,186,188,188,191,191, | ||
| 86 | 193,193,194,194,196,196,199,199,200,200,203,203,205,205,206,206, | ||
| 87 | 208,208,211,211,213,213,214,214,217,217,218,218,220,220,223,223, | ||
| 88 | 224,224,227,227,229,229,230,230,233,233,234,234,236,236,239,239, | ||
| 89 | 241,241,242,242,244,244,247,247,248,248,251,251,253,253,254,254}; | ||
| 90 | |||
| 91 | void DES_set_odd_parity(DES_cblock *key) | ||
| 92 | { | ||
| 93 | int i; | ||
| 94 | |||
| 95 | for (i=0; i<DES_KEY_SZ; i++) | ||
| 96 | (*key)[i]=odd_parity[(*key)[i]]; | ||
| 97 | } | ||
| 98 | |||
| 99 | int DES_check_key_parity(const_DES_cblock *key) | ||
| 100 | { | ||
| 101 | int i; | ||
| 102 | |||
| 103 | for (i=0; i<DES_KEY_SZ; i++) | ||
| 104 | { | ||
| 105 | if ((*key)[i] != odd_parity[(*key)[i]]) | ||
| 106 | return(0); | ||
| 107 | } | ||
| 108 | return(1); | ||
| 109 | } | ||
| 110 | |||
| 111 | /* Weak and semi week keys as take from | ||
| 112 | * %A D.W. Davies | ||
| 113 | * %A W.L. Price | ||
| 114 | * %T Security for Computer Networks | ||
| 115 | * %I John Wiley & Sons | ||
| 116 | * %D 1984 | ||
| 117 | * Many thanks to smb@ulysses.att.com (Steven Bellovin) for the reference | ||
| 118 | * (and actual cblock values). | ||
| 119 | */ | ||
| 120 | #define NUM_WEAK_KEY 16 | ||
| 121 | static const DES_cblock weak_keys[NUM_WEAK_KEY]={ | ||
| 122 | /* weak keys */ | ||
| 123 | {0x01,0x01,0x01,0x01,0x01,0x01,0x01,0x01}, | ||
| 124 | {0xFE,0xFE,0xFE,0xFE,0xFE,0xFE,0xFE,0xFE}, | ||
| 125 | {0x1F,0x1F,0x1F,0x1F,0x0E,0x0E,0x0E,0x0E}, | ||
| 126 | {0xE0,0xE0,0xE0,0xE0,0xF1,0xF1,0xF1,0xF1}, | ||
| 127 | /* semi-weak keys */ | ||
| 128 | {0x01,0xFE,0x01,0xFE,0x01,0xFE,0x01,0xFE}, | ||
| 129 | {0xFE,0x01,0xFE,0x01,0xFE,0x01,0xFE,0x01}, | ||
| 130 | {0x1F,0xE0,0x1F,0xE0,0x0E,0xF1,0x0E,0xF1}, | ||
| 131 | {0xE0,0x1F,0xE0,0x1F,0xF1,0x0E,0xF1,0x0E}, | ||
| 132 | {0x01,0xE0,0x01,0xE0,0x01,0xF1,0x01,0xF1}, | ||
| 133 | {0xE0,0x01,0xE0,0x01,0xF1,0x01,0xF1,0x01}, | ||
| 134 | {0x1F,0xFE,0x1F,0xFE,0x0E,0xFE,0x0E,0xFE}, | ||
| 135 | {0xFE,0x1F,0xFE,0x1F,0xFE,0x0E,0xFE,0x0E}, | ||
| 136 | {0x01,0x1F,0x01,0x1F,0x01,0x0E,0x01,0x0E}, | ||
| 137 | {0x1F,0x01,0x1F,0x01,0x0E,0x01,0x0E,0x01}, | ||
| 138 | {0xE0,0xFE,0xE0,0xFE,0xF1,0xFE,0xF1,0xFE}, | ||
| 139 | {0xFE,0xE0,0xFE,0xE0,0xFE,0xF1,0xFE,0xF1}}; | ||
| 140 | |||
| 141 | int DES_is_weak_key(const_DES_cblock *key) | ||
| 142 | { | ||
| 143 | int i; | ||
| 144 | |||
| 145 | for (i=0; i<NUM_WEAK_KEY; i++) | ||
| 146 | /* Added == 0 to comparison, I obviously don't run | ||
| 147 | * this section very often :-(, thanks to | ||
| 148 | * engineering@MorningStar.Com for the fix | ||
| 149 | * eay 93/06/29 | ||
| 150 | * Another problem, I was comparing only the first 4 | ||
| 151 | * bytes, 97/03/18 */ | ||
| 152 | if (memcmp(weak_keys[i],key,sizeof(DES_cblock)) == 0) return(1); | ||
| 153 | return(0); | ||
| 154 | } | ||
| 155 | |||
| 156 | /* NOW DEFINED IN des_local.h | ||
| 157 | * See ecb_encrypt.c for a pseudo description of these macros. | ||
| 158 | * #define PERM_OP(a,b,t,n,m) ((t)=((((a)>>(n))^(b))&(m)),\ | ||
| 159 | * (b)^=(t),\ | ||
| 160 | * (a)=((a)^((t)<<(n)))) | ||
| 161 | */ | ||
| 162 | |||
| 163 | #define HPERM_OP(a,t,n,m) ((t)=((((a)<<(16-(n)))^(a))&(m)),\ | ||
| 164 | (a)=(a)^(t)^(t>>(16-(n)))) | ||
| 165 | |||
| 166 | static const DES_LONG des_skb[8][64]={ | ||
| 167 | { | ||
| 168 | /* for C bits (numbered as per FIPS 46) 1 2 3 4 5 6 */ | ||
| 169 | 0x00000000L,0x00000010L,0x20000000L,0x20000010L, | ||
| 170 | 0x00010000L,0x00010010L,0x20010000L,0x20010010L, | ||
| 171 | 0x00000800L,0x00000810L,0x20000800L,0x20000810L, | ||
| 172 | 0x00010800L,0x00010810L,0x20010800L,0x20010810L, | ||
| 173 | 0x00000020L,0x00000030L,0x20000020L,0x20000030L, | ||
| 174 | 0x00010020L,0x00010030L,0x20010020L,0x20010030L, | ||
| 175 | 0x00000820L,0x00000830L,0x20000820L,0x20000830L, | ||
| 176 | 0x00010820L,0x00010830L,0x20010820L,0x20010830L, | ||
| 177 | 0x00080000L,0x00080010L,0x20080000L,0x20080010L, | ||
| 178 | 0x00090000L,0x00090010L,0x20090000L,0x20090010L, | ||
| 179 | 0x00080800L,0x00080810L,0x20080800L,0x20080810L, | ||
| 180 | 0x00090800L,0x00090810L,0x20090800L,0x20090810L, | ||
| 181 | 0x00080020L,0x00080030L,0x20080020L,0x20080030L, | ||
| 182 | 0x00090020L,0x00090030L,0x20090020L,0x20090030L, | ||
| 183 | 0x00080820L,0x00080830L,0x20080820L,0x20080830L, | ||
| 184 | 0x00090820L,0x00090830L,0x20090820L,0x20090830L, | ||
| 185 | },{ | ||
| 186 | /* for C bits (numbered as per FIPS 46) 7 8 10 11 12 13 */ | ||
| 187 | 0x00000000L,0x02000000L,0x00002000L,0x02002000L, | ||
| 188 | 0x00200000L,0x02200000L,0x00202000L,0x02202000L, | ||
| 189 | 0x00000004L,0x02000004L,0x00002004L,0x02002004L, | ||
| 190 | 0x00200004L,0x02200004L,0x00202004L,0x02202004L, | ||
| 191 | 0x00000400L,0x02000400L,0x00002400L,0x02002400L, | ||
| 192 | 0x00200400L,0x02200400L,0x00202400L,0x02202400L, | ||
| 193 | 0x00000404L,0x02000404L,0x00002404L,0x02002404L, | ||
| 194 | 0x00200404L,0x02200404L,0x00202404L,0x02202404L, | ||
| 195 | 0x10000000L,0x12000000L,0x10002000L,0x12002000L, | ||
| 196 | 0x10200000L,0x12200000L,0x10202000L,0x12202000L, | ||
| 197 | 0x10000004L,0x12000004L,0x10002004L,0x12002004L, | ||
| 198 | 0x10200004L,0x12200004L,0x10202004L,0x12202004L, | ||
| 199 | 0x10000400L,0x12000400L,0x10002400L,0x12002400L, | ||
| 200 | 0x10200400L,0x12200400L,0x10202400L,0x12202400L, | ||
| 201 | 0x10000404L,0x12000404L,0x10002404L,0x12002404L, | ||
| 202 | 0x10200404L,0x12200404L,0x10202404L,0x12202404L, | ||
| 203 | },{ | ||
| 204 | /* for C bits (numbered as per FIPS 46) 14 15 16 17 19 20 */ | ||
| 205 | 0x00000000L,0x00000001L,0x00040000L,0x00040001L, | ||
| 206 | 0x01000000L,0x01000001L,0x01040000L,0x01040001L, | ||
| 207 | 0x00000002L,0x00000003L,0x00040002L,0x00040003L, | ||
| 208 | 0x01000002L,0x01000003L,0x01040002L,0x01040003L, | ||
| 209 | 0x00000200L,0x00000201L,0x00040200L,0x00040201L, | ||
| 210 | 0x01000200L,0x01000201L,0x01040200L,0x01040201L, | ||
| 211 | 0x00000202L,0x00000203L,0x00040202L,0x00040203L, | ||
| 212 | 0x01000202L,0x01000203L,0x01040202L,0x01040203L, | ||
| 213 | 0x08000000L,0x08000001L,0x08040000L,0x08040001L, | ||
| 214 | 0x09000000L,0x09000001L,0x09040000L,0x09040001L, | ||
| 215 | 0x08000002L,0x08000003L,0x08040002L,0x08040003L, | ||
| 216 | 0x09000002L,0x09000003L,0x09040002L,0x09040003L, | ||
| 217 | 0x08000200L,0x08000201L,0x08040200L,0x08040201L, | ||
| 218 | 0x09000200L,0x09000201L,0x09040200L,0x09040201L, | ||
| 219 | 0x08000202L,0x08000203L,0x08040202L,0x08040203L, | ||
| 220 | 0x09000202L,0x09000203L,0x09040202L,0x09040203L, | ||
| 221 | },{ | ||
| 222 | /* for C bits (numbered as per FIPS 46) 21 23 24 26 27 28 */ | ||
| 223 | 0x00000000L,0x00100000L,0x00000100L,0x00100100L, | ||
| 224 | 0x00000008L,0x00100008L,0x00000108L,0x00100108L, | ||
| 225 | 0x00001000L,0x00101000L,0x00001100L,0x00101100L, | ||
| 226 | 0x00001008L,0x00101008L,0x00001108L,0x00101108L, | ||
| 227 | 0x04000000L,0x04100000L,0x04000100L,0x04100100L, | ||
| 228 | 0x04000008L,0x04100008L,0x04000108L,0x04100108L, | ||
| 229 | 0x04001000L,0x04101000L,0x04001100L,0x04101100L, | ||
| 230 | 0x04001008L,0x04101008L,0x04001108L,0x04101108L, | ||
| 231 | 0x00020000L,0x00120000L,0x00020100L,0x00120100L, | ||
| 232 | 0x00020008L,0x00120008L,0x00020108L,0x00120108L, | ||
| 233 | 0x00021000L,0x00121000L,0x00021100L,0x00121100L, | ||
| 234 | 0x00021008L,0x00121008L,0x00021108L,0x00121108L, | ||
| 235 | 0x04020000L,0x04120000L,0x04020100L,0x04120100L, | ||
| 236 | 0x04020008L,0x04120008L,0x04020108L,0x04120108L, | ||
| 237 | 0x04021000L,0x04121000L,0x04021100L,0x04121100L, | ||
| 238 | 0x04021008L,0x04121008L,0x04021108L,0x04121108L, | ||
| 239 | },{ | ||
| 240 | /* for D bits (numbered as per FIPS 46) 1 2 3 4 5 6 */ | ||
| 241 | 0x00000000L,0x10000000L,0x00010000L,0x10010000L, | ||
| 242 | 0x00000004L,0x10000004L,0x00010004L,0x10010004L, | ||
| 243 | 0x20000000L,0x30000000L,0x20010000L,0x30010000L, | ||
| 244 | 0x20000004L,0x30000004L,0x20010004L,0x30010004L, | ||
| 245 | 0x00100000L,0x10100000L,0x00110000L,0x10110000L, | ||
| 246 | 0x00100004L,0x10100004L,0x00110004L,0x10110004L, | ||
| 247 | 0x20100000L,0x30100000L,0x20110000L,0x30110000L, | ||
| 248 | 0x20100004L,0x30100004L,0x20110004L,0x30110004L, | ||
| 249 | 0x00001000L,0x10001000L,0x00011000L,0x10011000L, | ||
| 250 | 0x00001004L,0x10001004L,0x00011004L,0x10011004L, | ||
| 251 | 0x20001000L,0x30001000L,0x20011000L,0x30011000L, | ||
| 252 | 0x20001004L,0x30001004L,0x20011004L,0x30011004L, | ||
| 253 | 0x00101000L,0x10101000L,0x00111000L,0x10111000L, | ||
| 254 | 0x00101004L,0x10101004L,0x00111004L,0x10111004L, | ||
| 255 | 0x20101000L,0x30101000L,0x20111000L,0x30111000L, | ||
| 256 | 0x20101004L,0x30101004L,0x20111004L,0x30111004L, | ||
| 257 | },{ | ||
| 258 | /* for D bits (numbered as per FIPS 46) 8 9 11 12 13 14 */ | ||
| 259 | 0x00000000L,0x08000000L,0x00000008L,0x08000008L, | ||
| 260 | 0x00000400L,0x08000400L,0x00000408L,0x08000408L, | ||
| 261 | 0x00020000L,0x08020000L,0x00020008L,0x08020008L, | ||
| 262 | 0x00020400L,0x08020400L,0x00020408L,0x08020408L, | ||
| 263 | 0x00000001L,0x08000001L,0x00000009L,0x08000009L, | ||
| 264 | 0x00000401L,0x08000401L,0x00000409L,0x08000409L, | ||
| 265 | 0x00020001L,0x08020001L,0x00020009L,0x08020009L, | ||
| 266 | 0x00020401L,0x08020401L,0x00020409L,0x08020409L, | ||
| 267 | 0x02000000L,0x0A000000L,0x02000008L,0x0A000008L, | ||
| 268 | 0x02000400L,0x0A000400L,0x02000408L,0x0A000408L, | ||
| 269 | 0x02020000L,0x0A020000L,0x02020008L,0x0A020008L, | ||
| 270 | 0x02020400L,0x0A020400L,0x02020408L,0x0A020408L, | ||
| 271 | 0x02000001L,0x0A000001L,0x02000009L,0x0A000009L, | ||
| 272 | 0x02000401L,0x0A000401L,0x02000409L,0x0A000409L, | ||
| 273 | 0x02020001L,0x0A020001L,0x02020009L,0x0A020009L, | ||
| 274 | 0x02020401L,0x0A020401L,0x02020409L,0x0A020409L, | ||
| 275 | },{ | ||
| 276 | /* for D bits (numbered as per FIPS 46) 16 17 18 19 20 21 */ | ||
| 277 | 0x00000000L,0x00000100L,0x00080000L,0x00080100L, | ||
| 278 | 0x01000000L,0x01000100L,0x01080000L,0x01080100L, | ||
| 279 | 0x00000010L,0x00000110L,0x00080010L,0x00080110L, | ||
| 280 | 0x01000010L,0x01000110L,0x01080010L,0x01080110L, | ||
| 281 | 0x00200000L,0x00200100L,0x00280000L,0x00280100L, | ||
| 282 | 0x01200000L,0x01200100L,0x01280000L,0x01280100L, | ||
| 283 | 0x00200010L,0x00200110L,0x00280010L,0x00280110L, | ||
| 284 | 0x01200010L,0x01200110L,0x01280010L,0x01280110L, | ||
| 285 | 0x00000200L,0x00000300L,0x00080200L,0x00080300L, | ||
| 286 | 0x01000200L,0x01000300L,0x01080200L,0x01080300L, | ||
| 287 | 0x00000210L,0x00000310L,0x00080210L,0x00080310L, | ||
| 288 | 0x01000210L,0x01000310L,0x01080210L,0x01080310L, | ||
| 289 | 0x00200200L,0x00200300L,0x00280200L,0x00280300L, | ||
| 290 | 0x01200200L,0x01200300L,0x01280200L,0x01280300L, | ||
| 291 | 0x00200210L,0x00200310L,0x00280210L,0x00280310L, | ||
| 292 | 0x01200210L,0x01200310L,0x01280210L,0x01280310L, | ||
| 293 | },{ | ||
| 294 | /* for D bits (numbered as per FIPS 46) 22 23 24 25 27 28 */ | ||
| 295 | 0x00000000L,0x04000000L,0x00040000L,0x04040000L, | ||
| 296 | 0x00000002L,0x04000002L,0x00040002L,0x04040002L, | ||
| 297 | 0x00002000L,0x04002000L,0x00042000L,0x04042000L, | ||
| 298 | 0x00002002L,0x04002002L,0x00042002L,0x04042002L, | ||
| 299 | 0x00000020L,0x04000020L,0x00040020L,0x04040020L, | ||
| 300 | 0x00000022L,0x04000022L,0x00040022L,0x04040022L, | ||
| 301 | 0x00002020L,0x04002020L,0x00042020L,0x04042020L, | ||
| 302 | 0x00002022L,0x04002022L,0x00042022L,0x04042022L, | ||
| 303 | 0x00000800L,0x04000800L,0x00040800L,0x04040800L, | ||
| 304 | 0x00000802L,0x04000802L,0x00040802L,0x04040802L, | ||
| 305 | 0x00002800L,0x04002800L,0x00042800L,0x04042800L, | ||
| 306 | 0x00002802L,0x04002802L,0x00042802L,0x04042802L, | ||
| 307 | 0x00000820L,0x04000820L,0x00040820L,0x04040820L, | ||
| 308 | 0x00000822L,0x04000822L,0x00040822L,0x04040822L, | ||
| 309 | 0x00002820L,0x04002820L,0x00042820L,0x04042820L, | ||
| 310 | 0x00002822L,0x04002822L,0x00042822L,0x04042822L, | ||
| 311 | }}; | ||
| 312 | |||
| 313 | int DES_set_key(const_DES_cblock *key, DES_key_schedule *schedule) | ||
| 314 | { | ||
| 315 | if (FIPS_selftest_failed()) | ||
| 316 | return -3; | ||
| 317 | if (DES_check_key) | ||
| 318 | { | ||
| 319 | return DES_set_key_checked(key, schedule); | ||
| 320 | } | ||
| 321 | else | ||
| 322 | { | ||
| 323 | DES_set_key_unchecked(key, schedule); | ||
| 324 | return 0; | ||
| 325 | } | ||
| 326 | } | ||
| 327 | |||
| 328 | /* return 0 if key parity is odd (correct), | ||
| 329 | * return -1 if key parity error, | ||
| 330 | * return -2 if illegal weak key. | ||
| 331 | */ | ||
| 332 | int DES_set_key_checked(const_DES_cblock *key, DES_key_schedule *schedule) | ||
| 333 | { | ||
| 334 | if (!DES_check_key_parity(key)) | ||
| 335 | return(-1); | ||
| 336 | if (DES_is_weak_key(key)) | ||
| 337 | return(-2); | ||
| 338 | if (FIPS_selftest_failed()) | ||
| 339 | return -3; | ||
| 340 | |||
| 341 | DES_set_key_unchecked(key, schedule); | ||
| 342 | return 0; | ||
| 343 | } | ||
| 344 | |||
| 345 | void DES_set_key_unchecked(const_DES_cblock *key, DES_key_schedule *schedule) | ||
| 346 | { | ||
| 347 | static const int shifts2[16]={0,0,1,1,1,1,1,1,0,1,1,1,1,1,1,0}; | ||
| 348 | register DES_LONG c,d,t,s,t2; | ||
| 349 | register const unsigned char *in; | ||
| 350 | register DES_LONG *k; | ||
| 351 | register int i; | ||
| 352 | |||
| 353 | #ifdef OPENBSD_DEV_CRYPTO | ||
| 354 | memcpy(schedule->key,key,sizeof schedule->key); | ||
| 355 | schedule->session=NULL; | ||
| 356 | #endif | ||
| 357 | k = &schedule->ks->deslong[0]; | ||
| 358 | in = &(*key)[0]; | ||
| 359 | |||
| 360 | c2l(in,c); | ||
| 361 | c2l(in,d); | ||
| 362 | |||
| 363 | /* do PC1 in 47 simple operations :-) | ||
| 364 | * Thanks to John Fletcher (john_fletcher@lccmail.ocf.llnl.gov) | ||
| 365 | * for the inspiration. :-) */ | ||
| 366 | PERM_OP (d,c,t,4,0x0f0f0f0fL); | ||
| 367 | HPERM_OP(c,t,-2,0xcccc0000L); | ||
| 368 | HPERM_OP(d,t,-2,0xcccc0000L); | ||
| 369 | PERM_OP (d,c,t,1,0x55555555L); | ||
| 370 | PERM_OP (c,d,t,8,0x00ff00ffL); | ||
| 371 | PERM_OP (d,c,t,1,0x55555555L); | ||
| 372 | d= (((d&0x000000ffL)<<16L)| (d&0x0000ff00L) | | ||
| 373 | ((d&0x00ff0000L)>>16L)|((c&0xf0000000L)>>4L)); | ||
| 374 | c&=0x0fffffffL; | ||
| 375 | |||
| 376 | for (i=0; i<ITERATIONS; i++) | ||
| 377 | { | ||
| 378 | if (shifts2[i]) | ||
| 379 | { c=((c>>2L)|(c<<26L)); d=((d>>2L)|(d<<26L)); } | ||
| 380 | else | ||
| 381 | { c=((c>>1L)|(c<<27L)); d=((d>>1L)|(d<<27L)); } | ||
| 382 | c&=0x0fffffffL; | ||
| 383 | d&=0x0fffffffL; | ||
| 384 | /* could be a few less shifts but I am to lazy at this | ||
| 385 | * point in time to investigate */ | ||
| 386 | s= des_skb[0][ (c )&0x3f ]| | ||
| 387 | des_skb[1][((c>> 6L)&0x03)|((c>> 7L)&0x3c)]| | ||
| 388 | des_skb[2][((c>>13L)&0x0f)|((c>>14L)&0x30)]| | ||
| 389 | des_skb[3][((c>>20L)&0x01)|((c>>21L)&0x06) | | ||
| 390 | ((c>>22L)&0x38)]; | ||
| 391 | t= des_skb[4][ (d )&0x3f ]| | ||
| 392 | des_skb[5][((d>> 7L)&0x03)|((d>> 8L)&0x3c)]| | ||
| 393 | des_skb[6][ (d>>15L)&0x3f ]| | ||
| 394 | des_skb[7][((d>>21L)&0x0f)|((d>>22L)&0x30)]; | ||
| 395 | |||
| 396 | /* table contained 0213 4657 */ | ||
| 397 | t2=((t<<16L)|(s&0x0000ffffL))&0xffffffffL; | ||
| 398 | *(k++)=ROTATE(t2,30)&0xffffffffL; | ||
| 399 | |||
| 400 | t2=((s>>16L)|(t&0xffff0000L)); | ||
| 401 | *(k++)=ROTATE(t2,26)&0xffffffffL; | ||
| 402 | } | ||
| 403 | } | ||
| 404 | |||
| 405 | int DES_key_sched(const_DES_cblock *key, DES_key_schedule *schedule) | ||
| 406 | { | ||
| 407 | return(DES_set_key(key,schedule)); | ||
| 408 | } | ||
| 409 | /* | ||
| 410 | #undef des_fixup_key_parity | ||
| 411 | void des_fixup_key_parity(des_cblock *key) | ||
| 412 | { | ||
| 413 | des_set_odd_parity(key); | ||
| 414 | } | ||
| 415 | */ | ||
| 416 | |||
| 417 | #endif /* def OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips-1.0/dh/Makefile b/src/lib/libssl/src/fips-1.0/dh/Makefile deleted file mode 100644 index 1166ca6e84..0000000000 --- a/src/lib/libssl/src/fips-1.0/dh/Makefile +++ /dev/null | |||
| @@ -1,104 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/dh/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= dh | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST= | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_dh_check.c fips_dh_gen.c fips_dh_key.c | ||
| 26 | LIBOBJ=fips_dh_check.o fips_dh_gen.o fips_dh_key.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | @echo $(LIBOBJ) > lib | ||
| 42 | |||
| 43 | files: | ||
| 44 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 45 | |||
| 46 | links: | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 50 | |||
| 51 | install: | ||
| 52 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 53 | do \ | ||
| 54 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 55 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 56 | done | ||
| 57 | |||
| 58 | tags: | ||
| 59 | ctags $(SRC) | ||
| 60 | |||
| 61 | tests: | ||
| 62 | |||
| 63 | lint: | ||
| 64 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 65 | |||
| 66 | depend: | ||
| 67 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 68 | |||
| 69 | dclean: | ||
| 70 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 71 | mv -f Makefile.new $(MAKEFILE) | ||
| 72 | |||
| 73 | clean: | ||
| 74 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 75 | |||
| 76 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 77 | |||
| 78 | fips_dh_check.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 79 | fips_dh_check.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 80 | fips_dh_check.o: ../../include/openssl/e_os2.h | ||
| 81 | fips_dh_check.o: ../../include/openssl/opensslconf.h | ||
| 82 | fips_dh_check.o: ../../include/openssl/opensslv.h | ||
| 83 | fips_dh_check.o: ../../include/openssl/ossl_typ.h | ||
| 84 | fips_dh_check.o: ../../include/openssl/safestack.h | ||
| 85 | fips_dh_check.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 86 | fips_dh_check.o: fips_dh_check.c | ||
| 87 | fips_dh_gen.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 88 | fips_dh_gen.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 89 | fips_dh_gen.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 90 | fips_dh_gen.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 91 | fips_dh_gen.o: ../../include/openssl/opensslconf.h | ||
| 92 | fips_dh_gen.o: ../../include/openssl/opensslv.h | ||
| 93 | fips_dh_gen.o: ../../include/openssl/ossl_typ.h | ||
| 94 | fips_dh_gen.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 95 | fips_dh_gen.o: ../../include/openssl/symhacks.h fips_dh_gen.c | ||
| 96 | fips_dh_key.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 97 | fips_dh_key.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 98 | fips_dh_key.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 99 | fips_dh_key.o: ../../include/openssl/lhash.h | ||
| 100 | fips_dh_key.o: ../../include/openssl/opensslconf.h | ||
| 101 | fips_dh_key.o: ../../include/openssl/opensslv.h | ||
| 102 | fips_dh_key.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 103 | fips_dh_key.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 104 | fips_dh_key.o: ../../include/openssl/symhacks.h fips_dh_key.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/dh/fips_dh_check.c b/src/lib/libssl/src/fips-1.0/dh/fips_dh_check.c deleted file mode 100644 index 874920b466..0000000000 --- a/src/lib/libssl/src/fips-1.0/dh/fips_dh_check.c +++ /dev/null | |||
| @@ -1,125 +0,0 @@ | |||
| 1 | /* crypto/dh/dh_check.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <openssl/bn.h> | ||
| 61 | #ifndef OPENSSL_NO_DH | ||
| 62 | #include <openssl/dh.h> | ||
| 63 | |||
| 64 | #ifdef OPENSSL_FIPS | ||
| 65 | |||
| 66 | /* Check that p is a safe prime and | ||
| 67 | * if g is 2, 3 or 5, check that is is a suitable generator | ||
| 68 | * where | ||
| 69 | * for 2, p mod 24 == 11 | ||
| 70 | * for 3, p mod 12 == 5 | ||
| 71 | * for 5, p mod 10 == 3 or 7 | ||
| 72 | * should hold. | ||
| 73 | */ | ||
| 74 | |||
| 75 | int DH_check(const DH *dh, int *ret) | ||
| 76 | { | ||
| 77 | int ok=0; | ||
| 78 | BN_CTX *ctx=NULL; | ||
| 79 | BN_ULONG l; | ||
| 80 | BIGNUM *q=NULL; | ||
| 81 | |||
| 82 | *ret=0; | ||
| 83 | ctx=BN_CTX_new(); | ||
| 84 | if (ctx == NULL) goto err; | ||
| 85 | q=BN_new(); | ||
| 86 | if (q == NULL) goto err; | ||
| 87 | |||
| 88 | if (BN_is_word(dh->g,DH_GENERATOR_2)) | ||
| 89 | { | ||
| 90 | l=BN_mod_word(dh->p,24); | ||
| 91 | if (l != 11) *ret|=DH_NOT_SUITABLE_GENERATOR; | ||
| 92 | } | ||
| 93 | #if 0 | ||
| 94 | else if (BN_is_word(dh->g,DH_GENERATOR_3)) | ||
| 95 | { | ||
| 96 | l=BN_mod_word(dh->p,12); | ||
| 97 | if (l != 5) *ret|=DH_NOT_SUITABLE_GENERATOR; | ||
| 98 | } | ||
| 99 | #endif | ||
| 100 | else if (BN_is_word(dh->g,DH_GENERATOR_5)) | ||
| 101 | { | ||
| 102 | l=BN_mod_word(dh->p,10); | ||
| 103 | if ((l != 3) && (l != 7)) | ||
| 104 | *ret|=DH_NOT_SUITABLE_GENERATOR; | ||
| 105 | } | ||
| 106 | else | ||
| 107 | *ret|=DH_UNABLE_TO_CHECK_GENERATOR; | ||
| 108 | |||
| 109 | if (!BN_is_prime(dh->p,BN_prime_checks,NULL,ctx,NULL)) | ||
| 110 | *ret|=DH_CHECK_P_NOT_PRIME; | ||
| 111 | else | ||
| 112 | { | ||
| 113 | if (!BN_rshift1(q,dh->p)) goto err; | ||
| 114 | if (!BN_is_prime(q,BN_prime_checks,NULL,ctx,NULL)) | ||
| 115 | *ret|=DH_CHECK_P_NOT_SAFE_PRIME; | ||
| 116 | } | ||
| 117 | ok=1; | ||
| 118 | err: | ||
| 119 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 120 | if (q != NULL) BN_free(q); | ||
| 121 | return(ok); | ||
| 122 | } | ||
| 123 | |||
| 124 | #endif | ||
| 125 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/dh/fips_dh_gen.c b/src/lib/libssl/src/fips-1.0/dh/fips_dh_gen.c deleted file mode 100644 index b569e3912d..0000000000 --- a/src/lib/libssl/src/fips-1.0/dh/fips_dh_gen.c +++ /dev/null | |||
| @@ -1,186 +0,0 @@ | |||
| 1 | /* crypto/dh/dh_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <openssl/err.h> | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | #ifndef OPENSSL_NO_DH | ||
| 64 | #include <openssl/dh.h> | ||
| 65 | #endif | ||
| 66 | #include <openssl/fips.h> | ||
| 67 | |||
| 68 | #ifndef OPENSSL_NO_DH | ||
| 69 | #ifdef OPENSSL_FIPS | ||
| 70 | |||
| 71 | /* We generate DH parameters as follows | ||
| 72 | * find a prime q which is prime_len/2 bits long. | ||
| 73 | * p=(2*q)+1 or (p-1)/2 = q | ||
| 74 | * For this case, g is a generator if | ||
| 75 | * g^((p-1)/q) mod p != 1 for values of q which are the factors of p-1. | ||
| 76 | * Since the factors of p-1 are q and 2, we just need to check | ||
| 77 | * g^2 mod p != 1 and g^q mod p != 1. | ||
| 78 | * | ||
| 79 | * Having said all that, | ||
| 80 | * there is another special case method for the generators 2, 3 and 5. | ||
| 81 | * for 2, p mod 24 == 11 | ||
| 82 | * for 3, p mod 12 == 5 <<<<< does not work for safe primes. | ||
| 83 | * for 5, p mod 10 == 3 or 7 | ||
| 84 | * | ||
| 85 | * Thanks to Phil Karn <karn@qualcomm.com> for the pointers about the | ||
| 86 | * special generators and for answering some of my questions. | ||
| 87 | * | ||
| 88 | * I've implemented the second simple method :-). | ||
| 89 | * Since DH should be using a safe prime (both p and q are prime), | ||
| 90 | * this generator function can take a very very long time to run. | ||
| 91 | */ | ||
| 92 | /* Actually there is no reason to insist that 'generator' be a generator. | ||
| 93 | * It's just as OK (and in some sense better) to use a generator of the | ||
| 94 | * order-q subgroup. | ||
| 95 | */ | ||
| 96 | |||
| 97 | DH *DH_generate_parameters(int prime_len, int generator, | ||
| 98 | void (*callback)(int,int,void *), void *cb_arg) | ||
| 99 | { | ||
| 100 | BIGNUM *p=NULL,*t1,*t2; | ||
| 101 | DH *ret=NULL; | ||
| 102 | int g,ok= -1; | ||
| 103 | BN_CTX *ctx=NULL; | ||
| 104 | |||
| 105 | if(FIPS_selftest_failed()) | ||
| 106 | { | ||
| 107 | FIPSerr(FIPS_F_DH_GENERATE_PARAMETERS,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 108 | return NULL; | ||
| 109 | } | ||
| 110 | |||
| 111 | ret=DH_new(); | ||
| 112 | if (ret == NULL) goto err; | ||
| 113 | ctx=BN_CTX_new(); | ||
| 114 | if (ctx == NULL) goto err; | ||
| 115 | BN_CTX_start(ctx); | ||
| 116 | t1 = BN_CTX_get(ctx); | ||
| 117 | t2 = BN_CTX_get(ctx); | ||
| 118 | if (t1 == NULL || t2 == NULL) goto err; | ||
| 119 | |||
| 120 | if (generator <= 1) | ||
| 121 | { | ||
| 122 | DHerr(DH_F_DH_GENERATE_PARAMETERS, DH_R_BAD_GENERATOR); | ||
| 123 | goto err; | ||
| 124 | } | ||
| 125 | if (generator == DH_GENERATOR_2) | ||
| 126 | { | ||
| 127 | if (!BN_set_word(t1,24)) goto err; | ||
| 128 | if (!BN_set_word(t2,11)) goto err; | ||
| 129 | g=2; | ||
| 130 | } | ||
| 131 | #if 0 /* does not work for safe primes */ | ||
| 132 | else if (generator == DH_GENERATOR_3) | ||
| 133 | { | ||
| 134 | if (!BN_set_word(t1,12)) goto err; | ||
| 135 | if (!BN_set_word(t2,5)) goto err; | ||
| 136 | g=3; | ||
| 137 | } | ||
| 138 | #endif | ||
| 139 | else if (generator == DH_GENERATOR_5) | ||
| 140 | { | ||
| 141 | if (!BN_set_word(t1,10)) goto err; | ||
| 142 | if (!BN_set_word(t2,3)) goto err; | ||
| 143 | /* BN_set_word(t3,7); just have to miss | ||
| 144 | * out on these ones :-( */ | ||
| 145 | g=5; | ||
| 146 | } | ||
| 147 | else | ||
| 148 | { | ||
| 149 | /* in the general case, don't worry if 'generator' is a | ||
| 150 | * generator or not: since we are using safe primes, | ||
| 151 | * it will generate either an order-q or an order-2q group, | ||
| 152 | * which both is OK */ | ||
| 153 | if (!BN_set_word(t1,2)) goto err; | ||
| 154 | if (!BN_set_word(t2,1)) goto err; | ||
| 155 | g=generator; | ||
| 156 | } | ||
| 157 | |||
| 158 | p=BN_generate_prime(NULL,prime_len,1,t1,t2,callback,cb_arg); | ||
| 159 | if (p == NULL) goto err; | ||
| 160 | if (callback != NULL) callback(3,0,cb_arg); | ||
| 161 | ret->p=p; | ||
| 162 | ret->g=BN_new(); | ||
| 163 | if (!BN_set_word(ret->g,g)) goto err; | ||
| 164 | ok=1; | ||
| 165 | err: | ||
| 166 | if (ok == -1) | ||
| 167 | { | ||
| 168 | DHerr(DH_F_DH_GENERATE_PARAMETERS,ERR_R_BN_LIB); | ||
| 169 | ok=0; | ||
| 170 | } | ||
| 171 | |||
| 172 | if (ctx != NULL) | ||
| 173 | { | ||
| 174 | BN_CTX_end(ctx); | ||
| 175 | BN_CTX_free(ctx); | ||
| 176 | } | ||
| 177 | if (!ok && (ret != NULL)) | ||
| 178 | { | ||
| 179 | DH_free(ret); | ||
| 180 | ret=NULL; | ||
| 181 | } | ||
| 182 | return(ret); | ||
| 183 | } | ||
| 184 | |||
| 185 | #endif | ||
| 186 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/dh/fips_dh_key.c b/src/lib/libssl/src/fips-1.0/dh/fips_dh_key.c deleted file mode 100644 index 79c10404d5..0000000000 --- a/src/lib/libssl/src/fips-1.0/dh/fips_dh_key.c +++ /dev/null | |||
| @@ -1,256 +0,0 @@ | |||
| 1 | /* crypto/dh/dh_key.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <openssl/err.h> | ||
| 61 | #include <openssl/bn.h> | ||
| 62 | #ifndef OPENSSL_NO_RAND | ||
| 63 | #include <openssl/rand.h> | ||
| 64 | #endif | ||
| 65 | #ifndef OPENSSL_NO_DH | ||
| 66 | #include <openssl/dh.h> | ||
| 67 | |||
| 68 | #ifdef OPENSSL_FIPS | ||
| 69 | |||
| 70 | static int generate_key(DH *dh); | ||
| 71 | static int compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh); | ||
| 72 | static int dh_bn_mod_exp(const DH *dh, BIGNUM *r, | ||
| 73 | const BIGNUM *a, const BIGNUM *p, | ||
| 74 | const BIGNUM *m, BN_CTX *ctx, | ||
| 75 | BN_MONT_CTX *m_ctx); | ||
| 76 | static int dh_init(DH *dh); | ||
| 77 | static int dh_finish(DH *dh); | ||
| 78 | |||
| 79 | int DH_generate_key(DH *dh) | ||
| 80 | { | ||
| 81 | return dh->meth->generate_key(dh); | ||
| 82 | } | ||
| 83 | |||
| 84 | int DH_compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh) | ||
| 85 | { | ||
| 86 | return dh->meth->compute_key(key, pub_key, dh); | ||
| 87 | } | ||
| 88 | |||
| 89 | static const DH_METHOD dh_ossl = { | ||
| 90 | "OpenSSL DH Method", | ||
| 91 | generate_key, | ||
| 92 | compute_key, | ||
| 93 | dh_bn_mod_exp, | ||
| 94 | dh_init, | ||
| 95 | dh_finish, | ||
| 96 | 0, | ||
| 97 | NULL | ||
| 98 | }; | ||
| 99 | |||
| 100 | const DH_METHOD *DH_OpenSSL(void) | ||
| 101 | { | ||
| 102 | return &dh_ossl; | ||
| 103 | } | ||
| 104 | |||
| 105 | static int generate_key(DH *dh) | ||
| 106 | { | ||
| 107 | int ok=0; | ||
| 108 | int generate_new_key=0; | ||
| 109 | unsigned l; | ||
| 110 | BN_CTX *ctx; | ||
| 111 | BN_MONT_CTX *mont=NULL; | ||
| 112 | BIGNUM *pub_key=NULL,*priv_key=NULL; | ||
| 113 | |||
| 114 | ctx = BN_CTX_new(); | ||
| 115 | if (ctx == NULL) goto err; | ||
| 116 | |||
| 117 | if (dh->priv_key == NULL) | ||
| 118 | { | ||
| 119 | priv_key=BN_new(); | ||
| 120 | if (priv_key == NULL) goto err; | ||
| 121 | generate_new_key=1; | ||
| 122 | } | ||
| 123 | else | ||
| 124 | priv_key=dh->priv_key; | ||
| 125 | |||
| 126 | if (dh->pub_key == NULL) | ||
| 127 | { | ||
| 128 | pub_key=BN_new(); | ||
| 129 | if (pub_key == NULL) goto err; | ||
| 130 | } | ||
| 131 | else | ||
| 132 | pub_key=dh->pub_key; | ||
| 133 | |||
| 134 | if (dh->flags & DH_FLAG_CACHE_MONT_P) | ||
| 135 | { | ||
| 136 | mont = BN_MONT_CTX_set_locked( | ||
| 137 | (BN_MONT_CTX **)&dh->method_mont_p, | ||
| 138 | CRYPTO_LOCK_DH, dh->p, ctx); | ||
| 139 | if (!mont) | ||
| 140 | goto err; | ||
| 141 | } | ||
| 142 | |||
| 143 | if (generate_new_key) | ||
| 144 | { | ||
| 145 | l = dh->length ? dh->length : BN_num_bits(dh->p)-1; /* secret exponent length */ | ||
| 146 | if (!BN_rand(priv_key, l, 0, 0)) goto err; | ||
| 147 | } | ||
| 148 | |||
| 149 | { | ||
| 150 | BIGNUM local_prk; | ||
| 151 | BIGNUM *prk; | ||
| 152 | |||
| 153 | if ((dh->flags & DH_FLAG_NO_EXP_CONSTTIME) == 0) | ||
| 154 | { | ||
| 155 | BN_init(&local_prk); | ||
| 156 | prk = &local_prk; | ||
| 157 | BN_with_flags(prk, priv_key, BN_FLG_EXP_CONSTTIME); | ||
| 158 | } | ||
| 159 | else | ||
| 160 | prk = priv_key; | ||
| 161 | |||
| 162 | if (!dh->meth->bn_mod_exp(dh, pub_key, dh->g, prk, dh->p, ctx, mont)) | ||
| 163 | goto err; | ||
| 164 | } | ||
| 165 | |||
| 166 | dh->pub_key=pub_key; | ||
| 167 | dh->priv_key=priv_key; | ||
| 168 | ok=1; | ||
| 169 | err: | ||
| 170 | if (ok != 1) | ||
| 171 | DHerr(DH_F_DH_GENERATE_KEY,ERR_R_BN_LIB); | ||
| 172 | |||
| 173 | if ((pub_key != NULL) && (dh->pub_key == NULL)) BN_free(pub_key); | ||
| 174 | if ((priv_key != NULL) && (dh->priv_key == NULL)) BN_free(priv_key); | ||
| 175 | BN_CTX_free(ctx); | ||
| 176 | return(ok); | ||
| 177 | } | ||
| 178 | |||
| 179 | static int compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh) | ||
| 180 | { | ||
| 181 | BN_CTX *ctx; | ||
| 182 | BN_MONT_CTX *mont=NULL; | ||
| 183 | BIGNUM *tmp; | ||
| 184 | int ret= -1; | ||
| 185 | |||
| 186 | ctx = BN_CTX_new(); | ||
| 187 | if (ctx == NULL) goto err; | ||
| 188 | BN_CTX_start(ctx); | ||
| 189 | tmp = BN_CTX_get(ctx); | ||
| 190 | |||
| 191 | if (dh->priv_key == NULL) | ||
| 192 | { | ||
| 193 | DHerr(DH_F_DH_COMPUTE_KEY,DH_R_NO_PRIVATE_VALUE); | ||
| 194 | goto err; | ||
| 195 | } | ||
| 196 | |||
| 197 | if (dh->flags & DH_FLAG_CACHE_MONT_P) | ||
| 198 | { | ||
| 199 | mont = BN_MONT_CTX_set_locked( | ||
| 200 | (BN_MONT_CTX **)&dh->method_mont_p, | ||
| 201 | CRYPTO_LOCK_DH, dh->p, ctx); | ||
| 202 | if ((dh->flags & DH_FLAG_NO_EXP_CONSTTIME) == 0) | ||
| 203 | { | ||
| 204 | /* XXX */ | ||
| 205 | BN_set_flags(dh->priv_key, BN_FLG_EXP_CONSTTIME); | ||
| 206 | } | ||
| 207 | if (!mont) | ||
| 208 | goto err; | ||
| 209 | } | ||
| 210 | |||
| 211 | if (!dh->meth->bn_mod_exp(dh, tmp, pub_key, dh->priv_key,dh->p,ctx,mont)) | ||
| 212 | { | ||
| 213 | DHerr(DH_F_DH_COMPUTE_KEY,ERR_R_BN_LIB); | ||
| 214 | goto err; | ||
| 215 | } | ||
| 216 | |||
| 217 | ret=BN_bn2bin(tmp,key); | ||
| 218 | err: | ||
| 219 | BN_CTX_end(ctx); | ||
| 220 | BN_CTX_free(ctx); | ||
| 221 | return(ret); | ||
| 222 | } | ||
| 223 | |||
| 224 | static int dh_bn_mod_exp(const DH *dh, BIGNUM *r, | ||
| 225 | const BIGNUM *a, const BIGNUM *p, | ||
| 226 | const BIGNUM *m, BN_CTX *ctx, | ||
| 227 | BN_MONT_CTX *m_ctx) | ||
| 228 | { | ||
| 229 | /* If a is only one word long and constant time is false, use the faster | ||
| 230 | * exponenentiation function. | ||
| 231 | */ | ||
| 232 | if (a->top == 1 && ((dh->flags & DH_FLAG_NO_EXP_CONSTTIME) != 0)) | ||
| 233 | { | ||
| 234 | BN_ULONG A = a->d[0]; | ||
| 235 | return BN_mod_exp_mont_word(r,A,p,m,ctx,m_ctx); | ||
| 236 | } | ||
| 237 | else | ||
| 238 | return BN_mod_exp_mont(r,a,p,m,ctx,m_ctx); | ||
| 239 | } | ||
| 240 | |||
| 241 | |||
| 242 | static int dh_init(DH *dh) | ||
| 243 | { | ||
| 244 | dh->flags |= DH_FLAG_CACHE_MONT_P; | ||
| 245 | return(1); | ||
| 246 | } | ||
| 247 | |||
| 248 | static int dh_finish(DH *dh) | ||
| 249 | { | ||
| 250 | if(dh->method_mont_p) | ||
| 251 | BN_MONT_CTX_free((BN_MONT_CTX *)dh->method_mont_p); | ||
| 252 | return(1); | ||
| 253 | } | ||
| 254 | |||
| 255 | #endif | ||
| 256 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/dsa/Makefile b/src/lib/libssl/src/fips-1.0/dsa/Makefile deleted file mode 100644 index aeb08b5943..0000000000 --- a/src/lib/libssl/src/fips-1.0/dsa/Makefile +++ /dev/null | |||
| @@ -1,147 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/dsa/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= dsa | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST=fips_dsatest.c fips_dssvs.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_dsa_ossl.c fips_dsa_gen.c fips_dsa_selftest.c | ||
| 26 | LIBOBJ=fips_dsa_ossl.o fips_dsa_gen.o fips_dsa_selftest.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | @echo $(LIBOBJ) > lib | ||
| 42 | |||
| 43 | files: | ||
| 44 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 45 | |||
| 46 | links: | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 50 | |||
| 51 | install: | ||
| 52 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 53 | do \ | ||
| 54 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 55 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 56 | done | ||
| 57 | |||
| 58 | tags: | ||
| 59 | ctags $(SRC) | ||
| 60 | |||
| 61 | tests: | ||
| 62 | |||
| 63 | Q=../testvectors/dsa/req | ||
| 64 | A=../testvectors/dsa/rsp | ||
| 65 | |||
| 66 | fips_test: | ||
| 67 | -rm -rf $A | ||
| 68 | mkdir $A | ||
| 69 | if [ -f $(Q)/PQGGen.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_dssvs pqg < $(Q)/PQGGen.req > $(A)/PQGGen.rsp; fi | ||
| 70 | if [ -f $(Q)/KeyPair.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_dssvs keypair < $(Q)/KeyPair.req > $(A)/KeyPair.rsp; fi | ||
| 71 | if [ -f $(Q)/SigGen.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_dssvs siggen < $(Q)/SigGen.req > $(A)/SigGen.rsp; fi | ||
| 72 | if [ -f $(Q)/SigVer.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_dssvs sigver < $Q/SigVer.req > $A/SigVer.rsp; fi | ||
| 73 | |||
| 74 | lint: | ||
| 75 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 76 | |||
| 77 | depend: | ||
| 78 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 79 | |||
| 80 | dclean: | ||
| 81 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 82 | mv -f Makefile.new $(MAKEFILE) | ||
| 83 | |||
| 84 | clean: | ||
| 85 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 86 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 87 | |||
| 88 | fips_dsa_gen.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 89 | fips_dsa_gen.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 90 | fips_dsa_gen.o: ../../include/openssl/bn.h ../../include/openssl/cast.h | ||
| 91 | fips_dsa_gen.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 92 | fips_dsa_gen.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 93 | fips_dsa_gen.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 94 | fips_dsa_gen.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 95 | fips_dsa_gen.o: ../../include/openssl/fips.h ../../include/openssl/fips_sha.h | ||
| 96 | fips_dsa_gen.o: ../../include/openssl/idea.h ../../include/openssl/lhash.h | ||
| 97 | fips_dsa_gen.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 98 | fips_dsa_gen.o: ../../include/openssl/md5.h ../../include/openssl/mdc2.h | ||
| 99 | fips_dsa_gen.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 100 | fips_dsa_gen.o: ../../include/openssl/opensslconf.h | ||
| 101 | fips_dsa_gen.o: ../../include/openssl/opensslv.h | ||
| 102 | fips_dsa_gen.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 103 | fips_dsa_gen.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 104 | fips_dsa_gen.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 105 | fips_dsa_gen.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 106 | fips_dsa_gen.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 107 | fips_dsa_gen.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 108 | fips_dsa_gen.o: ../../include/openssl/ui_compat.h fips_dsa_gen.c | ||
| 109 | fips_dsa_ossl.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 110 | fips_dsa_ossl.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 111 | fips_dsa_ossl.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 112 | fips_dsa_ossl.o: ../../include/openssl/e_os2.h ../../include/openssl/engine.h | ||
| 113 | fips_dsa_ossl.o: ../../include/openssl/err.h ../../include/openssl/fips.h | ||
| 114 | fips_dsa_ossl.o: ../../include/openssl/lhash.h | ||
| 115 | fips_dsa_ossl.o: ../../include/openssl/opensslconf.h | ||
| 116 | fips_dsa_ossl.o: ../../include/openssl/opensslv.h | ||
| 117 | fips_dsa_ossl.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 118 | fips_dsa_ossl.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 119 | fips_dsa_ossl.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 120 | fips_dsa_ossl.o: ../../include/openssl/ui.h fips_dsa_ossl.c | ||
| 121 | fips_dsa_selftest.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 122 | fips_dsa_selftest.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 123 | fips_dsa_selftest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 124 | fips_dsa_selftest.o: ../../include/openssl/err.h ../../include/openssl/fips.h | ||
| 125 | fips_dsa_selftest.o: ../../include/openssl/lhash.h | ||
| 126 | fips_dsa_selftest.o: ../../include/openssl/opensslconf.h | ||
| 127 | fips_dsa_selftest.o: ../../include/openssl/opensslv.h | ||
| 128 | fips_dsa_selftest.o: ../../include/openssl/ossl_typ.h | ||
| 129 | fips_dsa_selftest.o: ../../include/openssl/safestack.h | ||
| 130 | fips_dsa_selftest.o: ../../include/openssl/stack.h | ||
| 131 | fips_dsa_selftest.o: ../../include/openssl/symhacks.h fips_dsa_selftest.c | ||
| 132 | fips_dsatest.o: ../../e_os.h ../../include/openssl/asn1.h | ||
| 133 | fips_dsatest.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 134 | fips_dsatest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 135 | fips_dsatest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 136 | fips_dsatest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 137 | fips_dsatest.o: ../../include/openssl/engine.h ../../include/openssl/err.h | ||
| 138 | fips_dsatest.o: ../../include/openssl/fips.h ../../include/openssl/fips_rand.h | ||
| 139 | fips_dsatest.o: ../../include/openssl/lhash.h | ||
| 140 | fips_dsatest.o: ../../include/openssl/opensslconf.h | ||
| 141 | fips_dsatest.o: ../../include/openssl/opensslv.h | ||
| 142 | fips_dsatest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 143 | fips_dsatest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 144 | fips_dsatest.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 145 | fips_dsatest.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 146 | fips_dsatest.o: fips_dsatest.c | ||
| 147 | fips_dssvs.o: ../../include/openssl/opensslconf.h fips_dssvs.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_gen.c b/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_gen.c deleted file mode 100644 index 8ed1de0195..0000000000 --- a/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_gen.c +++ /dev/null | |||
| @@ -1,374 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsa_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #undef GENUINE_DSA | ||
| 60 | |||
| 61 | #ifdef GENUINE_DSA | ||
| 62 | /* Parameter generation follows the original release of FIPS PUB 186, | ||
| 63 | * Appendix 2.2 (i.e. use SHA as defined in FIPS PUB 180) */ | ||
| 64 | #define HASH EVP_sha() | ||
| 65 | #else | ||
| 66 | /* Parameter generation follows the updated Appendix 2.2 for FIPS PUB 186, | ||
| 67 | * also Appendix 2.2 of FIPS PUB 186-1 (i.e. use SHA as defined in | ||
| 68 | * FIPS PUB 180-1) */ | ||
| 69 | #define HASH EVP_sha1() | ||
| 70 | #endif | ||
| 71 | |||
| 72 | #include <stdio.h> | ||
| 73 | #include <string.h> | ||
| 74 | #include <time.h> | ||
| 75 | /*#include "cryptlib.h"*/ | ||
| 76 | #include <openssl/evp.h> | ||
| 77 | #include <openssl/bn.h> | ||
| 78 | #ifndef OPENSSL_NO_DSA | ||
| 79 | #include <openssl/dsa.h> | ||
| 80 | #endif | ||
| 81 | #ifndef OPENSSL_NO_RAND | ||
| 82 | #include <openssl/rand.h> | ||
| 83 | #endif | ||
| 84 | #ifndef OPENSSL_NO_SHA | ||
| 85 | #include <openssl/fips_sha.h> | ||
| 86 | #endif | ||
| 87 | #include <openssl/fips.h> | ||
| 88 | #include <openssl/err.h> | ||
| 89 | |||
| 90 | #ifndef OPENSSL_NO_DSA | ||
| 91 | #ifdef OPENSSL_FIPS | ||
| 92 | |||
| 93 | static int fips_check_dsa(DSA *dsa) | ||
| 94 | { | ||
| 95 | static const unsigned char str1[]="12345678901234567890"; | ||
| 96 | unsigned char sig[256]; | ||
| 97 | unsigned int siglen; | ||
| 98 | |||
| 99 | DSA_sign(0, str1, 20, sig, &siglen, dsa); | ||
| 100 | if(DSA_verify(0, str1, 20, sig, siglen, dsa) != 1) | ||
| 101 | { | ||
| 102 | FIPSerr(FIPS_F_FIPS_CHECK_DSA,FIPS_R_PAIRWISE_TEST_FAILED); | ||
| 103 | return 0; | ||
| 104 | } | ||
| 105 | return 1; | ||
| 106 | } | ||
| 107 | |||
| 108 | DSA *DSA_generate_parameters(FIPS_DSA_SIZE_T bits, | ||
| 109 | unsigned char *seed_in, FIPS_DSA_SIZE_T seed_len, | ||
| 110 | int *counter_ret, unsigned long *h_ret, | ||
| 111 | void (*callback)(int, int, void *), | ||
| 112 | void *cb_arg) | ||
| 113 | { | ||
| 114 | int ok=0; | ||
| 115 | unsigned char seed[SHA_DIGEST_LENGTH]; | ||
| 116 | unsigned char md[SHA_DIGEST_LENGTH]; | ||
| 117 | unsigned char buf[SHA_DIGEST_LENGTH],buf2[SHA_DIGEST_LENGTH]; | ||
| 118 | BIGNUM *r0,*W,*X,*c,*test; | ||
| 119 | BIGNUM *g=NULL,*q=NULL,*p=NULL; | ||
| 120 | BN_MONT_CTX *mont=NULL; | ||
| 121 | int k,n=0,i,b,m=0; | ||
| 122 | int counter=0; | ||
| 123 | int r=0; | ||
| 124 | BN_CTX *ctx=NULL,*ctx2=NULL,*ctx3=NULL; | ||
| 125 | unsigned int h=2; | ||
| 126 | DSA *ret=NULL; | ||
| 127 | unsigned char *seed_out=seed_in; | ||
| 128 | |||
| 129 | if(FIPS_selftest_failed()) | ||
| 130 | { | ||
| 131 | FIPSerr(FIPS_F_DSA_GENERATE_PARAMETERS, | ||
| 132 | FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 133 | goto err; | ||
| 134 | } | ||
| 135 | |||
| 136 | if (bits < 512) bits=512; | ||
| 137 | bits=(bits+63)/64*64; | ||
| 138 | |||
| 139 | if (seed_len < 20) | ||
| 140 | seed_in = NULL; /* seed buffer too small -- ignore */ | ||
| 141 | if (seed_len > 20) | ||
| 142 | seed_len = 20; /* App. 2.2 of FIPS PUB 186 allows larger SEED, | ||
| 143 | * but our internal buffers are restricted to 160 bits*/ | ||
| 144 | if ((seed_in != NULL) && (seed_len == 20)) | ||
| 145 | memcpy(seed,seed_in,seed_len); | ||
| 146 | |||
| 147 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 148 | if ((ctx2=BN_CTX_new()) == NULL) goto err; | ||
| 149 | if ((ctx3=BN_CTX_new()) == NULL) goto err; | ||
| 150 | if ((ret=DSA_new()) == NULL) goto err; | ||
| 151 | |||
| 152 | if ((mont=BN_MONT_CTX_new()) == NULL) goto err; | ||
| 153 | |||
| 154 | BN_CTX_start(ctx2); | ||
| 155 | r0 = BN_CTX_get(ctx2); | ||
| 156 | g = BN_CTX_get(ctx2); | ||
| 157 | W = BN_CTX_get(ctx2); | ||
| 158 | q = BN_CTX_get(ctx2); | ||
| 159 | X = BN_CTX_get(ctx2); | ||
| 160 | c = BN_CTX_get(ctx2); | ||
| 161 | p = BN_CTX_get(ctx2); | ||
| 162 | test = BN_CTX_get(ctx2); | ||
| 163 | |||
| 164 | BN_lshift(test,BN_value_one(),bits-1); | ||
| 165 | |||
| 166 | for (;;) | ||
| 167 | { | ||
| 168 | for (;;) /* find q */ | ||
| 169 | { | ||
| 170 | int seed_is_random; | ||
| 171 | |||
| 172 | /* step 1 */ | ||
| 173 | if (callback != NULL) callback(0,m++,cb_arg); | ||
| 174 | |||
| 175 | if (!seed_len) | ||
| 176 | { | ||
| 177 | if(RAND_pseudo_bytes(seed,SHA_DIGEST_LENGTH) < 0) | ||
| 178 | goto err; | ||
| 179 | seed_is_random = 1; | ||
| 180 | } | ||
| 181 | else | ||
| 182 | { | ||
| 183 | seed_is_random = 0; | ||
| 184 | seed_len=0; /* use random seed if 'seed_in' turns out to be bad*/ | ||
| 185 | } | ||
| 186 | memcpy(buf,seed,SHA_DIGEST_LENGTH); | ||
| 187 | memcpy(buf2,seed,SHA_DIGEST_LENGTH); | ||
| 188 | /* precompute "SEED + 1" for step 7: */ | ||
| 189 | for (i=SHA_DIGEST_LENGTH-1; i >= 0; i--) | ||
| 190 | { | ||
| 191 | buf[i]++; | ||
| 192 | if (buf[i] != 0) break; | ||
| 193 | } | ||
| 194 | |||
| 195 | /* step 2 */ | ||
| 196 | EVP_Digest(seed,SHA_DIGEST_LENGTH,md,NULL,HASH, NULL); | ||
| 197 | EVP_Digest(buf,SHA_DIGEST_LENGTH,buf2,NULL,HASH, NULL); | ||
| 198 | for (i=0; i<SHA_DIGEST_LENGTH; i++) | ||
| 199 | md[i]^=buf2[i]; | ||
| 200 | |||
| 201 | /* step 3 */ | ||
| 202 | md[0]|=0x80; | ||
| 203 | md[SHA_DIGEST_LENGTH-1]|=0x01; | ||
| 204 | if (!BN_bin2bn(md,SHA_DIGEST_LENGTH,q)) goto err; | ||
| 205 | |||
| 206 | /* step 4 */ | ||
| 207 | r = BN_is_prime_fasttest(q, DSS_prime_checks, callback, ctx3, cb_arg, seed_is_random); | ||
| 208 | if (r > 0) | ||
| 209 | break; | ||
| 210 | if (r != 0) | ||
| 211 | goto err; | ||
| 212 | |||
| 213 | /* do a callback call */ | ||
| 214 | /* step 5 */ | ||
| 215 | } | ||
| 216 | |||
| 217 | if (callback != NULL) callback(2,0,cb_arg); | ||
| 218 | if (callback != NULL) callback(3,0,cb_arg); | ||
| 219 | |||
| 220 | /* step 6 */ | ||
| 221 | counter=0; | ||
| 222 | /* "offset = 2" */ | ||
| 223 | |||
| 224 | n=(bits-1)/160; | ||
| 225 | b=(bits-1)-n*160; | ||
| 226 | |||
| 227 | for (;;) | ||
| 228 | { | ||
| 229 | if (callback != NULL && counter != 0) | ||
| 230 | callback(0,counter,cb_arg); | ||
| 231 | |||
| 232 | /* step 7 */ | ||
| 233 | BN_zero(W); | ||
| 234 | /* now 'buf' contains "SEED + offset - 1" */ | ||
| 235 | for (k=0; k<=n; k++) | ||
| 236 | { | ||
| 237 | /* obtain "SEED + offset + k" by incrementing: */ | ||
| 238 | for (i=SHA_DIGEST_LENGTH-1; i >= 0; i--) | ||
| 239 | { | ||
| 240 | buf[i]++; | ||
| 241 | if (buf[i] != 0) break; | ||
| 242 | } | ||
| 243 | |||
| 244 | EVP_Digest(buf,SHA_DIGEST_LENGTH,md,NULL,HASH, NULL); | ||
| 245 | |||
| 246 | /* step 8 */ | ||
| 247 | if (!BN_bin2bn(md,SHA_DIGEST_LENGTH,r0)) | ||
| 248 | goto err; | ||
| 249 | BN_lshift(r0,r0,160*k); | ||
| 250 | BN_add(W,W,r0); | ||
| 251 | } | ||
| 252 | |||
| 253 | /* more of step 8 */ | ||
| 254 | BN_mask_bits(W,bits-1); | ||
| 255 | BN_copy(X,W); /* this should be ok */ | ||
| 256 | BN_add(X,X,test); /* this should be ok */ | ||
| 257 | |||
| 258 | /* step 9 */ | ||
| 259 | BN_lshift1(r0,q); | ||
| 260 | BN_mod(c,X,r0,ctx); | ||
| 261 | BN_sub(r0,c,BN_value_one()); | ||
| 262 | BN_sub(p,X,r0); | ||
| 263 | |||
| 264 | /* step 10 */ | ||
| 265 | if (BN_cmp(p,test) >= 0) | ||
| 266 | { | ||
| 267 | /* step 11 */ | ||
| 268 | r = BN_is_prime_fasttest(p, DSS_prime_checks, callback, ctx3, cb_arg, 1); | ||
| 269 | if (r > 0) | ||
| 270 | goto end; /* found it */ | ||
| 271 | if (r != 0) | ||
| 272 | goto err; | ||
| 273 | } | ||
| 274 | |||
| 275 | /* step 13 */ | ||
| 276 | counter++; | ||
| 277 | /* "offset = offset + n + 1" */ | ||
| 278 | |||
| 279 | /* step 14 */ | ||
| 280 | if (counter >= 4096) break; | ||
| 281 | } | ||
| 282 | } | ||
| 283 | end: | ||
| 284 | if (callback != NULL) callback(2,1,cb_arg); | ||
| 285 | |||
| 286 | /* We now need to generate g */ | ||
| 287 | /* Set r0=(p-1)/q */ | ||
| 288 | BN_sub(test,p,BN_value_one()); | ||
| 289 | BN_div(r0,NULL,test,q,ctx); | ||
| 290 | |||
| 291 | BN_set_word(test,h); | ||
| 292 | BN_MONT_CTX_set(mont,p,ctx); | ||
| 293 | |||
| 294 | for (;;) | ||
| 295 | { | ||
| 296 | /* g=test^r0%p */ | ||
| 297 | BN_mod_exp_mont(g,test,r0,p,ctx,mont); | ||
| 298 | if (!BN_is_one(g)) break; | ||
| 299 | BN_add(test,test,BN_value_one()); | ||
| 300 | h++; | ||
| 301 | } | ||
| 302 | |||
| 303 | if (callback != NULL) callback(3,1,cb_arg); | ||
| 304 | |||
| 305 | ok=1; | ||
| 306 | err: | ||
| 307 | if (!ok) | ||
| 308 | { | ||
| 309 | if (ret != NULL) DSA_free(ret); | ||
| 310 | } | ||
| 311 | else | ||
| 312 | { | ||
| 313 | ret->p=BN_dup(p); | ||
| 314 | ret->q=BN_dup(q); | ||
| 315 | ret->g=BN_dup(g); | ||
| 316 | if(seed_out != NULL) memcpy(seed_out,seed,20); | ||
| 317 | if (counter_ret != NULL) *counter_ret=counter; | ||
| 318 | if (h_ret != NULL) *h_ret=h; | ||
| 319 | } | ||
| 320 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 321 | if (ctx2 != NULL) | ||
| 322 | { | ||
| 323 | BN_CTX_end(ctx2); | ||
| 324 | BN_CTX_free(ctx2); | ||
| 325 | } | ||
| 326 | if (ctx3 != NULL) BN_CTX_free(ctx3); | ||
| 327 | if (mont != NULL) BN_MONT_CTX_free(mont); | ||
| 328 | return(ok?ret:NULL); | ||
| 329 | } | ||
| 330 | |||
| 331 | int DSA_generate_key(DSA *dsa) | ||
| 332 | { | ||
| 333 | int ok=0; | ||
| 334 | BN_CTX *ctx=NULL; | ||
| 335 | BIGNUM *pub_key=NULL,*priv_key=NULL; | ||
| 336 | |||
| 337 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 338 | |||
| 339 | if (dsa->priv_key == NULL) | ||
| 340 | { | ||
| 341 | if ((priv_key=BN_new()) == NULL) goto err; | ||
| 342 | } | ||
| 343 | else | ||
| 344 | priv_key=dsa->priv_key; | ||
| 345 | |||
| 346 | do | ||
| 347 | if (!BN_rand_range(priv_key,dsa->q)) goto err; | ||
| 348 | while (BN_is_zero(priv_key)); | ||
| 349 | |||
| 350 | if (dsa->pub_key == NULL) | ||
| 351 | { | ||
| 352 | if ((pub_key=BN_new()) == NULL) goto err; | ||
| 353 | } | ||
| 354 | else | ||
| 355 | pub_key=dsa->pub_key; | ||
| 356 | |||
| 357 | if (!BN_mod_exp(pub_key,dsa->g,priv_key,dsa->p,ctx)) goto err; | ||
| 358 | |||
| 359 | dsa->priv_key=priv_key; | ||
| 360 | dsa->pub_key=pub_key; | ||
| 361 | |||
| 362 | if(!fips_check_dsa(dsa)) | ||
| 363 | goto err; | ||
| 364 | |||
| 365 | ok=1; | ||
| 366 | |||
| 367 | err: | ||
| 368 | if ((pub_key != NULL) && (dsa->pub_key == NULL)) BN_free(pub_key); | ||
| 369 | if ((priv_key != NULL) && (dsa->priv_key == NULL)) BN_free(priv_key); | ||
| 370 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 371 | return(ok); | ||
| 372 | } | ||
| 373 | #endif | ||
| 374 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_ossl.c b/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_ossl.c deleted file mode 100644 index f8f3a39343..0000000000 --- a/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_ossl.c +++ /dev/null | |||
| @@ -1,408 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsa_ossl.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | /* Original version from Steven Schoch <schoch@sheba.arc.nasa.gov> */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | #include <openssl/dsa.h> | ||
| 64 | #include <openssl/rand.h> | ||
| 65 | #include <openssl/asn1.h> | ||
| 66 | #ifndef OPENSSL_NO_ENGINE | ||
| 67 | #include <openssl/engine.h> | ||
| 68 | #endif | ||
| 69 | #include <openssl/fips.h> | ||
| 70 | |||
| 71 | #ifdef OPENSSL_FIPS | ||
| 72 | |||
| 73 | static DSA_SIG *dsa_do_sign(const unsigned char *dgst, FIPS_DSA_SIZE_T dlen, DSA *dsa); | ||
| 74 | static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in, BIGNUM **kinvp, BIGNUM **rp); | ||
| 75 | static int dsa_do_verify(const unsigned char *dgst, FIPS_DSA_SIZE_T dgst_len, DSA_SIG *sig, | ||
| 76 | DSA *dsa); | ||
| 77 | static int dsa_init(DSA *dsa); | ||
| 78 | static int dsa_finish(DSA *dsa); | ||
| 79 | static int dsa_mod_exp(DSA *dsa, BIGNUM *rr, BIGNUM *a1, BIGNUM *p1, | ||
| 80 | BIGNUM *a2, BIGNUM *p2, BIGNUM *m, BN_CTX *ctx, | ||
| 81 | BN_MONT_CTX *in_mont); | ||
| 82 | static int dsa_bn_mod_exp(DSA *dsa, BIGNUM *r, BIGNUM *a, const BIGNUM *p, | ||
| 83 | const BIGNUM *m, BN_CTX *ctx, | ||
| 84 | BN_MONT_CTX *m_ctx); | ||
| 85 | |||
| 86 | static const DSA_METHOD openssl_dsa_meth = { | ||
| 87 | "OpenSSL FIPS DSA method", | ||
| 88 | dsa_do_sign, | ||
| 89 | dsa_sign_setup, | ||
| 90 | dsa_do_verify, | ||
| 91 | dsa_mod_exp, | ||
| 92 | dsa_bn_mod_exp, | ||
| 93 | dsa_init, | ||
| 94 | dsa_finish, | ||
| 95 | 0, | ||
| 96 | NULL | ||
| 97 | }; | ||
| 98 | |||
| 99 | int FIPS_dsa_check(struct dsa_st *dsa) | ||
| 100 | { | ||
| 101 | if(dsa->meth != &openssl_dsa_meth || dsa->meth->dsa_do_sign != dsa_do_sign | ||
| 102 | || dsa->meth->dsa_sign_setup != dsa_sign_setup | ||
| 103 | || dsa->meth->dsa_mod_exp != dsa_mod_exp | ||
| 104 | || dsa->meth->bn_mod_exp != dsa_bn_mod_exp | ||
| 105 | || dsa->meth->init != dsa_init | ||
| 106 | || dsa->meth->finish != dsa_finish) | ||
| 107 | { | ||
| 108 | FIPSerr(FIPS_F_FIPS_DSA_CHECK,FIPS_R_NON_FIPS_METHOD); | ||
| 109 | return 0; | ||
| 110 | } | ||
| 111 | return 1; | ||
| 112 | } | ||
| 113 | |||
| 114 | const DSA_METHOD *DSA_OpenSSL(void) | ||
| 115 | { | ||
| 116 | return &openssl_dsa_meth; | ||
| 117 | } | ||
| 118 | |||
| 119 | static DSA_SIG *dsa_do_sign(const unsigned char *dgst, FIPS_DSA_SIZE_T dlen, DSA *dsa) | ||
| 120 | { | ||
| 121 | BIGNUM *kinv=NULL,*r=NULL,*s=NULL; | ||
| 122 | BIGNUM m; | ||
| 123 | BIGNUM xr; | ||
| 124 | BN_CTX *ctx=NULL; | ||
| 125 | int i,reason=ERR_R_BN_LIB; | ||
| 126 | DSA_SIG *ret=NULL; | ||
| 127 | |||
| 128 | if(FIPS_selftest_failed()) | ||
| 129 | { | ||
| 130 | FIPSerr(FIPS_F_DSA_DO_SIGN,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 131 | return NULL; | ||
| 132 | } | ||
| 133 | |||
| 134 | BN_init(&m); | ||
| 135 | BN_init(&xr); | ||
| 136 | |||
| 137 | if (!dsa->p || !dsa->q || !dsa->g) | ||
| 138 | { | ||
| 139 | reason=DSA_R_MISSING_PARAMETERS; | ||
| 140 | goto err; | ||
| 141 | } | ||
| 142 | |||
| 143 | s=BN_new(); | ||
| 144 | if (s == NULL) goto err; | ||
| 145 | |||
| 146 | i=BN_num_bytes(dsa->q); /* should be 20 */ | ||
| 147 | if ((dlen > i) || (dlen > 50)) | ||
| 148 | { | ||
| 149 | reason=DSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE; | ||
| 150 | goto err; | ||
| 151 | } | ||
| 152 | |||
| 153 | ctx=BN_CTX_new(); | ||
| 154 | if (ctx == NULL) goto err; | ||
| 155 | |||
| 156 | if (!DSA_sign_setup(dsa,ctx,&kinv,&r)) goto err; | ||
| 157 | |||
| 158 | if (BN_bin2bn(dgst,dlen,&m) == NULL) goto err; | ||
| 159 | |||
| 160 | /* Compute s = inv(k) (m + xr) mod q */ | ||
| 161 | if (!BN_mod_mul(&xr,dsa->priv_key,r,dsa->q,ctx)) goto err;/* s = xr */ | ||
| 162 | if (!BN_add(s, &xr, &m)) goto err; /* s = m + xr */ | ||
| 163 | if (BN_cmp(s,dsa->q) > 0) | ||
| 164 | BN_sub(s,s,dsa->q); | ||
| 165 | if (!BN_mod_mul(s,s,kinv,dsa->q,ctx)) goto err; | ||
| 166 | |||
| 167 | ret=DSA_SIG_new(); | ||
| 168 | if (ret == NULL) goto err; | ||
| 169 | ret->r = r; | ||
| 170 | ret->s = s; | ||
| 171 | |||
| 172 | err: | ||
| 173 | if (!ret) | ||
| 174 | { | ||
| 175 | DSAerr(DSA_F_DSA_DO_SIGN,reason); | ||
| 176 | BN_free(r); | ||
| 177 | BN_free(s); | ||
| 178 | } | ||
| 179 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 180 | BN_clear_free(&m); | ||
| 181 | BN_clear_free(&xr); | ||
| 182 | if (kinv != NULL) /* dsa->kinv is NULL now if we used it */ | ||
| 183 | BN_clear_free(kinv); | ||
| 184 | return(ret); | ||
| 185 | } | ||
| 186 | |||
| 187 | static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in, BIGNUM **kinvp, BIGNUM **rp) | ||
| 188 | { | ||
| 189 | BN_CTX *ctx; | ||
| 190 | BIGNUM k,kq,*K,*kinv=NULL,*r=NULL; | ||
| 191 | int ret=0; | ||
| 192 | |||
| 193 | if (!dsa->p || !dsa->q || !dsa->g) | ||
| 194 | { | ||
| 195 | DSAerr(DSA_F_DSA_SIGN_SETUP,DSA_R_MISSING_PARAMETERS); | ||
| 196 | return 0; | ||
| 197 | } | ||
| 198 | |||
| 199 | BN_init(&k); | ||
| 200 | BN_init(&kq); | ||
| 201 | |||
| 202 | if (ctx_in == NULL) | ||
| 203 | { | ||
| 204 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 205 | } | ||
| 206 | else | ||
| 207 | ctx=ctx_in; | ||
| 208 | |||
| 209 | if ((r=BN_new()) == NULL) goto err; | ||
| 210 | |||
| 211 | /* Get random k */ | ||
| 212 | do | ||
| 213 | if (!BN_rand_range(&k, dsa->q)) goto err; | ||
| 214 | while (BN_is_zero(&k)); | ||
| 215 | if ((dsa->flags & DSA_FLAG_NO_EXP_CONSTTIME) == 0) | ||
| 216 | { | ||
| 217 | BN_set_flags(&k, BN_FLG_EXP_CONSTTIME); | ||
| 218 | } | ||
| 219 | |||
| 220 | if (dsa->flags & DSA_FLAG_CACHE_MONT_P) | ||
| 221 | { | ||
| 222 | if (!BN_MONT_CTX_set_locked((BN_MONT_CTX **)&dsa->method_mont_p, | ||
| 223 | CRYPTO_LOCK_DSA, | ||
| 224 | dsa->p, ctx)) | ||
| 225 | goto err; | ||
| 226 | } | ||
| 227 | |||
| 228 | /* Compute r = (g^k mod p) mod q */ | ||
| 229 | |||
| 230 | if ((dsa->flags & DSA_FLAG_NO_EXP_CONSTTIME) == 0) | ||
| 231 | { | ||
| 232 | if (!BN_copy(&kq, &k)) goto err; | ||
| 233 | |||
| 234 | /* We do not want timing information to leak the length of k, | ||
| 235 | * so we compute g^k using an equivalent exponent of fixed length. | ||
| 236 | * | ||
| 237 | * (This is a kludge that we need because the BN_mod_exp_mont() | ||
| 238 | * does not let us specify the desired timing behaviour.) */ | ||
| 239 | |||
| 240 | if (!BN_add(&kq, &kq, dsa->q)) goto err; | ||
| 241 | if (BN_num_bits(&kq) <= BN_num_bits(dsa->q)) | ||
| 242 | { | ||
| 243 | if (!BN_add(&kq, &kq, dsa->q)) goto err; | ||
| 244 | } | ||
| 245 | |||
| 246 | K = &kq; | ||
| 247 | } | ||
| 248 | else | ||
| 249 | { | ||
| 250 | K = &k; | ||
| 251 | } | ||
| 252 | if (!dsa->meth->bn_mod_exp(dsa, r,dsa->g,K,dsa->p,ctx, | ||
| 253 | (BN_MONT_CTX *)dsa->method_mont_p)) goto err; | ||
| 254 | if (!BN_mod(r,r,dsa->q,ctx)) goto err; | ||
| 255 | |||
| 256 | /* Compute part of 's = inv(k) (m + xr) mod q' */ | ||
| 257 | if ((kinv=BN_mod_inverse(NULL,&k,dsa->q,ctx)) == NULL) goto err; | ||
| 258 | |||
| 259 | if (*kinvp != NULL) BN_clear_free(*kinvp); | ||
| 260 | *kinvp=kinv; | ||
| 261 | kinv=NULL; | ||
| 262 | if (*rp != NULL) BN_clear_free(*rp); | ||
| 263 | *rp=r; | ||
| 264 | ret=1; | ||
| 265 | err: | ||
| 266 | if (!ret) | ||
| 267 | { | ||
| 268 | DSAerr(DSA_F_DSA_SIGN_SETUP,ERR_R_BN_LIB); | ||
| 269 | if (kinv != NULL) BN_clear_free(kinv); | ||
| 270 | if (r != NULL) BN_clear_free(r); | ||
| 271 | } | ||
| 272 | if (ctx_in == NULL) BN_CTX_free(ctx); | ||
| 273 | if (kinv != NULL) BN_clear_free(kinv); | ||
| 274 | BN_clear_free(&k); | ||
| 275 | BN_clear_free(&kq); | ||
| 276 | return(ret); | ||
| 277 | } | ||
| 278 | |||
| 279 | static int dsa_do_verify(const unsigned char *dgst, FIPS_DSA_SIZE_T dgst_len, DSA_SIG *sig, | ||
| 280 | DSA *dsa) | ||
| 281 | { | ||
| 282 | BN_CTX *ctx; | ||
| 283 | BIGNUM u1,u2,t1; | ||
| 284 | BN_MONT_CTX *mont=NULL; | ||
| 285 | int ret = -1; | ||
| 286 | |||
| 287 | if (!dsa->p || !dsa->q || !dsa->g) | ||
| 288 | { | ||
| 289 | DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_MISSING_PARAMETERS); | ||
| 290 | return -1; | ||
| 291 | } | ||
| 292 | |||
| 293 | if(FIPS_selftest_failed()) | ||
| 294 | { | ||
| 295 | FIPSerr(FIPS_F_DSA_DO_VERIFY,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 296 | return -1; | ||
| 297 | } | ||
| 298 | |||
| 299 | BN_init(&u1); | ||
| 300 | BN_init(&u2); | ||
| 301 | BN_init(&t1); | ||
| 302 | |||
| 303 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 304 | |||
| 305 | if (BN_is_zero(sig->r) || sig->r->neg || BN_ucmp(sig->r, dsa->q) >= 0) | ||
| 306 | { | ||
| 307 | ret = 0; | ||
| 308 | goto err; | ||
| 309 | } | ||
| 310 | if (BN_is_zero(sig->s) || sig->s->neg || BN_ucmp(sig->s, dsa->q) >= 0) | ||
| 311 | { | ||
| 312 | ret = 0; | ||
| 313 | goto err; | ||
| 314 | } | ||
| 315 | |||
| 316 | /* Calculate W = inv(S) mod Q | ||
| 317 | * save W in u2 */ | ||
| 318 | if ((BN_mod_inverse(&u2,sig->s,dsa->q,ctx)) == NULL) goto err; | ||
| 319 | |||
| 320 | /* save M in u1 */ | ||
| 321 | if (BN_bin2bn(dgst,dgst_len,&u1) == NULL) goto err; | ||
| 322 | |||
| 323 | /* u1 = M * w mod q */ | ||
| 324 | if (!BN_mod_mul(&u1,&u1,&u2,dsa->q,ctx)) goto err; | ||
| 325 | |||
| 326 | /* u2 = r * w mod q */ | ||
| 327 | if (!BN_mod_mul(&u2,sig->r,&u2,dsa->q,ctx)) goto err; | ||
| 328 | |||
| 329 | |||
| 330 | if (dsa->flags & DSA_FLAG_CACHE_MONT_P) | ||
| 331 | { | ||
| 332 | mont = BN_MONT_CTX_set_locked( | ||
| 333 | (BN_MONT_CTX **)&dsa->method_mont_p, | ||
| 334 | CRYPTO_LOCK_DSA, dsa->p, ctx); | ||
| 335 | if (!mont) | ||
| 336 | goto err; | ||
| 337 | } | ||
| 338 | |||
| 339 | #if 0 | ||
| 340 | { | ||
| 341 | BIGNUM t2; | ||
| 342 | |||
| 343 | BN_init(&t2); | ||
| 344 | /* v = ( g^u1 * y^u2 mod p ) mod q */ | ||
| 345 | /* let t1 = g ^ u1 mod p */ | ||
| 346 | if (!BN_mod_exp_mont(&t1,dsa->g,&u1,dsa->p,ctx,mont)) goto err; | ||
| 347 | /* let t2 = y ^ u2 mod p */ | ||
| 348 | if (!BN_mod_exp_mont(&t2,dsa->pub_key,&u2,dsa->p,ctx,mont)) goto err; | ||
| 349 | /* let u1 = t1 * t2 mod p */ | ||
| 350 | if (!BN_mod_mul(&u1,&t1,&t2,dsa->p,ctx)) goto err_bn; | ||
| 351 | BN_free(&t2); | ||
| 352 | } | ||
| 353 | /* let u1 = u1 mod q */ | ||
| 354 | if (!BN_mod(&u1,&u1,dsa->q,ctx)) goto err; | ||
| 355 | #else | ||
| 356 | { | ||
| 357 | if (!dsa->meth->dsa_mod_exp(dsa, &t1,dsa->g,&u1,dsa->pub_key,&u2, | ||
| 358 | dsa->p,ctx,mont)) goto err; | ||
| 359 | /* BN_copy(&u1,&t1); */ | ||
| 360 | /* let u1 = u1 mod q */ | ||
| 361 | if (!BN_mod(&u1,&t1,dsa->q,ctx)) goto err; | ||
| 362 | } | ||
| 363 | #endif | ||
| 364 | /* V is now in u1. If the signature is correct, it will be | ||
| 365 | * equal to R. */ | ||
| 366 | ret=(BN_ucmp(&u1, sig->r) == 0); | ||
| 367 | |||
| 368 | err: | ||
| 369 | if (ret != 1) DSAerr(DSA_F_DSA_DO_VERIFY,ERR_R_BN_LIB); | ||
| 370 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 371 | BN_free(&u1); | ||
| 372 | BN_free(&u2); | ||
| 373 | BN_free(&t1); | ||
| 374 | return(ret); | ||
| 375 | } | ||
| 376 | |||
| 377 | static int dsa_init(DSA *dsa) | ||
| 378 | { | ||
| 379 | dsa->flags|=DSA_FLAG_CACHE_MONT_P; | ||
| 380 | return(1); | ||
| 381 | } | ||
| 382 | |||
| 383 | static int dsa_finish(DSA *dsa) | ||
| 384 | { | ||
| 385 | if(dsa->method_mont_p) | ||
| 386 | BN_MONT_CTX_free((BN_MONT_CTX *)dsa->method_mont_p); | ||
| 387 | return(1); | ||
| 388 | } | ||
| 389 | |||
| 390 | static int dsa_mod_exp(DSA *dsa, BIGNUM *rr, BIGNUM *a1, BIGNUM *p1, | ||
| 391 | BIGNUM *a2, BIGNUM *p2, BIGNUM *m, BN_CTX *ctx, | ||
| 392 | BN_MONT_CTX *in_mont) | ||
| 393 | { | ||
| 394 | return BN_mod_exp2_mont(rr, a1, p1, a2, p2, m, ctx, in_mont); | ||
| 395 | } | ||
| 396 | |||
| 397 | static int dsa_bn_mod_exp(DSA *dsa, BIGNUM *r, BIGNUM *a, const BIGNUM *p, | ||
| 398 | const BIGNUM *m, BN_CTX *ctx, | ||
| 399 | BN_MONT_CTX *m_ctx) | ||
| 400 | { | ||
| 401 | return BN_mod_exp_mont(r, a, p, m, ctx, m_ctx); | ||
| 402 | } | ||
| 403 | |||
| 404 | #else /* ndef OPENSSL_FIPS */ | ||
| 405 | |||
| 406 | static void *dummy=&dummy; | ||
| 407 | |||
| 408 | #endif /* ndef OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_selftest.c b/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_selftest.c deleted file mode 100644 index 795fda9587..0000000000 --- a/src/lib/libssl/src/fips-1.0/dsa/fips_dsa_selftest.c +++ /dev/null | |||
| @@ -1,168 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsatest.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <string.h> | ||
| 60 | #include <openssl/crypto.h> | ||
| 61 | #include <openssl/dsa.h> | ||
| 62 | #include <openssl/fips.h> | ||
| 63 | #include <openssl/err.h> | ||
| 64 | |||
| 65 | #ifdef OPENSSL_FIPS | ||
| 66 | |||
| 67 | /* seed, out_p, out_q, out_g are taken from the updated Appendix 5 to | ||
| 68 | * FIPS PUB 186 and also appear in Appendix 5 to FIPS PIB 186-1 */ | ||
| 69 | static unsigned char seed[20]={ | ||
| 70 | 0xd5,0x01,0x4e,0x4b,0x60,0xef,0x2b,0xa8,0xb6,0x21,0x1b,0x40, | ||
| 71 | 0x62,0xba,0x32,0x24,0xe0,0x42,0x7d,0xd3, | ||
| 72 | }; | ||
| 73 | |||
| 74 | static const unsigned char out_p[]={ | ||
| 75 | 0x8d,0xf2,0xa4,0x94,0x49,0x22,0x76,0xaa, | ||
| 76 | 0x3d,0x25,0x75,0x9b,0xb0,0x68,0x69,0xcb, | ||
| 77 | 0xea,0xc0,0xd8,0x3a,0xfb,0x8d,0x0c,0xf7, | ||
| 78 | 0xcb,0xb8,0x32,0x4f,0x0d,0x78,0x82,0xe5, | ||
| 79 | 0xd0,0x76,0x2f,0xc5,0xb7,0x21,0x0e,0xaf, | ||
| 80 | 0xc2,0xe9,0xad,0xac,0x32,0xab,0x7a,0xac, | ||
| 81 | 0x49,0x69,0x3d,0xfb,0xf8,0x37,0x24,0xc2, | ||
| 82 | 0xec,0x07,0x36,0xee,0x31,0xc8,0x02,0x91, | ||
| 83 | }; | ||
| 84 | |||
| 85 | static const unsigned char out_q[]={ | ||
| 86 | 0xc7,0x73,0x21,0x8c,0x73,0x7e,0xc8,0xee, | ||
| 87 | 0x99,0x3b,0x4f,0x2d,0xed,0x30,0xf4,0x8e, | ||
| 88 | 0xda,0xce,0x91,0x5f, | ||
| 89 | }; | ||
| 90 | |||
| 91 | static const unsigned char out_g[]={ | ||
| 92 | 0x62,0x6d,0x02,0x78,0x39,0xea,0x0a,0x13, | ||
| 93 | 0x41,0x31,0x63,0xa5,0x5b,0x4c,0xb5,0x00, | ||
| 94 | 0x29,0x9d,0x55,0x22,0x95,0x6c,0xef,0xcb, | ||
| 95 | 0x3b,0xff,0x10,0xf3,0x99,0xce,0x2c,0x2e, | ||
| 96 | 0x71,0xcb,0x9d,0xe5,0xfa,0x24,0xba,0xbf, | ||
| 97 | 0x58,0xe5,0xb7,0x95,0x21,0x92,0x5c,0x9c, | ||
| 98 | 0xc4,0x2e,0x9f,0x6f,0x46,0x4b,0x08,0x8c, | ||
| 99 | 0xc5,0x72,0xaf,0x53,0xe6,0xd7,0x88,0x02, | ||
| 100 | }; | ||
| 101 | |||
| 102 | static const unsigned char str1[]="12345678901234567890"; | ||
| 103 | |||
| 104 | void FIPS_corrupt_dsa() | ||
| 105 | { | ||
| 106 | ++seed[0]; | ||
| 107 | } | ||
| 108 | |||
| 109 | int FIPS_selftest_dsa() | ||
| 110 | { | ||
| 111 | DSA *dsa=NULL; | ||
| 112 | int counter,i,j; | ||
| 113 | unsigned char buf[256]; | ||
| 114 | unsigned long h; | ||
| 115 | unsigned char sig[256]; | ||
| 116 | unsigned int siglen; | ||
| 117 | |||
| 118 | dsa=DSA_generate_parameters(512,seed,20,&counter,&h,NULL,NULL); | ||
| 119 | |||
| 120 | if(dsa == NULL) | ||
| 121 | { | ||
| 122 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 123 | return 0; | ||
| 124 | } | ||
| 125 | if (counter != 105) | ||
| 126 | { | ||
| 127 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 128 | return 0; | ||
| 129 | } | ||
| 130 | if (h != 2) | ||
| 131 | { | ||
| 132 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 133 | return 0; | ||
| 134 | } | ||
| 135 | i=BN_bn2bin(dsa->q,buf); | ||
| 136 | j=sizeof(out_q); | ||
| 137 | if (i != j || memcmp(buf,out_q,i) != 0) | ||
| 138 | { | ||
| 139 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 140 | return 0; | ||
| 141 | } | ||
| 142 | |||
| 143 | i=BN_bn2bin(dsa->p,buf); | ||
| 144 | j=sizeof(out_p); | ||
| 145 | if (i != j || memcmp(buf,out_p,i) != 0) | ||
| 146 | { | ||
| 147 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 148 | return 0; | ||
| 149 | } | ||
| 150 | |||
| 151 | i=BN_bn2bin(dsa->g,buf); | ||
| 152 | j=sizeof(out_g); | ||
| 153 | if (i != j || memcmp(buf,out_g,i) != 0) | ||
| 154 | { | ||
| 155 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 156 | return 0; | ||
| 157 | } | ||
| 158 | DSA_generate_key(dsa); | ||
| 159 | DSA_sign(0, str1, 20, sig, &siglen, dsa); | ||
| 160 | if(DSA_verify(0, str1, 20, sig, siglen, dsa) != 1) | ||
| 161 | { | ||
| 162 | FIPSerr(FIPS_F_FIPS_SELFTEST_DSA,FIPS_R_SELFTEST_FAILED); | ||
| 163 | return 0; | ||
| 164 | } | ||
| 165 | DSA_free(dsa); | ||
| 166 | return 1; | ||
| 167 | } | ||
| 168 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/dsa/fips_dsatest.c b/src/lib/libssl/src/fips-1.0/dsa/fips_dsatest.c deleted file mode 100644 index 5970b201e9..0000000000 --- a/src/lib/libssl/src/fips-1.0/dsa/fips_dsatest.c +++ /dev/null | |||
| @@ -1,257 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsatest.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <stdlib.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <sys/types.h> | ||
| 63 | #include <sys/stat.h> | ||
| 64 | |||
| 65 | #include "e_os.h" | ||
| 66 | |||
| 67 | #include <openssl/crypto.h> | ||
| 68 | #include <openssl/rand.h> | ||
| 69 | #include <openssl/bio.h> | ||
| 70 | #include <openssl/err.h> | ||
| 71 | #ifndef OPENSSL_NO_ENGINE | ||
| 72 | #include <openssl/engine.h> | ||
| 73 | #endif | ||
| 74 | #include <openssl/fips.h> | ||
| 75 | #include <openssl/fips_rand.h> | ||
| 76 | |||
| 77 | #if defined(OPENSSL_NO_DSA) || !defined(OPENSSL_FIPS) | ||
| 78 | int main(int argc, char *argv[]) | ||
| 79 | { | ||
| 80 | printf("No FIPS DSA support\n"); | ||
| 81 | return(0); | ||
| 82 | } | ||
| 83 | #else | ||
| 84 | #include <openssl/dsa.h> | ||
| 85 | |||
| 86 | #ifdef OPENSSL_SYS_WIN16 | ||
| 87 | #define MS_CALLBACK _far _loadds | ||
| 88 | #else | ||
| 89 | #define MS_CALLBACK | ||
| 90 | #endif | ||
| 91 | |||
| 92 | static void MS_CALLBACK dsa_cb(int p, int n, void *arg); | ||
| 93 | |||
| 94 | /* seed, out_p, out_q, out_g are taken from the updated Appendix 5 to | ||
| 95 | * FIPS PUB 186 and also appear in Appendix 5 to FIPS PIB 186-1 */ | ||
| 96 | static unsigned char seed[20]={ | ||
| 97 | 0xd5,0x01,0x4e,0x4b,0x60,0xef,0x2b,0xa8,0xb6,0x21,0x1b,0x40, | ||
| 98 | 0x62,0xba,0x32,0x24,0xe0,0x42,0x7d,0xd3, | ||
| 99 | }; | ||
| 100 | |||
| 101 | static unsigned char out_p[]={ | ||
| 102 | 0x8d,0xf2,0xa4,0x94,0x49,0x22,0x76,0xaa, | ||
| 103 | 0x3d,0x25,0x75,0x9b,0xb0,0x68,0x69,0xcb, | ||
| 104 | 0xea,0xc0,0xd8,0x3a,0xfb,0x8d,0x0c,0xf7, | ||
| 105 | 0xcb,0xb8,0x32,0x4f,0x0d,0x78,0x82,0xe5, | ||
| 106 | 0xd0,0x76,0x2f,0xc5,0xb7,0x21,0x0e,0xaf, | ||
| 107 | 0xc2,0xe9,0xad,0xac,0x32,0xab,0x7a,0xac, | ||
| 108 | 0x49,0x69,0x3d,0xfb,0xf8,0x37,0x24,0xc2, | ||
| 109 | 0xec,0x07,0x36,0xee,0x31,0xc8,0x02,0x91, | ||
| 110 | }; | ||
| 111 | |||
| 112 | static unsigned char out_q[]={ | ||
| 113 | 0xc7,0x73,0x21,0x8c,0x73,0x7e,0xc8,0xee, | ||
| 114 | 0x99,0x3b,0x4f,0x2d,0xed,0x30,0xf4,0x8e, | ||
| 115 | 0xda,0xce,0x91,0x5f, | ||
| 116 | }; | ||
| 117 | |||
| 118 | static unsigned char out_g[]={ | ||
| 119 | 0x62,0x6d,0x02,0x78,0x39,0xea,0x0a,0x13, | ||
| 120 | 0x41,0x31,0x63,0xa5,0x5b,0x4c,0xb5,0x00, | ||
| 121 | 0x29,0x9d,0x55,0x22,0x95,0x6c,0xef,0xcb, | ||
| 122 | 0x3b,0xff,0x10,0xf3,0x99,0xce,0x2c,0x2e, | ||
| 123 | 0x71,0xcb,0x9d,0xe5,0xfa,0x24,0xba,0xbf, | ||
| 124 | 0x58,0xe5,0xb7,0x95,0x21,0x92,0x5c,0x9c, | ||
| 125 | 0xc4,0x2e,0x9f,0x6f,0x46,0x4b,0x08,0x8c, | ||
| 126 | 0xc5,0x72,0xaf,0x53,0xe6,0xd7,0x88,0x02, | ||
| 127 | }; | ||
| 128 | |||
| 129 | static const unsigned char str1[]="12345678901234567890"; | ||
| 130 | |||
| 131 | static const char rnd_seed[] = "string to make the random number generator think it has entropy"; | ||
| 132 | static const unsigned char rnd_key1[]="12345678"; | ||
| 133 | static const unsigned char rnd_key2[]="abcdefgh"; | ||
| 134 | |||
| 135 | static BIO *bio_err=NULL; | ||
| 136 | |||
| 137 | int main(int argc, char **argv) | ||
| 138 | { | ||
| 139 | DSA *dsa=NULL; | ||
| 140 | int counter,ret=0,i,j; | ||
| 141 | unsigned char buf[256]; | ||
| 142 | unsigned long h; | ||
| 143 | unsigned char sig[256]; | ||
| 144 | unsigned int siglen; | ||
| 145 | |||
| 146 | if (bio_err == NULL) | ||
| 147 | bio_err=BIO_new_fp(stderr,BIO_NOCLOSE); | ||
| 148 | |||
| 149 | #ifdef OPENSSL_FIPS | ||
| 150 | if(!FIPS_mode_set(1)) | ||
| 151 | { | ||
| 152 | ERR_print_errors(bio_err); | ||
| 153 | EXIT(1); | ||
| 154 | } | ||
| 155 | #endif | ||
| 156 | CRYPTO_malloc_debug_init(); | ||
| 157 | CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL); | ||
| 158 | CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON); | ||
| 159 | |||
| 160 | ERR_load_crypto_strings(); | ||
| 161 | FIPS_set_prng_key(rnd_key1,rnd_key2); | ||
| 162 | RAND_seed(rnd_seed, sizeof rnd_seed); | ||
| 163 | |||
| 164 | BIO_printf(bio_err,"test generation of DSA parameters\n"); | ||
| 165 | |||
| 166 | dsa=DSA_generate_parameters(512,seed,20,&counter,&h,dsa_cb,bio_err); | ||
| 167 | |||
| 168 | BIO_printf(bio_err,"seed\n"); | ||
| 169 | for (i=0; i<20; i+=4) | ||
| 170 | { | ||
| 171 | BIO_printf(bio_err,"%02X%02X%02X%02X ", | ||
| 172 | seed[i],seed[i+1],seed[i+2],seed[i+3]); | ||
| 173 | } | ||
| 174 | BIO_printf(bio_err,"\ncounter=%d h=%d\n",counter,h); | ||
| 175 | |||
| 176 | if (dsa == NULL) goto end; | ||
| 177 | DSA_print(bio_err,dsa,0); | ||
| 178 | if (counter != 105) | ||
| 179 | { | ||
| 180 | BIO_printf(bio_err,"counter should be 105\n"); | ||
| 181 | goto end; | ||
| 182 | } | ||
| 183 | if (h != 2) | ||
| 184 | { | ||
| 185 | BIO_printf(bio_err,"h should be 2\n"); | ||
| 186 | goto end; | ||
| 187 | } | ||
| 188 | |||
| 189 | i=BN_bn2bin(dsa->q,buf); | ||
| 190 | j=sizeof(out_q); | ||
| 191 | if ((i != j) || (memcmp(buf,out_q,i) != 0)) | ||
| 192 | { | ||
| 193 | BIO_printf(bio_err,"q value is wrong\n"); | ||
| 194 | goto end; | ||
| 195 | } | ||
| 196 | |||
| 197 | i=BN_bn2bin(dsa->p,buf); | ||
| 198 | j=sizeof(out_p); | ||
| 199 | if ((i != j) || (memcmp(buf,out_p,i) != 0)) | ||
| 200 | { | ||
| 201 | BIO_printf(bio_err,"p value is wrong\n"); | ||
| 202 | goto end; | ||
| 203 | } | ||
| 204 | |||
| 205 | i=BN_bn2bin(dsa->g,buf); | ||
| 206 | j=sizeof(out_g); | ||
| 207 | if ((i != j) || (memcmp(buf,out_g,i) != 0)) | ||
| 208 | { | ||
| 209 | BIO_printf(bio_err,"g value is wrong\n"); | ||
| 210 | goto end; | ||
| 211 | } | ||
| 212 | DSA_generate_key(dsa); | ||
| 213 | DSA_sign(0, str1, 20, sig, &siglen, dsa); | ||
| 214 | if (DSA_verify(0, str1, 20, sig, siglen, dsa) == 1) | ||
| 215 | ret=1; | ||
| 216 | end: | ||
| 217 | if (!ret) | ||
| 218 | ERR_print_errors(bio_err); | ||
| 219 | if (dsa != NULL) DSA_free(dsa); | ||
| 220 | CRYPTO_cleanup_all_ex_data(); | ||
| 221 | ERR_remove_state(0); | ||
| 222 | ERR_free_strings(); | ||
| 223 | CRYPTO_mem_leaks(bio_err); | ||
| 224 | if (bio_err != NULL) | ||
| 225 | { | ||
| 226 | BIO_free(bio_err); | ||
| 227 | bio_err = NULL; | ||
| 228 | } | ||
| 229 | EXIT(!ret); | ||
| 230 | return(!ret); | ||
| 231 | } | ||
| 232 | |||
| 233 | static int cb_exit(int ec) | ||
| 234 | { | ||
| 235 | EXIT(ec); | ||
| 236 | return(0); /* To keep some compilers quiet */ | ||
| 237 | } | ||
| 238 | |||
| 239 | static void MS_CALLBACK dsa_cb(int p, int n, void *arg) | ||
| 240 | { | ||
| 241 | char c='*'; | ||
| 242 | static int ok=0,num=0; | ||
| 243 | |||
| 244 | if (p == 0) { c='.'; num++; }; | ||
| 245 | if (p == 1) c='+'; | ||
| 246 | if (p == 2) { c='*'; ok++; } | ||
| 247 | if (p == 3) c='\n'; | ||
| 248 | BIO_write(arg,&c,1); | ||
| 249 | (void)BIO_flush(arg); | ||
| 250 | |||
| 251 | if (!ok && (p == 0) && (num > 1)) | ||
| 252 | { | ||
| 253 | BIO_printf((BIO *)arg,"error in dsatest\n"); | ||
| 254 | cb_exit(1); | ||
| 255 | } | ||
| 256 | } | ||
| 257 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/dsa/fips_dssvs.c b/src/lib/libssl/src/fips-1.0/dsa/fips_dssvs.c deleted file mode 100644 index 560d635981..0000000000 --- a/src/lib/libssl/src/fips-1.0/dsa/fips_dssvs.c +++ /dev/null | |||
| @@ -1,319 +0,0 @@ | |||
| 1 | #include <openssl/opensslconf.h> | ||
| 2 | |||
| 3 | #ifndef OPENSSL_FIPS | ||
| 4 | #include <stdio.h> | ||
| 5 | |||
| 6 | int main() | ||
| 7 | { | ||
| 8 | printf("No FIPS DSA support\n"); | ||
| 9 | return(0); | ||
| 10 | } | ||
| 11 | #else | ||
| 12 | |||
| 13 | #include <openssl/bn.h> | ||
| 14 | #include <openssl/dsa.h> | ||
| 15 | #include <openssl/fips.h> | ||
| 16 | #include <openssl/err.h> | ||
| 17 | #include <openssl/fips_sha.h> | ||
| 18 | #include <string.h> | ||
| 19 | |||
| 20 | int hex2bin(const char *in, unsigned char *out) | ||
| 21 | { | ||
| 22 | int n1, n2; | ||
| 23 | unsigned char ch; | ||
| 24 | |||
| 25 | for (n1=0,n2=0 ; in[n1] && in[n1] != '\n' ; ) | ||
| 26 | { /* first byte */ | ||
| 27 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 28 | ch = in[n1++] - '0'; | ||
| 29 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 30 | ch = in[n1++] - 'A' + 10; | ||
| 31 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 32 | ch = in[n1++] - 'a' + 10; | ||
| 33 | else | ||
| 34 | return -1; | ||
| 35 | if(!in[n1]) | ||
| 36 | { | ||
| 37 | out[n2++]=ch; | ||
| 38 | break; | ||
| 39 | } | ||
| 40 | out[n2] = ch << 4; | ||
| 41 | /* second byte */ | ||
| 42 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 43 | ch = in[n1++] - '0'; | ||
| 44 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 45 | ch = in[n1++] - 'A' + 10; | ||
| 46 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 47 | ch = in[n1++] - 'a' + 10; | ||
| 48 | else | ||
| 49 | return -1; | ||
| 50 | out[n2++] |= ch; | ||
| 51 | } | ||
| 52 | return n2; | ||
| 53 | } | ||
| 54 | |||
| 55 | BIGNUM *hex2bn(const char *in) | ||
| 56 | { | ||
| 57 | BIGNUM *p=BN_new(); | ||
| 58 | |||
| 59 | BN_hex2bn(&p,in); | ||
| 60 | |||
| 61 | return p; | ||
| 62 | } | ||
| 63 | |||
| 64 | int bin2hex(const unsigned char *in,int len,char *out) | ||
| 65 | { | ||
| 66 | int n1, n2; | ||
| 67 | unsigned char ch; | ||
| 68 | |||
| 69 | for (n1=0,n2=0 ; n1 < len ; ++n1) | ||
| 70 | { | ||
| 71 | ch=in[n1] >> 4; | ||
| 72 | if (ch <= 0x09) | ||
| 73 | out[n2++]=ch+'0'; | ||
| 74 | else | ||
| 75 | out[n2++]=ch-10+'a'; | ||
| 76 | ch=in[n1] & 0x0f; | ||
| 77 | if(ch <= 0x09) | ||
| 78 | out[n2++]=ch+'0'; | ||
| 79 | else | ||
| 80 | out[n2++]=ch-10+'a'; | ||
| 81 | } | ||
| 82 | out[n2]='\0'; | ||
| 83 | return n2; | ||
| 84 | } | ||
| 85 | |||
| 86 | void pv(const char *tag,const unsigned char *val,int len) | ||
| 87 | { | ||
| 88 | char obuf[2048]; | ||
| 89 | |||
| 90 | bin2hex(val,len,obuf); | ||
| 91 | printf("%s = %s\n",tag,obuf); | ||
| 92 | } | ||
| 93 | |||
| 94 | void pbn(const char *tag,const BIGNUM *val) | ||
| 95 | { | ||
| 96 | printf("%s = %s\n",tag,BN_bn2hex(val)); | ||
| 97 | } | ||
| 98 | |||
| 99 | void primes() | ||
| 100 | { | ||
| 101 | char buf[10240]; | ||
| 102 | |||
| 103 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 104 | { | ||
| 105 | fputs(buf,stdout); | ||
| 106 | if(!strncmp(buf,"Prime= ",7)) | ||
| 107 | { | ||
| 108 | BIGNUM *pp; | ||
| 109 | |||
| 110 | pp=BN_new(); | ||
| 111 | BN_hex2bn(&pp,buf+7); | ||
| 112 | printf("result= %c\n", | ||
| 113 | BN_is_prime(pp,20,NULL,NULL,NULL) ? 'P' : 'F'); | ||
| 114 | } | ||
| 115 | } | ||
| 116 | } | ||
| 117 | |||
| 118 | void pqg() | ||
| 119 | { | ||
| 120 | char buf[1024]; | ||
| 121 | int nmod=0; | ||
| 122 | |||
| 123 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 124 | { | ||
| 125 | if(!strncmp(buf,"[mod = ",7)) | ||
| 126 | nmod=atoi(buf+7); | ||
| 127 | else if(!strncmp(buf,"N = ",4)) | ||
| 128 | { | ||
| 129 | int n=atoi(buf+4); | ||
| 130 | |||
| 131 | printf("[mod = %d]\n\n",nmod); | ||
| 132 | |||
| 133 | while(n--) | ||
| 134 | { | ||
| 135 | unsigned char seed[20]; | ||
| 136 | DSA *dsa; | ||
| 137 | int counter; | ||
| 138 | unsigned long h; | ||
| 139 | |||
| 140 | dsa=DSA_generate_parameters(nmod,seed,0,&counter,&h,NULL,NULL); | ||
| 141 | printf("P = %s\n",BN_bn2hex(dsa->p)); | ||
| 142 | printf("Q = %s\n",BN_bn2hex(dsa->q)); | ||
| 143 | printf("G = %s\n",BN_bn2hex(dsa->g)); | ||
| 144 | pv("Seed",seed,20); | ||
| 145 | printf("c = %d\n",counter); | ||
| 146 | printf("H = %lx\n",h); | ||
| 147 | putc('\n',stdout); | ||
| 148 | } | ||
| 149 | } | ||
| 150 | else | ||
| 151 | fputs(buf,stdout); | ||
| 152 | } | ||
| 153 | } | ||
| 154 | |||
| 155 | void keypair() | ||
| 156 | { | ||
| 157 | char buf[1024]; | ||
| 158 | int nmod=0; | ||
| 159 | |||
| 160 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 161 | { | ||
| 162 | if(!strncmp(buf,"[mod = ",7)) | ||
| 163 | nmod=atoi(buf+7); | ||
| 164 | else if(!strncmp(buf,"N = ",4)) | ||
| 165 | { | ||
| 166 | DSA *dsa; | ||
| 167 | int n=atoi(buf+4); | ||
| 168 | |||
| 169 | printf("[mod = %d]\n\n",nmod); | ||
| 170 | |||
| 171 | dsa=DSA_generate_parameters(nmod,NULL,0,NULL,NULL,NULL,NULL); | ||
| 172 | pbn("P",dsa->p); | ||
| 173 | pbn("Q",dsa->q); | ||
| 174 | pbn("G",dsa->g); | ||
| 175 | putc('\n',stdout); | ||
| 176 | |||
| 177 | while(n--) | ||
| 178 | { | ||
| 179 | DSA_generate_key(dsa); | ||
| 180 | |||
| 181 | pbn("X",dsa->priv_key); | ||
| 182 | pbn("Y",dsa->pub_key); | ||
| 183 | putc('\n',stdout); | ||
| 184 | } | ||
| 185 | } | ||
| 186 | } | ||
| 187 | } | ||
| 188 | |||
| 189 | void siggen() | ||
| 190 | { | ||
| 191 | char buf[1024]; | ||
| 192 | int nmod=0; | ||
| 193 | DSA *dsa=NULL; | ||
| 194 | |||
| 195 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 196 | { | ||
| 197 | if(!strncmp(buf,"[mod = ",7)) | ||
| 198 | { | ||
| 199 | nmod=atoi(buf+7); | ||
| 200 | printf("[mod = %d]\n\n",nmod); | ||
| 201 | |||
| 202 | dsa=DSA_generate_parameters(nmod,NULL,0,NULL,NULL,NULL,NULL); | ||
| 203 | pbn("P",dsa->p); | ||
| 204 | pbn("Q",dsa->q); | ||
| 205 | pbn("G",dsa->g); | ||
| 206 | putc('\n',stdout); | ||
| 207 | } | ||
| 208 | else if(!strncmp(buf,"Msg = ",6)) | ||
| 209 | { | ||
| 210 | unsigned char msg[1024]; | ||
| 211 | unsigned char hash[20]; | ||
| 212 | int n; | ||
| 213 | DSA_SIG *sig; | ||
| 214 | |||
| 215 | n=hex2bin(buf+6,msg); | ||
| 216 | pv("Msg",msg,n); | ||
| 217 | |||
| 218 | DSA_generate_key(dsa); | ||
| 219 | pbn("Y",dsa->pub_key); | ||
| 220 | |||
| 221 | SHA1(msg,n,hash); | ||
| 222 | sig=DSA_do_sign(hash,sizeof hash,dsa); | ||
| 223 | pbn("R",sig->r); | ||
| 224 | pbn("S",sig->s); | ||
| 225 | putc('\n',stdout); | ||
| 226 | } | ||
| 227 | } | ||
| 228 | } | ||
| 229 | |||
| 230 | void sigver() | ||
| 231 | { | ||
| 232 | DSA *dsa=NULL; | ||
| 233 | char buf[1024]; | ||
| 234 | int nmod=0; | ||
| 235 | unsigned char hash[20]; | ||
| 236 | DSA_SIG *sig=DSA_SIG_new(); | ||
| 237 | |||
| 238 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 239 | { | ||
| 240 | if(!strncmp(buf,"[mod = ",7)) | ||
| 241 | { | ||
| 242 | nmod=atoi(buf+7); | ||
| 243 | if(dsa) | ||
| 244 | DSA_free(dsa); | ||
| 245 | dsa=DSA_new(); | ||
| 246 | } | ||
| 247 | else if(!strncmp(buf,"P = ",4)) | ||
| 248 | dsa->p=hex2bn(buf+4); | ||
| 249 | else if(!strncmp(buf,"Q = ",4)) | ||
| 250 | dsa->q=hex2bn(buf+4); | ||
| 251 | else if(!strncmp(buf,"G = ",4)) | ||
| 252 | { | ||
| 253 | dsa->g=hex2bn(buf+4); | ||
| 254 | |||
| 255 | printf("[mod = %d]\n\n",nmod); | ||
| 256 | pbn("P",dsa->p); | ||
| 257 | pbn("Q",dsa->q); | ||
| 258 | pbn("G",dsa->g); | ||
| 259 | putc('\n',stdout); | ||
| 260 | } | ||
| 261 | else if(!strncmp(buf,"Msg = ",6)) | ||
| 262 | { | ||
| 263 | unsigned char msg[1024]; | ||
| 264 | int n; | ||
| 265 | |||
| 266 | n=hex2bin(buf+6,msg); | ||
| 267 | pv("Msg",msg,n); | ||
| 268 | SHA1(msg,n,hash); | ||
| 269 | } | ||
| 270 | else if(!strncmp(buf,"Y = ",4)) | ||
| 271 | dsa->pub_key=hex2bn(buf+4); | ||
| 272 | else if(!strncmp(buf,"R = ",4)) | ||
| 273 | sig->r=hex2bn(buf+4); | ||
| 274 | else if(!strncmp(buf,"S = ",4)) | ||
| 275 | { | ||
| 276 | sig->s=hex2bn(buf+4); | ||
| 277 | |||
| 278 | pbn("Y",dsa->pub_key); | ||
| 279 | pbn("R",sig->r); | ||
| 280 | pbn("S",sig->s); | ||
| 281 | printf("Result = %c\n",DSA_do_verify(hash,sizeof hash,sig,dsa) | ||
| 282 | ? 'P' : 'F'); | ||
| 283 | putc('\n',stdout); | ||
| 284 | } | ||
| 285 | } | ||
| 286 | } | ||
| 287 | |||
| 288 | int main(int argc,char **argv) | ||
| 289 | { | ||
| 290 | if(argc != 2) | ||
| 291 | { | ||
| 292 | fprintf(stderr,"%s [prime|pqg]\n",argv[0]); | ||
| 293 | exit(1); | ||
| 294 | } | ||
| 295 | if(!FIPS_mode_set(1)) | ||
| 296 | { | ||
| 297 | ERR_load_crypto_strings(); | ||
| 298 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 299 | exit(1); | ||
| 300 | } | ||
| 301 | if(!strcmp(argv[1],"prime")) | ||
| 302 | primes(); | ||
| 303 | else if(!strcmp(argv[1],"pqg")) | ||
| 304 | pqg(); | ||
| 305 | else if(!strcmp(argv[1],"keypair")) | ||
| 306 | keypair(); | ||
| 307 | else if(!strcmp(argv[1],"siggen")) | ||
| 308 | siggen(); | ||
| 309 | else if(!strcmp(argv[1],"sigver")) | ||
| 310 | sigver(); | ||
| 311 | else | ||
| 312 | { | ||
| 313 | fprintf(stderr,"Don't know how to %s.\n",argv[1]); | ||
| 314 | exit(1); | ||
| 315 | } | ||
| 316 | |||
| 317 | return 0; | ||
| 318 | } | ||
| 319 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips-lib.com b/src/lib/libssl/src/fips-1.0/fips-lib.com deleted file mode 100644 index 539117b2ed..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips-lib.com +++ /dev/null | |||
| @@ -1,1196 +0,0 @@ | |||
| 1 | $! | ||
| 2 | $! FIPS-LIB.COM | ||
| 3 | $! Written By: Robert Byer | ||
| 4 | $! Vice-President | ||
| 5 | $! A-Com Computing, Inc. | ||
| 6 | $! byer@mail.all-net.net | ||
| 7 | $! | ||
| 8 | $! Changes by Richard Levitte <richard@levitte.org> | ||
| 9 | $! | ||
| 10 | $! This command files compiles and creates the FIPS parts of the | ||
| 11 | $! "[.xxx.EXE.CRYPTO]LIBCRYPTO.OLB" library for OpenSSL. The "xxx" | ||
| 12 | $! denotes the machine architecture of AXP or VAX. | ||
| 13 | $! | ||
| 14 | $! It was re-written so it would try to determine what "C" compiler to use | ||
| 15 | $! or you can specify which "C" compiler to use. | ||
| 16 | $! | ||
| 17 | $! Specify the following as P1 to build just that part or ALL to just | ||
| 18 | $! build everything. | ||
| 19 | $! | ||
| 20 | $! LIBRARY To just compile the [.xxx.EXE.CRYPTO]LIBCRYPTO.OLB Library. | ||
| 21 | $! APPS To just compile the [.xxx.EXE.CRYPTO]*.EXE | ||
| 22 | $! ALL To do both LIBRARY and APPS | ||
| 23 | $! | ||
| 24 | $! Specify DEBUG or NODEBUG as P2 to compile with or without debugger | ||
| 25 | $! information. | ||
| 26 | $! | ||
| 27 | $! Specify which compiler at P3 to try to compile under. | ||
| 28 | $! | ||
| 29 | $! VAXC For VAX C. | ||
| 30 | $! DECC For DEC C. | ||
| 31 | $! GNUC For GNU C. | ||
| 32 | $! | ||
| 33 | $! If you don't speficy a compiler, it will try to determine which | ||
| 34 | $! "C" compiler to use. | ||
| 35 | $! | ||
| 36 | $! P4, if defined, sets a TCP/IP library to use, through one of the following | ||
| 37 | $! keywords: | ||
| 38 | $! | ||
| 39 | $! UCX for UCX | ||
| 40 | $! TCPIP for TCPIP (post UCX) | ||
| 41 | $! SOCKETSHR for SOCKETSHR+NETLIB | ||
| 42 | $! | ||
| 43 | $! P5, if defined, sets a compiler thread NOT needed on OpenVMS 7.1 (and up) | ||
| 44 | $! | ||
| 45 | $! P6, if defined, sets a choice of crypto methods to compile. | ||
| 46 | $! WARNING: this should only be done to recompile some part of an already | ||
| 47 | $! fully compiled library. | ||
| 48 | $! | ||
| 49 | $! | ||
| 50 | $! Define A TCP/IP Library That We Will Need To Link To. | ||
| 51 | $! (That Is, If We Need To Link To One.) | ||
| 52 | $! | ||
| 53 | $ TCPIP_LIB = "" | ||
| 54 | $! | ||
| 55 | $! Check Which Architecture We Are Using. | ||
| 56 | $! | ||
| 57 | $ IF (F$GETSYI("CPU").GE.128) | ||
| 58 | $ THEN | ||
| 59 | $! | ||
| 60 | $! The Architecture Is AXP | ||
| 61 | $! | ||
| 62 | $ ARCH := AXP | ||
| 63 | $! | ||
| 64 | $! Else... | ||
| 65 | $! | ||
| 66 | $ ELSE | ||
| 67 | $! | ||
| 68 | $! The Architecture Is VAX. | ||
| 69 | $! | ||
| 70 | $ ARCH := VAX | ||
| 71 | $! | ||
| 72 | $! End The Architecture Check. | ||
| 73 | $! | ||
| 74 | $ ENDIF | ||
| 75 | $! | ||
| 76 | $! Define The Different Encryption Types. | ||
| 77 | $! | ||
| 78 | $ ENCRYPT_TYPES = "Basic,SHA,RAND,DES,AES,DSA,RSA,DH,HMAC" | ||
| 79 | $! | ||
| 80 | $! Check To Make Sure We Have Valid Command Line Parameters. | ||
| 81 | $! | ||
| 82 | $ GOSUB CHECK_OPTIONS | ||
| 83 | $! | ||
| 84 | $! Initialise logical names and such | ||
| 85 | $! | ||
| 86 | $ GOSUB INITIALISE | ||
| 87 | $! | ||
| 88 | $! Tell The User What Kind of Machine We Run On. | ||
| 89 | $! | ||
| 90 | $ WRITE SYS$OUTPUT "Compiling On A ",ARCH," Machine." | ||
| 91 | $! | ||
| 92 | $! Define The OBJ Directory. | ||
| 93 | $! | ||
| 94 | $ OBJ_DIR := SYS$DISK:[-.'ARCH'.OBJ.CRYPTO] | ||
| 95 | $! | ||
| 96 | $! Check To See If The Architecture Specific OBJ Directory Exists. | ||
| 97 | $! | ||
| 98 | $ IF (F$PARSE(OBJ_DIR).EQS."") | ||
| 99 | $ THEN | ||
| 100 | $! | ||
| 101 | $! It Dosen't Exist, So Create It. | ||
| 102 | $! | ||
| 103 | $ CREATE/DIR 'OBJ_DIR' | ||
| 104 | $! | ||
| 105 | $! End The Architecture Specific OBJ Directory Check. | ||
| 106 | $! | ||
| 107 | $ ENDIF | ||
| 108 | $! | ||
| 109 | $! Define The EXE Directory. | ||
| 110 | $! | ||
| 111 | $ EXE_DIR := SYS$DISK:[-.'ARCH'.EXE.CRYPTO] | ||
| 112 | $! | ||
| 113 | $! Check To See If The Architecture Specific Directory Exists. | ||
| 114 | $! | ||
| 115 | $ IF (F$PARSE(EXE_DIR).EQS."") | ||
| 116 | $ THEN | ||
| 117 | $! | ||
| 118 | $! It Dosen't Exist, So Create It. | ||
| 119 | $! | ||
| 120 | $ CREATE/DIRECTORY 'EXE_DIR' | ||
| 121 | $! | ||
| 122 | $! End The Architecture Specific Directory Check. | ||
| 123 | $! | ||
| 124 | $ ENDIF | ||
| 125 | $! | ||
| 126 | $! Define The Library Name. | ||
| 127 | $! | ||
| 128 | $ LIB_NAME := 'EXE_DIR'LIBCRYPTO.OLB | ||
| 129 | $! | ||
| 130 | $! Define The CRYPTO-LIB We Are To Use. | ||
| 131 | $! | ||
| 132 | $ CRYPTO_LIB := 'EXE_DIR'LIBCRYPTO.OLB | ||
| 133 | $! | ||
| 134 | $! Check To See If We Already Have A "[.xxx.EXE.CRYPTO]LIBCRYPTO.OLB" Library... | ||
| 135 | $! | ||
| 136 | $ IF (F$SEARCH(LIB_NAME).EQS."") | ||
| 137 | $ THEN | ||
| 138 | $! | ||
| 139 | $! Guess Not, Create The Library. | ||
| 140 | $! | ||
| 141 | $ LIBRARY/CREATE/OBJECT 'LIB_NAME' | ||
| 142 | $! | ||
| 143 | $! End The Library Check. | ||
| 144 | $! | ||
| 145 | $ ENDIF | ||
| 146 | $! | ||
| 147 | $! Build our options file for the application | ||
| 148 | $! | ||
| 149 | $ GOSUB CHECK_OPT_FILE | ||
| 150 | $! | ||
| 151 | $! Define The Different Encryption "library" Strings. | ||
| 152 | $! | ||
| 153 | $ LIB_ = "fips,fips_err_wrapper" | ||
| 154 | $ LIB_SHA = "fips_sha1dgst,fips_sha1_selftest,fips_sha256,fips_sha512" | ||
| 155 | $ LIB_RAND = "fips_rand,fips_rand_selftest" | ||
| 156 | $ LIB_DES = "fips_des_enc,fips_des_selftest,fips_set_key" | ||
| 157 | $ LIB_AES = "fips_aes_core,fips_aes_selftest" | ||
| 158 | $ LIB_DSA = "fips_dsa_ossl,fips_dsa_gen,fips_dsa_selftest" | ||
| 159 | $ LIB_RSA = "fips_rsa_eay,fips_rsa_gen,fips_rsa_selftest,fips_rsa_x931g" | ||
| 160 | $ LIB_DH = "fips_dh_check,fips_dh_gen,fips_dh_key" | ||
| 161 | $ LIB_HMAC = "fips_hmac,fips_hmac_selftest" | ||
| 162 | $! | ||
| 163 | $! Setup exceptional compilations | ||
| 164 | $! | ||
| 165 | $ ! Add definitions for no threads on OpenVMS 7.1 and higher | ||
| 166 | $ COMPILEWITH_CC3 = ",bss_rtcp," | ||
| 167 | $ ! Disable the DOLLARID warning | ||
| 168 | $ COMPILEWITH_CC4 = ",a_utctm,bss_log,o_time," | ||
| 169 | $ ! Disable disjoint optimization | ||
| 170 | $ COMPILEWITH_CC5 = ",md2_dgst,md4_dgst,md5_dgst,mdc2dgst," + - | ||
| 171 | "sha_dgst,sha1dgst,rmd_dgst,bf_enc," | ||
| 172 | $ ! Disable the MIXLINKAGE warning | ||
| 173 | $ COMPILEWITH_CC6 = ",fips_set_key," | ||
| 174 | $! | ||
| 175 | $! Figure Out What Other Modules We Are To Build. | ||
| 176 | $! | ||
| 177 | $ BUILD_SET: | ||
| 178 | $! | ||
| 179 | $! Define A Module Counter. | ||
| 180 | $! | ||
| 181 | $ MODULE_COUNTER = 0 | ||
| 182 | $! | ||
| 183 | $! Top Of The Loop. | ||
| 184 | $! | ||
| 185 | $ MODULE_NEXT: | ||
| 186 | $! | ||
| 187 | $! Extract The Module Name From The Encryption List. | ||
| 188 | $! | ||
| 189 | $ MODULE_NAME = F$ELEMENT(MODULE_COUNTER,",",ENCRYPT_TYPES) | ||
| 190 | $ IF MODULE_NAME.EQS."Basic" THEN MODULE_NAME = "" | ||
| 191 | $ MODULE_NAME1 = MODULE_NAME | ||
| 192 | $! | ||
| 193 | $! Check To See If We Are At The End Of The Module List. | ||
| 194 | $! | ||
| 195 | $ IF (MODULE_NAME.EQS.",") | ||
| 196 | $ THEN | ||
| 197 | $! | ||
| 198 | $! We Are At The End Of The Module List, Go To MODULE_DONE. | ||
| 199 | $! | ||
| 200 | $ GOTO MODULE_DONE | ||
| 201 | $! | ||
| 202 | $! End The Module List Check. | ||
| 203 | $! | ||
| 204 | $ ENDIF | ||
| 205 | $! | ||
| 206 | $! Increment The Moudle Counter. | ||
| 207 | $! | ||
| 208 | $ MODULE_COUNTER = MODULE_COUNTER + 1 | ||
| 209 | $! | ||
| 210 | $! Create The Library and Apps Module Names. | ||
| 211 | $! | ||
| 212 | $ LIB_MODULE = "LIB_" + MODULE_NAME | ||
| 213 | $ APPS_MODULE = "APPS_" + MODULE_NAME | ||
| 214 | $ IF (MODULE_NAME.EQS."ASN1_2") | ||
| 215 | $ THEN | ||
| 216 | $ MODULE_NAME = "ASN1" | ||
| 217 | $ ENDIF | ||
| 218 | $ IF (MODULE_NAME.EQS."EVP_2") | ||
| 219 | $ THEN | ||
| 220 | $ MODULE_NAME = "EVP" | ||
| 221 | $ ENDIF | ||
| 222 | $! | ||
| 223 | $! Set state (can be LIB and APPS) | ||
| 224 | $! | ||
| 225 | $ STATE = "LIB" | ||
| 226 | $ IF BUILDALL .EQS. "APPS" THEN STATE = "APPS" | ||
| 227 | $! | ||
| 228 | $! Check if the library module name actually is defined | ||
| 229 | $! | ||
| 230 | $ IF F$TYPE('LIB_MODULE') .EQS. "" | ||
| 231 | $ THEN | ||
| 232 | $ WRITE SYS$ERROR "" | ||
| 233 | $ WRITE SYS$ERROR "The module ",MODULE_NAME," does not exist. Continuing..." | ||
| 234 | $ WRITE SYS$ERROR "" | ||
| 235 | $ GOTO MODULE_NEXT | ||
| 236 | $ ENDIF | ||
| 237 | $! | ||
| 238 | $! Top Of The Module Loop. | ||
| 239 | $! | ||
| 240 | $ MODULE_AGAIN: | ||
| 241 | $! | ||
| 242 | $! Tell The User What Module We Are Building. | ||
| 243 | $! | ||
| 244 | $ IF (MODULE_NAME1.NES."") | ||
| 245 | $ THEN | ||
| 246 | $ IF STATE .EQS. "LIB" | ||
| 247 | $ THEN | ||
| 248 | $ WRITE SYS$OUTPUT "Compiling The ",MODULE_NAME1," Library Files. (",BUILDALL,",",STATE,")" | ||
| 249 | $ ELSE IF F$TYPE('APPS_MODULE') .NES. "" | ||
| 250 | $ THEN | ||
| 251 | $ WRITE SYS$OUTPUT "Compiling The ",MODULE_NAME1," Applications. (",BUILDALL,",",STATE,")" | ||
| 252 | $ ENDIF | ||
| 253 | $ ENDIF | ||
| 254 | $ ENDIF | ||
| 255 | $! | ||
| 256 | $! Define A File Counter And Set It To "0". | ||
| 257 | $! | ||
| 258 | $ FILE_COUNTER = 0 | ||
| 259 | $ APPLICATION = "" | ||
| 260 | $ APPLICATION_COUNTER = 0 | ||
| 261 | $! | ||
| 262 | $! Top Of The File Loop. | ||
| 263 | $! | ||
| 264 | $ NEXT_FILE: | ||
| 265 | $! | ||
| 266 | $! Look in the LIB_MODULE is we're in state LIB | ||
| 267 | $! | ||
| 268 | $ IF STATE .EQS. "LIB" | ||
| 269 | $ THEN | ||
| 270 | $! | ||
| 271 | $! O.K, Extract The File Name From The File List. | ||
| 272 | $! | ||
| 273 | $ FILE_NAME = F$ELEMENT(FILE_COUNTER,",",'LIB_MODULE') | ||
| 274 | $! | ||
| 275 | $! else | ||
| 276 | $! | ||
| 277 | $ ELSE | ||
| 278 | $ FILE_NAME = "," | ||
| 279 | $! | ||
| 280 | $ IF F$TYPE('APPS_MODULE') .NES. "" | ||
| 281 | $ THEN | ||
| 282 | $! | ||
| 283 | $! Extract The File Name From The File List. | ||
| 284 | $! This part is a bit more complicated. | ||
| 285 | $! | ||
| 286 | $ IF APPLICATION .EQS. "" | ||
| 287 | $ THEN | ||
| 288 | $ APPLICATION = F$ELEMENT(APPLICATION_COUNTER,";",'APPS_MODULE') | ||
| 289 | $ APPLICATION_COUNTER = APPLICATION_COUNTER + 1 | ||
| 290 | $ APPLICATION_OBJECTS = F$ELEMENT(1,"/",APPLICATION) | ||
| 291 | $ APPLICATION = F$ELEMENT(0,"/",APPLICATION) | ||
| 292 | $ FILE_COUNTER = 0 | ||
| 293 | $ ENDIF | ||
| 294 | $ | ||
| 295 | $! WRITE SYS$OUTPUT "DEBUG: SHOW SYMBOL APPLICATION*" | ||
| 296 | $! SHOW SYMBOL APPLICATION* | ||
| 297 | $! | ||
| 298 | $ IF APPLICATION .NES. ";" | ||
| 299 | $ THEN | ||
| 300 | $ FILE_NAME = F$ELEMENT(FILE_COUNTER,",",APPLICATION_OBJECTS) | ||
| 301 | $ IF FILE_NAME .EQS. "," | ||
| 302 | $ THEN | ||
| 303 | $ APPLICATION = "" | ||
| 304 | $ GOTO NEXT_FILE | ||
| 305 | $ ENDIF | ||
| 306 | $ ENDIF | ||
| 307 | $ ENDIF | ||
| 308 | $ ENDIF | ||
| 309 | $! | ||
| 310 | $! Check To See If We Are At The End Of The File List. | ||
| 311 | $! | ||
| 312 | $ IF (FILE_NAME.EQS.",") | ||
| 313 | $ THEN | ||
| 314 | $! | ||
| 315 | $! We Are At The End Of The File List, Change State Or Goto FILE_DONE. | ||
| 316 | $! | ||
| 317 | $ IF STATE .EQS. "LIB" .AND. BUILDALL .NES. "LIBRARY" | ||
| 318 | $ THEN | ||
| 319 | $ STATE = "APPS" | ||
| 320 | $ GOTO MODULE_AGAIN | ||
| 321 | $ ELSE | ||
| 322 | $ GOTO FILE_DONE | ||
| 323 | $ ENDIF | ||
| 324 | $! | ||
| 325 | $! End The File List Check. | ||
| 326 | $! | ||
| 327 | $ ENDIF | ||
| 328 | $! | ||
| 329 | $! Increment The Counter. | ||
| 330 | $! | ||
| 331 | $ FILE_COUNTER = FILE_COUNTER + 1 | ||
| 332 | $! | ||
| 333 | $! Create The Source File Name. | ||
| 334 | $! | ||
| 335 | $ TMP_FILE_NAME = F$ELEMENT(1,"]",FILE_NAME) | ||
| 336 | $ IF TMP_FILE_NAME .EQS. "]" THEN TMP_FILE_NAME = FILE_NAME | ||
| 337 | $ IF F$ELEMENT(0,".",TMP_FILE_NAME) .EQS. TMP_FILE_NAME THEN - | ||
| 338 | FILE_NAME = FILE_NAME + ".c" | ||
| 339 | $ IF (MODULE_NAME.NES."") | ||
| 340 | $ THEN | ||
| 341 | $ SOURCE_FILE = "SYS$DISK:[." + MODULE_NAME+ "]" + FILE_NAME | ||
| 342 | $ ELSE | ||
| 343 | $ SOURCE_FILE = "SYS$DISK:[]" + FILE_NAME | ||
| 344 | $ ENDIF | ||
| 345 | $ SOURCE_FILE = SOURCE_FILE - "][" | ||
| 346 | $! | ||
| 347 | $! Create The Object File Name. | ||
| 348 | $! | ||
| 349 | $ OBJECT_FILE = OBJ_DIR + F$PARSE(FILE_NAME,,,"NAME","SYNTAX_ONLY") + ".OBJ" | ||
| 350 | $ ON WARNING THEN GOTO NEXT_FILE | ||
| 351 | $! | ||
| 352 | $! Check To See If The File We Want To Compile Is Actually There. | ||
| 353 | $! | ||
| 354 | $ IF (F$SEARCH(SOURCE_FILE).EQS."") | ||
| 355 | $ THEN | ||
| 356 | $! | ||
| 357 | $! Tell The User That The File Doesn't Exist. | ||
| 358 | $! | ||
| 359 | $ WRITE SYS$OUTPUT "" | ||
| 360 | $ WRITE SYS$OUTPUT "The File ",SOURCE_FILE," Doesn't Exist." | ||
| 361 | $ WRITE SYS$OUTPUT "" | ||
| 362 | $! | ||
| 363 | $! Exit The Build. | ||
| 364 | $! | ||
| 365 | $ GOTO EXIT | ||
| 366 | $! | ||
| 367 | $! End The File Exist Check. | ||
| 368 | $! | ||
| 369 | $ ENDIF | ||
| 370 | $! | ||
| 371 | $! Tell The User We Are Compiling The File. | ||
| 372 | $! | ||
| 373 | $ IF (MODULE_NAME.EQS."") | ||
| 374 | $ THEN | ||
| 375 | $ WRITE SYS$OUTPUT "Compiling The ",FILE_NAME," File. (",BUILDALL,",",STATE,")" | ||
| 376 | $ ENDIF | ||
| 377 | $ IF (MODULE_NAME.NES."") | ||
| 378 | $ THEN | ||
| 379 | $ WRITE SYS$OUTPUT " ",FILE_NAME,"" | ||
| 380 | $ ENDIF | ||
| 381 | $! | ||
| 382 | $! Compile The File. | ||
| 383 | $! | ||
| 384 | $ ON ERROR THEN GOTO NEXT_FILE | ||
| 385 | $ FILE_NAME0 = F$ELEMENT(0,".",FILE_NAME) | ||
| 386 | $ IF FILE_NAME - ".mar" .NES. FILE_NAME | ||
| 387 | $ THEN | ||
| 388 | $ MACRO/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 389 | $ ELSE | ||
| 390 | $ IF COMPILEWITH_CC3 - FILE_NAME0 .NES. COMPILEWITH_CC3 | ||
| 391 | $ THEN | ||
| 392 | $ CC3/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 393 | $ ELSE | ||
| 394 | $ IF COMPILEWITH_CC4 - FILE_NAME0 .NES. COMPILEWITH_CC4 | ||
| 395 | $ THEN | ||
| 396 | $ CC4/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 397 | $ ELSE | ||
| 398 | $ IF COMPILEWITH_CC5 - FILE_NAME0 .NES. COMPILEWITH_CC5 | ||
| 399 | $ THEN | ||
| 400 | $ CC5/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 401 | $ ELSE | ||
| 402 | $ IF COMPILEWITH_CC6 - FILE_NAME0 .NES. COMPILEWITH_CC6 | ||
| 403 | $ THEN | ||
| 404 | $ CC6/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 405 | $ ELSE | ||
| 406 | $ CC/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 407 | $ ENDIF | ||
| 408 | $ ENDIF | ||
| 409 | $ ENDIF | ||
| 410 | $ ENDIF | ||
| 411 | $ ENDIF | ||
| 412 | $ IF STATE .EQS. "LIB" | ||
| 413 | $ THEN | ||
| 414 | $! | ||
| 415 | $! Add It To The Library. | ||
| 416 | $! | ||
| 417 | $ LIBRARY/REPLACE 'LIB_NAME' 'OBJECT_FILE' | ||
| 418 | $! | ||
| 419 | $! Time To Clean Up The Object File. | ||
| 420 | $! | ||
| 421 | $ DELETE 'OBJECT_FILE';* | ||
| 422 | $ ENDIF | ||
| 423 | $! | ||
| 424 | $! Go Back And Do It Again. | ||
| 425 | $! | ||
| 426 | $ GOTO NEXT_FILE | ||
| 427 | $! | ||
| 428 | $! All Done With This Library Part. | ||
| 429 | $! | ||
| 430 | $ FILE_DONE: | ||
| 431 | $! | ||
| 432 | $! Time To Build Some Applications | ||
| 433 | $! | ||
| 434 | $ IF F$TYPE('APPS_MODULE') .NES. "" .AND. BUILDALL .NES. "LIBRARY" | ||
| 435 | $ THEN | ||
| 436 | $ APPLICATION_COUNTER = 0 | ||
| 437 | $ NEXT_APPLICATION: | ||
| 438 | $ APPLICATION = F$ELEMENT(APPLICATION_COUNTER,";",'APPS_MODULE') | ||
| 439 | $ IF APPLICATION .EQS. ";" THEN GOTO APPLICATION_DONE | ||
| 440 | $ | ||
| 441 | $ APPLICATION_COUNTER = APPLICATION_COUNTER + 1 | ||
| 442 | $ APPLICATION_OBJECTS = F$ELEMENT(1,"/",APPLICATION) | ||
| 443 | $ APPLICATION = F$ELEMENT(0,"/",APPLICATION) | ||
| 444 | $ | ||
| 445 | $! WRITE SYS$OUTPUT "DEBUG: SHOW SYMBOL APPLICATION*" | ||
| 446 | $! SHOW SYMBOL APPLICATION* | ||
| 447 | $! | ||
| 448 | $! Tell the user what happens | ||
| 449 | $! | ||
| 450 | $ WRITE SYS$OUTPUT " ",APPLICATION,".exe" | ||
| 451 | $! | ||
| 452 | $! Link The Program. | ||
| 453 | $! | ||
| 454 | $ ON ERROR THEN GOTO NEXT_APPLICATION | ||
| 455 | $! | ||
| 456 | $! Check To See If We Are To Link With A Specific TCP/IP Library. | ||
| 457 | $! | ||
| 458 | $ IF (TCPIP_LIB.NES."") | ||
| 459 | $ THEN | ||
| 460 | $! | ||
| 461 | $! Link With A TCP/IP Library. | ||
| 462 | $! | ||
| 463 | $ LINK/'DEBUGGER'/'TRACEBACK'/EXE='EXE_DIR''APPLICATION'.EXE - | ||
| 464 | 'OBJ_DIR''APPLICATION_OBJECTS', - | ||
| 465 | 'CRYPTO_LIB'/LIBRARY, - | ||
| 466 | 'TCPIP_LIB','OPT_FILE'/OPTION | ||
| 467 | $! | ||
| 468 | $! Else... | ||
| 469 | $! | ||
| 470 | $ ELSE | ||
| 471 | $! | ||
| 472 | $! Don't Link With A TCP/IP Library. | ||
| 473 | $! | ||
| 474 | $ LINK/'DEBUGGER'/'TRACEBACK'/EXE='EXE_DIR''APPLICATION'.EXE - | ||
| 475 | 'OBJ_DIR''APPLICATION_OBJECTS',- | ||
| 476 | 'CRYPTO_LIB'/LIBRARY, - | ||
| 477 | 'OPT_FILE'/OPTION | ||
| 478 | $! | ||
| 479 | $! End The TCP/IP Library Check. | ||
| 480 | $! | ||
| 481 | $ ENDIF | ||
| 482 | $ GOTO NEXT_APPLICATION | ||
| 483 | $ APPLICATION_DONE: | ||
| 484 | $ ENDIF | ||
| 485 | $! | ||
| 486 | $! Go Back And Get The Next Module. | ||
| 487 | $! | ||
| 488 | $ GOTO MODULE_NEXT | ||
| 489 | $! | ||
| 490 | $! All Done With This Module. | ||
| 491 | $! | ||
| 492 | $ MODULE_DONE: | ||
| 493 | $! | ||
| 494 | $! Tell The User That We Are All Done. | ||
| 495 | $! | ||
| 496 | $ WRITE SYS$OUTPUT "All Done..." | ||
| 497 | $ EXIT: | ||
| 498 | $ GOSUB CLEANUP | ||
| 499 | $ EXIT | ||
| 500 | $! | ||
| 501 | $! Check For The Link Option FIle. | ||
| 502 | $! | ||
| 503 | $ CHECK_OPT_FILE: | ||
| 504 | $! | ||
| 505 | $! Check To See If We Need To Make A VAX C Option File. | ||
| 506 | $! | ||
| 507 | $ IF (COMPILER.EQS."VAXC") | ||
| 508 | $ THEN | ||
| 509 | $! | ||
| 510 | $! Check To See If We Already Have A VAX C Linker Option File. | ||
| 511 | $! | ||
| 512 | $ IF (F$SEARCH(OPT_FILE).EQS."") | ||
| 513 | $ THEN | ||
| 514 | $! | ||
| 515 | $! We Need A VAX C Linker Option File. | ||
| 516 | $! | ||
| 517 | $ CREATE 'OPT_FILE' | ||
| 518 | $DECK | ||
| 519 | ! | ||
| 520 | ! Default System Options File To Link Agianst | ||
| 521 | ! The Sharable VAX C Runtime Library. | ||
| 522 | ! | ||
| 523 | SYS$SHARE:VAXCRTL.EXE/SHARE | ||
| 524 | $EOD | ||
| 525 | $! | ||
| 526 | $! End The Option File Check. | ||
| 527 | $! | ||
| 528 | $ ENDIF | ||
| 529 | $! | ||
| 530 | $! End The VAXC Check. | ||
| 531 | $! | ||
| 532 | $ ENDIF | ||
| 533 | $! | ||
| 534 | $! Check To See If We Need A GNU C Option File. | ||
| 535 | $! | ||
| 536 | $ IF (COMPILER.EQS."GNUC") | ||
| 537 | $ THEN | ||
| 538 | $! | ||
| 539 | $! Check To See If We Already Have A GNU C Linker Option File. | ||
| 540 | $! | ||
| 541 | $ IF (F$SEARCH(OPT_FILE).EQS."") | ||
| 542 | $ THEN | ||
| 543 | $! | ||
| 544 | $! We Need A GNU C Linker Option File. | ||
| 545 | $! | ||
| 546 | $ CREATE 'OPT_FILE' | ||
| 547 | $DECK | ||
| 548 | ! | ||
| 549 | ! Default System Options File To Link Agianst | ||
| 550 | ! The Sharable C Runtime Library. | ||
| 551 | ! | ||
| 552 | GNU_CC:[000000]GCCLIB/LIBRARY | ||
| 553 | SYS$SHARE:VAXCRTL/SHARE | ||
| 554 | $EOD | ||
| 555 | $! | ||
| 556 | $! End The Option File Check. | ||
| 557 | $! | ||
| 558 | $ ENDIF | ||
| 559 | $! | ||
| 560 | $! End The GNU C Check. | ||
| 561 | $! | ||
| 562 | $ ENDIF | ||
| 563 | $! | ||
| 564 | $! Check To See If We Need A DEC C Option File. | ||
| 565 | $! | ||
| 566 | $ IF (COMPILER.EQS."DECC") | ||
| 567 | $ THEN | ||
| 568 | $! | ||
| 569 | $! Check To See If We Already Have A DEC C Linker Option File. | ||
| 570 | $! | ||
| 571 | $ IF (F$SEARCH(OPT_FILE).EQS."") | ||
| 572 | $ THEN | ||
| 573 | $! | ||
| 574 | $! Figure Out If We Need An AXP Or A VAX Linker Option File. | ||
| 575 | $! | ||
| 576 | $ IF ARCH .EQS. "VAX" | ||
| 577 | $ THEN | ||
| 578 | $! | ||
| 579 | $! We Need A DEC C Linker Option File For VAX. | ||
| 580 | $! | ||
| 581 | $ CREATE 'OPT_FILE' | ||
| 582 | $DECK | ||
| 583 | ! | ||
| 584 | ! Default System Options File To Link Agianst | ||
| 585 | ! The Sharable DEC C Runtime Library. | ||
| 586 | ! | ||
| 587 | SYS$SHARE:DECC$SHR.EXE/SHARE | ||
| 588 | $EOD | ||
| 589 | $! | ||
| 590 | $! Else... | ||
| 591 | $! | ||
| 592 | $ ELSE | ||
| 593 | $! | ||
| 594 | $! Create The AXP Linker Option File. | ||
| 595 | $! | ||
| 596 | $ CREATE 'OPT_FILE' | ||
| 597 | $DECK | ||
| 598 | ! | ||
| 599 | ! Default System Options File For AXP To Link Agianst | ||
| 600 | ! The Sharable C Runtime Library. | ||
| 601 | ! | ||
| 602 | SYS$SHARE:CMA$OPEN_LIB_SHR/SHARE | ||
| 603 | SYS$SHARE:CMA$OPEN_RTL/SHARE | ||
| 604 | $EOD | ||
| 605 | $! | ||
| 606 | $! End The VAX/AXP DEC C Option File Check. | ||
| 607 | $! | ||
| 608 | $ ENDIF | ||
| 609 | $! | ||
| 610 | $! End The Option File Search. | ||
| 611 | $! | ||
| 612 | $ ENDIF | ||
| 613 | $! | ||
| 614 | $! End The DEC C Check. | ||
| 615 | $! | ||
| 616 | $ ENDIF | ||
| 617 | $! | ||
| 618 | $! Tell The User What Linker Option File We Are Using. | ||
| 619 | $! | ||
| 620 | $ WRITE SYS$OUTPUT "Using Linker Option File ",OPT_FILE,"." | ||
| 621 | $! | ||
| 622 | $! Time To RETURN. | ||
| 623 | $! | ||
| 624 | $ RETURN | ||
| 625 | $! | ||
| 626 | $! Check The User's Options. | ||
| 627 | $! | ||
| 628 | $ CHECK_OPTIONS: | ||
| 629 | $! | ||
| 630 | $! Check To See If P1 Is Blank. | ||
| 631 | $! | ||
| 632 | $ IF (P1.EQS."ALL") | ||
| 633 | $ THEN | ||
| 634 | $! | ||
| 635 | $! P1 Is Blank, So Build Everything. | ||
| 636 | $! | ||
| 637 | $ BUILDALL = "TRUE" | ||
| 638 | $! | ||
| 639 | $! Else... | ||
| 640 | $! | ||
| 641 | $ ELSE | ||
| 642 | $! | ||
| 643 | $! Else, Check To See If P1 Has A Valid Arguement. | ||
| 644 | $! | ||
| 645 | $ IF (P1.EQS."LIBRARY").OR.(P1.EQS."APPS") | ||
| 646 | $ THEN | ||
| 647 | $! | ||
| 648 | $! A Valid Arguement. | ||
| 649 | $! | ||
| 650 | $ BUILDALL = P1 | ||
| 651 | $! | ||
| 652 | $! Else... | ||
| 653 | $! | ||
| 654 | $ ELSE | ||
| 655 | $! | ||
| 656 | $! Tell The User We Don't Know What They Want. | ||
| 657 | $! | ||
| 658 | $ WRITE SYS$OUTPUT "" | ||
| 659 | $ WRITE SYS$OUTPUT "The Option ",P1," Is Invalid. The Valid Options Are:" | ||
| 660 | $ WRITE SYS$OUTPUT "" | ||
| 661 | $ WRITE SYS$OUTPUT " ALL : Just Build Everything." | ||
| 662 | $ WRITE SYS$OUTPUT " LIBRARY : To Compile Just The [.xxx.EXE.CRYPTO]LIBCRYPTO.OLB Library." | ||
| 663 | $ WRITE SYS$OUTPUT " APPS : To Compile Just The [.xxx.EXE.CRYPTO]*.EXE Programs." | ||
| 664 | $ WRITE SYS$OUTPUT "" | ||
| 665 | $ WRITE SYS$OUTPUT " Where 'xxx' Stands For:" | ||
| 666 | $ WRITE SYS$OUTPUT "" | ||
| 667 | $ WRITE SYS$OUTPUT " AXP : Alpha Architecture." | ||
| 668 | $ WRITE SYS$OUTPUT " VAX : VAX Architecture." | ||
| 669 | $ WRITE SYS$OUTPUT "" | ||
| 670 | $! | ||
| 671 | $! Time To EXIT. | ||
| 672 | $! | ||
| 673 | $ EXIT | ||
| 674 | $! | ||
| 675 | $! End The Valid Arguement Check. | ||
| 676 | $! | ||
| 677 | $ ENDIF | ||
| 678 | $! | ||
| 679 | $! End The P1 Check. | ||
| 680 | $! | ||
| 681 | $ ENDIF | ||
| 682 | $! | ||
| 683 | $! Check To See If P2 Is Blank. | ||
| 684 | $! | ||
| 685 | $ IF (P2.EQS."NODEBUG") | ||
| 686 | $ THEN | ||
| 687 | $! | ||
| 688 | $! P2 Is NODEBUG, So Compile Without The Debugger Information. | ||
| 689 | $! | ||
| 690 | $ DEBUGGER = "NODEBUG" | ||
| 691 | $ TRACEBACK = "NOTRACEBACK" | ||
| 692 | $ GCC_OPTIMIZE = "OPTIMIZE" | ||
| 693 | $ CC_OPTIMIZE = "OPTIMIZE" | ||
| 694 | $ MACRO_OPTIMIZE = "OPTIMIZE" | ||
| 695 | $ WRITE SYS$OUTPUT "No Debugger Information Will Be Produced During Compile." | ||
| 696 | $ WRITE SYS$OUTPUT "Compiling With Compiler Optimization." | ||
| 697 | $ ELSE | ||
| 698 | $! | ||
| 699 | $! Check To See If We Are To Compile With Debugger Information. | ||
| 700 | $! | ||
| 701 | $ IF (P2.EQS."DEBUG") | ||
| 702 | $ THEN | ||
| 703 | $! | ||
| 704 | $! Compile With Debugger Information. | ||
| 705 | $! | ||
| 706 | $ DEBUGGER = "DEBUG" | ||
| 707 | $ TRACEBACK = "TRACEBACK" | ||
| 708 | $ GCC_OPTIMIZE = "NOOPTIMIZE" | ||
| 709 | $ CC_OPTIMIZE = "NOOPTIMIZE" | ||
| 710 | $ MACRO_OPTIMIZE = "NOOPTIMIZE" | ||
| 711 | $ WRITE SYS$OUTPUT "Debugger Information Will Be Produced During Compile." | ||
| 712 | $ WRITE SYS$OUTPUT "Compiling Without Compiler Optimization." | ||
| 713 | $ ELSE | ||
| 714 | $! | ||
| 715 | $! They Entered An Invalid Option.. | ||
| 716 | $! | ||
| 717 | $ WRITE SYS$OUTPUT "" | ||
| 718 | $ WRITE SYS$OUTPUT "The Option ",P2," Is Invalid. The Valid Options Are:" | ||
| 719 | $ WRITE SYS$OUTPUT "" | ||
| 720 | $ WRITE SYS$OUTPUT " DEBUG : Compile With The Debugger Information." | ||
| 721 | $ WRITE SYS$OUTPUT " NODEBUG : Compile Without The Debugger Information." | ||
| 722 | $ WRITE SYS$OUTPUT "" | ||
| 723 | $! | ||
| 724 | $! Time To EXIT. | ||
| 725 | $! | ||
| 726 | $ EXIT | ||
| 727 | $! | ||
| 728 | $! End The Valid Arguement Check. | ||
| 729 | $! | ||
| 730 | $ ENDIF | ||
| 731 | $! | ||
| 732 | $! End The P2 Check. | ||
| 733 | $! | ||
| 734 | $ ENDIF | ||
| 735 | $! | ||
| 736 | $! Special Threads For OpenVMS v7.1 Or Later | ||
| 737 | $! | ||
| 738 | $! Written By: Richard Levitte | ||
| 739 | $! richard@levitte.org | ||
| 740 | $! | ||
| 741 | $! | ||
| 742 | $! Check To See If We Have A Option For P5. | ||
| 743 | $! | ||
| 744 | $ IF (P5.EQS."") | ||
| 745 | $ THEN | ||
| 746 | $! | ||
| 747 | $! Get The Version Of VMS We Are Using. | ||
| 748 | $! | ||
| 749 | $ ISSEVEN := | ||
| 750 | $ TMP = F$ELEMENT(0,"-",F$EXTRACT(1,4,F$GETSYI("VERSION"))) | ||
| 751 | $ TMP = F$INTEGER(F$ELEMENT(0,".",TMP)+F$ELEMENT(1,".",TMP)) | ||
| 752 | $! | ||
| 753 | $! Check To See If The VMS Version Is v7.1 Or Later. | ||
| 754 | $! | ||
| 755 | $ IF (TMP.GE.71) | ||
| 756 | $ THEN | ||
| 757 | $! | ||
| 758 | $! We Have OpenVMS v7.1 Or Later, So Use The Special Threads. | ||
| 759 | $! | ||
| 760 | $ ISSEVEN := ,PTHREAD_USE_D4 | ||
| 761 | $! | ||
| 762 | $! End The VMS Version Check. | ||
| 763 | $! | ||
| 764 | $ ENDIF | ||
| 765 | $! | ||
| 766 | $! End The P5 Check. | ||
| 767 | $! | ||
| 768 | $ ENDIF | ||
| 769 | $! | ||
| 770 | $! Check To See If P3 Is Blank. | ||
| 771 | $! | ||
| 772 | $ IF (P3.EQS."") | ||
| 773 | $ THEN | ||
| 774 | $! | ||
| 775 | $! O.K., The User Didn't Specify A Compiler, Let's Try To | ||
| 776 | $! Find Out Which One To Use. | ||
| 777 | $! | ||
| 778 | $! Check To See If We Have GNU C. | ||
| 779 | $! | ||
| 780 | $ IF (F$TRNLNM("GNU_CC").NES."") | ||
| 781 | $ THEN | ||
| 782 | $! | ||
| 783 | $! Looks Like GNUC, Set To Use GNUC. | ||
| 784 | $! | ||
| 785 | $ P3 = "GNUC" | ||
| 786 | $! | ||
| 787 | $! Else... | ||
| 788 | $! | ||
| 789 | $ ELSE | ||
| 790 | $! | ||
| 791 | $! Check To See If We Have VAXC Or DECC. | ||
| 792 | $! | ||
| 793 | $ IF (ARCH.EQS."AXP").OR.(F$TRNLNM("DECC$CC_DEFAULT").NES."") | ||
| 794 | $ THEN | ||
| 795 | $! | ||
| 796 | $! Looks Like DECC, Set To Use DECC. | ||
| 797 | $! | ||
| 798 | $ P3 = "DECC" | ||
| 799 | $! | ||
| 800 | $! Else... | ||
| 801 | $! | ||
| 802 | $ ELSE | ||
| 803 | $! | ||
| 804 | $! Looks Like VAXC, Set To Use VAXC. | ||
| 805 | $! | ||
| 806 | $ P3 = "VAXC" | ||
| 807 | $! | ||
| 808 | $! End The VAXC Compiler Check. | ||
| 809 | $! | ||
| 810 | $ ENDIF | ||
| 811 | $! | ||
| 812 | $! End The DECC & VAXC Compiler Check. | ||
| 813 | $! | ||
| 814 | $ ENDIF | ||
| 815 | $! | ||
| 816 | $! End The Compiler Check. | ||
| 817 | $! | ||
| 818 | $ ENDIF | ||
| 819 | $! | ||
| 820 | $! Check To See If We Have A Option For P4. | ||
| 821 | $! | ||
| 822 | $ IF (P4.EQS."") | ||
| 823 | $ THEN | ||
| 824 | $! | ||
| 825 | $! Find out what socket library we have available | ||
| 826 | $! | ||
| 827 | $ IF F$PARSE("SOCKETSHR:") .NES. "" | ||
| 828 | $ THEN | ||
| 829 | $! | ||
| 830 | $! We have SOCKETSHR, and it is my opinion that it's the best to use. | ||
| 831 | $! | ||
| 832 | $ P4 = "SOCKETSHR" | ||
| 833 | $! | ||
| 834 | $! Tell the user | ||
| 835 | $! | ||
| 836 | $ WRITE SYS$OUTPUT "Using SOCKETSHR for TCP/IP" | ||
| 837 | $! | ||
| 838 | $! Else, let's look for something else | ||
| 839 | $! | ||
| 840 | $ ELSE | ||
| 841 | $! | ||
| 842 | $! Like UCX (the reason to do this before Multinet is that the UCX | ||
| 843 | $! emulation is easier to use...) | ||
| 844 | $! | ||
| 845 | $ IF F$TRNLNM("UCX$IPC_SHR") .NES. "" - | ||
| 846 | .OR. F$PARSE("SYS$SHARE:UCX$IPC_SHR.EXE") .NES. "" - | ||
| 847 | .OR. F$PARSE("SYS$LIBRARY:UCX$IPC.OLB") .NES. "" | ||
| 848 | $ THEN | ||
| 849 | $! | ||
| 850 | $! Last resort: a UCX or UCX-compatible library | ||
| 851 | $! | ||
| 852 | $ P4 = "UCX" | ||
| 853 | $! | ||
| 854 | $! Tell the user | ||
| 855 | $! | ||
| 856 | $ WRITE SYS$OUTPUT "Using UCX or an emulation thereof for TCP/IP" | ||
| 857 | $! | ||
| 858 | $! That was all... | ||
| 859 | $! | ||
| 860 | $ ENDIF | ||
| 861 | $ ENDIF | ||
| 862 | $ ENDIF | ||
| 863 | $! | ||
| 864 | $! Set Up Initial CC Definitions, Possibly With User Ones | ||
| 865 | $! | ||
| 866 | $ CCDEFS = "TCPIP_TYPE_''P4',DSO_VMS" | ||
| 867 | $ IF F$TYPE(USER_CCDEFS) .NES. "" THEN CCDEFS = CCDEFS + "," + USER_CCDEFS | ||
| 868 | $ CCEXTRAFLAGS = "" | ||
| 869 | $ IF F$TYPE(USER_CCFLAGS) .NES. "" THEN CCEXTRAFLAGS = USER_CCFLAGS | ||
| 870 | $ CCDISABLEWARNINGS = "LONGLONGTYPE,LONGLONGSUFX,FOUNDCR" | ||
| 871 | $ IF F$TYPE(USER_CCDISABLEWARNINGS) .NES. "" THEN - | ||
| 872 | CCDISABLEWARNINGS = CCDISABLEWARNINGS + "," + USER_CCDISABLEWARNINGS | ||
| 873 | $! | ||
| 874 | $! Check To See If The User Entered A Valid Paramter. | ||
| 875 | $! | ||
| 876 | $ IF (P3.EQS."VAXC").OR.(P3.EQS."DECC").OR.(P3.EQS."GNUC") | ||
| 877 | $ THEN | ||
| 878 | $! | ||
| 879 | $! Check To See If The User Wanted DECC. | ||
| 880 | $! | ||
| 881 | $ IF (P3.EQS."DECC") | ||
| 882 | $ THEN | ||
| 883 | $! | ||
| 884 | $! Looks Like DECC, Set To Use DECC. | ||
| 885 | $! | ||
| 886 | $ COMPILER = "DECC" | ||
| 887 | $! | ||
| 888 | $! Tell The User We Are Using DECC. | ||
| 889 | $! | ||
| 890 | $ WRITE SYS$OUTPUT "Using DECC 'C' Compiler." | ||
| 891 | $! | ||
| 892 | $! Use DECC... | ||
| 893 | $! | ||
| 894 | $ CC = "CC" | ||
| 895 | $ IF ARCH.EQS."VAX" .AND. F$TRNLNM("DECC$CC_DEFAULT").NES."/DECC" - | ||
| 896 | THEN CC = "CC/DECC" | ||
| 897 | $ CC = CC + "/''CC_OPTIMIZE'/''DEBUGGER'/STANDARD=ANSI89" + - | ||
| 898 | "/NOLIST/PREFIX=ALL" + - | ||
| 899 | "/INCLUDE=(SYS$DISK:[],SYS$DISK:[-],SYS$DISK:[-.CRYPTO])" + - | ||
| 900 | CCEXTRAFLAGS | ||
| 901 | $! | ||
| 902 | $! Define The Linker Options File Name. | ||
| 903 | $! | ||
| 904 | $ OPT_FILE = "SYS$DISK:[]VAX_DECC_OPTIONS.OPT" | ||
| 905 | $! | ||
| 906 | $! End DECC Check. | ||
| 907 | $! | ||
| 908 | $ ENDIF | ||
| 909 | $! | ||
| 910 | $! Check To See If We Are To Use VAXC. | ||
| 911 | $! | ||
| 912 | $ IF (P3.EQS."VAXC") | ||
| 913 | $ THEN | ||
| 914 | $! | ||
| 915 | $! Looks Like VAXC, Set To Use VAXC. | ||
| 916 | $! | ||
| 917 | $ COMPILER = "VAXC" | ||
| 918 | $! | ||
| 919 | $! Tell The User We Are Using VAX C. | ||
| 920 | $! | ||
| 921 | $ WRITE SYS$OUTPUT "Using VAXC 'C' Compiler." | ||
| 922 | $! | ||
| 923 | $! Compile Using VAXC. | ||
| 924 | $! | ||
| 925 | $ CC = "CC" | ||
| 926 | $ IF ARCH.EQS."AXP" | ||
| 927 | $ THEN | ||
| 928 | $ WRITE SYS$OUTPUT "There is no VAX C on Alpha!" | ||
| 929 | $ EXIT | ||
| 930 | $ ENDIF | ||
| 931 | $ IF F$TRNLNM("DECC$CC_DEFAULT").EQS."/DECC" THEN CC = "CC/VAXC" | ||
| 932 | $ CC = CC + "/''CC_OPTIMIZE'/''DEBUGGER'/NOLIST" + - | ||
| 933 | "/INCLUDE=(SYS$DISK:[],SYS$DISK:[-],SYS$DISK:[-.CRYPTO])" + - | ||
| 934 | CCEXTRAFLAGS | ||
| 935 | $ CCDEFS = """VAXC""," + CCDEFS | ||
| 936 | $! | ||
| 937 | $! Define <sys> As SYS$COMMON:[SYSLIB] | ||
| 938 | $! | ||
| 939 | $ DEFINE/NOLOG SYS SYS$COMMON:[SYSLIB] | ||
| 940 | $! | ||
| 941 | $! Define The Linker Options File Name. | ||
| 942 | $! | ||
| 943 | $ OPT_FILE = "SYS$DISK:[]VAX_VAXC_OPTIONS.OPT" | ||
| 944 | $! | ||
| 945 | $! End VAXC Check | ||
| 946 | $! | ||
| 947 | $ ENDIF | ||
| 948 | $! | ||
| 949 | $! Check To See If We Are To Use GNU C. | ||
| 950 | $! | ||
| 951 | $ IF (P3.EQS."GNUC") | ||
| 952 | $ THEN | ||
| 953 | $! | ||
| 954 | $! Looks Like GNUC, Set To Use GNUC. | ||
| 955 | $! | ||
| 956 | $ COMPILER = "GNUC" | ||
| 957 | $! | ||
| 958 | $! Tell The User We Are Using GNUC. | ||
| 959 | $! | ||
| 960 | $ WRITE SYS$OUTPUT "Using GNU 'C' Compiler." | ||
| 961 | $! | ||
| 962 | $! Use GNU C... | ||
| 963 | $! | ||
| 964 | $ CC = "GCC/NOCASE_HACK/''GCC_OPTIMIZE'/''DEBUGGER'/NOLIST" + - | ||
| 965 | "/INCLUDE=(SYS$DISK:[],SYS$DISK:[-],SYS$DISK:[-.CRYPTO])" + - | ||
| 966 | CCEXTRAFLAGS | ||
| 967 | $! | ||
| 968 | $! Define The Linker Options File Name. | ||
| 969 | $! | ||
| 970 | $ OPT_FILE = "SYS$DISK:[]VAX_GNUC_OPTIONS.OPT" | ||
| 971 | $! | ||
| 972 | $! End The GNU C Check. | ||
| 973 | $! | ||
| 974 | $ ENDIF | ||
| 975 | $! | ||
| 976 | $! Set up default defines | ||
| 977 | $! | ||
| 978 | $ CCDEFS = """FLAT_INC=1""," + CCDEFS | ||
| 979 | $! | ||
| 980 | $! Finish up the definition of CC. | ||
| 981 | $! | ||
| 982 | $ IF COMPILER .EQS. "DECC" | ||
| 983 | $ THEN | ||
| 984 | $ IF CCDISABLEWARNINGS .EQS. "" | ||
| 985 | $ THEN | ||
| 986 | $ CC4DISABLEWARNINGS = "DOLLARID" | ||
| 987 | $ CC6DISABLEWARNINGS = "MIXLINKAGE" | ||
| 988 | $ ELSE | ||
| 989 | $ CC4DISABLEWARNINGS = CCDISABLEWARNINGS + ",DOLLARID" | ||
| 990 | $ CC6DISABLEWARNINGS = CCDISABLEWARNINGS + ",MIXLINKAGE" | ||
| 991 | $ CCDISABLEWARNINGS = "/WARNING=(DISABLE=(" + CCDISABLEWARNINGS + "))" | ||
| 992 | $ ENDIF | ||
| 993 | $ CC4DISABLEWARNINGS = "/WARNING=(DISABLE=(" + CC4DISABLEWARNINGS + "))" | ||
| 994 | $ CC6DISABLEWARNINGS = "/WARNING=(DISABLE=(" + CC6DISABLEWARNINGS + "))" | ||
| 995 | $ ELSE | ||
| 996 | $ CCDISABLEWARNINGS = "" | ||
| 997 | $ CC4DISABLEWARNINGS = "" | ||
| 998 | $ CC6DISABLEWARNINGS = "" | ||
| 999 | $ ENDIF | ||
| 1000 | $ CC3 = CC + "/DEFINE=(" + CCDEFS + ISSEVEN + ")" + CCDISABLEWARNINGS | ||
| 1001 | $ CC = CC + "/DEFINE=(" + CCDEFS + ")" + CCDISABLEWARNINGS | ||
| 1002 | $ IF ARCH .EQS. "VAX" .AND. COMPILER .EQS. "DECC" .AND. P2 .NES. "DEBUG" | ||
| 1003 | $ THEN | ||
| 1004 | $ CC5 = CC + "/OPTIMIZE=NODISJOINT" | ||
| 1005 | $ ELSE | ||
| 1006 | $ CC5 = CC + "/NOOPTIMIZE" | ||
| 1007 | $ ENDIF | ||
| 1008 | $ CC4 = CC - CCDISABLEWARNINGS + CC4DISABLEWARNINGS | ||
| 1009 | $ CC6 = CC - CCDISABLEWARNINGS + CC6DISABLEWARNINGS | ||
| 1010 | $! | ||
| 1011 | $! Show user the result | ||
| 1012 | $! | ||
| 1013 | $ WRITE/SYMBOL SYS$OUTPUT "Main C Compiling Command: ",CC | ||
| 1014 | $! | ||
| 1015 | $! Else The User Entered An Invalid Arguement. | ||
| 1016 | $! | ||
| 1017 | $ ELSE | ||
| 1018 | $! | ||
| 1019 | $! Tell The User We Don't Know What They Want. | ||
| 1020 | $! | ||
| 1021 | $ WRITE SYS$OUTPUT "" | ||
| 1022 | $ WRITE SYS$OUTPUT "The Option ",P3," Is Invalid. The Valid Options Are:" | ||
| 1023 | $ WRITE SYS$OUTPUT "" | ||
| 1024 | $ WRITE SYS$OUTPUT " VAXC : To Compile With VAX C." | ||
| 1025 | $ WRITE SYS$OUTPUT " DECC : To Compile With DEC C." | ||
| 1026 | $ WRITE SYS$OUTPUT " GNUC : To Compile With GNU C." | ||
| 1027 | $ WRITE SYS$OUTPUT "" | ||
| 1028 | $! | ||
| 1029 | $! Time To EXIT. | ||
| 1030 | $! | ||
| 1031 | $ EXIT | ||
| 1032 | $! | ||
| 1033 | $! End The Valid Arguement Check. | ||
| 1034 | $! | ||
| 1035 | $ ENDIF | ||
| 1036 | $! | ||
| 1037 | $! Build a MACRO command for the architecture at hand | ||
| 1038 | $! | ||
| 1039 | $ IF ARCH .EQS. "VAX" THEN MACRO = "MACRO/''DEBUGGER'" | ||
| 1040 | $ IF ARCH .EQS. "AXP" THEN MACRO = "MACRO/MIGRATION/''DEBUGGER'/''MACRO_OPTIMIZE'" | ||
| 1041 | $! | ||
| 1042 | $! Show user the result | ||
| 1043 | $! | ||
| 1044 | $ WRITE/SYMBOL SYS$OUTPUT "Main MACRO Compiling Command: ",MACRO | ||
| 1045 | $! | ||
| 1046 | $! Time to check the contents, and to make sure we get the correct library. | ||
| 1047 | $! | ||
| 1048 | $ IF P4.EQS."SOCKETSHR" .OR. P4.EQS."MULTINET" .OR. P4.EQS."UCX" - | ||
| 1049 | .OR. P4.EQS."TCPIP" .OR. P4.EQS."NONE" | ||
| 1050 | $ THEN | ||
| 1051 | $! | ||
| 1052 | $! Check to see if SOCKETSHR was chosen | ||
| 1053 | $! | ||
| 1054 | $ IF P4.EQS."SOCKETSHR" | ||
| 1055 | $ THEN | ||
| 1056 | $! | ||
| 1057 | $! Set the library to use SOCKETSHR | ||
| 1058 | $! | ||
| 1059 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]SOCKETSHR_SHR.OPT/OPT" | ||
| 1060 | $! | ||
| 1061 | $! Done with SOCKETSHR | ||
| 1062 | $! | ||
| 1063 | $ ENDIF | ||
| 1064 | $! | ||
| 1065 | $! Check to see if MULTINET was chosen | ||
| 1066 | $! | ||
| 1067 | $ IF P4.EQS."MULTINET" | ||
| 1068 | $ THEN | ||
| 1069 | $! | ||
| 1070 | $! Set the library to use UCX emulation. | ||
| 1071 | $! | ||
| 1072 | $ P4 = "UCX" | ||
| 1073 | $! | ||
| 1074 | $! Done with MULTINET | ||
| 1075 | $! | ||
| 1076 | $ ENDIF | ||
| 1077 | $! | ||
| 1078 | $! Check to see if UCX was chosen | ||
| 1079 | $! | ||
| 1080 | $ IF P4.EQS."UCX" | ||
| 1081 | $ THEN | ||
| 1082 | $! | ||
| 1083 | $! Set the library to use UCX. | ||
| 1084 | $! | ||
| 1085 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]UCX_SHR_DECC.OPT/OPT" | ||
| 1086 | $ IF F$TRNLNM("UCX$IPC_SHR") .NES. "" | ||
| 1087 | $ THEN | ||
| 1088 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]UCX_SHR_DECC_LOG.OPT/OPT" | ||
| 1089 | $ ELSE | ||
| 1090 | $ IF COMPILER .NES. "DECC" .AND. ARCH .EQS. "VAX" THEN - | ||
| 1091 | TCPIP_LIB = "SYS$DISK:[-.VMS]UCX_SHR_VAXC.OPT/OPT" | ||
| 1092 | $ ENDIF | ||
| 1093 | $! | ||
| 1094 | $! Done with UCX | ||
| 1095 | $! | ||
| 1096 | $ ENDIF | ||
| 1097 | $! | ||
| 1098 | $! Check to see if TCPIP was chosen | ||
| 1099 | $! | ||
| 1100 | $ IF P4.EQS."TCPIP" | ||
| 1101 | $ THEN | ||
| 1102 | $! | ||
| 1103 | $! Set the library to use TCPIP (post UCX). | ||
| 1104 | $! | ||
| 1105 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]TCPIP_SHR_DECC.OPT/OPT" | ||
| 1106 | $! | ||
| 1107 | $! Done with TCPIP | ||
| 1108 | $! | ||
| 1109 | $ ENDIF | ||
| 1110 | $! | ||
| 1111 | $! Check to see if NONE was chosen | ||
| 1112 | $! | ||
| 1113 | $ IF P4.EQS."NONE" | ||
| 1114 | $ THEN | ||
| 1115 | $! | ||
| 1116 | $! Do not use a TCPIP library. | ||
| 1117 | $! | ||
| 1118 | $ TCPIP_LIB = "" | ||
| 1119 | $! | ||
| 1120 | $! Done with TCPIP | ||
| 1121 | $! | ||
| 1122 | $ ENDIF | ||
| 1123 | $! | ||
| 1124 | $! Print info | ||
| 1125 | $! | ||
| 1126 | $ WRITE SYS$OUTPUT "TCP/IP library spec: ", TCPIP_LIB | ||
| 1127 | $! | ||
| 1128 | $! Else The User Entered An Invalid Arguement. | ||
| 1129 | $! | ||
| 1130 | $ ELSE | ||
| 1131 | $! | ||
| 1132 | $! Tell The User We Don't Know What They Want. | ||
| 1133 | $! | ||
| 1134 | $ WRITE SYS$OUTPUT "" | ||
| 1135 | $ WRITE SYS$OUTPUT "The Option ",P4," Is Invalid. The Valid Options Are:" | ||
| 1136 | $ WRITE SYS$OUTPUT "" | ||
| 1137 | $ WRITE SYS$OUTPUT " SOCKETSHR : To link with SOCKETSHR TCP/IP library." | ||
| 1138 | $ WRITE SYS$OUTPUT " UCX : To link with UCX TCP/IP library." | ||
| 1139 | $ WRITE SYS$OUTPUT " TCPIP : To link with TCPIP (post UCX) TCP/IP library." | ||
| 1140 | $ WRITE SYS$OUTPUT "" | ||
| 1141 | $! | ||
| 1142 | $! Time To EXIT. | ||
| 1143 | $! | ||
| 1144 | $ EXIT | ||
| 1145 | $! | ||
| 1146 | $! Done with TCP/IP libraries | ||
| 1147 | $! | ||
| 1148 | $ ENDIF | ||
| 1149 | $! | ||
| 1150 | $! Check if the user wanted to compile just a subset of all the encryption | ||
| 1151 | $! methods. | ||
| 1152 | $! | ||
| 1153 | $ IF P6 .NES. "" | ||
| 1154 | $ THEN | ||
| 1155 | $ ENCRYPT_TYPES = P6 | ||
| 1156 | $ ENDIF | ||
| 1157 | $! | ||
| 1158 | $! Time To RETURN... | ||
| 1159 | $! | ||
| 1160 | $ RETURN | ||
| 1161 | $! | ||
| 1162 | $ INITIALISE: | ||
| 1163 | $! | ||
| 1164 | $! Save old value of the logical name OPENSSL | ||
| 1165 | $! | ||
| 1166 | $ __SAVE_OPENSSL = F$TRNLNM("OPENSSL","LNM$PROCESS_TABLE") | ||
| 1167 | $! | ||
| 1168 | $! Save directory information | ||
| 1169 | $! | ||
| 1170 | $ __HERE = F$PARSE(F$PARSE("A.;",F$ENVIRONMENT("PROCEDURE"))-"A.;","[]A.;") - "A.;" | ||
| 1171 | $ __HERE = F$EDIT(__HERE,"UPCASE") | ||
| 1172 | $ __TOP = __HERE - "FIPS-1_0]" | ||
| 1173 | $ __INCLUDE = __TOP + "INCLUDE.OPENSSL]" | ||
| 1174 | $! | ||
| 1175 | $! Set up the logical name OPENSSL to point at the include directory | ||
| 1176 | $! | ||
| 1177 | $ DEFINE OPENSSL/NOLOG '__INCLUDE' | ||
| 1178 | $! | ||
| 1179 | $! Done | ||
| 1180 | $! | ||
| 1181 | $ RETURN | ||
| 1182 | $! | ||
| 1183 | $ CLEANUP: | ||
| 1184 | $! | ||
| 1185 | $! Restore the logical name OPENSSL if it had a value | ||
| 1186 | $! | ||
| 1187 | $ IF __SAVE_OPENSSL .EQS. "" | ||
| 1188 | $ THEN | ||
| 1189 | $ DEASSIGN OPENSSL | ||
| 1190 | $ ELSE | ||
| 1191 | $ DEFINE/NOLOG OPENSSL '__SAVE_OPENSSL' | ||
| 1192 | $ ENDIF | ||
| 1193 | $! | ||
| 1194 | $! Done | ||
| 1195 | $! | ||
| 1196 | $ RETURN | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips.c b/src/lib/libssl/src/fips-1.0/fips.c deleted file mode 100644 index bb833bfa2c..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips.c +++ /dev/null | |||
| @@ -1,313 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <openssl/fips.h> | ||
| 51 | #include <openssl/rand.h> | ||
| 52 | #include <openssl/fips_rand.h> | ||
| 53 | #include <openssl/err.h> | ||
| 54 | #include <openssl/bio.h> | ||
| 55 | #include <openssl/hmac.h> | ||
| 56 | #include <string.h> | ||
| 57 | #include <limits.h> | ||
| 58 | #include "fips_locl.h" | ||
| 59 | |||
| 60 | #ifdef OPENSSL_FIPS | ||
| 61 | |||
| 62 | #ifndef PATH_MAX | ||
| 63 | #define PATH_MAX 1024 | ||
| 64 | #endif | ||
| 65 | |||
| 66 | static int fips_selftest_fail; | ||
| 67 | static int fips_mode; | ||
| 68 | static const void *fips_rand_check; | ||
| 69 | |||
| 70 | static void fips_set_mode(int onoff) | ||
| 71 | { | ||
| 72 | int owning_thread = fips_is_owning_thread(); | ||
| 73 | |||
| 74 | if (fips_is_started()) | ||
| 75 | { | ||
| 76 | if (!owning_thread) fips_w_lock(); | ||
| 77 | fips_mode = onoff; | ||
| 78 | if (!owning_thread) fips_w_unlock(); | ||
| 79 | } | ||
| 80 | } | ||
| 81 | |||
| 82 | static void fips_set_rand_check(const void *rand_check) | ||
| 83 | { | ||
| 84 | int owning_thread = fips_is_owning_thread(); | ||
| 85 | |||
| 86 | if (fips_is_started()) | ||
| 87 | { | ||
| 88 | if (!owning_thread) fips_w_lock(); | ||
| 89 | fips_rand_check = rand_check; | ||
| 90 | if (!owning_thread) fips_w_unlock(); | ||
| 91 | } | ||
| 92 | } | ||
| 93 | |||
| 94 | int FIPS_mode(void) | ||
| 95 | { | ||
| 96 | int ret = 0; | ||
| 97 | int owning_thread = fips_is_owning_thread(); | ||
| 98 | |||
| 99 | if (fips_is_started()) | ||
| 100 | { | ||
| 101 | if (!owning_thread) fips_r_lock(); | ||
| 102 | ret = fips_mode; | ||
| 103 | if (!owning_thread) fips_r_unlock(); | ||
| 104 | } | ||
| 105 | return ret; | ||
| 106 | } | ||
| 107 | |||
| 108 | const void *FIPS_rand_check(void) | ||
| 109 | { | ||
| 110 | const void *ret = 0; | ||
| 111 | int owning_thread = fips_is_owning_thread(); | ||
| 112 | |||
| 113 | if (fips_is_started()) | ||
| 114 | { | ||
| 115 | if (!owning_thread) fips_r_lock(); | ||
| 116 | ret = fips_rand_check; | ||
| 117 | if (!owning_thread) fips_r_unlock(); | ||
| 118 | } | ||
| 119 | return ret; | ||
| 120 | } | ||
| 121 | |||
| 122 | int FIPS_selftest_failed(void) | ||
| 123 | { | ||
| 124 | int ret = 0; | ||
| 125 | if (fips_is_started()) | ||
| 126 | { | ||
| 127 | int owning_thread = fips_is_owning_thread(); | ||
| 128 | |||
| 129 | if (!owning_thread) fips_r_lock(); | ||
| 130 | ret = fips_selftest_fail; | ||
| 131 | if (!owning_thread) fips_r_unlock(); | ||
| 132 | } | ||
| 133 | return ret; | ||
| 134 | } | ||
| 135 | |||
| 136 | int FIPS_selftest() | ||
| 137 | { | ||
| 138 | ERR_load_crypto_strings(); | ||
| 139 | |||
| 140 | return FIPS_selftest_sha1() | ||
| 141 | && FIPS_selftest_hmac() | ||
| 142 | && FIPS_selftest_aes() | ||
| 143 | && FIPS_selftest_des() | ||
| 144 | && FIPS_selftest_rsa() | ||
| 145 | && FIPS_selftest_dsa(); | ||
| 146 | } | ||
| 147 | |||
| 148 | extern const void *FIPS_text_start(), *FIPS_text_end(); | ||
| 149 | extern const unsigned char FIPS_rodata_start[], FIPS_rodata_end[]; | ||
| 150 | unsigned char FIPS_signature [20] = { 0 }; | ||
| 151 | static const char FIPS_hmac_key[]="etaonrishdlcupfm"; | ||
| 152 | |||
| 153 | unsigned int FIPS_incore_fingerprint(unsigned char *sig,unsigned int len) | ||
| 154 | { | ||
| 155 | const unsigned char *p1 = FIPS_text_start(); | ||
| 156 | const unsigned char *p2 = FIPS_text_end(); | ||
| 157 | const unsigned char *p3 = FIPS_rodata_start; | ||
| 158 | const unsigned char *p4 = FIPS_rodata_end; | ||
| 159 | HMAC_CTX c; | ||
| 160 | |||
| 161 | HMAC_CTX_init(&c); | ||
| 162 | HMAC_Init(&c,FIPS_hmac_key,strlen(FIPS_hmac_key),EVP_sha1()); | ||
| 163 | |||
| 164 | /* detect overlapping regions */ | ||
| 165 | if (p1<=p3 && p2>=p3) | ||
| 166 | p3=p1, p4=p2>p4?p2:p4, p1=NULL, p2=NULL; | ||
| 167 | else if (p3<=p1 && p4>=p1) | ||
| 168 | p3=p3, p4=p2>p4?p2:p4, p1=NULL, p2=NULL; | ||
| 169 | |||
| 170 | if (p1) | ||
| 171 | HMAC_Update(&c,p1,(size_t)p2-(size_t)p1); | ||
| 172 | |||
| 173 | if (FIPS_signature>=p3 && FIPS_signature<p4) | ||
| 174 | { | ||
| 175 | /* "punch" hole */ | ||
| 176 | HMAC_Update(&c,p3,(size_t)FIPS_signature-(size_t)p3); | ||
| 177 | p3 = FIPS_signature+sizeof(FIPS_signature); | ||
| 178 | if (p3<p4) | ||
| 179 | HMAC_Update(&c,p3,(size_t)p4-(size_t)p3); | ||
| 180 | } | ||
| 181 | else | ||
| 182 | HMAC_Update(&c,p3,(size_t)p4-(size_t)p3); | ||
| 183 | |||
| 184 | HMAC_Final(&c,sig,&len); | ||
| 185 | HMAC_CTX_cleanup(&c); | ||
| 186 | |||
| 187 | return len; | ||
| 188 | } | ||
| 189 | |||
| 190 | int FIPS_check_incore_fingerprint(void) | ||
| 191 | { | ||
| 192 | unsigned char sig[EVP_MAX_MD_SIZE]; | ||
| 193 | unsigned int len; | ||
| 194 | extern int OPENSSL_NONPIC_relocated; | ||
| 195 | |||
| 196 | if (FIPS_text_start()==NULL) | ||
| 197 | { | ||
| 198 | FIPSerr(FIPS_F_FIPS_CHECK_FINGERPRINT,FIPS_R_UNSUPPORTED_PLATFORM); | ||
| 199 | return 0; | ||
| 200 | } | ||
| 201 | |||
| 202 | len=FIPS_incore_fingerprint (sig,sizeof(sig)); | ||
| 203 | |||
| 204 | if (len!=sizeof(FIPS_signature) || | ||
| 205 | memcmp(FIPS_signature,sig,sizeof(FIPS_signature))) | ||
| 206 | { | ||
| 207 | if (FIPS_signature>=FIPS_rodata_start && FIPS_signature<FIPS_rodata_end) | ||
| 208 | FIPSerr(FIPS_F_FIPS_CHECK_FINGERPRINT,FIPS_R_FINGERPRINT_DOES_NOT_MATCH_SEGMENT_ALIASING); | ||
| 209 | else if (OPENSSL_NONPIC_relocated) | ||
| 210 | FIPSerr(FIPS_F_FIPS_CHECK_FINGERPRINT,FIPS_R_FINGERPRINT_DOES_NOT_MATCH_NONPIC_RELOCATED); | ||
| 211 | else | ||
| 212 | FIPSerr(FIPS_F_FIPS_CHECK_FINGERPRINT,FIPS_R_FINGERPRINT_DOES_NOT_MATCH); | ||
| 213 | return 0; | ||
| 214 | } | ||
| 215 | |||
| 216 | return 1; | ||
| 217 | } | ||
| 218 | |||
| 219 | int FIPS_mode_set(int onoff) | ||
| 220 | { | ||
| 221 | int fips_set_owning_thread(); | ||
| 222 | int fips_clear_owning_thread(); | ||
| 223 | int ret = 0; | ||
| 224 | |||
| 225 | fips_w_lock(); | ||
| 226 | fips_set_started(); | ||
| 227 | fips_set_owning_thread(); | ||
| 228 | |||
| 229 | if(onoff) | ||
| 230 | { | ||
| 231 | unsigned char buf[24]; | ||
| 232 | |||
| 233 | fips_selftest_fail = 0; | ||
| 234 | |||
| 235 | /* Don't go into FIPS mode twice, just so we can do automagic | ||
| 236 | seeding */ | ||
| 237 | if(FIPS_mode()) | ||
| 238 | { | ||
| 239 | FIPSerr(FIPS_F_FIPS_MODE_SET,FIPS_R_FIPS_MODE_ALREADY_SET); | ||
| 240 | fips_selftest_fail = 1; | ||
| 241 | ret = 0; | ||
| 242 | goto end; | ||
| 243 | } | ||
| 244 | |||
| 245 | if(fips_signature_witness() != FIPS_signature) | ||
| 246 | { | ||
| 247 | FIPSerr(FIPS_F_FIPS_MODE_SET,FIPS_R_CONTRADICTING_EVIDENCE); | ||
| 248 | fips_selftest_fail = 1; | ||
| 249 | ret = 0; | ||
| 250 | goto end; | ||
| 251 | } | ||
| 252 | |||
| 253 | if(!FIPS_check_incore_fingerprint()) | ||
| 254 | { | ||
| 255 | fips_selftest_fail = 1; | ||
| 256 | ret = 0; | ||
| 257 | goto end; | ||
| 258 | } | ||
| 259 | |||
| 260 | /* Perform RNG KAT before seeding */ | ||
| 261 | if (!FIPS_selftest_rng()) | ||
| 262 | { | ||
| 263 | fips_selftest_fail = 1; | ||
| 264 | ret = 0; | ||
| 265 | goto end; | ||
| 266 | } | ||
| 267 | |||
| 268 | /* automagically seed PRNG if not already seeded */ | ||
| 269 | if(!FIPS_rand_seeded()) | ||
| 270 | { | ||
| 271 | if(RAND_bytes(buf,sizeof buf) <= 0) | ||
| 272 | { | ||
| 273 | fips_selftest_fail = 1; | ||
| 274 | ret = 0; | ||
| 275 | goto end; | ||
| 276 | } | ||
| 277 | FIPS_set_prng_key(buf,buf+8); | ||
| 278 | FIPS_rand_seed(buf+16,8); | ||
| 279 | } | ||
| 280 | |||
| 281 | /* now switch into FIPS mode */ | ||
| 282 | fips_set_rand_check(FIPS_rand_method()); | ||
| 283 | RAND_set_rand_method(FIPS_rand_method()); | ||
| 284 | if(FIPS_selftest()) | ||
| 285 | fips_set_mode(1); | ||
| 286 | else | ||
| 287 | { | ||
| 288 | fips_selftest_fail = 1; | ||
| 289 | ret = 0; | ||
| 290 | goto end; | ||
| 291 | } | ||
| 292 | ret = 1; | ||
| 293 | goto end; | ||
| 294 | } | ||
| 295 | fips_set_mode(0); | ||
| 296 | fips_selftest_fail = 0; | ||
| 297 | ret = 1; | ||
| 298 | end: | ||
| 299 | fips_clear_owning_thread(); | ||
| 300 | fips_w_unlock(); | ||
| 301 | return ret; | ||
| 302 | } | ||
| 303 | |||
| 304 | #if 0 | ||
| 305 | /* here just to cause error codes to exist */ | ||
| 306 | static void dummy() | ||
| 307 | { | ||
| 308 | FIPSerr(FIPS_F_HASH_FINAL,FIPS_F_NON_FIPS_METHOD); | ||
| 309 | FIPSerr(FIPS_F_HASH_FINAL,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 310 | } | ||
| 311 | #endif | ||
| 312 | |||
| 313 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips.h b/src/lib/libssl/src/fips-1.0/fips.h deleted file mode 100644 index f67bb885c8..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips.h +++ /dev/null | |||
| @@ -1,131 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <openssl/opensslconf.h> | ||
| 51 | |||
| 52 | #ifdef OPENSSL_FIPS | ||
| 53 | |||
| 54 | #ifdef __cplusplus | ||
| 55 | extern "C" { | ||
| 56 | #endif | ||
| 57 | |||
| 58 | struct dsa_st; | ||
| 59 | |||
| 60 | int FIPS_mode_set(int onoff); | ||
| 61 | int FIPS_mode(void); | ||
| 62 | const void *FIPS_rand_check(void); | ||
| 63 | int FIPS_selftest_failed(void); | ||
| 64 | int FIPS_dsa_check(struct dsa_st *dsa); | ||
| 65 | void FIPS_corrupt_sha1(void); | ||
| 66 | int FIPS_selftest_sha1(void); | ||
| 67 | void FIPS_corrupt_aes(void); | ||
| 68 | int FIPS_selftest_aes(void); | ||
| 69 | void FIPS_corrupt_des(void); | ||
| 70 | int FIPS_selftest_des(void); | ||
| 71 | void FIPS_corrupt_rsa(void); | ||
| 72 | int FIPS_selftest_rsa(void); | ||
| 73 | void FIPS_corrupt_dsa(void); | ||
| 74 | int FIPS_selftest_dsa(void); | ||
| 75 | void FIPS_corrupt_rng(void); | ||
| 76 | int FIPS_selftest_rng(void); | ||
| 77 | int FIPS_selftest_hmac(void); | ||
| 78 | |||
| 79 | /* BEGIN ERROR CODES */ | ||
| 80 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 81 | * made after this point may be overwritten when the script is next run. | ||
| 82 | */ | ||
| 83 | void ERR_load_FIPS_strings(void); | ||
| 84 | |||
| 85 | /* Error codes for the FIPS functions. */ | ||
| 86 | |||
| 87 | /* Function codes. */ | ||
| 88 | #define FIPS_F_DH_GENERATE_PARAMETERS 117 | ||
| 89 | #define FIPS_F_DSA_DO_SIGN 111 | ||
| 90 | #define FIPS_F_DSA_DO_VERIFY 112 | ||
| 91 | #define FIPS_F_DSA_GENERATE_PARAMETERS 110 | ||
| 92 | #define FIPS_F_FIPS_CHECK_DSA 116 | ||
| 93 | #define FIPS_F_FIPS_CHECK_EXE 106 | ||
| 94 | #define FIPS_F_FIPS_CHECK_FINGERPRINT 120 | ||
| 95 | #define FIPS_F_FIPS_CHECK_RSA 115 | ||
| 96 | #define FIPS_F_FIPS_DSA_CHECK 102 | ||
| 97 | #define FIPS_F_FIPS_MODE_SET 105 | ||
| 98 | #define FIPS_F_FIPS_SELFTEST_AES 104 | ||
| 99 | #define FIPS_F_FIPS_SELFTEST_DES 107 | ||
| 100 | #define FIPS_F_FIPS_SELFTEST_DSA 109 | ||
| 101 | #define FIPS_F_FIPS_SELFTEST_RNG 118 | ||
| 102 | #define FIPS_F_FIPS_SELFTEST_RSA 108 | ||
| 103 | #define FIPS_F_FIPS_SELFTEST_SHA 103 | ||
| 104 | #define FIPS_F_HASH_FINAL 100 | ||
| 105 | #define FIPS_F_RSA_EAY_PUBLIC_ENCRYPT 114 | ||
| 106 | #define FIPS_F_RSA_GENERATE_KEY 113 | ||
| 107 | #define FIPS_F_RSA_X931_GENERATE_KEY 119 | ||
| 108 | #define FIPS_F_SSLEAY_RAND_BYTES 101 | ||
| 109 | #define FIPS_F_FIPS_CHECK_DSO 120 | ||
| 110 | |||
| 111 | /* Reason codes. */ | ||
| 112 | #define FIPS_R_CANNOT_READ_EXE 103 | ||
| 113 | #define FIPS_R_CANNOT_READ_EXE_DIGEST 104 | ||
| 114 | #define FIPS_R_EXE_DIGEST_DOES_NOT_MATCH 105 | ||
| 115 | #define FIPS_R_FINGERPRINT_DOES_NOT_MATCH 110 | ||
| 116 | #define FIPS_R_FINGERPRINT_DOES_NOT_MATCH_NONPIC_RELOCATED 111 | ||
| 117 | #define FIPS_R_FINGERPRINT_DOES_NOT_MATCH_SEGMENT_ALIASING 112 | ||
| 118 | #define FIPS_R_FIPS_MODE_ALREADY_SET 102 | ||
| 119 | #define FIPS_R_FIPS_SELFTEST_FAILED 106 | ||
| 120 | #define FIPS_R_INVALID_KEY_LENGTH 109 | ||
| 121 | #define FIPS_R_KEY_TOO_SHORT 108 | ||
| 122 | #define FIPS_R_NON_FIPS_METHOD 100 | ||
| 123 | #define FIPS_R_PAIRWISE_TEST_FAILED 107 | ||
| 124 | #define FIPS_R_SELFTEST_FAILED 101 | ||
| 125 | #define FIPS_R_UNSUPPORTED_PLATFORM 113 | ||
| 126 | #define FIPS_R_CONTRADICTING_EVIDENCE 114 | ||
| 127 | |||
| 128 | #ifdef __cplusplus | ||
| 129 | } | ||
| 130 | #endif | ||
| 131 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips_canister.c b/src/lib/libssl/src/fips-1.0/fips_canister.c deleted file mode 100644 index 7dec62bb64..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips_canister.c +++ /dev/null | |||
| @@ -1,171 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2005 The OpenSSL Project. Rights for redistribution | ||
| 3 | * and usage in source and binary forms are granted according to the | ||
| 4 | * OpenSSL license. | ||
| 5 | */ | ||
| 6 | |||
| 7 | #include <stdio.h> | ||
| 8 | #if defined(__DECC) | ||
| 9 | # include <c_asm.h> | ||
| 10 | # pragma __nostandard | ||
| 11 | #endif | ||
| 12 | |||
| 13 | #include "e_os.h" | ||
| 14 | |||
| 15 | #if !defined(POINTER_TO_FUNCTION_IS_POINTER_TO_1ST_INSTRUCTION) | ||
| 16 | # if (defined(__sun) && (defined(__sparc) || defined(__sparcv9))) || \ | ||
| 17 | (defined(__sgi) && (defined(__mips) || defined(mips))) || \ | ||
| 18 | (defined(__osf__) && defined(__alpha)) || \ | ||
| 19 | (defined(__linux) && (defined(__arm) || defined(__arm__))) || \ | ||
| 20 | (defined(__i386) || defined(__i386__)) || \ | ||
| 21 | (defined(__x86_64) || defined(__x86_64__)) || \ | ||
| 22 | (defined(vax) || defined(__vax__)) | ||
| 23 | # define POINTER_TO_FUNCTION_IS_POINTER_TO_1ST_INSTRUCTION | ||
| 24 | # endif | ||
| 25 | #endif | ||
| 26 | |||
| 27 | #ifdef FIPS_START | ||
| 28 | #define FIPS_ref_point FIPS_text_start | ||
| 29 | /* Some compilers put string literals into a separate segment. As we | ||
| 30 | * are mostly interested to hash AES tables in .rodata, we declare | ||
| 31 | * reference points accordingly. In case you wonder, the values are | ||
| 32 | * big-endian encoded variable names, just to prevent these arrays | ||
| 33 | * from being merged by linker. */ | ||
| 34 | const unsigned int FIPS_rodata_start[]= | ||
| 35 | { 0x46495053, 0x5f726f64, 0x6174615f, 0x73746172 }; | ||
| 36 | #else | ||
| 37 | #define FIPS_ref_point FIPS_text_end | ||
| 38 | const unsigned int FIPS_rodata_end[]= | ||
| 39 | { 0x46495053, 0x5f726f64, 0x6174615f, 0x656e645b }; | ||
| 40 | #endif | ||
| 41 | |||
| 42 | /* | ||
| 43 | * I declare reference function as static in order to avoid certain | ||
| 44 | * pitfalls in -dynamic linker behaviour... | ||
| 45 | */ | ||
| 46 | static void *instruction_pointer(void) | ||
| 47 | { void *ret=NULL; | ||
| 48 | /* These are ABI-neutral CPU-specific snippets. ABI-neutrality means | ||
| 49 | * that they are designed to work under any OS running on particular | ||
| 50 | * CPU, which is why you don't find any #ifdef THIS_OR_THAT_OS in | ||
| 51 | * this function. */ | ||
| 52 | #if defined(INSTRUCTION_POINTER_IMPLEMENTED) | ||
| 53 | INSTRUCTION_POINTER_IMPLEMENTED(ret); | ||
| 54 | #elif defined(__GNUC__) && __GNUC__>=2 | ||
| 55 | # if defined(__alpha) || defined(__alpha__) | ||
| 56 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 57 | __asm __volatile ( "br %0,1f\n1:" : "=r"(ret) ); | ||
| 58 | # elif defined(__i386) || defined(__i386__) | ||
| 59 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 60 | __asm __volatile ( "call 1f\n1: popl %0" : "=r"(ret) ); | ||
| 61 | ret = (void *)((size_t)ret&~3UL); /* align for better performance */ | ||
| 62 | # elif defined(__ia64) || defined(__ia64__) | ||
| 63 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 64 | __asm __volatile ( "mov %0=ip" : "=r"(ret) ); | ||
| 65 | # elif defined(__hppa) || defined(__hppa__) || defined(__pa_risc) | ||
| 66 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 67 | __asm __volatile ( "blr %%r0,%0\n\tnop" : "=r"(ret) ); | ||
| 68 | ret = (void *)((size_t)ret&~3UL); /* mask privilege level */ | ||
| 69 | # elif defined(__mips) || defined(__mips__) | ||
| 70 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 71 | void *scratch; | ||
| 72 | __asm __volatile ( "move %1,$31\n\t" /* save ra */ | ||
| 73 | "bal .+8; nop\n\t" | ||
| 74 | "move %0,$31\n\t" | ||
| 75 | "move $31,%1" /* restore ra */ | ||
| 76 | : "=r"(ret),"=r"(scratch) ); | ||
| 77 | # elif defined(__ppc__) || defined(__powerpc) || defined(__powerpc__) || \ | ||
| 78 | defined(__POWERPC__) || defined(_POWER) || defined(__PPC__) || \ | ||
| 79 | defined(__PPC64__) || defined(__powerpc64__) | ||
| 80 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 81 | void *scratch; | ||
| 82 | __asm __volatile ( "mfspr %1,8\n\t" /* save lr */ | ||
| 83 | "bl .+4\n\t" | ||
| 84 | "mfspr %0,8\n\t" /* mflr ret */ | ||
| 85 | "mtspr 8,%1" /* restore lr */ | ||
| 86 | : "=r"(ret),"=r"(scratch) ); | ||
| 87 | # elif defined(__sparc) || defined(__sparc__) || defined(__sparcv9) | ||
| 88 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 89 | void *scratch; | ||
| 90 | __asm __volatile ( "mov %%o7,%1\n\t" | ||
| 91 | "call .+8; nop\n\t" | ||
| 92 | "mov %%o7,%0\n\t" | ||
| 93 | "mov %1,%%o7" | ||
| 94 | : "=r"(ret),"=r"(scratch) ); | ||
| 95 | # elif defined(__x86_64) || defined(__x86_64__) | ||
| 96 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 97 | __asm __volatile ( "leaq 0(%%rip),%0" : "=r"(ret) ); | ||
| 98 | ret = (void *)((size_t)ret&~3UL); /* align for better performance */ | ||
| 99 | # endif | ||
| 100 | #elif defined(__DECC) && defined(__alpha) | ||
| 101 | # define INSTRUCTION_POINTER_IMPLEMENTED | ||
| 102 | ret = (void *)(size_t)asm("br %v0,1f\n1:"); | ||
| 103 | #elif defined(_MSC_VER) && defined(_M_IX86) | ||
| 104 | # undef INSTRUCTION_POINTER_IMPLEMENTED | ||
| 105 | void *scratch; | ||
| 106 | _asm { | ||
| 107 | call self | ||
| 108 | self: pop eax | ||
| 109 | mov scratch,eax | ||
| 110 | } | ||
| 111 | ret = (void *)((size_t)scratch&~3UL); | ||
| 112 | #endif | ||
| 113 | return ret; | ||
| 114 | } | ||
| 115 | |||
| 116 | /* | ||
| 117 | * This function returns pointer to an instruction in the vicinity of | ||
| 118 | * its entry point, but not outside this object module. This guarantees | ||
| 119 | * that sequestered code is covered... | ||
| 120 | */ | ||
| 121 | void *FIPS_ref_point() | ||
| 122 | { | ||
| 123 | #if defined(INSTRUCTION_POINTER_IMPLEMENTED) | ||
| 124 | return instruction_pointer(); | ||
| 125 | /* Below we essentially cover vendor compilers which do not support | ||
| 126 | * inline assembler... */ | ||
| 127 | #elif defined(_AIX) | ||
| 128 | struct { void *ip,*gp,*env; } *p = (void *)instruction_pointer; | ||
| 129 | return p->ip; | ||
| 130 | #elif defined(_HPUX_SOURCE) | ||
| 131 | # if defined(__hppa) || defined(__hppa__) | ||
| 132 | struct { void *i[4]; } *p = (void *)FIPS_ref_point; | ||
| 133 | |||
| 134 | if (sizeof(p) == 8) /* 64-bit */ | ||
| 135 | return p->i[2]; | ||
| 136 | else if ((size_t)p & 2) | ||
| 137 | { p = (void *)((size_t)p&~3UL); | ||
| 138 | return p->i[0]; | ||
| 139 | } | ||
| 140 | else | ||
| 141 | return (void *)p; | ||
| 142 | # elif defined(__ia64) || defined(__ia64__) | ||
| 143 | struct { unsigned long long ip,gp; } *p=(void *)instruction_pointer; | ||
| 144 | return (void *)(size_t)p->ip; | ||
| 145 | # endif | ||
| 146 | #elif (defined(__VMS) || defined(VMS)) && !(defined(vax) || defined(__vax__)) | ||
| 147 | /* applies to both alpha and ia64 */ | ||
| 148 | struct { unsigned __int64 opaque,ip; } *p=(void *)instruction_pointer; | ||
| 149 | return (void *)(size_t)p->ip; | ||
| 150 | #elif defined(__VOS__) | ||
| 151 | /* applies to both pa-risc and ia32 */ | ||
| 152 | struct { void *dp,*ip,*gp; } *p = (void *)instruction_pointer; | ||
| 153 | return p->ip; | ||
| 154 | #elif defined(_WIN32) | ||
| 155 | # if defined(_WIN64) && defined(_M_IA64) | ||
| 156 | struct { void *ip,*gp; } *p = (void *)FIPS_ref_point; | ||
| 157 | return p->ip; | ||
| 158 | # else | ||
| 159 | return (void *)FIPS_ref_point; | ||
| 160 | # endif | ||
| 161 | /* | ||
| 162 | * In case you wonder why there is no #ifdef __linux. All Linux targets | ||
| 163 | * are GCC-based and therefore are covered by instruction_pointer above | ||
| 164 | * [well, some are covered by by the one below]... | ||
| 165 | */ | ||
| 166 | #elif defined(POINTER_TO_FUNCTION_IS_POINTER_TO_1ST_INSTRUCTION) | ||
| 167 | return (void *)instruction_pointer; | ||
| 168 | #else | ||
| 169 | return NULL; | ||
| 170 | #endif | ||
| 171 | } | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips_err.h b/src/lib/libssl/src/fips-1.0/fips_err.h deleted file mode 100644 index c57aebf8a3..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips_err.h +++ /dev/null | |||
| @@ -1,133 +0,0 @@ | |||
| 1 | /* fips/fips_err.h */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* NOTE: this file was auto generated by the mkerr.pl script: any changes | ||
| 57 | * made to it will be overwritten when the script next updates this file, | ||
| 58 | * only reason strings will be preserved. | ||
| 59 | */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/fips.h> | ||
| 64 | |||
| 65 | /* BEGIN ERROR CODES */ | ||
| 66 | #ifndef OPENSSL_NO_ERR | ||
| 67 | |||
| 68 | #define ERR_FUNC(func) ERR_PACK(ERR_LIB_FIPS,func,0) | ||
| 69 | #define ERR_REASON(reason) ERR_PACK(ERR_LIB_FIPS,0,reason) | ||
| 70 | |||
| 71 | static ERR_STRING_DATA FIPS_str_functs[]= | ||
| 72 | { | ||
| 73 | {ERR_FUNC(FIPS_F_DH_GENERATE_PARAMETERS), "DH_generate_parameters"}, | ||
| 74 | {ERR_FUNC(FIPS_F_DSA_DO_SIGN), "DSA_do_sign"}, | ||
| 75 | {ERR_FUNC(FIPS_F_DSA_DO_VERIFY), "DSA_do_verify"}, | ||
| 76 | {ERR_FUNC(FIPS_F_DSA_GENERATE_PARAMETERS), "DSA_generate_parameters"}, | ||
| 77 | {ERR_FUNC(FIPS_F_FIPS_CHECK_DSA), "FIPS_CHECK_DSA"}, | ||
| 78 | {ERR_FUNC(FIPS_F_FIPS_CHECK_EXE), "FIPS_CHECK_EXE"}, | ||
| 79 | {ERR_FUNC(FIPS_F_FIPS_CHECK_FINGERPRINT), "FIPS_CHECK_FINGERPRINT"}, | ||
| 80 | {ERR_FUNC(FIPS_F_FIPS_CHECK_RSA), "FIPS_CHECK_RSA"}, | ||
| 81 | {ERR_FUNC(FIPS_F_FIPS_DSA_CHECK), "FIPS_dsa_check"}, | ||
| 82 | {ERR_FUNC(FIPS_F_FIPS_MODE_SET), "FIPS_mode_set"}, | ||
| 83 | {ERR_FUNC(FIPS_F_FIPS_SELFTEST_AES), "FIPS_selftest_aes"}, | ||
| 84 | {ERR_FUNC(FIPS_F_FIPS_SELFTEST_DES), "FIPS_selftest_des"}, | ||
| 85 | {ERR_FUNC(FIPS_F_FIPS_SELFTEST_DSA), "FIPS_selftest_dsa"}, | ||
| 86 | {ERR_FUNC(FIPS_F_FIPS_SELFTEST_RNG), "FIPS_selftest_rng"}, | ||
| 87 | {ERR_FUNC(FIPS_F_FIPS_SELFTEST_RSA), "FIPS_selftest_rsa"}, | ||
| 88 | {ERR_FUNC(FIPS_F_FIPS_SELFTEST_SHA), "FIPS_SELFTEST_SHA"}, | ||
| 89 | {ERR_FUNC(FIPS_F_HASH_FINAL), "HASH_FINAL"}, | ||
| 90 | {ERR_FUNC(FIPS_F_RSA_EAY_PUBLIC_ENCRYPT), "RSA_EAY_PUBLIC_ENCRYPT"}, | ||
| 91 | {ERR_FUNC(FIPS_F_RSA_GENERATE_KEY), "RSA_generate_key"}, | ||
| 92 | {ERR_FUNC(FIPS_F_RSA_X931_GENERATE_KEY), "RSA_X931_generate_key"}, | ||
| 93 | {ERR_FUNC(FIPS_F_SSLEAY_RAND_BYTES), "SSLEAY_RAND_BYTES"}, | ||
| 94 | {ERR_FUNC(FIPS_F_FIPS_CHECK_DSO), "FIPS_check_dso"}, | ||
| 95 | {0,NULL} | ||
| 96 | }; | ||
| 97 | |||
| 98 | static ERR_STRING_DATA FIPS_str_reasons[]= | ||
| 99 | { | ||
| 100 | {ERR_REASON(FIPS_R_CANNOT_READ_EXE) ,"cannot access executable object"}, | ||
| 101 | {ERR_REASON(FIPS_R_CANNOT_READ_EXE_DIGEST),"cannot access detached digest"}, | ||
| 102 | {ERR_REASON(FIPS_R_EXE_DIGEST_DOES_NOT_MATCH),"detached digest verification failed"}, | ||
| 103 | {ERR_REASON(FIPS_R_FINGERPRINT_DOES_NOT_MATCH),"fingerprint does not match"}, | ||
| 104 | {ERR_REASON(FIPS_R_FINGERPRINT_DOES_NOT_MATCH_NONPIC_RELOCATED),"fingerprint does not match, possibly because non-PIC was relocated"}, | ||
| 105 | {ERR_REASON(FIPS_R_FINGERPRINT_DOES_NOT_MATCH_SEGMENT_ALIASING),"fingerprint does not match, invalid segment aliasing"}, | ||
| 106 | {ERR_REASON(FIPS_R_FIPS_MODE_ALREADY_SET),"fips mode already set"}, | ||
| 107 | {ERR_REASON(FIPS_R_FIPS_SELFTEST_FAILED) ,"fips selftest failed"}, | ||
| 108 | {ERR_REASON(FIPS_R_INVALID_KEY_LENGTH) ,"invalid key length"}, | ||
| 109 | {ERR_REASON(FIPS_R_KEY_TOO_SHORT) ,"key too short"}, | ||
| 110 | {ERR_REASON(FIPS_R_NON_FIPS_METHOD) ,"non fips method"}, | ||
| 111 | {ERR_REASON(FIPS_R_PAIRWISE_TEST_FAILED) ,"pairwise test failed"}, | ||
| 112 | {ERR_REASON(FIPS_R_SELFTEST_FAILED) ,"selftest failed"}, | ||
| 113 | {ERR_REASON(FIPS_R_UNSUPPORTED_PLATFORM) ,"unsupported platform"}, | ||
| 114 | {ERR_REASON(FIPS_R_CONTRADICTING_EVIDENCE),"duplicate code detected, check your linking procedure"}, | ||
| 115 | {0,NULL} | ||
| 116 | }; | ||
| 117 | |||
| 118 | #endif | ||
| 119 | |||
| 120 | void ERR_load_FIPS_strings(void) | ||
| 121 | { | ||
| 122 | static int init; | ||
| 123 | |||
| 124 | if (!init) | ||
| 125 | { | ||
| 126 | init=1; | ||
| 127 | #ifndef OPENSSL_NO_ERR | ||
| 128 | ERR_load_strings(0,FIPS_str_functs); | ||
| 129 | ERR_load_strings(0,FIPS_str_reasons); | ||
| 130 | #endif | ||
| 131 | |||
| 132 | } | ||
| 133 | } | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips_err_wrapper.c b/src/lib/libssl/src/fips-1.0/fips_err_wrapper.c deleted file mode 100644 index 09f11748f6..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips_err_wrapper.c +++ /dev/null | |||
| @@ -1,7 +0,0 @@ | |||
| 1 | #include <openssl/opensslconf.h> | ||
| 2 | |||
| 3 | #ifdef OPENSSL_FIPS | ||
| 4 | # include "fips_err.h" | ||
| 5 | #else | ||
| 6 | static void *dummy=&dummy; | ||
| 7 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips_premain.c b/src/lib/libssl/src/fips-1.0/fips_premain.c deleted file mode 100644 index 6a75d909eb..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips_premain.c +++ /dev/null | |||
| @@ -1,171 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2005 The OpenSSL Project. Rights for redistribution | ||
| 3 | * and usage in source and binary forms are granted according to the | ||
| 4 | * OpenSSL license. | ||
| 5 | */ | ||
| 6 | |||
| 7 | #include <stdio.h> | ||
| 8 | #include <stdlib.h> | ||
| 9 | #include <string.h> | ||
| 10 | #if defined(__unix) || defined(__unix__) | ||
| 11 | #include <unistd.h> | ||
| 12 | #endif | ||
| 13 | |||
| 14 | #ifndef FINGERPRINT_PREMAIN_DSO_LOAD | ||
| 15 | |||
| 16 | #if defined(__GNUC__) && __GNUC__>=2 | ||
| 17 | void FINGERPRINT_premain(void) __attribute__((constructor)); | ||
| 18 | /* Most commonly this results in pointer to premain to be dropped | ||
| 19 | * to .ctors segment, which is traversed by GCC crtbegin.o upon | ||
| 20 | * program startup. Except on a.out OpenBSD where it results in | ||
| 21 | * _GLOBAL_$I$premain() {premain();} being auto-generated by | ||
| 22 | * compiler... But one way or another this is believed to cover | ||
| 23 | * *all* GCC targets. */ | ||
| 24 | #elif defined(_MSC_VER) | ||
| 25 | # ifdef _WINDLL | ||
| 26 | __declspec(dllexport) /* this is essentially cosmetics... */ | ||
| 27 | # endif | ||
| 28 | void FINGERPRINT_premain(void); | ||
| 29 | static int premain_wrapper(void) { FINGERPRINT_premain(); return 0; } | ||
| 30 | # pragma data_seg(".CRT$XCU") | ||
| 31 | static int (*p)(void) = premain_wrapper; | ||
| 32 | /* This results in pointer to premain to appear in .CRT segment, | ||
| 33 | * which is traversed by Visual C run-time initialization code. | ||
| 34 | * This applies to both Win32 and [all flavors of] Win64. */ | ||
| 35 | # pragma data_seg() | ||
| 36 | #elif defined(__SUNPRO_C) | ||
| 37 | void FINGERPRINT_premain(void); | ||
| 38 | # pragma init(FINGERPRINT_premain) | ||
| 39 | /* This results in a call to premain to appear in .init segment. */ | ||
| 40 | #elif defined(__DECC) && (defined(__VMS) || defined(VMS)) | ||
| 41 | void FINGERPRINT_premain(void); | ||
| 42 | # pragma __nostandard | ||
| 43 | globaldef { "LIB$INITIALIZ" } readonly _align (LONGWORD) | ||
| 44 | int spare[8] = {0}; | ||
| 45 | globaldef { "LIB$INITIALIZE" } readonly _align (LONGWORD) | ||
| 46 | void (*x_FINGERPRINT_premain)(void) = FINGERPRINT_premain; | ||
| 47 | /* Refer to LIB$INITIALIZE to ensure it exists in the image. */ | ||
| 48 | int lib$initialize(); | ||
| 49 | globaldef int (*lib_init_ref)() = lib$initialize; | ||
| 50 | # pragma __standard | ||
| 51 | #elif 0 | ||
| 52 | The rest has to be taken care of through command line: | ||
| 53 | |||
| 54 | -Wl,-init,FINGERPRINT_premain on OSF1 and IRIX | ||
| 55 | -Wl,+init,FINGERPRINT_premain on HP-UX | ||
| 56 | -Wl,-binitfini:FINGERPRINT_premain on AIX | ||
| 57 | |||
| 58 | On ELF platforms this results in a call to premain to appear in | ||
| 59 | .init segment... | ||
| 60 | #endif | ||
| 61 | |||
| 62 | #ifndef HMAC_SHA1_SIG | ||
| 63 | #define HMAC_SHA1_SIG "?have to make sure this string is unique" | ||
| 64 | #endif | ||
| 65 | |||
| 66 | static const unsigned char FINGERPRINT_ascii_value[40] = HMAC_SHA1_SIG; | ||
| 67 | |||
| 68 | #define atox(c) ((c)>='a'?((c)-'a'+10):((c)>='A'?(c)-'A'+10:(c)-'0')) | ||
| 69 | |||
| 70 | extern const void *FIPS_text_start(), *FIPS_text_end(); | ||
| 71 | extern const unsigned char FIPS_rodata_start[], FIPS_rodata_end[]; | ||
| 72 | extern unsigned char FIPS_signature[20]; | ||
| 73 | extern unsigned int FIPS_incore_fingerprint(unsigned char *,unsigned int); | ||
| 74 | |||
| 75 | /* | ||
| 76 | * As name suggests this code is executed prior main(). We use this | ||
| 77 | * opportunity to fingerprint sequestered code in virtual address | ||
| 78 | * space of target application. | ||
| 79 | */ | ||
| 80 | void FINGERPRINT_premain(void) | ||
| 81 | { unsigned char sig[sizeof(FIPS_signature)]; | ||
| 82 | const unsigned char *p=FINGERPRINT_ascii_value; | ||
| 83 | unsigned int len=sizeof(sig),i; | ||
| 84 | |||
| 85 | /* "volatilization" is done to disengage unwanted optimization... */ | ||
| 86 | if (*((volatile unsigned char *)p)=='?') | ||
| 87 | { if (FIPS_text_start()==NULL) | ||
| 88 | { fprintf(stderr,"FIPS_text_start() returns NULL\n"); | ||
| 89 | _exit(1); | ||
| 90 | } | ||
| 91 | #if defined(DEBUG_FINGERPRINT_PREMAIN) | ||
| 92 | fprintf(stderr,".text:%p+%d=%p\n",FIPS_text_start(), | ||
| 93 | (int)((size_t)FIPS_text_end()-(size_t)FIPS_text_start()), | ||
| 94 | FIPS_text_end()); | ||
| 95 | fprintf(stderr,".rodata:%p+%d=%p\n",FIPS_rodata_start, | ||
| 96 | (int)((size_t)FIPS_rodata_end-(size_t)FIPS_rodata_start), | ||
| 97 | FIPS_rodata_end); | ||
| 98 | #endif | ||
| 99 | |||
| 100 | len=FIPS_incore_fingerprint(sig,sizeof(sig)); | ||
| 101 | |||
| 102 | if (len!=sizeof(sig)) | ||
| 103 | { fprintf(stderr,"fingerprint length mismatch: %u\n",len); | ||
| 104 | _exit(1); | ||
| 105 | } | ||
| 106 | |||
| 107 | for (i=0;i<len;i++) printf("%02x",sig[i]); | ||
| 108 | printf("\n"); | ||
| 109 | fflush(stdout); | ||
| 110 | _exit(0); | ||
| 111 | } | ||
| 112 | else if (FIPS_signature[0]=='\0') do | ||
| 113 | { for (i=0;i<sizeof(FIPS_signature);i++,p+=2) | ||
| 114 | FIPS_signature[i] = (atox(p[0])<<4)|atox(p[1]); | ||
| 115 | |||
| 116 | #if defined(DEBUG_FINGERPRINT_PREMAIN) | ||
| 117 | if (getenv("OPENSSL_FIPS")==NULL) break; | ||
| 118 | |||
| 119 | len=FIPS_incore_fingerprint(sig,sizeof(sig)); | ||
| 120 | |||
| 121 | if (memcmp(FIPS_signature,sig,sizeof(FIPS_signature))) | ||
| 122 | { fprintf(stderr,"FINGERPRINT_premain: FIPS_signature mismatch\n"); | ||
| 123 | _exit(1); | ||
| 124 | } | ||
| 125 | #endif | ||
| 126 | } while(0); | ||
| 127 | } | ||
| 128 | |||
| 129 | #else | ||
| 130 | |||
| 131 | #include <openssl/bio.h> | ||
| 132 | #include <openssl/dso.h> | ||
| 133 | #include <openssl/err.h> | ||
| 134 | |||
| 135 | int main(int argc,char *argv[]) | ||
| 136 | { DSO *dso; | ||
| 137 | DSO_FUNC_TYPE func; | ||
| 138 | BIO *bio_err; | ||
| 139 | |||
| 140 | if (argc < 2) | ||
| 141 | { fprintf (stderr,"usage: %s libcrypto.dso\n",argv[0]); | ||
| 142 | return 1; | ||
| 143 | } | ||
| 144 | |||
| 145 | if ((bio_err=BIO_new(BIO_s_file())) == NULL) | ||
| 146 | { fprintf (stderr,"unable to allocate BIO\n"); | ||
| 147 | return 1; | ||
| 148 | } | ||
| 149 | BIO_set_fp(bio_err,stderr,BIO_NOCLOSE|BIO_FP_TEXT); | ||
| 150 | ERR_load_crypto_strings(); | ||
| 151 | |||
| 152 | dso = DSO_load(NULL,argv[1],NULL,DSO_FLAG_NO_NAME_TRANSLATION); | ||
| 153 | if (dso == NULL) | ||
| 154 | { ERR_print_errors(bio_err); | ||
| 155 | return 1; | ||
| 156 | } | ||
| 157 | |||
| 158 | /* This is not normally reached, because FINGERPRINT_premain should | ||
| 159 | * have executed and terminated application already upon DSO_load... */ | ||
| 160 | func = DSO_bind_func(dso,"FINGERPRINT_premain"); | ||
| 161 | if (func == NULL) | ||
| 162 | { ERR_print_errors(bio_err); | ||
| 163 | return 1; | ||
| 164 | } | ||
| 165 | |||
| 166 | (*func)(); | ||
| 167 | |||
| 168 | return 0; | ||
| 169 | } | ||
| 170 | |||
| 171 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/fips_test_suite.c b/src/lib/libssl/src/fips-1.0/fips_test_suite.c deleted file mode 100644 index 904ff97577..0000000000 --- a/src/lib/libssl/src/fips-1.0/fips_test_suite.c +++ /dev/null | |||
| @@ -1,510 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * | ||
| 5 | * This command is intended as a test driver for the FIPS-140 testing | ||
| 6 | * lab performing FIPS-140 validation. It demonstrates the use of the | ||
| 7 | * OpenSSL library ito perform a variety of common cryptographic | ||
| 8 | * functions. A power-up self test is demonstrated by deliberately | ||
| 9 | * pointing to an invalid executable hash | ||
| 10 | * | ||
| 11 | * Contributed by Steve Marquess. | ||
| 12 | * | ||
| 13 | */ | ||
| 14 | #include <stdio.h> | ||
| 15 | #include <assert.h> | ||
| 16 | #include <ctype.h> | ||
| 17 | #include <string.h> | ||
| 18 | #include <stdlib.h> | ||
| 19 | #include <openssl/aes.h> | ||
| 20 | #include <openssl/des.h> | ||
| 21 | #include <openssl/rsa.h> | ||
| 22 | #include <openssl/dsa.h> | ||
| 23 | #include <openssl/hmac.h> | ||
| 24 | #include <openssl/fips_sha.h> | ||
| 25 | #include <openssl/md5.h> | ||
| 26 | #include <openssl/err.h> | ||
| 27 | #include <openssl/fips.h> | ||
| 28 | #include <openssl/bn.h> | ||
| 29 | #include <openssl/rand.h> | ||
| 30 | #ifndef OPENSSL_FIPS | ||
| 31 | int main(int argc, char *argv[]) | ||
| 32 | { | ||
| 33 | printf("No FIPS support\n"); | ||
| 34 | return(0); | ||
| 35 | } | ||
| 36 | #else | ||
| 37 | |||
| 38 | /* AES: encrypt and decrypt known plaintext, verify result matches original plaintext | ||
| 39 | */ | ||
| 40 | static int FIPS_aes_test() | ||
| 41 | { | ||
| 42 | unsigned char userkey[16] = { 0xde, 0xad, 0xbe, 0xef, 0xfe, 0xed, 0xf0, 0x0d }; | ||
| 43 | unsigned char plaintext[16] = "etaonrishdlcu"; | ||
| 44 | unsigned char ciphertext[16]; | ||
| 45 | unsigned char buf[16]; | ||
| 46 | AES_KEY key; | ||
| 47 | AES_KEY dkey; | ||
| 48 | |||
| 49 | ERR_clear_error(); | ||
| 50 | if (AES_set_encrypt_key( userkey, 128, &key )) | ||
| 51 | return 0; | ||
| 52 | AES_encrypt( plaintext, ciphertext, &key); | ||
| 53 | if (AES_set_decrypt_key( userkey, 128, &dkey )) | ||
| 54 | return 0; | ||
| 55 | AES_decrypt( ciphertext, buf, &dkey); | ||
| 56 | if (memcmp(buf, plaintext, sizeof(buf))) | ||
| 57 | return 0; | ||
| 58 | return 1; | ||
| 59 | } | ||
| 60 | |||
| 61 | /* DES: encrypt and decrypt known plaintext, verify result matches original plaintext | ||
| 62 | */ | ||
| 63 | static int FIPS_des_test() | ||
| 64 | { | ||
| 65 | DES_cblock userkey = { 0xde, 0xad, 0xbe, 0xef, 0xfe, 0xed, 0xf0, 0x0d }; | ||
| 66 | DES_cblock plaintext = { 'e', 't', 'a', 'o', 'n', 'r', 'i', 's' }; | ||
| 67 | |||
| 68 | DES_key_schedule key; | ||
| 69 | DES_cblock ciphertext; | ||
| 70 | DES_cblock buf; | ||
| 71 | |||
| 72 | ERR_clear_error(); | ||
| 73 | if (DES_set_key(&userkey, &key) < 0) | ||
| 74 | return 0; | ||
| 75 | DES_ecb_encrypt( &plaintext, &ciphertext, &key, 1); | ||
| 76 | DES_ecb_encrypt( &ciphertext, &buf, &key, 0); | ||
| 77 | if (memcmp(buf, plaintext, sizeof(buf))) | ||
| 78 | return 0; | ||
| 79 | return 1; | ||
| 80 | } | ||
| 81 | |||
| 82 | /* DSA: generate key and sign a known digest, then verify the signature | ||
| 83 | * against the digest | ||
| 84 | */ | ||
| 85 | static int FIPS_dsa_test() | ||
| 86 | { | ||
| 87 | DSA *dsa = NULL; | ||
| 88 | unsigned char dgst[] = "etaonrishdlc"; | ||
| 89 | unsigned char sig[256]; | ||
| 90 | unsigned int siglen; | ||
| 91 | |||
| 92 | ERR_clear_error(); | ||
| 93 | dsa = DSA_generate_parameters(512,NULL,0,NULL,NULL,NULL,NULL); | ||
| 94 | if (!dsa) | ||
| 95 | return 0; | ||
| 96 | if (!DSA_generate_key(dsa)) | ||
| 97 | return 0; | ||
| 98 | if ( DSA_sign(0,dgst,sizeof(dgst) - 1,sig,&siglen,dsa) != 1 ) | ||
| 99 | return 0; | ||
| 100 | if ( DSA_verify(0,dgst,sizeof(dgst) - 1,sig,siglen,dsa) != 1 ) | ||
| 101 | return 0; | ||
| 102 | DSA_free(dsa); | ||
| 103 | return 1; | ||
| 104 | } | ||
| 105 | |||
| 106 | /* RSA: generate keys and encrypt and decrypt known plaintext, verify result | ||
| 107 | * matches the original plaintext | ||
| 108 | */ | ||
| 109 | static int FIPS_rsa_test() | ||
| 110 | { | ||
| 111 | RSA *key; | ||
| 112 | unsigned char input_ptext[] = "etaonrishdlc"; | ||
| 113 | unsigned char ctext[256]; | ||
| 114 | unsigned char ptext[256]; | ||
| 115 | int n; | ||
| 116 | |||
| 117 | ERR_clear_error(); | ||
| 118 | key = RSA_generate_key(1024,65537,NULL,NULL); | ||
| 119 | if (!key) | ||
| 120 | return 0; | ||
| 121 | n = RSA_size(key); | ||
| 122 | n = RSA_public_encrypt(sizeof(input_ptext) - 1,input_ptext,ctext,key,RSA_PKCS1_PADDING); | ||
| 123 | if (n < 0) | ||
| 124 | return 0; | ||
| 125 | n = RSA_private_decrypt(n,ctext,ptext,key,RSA_PKCS1_PADDING); | ||
| 126 | if (n < 0) | ||
| 127 | return 0; | ||
| 128 | RSA_free(key); | ||
| 129 | if (memcmp(input_ptext,ptext,sizeof(input_ptext) - 1)) | ||
| 130 | return 0; | ||
| 131 | return 1; | ||
| 132 | } | ||
| 133 | |||
| 134 | /* SHA1: generate hash of known digest value and compare to known | ||
| 135 | precomputed correct hash | ||
| 136 | */ | ||
| 137 | static int FIPS_sha1_test() | ||
| 138 | { | ||
| 139 | unsigned char digest[SHA_DIGEST_LENGTH] = | ||
| 140 | { 0x11, 0xf1, 0x9a, 0x3a, 0xec, 0x1a, 0x1e, 0x8e, 0x65, 0xd4, 0x9a, 0x38, 0x0c, 0x8b, 0x1e, 0x2c, 0xe8, 0xb3, 0xc5, 0x18 }; | ||
| 141 | unsigned char str[] = "etaonrishd"; | ||
| 142 | |||
| 143 | unsigned char md[SHA_DIGEST_LENGTH]; | ||
| 144 | |||
| 145 | ERR_clear_error(); | ||
| 146 | if (!SHA1(str,sizeof(str) - 1,md)) return 0; | ||
| 147 | if (memcmp(md,digest,sizeof(md))) | ||
| 148 | return 0; | ||
| 149 | return 1; | ||
| 150 | } | ||
| 151 | |||
| 152 | /* SHA256: generate hash of known digest value and compare to known | ||
| 153 | precomputed correct hash | ||
| 154 | */ | ||
| 155 | static int FIPS_sha256_test() | ||
| 156 | { | ||
| 157 | unsigned char digest[SHA256_DIGEST_LENGTH] = | ||
| 158 | {0xf5, 0x53, 0xcd, 0xb8, 0xcf, 0x1, 0xee, 0x17, 0x9b, 0x93, 0xc9, 0x68, 0xc0, 0xea, 0x40, 0x91, | ||
| 159 | 0x6, 0xec, 0x8e, 0x11, 0x96, 0xc8, 0x5d, 0x1c, 0xaf, 0x64, 0x22, 0xe6, 0x50, 0x4f, 0x47, 0x57}; | ||
| 160 | unsigned char str[] = "etaonrishd"; | ||
| 161 | |||
| 162 | unsigned char md[SHA256_DIGEST_LENGTH]; | ||
| 163 | |||
| 164 | ERR_clear_error(); | ||
| 165 | if (!SHA256(str,sizeof(str) - 1,md)) return 0; | ||
| 166 | if (memcmp(md,digest,sizeof(md))) | ||
| 167 | return 0; | ||
| 168 | return 1; | ||
| 169 | } | ||
| 170 | |||
| 171 | /* SHA512: generate hash of known digest value and compare to known | ||
| 172 | precomputed correct hash | ||
| 173 | */ | ||
| 174 | static int FIPS_sha512_test() | ||
| 175 | { | ||
| 176 | unsigned char digest[SHA512_DIGEST_LENGTH] = | ||
| 177 | {0x99, 0xc9, 0xe9, 0x5b, 0x88, 0xd4, 0x78, 0x88, 0xdf, 0x88, 0x5f, 0x94, 0x71, 0x64, 0x28, 0xca, | ||
| 178 | 0x16, 0x1f, 0x3d, 0xf4, 0x1f, 0xf3, 0x0f, 0xc5, 0x03, 0x99, 0xb2, 0xd0, 0xe7, 0x0b, 0x94, 0x4a, | ||
| 179 | 0x45, 0xd2, 0x6c, 0x4f, 0x20, 0x06, 0xef, 0x71, 0xa9, 0x25, 0x7f, 0x24, 0xb1, 0xd9, 0x40, 0x22, | ||
| 180 | 0x49, 0x54, 0x10, 0xc2, 0x22, 0x9d, 0x27, 0xfe, 0xbd, 0xd6, 0xd6, 0xeb, 0x2d, 0x42, 0x1d, 0xa3}; | ||
| 181 | unsigned char str[] = "etaonrishd"; | ||
| 182 | |||
| 183 | unsigned char md[SHA512_DIGEST_LENGTH]; | ||
| 184 | |||
| 185 | ERR_clear_error(); | ||
| 186 | if (!SHA512(str,sizeof(str) - 1,md)) return 0; | ||
| 187 | if (memcmp(md,digest,sizeof(md))) | ||
| 188 | return 0; | ||
| 189 | return 1; | ||
| 190 | } | ||
| 191 | |||
| 192 | /* HMAC-SHA1: generate hash of known digest value and compare to known | ||
| 193 | precomputed correct hash | ||
| 194 | */ | ||
| 195 | static int FIPS_hmac_sha1_test() | ||
| 196 | { | ||
| 197 | unsigned char key[] = "etaonrishd"; | ||
| 198 | unsigned char iv[] = "Sample text"; | ||
| 199 | unsigned char kaval[EVP_MAX_MD_SIZE] = | ||
| 200 | {0x73, 0xf7, 0xa0, 0x48, 0xf8, 0x94, 0xed, 0xdd, 0x0a, 0xea, 0xea, 0x56, 0x1b, 0x61, 0x2e, 0x70, | ||
| 201 | 0xb2, 0xfb, 0xec, 0xc6}; | ||
| 202 | |||
| 203 | unsigned char out[EVP_MAX_MD_SIZE]; | ||
| 204 | unsigned int outlen; | ||
| 205 | |||
| 206 | ERR_clear_error(); | ||
| 207 | if (!HMAC(EVP_sha1(),key,sizeof(key)-1,iv,sizeof(iv)-1,out,&outlen)) return 0; | ||
| 208 | if (memcmp(out,kaval,outlen)) | ||
| 209 | return 0; | ||
| 210 | return 1; | ||
| 211 | } | ||
| 212 | |||
| 213 | /* HMAC-SHA224: generate hash of known digest value and compare to known | ||
| 214 | precomputed correct hash | ||
| 215 | */ | ||
| 216 | static int FIPS_hmac_sha224_test() | ||
| 217 | { | ||
| 218 | unsigned char key[] = "etaonrishd"; | ||
| 219 | unsigned char iv[] = "Sample text"; | ||
| 220 | unsigned char kaval[EVP_MAX_MD_SIZE] = | ||
| 221 | {0x75, 0x58, 0xd5, 0xbd, 0x55, 0x6d, 0x87, 0x0f, 0x75, 0xff, 0xbe, 0x1c, 0xb2, 0xf0, 0x20, 0x35, | ||
| 222 | 0xe5, 0x62, 0x49, 0xb6, 0x94, 0xb9, 0xfc, 0x65, 0x34, 0x33, 0x3a, 0x19}; | ||
| 223 | |||
| 224 | unsigned char out[EVP_MAX_MD_SIZE]; | ||
| 225 | unsigned int outlen; | ||
| 226 | |||
| 227 | ERR_clear_error(); | ||
| 228 | if (!HMAC(EVP_sha224(),key,sizeof(key)-1,iv,sizeof(iv)-1,out,&outlen)) return 0; | ||
| 229 | if (memcmp(out,kaval,outlen)) | ||
| 230 | return 0; | ||
| 231 | return 1; | ||
| 232 | } | ||
| 233 | |||
| 234 | /* HMAC-SHA256: generate hash of known digest value and compare to known | ||
| 235 | precomputed correct hash | ||
| 236 | */ | ||
| 237 | static int FIPS_hmac_sha256_test() | ||
| 238 | { | ||
| 239 | unsigned char key[] = "etaonrishd"; | ||
| 240 | unsigned char iv[] = "Sample text"; | ||
| 241 | unsigned char kaval[EVP_MAX_MD_SIZE] = | ||
| 242 | {0xe9, 0x17, 0xc1, 0x7b, 0x4c, 0x6b, 0x77, 0xda, 0xd2, 0x30, 0x36, 0x02, 0xf5, 0x72, 0x33, 0x87, | ||
| 243 | 0x9f, 0xc6, 0x6e, 0x7b, 0x7e, 0xa8, 0xea, 0xaa, 0x9f, 0xba, 0xee, 0x51, 0xff, 0xda, 0x24, 0xf4}; | ||
| 244 | |||
| 245 | unsigned char out[EVP_MAX_MD_SIZE]; | ||
| 246 | unsigned int outlen; | ||
| 247 | |||
| 248 | ERR_clear_error(); | ||
| 249 | if (!HMAC(EVP_sha256(),key,sizeof(key)-1,iv,sizeof(iv)-1,out,&outlen)) return 0; | ||
| 250 | if (memcmp(out,kaval,outlen)) | ||
| 251 | return 0; | ||
| 252 | return 1; | ||
| 253 | } | ||
| 254 | |||
| 255 | /* HMAC-SHA384: generate hash of known digest value and compare to known | ||
| 256 | precomputed correct hash | ||
| 257 | */ | ||
| 258 | static int FIPS_hmac_sha384_test() | ||
| 259 | { | ||
| 260 | unsigned char key[] = "etaonrishd"; | ||
| 261 | unsigned char iv[] = "Sample text"; | ||
| 262 | unsigned char kaval[EVP_MAX_MD_SIZE] = | ||
| 263 | {0xb2, 0x9d, 0x40, 0x58, 0x32, 0xc4, 0xe3, 0x31, 0xb6, 0x63, 0x08, 0x26, 0x99, 0xef, 0x3b, 0x10, | ||
| 264 | 0xe2, 0xdf, 0xf8, 0xff, 0xc6, 0xe1, 0x03, 0x29, 0x81, 0x2a, 0x1b, 0xac, 0xb0, 0x07, 0x39, 0x08, | ||
| 265 | 0xf3, 0x91, 0x35, 0x11, 0x76, 0xd6, 0x4c, 0x20, 0xfb, 0x4d, 0xc3, 0xf3, 0xb8, 0x9b, 0x88, 0x1c}; | ||
| 266 | |||
| 267 | unsigned char out[EVP_MAX_MD_SIZE]; | ||
| 268 | unsigned int outlen; | ||
| 269 | |||
| 270 | ERR_clear_error(); | ||
| 271 | if (!HMAC(EVP_sha384(),key,sizeof(key)-1,iv,sizeof(iv)-1,out,&outlen)) return 0; | ||
| 272 | if (memcmp(out,kaval,outlen)) | ||
| 273 | return 0; | ||
| 274 | return 1; | ||
| 275 | } | ||
| 276 | |||
| 277 | /* HMAC-SHA512: generate hash of known digest value and compare to known | ||
| 278 | precomputed correct hash | ||
| 279 | */ | ||
| 280 | static int FIPS_hmac_sha512_test() | ||
| 281 | { | ||
| 282 | unsigned char key[] = "etaonrishd"; | ||
| 283 | unsigned char iv[] = "Sample text"; | ||
| 284 | unsigned char kaval[EVP_MAX_MD_SIZE] = | ||
| 285 | {0xcd, 0x3e, 0xb9, 0x51, 0xb8, 0xbc, 0x7f, 0x9a, 0x23, 0xaf, 0xf3, 0x77, 0x59, 0x85, 0xa9, 0xe6, | ||
| 286 | 0xf7, 0xd1, 0x51, 0x96, 0x17, 0xe0, 0x92, 0xd8, 0xa6, 0x3b, 0xc1, 0xad, 0x7e, 0x24, 0xca, 0xb1, | ||
| 287 | 0xd7, 0x79, 0x0a, 0xa5, 0xea, 0x2c, 0x02, 0x58, 0x0b, 0xa6, 0x52, 0x6b, 0x61, 0x7f, 0xeb, 0x9c, | ||
| 288 | 0x47, 0x86, 0x5d, 0x74, 0x2b, 0x88, 0xdf, 0xee, 0x46, 0x69, 0x96, 0x3d, 0xa6, 0xd9, 0x2a, 0x53}; | ||
| 289 | |||
| 290 | unsigned char out[EVP_MAX_MD_SIZE]; | ||
| 291 | unsigned int outlen; | ||
| 292 | |||
| 293 | ERR_clear_error(); | ||
| 294 | if (!HMAC(EVP_sha512(),key,sizeof(key)-1,iv,sizeof(iv)-1,out,&outlen)) return 0; | ||
| 295 | if (memcmp(out,kaval,outlen)) | ||
| 296 | return 0; | ||
| 297 | return 1; | ||
| 298 | } | ||
| 299 | |||
| 300 | /* MD5: generate hash of known digest value and compare to known | ||
| 301 | precomputed correct hash | ||
| 302 | */ | ||
| 303 | static int md5_test() | ||
| 304 | { | ||
| 305 | unsigned char digest[MD5_DIGEST_LENGTH] = | ||
| 306 | { 0x48, 0x50, 0xf0, 0xa3, 0x3a, 0xed, 0xd3, 0xaf, 0x6e, 0x47, 0x7f, 0x83, 0x02, 0xb1, 0x09, 0x68 }; | ||
| 307 | unsigned char str[] = "etaonrishd"; | ||
| 308 | |||
| 309 | unsigned char md[MD5_DIGEST_LENGTH]; | ||
| 310 | |||
| 311 | ERR_clear_error(); | ||
| 312 | if (!MD5(str,sizeof(str) - 1,md)) | ||
| 313 | return 0; | ||
| 314 | if (memcmp(md,digest,sizeof(md))) | ||
| 315 | return 0; | ||
| 316 | return 1; | ||
| 317 | } | ||
| 318 | |||
| 319 | /* DH: generate shared parameters | ||
| 320 | */ | ||
| 321 | static int dh_test() | ||
| 322 | { | ||
| 323 | DH *dh; | ||
| 324 | |||
| 325 | ERR_clear_error(); | ||
| 326 | dh = DH_generate_parameters(256, 2, NULL, NULL); | ||
| 327 | if (dh) | ||
| 328 | return 1; | ||
| 329 | return 0; | ||
| 330 | } | ||
| 331 | |||
| 332 | /* Zeroize | ||
| 333 | */ | ||
| 334 | static int Zeroize() | ||
| 335 | { | ||
| 336 | RSA *key; | ||
| 337 | unsigned char userkey[16] = | ||
| 338 | { 0x48, 0x50, 0xf0, 0xa3, 0x3a, 0xed, 0xd3, 0xaf, 0x6e, 0x47, 0x7f, 0x83, 0x02, 0xb1, 0x09, 0x68 }; | ||
| 339 | int i, n; | ||
| 340 | |||
| 341 | key = RSA_generate_key(1024,65537,NULL,NULL); | ||
| 342 | if (!key) | ||
| 343 | return 0; | ||
| 344 | n = BN_num_bytes(key->d); | ||
| 345 | printf(" Generated %d byte RSA private key\n", n); | ||
| 346 | printf("\tBN key before overwriting:\n%s\n", BN_bn2hex(key->d)); | ||
| 347 | BN_rand(key->d,n*8,-1,0); | ||
| 348 | printf("\tBN key after overwriting:\n%s\n", BN_bn2hex(key->d)); | ||
| 349 | |||
| 350 | printf("\tchar buffer key before overwriting: \n\t\t"); | ||
| 351 | for(i = 0; i < sizeof(userkey); i++) printf("%02x", userkey[i]); | ||
| 352 | printf("\n"); | ||
| 353 | RAND_bytes(userkey, sizeof userkey); | ||
| 354 | printf("\tchar buffer key after overwriting: \n\t\t"); | ||
| 355 | for(i = 0; i < sizeof(userkey); i++) printf("%02x", userkey[i]); | ||
| 356 | printf("\n"); | ||
| 357 | |||
| 358 | return 1; | ||
| 359 | } | ||
| 360 | |||
| 361 | static int Error; | ||
| 362 | const char * Fail(const char *msg) | ||
| 363 | { | ||
| 364 | Error++; | ||
| 365 | return msg; | ||
| 366 | } | ||
| 367 | |||
| 368 | int main(int argc,char **argv) | ||
| 369 | { | ||
| 370 | |||
| 371 | printf("\tFIPS-mode test application\n\n"); | ||
| 372 | |||
| 373 | /* Load entropy from external file, if any */ | ||
| 374 | RAND_load_file(".rnd", 1024); | ||
| 375 | |||
| 376 | if (argv[1]) { | ||
| 377 | /* Corrupted KAT tests */ | ||
| 378 | if (!strcmp(argv[1], "aes")) { | ||
| 379 | FIPS_corrupt_aes(); | ||
| 380 | printf("AES encryption/decryption with corrupted KAT...\n"); | ||
| 381 | } else if (!strcmp(argv[1], "des")) { | ||
| 382 | FIPS_corrupt_des(); | ||
| 383 | printf("DES-ECB encryption/decryption with corrupted KAT...\n"); | ||
| 384 | } else if (!strcmp(argv[1], "dsa")) { | ||
| 385 | FIPS_corrupt_dsa(); | ||
| 386 | printf("DSA key generation and signature validation with corrupted KAT...\n"); | ||
| 387 | } else if (!strcmp(argv[1], "rsa")) { | ||
| 388 | FIPS_corrupt_rsa(); | ||
| 389 | printf("RSA key generation and encryption/decryption with corrupted KAT...\n"); | ||
| 390 | } else if (!strcmp(argv[1], "sha1")) { | ||
| 391 | FIPS_corrupt_sha1(); | ||
| 392 | printf("SHA-1 hash with corrupted KAT...\n"); | ||
| 393 | } else if (!strcmp(argv[1], "rng")) { | ||
| 394 | FIPS_corrupt_rng(); | ||
| 395 | printf("RNG test with corrupted KAT...\n"); | ||
| 396 | } else { | ||
| 397 | printf("Bad argument \"%s\"\n", argv[1]); | ||
| 398 | exit(1); | ||
| 399 | } | ||
| 400 | if (!FIPS_mode_set(1)) | ||
| 401 | { | ||
| 402 | ERR_load_crypto_strings(); | ||
| 403 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 404 | printf("Power-up self test failed\n"); | ||
| 405 | exit(1); | ||
| 406 | } | ||
| 407 | printf("Power-up self test successful\n"); | ||
| 408 | exit(0); | ||
| 409 | } | ||
| 410 | |||
| 411 | /* Non-Approved cryptographic operation | ||
| 412 | */ | ||
| 413 | printf("1. Non-Approved cryptographic operation test...\n"); | ||
| 414 | printf("\ta. Excluded algorithm (MD5)..."); | ||
| 415 | printf( md5_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 416 | printf("\tb. Included algorithm (D-H)..."); | ||
| 417 | printf( dh_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 418 | |||
| 419 | /* Power-up self test | ||
| 420 | */ | ||
| 421 | ERR_clear_error(); | ||
| 422 | printf("2. Automatic power-up self test..."); | ||
| 423 | if (!FIPS_mode_set(1)) | ||
| 424 | { | ||
| 425 | ERR_load_crypto_strings(); | ||
| 426 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 427 | printf(Fail("FAILED!\n")); | ||
| 428 | exit(1); | ||
| 429 | } | ||
| 430 | printf("successful\n"); | ||
| 431 | |||
| 432 | /* AES encryption/decryption | ||
| 433 | */ | ||
| 434 | printf("3. AES encryption/decryption..."); | ||
| 435 | printf( FIPS_aes_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 436 | |||
| 437 | /* RSA key generation and encryption/decryption | ||
| 438 | */ | ||
| 439 | printf("4. RSA key generation and encryption/decryption..."); | ||
| 440 | printf( FIPS_rsa_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 441 | |||
| 442 | /* DES-CBC encryption/decryption | ||
| 443 | */ | ||
| 444 | printf("5. DES-ECB encryption/decryption..."); | ||
| 445 | printf( FIPS_des_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 446 | |||
| 447 | /* DSA key generation and signature validation | ||
| 448 | */ | ||
| 449 | printf("6. DSA key generation and signature validation..."); | ||
| 450 | printf( FIPS_dsa_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 451 | |||
| 452 | /* SHA-1 hash | ||
| 453 | */ | ||
| 454 | printf("7a. SHA-1 hash..."); | ||
| 455 | printf( FIPS_sha1_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 456 | |||
| 457 | /* SHA-256 hash | ||
| 458 | */ | ||
| 459 | printf("7b. SHA-256 hash..."); | ||
| 460 | printf( FIPS_sha256_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 461 | |||
| 462 | /* SHA-512 hash | ||
| 463 | */ | ||
| 464 | printf("7c. SHA-512 hash..."); | ||
| 465 | printf( FIPS_sha512_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 466 | |||
| 467 | /* HMAC-SHA-1 hash | ||
| 468 | */ | ||
| 469 | printf("7d. SHA-1 hash..."); | ||
| 470 | printf( FIPS_hmac_sha1_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 471 | |||
| 472 | /* HMAC-SHA-224 hash | ||
| 473 | */ | ||
| 474 | printf("7e. SHA-224 hash..."); | ||
| 475 | printf( FIPS_hmac_sha224_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 476 | |||
| 477 | /* HMAC-SHA-256 hash | ||
| 478 | */ | ||
| 479 | printf("7f. SHA-256 hash..."); | ||
| 480 | printf( FIPS_hmac_sha256_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 481 | |||
| 482 | /* HMAC-SHA-384 hash | ||
| 483 | */ | ||
| 484 | printf("7g. SHA-384 hash..."); | ||
| 485 | printf( FIPS_hmac_sha384_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 486 | |||
| 487 | /* HMAC-SHA-512 hash | ||
| 488 | */ | ||
| 489 | printf("7h. SHA-512 hash..."); | ||
| 490 | printf( FIPS_hmac_sha512_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 491 | |||
| 492 | /* Non-Approved cryptographic operation | ||
| 493 | */ | ||
| 494 | printf("8. Non-Approved cryptographic operation test...\n"); | ||
| 495 | printf("\ta. Excluded algorithm (MD5)..."); | ||
| 496 | printf( md5_test() ? Fail("passed INCORRECTLY!\n") | ||
| 497 | : "failed as expected\n" ); | ||
| 498 | printf("\tb. Included algorithm (D-H)..."); | ||
| 499 | printf( dh_test() ? "successful as expected\n" | ||
| 500 | : Fail("failed INCORRECTLY!\n") ); | ||
| 501 | |||
| 502 | /* Zeroization | ||
| 503 | */ | ||
| 504 | printf("9. Zero-ization...\n"); | ||
| 505 | Zeroize(); | ||
| 506 | |||
| 507 | printf("\nAll tests completed with %d errors\n", Error); | ||
| 508 | return 0; | ||
| 509 | } | ||
| 510 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/fipshashes.c b/src/lib/libssl/src/fips-1.0/fipshashes.c deleted file mode 100644 index b96fe2c51c..0000000000 --- a/src/lib/libssl/src/fips-1.0/fipshashes.c +++ /dev/null | |||
| @@ -1,43 +0,0 @@ | |||
| 1 | const char * const FIPS_source_hashes[] = { | ||
| 2 | "HMAC-SHA1(Makefile)= 369e2e023b73789e6af4b8fa2503a7b909c4c3f0", | ||
| 3 | "HMAC-SHA1(fips.c)= 3a2deb3c319512952bf5547ed92116a7e0db472b", | ||
| 4 | "HMAC-SHA1(fips_err_wrapper.c)= d3e2be316062510312269e98f964cb87e7577898", | ||
| 5 | "HMAC-SHA1(fips.h)= 57d602d18efe0594f806fbcc64269e9440638ef4", | ||
| 6 | "HMAC-SHA1(fips_err.h)= e0649ee1d60c8162f7eeb293f89f3b63ac85202a", | ||
| 7 | "HMAC-SHA1(fips_locl.h)= f90a23c7f68642727012bbfd48ed58706383ad71", | ||
| 8 | "HMAC-SHA1(fips_canister.c)= da6d0f5daf9594881fd060773a5f3e057ba302ff", | ||
| 9 | "HMAC-SHA1(fips_premain.c)= 6a08d15c578f1258246181bf52134ae974aa5a80", | ||
| 10 | "HMAC-SHA1(aes/fips_aes_core.c)= b70bbbd675efe0613da0d57055310926a0104d55", | ||
| 11 | "HMAC-SHA1(aes/asm/fips-ax86-elf.s)= f797b524a79196e7f59458a5b223432fcfd4a868", | ||
| 12 | "HMAC-SHA1(aes/fips_aes_selftest.c)= 98b01502221e7fe529fd981222f2cbb52eb4cbe0", | ||
| 13 | "HMAC-SHA1(aes/fips_aes_locl.h)= a98eb0aa449f1d95b8064e261b2ac2b1f328685e", | ||
| 14 | "HMAC-SHA1(des/fips_des_enc.c)= 9527f8ea81602358f1aa11348237fdb1e9eeff32", | ||
| 15 | "HMAC-SHA1(des/asm/fips-dx86-elf.s)= 9570b03422ffbe5d3d090f91758ebfd46acd5d57", | ||
| 16 | "HMAC-SHA1(des/fips_des_selftest.c)= 3bc574e51647c5f5ab45d1007b2cf461d67764a9", | ||
| 17 | "HMAC-SHA1(des/fips_set_key.c)= cd1ba25d29376849523a9ddc194c3156a8a7a913", | ||
| 18 | "HMAC-SHA1(des/fips_des_locl.h)= e008da40dc6913e374edd66a20d44e1752f00583", | ||
| 19 | "HMAC-SHA1(dh/fips_dh_check.c)= 63347e2007e224381d4a7b6d871633889de72cf3", | ||
| 20 | "HMAC-SHA1(dh/fips_dh_gen.c)= 93fe69b758ca9d70d70cda1c57fff4eb5c668e85", | ||
| 21 | "HMAC-SHA1(dh/fips_dh_key.c)= 2d79eb8d59929ec129d34f53b5aded4a290a28ca", | ||
| 22 | "HMAC-SHA1(dsa/fips_dsa_ossl.c)= 2fadb271897a775f023393aa22ddede8a76eec0d", | ||
| 23 | "HMAC-SHA1(dsa/fips_dsa_gen.c)= 78c879484fd849312ca4828b957df3842b70efc0", | ||
| 24 | "HMAC-SHA1(dsa/fips_dsa_selftest.c)= 7c2ba8d82feda2aadc8b769a3b6c4c25a6356e01", | ||
| 25 | "HMAC-SHA1(rand/fips_rand.c)= 7e3964447a81cfe4e75df981827d14a5fe0c2923", | ||
| 26 | "HMAC-SHA1(rand/fips_rand.h)= bf009ea8963e79b1e414442ede9ae7010a03160b", | ||
| 27 | "HMAC-SHA1(rand/fips_rand_selftest.c)= 5661f383decf0708d0230409fe1564223e834a3b", | ||
| 28 | "HMAC-SHA1(rsa/fips_rsa_eay.c)= 2512f849a220daa083f346b10effdb2ee96d4395", | ||
| 29 | "HMAC-SHA1(rsa/fips_rsa_gen.c)= 577466931c054d99caf4ac2aefff0e35efd94024", | ||
| 30 | "HMAC-SHA1(rsa/fips_rsa_selftest.c)= a9dc47bd1001f795d1565111d26433c300101e06", | ||
| 31 | "HMAC-SHA1(rsa/fips_rsa_x931g.c)= 1827d381bb21c53a38a7194cb1c428a2b5f1e3ab", | ||
| 32 | "HMAC-SHA1(sha/fips_sha1dgst.c)= 26e529d630b5e754b4a29bd1bb697e991e7fdc04", | ||
| 33 | "HMAC-SHA1(sha/fips_standalone_sha1.c)= 46a66875e68398eabca2e933958a2d865149ca1b", | ||
| 34 | "HMAC-SHA1(sha/fips_sha1_selftest.c)= a08f9c1e2c0f63b9aa96b927c0333a03b020749f", | ||
| 35 | "HMAC-SHA1(sha/asm/fips-sx86-elf.s)= ae66fb23ab8e1a2287e87a0a2dd30a4b9039fe63", | ||
| 36 | "HMAC-SHA1(sha/fips_sha_locl.h)= 30b6d6bdbdc9db0d66dc89010c1f4fe1c7b60574", | ||
| 37 | "HMAC-SHA1(sha/fips_md32_common.h)= c34d8b7785d3194ff968cf6d3efdd2bfcaec1fad", | ||
| 38 | "HMAC-SHA1(sha/fips_sha.h)= cbe98c211cff1684adfa3fe6e6225e92a0a25f6c", | ||
| 39 | "HMAC-SHA1(sha/fips_sha256.c)= 97e6dee22a1fe993cc48aa8ff37af10701d7f599", | ||
| 40 | "HMAC-SHA1(sha/fips_sha512.c)= 74e6ef26de96f774d233888b831289e69834dd79", | ||
| 41 | "HMAC-SHA1(hmac/fips_hmac.c)= a477cec1da76c0092979c4a875b6469339bff7ef", | ||
| 42 | "HMAC-SHA1(hmac/fips_hmac_selftest.c)= ebb32b205babf4300017de767fd6e3f1879765c9", | ||
| 43 | }; | ||
diff --git a/src/lib/libssl/src/fips-1.0/fipsld b/src/lib/libssl/src/fips-1.0/fipsld deleted file mode 100755 index 819f68731f..0000000000 --- a/src/lib/libssl/src/fips-1.0/fipsld +++ /dev/null | |||
| @@ -1,147 +0,0 @@ | |||
| 1 | #!/bin/sh -e | ||
| 2 | # | ||
| 3 | # Copyright (c) 2005 The OpenSSL Project. | ||
| 4 | # | ||
| 5 | # Depending on output file name, the script either embeds fingerprint | ||
| 6 | # into libcrypto.so or static application. "Static" refers to static | ||
| 7 | # libcrypto.a, not [necessarily] application per se. | ||
| 8 | # | ||
| 9 | # Even though this script is called fipsld, it expects C compiler | ||
| 10 | # command line syntax and $FIPSLD_CC or $CC environment variable set | ||
| 11 | # and can even be used to compile source files. | ||
| 12 | |||
| 13 | #set -x | ||
| 14 | |||
| 15 | CC=${FIPSLD_CC:-${CC}} | ||
| 16 | [ -n "${CC}" ] || { echo '$CC is not defined'; exit 1; } | ||
| 17 | |||
| 18 | # Initially -c wasn't intended to be interpreted here, but it might | ||
| 19 | # make life easier for those who want to build FIPS-ified applications | ||
| 20 | # with minimal [if any] modifications to their Makefiles... | ||
| 21 | ( while [ "x$1" != "x" -a "x$1" != "x-c" ]; do shift; done; | ||
| 22 | [ $# -ge 1 ] | ||
| 23 | ) && exec ${CC} "$@" | ||
| 24 | |||
| 25 | # Turn on debugging output? | ||
| 26 | ( while [ "x$1" != "x" -a "x$1" != "x-DDEBUG_FINGERPRINT_PREMAIN" ]; do shift; done; | ||
| 27 | [ $# -ge 1 ] | ||
| 28 | ) && set -x | ||
| 29 | |||
| 30 | TARGET=`(while [ "x$1" != "x" -a "x$1" != "x-o" ]; do shift; done; echo $2)` | ||
| 31 | [ -n "${TARGET}" ] || { echo 'no -o specified'; exit 1; } | ||
| 32 | |||
| 33 | THERE="`echo $0 | sed -e 's|[^/]*$||'`".. | ||
| 34 | |||
| 35 | # Location of installed validated FIPS module | ||
| 36 | FIPSLIBDIR=${FIPSLIBDIR:-/usr/local/ssl/lib} | ||
| 37 | # If this is a build from a validated tarball use this instead | ||
| 38 | # FIPSLIBDIR=${THERE}/fips-1.0 | ||
| 39 | |||
| 40 | [ -f "${FIPSLIBDIR}/fipscanister.o" ] || | ||
| 41 | { echo "fipscanister.o not found"; exit 1; } | ||
| 42 | |||
| 43 | HMAC_KEY="etaonrishdlcupfm" | ||
| 44 | |||
| 45 | case "`(uname -s) 2>/dev/null`" in | ||
| 46 | OSF1|IRIX*) _WL_PREMAIN="-Wl,-init,FINGERPRINT_premain" ;; | ||
| 47 | HP-UX) _WL_PREMAIN="-Wl,+init,FINGERPRINT_premain" ;; | ||
| 48 | AIX) _WL_PREMAIN="-Wl,-binitfini:FINGERPRINT_premain";; | ||
| 49 | Darwin) ( while [ "x$1" != "x" -a "x$1" != "x-dynamiclib" ]; do shift; done; | ||
| 50 | [ $# -ge 1 ] | ||
| 51 | ) && _WL_PREMAIN="-Wl,-init,_FINGERPRINT_premain" ;; | ||
| 52 | esac | ||
| 53 | |||
| 54 | case "${TARGET}" in | ||
| 55 | [!/]*) TARGET=./${TARGET} ;; | ||
| 56 | esac | ||
| 57 | |||
| 58 | case "${TARGET}" in | ||
| 59 | *libcrypto*|*.dll) # must be linking a shared lib... | ||
| 60 | # Shared lib creation can be taking place in the source | ||
| 61 | # directory only!!! | ||
| 62 | FINGERTYPE="${THERE}/fips-1.0/sha/fips_standalone_sha1" | ||
| 63 | CANISTER_O="${FIPSLIBDIR}/fipscanister.o" | ||
| 64 | PREMAIN_C="${FIPSLIBDIR}/fips_premain.c" | ||
| 65 | |||
| 66 | echo Canister: $CANISTER_O | ||
| 67 | |||
| 68 | # verify fipscanister.o against its detached signature... | ||
| 69 | ${FINGERTYPE} "${CANISTER_O}" | sed "s/(.*\//(/" | \ | ||
| 70 | diff -w "${CANISTER_O}.sha1" - || \ | ||
| 71 | { echo "${CANISTER_O} fingerprint mismatch"; exit 1; } | ||
| 72 | |||
| 73 | # verify fips_premain.c against its signature embedded into | ||
| 74 | # fipscanister.o... | ||
| 75 | SIG=`${FINGERTYPE} "${PREMAIN_C}" | sed -n "s/(.*\//(/;/^./p"` | ||
| 76 | REF=`strings "${CANISTER_O}" | grep "HMAC-SHA1(fips_premain\\.c)"` | ||
| 77 | [ "${SIG}" = "${REF}" ] || \ | ||
| 78 | { echo "${PREMAIN_C} fingerprint mismatch"; exit 1; } | ||
| 79 | |||
| 80 | # Temporarily remove fipscanister.o from libcrypto.a! | ||
| 81 | # We are required to use the standalone copy... | ||
| 82 | trap 'ar r "${THERE}/libcrypto.a" "${CANISTER_O}"; | ||
| 83 | (ranlib "${THERE}/libcrypto.a") 2>/dev/null; | ||
| 84 | sleep 1; | ||
| 85 | touch -c "${TARGET}"' 0 | ||
| 86 | |||
| 87 | ar d "${THERE}/libcrypto.a" fipscanister.o 2>&1 > /dev/null || : | ||
| 88 | (ranlib "${THERE}/libcrypto.a") 2>/dev/null || : | ||
| 89 | |||
| 90 | ${CC} "${CANISTER_O}" \ | ||
| 91 | "${PREMAIN_C}" \ | ||
| 92 | ${_WL_PREMAIN} "$@" | ||
| 93 | |||
| 94 | # generate signature... | ||
| 95 | SIG=`("${THERE}/fips-1.0/fips_premain_dso" "${TARGET}" || rm "${TARGET}")` | ||
| 96 | if [ -z "${SIG}" ]; then | ||
| 97 | echo "unable to collect signature"; exit 1 | ||
| 98 | fi | ||
| 99 | |||
| 100 | # recompile with signature... | ||
| 101 | ${CC} "${CANISTER_O}" \ | ||
| 102 | -DHMAC_SHA1_SIG=\"${SIG}\" "${PREMAIN_C}" \ | ||
| 103 | ${_WL_PREMAIN} "$@" | ||
| 104 | ;; | ||
| 105 | |||
| 106 | *) # must be linking statically... | ||
| 107 | # Static linking can be taking place either in the source | ||
| 108 | # directory or off the installed binary target destination. | ||
| 109 | if [ -x "${THERE}/fips-1.0/sha/fips_standalone_sha1" ]; then | ||
| 110 | FINGERTYPE="${THERE}/fips-1.0/sha/fips_standalone_sha1" | ||
| 111 | else # Installed tree is expected to contain | ||
| 112 | # lib/fipscanister.o, lib/fipscanister.o.sha1 and | ||
| 113 | # lib/fips_premain.c [not to mention bin/openssl]. | ||
| 114 | FINGERTYPE="${THERE}/bin/openssl sha1 -hmac ${HMAC_KEY}" | ||
| 115 | fi | ||
| 116 | |||
| 117 | CANISTER_O="${FIPSLIBDIR}/fipscanister.o" | ||
| 118 | PREMAIN_C="${FIPSLIBDIR}/fips_premain.c" | ||
| 119 | |||
| 120 | # verify fipscanister.o against its detached signature... | ||
| 121 | ${FINGERTYPE} "${CANISTER_O}" | sed "s/(.*\//(/" | \ | ||
| 122 | diff -w "${CANISTER_O}.sha1" - || \ | ||
| 123 | { echo "${CANISTER_O} fingerprint mismatch"; exit 1; } | ||
| 124 | |||
| 125 | # verify fips_premain.c against its signature embedded into | ||
| 126 | # fipscanister.o... | ||
| 127 | SIG=`${FINGERTYPE} "${PREMAIN_C}" | sed -n "s/(.*\//(/;/^./p"` | ||
| 128 | REF=`strings "${CANISTER_O}" | grep "HMAC-SHA1(fips_premain\\.c)"` | ||
| 129 | [ "${SIG}" = "${REF}" ] || \ | ||
| 130 | { echo "${PREMAIN_C} fingerprint mismatch"; exit 1; } | ||
| 131 | |||
| 132 | ${CC} "${CANISTER_O}" \ | ||
| 133 | "${PREMAIN_C}" \ | ||
| 134 | ${_WL_PREMAIN} "$@" | ||
| 135 | |||
| 136 | # generate signature... | ||
| 137 | SIG=`("${TARGET}" || /bin/rm "${TARGET}")` | ||
| 138 | if [ -z "${SIG}" ]; then | ||
| 139 | echo "unable to collect signature"; exit 1 | ||
| 140 | fi | ||
| 141 | |||
| 142 | # recompile with signature... | ||
| 143 | ${CC} "${CANISTER_O}" \ | ||
| 144 | -DHMAC_SHA1_SIG=\"${SIG}\" "${PREMAIN_C}" \ | ||
| 145 | ${_WL_PREMAIN} "$@" | ||
| 146 | ;; | ||
| 147 | esac | ||
diff --git a/src/lib/libssl/src/fips-1.0/hmac/Makefile b/src/lib/libssl/src/fips-1.0/hmac/Makefile deleted file mode 100644 index a5e777f71a..0000000000 --- a/src/lib/libssl/src/fips-1.0/hmac/Makefile +++ /dev/null | |||
| @@ -1,155 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/hmac/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= hmac | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST=fips_hmactest.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_hmac.c fips_hmac_selftest.c | ||
| 26 | LIBOBJ=fips_hmac.o fips_hmac_selftest.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | @echo $(LIBOBJ) > lib | ||
| 42 | |||
| 43 | files: | ||
| 44 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 45 | |||
| 46 | links: | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 50 | |||
| 51 | install: | ||
| 52 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 53 | do \ | ||
| 54 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 55 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 56 | done | ||
| 57 | |||
| 58 | tags: | ||
| 59 | ctags $(SRC) | ||
| 60 | |||
| 61 | tests: | ||
| 62 | |||
| 63 | Q=../testvectors/hmac/req | ||
| 64 | A=../testvectors/hmac/rsp | ||
| 65 | |||
| 66 | fips_test: | ||
| 67 | -rm -rf $(A) | ||
| 68 | mkdir $(A) | ||
| 69 | if [ -f $(Q)/HMAC.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_hmactest < $(Q)/HMAC.req > $(A)/HMAC.rsp; fi | ||
| 70 | |||
| 71 | lint: | ||
| 72 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 73 | |||
| 74 | depend: | ||
| 75 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 76 | |||
| 77 | dclean: | ||
| 78 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 79 | mv -f Makefile.new $(MAKEFILE) | ||
| 80 | |||
| 81 | clean: | ||
| 82 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 83 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 84 | |||
| 85 | fips_hmac.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 86 | fips_hmac.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 87 | fips_hmac.o: ../../include/openssl/bn.h ../../include/openssl/cast.h | ||
| 88 | fips_hmac.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 89 | fips_hmac.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 90 | fips_hmac.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 91 | fips_hmac.o: ../../include/openssl/evp.h ../../include/openssl/hmac.h | ||
| 92 | fips_hmac.o: ../../include/openssl/idea.h ../../include/openssl/md2.h | ||
| 93 | fips_hmac.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 94 | fips_hmac.o: ../../include/openssl/mdc2.h ../../include/openssl/obj_mac.h | ||
| 95 | fips_hmac.o: ../../include/openssl/objects.h | ||
| 96 | fips_hmac.o: ../../include/openssl/opensslconf.h | ||
| 97 | fips_hmac.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 98 | fips_hmac.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 99 | fips_hmac.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 100 | fips_hmac.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 101 | fips_hmac.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 102 | fips_hmac.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 103 | fips_hmac.o: ../../include/openssl/ui_compat.h fips_hmac.c | ||
| 104 | fips_hmac_selftest.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 105 | fips_hmac_selftest.o: ../../include/openssl/bio.h | ||
| 106 | fips_hmac_selftest.o: ../../include/openssl/blowfish.h | ||
| 107 | fips_hmac_selftest.o: ../../include/openssl/bn.h ../../include/openssl/cast.h | ||
| 108 | fips_hmac_selftest.o: ../../include/openssl/crypto.h | ||
| 109 | fips_hmac_selftest.o: ../../include/openssl/des.h | ||
| 110 | fips_hmac_selftest.o: ../../include/openssl/des_old.h | ||
| 111 | fips_hmac_selftest.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 112 | fips_hmac_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 113 | fips_hmac_selftest.o: ../../include/openssl/evp.h ../../include/openssl/fips.h | ||
| 114 | fips_hmac_selftest.o: ../../include/openssl/hmac.h ../../include/openssl/idea.h | ||
| 115 | fips_hmac_selftest.o: ../../include/openssl/lhash.h ../../include/openssl/md2.h | ||
| 116 | fips_hmac_selftest.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 117 | fips_hmac_selftest.o: ../../include/openssl/mdc2.h | ||
| 118 | fips_hmac_selftest.o: ../../include/openssl/obj_mac.h | ||
| 119 | fips_hmac_selftest.o: ../../include/openssl/objects.h | ||
| 120 | fips_hmac_selftest.o: ../../include/openssl/opensslconf.h | ||
| 121 | fips_hmac_selftest.o: ../../include/openssl/opensslv.h | ||
| 122 | fips_hmac_selftest.o: ../../include/openssl/ossl_typ.h | ||
| 123 | fips_hmac_selftest.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 124 | fips_hmac_selftest.o: ../../include/openssl/rc5.h | ||
| 125 | fips_hmac_selftest.o: ../../include/openssl/ripemd.h | ||
| 126 | fips_hmac_selftest.o: ../../include/openssl/rsa.h | ||
| 127 | fips_hmac_selftest.o: ../../include/openssl/safestack.h | ||
| 128 | fips_hmac_selftest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 129 | fips_hmac_selftest.o: ../../include/openssl/symhacks.h | ||
| 130 | fips_hmac_selftest.o: ../../include/openssl/ui.h | ||
| 131 | fips_hmac_selftest.o: ../../include/openssl/ui_compat.h fips_hmac_selftest.c | ||
| 132 | fips_hmactest.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 133 | fips_hmactest.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 134 | fips_hmactest.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h | ||
| 135 | fips_hmactest.o: ../../include/openssl/cast.h ../../include/openssl/conf.h | ||
| 136 | fips_hmactest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 137 | fips_hmactest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 138 | fips_hmactest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 139 | fips_hmactest.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 140 | fips_hmactest.o: ../../include/openssl/hmac.h ../../include/openssl/idea.h | ||
| 141 | fips_hmactest.o: ../../include/openssl/lhash.h ../../include/openssl/md2.h | ||
| 142 | fips_hmactest.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 143 | fips_hmactest.o: ../../include/openssl/mdc2.h ../../include/openssl/obj_mac.h | ||
| 144 | fips_hmactest.o: ../../include/openssl/objects.h | ||
| 145 | fips_hmactest.o: ../../include/openssl/opensslconf.h | ||
| 146 | fips_hmactest.o: ../../include/openssl/opensslv.h | ||
| 147 | fips_hmactest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h | ||
| 148 | fips_hmactest.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 149 | fips_hmactest.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 150 | fips_hmactest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 151 | fips_hmactest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 152 | fips_hmactest.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 153 | fips_hmactest.o: ../../include/openssl/ui_compat.h ../../include/openssl/x509.h | ||
| 154 | fips_hmactest.o: ../../include/openssl/x509_vfy.h | ||
| 155 | fips_hmactest.o: ../../include/openssl/x509v3.h fips_hmactest.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/hmac/fips_hmac_selftest.c b/src/lib/libssl/src/fips-1.0/hmac/fips_hmac_selftest.c deleted file mode 100644 index fc599b75ef..0000000000 --- a/src/lib/libssl/src/fips-1.0/hmac/fips_hmac_selftest.c +++ /dev/null | |||
| @@ -1,135 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/hmac.h> | ||
| 54 | |||
| 55 | #ifdef OPENSSL_FIPS | ||
| 56 | typedef struct { | ||
| 57 | const EVP_MD *(*alg)(void); | ||
| 58 | const char *key, *iv; | ||
| 59 | unsigned char kaval[EVP_MAX_MD_SIZE]; | ||
| 60 | } HMAC_KAT; | ||
| 61 | |||
| 62 | static const HMAC_KAT vector[] = { | ||
| 63 | { EVP_sha1, | ||
| 64 | /* from http://csrc.nist.gov/publications/fips/fips198/fips-198a.pdf */ | ||
| 65 | "0123456789:;<=>?@ABC", | ||
| 66 | "Sample #2", | ||
| 67 | { 0x09,0x22,0xd3,0x40,0x5f,0xaa,0x3d,0x19, | ||
| 68 | 0x4f,0x82,0xa4,0x58,0x30,0x73,0x7d,0x5c, | ||
| 69 | 0xc6,0xc7,0x5d,0x24 } | ||
| 70 | }, | ||
| 71 | { EVP_sha224, | ||
| 72 | /* just keep extending the above... */ | ||
| 73 | "0123456789:;<=>?@ABC", | ||
| 74 | "Sample #2", | ||
| 75 | { 0xdd,0xef,0x0a,0x40,0xcb,0x7d,0x50,0xfb, | ||
| 76 | 0x6e,0xe6,0xce,0xa1,0x20,0xba,0x26,0xaa, | ||
| 77 | 0x08,0xf3,0x07,0x75,0x87,0xb8,0xad,0x1b, | ||
| 78 | 0x8c,0x8d,0x12,0xc7 } | ||
| 79 | }, | ||
| 80 | { EVP_sha256, | ||
| 81 | "0123456789:;<=>?@ABC", | ||
| 82 | "Sample #2", | ||
| 83 | { 0xb8,0xf2,0x0d,0xb5,0x41,0xea,0x43,0x09, | ||
| 84 | 0xca,0x4e,0xa9,0x38,0x0c,0xd0,0xe8,0x34, | ||
| 85 | 0xf7,0x1f,0xbe,0x91,0x74,0xa2,0x61,0x38, | ||
| 86 | 0x0d,0xc1,0x7e,0xae,0x6a,0x34,0x51,0xd9 } | ||
| 87 | }, | ||
| 88 | { EVP_sha384, | ||
| 89 | "0123456789:;<=>?@ABC", | ||
| 90 | "Sample #2", | ||
| 91 | { 0x08,0xbc,0xb0,0xda,0x49,0x1e,0x87,0xad, | ||
| 92 | 0x9a,0x1d,0x6a,0xce,0x23,0xc5,0x0b,0xf6, | ||
| 93 | 0xb7,0x18,0x06,0xa5,0x77,0xcd,0x49,0x04, | ||
| 94 | 0x89,0xf1,0xe6,0x23,0x44,0x51,0x51,0x9f, | ||
| 95 | 0x85,0x56,0x80,0x79,0x0c,0xbd,0x4d,0x50, | ||
| 96 | 0xa4,0x5f,0x29,0xe3,0x93,0xf0,0xe8,0x7f } | ||
| 97 | }, | ||
| 98 | { EVP_sha512, | ||
| 99 | "0123456789:;<=>?@ABC", | ||
| 100 | "Sample #2", | ||
| 101 | { 0x80,0x9d,0x44,0x05,0x7c,0x5b,0x95,0x41, | ||
| 102 | 0x05,0xbd,0x04,0x13,0x16,0xdb,0x0f,0xac, | ||
| 103 | 0x44,0xd5,0xa4,0xd5,0xd0,0x89,0x2b,0xd0, | ||
| 104 | 0x4e,0x86,0x64,0x12,0xc0,0x90,0x77,0x68, | ||
| 105 | 0xf1,0x87,0xb7,0x7c,0x4f,0xae,0x2c,0x2f, | ||
| 106 | 0x21,0xa5,0xb5,0x65,0x9a,0x4f,0x4b,0xa7, | ||
| 107 | 0x47,0x02,0xa3,0xde,0x9b,0x51,0xf1,0x45, | ||
| 108 | 0xbd,0x4f,0x25,0x27,0x42,0x98,0x99,0x05 } | ||
| 109 | }, | ||
| 110 | }; | ||
| 111 | |||
| 112 | int FIPS_selftest_hmac() | ||
| 113 | { | ||
| 114 | int n; | ||
| 115 | unsigned int outlen; | ||
| 116 | unsigned char out[EVP_MAX_MD_SIZE]; | ||
| 117 | const EVP_MD *md; | ||
| 118 | const HMAC_KAT *t; | ||
| 119 | |||
| 120 | for(n=0,t=vector; n<sizeof(vector)/sizeof(vector[0]); n++,t++) | ||
| 121 | { | ||
| 122 | md = (*t->alg)(); | ||
| 123 | HMAC(md,t->key,strlen(t->key), | ||
| 124 | (const unsigned char *)t->iv,strlen(t->iv), | ||
| 125 | out,&outlen); | ||
| 126 | |||
| 127 | if(memcmp(out,t->kaval,outlen)) | ||
| 128 | { | ||
| 129 | FIPSerr(FIPS_F_FIPS_SELFTEST_SHA,FIPS_R_SELFTEST_FAILED); | ||
| 130 | return 0; | ||
| 131 | } | ||
| 132 | } | ||
| 133 | return 1; | ||
| 134 | } | ||
| 135 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/hmac/fips_hmactest.c b/src/lib/libssl/src/fips-1.0/hmac/fips_hmactest.c deleted file mode 100644 index e26e33ee3f..0000000000 --- a/src/lib/libssl/src/fips-1.0/hmac/fips_hmactest.c +++ /dev/null | |||
| @@ -1,335 +0,0 @@ | |||
| 1 | /* fips_hmactest.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <ctype.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <openssl/bio.h> | ||
| 63 | #include <openssl/evp.h> | ||
| 64 | #include <openssl/hmac.h> | ||
| 65 | #include <openssl/err.h> | ||
| 66 | #include <openssl/x509v3.h> | ||
| 67 | |||
| 68 | #ifndef OPENSSL_FIPS | ||
| 69 | |||
| 70 | int main(int argc, char *argv[]) | ||
| 71 | { | ||
| 72 | printf("No FIPS HMAC support\n"); | ||
| 73 | return(0); | ||
| 74 | } | ||
| 75 | |||
| 76 | #else | ||
| 77 | |||
| 78 | static int hmac_test(BIO *err, const EVP_MD *md, BIO *out, BIO *in); | ||
| 79 | static int print_hmac(BIO *err, const EVP_MD *md, BIO *out, | ||
| 80 | unsigned char *Key, int Klen, | ||
| 81 | unsigned char *Msg, int Msglen, int Tlen); | ||
| 82 | |||
| 83 | int main(int argc, char **argv) | ||
| 84 | { | ||
| 85 | BIO *in = NULL, *out = NULL, *err = NULL; | ||
| 86 | |||
| 87 | int ret = 1; | ||
| 88 | |||
| 89 | ERR_load_crypto_strings(); | ||
| 90 | |||
| 91 | err = BIO_new_fp(stderr, BIO_NOCLOSE); | ||
| 92 | |||
| 93 | if (!err) | ||
| 94 | { | ||
| 95 | fprintf(stderr, "FATAL stderr initialization error\n"); | ||
| 96 | goto end; | ||
| 97 | } | ||
| 98 | |||
| 99 | if(!FIPS_mode_set(1)) | ||
| 100 | { | ||
| 101 | ERR_print_errors(err); | ||
| 102 | goto end; | ||
| 103 | } | ||
| 104 | |||
| 105 | if (argc == 1) | ||
| 106 | in = BIO_new_fp(stdin, BIO_NOCLOSE); | ||
| 107 | else | ||
| 108 | in = BIO_new_file(argv[1], "r"); | ||
| 109 | |||
| 110 | if (argc < 2) | ||
| 111 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 112 | else | ||
| 113 | out = BIO_new_file(argv[2], "w"); | ||
| 114 | |||
| 115 | if (!in) | ||
| 116 | { | ||
| 117 | BIO_printf(err, "FATAL input initialization error\n"); | ||
| 118 | goto end; | ||
| 119 | } | ||
| 120 | |||
| 121 | if (!out) | ||
| 122 | { | ||
| 123 | fprintf(stderr, "FATAL output initialization error\n"); | ||
| 124 | goto end; | ||
| 125 | } | ||
| 126 | |||
| 127 | if (!hmac_test(err, EVP_sha1(), out, in)) | ||
| 128 | { | ||
| 129 | fprintf(stderr, "FATAL hmac file processing error\n"); | ||
| 130 | goto end; | ||
| 131 | } | ||
| 132 | else | ||
| 133 | ret = 0; | ||
| 134 | |||
| 135 | end: | ||
| 136 | |||
| 137 | if (ret && err) | ||
| 138 | ERR_print_errors(err); | ||
| 139 | |||
| 140 | if (in) | ||
| 141 | BIO_free(in); | ||
| 142 | if (out) | ||
| 143 | BIO_free(out); | ||
| 144 | if (err) | ||
| 145 | BIO_free(err); | ||
| 146 | |||
| 147 | return ret; | ||
| 148 | |||
| 149 | } | ||
| 150 | |||
| 151 | #define HMAC_TEST_MAXLINELEN 1024 | ||
| 152 | |||
| 153 | int hmac_test(BIO *err, const EVP_MD *md, BIO *out, BIO *in) | ||
| 154 | { | ||
| 155 | char *linebuf, *olinebuf, *p, *q; | ||
| 156 | char *keyword, *value; | ||
| 157 | unsigned char *Key = NULL, *Msg = NULL; | ||
| 158 | int Count, Klen, Tlen; | ||
| 159 | long Keylen, Msglen; | ||
| 160 | int ret = 0; | ||
| 161 | int lnum = 0; | ||
| 162 | |||
| 163 | olinebuf = OPENSSL_malloc(HMAC_TEST_MAXLINELEN); | ||
| 164 | linebuf = OPENSSL_malloc(HMAC_TEST_MAXLINELEN); | ||
| 165 | |||
| 166 | if (!linebuf || !olinebuf) | ||
| 167 | goto error; | ||
| 168 | |||
| 169 | Count = -1; | ||
| 170 | Klen = -1; | ||
| 171 | Tlen = -1; | ||
| 172 | |||
| 173 | while (BIO_gets(in, olinebuf, HMAC_TEST_MAXLINELEN) > 0) | ||
| 174 | { | ||
| 175 | lnum++; | ||
| 176 | strcpy(linebuf, olinebuf); | ||
| 177 | keyword = linebuf; | ||
| 178 | /* Skip leading space */ | ||
| 179 | while (isspace((unsigned char)*keyword)) | ||
| 180 | keyword++; | ||
| 181 | |||
| 182 | /* Look for = sign */ | ||
| 183 | p = strchr(linebuf, '='); | ||
| 184 | |||
| 185 | /* If no = or starts with [ (for [L=20] line) just copy */ | ||
| 186 | if (!p) | ||
| 187 | { | ||
| 188 | if (!BIO_puts(out, olinebuf)) | ||
| 189 | goto error; | ||
| 190 | continue; | ||
| 191 | } | ||
| 192 | |||
| 193 | q = p - 1; | ||
| 194 | |||
| 195 | /* Remove trailing space */ | ||
| 196 | while (isspace((unsigned char)*q)) | ||
| 197 | *q-- = 0; | ||
| 198 | |||
| 199 | *p = 0; | ||
| 200 | value = p + 1; | ||
| 201 | |||
| 202 | /* Remove leading space from value */ | ||
| 203 | while (isspace((unsigned char)*value)) | ||
| 204 | value++; | ||
| 205 | |||
| 206 | /* Remove trailing space from value */ | ||
| 207 | p = value + strlen(value) - 1; | ||
| 208 | |||
| 209 | while (*p == '\n' || isspace((unsigned char)*p)) | ||
| 210 | *p-- = 0; | ||
| 211 | |||
| 212 | if (!strcmp(keyword,"[L") && *p==']') | ||
| 213 | { | ||
| 214 | switch (atoi(value)) | ||
| 215 | { | ||
| 216 | case 20: md=EVP_sha1(); break; | ||
| 217 | case 28: md=EVP_sha224(); break; | ||
| 218 | case 32: md=EVP_sha256(); break; | ||
| 219 | case 48: md=EVP_sha384(); break; | ||
| 220 | case 64: md=EVP_sha512(); break; | ||
| 221 | default: goto parse_error; | ||
| 222 | } | ||
| 223 | } | ||
| 224 | else if (!strcmp(keyword, "Count")) | ||
| 225 | { | ||
| 226 | if (Count != -1) | ||
| 227 | goto parse_error; | ||
| 228 | Count = atoi(value); | ||
| 229 | if (Count < 0) | ||
| 230 | goto parse_error; | ||
| 231 | } | ||
| 232 | else if (!strcmp(keyword, "Klen")) | ||
| 233 | { | ||
| 234 | if (Klen != -1) | ||
| 235 | goto parse_error; | ||
| 236 | Klen = atoi(value); | ||
| 237 | if (Klen < 0) | ||
| 238 | goto parse_error; | ||
| 239 | } | ||
| 240 | else if (!strcmp(keyword, "Tlen")) | ||
| 241 | { | ||
| 242 | if (Tlen != -1) | ||
| 243 | goto parse_error; | ||
| 244 | Tlen = atoi(value); | ||
| 245 | if (Tlen < 0) | ||
| 246 | goto parse_error; | ||
| 247 | } | ||
| 248 | else if (!strcmp(keyword, "Msg")) | ||
| 249 | { | ||
| 250 | if (Msg) | ||
| 251 | goto parse_error; | ||
| 252 | Msg = string_to_hex(value, &Msglen); | ||
| 253 | if (!Msg) | ||
| 254 | goto parse_error; | ||
| 255 | } | ||
| 256 | else if (!strcmp(keyword, "Key")) | ||
| 257 | { | ||
| 258 | if (Key) | ||
| 259 | goto parse_error; | ||
| 260 | Key = string_to_hex(value, &Keylen); | ||
| 261 | if (!Key) | ||
| 262 | goto parse_error; | ||
| 263 | } | ||
| 264 | else if (!strcmp(keyword, "Mac")) | ||
| 265 | continue; | ||
| 266 | else | ||
| 267 | goto parse_error; | ||
| 268 | |||
| 269 | BIO_puts(out, olinebuf); | ||
| 270 | |||
| 271 | if (Key && Msg && (Tlen > 0) && (Klen > 0)) | ||
| 272 | { | ||
| 273 | if (!print_hmac(err, md, out, Key, Klen, Msg, Msglen, Tlen)) | ||
| 274 | goto error; | ||
| 275 | OPENSSL_free(Key); | ||
| 276 | Key = NULL; | ||
| 277 | OPENSSL_free(Msg); | ||
| 278 | Msg = NULL; | ||
| 279 | Klen = -1; | ||
| 280 | Tlen = -1; | ||
| 281 | Count = -1; | ||
| 282 | } | ||
| 283 | |||
| 284 | } | ||
| 285 | |||
| 286 | |||
| 287 | ret = 1; | ||
| 288 | |||
| 289 | |||
| 290 | error: | ||
| 291 | |||
| 292 | if (olinebuf) | ||
| 293 | OPENSSL_free(olinebuf); | ||
| 294 | if (linebuf) | ||
| 295 | OPENSSL_free(linebuf); | ||
| 296 | if (Key) | ||
| 297 | OPENSSL_free(Key); | ||
| 298 | if (Msg) | ||
| 299 | OPENSSL_free(Msg); | ||
| 300 | |||
| 301 | return ret; | ||
| 302 | |||
| 303 | parse_error: | ||
| 304 | |||
| 305 | BIO_printf(err, "FATAL parse error processing line %d\n", lnum); | ||
| 306 | |||
| 307 | goto error; | ||
| 308 | |||
| 309 | } | ||
| 310 | |||
| 311 | static int print_hmac(BIO *err, const EVP_MD *emd, BIO *out, | ||
| 312 | unsigned char *Key, int Klen, | ||
| 313 | unsigned char *Msg, int Msglen, int Tlen) | ||
| 314 | { | ||
| 315 | int i, mdlen; | ||
| 316 | unsigned char md[EVP_MAX_MD_SIZE]; | ||
| 317 | if (!HMAC(emd, Key, Klen, Msg, Msglen, md, | ||
| 318 | (unsigned int *)&mdlen)) | ||
| 319 | { | ||
| 320 | BIO_puts(err, "Error calculating HMAC\n"); | ||
| 321 | return 0; | ||
| 322 | } | ||
| 323 | if (Tlen > mdlen) | ||
| 324 | { | ||
| 325 | BIO_puts(err, "Parameter error, Tlen > HMAC length\n"); | ||
| 326 | return 0; | ||
| 327 | } | ||
| 328 | BIO_puts(out, "Mac = "); | ||
| 329 | for (i = 0; i < Tlen; i++) | ||
| 330 | BIO_printf(out, "%02x", md[i]); | ||
| 331 | BIO_puts(out, "\n"); | ||
| 332 | return 1; | ||
| 333 | } | ||
| 334 | |||
| 335 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/install.com b/src/lib/libssl/src/fips-1.0/install.com deleted file mode 100644 index 8867fcf4c0..0000000000 --- a/src/lib/libssl/src/fips-1.0/install.com +++ /dev/null | |||
| @@ -1,57 +0,0 @@ | |||
| 1 | $! INSTALL.COM -- Installs the files in a given directory tree | ||
| 2 | $! | ||
| 3 | $! Author: Richard Levitte <richard@levitte.org> | ||
| 4 | $! Time of creation: 27-MAY-2004 11:47 | ||
| 5 | $! | ||
| 6 | $! P1 root of the directory tree | ||
| 7 | $! | ||
| 8 | $ IF P1 .EQS. "" | ||
| 9 | $ THEN | ||
| 10 | $ WRITE SYS$OUTPUT "First argument missing." | ||
| 11 | $ WRITE SYS$OUTPUT "Should be the directory where you want things installed." | ||
| 12 | $ EXIT | ||
| 13 | $ ENDIF | ||
| 14 | $ | ||
| 15 | $ ROOT = F$PARSE(P1,"[]A.;0",,,"SYNTAX_ONLY,NO_CONCEAL") - "A.;0" | ||
| 16 | $ ROOT_DEV = F$PARSE(ROOT,,,"DEVICE","SYNTAX_ONLY") | ||
| 17 | $ ROOT_DIR = F$PARSE(ROOT,,,"DIRECTORY","SYNTAX_ONLY") - | ||
| 18 | - "[000000." - "][" - "[" - "]" | ||
| 19 | $ ROOT = ROOT_DEV + "[" + ROOT_DIR | ||
| 20 | $ | ||
| 21 | $ DEFINE/NOLOG WRK_SSLROOT 'ROOT'.] /TRANS=CONC | ||
| 22 | $ DEFINE/NOLOG WRK_SSLINCLUDE WRK_SSLROOT:[INCLUDE] | ||
| 23 | $ | ||
| 24 | $ IF F$PARSE("WRK_SSLROOT:[000000]") .EQS. "" THEN - | ||
| 25 | CREATE/DIR/LOG WRK_SSLROOT:[000000] | ||
| 26 | $ IF F$PARSE("WRK_SSLINCLUDE:") .EQS. "" THEN - | ||
| 27 | CREATE/DIR/LOG WRK_SSLINCLUDE: | ||
| 28 | $ | ||
| 29 | $ FDIRS := ,RAND,SHA1,DES,AES,DSA,RSA,DH,HMAC | ||
| 30 | $ EXHEADER_ := fips.h | ||
| 31 | $ EXHEADER_SHA := fips_sha.h | ||
| 32 | $ EXHEADER_RAND := fips_rand.h | ||
| 33 | $ EXHEADER_DES := | ||
| 34 | $ EXHEADER_AES := | ||
| 35 | $ EXHEADER_DSA := | ||
| 36 | $ EXHEADER_RSA := | ||
| 37 | $ EXHEADER_DH := | ||
| 38 | $ EXHEADER_HMAC := | ||
| 39 | $ | ||
| 40 | $ I = 0 | ||
| 41 | $ LOOP_FDIRS: | ||
| 42 | $ D = F$EDIT(F$ELEMENT(I, ",", FDIRS),"TRIM") | ||
| 43 | $ I = I + 1 | ||
| 44 | $ IF D .EQS. "," THEN GOTO LOOP_FDIRS_END | ||
| 45 | $ tmp = EXHEADER_'D' | ||
| 46 | $ IF tmp .EQS. "" THEN GOTO LOOP_FDIRS | ||
| 47 | $ IF D .EQS. "" | ||
| 48 | $ THEN | ||
| 49 | $ COPY 'tmp' WRK_SSLINCLUDE: /LOG | ||
| 50 | $ ELSE | ||
| 51 | $ COPY [.'D']'tmp' WRK_SSLINCLUDE: /LOG | ||
| 52 | $ ENDIF | ||
| 53 | $ SET FILE/PROT=WORLD:RE WRK_SSLINCLUDE:'tmp' | ||
| 54 | $ GOTO LOOP_FDIRS | ||
| 55 | $ LOOP_FDIRS_END: | ||
| 56 | $ | ||
| 57 | $ EXIT | ||
diff --git a/src/lib/libssl/src/fips-1.0/openssl_fips_fingerprint b/src/lib/libssl/src/fips-1.0/openssl_fips_fingerprint deleted file mode 100755 index f59a67d537..0000000000 --- a/src/lib/libssl/src/fips-1.0/openssl_fips_fingerprint +++ /dev/null | |||
| @@ -1,31 +0,0 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | # | ||
| 3 | # Check the library fingerprint and generate an executable fingerprint, or | ||
| 4 | # return an error | ||
| 5 | |||
| 6 | lib=$1 | ||
| 7 | exe=$2 | ||
| 8 | ext=${HMAC_EXT:-sha1} | ||
| 9 | |||
| 10 | # deal with the case where we're run from within the build and OpenSSL is | ||
| 11 | # not yet installed. Also, make sure LD_LIBRARY_PATH is properly set in | ||
| 12 | # case shared libraries are built. | ||
| 13 | if [ "X$TOP" != "X" ] | ||
| 14 | then | ||
| 15 | if test "$OSTYPE" = msdosdjgpp; then | ||
| 16 | PATH="$TOP/apps;$TOP;$PATH" | ||
| 17 | else | ||
| 18 | PATH="$TOP/apps:$TOP:$PATH" | ||
| 19 | fi | ||
| 20 | LD_LIBRARY_PATH=$TOP; export LD_LIBRARY_PATH | ||
| 21 | else | ||
| 22 | LD_LIBRARY_PATH=.; export LD_LIBRARY_PATH | ||
| 23 | fi | ||
| 24 | |||
| 25 | echo "Checking library fingerprint for $lib" | ||
| 26 | openssl sha1 -hmac etaonrishdlcupfm $lib | sed "s/(.*\//(/" | diff -w $lib.sha1 - || { echo "$libs fingerprint mismatch"; exit 1; } | ||
| 27 | |||
| 28 | [ -x $exe.exe ] && exe=$exe.exe | ||
| 29 | |||
| 30 | echo "Making fingerprint for $exe" | ||
| 31 | openssl sha1 -hmac etaonrishdlcupfm -binary $exe > $exe.$ext || rm $exe.$ext | ||
diff --git a/src/lib/libssl/src/fips-1.0/rand/Makefile b/src/lib/libssl/src/fips-1.0/rand/Makefile deleted file mode 100644 index 6820f3a205..0000000000 --- a/src/lib/libssl/src/fips-1.0/rand/Makefile +++ /dev/null | |||
| @@ -1,126 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/rand/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= rand | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST= fips_randtest.c fips_rngvs.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_rand.c fips_rand_selftest.c | ||
| 26 | LIBOBJ=fips_rand.o fips_rand_selftest.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= fips_rand.h | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips SDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | @echo $(LIBOBJ) > lib | ||
| 42 | |||
| 43 | files: | ||
| 44 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 45 | |||
| 46 | links: | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 50 | |||
| 51 | install: | ||
| 52 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 53 | do \ | ||
| 54 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 55 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 56 | done | ||
| 57 | |||
| 58 | tags: | ||
| 59 | ctags $(SRC) | ||
| 60 | |||
| 61 | tests: | ||
| 62 | |||
| 63 | Q=../testvectors/rng/req | ||
| 64 | A=../testvectors/rng/rsp | ||
| 65 | |||
| 66 | fips_test: | ||
| 67 | -rm -rf $(A) | ||
| 68 | mkdir $(A) | ||
| 69 | if [ -f $(Q)/ANSI931_TDES2MCT.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rngvs mct < $(Q)/ANSI931_TDES2MCT.req > $(A)/ANSI931_TDES2MCT.rsp; fi | ||
| 70 | if [ -f $(Q)/ANSI931_TDES2VST.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rngvs vst < $(Q)/ANSI931_TDES2VST.req > $(A)/ANSI931_TDES2VST.rsp; fi | ||
| 71 | |||
| 72 | lint: | ||
| 73 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 74 | |||
| 75 | depend: | ||
| 76 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 77 | |||
| 78 | dclean: | ||
| 79 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 80 | mv -f Makefile.new $(MAKEFILE) | ||
| 81 | |||
| 82 | clean: | ||
| 83 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 84 | |||
| 85 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 86 | |||
| 87 | fips_rand.o: ../../e_os.h ../../include/openssl/bio.h | ||
| 88 | fips_rand.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 89 | fips_rand.o: ../../include/openssl/des_old.h ../../include/openssl/e_os2.h | ||
| 90 | fips_rand.o: ../../include/openssl/err.h ../../include/openssl/fips_rand.h | ||
| 91 | fips_rand.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 92 | fips_rand.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 93 | fips_rand.o: ../../include/openssl/rand.h ../../include/openssl/safestack.h | ||
| 94 | fips_rand.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 95 | fips_rand.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 96 | fips_rand.o: fips_rand.c | ||
| 97 | fips_rand_selftest.o: ../../include/openssl/bio.h | ||
| 98 | fips_rand_selftest.o: ../../include/openssl/crypto.h | ||
| 99 | fips_rand_selftest.o: ../../include/openssl/des.h | ||
| 100 | fips_rand_selftest.o: ../../include/openssl/des_old.h | ||
| 101 | fips_rand_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 102 | fips_rand_selftest.o: ../../include/openssl/fips.h | ||
| 103 | fips_rand_selftest.o: ../../include/openssl/fips_rand.h | ||
| 104 | fips_rand_selftest.o: ../../include/openssl/lhash.h | ||
| 105 | fips_rand_selftest.o: ../../include/openssl/opensslconf.h | ||
| 106 | fips_rand_selftest.o: ../../include/openssl/opensslv.h | ||
| 107 | fips_rand_selftest.o: ../../include/openssl/ossl_typ.h | ||
| 108 | fips_rand_selftest.o: ../../include/openssl/rand.h | ||
| 109 | fips_rand_selftest.o: ../../include/openssl/safestack.h | ||
| 110 | fips_rand_selftest.o: ../../include/openssl/stack.h | ||
| 111 | fips_rand_selftest.o: ../../include/openssl/symhacks.h | ||
| 112 | fips_rand_selftest.o: ../../include/openssl/ui.h | ||
| 113 | fips_rand_selftest.o: ../../include/openssl/ui_compat.h fips_rand_selftest.c | ||
| 114 | fips_randtest.o: ../../e_os.h ../../include/openssl/bio.h | ||
| 115 | fips_randtest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 116 | fips_randtest.o: ../../include/openssl/des_old.h ../../include/openssl/e_os2.h | ||
| 117 | fips_randtest.o: ../../include/openssl/err.h ../../include/openssl/fips_rand.h | ||
| 118 | fips_randtest.o: ../../include/openssl/lhash.h | ||
| 119 | fips_randtest.o: ../../include/openssl/opensslconf.h | ||
| 120 | fips_randtest.o: ../../include/openssl/opensslv.h | ||
| 121 | fips_randtest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 122 | fips_randtest.o: ../../include/openssl/safestack.h | ||
| 123 | fips_randtest.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 124 | fips_randtest.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 125 | fips_randtest.o: fips_randtest.c | ||
| 126 | fips_rngvs.o: ../../include/openssl/opensslconf.h fips_rngvs.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/rand/fips_rand.c b/src/lib/libssl/src/fips-1.0/rand/fips_rand.c deleted file mode 100644 index 7df2dc804e..0000000000 --- a/src/lib/libssl/src/fips-1.0/rand/fips_rand.c +++ /dev/null | |||
| @@ -1,359 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | /* | ||
| 51 | * This is a FIPS approved PRNG, ANSI X9.31 A.2.4. | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "e_os.h" | ||
| 55 | |||
| 56 | /* If we don't define _XOPEN_SOURCE_EXTENDED, struct timeval won't | ||
| 57 | be defined and gettimeofday() won't be declared with strict compilers | ||
| 58 | like DEC C in ANSI C mode. */ | ||
| 59 | #ifndef _XOPEN_SOURCE_EXTENDED | ||
| 60 | #define _XOPEN_SOURCE_EXTENDED 1 | ||
| 61 | #endif | ||
| 62 | |||
| 63 | #include <openssl/des.h> | ||
| 64 | #include <openssl/rand.h> | ||
| 65 | #include <openssl/err.h> | ||
| 66 | #include <openssl/fips_rand.h> | ||
| 67 | #ifndef OPENSSL_SYS_WIN32 | ||
| 68 | #include <sys/time.h> | ||
| 69 | #endif | ||
| 70 | #include <assert.h> | ||
| 71 | #ifndef OPENSSL_SYS_WIN32 | ||
| 72 | # ifdef OPENSSL_UNISTD | ||
| 73 | # include OPENSSL_UNISTD | ||
| 74 | # else | ||
| 75 | # include <unistd.h> | ||
| 76 | # endif | ||
| 77 | #endif | ||
| 78 | #include <string.h> | ||
| 79 | |||
| 80 | void *OPENSSL_stderr(void); | ||
| 81 | |||
| 82 | #ifdef OPENSSL_FIPS | ||
| 83 | |||
| 84 | #define SEED_SIZE 8 | ||
| 85 | |||
| 86 | static unsigned char seed[SEED_SIZE]; | ||
| 87 | static FIPS_RAND_SIZE_T n_seed; | ||
| 88 | static FIPS_RAND_SIZE_T o_seed; | ||
| 89 | static DES_cblock key1; | ||
| 90 | static DES_cblock key2; | ||
| 91 | static DES_key_schedule ks1,ks2; | ||
| 92 | static int key_set; | ||
| 93 | static int key_init; | ||
| 94 | static int test_mode; | ||
| 95 | static unsigned char test_faketime[8]; | ||
| 96 | |||
| 97 | #ifndef GETPID_IS_MEANINGLESS | ||
| 98 | static int seed_pid; | ||
| 99 | static int key_pid; | ||
| 100 | #endif | ||
| 101 | |||
| 102 | static void fips_rand_cleanup(void); | ||
| 103 | static void fips_rand_add(const void *buf, FIPS_RAND_SIZE_T num, double add_entropy); | ||
| 104 | static int fips_rand_bytes(unsigned char *buf, FIPS_RAND_SIZE_T num); | ||
| 105 | static int fips_rand_status(void); | ||
| 106 | |||
| 107 | static const RAND_METHOD rand_fips_meth= | ||
| 108 | { | ||
| 109 | FIPS_rand_seed, | ||
| 110 | fips_rand_bytes, | ||
| 111 | fips_rand_cleanup, | ||
| 112 | fips_rand_add, | ||
| 113 | fips_rand_bytes, | ||
| 114 | fips_rand_status | ||
| 115 | }; | ||
| 116 | |||
| 117 | static int second; | ||
| 118 | |||
| 119 | const RAND_METHOD *FIPS_rand_method(void) | ||
| 120 | { | ||
| 121 | return &rand_fips_meth; | ||
| 122 | } | ||
| 123 | |||
| 124 | void FIPS_set_prng_key(const unsigned char k1[8],const unsigned char k2[8]) | ||
| 125 | { | ||
| 126 | memcpy(&key1,k1,sizeof key1); | ||
| 127 | memcpy(&key2,k2,sizeof key2); | ||
| 128 | key_set=1; | ||
| 129 | #ifndef GETPID_IS_MEANINGLESS | ||
| 130 | key_pid=getpid(); | ||
| 131 | #endif | ||
| 132 | second=0; | ||
| 133 | } | ||
| 134 | |||
| 135 | void FIPS_test_mode(int test,const unsigned char faketime[8]) | ||
| 136 | { | ||
| 137 | test_mode=test; | ||
| 138 | if(!test_mode) | ||
| 139 | return; | ||
| 140 | memcpy(test_faketime,faketime,sizeof test_faketime); | ||
| 141 | } | ||
| 142 | |||
| 143 | /* NB: this returns true if _partially_ seeded */ | ||
| 144 | int FIPS_rand_seeded() | ||
| 145 | { return key_set || n_seed; } | ||
| 146 | |||
| 147 | static void fips_gettime(unsigned char buf[8]) | ||
| 148 | { | ||
| 149 | #ifdef OPENSSL_SYS_WIN32 | ||
| 150 | FILETIME ft; | ||
| 151 | #else | ||
| 152 | struct timeval tv; | ||
| 153 | #endif | ||
| 154 | |||
| 155 | if(test_mode) | ||
| 156 | { | ||
| 157 | /* fprintf(OPENSSL_stderr(),"WARNING!!! PRNG IN TEST MODE!!!\n"); */ | ||
| 158 | memcpy(buf,test_faketime,sizeof test_faketime); | ||
| 159 | return; | ||
| 160 | } | ||
| 161 | #ifdef OPENSSL_SYS_WIN32 | ||
| 162 | GetSystemTimeAsFileTime(&ft); | ||
| 163 | buf[0] = (unsigned char) (ft.dwHighDateTime & 0xff); | ||
| 164 | buf[1] = (unsigned char) ((ft.dwHighDateTime >> 8) & 0xff); | ||
| 165 | buf[2] = (unsigned char) ((ft.dwHighDateTime >> 16) & 0xff); | ||
| 166 | buf[3] = (unsigned char) ((ft.dwHighDateTime >> 24) & 0xff); | ||
| 167 | buf[4] = (unsigned char) (ft.dwLowDateTime & 0xff); | ||
| 168 | buf[5] = (unsigned char) ((ft.dwLowDateTime >> 8) & 0xff); | ||
| 169 | buf[6] = (unsigned char) ((ft.dwLowDateTime >> 16) & 0xff); | ||
| 170 | buf[7] = (unsigned char) ((ft.dwLowDateTime >> 24) & 0xff); | ||
| 171 | #else | ||
| 172 | gettimeofday(&tv,NULL); | ||
| 173 | buf[0] = (unsigned char) (tv.tv_sec & 0xff); | ||
| 174 | buf[1] = (unsigned char) ((tv.tv_sec >> 8) & 0xff); | ||
| 175 | buf[2] = (unsigned char) ((tv.tv_sec >> 16) & 0xff); | ||
| 176 | buf[3] = (unsigned char) ((tv.tv_sec >> 24) & 0xff); | ||
| 177 | buf[4] = (unsigned char) (tv.tv_usec & 0xff); | ||
| 178 | buf[5] = (unsigned char) ((tv.tv_usec >> 8) & 0xff); | ||
| 179 | buf[6] = (unsigned char) ((tv.tv_usec >> 16) & 0xff); | ||
| 180 | buf[7] = (unsigned char) ((tv.tv_usec >> 24) & 0xff); | ||
| 181 | #endif | ||
| 182 | |||
| 183 | #if 0 /* This eminently sensible strategy is not acceptable to NIST. Sigh. */ | ||
| 184 | #ifndef GETPID_IS_MEANINGLESS | ||
| 185 | /* we mix in the PID to ensure that after a fork the children don't give | ||
| 186 | * the same results as each other | ||
| 187 | */ | ||
| 188 | pid=getpid(); | ||
| 189 | /* make sure we shift the pid to the MSB */ | ||
| 190 | if((pid&0xffff0000) == 0) | ||
| 191 | pid<<=16; | ||
| 192 | *(long *)&buf[0]^=pid; | ||
| 193 | #endif | ||
| 194 | #endif | ||
| 195 | } | ||
| 196 | |||
| 197 | static void fips_rand_encrypt(unsigned char *out,const unsigned char *in) | ||
| 198 | { | ||
| 199 | DES_ecb2_encrypt(in,out,&ks1,&ks2,1); | ||
| 200 | } | ||
| 201 | |||
| 202 | static void fips_rand_cleanup(void) | ||
| 203 | { | ||
| 204 | OPENSSL_cleanse(seed,sizeof seed); | ||
| 205 | n_seed=0; | ||
| 206 | o_seed=0; | ||
| 207 | key_init=0; | ||
| 208 | } | ||
| 209 | |||
| 210 | void FIPS_rand_seed(const void *buf_, FIPS_RAND_SIZE_T num) | ||
| 211 | { | ||
| 212 | const char *buf=buf_; | ||
| 213 | FIPS_RAND_SIZE_T n; | ||
| 214 | |||
| 215 | /* If the key hasn't been set, we can't seed! */ | ||
| 216 | if(!key_set) | ||
| 217 | return; | ||
| 218 | |||
| 219 | CRYPTO_w_lock(CRYPTO_LOCK_RAND); | ||
| 220 | if(!key_init) | ||
| 221 | { | ||
| 222 | key_init=1; | ||
| 223 | DES_set_key(&key1,&ks1); | ||
| 224 | DES_set_key(&key2,&ks2); | ||
| 225 | } | ||
| 226 | |||
| 227 | /* | ||
| 228 | * This algorithm only uses 64 bits of seed, so ensure that we use | ||
| 229 | * the most recent 64 bits. | ||
| 230 | */ | ||
| 231 | for(n=0 ; n < num ; ) | ||
| 232 | { | ||
| 233 | FIPS_RAND_SIZE_T t=num-n; | ||
| 234 | |||
| 235 | if(o_seed+t > sizeof seed) | ||
| 236 | t=sizeof seed-o_seed; | ||
| 237 | memcpy(seed+o_seed,buf+n,t); | ||
| 238 | n+=t; | ||
| 239 | o_seed+=t; | ||
| 240 | if(o_seed == sizeof seed) | ||
| 241 | o_seed=0; | ||
| 242 | if(n_seed < sizeof seed) | ||
| 243 | n_seed+=t; | ||
| 244 | } | ||
| 245 | |||
| 246 | #ifndef GETPID_IS_MEANINGLESS | ||
| 247 | seed_pid=getpid(); | ||
| 248 | #endif | ||
| 249 | |||
| 250 | CRYPTO_w_unlock(CRYPTO_LOCK_RAND); | ||
| 251 | } | ||
| 252 | |||
| 253 | static void fips_rand_add(const void *buf, FIPS_RAND_SIZE_T num, double add_entropy) | ||
| 254 | { | ||
| 255 | FIPS_rand_seed(buf,num); | ||
| 256 | } | ||
| 257 | |||
| 258 | static int fips_rand_bytes(unsigned char *buf,FIPS_RAND_SIZE_T num) | ||
| 259 | { | ||
| 260 | FIPS_RAND_SIZE_T n; | ||
| 261 | unsigned char timeseed[8]; | ||
| 262 | unsigned char intermediate[SEED_SIZE]; | ||
| 263 | unsigned char output[SEED_SIZE]; | ||
| 264 | static unsigned char previous[SEED_SIZE]; | ||
| 265 | #ifndef GETPID_IS_MEANINGLESS | ||
| 266 | int pid; | ||
| 267 | #endif | ||
| 268 | |||
| 269 | if(n_seed < sizeof seed) | ||
| 270 | { | ||
| 271 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_NOT_SEEDED); | ||
| 272 | return 0; | ||
| 273 | } | ||
| 274 | |||
| 275 | #ifdef FIPS_RAND_MAX_SIZE_T | ||
| 276 | if (num > FIPS_RAND_MAX_SIZE_T) | ||
| 277 | { | ||
| 278 | #ifdef RAND_R_PRNG_ASKING_FOR_TOO_MUCH | ||
| 279 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_ASKING_FOR_TOO_MUCH); | ||
| 280 | return 0; | ||
| 281 | #else | ||
| 282 | return -1; /* signal "not supported" condition */ | ||
| 283 | #endif | ||
| 284 | } | ||
| 285 | #endif | ||
| 286 | |||
| 287 | #ifndef GETPID_IS_MEANINGLESS | ||
| 288 | pid=getpid(); | ||
| 289 | if(pid != seed_pid) | ||
| 290 | { | ||
| 291 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_NOT_RESEEDED); | ||
| 292 | return 0; | ||
| 293 | } | ||
| 294 | if(pid != key_pid) | ||
| 295 | { | ||
| 296 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_NOT_REKEYED); | ||
| 297 | return 0; | ||
| 298 | } | ||
| 299 | #endif | ||
| 300 | |||
| 301 | CRYPTO_w_lock(CRYPTO_LOCK_RAND); | ||
| 302 | |||
| 303 | for(n=0 ; n < num ; ) | ||
| 304 | { | ||
| 305 | unsigned char t[SEED_SIZE]; | ||
| 306 | FIPS_RAND_SIZE_T l; | ||
| 307 | |||
| 308 | /* ANS X9.31 A.2.4: I = ede*K(DT) | ||
| 309 | timeseed == DT | ||
| 310 | intermediate == I | ||
| 311 | */ | ||
| 312 | fips_gettime(timeseed); | ||
| 313 | fips_rand_encrypt(intermediate,timeseed); | ||
| 314 | |||
| 315 | /* ANS X9.31 A.2.4: R = ede*K(I^V) | ||
| 316 | intermediate == I | ||
| 317 | seed == V | ||
| 318 | output == R | ||
| 319 | */ | ||
| 320 | for(l=0 ; l < sizeof t ; ++l) | ||
| 321 | t[l]=intermediate[l]^seed[l]; | ||
| 322 | fips_rand_encrypt(output,t); | ||
| 323 | |||
| 324 | /* ANS X9.31 A.2.4: V = ede*K(R^I) | ||
| 325 | output == R | ||
| 326 | intermediate == I | ||
| 327 | seed == V | ||
| 328 | */ | ||
| 329 | for(l=0 ; l < sizeof t ; ++l) | ||
| 330 | t[l]=output[l]^intermediate[l]; | ||
| 331 | fips_rand_encrypt(seed,t); | ||
| 332 | |||
| 333 | if(second && !memcmp(output,previous,sizeof previous)) | ||
| 334 | { | ||
| 335 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_STUCK); | ||
| 336 | CRYPTO_w_unlock(CRYPTO_LOCK_RAND); | ||
| 337 | return 0; | ||
| 338 | } | ||
| 339 | memcpy(previous,output,sizeof previous); | ||
| 340 | second=1; | ||
| 341 | |||
| 342 | /* Successive values of R may be concatenated to produce a | ||
| 343 | pseudo random number of the desired length */ | ||
| 344 | l=SEED_SIZE < num-n ? SEED_SIZE : num-n; | ||
| 345 | memcpy(buf+n,output,l); | ||
| 346 | n+=l; | ||
| 347 | } | ||
| 348 | |||
| 349 | CRYPTO_w_unlock(CRYPTO_LOCK_RAND); | ||
| 350 | |||
| 351 | return 1; | ||
| 352 | } | ||
| 353 | |||
| 354 | static int fips_rand_status(void) | ||
| 355 | { | ||
| 356 | return n_seed == sizeof seed; | ||
| 357 | } | ||
| 358 | |||
| 359 | #endif /* OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips-1.0/rand/fips_rand_selftest.c b/src/lib/libssl/src/fips-1.0/rand/fips_rand_selftest.c deleted file mode 100644 index 691b929d71..0000000000 --- a/src/lib/libssl/src/fips-1.0/rand/fips_rand_selftest.c +++ /dev/null | |||
| @@ -1,120 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/rand.h> | ||
| 54 | #include <openssl/fips_rand.h> | ||
| 55 | |||
| 56 | #ifdef OPENSSL_FIPS | ||
| 57 | static struct | ||
| 58 | { | ||
| 59 | unsigned char key1[8]; | ||
| 60 | unsigned char key2[8]; | ||
| 61 | unsigned char seed[8]; | ||
| 62 | unsigned char dt[8]; | ||
| 63 | } init_iv[] = | ||
| 64 | { | ||
| 65 | { | ||
| 66 | { 0x75, 0xc7, 0x1a, 0xe5, 0xa1, 0x1a, 0x23, 0x2c }, | ||
| 67 | { 0x40, 0x25, 0x6d, 0xcd, 0x94, 0xf7, 0x67, 0xb0 }, | ||
| 68 | { 0x80, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, | ||
| 69 | { 0xc8, 0x9a, 0x1d, 0x88, 0x8e, 0xd1, 0x2f, 0x3c }, | ||
| 70 | }, | ||
| 71 | { | ||
| 72 | { 0x75, 0xc7, 0x1a, 0xe5, 0xa1, 0x1a, 0x23, 0x2c }, | ||
| 73 | { 0x40, 0x25, 0x6d, 0xcd, 0x94, 0xf7, 0x67, 0xb0 }, | ||
| 74 | { 0xf8, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, | ||
| 75 | { 0xc8, 0x9a, 0x1d, 0x88, 0x8e, 0xd1, 0x2f, 0x40 }, | ||
| 76 | }, | ||
| 77 | { | ||
| 78 | { 0x75, 0xc7, 0x1a, 0xe5, 0xa1, 0x1a, 0x23, 0x2c }, | ||
| 79 | { 0x40, 0x25, 0x6d, 0xcd, 0x94, 0xf7, 0x67, 0xb0 }, | ||
| 80 | { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff }, | ||
| 81 | { 0xc8, 0x9a, 0x1d, 0x88, 0x8e, 0xd1, 0x2f, 0x7b }, | ||
| 82 | }, | ||
| 83 | }; | ||
| 84 | |||
| 85 | static const unsigned char expected_ret[][8]= | ||
| 86 | { | ||
| 87 | { 0x94, 0x4d, 0xc7, 0x21, 0x0d, 0x6d, 0x7f, 0xd7 }, | ||
| 88 | { 0x02, 0x43, 0x3c, 0x94, 0x17, 0xa3, 0x32, 0x6f }, | ||
| 89 | { 0xe7, 0xe2, 0xb2, 0x96, 0x4f, 0x36, 0xed, 0x41 }, | ||
| 90 | }; | ||
| 91 | |||
| 92 | void FIPS_corrupt_rng() | ||
| 93 | { | ||
| 94 | init_iv[0].dt[0]++; | ||
| 95 | } | ||
| 96 | |||
| 97 | int FIPS_selftest_rng() | ||
| 98 | { | ||
| 99 | int n; | ||
| 100 | |||
| 101 | for(n=0 ; n < 3 ; ++n) | ||
| 102 | { | ||
| 103 | unsigned char actual_ret[8]; | ||
| 104 | |||
| 105 | FIPS_rand_method()->cleanup(); | ||
| 106 | FIPS_set_prng_key(init_iv[n].key1,init_iv[n].key2); | ||
| 107 | FIPS_rand_seed(init_iv[n].seed,8); | ||
| 108 | FIPS_test_mode(1,init_iv[n].dt); | ||
| 109 | if ((FIPS_rand_method()->bytes(actual_ret, 8) <=0) || (memcmp(actual_ret,expected_ret[n],sizeof actual_ret))) | ||
| 110 | { | ||
| 111 | FIPS_test_mode(0,NULL); | ||
| 112 | FIPSerr(FIPS_F_FIPS_SELFTEST_RNG,FIPS_R_SELFTEST_FAILED); | ||
| 113 | return 0; | ||
| 114 | } | ||
| 115 | } | ||
| 116 | FIPS_test_mode(0,NULL); | ||
| 117 | return 1; | ||
| 118 | } | ||
| 119 | |||
| 120 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rand/fips_rngvs.c b/src/lib/libssl/src/fips-1.0/rand/fips_rngvs.c deleted file mode 100644 index 2c3fdbcca7..0000000000 --- a/src/lib/libssl/src/fips-1.0/rand/fips_rngvs.c +++ /dev/null | |||
| @@ -1,234 +0,0 @@ | |||
| 1 | /* | ||
| 2 | * Crude test driver for processing the VST and MCT testvector files | ||
| 3 | * generated by the CMVP RNGVS product. | ||
| 4 | * | ||
| 5 | * Note the input files are assumed to have a _very_ specific format | ||
| 6 | * as described in the NIST document "The Random Number Generator | ||
| 7 | * Validation System (RNGVS)", May 25, 2004. | ||
| 8 | * | ||
| 9 | */ | ||
| 10 | #include <openssl/opensslconf.h> | ||
| 11 | |||
| 12 | #ifndef OPENSSL_FIPS | ||
| 13 | #include <stdio.h> | ||
| 14 | int main() | ||
| 15 | { | ||
| 16 | printf("No FIPS RNG support\n"); | ||
| 17 | return 0; | ||
| 18 | } | ||
| 19 | #else | ||
| 20 | |||
| 21 | #include <openssl/bn.h> | ||
| 22 | #include <openssl/dsa.h> | ||
| 23 | #include <openssl/fips.h> | ||
| 24 | #include <openssl/err.h> | ||
| 25 | #include <openssl/rand.h> | ||
| 26 | #include <openssl/fips_rand.h> | ||
| 27 | #include <string.h> | ||
| 28 | |||
| 29 | int hex2bin(const char *in, unsigned char *out) | ||
| 30 | { | ||
| 31 | int n1, n2; | ||
| 32 | unsigned char ch; | ||
| 33 | |||
| 34 | for (n1=0,n2=0 ; in[n1] && in[n1] != '\n' ; ) | ||
| 35 | { /* first byte */ | ||
| 36 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 37 | ch = in[n1++] - '0'; | ||
| 38 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 39 | ch = in[n1++] - 'A' + 10; | ||
| 40 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 41 | ch = in[n1++] - 'a' + 10; | ||
| 42 | else | ||
| 43 | return -1; | ||
| 44 | if(!in[n1]) | ||
| 45 | { | ||
| 46 | out[n2++]=ch; | ||
| 47 | break; | ||
| 48 | } | ||
| 49 | out[n2] = ch << 4; | ||
| 50 | /* second byte */ | ||
| 51 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 52 | ch = in[n1++] - '0'; | ||
| 53 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 54 | ch = in[n1++] - 'A' + 10; | ||
| 55 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 56 | ch = in[n1++] - 'a' + 10; | ||
| 57 | else | ||
| 58 | return -1; | ||
| 59 | out[n2++] |= ch; | ||
| 60 | } | ||
| 61 | return n2; | ||
| 62 | } | ||
| 63 | |||
| 64 | int bin2hex(const unsigned char *in,int len,char *out) | ||
| 65 | { | ||
| 66 | int n1, n2; | ||
| 67 | unsigned char ch; | ||
| 68 | |||
| 69 | for (n1=0,n2=0 ; n1 < len ; ++n1) | ||
| 70 | { | ||
| 71 | ch=in[n1] >> 4; | ||
| 72 | if (ch <= 0x09) | ||
| 73 | out[n2++]=ch+'0'; | ||
| 74 | else | ||
| 75 | out[n2++]=ch-10+'a'; | ||
| 76 | ch=in[n1] & 0x0f; | ||
| 77 | if(ch <= 0x09) | ||
| 78 | out[n2++]=ch+'0'; | ||
| 79 | else | ||
| 80 | out[n2++]=ch-10+'a'; | ||
| 81 | } | ||
| 82 | out[n2]='\0'; | ||
| 83 | return n2; | ||
| 84 | } | ||
| 85 | |||
| 86 | void pv(const char *tag,const unsigned char *val,int len) | ||
| 87 | { | ||
| 88 | char obuf[2048]; | ||
| 89 | |||
| 90 | bin2hex(val,len,obuf); | ||
| 91 | printf("%s = %s\n",tag,obuf); | ||
| 92 | } | ||
| 93 | |||
| 94 | void vst() | ||
| 95 | { | ||
| 96 | unsigned char key1[8]; | ||
| 97 | unsigned char key2[8]; | ||
| 98 | unsigned char v[8]; | ||
| 99 | unsigned char dt[8]; | ||
| 100 | unsigned char ret[8]; | ||
| 101 | char buf[1024]; | ||
| 102 | int n; | ||
| 103 | |||
| 104 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 105 | { | ||
| 106 | if(!strncmp(buf,"Key1 = ",7)) | ||
| 107 | { | ||
| 108 | n=hex2bin(buf+7,key1); | ||
| 109 | pv("Key1",key1,n); | ||
| 110 | } | ||
| 111 | else if(!strncmp(buf,"Key2 = ",7)) | ||
| 112 | { | ||
| 113 | n=hex2bin(buf+7,key2); | ||
| 114 | pv("Key1",key2,n); | ||
| 115 | } | ||
| 116 | else if(!strncmp(buf,"DT = ",5)) | ||
| 117 | { | ||
| 118 | n=hex2bin(buf+5,dt); | ||
| 119 | pv("DT",dt,n); | ||
| 120 | } | ||
| 121 | else if(!strncmp(buf,"V = ",4)) | ||
| 122 | { | ||
| 123 | n=hex2bin(buf+4,v); | ||
| 124 | pv("V",v,n); | ||
| 125 | |||
| 126 | FIPS_rand_method()->cleanup(); | ||
| 127 | FIPS_set_prng_key(key1,key2); | ||
| 128 | FIPS_rand_seed(v,8); | ||
| 129 | FIPS_test_mode(1,dt); | ||
| 130 | if (FIPS_rand_method()->bytes(ret,8) <= 0) | ||
| 131 | { | ||
| 132 | FIPS_test_mode(0,NULL); | ||
| 133 | FIPSerr(FIPS_F_FIPS_SELFTEST_RNG,FIPS_R_SELFTEST_FAILED); | ||
| 134 | return; | ||
| 135 | } | ||
| 136 | |||
| 137 | pv("R",ret,8); | ||
| 138 | putc('\n',stdout); | ||
| 139 | } | ||
| 140 | else | ||
| 141 | fputs(buf,stdout); | ||
| 142 | } | ||
| 143 | } | ||
| 144 | |||
| 145 | |||
| 146 | void mct() | ||
| 147 | { | ||
| 148 | unsigned char key1[8]; | ||
| 149 | unsigned char key2[8]; | ||
| 150 | unsigned char v[8]; | ||
| 151 | unsigned char dt[8]; | ||
| 152 | unsigned char ret[8]; | ||
| 153 | char buf[1024]; | ||
| 154 | int n; | ||
| 155 | |||
| 156 | BIGNUM *bn; | ||
| 157 | BIGNUM *pbn; | ||
| 158 | bn = BN_new(); | ||
| 159 | |||
| 160 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 161 | { | ||
| 162 | if(!strncmp(buf,"Key1 = ",7)) | ||
| 163 | { | ||
| 164 | n=hex2bin(buf+7,key1); | ||
| 165 | pv("Key1",key1,n); | ||
| 166 | } | ||
| 167 | else if(!strncmp(buf,"Key2 = ",7)) | ||
| 168 | { | ||
| 169 | n=hex2bin(buf+7,key2); | ||
| 170 | pv("Key1",key2,n); | ||
| 171 | } | ||
| 172 | else if(!strncmp(buf,"DT = ",5)) | ||
| 173 | { | ||
| 174 | n=hex2bin(buf+5,dt); | ||
| 175 | pv("DT",dt,n); | ||
| 176 | } | ||
| 177 | else if(!strncmp(buf,"V = ",4)) | ||
| 178 | { | ||
| 179 | int iter; | ||
| 180 | n=hex2bin(buf+4,v); | ||
| 181 | pv("V",v,n); | ||
| 182 | |||
| 183 | FIPS_rand_method()->cleanup(); | ||
| 184 | FIPS_set_prng_key(key1,key2); | ||
| 185 | FIPS_rand_seed(v,8); | ||
| 186 | for (iter=0; iter < 10000; ++iter) | ||
| 187 | { | ||
| 188 | FIPS_test_mode(1,dt); | ||
| 189 | if (FIPS_rand_method()->bytes(ret,8) <= 0) | ||
| 190 | { | ||
| 191 | FIPS_test_mode(0,NULL); | ||
| 192 | FIPSerr(FIPS_F_FIPS_SELFTEST_RNG,FIPS_R_SELFTEST_FAILED); | ||
| 193 | return; | ||
| 194 | } | ||
| 195 | pbn = BN_bin2bn(dt,8,bn); | ||
| 196 | n = BN_add(bn,bn,BN_value_one()); | ||
| 197 | n = BN_bn2bin(bn,dt); | ||
| 198 | } | ||
| 199 | |||
| 200 | pv("R",ret,8); | ||
| 201 | putc('\n',stdout); | ||
| 202 | } | ||
| 203 | else | ||
| 204 | fputs(buf,stdout); | ||
| 205 | } | ||
| 206 | BN_free(bn); | ||
| 207 | } | ||
| 208 | |||
| 209 | int main(int argc,char **argv) | ||
| 210 | { | ||
| 211 | if(argc != 2) | ||
| 212 | { | ||
| 213 | fprintf(stderr,"%s [mct|vst]\n",argv[0]); | ||
| 214 | exit(1); | ||
| 215 | } | ||
| 216 | if(!FIPS_mode_set(1)) | ||
| 217 | { | ||
| 218 | ERR_load_crypto_strings(); | ||
| 219 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 220 | exit(1); | ||
| 221 | } | ||
| 222 | if(!strcmp(argv[1],"mct")) | ||
| 223 | mct(); | ||
| 224 | else if(!strcmp(argv[1],"vst")) | ||
| 225 | vst(); | ||
| 226 | else | ||
| 227 | { | ||
| 228 | fprintf(stderr,"Don't know how to %s.\n",argv[1]); | ||
| 229 | exit(1); | ||
| 230 | } | ||
| 231 | |||
| 232 | return 0; | ||
| 233 | } | ||
| 234 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/Makefile b/src/lib/libssl/src/fips-1.0/rsa/Makefile deleted file mode 100644 index 179df4758a..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/Makefile +++ /dev/null | |||
| @@ -1,208 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/rsa/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= rsa | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST= fips_rsavtest.c fips_rsastest.c fips_rsagtest.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_rsa_eay.c fips_rsa_gen.c fips_rsa_selftest.c fips_rsa_x931g.c | ||
| 26 | LIBOBJ=fips_rsa_eay.o fips_rsa_gen.o fips_rsa_selftest.o fips_rsa_x931g.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | @echo $(LIBOBJ) > lib | ||
| 42 | |||
| 43 | files: | ||
| 44 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 45 | |||
| 46 | links: | ||
| 47 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 48 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 49 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 50 | |||
| 51 | install: | ||
| 52 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 53 | do \ | ||
| 54 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 55 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 56 | done | ||
| 57 | |||
| 58 | tags: | ||
| 59 | ctags $(SRC) | ||
| 60 | |||
| 61 | tests: | ||
| 62 | |||
| 63 | Q=../testvectors/rsa/req | ||
| 64 | A=../testvectors/rsa/rsp | ||
| 65 | Q62=../testvectors/rsa_salt_62/req | ||
| 66 | A62=../testvectors/rsa_salt_62/rsp | ||
| 67 | |||
| 68 | fips_test: | ||
| 69 | -rm -rf $(A) $(A62) | ||
| 70 | mkdir $(A) $(A62) | ||
| 71 | if [ -f $(Q)/SigGen15.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsastest < $(Q)/SigGen15.req > $(A)/SigGen15.rsp; fi | ||
| 72 | if [ -f $(Q)/SigVer15.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsavtest < $(Q)/SigVer15.req > $(A)/SigVer15.rsp; fi | ||
| 73 | if [ -f $(Q)/SigGenPSS.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsastest -saltlen 0 < $(Q)/SigGenPSS.req > $(A)/SigGenPSS.rsp; fi | ||
| 74 | if [ -f $(Q)/SigVerPSS.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsavtest -saltlen 0 < $(Q)/SigVerPSS.req > $(A)/SigVerPSS.rsp; fi | ||
| 75 | if [ -f $(Q)/SigGenRSA.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsastest -x931 < $(Q)/SigGenRSA.req > $(A)/SigGenRSA.rsp; fi | ||
| 76 | if [ -f $(Q)/SigVerRSA.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsavtest -x931 < $(Q)/SigVerRSA.req > $(A)/SigVerRSA.rsp; fi | ||
| 77 | if [ -f $(Q62)/SigGenPSS.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsastest -saltlen 62 < $(Q62)/SigGenPSS.req >$(A62)/SigGenPSS.rsp; fi | ||
| 78 | if [ -f $(Q62)/SigVerPSS.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsavtest -saltlen 62 <$(Q62)/SigVerPSS.req >$(A62)/SigVerPSS.rsp; fi | ||
| 79 | if [ -f $(Q)/KeyGenRSA.req ]; then $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_rsagtest < $(Q)/KeyGenRSA.req > $(A)/KeyGenRSA.rsp; fi | ||
| 80 | |||
| 81 | lint: | ||
| 82 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 83 | |||
| 84 | depend: | ||
| 85 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 86 | |||
| 87 | dclean: | ||
| 88 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 89 | mv -f Makefile.new $(MAKEFILE) | ||
| 90 | |||
| 91 | clean: | ||
| 92 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 93 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 94 | |||
| 95 | fips_rsa_eay.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 96 | fips_rsa_eay.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 97 | fips_rsa_eay.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 98 | fips_rsa_eay.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 99 | fips_rsa_eay.o: ../../include/openssl/opensslconf.h | ||
| 100 | fips_rsa_eay.o: ../../include/openssl/opensslv.h | ||
| 101 | fips_rsa_eay.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 102 | fips_rsa_eay.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 103 | fips_rsa_eay.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 104 | fips_rsa_eay.o: fips_rsa_eay.c | ||
| 105 | fips_rsa_gen.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 106 | fips_rsa_gen.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 107 | fips_rsa_gen.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 108 | fips_rsa_gen.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 109 | fips_rsa_gen.o: ../../include/openssl/opensslconf.h | ||
| 110 | fips_rsa_gen.o: ../../include/openssl/opensslv.h | ||
| 111 | fips_rsa_gen.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rsa.h | ||
| 112 | fips_rsa_gen.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 113 | fips_rsa_gen.o: ../../include/openssl/symhacks.h fips_rsa_gen.c | ||
| 114 | fips_rsa_selftest.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 115 | fips_rsa_selftest.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 116 | fips_rsa_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 117 | fips_rsa_selftest.o: ../../include/openssl/fips.h | ||
| 118 | fips_rsa_selftest.o: ../../include/openssl/fips_sha.h | ||
| 119 | fips_rsa_selftest.o: ../../include/openssl/lhash.h | ||
| 120 | fips_rsa_selftest.o: ../../include/openssl/opensslconf.h | ||
| 121 | fips_rsa_selftest.o: ../../include/openssl/opensslv.h | ||
| 122 | fips_rsa_selftest.o: ../../include/openssl/ossl_typ.h | ||
| 123 | fips_rsa_selftest.o: ../../include/openssl/rsa.h | ||
| 124 | fips_rsa_selftest.o: ../../include/openssl/safestack.h | ||
| 125 | fips_rsa_selftest.o: ../../include/openssl/stack.h | ||
| 126 | fips_rsa_selftest.o: ../../include/openssl/symhacks.h fips_rsa_selftest.c | ||
| 127 | fips_rsa_x931g.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 128 | fips_rsa_x931g.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 129 | fips_rsa_x931g.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 130 | fips_rsa_x931g.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 131 | fips_rsa_x931g.o: ../../include/openssl/opensslconf.h | ||
| 132 | fips_rsa_x931g.o: ../../include/openssl/opensslv.h | ||
| 133 | fips_rsa_x931g.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rsa.h | ||
| 134 | fips_rsa_x931g.o: ../../include/openssl/safestack.h | ||
| 135 | fips_rsa_x931g.o: ../../include/openssl/stack.h | ||
| 136 | fips_rsa_x931g.o: ../../include/openssl/symhacks.h fips_rsa_x931g.c | ||
| 137 | fips_rsagtest.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 138 | fips_rsagtest.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 139 | fips_rsagtest.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h | ||
| 140 | fips_rsagtest.o: ../../include/openssl/cast.h ../../include/openssl/conf.h | ||
| 141 | fips_rsagtest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 142 | fips_rsagtest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 143 | fips_rsagtest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 144 | fips_rsagtest.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 145 | fips_rsagtest.o: ../../include/openssl/hmac.h ../../include/openssl/idea.h | ||
| 146 | fips_rsagtest.o: ../../include/openssl/lhash.h ../../include/openssl/md2.h | ||
| 147 | fips_rsagtest.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 148 | fips_rsagtest.o: ../../include/openssl/mdc2.h ../../include/openssl/obj_mac.h | ||
| 149 | fips_rsagtest.o: ../../include/openssl/objects.h | ||
| 150 | fips_rsagtest.o: ../../include/openssl/opensslconf.h | ||
| 151 | fips_rsagtest.o: ../../include/openssl/opensslv.h | ||
| 152 | fips_rsagtest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h | ||
| 153 | fips_rsagtest.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 154 | fips_rsagtest.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 155 | fips_rsagtest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 156 | fips_rsagtest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 157 | fips_rsagtest.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 158 | fips_rsagtest.o: ../../include/openssl/ui_compat.h ../../include/openssl/x509.h | ||
| 159 | fips_rsagtest.o: ../../include/openssl/x509_vfy.h | ||
| 160 | fips_rsagtest.o: ../../include/openssl/x509v3.h fips_rsagtest.c | ||
| 161 | fips_rsastest.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 162 | fips_rsastest.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 163 | fips_rsastest.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h | ||
| 164 | fips_rsastest.o: ../../include/openssl/cast.h ../../include/openssl/conf.h | ||
| 165 | fips_rsastest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 166 | fips_rsastest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 167 | fips_rsastest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 168 | fips_rsastest.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 169 | fips_rsastest.o: ../../include/openssl/hmac.h ../../include/openssl/idea.h | ||
| 170 | fips_rsastest.o: ../../include/openssl/lhash.h ../../include/openssl/md2.h | ||
| 171 | fips_rsastest.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 172 | fips_rsastest.o: ../../include/openssl/mdc2.h ../../include/openssl/obj_mac.h | ||
| 173 | fips_rsastest.o: ../../include/openssl/objects.h | ||
| 174 | fips_rsastest.o: ../../include/openssl/opensslconf.h | ||
| 175 | fips_rsastest.o: ../../include/openssl/opensslv.h | ||
| 176 | fips_rsastest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h | ||
| 177 | fips_rsastest.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 178 | fips_rsastest.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 179 | fips_rsastest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 180 | fips_rsastest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 181 | fips_rsastest.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 182 | fips_rsastest.o: ../../include/openssl/ui_compat.h ../../include/openssl/x509.h | ||
| 183 | fips_rsastest.o: ../../include/openssl/x509_vfy.h | ||
| 184 | fips_rsastest.o: ../../include/openssl/x509v3.h fips_rsastest.c | ||
| 185 | fips_rsavtest.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 186 | fips_rsavtest.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 187 | fips_rsavtest.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h | ||
| 188 | fips_rsavtest.o: ../../include/openssl/cast.h ../../include/openssl/conf.h | ||
| 189 | fips_rsavtest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 190 | fips_rsavtest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 191 | fips_rsavtest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 192 | fips_rsavtest.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 193 | fips_rsavtest.o: ../../include/openssl/hmac.h ../../include/openssl/idea.h | ||
| 194 | fips_rsavtest.o: ../../include/openssl/lhash.h ../../include/openssl/md2.h | ||
| 195 | fips_rsavtest.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 196 | fips_rsavtest.o: ../../include/openssl/mdc2.h ../../include/openssl/obj_mac.h | ||
| 197 | fips_rsavtest.o: ../../include/openssl/objects.h | ||
| 198 | fips_rsavtest.o: ../../include/openssl/opensslconf.h | ||
| 199 | fips_rsavtest.o: ../../include/openssl/opensslv.h | ||
| 200 | fips_rsavtest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h | ||
| 201 | fips_rsavtest.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 202 | fips_rsavtest.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 203 | fips_rsavtest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 204 | fips_rsavtest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 205 | fips_rsavtest.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 206 | fips_rsavtest.o: ../../include/openssl/ui_compat.h ../../include/openssl/x509.h | ||
| 207 | fips_rsavtest.o: ../../include/openssl/x509_vfy.h | ||
| 208 | fips_rsavtest.o: ../../include/openssl/x509v3.h fips_rsavtest.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_eay.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_eay.c deleted file mode 100644 index 2d0d973f1e..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_eay.c +++ /dev/null | |||
| @@ -1,788 +0,0 @@ | |||
| 1 | /* crypto/rsa/rsa_eay.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | /* ==================================================================== | ||
| 59 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 60 | * | ||
| 61 | * Redistribution and use in source and binary forms, with or without | ||
| 62 | * modification, are permitted provided that the following conditions | ||
| 63 | * are met: | ||
| 64 | * | ||
| 65 | * 1. Redistributions of source code must retain the above copyright | ||
| 66 | * notice, this list of conditions and the following disclaimer. | ||
| 67 | * | ||
| 68 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 69 | * notice, this list of conditions and the following disclaimer in | ||
| 70 | * the documentation and/or other materials provided with the | ||
| 71 | * distribution. | ||
| 72 | * | ||
| 73 | * 3. All advertising materials mentioning features or use of this | ||
| 74 | * software must display the following acknowledgment: | ||
| 75 | * "This product includes software developed by the OpenSSL Project | ||
| 76 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 77 | * | ||
| 78 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 79 | * endorse or promote products derived from this software without | ||
| 80 | * prior written permission. For written permission, please contact | ||
| 81 | * openssl-core@openssl.org. | ||
| 82 | * | ||
| 83 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 84 | * nor may "OpenSSL" appear in their names without prior written | ||
| 85 | * permission of the OpenSSL Project. | ||
| 86 | * | ||
| 87 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 88 | * acknowledgment: | ||
| 89 | * "This product includes software developed by the OpenSSL Project | ||
| 90 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 91 | * | ||
| 92 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 93 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 94 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 95 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 96 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 97 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 98 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 99 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 100 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 101 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 102 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 103 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 104 | * ==================================================================== | ||
| 105 | * | ||
| 106 | * This product includes cryptographic software written by Eric Young | ||
| 107 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 108 | * Hudson (tjh@cryptsoft.com). | ||
| 109 | * | ||
| 110 | */ | ||
| 111 | |||
| 112 | #include <stdio.h> | ||
| 113 | #include <openssl/err.h> | ||
| 114 | #include <openssl/bn.h> | ||
| 115 | #include <openssl/rsa.h> | ||
| 116 | #include <openssl/rand.h> | ||
| 117 | #include <openssl/fips.h> | ||
| 118 | |||
| 119 | #if !defined(RSA_NULL) && defined(OPENSSL_FIPS) | ||
| 120 | |||
| 121 | static int RSA_eay_public_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 122 | unsigned char *to, RSA *rsa,int padding); | ||
| 123 | static int RSA_eay_private_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 124 | unsigned char *to, RSA *rsa,int padding); | ||
| 125 | static int RSA_eay_public_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 126 | unsigned char *to, RSA *rsa,int padding); | ||
| 127 | static int RSA_eay_private_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 128 | unsigned char *to, RSA *rsa,int padding); | ||
| 129 | static int RSA_eay_mod_exp(BIGNUM *r0, const BIGNUM *i, RSA *rsa); | ||
| 130 | static int RSA_eay_init(RSA *rsa); | ||
| 131 | static int RSA_eay_finish(RSA *rsa); | ||
| 132 | static const RSA_METHOD rsa_pkcs1_eay_meth={ | ||
| 133 | "Eric Young's PKCS#1 RSA", | ||
| 134 | RSA_eay_public_encrypt, | ||
| 135 | RSA_eay_public_decrypt, /* signature verification */ | ||
| 136 | RSA_eay_private_encrypt, /* signing */ | ||
| 137 | RSA_eay_private_decrypt, | ||
| 138 | RSA_eay_mod_exp, | ||
| 139 | BN_mod_exp_mont, /* XXX probably we should not use Montgomery if e == 3 */ | ||
| 140 | RSA_eay_init, | ||
| 141 | RSA_eay_finish, | ||
| 142 | 0, /* flags */ | ||
| 143 | NULL, | ||
| 144 | 0, /* rsa_sign */ | ||
| 145 | 0 /* rsa_verify */ | ||
| 146 | }; | ||
| 147 | |||
| 148 | const RSA_METHOD *RSA_PKCS1_SSLeay(void) | ||
| 149 | { | ||
| 150 | return(&rsa_pkcs1_eay_meth); | ||
| 151 | } | ||
| 152 | |||
| 153 | static int RSA_eay_public_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 154 | unsigned char *to, RSA *rsa, int padding) | ||
| 155 | { | ||
| 156 | BIGNUM f,ret; | ||
| 157 | int i,j,k,num=0,r= -1; | ||
| 158 | unsigned char *buf=NULL; | ||
| 159 | BN_CTX *ctx=NULL; | ||
| 160 | |||
| 161 | BN_init(&f); | ||
| 162 | BN_init(&ret); | ||
| 163 | |||
| 164 | if(FIPS_selftest_failed()) | ||
| 165 | { | ||
| 166 | FIPSerr(FIPS_F_RSA_EAY_PUBLIC_ENCRYPT,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 167 | goto err; | ||
| 168 | } | ||
| 169 | |||
| 170 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 171 | num=BN_num_bytes(rsa->n); | ||
| 172 | if ((buf=(unsigned char *)OPENSSL_malloc(num)) == NULL) | ||
| 173 | { | ||
| 174 | RSAerr(RSA_F_RSA_EAY_PUBLIC_ENCRYPT,ERR_R_MALLOC_FAILURE); | ||
| 175 | goto err; | ||
| 176 | } | ||
| 177 | |||
| 178 | switch (padding) | ||
| 179 | { | ||
| 180 | case RSA_PKCS1_PADDING: | ||
| 181 | i=RSA_padding_add_PKCS1_type_2(buf,num,from,flen); | ||
| 182 | break; | ||
| 183 | #ifndef OPENSSL_NO_SHA | ||
| 184 | case RSA_PKCS1_OAEP_PADDING: | ||
| 185 | i=RSA_padding_add_PKCS1_OAEP(buf,num,from,flen,NULL,0); | ||
| 186 | break; | ||
| 187 | #endif | ||
| 188 | case RSA_SSLV23_PADDING: | ||
| 189 | i=RSA_padding_add_SSLv23(buf,num,from,flen); | ||
| 190 | break; | ||
| 191 | case RSA_NO_PADDING: | ||
| 192 | i=RSA_padding_add_none(buf,num,from,flen); | ||
| 193 | break; | ||
| 194 | default: | ||
| 195 | RSAerr(RSA_F_RSA_EAY_PUBLIC_ENCRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 196 | goto err; | ||
| 197 | } | ||
| 198 | if (i <= 0) goto err; | ||
| 199 | |||
| 200 | if (BN_bin2bn(buf,num,&f) == NULL) goto err; | ||
| 201 | |||
| 202 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 203 | { | ||
| 204 | /* usually the padding functions would catch this */ | ||
| 205 | RSAerr(RSA_F_RSA_EAY_PUBLIC_ENCRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 206 | goto err; | ||
| 207 | } | ||
| 208 | |||
| 209 | if (rsa->flags & RSA_FLAG_CACHE_PUBLIC) | ||
| 210 | { | ||
| 211 | if (!BN_MONT_CTX_set_locked(&rsa->_method_mod_n, | ||
| 212 | CRYPTO_LOCK_RSA, rsa->n, ctx)) | ||
| 213 | goto err; | ||
| 214 | } | ||
| 215 | |||
| 216 | if (!rsa->meth->bn_mod_exp(&ret,&f,rsa->e,rsa->n,ctx, | ||
| 217 | rsa->_method_mod_n)) goto err; | ||
| 218 | |||
| 219 | /* put in leading 0 bytes if the number is less than the | ||
| 220 | * length of the modulus */ | ||
| 221 | j=BN_num_bytes(&ret); | ||
| 222 | i=BN_bn2bin(&ret,&(to[num-j])); | ||
| 223 | for (k=0; k<(num-i); k++) | ||
| 224 | to[k]=0; | ||
| 225 | |||
| 226 | r=num; | ||
| 227 | err: | ||
| 228 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 229 | BN_clear_free(&f); | ||
| 230 | BN_clear_free(&ret); | ||
| 231 | if (buf != NULL) | ||
| 232 | { | ||
| 233 | OPENSSL_cleanse(buf,num); | ||
| 234 | OPENSSL_free(buf); | ||
| 235 | } | ||
| 236 | return(r); | ||
| 237 | } | ||
| 238 | |||
| 239 | static int rsa_eay_blinding(RSA *rsa, BN_CTX *ctx) | ||
| 240 | { | ||
| 241 | int ret = 1; | ||
| 242 | CRYPTO_w_lock(CRYPTO_LOCK_RSA); | ||
| 243 | /* Check again inside the lock - the macro's check is racey */ | ||
| 244 | if(rsa->blinding == NULL) | ||
| 245 | ret = RSA_blinding_on(rsa, ctx); | ||
| 246 | CRYPTO_w_unlock(CRYPTO_LOCK_RSA); | ||
| 247 | return ret; | ||
| 248 | } | ||
| 249 | |||
| 250 | #define BLINDING_HELPER(rsa, ctx, err_instr) \ | ||
| 251 | do { \ | ||
| 252 | if((!((rsa)->flags & RSA_FLAG_NO_BLINDING)) && \ | ||
| 253 | ((rsa)->blinding == NULL) && \ | ||
| 254 | !rsa_eay_blinding(rsa, ctx)) \ | ||
| 255 | err_instr \ | ||
| 256 | } while(0) | ||
| 257 | |||
| 258 | static BN_BLINDING *setup_blinding(RSA *rsa, BN_CTX *ctx) | ||
| 259 | { | ||
| 260 | BIGNUM *A, *Ai; | ||
| 261 | BN_BLINDING *ret = NULL; | ||
| 262 | |||
| 263 | /* added in OpenSSL 0.9.6j and 0.9.7b */ | ||
| 264 | |||
| 265 | /* NB: similar code appears in RSA_blinding_on (rsa_lib.c); | ||
| 266 | * this should be placed in a new function of its own, but for reasons | ||
| 267 | * of binary compatibility can't */ | ||
| 268 | |||
| 269 | BN_CTX_start(ctx); | ||
| 270 | A = BN_CTX_get(ctx); | ||
| 271 | if ((RAND_status() == 0) && rsa->d != NULL && rsa->d->d != NULL) | ||
| 272 | { | ||
| 273 | /* if PRNG is not properly seeded, resort to secret exponent as unpredictable seed */ | ||
| 274 | RAND_add(rsa->d->d, rsa->d->dmax * sizeof rsa->d->d[0], 0); | ||
| 275 | if (!BN_pseudo_rand_range(A,rsa->n)) goto err; | ||
| 276 | } | ||
| 277 | else | ||
| 278 | { | ||
| 279 | if (!BN_rand_range(A,rsa->n)) goto err; | ||
| 280 | } | ||
| 281 | if ((Ai=BN_mod_inverse(NULL,A,rsa->n,ctx)) == NULL) goto err; | ||
| 282 | |||
| 283 | if (!rsa->meth->bn_mod_exp(A,A,rsa->e,rsa->n,ctx,rsa->_method_mod_n)) | ||
| 284 | goto err; | ||
| 285 | ret = BN_BLINDING_new(A,Ai,rsa->n); | ||
| 286 | BN_free(Ai); | ||
| 287 | err: | ||
| 288 | BN_CTX_end(ctx); | ||
| 289 | return ret; | ||
| 290 | } | ||
| 291 | |||
| 292 | /* signing */ | ||
| 293 | static int RSA_eay_private_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 294 | unsigned char *to, RSA *rsa, int padding) | ||
| 295 | { | ||
| 296 | BIGNUM f,ret, *res; | ||
| 297 | int i,j,k,num=0,r= -1; | ||
| 298 | unsigned char *buf=NULL; | ||
| 299 | BN_CTX *ctx=NULL; | ||
| 300 | int local_blinding = 0; | ||
| 301 | BN_BLINDING *blinding = NULL; | ||
| 302 | |||
| 303 | BN_init(&f); | ||
| 304 | BN_init(&ret); | ||
| 305 | |||
| 306 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 307 | num=BN_num_bytes(rsa->n); | ||
| 308 | if ((buf=(unsigned char *)OPENSSL_malloc(num)) == NULL) | ||
| 309 | { | ||
| 310 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,ERR_R_MALLOC_FAILURE); | ||
| 311 | goto err; | ||
| 312 | } | ||
| 313 | |||
| 314 | switch (padding) | ||
| 315 | { | ||
| 316 | case RSA_PKCS1_PADDING: | ||
| 317 | i=RSA_padding_add_PKCS1_type_1(buf,num,from,flen); | ||
| 318 | break; | ||
| 319 | case RSA_NO_PADDING: | ||
| 320 | i=RSA_padding_add_none(buf,num,from,flen); | ||
| 321 | break; | ||
| 322 | case RSA_X931_PADDING: | ||
| 323 | i=RSA_padding_add_X931(buf,num,from,flen); | ||
| 324 | break; | ||
| 325 | case RSA_SSLV23_PADDING: | ||
| 326 | default: | ||
| 327 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 328 | goto err; | ||
| 329 | } | ||
| 330 | if (i <= 0) goto err; | ||
| 331 | |||
| 332 | if (BN_bin2bn(buf,num,&f) == NULL) goto err; | ||
| 333 | |||
| 334 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 335 | { | ||
| 336 | /* usually the padding functions would catch this */ | ||
| 337 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 338 | goto err; | ||
| 339 | } | ||
| 340 | |||
| 341 | BLINDING_HELPER(rsa, ctx, goto err;); | ||
| 342 | blinding = rsa->blinding; | ||
| 343 | |||
| 344 | /* Now unless blinding is disabled, 'blinding' is non-NULL. | ||
| 345 | * But the BN_BLINDING object may be owned by some other thread | ||
| 346 | * (we don't want to keep it constant and we don't want to use | ||
| 347 | * lots of locking to avoid race conditions, so only a single | ||
| 348 | * thread can use it; other threads have to use local blinding | ||
| 349 | * factors) */ | ||
| 350 | if (!(rsa->flags & RSA_FLAG_NO_BLINDING)) | ||
| 351 | { | ||
| 352 | if (blinding == NULL) | ||
| 353 | { | ||
| 354 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT, ERR_R_INTERNAL_ERROR); | ||
| 355 | goto err; | ||
| 356 | } | ||
| 357 | } | ||
| 358 | |||
| 359 | if (blinding != NULL) | ||
| 360 | { | ||
| 361 | if (blinding->thread_id != CRYPTO_thread_id()) | ||
| 362 | { | ||
| 363 | /* we need a local one-time blinding factor */ | ||
| 364 | |||
| 365 | blinding = setup_blinding(rsa, ctx); | ||
| 366 | if (blinding == NULL) | ||
| 367 | goto err; | ||
| 368 | local_blinding = 1; | ||
| 369 | } | ||
| 370 | } | ||
| 371 | |||
| 372 | if (blinding) | ||
| 373 | if (!BN_BLINDING_convert(&f, blinding, ctx)) goto err; | ||
| 374 | |||
| 375 | if ( (rsa->flags & RSA_FLAG_EXT_PKEY) || | ||
| 376 | ((rsa->p != NULL) && | ||
| 377 | (rsa->q != NULL) && | ||
| 378 | (rsa->dmp1 != NULL) && | ||
| 379 | (rsa->dmq1 != NULL) && | ||
| 380 | (rsa->iqmp != NULL)) ) | ||
| 381 | { | ||
| 382 | if (!rsa->meth->rsa_mod_exp(&ret,&f,rsa)) goto err; | ||
| 383 | } | ||
| 384 | else | ||
| 385 | { | ||
| 386 | BIGNUM local_d; | ||
| 387 | BIGNUM *d = NULL; | ||
| 388 | |||
| 389 | if (!(rsa->flags & RSA_FLAG_NO_EXP_CONSTTIME)) | ||
| 390 | { | ||
| 391 | BN_init(&local_d); | ||
| 392 | d = &local_d; | ||
| 393 | BN_with_flags(d, rsa->d, BN_FLG_EXP_CONSTTIME); | ||
| 394 | } | ||
| 395 | else | ||
| 396 | d = rsa->d; | ||
| 397 | if (!rsa->meth->bn_mod_exp(&ret,&f,d,rsa->n,ctx,NULL)) goto err; | ||
| 398 | } | ||
| 399 | |||
| 400 | if (blinding) | ||
| 401 | if (!BN_BLINDING_invert(&ret, blinding, ctx)) goto err; | ||
| 402 | |||
| 403 | if (padding == RSA_X931_PADDING) | ||
| 404 | { | ||
| 405 | BN_sub(&f, rsa->n, &ret); | ||
| 406 | if (BN_cmp(&ret, &f)) | ||
| 407 | res = &f; | ||
| 408 | else | ||
| 409 | res = &ret; | ||
| 410 | } | ||
| 411 | else | ||
| 412 | res = &ret; | ||
| 413 | |||
| 414 | /* put in leading 0 bytes if the number is less than the | ||
| 415 | * length of the modulus */ | ||
| 416 | j=BN_num_bytes(res); | ||
| 417 | i=BN_bn2bin(res,&(to[num-j])); | ||
| 418 | for (k=0; k<(num-i); k++) | ||
| 419 | to[k]=0; | ||
| 420 | |||
| 421 | r=num; | ||
| 422 | err: | ||
| 423 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 424 | BN_clear_free(&ret); | ||
| 425 | BN_clear_free(&f); | ||
| 426 | if (local_blinding) | ||
| 427 | BN_BLINDING_free(blinding); | ||
| 428 | if (buf != NULL) | ||
| 429 | { | ||
| 430 | OPENSSL_cleanse(buf,num); | ||
| 431 | OPENSSL_free(buf); | ||
| 432 | } | ||
| 433 | return(r); | ||
| 434 | } | ||
| 435 | |||
| 436 | static int RSA_eay_private_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 437 | unsigned char *to, RSA *rsa, int padding) | ||
| 438 | { | ||
| 439 | BIGNUM f,ret; | ||
| 440 | int j,num=0,r= -1; | ||
| 441 | unsigned char *p; | ||
| 442 | unsigned char *buf=NULL; | ||
| 443 | BN_CTX *ctx=NULL; | ||
| 444 | int local_blinding = 0; | ||
| 445 | BN_BLINDING *blinding = NULL; | ||
| 446 | |||
| 447 | BN_init(&f); | ||
| 448 | BN_init(&ret); | ||
| 449 | ctx=BN_CTX_new(); | ||
| 450 | if (ctx == NULL) goto err; | ||
| 451 | |||
| 452 | num=BN_num_bytes(rsa->n); | ||
| 453 | |||
| 454 | if ((buf=(unsigned char *)OPENSSL_malloc(num)) == NULL) | ||
| 455 | { | ||
| 456 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,ERR_R_MALLOC_FAILURE); | ||
| 457 | goto err; | ||
| 458 | } | ||
| 459 | |||
| 460 | /* This check was for equality but PGP does evil things | ||
| 461 | * and chops off the top '0' bytes */ | ||
| 462 | if (flen > num) | ||
| 463 | { | ||
| 464 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_DATA_GREATER_THAN_MOD_LEN); | ||
| 465 | goto err; | ||
| 466 | } | ||
| 467 | |||
| 468 | /* make data into a big number */ | ||
| 469 | if (BN_bin2bn(from,(int)flen,&f) == NULL) goto err; | ||
| 470 | |||
| 471 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 472 | { | ||
| 473 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 474 | goto err; | ||
| 475 | } | ||
| 476 | |||
| 477 | BLINDING_HELPER(rsa, ctx, goto err;); | ||
| 478 | blinding = rsa->blinding; | ||
| 479 | |||
| 480 | /* Now unless blinding is disabled, 'blinding' is non-NULL. | ||
| 481 | * But the BN_BLINDING object may be owned by some other thread | ||
| 482 | * (we don't want to keep it constant and we don't want to use | ||
| 483 | * lots of locking to avoid race conditions, so only a single | ||
| 484 | * thread can use it; other threads have to use local blinding | ||
| 485 | * factors) */ | ||
| 486 | if (!(rsa->flags & RSA_FLAG_NO_BLINDING)) | ||
| 487 | { | ||
| 488 | if (blinding == NULL) | ||
| 489 | { | ||
| 490 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT, ERR_R_INTERNAL_ERROR); | ||
| 491 | goto err; | ||
| 492 | } | ||
| 493 | } | ||
| 494 | |||
| 495 | if (blinding != NULL) | ||
| 496 | { | ||
| 497 | if (blinding->thread_id != CRYPTO_thread_id()) | ||
| 498 | { | ||
| 499 | /* we need a local one-time blinding factor */ | ||
| 500 | |||
| 501 | blinding = setup_blinding(rsa, ctx); | ||
| 502 | if (blinding == NULL) | ||
| 503 | goto err; | ||
| 504 | local_blinding = 1; | ||
| 505 | } | ||
| 506 | } | ||
| 507 | |||
| 508 | if (blinding) | ||
| 509 | if (!BN_BLINDING_convert(&f, blinding, ctx)) goto err; | ||
| 510 | |||
| 511 | /* do the decrypt */ | ||
| 512 | if ( (rsa->flags & RSA_FLAG_EXT_PKEY) || | ||
| 513 | ((rsa->p != NULL) && | ||
| 514 | (rsa->q != NULL) && | ||
| 515 | (rsa->dmp1 != NULL) && | ||
| 516 | (rsa->dmq1 != NULL) && | ||
| 517 | (rsa->iqmp != NULL)) ) | ||
| 518 | { | ||
| 519 | if (!rsa->meth->rsa_mod_exp(&ret,&f,rsa)) goto err; | ||
| 520 | } | ||
| 521 | else | ||
| 522 | { | ||
| 523 | BIGNUM local_d; | ||
| 524 | BIGNUM *d = NULL; | ||
| 525 | |||
| 526 | if (!(rsa->flags & RSA_FLAG_NO_EXP_CONSTTIME)) | ||
| 527 | { | ||
| 528 | d = &local_d; | ||
| 529 | BN_with_flags(d, rsa->d, BN_FLG_EXP_CONSTTIME); | ||
| 530 | } | ||
| 531 | else | ||
| 532 | d = rsa->d; | ||
| 533 | if (!rsa->meth->bn_mod_exp(&ret,&f,d,rsa->n,ctx,NULL)) | ||
| 534 | goto err; | ||
| 535 | } | ||
| 536 | |||
| 537 | if (blinding) | ||
| 538 | if (!BN_BLINDING_invert(&ret, blinding, ctx)) goto err; | ||
| 539 | |||
| 540 | p=buf; | ||
| 541 | j=BN_bn2bin(&ret,p); /* j is only used with no-padding mode */ | ||
| 542 | |||
| 543 | switch (padding) | ||
| 544 | { | ||
| 545 | case RSA_PKCS1_PADDING: | ||
| 546 | r=RSA_padding_check_PKCS1_type_2(to,num,buf,j,num); | ||
| 547 | break; | ||
| 548 | #ifndef OPENSSL_NO_SHA | ||
| 549 | case RSA_PKCS1_OAEP_PADDING: | ||
| 550 | r=RSA_padding_check_PKCS1_OAEP(to,num,buf,j,num,NULL,0); | ||
| 551 | break; | ||
| 552 | #endif | ||
| 553 | case RSA_SSLV23_PADDING: | ||
| 554 | r=RSA_padding_check_SSLv23(to,num,buf,j,num); | ||
| 555 | break; | ||
| 556 | case RSA_NO_PADDING: | ||
| 557 | r=RSA_padding_check_none(to,num,buf,j,num); | ||
| 558 | break; | ||
| 559 | default: | ||
| 560 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 561 | goto err; | ||
| 562 | } | ||
| 563 | if (r < 0) | ||
| 564 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_PADDING_CHECK_FAILED); | ||
| 565 | |||
| 566 | err: | ||
| 567 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 568 | BN_clear_free(&f); | ||
| 569 | BN_clear_free(&ret); | ||
| 570 | if (local_blinding) | ||
| 571 | BN_BLINDING_free(blinding); | ||
| 572 | if (buf != NULL) | ||
| 573 | { | ||
| 574 | OPENSSL_cleanse(buf,num); | ||
| 575 | OPENSSL_free(buf); | ||
| 576 | } | ||
| 577 | return(r); | ||
| 578 | } | ||
| 579 | |||
| 580 | /* signature verification */ | ||
| 581 | static int RSA_eay_public_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 582 | unsigned char *to, RSA *rsa, int padding) | ||
| 583 | { | ||
| 584 | BIGNUM f,ret; | ||
| 585 | int i,num=0,r= -1; | ||
| 586 | unsigned char *p; | ||
| 587 | unsigned char *buf=NULL; | ||
| 588 | BN_CTX *ctx=NULL; | ||
| 589 | |||
| 590 | BN_init(&f); | ||
| 591 | BN_init(&ret); | ||
| 592 | ctx=BN_CTX_new(); | ||
| 593 | if (ctx == NULL) goto err; | ||
| 594 | |||
| 595 | num=BN_num_bytes(rsa->n); | ||
| 596 | buf=(unsigned char *)OPENSSL_malloc(num); | ||
| 597 | if (buf == NULL) | ||
| 598 | { | ||
| 599 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,ERR_R_MALLOC_FAILURE); | ||
| 600 | goto err; | ||
| 601 | } | ||
| 602 | |||
| 603 | /* This check was for equality but PGP does evil things | ||
| 604 | * and chops off the top '0' bytes */ | ||
| 605 | if (flen > num) | ||
| 606 | { | ||
| 607 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_DATA_GREATER_THAN_MOD_LEN); | ||
| 608 | goto err; | ||
| 609 | } | ||
| 610 | |||
| 611 | if (BN_bin2bn(from,flen,&f) == NULL) goto err; | ||
| 612 | |||
| 613 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 614 | { | ||
| 615 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 616 | goto err; | ||
| 617 | } | ||
| 618 | |||
| 619 | /* do the decrypt */ | ||
| 620 | |||
| 621 | if (rsa->flags & RSA_FLAG_CACHE_PUBLIC) | ||
| 622 | { | ||
| 623 | if (!BN_MONT_CTX_set_locked(&rsa->_method_mod_n, | ||
| 624 | CRYPTO_LOCK_RSA, rsa->n, ctx)) | ||
| 625 | goto err; | ||
| 626 | } | ||
| 627 | |||
| 628 | if (!rsa->meth->bn_mod_exp(&ret,&f,rsa->e,rsa->n,ctx, | ||
| 629 | rsa->_method_mod_n)) goto err; | ||
| 630 | |||
| 631 | if ((padding == RSA_X931_PADDING) && ((ret.d[0] & 0xf) != 12)) | ||
| 632 | BN_sub(&ret, rsa->n, &ret); | ||
| 633 | |||
| 634 | p=buf; | ||
| 635 | i=BN_bn2bin(&ret,p); | ||
| 636 | |||
| 637 | switch (padding) | ||
| 638 | { | ||
| 639 | case RSA_PKCS1_PADDING: | ||
| 640 | r=RSA_padding_check_PKCS1_type_1(to,num,buf,i,num); | ||
| 641 | break; | ||
| 642 | case RSA_X931_PADDING: | ||
| 643 | r=RSA_padding_check_X931(to,num,buf,i,num); | ||
| 644 | break; | ||
| 645 | case RSA_NO_PADDING: | ||
| 646 | r=RSA_padding_check_none(to,num,buf,i,num); | ||
| 647 | break; | ||
| 648 | default: | ||
| 649 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 650 | goto err; | ||
| 651 | } | ||
| 652 | if (r < 0) | ||
| 653 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_PADDING_CHECK_FAILED); | ||
| 654 | |||
| 655 | err: | ||
| 656 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 657 | BN_clear_free(&f); | ||
| 658 | BN_clear_free(&ret); | ||
| 659 | if (buf != NULL) | ||
| 660 | { | ||
| 661 | OPENSSL_cleanse(buf,num); | ||
| 662 | OPENSSL_free(buf); | ||
| 663 | } | ||
| 664 | return(r); | ||
| 665 | } | ||
| 666 | |||
| 667 | static int RSA_eay_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | ||
| 668 | { | ||
| 669 | BIGNUM r1,m1,vrfy; | ||
| 670 | BIGNUM local_dmp1, local_dmq1; | ||
| 671 | BIGNUM *dmp1, *dmq1; | ||
| 672 | int ret=0; | ||
| 673 | BN_CTX *ctx; | ||
| 674 | |||
| 675 | BN_init(&m1); | ||
| 676 | BN_init(&r1); | ||
| 677 | BN_init(&vrfy); | ||
| 678 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 679 | |||
| 680 | if (rsa->flags & RSA_FLAG_CACHE_PRIVATE) | ||
| 681 | { | ||
| 682 | if (!BN_MONT_CTX_set_locked(&rsa->_method_mod_p, | ||
| 683 | CRYPTO_LOCK_RSA, rsa->p, ctx)) | ||
| 684 | goto err; | ||
| 685 | if (!BN_MONT_CTX_set_locked(&rsa->_method_mod_q, | ||
| 686 | CRYPTO_LOCK_RSA, rsa->q, ctx)) | ||
| 687 | goto err; | ||
| 688 | } | ||
| 689 | |||
| 690 | if (!BN_mod(&r1,I,rsa->q,ctx)) goto err; | ||
| 691 | if (!(rsa->flags & RSA_FLAG_NO_EXP_CONSTTIME)) | ||
| 692 | { | ||
| 693 | dmq1 = &local_dmq1; | ||
| 694 | BN_with_flags(dmq1, rsa->dmq1, BN_FLG_EXP_CONSTTIME); | ||
| 695 | } | ||
| 696 | else | ||
| 697 | dmq1 = rsa->dmq1; | ||
| 698 | if (!rsa->meth->bn_mod_exp(&m1,&r1,dmq1,rsa->q,ctx, | ||
| 699 | rsa->_method_mod_q)) goto err; | ||
| 700 | |||
| 701 | if (!BN_mod(&r1,I,rsa->p,ctx)) goto err; | ||
| 702 | if (!(rsa->flags & RSA_FLAG_NO_EXP_CONSTTIME)) | ||
| 703 | { | ||
| 704 | dmp1 = &local_dmp1; | ||
| 705 | BN_with_flags(dmp1, rsa->dmp1, BN_FLG_EXP_CONSTTIME); | ||
| 706 | } | ||
| 707 | else | ||
| 708 | dmp1 = rsa->dmp1; | ||
| 709 | if (!rsa->meth->bn_mod_exp(r0,&r1,dmp1,rsa->p,ctx, | ||
| 710 | rsa->_method_mod_p)) goto err; | ||
| 711 | |||
| 712 | if (!BN_sub(r0,r0,&m1)) goto err; | ||
| 713 | /* This will help stop the size of r0 increasing, which does | ||
| 714 | * affect the multiply if it optimised for a power of 2 size */ | ||
| 715 | if (r0->neg) | ||
| 716 | if (!BN_add(r0,r0,rsa->p)) goto err; | ||
| 717 | |||
| 718 | if (!BN_mul(&r1,r0,rsa->iqmp,ctx)) goto err; | ||
| 719 | if (!BN_mod(r0,&r1,rsa->p,ctx)) goto err; | ||
| 720 | /* If p < q it is occasionally possible for the correction of | ||
| 721 | * adding 'p' if r0 is negative above to leave the result still | ||
| 722 | * negative. This can break the private key operations: the following | ||
| 723 | * second correction should *always* correct this rare occurrence. | ||
| 724 | * This will *never* happen with OpenSSL generated keys because | ||
| 725 | * they ensure p > q [steve] | ||
| 726 | */ | ||
| 727 | if (r0->neg) | ||
| 728 | if (!BN_add(r0,r0,rsa->p)) goto err; | ||
| 729 | if (!BN_mul(&r1,r0,rsa->q,ctx)) goto err; | ||
| 730 | if (!BN_add(r0,&r1,&m1)) goto err; | ||
| 731 | |||
| 732 | if (rsa->e && rsa->n) | ||
| 733 | { | ||
| 734 | if (!rsa->meth->bn_mod_exp(&vrfy,r0,rsa->e,rsa->n,ctx,NULL)) goto err; | ||
| 735 | /* If 'I' was greater than (or equal to) rsa->n, the operation | ||
| 736 | * will be equivalent to using 'I mod n'. However, the result of | ||
| 737 | * the verify will *always* be less than 'n' so we don't check | ||
| 738 | * for absolute equality, just congruency. */ | ||
| 739 | if (!BN_sub(&vrfy, &vrfy, I)) goto err; | ||
| 740 | if (!BN_mod(&vrfy, &vrfy, rsa->n, ctx)) goto err; | ||
| 741 | if (vrfy.neg) | ||
| 742 | if (!BN_add(&vrfy, &vrfy, rsa->n)) goto err; | ||
| 743 | if (!BN_is_zero(&vrfy)) | ||
| 744 | { | ||
| 745 | /* 'I' and 'vrfy' aren't congruent mod n. Don't leak | ||
| 746 | * miscalculated CRT output, just do a raw (slower) | ||
| 747 | * mod_exp and return that instead. */ | ||
| 748 | |||
| 749 | BIGNUM local_d; | ||
| 750 | BIGNUM *d = NULL; | ||
| 751 | |||
| 752 | if (!(rsa->flags & RSA_FLAG_NO_EXP_CONSTTIME)) | ||
| 753 | { | ||
| 754 | d = &local_d; | ||
| 755 | BN_with_flags(d, rsa->d, BN_FLG_EXP_CONSTTIME); | ||
| 756 | } | ||
| 757 | else | ||
| 758 | d = rsa->d; | ||
| 759 | if (!rsa->meth->bn_mod_exp(r0,I,d,rsa->n,ctx,NULL)) goto err; | ||
| 760 | } | ||
| 761 | } | ||
| 762 | ret=1; | ||
| 763 | err: | ||
| 764 | BN_clear_free(&m1); | ||
| 765 | BN_clear_free(&r1); | ||
| 766 | BN_clear_free(&vrfy); | ||
| 767 | BN_CTX_free(ctx); | ||
| 768 | return(ret); | ||
| 769 | } | ||
| 770 | |||
| 771 | static int RSA_eay_init(RSA *rsa) | ||
| 772 | { | ||
| 773 | rsa->flags|=RSA_FLAG_CACHE_PUBLIC|RSA_FLAG_CACHE_PRIVATE; | ||
| 774 | return(1); | ||
| 775 | } | ||
| 776 | |||
| 777 | static int RSA_eay_finish(RSA *rsa) | ||
| 778 | { | ||
| 779 | if (rsa->_method_mod_n != NULL) | ||
| 780 | BN_MONT_CTX_free(rsa->_method_mod_n); | ||
| 781 | if (rsa->_method_mod_p != NULL) | ||
| 782 | BN_MONT_CTX_free(rsa->_method_mod_p); | ||
| 783 | if (rsa->_method_mod_q != NULL) | ||
| 784 | BN_MONT_CTX_free(rsa->_method_mod_q); | ||
| 785 | return(1); | ||
| 786 | } | ||
| 787 | |||
| 788 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_gen.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_gen.c deleted file mode 100644 index 3f50746733..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_gen.c +++ /dev/null | |||
| @@ -1,282 +0,0 @@ | |||
| 1 | /* crypto/rsa/rsa_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <time.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/bn.h> | ||
| 64 | #include <openssl/rsa.h> | ||
| 65 | #include <openssl/fips.h> | ||
| 66 | |||
| 67 | void *OPENSSL_stderr(void); | ||
| 68 | |||
| 69 | #ifdef OPENSSL_FIPS | ||
| 70 | |||
| 71 | int fips_check_rsa(RSA *rsa) | ||
| 72 | { | ||
| 73 | int n, ret = 0; | ||
| 74 | unsigned char tctext[256], *ctext = tctext; | ||
| 75 | unsigned char tptext[256], *ptext = tptext; | ||
| 76 | /* The longest we can have with PKCS#1 v1.5 padding and a 512 bit key, | ||
| 77 | * namely 512/8-11-1 = 52 bytes */ | ||
| 78 | static const unsigned char original_ptext[] = | ||
| 79 | "\x01\x23\x45\x67\x89\xab\xcd\xef\x01\x23\x45\x67\x89\xab\xcd\xef" | ||
| 80 | "\x01\x23\x45\x67\x89\xab\xcd\xef\x01\x23\x45\x67\x89\xab\xcd\xef" | ||
| 81 | "\x01\x23\x45\x67\x89\xab\xcd\xef\x01\x23\x45\x67\x89\xab\xcd\xef" | ||
| 82 | "\x01\x23\x45\x67"; | ||
| 83 | |||
| 84 | if (RSA_size(rsa) > sizeof(tctext)) | ||
| 85 | { | ||
| 86 | ctext = OPENSSL_malloc(RSA_size(rsa)); | ||
| 87 | ptext = OPENSSL_malloc(RSA_size(rsa)); | ||
| 88 | if (!ctext || !ptext) | ||
| 89 | { | ||
| 90 | ERR_print_errors_fp(OPENSSL_stderr()); | ||
| 91 | exit(1); | ||
| 92 | } | ||
| 93 | } | ||
| 94 | |||
| 95 | |||
| 96 | /* this will fail for keys shorter than 512 bits */ | ||
| 97 | n=RSA_private_encrypt(sizeof(original_ptext)-1,original_ptext,ctext,rsa, | ||
| 98 | RSA_PKCS1_PADDING); | ||
| 99 | if(n < 0) | ||
| 100 | { | ||
| 101 | ERR_print_errors_fp(OPENSSL_stderr()); | ||
| 102 | exit(1); | ||
| 103 | } | ||
| 104 | if(!memcmp(ctext,original_ptext,n)) | ||
| 105 | { | ||
| 106 | FIPSerr(FIPS_F_FIPS_CHECK_RSA,FIPS_R_PAIRWISE_TEST_FAILED); | ||
| 107 | goto error; | ||
| 108 | } | ||
| 109 | n=RSA_public_decrypt(n,ctext,ptext,rsa,RSA_PKCS1_PADDING); | ||
| 110 | if(n < 0) | ||
| 111 | { | ||
| 112 | ERR_print_errors_fp(OPENSSL_stderr()); | ||
| 113 | exit(1); | ||
| 114 | } | ||
| 115 | if(n != sizeof(original_ptext)-1 || memcmp(ptext,original_ptext,n)) | ||
| 116 | { | ||
| 117 | FIPSerr(FIPS_F_FIPS_CHECK_RSA,FIPS_R_PAIRWISE_TEST_FAILED); | ||
| 118 | goto error; | ||
| 119 | } | ||
| 120 | |||
| 121 | ret = 1; | ||
| 122 | |||
| 123 | error: | ||
| 124 | |||
| 125 | if (RSA_size(rsa) > sizeof(tctext)) | ||
| 126 | { | ||
| 127 | OPENSSL_free(ctext); | ||
| 128 | OPENSSL_free(ptext); | ||
| 129 | } | ||
| 130 | |||
| 131 | return ret; | ||
| 132 | } | ||
| 133 | |||
| 134 | RSA *RSA_generate_key(FIPS_RSA_SIZE_T bits, unsigned long e_value, | ||
| 135 | void (*callback)(int,int,void *), void *cb_arg) | ||
| 136 | { | ||
| 137 | RSA *rsa=NULL; | ||
| 138 | BIGNUM *r0=NULL,*r1=NULL,*r2=NULL,*r3=NULL,*tmp; | ||
| 139 | int bitsp,bitsq,ok= -1,n=0,i; | ||
| 140 | BN_CTX *ctx=NULL,*ctx2=NULL; | ||
| 141 | |||
| 142 | if (bits < 512) | ||
| 143 | { | ||
| 144 | FIPSerr(FIPS_F_RSA_GENERATE_KEY,FIPS_R_KEY_TOO_SHORT); | ||
| 145 | return NULL; | ||
| 146 | } | ||
| 147 | |||
| 148 | if(FIPS_selftest_failed()) | ||
| 149 | { | ||
| 150 | FIPSerr(FIPS_F_RSA_GENERATE_KEY,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 151 | return NULL; | ||
| 152 | } | ||
| 153 | |||
| 154 | ctx=BN_CTX_new(); | ||
| 155 | if (ctx == NULL) goto err; | ||
| 156 | ctx2=BN_CTX_new(); | ||
| 157 | if (ctx2 == NULL) goto err; | ||
| 158 | BN_CTX_start(ctx); | ||
| 159 | r0 = BN_CTX_get(ctx); | ||
| 160 | r1 = BN_CTX_get(ctx); | ||
| 161 | r2 = BN_CTX_get(ctx); | ||
| 162 | r3 = BN_CTX_get(ctx); | ||
| 163 | if (r3 == NULL) goto err; | ||
| 164 | |||
| 165 | bitsp=(bits+1)/2; | ||
| 166 | bitsq=bits-bitsp; | ||
| 167 | rsa=RSA_new(); | ||
| 168 | if (rsa == NULL) goto err; | ||
| 169 | |||
| 170 | /* set e */ | ||
| 171 | rsa->e=BN_new(); | ||
| 172 | if (rsa->e == NULL) goto err; | ||
| 173 | |||
| 174 | #if 1 | ||
| 175 | /* The problem is when building with 8, 16, or 32 BN_ULONG, | ||
| 176 | * unsigned long can be larger */ | ||
| 177 | for (i=0; i<sizeof(unsigned long)*8; i++) | ||
| 178 | { | ||
| 179 | if (e_value & (1UL<<i)) | ||
| 180 | BN_set_bit(rsa->e,i); | ||
| 181 | } | ||
| 182 | #else | ||
| 183 | if (!BN_set_word(rsa->e,e_value)) goto err; | ||
| 184 | #endif | ||
| 185 | |||
| 186 | /* generate p and q */ | ||
| 187 | for (;;) | ||
| 188 | { | ||
| 189 | rsa->p=BN_generate_prime(NULL,bitsp,0,NULL,NULL,callback,cb_arg); | ||
| 190 | if (rsa->p == NULL) goto err; | ||
| 191 | if (!BN_sub(r2,rsa->p,BN_value_one())) goto err; | ||
| 192 | if (!BN_gcd(r1,r2,rsa->e,ctx)) goto err; | ||
| 193 | if (BN_is_one(r1)) break; | ||
| 194 | if (callback != NULL) callback(2,n++,cb_arg); | ||
| 195 | BN_free(rsa->p); | ||
| 196 | } | ||
| 197 | if (callback != NULL) callback(3,0,cb_arg); | ||
| 198 | for (;;) | ||
| 199 | { | ||
| 200 | rsa->q=BN_generate_prime(NULL,bitsq,0,NULL,NULL,callback,cb_arg); | ||
| 201 | if (rsa->q == NULL) goto err; | ||
| 202 | if (!BN_sub(r2,rsa->q,BN_value_one())) goto err; | ||
| 203 | if (!BN_gcd(r1,r2,rsa->e,ctx)) goto err; | ||
| 204 | if (BN_is_one(r1) && (BN_cmp(rsa->p,rsa->q) != 0)) | ||
| 205 | break; | ||
| 206 | if (callback != NULL) callback(2,n++,cb_arg); | ||
| 207 | BN_free(rsa->q); | ||
| 208 | } | ||
| 209 | if (callback != NULL) callback(3,1,cb_arg); | ||
| 210 | if (BN_cmp(rsa->p,rsa->q) < 0) | ||
| 211 | { | ||
| 212 | tmp=rsa->p; | ||
| 213 | rsa->p=rsa->q; | ||
| 214 | rsa->q=tmp; | ||
| 215 | } | ||
| 216 | |||
| 217 | /* calculate n */ | ||
| 218 | rsa->n=BN_new(); | ||
| 219 | if (rsa->n == NULL) goto err; | ||
| 220 | if (!BN_mul(rsa->n,rsa->p,rsa->q,ctx)) goto err; | ||
| 221 | |||
| 222 | /* calculate d */ | ||
| 223 | if (!BN_sub(r1,rsa->p,BN_value_one())) goto err; /* p-1 */ | ||
| 224 | if (!BN_sub(r2,rsa->q,BN_value_one())) goto err; /* q-1 */ | ||
| 225 | if (!BN_mul(r0,r1,r2,ctx)) goto err; /* (p-1)(q-1) */ | ||
| 226 | |||
| 227 | /* should not be needed, since gcd(p-1,e) == 1 and gcd(q-1,e) == 1 */ | ||
| 228 | /* for (;;) | ||
| 229 | { | ||
| 230 | if (!BN_gcd(r3,r0,rsa->e,ctx)) goto err; | ||
| 231 | if (BN_is_one(r3)) break; | ||
| 232 | |||
| 233 | if (1) | ||
| 234 | { | ||
| 235 | if (!BN_add_word(rsa->e,2L)) goto err; | ||
| 236 | continue; | ||
| 237 | } | ||
| 238 | RSAerr(RSA_F_RSA_GENERATE_KEY,RSA_R_BAD_E_VALUE); | ||
| 239 | goto err; | ||
| 240 | } | ||
| 241 | */ | ||
| 242 | rsa->d=BN_mod_inverse(NULL,rsa->e,r0,ctx2); /* d */ | ||
| 243 | if (rsa->d == NULL) goto err; | ||
| 244 | |||
| 245 | /* calculate d mod (p-1) */ | ||
| 246 | rsa->dmp1=BN_new(); | ||
| 247 | if (rsa->dmp1 == NULL) goto err; | ||
| 248 | if (!BN_mod(rsa->dmp1,rsa->d,r1,ctx)) goto err; | ||
| 249 | |||
| 250 | /* calculate d mod (q-1) */ | ||
| 251 | rsa->dmq1=BN_new(); | ||
| 252 | if (rsa->dmq1 == NULL) goto err; | ||
| 253 | if (!BN_mod(rsa->dmq1,rsa->d,r2,ctx)) goto err; | ||
| 254 | |||
| 255 | /* calculate inverse of q mod p */ | ||
| 256 | rsa->iqmp=BN_mod_inverse(NULL,rsa->q,rsa->p,ctx2); | ||
| 257 | if (rsa->iqmp == NULL) goto err; | ||
| 258 | |||
| 259 | if(!fips_check_rsa(rsa)) | ||
| 260 | goto err; | ||
| 261 | |||
| 262 | ok=1; | ||
| 263 | err: | ||
| 264 | if (ok == -1) | ||
| 265 | { | ||
| 266 | RSAerr(RSA_F_RSA_GENERATE_KEY,ERR_LIB_BN); | ||
| 267 | ok=0; | ||
| 268 | } | ||
| 269 | BN_CTX_end(ctx); | ||
| 270 | BN_CTX_free(ctx); | ||
| 271 | BN_CTX_free(ctx2); | ||
| 272 | |||
| 273 | if (!ok) | ||
| 274 | { | ||
| 275 | if (rsa != NULL) RSA_free(rsa); | ||
| 276 | return(NULL); | ||
| 277 | } | ||
| 278 | else | ||
| 279 | return(rsa); | ||
| 280 | } | ||
| 281 | |||
| 282 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_selftest.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_selftest.c deleted file mode 100644 index 0b620c717b..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_selftest.c +++ /dev/null | |||
| @@ -1,251 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/rsa.h> | ||
| 54 | #include <openssl/fips_sha.h> | ||
| 55 | #include <openssl/opensslconf.h> | ||
| 56 | |||
| 57 | #ifdef OPENSSL_FIPS | ||
| 58 | #define SetKey \ | ||
| 59 | key->n = BN_bin2bn(n, sizeof(n)-1, key->n); \ | ||
| 60 | key->e = BN_bin2bn(e, sizeof(e)-1, key->e); \ | ||
| 61 | key->d = BN_bin2bn(d, sizeof(d)-1, key->d); \ | ||
| 62 | key->p = BN_bin2bn(p, sizeof(p)-1, key->p); \ | ||
| 63 | key->q = BN_bin2bn(q, sizeof(q)-1, key->q); \ | ||
| 64 | key->dmp1 = BN_bin2bn(dmp1, sizeof(dmp1)-1, key->dmp1); \ | ||
| 65 | key->dmq1 = BN_bin2bn(dmq1, sizeof(dmq1)-1, key->dmq1); \ | ||
| 66 | key->iqmp = BN_bin2bn(iqmp, sizeof(iqmp)-1, key->iqmp); \ | ||
| 67 | memcpy(c, ctext_ex, sizeof(ctext_ex) - 1); \ | ||
| 68 | return (sizeof(ctext_ex) - 1); | ||
| 69 | |||
| 70 | static unsigned char n[] = | ||
| 71 | "\x00\xBB\xF8\x2F\x09\x06\x82\xCE\x9C\x23\x38\xAC\x2B\x9D\xA8\x71" | ||
| 72 | "\xF7\x36\x8D\x07\xEE\xD4\x10\x43\xA4\x40\xD6\xB6\xF0\x74\x54\xF5" | ||
| 73 | "\x1F\xB8\xDF\xBA\xAF\x03\x5C\x02\xAB\x61\xEA\x48\xCE\xEB\x6F\xCD" | ||
| 74 | "\x48\x76\xED\x52\x0D\x60\xE1\xEC\x46\x19\x71\x9D\x8A\x5B\x8B\x80" | ||
| 75 | "\x7F\xAF\xB8\xE0\xA3\xDF\xC7\x37\x72\x3E\xE6\xB4\xB7\xD9\x3A\x25" | ||
| 76 | "\x84\xEE\x6A\x64\x9D\x06\x09\x53\x74\x88\x34\xB2\x45\x45\x98\x39" | ||
| 77 | "\x4E\xE0\xAA\xB1\x2D\x7B\x61\xA5\x1F\x52\x7A\x9A\x41\xF6\xC1\x68" | ||
| 78 | "\x7F\xE2\x53\x72\x98\xCA\x2A\x8F\x59\x46\xF8\xE5\xFD\x09\x1D\xBD" | ||
| 79 | "\xCB"; | ||
| 80 | |||
| 81 | |||
| 82 | static int setrsakey(RSA *key, unsigned char *c) | ||
| 83 | { | ||
| 84 | static const unsigned char e[] = "\x11"; | ||
| 85 | |||
| 86 | static const unsigned char d[] = | ||
| 87 | "\x00\xA5\xDA\xFC\x53\x41\xFA\xF2\x89\xC4\xB9\x88\xDB\x30\xC1\xCD" | ||
| 88 | "\xF8\x3F\x31\x25\x1E\x06\x68\xB4\x27\x84\x81\x38\x01\x57\x96\x41" | ||
| 89 | "\xB2\x94\x10\xB3\xC7\x99\x8D\x6B\xC4\x65\x74\x5E\x5C\x39\x26\x69" | ||
| 90 | "\xD6\x87\x0D\xA2\xC0\x82\xA9\x39\xE3\x7F\xDC\xB8\x2E\xC9\x3E\xDA" | ||
| 91 | "\xC9\x7F\xF3\xAD\x59\x50\xAC\xCF\xBC\x11\x1C\x76\xF1\xA9\x52\x94" | ||
| 92 | "\x44\xE5\x6A\xAF\x68\xC5\x6C\x09\x2C\xD3\x8D\xC3\xBE\xF5\xD2\x0A" | ||
| 93 | "\x93\x99\x26\xED\x4F\x74\xA1\x3E\xDD\xFB\xE1\xA1\xCE\xCC\x48\x94" | ||
| 94 | "\xAF\x94\x28\xC2\xB7\xB8\x88\x3F\xE4\x46\x3A\x4B\xC8\x5B\x1C\xB3" | ||
| 95 | "\xC1"; | ||
| 96 | |||
| 97 | static const unsigned char p[] = | ||
| 98 | "\x00\xEE\xCF\xAE\x81\xB1\xB9\xB3\xC9\x08\x81\x0B\x10\xA1\xB5\x60" | ||
| 99 | "\x01\x99\xEB\x9F\x44\xAE\xF4\xFD\xA4\x93\xB8\x1A\x9E\x3D\x84\xF6" | ||
| 100 | "\x32\x12\x4E\xF0\x23\x6E\x5D\x1E\x3B\x7E\x28\xFA\xE7\xAA\x04\x0A" | ||
| 101 | "\x2D\x5B\x25\x21\x76\x45\x9D\x1F\x39\x75\x41\xBA\x2A\x58\xFB\x65" | ||
| 102 | "\x99"; | ||
| 103 | |||
| 104 | static const unsigned char q[] = | ||
| 105 | "\x00\xC9\x7F\xB1\xF0\x27\xF4\x53\xF6\x34\x12\x33\xEA\xAA\xD1\xD9" | ||
| 106 | "\x35\x3F\x6C\x42\xD0\x88\x66\xB1\xD0\x5A\x0F\x20\x35\x02\x8B\x9D" | ||
| 107 | "\x86\x98\x40\xB4\x16\x66\xB4\x2E\x92\xEA\x0D\xA3\xB4\x32\x04\xB5" | ||
| 108 | "\xCF\xCE\x33\x52\x52\x4D\x04\x16\xA5\xA4\x41\xE7\x00\xAF\x46\x15" | ||
| 109 | "\x03"; | ||
| 110 | |||
| 111 | static const unsigned char dmp1[] = | ||
| 112 | "\x54\x49\x4C\xA6\x3E\xBA\x03\x37\xE4\xE2\x40\x23\xFC\xD6\x9A\x5A" | ||
| 113 | "\xEB\x07\xDD\xDC\x01\x83\xA4\xD0\xAC\x9B\x54\xB0\x51\xF2\xB1\x3E" | ||
| 114 | "\xD9\x49\x09\x75\xEA\xB7\x74\x14\xFF\x59\xC1\xF7\x69\x2E\x9A\x2E" | ||
| 115 | "\x20\x2B\x38\xFC\x91\x0A\x47\x41\x74\xAD\xC9\x3C\x1F\x67\xC9\x81"; | ||
| 116 | |||
| 117 | static const unsigned char dmq1[] = | ||
| 118 | "\x47\x1E\x02\x90\xFF\x0A\xF0\x75\x03\x51\xB7\xF8\x78\x86\x4C\xA9" | ||
| 119 | "\x61\xAD\xBD\x3A\x8A\x7E\x99\x1C\x5C\x05\x56\xA9\x4C\x31\x46\xA7" | ||
| 120 | "\xF9\x80\x3F\x8F\x6F\x8A\xE3\x42\xE9\x31\xFD\x8A\xE4\x7A\x22\x0D" | ||
| 121 | "\x1B\x99\xA4\x95\x84\x98\x07\xFE\x39\xF9\x24\x5A\x98\x36\xDA\x3D"; | ||
| 122 | |||
| 123 | static const unsigned char iqmp[] = | ||
| 124 | "\x00\xB0\x6C\x4F\xDA\xBB\x63\x01\x19\x8D\x26\x5B\xDB\xAE\x94\x23" | ||
| 125 | "\xB3\x80\xF2\x71\xF7\x34\x53\x88\x50\x93\x07\x7F\xCD\x39\xE2\x11" | ||
| 126 | "\x9F\xC9\x86\x32\x15\x4F\x58\x83\xB1\x67\xA9\x67\xBF\x40\x2B\x4E" | ||
| 127 | "\x9E\x2E\x0F\x96\x56\xE6\x98\xEA\x36\x66\xED\xFB\x25\x79\x80\x39" | ||
| 128 | "\xF7"; | ||
| 129 | |||
| 130 | static const unsigned char ctext_ex[] = | ||
| 131 | "\x42\x4b\xc9\x51\x61\xd4\xca\xa0\x18\x6c\x4d\xca\x61\x8f\x2d\x07" | ||
| 132 | "\x8c\x63\xc5\x6b\xa2\x4c\x32\xb1\xda\xb7\xdd\x32\xb6\x51\x68\xc3" | ||
| 133 | "\x6e\x98\x46\xd6\xbb\x1a\xd5\x99\x05\x92\x7c\xd7\xbc\x08\x9e\xe4" | ||
| 134 | "\xc3\x70\x4d\xe6\x99\x7e\x61\x31\x07\x7a\x19\xdb\x3e\x11\xfa\x3d" | ||
| 135 | "\x7c\x61\xd7\x78\x14\x3f\x05\x16\xa0\xc4\xbf\xcd\xee\xca\x67\x4c" | ||
| 136 | "\x80\x4e\xca\x43\x2f\x35\x43\x58\xa7\x50\x7e\x3e\x52\x82\xab\xac" | ||
| 137 | "\xa6\x50\xe8\x39\x9f\xe0\x7f\x58\x1d\x1b\x90\x93\x04\xec\xb3\xf9" | ||
| 138 | "\x24\xd3\x75\x3e\x39\xd1\x14\xc6\x33\xce\xd6\xee\x20\x47\xec\xe4"; | ||
| 139 | |||
| 140 | SetKey; | ||
| 141 | } | ||
| 142 | |||
| 143 | void FIPS_corrupt_rsa() | ||
| 144 | { | ||
| 145 | n[0]++; | ||
| 146 | } | ||
| 147 | |||
| 148 | int FIPS_selftest_rsa() | ||
| 149 | { | ||
| 150 | int clen; | ||
| 151 | RSA *key; | ||
| 152 | unsigned char expected_ctext[256]; | ||
| 153 | unsigned char ctext[256]; | ||
| 154 | unsigned char ptext[256]; | ||
| 155 | static const unsigned char original_ptext[] = | ||
| 156 | "\x01\x23\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0" | ||
| 157 | "\x23\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12" | ||
| 158 | "\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34" | ||
| 159 | "\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56" | ||
| 160 | "\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78" | ||
| 161 | "\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a" | ||
| 162 | "\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a\xbc" | ||
| 163 | "\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a\xbc\xde" | ||
| 164 | "\xf0\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a\xbc\xde"; | ||
| 165 | unsigned char md[SHA_DIGEST_LENGTH]; | ||
| 166 | static const unsigned char mdkat[SHA_DIGEST_LENGTH] = | ||
| 167 | "\x2d\x57\x1d\x6f\x5c\x37\xf9\xf0\x3b\xb4\x3c\xe8\x2c\x4c\xb3\x04" | ||
| 168 | "\x75\xa2\x0e\xfb"; | ||
| 169 | static const unsigned char ctextkat[] = | ||
| 170 | "\x3e\xc5\x0a\xbe\x29\xa2\xca\x9a\x35\x14\x17\x26\xa4\x0f\xa3\x03" | ||
| 171 | "\x65\xb5\x37\xf5\x6a\xaa\xb\xf\x2c\x0d\x8\xc0\x73\x8\x3c\x88\x85" | ||
| 172 | "\x36\x68\x16\xfe\x2f\x59\x77\x7e\x2a\x76\x9a\xc7\x27\x19\x9b\x54" | ||
| 173 | "\x14\x87\xf3\xe0\xce\x1e\x68\x10\x40\x14\xac\xbc\xe6\x6f\x26\x1f" | ||
| 174 | "\x55\xd1\x15\x81\x48\x10\xf4\x89\xe5\x67\x52\x42\x87\x04\x74\x4e" | ||
| 175 | "\x96\x14\x7c\x53\xc9\x1e\x84\x11\x7d\x7d\x23\xbd\xff\x6c\xcb\x00" | ||
| 176 | "\x96\x2e\x7d\xfb\x47\xea\x78\xcd\xd8\x04\x3a\x98\x06\x13\x68\x39" | ||
| 177 | "\xa1\xe2\xbc\x9f\x64\xc7\x62\xf0\x74\x4d\x42\xe0\x0b\xcf\x24\x48"; | ||
| 178 | int i; | ||
| 179 | |||
| 180 | /* Perform pairwise consistency test by: ... */ | ||
| 181 | |||
| 182 | key=RSA_new(); | ||
| 183 | clen=setrsakey(key,expected_ctext); | ||
| 184 | /* ...1) apply public key to plaintext, resulting ciphertext must be | ||
| 185 | * different | ||
| 186 | */ | ||
| 187 | i=RSA_public_encrypt(128,original_ptext,ctext,key, | ||
| 188 | RSA_NO_PADDING); | ||
| 189 | if(i != clen || memcmp(ctext,expected_ctext,i)) | ||
| 190 | { | ||
| 191 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 192 | return 0; | ||
| 193 | } | ||
| 194 | if(!memcmp(ctext,original_ptext,i)) | ||
| 195 | { | ||
| 196 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 197 | return 0; | ||
| 198 | } | ||
| 199 | /* ...2) apply private key to ciphertext and compare result to | ||
| 200 | * original plaintext; results must be equal | ||
| 201 | */ | ||
| 202 | i=RSA_private_decrypt(i,ctext,ptext,key,RSA_NO_PADDING); | ||
| 203 | if(i != 128 || memcmp(ptext,original_ptext,i)) | ||
| 204 | { | ||
| 205 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 206 | return 0; | ||
| 207 | } | ||
| 208 | |||
| 209 | /* Perform sign and verify Known Answer Test by... */ | ||
| 210 | |||
| 211 | /* ...1) using the same RSA key to encrypt the SHA-1 hash of a | ||
| 212 | * plaintext value larger than the RSA key size | ||
| 213 | */ | ||
| 214 | if (RSA_size(key) >= sizeof(original_ptext) - 1) | ||
| 215 | { | ||
| 216 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 217 | return 0; | ||
| 218 | } | ||
| 219 | /* ...2) then generate the SHA-1 digest of plaintext, and compare the | ||
| 220 | * digest to the Known Answer (note here we duplicate the SHA-1 KAT) | ||
| 221 | */ | ||
| 222 | SHA1(original_ptext,sizeof(original_ptext) - 1,md); | ||
| 223 | if(memcmp(md,mdkat,SHA_DIGEST_LENGTH)) | ||
| 224 | { | ||
| 225 | FIPSerr(FIPS_F_FIPS_SELFTEST_SHA,FIPS_R_SELFTEST_FAILED); | ||
| 226 | return 0; | ||
| 227 | } | ||
| 228 | /* ...3) then encrypt the digest, and compare the ciphertext | ||
| 229 | * to the Known Answer | ||
| 230 | */ | ||
| 231 | i=RSA_private_encrypt(sizeof(md),md,ctext,key,RSA_PKCS1_PADDING); | ||
| 232 | if(i != clen || memcmp(ctextkat,ctext,i)) | ||
| 233 | { | ||
| 234 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 235 | return 0; | ||
| 236 | } | ||
| 237 | /* ...4) and finally decrypt the signed digest and compare with | ||
| 238 | * the original Known Answer | ||
| 239 | */ | ||
| 240 | i=RSA_public_decrypt(i,ctext,md,key,RSA_PKCS1_PADDING); | ||
| 241 | if(i != sizeof(md) || memcmp(mdkat,md,i)) | ||
| 242 | { | ||
| 243 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 244 | return 0; | ||
| 245 | } | ||
| 246 | |||
| 247 | RSA_free(key); | ||
| 248 | return 1; | ||
| 249 | } | ||
| 250 | |||
| 251 | #endif /* def OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_x931g.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_x931g.c deleted file mode 100644 index 41e1473bca..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsa_x931g.c +++ /dev/null | |||
| @@ -1,289 +0,0 @@ | |||
| 1 | /* crypto/rsa/rsa_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <time.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/bn.h> | ||
| 64 | #include <openssl/rsa.h> | ||
| 65 | #include <openssl/fips.h> | ||
| 66 | |||
| 67 | #ifdef OPENSSL_FIPS | ||
| 68 | |||
| 69 | extern int fips_check_rsa(RSA *rsa); | ||
| 70 | |||
| 71 | |||
| 72 | /* X9.31 RSA key derivation and generation */ | ||
| 73 | |||
| 74 | int RSA_X931_derive(RSA *rsa, BIGNUM *p1, BIGNUM *p2, BIGNUM *q1, BIGNUM *q2, | ||
| 75 | void (*cb)(int, int, void *), void *cb_arg, | ||
| 76 | const BIGNUM *Xp1, const BIGNUM *Xp2, const BIGNUM *Xp, | ||
| 77 | const BIGNUM *Xq1, const BIGNUM *Xq2, const BIGNUM *Xq, | ||
| 78 | const BIGNUM *e) | ||
| 79 | { | ||
| 80 | BIGNUM *r0=NULL,*r1=NULL,*r2=NULL,*r3=NULL; | ||
| 81 | BN_CTX *ctx=NULL,*ctx2=NULL; | ||
| 82 | |||
| 83 | if (!rsa) | ||
| 84 | goto err; | ||
| 85 | |||
| 86 | ctx = BN_CTX_new(); | ||
| 87 | BN_CTX_start(ctx); | ||
| 88 | if (!ctx) | ||
| 89 | goto err; | ||
| 90 | |||
| 91 | r0 = BN_CTX_get(ctx); | ||
| 92 | r1 = BN_CTX_get(ctx); | ||
| 93 | r2 = BN_CTX_get(ctx); | ||
| 94 | r3 = BN_CTX_get(ctx); | ||
| 95 | |||
| 96 | if (r3 == NULL) | ||
| 97 | goto err; | ||
| 98 | if (!rsa->e) | ||
| 99 | { | ||
| 100 | rsa->e = BN_dup(e); | ||
| 101 | if (!rsa->e) | ||
| 102 | goto err; | ||
| 103 | } | ||
| 104 | else | ||
| 105 | e = rsa->e; | ||
| 106 | |||
| 107 | /* If not all parameters present only calculate what we can. | ||
| 108 | * This allows test programs to output selective parameters. | ||
| 109 | */ | ||
| 110 | |||
| 111 | if (Xp && !rsa->p) | ||
| 112 | { | ||
| 113 | rsa->p = BN_new(); | ||
| 114 | if (!rsa->p) | ||
| 115 | goto err; | ||
| 116 | |||
| 117 | if (!BN_X931_derive_prime(rsa->p, p1, p2, cb, cb_arg, | ||
| 118 | Xp, Xp1, Xp2, e, ctx)) | ||
| 119 | goto err; | ||
| 120 | } | ||
| 121 | |||
| 122 | if (Xq && !rsa->q) | ||
| 123 | { | ||
| 124 | rsa->q = BN_new(); | ||
| 125 | if (!rsa->q) | ||
| 126 | goto err; | ||
| 127 | if (!BN_X931_derive_prime(rsa->q, q1, q2, cb, cb_arg, | ||
| 128 | Xq, Xq1, Xq2, e, ctx)) | ||
| 129 | goto err; | ||
| 130 | } | ||
| 131 | |||
| 132 | if (!rsa->p || !rsa->q) | ||
| 133 | { | ||
| 134 | BN_CTX_end(ctx); | ||
| 135 | BN_CTX_free(ctx); | ||
| 136 | return 2; | ||
| 137 | } | ||
| 138 | |||
| 139 | /* Since both primes are set we can now calculate all remaining | ||
| 140 | * components. | ||
| 141 | */ | ||
| 142 | |||
| 143 | /* calculate n */ | ||
| 144 | rsa->n=BN_new(); | ||
| 145 | if (rsa->n == NULL) | ||
| 146 | goto err; | ||
| 147 | if (!BN_mul(rsa->n,rsa->p,rsa->q,ctx)) | ||
| 148 | goto err; | ||
| 149 | |||
| 150 | /* calculate d */ | ||
| 151 | if (!BN_sub(r1,rsa->p,BN_value_one())) | ||
| 152 | goto err; /* p-1 */ | ||
| 153 | if (!BN_sub(r2,rsa->q,BN_value_one())) | ||
| 154 | goto err; /* q-1 */ | ||
| 155 | if (!BN_mul(r0,r1,r2,ctx)) | ||
| 156 | goto err; /* (p-1)(q-1) */ | ||
| 157 | |||
| 158 | if (!BN_gcd(r3, r1, r2, ctx)) | ||
| 159 | goto err; | ||
| 160 | |||
| 161 | if (!BN_div(r0, NULL, r0, r3, ctx)) | ||
| 162 | goto err; /* LCM((p-1)(q-1)) */ | ||
| 163 | |||
| 164 | ctx2 = BN_CTX_new(); | ||
| 165 | if (!ctx2) | ||
| 166 | goto err; | ||
| 167 | |||
| 168 | rsa->d=BN_mod_inverse(NULL,rsa->e,r0,ctx2); /* d */ | ||
| 169 | if (rsa->d == NULL) | ||
| 170 | goto err; | ||
| 171 | |||
| 172 | /* calculate d mod (p-1) */ | ||
| 173 | rsa->dmp1=BN_new(); | ||
| 174 | if (rsa->dmp1 == NULL) | ||
| 175 | goto err; | ||
| 176 | if (!BN_mod(rsa->dmp1,rsa->d,r1,ctx)) | ||
| 177 | goto err; | ||
| 178 | |||
| 179 | /* calculate d mod (q-1) */ | ||
| 180 | rsa->dmq1=BN_new(); | ||
| 181 | if (rsa->dmq1 == NULL) | ||
| 182 | goto err; | ||
| 183 | if (!BN_mod(rsa->dmq1,rsa->d,r2,ctx)) | ||
| 184 | goto err; | ||
| 185 | |||
| 186 | /* calculate inverse of q mod p */ | ||
| 187 | rsa->iqmp=BN_mod_inverse(NULL,rsa->q,rsa->p,ctx2); | ||
| 188 | |||
| 189 | err: | ||
| 190 | if (ctx) | ||
| 191 | { | ||
| 192 | BN_CTX_end(ctx); | ||
| 193 | BN_CTX_free(ctx); | ||
| 194 | } | ||
| 195 | if (ctx2) | ||
| 196 | BN_CTX_free(ctx2); | ||
| 197 | /* If this is set all calls successful */ | ||
| 198 | if (rsa->iqmp != NULL) | ||
| 199 | return 1; | ||
| 200 | |||
| 201 | return 0; | ||
| 202 | |||
| 203 | } | ||
| 204 | |||
| 205 | RSA *RSA_X931_generate_key(FIPS_RSA_SIZE_T bits, const BIGNUM *e, | ||
| 206 | void (*cb)(int,int,void *), void *cb_arg) | ||
| 207 | { | ||
| 208 | RSA *rsa = NULL; | ||
| 209 | int ok = 0; | ||
| 210 | BIGNUM *Xp = NULL, *Xq = NULL; | ||
| 211 | BN_CTX *ctx = NULL; | ||
| 212 | |||
| 213 | if (bits < 1024) | ||
| 214 | { | ||
| 215 | FIPSerr(FIPS_F_RSA_X931_GENERATE_KEY,FIPS_R_KEY_TOO_SHORT); | ||
| 216 | return NULL; | ||
| 217 | } | ||
| 218 | |||
| 219 | if (bits & 0xff) | ||
| 220 | { | ||
| 221 | FIPSerr(FIPS_F_RSA_X931_GENERATE_KEY,FIPS_R_INVALID_KEY_LENGTH); | ||
| 222 | return NULL; | ||
| 223 | } | ||
| 224 | |||
| 225 | if(FIPS_selftest_failed()) | ||
| 226 | { | ||
| 227 | FIPSerr(FIPS_F_RSA_X931_GENERATE_KEY,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 228 | return NULL; | ||
| 229 | } | ||
| 230 | |||
| 231 | ctx = BN_CTX_new(); | ||
| 232 | if (!ctx) | ||
| 233 | goto error; | ||
| 234 | |||
| 235 | BN_CTX_start(ctx); | ||
| 236 | Xp = BN_CTX_get(ctx); | ||
| 237 | Xq = BN_CTX_get(ctx); | ||
| 238 | if (!BN_X931_generate_Xpq(Xp, Xq, bits, ctx)) | ||
| 239 | goto error; | ||
| 240 | |||
| 241 | rsa = RSA_new(); | ||
| 242 | if (!rsa) | ||
| 243 | goto error; | ||
| 244 | rsa->p = BN_new(); | ||
| 245 | rsa->q = BN_new(); | ||
| 246 | if (!rsa->p || !rsa->q) | ||
| 247 | goto error; | ||
| 248 | |||
| 249 | /* Generate two primes from Xp, Xq */ | ||
| 250 | |||
| 251 | if (!BN_X931_generate_prime(rsa->p, NULL, NULL, NULL, NULL, Xp, | ||
| 252 | e, ctx, cb, cb_arg)) | ||
| 253 | goto error; | ||
| 254 | |||
| 255 | if (!BN_X931_generate_prime(rsa->q, NULL, NULL, NULL, NULL, Xq, | ||
| 256 | e, ctx, cb, cb_arg)) | ||
| 257 | goto error; | ||
| 258 | |||
| 259 | /* Since rsa->p and rsa->q are valid this call will just derive | ||
| 260 | * remaining RSA components. | ||
| 261 | */ | ||
| 262 | |||
| 263 | if (!RSA_X931_derive(rsa, NULL, NULL, NULL, NULL, cb, cb_arg, | ||
| 264 | NULL, NULL, NULL, NULL, NULL, NULL, e)) | ||
| 265 | goto error; | ||
| 266 | |||
| 267 | if(!fips_check_rsa(rsa)) | ||
| 268 | goto error; | ||
| 269 | |||
| 270 | ok = 1; | ||
| 271 | |||
| 272 | error: | ||
| 273 | if (ctx) | ||
| 274 | { | ||
| 275 | BN_CTX_end(ctx); | ||
| 276 | BN_CTX_free(ctx); | ||
| 277 | } | ||
| 278 | |||
| 279 | if (ok) | ||
| 280 | return rsa; | ||
| 281 | |||
| 282 | if (rsa) | ||
| 283 | RSA_free(rsa); | ||
| 284 | |||
| 285 | return NULL; | ||
| 286 | |||
| 287 | } | ||
| 288 | |||
| 289 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsagtest.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsagtest.c deleted file mode 100644 index 15d3225d53..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsagtest.c +++ /dev/null | |||
| @@ -1,420 +0,0 @@ | |||
| 1 | /* fips_rsagtest.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <ctype.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <openssl/bio.h> | ||
| 63 | #include <openssl/evp.h> | ||
| 64 | #include <openssl/hmac.h> | ||
| 65 | #include <openssl/err.h> | ||
| 66 | #include <openssl/x509v3.h> | ||
| 67 | |||
| 68 | #ifndef OPENSSL_FIPS | ||
| 69 | |||
| 70 | int main(int argc, char *argv[]) | ||
| 71 | { | ||
| 72 | printf("No FIPS RSA support\n"); | ||
| 73 | return(0); | ||
| 74 | } | ||
| 75 | |||
| 76 | #else | ||
| 77 | |||
| 78 | extern int RSA_X931_derive(RSA *rsa, BIGNUM *p1, BIGNUM *p2, BIGNUM *q1, BIGNUM *q2, | ||
| 79 | void (*cb)(int, int, void *), void *cb_arg, | ||
| 80 | const BIGNUM *Xp1, const BIGNUM *Xp2, const BIGNUM *Xp, | ||
| 81 | const BIGNUM *Xq1, const BIGNUM *Xq2, const BIGNUM *Xq, | ||
| 82 | const BIGNUM *e); | ||
| 83 | |||
| 84 | int rsa_test(BIO *err, BIO *out, BIO *in); | ||
| 85 | static int rsa_printkey1(BIO *err, BIO *out, RSA *rsa, | ||
| 86 | BIGNUM *Xp1, BIGNUM *Xp2, BIGNUM *Xp, | ||
| 87 | BIGNUM *e); | ||
| 88 | static int rsa_printkey2(BIO *err, BIO *out, RSA *rsa, | ||
| 89 | BIGNUM *Xq1, BIGNUM *Xq2, BIGNUM *Xq); | ||
| 90 | |||
| 91 | int main(int argc, char **argv) | ||
| 92 | { | ||
| 93 | BIO *in = NULL, *out = NULL, *err = NULL; | ||
| 94 | |||
| 95 | int ret = 1; | ||
| 96 | ERR_load_crypto_strings(); | ||
| 97 | |||
| 98 | err = BIO_new_fp(stderr, BIO_NOCLOSE); | ||
| 99 | |||
| 100 | if (!err) | ||
| 101 | { | ||
| 102 | fprintf(stderr, "FATAL stderr initialization error\n"); | ||
| 103 | goto end; | ||
| 104 | } | ||
| 105 | |||
| 106 | if(!FIPS_mode_set(1)) | ||
| 107 | { | ||
| 108 | ERR_print_errors(err); | ||
| 109 | goto end; | ||
| 110 | } | ||
| 111 | |||
| 112 | if (argc == 1) | ||
| 113 | in = BIO_new_fp(stdin, BIO_NOCLOSE); | ||
| 114 | else | ||
| 115 | in = BIO_new_file(argv[1], "r"); | ||
| 116 | |||
| 117 | if (argc < 2) | ||
| 118 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 119 | else | ||
| 120 | out = BIO_new_file(argv[2], "w"); | ||
| 121 | |||
| 122 | if (!in) | ||
| 123 | { | ||
| 124 | BIO_printf(err, "FATAL input initialization error\n"); | ||
| 125 | goto end; | ||
| 126 | } | ||
| 127 | |||
| 128 | if (!out) | ||
| 129 | { | ||
| 130 | fprintf(stderr, "FATAL output initialization error\n"); | ||
| 131 | goto end; | ||
| 132 | } | ||
| 133 | |||
| 134 | if (!rsa_test(err, out, in)) | ||
| 135 | { | ||
| 136 | fprintf(stderr, "FATAL RSAVTEST file processing error\n"); | ||
| 137 | goto end; | ||
| 138 | } | ||
| 139 | else | ||
| 140 | ret = 0; | ||
| 141 | |||
| 142 | end: | ||
| 143 | |||
| 144 | if (ret && err) | ||
| 145 | ERR_print_errors(err); | ||
| 146 | |||
| 147 | if (in) | ||
| 148 | BIO_free(in); | ||
| 149 | if (out) | ||
| 150 | BIO_free(out); | ||
| 151 | if (err) | ||
| 152 | BIO_free(err); | ||
| 153 | |||
| 154 | return ret; | ||
| 155 | |||
| 156 | } | ||
| 157 | |||
| 158 | |||
| 159 | static void do_bn_print(BIO *out, const char *name, BIGNUM *b) | ||
| 160 | { | ||
| 161 | char *htmp, *p; | ||
| 162 | /* Can't use BN_print_fp because it uses upper case so | ||
| 163 | * use BN_bn2hex() and convert. | ||
| 164 | */ | ||
| 165 | htmp = BN_bn2hex(b); | ||
| 166 | for(p = htmp; *p; p++) | ||
| 167 | { | ||
| 168 | if (isupper(*p)) | ||
| 169 | *p = tolower(*p); | ||
| 170 | } | ||
| 171 | BIO_printf(out, "%s = %s\n", name, htmp); | ||
| 172 | OPENSSL_free(htmp); | ||
| 173 | } | ||
| 174 | |||
| 175 | #define RSA_TEST_MAXLINELEN 10240 | ||
| 176 | |||
| 177 | int rsa_test(BIO *err, BIO *out, BIO *in) | ||
| 178 | { | ||
| 179 | char *linebuf, *olinebuf, *p, *q; | ||
| 180 | char *keyword, *value; | ||
| 181 | RSA *rsa = NULL; | ||
| 182 | BIGNUM *Xp1 = NULL, *Xp2 = NULL, *Xp = NULL; | ||
| 183 | BIGNUM *Xq1 = NULL, *Xq2 = NULL, *Xq = NULL; | ||
| 184 | BIGNUM *e = NULL; | ||
| 185 | int ret = 0; | ||
| 186 | int lnum = 0; | ||
| 187 | |||
| 188 | olinebuf = OPENSSL_malloc(RSA_TEST_MAXLINELEN); | ||
| 189 | linebuf = OPENSSL_malloc(RSA_TEST_MAXLINELEN); | ||
| 190 | |||
| 191 | if (!linebuf || !olinebuf) | ||
| 192 | goto error; | ||
| 193 | |||
| 194 | while (BIO_gets(in, olinebuf, RSA_TEST_MAXLINELEN) > 0) | ||
| 195 | { | ||
| 196 | lnum++; | ||
| 197 | strcpy(linebuf, olinebuf); | ||
| 198 | keyword = linebuf; | ||
| 199 | /* Skip leading space */ | ||
| 200 | while (isspace((unsigned char)*keyword)) | ||
| 201 | keyword++; | ||
| 202 | |||
| 203 | /* Look for = sign */ | ||
| 204 | p = strchr(linebuf, '='); | ||
| 205 | |||
| 206 | /* If no = or starts with [ (for [foo = bar] line) just copy */ | ||
| 207 | if (!p || *keyword=='[') | ||
| 208 | { | ||
| 209 | if (!BIO_puts(out, olinebuf)) | ||
| 210 | goto error; | ||
| 211 | continue; | ||
| 212 | } | ||
| 213 | |||
| 214 | q = p - 1; | ||
| 215 | |||
| 216 | /* Remove trailing space */ | ||
| 217 | while (isspace((unsigned char)*q)) | ||
| 218 | *q-- = 0; | ||
| 219 | |||
| 220 | |||
| 221 | value = p + 1; | ||
| 222 | |||
| 223 | /* Remove leading space from value */ | ||
| 224 | while (isspace((unsigned char)*value)) | ||
| 225 | value++; | ||
| 226 | |||
| 227 | /* Remove trailing space from value */ | ||
| 228 | p = value + strlen(value) - 1; | ||
| 229 | |||
| 230 | while (*p == '\n' || isspace((unsigned char)*p)) | ||
| 231 | *p-- = 0; | ||
| 232 | |||
| 233 | if (!strcmp(keyword, "xp1")) | ||
| 234 | { | ||
| 235 | if (Xp1 || !BN_hex2bn(&Xp1,value)) | ||
| 236 | goto parse_error; | ||
| 237 | } | ||
| 238 | else if (!strcmp(keyword, "xp2")) | ||
| 239 | { | ||
| 240 | if (Xp2 || !BN_hex2bn(&Xp2,value)) | ||
| 241 | goto parse_error; | ||
| 242 | } | ||
| 243 | else if (!strcmp(keyword, "Xp")) | ||
| 244 | { | ||
| 245 | if (Xp || !BN_hex2bn(&Xp,value)) | ||
| 246 | goto parse_error; | ||
| 247 | } | ||
| 248 | else if (!strcmp(keyword, "xq1")) | ||
| 249 | { | ||
| 250 | if (Xq1 || !BN_hex2bn(&Xq1,value)) | ||
| 251 | goto parse_error; | ||
| 252 | } | ||
| 253 | else if (!strcmp(keyword, "xq2")) | ||
| 254 | { | ||
| 255 | if (Xq2 || !BN_hex2bn(&Xq2,value)) | ||
| 256 | goto parse_error; | ||
| 257 | } | ||
| 258 | else if (!strcmp(keyword, "Xq")) | ||
| 259 | { | ||
| 260 | if (Xq || !BN_hex2bn(&Xq,value)) | ||
| 261 | goto parse_error; | ||
| 262 | } | ||
| 263 | else if (!strcmp(keyword, "e")) | ||
| 264 | { | ||
| 265 | if (e || !BN_hex2bn(&e,value)) | ||
| 266 | goto parse_error; | ||
| 267 | } | ||
| 268 | else if (!strcmp(keyword, "p1")) | ||
| 269 | continue; | ||
| 270 | else if (!strcmp(keyword, "p2")) | ||
| 271 | continue; | ||
| 272 | else if (!strcmp(keyword, "p")) | ||
| 273 | continue; | ||
| 274 | else if (!strcmp(keyword, "q1")) | ||
| 275 | continue; | ||
| 276 | else if (!strcmp(keyword, "q2")) | ||
| 277 | continue; | ||
| 278 | else if (!strcmp(keyword, "q")) | ||
| 279 | continue; | ||
| 280 | else if (!strcmp(keyword, "n")) | ||
| 281 | continue; | ||
| 282 | else if (!strcmp(keyword, "d")) | ||
| 283 | continue; | ||
| 284 | else | ||
| 285 | goto parse_error; | ||
| 286 | |||
| 287 | BIO_puts(out, olinebuf); | ||
| 288 | |||
| 289 | if (e && Xp1 && Xp2 && Xp) | ||
| 290 | { | ||
| 291 | rsa = RSA_new(); | ||
| 292 | if (!rsa) | ||
| 293 | goto error; | ||
| 294 | if (!rsa_printkey1(err, out, rsa, Xp1, Xp2, Xp, e)) | ||
| 295 | goto error; | ||
| 296 | BN_free(Xp1); | ||
| 297 | Xp1 = NULL; | ||
| 298 | BN_free(Xp2); | ||
| 299 | Xp2 = NULL; | ||
| 300 | BN_free(Xp); | ||
| 301 | Xp = NULL; | ||
| 302 | BN_free(e); | ||
| 303 | e = NULL; | ||
| 304 | } | ||
| 305 | |||
| 306 | if (rsa && Xq1 && Xq2 && Xq) | ||
| 307 | { | ||
| 308 | if (!rsa_printkey2(err, out, rsa, Xq1, Xq2, Xq)) | ||
| 309 | goto error; | ||
| 310 | BN_free(Xq1); | ||
| 311 | Xq1 = NULL; | ||
| 312 | BN_free(Xq2); | ||
| 313 | Xq2 = NULL; | ||
| 314 | BN_free(Xq); | ||
| 315 | Xq = NULL; | ||
| 316 | RSA_free(rsa); | ||
| 317 | rsa = NULL; | ||
| 318 | } | ||
| 319 | } | ||
| 320 | |||
| 321 | ret = 1; | ||
| 322 | |||
| 323 | error: | ||
| 324 | |||
| 325 | if (olinebuf) | ||
| 326 | OPENSSL_free(olinebuf); | ||
| 327 | if (linebuf) | ||
| 328 | OPENSSL_free(linebuf); | ||
| 329 | |||
| 330 | if (Xp1) | ||
| 331 | BN_free(Xp1); | ||
| 332 | if (Xp2) | ||
| 333 | BN_free(Xp2); | ||
| 334 | if (Xp) | ||
| 335 | BN_free(Xp); | ||
| 336 | if (Xq1) | ||
| 337 | BN_free(Xq1); | ||
| 338 | if (Xq1) | ||
| 339 | BN_free(Xq1); | ||
| 340 | if (Xq2) | ||
| 341 | BN_free(Xq2); | ||
| 342 | if (Xq) | ||
| 343 | BN_free(Xq); | ||
| 344 | if (e) | ||
| 345 | BN_free(e); | ||
| 346 | if (rsa) | ||
| 347 | RSA_free(rsa); | ||
| 348 | |||
| 349 | return ret; | ||
| 350 | |||
| 351 | parse_error: | ||
| 352 | |||
| 353 | BIO_printf(err, "FATAL parse error processing line %d\n", lnum); | ||
| 354 | |||
| 355 | goto error; | ||
| 356 | |||
| 357 | } | ||
| 358 | |||
| 359 | static int rsa_printkey1(BIO *err, BIO *out, RSA *rsa, | ||
| 360 | BIGNUM *Xp1, BIGNUM *Xp2, BIGNUM *Xp, | ||
| 361 | BIGNUM *e) | ||
| 362 | { | ||
| 363 | int ret = 0; | ||
| 364 | BIGNUM *p1 = NULL, *p2 = NULL; | ||
| 365 | p1 = BN_new(); | ||
| 366 | p2 = BN_new(); | ||
| 367 | if (!p1 || !p2) | ||
| 368 | goto error; | ||
| 369 | |||
| 370 | if (!RSA_X931_derive(rsa, p1, p2, NULL, NULL, 0, NULL, Xp1, Xp2, Xp, | ||
| 371 | NULL, NULL, NULL, e)) | ||
| 372 | goto error; | ||
| 373 | |||
| 374 | do_bn_print(out, "p1", p1); | ||
| 375 | do_bn_print(out, "p2", p2); | ||
| 376 | do_bn_print(out, "p", rsa->p); | ||
| 377 | |||
| 378 | ret = 1; | ||
| 379 | |||
| 380 | error: | ||
| 381 | if (p1) | ||
| 382 | BN_free(p1); | ||
| 383 | if (p2) | ||
| 384 | BN_free(p2); | ||
| 385 | |||
| 386 | return ret; | ||
| 387 | } | ||
| 388 | |||
| 389 | static int rsa_printkey2(BIO *err, BIO *out, RSA *rsa, | ||
| 390 | BIGNUM *Xq1, BIGNUM *Xq2, BIGNUM *Xq) | ||
| 391 | { | ||
| 392 | int ret = 0; | ||
| 393 | BIGNUM *q1 = NULL, *q2 = NULL; | ||
| 394 | q1 = BN_new(); | ||
| 395 | q2 = BN_new(); | ||
| 396 | if (!q1 || !q2) | ||
| 397 | goto error; | ||
| 398 | |||
| 399 | if (!RSA_X931_derive(rsa, NULL, NULL, q1, q2, 0, NULL, NULL, NULL, NULL, | ||
| 400 | Xq1, Xq2, Xq, NULL)) | ||
| 401 | goto error; | ||
| 402 | |||
| 403 | do_bn_print(out, "q1", q1); | ||
| 404 | do_bn_print(out, "q2", q2); | ||
| 405 | do_bn_print(out, "q", rsa->q); | ||
| 406 | do_bn_print(out, "n", rsa->n); | ||
| 407 | do_bn_print(out, "d", rsa->d); | ||
| 408 | |||
| 409 | ret = 1; | ||
| 410 | |||
| 411 | error: | ||
| 412 | if (q1) | ||
| 413 | BN_free(q1); | ||
| 414 | if (q2) | ||
| 415 | BN_free(q2); | ||
| 416 | |||
| 417 | return ret; | ||
| 418 | } | ||
| 419 | |||
| 420 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsastest.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsastest.c deleted file mode 100644 index 880dd636a7..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsastest.c +++ /dev/null | |||
| @@ -1,402 +0,0 @@ | |||
| 1 | /* fips_rsastest.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <ctype.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <openssl/bio.h> | ||
| 63 | #include <openssl/evp.h> | ||
| 64 | #include <openssl/hmac.h> | ||
| 65 | #include <openssl/err.h> | ||
| 66 | #include <openssl/x509v3.h> | ||
| 67 | |||
| 68 | #ifndef OPENSSL_FIPS | ||
| 69 | |||
| 70 | int main(int argc, char *argv[]) | ||
| 71 | { | ||
| 72 | printf("No FIPS RSA support\n"); | ||
| 73 | return(0); | ||
| 74 | } | ||
| 75 | |||
| 76 | #else | ||
| 77 | |||
| 78 | static int rsa_stest(BIO *err, BIO *out, BIO *in, int Saltlen); | ||
| 79 | static int rsa_printsig(BIO *err, BIO *out, RSA *rsa, const EVP_MD *dgst, | ||
| 80 | unsigned char *Msg, long Msglen, int Saltlen); | ||
| 81 | |||
| 82 | int main(int argc, char **argv) | ||
| 83 | { | ||
| 84 | BIO *in = NULL, *out = NULL, *err = NULL; | ||
| 85 | |||
| 86 | int ret = 1, Saltlen = -1; | ||
| 87 | ERR_load_crypto_strings(); | ||
| 88 | |||
| 89 | err = BIO_new_fp(stderr, BIO_NOCLOSE); | ||
| 90 | |||
| 91 | if (!err) | ||
| 92 | { | ||
| 93 | fprintf(stderr, "FATAL stderr initialization error\n"); | ||
| 94 | goto end; | ||
| 95 | } | ||
| 96 | |||
| 97 | if(!FIPS_mode_set(1)) | ||
| 98 | { | ||
| 99 | ERR_print_errors(err); | ||
| 100 | goto end; | ||
| 101 | } | ||
| 102 | |||
| 103 | if ((argc > 2) && !strcmp("-saltlen", argv[1])) | ||
| 104 | { | ||
| 105 | Saltlen = atoi(argv[2]); | ||
| 106 | if (Saltlen < 0) | ||
| 107 | { | ||
| 108 | BIO_printf(err, "FATAL: Invalid salt length\n"); | ||
| 109 | goto end; | ||
| 110 | } | ||
| 111 | argc -= 2; | ||
| 112 | argv += 2; | ||
| 113 | } | ||
| 114 | else if ((argc > 1) && !strcmp("-x931", argv[1])) | ||
| 115 | { | ||
| 116 | Saltlen = -2; | ||
| 117 | argc--; | ||
| 118 | argv++; | ||
| 119 | } | ||
| 120 | |||
| 121 | if (argc == 1) | ||
| 122 | in = BIO_new_fp(stdin, BIO_NOCLOSE); | ||
| 123 | else | ||
| 124 | in = BIO_new_file(argv[1], "r"); | ||
| 125 | |||
| 126 | if (argc < 2) | ||
| 127 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 128 | else | ||
| 129 | out = BIO_new_file(argv[2], "w"); | ||
| 130 | |||
| 131 | if (!in) | ||
| 132 | { | ||
| 133 | BIO_printf(err, "FATAL input initialization error\n"); | ||
| 134 | goto end; | ||
| 135 | } | ||
| 136 | |||
| 137 | if (!out) | ||
| 138 | { | ||
| 139 | fprintf(stderr, "FATAL output initialization error\n"); | ||
| 140 | goto end; | ||
| 141 | } | ||
| 142 | |||
| 143 | if (!rsa_stest(err, out, in, Saltlen)) | ||
| 144 | { | ||
| 145 | fprintf(stderr, "FATAL RSAVTEST file processing error\n"); | ||
| 146 | goto end; | ||
| 147 | } | ||
| 148 | else | ||
| 149 | ret = 0; | ||
| 150 | |||
| 151 | end: | ||
| 152 | |||
| 153 | if (ret && err) | ||
| 154 | ERR_print_errors(err); | ||
| 155 | |||
| 156 | if (in) | ||
| 157 | BIO_free(in); | ||
| 158 | if (out) | ||
| 159 | BIO_free(out); | ||
| 160 | if (err) | ||
| 161 | BIO_free(err); | ||
| 162 | |||
| 163 | return ret; | ||
| 164 | |||
| 165 | } | ||
| 166 | |||
| 167 | #define RSA_TEST_MAXLINELEN 10240 | ||
| 168 | |||
| 169 | int rsa_stest(BIO *err, BIO *out, BIO *in, int Saltlen) | ||
| 170 | { | ||
| 171 | char *linebuf, *olinebuf, *p, *q; | ||
| 172 | char *keyword, *value; | ||
| 173 | RSA *rsa = NULL; | ||
| 174 | const EVP_MD *dgst = NULL; | ||
| 175 | unsigned char *Msg = NULL; | ||
| 176 | long Msglen; | ||
| 177 | int keylen = -1, current_keylen = -1; | ||
| 178 | int ret = 0; | ||
| 179 | int lnum = 0; | ||
| 180 | |||
| 181 | olinebuf = OPENSSL_malloc(RSA_TEST_MAXLINELEN); | ||
| 182 | linebuf = OPENSSL_malloc(RSA_TEST_MAXLINELEN); | ||
| 183 | |||
| 184 | if (!linebuf || !olinebuf) | ||
| 185 | goto error; | ||
| 186 | |||
| 187 | while (BIO_gets(in, olinebuf, RSA_TEST_MAXLINELEN) > 0) | ||
| 188 | { | ||
| 189 | lnum++; | ||
| 190 | strcpy(linebuf, olinebuf); | ||
| 191 | keyword = linebuf; | ||
| 192 | /* Skip leading space */ | ||
| 193 | while (isspace((unsigned char)*keyword)) | ||
| 194 | keyword++; | ||
| 195 | |||
| 196 | /* Look for = sign */ | ||
| 197 | p = strchr(linebuf, '='); | ||
| 198 | |||
| 199 | /* If no = just copy */ | ||
| 200 | if (!p) | ||
| 201 | { | ||
| 202 | if (!BIO_puts(out, olinebuf)) | ||
| 203 | goto error; | ||
| 204 | continue; | ||
| 205 | } | ||
| 206 | |||
| 207 | q = p - 1; | ||
| 208 | |||
| 209 | /* Remove trailing space */ | ||
| 210 | while (isspace((unsigned char)*q)) | ||
| 211 | *q-- = 0; | ||
| 212 | |||
| 213 | |||
| 214 | value = p + 1; | ||
| 215 | |||
| 216 | /* Remove leading space from value */ | ||
| 217 | while (isspace((unsigned char)*value)) | ||
| 218 | value++; | ||
| 219 | |||
| 220 | /* Remove trailing space from value */ | ||
| 221 | p = value + strlen(value) - 1; | ||
| 222 | |||
| 223 | while (*p == '\n' || isspace((unsigned char)*p)) | ||
| 224 | *p-- = 0; | ||
| 225 | |||
| 226 | /* Look for [mod = XXX] for key length */ | ||
| 227 | |||
| 228 | if (!strcmp(keyword, "[mod")) | ||
| 229 | { | ||
| 230 | p = value + strlen(value) - 1; | ||
| 231 | if (*p != ']') | ||
| 232 | goto parse_error; | ||
| 233 | *p = 0; | ||
| 234 | keylen = atoi(value); | ||
| 235 | if (keylen < 0) | ||
| 236 | goto parse_error; | ||
| 237 | } | ||
| 238 | else if (!strcmp(keyword, "SHAAlg")) | ||
| 239 | { | ||
| 240 | if (!strcmp(value, "SHA1")) | ||
| 241 | dgst = EVP_sha1(); | ||
| 242 | else if (!strcmp(value, "SHA224")) | ||
| 243 | dgst = EVP_sha224(); | ||
| 244 | else if (!strcmp(value, "SHA256")) | ||
| 245 | dgst = EVP_sha256(); | ||
| 246 | else if (!strcmp(value, "SHA384")) | ||
| 247 | dgst = EVP_sha384(); | ||
| 248 | else if (!strcmp(value, "SHA512")) | ||
| 249 | dgst = EVP_sha512(); | ||
| 250 | else | ||
| 251 | { | ||
| 252 | BIO_printf(err, | ||
| 253 | "FATAL: unsupported algorithm \"%s\"\n", | ||
| 254 | value); | ||
| 255 | goto parse_error; | ||
| 256 | } | ||
| 257 | } | ||
| 258 | else if (!strcmp(keyword, "Msg")) | ||
| 259 | { | ||
| 260 | if (Msg) | ||
| 261 | goto parse_error; | ||
| 262 | if (strlen(value) & 1) | ||
| 263 | *(--value) = '0'; | ||
| 264 | Msg = string_to_hex(value, &Msglen); | ||
| 265 | if (!Msg) | ||
| 266 | goto parse_error; | ||
| 267 | } | ||
| 268 | |||
| 269 | BIO_puts(out, olinebuf); | ||
| 270 | |||
| 271 | /* If key length has changed, generate and output public | ||
| 272 | * key components of new RSA private key. | ||
| 273 | */ | ||
| 274 | |||
| 275 | if (keylen != current_keylen) | ||
| 276 | { | ||
| 277 | if (rsa) | ||
| 278 | RSA_free(rsa); | ||
| 279 | rsa = RSA_generate_key(keylen, 0x1001, 0, NULL); | ||
| 280 | if (!rsa) | ||
| 281 | goto error; | ||
| 282 | BIO_puts(out, "n = "); | ||
| 283 | BN_print(out, rsa->n); | ||
| 284 | BIO_puts(out, "\ne = "); | ||
| 285 | BN_print(out, rsa->e); | ||
| 286 | BIO_puts(out, "\n"); | ||
| 287 | current_keylen = keylen; | ||
| 288 | } | ||
| 289 | |||
| 290 | if (Msg && dgst) | ||
| 291 | { | ||
| 292 | if (!rsa_printsig(err, out, rsa, dgst, Msg, Msglen, | ||
| 293 | Saltlen)) | ||
| 294 | goto error; | ||
| 295 | OPENSSL_free(Msg); | ||
| 296 | Msg = NULL; | ||
| 297 | } | ||
| 298 | |||
| 299 | } | ||
| 300 | |||
| 301 | ret = 1; | ||
| 302 | |||
| 303 | error: | ||
| 304 | |||
| 305 | if (olinebuf) | ||
| 306 | OPENSSL_free(olinebuf); | ||
| 307 | if (linebuf) | ||
| 308 | OPENSSL_free(linebuf); | ||
| 309 | if (rsa) | ||
| 310 | RSA_free(rsa); | ||
| 311 | |||
| 312 | return ret; | ||
| 313 | |||
| 314 | parse_error: | ||
| 315 | |||
| 316 | BIO_printf(err, "FATAL parse error processing line %d\n", lnum); | ||
| 317 | |||
| 318 | goto error; | ||
| 319 | |||
| 320 | } | ||
| 321 | |||
| 322 | static int rsa_printsig(BIO *err, BIO *out, RSA *rsa, const EVP_MD *dgst, | ||
| 323 | unsigned char *Msg, long Msglen, int Saltlen) | ||
| 324 | { | ||
| 325 | int ret = 0; | ||
| 326 | unsigned char *sigbuf = NULL; | ||
| 327 | int i, siglen; | ||
| 328 | /* EVP_PKEY structure */ | ||
| 329 | EVP_PKEY *key = NULL; | ||
| 330 | EVP_MD_CTX ctx; | ||
| 331 | key = EVP_PKEY_new(); | ||
| 332 | if (!key) | ||
| 333 | goto error; | ||
| 334 | if (!EVP_PKEY_set1_RSA(key, rsa)) | ||
| 335 | goto error; | ||
| 336 | |||
| 337 | siglen = EVP_PKEY_size(key); | ||
| 338 | sigbuf = OPENSSL_malloc(siglen); | ||
| 339 | if (!sigbuf) | ||
| 340 | goto error; | ||
| 341 | |||
| 342 | EVP_MD_CTX_init(&ctx); | ||
| 343 | |||
| 344 | if (Saltlen != -1) | ||
| 345 | { | ||
| 346 | unsigned int mdlen; | ||
| 347 | unsigned char mdtmp[EVP_MAX_MD_SIZE + 1]; | ||
| 348 | |||
| 349 | if (!EVP_DigestInit_ex(&ctx, dgst, NULL)) | ||
| 350 | goto error; | ||
| 351 | if (!EVP_DigestUpdate(&ctx, Msg, Msglen)) | ||
| 352 | goto error; | ||
| 353 | if (!EVP_DigestFinal(&ctx, mdtmp, &mdlen)) | ||
| 354 | goto error; | ||
| 355 | |||
| 356 | if (Saltlen == -2) | ||
| 357 | { | ||
| 358 | mdtmp[mdlen] = RSA_X931_hash_id(EVP_MD_type(dgst)); | ||
| 359 | siglen = RSA_private_encrypt(mdlen + 1, mdtmp, | ||
| 360 | sigbuf, rsa, RSA_X931_PADDING); | ||
| 361 | if (siglen <= 0) | ||
| 362 | goto error; | ||
| 363 | } | ||
| 364 | else | ||
| 365 | { | ||
| 366 | if (!RSA_padding_add_PKCS1_PSS(rsa, sigbuf, mdtmp, | ||
| 367 | dgst, Saltlen)) | ||
| 368 | goto error; | ||
| 369 | siglen = RSA_private_encrypt(siglen, sigbuf, sigbuf, | ||
| 370 | rsa, RSA_NO_PADDING); | ||
| 371 | if (siglen <= 0) | ||
| 372 | goto error; | ||
| 373 | } | ||
| 374 | } | ||
| 375 | else | ||
| 376 | { | ||
| 377 | if (!EVP_SignInit_ex(&ctx, dgst, NULL)) | ||
| 378 | goto error; | ||
| 379 | if (!EVP_SignUpdate(&ctx, Msg, Msglen)) | ||
| 380 | goto error; | ||
| 381 | if (!EVP_SignFinal(&ctx, sigbuf, (unsigned int *)&siglen, key)) | ||
| 382 | goto error; | ||
| 383 | } | ||
| 384 | |||
| 385 | EVP_MD_CTX_cleanup(&ctx); | ||
| 386 | |||
| 387 | BIO_puts(out, "S = "); | ||
| 388 | |||
| 389 | for (i = 0; i < siglen; i++) | ||
| 390 | BIO_printf(out, "%02X", sigbuf[i]); | ||
| 391 | |||
| 392 | BIO_puts(out, "\n"); | ||
| 393 | |||
| 394 | ret = 1; | ||
| 395 | |||
| 396 | error: | ||
| 397 | if (key) | ||
| 398 | EVP_PKEY_free(key); | ||
| 399 | |||
| 400 | return ret; | ||
| 401 | } | ||
| 402 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/rsa/fips_rsavtest.c b/src/lib/libssl/src/fips-1.0/rsa/fips_rsavtest.c deleted file mode 100644 index 7e2c40424d..0000000000 --- a/src/lib/libssl/src/fips-1.0/rsa/fips_rsavtest.c +++ /dev/null | |||
| @@ -1,425 +0,0 @@ | |||
| 1 | /* fips_rsavtest.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <ctype.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <openssl/bio.h> | ||
| 63 | #include <openssl/evp.h> | ||
| 64 | #include <openssl/hmac.h> | ||
| 65 | #include <openssl/err.h> | ||
| 66 | #include <openssl/x509v3.h> | ||
| 67 | |||
| 68 | #ifndef OPENSSL_FIPS | ||
| 69 | |||
| 70 | int main(int argc, char *argv[]) | ||
| 71 | { | ||
| 72 | printf("No FIPS RSA support\n"); | ||
| 73 | return(0); | ||
| 74 | } | ||
| 75 | |||
| 76 | #else | ||
| 77 | |||
| 78 | int rsa_test(BIO *err, BIO *out, BIO *in, int saltlen); | ||
| 79 | static int rsa_printver(BIO *err, BIO *out, | ||
| 80 | BIGNUM *n, BIGNUM *e, | ||
| 81 | const EVP_MD *dgst, | ||
| 82 | unsigned char *Msg, long Msglen, | ||
| 83 | unsigned char *S, long Slen, int Saltlen); | ||
| 84 | |||
| 85 | int main(int argc, char **argv) | ||
| 86 | { | ||
| 87 | BIO *in = NULL, *out = NULL, *err = NULL; | ||
| 88 | |||
| 89 | int ret = 1; | ||
| 90 | int Saltlen = -1; | ||
| 91 | ERR_load_crypto_strings(); | ||
| 92 | |||
| 93 | err = BIO_new_fp(stderr, BIO_NOCLOSE); | ||
| 94 | |||
| 95 | if (!err) | ||
| 96 | { | ||
| 97 | fprintf(stderr, "FATAL stderr initialization error\n"); | ||
| 98 | goto end; | ||
| 99 | } | ||
| 100 | |||
| 101 | if(!FIPS_mode_set(1)) | ||
| 102 | { | ||
| 103 | ERR_print_errors(err); | ||
| 104 | goto end; | ||
| 105 | } | ||
| 106 | |||
| 107 | if ((argc > 2) && !strcmp("-saltlen", argv[1])) | ||
| 108 | { | ||
| 109 | Saltlen = atoi(argv[2]); | ||
| 110 | if (Saltlen < 0) | ||
| 111 | { | ||
| 112 | BIO_printf(err, "FATAL: Invalid salt length\n"); | ||
| 113 | goto end; | ||
| 114 | } | ||
| 115 | argc -= 2; | ||
| 116 | argv += 2; | ||
| 117 | } | ||
| 118 | else if ((argc > 1) && !strcmp("-x931", argv[1])) | ||
| 119 | { | ||
| 120 | Saltlen = -2; | ||
| 121 | argc--; | ||
| 122 | argv++; | ||
| 123 | } | ||
| 124 | |||
| 125 | if (argc == 1) | ||
| 126 | in = BIO_new_fp(stdin, BIO_NOCLOSE); | ||
| 127 | else | ||
| 128 | in = BIO_new_file(argv[1], "r"); | ||
| 129 | |||
| 130 | if (argc < 2) | ||
| 131 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 132 | else | ||
| 133 | out = BIO_new_file(argv[2], "w"); | ||
| 134 | |||
| 135 | if (!in) | ||
| 136 | { | ||
| 137 | BIO_printf(err, "FATAL input initialization error\n"); | ||
| 138 | goto end; | ||
| 139 | } | ||
| 140 | |||
| 141 | if (!out) | ||
| 142 | { | ||
| 143 | fprintf(stderr, "FATAL output initialization error\n"); | ||
| 144 | goto end; | ||
| 145 | } | ||
| 146 | |||
| 147 | if (!rsa_test(err, out, in, Saltlen)) | ||
| 148 | { | ||
| 149 | fprintf(stderr, "FATAL RSAVTEST file processing error\n"); | ||
| 150 | goto end; | ||
| 151 | } | ||
| 152 | else | ||
| 153 | ret = 0; | ||
| 154 | |||
| 155 | end: | ||
| 156 | |||
| 157 | if (ret && err) | ||
| 158 | ERR_print_errors(err); | ||
| 159 | |||
| 160 | if (in) | ||
| 161 | BIO_free(in); | ||
| 162 | if (out) | ||
| 163 | BIO_free(out); | ||
| 164 | if (err) | ||
| 165 | BIO_free(err); | ||
| 166 | |||
| 167 | return ret; | ||
| 168 | |||
| 169 | } | ||
| 170 | |||
| 171 | #define RSA_TEST_MAXLINELEN 10240 | ||
| 172 | |||
| 173 | int rsa_test(BIO *err, BIO *out, BIO *in, int Saltlen) | ||
| 174 | { | ||
| 175 | char *linebuf, *olinebuf, *p, *q; | ||
| 176 | char *keyword, *value; | ||
| 177 | const EVP_MD *dgst = NULL; | ||
| 178 | BIGNUM *n = NULL, *e = NULL; | ||
| 179 | unsigned char *Msg = NULL, *S = NULL; | ||
| 180 | long Msglen, Slen; | ||
| 181 | int ret = 0; | ||
| 182 | int lnum = 0; | ||
| 183 | |||
| 184 | olinebuf = OPENSSL_malloc(RSA_TEST_MAXLINELEN); | ||
| 185 | linebuf = OPENSSL_malloc(RSA_TEST_MAXLINELEN); | ||
| 186 | |||
| 187 | if (!linebuf || !olinebuf) | ||
| 188 | goto error; | ||
| 189 | |||
| 190 | while (BIO_gets(in, olinebuf, RSA_TEST_MAXLINELEN) > 0) | ||
| 191 | { | ||
| 192 | lnum++; | ||
| 193 | strcpy(linebuf, olinebuf); | ||
| 194 | keyword = linebuf; | ||
| 195 | /* Skip leading space */ | ||
| 196 | while (isspace((unsigned char)*keyword)) | ||
| 197 | keyword++; | ||
| 198 | |||
| 199 | /* Look for = sign */ | ||
| 200 | p = strchr(linebuf, '='); | ||
| 201 | |||
| 202 | /* If no = or starts with [ (for [foo = bar] line) just copy */ | ||
| 203 | if (!p || *keyword=='[') | ||
| 204 | { | ||
| 205 | if (!BIO_puts(out, olinebuf)) | ||
| 206 | goto error; | ||
| 207 | continue; | ||
| 208 | } | ||
| 209 | |||
| 210 | q = p - 1; | ||
| 211 | |||
| 212 | /* Remove trailing space */ | ||
| 213 | while (isspace((unsigned char)*q)) | ||
| 214 | *q-- = 0; | ||
| 215 | |||
| 216 | |||
| 217 | value = p + 1; | ||
| 218 | |||
| 219 | /* Remove leading space from value */ | ||
| 220 | while (isspace((unsigned char)*value)) | ||
| 221 | value++; | ||
| 222 | |||
| 223 | /* Remove trailing space from value */ | ||
| 224 | p = value + strlen(value) - 1; | ||
| 225 | |||
| 226 | while (*p == '\n' || isspace((unsigned char)*p)) | ||
| 227 | *p-- = 0; | ||
| 228 | |||
| 229 | if (!strcmp(keyword, "n")) | ||
| 230 | { | ||
| 231 | if (!BN_hex2bn(&n,value)) | ||
| 232 | goto parse_error; | ||
| 233 | } | ||
| 234 | else if (!strcmp(keyword, "e")) | ||
| 235 | { | ||
| 236 | if (!BN_hex2bn(&e,value)) | ||
| 237 | goto parse_error; | ||
| 238 | } | ||
| 239 | else if (!strcmp(keyword, "SHAAlg")) | ||
| 240 | { | ||
| 241 | if (!strcmp(value, "SHA1")) | ||
| 242 | dgst = EVP_sha1(); | ||
| 243 | else if (!strcmp(value, "SHA224")) | ||
| 244 | dgst = EVP_sha224(); | ||
| 245 | else if (!strcmp(value, "SHA256")) | ||
| 246 | dgst = EVP_sha256(); | ||
| 247 | else if (!strcmp(value, "SHA384")) | ||
| 248 | dgst = EVP_sha384(); | ||
| 249 | else if (!strcmp(value, "SHA512")) | ||
| 250 | dgst = EVP_sha512(); | ||
| 251 | else | ||
| 252 | { | ||
| 253 | BIO_printf(err, | ||
| 254 | "FATAL: unsupported algorithm \"%s\"\n", | ||
| 255 | value); | ||
| 256 | goto parse_error; | ||
| 257 | } | ||
| 258 | } | ||
| 259 | else if (!strcmp(keyword, "Msg")) | ||
| 260 | { | ||
| 261 | if (Msg) | ||
| 262 | goto parse_error; | ||
| 263 | if (strlen(value) & 1) | ||
| 264 | *(--value) = '0'; | ||
| 265 | Msg = string_to_hex(value, &Msglen); | ||
| 266 | if (!Msg) | ||
| 267 | goto parse_error; | ||
| 268 | } | ||
| 269 | else if (!strcmp(keyword, "S")) | ||
| 270 | { | ||
| 271 | if (S) | ||
| 272 | goto parse_error; | ||
| 273 | if (strlen(value) & 1) | ||
| 274 | *(--value) = '0'; | ||
| 275 | S = string_to_hex(value, &Slen); | ||
| 276 | if (!S) | ||
| 277 | goto parse_error; | ||
| 278 | } | ||
| 279 | else if (!strcmp(keyword, "Result")) | ||
| 280 | continue; | ||
| 281 | else | ||
| 282 | goto parse_error; | ||
| 283 | |||
| 284 | BIO_puts(out, olinebuf); | ||
| 285 | |||
| 286 | if (n && e && Msg && S && dgst) | ||
| 287 | { | ||
| 288 | if (!rsa_printver(err, out, n, e, dgst, | ||
| 289 | Msg, Msglen, S, Slen, Saltlen)) | ||
| 290 | goto error; | ||
| 291 | OPENSSL_free(Msg); | ||
| 292 | Msg = NULL; | ||
| 293 | OPENSSL_free(S); | ||
| 294 | S = NULL; | ||
| 295 | } | ||
| 296 | |||
| 297 | } | ||
| 298 | |||
| 299 | |||
| 300 | ret = 1; | ||
| 301 | |||
| 302 | |||
| 303 | error: | ||
| 304 | |||
| 305 | if (olinebuf) | ||
| 306 | OPENSSL_free(olinebuf); | ||
| 307 | if (linebuf) | ||
| 308 | OPENSSL_free(linebuf); | ||
| 309 | if (n) | ||
| 310 | BN_free(n); | ||
| 311 | if (e) | ||
| 312 | BN_free(e); | ||
| 313 | |||
| 314 | return ret; | ||
| 315 | |||
| 316 | parse_error: | ||
| 317 | |||
| 318 | BIO_printf(err, "FATAL parse error processing line %d\n", lnum); | ||
| 319 | |||
| 320 | goto error; | ||
| 321 | |||
| 322 | } | ||
| 323 | |||
| 324 | static int rsa_printver(BIO *err, BIO *out, | ||
| 325 | BIGNUM *n, BIGNUM *e, | ||
| 326 | const EVP_MD *dgst, | ||
| 327 | unsigned char *Msg, long Msglen, | ||
| 328 | unsigned char *S, long Slen, int Saltlen) | ||
| 329 | { | ||
| 330 | int ret = 0, r; | ||
| 331 | /* Setup RSA and EVP_PKEY structures */ | ||
| 332 | RSA *rsa_pubkey = NULL; | ||
| 333 | EVP_PKEY *pubkey = NULL; | ||
| 334 | EVP_MD_CTX ctx; | ||
| 335 | unsigned char *buf = NULL; | ||
| 336 | rsa_pubkey = RSA_new(); | ||
| 337 | pubkey = EVP_PKEY_new(); | ||
| 338 | if (!rsa_pubkey || !pubkey) | ||
| 339 | goto error; | ||
| 340 | rsa_pubkey->n = BN_dup(n); | ||
| 341 | rsa_pubkey->e = BN_dup(e); | ||
| 342 | if (!rsa_pubkey->n || !rsa_pubkey->e) | ||
| 343 | goto error; | ||
| 344 | if (!EVP_PKEY_set1_RSA(pubkey, rsa_pubkey)) | ||
| 345 | goto error; | ||
| 346 | |||
| 347 | EVP_MD_CTX_init(&ctx); | ||
| 348 | |||
| 349 | if (Saltlen != -1) | ||
| 350 | { | ||
| 351 | int pad; | ||
| 352 | unsigned char mdtmp[EVP_MAX_MD_SIZE]; | ||
| 353 | buf = OPENSSL_malloc(RSA_size(rsa_pubkey)); | ||
| 354 | if (Saltlen == -2) | ||
| 355 | pad = RSA_X931_PADDING; | ||
| 356 | else | ||
| 357 | pad = RSA_NO_PADDING; | ||
| 358 | if (!buf) | ||
| 359 | goto error; | ||
| 360 | r = RSA_public_decrypt(Slen, S, buf, rsa_pubkey, pad); | ||
| 361 | |||
| 362 | if (r > 0) | ||
| 363 | { | ||
| 364 | EVP_DigestInit_ex(&ctx, dgst, NULL); | ||
| 365 | if (!EVP_DigestUpdate(&ctx, Msg, Msglen)) | ||
| 366 | goto error; | ||
| 367 | if (!EVP_DigestFinal_ex(&ctx, mdtmp, NULL)) | ||
| 368 | goto error; | ||
| 369 | if (pad == RSA_X931_PADDING) | ||
| 370 | { | ||
| 371 | int mdlen = EVP_MD_size(dgst); | ||
| 372 | if (r != mdlen + 1) | ||
| 373 | r = 0; | ||
| 374 | else if (buf[mdlen] != | ||
| 375 | RSA_X931_hash_id(EVP_MD_type(dgst))) | ||
| 376 | r = 0; | ||
| 377 | else if (memcmp(buf, mdtmp, mdlen)) | ||
| 378 | r = 0; | ||
| 379 | else | ||
| 380 | r = 1; | ||
| 381 | } | ||
| 382 | else | ||
| 383 | r = RSA_verify_PKCS1_PSS(rsa_pubkey, | ||
| 384 | mdtmp, dgst, | ||
| 385 | buf, Saltlen); | ||
| 386 | } | ||
| 387 | if (r < 0) | ||
| 388 | r = 0; | ||
| 389 | } | ||
| 390 | else | ||
| 391 | { | ||
| 392 | |||
| 393 | if (!EVP_VerifyInit_ex(&ctx, dgst, NULL)) | ||
| 394 | goto error; | ||
| 395 | if (!EVP_VerifyUpdate(&ctx, Msg, Msglen)) | ||
| 396 | goto error; | ||
| 397 | |||
| 398 | r = EVP_VerifyFinal(&ctx, S, Slen, pubkey); | ||
| 399 | |||
| 400 | } | ||
| 401 | |||
| 402 | EVP_MD_CTX_cleanup(&ctx); | ||
| 403 | |||
| 404 | if (r < 0) | ||
| 405 | goto error; | ||
| 406 | ERR_clear_error(); | ||
| 407 | |||
| 408 | if (r == 0) | ||
| 409 | BIO_puts(out, "Result = F\n"); | ||
| 410 | else | ||
| 411 | BIO_puts(out, "Result = P\n"); | ||
| 412 | |||
| 413 | ret = 1; | ||
| 414 | |||
| 415 | error: | ||
| 416 | if (rsa_pubkey) | ||
| 417 | RSA_free(rsa_pubkey); | ||
| 418 | if (pubkey) | ||
| 419 | EVP_PKEY_free(pubkey); | ||
| 420 | if (buf) | ||
| 421 | OPENSSL_free(buf); | ||
| 422 | |||
| 423 | return ret; | ||
| 424 | } | ||
| 425 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/Makefile b/src/lib/libssl/src/fips-1.0/sha/Makefile deleted file mode 100644 index 31556697ce..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/Makefile +++ /dev/null | |||
| @@ -1,200 +0,0 @@ | |||
| 1 | # | ||
| 2 | # OpenSSL/fips-1.0/sha/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= sha | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | EXE_EXT= | ||
| 18 | |||
| 19 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 20 | |||
| 21 | GENERAL=Makefile | ||
| 22 | TEST= fips_shatest.c | ||
| 23 | TESTDATA= SHAmix.req SHAmix.fax | ||
| 24 | APPS= | ||
| 25 | EXE= fips_standalone_sha1$(EXE_EXT) | ||
| 26 | |||
| 27 | LIB=$(TOP)/libcrypto.a | ||
| 28 | LIBSRC=fips_sha1dgst.c fips_sha1_selftest.c asm/fips-sx86-elf.s \ | ||
| 29 | fips_sha256.c fips_sha512.c | ||
| 30 | LIBOBJ=fips_sha1dgst.o fips_sha1_selftest.o $(FIPS_SHA1_ASM_OBJ) \ | ||
| 31 | fips_sha256.o fips_sha512.o | ||
| 32 | |||
| 33 | SRC= $(LIBSRC) fips_standalone_sha1.c | ||
| 34 | |||
| 35 | EXHEADER=fips_sha.h | ||
| 36 | HEADER= $(EXHEADER) fips_sha_locl.h fips_md32_common.h | ||
| 37 | |||
| 38 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 39 | |||
| 40 | top: | ||
| 41 | (cd $(TOP); $(MAKE) DIRS=fips SDIRS=$(DIR) sub_all) | ||
| 42 | |||
| 43 | all: fips_standalone_sha1$(EXE_EXT) lib | ||
| 44 | |||
| 45 | lib: $(LIBOBJ) | ||
| 46 | @echo $(LIBOBJ) > lib | ||
| 47 | |||
| 48 | fips_standalone_sha1$(EXE_EXT): fips_standalone_sha1.o fips_sha1dgst.o $(FIPS_SHA1_ASM_OBJ) | ||
| 49 | $(CC) -o fips_standalone_sha1$(EXE_EXT) $(CFLAGS) \ | ||
| 50 | fips_standalone_sha1.o fips_sha1dgst.o $(FIPS_SHA1_ASM_OBJ) | ||
| 51 | |||
| 52 | files: | ||
| 53 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 54 | |||
| 55 | links: | ||
| 56 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 57 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 58 | cp $(TESTDATA) $(TOP)/test | ||
| 59 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 60 | |||
| 61 | install: | ||
| 62 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 63 | do \ | ||
| 64 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 65 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 66 | done | ||
| 67 | |||
| 68 | tags: | ||
| 69 | ctags $(SRC) | ||
| 70 | |||
| 71 | tests: | ||
| 72 | |||
| 73 | Q=../testvectors/sha/req | ||
| 74 | A=../testvectors/sha/rsp | ||
| 75 | |||
| 76 | VECTORS = SHA1LongMsg \ | ||
| 77 | SHA1Monte \ | ||
| 78 | SHA1ShortMsg \ | ||
| 79 | SHA224LongMsg \ | ||
| 80 | SHA224Monte \ | ||
| 81 | SHA224ShortMsg \ | ||
| 82 | SHA256LongMsg \ | ||
| 83 | SHA256Monte \ | ||
| 84 | SHA256ShortMsg \ | ||
| 85 | SHA384LongMsg \ | ||
| 86 | SHA384Monte \ | ||
| 87 | SHA384ShortMsg \ | ||
| 88 | SHA512LongMsg \ | ||
| 89 | SHA512Monte \ | ||
| 90 | SHA512ShortMsg | ||
| 91 | |||
| 92 | fips_test: | ||
| 93 | -rm -rf $(A) | ||
| 94 | mkdir $(A) | ||
| 95 | for file in $(VECTORS); do \ | ||
| 96 | if [ -f $(Q)/$$file.req ]; then \ | ||
| 97 | $(TOP)/util/shlib_wrap.sh $(TOP)/test/fips_shatest $(Q)/$$file.req $(A)/$$file.rsp; \ | ||
| 98 | fi; \ | ||
| 99 | done | ||
| 100 | |||
| 101 | lint: | ||
| 102 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 103 | |||
| 104 | depend: | ||
| 105 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 106 | |||
| 107 | dclean: | ||
| 108 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 109 | mv -f Makefile.new $(MAKEFILE) | ||
| 110 | |||
| 111 | clean: | ||
| 112 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff $(EXE) | ||
| 113 | |||
| 114 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 115 | |||
| 116 | fips_sha1_selftest.o: ../../include/openssl/bio.h | ||
| 117 | fips_sha1_selftest.o: ../../include/openssl/crypto.h | ||
| 118 | fips_sha1_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 119 | fips_sha1_selftest.o: ../../include/openssl/fips.h | ||
| 120 | fips_sha1_selftest.o: ../../include/openssl/fips_sha.h | ||
| 121 | fips_sha1_selftest.o: ../../include/openssl/lhash.h | ||
| 122 | fips_sha1_selftest.o: ../../include/openssl/opensslconf.h | ||
| 123 | fips_sha1_selftest.o: ../../include/openssl/opensslv.h | ||
| 124 | fips_sha1_selftest.o: ../../include/openssl/safestack.h | ||
| 125 | fips_sha1_selftest.o: ../../include/openssl/stack.h | ||
| 126 | fips_sha1_selftest.o: ../../include/openssl/symhacks.h fips_sha1_selftest.c | ||
| 127 | fips_sha1dgst.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 128 | fips_sha1dgst.o: ../../include/openssl/opensslconf.h | ||
| 129 | fips_sha1dgst.o: ../../include/openssl/opensslv.h | ||
| 130 | fips_sha1dgst.o: ../../include/openssl/safestack.h | ||
| 131 | fips_sha1dgst.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 132 | fips_sha1dgst.o: fips_sha1dgst.c | ||
| 133 | fips_sha256.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 134 | fips_sha256.o: ../../include/openssl/fips.h ../../include/openssl/fips_sha.h | ||
| 135 | fips_sha256.o: ../../include/openssl/opensslconf.h | ||
| 136 | fips_sha256.o: ../../include/openssl/opensslv.h | ||
| 137 | fips_sha256.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 138 | fips_sha256.o: ../../include/openssl/symhacks.h fips_sha256.c | ||
| 139 | fips_sha512.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h | ||
| 140 | fips_sha512.o: ../../include/openssl/fips.h ../../include/openssl/fips_sha.h | ||
| 141 | fips_sha512.o: ../../include/openssl/opensslconf.h | ||
| 142 | fips_sha512.o: ../../include/openssl/opensslv.h | ||
| 143 | fips_sha512.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 144 | fips_sha512.o: ../../include/openssl/symhacks.h fips_sha512.c | ||
| 145 | fips_shatest.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 146 | fips_shatest.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 147 | fips_shatest.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h | ||
| 148 | fips_shatest.o: ../../include/openssl/cast.h ../../include/openssl/conf.h | ||
| 149 | fips_shatest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 150 | fips_shatest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 151 | fips_shatest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 152 | fips_shatest.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 153 | fips_shatest.o: ../../include/openssl/idea.h ../../include/openssl/lhash.h | ||
| 154 | fips_shatest.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 155 | fips_shatest.o: ../../include/openssl/md5.h ../../include/openssl/mdc2.h | ||
| 156 | fips_shatest.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 157 | fips_shatest.o: ../../include/openssl/opensslconf.h | ||
| 158 | fips_shatest.o: ../../include/openssl/opensslv.h | ||
| 159 | fips_shatest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h | ||
| 160 | fips_shatest.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 161 | fips_shatest.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 162 | fips_shatest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 163 | fips_shatest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 164 | fips_shatest.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 165 | fips_shatest.o: ../../include/openssl/ui_compat.h ../../include/openssl/x509.h | ||
| 166 | fips_shatest.o: ../../include/openssl/x509_vfy.h ../../include/openssl/x509v3.h | ||
| 167 | fips_shatest.o: fips_shatest.c | ||
| 168 | fips_standalone_sha1.o: ../../include/openssl/aes.h | ||
| 169 | fips_standalone_sha1.o: ../../include/openssl/asn1.h | ||
| 170 | fips_standalone_sha1.o: ../../include/openssl/bio.h | ||
| 171 | fips_standalone_sha1.o: ../../include/openssl/blowfish.h | ||
| 172 | fips_standalone_sha1.o: ../../include/openssl/bn.h ../../include/openssl/cast.h | ||
| 173 | fips_standalone_sha1.o: ../../include/openssl/crypto.h | ||
| 174 | fips_standalone_sha1.o: ../../include/openssl/des.h | ||
| 175 | fips_standalone_sha1.o: ../../include/openssl/des_old.h | ||
| 176 | fips_standalone_sha1.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 177 | fips_standalone_sha1.o: ../../include/openssl/e_os2.h | ||
| 178 | fips_standalone_sha1.o: ../../include/openssl/evp.h | ||
| 179 | fips_standalone_sha1.o: ../../include/openssl/fips_sha.h | ||
| 180 | fips_standalone_sha1.o: ../../include/openssl/hmac.h | ||
| 181 | fips_standalone_sha1.o: ../../include/openssl/idea.h | ||
| 182 | fips_standalone_sha1.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 183 | fips_standalone_sha1.o: ../../include/openssl/md5.h | ||
| 184 | fips_standalone_sha1.o: ../../include/openssl/mdc2.h | ||
| 185 | fips_standalone_sha1.o: ../../include/openssl/obj_mac.h | ||
| 186 | fips_standalone_sha1.o: ../../include/openssl/objects.h | ||
| 187 | fips_standalone_sha1.o: ../../include/openssl/opensslconf.h | ||
| 188 | fips_standalone_sha1.o: ../../include/openssl/opensslv.h | ||
| 189 | fips_standalone_sha1.o: ../../include/openssl/ossl_typ.h | ||
| 190 | fips_standalone_sha1.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 191 | fips_standalone_sha1.o: ../../include/openssl/rc5.h | ||
| 192 | fips_standalone_sha1.o: ../../include/openssl/ripemd.h | ||
| 193 | fips_standalone_sha1.o: ../../include/openssl/rsa.h | ||
| 194 | fips_standalone_sha1.o: ../../include/openssl/safestack.h | ||
| 195 | fips_standalone_sha1.o: ../../include/openssl/sha.h | ||
| 196 | fips_standalone_sha1.o: ../../include/openssl/stack.h | ||
| 197 | fips_standalone_sha1.o: ../../include/openssl/symhacks.h | ||
| 198 | fips_standalone_sha1.o: ../../include/openssl/ui.h | ||
| 199 | fips_standalone_sha1.o: ../../include/openssl/ui_compat.h | ||
| 200 | fips_standalone_sha1.o: fips_standalone_sha1.c | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/SHAmix.fax b/src/lib/libssl/src/fips-1.0/sha/SHAmix.fax deleted file mode 100644 index 83bcb14126..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/SHAmix.fax +++ /dev/null | |||
| @@ -1,129 +0,0 @@ | |||
| 1 | [L = 64] | ||
| 2 | |||
| 3 | Len = 16 | ||
| 4 | Msg = 98a1 | ||
| 5 | MD = 74d78642f70ca830bec75fc60a585917e388cfa4cd1d23daab1c4d9ff1010cac3e67275df64db5a6a7c7d0fda24f1fc3eb272678a7c8becff6743ee812129078 | ||
| 6 | |||
| 7 | Len = 104 | ||
| 8 | Msg = 35a37a46df4ccbadd815942249 | ||
| 9 | MD = 6f5589ea195e745654885d50de687d7fe682affc8da1fb09e681540525f04ecb93022361a27759b9e272c883564223c5e4ecafeb0daaf1abce6caa4bd4153379 | ||
| 10 | |||
| 11 | Len = 352 | ||
| 12 | Msg = a93aed0fa5e163a82c9a934aebaab8180edf7de0b32f0fe99f9c75ec305b24609334cefa372c7c758262dc8f | ||
| 13 | MD = 66a16799d606c569d2fcd70d7d8321ec90ef61711481aaf7d747744ebfd08ec2e7aead49429af7b4ceec6d8e147ed018e034efbe07982699e818db5fc4b1d71a | ||
| 14 | |||
| 15 | Len = 1016 | ||
| 16 | Msg = 433e88eb2f8aba562d15c18126fbdffb81d5d6c9397fa052321f5f78cd629708ba099b540da5451e949eeab8687a8d6ac35c531411cb37144ab5ff6a7eb46f1ab28fbcd2ea0444cd87c57bf7d3c02952dba3d3987da07622c16e7c086d90e88ad3d9d4afee301d2bad915d868f54197b70b23c9fa385c443404fbc9abf7e6a | ||
| 17 | MD = 790bc4844e9aeef8938df0ccda17890556a4151817111a526a88919cfb172f0b03c216080c1b60210eb1942097f17b6d0691bf5b018b6d959198d6a694b922c9 | ||
| 18 | |||
| 19 | Len = 13696 | ||
| 20 | Msg = 2c46a76a9dfbae1f5e59f085e9c3d4b600c24b2d404d062cf948e75a3d4ab5b137a31397be9eb34b2a03c78367e0b85448891b511ddee1f787cccd498b172cb7e656c044a03ffde8e42478330fbe9c34072a9e99ce31b41757cc820d98e7d564e06694b96b66f4be34c5eadd0ae4e61fe6abbe4d7ccee855104fedee8b451a7fcedb793d469b0094c0ed07c97fda00dd8c1662b44e3ee6775a5ef6368cb662d257be561a5967893433a4b63f97295036a37272176d081545df00852bc5c4162324161296cd51f76433f2df867a5840f2d0c8d5be00b4dc89443d82175bf69c3bdceb97facae2b2ed68e06ae74fef36d8bd1f75f130cba509341dd54079d45de22845cc8e77a022977c7540aa3e779cb1127f39f825d4d78e55a967ef45e7c1dfb02d9999fd15af2914ba47177177d94576f1091a0657d9e04fe81e6be7b631fc1baae66584c9c26ddbb568750d77555c927bcda1fbdc15c7cbe3e3fe88ca13ff12c59b383343c12976708c0e3dff78be0e286dd32eecf20b71a09fee50a9d0b13c85a15b320b162690f399282798aa3291fdd2f9c40ed873e829388466ddd1da42f2de16aaa9272ccf44790cf3c95382c304e25ae8cb2fc9d9869808f3ee7d42cb143bb0c3a55e03db6d1202ca1bdb744e448640c0aa60d3ebbda5c21e623bb080f4a073a48822725d764e51d415aad1d7c5a7f17433d15ac7d849f910c375ee0899f6a576dada42fd651343383f286009902bb62deeeb2514de6af7f09892c20d0b238f6021f03b62444b1e1f21beeb89acfcd7136416fe7bd8f202e76afaf5345311798be7cb25351add2bb044d2380221009c4d1cbbaba4cdc8631dc0144f2778a6aa1eb3d3c81df0b1b2142fce111af8214d049e40f536c5d462b9224a978e82cc6c420e70ecc3cdaffb726a183c793845315f730fa4dac9fe46e4180397107a6a051f7f0a58ceb9bf4df37e1a81c8e9569187228e8037df2e59c52ba815566768bedc8e09d5e7bdc9f2bff23aaaaf133bb5a3332750f6124ce185e29fda0851addfa2c3d52bb6dfb530fd4ee27dd5bfdce5dc2f41debe6740274bc651aecd4023b098a7d622e2296b50d51b79c4e3f521695a9d43f038e8f273405e26584d3db179e7c1758114a3d39970df674580bbf2884405974f0b9c4b0d8b3287a2314f3f81b6991812f354d655f62513c9551b378cc2efa4c3e08b313c56cada52217fb6112eb8299b28445aca8f72e7170a1cd8bbfee4d2145fbe8d49c6af8831c4d4fc7177a50ee55a7b484261504af946c6bd5e1d6b89092f3c487c0568fa07c356fae9b8e831b8320289039746a435b122cfbc4a0d316bf90d481d3b7d979cc50d98c1190af8dc58e0035557dd5e94f437f41fab513202643a77748f76c6b77302bf40c392cd18731da082c99bdedeb70e15cd68bff59619cabcc92adcf122753c55afde0817352bc247d1170b8ddba1ad1b0faadfe0efbfc5fe6334377fa372c3435691f53dfc2ad5e08966b2d3525b1eec2d993a5cd4ff34278bd40dd80313a0727d05e0a932156152f3e11a190d8d69726f5c57d20f811e1e8932e86409ffdac96c6251c2a2976b8757adcac5d2de94931d1cbea866ec8bcba5774f8a7fde792f6acfd0f01356fd66fdf54a416af6a9397e00f848a2e9831627cbcbb52b5a868ec174e69b4cfa1ed72cdf23f39d7eaf4bdb318c188b1f0fe75655e34ad71907cdb77a1a2b162cd7c22d93dc45321eafb17cd60282e83736267b3e1fb249c307d49509f50839942f0f493afd9ef37db053a918e3ec83d801bbdead07554a018b8ba348fe9b7dd92ea7c5fc0e65a644ba19aa1fb6c022ab768ec7cb249ba17b9dda2860bd4aaaa3dc70ec009804141ad5ebc61203658e57a0887ec0fded18d844a96e79ba7e879c4253056f23e205a80ab1471953438f85848f4ab31ab175c089e0bbb97ea0dd6a67385770356741966053735e2cc2ecdd2c8c75cc045181dd7267584b901674b553082b2c58fb8f8be0b99306194a6f069f684535423304d40a268d55784a14260fa9c9cb1306b82f91cbee3c9f43dea9e50903135cc1c6505605a100bfa28564a2057974eef0852b7b72ce264815026d0759f691db618ef760edde73ec888e181403834f7221bb27a69479ec9b28a3fb0c3f68d4467d25712fc48ad78763f9ea6e8a2e85260225ca1b1a38b720e589fafca29f07257c5467cb74ee53189b8c81b784c43e93f98abde1ed53af60b27b13df6ce45001c6e1813de3521028981086f7d88ba13f6fb1a800f312fbe2f842eebe847fd760c394668cfbfd353ec14ca0366eccd7b4cd63318116bdc42e20a632a0d2b8c5cddb37bfc0a239ebe3800a787d2ece077a7968036b3d9b31cd906f888e3ed742cd769033e2c24c5a9e3c10b6d300db5a17dd88 | ||
| 21 | MD = a86e07bcd19080d4a83e1384bd8189f60a7dd7a6998406ade0bf03f805375bd823c7656dd51cd9d63e542f8ade41f16d73794d60d0906424133778156ee54b95 | ||
| 22 | |||
| 23 | Len = 100816 | ||
| 24 | Msg = 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 | ||
| 25 | MD = be3cfa6c965b2ee4e6fb0236665b0b95f66c8da8b338375b7393672283b0e50b96112d7cb76fffaa6db8ea4a7687fc6234dc1ee52e764d69ba8ac40c0f51beba | ||
| 26 | |||
| 27 | [L = 48] | ||
| 28 | |||
| 29 | Len = 16 | ||
| 30 | Msg = 3a35 | ||
| 31 | MD = 87bea682792f6bb4977fe1b92e0cc7017413dd263732c3604f0ebd63c2817ce5ddc5d78c0137f614a06e72ab1cab2f4c | ||
| 32 | |||
| 33 | Len = 104 | ||
| 34 | Msg = 7db15b3ee240b45d4610950996 | ||
| 35 | MD = 7311a6356ab38a690c0b3a1581c3e7b6de418996c05e79849891b061c51d53dffc0fff2b8ad1c1eff165aee5ef6e18ff | ||
| 36 | |||
| 37 | Len = 352 | ||
| 38 | Msg = d2a1efc725c46cd6a19760f49edf0bae823c1b4992ae2260085746cf65833bd008e56e64002383f51f960239 | ||
| 39 | MD = adb1778360ec659e90609e74b6af219a01a024f216b68aa944841429ed5b03b139444b8b848f73fd5f350ef02d46b6ce | ||
| 40 | |||
| 41 | Len = 1016 | ||
| 42 | Msg = d11ad1253592c094746da7b5c88d329bc3ce1929913b8be07e82d3f6b7a536a855f31ad197376eba6f2f4534413fc4e4e7673fdff8739f774a710754b568b7c61a473059a41c98aa4e86617aa66d2601d0f0d584cd9f132afeebdc0ce3da6a8b290059e6e4aa080c195c42ae7f7e1e99865223439929b0a3a0d79b46ca6419 | ||
| 43 | MD = 0cbec7be7299f48f043c3d1aacf833b4258c32190a21a8ac2471666b4a51b63cc77fff6e081aaf5ef21b1b7523d65763 | ||
| 44 | |||
| 45 | Len = 13696 | ||
| 46 | Msg = 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 | ||
| 47 | MD = 70e1259106fc7a7c6be11d95fb673bfaf0074e342fdaefb458faf4619e7f0edbd68d509b9ca7243d2e5e039d42ee3b47 | ||
| 48 | |||
| 49 | Len = 100816 | ||
| 50 | Msg = 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 | ||
| 51 | MD = b70acba01bd715f542859a4224d035eb177fe7b34d5447e099acd1716ba6d00f515bd02021b5b3015d736b04687544de | ||
| 52 | |||
| 53 | [L = 32] | ||
| 54 | |||
| 55 | Len = 16 | ||
| 56 | Msg = 43cd | ||
| 57 | MD = 7c5f9ed821a021ef1850dd4e0b179a656fbe27b104463720f467db32bbfab5a4 | ||
| 58 | |||
| 59 | Len = 104 | ||
| 60 | Msg = 5f75a437ce0698a7d8151c3fe0 | ||
| 61 | MD = 774782a9c3023dcef8b2cb83f7994324e3cca35323419b3914a9b6bc3ace5ce1 | ||
| 62 | |||
| 63 | Len = 352 | ||
| 64 | Msg = f88bac738d1e3e10f75e46e3fe026d7e423fdcf3d7e4028b33a291bb4aabca53f780fbf99e0346d610d4a38f | ||
| 65 | MD = f114f1a390bfc30f34652751f3a38e8bdc9597625e363689459b80082eb34009 | ||
| 66 | |||
| 67 | Len = 488 | ||
| 68 | Msg = 832e5b78a73a1012ee62e00621db7f4d248893007c6e5d6e0e689c6b291baeebc72df9cf10b289fe20e7fab80a2399271d0ac63766049da875eed56264 | ||
| 69 | MD = 7d00fe393c308eadb8c0a4f771d409e17c9a796e63b45fc8e84c0cb2bdb62532 | ||
| 70 | |||
| 71 | Len = 13976 | ||
| 72 | Msg = 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 | ||
| 73 | MD = 6e5905b22cb95e48b73c5a885f5463f554d81257bd26301c4393d57fff1c8323 | ||
| 74 | |||
| 75 | Len = 48824 | ||
| 76 | Msg = 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 | ||
| 77 | MD = d7c901f0d92a868dced7e2659e90121108611dd7781325fc57e5c336c2279510 | ||
| 78 | |||
| 79 | [L = 28] | ||
| 80 | |||
| 81 | Len = 16 | ||
| 82 | Msg = 3dd2 | ||
| 83 | MD = b7399529fe614af98f9ecd73e45790406883cb22e3bdcdf28fadd033 | ||
| 84 | |||
| 85 | Len = 104 | ||
| 86 | Msg = 3d232201038fe7d846ac1bd4c6 | ||
| 87 | MD = d0aee5482c509540a4ea4b902bf42fc8df3af6de42fb14e903d1b2e4 | ||
| 88 | |||
| 89 | Len = 352 | ||
| 90 | Msg = 44c98cfc71f82215dadf494d68d1d6b92bb4eb81fa0fbf945a659d9aa2c2302b5c93fd3eedba31e479e29d36 | ||
| 91 | MD = 56c22e6066cd4c4d6415c5a225257e7f888b317ba4e98eadb72b4be0 | ||
| 92 | |||
| 93 | Len = 504 | ||
| 94 | Msg = 02a5c7b1b749d6d49bed302d9439f23ab83020bd4d573906f4190e74216ad33aceab775f71cd31092bba5cfa42f0845bd16fc1b8bed6434dedc92f80b395aa | ||
| 95 | MD = 33a84e66cf1ce6970c35807db25e05ca05809e53d4e34cda9bfc0045 | ||
| 96 | |||
| 97 | Len = 13976 | ||
| 98 | Msg = bd70deb2cafa75918308d703a6783fe9dc5e3d21de9bfeb6dbb1cd531ed5dafeec463a02abde302d4ae6ab3cdc2f0f94865e38339c88bde507ff71bbea6b30b9851cd8cf599e950b8c8e620c90adccba0033f934ca66ea0a936afdad575bb6235099beff1a632c9114a8045a0919fdc21083880eb05c0d8c489c7810aecef4a41766f67c37557e28a9db9a0d909c2b167ff7eba79693afd3ee3aeace38eb73a5a02a882cf89b123812cf2a0f6d5edd1d14362ce9c43257474def5cce3adbba8cb48e7af9a45e702a182dbf47e8869b3f99e953ba81628e502c60d4f8ffc551c31b3ad6ca85c52164839d5e9d493deee4d4b76604174bdb5655385d34ced2c1b09dd5a486e1f9ac501bc611f9d7aa5c748f496faecc14c6c18e1dfc6aee2991bd0207ea1701219955a751df43dbf66f57904675a0e9e6d7f9a0b8bb82a8f44951117ab2642d6671daf1e5d1639d48aff6a05781c2b5e8976653b0a164445872d393d30355acf0bb49bf2bed4265c9a3b786249afc7a438d706eadb6f90a7f93ad51bde6d2c8e6ff09dacb3dc67ba0d3030c54c8367e1e4280bb5903274191344610de61c3c770c6820a6cc9d826f7c743f88f13580ba23cfc00598fd733b5dd069bde7f10f2b8961c16b69761b0f308dd137f844a67f6054e065863f226141755b96645a291e3fa3fc853b2475fbe1d3b25ca22f4da4425dc95fc855e63d6699b311ebd5fec1c7753e6e81f747c808ec3f618f63eaeb1221075edff0532225c40ccadee304a8997c03920e7ce4e60e4df4d120611296786516dd4d9cdda2077ac52bce0fdf552e1ee89a0133f1f87a6f6f35f5c53958ed806465919a0a5fa42488bf29caf33a0dd469e13abae351d5c6fb1a800ee384da199c823c965d9d5457a3ef8292c4d9b142e3f1fb502da498eb44d95f8c85bcd6871bbdbf004bfdc09ab35758f5e8b6a0d0f366c3b255333c52c8fcd4ecb4536b5f6e72897649f3415443612d72c3436505249a344feeb04883f41f90ade40af119014b3c56fc108f1ab0a77087d9226665d416cd975e9e4605529c032e8926002a70924820c6c7e264a794b2a3beb63d69ae56e017294fad4d611cbd0d3847212a38f22d623eabe3b884a36464d8814286fff52c4dd366f6c2abfc2eb865e0dc9ec6e55ca9d81f1b8cc47e2629bb162e54655bf2a9e156ab0bafb4b8ce96858aeea6e6665607a3f268036f4890dad759486b15e3c9e791429ec8f11bae4ea7c490656fdb0551dcf0b0be017c08bc674bd97d9d701c3ac955e2941ba7d5f2ba122a6f0c1b164b1caf2d50df111fd4287e9e195d181f6f514d7dadbefdd4274edc234025b727680576046842a834b6ad89eccaff5c5209bb91d652357e3750d8bb0165572fb71d09fdfc60f6b1e5d868c67c0edead427e7aeb734e29b96e03ea174b6b1af523feacaf6bd745ceb1bdecec9251958b7f521182daddf62ff6c4f58977adeba81c616ff2e937ca4f16eb9c44e63f9e974709122083ae45524ff87d7a0cca33a90f09b660db0efeb393c61967de2564315827ef1cf42b71c0f822f471713c9d885a3c3281d7c95dbc96f1c6dde0af70ea11232b00a2d215ec8de8fcf84b6193b6ac9d46de660361aabed3371fa44a6f32107f3854262eac355f9ef98701f580b4649175cefc29950e7a0eec958f629999c4b0a98fd4bdaf5c0bd97c963b551f2220bd41ec00b8726836e949e818a49aa1ac5bf12c64fb9991111ce8be3e0cb9605f753dae1a4c84389416f17fb66cecba45d591b22d64e5a4edcde067a088d9ff7f5dbb9dbf324510000c55d50f480a640fb22da9b4862dd81080d61af9560b601edb5e3346263f5f193df97079a27e3f9876078b80ebdcdb17ca4c50aef0c8329c72a7f77584cd963e105eea9c28a2ad4e95c1d018e27d0e720ea59147f59ad796b80b6293da8a55ed47e8abdd37221db0a5eefff31688e2adc294654ab0fddf9c1ffafd4783f01eb539492cb35a77315d0ad19395f47b18298a7b353dcf5bab0b2f193ff73d99310478d2e5c4ff1c68a2493c138818edef73caec9977bd4eda6249c8933953e06d796b288f78b18c343ef561082fd03bf92b084afaaee741de3004abaf746350048294bc52450e31147173f2da13d6ffc5adc718e149f9df3702f414dd3ee88296ae8a0106b071b589e8696401da7993d58a9bf8e5bf417165498c96b4ff5fd2b45bbf88f551688425122a3737ca54b2992fdb4d60957a93097222c3cf4c45dabe18b9d6a69e6f27567d5adec489e4b6812c29a8fa52f1de642b7b0e749c16f54473ed5ca2fdf2199e885fed308fa62a3e0deb7e0b8e439e25b3e9f95d755fdcb7ebee9d73069dd57dd1cdc5145205882023b54f2c9dec6cced9e3f6d24e8cdbb8ef121b8f3eded574d81908e867af5ac82bfb8ed60848b4bfdc1d998bae3a9ca80c1c49601d11a40409c62b1536f01ca67 | ||
| 99 | MD = 60700d4ef068822d0fe6df450b4aa8e206b2790d6dcf973229a59889 | ||
| 100 | |||
| 101 | Len = 48824 | ||
| 102 | Msg = 5fd54472a44e4476d254c0940071ad42dc723354f76ba61f63fbb9df80d1ee56136f51b6982e66c1da83602fc08093506a9e2cf27cb92085ba5c627dd63f59f8850e91a1d86cb1d4ca38ad03160f3c584b128d9b21e935570e086d3815307ab8df396cfa0c100bf6cbfc0fd7a8258fa1a656bc178e02cfdc868540d8e5ad39dd46794a8bdc205e710555ee7421ca7475a4f3232e6a0cd55d4b5d4525f0bd7eb1e455931aeea6918b9fceb2a32706d31a6d7028a85e102f228417e2e7db68317ae155af70eda98c8dc1ecc32a62e294d92855354c1114c5735a3c81e551b63a81650107557f3237bf953989d17c65a0fafd2bb1e32c237f98f55389e8f8b0810e97e201914c487a68403c6d621a98ddc515780435564245d87ce462b8785def699f7f06ebfdf33dd1ed7dd5a3e781348298c7950a387bff7d1878731d7ac66ad9a6607f2c3a3b6843c2852a5e882a8d78ae9dce2a79d595cdf09626dfa6f1dba7d40ed21caa29e304e7dbd559a89bd1f07d84165dc259ef112dc6e2c5a3e82b1c50106983f6c4965c85073c5deddbe6323003d56abb0df590f69010981ab3407e43eeaa29c6156995c492c931fff1b686eda3741a0bfb9094747d1620b2580415d431ffd6c02245f6cb03e39f87e82834dcea59355b2ba663ce145d2514e15e2b2c60cf518ff510c6c3e2f16d2dc523832762ed8352a320462ddd4d6fe755350672038163d996b44ed3b85d64989291bdf39398cb996de785b9614ec5d4bd73efcfa37fd4470b17d6240b8e4c715759286b04c3d7d791e2689927c9f18320ff2e6bc7306c805e23a5de66eced5f1a630cb43dd46db515f837f6b824b99b86c10b6df7fcf22d97be05284edf0e0be597b3f9c63556db031339f79ac9e6c5f8a1cefdbb4b30f5bcd23c2a4dcf791cbfdd6460284c5af0621ab7c5571e40a87c87be459c85ec81d746930dea24f43bb11d6611ea83409d3bf4f987778d8eed1d5b246a2112ef78ef0252f9ae464810c13f02359441d289958b4766807d9a3be0054897d35b01830deec1151f9e3d42f92b80f4aeedd65c78c6e98afc562a3bcf6d72f238c6e94a38f2288ac7929a7a61c92875c1f115c0ed8d261a727f0794f17ceaa3dabc717478f6ce7f2e8b295f000241e154b4575bfac8483f6b62f9ef4e18f7d341a65faad5e2fc1ddaf2b09adebc155ff09e63d5aa5f95206e66c7f4ef2ae3aaf3ea7c93589efa8c552df8d203e0ea181c1703d7023b56e603f33b4adb9bf44f7af290d8081210f327a6c9b0785709346087fd090c42d2b8b2711b9a1a5173eb5e246320ee27867ad6c3eadc4407bada44561a12cf5d53bf0448308bb536a8a525eabc1410c3a34becee25fd6fda453251ec229b53751f2280e142c6b331daa659ab655b78cfb08bf18e40bb02b7f1650eb2dd4ba1707f0aafa219f21c29521581ce249e2e34f5656b0a04c00485079b040e13cbc038bb9f17f47cb8f908591b26bdc28538d8baffe4cc39b17d2ecffbb9698bc2b8b31b08424034c051b535e0cfdf07b7a0a54781e33ba739759991aeb72c0ed992cbe76eb8ec0ab12c182e8b049cbadd6e82e314f1bf15fef5ae95dc86bd64b8556766f8ff62c33492198e454e5ca59ea856d8e095c04da8045522abac865506096ee1cfa1082af08ca09b3533878ea3580b6c0c57a615e0ab768246b3eda96bb6caa01a2648068e21959f843d853e948588e8c0bfda364ef1f9fbd3235c27916562eb0214891eb55ae0e059f4bf7d1838b5942656c27899dec6d67b823a981d1e1e0aaff5323b0e3d69a7dddf9b12d7787ab763a3c7a2697ac65b655aefc4bae7e6444850ad2540d5193b378682c77a4dbf9aa22e517e68cedfd1ba32e3730ecaa2e3f6ae61a4f427d6e69071dd62a9bf6c860980c9d23ce1fa82a1937e6dc1ce3a2de096b680d23d89ee102912ac0bd769c1c02095678dbb00b4430428797cfb966b2f901480811e1b9cde358b6d499c9e93f0961f050465d7b0c70d4961e75a9fe40a24e36eaad27238231dae6d0a17f446c16bce7348e669be563649eba9f23be29adb8b10f462780a066ae573f74e51215a26097b02469c25180890e06acc53ab063c742e08d51359b0a39749b84b9f6be44f3ae3da8e5a2f340a8607d4eed08877d007928d332d6f49502bb5f416c46d866fc87477c58a22d3c5932a8d6298c1151daa032c84ad92f8f90b8053b5aa6f690d1bf682f314471cbf200f3d30959e07adc6488dd17b0be5279e727f3237b8b4b19b31a220dfe63882937f8d5ead677608c42a57217f2239614c521d94559290e3b0ed8055d5474e96564224f6ca6389b40a71337da11e1c307dead8e4eb43252cc2f1c49addb18781cf20acffd3db693b02e5c8ecc949b51b99005529e0149a13390615f5df6e0bcd68e1ca82b0173d25134dbf76dfe92daa085d3f6b1e4d18217df41b70c4c40101884c2886495f2ef8a473bf23cb47ab6533c93cb38c36c6dcf6837f1272fc91a6962b6e1386fb643e1f1d71fc75ab58d5800bf4081217cdce0c7ae9e3d25de543fc4444314f32067eeb147c08c55c5c8158ed11729837547f28a300eccc312260215f50e98c4e3d4170208a50a4a4def1243538f906df8476b0c46d3449be73866d463d422595300e160840daf8c906ae4aac13a64457853b0ea6d8c32f4efe3b48c0b1450250086d459648b0ab14fd3f341a4a803be77e56a811e7a26827eb0a1a9454f90bc6ece665904adaa3cdeb2c4847858fd1d79750e8cd45d8da9163784b8bd06629410502debfed5eca3cf8fef0fa6bdcef6efaaf35a1986d6fd68e0f436dca9442077a4818ebda4606a94a3c93fda46e7ef5ccfef656896a0d3d93566b02ed8c3f6174417cdcb99a415b0c6e9816d94e64b438c295b4bfd69e0d9ad52911de5509971b7370593160629b641d690eb2828bf363857983e3b9098fcd15e66448f786f196685d2ceaa251b17ad06dacd614d9fa78ce0a8b9c1c360b529d0bc1d17ba0b70ea8ac1b8d67f6e5770f0cbaee0b38109d26b09493060dc851f5fef121e83e30aab9c3efc2b8397e8362aefea1708f7ffa14d3656f7f7610f3a629bce14648a593250c6f309c02c6c552bb42984ac58db920dbc7d98f59295f37f3e9b99da55ef074ed65801b390366669b4c7aa1c483ffd23082793f9e5cbe30c34250f63fa3ea2cd097593dc67e8d27b7e4f07e73a9f7b33a5ef6962df1381a038d4f58fdbca9d71ccf640b917f631b75d4a2e8ba46c64a6223f99cee30f47c1a935dccc7f054fc39d3498c824e10cc3ee337e781a3971f0e98295aca611bde701c2359858914248f6bafc88232bbc27bd85883b00990bba7862fd7a7cbd4c86df049071fcd10d686613ec877758d83927cacc530bed9a596b5b21c6fb748c379d676de7e05719a867c9f934b5dad99ed97dcb4e70a9b6542ed5b2f086d9f56fc9752e788785ef8f7837a31e433438cf2f18f58be37fe8412f6d21a5c35000a5efb862926700079413f76ab2c3e79e20b516eba9d8c29897097bee55157936607cabaac41337ea4cc783c0809c875259f8020e16d5045fcc39ac796d11a82f25fcc9579bf0a010200f5745065175fdc15474ed514cc796672c59637c3c8f236cfc9c0978a3db1194680c58c27746090d76ca09f7c48ee4ee7e1d3cf0ea70dbbbd88e30e8814b57404dfd7c33727a0c84cb7bd468b0bcb3c89b526679c00fb0892d2a5e7a3d73698a3db53fd7d78460cdcf24ed22b5f39b8c00b3506541ae4a5b76fae29c1cd5b0f8c3ce142e0af7ae4efe3fa4c438a604bf4a9abb41e3fef1b9227a7dccc3f4d6026ca289b4b1366d9ed546abbbbd5677c8d582e79e2b544f18dc23809ab753313d84dd10fa3ed2f723f0b46277b8877d4f3e0665e88c50caf0f0708b746b736b00c8c83a7d18500384bd035996aebb7da8f09fd6af9b76fde7fbfc0ee854d7ec02950e76abd23ffb27a6ddf1772465016c79b98a61bd3940547b207b6507e32cb9761a5604f0f546834a8edac7ae06910045de218d761a4accea886188f947b57bd876491709028e2e24b075d6b022b51af1880ca16a8c65b7c69e51b2ad580ee058acc0606f0a3a9ea1cd4342bf4be602e941dc4bef1239bb9bccbc8098a6a17d63186c6fa75ec44b6e4fd38a3fe49c5eb995f0cb884e2f3ed6be02515fa605b98453ad935682c3bac6a2971bb68f4094cefeeaceda92dec803ccd3d346f8b40b48f8f489e118a17367801e85c79e9b3bb5d73ac44a8290cdbf83a154f2f125090d42e1a1cb72f5ebbd42da46c7a4d4b9fad9612a4c800de6467ceb74f831e1395dfbf5799a3429ba34754add4b34b5960a5fee8f752dae78450322a1ab3d7102b77e907fc1eec5355991e0c7d6c0866660e5436248edeb1a37c0e769a0764cfbb6354332d6e55103b9235c84eedaff918af3f0213c435c32ab409a4b5c7eed8ab6ca9e313dba459bcfa3ee92e7d669be0526856ac3c06a57fbecbba553a9cb4655a901d98af02b74098e478076655d325bd7639d73d7ae00c62fdc361a997ea4ff5b0eba33096b12f35cc7cc0eea62950b912b47c11b9fb386a47c4c15c0602d304b2541da889cff299a1fd415e7e25c70ee4cd83feea7e6a9c50c75d9b128458513d61ec5d0299ef8c090472fe0850f384938ed44d36f10cc2c1d31daee3f946a2fa18f9982a988fd6ac973b1569313ce3c8ff5746c4dd85a241f1e9dca0e904c091832ca028533a3e34c184edcc510bf22a27f530bdca3d057928a96f72dafc73a9aa6dbf2552598e468735cc5736c67a620e9455483e9cb2108045ad80569582ea93a53b491e528c8df336fb326ad74317bc1dfb8ec30a73af01a5dff3e437b7fe48ba5dbb3e8f01ae0c6fc28675a415f23a796bb6e0ef0efeb4b14cf20d4ad88ad1966da43a76b454dac8687bdd97b89b8f8eede91eb34ca4a0523ea65736ae39341fb32b9b716f25662a37382c16f3b9c346c84f03bef54acd6efb364c6401b07b3f7679e8e7f8c9b77b75e6e98b90f4df88460f1978d19744eecccb743a999aaedd00b5a94018e9d5a56bac9d5d55f6e93bad52e84aa7340cbbf98d56213d9dd3e1970867e3972dc98e61b3cff40b64ec49463ff79a41c82dbbcaa37a82b761f432849aa83a3d3c9a209e2207b87ae9ed9959ffced165fcb0d8873668c3cd8f18ba0f92f7acd2bf50416c22ce11692bf6132eb9f558dc789cf9776da94e48cf48607f19d9a11d5df4db11dbaa67a1d20e9f0c96f5956ee3f906e371c489efc88b0c1e56d881e7bf8dd5d6742622eb873e253dbe54f2e2e6d0e6136941de8c23e9a632727bb5f88c23170316c7aa0df28d8d07589dd6022828834f7ea9b4e5876a1704944aa3186dbf89e0e81767cfba03bfb38c55a9945209c4dfd88272c49d1745dce5ceb40f0a6713b5139dc2fb87a8a4888406d2610b7b910a9e5782ef0df719028d8e50a40a269dc9bee12157038522d06537bb31fc87d21af9ad4b2e7e127bbdb313e0a116010f65126cedadd4a122d15a71cbcccc346f55100e354b997154567fe3caccd50251d137c58fc3a2048dd5883b6af9248b51040c01a80c051b8a151a8878edf0304b5554746d6116b749221a1d0082ac925e6e140f0c3b6a180742ac8a50ce0e93e6399102f151d7c14000369ff52d0b537fdd51bec99e7271b1255c6fbc36d83408c417f6825a8e2a58b9054ab2c3ead69d97ea9947fec32d720653c123ecf51a9a3f0ed88743e3fb7b94aea59d0bf0219ee50825ef220554312cb907edb90e4d85f29e316ad57d3b90d859391fcfc63e6c0fd3ec27d4e1efd6e0b5ca8165cbd6af25ed8792d805f27fce308ca1d51335ed5d727558dafe05486a6f9149b8d3bc022026656714222830be582889e6800c0b170e48ebfd069e711210e4ac7acf07652a6f5051507de68aeffc9540cab5cdac84ceee46059ec23820c04b127266c0bf8df0d2b856be3377ab42592f495980baeddbeed3ba707a85dba64fe36941eefa8fd37204ec8c18df3852febd2b142b1c9a5cd0f9e424cd408ceb7788270899fd793db99ddb8f9ca8df550c513790d8bad37a1d1f4a62c4527bb64c677462c9b093582decea70c7bbe873095536728e7ce05d5cafb5d166a1f03055e918f787fb244c5857e3d7a1009bd37f30f165564a082c1510ed19bb1633811a76da70dac67641c2478c6b335f409ef54a2d0f370c9510d0aabae3cb998bd023778375cbf9cf5ef125afd584c11efbf40bb51839aacd3016e5e4d79f134245f952dbad617c78cb6f5712bd9c0c7e1303db5029640cf9b56e29329c3e6a9e0a2371aac1a437b9b1c4477ec9842aa80eaa22c5eac11b60c661de6ddbb088e844293ab8589c13d938765bbaa44301e4137148dd0257bd4c8c766c5d3bfe53671e9417cd1b52f622870ffd90f4e17b7a4ae1b5601a2edb032e353bca652fb565beea6fb0b2cdcadac71794c662677fb1dc81d116d94f5eced526b37c004b95284cb6aa2ac415754a1f14882595dcf4d3f1d905c6e8c12cf5a9d23d3ab55bdaf9f17d2f03f933e1bab89040753648c426b072b73aee8c2fc0d1c03fce2c656e20d4c96803fb2ef471b912267eecb4d6f342d3513894b94d77767823fe0c7438e51f21bcf16f0e98b94b23a10760271281cf843989824f7061bf834f93fd8d2090f70e939700dcb4d8964a19da39a9601a7e0ed9f55f567fc7d5682d55a9ba0e68861756bb549f2f17c10ff6bd2042a80477f89743d3d762f1dfaf230bb502eab6f4c46b26135ff3bef5faa179bdfbd288e3cadd3d88d8012706e19b7fcc6e9cc2699d3ba0e624e715599480d6b7dbc6eeea0d12a9236444b17285fc7794040dd40c2b2ef175f7f3641664fc9bb7ea6d7eb3489d504f8013d64a23aebcb5ce233405f5ade067dffff253f27e926431ad806703e8fab23656e0b7431916d8d4c72a7d831e3664e5f30839c76c8167b76f3b2dc75a6ef48df515e06ea54ca51de2fd9c5eeabb1610b7eef06a2f3167859cf82e1a5b76be8ed8beee2bba28c3b15af6890d7a37226834ec9f63306a0da11aff918753d8b83fe7220803c070db98195d6d18357233f5504a6e3bd6f30115d3987f93aa5d89aa0b8b577d1fed94da057a6f088233efc0f44f86798896eae9ad0b20c8c9cdd9d72a3f02213f6797800894b864cb44fed009440fa5b0197023929f9bad16f052cc2d87327788a68b9209f46fb4776b092d75713048b5453ccd699d19cafa8e9a93fdab0f0863711916efe3bd81ee71b8e0221e12e9ffe2f6ee1a4dc1a8de6e593480f3c05b3691e916a4a7ca51971eb2f0f693dd10f6b8468f8cf7bcce285938b5a0a76ef86acfa2990f88bdafdc39a065db17b845028ed2b7a9e331c44217de20440e406868f1eca818d0be20248c2948b8f4cb118b2e456e585949139270f57c54715f3297bf714aa7c5f72ed8ddf6a074703ffbf95e45bc81a02c42822c22d2b718f2de5e03d687a4b18d605ef5ae75f9d43c8cb4e77aaa0c0101d978120f29574b22f52783c667f7daab3e1f9cfacf2e68e94a24918e3fe2c4f061deeb64891b5217fe5908e7f389897751839982b7fb736fbfb1232684e93123611b7fc8fbeb74f8815b5ae13240051920f3b6ed34483ff673c467ed7f0a8fbf619796e485affbed0697415d2d0598ba34d5b9e44ffd12a5edc323883a2e28efe9baf860324f2d2016748503eac1888213926b0e0f0335a4b51820a2bd3b42d982ec6ce307b453b6385aed7a735a1e98479394147c40f01c532926e10e1b26a5b395bc150ec4b4daf5b1436bd0baa225583ffc9d9e9d8a354f60fded37b41c7c051daea04e689ab2d4e24d7d07c75c50ccfd6a527e024d1632246c6f40f06b86ffec0b29cf894b665d53d459226b93422d37a8da23587fe884dc3c0f2fb55dea296a9a5b9a0d101f186d9fa6288c912202547cdf958569d2cbf235740eed38d10b0025dbb6de31058e98780d22149c19d4bcaf06dd7353fd91cd1f47e47f45622e1472542be2f63f463d253617eafd4f2ad609f9020884905dd5c22fba53ccc619104b6c0203a7f6c8c26fc80ff6fceb8c0c51600c2e46b4b872e6d597511524545a76cb42278b519d911e6c1320e01682c551e204ccdf91290c52e0836167a5685cbb1af338eb794c10fac92950f3f7956acf28f1ca984e380bcff9876b0c71dc7ce4011d1d0f955da9ca885c6e7bb74c6194dadb0fb9146dd725c8a9574aaf3824b727c9be3fce59c35850b162c17d3013689fca858a0a51d81cf4f30d6a8705bbfe35ff03c34cc7c56aca32140d72c8e8121fc71353596b777b266d75b322c9a97fd2c5d4e2362f19c99de66da7bd9c495c03d9a15b28431a0c051e786fa80f5503a72519e6b419263d72d553d688349c0cf30918eba0622b953a0efce4415c29515c26ba15f00e548ef108afe3f8194aeb965e5e4be94f10df6c45ea5c133a8c3398d09fb80f950b83c1866a1637d2bcc195e05cc32a9233b244cc2b1d4930e66f032cb1163c37b3e58b576ab76de759569797fa9b8bb4fad66aaaa56f09c7a0ce4641d6799d7bb47cf684990ec1e08871458c211a353ccf1285e7429c7b8520180918f7 | ||
| 103 | MD = 85747c796a910421ecb364b4b4f0e68b49e9217944f6586eac4993ec | ||
| 104 | |||
| 105 | [L = 20] | ||
| 106 | |||
| 107 | Len = 16 | ||
| 108 | Msg = 8a61 | ||
| 109 | MD = 60bdeabf39efdf21ba9c0f94af6552d2ffe699e1 | ||
| 110 | |||
| 111 | Len = 104 | ||
| 112 | Msg = 37487aa02b03bdbc6bc62e7e26 | ||
| 113 | MD = f146072f92dc4a551721a10bf0b01564cc2b43df | ||
| 114 | |||
| 115 | Len = 352 | ||
| 116 | Msg = 6ecd002568bae3bf1873993041bfa292eb94e9ad092d8eb3585be82e8a20cb36a47a06e7a57d301268a4a533 | ||
| 117 | MD = b0a2d6033cf1d8ff120a605b745d736ee4aa06d2 | ||
| 118 | |||
| 119 | Len = 504 | ||
| 120 | Msg = f6dc1d2f6b8e126d99939664693d8709513f97d730074ec2794e536d94ede79c81f2b2ecbff3c2c26ca2d181ada2c60050997f3bb087ce48d956c18dedb227 | ||
| 121 | MD = 395dd2989edc854746e384f339f0808c515747be | ||
| 122 | |||
| 123 | Len = 13976 | ||
| 124 | Msg = 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 | ||
| 125 | MD = 1adccf11e5b7ce2a3ddf71e920138c8647ad699c | ||
| 126 | |||
| 127 | Len = 48824 | ||
| 128 | Msg = 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 | ||
| 129 | MD = 2cbc07b9b9c819b8fd38d8a614a8a9c3fa7e40ee | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/SHAmix.req b/src/lib/libssl/src/fips-1.0/sha/SHAmix.req deleted file mode 100644 index 453fce20ce..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/SHAmix.req +++ /dev/null | |||
| @@ -1,99 +0,0 @@ | |||
| 1 | [L = 64] | ||
| 2 | |||
| 3 | Len = 16 | ||
| 4 | Msg = 98a1 | ||
| 5 | |||
| 6 | Len = 104 | ||
| 7 | Msg = 35a37a46df4ccbadd815942249 | ||
| 8 | |||
| 9 | Len = 352 | ||
| 10 | Msg = a93aed0fa5e163a82c9a934aebaab8180edf7de0b32f0fe99f9c75ec305b24609334cefa372c7c758262dc8f | ||
| 11 | |||
| 12 | Len = 1016 | ||
| 13 | Msg = 433e88eb2f8aba562d15c18126fbdffb81d5d6c9397fa052321f5f78cd629708ba099b540da5451e949eeab8687a8d6ac35c531411cb37144ab5ff6a7eb46f1ab28fbcd2ea0444cd87c57bf7d3c02952dba3d3987da07622c16e7c086d90e88ad3d9d4afee301d2bad915d868f54197b70b23c9fa385c443404fbc9abf7e6a | ||
| 14 | |||
| 15 | Len = 13696 | ||
| 16 | Msg = 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 | ||
| 17 | |||
| 18 | Len = 100816 | ||
| 19 | Msg = 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 | ||
| 20 | |||
| 21 | [L = 48] | ||
| 22 | |||
| 23 | Len = 16 | ||
| 24 | Msg = 3a35 | ||
| 25 | |||
| 26 | Len = 104 | ||
| 27 | Msg = 7db15b3ee240b45d4610950996 | ||
| 28 | |||
| 29 | Len = 352 | ||
| 30 | Msg = d2a1efc725c46cd6a19760f49edf0bae823c1b4992ae2260085746cf65833bd008e56e64002383f51f960239 | ||
| 31 | |||
| 32 | Len = 1016 | ||
| 33 | Msg = d11ad1253592c094746da7b5c88d329bc3ce1929913b8be07e82d3f6b7a536a855f31ad197376eba6f2f4534413fc4e4e7673fdff8739f774a710754b568b7c61a473059a41c98aa4e86617aa66d2601d0f0d584cd9f132afeebdc0ce3da6a8b290059e6e4aa080c195c42ae7f7e1e99865223439929b0a3a0d79b46ca6419 | ||
| 34 | |||
| 35 | Len = 13696 | ||
| 36 | Msg = 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 | ||
| 37 | |||
| 38 | Len = 100816 | ||
| 39 | Msg = 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 | ||
| 40 | |||
| 41 | [L = 32] | ||
| 42 | |||
| 43 | Len = 16 | ||
| 44 | Msg = 43cd | ||
| 45 | |||
| 46 | Len = 104 | ||
| 47 | Msg = 5f75a437ce0698a7d8151c3fe0 | ||
| 48 | |||
| 49 | Len = 352 | ||
| 50 | Msg = f88bac738d1e3e10f75e46e3fe026d7e423fdcf3d7e4028b33a291bb4aabca53f780fbf99e0346d610d4a38f | ||
| 51 | |||
| 52 | Len = 488 | ||
| 53 | Msg = 832e5b78a73a1012ee62e00621db7f4d248893007c6e5d6e0e689c6b291baeebc72df9cf10b289fe20e7fab80a2399271d0ac63766049da875eed56264 | ||
| 54 | |||
| 55 | Len = 13976 | ||
| 56 | Msg = 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 | ||
| 57 | |||
| 58 | Len = 48824 | ||
| 59 | Msg = 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 | ||
| 60 | |||
| 61 | [L = 28] | ||
| 62 | |||
| 63 | Len = 16 | ||
| 64 | Msg = 3dd2 | ||
| 65 | |||
| 66 | Len = 104 | ||
| 67 | Msg = 3d232201038fe7d846ac1bd4c6 | ||
| 68 | |||
| 69 | Len = 352 | ||
| 70 | Msg = 44c98cfc71f82215dadf494d68d1d6b92bb4eb81fa0fbf945a659d9aa2c2302b5c93fd3eedba31e479e29d36 | ||
| 71 | |||
| 72 | Len = 504 | ||
| 73 | Msg = 02a5c7b1b749d6d49bed302d9439f23ab83020bd4d573906f4190e74216ad33aceab775f71cd31092bba5cfa42f0845bd16fc1b8bed6434dedc92f80b395aa | ||
| 74 | |||
| 75 | Len = 13976 | ||
| 76 | Msg = bd70deb2cafa75918308d703a6783fe9dc5e3d21de9bfeb6dbb1cd531ed5dafeec463a02abde302d4ae6ab3cdc2f0f94865e38339c88bde507ff71bbea6b30b9851cd8cf599e950b8c8e620c90adccba0033f934ca66ea0a936afdad575bb6235099beff1a632c9114a8045a0919fdc21083880eb05c0d8c489c7810aecef4a41766f67c37557e28a9db9a0d909c2b167ff7eba79693afd3ee3aeace38eb73a5a02a882cf89b123812cf2a0f6d5edd1d14362ce9c43257474def5cce3adbba8cb48e7af9a45e702a182dbf47e8869b3f99e953ba81628e502c60d4f8ffc551c31b3ad6ca85c52164839d5e9d493deee4d4b76604174bdb5655385d34ced2c1b09dd5a486e1f9ac501bc611f9d7aa5c748f496faecc14c6c18e1dfc6aee2991bd0207ea1701219955a751df43dbf66f57904675a0e9e6d7f9a0b8bb82a8f44951117ab2642d6671daf1e5d1639d48aff6a05781c2b5e8976653b0a164445872d393d30355acf0bb49bf2bed4265c9a3b786249afc7a438d706eadb6f90a7f93ad51bde6d2c8e6ff09dacb3dc67ba0d3030c54c8367e1e4280bb5903274191344610de61c3c770c6820a6cc9d826f7c743f88f13580ba23cfc00598fd733b5dd069bde7f10f2b8961c16b69761b0f308dd137f844a67f6054e065863f226141755b96645a291e3fa3fc853b2475fbe1d3b25ca22f4da4425dc95fc855e63d6699b311ebd5fec1c7753e6e81f747c808ec3f618f63eaeb1221075edff0532225c40ccadee304a8997c03920e7ce4e60e4df4d120611296786516dd4d9cdda2077ac52bce0fdf552e1ee89a0133f1f87a6f6f35f5c53958ed806465919a0a5fa42488bf29caf33a0dd469e13abae351d5c6fb1a800ee384da199c823c965d9d5457a3ef8292c4d9b142e3f1fb502da498eb44d95f8c85bcd6871bbdbf004bfdc09ab35758f5e8b6a0d0f366c3b255333c52c8fcd4ecb4536b5f6e72897649f3415443612d72c3436505249a344feeb04883f41f90ade40af119014b3c56fc108f1ab0a77087d9226665d416cd975e9e4605529c032e8926002a70924820c6c7e264a794b2a3beb63d69ae56e017294fad4d611cbd0d3847212a38f22d623eabe3b884a36464d8814286fff52c4dd366f6c2abfc2eb865e0dc9ec6e55ca9d81f1b8cc47e2629bb162e54655bf2a9e156ab0bafb4b8ce96858aeea6e6665607a3f268036f4890dad759486b15e3c9e791429ec8f11bae4ea7c490656fdb0551dcf0b0be017c08bc674bd97d9d701c3ac955e2941ba7d5f2ba122a6f0c1b164b1caf2d50df111fd4287e9e195d181f6f514d7dadbefdd4274edc234025b727680576046842a834b6ad89eccaff5c5209bb91d652357e3750d8bb0165572fb71d09fdfc60f6b1e5d868c67c0edead427e7aeb734e29b96e03ea174b6b1af523feacaf6bd745ceb1bdecec9251958b7f521182daddf62ff6c4f58977adeba81c616ff2e937ca4f16eb9c44e63f9e974709122083ae45524ff87d7a0cca33a90f09b660db0efeb393c61967de2564315827ef1cf42b71c0f822f471713c9d885a3c3281d7c95dbc96f1c6dde0af70ea11232b00a2d215ec8de8fcf84b6193b6ac9d46de660361aabed3371fa44a6f32107f3854262eac355f9ef98701f580b4649175cefc29950e7a0eec958f629999c4b0a98fd4bdaf5c0bd97c963b551f2220bd41ec00b8726836e949e818a49aa1ac5bf12c64fb9991111ce8be3e0cb9605f753dae1a4c84389416f17fb66cecba45d591b22d64e5a4edcde067a088d9ff7f5dbb9dbf324510000c55d50f480a640fb22da9b4862dd81080d61af9560b601edb5e3346263f5f193df97079a27e3f9876078b80ebdcdb17ca4c50aef0c8329c72a7f77584cd963e105eea9c28a2ad4e95c1d018e27d0e720ea59147f59ad796b80b6293da8a55ed47e8abdd37221db0a5eefff31688e2adc294654ab0fddf9c1ffafd4783f01eb539492cb35a77315d0ad19395f47b18298a7b353dcf5bab0b2f193ff73d99310478d2e5c4ff1c68a2493c138818edef73caec9977bd4eda6249c8933953e06d796b288f78b18c343ef561082fd03bf92b084afaaee741de3004abaf746350048294bc52450e31147173f2da13d6ffc5adc718e149f9df3702f414dd3ee88296ae8a0106b071b589e8696401da7993d58a9bf8e5bf417165498c96b4ff5fd2b45bbf88f551688425122a3737ca54b2992fdb4d60957a93097222c3cf4c45dabe18b9d6a69e6f27567d5adec489e4b6812c29a8fa52f1de642b7b0e749c16f54473ed5ca2fdf2199e885fed308fa62a3e0deb7e0b8e439e25b3e9f95d755fdcb7ebee9d73069dd57dd1cdc5145205882023b54f2c9dec6cced9e3f6d24e8cdbb8ef121b8f3eded574d81908e867af5ac82bfb8ed60848b4bfdc1d998bae3a9ca80c1c49601d11a40409c62b1536f01ca67 | ||
| 77 | |||
| 78 | Len = 48824 | ||
| 79 | Msg = 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 | ||
| 80 | |||
| 81 | [L = 20] | ||
| 82 | |||
| 83 | Len = 16 | ||
| 84 | Msg = 8a61 | ||
| 85 | |||
| 86 | Len = 104 | ||
| 87 | Msg = 37487aa02b03bdbc6bc62e7e26 | ||
| 88 | |||
| 89 | Len = 352 | ||
| 90 | Msg = 6ecd002568bae3bf1873993041bfa292eb94e9ad092d8eb3585be82e8a20cb36a47a06e7a57d301268a4a533 | ||
| 91 | |||
| 92 | Len = 504 | ||
| 93 | Msg = f6dc1d2f6b8e126d99939664693d8709513f97d730074ec2794e536d94ede79c81f2b2ecbff3c2c26ca2d181ada2c60050997f3bb087ce48d956c18dedb227 | ||
| 94 | |||
| 95 | Len = 13976 | ||
| 96 | Msg = 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 | ||
| 97 | |||
| 98 | Len = 48824 | ||
| 99 | Msg = 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 | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/asm/fips-sx86-elf.s b/src/lib/libssl/src/fips-1.0/sha/asm/fips-sx86-elf.s deleted file mode 100644 index 2a4d98791d..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/asm/fips-sx86-elf.s +++ /dev/null | |||
| @@ -1,1568 +0,0 @@ | |||
| 1 | |||
| 2 | |||
| 3 | |||
| 4 | |||
| 5 | |||
| 6 | |||
| 7 | .file "sha1-586.s" | ||
| 8 | .version "01.01" | ||
| 9 | gcc2_compiled.: | ||
| 10 | .text | ||
| 11 | .align 16 | ||
| 12 | .globl sha1_block_asm_data_order | ||
| 13 | .type sha1_block_asm_data_order,@function | ||
| 14 | sha1_block_asm_data_order: | ||
| 15 | movl 12(%esp), %ecx | ||
| 16 | pushl %esi | ||
| 17 | sall $6, %ecx | ||
| 18 | movl 12(%esp), %esi | ||
| 19 | pushl %ebp | ||
| 20 | addl %esi, %ecx | ||
| 21 | pushl %ebx | ||
| 22 | movl 16(%esp), %ebp | ||
| 23 | pushl %edi | ||
| 24 | movl 12(%ebp), %edx | ||
| 25 | subl $108, %esp | ||
| 26 | movl 16(%ebp), %edi | ||
| 27 | movl 8(%ebp), %ebx | ||
| 28 | movl %ecx, 68(%esp) | ||
| 29 | |||
| 30 | .L000start: | ||
| 31 | |||
| 32 | movl (%esi), %eax | ||
| 33 | movl 4(%esi), %ecx | ||
| 34 | |||
| 35 | xchgb %al, %ah | ||
| 36 | rorl $16, %eax | ||
| 37 | xchgb %al, %ah | ||
| 38 | |||
| 39 | xchgb %cl, %ch | ||
| 40 | rorl $16, %ecx | ||
| 41 | xchgb %cl, %ch | ||
| 42 | movl %eax, (%esp) | ||
| 43 | movl %ecx, 4(%esp) | ||
| 44 | movl 8(%esi), %eax | ||
| 45 | movl 12(%esi), %ecx | ||
| 46 | |||
| 47 | xchgb %al, %ah | ||
| 48 | rorl $16, %eax | ||
| 49 | xchgb %al, %ah | ||
| 50 | |||
| 51 | xchgb %cl, %ch | ||
| 52 | rorl $16, %ecx | ||
| 53 | xchgb %cl, %ch | ||
| 54 | movl %eax, 8(%esp) | ||
| 55 | movl %ecx, 12(%esp) | ||
| 56 | movl 16(%esi), %eax | ||
| 57 | movl 20(%esi), %ecx | ||
| 58 | |||
| 59 | xchgb %al, %ah | ||
| 60 | rorl $16, %eax | ||
| 61 | xchgb %al, %ah | ||
| 62 | |||
| 63 | xchgb %cl, %ch | ||
| 64 | rorl $16, %ecx | ||
| 65 | xchgb %cl, %ch | ||
| 66 | movl %eax, 16(%esp) | ||
| 67 | movl %ecx, 20(%esp) | ||
| 68 | movl 24(%esi), %eax | ||
| 69 | movl 28(%esi), %ecx | ||
| 70 | |||
| 71 | xchgb %al, %ah | ||
| 72 | rorl $16, %eax | ||
| 73 | xchgb %al, %ah | ||
| 74 | |||
| 75 | xchgb %cl, %ch | ||
| 76 | rorl $16, %ecx | ||
| 77 | xchgb %cl, %ch | ||
| 78 | movl %eax, 24(%esp) | ||
| 79 | movl %ecx, 28(%esp) | ||
| 80 | movl 32(%esi), %eax | ||
| 81 | movl 36(%esi), %ecx | ||
| 82 | |||
| 83 | xchgb %al, %ah | ||
| 84 | rorl $16, %eax | ||
| 85 | xchgb %al, %ah | ||
| 86 | |||
| 87 | xchgb %cl, %ch | ||
| 88 | rorl $16, %ecx | ||
| 89 | xchgb %cl, %ch | ||
| 90 | movl %eax, 32(%esp) | ||
| 91 | movl %ecx, 36(%esp) | ||
| 92 | movl 40(%esi), %eax | ||
| 93 | movl 44(%esi), %ecx | ||
| 94 | |||
| 95 | xchgb %al, %ah | ||
| 96 | rorl $16, %eax | ||
| 97 | xchgb %al, %ah | ||
| 98 | |||
| 99 | xchgb %cl, %ch | ||
| 100 | rorl $16, %ecx | ||
| 101 | xchgb %cl, %ch | ||
| 102 | movl %eax, 40(%esp) | ||
| 103 | movl %ecx, 44(%esp) | ||
| 104 | movl 48(%esi), %eax | ||
| 105 | movl 52(%esi), %ecx | ||
| 106 | |||
| 107 | xchgb %al, %ah | ||
| 108 | rorl $16, %eax | ||
| 109 | xchgb %al, %ah | ||
| 110 | |||
| 111 | xchgb %cl, %ch | ||
| 112 | rorl $16, %ecx | ||
| 113 | xchgb %cl, %ch | ||
| 114 | movl %eax, 48(%esp) | ||
| 115 | movl %ecx, 52(%esp) | ||
| 116 | movl 56(%esi), %eax | ||
| 117 | movl 60(%esi), %ecx | ||
| 118 | |||
| 119 | xchgb %al, %ah | ||
| 120 | rorl $16, %eax | ||
| 121 | xchgb %al, %ah | ||
| 122 | |||
| 123 | xchgb %cl, %ch | ||
| 124 | rorl $16, %ecx | ||
| 125 | xchgb %cl, %ch | ||
| 126 | movl %eax, 56(%esp) | ||
| 127 | movl %ecx, 60(%esp) | ||
| 128 | |||
| 129 | |||
| 130 | movl %esi, 132(%esp) | ||
| 131 | .L001shortcut: | ||
| 132 | |||
| 133 | |||
| 134 | movl (%ebp), %eax | ||
| 135 | movl 4(%ebp), %ecx | ||
| 136 | |||
| 137 | movl %eax, %ebp | ||
| 138 | movl %ebx, %esi | ||
| 139 | roll $5, %ebp | ||
| 140 | xorl %edx, %esi | ||
| 141 | andl %ecx, %esi | ||
| 142 | rorl $2, %ecx | ||
| 143 | addl %edi, %ebp | ||
| 144 | movl (%esp), %edi | ||
| 145 | xorl %edx, %esi | ||
| 146 | leal 1518500249(%ebp,%edi,1),%ebp | ||
| 147 | addl %ebp, %esi | ||
| 148 | |||
| 149 | movl %esi, %ebp | ||
| 150 | movl %ecx, %edi | ||
| 151 | roll $5, %ebp | ||
| 152 | xorl %ebx, %edi | ||
| 153 | andl %eax, %edi | ||
| 154 | rorl $2, %eax | ||
| 155 | addl %edx, %ebp | ||
| 156 | movl 4(%esp), %edx | ||
| 157 | xorl %ebx, %edi | ||
| 158 | leal 1518500249(%ebp,%edx,1),%ebp | ||
| 159 | addl %ebp, %edi | ||
| 160 | |||
| 161 | movl %edi, %ebp | ||
| 162 | movl %eax, %edx | ||
| 163 | roll $5, %ebp | ||
| 164 | xorl %ecx, %edx | ||
| 165 | andl %esi, %edx | ||
| 166 | rorl $2, %esi | ||
| 167 | addl %ebx, %ebp | ||
| 168 | movl 8(%esp), %ebx | ||
| 169 | xorl %ecx, %edx | ||
| 170 | leal 1518500249(%ebp,%ebx,1),%ebp | ||
| 171 | addl %ebp, %edx | ||
| 172 | |||
| 173 | movl %edx, %ebp | ||
| 174 | movl %esi, %ebx | ||
| 175 | roll $5, %ebp | ||
| 176 | xorl %eax, %ebx | ||
| 177 | andl %edi, %ebx | ||
| 178 | rorl $2, %edi | ||
| 179 | addl %ecx, %ebp | ||
| 180 | movl 12(%esp), %ecx | ||
| 181 | xorl %eax, %ebx | ||
| 182 | leal 1518500249(%ebp,%ecx,1),%ebp | ||
| 183 | addl %ebp, %ebx | ||
| 184 | |||
| 185 | movl %ebx, %ebp | ||
| 186 | movl %edi, %ecx | ||
| 187 | roll $5, %ebp | ||
| 188 | xorl %esi, %ecx | ||
| 189 | andl %edx, %ecx | ||
| 190 | rorl $2, %edx | ||
| 191 | addl %eax, %ebp | ||
| 192 | movl 16(%esp), %eax | ||
| 193 | xorl %esi, %ecx | ||
| 194 | leal 1518500249(%ebp,%eax,1),%ebp | ||
| 195 | addl %ebp, %ecx | ||
| 196 | |||
| 197 | movl %ecx, %ebp | ||
| 198 | movl %edx, %eax | ||
| 199 | roll $5, %ebp | ||
| 200 | xorl %edi, %eax | ||
| 201 | andl %ebx, %eax | ||
| 202 | rorl $2, %ebx | ||
| 203 | addl %esi, %ebp | ||
| 204 | movl 20(%esp), %esi | ||
| 205 | xorl %edi, %eax | ||
| 206 | leal 1518500249(%ebp,%esi,1),%ebp | ||
| 207 | addl %ebp, %eax | ||
| 208 | |||
| 209 | movl %eax, %ebp | ||
| 210 | movl %ebx, %esi | ||
| 211 | roll $5, %ebp | ||
| 212 | xorl %edx, %esi | ||
| 213 | andl %ecx, %esi | ||
| 214 | rorl $2, %ecx | ||
| 215 | addl %edi, %ebp | ||
| 216 | movl 24(%esp), %edi | ||
| 217 | xorl %edx, %esi | ||
| 218 | leal 1518500249(%ebp,%edi,1),%ebp | ||
| 219 | addl %ebp, %esi | ||
| 220 | |||
| 221 | movl %esi, %ebp | ||
| 222 | movl %ecx, %edi | ||
| 223 | roll $5, %ebp | ||
| 224 | xorl %ebx, %edi | ||
| 225 | andl %eax, %edi | ||
| 226 | rorl $2, %eax | ||
| 227 | addl %edx, %ebp | ||
| 228 | movl 28(%esp), %edx | ||
| 229 | xorl %ebx, %edi | ||
| 230 | leal 1518500249(%ebp,%edx,1),%ebp | ||
| 231 | addl %ebp, %edi | ||
| 232 | |||
| 233 | movl %edi, %ebp | ||
| 234 | movl %eax, %edx | ||
| 235 | roll $5, %ebp | ||
| 236 | xorl %ecx, %edx | ||
| 237 | andl %esi, %edx | ||
| 238 | rorl $2, %esi | ||
| 239 | addl %ebx, %ebp | ||
| 240 | movl 32(%esp), %ebx | ||
| 241 | xorl %ecx, %edx | ||
| 242 | leal 1518500249(%ebp,%ebx,1),%ebp | ||
| 243 | addl %ebp, %edx | ||
| 244 | |||
| 245 | movl %edx, %ebp | ||
| 246 | movl %esi, %ebx | ||
| 247 | roll $5, %ebp | ||
| 248 | xorl %eax, %ebx | ||
| 249 | andl %edi, %ebx | ||
| 250 | rorl $2, %edi | ||
| 251 | addl %ecx, %ebp | ||
| 252 | movl 36(%esp), %ecx | ||
| 253 | xorl %eax, %ebx | ||
| 254 | leal 1518500249(%ebp,%ecx,1),%ebp | ||
| 255 | addl %ebp, %ebx | ||
| 256 | |||
| 257 | movl %ebx, %ebp | ||
| 258 | movl %edi, %ecx | ||
| 259 | roll $5, %ebp | ||
| 260 | xorl %esi, %ecx | ||
| 261 | andl %edx, %ecx | ||
| 262 | rorl $2, %edx | ||
| 263 | addl %eax, %ebp | ||
| 264 | movl 40(%esp), %eax | ||
| 265 | xorl %esi, %ecx | ||
| 266 | leal 1518500249(%ebp,%eax,1),%ebp | ||
| 267 | addl %ebp, %ecx | ||
| 268 | |||
| 269 | movl %ecx, %ebp | ||
| 270 | movl %edx, %eax | ||
| 271 | roll $5, %ebp | ||
| 272 | xorl %edi, %eax | ||
| 273 | andl %ebx, %eax | ||
| 274 | rorl $2, %ebx | ||
| 275 | addl %esi, %ebp | ||
| 276 | movl 44(%esp), %esi | ||
| 277 | xorl %edi, %eax | ||
| 278 | leal 1518500249(%ebp,%esi,1),%ebp | ||
| 279 | addl %ebp, %eax | ||
| 280 | |||
| 281 | movl %eax, %ebp | ||
| 282 | movl %ebx, %esi | ||
| 283 | roll $5, %ebp | ||
| 284 | xorl %edx, %esi | ||
| 285 | andl %ecx, %esi | ||
| 286 | rorl $2, %ecx | ||
| 287 | addl %edi, %ebp | ||
| 288 | movl 48(%esp), %edi | ||
| 289 | xorl %edx, %esi | ||
| 290 | leal 1518500249(%ebp,%edi,1),%ebp | ||
| 291 | addl %ebp, %esi | ||
| 292 | |||
| 293 | movl %esi, %ebp | ||
| 294 | movl %ecx, %edi | ||
| 295 | roll $5, %ebp | ||
| 296 | xorl %ebx, %edi | ||
| 297 | andl %eax, %edi | ||
| 298 | rorl $2, %eax | ||
| 299 | addl %edx, %ebp | ||
| 300 | movl 52(%esp), %edx | ||
| 301 | xorl %ebx, %edi | ||
| 302 | leal 1518500249(%ebp,%edx,1),%ebp | ||
| 303 | addl %ebp, %edi | ||
| 304 | |||
| 305 | movl %edi, %ebp | ||
| 306 | movl %eax, %edx | ||
| 307 | roll $5, %ebp | ||
| 308 | xorl %ecx, %edx | ||
| 309 | andl %esi, %edx | ||
| 310 | rorl $2, %esi | ||
| 311 | addl %ebx, %ebp | ||
| 312 | movl 56(%esp), %ebx | ||
| 313 | xorl %ecx, %edx | ||
| 314 | leal 1518500249(%ebp,%ebx,1),%ebp | ||
| 315 | addl %ebp, %edx | ||
| 316 | |||
| 317 | movl %edx, %ebp | ||
| 318 | movl %esi, %ebx | ||
| 319 | roll $5, %ebp | ||
| 320 | xorl %eax, %ebx | ||
| 321 | andl %edi, %ebx | ||
| 322 | rorl $2, %edi | ||
| 323 | addl %ecx, %ebp | ||
| 324 | movl 60(%esp), %ecx | ||
| 325 | xorl %eax, %ebx | ||
| 326 | leal 1518500249(%ebp,%ecx,1),%ebp | ||
| 327 | addl %ebp, %ebx | ||
| 328 | |||
| 329 | movl 8(%esp), %ecx | ||
| 330 | movl %edi, %ebp | ||
| 331 | xorl (%esp), %ecx | ||
| 332 | xorl %esi, %ebp | ||
| 333 | xorl 32(%esp), %ecx | ||
| 334 | andl %edx, %ebp | ||
| 335 | xorl 52(%esp), %ecx | ||
| 336 | rorl $2, %edx | ||
| 337 | xorl %esi, %ebp | ||
| 338 | .byte 209 | ||
| 339 | .byte 193 | ||
| 340 | movl %ecx, (%esp) | ||
| 341 | leal 1518500249(%ecx,%eax,1),%ecx | ||
| 342 | movl %ebx, %eax | ||
| 343 | addl %ebp, %ecx | ||
| 344 | roll $5, %eax | ||
| 345 | addl %eax, %ecx | ||
| 346 | |||
| 347 | movl 12(%esp), %eax | ||
| 348 | movl %edx, %ebp | ||
| 349 | xorl 4(%esp), %eax | ||
| 350 | xorl %edi, %ebp | ||
| 351 | xorl 36(%esp), %eax | ||
| 352 | andl %ebx, %ebp | ||
| 353 | xorl 56(%esp), %eax | ||
| 354 | rorl $2, %ebx | ||
| 355 | xorl %edi, %ebp | ||
| 356 | .byte 209 | ||
| 357 | .byte 192 | ||
| 358 | movl %eax, 4(%esp) | ||
| 359 | leal 1518500249(%eax,%esi,1),%eax | ||
| 360 | movl %ecx, %esi | ||
| 361 | addl %ebp, %eax | ||
| 362 | roll $5, %esi | ||
| 363 | addl %esi, %eax | ||
| 364 | |||
| 365 | movl 16(%esp), %esi | ||
| 366 | movl %ebx, %ebp | ||
| 367 | xorl 8(%esp), %esi | ||
| 368 | xorl %edx, %ebp | ||
| 369 | xorl 40(%esp), %esi | ||
| 370 | andl %ecx, %ebp | ||
| 371 | xorl 60(%esp), %esi | ||
| 372 | rorl $2, %ecx | ||
| 373 | xorl %edx, %ebp | ||
| 374 | .byte 209 | ||
| 375 | .byte 198 | ||
| 376 | movl %esi, 8(%esp) | ||
| 377 | leal 1518500249(%esi,%edi,1),%esi | ||
| 378 | movl %eax, %edi | ||
| 379 | addl %ebp, %esi | ||
| 380 | roll $5, %edi | ||
| 381 | addl %edi, %esi | ||
| 382 | |||
| 383 | movl 20(%esp), %edi | ||
| 384 | movl %ecx, %ebp | ||
| 385 | xorl 12(%esp), %edi | ||
| 386 | xorl %ebx, %ebp | ||
| 387 | xorl 44(%esp), %edi | ||
| 388 | andl %eax, %ebp | ||
| 389 | xorl (%esp), %edi | ||
| 390 | rorl $2, %eax | ||
| 391 | xorl %ebx, %ebp | ||
| 392 | .byte 209 | ||
| 393 | .byte 199 | ||
| 394 | movl %edi, 12(%esp) | ||
| 395 | leal 1518500249(%edi,%edx,1),%edi | ||
| 396 | movl %esi, %edx | ||
| 397 | addl %ebp, %edi | ||
| 398 | roll $5, %edx | ||
| 399 | addl %edx, %edi | ||
| 400 | |||
| 401 | movl 16(%esp), %edx | ||
| 402 | movl %esi, %ebp | ||
| 403 | xorl 24(%esp), %edx | ||
| 404 | rorl $2, %esi | ||
| 405 | xorl 48(%esp), %edx | ||
| 406 | xorl %eax, %ebp | ||
| 407 | xorl 4(%esp), %edx | ||
| 408 | xorl %ecx, %ebp | ||
| 409 | .byte 209 | ||
| 410 | .byte 194 | ||
| 411 | movl %edx, 16(%esp) | ||
| 412 | leal 1859775393(%edx,%ebx,1),%edx | ||
| 413 | movl %edi, %ebx | ||
| 414 | roll $5, %ebx | ||
| 415 | addl %ebp, %edx | ||
| 416 | addl %ebx, %edx | ||
| 417 | |||
| 418 | movl 20(%esp), %ebx | ||
| 419 | movl %edi, %ebp | ||
| 420 | xorl 28(%esp), %ebx | ||
| 421 | rorl $2, %edi | ||
| 422 | xorl 52(%esp), %ebx | ||
| 423 | xorl %esi, %ebp | ||
| 424 | xorl 8(%esp), %ebx | ||
| 425 | xorl %eax, %ebp | ||
| 426 | .byte 209 | ||
| 427 | .byte 195 | ||
| 428 | movl %ebx, 20(%esp) | ||
| 429 | leal 1859775393(%ebx,%ecx,1),%ebx | ||
| 430 | movl %edx, %ecx | ||
| 431 | roll $5, %ecx | ||
| 432 | addl %ebp, %ebx | ||
| 433 | addl %ecx, %ebx | ||
| 434 | |||
| 435 | movl 24(%esp), %ecx | ||
| 436 | movl %edx, %ebp | ||
| 437 | xorl 32(%esp), %ecx | ||
| 438 | rorl $2, %edx | ||
| 439 | xorl 56(%esp), %ecx | ||
| 440 | xorl %edi, %ebp | ||
| 441 | xorl 12(%esp), %ecx | ||
| 442 | xorl %esi, %ebp | ||
| 443 | .byte 209 | ||
| 444 | .byte 193 | ||
| 445 | movl %ecx, 24(%esp) | ||
| 446 | leal 1859775393(%ecx,%eax,1),%ecx | ||
| 447 | movl %ebx, %eax | ||
| 448 | roll $5, %eax | ||
| 449 | addl %ebp, %ecx | ||
| 450 | addl %eax, %ecx | ||
| 451 | |||
| 452 | movl 28(%esp), %eax | ||
| 453 | movl %ebx, %ebp | ||
| 454 | xorl 36(%esp), %eax | ||
| 455 | rorl $2, %ebx | ||
| 456 | xorl 60(%esp), %eax | ||
| 457 | xorl %edx, %ebp | ||
| 458 | xorl 16(%esp), %eax | ||
| 459 | xorl %edi, %ebp | ||
| 460 | .byte 209 | ||
| 461 | .byte 192 | ||
| 462 | movl %eax, 28(%esp) | ||
| 463 | leal 1859775393(%eax,%esi,1),%eax | ||
| 464 | movl %ecx, %esi | ||
| 465 | roll $5, %esi | ||
| 466 | addl %ebp, %eax | ||
| 467 | addl %esi, %eax | ||
| 468 | |||
| 469 | movl 32(%esp), %esi | ||
| 470 | movl %ecx, %ebp | ||
| 471 | xorl 40(%esp), %esi | ||
| 472 | rorl $2, %ecx | ||
| 473 | xorl (%esp), %esi | ||
| 474 | xorl %ebx, %ebp | ||
| 475 | xorl 20(%esp), %esi | ||
| 476 | xorl %edx, %ebp | ||
| 477 | .byte 209 | ||
| 478 | .byte 198 | ||
| 479 | movl %esi, 32(%esp) | ||
| 480 | leal 1859775393(%esi,%edi,1),%esi | ||
| 481 | movl %eax, %edi | ||
| 482 | roll $5, %edi | ||
| 483 | addl %ebp, %esi | ||
| 484 | addl %edi, %esi | ||
| 485 | |||
| 486 | movl 36(%esp), %edi | ||
| 487 | movl %eax, %ebp | ||
| 488 | xorl 44(%esp), %edi | ||
| 489 | rorl $2, %eax | ||
| 490 | xorl 4(%esp), %edi | ||
| 491 | xorl %ecx, %ebp | ||
| 492 | xorl 24(%esp), %edi | ||
| 493 | xorl %ebx, %ebp | ||
| 494 | .byte 209 | ||
| 495 | .byte 199 | ||
| 496 | movl %edi, 36(%esp) | ||
| 497 | leal 1859775393(%edi,%edx,1),%edi | ||
| 498 | movl %esi, %edx | ||
| 499 | roll $5, %edx | ||
| 500 | addl %ebp, %edi | ||
| 501 | addl %edx, %edi | ||
| 502 | |||
| 503 | movl 40(%esp), %edx | ||
| 504 | movl %esi, %ebp | ||
| 505 | xorl 48(%esp), %edx | ||
| 506 | rorl $2, %esi | ||
| 507 | xorl 8(%esp), %edx | ||
| 508 | xorl %eax, %ebp | ||
| 509 | xorl 28(%esp), %edx | ||
| 510 | xorl %ecx, %ebp | ||
| 511 | .byte 209 | ||
| 512 | .byte 194 | ||
| 513 | movl %edx, 40(%esp) | ||
| 514 | leal 1859775393(%edx,%ebx,1),%edx | ||
| 515 | movl %edi, %ebx | ||
| 516 | roll $5, %ebx | ||
| 517 | addl %ebp, %edx | ||
| 518 | addl %ebx, %edx | ||
| 519 | |||
| 520 | movl 44(%esp), %ebx | ||
| 521 | movl %edi, %ebp | ||
| 522 | xorl 52(%esp), %ebx | ||
| 523 | rorl $2, %edi | ||
| 524 | xorl 12(%esp), %ebx | ||
| 525 | xorl %esi, %ebp | ||
| 526 | xorl 32(%esp), %ebx | ||
| 527 | xorl %eax, %ebp | ||
| 528 | .byte 209 | ||
| 529 | .byte 195 | ||
| 530 | movl %ebx, 44(%esp) | ||
| 531 | leal 1859775393(%ebx,%ecx,1),%ebx | ||
| 532 | movl %edx, %ecx | ||
| 533 | roll $5, %ecx | ||
| 534 | addl %ebp, %ebx | ||
| 535 | addl %ecx, %ebx | ||
| 536 | |||
| 537 | movl 48(%esp), %ecx | ||
| 538 | movl %edx, %ebp | ||
| 539 | xorl 56(%esp), %ecx | ||
| 540 | rorl $2, %edx | ||
| 541 | xorl 16(%esp), %ecx | ||
| 542 | xorl %edi, %ebp | ||
| 543 | xorl 36(%esp), %ecx | ||
| 544 | xorl %esi, %ebp | ||
| 545 | .byte 209 | ||
| 546 | .byte 193 | ||
| 547 | movl %ecx, 48(%esp) | ||
| 548 | leal 1859775393(%ecx,%eax,1),%ecx | ||
| 549 | movl %ebx, %eax | ||
| 550 | roll $5, %eax | ||
| 551 | addl %ebp, %ecx | ||
| 552 | addl %eax, %ecx | ||
| 553 | |||
| 554 | movl 52(%esp), %eax | ||
| 555 | movl %ebx, %ebp | ||
| 556 | xorl 60(%esp), %eax | ||
| 557 | rorl $2, %ebx | ||
| 558 | xorl 20(%esp), %eax | ||
| 559 | xorl %edx, %ebp | ||
| 560 | xorl 40(%esp), %eax | ||
| 561 | xorl %edi, %ebp | ||
| 562 | .byte 209 | ||
| 563 | .byte 192 | ||
| 564 | movl %eax, 52(%esp) | ||
| 565 | leal 1859775393(%eax,%esi,1),%eax | ||
| 566 | movl %ecx, %esi | ||
| 567 | roll $5, %esi | ||
| 568 | addl %ebp, %eax | ||
| 569 | addl %esi, %eax | ||
| 570 | |||
| 571 | movl 56(%esp), %esi | ||
| 572 | movl %ecx, %ebp | ||
| 573 | xorl (%esp), %esi | ||
| 574 | rorl $2, %ecx | ||
| 575 | xorl 24(%esp), %esi | ||
| 576 | xorl %ebx, %ebp | ||
| 577 | xorl 44(%esp), %esi | ||
| 578 | xorl %edx, %ebp | ||
| 579 | .byte 209 | ||
| 580 | .byte 198 | ||
| 581 | movl %esi, 56(%esp) | ||
| 582 | leal 1859775393(%esi,%edi,1),%esi | ||
| 583 | movl %eax, %edi | ||
| 584 | roll $5, %edi | ||
| 585 | addl %ebp, %esi | ||
| 586 | addl %edi, %esi | ||
| 587 | |||
| 588 | movl 60(%esp), %edi | ||
| 589 | movl %eax, %ebp | ||
| 590 | xorl 4(%esp), %edi | ||
| 591 | rorl $2, %eax | ||
| 592 | xorl 28(%esp), %edi | ||
| 593 | xorl %ecx, %ebp | ||
| 594 | xorl 48(%esp), %edi | ||
| 595 | xorl %ebx, %ebp | ||
| 596 | .byte 209 | ||
| 597 | .byte 199 | ||
| 598 | movl %edi, 60(%esp) | ||
| 599 | leal 1859775393(%edi,%edx,1),%edi | ||
| 600 | movl %esi, %edx | ||
| 601 | roll $5, %edx | ||
| 602 | addl %ebp, %edi | ||
| 603 | addl %edx, %edi | ||
| 604 | |||
| 605 | movl (%esp), %edx | ||
| 606 | movl %esi, %ebp | ||
| 607 | xorl 8(%esp), %edx | ||
| 608 | rorl $2, %esi | ||
| 609 | xorl 32(%esp), %edx | ||
| 610 | xorl %eax, %ebp | ||
| 611 | xorl 52(%esp), %edx | ||
| 612 | xorl %ecx, %ebp | ||
| 613 | .byte 209 | ||
| 614 | .byte 194 | ||
| 615 | movl %edx, (%esp) | ||
| 616 | leal 1859775393(%edx,%ebx,1),%edx | ||
| 617 | movl %edi, %ebx | ||
| 618 | roll $5, %ebx | ||
| 619 | addl %ebp, %edx | ||
| 620 | addl %ebx, %edx | ||
| 621 | |||
| 622 | movl 4(%esp), %ebx | ||
| 623 | movl %edi, %ebp | ||
| 624 | xorl 12(%esp), %ebx | ||
| 625 | rorl $2, %edi | ||
| 626 | xorl 36(%esp), %ebx | ||
| 627 | xorl %esi, %ebp | ||
| 628 | xorl 56(%esp), %ebx | ||
| 629 | xorl %eax, %ebp | ||
| 630 | .byte 209 | ||
| 631 | .byte 195 | ||
| 632 | movl %ebx, 4(%esp) | ||
| 633 | leal 1859775393(%ebx,%ecx,1),%ebx | ||
| 634 | movl %edx, %ecx | ||
| 635 | roll $5, %ecx | ||
| 636 | addl %ebp, %ebx | ||
| 637 | addl %ecx, %ebx | ||
| 638 | |||
| 639 | movl 8(%esp), %ecx | ||
| 640 | movl %edx, %ebp | ||
| 641 | xorl 16(%esp), %ecx | ||
| 642 | rorl $2, %edx | ||
| 643 | xorl 40(%esp), %ecx | ||
| 644 | xorl %edi, %ebp | ||
| 645 | xorl 60(%esp), %ecx | ||
| 646 | xorl %esi, %ebp | ||
| 647 | .byte 209 | ||
| 648 | .byte 193 | ||
| 649 | movl %ecx, 8(%esp) | ||
| 650 | leal 1859775393(%ecx,%eax,1),%ecx | ||
| 651 | movl %ebx, %eax | ||
| 652 | roll $5, %eax | ||
| 653 | addl %ebp, %ecx | ||
| 654 | addl %eax, %ecx | ||
| 655 | |||
| 656 | movl 12(%esp), %eax | ||
| 657 | movl %ebx, %ebp | ||
| 658 | xorl 20(%esp), %eax | ||
| 659 | rorl $2, %ebx | ||
| 660 | xorl 44(%esp), %eax | ||
| 661 | xorl %edx, %ebp | ||
| 662 | xorl (%esp), %eax | ||
| 663 | xorl %edi, %ebp | ||
| 664 | .byte 209 | ||
| 665 | .byte 192 | ||
| 666 | movl %eax, 12(%esp) | ||
| 667 | leal 1859775393(%eax,%esi,1),%eax | ||
| 668 | movl %ecx, %esi | ||
| 669 | roll $5, %esi | ||
| 670 | addl %ebp, %eax | ||
| 671 | addl %esi, %eax | ||
| 672 | |||
| 673 | movl 16(%esp), %esi | ||
| 674 | movl %ecx, %ebp | ||
| 675 | xorl 24(%esp), %esi | ||
| 676 | rorl $2, %ecx | ||
| 677 | xorl 48(%esp), %esi | ||
| 678 | xorl %ebx, %ebp | ||
| 679 | xorl 4(%esp), %esi | ||
| 680 | xorl %edx, %ebp | ||
| 681 | .byte 209 | ||
| 682 | .byte 198 | ||
| 683 | movl %esi, 16(%esp) | ||
| 684 | leal 1859775393(%esi,%edi,1),%esi | ||
| 685 | movl %eax, %edi | ||
| 686 | roll $5, %edi | ||
| 687 | addl %ebp, %esi | ||
| 688 | addl %edi, %esi | ||
| 689 | |||
| 690 | movl 20(%esp), %edi | ||
| 691 | movl %eax, %ebp | ||
| 692 | xorl 28(%esp), %edi | ||
| 693 | rorl $2, %eax | ||
| 694 | xorl 52(%esp), %edi | ||
| 695 | xorl %ecx, %ebp | ||
| 696 | xorl 8(%esp), %edi | ||
| 697 | xorl %ebx, %ebp | ||
| 698 | .byte 209 | ||
| 699 | .byte 199 | ||
| 700 | movl %edi, 20(%esp) | ||
| 701 | leal 1859775393(%edi,%edx,1),%edi | ||
| 702 | movl %esi, %edx | ||
| 703 | roll $5, %edx | ||
| 704 | addl %ebp, %edi | ||
| 705 | addl %edx, %edi | ||
| 706 | |||
| 707 | movl 24(%esp), %edx | ||
| 708 | movl %esi, %ebp | ||
| 709 | xorl 32(%esp), %edx | ||
| 710 | rorl $2, %esi | ||
| 711 | xorl 56(%esp), %edx | ||
| 712 | xorl %eax, %ebp | ||
| 713 | xorl 12(%esp), %edx | ||
| 714 | xorl %ecx, %ebp | ||
| 715 | .byte 209 | ||
| 716 | .byte 194 | ||
| 717 | movl %edx, 24(%esp) | ||
| 718 | leal 1859775393(%edx,%ebx,1),%edx | ||
| 719 | movl %edi, %ebx | ||
| 720 | roll $5, %ebx | ||
| 721 | addl %ebp, %edx | ||
| 722 | addl %ebx, %edx | ||
| 723 | |||
| 724 | movl 28(%esp), %ebx | ||
| 725 | movl %edi, %ebp | ||
| 726 | xorl 36(%esp), %ebx | ||
| 727 | rorl $2, %edi | ||
| 728 | xorl 60(%esp), %ebx | ||
| 729 | xorl %esi, %ebp | ||
| 730 | xorl 16(%esp), %ebx | ||
| 731 | xorl %eax, %ebp | ||
| 732 | .byte 209 | ||
| 733 | .byte 195 | ||
| 734 | movl %ebx, 28(%esp) | ||
| 735 | leal 1859775393(%ebx,%ecx,1),%ebx | ||
| 736 | movl %edx, %ecx | ||
| 737 | roll $5, %ecx | ||
| 738 | addl %ebp, %ebx | ||
| 739 | addl %ecx, %ebx | ||
| 740 | |||
| 741 | movl 32(%esp), %ecx | ||
| 742 | movl %edx, %ebp | ||
| 743 | xorl 40(%esp), %ecx | ||
| 744 | orl %edi, %ebp | ||
| 745 | xorl (%esp), %ecx | ||
| 746 | andl %esi, %ebp | ||
| 747 | xorl 20(%esp), %ecx | ||
| 748 | .byte 209 | ||
| 749 | .byte 193 | ||
| 750 | movl %ecx, 32(%esp) | ||
| 751 | leal 2400959708(%ecx,%eax,1),%ecx | ||
| 752 | movl %edx, %eax | ||
| 753 | rorl $2, %edx | ||
| 754 | andl %edi, %eax | ||
| 755 | orl %eax, %ebp | ||
| 756 | movl %ebx, %eax | ||
| 757 | roll $5, %eax | ||
| 758 | addl %eax, %ebp | ||
| 759 | addl %ebp, %ecx | ||
| 760 | |||
| 761 | movl 36(%esp), %eax | ||
| 762 | movl %ebx, %ebp | ||
| 763 | xorl 44(%esp), %eax | ||
| 764 | orl %edx, %ebp | ||
| 765 | xorl 4(%esp), %eax | ||
| 766 | andl %edi, %ebp | ||
| 767 | xorl 24(%esp), %eax | ||
| 768 | .byte 209 | ||
| 769 | .byte 192 | ||
| 770 | movl %eax, 36(%esp) | ||
| 771 | leal 2400959708(%eax,%esi,1),%eax | ||
| 772 | movl %ebx, %esi | ||
| 773 | rorl $2, %ebx | ||
| 774 | andl %edx, %esi | ||
| 775 | orl %esi, %ebp | ||
| 776 | movl %ecx, %esi | ||
| 777 | roll $5, %esi | ||
| 778 | addl %esi, %ebp | ||
| 779 | addl %ebp, %eax | ||
| 780 | |||
| 781 | movl 40(%esp), %esi | ||
| 782 | movl %ecx, %ebp | ||
| 783 | xorl 48(%esp), %esi | ||
| 784 | orl %ebx, %ebp | ||
| 785 | xorl 8(%esp), %esi | ||
| 786 | andl %edx, %ebp | ||
| 787 | xorl 28(%esp), %esi | ||
| 788 | .byte 209 | ||
| 789 | .byte 198 | ||
| 790 | movl %esi, 40(%esp) | ||
| 791 | leal 2400959708(%esi,%edi,1),%esi | ||
| 792 | movl %ecx, %edi | ||
| 793 | rorl $2, %ecx | ||
| 794 | andl %ebx, %edi | ||
| 795 | orl %edi, %ebp | ||
| 796 | movl %eax, %edi | ||
| 797 | roll $5, %edi | ||
| 798 | addl %edi, %ebp | ||
| 799 | addl %ebp, %esi | ||
| 800 | |||
| 801 | movl 44(%esp), %edi | ||
| 802 | movl %eax, %ebp | ||
| 803 | xorl 52(%esp), %edi | ||
| 804 | orl %ecx, %ebp | ||
| 805 | xorl 12(%esp), %edi | ||
| 806 | andl %ebx, %ebp | ||
| 807 | xorl 32(%esp), %edi | ||
| 808 | .byte 209 | ||
| 809 | .byte 199 | ||
| 810 | movl %edi, 44(%esp) | ||
| 811 | leal 2400959708(%edi,%edx,1),%edi | ||
| 812 | movl %eax, %edx | ||
| 813 | rorl $2, %eax | ||
| 814 | andl %ecx, %edx | ||
| 815 | orl %edx, %ebp | ||
| 816 | movl %esi, %edx | ||
| 817 | roll $5, %edx | ||
| 818 | addl %edx, %ebp | ||
| 819 | addl %ebp, %edi | ||
| 820 | |||
| 821 | movl 48(%esp), %edx | ||
| 822 | movl %esi, %ebp | ||
| 823 | xorl 56(%esp), %edx | ||
| 824 | orl %eax, %ebp | ||
| 825 | xorl 16(%esp), %edx | ||
| 826 | andl %ecx, %ebp | ||
| 827 | xorl 36(%esp), %edx | ||
| 828 | .byte 209 | ||
| 829 | .byte 194 | ||
| 830 | movl %edx, 48(%esp) | ||
| 831 | leal 2400959708(%edx,%ebx,1),%edx | ||
| 832 | movl %esi, %ebx | ||
| 833 | rorl $2, %esi | ||
| 834 | andl %eax, %ebx | ||
| 835 | orl %ebx, %ebp | ||
| 836 | movl %edi, %ebx | ||
| 837 | roll $5, %ebx | ||
| 838 | addl %ebx, %ebp | ||
| 839 | addl %ebp, %edx | ||
| 840 | |||
| 841 | movl 52(%esp), %ebx | ||
| 842 | movl %edi, %ebp | ||
| 843 | xorl 60(%esp), %ebx | ||
| 844 | orl %esi, %ebp | ||
| 845 | xorl 20(%esp), %ebx | ||
| 846 | andl %eax, %ebp | ||
| 847 | xorl 40(%esp), %ebx | ||
| 848 | .byte 209 | ||
| 849 | .byte 195 | ||
| 850 | movl %ebx, 52(%esp) | ||
| 851 | leal 2400959708(%ebx,%ecx,1),%ebx | ||
| 852 | movl %edi, %ecx | ||
| 853 | rorl $2, %edi | ||
| 854 | andl %esi, %ecx | ||
| 855 | orl %ecx, %ebp | ||
| 856 | movl %edx, %ecx | ||
| 857 | roll $5, %ecx | ||
| 858 | addl %ecx, %ebp | ||
| 859 | addl %ebp, %ebx | ||
| 860 | |||
| 861 | movl 56(%esp), %ecx | ||
| 862 | movl %edx, %ebp | ||
| 863 | xorl (%esp), %ecx | ||
| 864 | orl %edi, %ebp | ||
| 865 | xorl 24(%esp), %ecx | ||
| 866 | andl %esi, %ebp | ||
| 867 | xorl 44(%esp), %ecx | ||
| 868 | .byte 209 | ||
| 869 | .byte 193 | ||
| 870 | movl %ecx, 56(%esp) | ||
| 871 | leal 2400959708(%ecx,%eax,1),%ecx | ||
| 872 | movl %edx, %eax | ||
| 873 | rorl $2, %edx | ||
| 874 | andl %edi, %eax | ||
| 875 | orl %eax, %ebp | ||
| 876 | movl %ebx, %eax | ||
| 877 | roll $5, %eax | ||
| 878 | addl %eax, %ebp | ||
| 879 | addl %ebp, %ecx | ||
| 880 | |||
| 881 | movl 60(%esp), %eax | ||
| 882 | movl %ebx, %ebp | ||
| 883 | xorl 4(%esp), %eax | ||
| 884 | orl %edx, %ebp | ||
| 885 | xorl 28(%esp), %eax | ||
| 886 | andl %edi, %ebp | ||
| 887 | xorl 48(%esp), %eax | ||
| 888 | .byte 209 | ||
| 889 | .byte 192 | ||
| 890 | movl %eax, 60(%esp) | ||
| 891 | leal 2400959708(%eax,%esi,1),%eax | ||
| 892 | movl %ebx, %esi | ||
| 893 | rorl $2, %ebx | ||
| 894 | andl %edx, %esi | ||
| 895 | orl %esi, %ebp | ||
| 896 | movl %ecx, %esi | ||
| 897 | roll $5, %esi | ||
| 898 | addl %esi, %ebp | ||
| 899 | addl %ebp, %eax | ||
| 900 | |||
| 901 | movl (%esp), %esi | ||
| 902 | movl %ecx, %ebp | ||
| 903 | xorl 8(%esp), %esi | ||
| 904 | orl %ebx, %ebp | ||
| 905 | xorl 32(%esp), %esi | ||
| 906 | andl %edx, %ebp | ||
| 907 | xorl 52(%esp), %esi | ||
| 908 | .byte 209 | ||
| 909 | .byte 198 | ||
| 910 | movl %esi, (%esp) | ||
| 911 | leal 2400959708(%esi,%edi,1),%esi | ||
| 912 | movl %ecx, %edi | ||
| 913 | rorl $2, %ecx | ||
| 914 | andl %ebx, %edi | ||
| 915 | orl %edi, %ebp | ||
| 916 | movl %eax, %edi | ||
| 917 | roll $5, %edi | ||
| 918 | addl %edi, %ebp | ||
| 919 | addl %ebp, %esi | ||
| 920 | |||
| 921 | movl 4(%esp), %edi | ||
| 922 | movl %eax, %ebp | ||
| 923 | xorl 12(%esp), %edi | ||
| 924 | orl %ecx, %ebp | ||
| 925 | xorl 36(%esp), %edi | ||
| 926 | andl %ebx, %ebp | ||
| 927 | xorl 56(%esp), %edi | ||
| 928 | .byte 209 | ||
| 929 | .byte 199 | ||
| 930 | movl %edi, 4(%esp) | ||
| 931 | leal 2400959708(%edi,%edx,1),%edi | ||
| 932 | movl %eax, %edx | ||
| 933 | rorl $2, %eax | ||
| 934 | andl %ecx, %edx | ||
| 935 | orl %edx, %ebp | ||
| 936 | movl %esi, %edx | ||
| 937 | roll $5, %edx | ||
| 938 | addl %edx, %ebp | ||
| 939 | addl %ebp, %edi | ||
| 940 | |||
| 941 | movl 8(%esp), %edx | ||
| 942 | movl %esi, %ebp | ||
| 943 | xorl 16(%esp), %edx | ||
| 944 | orl %eax, %ebp | ||
| 945 | xorl 40(%esp), %edx | ||
| 946 | andl %ecx, %ebp | ||
| 947 | xorl 60(%esp), %edx | ||
| 948 | .byte 209 | ||
| 949 | .byte 194 | ||
| 950 | movl %edx, 8(%esp) | ||
| 951 | leal 2400959708(%edx,%ebx,1),%edx | ||
| 952 | movl %esi, %ebx | ||
| 953 | rorl $2, %esi | ||
| 954 | andl %eax, %ebx | ||
| 955 | orl %ebx, %ebp | ||
| 956 | movl %edi, %ebx | ||
| 957 | roll $5, %ebx | ||
| 958 | addl %ebx, %ebp | ||
| 959 | addl %ebp, %edx | ||
| 960 | |||
| 961 | movl 12(%esp), %ebx | ||
| 962 | movl %edi, %ebp | ||
| 963 | xorl 20(%esp), %ebx | ||
| 964 | orl %esi, %ebp | ||
| 965 | xorl 44(%esp), %ebx | ||
| 966 | andl %eax, %ebp | ||
| 967 | xorl (%esp), %ebx | ||
| 968 | .byte 209 | ||
| 969 | .byte 195 | ||
| 970 | movl %ebx, 12(%esp) | ||
| 971 | leal 2400959708(%ebx,%ecx,1),%ebx | ||
| 972 | movl %edi, %ecx | ||
| 973 | rorl $2, %edi | ||
| 974 | andl %esi, %ecx | ||
| 975 | orl %ecx, %ebp | ||
| 976 | movl %edx, %ecx | ||
| 977 | roll $5, %ecx | ||
| 978 | addl %ecx, %ebp | ||
| 979 | addl %ebp, %ebx | ||
| 980 | |||
| 981 | movl 16(%esp), %ecx | ||
| 982 | movl %edx, %ebp | ||
| 983 | xorl 24(%esp), %ecx | ||
| 984 | orl %edi, %ebp | ||
| 985 | xorl 48(%esp), %ecx | ||
| 986 | andl %esi, %ebp | ||
| 987 | xorl 4(%esp), %ecx | ||
| 988 | .byte 209 | ||
| 989 | .byte 193 | ||
| 990 | movl %ecx, 16(%esp) | ||
| 991 | leal 2400959708(%ecx,%eax,1),%ecx | ||
| 992 | movl %edx, %eax | ||
| 993 | rorl $2, %edx | ||
| 994 | andl %edi, %eax | ||
| 995 | orl %eax, %ebp | ||
| 996 | movl %ebx, %eax | ||
| 997 | roll $5, %eax | ||
| 998 | addl %eax, %ebp | ||
| 999 | addl %ebp, %ecx | ||
| 1000 | |||
| 1001 | movl 20(%esp), %eax | ||
| 1002 | movl %ebx, %ebp | ||
| 1003 | xorl 28(%esp), %eax | ||
| 1004 | orl %edx, %ebp | ||
| 1005 | xorl 52(%esp), %eax | ||
| 1006 | andl %edi, %ebp | ||
| 1007 | xorl 8(%esp), %eax | ||
| 1008 | .byte 209 | ||
| 1009 | .byte 192 | ||
| 1010 | movl %eax, 20(%esp) | ||
| 1011 | leal 2400959708(%eax,%esi,1),%eax | ||
| 1012 | movl %ebx, %esi | ||
| 1013 | rorl $2, %ebx | ||
| 1014 | andl %edx, %esi | ||
| 1015 | orl %esi, %ebp | ||
| 1016 | movl %ecx, %esi | ||
| 1017 | roll $5, %esi | ||
| 1018 | addl %esi, %ebp | ||
| 1019 | addl %ebp, %eax | ||
| 1020 | |||
| 1021 | movl 24(%esp), %esi | ||
| 1022 | movl %ecx, %ebp | ||
| 1023 | xorl 32(%esp), %esi | ||
| 1024 | orl %ebx, %ebp | ||
| 1025 | xorl 56(%esp), %esi | ||
| 1026 | andl %edx, %ebp | ||
| 1027 | xorl 12(%esp), %esi | ||
| 1028 | .byte 209 | ||
| 1029 | .byte 198 | ||
| 1030 | movl %esi, 24(%esp) | ||
| 1031 | leal 2400959708(%esi,%edi,1),%esi | ||
| 1032 | movl %ecx, %edi | ||
| 1033 | rorl $2, %ecx | ||
| 1034 | andl %ebx, %edi | ||
| 1035 | orl %edi, %ebp | ||
| 1036 | movl %eax, %edi | ||
| 1037 | roll $5, %edi | ||
| 1038 | addl %edi, %ebp | ||
| 1039 | addl %ebp, %esi | ||
| 1040 | |||
| 1041 | movl 28(%esp), %edi | ||
| 1042 | movl %eax, %ebp | ||
| 1043 | xorl 36(%esp), %edi | ||
| 1044 | orl %ecx, %ebp | ||
| 1045 | xorl 60(%esp), %edi | ||
| 1046 | andl %ebx, %ebp | ||
| 1047 | xorl 16(%esp), %edi | ||
| 1048 | .byte 209 | ||
| 1049 | .byte 199 | ||
| 1050 | movl %edi, 28(%esp) | ||
| 1051 | leal 2400959708(%edi,%edx,1),%edi | ||
| 1052 | movl %eax, %edx | ||
| 1053 | rorl $2, %eax | ||
| 1054 | andl %ecx, %edx | ||
| 1055 | orl %edx, %ebp | ||
| 1056 | movl %esi, %edx | ||
| 1057 | roll $5, %edx | ||
| 1058 | addl %edx, %ebp | ||
| 1059 | addl %ebp, %edi | ||
| 1060 | |||
| 1061 | movl 32(%esp), %edx | ||
| 1062 | movl %esi, %ebp | ||
| 1063 | xorl 40(%esp), %edx | ||
| 1064 | orl %eax, %ebp | ||
| 1065 | xorl (%esp), %edx | ||
| 1066 | andl %ecx, %ebp | ||
| 1067 | xorl 20(%esp), %edx | ||
| 1068 | .byte 209 | ||
| 1069 | .byte 194 | ||
| 1070 | movl %edx, 32(%esp) | ||
| 1071 | leal 2400959708(%edx,%ebx,1),%edx | ||
| 1072 | movl %esi, %ebx | ||
| 1073 | rorl $2, %esi | ||
| 1074 | andl %eax, %ebx | ||
| 1075 | orl %ebx, %ebp | ||
| 1076 | movl %edi, %ebx | ||
| 1077 | roll $5, %ebx | ||
| 1078 | addl %ebx, %ebp | ||
| 1079 | addl %ebp, %edx | ||
| 1080 | |||
| 1081 | movl 36(%esp), %ebx | ||
| 1082 | movl %edi, %ebp | ||
| 1083 | xorl 44(%esp), %ebx | ||
| 1084 | orl %esi, %ebp | ||
| 1085 | xorl 4(%esp), %ebx | ||
| 1086 | andl %eax, %ebp | ||
| 1087 | xorl 24(%esp), %ebx | ||
| 1088 | .byte 209 | ||
| 1089 | .byte 195 | ||
| 1090 | movl %ebx, 36(%esp) | ||
| 1091 | leal 2400959708(%ebx,%ecx,1),%ebx | ||
| 1092 | movl %edi, %ecx | ||
| 1093 | rorl $2, %edi | ||
| 1094 | andl %esi, %ecx | ||
| 1095 | orl %ecx, %ebp | ||
| 1096 | movl %edx, %ecx | ||
| 1097 | roll $5, %ecx | ||
| 1098 | addl %ecx, %ebp | ||
| 1099 | addl %ebp, %ebx | ||
| 1100 | |||
| 1101 | movl 40(%esp), %ecx | ||
| 1102 | movl %edx, %ebp | ||
| 1103 | xorl 48(%esp), %ecx | ||
| 1104 | orl %edi, %ebp | ||
| 1105 | xorl 8(%esp), %ecx | ||
| 1106 | andl %esi, %ebp | ||
| 1107 | xorl 28(%esp), %ecx | ||
| 1108 | .byte 209 | ||
| 1109 | .byte 193 | ||
| 1110 | movl %ecx, 40(%esp) | ||
| 1111 | leal 2400959708(%ecx,%eax,1),%ecx | ||
| 1112 | movl %edx, %eax | ||
| 1113 | rorl $2, %edx | ||
| 1114 | andl %edi, %eax | ||
| 1115 | orl %eax, %ebp | ||
| 1116 | movl %ebx, %eax | ||
| 1117 | roll $5, %eax | ||
| 1118 | addl %eax, %ebp | ||
| 1119 | addl %ebp, %ecx | ||
| 1120 | |||
| 1121 | movl 44(%esp), %eax | ||
| 1122 | movl %ebx, %ebp | ||
| 1123 | xorl 52(%esp), %eax | ||
| 1124 | orl %edx, %ebp | ||
| 1125 | xorl 12(%esp), %eax | ||
| 1126 | andl %edi, %ebp | ||
| 1127 | xorl 32(%esp), %eax | ||
| 1128 | .byte 209 | ||
| 1129 | .byte 192 | ||
| 1130 | movl %eax, 44(%esp) | ||
| 1131 | leal 2400959708(%eax,%esi,1),%eax | ||
| 1132 | movl %ebx, %esi | ||
| 1133 | rorl $2, %ebx | ||
| 1134 | andl %edx, %esi | ||
| 1135 | orl %esi, %ebp | ||
| 1136 | movl %ecx, %esi | ||
| 1137 | roll $5, %esi | ||
| 1138 | addl %esi, %ebp | ||
| 1139 | addl %ebp, %eax | ||
| 1140 | |||
| 1141 | movl 48(%esp), %esi | ||
| 1142 | movl %ecx, %ebp | ||
| 1143 | xorl 56(%esp), %esi | ||
| 1144 | rorl $2, %ecx | ||
| 1145 | xorl 16(%esp), %esi | ||
| 1146 | xorl %ebx, %ebp | ||
| 1147 | xorl 36(%esp), %esi | ||
| 1148 | xorl %edx, %ebp | ||
| 1149 | .byte 209 | ||
| 1150 | .byte 198 | ||
| 1151 | movl %esi, 48(%esp) | ||
| 1152 | leal 3395469782(%esi,%edi,1),%esi | ||
| 1153 | movl %eax, %edi | ||
| 1154 | roll $5, %edi | ||
| 1155 | addl %ebp, %esi | ||
| 1156 | addl %edi, %esi | ||
| 1157 | |||
| 1158 | movl 52(%esp), %edi | ||
| 1159 | movl %eax, %ebp | ||
| 1160 | xorl 60(%esp), %edi | ||
| 1161 | rorl $2, %eax | ||
| 1162 | xorl 20(%esp), %edi | ||
| 1163 | xorl %ecx, %ebp | ||
| 1164 | xorl 40(%esp), %edi | ||
| 1165 | xorl %ebx, %ebp | ||
| 1166 | .byte 209 | ||
| 1167 | .byte 199 | ||
| 1168 | movl %edi, 52(%esp) | ||
| 1169 | leal 3395469782(%edi,%edx,1),%edi | ||
| 1170 | movl %esi, %edx | ||
| 1171 | roll $5, %edx | ||
| 1172 | addl %ebp, %edi | ||
| 1173 | addl %edx, %edi | ||
| 1174 | |||
| 1175 | movl 56(%esp), %edx | ||
| 1176 | movl %esi, %ebp | ||
| 1177 | xorl (%esp), %edx | ||
| 1178 | rorl $2, %esi | ||
| 1179 | xorl 24(%esp), %edx | ||
| 1180 | xorl %eax, %ebp | ||
| 1181 | xorl 44(%esp), %edx | ||
| 1182 | xorl %ecx, %ebp | ||
| 1183 | .byte 209 | ||
| 1184 | .byte 194 | ||
| 1185 | movl %edx, 56(%esp) | ||
| 1186 | leal 3395469782(%edx,%ebx,1),%edx | ||
| 1187 | movl %edi, %ebx | ||
| 1188 | roll $5, %ebx | ||
| 1189 | addl %ebp, %edx | ||
| 1190 | addl %ebx, %edx | ||
| 1191 | |||
| 1192 | movl 60(%esp), %ebx | ||
| 1193 | movl %edi, %ebp | ||
| 1194 | xorl 4(%esp), %ebx | ||
| 1195 | rorl $2, %edi | ||
| 1196 | xorl 28(%esp), %ebx | ||
| 1197 | xorl %esi, %ebp | ||
| 1198 | xorl 48(%esp), %ebx | ||
| 1199 | xorl %eax, %ebp | ||
| 1200 | .byte 209 | ||
| 1201 | .byte 195 | ||
| 1202 | movl %ebx, 60(%esp) | ||
| 1203 | leal 3395469782(%ebx,%ecx,1),%ebx | ||
| 1204 | movl %edx, %ecx | ||
| 1205 | roll $5, %ecx | ||
| 1206 | addl %ebp, %ebx | ||
| 1207 | addl %ecx, %ebx | ||
| 1208 | |||
| 1209 | movl (%esp), %ecx | ||
| 1210 | movl %edx, %ebp | ||
| 1211 | xorl 8(%esp), %ecx | ||
| 1212 | rorl $2, %edx | ||
| 1213 | xorl 32(%esp), %ecx | ||
| 1214 | xorl %edi, %ebp | ||
| 1215 | xorl 52(%esp), %ecx | ||
| 1216 | xorl %esi, %ebp | ||
| 1217 | .byte 209 | ||
| 1218 | .byte 193 | ||
| 1219 | movl %ecx, (%esp) | ||
| 1220 | leal 3395469782(%ecx,%eax,1),%ecx | ||
| 1221 | movl %ebx, %eax | ||
| 1222 | roll $5, %eax | ||
| 1223 | addl %ebp, %ecx | ||
| 1224 | addl %eax, %ecx | ||
| 1225 | |||
| 1226 | movl 4(%esp), %eax | ||
| 1227 | movl %ebx, %ebp | ||
| 1228 | xorl 12(%esp), %eax | ||
| 1229 | rorl $2, %ebx | ||
| 1230 | xorl 36(%esp), %eax | ||
| 1231 | xorl %edx, %ebp | ||
| 1232 | xorl 56(%esp), %eax | ||
| 1233 | xorl %edi, %ebp | ||
| 1234 | .byte 209 | ||
| 1235 | .byte 192 | ||
| 1236 | movl %eax, 4(%esp) | ||
| 1237 | leal 3395469782(%eax,%esi,1),%eax | ||
| 1238 | movl %ecx, %esi | ||
| 1239 | roll $5, %esi | ||
| 1240 | addl %ebp, %eax | ||
| 1241 | addl %esi, %eax | ||
| 1242 | |||
| 1243 | movl 8(%esp), %esi | ||
| 1244 | movl %ecx, %ebp | ||
| 1245 | xorl 16(%esp), %esi | ||
| 1246 | rorl $2, %ecx | ||
| 1247 | xorl 40(%esp), %esi | ||
| 1248 | xorl %ebx, %ebp | ||
| 1249 | xorl 60(%esp), %esi | ||
| 1250 | xorl %edx, %ebp | ||
| 1251 | .byte 209 | ||
| 1252 | .byte 198 | ||
| 1253 | movl %esi, 8(%esp) | ||
| 1254 | leal 3395469782(%esi,%edi,1),%esi | ||
| 1255 | movl %eax, %edi | ||
| 1256 | roll $5, %edi | ||
| 1257 | addl %ebp, %esi | ||
| 1258 | addl %edi, %esi | ||
| 1259 | |||
| 1260 | movl 12(%esp), %edi | ||
| 1261 | movl %eax, %ebp | ||
| 1262 | xorl 20(%esp), %edi | ||
| 1263 | rorl $2, %eax | ||
| 1264 | xorl 44(%esp), %edi | ||
| 1265 | xorl %ecx, %ebp | ||
| 1266 | xorl (%esp), %edi | ||
| 1267 | xorl %ebx, %ebp | ||
| 1268 | .byte 209 | ||
| 1269 | .byte 199 | ||
| 1270 | movl %edi, 12(%esp) | ||
| 1271 | leal 3395469782(%edi,%edx,1),%edi | ||
| 1272 | movl %esi, %edx | ||
| 1273 | roll $5, %edx | ||
| 1274 | addl %ebp, %edi | ||
| 1275 | addl %edx, %edi | ||
| 1276 | |||
| 1277 | movl 16(%esp), %edx | ||
| 1278 | movl %esi, %ebp | ||
| 1279 | xorl 24(%esp), %edx | ||
| 1280 | rorl $2, %esi | ||
| 1281 | xorl 48(%esp), %edx | ||
| 1282 | xorl %eax, %ebp | ||
| 1283 | xorl 4(%esp), %edx | ||
| 1284 | xorl %ecx, %ebp | ||
| 1285 | .byte 209 | ||
| 1286 | .byte 194 | ||
| 1287 | movl %edx, 16(%esp) | ||
| 1288 | leal 3395469782(%edx,%ebx,1),%edx | ||
| 1289 | movl %edi, %ebx | ||
| 1290 | roll $5, %ebx | ||
| 1291 | addl %ebp, %edx | ||
| 1292 | addl %ebx, %edx | ||
| 1293 | |||
| 1294 | movl 20(%esp), %ebx | ||
| 1295 | movl %edi, %ebp | ||
| 1296 | xorl 28(%esp), %ebx | ||
| 1297 | rorl $2, %edi | ||
| 1298 | xorl 52(%esp), %ebx | ||
| 1299 | xorl %esi, %ebp | ||
| 1300 | xorl 8(%esp), %ebx | ||
| 1301 | xorl %eax, %ebp | ||
| 1302 | .byte 209 | ||
| 1303 | .byte 195 | ||
| 1304 | movl %ebx, 20(%esp) | ||
| 1305 | leal 3395469782(%ebx,%ecx,1),%ebx | ||
| 1306 | movl %edx, %ecx | ||
| 1307 | roll $5, %ecx | ||
| 1308 | addl %ebp, %ebx | ||
| 1309 | addl %ecx, %ebx | ||
| 1310 | |||
| 1311 | movl 24(%esp), %ecx | ||
| 1312 | movl %edx, %ebp | ||
| 1313 | xorl 32(%esp), %ecx | ||
| 1314 | rorl $2, %edx | ||
| 1315 | xorl 56(%esp), %ecx | ||
| 1316 | xorl %edi, %ebp | ||
| 1317 | xorl 12(%esp), %ecx | ||
| 1318 | xorl %esi, %ebp | ||
| 1319 | .byte 209 | ||
| 1320 | .byte 193 | ||
| 1321 | movl %ecx, 24(%esp) | ||
| 1322 | leal 3395469782(%ecx,%eax,1),%ecx | ||
| 1323 | movl %ebx, %eax | ||
| 1324 | roll $5, %eax | ||
| 1325 | addl %ebp, %ecx | ||
| 1326 | addl %eax, %ecx | ||
| 1327 | |||
| 1328 | movl 28(%esp), %eax | ||
| 1329 | movl %ebx, %ebp | ||
| 1330 | xorl 36(%esp), %eax | ||
| 1331 | rorl $2, %ebx | ||
| 1332 | xorl 60(%esp), %eax | ||
| 1333 | xorl %edx, %ebp | ||
| 1334 | xorl 16(%esp), %eax | ||
| 1335 | xorl %edi, %ebp | ||
| 1336 | .byte 209 | ||
| 1337 | .byte 192 | ||
| 1338 | movl %eax, 28(%esp) | ||
| 1339 | leal 3395469782(%eax,%esi,1),%eax | ||
| 1340 | movl %ecx, %esi | ||
| 1341 | roll $5, %esi | ||
| 1342 | addl %ebp, %eax | ||
| 1343 | addl %esi, %eax | ||
| 1344 | |||
| 1345 | movl 32(%esp), %esi | ||
| 1346 | movl %ecx, %ebp | ||
| 1347 | xorl 40(%esp), %esi | ||
| 1348 | rorl $2, %ecx | ||
| 1349 | xorl (%esp), %esi | ||
| 1350 | xorl %ebx, %ebp | ||
| 1351 | xorl 20(%esp), %esi | ||
| 1352 | xorl %edx, %ebp | ||
| 1353 | .byte 209 | ||
| 1354 | .byte 198 | ||
| 1355 | movl %esi, 32(%esp) | ||
| 1356 | leal 3395469782(%esi,%edi,1),%esi | ||
| 1357 | movl %eax, %edi | ||
| 1358 | roll $5, %edi | ||
| 1359 | addl %ebp, %esi | ||
| 1360 | addl %edi, %esi | ||
| 1361 | |||
| 1362 | movl 36(%esp), %edi | ||
| 1363 | movl %eax, %ebp | ||
| 1364 | xorl 44(%esp), %edi | ||
| 1365 | rorl $2, %eax | ||
| 1366 | xorl 4(%esp), %edi | ||
| 1367 | xorl %ecx, %ebp | ||
| 1368 | xorl 24(%esp), %edi | ||
| 1369 | xorl %ebx, %ebp | ||
| 1370 | .byte 209 | ||
| 1371 | .byte 199 | ||
| 1372 | movl %edi, 36(%esp) | ||
| 1373 | leal 3395469782(%edi,%edx,1),%edi | ||
| 1374 | movl %esi, %edx | ||
| 1375 | roll $5, %edx | ||
| 1376 | addl %ebp, %edi | ||
| 1377 | addl %edx, %edi | ||
| 1378 | |||
| 1379 | movl 40(%esp), %edx | ||
| 1380 | movl %esi, %ebp | ||
| 1381 | xorl 48(%esp), %edx | ||
| 1382 | rorl $2, %esi | ||
| 1383 | xorl 8(%esp), %edx | ||
| 1384 | xorl %eax, %ebp | ||
| 1385 | xorl 28(%esp), %edx | ||
| 1386 | xorl %ecx, %ebp | ||
| 1387 | .byte 209 | ||
| 1388 | .byte 194 | ||
| 1389 | movl %edx, 40(%esp) | ||
| 1390 | leal 3395469782(%edx,%ebx,1),%edx | ||
| 1391 | movl %edi, %ebx | ||
| 1392 | roll $5, %ebx | ||
| 1393 | addl %ebp, %edx | ||
| 1394 | addl %ebx, %edx | ||
| 1395 | |||
| 1396 | movl 44(%esp), %ebx | ||
| 1397 | movl %edi, %ebp | ||
| 1398 | xorl 52(%esp), %ebx | ||
| 1399 | rorl $2, %edi | ||
| 1400 | xorl 12(%esp), %ebx | ||
| 1401 | xorl %esi, %ebp | ||
| 1402 | xorl 32(%esp), %ebx | ||
| 1403 | xorl %eax, %ebp | ||
| 1404 | .byte 209 | ||
| 1405 | .byte 195 | ||
| 1406 | movl %ebx, 44(%esp) | ||
| 1407 | leal 3395469782(%ebx,%ecx,1),%ebx | ||
| 1408 | movl %edx, %ecx | ||
| 1409 | roll $5, %ecx | ||
| 1410 | addl %ebp, %ebx | ||
| 1411 | addl %ecx, %ebx | ||
| 1412 | |||
| 1413 | movl 48(%esp), %ecx | ||
| 1414 | movl %edx, %ebp | ||
| 1415 | xorl 56(%esp), %ecx | ||
| 1416 | rorl $2, %edx | ||
| 1417 | xorl 16(%esp), %ecx | ||
| 1418 | xorl %edi, %ebp | ||
| 1419 | xorl 36(%esp), %ecx | ||
| 1420 | xorl %esi, %ebp | ||
| 1421 | .byte 209 | ||
| 1422 | .byte 193 | ||
| 1423 | movl %ecx, 48(%esp) | ||
| 1424 | leal 3395469782(%ecx,%eax,1),%ecx | ||
| 1425 | movl %ebx, %eax | ||
| 1426 | roll $5, %eax | ||
| 1427 | addl %ebp, %ecx | ||
| 1428 | addl %eax, %ecx | ||
| 1429 | |||
| 1430 | movl 52(%esp), %eax | ||
| 1431 | movl %ebx, %ebp | ||
| 1432 | xorl 60(%esp), %eax | ||
| 1433 | rorl $2, %ebx | ||
| 1434 | xorl 20(%esp), %eax | ||
| 1435 | xorl %edx, %ebp | ||
| 1436 | xorl 40(%esp), %eax | ||
| 1437 | xorl %edi, %ebp | ||
| 1438 | .byte 209 | ||
| 1439 | .byte 192 | ||
| 1440 | movl %eax, 52(%esp) | ||
| 1441 | leal 3395469782(%eax,%esi,1),%eax | ||
| 1442 | movl %ecx, %esi | ||
| 1443 | roll $5, %esi | ||
| 1444 | addl %ebp, %eax | ||
| 1445 | addl %esi, %eax | ||
| 1446 | |||
| 1447 | movl 56(%esp), %esi | ||
| 1448 | movl %ecx, %ebp | ||
| 1449 | xorl (%esp), %esi | ||
| 1450 | rorl $2, %ecx | ||
| 1451 | xorl 24(%esp), %esi | ||
| 1452 | xorl %ebx, %ebp | ||
| 1453 | xorl 44(%esp), %esi | ||
| 1454 | xorl %edx, %ebp | ||
| 1455 | .byte 209 | ||
| 1456 | .byte 198 | ||
| 1457 | movl %esi, 56(%esp) | ||
| 1458 | leal 3395469782(%esi,%edi,1),%esi | ||
| 1459 | movl %eax, %edi | ||
| 1460 | roll $5, %edi | ||
| 1461 | addl %ebp, %esi | ||
| 1462 | addl %edi, %esi | ||
| 1463 | |||
| 1464 | movl 60(%esp), %edi | ||
| 1465 | movl %eax, %ebp | ||
| 1466 | xorl 4(%esp), %edi | ||
| 1467 | rorl $2, %eax | ||
| 1468 | xorl 28(%esp), %edi | ||
| 1469 | xorl %ecx, %ebp | ||
| 1470 | xorl 48(%esp), %edi | ||
| 1471 | xorl %ebx, %ebp | ||
| 1472 | .byte 209 | ||
| 1473 | .byte 199 | ||
| 1474 | movl %edi, 60(%esp) | ||
| 1475 | leal 3395469782(%edi,%edx,1),%edi | ||
| 1476 | movl %esi, %edx | ||
| 1477 | roll $5, %edx | ||
| 1478 | addl %ebp, %edi | ||
| 1479 | addl %edx, %edi | ||
| 1480 | |||
| 1481 | |||
| 1482 | movl 128(%esp), %ebp | ||
| 1483 | movl 12(%ebp), %edx | ||
| 1484 | addl %ecx, %edx | ||
| 1485 | movl 4(%ebp), %ecx | ||
| 1486 | addl %esi, %ecx | ||
| 1487 | movl %eax, %esi | ||
| 1488 | movl (%ebp), %eax | ||
| 1489 | movl %edx, 12(%ebp) | ||
| 1490 | addl %edi, %eax | ||
| 1491 | movl 16(%ebp), %edi | ||
| 1492 | addl %ebx, %edi | ||
| 1493 | movl 8(%ebp), %ebx | ||
| 1494 | addl %esi, %ebx | ||
| 1495 | movl %eax, (%ebp) | ||
| 1496 | movl 132(%esp), %esi | ||
| 1497 | movl %ebx, 8(%ebp) | ||
| 1498 | addl $64, %esi | ||
| 1499 | movl 68(%esp), %eax | ||
| 1500 | movl %edi, 16(%ebp) | ||
| 1501 | cmpl %eax, %esi | ||
| 1502 | movl %ecx, 4(%ebp) | ||
| 1503 | jb .L000start | ||
| 1504 | addl $108, %esp | ||
| 1505 | popl %edi | ||
| 1506 | popl %ebx | ||
| 1507 | popl %ebp | ||
| 1508 | popl %esi | ||
| 1509 | ret | ||
| 1510 | .L_sha1_block_asm_data_order_end: | ||
| 1511 | .size sha1_block_asm_data_order,.L_sha1_block_asm_data_order_end-sha1_block_asm_data_order | ||
| 1512 | .ident "desasm.pl" | ||
| 1513 | .text | ||
| 1514 | .align 16 | ||
| 1515 | .globl sha1_block_asm_host_order | ||
| 1516 | .type sha1_block_asm_host_order,@function | ||
| 1517 | sha1_block_asm_host_order: | ||
| 1518 | movl 12(%esp), %ecx | ||
| 1519 | pushl %esi | ||
| 1520 | sall $6, %ecx | ||
| 1521 | movl 12(%esp), %esi | ||
| 1522 | pushl %ebp | ||
| 1523 | addl %esi, %ecx | ||
| 1524 | pushl %ebx | ||
| 1525 | movl 16(%esp), %ebp | ||
| 1526 | pushl %edi | ||
| 1527 | movl 12(%ebp), %edx | ||
| 1528 | subl $108, %esp | ||
| 1529 | movl 16(%ebp), %edi | ||
| 1530 | movl 8(%ebp), %ebx | ||
| 1531 | movl %ecx, 68(%esp) | ||
| 1532 | |||
| 1533 | movl (%esi), %eax | ||
| 1534 | movl 4(%esi), %ecx | ||
| 1535 | movl %eax, (%esp) | ||
| 1536 | movl %ecx, 4(%esp) | ||
| 1537 | movl 8(%esi), %eax | ||
| 1538 | movl 12(%esi), %ecx | ||
| 1539 | movl %eax, 8(%esp) | ||
| 1540 | movl %ecx, 12(%esp) | ||
| 1541 | movl 16(%esi), %eax | ||
| 1542 | movl 20(%esi), %ecx | ||
| 1543 | movl %eax, 16(%esp) | ||
| 1544 | movl %ecx, 20(%esp) | ||
| 1545 | movl 24(%esi), %eax | ||
| 1546 | movl 28(%esi), %ecx | ||
| 1547 | movl %eax, 24(%esp) | ||
| 1548 | movl %ecx, 28(%esp) | ||
| 1549 | movl 32(%esi), %eax | ||
| 1550 | movl 36(%esi), %ecx | ||
| 1551 | movl %eax, 32(%esp) | ||
| 1552 | movl %ecx, 36(%esp) | ||
| 1553 | movl 40(%esi), %eax | ||
| 1554 | movl 44(%esi), %ecx | ||
| 1555 | movl %eax, 40(%esp) | ||
| 1556 | movl %ecx, 44(%esp) | ||
| 1557 | movl 48(%esi), %eax | ||
| 1558 | movl 52(%esi), %ecx | ||
| 1559 | movl %eax, 48(%esp) | ||
| 1560 | movl %ecx, 52(%esp) | ||
| 1561 | movl 56(%esi), %eax | ||
| 1562 | movl 60(%esi), %ecx | ||
| 1563 | movl %eax, 56(%esp) | ||
| 1564 | movl %ecx, 60(%esp) | ||
| 1565 | jmp .L001shortcut | ||
| 1566 | .L_sha1_block_asm_host_order_end: | ||
| 1567 | .size sha1_block_asm_host_order,.L_sha1_block_asm_host_order_end-sha1_block_asm_host_order | ||
| 1568 | .ident "desasm.pl" | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_md32_common.h b/src/lib/libssl/src/fips-1.0/sha/fips_md32_common.h deleted file mode 100644 index b5ad231e3a..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/fips_md32_common.h +++ /dev/null | |||
| @@ -1,623 +0,0 @@ | |||
| 1 | /* crypto/md32_common.h */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 1999-2002 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * licensing@OpenSSL.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | * This product includes cryptographic software written by Eric Young | ||
| 51 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 52 | * Hudson (tjh@cryptsoft.com). | ||
| 53 | * | ||
| 54 | */ | ||
| 55 | |||
| 56 | /* | ||
| 57 | * This is a generic 32 bit "collector" for message digest algorithms. | ||
| 58 | * Whenever needed it collects input character stream into chunks of | ||
| 59 | * 32 bit values and invokes a block function that performs actual hash | ||
| 60 | * calculations. | ||
| 61 | * | ||
| 62 | * Porting guide. | ||
| 63 | * | ||
| 64 | * Obligatory macros: | ||
| 65 | * | ||
| 66 | * DATA_ORDER_IS_BIG_ENDIAN or DATA_ORDER_IS_LITTLE_ENDIAN | ||
| 67 | * this macro defines byte order of input stream. | ||
| 68 | * HASH_CBLOCK | ||
| 69 | * size of a unit chunk HASH_BLOCK operates on. | ||
| 70 | * HASH_LONG | ||
| 71 | * has to be at lest 32 bit wide, if it's wider, then | ||
| 72 | * HASH_LONG_LOG2 *has to* be defined along | ||
| 73 | * HASH_CTX | ||
| 74 | * context structure that at least contains following | ||
| 75 | * members: | ||
| 76 | * typedef struct { | ||
| 77 | * ... | ||
| 78 | * HASH_LONG Nl,Nh; | ||
| 79 | * HASH_LONG data[HASH_LBLOCK]; | ||
| 80 | * unsigned int num; | ||
| 81 | * ... | ||
| 82 | * } HASH_CTX; | ||
| 83 | * HASH_UPDATE | ||
| 84 | * name of "Update" function, implemented here. | ||
| 85 | * HASH_TRANSFORM | ||
| 86 | * name of "Transform" function, implemented here. | ||
| 87 | * HASH_FINAL | ||
| 88 | * name of "Final" function, implemented here. | ||
| 89 | * HASH_BLOCK_HOST_ORDER | ||
| 90 | * name of "block" function treating *aligned* input message | ||
| 91 | * in host byte order, implemented externally. | ||
| 92 | * HASH_BLOCK_DATA_ORDER | ||
| 93 | * name of "block" function treating *unaligned* input message | ||
| 94 | * in original (data) byte order, implemented externally (it | ||
| 95 | * actually is optional if data and host are of the same | ||
| 96 | * "endianess"). | ||
| 97 | * HASH_MAKE_STRING | ||
| 98 | * macro convering context variables to an ASCII hash string. | ||
| 99 | * | ||
| 100 | * Optional macros: | ||
| 101 | * | ||
| 102 | * B_ENDIAN or L_ENDIAN | ||
| 103 | * defines host byte-order. | ||
| 104 | * HASH_LONG_LOG2 | ||
| 105 | * defaults to 2 if not states otherwise. | ||
| 106 | * HASH_LBLOCK | ||
| 107 | * assumed to be HASH_CBLOCK/4 if not stated otherwise. | ||
| 108 | * HASH_BLOCK_DATA_ORDER_ALIGNED | ||
| 109 | * alternative "block" function capable of treating | ||
| 110 | * aligned input message in original (data) order, | ||
| 111 | * implemented externally. | ||
| 112 | * | ||
| 113 | * MD5 example: | ||
| 114 | * | ||
| 115 | * #define DATA_ORDER_IS_LITTLE_ENDIAN | ||
| 116 | * | ||
| 117 | * #define HASH_LONG MD5_LONG | ||
| 118 | * #define HASH_LONG_LOG2 MD5_LONG_LOG2 | ||
| 119 | * #define HASH_CTX MD5_CTX | ||
| 120 | * #define HASH_CBLOCK MD5_CBLOCK | ||
| 121 | * #define HASH_LBLOCK MD5_LBLOCK | ||
| 122 | * #define HASH_UPDATE MD5_Update | ||
| 123 | * #define HASH_TRANSFORM MD5_Transform | ||
| 124 | * #define HASH_FINAL MD5_Final | ||
| 125 | * #define HASH_BLOCK_HOST_ORDER md5_block_host_order | ||
| 126 | * #define HASH_BLOCK_DATA_ORDER md5_block_data_order | ||
| 127 | * | ||
| 128 | * <appro@fy.chalmers.se> | ||
| 129 | */ | ||
| 130 | |||
| 131 | #if !defined(DATA_ORDER_IS_BIG_ENDIAN) && !defined(DATA_ORDER_IS_LITTLE_ENDIAN) | ||
| 132 | #error "DATA_ORDER must be defined!" | ||
| 133 | #endif | ||
| 134 | |||
| 135 | #ifndef HASH_CBLOCK | ||
| 136 | #error "HASH_CBLOCK must be defined!" | ||
| 137 | #endif | ||
| 138 | #ifndef HASH_LONG | ||
| 139 | #error "HASH_LONG must be defined!" | ||
| 140 | #endif | ||
| 141 | #ifndef HASH_CTX | ||
| 142 | #error "HASH_CTX must be defined!" | ||
| 143 | #endif | ||
| 144 | |||
| 145 | #ifndef HASH_UPDATE | ||
| 146 | #error "HASH_UPDATE must be defined!" | ||
| 147 | #endif | ||
| 148 | #ifndef HASH_TRANSFORM | ||
| 149 | #error "HASH_TRANSFORM must be defined!" | ||
| 150 | #endif | ||
| 151 | #ifndef HASH_FINAL | ||
| 152 | #error "HASH_FINAL must be defined!" | ||
| 153 | #endif | ||
| 154 | |||
| 155 | #ifndef HASH_BLOCK_HOST_ORDER | ||
| 156 | #error "HASH_BLOCK_HOST_ORDER must be defined!" | ||
| 157 | #endif | ||
| 158 | |||
| 159 | #if 0 | ||
| 160 | /* | ||
| 161 | * Moved below as it's required only if HASH_BLOCK_DATA_ORDER_ALIGNED | ||
| 162 | * isn't defined. | ||
| 163 | */ | ||
| 164 | #ifndef HASH_BLOCK_DATA_ORDER | ||
| 165 | #error "HASH_BLOCK_DATA_ORDER must be defined!" | ||
| 166 | #endif | ||
| 167 | #endif | ||
| 168 | |||
| 169 | #ifndef HASH_LBLOCK | ||
| 170 | #define HASH_LBLOCK (HASH_CBLOCK/4) | ||
| 171 | #endif | ||
| 172 | |||
| 173 | #ifndef HASH_LONG_LOG2 | ||
| 174 | #define HASH_LONG_LOG2 2 | ||
| 175 | #endif | ||
| 176 | |||
| 177 | /* | ||
| 178 | * Engage compiler specific rotate intrinsic function if available. | ||
| 179 | */ | ||
| 180 | #undef ROTATE | ||
| 181 | #ifndef PEDANTIC | ||
| 182 | # if defined(_MSC_VER) || defined(__ICC) | ||
| 183 | # define ROTATE(a,n) _lrotl(a,n) | ||
| 184 | # elif defined(__MWERKS__) | ||
| 185 | # if defined(__POWERPC__) | ||
| 186 | # define ROTATE(a,n) __rlwinm(a,n,0,31) | ||
| 187 | # elif defined(__MC68K__) | ||
| 188 | /* Motorola specific tweak. <appro@fy.chalmers.se> */ | ||
| 189 | # define ROTATE(a,n) ( n<24 ? __rol(a,n) : __ror(a,32-n) ) | ||
| 190 | # else | ||
| 191 | # define ROTATE(a,n) __rol(a,n) | ||
| 192 | # endif | ||
| 193 | # elif defined(__GNUC__) && __GNUC__>=2 && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) | ||
| 194 | /* | ||
| 195 | * Some GNU C inline assembler templates. Note that these are | ||
| 196 | * rotates by *constant* number of bits! But that's exactly | ||
| 197 | * what we need here... | ||
| 198 | * <appro@fy.chalmers.se> | ||
| 199 | */ | ||
| 200 | # if defined(__i386) || defined(__i386__) || defined(__x86_64) || defined(__x86_64__) | ||
| 201 | # define ROTATE(a,n) ({ register unsigned int ret; \ | ||
| 202 | asm ( \ | ||
| 203 | "roll %1,%0" \ | ||
| 204 | : "=r"(ret) \ | ||
| 205 | : "I"(n), "0"(a) \ | ||
| 206 | : "cc"); \ | ||
| 207 | ret; \ | ||
| 208 | }) | ||
| 209 | # elif defined(__powerpc) || defined(__ppc__) || defined(__powerpc64__) | ||
| 210 | # define ROTATE(a,n) ({ register unsigned int ret; \ | ||
| 211 | asm ( \ | ||
| 212 | "rlwinm %0,%1,%2,0,31" \ | ||
| 213 | : "=r"(ret) \ | ||
| 214 | : "r"(a), "I"(n)); \ | ||
| 215 | ret; \ | ||
| 216 | }) | ||
| 217 | # endif | ||
| 218 | # endif | ||
| 219 | #endif /* PEDANTIC */ | ||
| 220 | |||
| 221 | #if HASH_LONG_LOG2==2 /* Engage only if sizeof(HASH_LONG)== 4 */ | ||
| 222 | /* A nice byte order reversal from Wei Dai <weidai@eskimo.com> */ | ||
| 223 | #ifdef ROTATE | ||
| 224 | /* 5 instructions with rotate instruction, else 9 */ | ||
| 225 | #define REVERSE_FETCH32(a,l) ( \ | ||
| 226 | l=*(const HASH_LONG *)(a), \ | ||
| 227 | ((ROTATE(l,8)&0x00FF00FF)|(ROTATE((l&0x00FF00FF),24))) \ | ||
| 228 | ) | ||
| 229 | #else | ||
| 230 | /* 6 instructions with rotate instruction, else 8 */ | ||
| 231 | #define REVERSE_FETCH32(a,l) ( \ | ||
| 232 | l=*(const HASH_LONG *)(a), \ | ||
| 233 | l=(((l>>8)&0x00FF00FF)|((l&0x00FF00FF)<<8)), \ | ||
| 234 | ROTATE(l,16) \ | ||
| 235 | ) | ||
| 236 | /* | ||
| 237 | * Originally the middle line started with l=(((l&0xFF00FF00)>>8)|... | ||
| 238 | * It's rewritten as above for two reasons: | ||
| 239 | * - RISCs aren't good at long constants and have to explicitely | ||
| 240 | * compose 'em with several (well, usually 2) instructions in a | ||
| 241 | * register before performing the actual operation and (as you | ||
| 242 | * already realized:-) having same constant should inspire the | ||
| 243 | * compiler to permanently allocate the only register for it; | ||
| 244 | * - most modern CPUs have two ALUs, but usually only one has | ||
| 245 | * circuitry for shifts:-( this minor tweak inspires compiler | ||
| 246 | * to schedule shift instructions in a better way... | ||
| 247 | * | ||
| 248 | * <appro@fy.chalmers.se> | ||
| 249 | */ | ||
| 250 | #endif | ||
| 251 | #endif | ||
| 252 | |||
| 253 | #ifndef ROTATE | ||
| 254 | #define ROTATE(a,n) (((a)<<(n))|(((a)&0xffffffff)>>(32-(n)))) | ||
| 255 | #endif | ||
| 256 | |||
| 257 | /* | ||
| 258 | * Make some obvious choices. E.g., HASH_BLOCK_DATA_ORDER_ALIGNED | ||
| 259 | * and HASH_BLOCK_HOST_ORDER ought to be the same if input data | ||
| 260 | * and host are of the same "endianess". It's possible to mask | ||
| 261 | * this with blank #define HASH_BLOCK_DATA_ORDER though... | ||
| 262 | * | ||
| 263 | * <appro@fy.chalmers.se> | ||
| 264 | */ | ||
| 265 | #if defined(B_ENDIAN) | ||
| 266 | # if defined(DATA_ORDER_IS_BIG_ENDIAN) | ||
| 267 | # if !defined(HASH_BLOCK_DATA_ORDER_ALIGNED) && HASH_LONG_LOG2==2 | ||
| 268 | # define HASH_BLOCK_DATA_ORDER_ALIGNED HASH_BLOCK_HOST_ORDER | ||
| 269 | # endif | ||
| 270 | # endif | ||
| 271 | #elif defined(L_ENDIAN) | ||
| 272 | # if defined(DATA_ORDER_IS_LITTLE_ENDIAN) | ||
| 273 | # if !defined(HASH_BLOCK_DATA_ORDER_ALIGNED) && HASH_LONG_LOG2==2 | ||
| 274 | # define HASH_BLOCK_DATA_ORDER_ALIGNED HASH_BLOCK_HOST_ORDER | ||
| 275 | # endif | ||
| 276 | # endif | ||
| 277 | #endif | ||
| 278 | |||
| 279 | #if !defined(HASH_BLOCK_DATA_ORDER_ALIGNED) | ||
| 280 | #ifndef HASH_BLOCK_DATA_ORDER | ||
| 281 | #error "HASH_BLOCK_DATA_ORDER must be defined!" | ||
| 282 | #endif | ||
| 283 | #endif | ||
| 284 | |||
| 285 | #if defined(DATA_ORDER_IS_BIG_ENDIAN) | ||
| 286 | |||
| 287 | #ifndef PEDANTIC | ||
| 288 | # if defined(__GNUC__) && __GNUC__>=2 && !defined(OPENSSL_NO_ASM) && !defined(OPENSSL_NO_INLINE_ASM) | ||
| 289 | # if defined(__i386) || defined(__i386__) || defined(__x86_64) || defined(__x86_64__) | ||
| 290 | /* | ||
| 291 | * This gives ~30-40% performance improvement in SHA-256 compiled | ||
| 292 | * with gcc [on P4]. Well, first macro to be frank. We can pull | ||
| 293 | * this trick on x86* platforms only, because these CPUs can fetch | ||
| 294 | * unaligned data without raising an exception. | ||
| 295 | */ | ||
| 296 | # define HOST_c2l(c,l) ({ unsigned int r=*((const unsigned int *)(c)); \ | ||
| 297 | asm ("bswapl %0":"=r"(r):"0"(r)); \ | ||
| 298 | (c)+=4; (l)=r; }) | ||
| 299 | # define HOST_l2c(l,c) ({ unsigned int r=(l); \ | ||
| 300 | asm ("bswapl %0":"=r"(r):"0"(r)); \ | ||
| 301 | *((unsigned int *)(c))=r; (c)+=4; r; }) | ||
| 302 | # endif | ||
| 303 | # endif | ||
| 304 | #endif | ||
| 305 | |||
| 306 | #ifndef HOST_c2l | ||
| 307 | #define HOST_c2l(c,l) (l =(((unsigned long)(*((c)++)))<<24), \ | ||
| 308 | l|=(((unsigned long)(*((c)++)))<<16), \ | ||
| 309 | l|=(((unsigned long)(*((c)++)))<< 8), \ | ||
| 310 | l|=(((unsigned long)(*((c)++))) ), \ | ||
| 311 | l) | ||
| 312 | #endif | ||
| 313 | #define HOST_p_c2l(c,l,n) { \ | ||
| 314 | switch (n) { \ | ||
| 315 | case 0: l =((unsigned long)(*((c)++)))<<24; \ | ||
| 316 | case 1: l|=((unsigned long)(*((c)++)))<<16; \ | ||
| 317 | case 2: l|=((unsigned long)(*((c)++)))<< 8; \ | ||
| 318 | case 3: l|=((unsigned long)(*((c)++))); \ | ||
| 319 | } } | ||
| 320 | #define HOST_p_c2l_p(c,l,sc,len) { \ | ||
| 321 | switch (sc) { \ | ||
| 322 | case 0: l =((unsigned long)(*((c)++)))<<24; \ | ||
| 323 | if (--len == 0) break; \ | ||
| 324 | case 1: l|=((unsigned long)(*((c)++)))<<16; \ | ||
| 325 | if (--len == 0) break; \ | ||
| 326 | case 2: l|=((unsigned long)(*((c)++)))<< 8; \ | ||
| 327 | } } | ||
| 328 | /* NOTE the pointer is not incremented at the end of this */ | ||
| 329 | #define HOST_c2l_p(c,l,n) { \ | ||
| 330 | l=0; (c)+=n; \ | ||
| 331 | switch (n) { \ | ||
| 332 | case 3: l =((unsigned long)(*(--(c))))<< 8; \ | ||
| 333 | case 2: l|=((unsigned long)(*(--(c))))<<16; \ | ||
| 334 | case 1: l|=((unsigned long)(*(--(c))))<<24; \ | ||
| 335 | } } | ||
| 336 | #ifndef HOST_l2c | ||
| 337 | #define HOST_l2c(l,c) (*((c)++)=(unsigned char)(((l)>>24)&0xff), \ | ||
| 338 | *((c)++)=(unsigned char)(((l)>>16)&0xff), \ | ||
| 339 | *((c)++)=(unsigned char)(((l)>> 8)&0xff), \ | ||
| 340 | *((c)++)=(unsigned char)(((l) )&0xff), \ | ||
| 341 | l) | ||
| 342 | #endif | ||
| 343 | |||
| 344 | #elif defined(DATA_ORDER_IS_LITTLE_ENDIAN) | ||
| 345 | |||
| 346 | #if defined(__i386) || defined(__i386__) || defined(__x86_64) || defined(__x86_64__) | ||
| 347 | /* See comment in DATA_ORDER_IS_BIG_ENDIAN section. */ | ||
| 348 | # define HOST_c2l(c,l) ((l)=*((const unsigned int *)(c)), (c)+=4, l) | ||
| 349 | # define HOST_l2c(l,c) (*((unsigned int *)(c))=(l), (c)+=4, l) | ||
| 350 | #endif | ||
| 351 | |||
| 352 | #ifndef HOST_c2l | ||
| 353 | #define HOST_c2l(c,l) (l =(((unsigned long)(*((c)++))) ), \ | ||
| 354 | l|=(((unsigned long)(*((c)++)))<< 8), \ | ||
| 355 | l|=(((unsigned long)(*((c)++)))<<16), \ | ||
| 356 | l|=(((unsigned long)(*((c)++)))<<24), \ | ||
| 357 | l) | ||
| 358 | #endif | ||
| 359 | #define HOST_p_c2l(c,l,n) { \ | ||
| 360 | switch (n) { \ | ||
| 361 | case 0: l =((unsigned long)(*((c)++))); \ | ||
| 362 | case 1: l|=((unsigned long)(*((c)++)))<< 8; \ | ||
| 363 | case 2: l|=((unsigned long)(*((c)++)))<<16; \ | ||
| 364 | case 3: l|=((unsigned long)(*((c)++)))<<24; \ | ||
| 365 | } } | ||
| 366 | #define HOST_p_c2l_p(c,l,sc,len) { \ | ||
| 367 | switch (sc) { \ | ||
| 368 | case 0: l =((unsigned long)(*((c)++))); \ | ||
| 369 | if (--len == 0) break; \ | ||
| 370 | case 1: l|=((unsigned long)(*((c)++)))<< 8; \ | ||
| 371 | if (--len == 0) break; \ | ||
| 372 | case 2: l|=((unsigned long)(*((c)++)))<<16; \ | ||
| 373 | } } | ||
| 374 | /* NOTE the pointer is not incremented at the end of this */ | ||
| 375 | #define HOST_c2l_p(c,l,n) { \ | ||
| 376 | l=0; (c)+=n; \ | ||
| 377 | switch (n) { \ | ||
| 378 | case 3: l =((unsigned long)(*(--(c))))<<16; \ | ||
| 379 | case 2: l|=((unsigned long)(*(--(c))))<< 8; \ | ||
| 380 | case 1: l|=((unsigned long)(*(--(c)))); \ | ||
| 381 | } } | ||
| 382 | #ifndef HOST_l2c | ||
| 383 | #define HOST_l2c(l,c) (*((c)++)=(unsigned char)(((l) )&0xff), \ | ||
| 384 | *((c)++)=(unsigned char)(((l)>> 8)&0xff), \ | ||
| 385 | *((c)++)=(unsigned char)(((l)>>16)&0xff), \ | ||
| 386 | *((c)++)=(unsigned char)(((l)>>24)&0xff), \ | ||
| 387 | l) | ||
| 388 | #endif | ||
| 389 | |||
| 390 | #endif | ||
| 391 | |||
| 392 | /* | ||
| 393 | * Time for some action:-) | ||
| 394 | */ | ||
| 395 | |||
| 396 | int HASH_UPDATE (HASH_CTX *c, const void *data_, size_t len) | ||
| 397 | { | ||
| 398 | const unsigned char *data=data_; | ||
| 399 | register HASH_LONG * p; | ||
| 400 | register HASH_LONG l; | ||
| 401 | size_t sw,sc,ew,ec; | ||
| 402 | |||
| 403 | if(FIPS_selftest_failed()) | ||
| 404 | return 0; | ||
| 405 | |||
| 406 | if (len==0) return 1; | ||
| 407 | |||
| 408 | l=(c->Nl+(((HASH_LONG)len)<<3))&0xffffffffUL; | ||
| 409 | /* 95-05-24 eay Fixed a bug with the overflow handling, thanks to | ||
| 410 | * Wei Dai <weidai@eskimo.com> for pointing it out. */ | ||
| 411 | if (l < c->Nl) /* overflow */ | ||
| 412 | c->Nh++; | ||
| 413 | c->Nh+=(len>>29); /* might cause compiler warning on 16-bit */ | ||
| 414 | c->Nl=l; | ||
| 415 | |||
| 416 | if (c->num != 0) | ||
| 417 | { | ||
| 418 | p=c->data; | ||
| 419 | sw=c->num>>2; | ||
| 420 | sc=c->num&0x03; | ||
| 421 | |||
| 422 | if ((c->num+len) >= HASH_CBLOCK) | ||
| 423 | { | ||
| 424 | l=p[sw]; HOST_p_c2l(data,l,sc); p[sw++]=l; | ||
| 425 | for (; sw<HASH_LBLOCK; sw++) | ||
| 426 | { | ||
| 427 | HOST_c2l(data,l); p[sw]=l; | ||
| 428 | } | ||
| 429 | HASH_BLOCK_HOST_ORDER (c,p,1); | ||
| 430 | len-=(HASH_CBLOCK-c->num); | ||
| 431 | c->num=0; | ||
| 432 | /* drop through and do the rest */ | ||
| 433 | } | ||
| 434 | else | ||
| 435 | { | ||
| 436 | c->num+=(unsigned int)len; | ||
| 437 | if ((sc+len) < 4) /* ugly, add char's to a word */ | ||
| 438 | { | ||
| 439 | l=p[sw]; HOST_p_c2l_p(data,l,sc,len); p[sw]=l; | ||
| 440 | } | ||
| 441 | else | ||
| 442 | { | ||
| 443 | ew=(c->num>>2); | ||
| 444 | ec=(c->num&0x03); | ||
| 445 | if (sc) | ||
| 446 | l=p[sw]; | ||
| 447 | HOST_p_c2l(data,l,sc); | ||
| 448 | p[sw++]=l; | ||
| 449 | for (; sw < ew; sw++) | ||
| 450 | { | ||
| 451 | HOST_c2l(data,l); p[sw]=l; | ||
| 452 | } | ||
| 453 | if (ec) | ||
| 454 | { | ||
| 455 | HOST_c2l_p(data,l,ec); p[sw]=l; | ||
| 456 | } | ||
| 457 | } | ||
| 458 | return 1; | ||
| 459 | } | ||
| 460 | } | ||
| 461 | |||
| 462 | sw=len/HASH_CBLOCK; | ||
| 463 | if (sw > 0) | ||
| 464 | { | ||
| 465 | #if defined(HASH_BLOCK_DATA_ORDER_ALIGNED) | ||
| 466 | /* | ||
| 467 | * Note that HASH_BLOCK_DATA_ORDER_ALIGNED gets defined | ||
| 468 | * only if sizeof(HASH_LONG)==4. | ||
| 469 | */ | ||
| 470 | if ((((size_t)data)%4) == 0) | ||
| 471 | { | ||
| 472 | /* data is properly aligned so that we can cast it: */ | ||
| 473 | HASH_BLOCK_DATA_ORDER_ALIGNED (c,(const HASH_LONG *)data,sw); | ||
| 474 | sw*=HASH_CBLOCK; | ||
| 475 | data+=sw; | ||
| 476 | len-=sw; | ||
| 477 | } | ||
| 478 | else | ||
| 479 | #if !defined(HASH_BLOCK_DATA_ORDER) | ||
| 480 | while (sw--) | ||
| 481 | { | ||
| 482 | memcpy (p=c->data,data,HASH_CBLOCK); | ||
| 483 | HASH_BLOCK_DATA_ORDER_ALIGNED(c,p,1); | ||
| 484 | data+=HASH_CBLOCK; | ||
| 485 | len-=HASH_CBLOCK; | ||
| 486 | } | ||
| 487 | #endif | ||
| 488 | #endif | ||
| 489 | #if defined(HASH_BLOCK_DATA_ORDER) | ||
| 490 | { | ||
| 491 | HASH_BLOCK_DATA_ORDER(c,data,sw); | ||
| 492 | sw*=HASH_CBLOCK; | ||
| 493 | data+=sw; | ||
| 494 | len-=sw; | ||
| 495 | } | ||
| 496 | #endif | ||
| 497 | } | ||
| 498 | |||
| 499 | if (len!=0) | ||
| 500 | { | ||
| 501 | p = c->data; | ||
| 502 | c->num = len; | ||
| 503 | ew=len>>2; /* words to copy */ | ||
| 504 | ec=len&0x03; | ||
| 505 | for (; ew; ew--,p++) | ||
| 506 | { | ||
| 507 | HOST_c2l(data,l); *p=l; | ||
| 508 | } | ||
| 509 | HOST_c2l_p(data,l,ec); | ||
| 510 | *p=l; | ||
| 511 | } | ||
| 512 | return 1; | ||
| 513 | } | ||
| 514 | |||
| 515 | |||
| 516 | void HASH_TRANSFORM (HASH_CTX *c, const unsigned char *data) | ||
| 517 | { | ||
| 518 | #if defined(HASH_BLOCK_DATA_ORDER_ALIGNED) | ||
| 519 | if ((((size_t)data)%4) == 0) | ||
| 520 | /* data is properly aligned so that we can cast it: */ | ||
| 521 | HASH_BLOCK_DATA_ORDER_ALIGNED (c,(const HASH_LONG *)data,1); | ||
| 522 | else | ||
| 523 | #if !defined(HASH_BLOCK_DATA_ORDER) | ||
| 524 | { | ||
| 525 | memcpy (c->data,data,HASH_CBLOCK); | ||
| 526 | HASH_BLOCK_DATA_ORDER_ALIGNED (c,c->data,1); | ||
| 527 | } | ||
| 528 | #endif | ||
| 529 | #endif | ||
| 530 | #if defined(HASH_BLOCK_DATA_ORDER) | ||
| 531 | HASH_BLOCK_DATA_ORDER (c,data,1); | ||
| 532 | #endif | ||
| 533 | } | ||
| 534 | |||
| 535 | |||
| 536 | int HASH_FINAL (unsigned char *md, HASH_CTX *c) | ||
| 537 | { | ||
| 538 | register HASH_LONG *p; | ||
| 539 | register unsigned long l; | ||
| 540 | register int i,j; | ||
| 541 | static const unsigned char end[4]={0x80,0x00,0x00,0x00}; | ||
| 542 | const unsigned char *cp=end; | ||
| 543 | |||
| 544 | /* c->num should definitly have room for at least one more byte. */ | ||
| 545 | p=c->data; | ||
| 546 | i=c->num>>2; | ||
| 547 | j=c->num&0x03; | ||
| 548 | |||
| 549 | #if 0 | ||
| 550 | /* purify often complains about the following line as an | ||
| 551 | * Uninitialized Memory Read. While this can be true, the | ||
| 552 | * following p_c2l macro will reset l when that case is true. | ||
| 553 | * This is because j&0x03 contains the number of 'valid' bytes | ||
| 554 | * already in p[i]. If and only if j&0x03 == 0, the UMR will | ||
| 555 | * occur but this is also the only time p_c2l will do | ||
| 556 | * l= *(cp++) instead of l|= *(cp++) | ||
| 557 | * Many thanks to Alex Tang <altitude@cic.net> for pickup this | ||
| 558 | * 'potential bug' */ | ||
| 559 | #ifdef PURIFY | ||
| 560 | if (j==0) p[i]=0; /* Yeah, but that's not the way to fix it:-) */ | ||
| 561 | #endif | ||
| 562 | l=p[i]; | ||
| 563 | #else | ||
| 564 | l = (j==0) ? 0 : p[i]; | ||
| 565 | #endif | ||
| 566 | HOST_p_c2l(cp,l,j); p[i++]=l; /* i is the next 'undefined word' */ | ||
| 567 | |||
| 568 | if (i>(HASH_LBLOCK-2)) /* save room for Nl and Nh */ | ||
| 569 | { | ||
| 570 | if (i<HASH_LBLOCK) p[i]=0; | ||
| 571 | HASH_BLOCK_HOST_ORDER (c,p,1); | ||
| 572 | i=0; | ||
| 573 | } | ||
| 574 | for (; i<(HASH_LBLOCK-2); i++) | ||
| 575 | p[i]=0; | ||
| 576 | |||
| 577 | #if defined(DATA_ORDER_IS_BIG_ENDIAN) | ||
| 578 | p[HASH_LBLOCK-2]=c->Nh; | ||
| 579 | p[HASH_LBLOCK-1]=c->Nl; | ||
| 580 | #elif defined(DATA_ORDER_IS_LITTLE_ENDIAN) | ||
| 581 | p[HASH_LBLOCK-2]=c->Nl; | ||
| 582 | p[HASH_LBLOCK-1]=c->Nh; | ||
| 583 | #endif | ||
| 584 | HASH_BLOCK_HOST_ORDER (c,p,1); | ||
| 585 | |||
| 586 | #ifndef HASH_MAKE_STRING | ||
| 587 | #error "HASH_MAKE_STRING must be defined!" | ||
| 588 | #else | ||
| 589 | HASH_MAKE_STRING(c,md); | ||
| 590 | #endif | ||
| 591 | |||
| 592 | c->num=0; | ||
| 593 | /* clear stuff, HASH_BLOCK may be leaving some stuff on the stack | ||
| 594 | * but I'm not worried :-) | ||
| 595 | OPENSSL_cleanse((void *)c,sizeof(HASH_CTX)); | ||
| 596 | */ | ||
| 597 | return 1; | ||
| 598 | } | ||
| 599 | |||
| 600 | #ifndef MD32_REG_T | ||
| 601 | #define MD32_REG_T long | ||
| 602 | /* | ||
| 603 | * This comment was originaly written for MD5, which is why it | ||
| 604 | * discusses A-D. But it basically applies to all 32-bit digests, | ||
| 605 | * which is why it was moved to common header file. | ||
| 606 | * | ||
| 607 | * In case you wonder why A-D are declared as long and not | ||
| 608 | * as MD5_LONG. Doing so results in slight performance | ||
| 609 | * boost on LP64 architectures. The catch is we don't | ||
| 610 | * really care if 32 MSBs of a 64-bit register get polluted | ||
| 611 | * with eventual overflows as we *save* only 32 LSBs in | ||
| 612 | * *either* case. Now declaring 'em long excuses the compiler | ||
| 613 | * from keeping 32 MSBs zeroed resulting in 13% performance | ||
| 614 | * improvement under SPARC Solaris7/64 and 5% under AlphaLinux. | ||
| 615 | * Well, to be honest it should say that this *prevents* | ||
| 616 | * performance degradation. | ||
| 617 | * <appro@fy.chalmers.se> | ||
| 618 | * Apparently there're LP64 compilers that generate better | ||
| 619 | * code if A-D are declared int. Most notably GCC-x86_64 | ||
| 620 | * generates better code. | ||
| 621 | * <appro@fy.chalmers.se> | ||
| 622 | */ | ||
| 623 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_sha.h b/src/lib/libssl/src/fips-1.0/sha/fips_sha.h deleted file mode 100644 index 4520b06ce1..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/fips_sha.h +++ /dev/null | |||
| @@ -1,186 +0,0 @@ | |||
| 1 | /* fips/sha1/fips_sha.h */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #ifndef HEADER_SHA_H | ||
| 60 | #define HEADER_SHA_H | ||
| 61 | |||
| 62 | #include <openssl/e_os2.h> | ||
| 63 | |||
| 64 | #ifdef __cplusplus | ||
| 65 | extern "C" { | ||
| 66 | #endif | ||
| 67 | |||
| 68 | #if defined(OPENSSL_NO_SHA) || (defined(OPENSSL_NO_SHA0) && defined(OPENSSL_NO_SHA1)) | ||
| 69 | #error SHA is disabled. | ||
| 70 | #endif | ||
| 71 | |||
| 72 | /* | ||
| 73 | * !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! | ||
| 74 | * ! SHA_LONG has to be at least 32 bits wide. If it's wider, then ! | ||
| 75 | * ! SHA_LONG_LOG2 has to be defined along. ! | ||
| 76 | * !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! | ||
| 77 | */ | ||
| 78 | |||
| 79 | #if defined(OPENSSL_SYS_WIN16) || defined(__LP32__) | ||
| 80 | #define SHA_LONG unsigned long | ||
| 81 | #elif defined(OPENSSL_SYS_CRAY) || defined(__ILP64__) | ||
| 82 | #define SHA_LONG unsigned long | ||
| 83 | #define SHA_LONG_LOG2 3 | ||
| 84 | #else | ||
| 85 | #define SHA_LONG unsigned int | ||
| 86 | #endif | ||
| 87 | |||
| 88 | #define SHA_LBLOCK 16 | ||
| 89 | #define SHA_CBLOCK (SHA_LBLOCK*4) /* SHA treats input data as a | ||
| 90 | * contiguous array of 32 bit | ||
| 91 | * wide big-endian values. */ | ||
| 92 | #define SHA_LAST_BLOCK (SHA_CBLOCK-8) | ||
| 93 | #define SHA_DIGEST_LENGTH 20 | ||
| 94 | |||
| 95 | typedef struct SHAstate_st | ||
| 96 | { | ||
| 97 | SHA_LONG h0,h1,h2,h3,h4; | ||
| 98 | SHA_LONG Nl,Nh; | ||
| 99 | SHA_LONG data[SHA_LBLOCK]; | ||
| 100 | unsigned int num; | ||
| 101 | } SHA_CTX; | ||
| 102 | |||
| 103 | #ifndef OPENSSL_NO_SHA1 | ||
| 104 | int SHA1_Init(SHA_CTX *c); | ||
| 105 | int SHA1_Update(SHA_CTX *c, const void *data, size_t len); | ||
| 106 | int SHA1_Final(unsigned char *md, SHA_CTX *c); | ||
| 107 | unsigned char *SHA1(const unsigned char *d, size_t n, unsigned char *md); | ||
| 108 | void SHA1_Transform(SHA_CTX *c, const unsigned char *data); | ||
| 109 | #endif | ||
| 110 | |||
| 111 | #define SHA256_CBLOCK (SHA_LBLOCK*4) /* SHA-256 treats input data as a | ||
| 112 | * contiguous array of 32 bit | ||
| 113 | * wide big-endian values. */ | ||
| 114 | #define SHA224_DIGEST_LENGTH 28 | ||
| 115 | #define SHA256_DIGEST_LENGTH 32 | ||
| 116 | |||
| 117 | typedef struct SHA256state_st | ||
| 118 | { | ||
| 119 | SHA_LONG h[8]; | ||
| 120 | SHA_LONG Nl,Nh; | ||
| 121 | SHA_LONG data[SHA_LBLOCK]; | ||
| 122 | unsigned int num,md_len; | ||
| 123 | } SHA256_CTX; | ||
| 124 | |||
| 125 | #ifndef OPENSSL_NO_SHA256 | ||
| 126 | int SHA224_Init(SHA256_CTX *c); | ||
| 127 | int SHA224_Update(SHA256_CTX *c, const void *data, size_t len); | ||
| 128 | int SHA224_Final(unsigned char *md, SHA256_CTX *c); | ||
| 129 | unsigned char *SHA224(const unsigned char *d, size_t n,unsigned char *md); | ||
| 130 | int SHA256_Init(SHA256_CTX *c); | ||
| 131 | int SHA256_Update(SHA256_CTX *c, const void *data, size_t len); | ||
| 132 | int SHA256_Final(unsigned char *md, SHA256_CTX *c); | ||
| 133 | unsigned char *SHA256(const unsigned char *d, size_t n,unsigned char *md); | ||
| 134 | void SHA256_Transform(SHA256_CTX *c, const unsigned char *data); | ||
| 135 | #endif | ||
| 136 | |||
| 137 | #define SHA384_DIGEST_LENGTH 48 | ||
| 138 | #define SHA512_DIGEST_LENGTH 64 | ||
| 139 | |||
| 140 | /* | ||
| 141 | * Unlike 32-bit digest algorithms, SHA-512 *relies* on SHA_LONG64 | ||
| 142 | * being exactly 64-bit wide. See Implementation Notes in sha512.c | ||
| 143 | * for further details. | ||
| 144 | */ | ||
| 145 | #define SHA512_CBLOCK (SHA_LBLOCK*8) /* SHA-512 treats input data as a | ||
| 146 | * contiguous array of 64 bit | ||
| 147 | * wide big-endian values. */ | ||
| 148 | #if (defined(_WIN32) || defined(_WIN64)) && !defined(__MINGW32__) | ||
| 149 | #define SHA_LONG64 unsigned __int64 | ||
| 150 | #define U64(C) C##UI64 | ||
| 151 | #elif defined(__arch64__) | ||
| 152 | #define SHA_LONG64 unsigned long | ||
| 153 | #define U64(C) C##UL | ||
| 154 | #else | ||
| 155 | #define SHA_LONG64 unsigned long long | ||
| 156 | #define U64(C) C##ULL | ||
| 157 | #endif | ||
| 158 | |||
| 159 | typedef struct SHA512state_st | ||
| 160 | { | ||
| 161 | SHA_LONG64 h[8]; | ||
| 162 | SHA_LONG64 Nl,Nh; | ||
| 163 | union { | ||
| 164 | SHA_LONG64 d[SHA_LBLOCK]; | ||
| 165 | unsigned char p[SHA512_CBLOCK]; | ||
| 166 | } u; | ||
| 167 | unsigned int num,md_len; | ||
| 168 | } SHA512_CTX; | ||
| 169 | |||
| 170 | #ifndef OPENSSL_NO_SHA512 | ||
| 171 | int SHA384_Init(SHA512_CTX *c); | ||
| 172 | int SHA384_Update(SHA512_CTX *c, const void *data, size_t len); | ||
| 173 | int SHA384_Final(unsigned char *md, SHA512_CTX *c); | ||
| 174 | unsigned char *SHA384(const unsigned char *d, size_t n,unsigned char *md); | ||
| 175 | int SHA512_Init(SHA512_CTX *c); | ||
| 176 | int SHA512_Update(SHA512_CTX *c, const void *data, size_t len); | ||
| 177 | int SHA512_Final(unsigned char *md, SHA512_CTX *c); | ||
| 178 | unsigned char *SHA512(const unsigned char *d, size_t n,unsigned char *md); | ||
| 179 | void SHA512_Transform(SHA512_CTX *c, const unsigned char *data); | ||
| 180 | #endif | ||
| 181 | |||
| 182 | #ifdef __cplusplus | ||
| 183 | } | ||
| 184 | #endif | ||
| 185 | |||
| 186 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_sha1dgst.c b/src/lib/libssl/src/fips-1.0/sha/fips_sha1dgst.c deleted file mode 100644 index fb9e15453c..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/fips_sha1dgst.c +++ /dev/null | |||
| @@ -1,96 +0,0 @@ | |||
| 1 | /* crypto/sha/sha1dgst.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #if !defined(OPENSSL_NO_SHA1) && !defined(OPENSSL_NO_SHA) | ||
| 60 | |||
| 61 | #undef SHA_0 | ||
| 62 | #define SHA_1 | ||
| 63 | |||
| 64 | #include <openssl/opensslv.h> | ||
| 65 | #include <openssl/opensslconf.h> | ||
| 66 | #include <openssl/crypto.h> | ||
| 67 | |||
| 68 | #ifdef OPENSSL_FIPS | ||
| 69 | const char SHA1_version[]="SHA1" OPENSSL_VERSION_PTEXT; | ||
| 70 | |||
| 71 | /* The implementation is in fips_md32_common.h */ | ||
| 72 | #include "fips_sha_locl.h" | ||
| 73 | |||
| 74 | unsigned char *SHA1(const unsigned char *d, size_t n, unsigned char *md) | ||
| 75 | { | ||
| 76 | SHA_CTX c; | ||
| 77 | static unsigned char m[SHA_DIGEST_LENGTH]; | ||
| 78 | |||
| 79 | OPENSSL_assert(sizeof(unsigned long)<=sizeof(size_t)); | ||
| 80 | if (md == NULL) md=m; | ||
| 81 | if (!SHA1_Init(&c)) | ||
| 82 | return NULL; | ||
| 83 | SHA1_Update(&c,d,n); | ||
| 84 | SHA1_Final(md,&c); | ||
| 85 | OPENSSL_cleanse(&c,sizeof(c)); | ||
| 86 | return(md); | ||
| 87 | } | ||
| 88 | |||
| 89 | #else /* ndef OPENSSL_FIPS */ | ||
| 90 | |||
| 91 | static void *dummy=&dummy; | ||
| 92 | |||
| 93 | #endif /* ndef OPENSSL_FIPS */ | ||
| 94 | |||
| 95 | #endif | ||
| 96 | |||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_sha_locl.h b/src/lib/libssl/src/fips-1.0/sha/fips_sha_locl.h deleted file mode 100644 index bf31d3b845..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/fips_sha_locl.h +++ /dev/null | |||
| @@ -1,482 +0,0 @@ | |||
| 1 | /* crypto/sha/sha_locl.h */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdlib.h> | ||
| 60 | #include <string.h> | ||
| 61 | |||
| 62 | #include <openssl/opensslconf.h> | ||
| 63 | #include <openssl/fips_sha.h> | ||
| 64 | #include <openssl/fips.h> | ||
| 65 | |||
| 66 | #ifndef SHA_LONG_LOG2 | ||
| 67 | #define SHA_LONG_LOG2 2 /* default to 32 bits */ | ||
| 68 | #endif | ||
| 69 | |||
| 70 | #define DATA_ORDER_IS_BIG_ENDIAN | ||
| 71 | |||
| 72 | #define HASH_LONG SHA_LONG | ||
| 73 | #define HASH_LONG_LOG2 SHA_LONG_LOG2 | ||
| 74 | #define HASH_CTX SHA_CTX | ||
| 75 | #define HASH_CBLOCK SHA_CBLOCK | ||
| 76 | #define HASH_LBLOCK SHA_LBLOCK | ||
| 77 | #define HASH_MAKE_STRING(c,s) do { \ | ||
| 78 | unsigned long ll; \ | ||
| 79 | ll=(c)->h0; HOST_l2c(ll,(s)); \ | ||
| 80 | ll=(c)->h1; HOST_l2c(ll,(s)); \ | ||
| 81 | ll=(c)->h2; HOST_l2c(ll,(s)); \ | ||
| 82 | ll=(c)->h3; HOST_l2c(ll,(s)); \ | ||
| 83 | ll=(c)->h4; HOST_l2c(ll,(s)); \ | ||
| 84 | } while (0) | ||
| 85 | |||
| 86 | #if defined(SHA_0) | ||
| 87 | |||
| 88 | # define HASH_UPDATE SHA_Update | ||
| 89 | # define HASH_TRANSFORM SHA_Transform | ||
| 90 | # define HASH_FINAL SHA_Final | ||
| 91 | # define HASH_INIT SHA_Init | ||
| 92 | # define HASH_BLOCK_HOST_ORDER sha_block_host_order | ||
| 93 | # define HASH_BLOCK_DATA_ORDER sha_block_data_order | ||
| 94 | # define Xupdate(a,ix,ia,ib,ic,id) (ix=(a)=(ia^ib^ic^id)) | ||
| 95 | |||
| 96 | void sha_block_host_order (SHA_CTX *c, const void *p,size_t num); | ||
| 97 | void sha_block_data_order (SHA_CTX *c, const void *p,size_t num); | ||
| 98 | |||
| 99 | #elif defined(SHA_1) | ||
| 100 | |||
| 101 | # define HASH_UPDATE SHA1_Update | ||
| 102 | # define HASH_TRANSFORM SHA1_Transform | ||
| 103 | # define HASH_FINAL SHA1_Final | ||
| 104 | # define HASH_INIT SHA1_Init | ||
| 105 | # define HASH_BLOCK_HOST_ORDER sha1_block_host_order | ||
| 106 | # define HASH_BLOCK_DATA_ORDER sha1_block_data_order | ||
| 107 | # if defined(__MWERKS__) && defined(__MC68K__) | ||
| 108 | /* Metrowerks for Motorola fails otherwise:-( <appro@fy.chalmers.se> */ | ||
| 109 | # define Xupdate(a,ix,ia,ib,ic,id) do { (a)=(ia^ib^ic^id); \ | ||
| 110 | ix=(a)=ROTATE((a),1); \ | ||
| 111 | } while (0) | ||
| 112 | # else | ||
| 113 | # define Xupdate(a,ix,ia,ib,ic,id) ( (a)=(ia^ib^ic^id), \ | ||
| 114 | ix=(a)=ROTATE((a),1) \ | ||
| 115 | ) | ||
| 116 | # endif | ||
| 117 | |||
| 118 | # ifdef SHA1_ASM | ||
| 119 | # if defined(__i386) || defined(__i386__) || defined(_M_IX86) || defined(__INTEL__) | ||
| 120 | # define sha1_block_host_order sha1_block_asm_host_order | ||
| 121 | # define DONT_IMPLEMENT_BLOCK_HOST_ORDER | ||
| 122 | # define sha1_block_data_order sha1_block_asm_data_order | ||
| 123 | # define DONT_IMPLEMENT_BLOCK_DATA_ORDER | ||
| 124 | # define HASH_BLOCK_DATA_ORDER_ALIGNED sha1_block_asm_data_order | ||
| 125 | # endif | ||
| 126 | # endif | ||
| 127 | void sha1_block_host_order (SHA_CTX *c, const void *p,size_t num); | ||
| 128 | void sha1_block_data_order (SHA_CTX *c, const void *p,size_t num); | ||
| 129 | |||
| 130 | #else | ||
| 131 | # error "Either SHA_0 or SHA_1 must be defined." | ||
| 132 | #endif | ||
| 133 | |||
| 134 | #include "fips_md32_common.h" | ||
| 135 | |||
| 136 | #define INIT_DATA_h0 0x67452301UL | ||
| 137 | #define INIT_DATA_h1 0xefcdab89UL | ||
| 138 | #define INIT_DATA_h2 0x98badcfeUL | ||
| 139 | #define INIT_DATA_h3 0x10325476UL | ||
| 140 | #define INIT_DATA_h4 0xc3d2e1f0UL | ||
| 141 | |||
| 142 | int HASH_INIT (SHA_CTX *c) | ||
| 143 | { | ||
| 144 | /* This assert denotes binary compatibility in 0.9.7 context | ||
| 145 | and commonly optimized away by compiler. */ | ||
| 146 | OPENSSL_assert(sizeof(unsigned long)<=sizeof(size_t)); | ||
| 147 | c->h0=INIT_DATA_h0; | ||
| 148 | c->h1=INIT_DATA_h1; | ||
| 149 | c->h2=INIT_DATA_h2; | ||
| 150 | c->h3=INIT_DATA_h3; | ||
| 151 | c->h4=INIT_DATA_h4; | ||
| 152 | c->Nl=0; | ||
| 153 | c->Nh=0; | ||
| 154 | c->num=0; | ||
| 155 | return 1; | ||
| 156 | } | ||
| 157 | |||
| 158 | #define K_00_19 0x5a827999UL | ||
| 159 | #define K_20_39 0x6ed9eba1UL | ||
| 160 | #define K_40_59 0x8f1bbcdcUL | ||
| 161 | #define K_60_79 0xca62c1d6UL | ||
| 162 | |||
| 163 | /* As pointed out by Wei Dai <weidai@eskimo.com>, F() below can be | ||
| 164 | * simplified to the code in F_00_19. Wei attributes these optimisations | ||
| 165 | * to Peter Gutmann's SHS code, and he attributes it to Rich Schroeppel. | ||
| 166 | * #define F(x,y,z) (((x) & (y)) | ((~(x)) & (z))) | ||
| 167 | * I've just become aware of another tweak to be made, again from Wei Dai, | ||
| 168 | * in F_40_59, (x&a)|(y&a) -> (x|y)&a | ||
| 169 | */ | ||
| 170 | #define F_00_19(b,c,d) ((((c) ^ (d)) & (b)) ^ (d)) | ||
| 171 | #define F_20_39(b,c,d) ((b) ^ (c) ^ (d)) | ||
| 172 | #define F_40_59(b,c,d) (((b) & (c)) | (((b)|(c)) & (d))) | ||
| 173 | #define F_60_79(b,c,d) F_20_39(b,c,d) | ||
| 174 | |||
| 175 | #define BODY_00_15(i,a,b,c,d,e,f,xi) \ | ||
| 176 | (f)=xi+(e)+K_00_19+ROTATE((a),5)+F_00_19((b),(c),(d)); \ | ||
| 177 | (b)=ROTATE((b),30); | ||
| 178 | |||
| 179 | #define BODY_16_19(i,a,b,c,d,e,f,xi,xa,xb,xc,xd) \ | ||
| 180 | Xupdate(f,xi,xa,xb,xc,xd); \ | ||
| 181 | (f)+=(e)+K_00_19+ROTATE((a),5)+F_00_19((b),(c),(d)); \ | ||
| 182 | (b)=ROTATE((b),30); | ||
| 183 | |||
| 184 | #define BODY_20_31(i,a,b,c,d,e,f,xi,xa,xb,xc,xd) \ | ||
| 185 | Xupdate(f,xi,xa,xb,xc,xd); \ | ||
| 186 | (f)+=(e)+K_20_39+ROTATE((a),5)+F_20_39((b),(c),(d)); \ | ||
| 187 | (b)=ROTATE((b),30); | ||
| 188 | |||
| 189 | #define BODY_32_39(i,a,b,c,d,e,f,xa,xb,xc,xd) \ | ||
| 190 | Xupdate(f,xa,xa,xb,xc,xd); \ | ||
| 191 | (f)+=(e)+K_20_39+ROTATE((a),5)+F_20_39((b),(c),(d)); \ | ||
| 192 | (b)=ROTATE((b),30); | ||
| 193 | |||
| 194 | #define BODY_40_59(i,a,b,c,d,e,f,xa,xb,xc,xd) \ | ||
| 195 | Xupdate(f,xa,xa,xb,xc,xd); \ | ||
| 196 | (f)+=(e)+K_40_59+ROTATE((a),5)+F_40_59((b),(c),(d)); \ | ||
| 197 | (b)=ROTATE((b),30); | ||
| 198 | |||
| 199 | #define BODY_60_79(i,a,b,c,d,e,f,xa,xb,xc,xd) \ | ||
| 200 | Xupdate(f,xa,xa,xb,xc,xd); \ | ||
| 201 | (f)=xa+(e)+K_60_79+ROTATE((a),5)+F_60_79((b),(c),(d)); \ | ||
| 202 | (b)=ROTATE((b),30); | ||
| 203 | |||
| 204 | #ifdef X | ||
| 205 | #undef X | ||
| 206 | #endif | ||
| 207 | #ifndef MD32_XARRAY | ||
| 208 | /* | ||
| 209 | * Originally X was an array. As it's automatic it's natural | ||
| 210 | * to expect RISC compiler to accomodate at least part of it in | ||
| 211 | * the register bank, isn't it? Unfortunately not all compilers | ||
| 212 | * "find" this expectation reasonable:-( On order to make such | ||
| 213 | * compilers generate better code I replace X[] with a bunch of | ||
| 214 | * X0, X1, etc. See the function body below... | ||
| 215 | * <appro@fy.chalmers.se> | ||
| 216 | */ | ||
| 217 | # define X(i) XX##i | ||
| 218 | #else | ||
| 219 | /* | ||
| 220 | * However! Some compilers (most notably HP C) get overwhelmed by | ||
| 221 | * that many local variables so that we have to have the way to | ||
| 222 | * fall down to the original behavior. | ||
| 223 | */ | ||
| 224 | # define X(i) XX[i] | ||
| 225 | #endif | ||
| 226 | |||
| 227 | #ifndef DONT_IMPLEMENT_BLOCK_HOST_ORDER | ||
| 228 | void HASH_BLOCK_HOST_ORDER (SHA_CTX *c, const void *d, size_t num) | ||
| 229 | { | ||
| 230 | const SHA_LONG *W=d; | ||
| 231 | register unsigned MD32_REG_T A,B,C,D,E,T; | ||
| 232 | #ifndef MD32_XARRAY | ||
| 233 | unsigned MD32_REG_T XX0, XX1, XX2, XX3, XX4, XX5, XX6, XX7, | ||
| 234 | XX8, XX9,XX10,XX11,XX12,XX13,XX14,XX15; | ||
| 235 | #else | ||
| 236 | SHA_LONG XX[16]; | ||
| 237 | #endif | ||
| 238 | |||
| 239 | if(FIPS_selftest_failed()) | ||
| 240 | return; | ||
| 241 | |||
| 242 | A=c->h0; | ||
| 243 | B=c->h1; | ||
| 244 | C=c->h2; | ||
| 245 | D=c->h3; | ||
| 246 | E=c->h4; | ||
| 247 | |||
| 248 | for (;;) | ||
| 249 | { | ||
| 250 | BODY_00_15( 0,A,B,C,D,E,T,W[ 0]); | ||
| 251 | BODY_00_15( 1,T,A,B,C,D,E,W[ 1]); | ||
| 252 | BODY_00_15( 2,E,T,A,B,C,D,W[ 2]); | ||
| 253 | BODY_00_15( 3,D,E,T,A,B,C,W[ 3]); | ||
| 254 | BODY_00_15( 4,C,D,E,T,A,B,W[ 4]); | ||
| 255 | BODY_00_15( 5,B,C,D,E,T,A,W[ 5]); | ||
| 256 | BODY_00_15( 6,A,B,C,D,E,T,W[ 6]); | ||
| 257 | BODY_00_15( 7,T,A,B,C,D,E,W[ 7]); | ||
| 258 | BODY_00_15( 8,E,T,A,B,C,D,W[ 8]); | ||
| 259 | BODY_00_15( 9,D,E,T,A,B,C,W[ 9]); | ||
| 260 | BODY_00_15(10,C,D,E,T,A,B,W[10]); | ||
| 261 | BODY_00_15(11,B,C,D,E,T,A,W[11]); | ||
| 262 | BODY_00_15(12,A,B,C,D,E,T,W[12]); | ||
| 263 | BODY_00_15(13,T,A,B,C,D,E,W[13]); | ||
| 264 | BODY_00_15(14,E,T,A,B,C,D,W[14]); | ||
| 265 | BODY_00_15(15,D,E,T,A,B,C,W[15]); | ||
| 266 | |||
| 267 | BODY_16_19(16,C,D,E,T,A,B,X( 0),W[ 0],W[ 2],W[ 8],W[13]); | ||
| 268 | BODY_16_19(17,B,C,D,E,T,A,X( 1),W[ 1],W[ 3],W[ 9],W[14]); | ||
| 269 | BODY_16_19(18,A,B,C,D,E,T,X( 2),W[ 2],W[ 4],W[10],W[15]); | ||
| 270 | BODY_16_19(19,T,A,B,C,D,E,X( 3),W[ 3],W[ 5],W[11],X( 0)); | ||
| 271 | |||
| 272 | BODY_20_31(20,E,T,A,B,C,D,X( 4),W[ 4],W[ 6],W[12],X( 1)); | ||
| 273 | BODY_20_31(21,D,E,T,A,B,C,X( 5),W[ 5],W[ 7],W[13],X( 2)); | ||
| 274 | BODY_20_31(22,C,D,E,T,A,B,X( 6),W[ 6],W[ 8],W[14],X( 3)); | ||
| 275 | BODY_20_31(23,B,C,D,E,T,A,X( 7),W[ 7],W[ 9],W[15],X( 4)); | ||
| 276 | BODY_20_31(24,A,B,C,D,E,T,X( 8),W[ 8],W[10],X( 0),X( 5)); | ||
| 277 | BODY_20_31(25,T,A,B,C,D,E,X( 9),W[ 9],W[11],X( 1),X( 6)); | ||
| 278 | BODY_20_31(26,E,T,A,B,C,D,X(10),W[10],W[12],X( 2),X( 7)); | ||
| 279 | BODY_20_31(27,D,E,T,A,B,C,X(11),W[11],W[13],X( 3),X( 8)); | ||
| 280 | BODY_20_31(28,C,D,E,T,A,B,X(12),W[12],W[14],X( 4),X( 9)); | ||
| 281 | BODY_20_31(29,B,C,D,E,T,A,X(13),W[13],W[15],X( 5),X(10)); | ||
| 282 | BODY_20_31(30,A,B,C,D,E,T,X(14),W[14],X( 0),X( 6),X(11)); | ||
| 283 | BODY_20_31(31,T,A,B,C,D,E,X(15),W[15],X( 1),X( 7),X(12)); | ||
| 284 | |||
| 285 | BODY_32_39(32,E,T,A,B,C,D,X( 0),X( 2),X( 8),X(13)); | ||
| 286 | BODY_32_39(33,D,E,T,A,B,C,X( 1),X( 3),X( 9),X(14)); | ||
| 287 | BODY_32_39(34,C,D,E,T,A,B,X( 2),X( 4),X(10),X(15)); | ||
| 288 | BODY_32_39(35,B,C,D,E,T,A,X( 3),X( 5),X(11),X( 0)); | ||
| 289 | BODY_32_39(36,A,B,C,D,E,T,X( 4),X( 6),X(12),X( 1)); | ||
| 290 | BODY_32_39(37,T,A,B,C,D,E,X( 5),X( 7),X(13),X( 2)); | ||
| 291 | BODY_32_39(38,E,T,A,B,C,D,X( 6),X( 8),X(14),X( 3)); | ||
| 292 | BODY_32_39(39,D,E,T,A,B,C,X( 7),X( 9),X(15),X( 4)); | ||
| 293 | |||
| 294 | BODY_40_59(40,C,D,E,T,A,B,X( 8),X(10),X( 0),X( 5)); | ||
| 295 | BODY_40_59(41,B,C,D,E,T,A,X( 9),X(11),X( 1),X( 6)); | ||
| 296 | BODY_40_59(42,A,B,C,D,E,T,X(10),X(12),X( 2),X( 7)); | ||
| 297 | BODY_40_59(43,T,A,B,C,D,E,X(11),X(13),X( 3),X( 8)); | ||
| 298 | BODY_40_59(44,E,T,A,B,C,D,X(12),X(14),X( 4),X( 9)); | ||
| 299 | BODY_40_59(45,D,E,T,A,B,C,X(13),X(15),X( 5),X(10)); | ||
| 300 | BODY_40_59(46,C,D,E,T,A,B,X(14),X( 0),X( 6),X(11)); | ||
| 301 | BODY_40_59(47,B,C,D,E,T,A,X(15),X( 1),X( 7),X(12)); | ||
| 302 | BODY_40_59(48,A,B,C,D,E,T,X( 0),X( 2),X( 8),X(13)); | ||
| 303 | BODY_40_59(49,T,A,B,C,D,E,X( 1),X( 3),X( 9),X(14)); | ||
| 304 | BODY_40_59(50,E,T,A,B,C,D,X( 2),X( 4),X(10),X(15)); | ||
| 305 | BODY_40_59(51,D,E,T,A,B,C,X( 3),X( 5),X(11),X( 0)); | ||
| 306 | BODY_40_59(52,C,D,E,T,A,B,X( 4),X( 6),X(12),X( 1)); | ||
| 307 | BODY_40_59(53,B,C,D,E,T,A,X( 5),X( 7),X(13),X( 2)); | ||
| 308 | BODY_40_59(54,A,B,C,D,E,T,X( 6),X( 8),X(14),X( 3)); | ||
| 309 | BODY_40_59(55,T,A,B,C,D,E,X( 7),X( 9),X(15),X( 4)); | ||
| 310 | BODY_40_59(56,E,T,A,B,C,D,X( 8),X(10),X( 0),X( 5)); | ||
| 311 | BODY_40_59(57,D,E,T,A,B,C,X( 9),X(11),X( 1),X( 6)); | ||
| 312 | BODY_40_59(58,C,D,E,T,A,B,X(10),X(12),X( 2),X( 7)); | ||
| 313 | BODY_40_59(59,B,C,D,E,T,A,X(11),X(13),X( 3),X( 8)); | ||
| 314 | |||
| 315 | BODY_60_79(60,A,B,C,D,E,T,X(12),X(14),X( 4),X( 9)); | ||
| 316 | BODY_60_79(61,T,A,B,C,D,E,X(13),X(15),X( 5),X(10)); | ||
| 317 | BODY_60_79(62,E,T,A,B,C,D,X(14),X( 0),X( 6),X(11)); | ||
| 318 | BODY_60_79(63,D,E,T,A,B,C,X(15),X( 1),X( 7),X(12)); | ||
| 319 | BODY_60_79(64,C,D,E,T,A,B,X( 0),X( 2),X( 8),X(13)); | ||
| 320 | BODY_60_79(65,B,C,D,E,T,A,X( 1),X( 3),X( 9),X(14)); | ||
| 321 | BODY_60_79(66,A,B,C,D,E,T,X( 2),X( 4),X(10),X(15)); | ||
| 322 | BODY_60_79(67,T,A,B,C,D,E,X( 3),X( 5),X(11),X( 0)); | ||
| 323 | BODY_60_79(68,E,T,A,B,C,D,X( 4),X( 6),X(12),X( 1)); | ||
| 324 | BODY_60_79(69,D,E,T,A,B,C,X( 5),X( 7),X(13),X( 2)); | ||
| 325 | BODY_60_79(70,C,D,E,T,A,B,X( 6),X( 8),X(14),X( 3)); | ||
| 326 | BODY_60_79(71,B,C,D,E,T,A,X( 7),X( 9),X(15),X( 4)); | ||
| 327 | BODY_60_79(72,A,B,C,D,E,T,X( 8),X(10),X( 0),X( 5)); | ||
| 328 | BODY_60_79(73,T,A,B,C,D,E,X( 9),X(11),X( 1),X( 6)); | ||
| 329 | BODY_60_79(74,E,T,A,B,C,D,X(10),X(12),X( 2),X( 7)); | ||
| 330 | BODY_60_79(75,D,E,T,A,B,C,X(11),X(13),X( 3),X( 8)); | ||
| 331 | BODY_60_79(76,C,D,E,T,A,B,X(12),X(14),X( 4),X( 9)); | ||
| 332 | BODY_60_79(77,B,C,D,E,T,A,X(13),X(15),X( 5),X(10)); | ||
| 333 | BODY_60_79(78,A,B,C,D,E,T,X(14),X( 0),X( 6),X(11)); | ||
| 334 | BODY_60_79(79,T,A,B,C,D,E,X(15),X( 1),X( 7),X(12)); | ||
| 335 | |||
| 336 | c->h0=(c->h0+E)&0xffffffffL; | ||
| 337 | c->h1=(c->h1+T)&0xffffffffL; | ||
| 338 | c->h2=(c->h2+A)&0xffffffffL; | ||
| 339 | c->h3=(c->h3+B)&0xffffffffL; | ||
| 340 | c->h4=(c->h4+C)&0xffffffffL; | ||
| 341 | |||
| 342 | if (--num == 0) break; | ||
| 343 | |||
| 344 | A=c->h0; | ||
| 345 | B=c->h1; | ||
| 346 | C=c->h2; | ||
| 347 | D=c->h3; | ||
| 348 | E=c->h4; | ||
| 349 | |||
| 350 | W+=SHA_LBLOCK; | ||
| 351 | } | ||
| 352 | } | ||
| 353 | #endif | ||
| 354 | |||
| 355 | #ifndef DONT_IMPLEMENT_BLOCK_DATA_ORDER | ||
| 356 | void HASH_BLOCK_DATA_ORDER (SHA_CTX *c, const void *p, size_t num) | ||
| 357 | { | ||
| 358 | const unsigned char *data=p; | ||
| 359 | register unsigned MD32_REG_T A,B,C,D,E,T,l; | ||
| 360 | #ifndef MD32_XARRAY | ||
| 361 | unsigned MD32_REG_T XX0, XX1, XX2, XX3, XX4, XX5, XX6, XX7, | ||
| 362 | XX8, XX9,XX10,XX11,XX12,XX13,XX14,XX15; | ||
| 363 | #else | ||
| 364 | SHA_LONG XX[16]; | ||
| 365 | #endif | ||
| 366 | |||
| 367 | if(FIPS_selftest_failed()) | ||
| 368 | return; | ||
| 369 | |||
| 370 | A=c->h0; | ||
| 371 | B=c->h1; | ||
| 372 | C=c->h2; | ||
| 373 | D=c->h3; | ||
| 374 | E=c->h4; | ||
| 375 | |||
| 376 | for (;;) | ||
| 377 | { | ||
| 378 | |||
| 379 | HOST_c2l(data,l); X( 0)=l; HOST_c2l(data,l); X( 1)=l; | ||
| 380 | BODY_00_15( 0,A,B,C,D,E,T,X( 0)); HOST_c2l(data,l); X( 2)=l; | ||
| 381 | BODY_00_15( 1,T,A,B,C,D,E,X( 1)); HOST_c2l(data,l); X( 3)=l; | ||
| 382 | BODY_00_15( 2,E,T,A,B,C,D,X( 2)); HOST_c2l(data,l); X( 4)=l; | ||
| 383 | BODY_00_15( 3,D,E,T,A,B,C,X( 3)); HOST_c2l(data,l); X( 5)=l; | ||
| 384 | BODY_00_15( 4,C,D,E,T,A,B,X( 4)); HOST_c2l(data,l); X( 6)=l; | ||
| 385 | BODY_00_15( 5,B,C,D,E,T,A,X( 5)); HOST_c2l(data,l); X( 7)=l; | ||
| 386 | BODY_00_15( 6,A,B,C,D,E,T,X( 6)); HOST_c2l(data,l); X( 8)=l; | ||
| 387 | BODY_00_15( 7,T,A,B,C,D,E,X( 7)); HOST_c2l(data,l); X( 9)=l; | ||
| 388 | BODY_00_15( 8,E,T,A,B,C,D,X( 8)); HOST_c2l(data,l); X(10)=l; | ||
| 389 | BODY_00_15( 9,D,E,T,A,B,C,X( 9)); HOST_c2l(data,l); X(11)=l; | ||
| 390 | BODY_00_15(10,C,D,E,T,A,B,X(10)); HOST_c2l(data,l); X(12)=l; | ||
| 391 | BODY_00_15(11,B,C,D,E,T,A,X(11)); HOST_c2l(data,l); X(13)=l; | ||
| 392 | BODY_00_15(12,A,B,C,D,E,T,X(12)); HOST_c2l(data,l); X(14)=l; | ||
| 393 | BODY_00_15(13,T,A,B,C,D,E,X(13)); HOST_c2l(data,l); X(15)=l; | ||
| 394 | BODY_00_15(14,E,T,A,B,C,D,X(14)); | ||
| 395 | BODY_00_15(15,D,E,T,A,B,C,X(15)); | ||
| 396 | |||
| 397 | BODY_16_19(16,C,D,E,T,A,B,X( 0),X( 0),X( 2),X( 8),X(13)); | ||
| 398 | BODY_16_19(17,B,C,D,E,T,A,X( 1),X( 1),X( 3),X( 9),X(14)); | ||
| 399 | BODY_16_19(18,A,B,C,D,E,T,X( 2),X( 2),X( 4),X(10),X(15)); | ||
| 400 | BODY_16_19(19,T,A,B,C,D,E,X( 3),X( 3),X( 5),X(11),X( 0)); | ||
| 401 | |||
| 402 | BODY_20_31(20,E,T,A,B,C,D,X( 4),X( 4),X( 6),X(12),X( 1)); | ||
| 403 | BODY_20_31(21,D,E,T,A,B,C,X( 5),X( 5),X( 7),X(13),X( 2)); | ||
| 404 | BODY_20_31(22,C,D,E,T,A,B,X( 6),X( 6),X( 8),X(14),X( 3)); | ||
| 405 | BODY_20_31(23,B,C,D,E,T,A,X( 7),X( 7),X( 9),X(15),X( 4)); | ||
| 406 | BODY_20_31(24,A,B,C,D,E,T,X( 8),X( 8),X(10),X( 0),X( 5)); | ||
| 407 | BODY_20_31(25,T,A,B,C,D,E,X( 9),X( 9),X(11),X( 1),X( 6)); | ||
| 408 | BODY_20_31(26,E,T,A,B,C,D,X(10),X(10),X(12),X( 2),X( 7)); | ||
| 409 | BODY_20_31(27,D,E,T,A,B,C,X(11),X(11),X(13),X( 3),X( 8)); | ||
| 410 | BODY_20_31(28,C,D,E,T,A,B,X(12),X(12),X(14),X( 4),X( 9)); | ||
| 411 | BODY_20_31(29,B,C,D,E,T,A,X(13),X(13),X(15),X( 5),X(10)); | ||
| 412 | BODY_20_31(30,A,B,C,D,E,T,X(14),X(14),X( 0),X( 6),X(11)); | ||
| 413 | BODY_20_31(31,T,A,B,C,D,E,X(15),X(15),X( 1),X( 7),X(12)); | ||
| 414 | |||
| 415 | BODY_32_39(32,E,T,A,B,C,D,X( 0),X( 2),X( 8),X(13)); | ||
| 416 | BODY_32_39(33,D,E,T,A,B,C,X( 1),X( 3),X( 9),X(14)); | ||
| 417 | BODY_32_39(34,C,D,E,T,A,B,X( 2),X( 4),X(10),X(15)); | ||
| 418 | BODY_32_39(35,B,C,D,E,T,A,X( 3),X( 5),X(11),X( 0)); | ||
| 419 | BODY_32_39(36,A,B,C,D,E,T,X( 4),X( 6),X(12),X( 1)); | ||
| 420 | BODY_32_39(37,T,A,B,C,D,E,X( 5),X( 7),X(13),X( 2)); | ||
| 421 | BODY_32_39(38,E,T,A,B,C,D,X( 6),X( 8),X(14),X( 3)); | ||
| 422 | BODY_32_39(39,D,E,T,A,B,C,X( 7),X( 9),X(15),X( 4)); | ||
| 423 | |||
| 424 | BODY_40_59(40,C,D,E,T,A,B,X( 8),X(10),X( 0),X( 5)); | ||
| 425 | BODY_40_59(41,B,C,D,E,T,A,X( 9),X(11),X( 1),X( 6)); | ||
| 426 | BODY_40_59(42,A,B,C,D,E,T,X(10),X(12),X( 2),X( 7)); | ||
| 427 | BODY_40_59(43,T,A,B,C,D,E,X(11),X(13),X( 3),X( 8)); | ||
| 428 | BODY_40_59(44,E,T,A,B,C,D,X(12),X(14),X( 4),X( 9)); | ||
| 429 | BODY_40_59(45,D,E,T,A,B,C,X(13),X(15),X( 5),X(10)); | ||
| 430 | BODY_40_59(46,C,D,E,T,A,B,X(14),X( 0),X( 6),X(11)); | ||
| 431 | BODY_40_59(47,B,C,D,E,T,A,X(15),X( 1),X( 7),X(12)); | ||
| 432 | BODY_40_59(48,A,B,C,D,E,T,X( 0),X( 2),X( 8),X(13)); | ||
| 433 | BODY_40_59(49,T,A,B,C,D,E,X( 1),X( 3),X( 9),X(14)); | ||
| 434 | BODY_40_59(50,E,T,A,B,C,D,X( 2),X( 4),X(10),X(15)); | ||
| 435 | BODY_40_59(51,D,E,T,A,B,C,X( 3),X( 5),X(11),X( 0)); | ||
| 436 | BODY_40_59(52,C,D,E,T,A,B,X( 4),X( 6),X(12),X( 1)); | ||
| 437 | BODY_40_59(53,B,C,D,E,T,A,X( 5),X( 7),X(13),X( 2)); | ||
| 438 | BODY_40_59(54,A,B,C,D,E,T,X( 6),X( 8),X(14),X( 3)); | ||
| 439 | BODY_40_59(55,T,A,B,C,D,E,X( 7),X( 9),X(15),X( 4)); | ||
| 440 | BODY_40_59(56,E,T,A,B,C,D,X( 8),X(10),X( 0),X( 5)); | ||
| 441 | BODY_40_59(57,D,E,T,A,B,C,X( 9),X(11),X( 1),X( 6)); | ||
| 442 | BODY_40_59(58,C,D,E,T,A,B,X(10),X(12),X( 2),X( 7)); | ||
| 443 | BODY_40_59(59,B,C,D,E,T,A,X(11),X(13),X( 3),X( 8)); | ||
| 444 | |||
| 445 | BODY_60_79(60,A,B,C,D,E,T,X(12),X(14),X( 4),X( 9)); | ||
| 446 | BODY_60_79(61,T,A,B,C,D,E,X(13),X(15),X( 5),X(10)); | ||
| 447 | BODY_60_79(62,E,T,A,B,C,D,X(14),X( 0),X( 6),X(11)); | ||
| 448 | BODY_60_79(63,D,E,T,A,B,C,X(15),X( 1),X( 7),X(12)); | ||
| 449 | BODY_60_79(64,C,D,E,T,A,B,X( 0),X( 2),X( 8),X(13)); | ||
| 450 | BODY_60_79(65,B,C,D,E,T,A,X( 1),X( 3),X( 9),X(14)); | ||
| 451 | BODY_60_79(66,A,B,C,D,E,T,X( 2),X( 4),X(10),X(15)); | ||
| 452 | BODY_60_79(67,T,A,B,C,D,E,X( 3),X( 5),X(11),X( 0)); | ||
| 453 | BODY_60_79(68,E,T,A,B,C,D,X( 4),X( 6),X(12),X( 1)); | ||
| 454 | BODY_60_79(69,D,E,T,A,B,C,X( 5),X( 7),X(13),X( 2)); | ||
| 455 | BODY_60_79(70,C,D,E,T,A,B,X( 6),X( 8),X(14),X( 3)); | ||
| 456 | BODY_60_79(71,B,C,D,E,T,A,X( 7),X( 9),X(15),X( 4)); | ||
| 457 | BODY_60_79(72,A,B,C,D,E,T,X( 8),X(10),X( 0),X( 5)); | ||
| 458 | BODY_60_79(73,T,A,B,C,D,E,X( 9),X(11),X( 1),X( 6)); | ||
| 459 | BODY_60_79(74,E,T,A,B,C,D,X(10),X(12),X( 2),X( 7)); | ||
| 460 | BODY_60_79(75,D,E,T,A,B,C,X(11),X(13),X( 3),X( 8)); | ||
| 461 | BODY_60_79(76,C,D,E,T,A,B,X(12),X(14),X( 4),X( 9)); | ||
| 462 | BODY_60_79(77,B,C,D,E,T,A,X(13),X(15),X( 5),X(10)); | ||
| 463 | BODY_60_79(78,A,B,C,D,E,T,X(14),X( 0),X( 6),X(11)); | ||
| 464 | BODY_60_79(79,T,A,B,C,D,E,X(15),X( 1),X( 7),X(12)); | ||
| 465 | |||
| 466 | c->h0=(c->h0+E)&0xffffffffL; | ||
| 467 | c->h1=(c->h1+T)&0xffffffffL; | ||
| 468 | c->h2=(c->h2+A)&0xffffffffL; | ||
| 469 | c->h3=(c->h3+B)&0xffffffffL; | ||
| 470 | c->h4=(c->h4+C)&0xffffffffL; | ||
| 471 | |||
| 472 | if (--num == 0) break; | ||
| 473 | |||
| 474 | A=c->h0; | ||
| 475 | B=c->h1; | ||
| 476 | C=c->h2; | ||
| 477 | D=c->h3; | ||
| 478 | E=c->h4; | ||
| 479 | |||
| 480 | } | ||
| 481 | } | ||
| 482 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_shatest.c b/src/lib/libssl/src/fips-1.0/sha/fips_shatest.c deleted file mode 100644 index 4896b467e4..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/fips_shatest.c +++ /dev/null | |||
| @@ -1,399 +0,0 @@ | |||
| 1 | /* fips_shatest.c */ | ||
| 2 | /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL | ||
| 3 | * project 2005. | ||
| 4 | */ | ||
| 5 | /* ==================================================================== | ||
| 6 | * Copyright (c) 2005 The OpenSSL Project. All rights reserved. | ||
| 7 | * | ||
| 8 | * Redistribution and use in source and binary forms, with or without | ||
| 9 | * modification, are permitted provided that the following conditions | ||
| 10 | * are met: | ||
| 11 | * | ||
| 12 | * 1. Redistributions of source code must retain the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer. | ||
| 14 | * | ||
| 15 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | * notice, this list of conditions and the following disclaimer in | ||
| 17 | * the documentation and/or other materials provided with the | ||
| 18 | * distribution. | ||
| 19 | * | ||
| 20 | * 3. All advertising materials mentioning features or use of this | ||
| 21 | * software must display the following acknowledgment: | ||
| 22 | * "This product includes software developed by the OpenSSL Project | ||
| 23 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | * | ||
| 25 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | * endorse or promote products derived from this software without | ||
| 27 | * prior written permission. For written permission, please contact | ||
| 28 | * licensing@OpenSSL.org. | ||
| 29 | * | ||
| 30 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | * nor may "OpenSSL" appear in their names without prior written | ||
| 32 | * permission of the OpenSSL Project. | ||
| 33 | * | ||
| 34 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | * acknowledgment: | ||
| 36 | * "This product includes software developed by the OpenSSL Project | ||
| 37 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | * | ||
| 39 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | * ==================================================================== | ||
| 52 | * | ||
| 53 | * This product includes cryptographic software written by Eric Young | ||
| 54 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 55 | * Hudson (tjh@cryptsoft.com). | ||
| 56 | * | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <ctype.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <openssl/bio.h> | ||
| 63 | #include <openssl/evp.h> | ||
| 64 | #include <openssl/err.h> | ||
| 65 | #include <openssl/x509v3.h> | ||
| 66 | |||
| 67 | #ifndef OPENSSL_FIPS | ||
| 68 | |||
| 69 | int main(int argc, char *argv[]) | ||
| 70 | { | ||
| 71 | printf("No FIPS SHAXXX support\n"); | ||
| 72 | return(0); | ||
| 73 | } | ||
| 74 | |||
| 75 | #else | ||
| 76 | |||
| 77 | static int dgst_test(BIO *err, BIO *out, BIO *in); | ||
| 78 | static int print_dgst(BIO *err, const EVP_MD *md, BIO *out, | ||
| 79 | unsigned char *Msg, int Msglen); | ||
| 80 | static int print_monte(BIO *err, const EVP_MD *md, BIO *out, | ||
| 81 | unsigned char *Seed, int SeedLen); | ||
| 82 | |||
| 83 | int main(int argc, char **argv) | ||
| 84 | { | ||
| 85 | BIO *in = NULL, *out = NULL, *err = NULL; | ||
| 86 | |||
| 87 | int ret = 1; | ||
| 88 | |||
| 89 | ERR_load_crypto_strings(); | ||
| 90 | |||
| 91 | err = BIO_new_fp(stderr, BIO_NOCLOSE); | ||
| 92 | |||
| 93 | if (!err) | ||
| 94 | { | ||
| 95 | fprintf(stderr, "FATAL stderr initialization error\n"); | ||
| 96 | goto end; | ||
| 97 | } | ||
| 98 | |||
| 99 | if(!FIPS_mode_set(1)) | ||
| 100 | { | ||
| 101 | ERR_print_errors(err); | ||
| 102 | goto end; | ||
| 103 | } | ||
| 104 | |||
| 105 | if (argc == 1) | ||
| 106 | in = BIO_new_fp(stdin, BIO_NOCLOSE); | ||
| 107 | else | ||
| 108 | in = BIO_new_file(argv[1], "r"); | ||
| 109 | |||
| 110 | if (argc < 2) | ||
| 111 | out = BIO_new_fp(stdout, BIO_NOCLOSE); | ||
| 112 | else | ||
| 113 | out = BIO_new_file(argv[2], "w"); | ||
| 114 | |||
| 115 | if (!in) | ||
| 116 | { | ||
| 117 | BIO_printf(err, "FATAL input initialization error\n"); | ||
| 118 | goto end; | ||
| 119 | } | ||
| 120 | |||
| 121 | if (!out) | ||
| 122 | { | ||
| 123 | fprintf(stderr, "FATAL output initialization error\n"); | ||
| 124 | goto end; | ||
| 125 | } | ||
| 126 | |||
| 127 | if (!dgst_test(err, out, in)) | ||
| 128 | { | ||
| 129 | fprintf(stderr, "FATAL digest file processing error\n"); | ||
| 130 | goto end; | ||
| 131 | } | ||
| 132 | else | ||
| 133 | ret = 0; | ||
| 134 | |||
| 135 | end: | ||
| 136 | |||
| 137 | if (ret && err) | ||
| 138 | ERR_print_errors(err); | ||
| 139 | |||
| 140 | if (in) | ||
| 141 | BIO_free(in); | ||
| 142 | if (out) | ||
| 143 | BIO_free(out); | ||
| 144 | if (err) | ||
| 145 | BIO_free(err); | ||
| 146 | |||
| 147 | return ret; | ||
| 148 | |||
| 149 | } | ||
| 150 | |||
| 151 | #define SHA_TEST_MAX_BITS 102400 | ||
| 152 | #define SHA_TEST_MAXLINELEN (((SHA_TEST_MAX_BITS >> 3) * 2) + 10) | ||
| 153 | |||
| 154 | int dgst_test(BIO *err, BIO *out, BIO *in) | ||
| 155 | { | ||
| 156 | const EVP_MD *md = NULL; | ||
| 157 | char *linebuf, *olinebuf, *p, *q; | ||
| 158 | char *keyword, *value; | ||
| 159 | unsigned char *Msg = NULL, *Seed = NULL; | ||
| 160 | long MsgLen = -1, Len = -1, SeedLen = -1; | ||
| 161 | int ret = 0; | ||
| 162 | int lnum = 0; | ||
| 163 | |||
| 164 | olinebuf = OPENSSL_malloc(SHA_TEST_MAXLINELEN); | ||
| 165 | linebuf = OPENSSL_malloc(SHA_TEST_MAXLINELEN); | ||
| 166 | |||
| 167 | if (!linebuf || !olinebuf) | ||
| 168 | goto error; | ||
| 169 | |||
| 170 | |||
| 171 | while (BIO_gets(in, olinebuf, SHA_TEST_MAXLINELEN) > 0) | ||
| 172 | { | ||
| 173 | lnum++; | ||
| 174 | strcpy(linebuf, olinebuf); | ||
| 175 | keyword = linebuf; | ||
| 176 | /* Skip leading space */ | ||
| 177 | while (isspace((unsigned char)*keyword)) | ||
| 178 | keyword++; | ||
| 179 | |||
| 180 | /* Look for = sign */ | ||
| 181 | p = strchr(linebuf, '='); | ||
| 182 | |||
| 183 | /* If no = or starts with [ (for [L=20] line) just copy */ | ||
| 184 | if (!p) | ||
| 185 | { | ||
| 186 | if (!BIO_puts(out, olinebuf)) | ||
| 187 | goto error; | ||
| 188 | continue; | ||
| 189 | } | ||
| 190 | |||
| 191 | q = p - 1; | ||
| 192 | |||
| 193 | /* Remove trailing space */ | ||
| 194 | while (isspace((unsigned char)*q)) | ||
| 195 | *q-- = 0; | ||
| 196 | |||
| 197 | *p = 0; | ||
| 198 | value = p + 1; | ||
| 199 | |||
| 200 | /* Remove leading space from value */ | ||
| 201 | while (isspace((unsigned char)*value)) | ||
| 202 | value++; | ||
| 203 | |||
| 204 | /* Remove trailing space from value */ | ||
| 205 | p = value + strlen(value) - 1; | ||
| 206 | |||
| 207 | while (*p == '\n' || isspace((unsigned char)*p)) | ||
| 208 | *p-- = 0; | ||
| 209 | |||
| 210 | if (!strcmp(keyword,"[L") && *p==']') | ||
| 211 | { | ||
| 212 | switch (atoi(value)) | ||
| 213 | { | ||
| 214 | case 20: md=EVP_sha1(); break; | ||
| 215 | case 28: md=EVP_sha224(); break; | ||
| 216 | case 32: md=EVP_sha256(); break; | ||
| 217 | case 48: md=EVP_sha384(); break; | ||
| 218 | case 64: md=EVP_sha512(); break; | ||
| 219 | default: goto parse_error; | ||
| 220 | } | ||
| 221 | } | ||
| 222 | else if (!strcmp(keyword, "Len")) | ||
| 223 | { | ||
| 224 | if (Len != -1) | ||
| 225 | goto parse_error; | ||
| 226 | Len = atoi(value); | ||
| 227 | if (Len < 0) | ||
| 228 | goto parse_error; | ||
| 229 | /* Only handle multiples of 8 bits */ | ||
| 230 | if (Len & 0x7) | ||
| 231 | goto parse_error; | ||
| 232 | if (Len > SHA_TEST_MAX_BITS) | ||
| 233 | goto parse_error; | ||
| 234 | MsgLen = Len >> 3; | ||
| 235 | } | ||
| 236 | |||
| 237 | else if (!strcmp(keyword, "Msg")) | ||
| 238 | { | ||
| 239 | long tmplen; | ||
| 240 | if (strlen(value) & 1) | ||
| 241 | *(--value) = '0'; | ||
| 242 | if (Msg) | ||
| 243 | goto parse_error; | ||
| 244 | Msg = string_to_hex(value, &tmplen); | ||
| 245 | if (!Msg) | ||
| 246 | goto parse_error; | ||
| 247 | } | ||
| 248 | else if (!strcmp(keyword, "Seed")) | ||
| 249 | { | ||
| 250 | if (strlen(value) & 1) | ||
| 251 | *(--value) = '0'; | ||
| 252 | if (Seed) | ||
| 253 | goto parse_error; | ||
| 254 | Seed = string_to_hex(value, &SeedLen); | ||
| 255 | if (!Seed) | ||
| 256 | goto parse_error; | ||
| 257 | } | ||
| 258 | else if (!strcmp(keyword, "MD")) | ||
| 259 | continue; | ||
| 260 | else | ||
| 261 | goto parse_error; | ||
| 262 | |||
| 263 | BIO_puts(out, olinebuf); | ||
| 264 | |||
| 265 | if (md && Msg && (MsgLen >= 0)) | ||
| 266 | { | ||
| 267 | if (!print_dgst(err, md, out, Msg, MsgLen)) | ||
| 268 | goto error; | ||
| 269 | OPENSSL_free(Msg); | ||
| 270 | Msg = NULL; | ||
| 271 | MsgLen = -1; | ||
| 272 | Len = -1; | ||
| 273 | } | ||
| 274 | else if (md && Seed && (SeedLen > 0)) | ||
| 275 | { | ||
| 276 | if (!print_monte(err, md, out, Seed, SeedLen)) | ||
| 277 | goto error; | ||
| 278 | OPENSSL_free(Seed); | ||
| 279 | Seed = NULL; | ||
| 280 | SeedLen = -1; | ||
| 281 | } | ||
| 282 | |||
| 283 | |||
| 284 | } | ||
| 285 | |||
| 286 | |||
| 287 | ret = 1; | ||
| 288 | |||
| 289 | |||
| 290 | error: | ||
| 291 | |||
| 292 | if (olinebuf) | ||
| 293 | OPENSSL_free(olinebuf); | ||
| 294 | if (linebuf) | ||
| 295 | OPENSSL_free(linebuf); | ||
| 296 | if (Msg) | ||
| 297 | OPENSSL_free(Msg); | ||
| 298 | if (Seed) | ||
| 299 | OPENSSL_free(Seed); | ||
| 300 | |||
| 301 | return ret; | ||
| 302 | |||
| 303 | parse_error: | ||
| 304 | |||
| 305 | BIO_printf(err, "FATAL parse error processing line %d\n", lnum); | ||
| 306 | |||
| 307 | goto error; | ||
| 308 | |||
| 309 | } | ||
| 310 | |||
| 311 | static int print_dgst(BIO *err, const EVP_MD *emd, BIO *out, | ||
| 312 | unsigned char *Msg, int Msglen) | ||
| 313 | { | ||
| 314 | int i, mdlen; | ||
| 315 | unsigned char md[EVP_MAX_MD_SIZE]; | ||
| 316 | if (!EVP_Digest(Msg, Msglen, md, (unsigned int *)&mdlen, emd, NULL)) | ||
| 317 | { | ||
| 318 | BIO_puts(err, "Error calculating HASH\n"); | ||
| 319 | return 0; | ||
| 320 | } | ||
| 321 | BIO_puts(out, "MD = "); | ||
| 322 | for (i = 0; i < mdlen; i++) | ||
| 323 | BIO_printf(out, "%02x", md[i]); | ||
| 324 | BIO_puts(out, "\n"); | ||
| 325 | return 1; | ||
| 326 | } | ||
| 327 | |||
| 328 | static int print_monte(BIO *err, const EVP_MD *md, BIO *out, | ||
| 329 | unsigned char *Seed, int SeedLen) | ||
| 330 | { | ||
| 331 | unsigned int i, j, k; | ||
| 332 | int ret = 0; | ||
| 333 | EVP_MD_CTX ctx; | ||
| 334 | unsigned char *m1, *m2, *m3, *p; | ||
| 335 | unsigned int mlen, m1len, m2len, m3len; | ||
| 336 | |||
| 337 | EVP_MD_CTX_init(&ctx); | ||
| 338 | |||
| 339 | if (SeedLen > EVP_MAX_MD_SIZE) | ||
| 340 | mlen = SeedLen; | ||
| 341 | else | ||
| 342 | mlen = EVP_MAX_MD_SIZE; | ||
| 343 | |||
| 344 | m1 = OPENSSL_malloc(mlen); | ||
| 345 | m2 = OPENSSL_malloc(mlen); | ||
| 346 | m3 = OPENSSL_malloc(mlen); | ||
| 347 | |||
| 348 | if (!m1 || !m2 || !m3) | ||
| 349 | goto mc_error; | ||
| 350 | |||
| 351 | m1len = m2len = m3len = SeedLen; | ||
| 352 | memcpy(m1, Seed, SeedLen); | ||
| 353 | memcpy(m2, Seed, SeedLen); | ||
| 354 | memcpy(m3, Seed, SeedLen); | ||
| 355 | |||
| 356 | BIO_puts(out, "\n"); | ||
| 357 | |||
| 358 | for (j = 0; j < 100; j++) | ||
| 359 | { | ||
| 360 | for (i = 0; i < 1000; i++) | ||
| 361 | { | ||
| 362 | EVP_DigestInit_ex(&ctx, md, NULL); | ||
| 363 | EVP_DigestUpdate(&ctx, m1, m1len); | ||
| 364 | EVP_DigestUpdate(&ctx, m2, m2len); | ||
| 365 | EVP_DigestUpdate(&ctx, m3, m3len); | ||
| 366 | p = m1; | ||
| 367 | m1 = m2; | ||
| 368 | m1len = m2len; | ||
| 369 | m2 = m3; | ||
| 370 | m2len = m3len; | ||
| 371 | m3 = p; | ||
| 372 | EVP_DigestFinal_ex(&ctx, m3, &m3len); | ||
| 373 | } | ||
| 374 | BIO_printf(out, "COUNT = %d\n", j); | ||
| 375 | BIO_puts(out, "MD = "); | ||
| 376 | for (k = 0; k < m3len; k++) | ||
| 377 | BIO_printf(out, "%02x", m3[k]); | ||
| 378 | BIO_puts(out, "\n\n"); | ||
| 379 | memcpy(m1, m3, m3len); | ||
| 380 | memcpy(m2, m3, m3len); | ||
| 381 | m1len = m2len = m3len; | ||
| 382 | } | ||
| 383 | |||
| 384 | ret = 1; | ||
| 385 | |||
| 386 | mc_error: | ||
| 387 | if (m1) | ||
| 388 | OPENSSL_free(m1); | ||
| 389 | if (m2) | ||
| 390 | OPENSSL_free(m2); | ||
| 391 | if (m3) | ||
| 392 | OPENSSL_free(m3); | ||
| 393 | |||
| 394 | EVP_MD_CTX_cleanup(&ctx); | ||
| 395 | |||
| 396 | return ret; | ||
| 397 | } | ||
| 398 | |||
| 399 | #endif | ||
diff --git a/src/lib/libssl/src/fips-1.0/sha/fips_standalone_sha1.c b/src/lib/libssl/src/fips-1.0/sha/fips_standalone_sha1.c deleted file mode 100644 index 8c10c2cd83..0000000000 --- a/src/lib/libssl/src/fips-1.0/sha/fips_standalone_sha1.c +++ /dev/null | |||
| @@ -1,170 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <stdio.h> | ||
| 51 | #include <stdlib.h> | ||
| 52 | #include <string.h> | ||
| 53 | #include <openssl/opensslconf.h> | ||
| 54 | #include <openssl/fips_sha.h> | ||
| 55 | #include <openssl/hmac.h> | ||
| 56 | |||
| 57 | int FIPS_selftest_failed() { return 0; } | ||
| 58 | void OPENSSL_cleanse(void *p,size_t len) {} | ||
| 59 | |||
| 60 | #ifdef OPENSSL_FIPS | ||
| 61 | |||
| 62 | static void hmac_init(SHA_CTX *md_ctx,SHA_CTX *o_ctx, | ||
| 63 | const char *key) | ||
| 64 | { | ||
| 65 | int len=strlen(key); | ||
| 66 | int i; | ||
| 67 | unsigned char keymd[HMAC_MAX_MD_CBLOCK]; | ||
| 68 | unsigned char pad[HMAC_MAX_MD_CBLOCK]; | ||
| 69 | |||
| 70 | if (len > SHA_CBLOCK) | ||
| 71 | { | ||
| 72 | SHA1_Init(md_ctx); | ||
| 73 | SHA1_Update(md_ctx,key,len); | ||
| 74 | SHA1_Final(keymd,md_ctx); | ||
| 75 | len=20; | ||
| 76 | } | ||
| 77 | else | ||
| 78 | memcpy(keymd,key,len); | ||
| 79 | memset(&keymd[len],'\0',HMAC_MAX_MD_CBLOCK-len); | ||
| 80 | |||
| 81 | for(i=0 ; i < HMAC_MAX_MD_CBLOCK ; i++) | ||
| 82 | pad[i]=0x36^keymd[i]; | ||
| 83 | SHA1_Init(md_ctx); | ||
| 84 | SHA1_Update(md_ctx,pad,SHA_CBLOCK); | ||
| 85 | |||
| 86 | for(i=0 ; i < HMAC_MAX_MD_CBLOCK ; i++) | ||
| 87 | pad[i]=0x5c^keymd[i]; | ||
| 88 | SHA1_Init(o_ctx); | ||
| 89 | SHA1_Update(o_ctx,pad,SHA_CBLOCK); | ||
| 90 | } | ||
| 91 | |||
| 92 | static void hmac_final(unsigned char *md,SHA_CTX *md_ctx,SHA_CTX *o_ctx) | ||
| 93 | { | ||
| 94 | unsigned char buf[20]; | ||
| 95 | |||
| 96 | SHA1_Final(buf,md_ctx); | ||
| 97 | SHA1_Update(o_ctx,buf,sizeof buf); | ||
| 98 | SHA1_Final(md,o_ctx); | ||
| 99 | } | ||
| 100 | |||
| 101 | #endif | ||
| 102 | |||
| 103 | int main(int argc,char **argv) | ||
| 104 | { | ||
| 105 | #ifdef OPENSSL_FIPS | ||
| 106 | static char key[]="etaonrishdlcupfm"; | ||
| 107 | int n,binary=0; | ||
| 108 | |||
| 109 | if(argc < 2) | ||
| 110 | { | ||
| 111 | fprintf(stderr,"%s [<file>]+\n",argv[0]); | ||
| 112 | exit(1); | ||
| 113 | } | ||
| 114 | |||
| 115 | n=1; | ||
| 116 | if (!strcmp(argv[n],"-binary")) | ||
| 117 | { | ||
| 118 | n++; | ||
| 119 | binary=1; /* emit binary fingerprint... */ | ||
| 120 | } | ||
| 121 | |||
| 122 | for(; n < argc ; ++n) | ||
| 123 | { | ||
| 124 | FILE *f=fopen(argv[n],"rb"); | ||
| 125 | SHA_CTX md_ctx,o_ctx; | ||
| 126 | unsigned char md[20]; | ||
| 127 | int i; | ||
| 128 | |||
| 129 | if(!f) | ||
| 130 | { | ||
| 131 | perror(argv[n]); | ||
| 132 | exit(2); | ||
| 133 | } | ||
| 134 | |||
| 135 | hmac_init(&md_ctx,&o_ctx,key); | ||
| 136 | for( ; ; ) | ||
| 137 | { | ||
| 138 | char buf[1024]; | ||
| 139 | int l=fread(buf,1,sizeof buf,f); | ||
| 140 | |||
| 141 | if(l == 0) | ||
| 142 | { | ||
| 143 | if(ferror(f)) | ||
| 144 | { | ||
| 145 | perror(argv[n]); | ||
| 146 | exit(3); | ||
| 147 | } | ||
| 148 | else | ||
| 149 | break; | ||
| 150 | } | ||
| 151 | SHA1_Update(&md_ctx,buf,l); | ||
| 152 | } | ||
| 153 | hmac_final(md,&md_ctx,&o_ctx); | ||
| 154 | |||
| 155 | if (binary) | ||
| 156 | { | ||
| 157 | fwrite(md,20,1,stdout); | ||
| 158 | break; /* ... for single(!) file */ | ||
| 159 | } | ||
| 160 | |||
| 161 | printf("HMAC-SHA1(%s)= ",argv[n]); | ||
| 162 | for(i=0 ; i < 20 ; ++i) | ||
| 163 | printf("%02x",md[i]); | ||
| 164 | printf("\n"); | ||
| 165 | } | ||
| 166 | #endif | ||
| 167 | return 0; | ||
| 168 | } | ||
| 169 | |||
| 170 | |||
diff --git a/src/lib/libssl/src/fips/Makefile b/src/lib/libssl/src/fips/Makefile deleted file mode 100644 index 63e4cf82be..0000000000 --- a/src/lib/libssl/src/fips/Makefile +++ /dev/null | |||
| @@ -1,199 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= fips | ||
| 6 | TOP= .. | ||
| 7 | CC= cc | ||
| 8 | INCLUDE= -I. -I$(TOP) -I../include | ||
| 9 | INCLUDES= -I.. -I../.. -I../../include | ||
| 10 | CFLAG= -g | ||
| 11 | INSTALL_PREFIX= | ||
| 12 | OPENSSLDIR= /usr/local/ssl | ||
| 13 | INSTALLTOP= /usr/local/ssl | ||
| 14 | MAKEDEPPROG= makedepend | ||
| 15 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 16 | MAKEFILE= Makefile | ||
| 17 | RM= rm -f | ||
| 18 | AR= ar r | ||
| 19 | |||
| 20 | PEX_LIBS= | ||
| 21 | EX_LIBS= | ||
| 22 | |||
| 23 | CFLAGS= $(INCLUDE) $(CFLAG) | ||
| 24 | |||
| 25 | |||
| 26 | LIBS= | ||
| 27 | |||
| 28 | FDIRS=sha1 rand des aes dsa rsa dh | ||
| 29 | |||
| 30 | GENERAL=Makefile README fips-lib.com install.com | ||
| 31 | |||
| 32 | LIB= $(TOP)/libcrypto.a | ||
| 33 | SHARED_LIB= libcrypto$(SHLIB_EXT) | ||
| 34 | LIBSRC=fips.c fips_err_wrapper.c | ||
| 35 | LIBOBJ=fips.o fips_err_wrapper.o | ||
| 36 | |||
| 37 | SRC= $(LIBSRC) | ||
| 38 | |||
| 39 | EXHEADER=fips.h | ||
| 40 | HEADER=$(EXHEADER) fips_err.h | ||
| 41 | EXE=openssl_fips_fingerprint | ||
| 42 | |||
| 43 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 44 | |||
| 45 | top: | ||
| 46 | @(cd ..; $(MAKE) DIRS=$(DIR) all) | ||
| 47 | |||
| 48 | all: | ||
| 49 | @if egrep 'define OPENSSL_FIPS' $(TOP)/include/openssl/opensslconf.h > /dev/null; then \ | ||
| 50 | $(MAKE) -e subdirs check lib shared; \ | ||
| 51 | fi | ||
| 52 | |||
| 53 | check: | ||
| 54 | TOP=`pwd`/$(TOP) ./fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 55 | |||
| 56 | subdirs: | ||
| 57 | @for i in $(FDIRS) ;\ | ||
| 58 | do \ | ||
| 59 | (cd $$i && echo "making all in fips/$$i..." && \ | ||
| 60 | $(MAKE) CC='$(CC)' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' BN_ASM='${BN_ASM}' DES_ENC='${DES_ENC}' FIPS_DES_ENC='${FIPS_DES_ENC}' SHA1_ASM_OBJ='${SHA1_ASM_OBJ}' FIPS_SHA1_ASM_OBJ='${FIPS_SHA1_ASM_OBJ}' MD5_ASM_OBJ='${MD5_ASM_OBJ}' RMD160_ASM_OBJ='${RMD160_ASM_OBJ}' BF_ENC='${BF_ENC}' CAST_ENC='${CAST_ENC}' RC4_ENC='${RC4_ENC}' RC5_ENC='${RC5_ENC}' AR='${AR}' PROCESSOR='${PROCESSOR}' PERL='${PERL}' RANLIB='${RANLIB}' all ) || exit 1; \ | ||
| 61 | done; | ||
| 62 | |||
| 63 | sub_target: | ||
| 64 | @for i in $(FDIRS) ;\ | ||
| 65 | do \ | ||
| 66 | (cd $$i && echo "making $(TARGET) in fips/$$i..." && \ | ||
| 67 | $(MAKE) CC='$(CC)' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' BN_ASM='${BN_ASM}' DES_ENC='${DES_ENC}' FIPS_DES_ENC='${FIPS_DES_ENC}' SHA1_ASM_OBJ='${SHA1_ASM_OBJ}' FIPS_SHA1_ASM_OBJ='${FIPS_SHA1_ASM_OBJ}' MD5_ASM_OBJ='${MD5_ASM_OBJ}' RMD160_ASM_OBJ='${RMD160_ASM_OBJ}' BF_ENC='${BF_ENC}' CAST_ENC='${CAST_ENC}' RC4_ENC='${RC4_ENC}' RC5_ENC='${RC5_ENC}' AR='${AR}' PROCESSOR='${PROCESSOR}' PERL='${PERL}' RANLIB='${RANLIB}' $(TARGET) ) || exit 1; \ | ||
| 68 | done; | ||
| 69 | |||
| 70 | files: | ||
| 71 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 72 | @for i in $(FDIRS) ;\ | ||
| 73 | do \ | ||
| 74 | (cd $$i && echo "making 'files' in fips/$$i..." && \ | ||
| 75 | $(MAKE) PERL='${PERL}' files ); \ | ||
| 76 | done; | ||
| 77 | |||
| 78 | links: | ||
| 79 | @$(PERL) $(TOP)/util/mklink.pl ../include/openssl $(EXHEADER) | ||
| 80 | @for i in $(FDIRS); do \ | ||
| 81 | (cd $$i && echo "making links in fips/$$i..." && \ | ||
| 82 | $(MAKE) CC='$(CC)' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' BN_ASM='${BN_ASM}' DES_ENC='${DES_ENC}' FIPS_DES_ENC='${FIPS_DES_ENC}' SHA1_ASM_OBJ='${SHA1_ASM_OBJ}' FIPS_SHA1_ASM_OBJ='${FIPS_SHA1_ASM_OBJ}' MD5_ASM_OBJ='${MD5_ASM_OBJ}' RMD160_ASM_OBJ='${RMD160_ASM_OBJ}' BF_ENC='${BF_ENC}' CAST_ENC='${CAST_ENC}' RC4_ENC='${RC4_ENC}' RC5_ENC='${RC5_ENC}' AR='${AR}' PERL='${PERL}' links ); \ | ||
| 83 | done; | ||
| 84 | |||
| 85 | lib: $(LIBOBJ) | ||
| 86 | $(AR) $(LIB) $(LIBOBJ) | ||
| 87 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 88 | @touch lib | ||
| 89 | |||
| 90 | shared: | ||
| 91 | if [ -n "$(SHARED_LIBS)" ]; then \ | ||
| 92 | (cd ..; $(MAKE) $(SHARED_LIB)); \ | ||
| 93 | fi | ||
| 94 | |||
| 95 | libs: | ||
| 96 | @for i in $(FDIRS) ;\ | ||
| 97 | do \ | ||
| 98 | (cd $$i && echo "making libs in fips/$$i..." && \ | ||
| 99 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALL_PREFIX='${INSTALL_PREFIX}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' AR='${AR}' lib ); \ | ||
| 100 | done; | ||
| 101 | |||
| 102 | tests: | ||
| 103 | @for i in $(FDIRS) ;\ | ||
| 104 | do \ | ||
| 105 | (cd $$i && echo "making tests in fips/$$i..." && \ | ||
| 106 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' AR='${AR}' tests ); \ | ||
| 107 | done; | ||
| 108 | |||
| 109 | top_fips_test_suite: | ||
| 110 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=. TARGET=fips_test_suite sub_target) | ||
| 111 | |||
| 112 | fips_test_suite: fips_test_suite.o $(TOP)/libcrypto.a | ||
| 113 | $(CC) $(CFLAGS) -o fips_test_suite fips_test_suite.o $(PEX_LIBS) $(TOP)/libcrypto.a $(EX_LIBS) | ||
| 114 | TOP=$(TOP) $(TOP)/fips/openssl_fips_fingerprint $(TOP)/libcrypto.a fips_test_suite || { rm fips_test_suite; false; } | ||
| 115 | |||
| 116 | fips_test: top top_fips_test_suite | ||
| 117 | cd testvectors && perl -p -i -e 's/COUNT=/COUNT = /' des[23]/req/*.req | ||
| 118 | @for i in dsa sha1 aes des ; \ | ||
| 119 | do \ | ||
| 120 | (cd $$i && echo "making fips_test in fips/$$i..." && $(MAKE) fips_test) \ | ||
| 121 | done; | ||
| 122 | |||
| 123 | install: | ||
| 124 | @headerlist="$(EXHEADER)"; for i in $$headerlist ;\ | ||
| 125 | do \ | ||
| 126 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 127 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 128 | done; | ||
| 129 | @for i in $(FDIRS) ;\ | ||
| 130 | do \ | ||
| 131 | (cd $$i && echo "making install in fips/$$i..." && \ | ||
| 132 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALL_PREFIX='${INSTALL_PREFIX}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' install ); \ | ||
| 133 | done; | ||
| 134 | @for i in $(EXE) ; \ | ||
| 135 | do \ | ||
| 136 | echo "installing $$i"; \ | ||
| 137 | cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i.new; \ | ||
| 138 | chmod 755 $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i.new; \ | ||
| 139 | mv -f $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i.new $(INSTALL_PREFIX)$(INSTALLTOP)/bin/$$i; \ | ||
| 140 | done | ||
| 141 | |||
| 142 | lint: | ||
| 143 | @for i in $(FDIRS) ;\ | ||
| 144 | do \ | ||
| 145 | (cd $$i && echo "making lint in fips/$$i..." && \ | ||
| 146 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' lint ); \ | ||
| 147 | done; | ||
| 148 | |||
| 149 | depend: | ||
| 150 | if [ ! -f buildinf.h ]; then touch buildinf.h; fi # fake buildinf.h if it does not exist | ||
| 151 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDE) $(DEPFLAG) -- $(SRC) | ||
| 152 | if [ ! -s buildinf.h ]; then rm buildinf.h; fi | ||
| 153 | @for i in $(FDIRS) ;\ | ||
| 154 | do \ | ||
| 155 | (cd $$i && echo "making depend in fips/$$i..." && \ | ||
| 156 | $(MAKE) MAKEFILE='${MAKEFILE}' INCLUDES='${INCLUDES}' CFLAG='${CFLAG}' DEPFLAG='${DEPFLAG}' MAKEDEPPROG='${MAKEDEPPROG}' KRB5_INCLUDES='${KRB5_INCLUDES}' PERL='${PERL}' depend ); \ | ||
| 157 | done; | ||
| 158 | |||
| 159 | clean: | ||
| 160 | rm -f buildinf.h *.o */*.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 161 | @for i in $(FDIRS) ;\ | ||
| 162 | do \ | ||
| 163 | (cd $$i && echo "making clean in fips/$$i..." && \ | ||
| 164 | $(MAKE) CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' clean ); \ | ||
| 165 | done; | ||
| 166 | |||
| 167 | dclean: | ||
| 168 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 169 | mv -f Makefile.new $(MAKEFILE) | ||
| 170 | @for i in $(FDIRS) ;\ | ||
| 171 | do \ | ||
| 172 | (cd $$i && echo "making dclean in fips/$$i..." && \ | ||
| 173 | $(MAKE) PERL='${PERL}' CC='$(CC)' CFLAG='${CFLAG}' INSTALLTOP='${INSTALLTOP}' PEX_LIBS='${PEX_LIBS}' EX_LIBS='${EX_LIBS}' dclean ); \ | ||
| 174 | done; | ||
| 175 | |||
| 176 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 177 | |||
| 178 | fips.o: ../include/openssl/aes.h ../include/openssl/asn1.h | ||
| 179 | fips.o: ../include/openssl/bio.h ../include/openssl/blowfish.h | ||
| 180 | fips.o: ../include/openssl/bn.h ../include/openssl/cast.h | ||
| 181 | fips.o: ../include/openssl/crypto.h ../include/openssl/des.h | ||
| 182 | fips.o: ../include/openssl/des_old.h ../include/openssl/dh.h | ||
| 183 | fips.o: ../include/openssl/dsa.h ../include/openssl/e_os2.h | ||
| 184 | fips.o: ../include/openssl/err.h ../include/openssl/evp.h | ||
| 185 | fips.o: ../include/openssl/fips.h ../include/openssl/fips_rand.h | ||
| 186 | fips.o: ../include/openssl/hmac.h ../include/openssl/idea.h | ||
| 187 | fips.o: ../include/openssl/lhash.h ../include/openssl/md2.h | ||
| 188 | fips.o: ../include/openssl/md4.h ../include/openssl/md5.h | ||
| 189 | fips.o: ../include/openssl/mdc2.h ../include/openssl/obj_mac.h | ||
| 190 | fips.o: ../include/openssl/objects.h ../include/openssl/opensslconf.h | ||
| 191 | fips.o: ../include/openssl/opensslv.h ../include/openssl/ossl_typ.h | ||
| 192 | fips.o: ../include/openssl/rand.h ../include/openssl/rc2.h | ||
| 193 | fips.o: ../include/openssl/rc4.h ../include/openssl/rc5.h | ||
| 194 | fips.o: ../include/openssl/ripemd.h ../include/openssl/rsa.h | ||
| 195 | fips.o: ../include/openssl/safestack.h ../include/openssl/sha.h | ||
| 196 | fips.o: ../include/openssl/stack.h ../include/openssl/symhacks.h | ||
| 197 | fips.o: ../include/openssl/ui.h ../include/openssl/ui_compat.h fips.c | ||
| 198 | fips.o: fips_locl.h | ||
| 199 | fips_err_wrapper.o: ../include/openssl/opensslconf.h fips_err_wrapper.c | ||
diff --git a/src/lib/libssl/src/fips/aes/Makefile b/src/lib/libssl/src/fips/aes/Makefile deleted file mode 100644 index fce5eeb5f7..0000000000 --- a/src/lib/libssl/src/fips/aes/Makefile +++ /dev/null | |||
| @@ -1,131 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/aes/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= aes | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST=fips_aesavs.c | ||
| 22 | TESTDATA=fips_aes_data | ||
| 23 | APPS= | ||
| 24 | |||
| 25 | LIB=$(TOP)/libcrypto.a | ||
| 26 | LIBSRC=fips_aes_core.c fips_aes_selftest.c | ||
| 27 | LIBOBJ=fips_aes_core.o fips_aes_selftest.o | ||
| 28 | |||
| 29 | SRC= $(LIBSRC) | ||
| 30 | |||
| 31 | EXHEADER= | ||
| 32 | HEADER= $(EXHEADER) fips_aes_locl.h | ||
| 33 | |||
| 34 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 35 | |||
| 36 | top: | ||
| 37 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 38 | |||
| 39 | all: check lib | ||
| 40 | |||
| 41 | check: | ||
| 42 | TOP=`pwd`/$(TOP) ../fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 43 | |||
| 44 | lib: $(LIBOBJ) | ||
| 45 | $(AR) $(LIB) $(LIBOBJ) | ||
| 46 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 47 | @sleep 2; touch lib | ||
| 48 | |||
| 49 | files: | ||
| 50 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 51 | |||
| 52 | links: | ||
| 53 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 54 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 55 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TESTDATA) | ||
| 56 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 57 | |||
| 58 | install: | ||
| 59 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 60 | do \ | ||
| 61 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 62 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 63 | done | ||
| 64 | |||
| 65 | tags: | ||
| 66 | ctags $(SRC) | ||
| 67 | |||
| 68 | tests: | ||
| 69 | |||
| 70 | top_fips_aesavs: | ||
| 71 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) TARGET=fips_aesavs sub_target) | ||
| 72 | |||
| 73 | fips_aesavs: fips_aesavs.o $(TOP)/libcrypto.a | ||
| 74 | $(CC) $(CFLAGS) -o fips_aesavs fips_aesavs.o $(PEX_LIBS) $(TOP)/libcrypto.a $(EX_LIBS) | ||
| 75 | TOP=$(TOP) $(TOP)/fips/openssl_fips_fingerprint $(TOP)/libcrypto.a fips_aesavs | ||
| 76 | |||
| 77 | fips_test: top top_fips_aesavs | ||
| 78 | find ../testvectors/aes/req -name '*.req' > testlist | ||
| 79 | -rm -rf ../testvectors/aes/rsp | ||
| 80 | mkdir ../testvectors/aes/rsp | ||
| 81 | ./fips_aesavs -d testlist | ||
| 82 | |||
| 83 | lint: | ||
| 84 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 85 | |||
| 86 | depend: | ||
| 87 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) \ | ||
| 88 | $(SRC) $(TEST) | ||
| 89 | |||
| 90 | dclean: | ||
| 91 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 92 | mv -f Makefile.new $(MAKEFILE) | ||
| 93 | |||
| 94 | clean: | ||
| 95 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 96 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 97 | |||
| 98 | fips_aes_core.o: ../../include/openssl/aes.h ../../include/openssl/e_os2.h | ||
| 99 | fips_aes_core.o: ../../include/openssl/fips.h | ||
| 100 | fips_aes_core.o: ../../include/openssl/opensslconf.h fips_aes_core.c | ||
| 101 | fips_aes_core.o: fips_aes_locl.h | ||
| 102 | fips_aes_selftest.o: ../../include/openssl/aes.h ../../include/openssl/bio.h | ||
| 103 | fips_aes_selftest.o: ../../include/openssl/crypto.h | ||
| 104 | fips_aes_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 105 | fips_aes_selftest.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 106 | fips_aes_selftest.o: ../../include/openssl/opensslconf.h | ||
| 107 | fips_aes_selftest.o: ../../include/openssl/opensslv.h | ||
| 108 | fips_aes_selftest.o: ../../include/openssl/safestack.h | ||
| 109 | fips_aes_selftest.o: ../../include/openssl/stack.h | ||
| 110 | fips_aes_selftest.o: ../../include/openssl/symhacks.h fips_aes_selftest.c | ||
| 111 | fips_aesavs.o: ../../e_os.h ../../include/openssl/aes.h | ||
| 112 | fips_aesavs.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 113 | fips_aesavs.o: ../../include/openssl/blowfish.h ../../include/openssl/bn.h | ||
| 114 | fips_aesavs.o: ../../include/openssl/cast.h ../../include/openssl/crypto.h | ||
| 115 | fips_aesavs.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 116 | fips_aesavs.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 117 | fips_aesavs.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 118 | fips_aesavs.o: ../../include/openssl/evp.h ../../include/openssl/fips.h | ||
| 119 | fips_aesavs.o: ../../include/openssl/idea.h ../../include/openssl/lhash.h | ||
| 120 | fips_aesavs.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 121 | fips_aesavs.o: ../../include/openssl/md5.h ../../include/openssl/mdc2.h | ||
| 122 | fips_aesavs.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 123 | fips_aesavs.o: ../../include/openssl/opensslconf.h | ||
| 124 | fips_aesavs.o: ../../include/openssl/opensslv.h | ||
| 125 | fips_aesavs.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rc2.h | ||
| 126 | fips_aesavs.o: ../../include/openssl/rc4.h ../../include/openssl/rc5.h | ||
| 127 | fips_aesavs.o: ../../include/openssl/ripemd.h ../../include/openssl/rsa.h | ||
| 128 | fips_aesavs.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 129 | fips_aesavs.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 130 | fips_aesavs.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 131 | fips_aesavs.o: fips_aesavs.c | ||
diff --git a/src/lib/libssl/src/fips/aes/fips_aes_selftest.c b/src/lib/libssl/src/fips/aes/fips_aes_selftest.c deleted file mode 100644 index 0e53d21bd0..0000000000 --- a/src/lib/libssl/src/fips/aes/fips_aes_selftest.c +++ /dev/null | |||
| @@ -1,112 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/aes.h> | ||
| 54 | |||
| 55 | #ifdef OPENSSL_FIPS | ||
| 56 | static struct | ||
| 57 | { | ||
| 58 | unsigned char key[16]; | ||
| 59 | unsigned char plaintext[16]; | ||
| 60 | unsigned char ciphertext[16]; | ||
| 61 | } tests[]= | ||
| 62 | { | ||
| 63 | { | ||
| 64 | { 0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07, | ||
| 65 | 0x08,0x09,0x0A,0x0B,0x0C,0x0D,0x0E,0x0F }, | ||
| 66 | { 0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77, | ||
| 67 | 0x88,0x99,0xAA,0xBB,0xCC,0xDD,0xEE,0xFF }, | ||
| 68 | { 0x69,0xC4,0xE0,0xD8,0x6A,0x7B,0x04,0x30, | ||
| 69 | 0xD8,0xCD,0xB7,0x80,0x70,0xB4,0xC5,0x5A }, | ||
| 70 | }, | ||
| 71 | }; | ||
| 72 | |||
| 73 | void FIPS_corrupt_aes() | ||
| 74 | { | ||
| 75 | tests[0].key[0]++; | ||
| 76 | } | ||
| 77 | |||
| 78 | int FIPS_selftest_aes() | ||
| 79 | { | ||
| 80 | int n; | ||
| 81 | |||
| 82 | /* Encrypt and check against known ciphertext */ | ||
| 83 | for(n=0 ; n < 1 ; ++n) | ||
| 84 | { | ||
| 85 | AES_KEY key; | ||
| 86 | unsigned char buf[16]; | ||
| 87 | |||
| 88 | AES_set_encrypt_key(tests[n].key,128,&key); | ||
| 89 | AES_encrypt(tests[n].plaintext,buf,&key); | ||
| 90 | if(memcmp(buf,tests[n].ciphertext,sizeof buf)) | ||
| 91 | { | ||
| 92 | FIPSerr(FIPS_F_FIPS_SELFTEST_AES,FIPS_R_SELFTEST_FAILED); | ||
| 93 | return 0; | ||
| 94 | } | ||
| 95 | } | ||
| 96 | /* Decrypt and check against known plaintext */ | ||
| 97 | for(n=0 ; n < 1 ; ++n) | ||
| 98 | { | ||
| 99 | AES_KEY key; | ||
| 100 | unsigned char buf[16]; | ||
| 101 | |||
| 102 | AES_set_decrypt_key(tests[n].key,128,&key); | ||
| 103 | AES_decrypt(tests[n].ciphertext,buf,&key); | ||
| 104 | if(memcmp(buf,tests[n].plaintext,sizeof buf)) | ||
| 105 | { | ||
| 106 | FIPSerr(FIPS_F_FIPS_SELFTEST_AES,FIPS_R_SELFTEST_FAILED); | ||
| 107 | return 0; | ||
| 108 | } | ||
| 109 | } | ||
| 110 | return 1; | ||
| 111 | } | ||
| 112 | #endif | ||
diff --git a/src/lib/libssl/src/fips/aes/fips_aesavs.c b/src/lib/libssl/src/fips/aes/fips_aesavs.c deleted file mode 100644 index 5fc2879067..0000000000 --- a/src/lib/libssl/src/fips/aes/fips_aesavs.c +++ /dev/null | |||
| @@ -1,1005 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | /*--------------------------------------------- | ||
| 50 | NIST AES Algorithm Validation Suite | ||
| 51 | Test Program | ||
| 52 | |||
| 53 | Donated to OpenSSL by: | ||
| 54 | V-ONE Corporation | ||
| 55 | 20250 Century Blvd, Suite 300 | ||
| 56 | Germantown, MD 20874 | ||
| 57 | U.S.A. | ||
| 58 | ----------------------------------------------*/ | ||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include <stdlib.h> | ||
| 62 | #include <string.h> | ||
| 63 | #include <errno.h> | ||
| 64 | #include <assert.h> | ||
| 65 | |||
| 66 | #include <openssl/aes.h> | ||
| 67 | #include <openssl/evp.h> | ||
| 68 | #include <openssl/fips.h> | ||
| 69 | #include <openssl/err.h> | ||
| 70 | #include "e_os.h" | ||
| 71 | |||
| 72 | #define AES_BLOCK_SIZE 16 | ||
| 73 | |||
| 74 | #define VERBOSE 1 | ||
| 75 | |||
| 76 | /*-----------------------------------------------*/ | ||
| 77 | |||
| 78 | int AESTest(EVP_CIPHER_CTX *ctx, | ||
| 79 | char *amode, int akeysz, unsigned char *aKey, | ||
| 80 | unsigned char *iVec, | ||
| 81 | int dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 82 | unsigned char *plaintext, unsigned char *ciphertext, int len) | ||
| 83 | { | ||
| 84 | const EVP_CIPHER *cipher = NULL; | ||
| 85 | int ret = 1; | ||
| 86 | int kt = 0; | ||
| 87 | |||
| 88 | if (ctx) | ||
| 89 | memset(ctx, 0, sizeof(EVP_CIPHER_CTX)); | ||
| 90 | |||
| 91 | if (strcasecmp(amode, "CBC") == 0) | ||
| 92 | kt = 1000; | ||
| 93 | else if (strcasecmp(amode, "ECB") == 0) | ||
| 94 | kt = 2000; | ||
| 95 | else if (strcasecmp(amode, "CFB128") == 0) | ||
| 96 | kt = 3000; | ||
| 97 | else if (strncasecmp(amode, "OFB", 3) == 0) | ||
| 98 | kt = 4000; | ||
| 99 | else if(!strcasecmp(amode,"CFB1")) | ||
| 100 | kt=5000; | ||
| 101 | else if(!strcasecmp(amode,"CFB8")) | ||
| 102 | kt=6000; | ||
| 103 | else | ||
| 104 | { | ||
| 105 | printf("Unknown mode: %s\n", amode); | ||
| 106 | EXIT(1); | ||
| 107 | } | ||
| 108 | if (ret) | ||
| 109 | { | ||
| 110 | if ((akeysz != 128) && (akeysz != 192) && (akeysz != 256)) | ||
| 111 | { | ||
| 112 | printf("Invalid key size: %d\n", akeysz); | ||
| 113 | ret = 0; | ||
| 114 | } | ||
| 115 | else | ||
| 116 | { | ||
| 117 | kt += akeysz; | ||
| 118 | switch (kt) | ||
| 119 | { | ||
| 120 | case 1128: /* CBC 128 */ | ||
| 121 | cipher = EVP_aes_128_cbc(); | ||
| 122 | break; | ||
| 123 | case 1192: /* CBC 192 */ | ||
| 124 | cipher = EVP_aes_192_cbc(); | ||
| 125 | break; | ||
| 126 | case 1256: /* CBC 256 */ | ||
| 127 | cipher = EVP_aes_256_cbc(); | ||
| 128 | break; | ||
| 129 | case 2128: /* ECB 128 */ | ||
| 130 | cipher = EVP_aes_128_ecb(); | ||
| 131 | break; | ||
| 132 | case 2192: /* ECB 192 */ | ||
| 133 | cipher = EVP_aes_192_ecb(); | ||
| 134 | break; | ||
| 135 | case 2256: /* ECB 256 */ | ||
| 136 | cipher = EVP_aes_256_ecb(); | ||
| 137 | break; | ||
| 138 | case 3128: /* CFB 128 */ | ||
| 139 | cipher = EVP_aes_128_cfb(); | ||
| 140 | break; | ||
| 141 | case 3192: /* CFB 192 */ | ||
| 142 | cipher = EVP_aes_192_cfb(); | ||
| 143 | break; | ||
| 144 | case 3256: /* CFB 256 */ | ||
| 145 | cipher = EVP_aes_256_cfb(); | ||
| 146 | break; | ||
| 147 | case 4128: /* OFB 128 */ | ||
| 148 | cipher = EVP_aes_128_ofb(); | ||
| 149 | break; | ||
| 150 | case 4192: /* OFB 192 */ | ||
| 151 | cipher = EVP_aes_192_ofb(); | ||
| 152 | break; | ||
| 153 | case 4256: /* OFB 256 */ | ||
| 154 | cipher = EVP_aes_256_ofb(); | ||
| 155 | break; | ||
| 156 | case 5128: | ||
| 157 | cipher=EVP_aes_128_cfb1(); | ||
| 158 | break; | ||
| 159 | case 5192: | ||
| 160 | cipher=EVP_aes_192_cfb1(); | ||
| 161 | break; | ||
| 162 | case 5256: | ||
| 163 | cipher=EVP_aes_256_cfb1(); | ||
| 164 | break; | ||
| 165 | case 6128: | ||
| 166 | cipher=EVP_aes_128_cfb8(); | ||
| 167 | break; | ||
| 168 | case 6192: | ||
| 169 | cipher=EVP_aes_192_cfb8(); | ||
| 170 | break; | ||
| 171 | case 6256: | ||
| 172 | cipher=EVP_aes_256_cfb8(); | ||
| 173 | break; | ||
| 174 | default: | ||
| 175 | printf("Didn't handle mode %d\n",kt); | ||
| 176 | EXIT(1); | ||
| 177 | } | ||
| 178 | if (dir) | ||
| 179 | { /* encrypt */ | ||
| 180 | if(!EVP_CipherInit(ctx, cipher, aKey, iVec, AES_ENCRYPT)) | ||
| 181 | { | ||
| 182 | ERR_print_errors_fp(stderr); | ||
| 183 | EXIT(1); | ||
| 184 | } | ||
| 185 | |||
| 186 | EVP_Cipher(ctx, ciphertext, (unsigned char*)plaintext, len); | ||
| 187 | } | ||
| 188 | else | ||
| 189 | { /* decrypt */ | ||
| 190 | if(!EVP_CipherInit(ctx, cipher, aKey, iVec, AES_DECRYPT)) | ||
| 191 | { | ||
| 192 | ERR_print_errors_fp(stderr); | ||
| 193 | EXIT(1); | ||
| 194 | } | ||
| 195 | EVP_Cipher(ctx, (unsigned char*)plaintext, ciphertext, len); | ||
| 196 | } | ||
| 197 | } | ||
| 198 | } | ||
| 199 | return ret; | ||
| 200 | } | ||
| 201 | |||
| 202 | /*-----------------------------------------------*/ | ||
| 203 | |||
| 204 | int hex2bin(char *in, int len, unsigned char *out) | ||
| 205 | { | ||
| 206 | int n1, n2; | ||
| 207 | unsigned char ch; | ||
| 208 | |||
| 209 | for (n1 = 0, n2 = 0; n1 < len; ) | ||
| 210 | { /* first byte */ | ||
| 211 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 212 | ch = in[n1++] - '0'; | ||
| 213 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 214 | ch = in[n1++] - 'A' + 10; | ||
| 215 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 216 | ch = in[n1++] - 'a' + 10; | ||
| 217 | else | ||
| 218 | return -1; | ||
| 219 | if(len == 1) | ||
| 220 | { | ||
| 221 | out[n2++]=ch; | ||
| 222 | break; | ||
| 223 | } | ||
| 224 | out[n2] = ch << 4; | ||
| 225 | /* second byte */ | ||
| 226 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 227 | ch = in[n1++] - '0'; | ||
| 228 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 229 | ch = in[n1++] - 'A' + 10; | ||
| 230 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 231 | ch = in[n1++] - 'a' + 10; | ||
| 232 | else | ||
| 233 | return -1; | ||
| 234 | out[n2++] |= ch; | ||
| 235 | } | ||
| 236 | return n2; | ||
| 237 | } | ||
| 238 | |||
| 239 | /*-----------------------------------------------*/ | ||
| 240 | |||
| 241 | int bin2hex(unsigned char *in, int len, char *out) | ||
| 242 | { | ||
| 243 | int n1, n2; | ||
| 244 | unsigned char ch; | ||
| 245 | |||
| 246 | for (n1 = 0, n2 = 0; n1 < len; ++n1) | ||
| 247 | { | ||
| 248 | /* first nibble */ | ||
| 249 | ch = in[n1] >> 4; | ||
| 250 | if (ch <= 0x09) | ||
| 251 | out[n2++] = ch + '0'; | ||
| 252 | else | ||
| 253 | out[n2++] = ch - 10 + 'a'; | ||
| 254 | /* second nibble */ | ||
| 255 | ch = in[n1] & 0x0f; | ||
| 256 | if (ch <= 0x09) | ||
| 257 | out[n2++] = ch + '0'; | ||
| 258 | else | ||
| 259 | out[n2++] = ch - 10 + 'a'; | ||
| 260 | } | ||
| 261 | return n2; | ||
| 262 | } | ||
| 263 | |||
| 264 | /* NB: this return the number of _bits_ read */ | ||
| 265 | int bint2bin(const char *in, int len, unsigned char *out) | ||
| 266 | { | ||
| 267 | int n; | ||
| 268 | |||
| 269 | memset(out,0,len); | ||
| 270 | for(n=0 ; n < len ; ++n) | ||
| 271 | if(in[n] == '1') | ||
| 272 | out[n/8]|=(0x80 >> (n%8)); | ||
| 273 | return len; | ||
| 274 | } | ||
| 275 | |||
| 276 | int bin2bint(const unsigned char *in,int len,char *out) | ||
| 277 | { | ||
| 278 | int n; | ||
| 279 | |||
| 280 | for(n=0 ; n < len ; ++n) | ||
| 281 | out[n]=(in[n/8]&(0x80 >> (n%8))) ? '1' : '0'; | ||
| 282 | return n; | ||
| 283 | } | ||
| 284 | |||
| 285 | /*-----------------------------------------------*/ | ||
| 286 | |||
| 287 | void PrintValue(char *tag, unsigned char *val, int len) | ||
| 288 | { | ||
| 289 | #if VERBOSE | ||
| 290 | char obuf[2048]; | ||
| 291 | int olen; | ||
| 292 | olen = bin2hex(val, len, obuf); | ||
| 293 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 294 | #endif | ||
| 295 | } | ||
| 296 | |||
| 297 | void OutputValue(char *tag, unsigned char *val, int len, FILE *rfp,int bitmode) | ||
| 298 | { | ||
| 299 | char obuf[2048]; | ||
| 300 | int olen; | ||
| 301 | |||
| 302 | if(bitmode) | ||
| 303 | olen=bin2bint(val,len,obuf); | ||
| 304 | else | ||
| 305 | olen=bin2hex(val,len,obuf); | ||
| 306 | |||
| 307 | fprintf(rfp, "%s = %.*s\n", tag, olen, obuf); | ||
| 308 | #if VERBOSE | ||
| 309 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 310 | #endif | ||
| 311 | } | ||
| 312 | |||
| 313 | /*-----------------------------------------------*/ | ||
| 314 | char *t_tag[2] = {"PLAINTEXT", "CIPHERTEXT"}; | ||
| 315 | char *t_mode[6] = {"CBC","ECB","OFB","CFB1","CFB8","CFB128"}; | ||
| 316 | enum Mode {CBC, ECB, OFB, CFB1, CFB8, CFB128}; | ||
| 317 | enum XCrypt {XDECRYPT, XENCRYPT}; | ||
| 318 | |||
| 319 | /*=============================*/ | ||
| 320 | /* Monte Carlo Tests */ | ||
| 321 | /*-----------------------------*/ | ||
| 322 | |||
| 323 | /*#define gb(a,b) (((a)[(b)/8] >> ((b)%8))&1)*/ | ||
| 324 | /*#define sb(a,b,v) ((a)[(b)/8]=((a)[(b)/8]&~(1 << ((b)%8)))|(!!(v) << ((b)%8)))*/ | ||
| 325 | |||
| 326 | #define gb(a,b) (((a)[(b)/8] >> (7-(b)%8))&1) | ||
| 327 | #define sb(a,b,v) ((a)[(b)/8]=((a)[(b)/8]&~(1 << (7-(b)%8)))|(!!(v) << (7-(b)%8))) | ||
| 328 | |||
| 329 | int do_mct(char *amode, | ||
| 330 | int akeysz, unsigned char *aKey,unsigned char *iVec, | ||
| 331 | int dir, unsigned char *text, int len, | ||
| 332 | FILE *rfp) | ||
| 333 | { | ||
| 334 | int ret = 0; | ||
| 335 | unsigned char key[101][32]; | ||
| 336 | unsigned char iv[101][AES_BLOCK_SIZE]; | ||
| 337 | unsigned char ptext[1001][32]; | ||
| 338 | unsigned char ctext[1001][32]; | ||
| 339 | unsigned char ciphertext[64+4]; | ||
| 340 | int i, j, n, n1, n2; | ||
| 341 | int imode = 0, nkeysz = akeysz/8; | ||
| 342 | EVP_CIPHER_CTX ctx; | ||
| 343 | |||
| 344 | if (len > 32) | ||
| 345 | { | ||
| 346 | printf("\n>>>> Length exceeds 32 for %s %d <<<<\n\n", | ||
| 347 | amode, akeysz); | ||
| 348 | return -1; | ||
| 349 | } | ||
| 350 | for (imode = 0; imode < 6; ++imode) | ||
| 351 | if (strcmp(amode, t_mode[imode]) == 0) | ||
| 352 | break; | ||
| 353 | if (imode == 6) | ||
| 354 | { | ||
| 355 | printf("Unrecognized mode: %s\n", amode); | ||
| 356 | return -1; | ||
| 357 | } | ||
| 358 | |||
| 359 | memcpy(key[0], aKey, nkeysz); | ||
| 360 | if (iVec) | ||
| 361 | memcpy(iv[0], iVec, AES_BLOCK_SIZE); | ||
| 362 | if (dir == XENCRYPT) | ||
| 363 | memcpy(ptext[0], text, len); | ||
| 364 | else | ||
| 365 | memcpy(ctext[0], text, len); | ||
| 366 | for (i = 0; i < 100; ++i) | ||
| 367 | { | ||
| 368 | /* printf("Iteration %d\n", i); */ | ||
| 369 | if (i > 0) | ||
| 370 | { | ||
| 371 | fprintf(rfp,"COUNT = %d\n",i); | ||
| 372 | OutputValue("KEY",key[i],nkeysz,rfp,0); | ||
| 373 | if (imode != ECB) /* ECB */ | ||
| 374 | OutputValue("IV",iv[i],AES_BLOCK_SIZE,rfp,0); | ||
| 375 | /* Output Ciphertext | Plaintext */ | ||
| 376 | OutputValue(t_tag[dir^1],dir ? ptext[0] : ctext[0],len,rfp, | ||
| 377 | imode == CFB1); | ||
| 378 | } | ||
| 379 | for (j = 0; j < 1000; ++j) | ||
| 380 | { | ||
| 381 | switch (imode) | ||
| 382 | { | ||
| 383 | case ECB: | ||
| 384 | if (j == 0) | ||
| 385 | { /* set up encryption */ | ||
| 386 | ret = AESTest(&ctx, amode, akeysz, key[i], NULL, | ||
| 387 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 388 | ptext[j], ctext[j], len); | ||
| 389 | if (dir == XENCRYPT) | ||
| 390 | memcpy(ptext[j+1], ctext[j], len); | ||
| 391 | else | ||
| 392 | memcpy(ctext[j+1], ptext[j], len); | ||
| 393 | } | ||
| 394 | else | ||
| 395 | { | ||
| 396 | if (dir == XENCRYPT) | ||
| 397 | { | ||
| 398 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 399 | memcpy(ptext[j+1], ctext[j], len); | ||
| 400 | } | ||
| 401 | else | ||
| 402 | { | ||
| 403 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 404 | memcpy(ctext[j+1], ptext[j], len); | ||
| 405 | } | ||
| 406 | } | ||
| 407 | break; | ||
| 408 | |||
| 409 | case CBC: | ||
| 410 | case OFB: | ||
| 411 | case CFB128: | ||
| 412 | if (j == 0) | ||
| 413 | { | ||
| 414 | ret = AESTest(&ctx, amode, akeysz, key[i], iv[i], | ||
| 415 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 416 | ptext[j], ctext[j], len); | ||
| 417 | if (dir == XENCRYPT) | ||
| 418 | memcpy(ptext[j+1], iv[i], len); | ||
| 419 | else | ||
| 420 | memcpy(ctext[j+1], iv[i], len); | ||
| 421 | } | ||
| 422 | else | ||
| 423 | { | ||
| 424 | if (dir == XENCRYPT) | ||
| 425 | { | ||
| 426 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 427 | memcpy(ptext[j+1], ctext[j-1], len); | ||
| 428 | } | ||
| 429 | else | ||
| 430 | { | ||
| 431 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 432 | memcpy(ctext[j+1], ptext[j-1], len); | ||
| 433 | } | ||
| 434 | } | ||
| 435 | break; | ||
| 436 | |||
| 437 | case CFB8: | ||
| 438 | if (j == 0) | ||
| 439 | { | ||
| 440 | ret = AESTest(&ctx, amode, akeysz, key[i], iv[i], | ||
| 441 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 442 | ptext[j], ctext[j], len); | ||
| 443 | } | ||
| 444 | else | ||
| 445 | { | ||
| 446 | if (dir == XENCRYPT) | ||
| 447 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 448 | else | ||
| 449 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 450 | } | ||
| 451 | if (dir == XENCRYPT) | ||
| 452 | { | ||
| 453 | if (j < 16) | ||
| 454 | memcpy(ptext[j+1], &iv[i][j], len); | ||
| 455 | else | ||
| 456 | memcpy(ptext[j+1], ctext[j-16], len); | ||
| 457 | } | ||
| 458 | else | ||
| 459 | { | ||
| 460 | if (j < 16) | ||
| 461 | memcpy(ctext[j+1], &iv[i][j], len); | ||
| 462 | else | ||
| 463 | memcpy(ctext[j+1], ptext[j-16], len); | ||
| 464 | } | ||
| 465 | break; | ||
| 466 | |||
| 467 | case CFB1: | ||
| 468 | if(j == 0) | ||
| 469 | { | ||
| 470 | /* compensate for wrong endianness of input file */ | ||
| 471 | if(i == 0) | ||
| 472 | ptext[0][0]<<=7; | ||
| 473 | ret=AESTest(&ctx,amode,akeysz,key[i],iv[i],dir, | ||
| 474 | ptext[j], ctext[j], len); | ||
| 475 | } | ||
| 476 | else | ||
| 477 | { | ||
| 478 | if (dir == XENCRYPT) | ||
| 479 | EVP_Cipher(&ctx, ctext[j], ptext[j], len); | ||
| 480 | else | ||
| 481 | EVP_Cipher(&ctx, ptext[j], ctext[j], len); | ||
| 482 | |||
| 483 | } | ||
| 484 | if(dir == XENCRYPT) | ||
| 485 | { | ||
| 486 | if(j < 128) | ||
| 487 | sb(ptext[j+1],0,gb(iv[i],j)); | ||
| 488 | else | ||
| 489 | sb(ptext[j+1],0,gb(ctext[j-128],0)); | ||
| 490 | } | ||
| 491 | else | ||
| 492 | { | ||
| 493 | if(j < 128) | ||
| 494 | sb(ctext[j+1],0,gb(iv[i],j)); | ||
| 495 | else | ||
| 496 | sb(ctext[j+1],0,gb(ptext[j-128],0)); | ||
| 497 | } | ||
| 498 | break; | ||
| 499 | } | ||
| 500 | } | ||
| 501 | --j; /* reset to last of range */ | ||
| 502 | /* Output Ciphertext | Plaintext */ | ||
| 503 | OutputValue(t_tag[dir],dir ? ctext[j] : ptext[j],len,rfp, | ||
| 504 | imode == CFB1); | ||
| 505 | fprintf(rfp, "\n"); /* add separator */ | ||
| 506 | |||
| 507 | /* Compute next KEY */ | ||
| 508 | if (dir == XENCRYPT) | ||
| 509 | { | ||
| 510 | if (imode == CFB8) | ||
| 511 | { /* ct = CT[j-15] || CT[j-14] || ... || CT[j] */ | ||
| 512 | for (n1 = 0, n2 = nkeysz-1; n1 < nkeysz; ++n1, --n2) | ||
| 513 | ciphertext[n1] = ctext[j-n2][0]; | ||
| 514 | } | ||
| 515 | else if(imode == CFB1) | ||
| 516 | { | ||
| 517 | for(n1=0,n2=akeysz-1 ; n1 < akeysz ; ++n1,--n2) | ||
| 518 | sb(ciphertext,n1,gb(ctext[j-n2],0)); | ||
| 519 | } | ||
| 520 | else | ||
| 521 | switch (akeysz) | ||
| 522 | { | ||
| 523 | case 128: | ||
| 524 | memcpy(ciphertext, ctext[j], 16); | ||
| 525 | break; | ||
| 526 | case 192: | ||
| 527 | memcpy(ciphertext, ctext[j-1]+8, 8); | ||
| 528 | memcpy(ciphertext+8, ctext[j], 16); | ||
| 529 | break; | ||
| 530 | case 256: | ||
| 531 | memcpy(ciphertext, ctext[j-1], 16); | ||
| 532 | memcpy(ciphertext+16, ctext[j], 16); | ||
| 533 | break; | ||
| 534 | } | ||
| 535 | } | ||
| 536 | else | ||
| 537 | { | ||
| 538 | if (imode == CFB8) | ||
| 539 | { /* ct = CT[j-15] || CT[j-14] || ... || CT[j] */ | ||
| 540 | for (n1 = 0, n2 = nkeysz-1; n1 < nkeysz; ++n1, --n2) | ||
| 541 | ciphertext[n1] = ptext[j-n2][0]; | ||
| 542 | } | ||
| 543 | else if(imode == CFB1) | ||
| 544 | { | ||
| 545 | for(n1=0,n2=akeysz-1 ; n1 < akeysz ; ++n1,--n2) | ||
| 546 | sb(ciphertext,n1,gb(ptext[j-n2],0)); | ||
| 547 | } | ||
| 548 | else | ||
| 549 | switch (akeysz) | ||
| 550 | { | ||
| 551 | case 128: | ||
| 552 | memcpy(ciphertext, ptext[j], 16); | ||
| 553 | break; | ||
| 554 | case 192: | ||
| 555 | memcpy(ciphertext, ptext[j-1]+8, 8); | ||
| 556 | memcpy(ciphertext+8, ptext[j], 16); | ||
| 557 | break; | ||
| 558 | case 256: | ||
| 559 | memcpy(ciphertext, ptext[j-1], 16); | ||
| 560 | memcpy(ciphertext+16, ptext[j], 16); | ||
| 561 | break; | ||
| 562 | } | ||
| 563 | } | ||
| 564 | /* Compute next key: Key[i+1] = Key[i] xor ct */ | ||
| 565 | for (n = 0; n < nkeysz; ++n) | ||
| 566 | key[i+1][n] = key[i][n] ^ ciphertext[n]; | ||
| 567 | |||
| 568 | /* Compute next IV and text */ | ||
| 569 | if (dir == XENCRYPT) | ||
| 570 | { | ||
| 571 | switch (imode) | ||
| 572 | { | ||
| 573 | case ECB: | ||
| 574 | memcpy(ptext[0], ctext[j], AES_BLOCK_SIZE); | ||
| 575 | break; | ||
| 576 | case CBC: | ||
| 577 | case OFB: | ||
| 578 | case CFB128: | ||
| 579 | memcpy(iv[i+1], ctext[j], AES_BLOCK_SIZE); | ||
| 580 | memcpy(ptext[0], ctext[j-1], AES_BLOCK_SIZE); | ||
| 581 | break; | ||
| 582 | case CFB8: | ||
| 583 | /* IV[i+1] = ct */ | ||
| 584 | for (n1 = 0, n2 = 15; n1 < 16; ++n1, --n2) | ||
| 585 | iv[i+1][n1] = ctext[j-n2][0]; | ||
| 586 | ptext[0][0] = ctext[j-16][0]; | ||
| 587 | break; | ||
| 588 | case CFB1: | ||
| 589 | for(n1=0,n2=127 ; n1 < 128 ; ++n1,--n2) | ||
| 590 | sb(iv[i+1],n1,gb(ctext[j-n2],0)); | ||
| 591 | ptext[0][0]=ctext[j-128][0]&0x80; | ||
| 592 | break; | ||
| 593 | } | ||
| 594 | } | ||
| 595 | else | ||
| 596 | { | ||
| 597 | switch (imode) | ||
| 598 | { | ||
| 599 | case ECB: | ||
| 600 | memcpy(ctext[0], ptext[j], AES_BLOCK_SIZE); | ||
| 601 | break; | ||
| 602 | case CBC: | ||
| 603 | case OFB: | ||
| 604 | case CFB128: | ||
| 605 | memcpy(iv[i+1], ptext[j], AES_BLOCK_SIZE); | ||
| 606 | memcpy(ctext[0], ptext[j-1], AES_BLOCK_SIZE); | ||
| 607 | break; | ||
| 608 | case CFB8: | ||
| 609 | for (n1 = 0, n2 = 15; n1 < 16; ++n1, --n2) | ||
| 610 | iv[i+1][n1] = ptext[j-n2][0]; | ||
| 611 | ctext[0][0] = ptext[j-16][0]; | ||
| 612 | break; | ||
| 613 | case CFB1: | ||
| 614 | for(n1=0,n2=127 ; n1 < 128 ; ++n1,--n2) | ||
| 615 | sb(iv[i+1],n1,gb(ptext[j-n2],0)); | ||
| 616 | ctext[0][0]=ptext[j-128][0]&0x80; | ||
| 617 | break; | ||
| 618 | } | ||
| 619 | } | ||
| 620 | } | ||
| 621 | |||
| 622 | return ret; | ||
| 623 | } | ||
| 624 | |||
| 625 | /*================================================*/ | ||
| 626 | /*---------------------------- | ||
| 627 | # Config info for v-one | ||
| 628 | # AESVS MMT test data for ECB | ||
| 629 | # State : Encrypt and Decrypt | ||
| 630 | # Key Length : 256 | ||
| 631 | # Fri Aug 30 04:07:22 PM | ||
| 632 | ----------------------------*/ | ||
| 633 | |||
| 634 | int proc_file(char *rqfile) | ||
| 635 | { | ||
| 636 | char afn[256], rfn[256]; | ||
| 637 | FILE *afp = NULL, *rfp = NULL; | ||
| 638 | char ibuf[2048]; | ||
| 639 | int ilen, len, ret = 0; | ||
| 640 | char algo[8] = ""; | ||
| 641 | char amode[8] = ""; | ||
| 642 | char atest[8] = ""; | ||
| 643 | int akeysz = 0; | ||
| 644 | unsigned char iVec[20], aKey[40]; | ||
| 645 | int dir = -1, err = 0, step = 0; | ||
| 646 | unsigned char plaintext[2048]; | ||
| 647 | unsigned char ciphertext[2048]; | ||
| 648 | char *rp; | ||
| 649 | EVP_CIPHER_CTX ctx; | ||
| 650 | |||
| 651 | if (!rqfile || !(*rqfile)) | ||
| 652 | { | ||
| 653 | printf("No req file\n"); | ||
| 654 | return -1; | ||
| 655 | } | ||
| 656 | strcpy(afn, rqfile); | ||
| 657 | |||
| 658 | if ((afp = fopen(afn, "r")) == NULL) | ||
| 659 | { | ||
| 660 | printf("Cannot open file: %s, %s\n", | ||
| 661 | afn, strerror(errno)); | ||
| 662 | return -1; | ||
| 663 | } | ||
| 664 | strcpy(rfn,afn); | ||
| 665 | rp=strstr(rfn,"req/"); | ||
| 666 | assert(rp); | ||
| 667 | memcpy(rp,"rsp",3); | ||
| 668 | rp = strstr(rfn, ".req"); | ||
| 669 | memcpy(rp, ".rsp", 4); | ||
| 670 | if ((rfp = fopen(rfn, "w")) == NULL) | ||
| 671 | { | ||
| 672 | printf("Cannot open file: %s, %s\n", | ||
| 673 | rfn, strerror(errno)); | ||
| 674 | fclose(afp); | ||
| 675 | afp = NULL; | ||
| 676 | return -1; | ||
| 677 | } | ||
| 678 | while (!err && (fgets(ibuf, sizeof(ibuf), afp)) != NULL) | ||
| 679 | { | ||
| 680 | ilen = strlen(ibuf); | ||
| 681 | /* printf("step=%d ibuf=%s",step,ibuf); */ | ||
| 682 | switch (step) | ||
| 683 | { | ||
| 684 | case 0: /* read preamble */ | ||
| 685 | if (ibuf[0] == '\n') | ||
| 686 | { /* end of preamble */ | ||
| 687 | if ((*algo == '\0') || | ||
| 688 | (*amode == '\0') || | ||
| 689 | (akeysz == 0)) | ||
| 690 | { | ||
| 691 | printf("Missing Algorithm, Mode or KeySize (%s/%s/%d)\n", | ||
| 692 | algo,amode,akeysz); | ||
| 693 | err = 1; | ||
| 694 | } | ||
| 695 | else | ||
| 696 | { | ||
| 697 | fputs(ibuf, rfp); | ||
| 698 | ++ step; | ||
| 699 | } | ||
| 700 | } | ||
| 701 | else if (ibuf[0] != '#') | ||
| 702 | { | ||
| 703 | printf("Invalid preamble item: %s\n", ibuf); | ||
| 704 | err = 1; | ||
| 705 | } | ||
| 706 | else | ||
| 707 | { /* process preamble */ | ||
| 708 | char *xp, *pp = ibuf+2; | ||
| 709 | int n; | ||
| 710 | if (akeysz) | ||
| 711 | { /* insert current time & date */ | ||
| 712 | time_t rtim = time(0); | ||
| 713 | fprintf(rfp, "# %s", ctime(&rtim)); | ||
| 714 | } | ||
| 715 | else | ||
| 716 | { | ||
| 717 | fputs(ibuf, rfp); | ||
| 718 | if (strncmp(pp, "AESVS ", 6) == 0) | ||
| 719 | { | ||
| 720 | strcpy(algo, "AES"); | ||
| 721 | /* get test type */ | ||
| 722 | pp += 6; | ||
| 723 | xp = strchr(pp, ' '); | ||
| 724 | n = xp-pp; | ||
| 725 | strncpy(atest, pp, n); | ||
| 726 | atest[n] = '\0'; | ||
| 727 | /* get mode */ | ||
| 728 | xp = strrchr(pp, ' '); /* get mode" */ | ||
| 729 | n = strlen(xp+1)-1; | ||
| 730 | strncpy(amode, xp+1, n); | ||
| 731 | amode[n] = '\0'; | ||
| 732 | /* amode[3] = '\0'; */ | ||
| 733 | printf("Test = %s, Mode = %s\n", atest, amode); | ||
| 734 | } | ||
| 735 | else if (strncasecmp(pp, "Key Length : ", 13) == 0) | ||
| 736 | { | ||
| 737 | akeysz = atoi(pp+13); | ||
| 738 | printf("Key size = %d\n", akeysz); | ||
| 739 | } | ||
| 740 | } | ||
| 741 | } | ||
| 742 | break; | ||
| 743 | |||
| 744 | case 1: /* [ENCRYPT] | [DECRYPT] */ | ||
| 745 | if (ibuf[0] == '[') | ||
| 746 | { | ||
| 747 | fputs(ibuf, rfp); | ||
| 748 | ++step; | ||
| 749 | if (strncasecmp(ibuf, "[ENCRYPT]", 9) == 0) | ||
| 750 | dir = 1; | ||
| 751 | else if (strncasecmp(ibuf, "[DECRYPT]", 9) == 0) | ||
| 752 | dir = 0; | ||
| 753 | else | ||
| 754 | { | ||
| 755 | printf("Invalid keyword: %s\n", ibuf); | ||
| 756 | err = 1; | ||
| 757 | } | ||
| 758 | break; | ||
| 759 | } | ||
| 760 | else if (dir == -1) | ||
| 761 | { | ||
| 762 | err = 1; | ||
| 763 | printf("Missing ENCRYPT/DECRYPT keyword\n"); | ||
| 764 | break; | ||
| 765 | } | ||
| 766 | else | ||
| 767 | step = 2; | ||
| 768 | |||
| 769 | case 2: /* KEY = xxxx */ | ||
| 770 | fputs(ibuf, rfp); | ||
| 771 | if(*ibuf == '\n') | ||
| 772 | break; | ||
| 773 | if(!strncasecmp(ibuf,"COUNT = ",8)) | ||
| 774 | break; | ||
| 775 | |||
| 776 | if (strncasecmp(ibuf, "KEY = ", 6) != 0) | ||
| 777 | { | ||
| 778 | printf("Missing KEY\n"); | ||
| 779 | err = 1; | ||
| 780 | } | ||
| 781 | else | ||
| 782 | { | ||
| 783 | len = hex2bin((char*)ibuf+6, strlen(ibuf+6)-1, aKey); | ||
| 784 | if (len < 0) | ||
| 785 | { | ||
| 786 | printf("Invalid KEY\n"); | ||
| 787 | err =1; | ||
| 788 | break; | ||
| 789 | } | ||
| 790 | PrintValue("KEY", aKey, len); | ||
| 791 | if (strcmp(amode, "ECB") == 0) | ||
| 792 | { | ||
| 793 | memset(iVec, 0, sizeof(iVec)); | ||
| 794 | step = (dir)? 4: 5; /* no ivec for ECB */ | ||
| 795 | } | ||
| 796 | else | ||
| 797 | ++step; | ||
| 798 | } | ||
| 799 | break; | ||
| 800 | |||
| 801 | case 3: /* IV = xxxx */ | ||
| 802 | fputs(ibuf, rfp); | ||
| 803 | if (strncasecmp(ibuf, "IV = ", 5) != 0) | ||
| 804 | { | ||
| 805 | printf("Missing IV\n"); | ||
| 806 | err = 1; | ||
| 807 | } | ||
| 808 | else | ||
| 809 | { | ||
| 810 | len = hex2bin((char*)ibuf+5, strlen(ibuf+5)-1, iVec); | ||
| 811 | if (len < 0) | ||
| 812 | { | ||
| 813 | printf("Invalid IV\n"); | ||
| 814 | err =1; | ||
| 815 | break; | ||
| 816 | } | ||
| 817 | PrintValue("IV", iVec, len); | ||
| 818 | step = (dir)? 4: 5; | ||
| 819 | } | ||
| 820 | break; | ||
| 821 | |||
| 822 | case 4: /* PLAINTEXT = xxxx */ | ||
| 823 | fputs(ibuf, rfp); | ||
| 824 | if (strncasecmp(ibuf, "PLAINTEXT = ", 12) != 0) | ||
| 825 | { | ||
| 826 | printf("Missing PLAINTEXT\n"); | ||
| 827 | err = 1; | ||
| 828 | } | ||
| 829 | else | ||
| 830 | { | ||
| 831 | int nn = strlen(ibuf+12); | ||
| 832 | if(!strcmp(amode,"CFB1")) | ||
| 833 | len=bint2bin(ibuf+12,nn-1,plaintext); | ||
| 834 | else | ||
| 835 | len=hex2bin(ibuf+12, nn-1,plaintext); | ||
| 836 | if (len < 0) | ||
| 837 | { | ||
| 838 | printf("Invalid PLAINTEXT: %s", ibuf+12); | ||
| 839 | err =1; | ||
| 840 | break; | ||
| 841 | } | ||
| 842 | if (len >= sizeof(plaintext)) | ||
| 843 | { | ||
| 844 | printf("Buffer overflow\n"); | ||
| 845 | } | ||
| 846 | PrintValue("PLAINTEXT", (unsigned char*)plaintext, len); | ||
| 847 | if (strcmp(atest, "MCT") == 0) /* Monte Carlo Test */ | ||
| 848 | { | ||
| 849 | if(do_mct(amode, akeysz, aKey, iVec, | ||
| 850 | dir, (unsigned char*)plaintext, len, | ||
| 851 | rfp) < 0) | ||
| 852 | EXIT(1); | ||
| 853 | } | ||
| 854 | else | ||
| 855 | { | ||
| 856 | ret = AESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 857 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 858 | plaintext, ciphertext, len); | ||
| 859 | OutputValue("CIPHERTEXT",ciphertext,len,rfp, | ||
| 860 | !strcmp(amode,"CFB1")); | ||
| 861 | } | ||
| 862 | step = 6; | ||
| 863 | } | ||
| 864 | break; | ||
| 865 | |||
| 866 | case 5: /* CIPHERTEXT = xxxx */ | ||
| 867 | fputs(ibuf, rfp); | ||
| 868 | if (strncasecmp(ibuf, "CIPHERTEXT = ", 13) != 0) | ||
| 869 | { | ||
| 870 | printf("Missing KEY\n"); | ||
| 871 | err = 1; | ||
| 872 | } | ||
| 873 | else | ||
| 874 | { | ||
| 875 | if(!strcmp(amode,"CFB1")) | ||
| 876 | len=bint2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 877 | else | ||
| 878 | len = hex2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 879 | if (len < 0) | ||
| 880 | { | ||
| 881 | printf("Invalid CIPHERTEXT\n"); | ||
| 882 | err =1; | ||
| 883 | break; | ||
| 884 | } | ||
| 885 | |||
| 886 | PrintValue("CIPHERTEXT", ciphertext, len); | ||
| 887 | if (strcmp(atest, "MCT") == 0) /* Monte Carlo Test */ | ||
| 888 | { | ||
| 889 | do_mct(amode, akeysz, aKey, iVec, | ||
| 890 | dir, ciphertext, len, rfp); | ||
| 891 | } | ||
| 892 | else | ||
| 893 | { | ||
| 894 | ret = AESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 895 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 896 | plaintext, ciphertext, len); | ||
| 897 | OutputValue("PLAINTEXT",(unsigned char *)plaintext,len,rfp, | ||
| 898 | !strcmp(amode,"CFB1")); | ||
| 899 | } | ||
| 900 | step = 6; | ||
| 901 | } | ||
| 902 | break; | ||
| 903 | |||
| 904 | case 6: | ||
| 905 | if (ibuf[0] != '\n') | ||
| 906 | { | ||
| 907 | err = 1; | ||
| 908 | printf("Missing terminator\n"); | ||
| 909 | } | ||
| 910 | else if (strcmp(atest, "MCT") != 0) | ||
| 911 | { /* MCT already added terminating nl */ | ||
| 912 | fputs(ibuf, rfp); | ||
| 913 | } | ||
| 914 | step = 1; | ||
| 915 | break; | ||
| 916 | } | ||
| 917 | } | ||
| 918 | if (rfp) | ||
| 919 | fclose(rfp); | ||
| 920 | if (afp) | ||
| 921 | fclose(afp); | ||
| 922 | return err; | ||
| 923 | } | ||
| 924 | |||
| 925 | /*-------------------------------------------------- | ||
| 926 | Processes either a single file or | ||
| 927 | a set of files whose names are passed in a file. | ||
| 928 | A single file is specified as: | ||
| 929 | aes_test -f xxx.req | ||
| 930 | A set of files is specified as: | ||
| 931 | aes_test -d xxxxx.xxx | ||
| 932 | The default is: -d req.txt | ||
| 933 | --------------------------------------------------*/ | ||
| 934 | int main(int argc, char **argv) | ||
| 935 | { | ||
| 936 | char *rqlist = "req.txt"; | ||
| 937 | FILE *fp = NULL; | ||
| 938 | char fn[250] = "", rfn[256] = ""; | ||
| 939 | int f_opt = 0, d_opt = 1; | ||
| 940 | |||
| 941 | #ifdef OPENSSL_FIPS | ||
| 942 | if(!FIPS_mode_set(1,argv[0])) | ||
| 943 | { | ||
| 944 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 945 | EXIT(1); | ||
| 946 | } | ||
| 947 | #endif | ||
| 948 | ERR_load_crypto_strings(); | ||
| 949 | if (argc > 1) | ||
| 950 | { | ||
| 951 | if (strcasecmp(argv[1], "-d") == 0) | ||
| 952 | { | ||
| 953 | d_opt = 1; | ||
| 954 | } | ||
| 955 | else if (strcasecmp(argv[1], "-f") == 0) | ||
| 956 | { | ||
| 957 | f_opt = 1; | ||
| 958 | d_opt = 0; | ||
| 959 | } | ||
| 960 | else | ||
| 961 | { | ||
| 962 | printf("Invalid parameter: %s\n", argv[1]); | ||
| 963 | return 0; | ||
| 964 | } | ||
| 965 | if (argc < 3) | ||
| 966 | { | ||
| 967 | printf("Missing parameter\n"); | ||
| 968 | return 0; | ||
| 969 | } | ||
| 970 | if (d_opt) | ||
| 971 | rqlist = argv[2]; | ||
| 972 | else | ||
| 973 | strcpy(fn, argv[2]); | ||
| 974 | } | ||
| 975 | if (d_opt) | ||
| 976 | { /* list of files (directory) */ | ||
| 977 | if (!(fp = fopen(rqlist, "r"))) | ||
| 978 | { | ||
| 979 | printf("Cannot open req list file\n"); | ||
| 980 | return -1; | ||
| 981 | } | ||
| 982 | while (fgets(fn, sizeof(fn), fp)) | ||
| 983 | { | ||
| 984 | strtok(fn, "\r\n"); | ||
| 985 | strcpy(rfn, fn); | ||
| 986 | printf("Processing: %s\n", rfn); | ||
| 987 | if (proc_file(rfn)) | ||
| 988 | { | ||
| 989 | printf(">>> Processing failed for: %s <<<\n", rfn); | ||
| 990 | EXIT(1); | ||
| 991 | } | ||
| 992 | } | ||
| 993 | fclose(fp); | ||
| 994 | } | ||
| 995 | else /* single file */ | ||
| 996 | { | ||
| 997 | printf("Processing: %s\n", fn); | ||
| 998 | if (proc_file(fn)) | ||
| 999 | { | ||
| 1000 | printf(">>> Processing failed for: %s <<<\n", fn); | ||
| 1001 | } | ||
| 1002 | } | ||
| 1003 | EXIT(0); | ||
| 1004 | return 0; | ||
| 1005 | } | ||
diff --git a/src/lib/libssl/src/fips/des/Makefile b/src/lib/libssl/src/fips/des/Makefile deleted file mode 100644 index 87a5329d53..0000000000 --- a/src/lib/libssl/src/fips/des/Makefile +++ /dev/null | |||
| @@ -1,155 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/des/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= des | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | FIPS_DES_ENC=fips_des_enc.o | ||
| 19 | |||
| 20 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 21 | |||
| 22 | GENERAL=Makefile | ||
| 23 | TEST= fips_desmovs.c | ||
| 24 | APPS= | ||
| 25 | |||
| 26 | LIB=$(TOP)/libcrypto.a | ||
| 27 | LIBSRC=fips_des_enc.c asm/fips-dx86-elf.s fips_des_selftest.c fips_set_key.c | ||
| 28 | LIBOBJ=$(FIPS_DES_ENC) fips_des_selftest.o fips_set_key.o | ||
| 29 | |||
| 30 | SRC= $(LIBSRC) | ||
| 31 | |||
| 32 | EXHEADER= | ||
| 33 | HEADER= $(EXHEADER) fips_des_locl.h | ||
| 34 | |||
| 35 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 36 | |||
| 37 | top: | ||
| 38 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 39 | |||
| 40 | all: check lib | ||
| 41 | |||
| 42 | check: | ||
| 43 | TOP=`pwd`/$(TOP) ../fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 44 | |||
| 45 | lib: $(LIBOBJ) | ||
| 46 | $(AR) $(LIB) $(LIBOBJ) | ||
| 47 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 48 | @sleep 2; touch lib | ||
| 49 | |||
| 50 | files: | ||
| 51 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 52 | |||
| 53 | links: | ||
| 54 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 55 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 56 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 57 | |||
| 58 | install: | ||
| 59 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 60 | do \ | ||
| 61 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 62 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 63 | done | ||
| 64 | |||
| 65 | tags: | ||
| 66 | ctags $(SRC) | ||
| 67 | |||
| 68 | tests: | ||
| 69 | |||
| 70 | top_fips_desmovs: | ||
| 71 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) TARGET=fips_desmovs sub_target) | ||
| 72 | |||
| 73 | fips_desmovs: fips_desmovs.o $(TOP)/libcrypto.a | ||
| 74 | $(CC) $(CFLAGS) -o fips_desmovs fips_desmovs.o $(PEX_LIBS) $(TOP)/libcrypto.a $(EX_LIBS) | ||
| 75 | TOP=$(TOP) $(TOP)/fips/openssl_fips_fingerprint $(TOP)/libcrypto.a fips_desmovs | ||
| 76 | |||
| 77 | fips_test: top_fips_desmovs | ||
| 78 | find ../testvectors/des/req -name '*.req' > testlist | ||
| 79 | -rm -rf ../testvectors/des/rsp | ||
| 80 | mkdir ../testvectors/des/rsp | ||
| 81 | ./fips_desmovs -d testlist | ||
| 82 | find ../testvectors/des2/req -name '*.req' > testlist | ||
| 83 | -rm -rf ../testvectors/des2/rsp | ||
| 84 | mkdir ../testvectors/des2/rsp | ||
| 85 | ./fips_desmovs -d testlist | ||
| 86 | find ../testvectors/des3/req -name '*.req' > testlist | ||
| 87 | -rm -rf ../testvectors/des3/rsp | ||
| 88 | mkdir ../testvectors/des3/rsp | ||
| 89 | ./fips_desmovs -d testlist | ||
| 90 | |||
| 91 | lint: | ||
| 92 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 93 | |||
| 94 | depend: | ||
| 95 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) \ | ||
| 96 | $(SRC) $(TEST) | ||
| 97 | dclean: | ||
| 98 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 99 | mv -f Makefile.new $(MAKEFILE) | ||
| 100 | |||
| 101 | clean: | ||
| 102 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 103 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 104 | |||
| 105 | fips_des_enc.o: ../../e_os.h ../../include/openssl/crypto.h | ||
| 106 | fips_des_enc.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 107 | fips_des_enc.o: ../../include/openssl/e_os2.h ../../include/openssl/fips.h | ||
| 108 | fips_des_enc.o: ../../include/openssl/opensslconf.h | ||
| 109 | fips_des_enc.o: ../../include/openssl/opensslv.h | ||
| 110 | fips_des_enc.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 111 | fips_des_enc.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 112 | fips_des_enc.o: ../../include/openssl/ui_compat.h fips_des_enc.c | ||
| 113 | fips_des_enc.o: fips_des_locl.h | ||
| 114 | fips_des_selftest.o: ../../include/openssl/bio.h ../../include/openssl/crypto.h | ||
| 115 | fips_des_selftest.o: ../../include/openssl/des.h | ||
| 116 | fips_des_selftest.o: ../../include/openssl/des_old.h | ||
| 117 | fips_des_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 118 | fips_des_selftest.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 119 | fips_des_selftest.o: ../../include/openssl/opensslconf.h | ||
| 120 | fips_des_selftest.o: ../../include/openssl/opensslv.h | ||
| 121 | fips_des_selftest.o: ../../include/openssl/safestack.h | ||
| 122 | fips_des_selftest.o: ../../include/openssl/stack.h | ||
| 123 | fips_des_selftest.o: ../../include/openssl/symhacks.h | ||
| 124 | fips_des_selftest.o: ../../include/openssl/ui.h | ||
| 125 | fips_des_selftest.o: ../../include/openssl/ui_compat.h fips_des_selftest.c | ||
| 126 | fips_desmovs.o: ../../e_os.h ../../include/openssl/aes.h | ||
| 127 | fips_desmovs.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 128 | fips_desmovs.o: ../../include/openssl/blowfish.h ../../include/openssl/bn.h | ||
| 129 | fips_desmovs.o: ../../include/openssl/cast.h ../../include/openssl/crypto.h | ||
| 130 | fips_desmovs.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 131 | fips_desmovs.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 132 | fips_desmovs.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 133 | fips_desmovs.o: ../../include/openssl/evp.h ../../include/openssl/fips.h | ||
| 134 | fips_desmovs.o: ../../include/openssl/idea.h ../../include/openssl/lhash.h | ||
| 135 | fips_desmovs.o: ../../include/openssl/md2.h ../../include/openssl/md4.h | ||
| 136 | fips_desmovs.o: ../../include/openssl/md5.h ../../include/openssl/mdc2.h | ||
| 137 | fips_desmovs.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h | ||
| 138 | fips_desmovs.o: ../../include/openssl/opensslconf.h | ||
| 139 | fips_desmovs.o: ../../include/openssl/opensslv.h | ||
| 140 | fips_desmovs.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rc2.h | ||
| 141 | fips_desmovs.o: ../../include/openssl/rc4.h ../../include/openssl/rc5.h | ||
| 142 | fips_desmovs.o: ../../include/openssl/ripemd.h ../../include/openssl/rsa.h | ||
| 143 | fips_desmovs.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h | ||
| 144 | fips_desmovs.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 145 | fips_desmovs.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 146 | fips_desmovs.o: fips_desmovs.c | ||
| 147 | fips_set_key.o: ../../e_os.h ../../include/openssl/crypto.h | ||
| 148 | fips_set_key.o: ../../include/openssl/des.h ../../include/openssl/des_old.h | ||
| 149 | fips_set_key.o: ../../include/openssl/e_os2.h ../../include/openssl/fips.h | ||
| 150 | fips_set_key.o: ../../include/openssl/opensslconf.h | ||
| 151 | fips_set_key.o: ../../include/openssl/opensslv.h | ||
| 152 | fips_set_key.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 153 | fips_set_key.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 154 | fips_set_key.o: ../../include/openssl/ui_compat.h fips_des_locl.h | ||
| 155 | fips_set_key.o: fips_set_key.c | ||
diff --git a/src/lib/libssl/src/fips/des/fips_des_selftest.c b/src/lib/libssl/src/fips/des/fips_des_selftest.c deleted file mode 100644 index 3e0778eb5e..0000000000 --- a/src/lib/libssl/src/fips/des/fips_des_selftest.c +++ /dev/null | |||
| @@ -1,200 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/des.h> | ||
| 54 | #include <openssl/opensslconf.h> | ||
| 55 | |||
| 56 | #ifdef OPENSSL_FIPS | ||
| 57 | static struct | ||
| 58 | { | ||
| 59 | DES_cblock key; | ||
| 60 | unsigned char plaintext[8]; | ||
| 61 | unsigned char ciphertext[8]; | ||
| 62 | } tests[]= | ||
| 63 | { | ||
| 64 | { | ||
| 65 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 66 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 67 | { 0x8C,0xA6,0x4D,0xE9,0xC1,0xB1,0x23,0xA7 } | ||
| 68 | }, | ||
| 69 | { | ||
| 70 | { 0xFE,0xDC,0xBA,0x98,0x76,0x54,0x32,0x10 }, | ||
| 71 | { 0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF }, | ||
| 72 | { 0xED,0x39,0xD9,0x50,0xFA,0x74,0xBC,0xC4 }, | ||
| 73 | }, | ||
| 74 | }; | ||
| 75 | |||
| 76 | static struct | ||
| 77 | { | ||
| 78 | DES_cblock key1; | ||
| 79 | DES_cblock key2; | ||
| 80 | unsigned char plaintext[8]; | ||
| 81 | unsigned char ciphertext[8]; | ||
| 82 | } tests2[]= | ||
| 83 | { | ||
| 84 | { | ||
| 85 | { 0x7c,0x4f,0x6e,0xf7,0xa2,0x04,0x16,0xec }, | ||
| 86 | { 0x0b,0x6b,0x7c,0x9e,0x5e,0x19,0xa7,0xc4 }, | ||
| 87 | { 0x06,0xa7,0xd8,0x79,0xaa,0xce,0x69,0xef }, | ||
| 88 | { 0x4c,0x11,0x17,0x55,0xbf,0xc4,0x4e,0xfd } | ||
| 89 | }, | ||
| 90 | { | ||
| 91 | { 0x5d,0x9e,0x01,0xd3,0x25,0xc7,0x3e,0x34 }, | ||
| 92 | { 0x01,0x16,0x7c,0x85,0x23,0xdf,0xe0,0x68 }, | ||
| 93 | { 0x9c,0x50,0x09,0x0f,0x5e,0x7d,0x69,0x7e }, | ||
| 94 | { 0xd2,0x0b,0x18,0xdf,0xd9,0x0d,0x9e,0xff }, | ||
| 95 | } | ||
| 96 | }; | ||
| 97 | |||
| 98 | static struct | ||
| 99 | { | ||
| 100 | DES_cblock key1; | ||
| 101 | DES_cblock key2; | ||
| 102 | DES_cblock key3; | ||
| 103 | unsigned char plaintext[8]; | ||
| 104 | unsigned char ciphertext[8]; | ||
| 105 | } tests3[]= | ||
| 106 | { | ||
| 107 | { | ||
| 108 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 109 | { 0xFE,0xDC,0xBA,0x98,0x76,0x54,0x32,0x10 }, | ||
| 110 | { 0x12,0x34,0x56,0x78,0x9a,0xbc,0xde,0xf0 }, | ||
| 111 | { 0x8f,0x8f,0xbf,0x9b,0x5d,0x48,0xb4,0x1c}, | ||
| 112 | { 0x59,0x8c,0xe5,0xd3,0x6c,0xa2,0xea,0x1b}, | ||
| 113 | }, | ||
| 114 | { | ||
| 115 | { 0xDC,0xBA,0x98,0x76,0x54,0x32,0x10,0xFE }, | ||
| 116 | { 0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF }, | ||
| 117 | { 0xED,0x39,0xD9,0x50,0xFA,0x74,0xBC,0xC4 }, | ||
| 118 | { 0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF }, | ||
| 119 | { 0x11,0x25,0xb0,0x35,0xbe,0xa0,0x82,0x86 }, | ||
| 120 | }, | ||
| 121 | }; | ||
| 122 | |||
| 123 | void FIPS_corrupt_des() | ||
| 124 | { | ||
| 125 | tests[0].plaintext[0]++; | ||
| 126 | } | ||
| 127 | |||
| 128 | int FIPS_selftest_des() | ||
| 129 | { | ||
| 130 | int n; | ||
| 131 | |||
| 132 | /* Encrypt/decrypt with DES and compare to known answers */ | ||
| 133 | for(n=0 ; n < 2 ; ++n) | ||
| 134 | { | ||
| 135 | DES_key_schedule key; | ||
| 136 | DES_cblock buf; | ||
| 137 | |||
| 138 | DES_set_key(&tests[n].key,&key); | ||
| 139 | DES_ecb_encrypt(&tests[n].plaintext,&buf,&key,1); | ||
| 140 | if(memcmp(buf,tests[n].ciphertext,sizeof buf)) | ||
| 141 | { | ||
| 142 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 143 | return 0; | ||
| 144 | } | ||
| 145 | DES_ecb_encrypt(&tests[n].ciphertext,&buf,&key,0); | ||
| 146 | if(memcmp(buf,tests[n].plaintext,sizeof buf)) | ||
| 147 | { | ||
| 148 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 149 | return 0; | ||
| 150 | } | ||
| 151 | } | ||
| 152 | |||
| 153 | /* Encrypt/decrypt with 2-key 3DES and compare to known answers */ | ||
| 154 | for(n=0 ; n < 2 ; ++n) | ||
| 155 | { | ||
| 156 | DES_key_schedule key1, key2; | ||
| 157 | unsigned char buf[8]; | ||
| 158 | |||
| 159 | DES_set_key(&tests2[n].key1,&key1); | ||
| 160 | DES_set_key(&tests2[n].key2,&key2); | ||
| 161 | DES_ecb2_encrypt(tests2[n].plaintext,buf,&key1,&key2,1); | ||
| 162 | if(memcmp(buf,tests2[n].ciphertext,sizeof buf)) | ||
| 163 | { | ||
| 164 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 165 | return 0; | ||
| 166 | } | ||
| 167 | DES_ecb2_encrypt(tests2[n].ciphertext,buf,&key1,&key2,0); | ||
| 168 | if(memcmp(buf,tests2[n].plaintext,sizeof buf)) | ||
| 169 | { | ||
| 170 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 171 | return 0; | ||
| 172 | } | ||
| 173 | } | ||
| 174 | |||
| 175 | /* Encrypt/decrypt with 3DES and compare to known answers */ | ||
| 176 | for(n=0 ; n < 2 ; ++n) | ||
| 177 | { | ||
| 178 | DES_key_schedule key1, key2, key3; | ||
| 179 | unsigned char buf[8]; | ||
| 180 | |||
| 181 | DES_set_key(&tests3[n].key1,&key1); | ||
| 182 | DES_set_key(&tests3[n].key2,&key2); | ||
| 183 | DES_set_key(&tests3[n].key3,&key3); | ||
| 184 | DES_ecb3_encrypt(tests3[n].plaintext,buf,&key1,&key2,&key3,1); | ||
| 185 | if(memcmp(buf,tests3[n].ciphertext,sizeof buf)) | ||
| 186 | { | ||
| 187 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 188 | return 0; | ||
| 189 | } | ||
| 190 | DES_ecb3_encrypt(tests3[n].ciphertext,buf,&key1,&key2,&key3,0); | ||
| 191 | if(memcmp(buf,tests3[n].plaintext,sizeof buf)) | ||
| 192 | { | ||
| 193 | FIPSerr(FIPS_F_FIPS_SELFTEST_DES,FIPS_R_SELFTEST_FAILED); | ||
| 194 | return 0; | ||
| 195 | } | ||
| 196 | } | ||
| 197 | |||
| 198 | return 1; | ||
| 199 | } | ||
| 200 | #endif | ||
diff --git a/src/lib/libssl/src/fips/des/fips_desmovs.c b/src/lib/libssl/src/fips/des/fips_desmovs.c deleted file mode 100644 index d1b60c1a40..0000000000 --- a/src/lib/libssl/src/fips/des/fips_desmovs.c +++ /dev/null | |||
| @@ -1,833 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2004 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | /*--------------------------------------------- | ||
| 50 | NIST DES Modes of Operation Validation System | ||
| 51 | Test Program | ||
| 52 | |||
| 53 | Based on the AES Validation Suite, which was: | ||
| 54 | Donated to OpenSSL by: | ||
| 55 | V-ONE Corporation | ||
| 56 | 20250 Century Blvd, Suite 300 | ||
| 57 | Germantown, MD 20874 | ||
| 58 | U.S.A. | ||
| 59 | ----------------------------------------------*/ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <stdlib.h> | ||
| 63 | #include <string.h> | ||
| 64 | #include <errno.h> | ||
| 65 | #include <assert.h> | ||
| 66 | |||
| 67 | #include <openssl/des.h> | ||
| 68 | #include <openssl/evp.h> | ||
| 69 | #include <openssl/fips.h> | ||
| 70 | #include <openssl/err.h> | ||
| 71 | #include "e_os.h" | ||
| 72 | |||
| 73 | /*#define AES_BLOCK_SIZE 16*/ | ||
| 74 | |||
| 75 | #define VERBOSE 0 | ||
| 76 | |||
| 77 | /*-----------------------------------------------*/ | ||
| 78 | |||
| 79 | int DESTest(EVP_CIPHER_CTX *ctx, | ||
| 80 | char *amode, int akeysz, unsigned char *aKey, | ||
| 81 | unsigned char *iVec, | ||
| 82 | int dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 83 | unsigned char *out, unsigned char *in, int len) | ||
| 84 | { | ||
| 85 | const EVP_CIPHER *cipher = NULL; | ||
| 86 | int kt = 0; | ||
| 87 | |||
| 88 | if (ctx) | ||
| 89 | memset(ctx, 0, sizeof(EVP_CIPHER_CTX)); | ||
| 90 | |||
| 91 | if (strcasecmp(amode, "CBC") == 0) | ||
| 92 | kt = 1000; | ||
| 93 | else if (strcasecmp(amode, "ECB") == 0) | ||
| 94 | kt = 2000; | ||
| 95 | else if (strcasecmp(amode, "CFB64") == 0) | ||
| 96 | kt = 3000; | ||
| 97 | else if (strncasecmp(amode, "OFB", 3) == 0) | ||
| 98 | kt = 4000; | ||
| 99 | else if(!strcasecmp(amode,"CFB1")) | ||
| 100 | kt=5000; | ||
| 101 | else if(!strcasecmp(amode,"CFB8")) | ||
| 102 | kt=6000; | ||
| 103 | else | ||
| 104 | { | ||
| 105 | printf("Unknown mode: %s\n", amode); | ||
| 106 | EXIT(1); | ||
| 107 | } | ||
| 108 | if (akeysz != 64 && akeysz != 192) | ||
| 109 | { | ||
| 110 | printf("Invalid key size: %d\n", akeysz); | ||
| 111 | EXIT(1); | ||
| 112 | } | ||
| 113 | else | ||
| 114 | { | ||
| 115 | kt += akeysz; | ||
| 116 | switch (kt) | ||
| 117 | { | ||
| 118 | case 1064: | ||
| 119 | cipher=EVP_des_cbc(); | ||
| 120 | break; | ||
| 121 | case 1192: | ||
| 122 | cipher=EVP_des_ede3_cbc(); | ||
| 123 | break; | ||
| 124 | case 2064: | ||
| 125 | cipher=EVP_des_ecb(); | ||
| 126 | break; | ||
| 127 | case 2192: | ||
| 128 | cipher=EVP_des_ede3_ecb(); | ||
| 129 | break; | ||
| 130 | case 3064: | ||
| 131 | cipher=EVP_des_cfb64(); | ||
| 132 | break; | ||
| 133 | case 3192: | ||
| 134 | cipher=EVP_des_ede3_cfb64(); | ||
| 135 | break; | ||
| 136 | case 4064: | ||
| 137 | cipher=EVP_des_ofb(); | ||
| 138 | break; | ||
| 139 | case 4192: | ||
| 140 | cipher=EVP_des_ede3_ofb(); | ||
| 141 | break; | ||
| 142 | case 5064: | ||
| 143 | cipher=EVP_des_cfb1(); | ||
| 144 | break; | ||
| 145 | case 5192: | ||
| 146 | cipher=EVP_des_ede3_cfb1(); | ||
| 147 | break; | ||
| 148 | case 6064: | ||
| 149 | cipher=EVP_des_cfb8(); | ||
| 150 | break; | ||
| 151 | case 6192: | ||
| 152 | cipher=EVP_des_ede3_cfb8(); | ||
| 153 | break; | ||
| 154 | default: | ||
| 155 | printf("Didn't handle mode %d\n",kt); | ||
| 156 | EXIT(1); | ||
| 157 | } | ||
| 158 | if(!EVP_CipherInit(ctx, cipher, aKey, iVec, dir)) | ||
| 159 | { | ||
| 160 | ERR_print_errors_fp(stderr); | ||
| 161 | EXIT(1); | ||
| 162 | } | ||
| 163 | EVP_Cipher(ctx, out, in, len); | ||
| 164 | } | ||
| 165 | return 1; | ||
| 166 | } | ||
| 167 | |||
| 168 | /*-----------------------------------------------*/ | ||
| 169 | |||
| 170 | int hex2bin(char *in, int len, unsigned char *out) | ||
| 171 | { | ||
| 172 | int n1, n2; | ||
| 173 | unsigned char ch; | ||
| 174 | |||
| 175 | for (n1 = 0, n2 = 0; n1 < len; ) | ||
| 176 | { /* first byte */ | ||
| 177 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 178 | ch = in[n1++] - '0'; | ||
| 179 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 180 | ch = in[n1++] - 'A' + 10; | ||
| 181 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 182 | ch = in[n1++] - 'a' + 10; | ||
| 183 | else | ||
| 184 | return -1; | ||
| 185 | if(len == 1) | ||
| 186 | { | ||
| 187 | out[n2++]=ch; | ||
| 188 | break; | ||
| 189 | } | ||
| 190 | out[n2] = ch << 4; | ||
| 191 | /* second byte */ | ||
| 192 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 193 | ch = in[n1++] - '0'; | ||
| 194 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 195 | ch = in[n1++] - 'A' + 10; | ||
| 196 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 197 | ch = in[n1++] - 'a' + 10; | ||
| 198 | else | ||
| 199 | return -1; | ||
| 200 | out[n2++] |= ch; | ||
| 201 | } | ||
| 202 | return n2; | ||
| 203 | } | ||
| 204 | |||
| 205 | /*-----------------------------------------------*/ | ||
| 206 | |||
| 207 | int bin2hex(unsigned char *in, int len, char *out) | ||
| 208 | { | ||
| 209 | int n1, n2; | ||
| 210 | unsigned char ch; | ||
| 211 | |||
| 212 | for (n1 = 0, n2 = 0; n1 < len; ++n1) | ||
| 213 | { | ||
| 214 | /* first nibble */ | ||
| 215 | ch = in[n1] >> 4; | ||
| 216 | if (ch <= 0x09) | ||
| 217 | out[n2++] = ch + '0'; | ||
| 218 | else | ||
| 219 | out[n2++] = ch - 10 + 'a'; | ||
| 220 | /* second nibble */ | ||
| 221 | ch = in[n1] & 0x0f; | ||
| 222 | if (ch <= 0x09) | ||
| 223 | out[n2++] = ch + '0'; | ||
| 224 | else | ||
| 225 | out[n2++] = ch - 10 + 'a'; | ||
| 226 | } | ||
| 227 | return n2; | ||
| 228 | } | ||
| 229 | |||
| 230 | /* NB: this return the number of _bits_ read */ | ||
| 231 | int bint2bin(const char *in, int len, unsigned char *out) | ||
| 232 | { | ||
| 233 | int n; | ||
| 234 | |||
| 235 | memset(out,0,len); | ||
| 236 | for(n=0 ; n < len ; ++n) | ||
| 237 | if(in[n] == '1') | ||
| 238 | out[n/8]|=(0x80 >> (n%8)); | ||
| 239 | return len; | ||
| 240 | } | ||
| 241 | |||
| 242 | int bin2bint(const unsigned char *in,int len,char *out) | ||
| 243 | { | ||
| 244 | int n; | ||
| 245 | |||
| 246 | for(n=0 ; n < len ; ++n) | ||
| 247 | out[n]=(in[n/8]&(0x80 >> (n%8))) ? '1' : '0'; | ||
| 248 | return n; | ||
| 249 | } | ||
| 250 | |||
| 251 | /*-----------------------------------------------*/ | ||
| 252 | |||
| 253 | void PrintValue(char *tag, unsigned char *val, int len) | ||
| 254 | { | ||
| 255 | #if VERBOSE | ||
| 256 | char obuf[2048]; | ||
| 257 | int olen; | ||
| 258 | olen = bin2hex(val, len, obuf); | ||
| 259 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 260 | #endif | ||
| 261 | } | ||
| 262 | |||
| 263 | void DebugValue(char *tag, unsigned char *val, int len) | ||
| 264 | { | ||
| 265 | char obuf[2048]; | ||
| 266 | int olen; | ||
| 267 | olen = bin2hex(val, len, obuf); | ||
| 268 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 269 | } | ||
| 270 | |||
| 271 | void OutputValue(char *tag, unsigned char *val, int len, FILE *rfp,int bitmode) | ||
| 272 | { | ||
| 273 | char obuf[2048]; | ||
| 274 | int olen; | ||
| 275 | |||
| 276 | if(bitmode) | ||
| 277 | olen=bin2bint(val,len,obuf); | ||
| 278 | else | ||
| 279 | olen=bin2hex(val,len,obuf); | ||
| 280 | |||
| 281 | fprintf(rfp, "%s = %.*s\n", tag, olen, obuf); | ||
| 282 | #if VERBOSE | ||
| 283 | printf("%s = %.*s\n", tag, olen, obuf); | ||
| 284 | #endif | ||
| 285 | } | ||
| 286 | |||
| 287 | void shiftin(unsigned char *dst,unsigned char *src,int nbits) | ||
| 288 | { | ||
| 289 | int n; | ||
| 290 | |||
| 291 | /* move the bytes... */ | ||
| 292 | memmove(dst,dst+nbits/8,3*8-nbits/8); | ||
| 293 | /* append new data */ | ||
| 294 | memcpy(dst+3*8-nbits/8,src,(nbits+7)/8); | ||
| 295 | /* left shift the bits */ | ||
| 296 | if(nbits%8) | ||
| 297 | for(n=0 ; n < 3*8 ; ++n) | ||
| 298 | dst[n]=(dst[n] << (nbits%8))|(dst[n+1] >> (8-nbits%8)); | ||
| 299 | } | ||
| 300 | |||
| 301 | /*-----------------------------------------------*/ | ||
| 302 | char *t_tag[2] = {"PLAINTEXT", "CIPHERTEXT"}; | ||
| 303 | char *t_mode[6] = {"CBC","ECB","OFB","CFB1","CFB8","CFB64"}; | ||
| 304 | enum Mode {CBC, ECB, OFB, CFB1, CFB8, CFB64}; | ||
| 305 | int Sizes[6]={64,64,64,1,8,64}; | ||
| 306 | |||
| 307 | void do_mct(char *amode, | ||
| 308 | int akeysz, int numkeys, unsigned char *akey,unsigned char *ivec, | ||
| 309 | int dir, unsigned char *text, int len, | ||
| 310 | FILE *rfp) | ||
| 311 | { | ||
| 312 | int i,imode; | ||
| 313 | unsigned char nk[4*8]; /* longest key+8 */ | ||
| 314 | unsigned char text0[8]; | ||
| 315 | |||
| 316 | for (imode=0 ; imode < 6 ; ++imode) | ||
| 317 | if(!strcmp(amode,t_mode[imode])) | ||
| 318 | break; | ||
| 319 | if (imode == 6) | ||
| 320 | { | ||
| 321 | printf("Unrecognized mode: %s\n", amode); | ||
| 322 | EXIT(1); | ||
| 323 | } | ||
| 324 | |||
| 325 | for(i=0 ; i < 400 ; ++i) | ||
| 326 | { | ||
| 327 | int j; | ||
| 328 | int n; | ||
| 329 | EVP_CIPHER_CTX ctx; | ||
| 330 | int kp=akeysz/64; | ||
| 331 | unsigned char old_iv[8]; | ||
| 332 | |||
| 333 | fprintf(rfp,"\nCOUNT = %d\n",i); | ||
| 334 | if(kp == 1) | ||
| 335 | OutputValue("KEY",akey,8,rfp,0); | ||
| 336 | else | ||
| 337 | for(n=0 ; n < kp ; ++n) | ||
| 338 | { | ||
| 339 | fprintf(rfp,"KEY%d",n+1); | ||
| 340 | OutputValue("",akey+n*8,8,rfp,0); | ||
| 341 | } | ||
| 342 | |||
| 343 | if(imode != ECB) | ||
| 344 | OutputValue("IV",ivec,8,rfp,0); | ||
| 345 | OutputValue(t_tag[dir^1],text,len,rfp,imode == CFB1); | ||
| 346 | |||
| 347 | /* compensate for endianness */ | ||
| 348 | if(imode == CFB1) | ||
| 349 | text[0]<<=7; | ||
| 350 | |||
| 351 | memcpy(text0,text,8); | ||
| 352 | |||
| 353 | for(j=0 ; j < 10000 ; ++j) | ||
| 354 | { | ||
| 355 | unsigned char old_text[8]; | ||
| 356 | |||
| 357 | memcpy(old_text,text,8); | ||
| 358 | if(j == 0) | ||
| 359 | { | ||
| 360 | memcpy(old_iv,ivec,8); | ||
| 361 | DESTest(&ctx,amode,akeysz,akey,ivec,dir,text,text,len); | ||
| 362 | } | ||
| 363 | else | ||
| 364 | { | ||
| 365 | memcpy(old_iv,ctx.iv,8); | ||
| 366 | EVP_Cipher(&ctx,text,text,len); | ||
| 367 | } | ||
| 368 | if(j == 9999) | ||
| 369 | { | ||
| 370 | OutputValue(t_tag[dir],text,len,rfp,imode == CFB1); | ||
| 371 | /* memcpy(ivec,text,8); */ | ||
| 372 | } | ||
| 373 | /* DebugValue("iv",ctx.iv,8); */ | ||
| 374 | /* accumulate material for the next key */ | ||
| 375 | shiftin(nk,text,Sizes[imode]); | ||
| 376 | /* DebugValue("nk",nk,24);*/ | ||
| 377 | if((dir && (imode == CFB1 || imode == CFB8 || imode == CFB64 | ||
| 378 | || imode == CBC)) || imode == OFB) | ||
| 379 | memcpy(text,old_iv,8); | ||
| 380 | |||
| 381 | if(!dir && (imode == CFB1 || imode == CFB8 || imode == CFB64)) | ||
| 382 | { | ||
| 383 | /* the test specifies using the output of the raw DES operation | ||
| 384 | which we don't have, so reconstruct it... */ | ||
| 385 | for(n=0 ; n < 8 ; ++n) | ||
| 386 | text[n]^=old_text[n]; | ||
| 387 | } | ||
| 388 | } | ||
| 389 | for(n=0 ; n < 8 ; ++n) | ||
| 390 | akey[n]^=nk[16+n]; | ||
| 391 | for(n=0 ; n < 8 ; ++n) | ||
| 392 | akey[8+n]^=nk[8+n]; | ||
| 393 | for(n=0 ; n < 8 ; ++n) | ||
| 394 | akey[16+n]^=nk[n]; | ||
| 395 | if(numkeys < 3) | ||
| 396 | memcpy(&akey[2*8],akey,8); | ||
| 397 | if(numkeys < 2) | ||
| 398 | memcpy(&akey[8],akey,8); | ||
| 399 | DES_set_odd_parity((DES_cblock *)akey); | ||
| 400 | DES_set_odd_parity((DES_cblock *)(akey+8)); | ||
| 401 | DES_set_odd_parity((DES_cblock *)(akey+16)); | ||
| 402 | memcpy(ivec,ctx.iv,8); | ||
| 403 | |||
| 404 | /* pointless exercise - the final text doesn't depend on the | ||
| 405 | initial text in OFB mode, so who cares what it is? (Who | ||
| 406 | designed these tests?) */ | ||
| 407 | if(imode == OFB) | ||
| 408 | for(n=0 ; n < 8 ; ++n) | ||
| 409 | text[n]=text0[n]^old_iv[n]; | ||
| 410 | } | ||
| 411 | } | ||
| 412 | |||
| 413 | int proc_file(char *rqfile) | ||
| 414 | { | ||
| 415 | char afn[256], rfn[256]; | ||
| 416 | FILE *afp = NULL, *rfp = NULL; | ||
| 417 | char ibuf[2048]; | ||
| 418 | int ilen, len, ret = 0; | ||
| 419 | char amode[8] = ""; | ||
| 420 | char atest[100] = ""; | ||
| 421 | int akeysz=0; | ||
| 422 | unsigned char iVec[20], aKey[40]; | ||
| 423 | int dir = -1, err = 0, step = 0; | ||
| 424 | unsigned char plaintext[2048]; | ||
| 425 | unsigned char ciphertext[2048]; | ||
| 426 | char *rp; | ||
| 427 | EVP_CIPHER_CTX ctx; | ||
| 428 | int numkeys=1; | ||
| 429 | |||
| 430 | if (!rqfile || !(*rqfile)) | ||
| 431 | { | ||
| 432 | printf("No req file\n"); | ||
| 433 | return -1; | ||
| 434 | } | ||
| 435 | strcpy(afn, rqfile); | ||
| 436 | |||
| 437 | if ((afp = fopen(afn, "r")) == NULL) | ||
| 438 | { | ||
| 439 | printf("Cannot open file: %s, %s\n", | ||
| 440 | afn, strerror(errno)); | ||
| 441 | return -1; | ||
| 442 | } | ||
| 443 | strcpy(rfn,afn); | ||
| 444 | rp=strstr(rfn,"req/"); | ||
| 445 | assert(rp); | ||
| 446 | memcpy(rp,"rsp",3); | ||
| 447 | rp = strstr(rfn, ".req"); | ||
| 448 | memcpy(rp, ".rsp", 4); | ||
| 449 | if ((rfp = fopen(rfn, "w")) == NULL) | ||
| 450 | { | ||
| 451 | printf("Cannot open file: %s, %s\n", | ||
| 452 | rfn, strerror(errno)); | ||
| 453 | fclose(afp); | ||
| 454 | afp = NULL; | ||
| 455 | return -1; | ||
| 456 | } | ||
| 457 | while (!err && (fgets(ibuf, sizeof(ibuf), afp)) != NULL) | ||
| 458 | { | ||
| 459 | ilen = strlen(ibuf); | ||
| 460 | /* printf("step=%d ibuf=%s",step,ibuf);*/ | ||
| 461 | if(step == 3 && !strcmp(amode,"ECB")) | ||
| 462 | { | ||
| 463 | memset(iVec, 0, sizeof(iVec)); | ||
| 464 | step = (dir)? 4: 5; /* no ivec for ECB */ | ||
| 465 | } | ||
| 466 | switch (step) | ||
| 467 | { | ||
| 468 | case 0: /* read preamble */ | ||
| 469 | if (ibuf[0] == '\n') | ||
| 470 | { /* end of preamble */ | ||
| 471 | if (*amode == '\0') | ||
| 472 | { | ||
| 473 | printf("Missing Mode\n"); | ||
| 474 | err = 1; | ||
| 475 | } | ||
| 476 | else | ||
| 477 | { | ||
| 478 | fputs(ibuf, rfp); | ||
| 479 | ++ step; | ||
| 480 | } | ||
| 481 | } | ||
| 482 | else if (ibuf[0] != '#') | ||
| 483 | { | ||
| 484 | printf("Invalid preamble item: %s\n", ibuf); | ||
| 485 | err = 1; | ||
| 486 | } | ||
| 487 | else | ||
| 488 | { /* process preamble */ | ||
| 489 | char *xp, *pp = ibuf+2; | ||
| 490 | int n; | ||
| 491 | if(*amode) | ||
| 492 | { /* insert current time & date */ | ||
| 493 | time_t rtim = time(0); | ||
| 494 | fprintf(rfp, "# %s", ctime(&rtim)); | ||
| 495 | } | ||
| 496 | else | ||
| 497 | { | ||
| 498 | fputs(ibuf, rfp); | ||
| 499 | if(!strncmp(pp,"INVERSE ",8) || !strncmp(pp,"DES ",4) | ||
| 500 | || !strncmp(pp,"TDES ",5) | ||
| 501 | || !strncmp(pp,"PERMUTATION ",12) | ||
| 502 | || !strncmp(pp,"SUBSTITUTION ",13) | ||
| 503 | || !strncmp(pp,"VARIABLE ",9)) | ||
| 504 | { | ||
| 505 | /* get test type */ | ||
| 506 | if(!strncmp(pp,"DES ",4)) | ||
| 507 | pp+=4; | ||
| 508 | else if(!strncmp(pp,"TDES ",5)) | ||
| 509 | pp+=5; | ||
| 510 | xp = strchr(pp, ' '); | ||
| 511 | n = xp-pp; | ||
| 512 | strncpy(atest, pp, n); | ||
| 513 | atest[n] = '\0'; | ||
| 514 | /* get mode */ | ||
| 515 | xp = strrchr(pp, ' '); /* get mode" */ | ||
| 516 | n = strlen(xp+1)-1; | ||
| 517 | strncpy(amode, xp+1, n); | ||
| 518 | amode[n] = '\0'; | ||
| 519 | /* amode[3] = '\0'; */ | ||
| 520 | printf("Test=%s, Mode=%s\n",atest,amode); | ||
| 521 | } | ||
| 522 | } | ||
| 523 | } | ||
| 524 | break; | ||
| 525 | |||
| 526 | case 1: /* [ENCRYPT] | [DECRYPT] */ | ||
| 527 | if(ibuf[0] == '\n') | ||
| 528 | break; | ||
| 529 | if (ibuf[0] == '[') | ||
| 530 | { | ||
| 531 | fputs(ibuf, rfp); | ||
| 532 | ++step; | ||
| 533 | if (strncasecmp(ibuf, "[ENCRYPT]", 9) == 0) | ||
| 534 | dir = 1; | ||
| 535 | else if (strncasecmp(ibuf, "[DECRYPT]", 9) == 0) | ||
| 536 | dir = 0; | ||
| 537 | else | ||
| 538 | { | ||
| 539 | printf("Invalid keyword: %s\n", ibuf); | ||
| 540 | err = 1; | ||
| 541 | } | ||
| 542 | break; | ||
| 543 | } | ||
| 544 | else if (dir == -1) | ||
| 545 | { | ||
| 546 | err = 1; | ||
| 547 | printf("Missing ENCRYPT/DECRYPT keyword\n"); | ||
| 548 | break; | ||
| 549 | } | ||
| 550 | else | ||
| 551 | step = 2; | ||
| 552 | |||
| 553 | case 2: /* KEY = xxxx */ | ||
| 554 | if(*ibuf == '\n') | ||
| 555 | { | ||
| 556 | fputs(ibuf, rfp); | ||
| 557 | break; | ||
| 558 | } | ||
| 559 | if(!strncasecmp(ibuf,"COUNT = ",8)) | ||
| 560 | { | ||
| 561 | fputs(ibuf, rfp); | ||
| 562 | break; | ||
| 563 | } | ||
| 564 | if(!strncasecmp(ibuf,"COUNT=",6)) | ||
| 565 | { | ||
| 566 | fputs(ibuf, rfp); | ||
| 567 | break; | ||
| 568 | } | ||
| 569 | if(!strncasecmp(ibuf,"NumKeys = ",10)) | ||
| 570 | { | ||
| 571 | numkeys=atoi(ibuf+10); | ||
| 572 | break; | ||
| 573 | } | ||
| 574 | |||
| 575 | fputs(ibuf, rfp); | ||
| 576 | if(!strncasecmp(ibuf,"KEY = ",6)) | ||
| 577 | { | ||
| 578 | akeysz=64; | ||
| 579 | len = hex2bin((char*)ibuf+6, strlen(ibuf+6)-1, aKey); | ||
| 580 | if (len < 0) | ||
| 581 | { | ||
| 582 | printf("Invalid KEY\n"); | ||
| 583 | err=1; | ||
| 584 | break; | ||
| 585 | } | ||
| 586 | PrintValue("KEY", aKey, len); | ||
| 587 | ++step; | ||
| 588 | } | ||
| 589 | else if(!strncasecmp(ibuf,"KEYs = ",7)) | ||
| 590 | { | ||
| 591 | akeysz=64*3; | ||
| 592 | len=hex2bin(ibuf+7,strlen(ibuf+7)-1,aKey); | ||
| 593 | if(len != 8) | ||
| 594 | { | ||
| 595 | printf("Invalid KEY\n"); | ||
| 596 | err=1; | ||
| 597 | break; | ||
| 598 | } | ||
| 599 | memcpy(aKey+8,aKey,8); | ||
| 600 | memcpy(aKey+16,aKey,8); | ||
| 601 | ibuf[4]='\0'; | ||
| 602 | PrintValue("KEYs",aKey,len); | ||
| 603 | ++step; | ||
| 604 | } | ||
| 605 | else if(!strncasecmp(ibuf,"KEY",3)) | ||
| 606 | { | ||
| 607 | int n=ibuf[3]-'1'; | ||
| 608 | |||
| 609 | akeysz=64*3; | ||
| 610 | len=hex2bin(ibuf+7,strlen(ibuf+7)-1,aKey+n*8); | ||
| 611 | if(len != 8) | ||
| 612 | { | ||
| 613 | printf("Invalid KEY\n"); | ||
| 614 | err=1; | ||
| 615 | break; | ||
| 616 | } | ||
| 617 | ibuf[4]='\0'; | ||
| 618 | PrintValue(ibuf,aKey,len); | ||
| 619 | if(n == 2) | ||
| 620 | ++step; | ||
| 621 | } | ||
| 622 | else | ||
| 623 | { | ||
| 624 | printf("Missing KEY\n"); | ||
| 625 | err = 1; | ||
| 626 | } | ||
| 627 | break; | ||
| 628 | |||
| 629 | case 3: /* IV = xxxx */ | ||
| 630 | fputs(ibuf, rfp); | ||
| 631 | if (strncasecmp(ibuf, "IV = ", 5) != 0) | ||
| 632 | { | ||
| 633 | printf("Missing IV\n"); | ||
| 634 | err = 1; | ||
| 635 | } | ||
| 636 | else | ||
| 637 | { | ||
| 638 | len = hex2bin((char*)ibuf+5, strlen(ibuf+5)-1, iVec); | ||
| 639 | if (len < 0) | ||
| 640 | { | ||
| 641 | printf("Invalid IV\n"); | ||
| 642 | err =1; | ||
| 643 | break; | ||
| 644 | } | ||
| 645 | PrintValue("IV", iVec, len); | ||
| 646 | step = (dir)? 4: 5; | ||
| 647 | } | ||
| 648 | break; | ||
| 649 | |||
| 650 | case 4: /* PLAINTEXT = xxxx */ | ||
| 651 | fputs(ibuf, rfp); | ||
| 652 | if (strncasecmp(ibuf, "PLAINTEXT = ", 12) != 0) | ||
| 653 | { | ||
| 654 | printf("Missing PLAINTEXT\n"); | ||
| 655 | err = 1; | ||
| 656 | } | ||
| 657 | else | ||
| 658 | { | ||
| 659 | int nn = strlen(ibuf+12); | ||
| 660 | if(!strcmp(amode,"CFB1")) | ||
| 661 | len=bint2bin(ibuf+12,nn-1,plaintext); | ||
| 662 | else | ||
| 663 | len=hex2bin(ibuf+12, nn-1,plaintext); | ||
| 664 | if (len < 0) | ||
| 665 | { | ||
| 666 | printf("Invalid PLAINTEXT: %s", ibuf+12); | ||
| 667 | err =1; | ||
| 668 | break; | ||
| 669 | } | ||
| 670 | if (len >= sizeof(plaintext)) | ||
| 671 | { | ||
| 672 | printf("Buffer overflow\n"); | ||
| 673 | } | ||
| 674 | PrintValue("PLAINTEXT", (unsigned char*)plaintext, len); | ||
| 675 | if (strcmp(atest, "Monte") == 0) /* Monte Carlo Test */ | ||
| 676 | { | ||
| 677 | do_mct(amode,akeysz,numkeys,aKey,iVec,dir,plaintext,len,rfp); | ||
| 678 | } | ||
| 679 | else | ||
| 680 | { | ||
| 681 | assert(dir == 1); | ||
| 682 | ret = DESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 683 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 684 | ciphertext, plaintext, len); | ||
| 685 | OutputValue("CIPHERTEXT",ciphertext,len,rfp, | ||
| 686 | !strcmp(amode,"CFB1")); | ||
| 687 | } | ||
| 688 | step = 6; | ||
| 689 | } | ||
| 690 | break; | ||
| 691 | |||
| 692 | case 5: /* CIPHERTEXT = xxxx */ | ||
| 693 | fputs(ibuf, rfp); | ||
| 694 | if (strncasecmp(ibuf, "CIPHERTEXT = ", 13) != 0) | ||
| 695 | { | ||
| 696 | printf("Missing KEY\n"); | ||
| 697 | err = 1; | ||
| 698 | } | ||
| 699 | else | ||
| 700 | { | ||
| 701 | if(!strcmp(amode,"CFB1")) | ||
| 702 | len=bint2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 703 | else | ||
| 704 | len = hex2bin(ibuf+13,strlen(ibuf+13)-1,ciphertext); | ||
| 705 | if (len < 0) | ||
| 706 | { | ||
| 707 | printf("Invalid CIPHERTEXT\n"); | ||
| 708 | err =1; | ||
| 709 | break; | ||
| 710 | } | ||
| 711 | |||
| 712 | PrintValue("CIPHERTEXT", ciphertext, len); | ||
| 713 | if (strcmp(atest, "Monte") == 0) /* Monte Carlo Test */ | ||
| 714 | { | ||
| 715 | do_mct(amode, akeysz, numkeys, aKey, iVec, | ||
| 716 | dir, ciphertext, len, rfp); | ||
| 717 | } | ||
| 718 | else | ||
| 719 | { | ||
| 720 | assert(dir == 0); | ||
| 721 | ret = DESTest(&ctx, amode, akeysz, aKey, iVec, | ||
| 722 | dir, /* 0 = decrypt, 1 = encrypt */ | ||
| 723 | plaintext, ciphertext, len); | ||
| 724 | OutputValue("PLAINTEXT",(unsigned char *)plaintext,len,rfp, | ||
| 725 | !strcmp(amode,"CFB1")); | ||
| 726 | } | ||
| 727 | step = 6; | ||
| 728 | } | ||
| 729 | break; | ||
| 730 | |||
| 731 | case 6: | ||
| 732 | if (ibuf[0] != '\n') | ||
| 733 | { | ||
| 734 | err = 1; | ||
| 735 | printf("Missing terminator\n"); | ||
| 736 | } | ||
| 737 | else if (strcmp(atest, "MCT") != 0) | ||
| 738 | { /* MCT already added terminating nl */ | ||
| 739 | fputs(ibuf, rfp); | ||
| 740 | } | ||
| 741 | step = 1; | ||
| 742 | break; | ||
| 743 | } | ||
| 744 | } | ||
| 745 | if (rfp) | ||
| 746 | fclose(rfp); | ||
| 747 | if (afp) | ||
| 748 | fclose(afp); | ||
| 749 | return err; | ||
| 750 | } | ||
| 751 | |||
| 752 | /*-------------------------------------------------- | ||
| 753 | Processes either a single file or | ||
| 754 | a set of files whose names are passed in a file. | ||
| 755 | A single file is specified as: | ||
| 756 | aes_test -f xxx.req | ||
| 757 | A set of files is specified as: | ||
| 758 | aes_test -d xxxxx.xxx | ||
| 759 | The default is: -d req.txt | ||
| 760 | --------------------------------------------------*/ | ||
| 761 | int main(int argc, char **argv) | ||
| 762 | { | ||
| 763 | char *rqlist = "req.txt"; | ||
| 764 | FILE *fp = NULL; | ||
| 765 | char fn[250] = "", rfn[256] = ""; | ||
| 766 | int f_opt = 0, d_opt = 1; | ||
| 767 | |||
| 768 | #ifdef OPENSSL_FIPS | ||
| 769 | if(!FIPS_mode_set(1,argv[0])) | ||
| 770 | { | ||
| 771 | ERR_load_crypto_strings(); | ||
| 772 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 773 | EXIT(1); | ||
| 774 | } | ||
| 775 | #endif | ||
| 776 | ERR_load_crypto_strings(); | ||
| 777 | if (argc > 1) | ||
| 778 | { | ||
| 779 | if (strcasecmp(argv[1], "-d") == 0) | ||
| 780 | { | ||
| 781 | d_opt = 1; | ||
| 782 | } | ||
| 783 | else if (strcasecmp(argv[1], "-f") == 0) | ||
| 784 | { | ||
| 785 | f_opt = 1; | ||
| 786 | d_opt = 0; | ||
| 787 | } | ||
| 788 | else | ||
| 789 | { | ||
| 790 | printf("Invalid parameter: %s\n", argv[1]); | ||
| 791 | return 0; | ||
| 792 | } | ||
| 793 | if (argc < 3) | ||
| 794 | { | ||
| 795 | printf("Missing parameter\n"); | ||
| 796 | return 0; | ||
| 797 | } | ||
| 798 | if (d_opt) | ||
| 799 | rqlist = argv[2]; | ||
| 800 | else | ||
| 801 | strcpy(fn, argv[2]); | ||
| 802 | } | ||
| 803 | if (d_opt) | ||
| 804 | { /* list of files (directory) */ | ||
| 805 | if (!(fp = fopen(rqlist, "r"))) | ||
| 806 | { | ||
| 807 | printf("Cannot open req list file\n"); | ||
| 808 | return -1; | ||
| 809 | } | ||
| 810 | while (fgets(fn, sizeof(fn), fp)) | ||
| 811 | { | ||
| 812 | strtok(fn, "\r\n"); | ||
| 813 | strcpy(rfn, fn); | ||
| 814 | printf("Processing: %s\n", rfn); | ||
| 815 | if (proc_file(rfn)) | ||
| 816 | { | ||
| 817 | printf(">>> Processing failed for: %s <<<\n", rfn); | ||
| 818 | EXIT(1); | ||
| 819 | } | ||
| 820 | } | ||
| 821 | fclose(fp); | ||
| 822 | } | ||
| 823 | else /* single file */ | ||
| 824 | { | ||
| 825 | printf("Processing: %s\n", fn); | ||
| 826 | if (proc_file(fn)) | ||
| 827 | { | ||
| 828 | printf(">>> Processing failed for: %s <<<\n", fn); | ||
| 829 | } | ||
| 830 | } | ||
| 831 | EXIT(0); | ||
| 832 | return 0; | ||
| 833 | } | ||
diff --git a/src/lib/libssl/src/fips/dh/Makefile b/src/lib/libssl/src/fips/dh/Makefile deleted file mode 100644 index 10b40aa9f6..0000000000 --- a/src/lib/libssl/src/fips/dh/Makefile +++ /dev/null | |||
| @@ -1,109 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/dh/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= dh | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST= | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_dh_check.c fips_dh_gen.c fips_dh_key.c | ||
| 26 | LIBOBJ=fips_dh_check.o fips_dh_gen.o fips_dh_key.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: check lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | $(AR) $(LIB) $(LIBOBJ) | ||
| 42 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 43 | @sleep 2; touch lib | ||
| 44 | |||
| 45 | check: | ||
| 46 | TOP=`pwd`/$(TOP) ../fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 47 | |||
| 48 | files: | ||
| 49 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 50 | |||
| 51 | links: | ||
| 52 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 53 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 54 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 55 | |||
| 56 | install: | ||
| 57 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 58 | do \ | ||
| 59 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 60 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 61 | done | ||
| 62 | |||
| 63 | tags: | ||
| 64 | ctags $(SRC) | ||
| 65 | |||
| 66 | tests: | ||
| 67 | |||
| 68 | lint: | ||
| 69 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 70 | |||
| 71 | depend: | ||
| 72 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 73 | |||
| 74 | dclean: | ||
| 75 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 76 | mv -f Makefile.new $(MAKEFILE) | ||
| 77 | |||
| 78 | clean: | ||
| 79 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 80 | |||
| 81 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 82 | |||
| 83 | fips_dh_check.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 84 | fips_dh_check.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 85 | fips_dh_check.o: ../../include/openssl/e_os2.h | ||
| 86 | fips_dh_check.o: ../../include/openssl/opensslconf.h | ||
| 87 | fips_dh_check.o: ../../include/openssl/opensslv.h | ||
| 88 | fips_dh_check.o: ../../include/openssl/ossl_typ.h | ||
| 89 | fips_dh_check.o: ../../include/openssl/safestack.h | ||
| 90 | fips_dh_check.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 91 | fips_dh_check.o: fips_dh_check.c | ||
| 92 | fips_dh_gen.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 93 | fips_dh_gen.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 94 | fips_dh_gen.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 95 | fips_dh_gen.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 96 | fips_dh_gen.o: ../../include/openssl/opensslconf.h | ||
| 97 | fips_dh_gen.o: ../../include/openssl/opensslv.h | ||
| 98 | fips_dh_gen.o: ../../include/openssl/ossl_typ.h | ||
| 99 | fips_dh_gen.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 100 | fips_dh_gen.o: ../../include/openssl/symhacks.h fips_dh_gen.c | ||
| 101 | fips_dh_key.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 102 | fips_dh_key.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 103 | fips_dh_key.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 104 | fips_dh_key.o: ../../include/openssl/lhash.h | ||
| 105 | fips_dh_key.o: ../../include/openssl/opensslconf.h | ||
| 106 | fips_dh_key.o: ../../include/openssl/opensslv.h | ||
| 107 | fips_dh_key.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 108 | fips_dh_key.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 109 | fips_dh_key.o: ../../include/openssl/symhacks.h fips_dh_key.c | ||
diff --git a/src/lib/libssl/src/fips/dh/fips_dh_check.c b/src/lib/libssl/src/fips/dh/fips_dh_check.c deleted file mode 100644 index 874920b466..0000000000 --- a/src/lib/libssl/src/fips/dh/fips_dh_check.c +++ /dev/null | |||
| @@ -1,125 +0,0 @@ | |||
| 1 | /* crypto/dh/dh_check.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <openssl/bn.h> | ||
| 61 | #ifndef OPENSSL_NO_DH | ||
| 62 | #include <openssl/dh.h> | ||
| 63 | |||
| 64 | #ifdef OPENSSL_FIPS | ||
| 65 | |||
| 66 | /* Check that p is a safe prime and | ||
| 67 | * if g is 2, 3 or 5, check that is is a suitable generator | ||
| 68 | * where | ||
| 69 | * for 2, p mod 24 == 11 | ||
| 70 | * for 3, p mod 12 == 5 | ||
| 71 | * for 5, p mod 10 == 3 or 7 | ||
| 72 | * should hold. | ||
| 73 | */ | ||
| 74 | |||
| 75 | int DH_check(const DH *dh, int *ret) | ||
| 76 | { | ||
| 77 | int ok=0; | ||
| 78 | BN_CTX *ctx=NULL; | ||
| 79 | BN_ULONG l; | ||
| 80 | BIGNUM *q=NULL; | ||
| 81 | |||
| 82 | *ret=0; | ||
| 83 | ctx=BN_CTX_new(); | ||
| 84 | if (ctx == NULL) goto err; | ||
| 85 | q=BN_new(); | ||
| 86 | if (q == NULL) goto err; | ||
| 87 | |||
| 88 | if (BN_is_word(dh->g,DH_GENERATOR_2)) | ||
| 89 | { | ||
| 90 | l=BN_mod_word(dh->p,24); | ||
| 91 | if (l != 11) *ret|=DH_NOT_SUITABLE_GENERATOR; | ||
| 92 | } | ||
| 93 | #if 0 | ||
| 94 | else if (BN_is_word(dh->g,DH_GENERATOR_3)) | ||
| 95 | { | ||
| 96 | l=BN_mod_word(dh->p,12); | ||
| 97 | if (l != 5) *ret|=DH_NOT_SUITABLE_GENERATOR; | ||
| 98 | } | ||
| 99 | #endif | ||
| 100 | else if (BN_is_word(dh->g,DH_GENERATOR_5)) | ||
| 101 | { | ||
| 102 | l=BN_mod_word(dh->p,10); | ||
| 103 | if ((l != 3) && (l != 7)) | ||
| 104 | *ret|=DH_NOT_SUITABLE_GENERATOR; | ||
| 105 | } | ||
| 106 | else | ||
| 107 | *ret|=DH_UNABLE_TO_CHECK_GENERATOR; | ||
| 108 | |||
| 109 | if (!BN_is_prime(dh->p,BN_prime_checks,NULL,ctx,NULL)) | ||
| 110 | *ret|=DH_CHECK_P_NOT_PRIME; | ||
| 111 | else | ||
| 112 | { | ||
| 113 | if (!BN_rshift1(q,dh->p)) goto err; | ||
| 114 | if (!BN_is_prime(q,BN_prime_checks,NULL,ctx,NULL)) | ||
| 115 | *ret|=DH_CHECK_P_NOT_SAFE_PRIME; | ||
| 116 | } | ||
| 117 | ok=1; | ||
| 118 | err: | ||
| 119 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 120 | if (q != NULL) BN_free(q); | ||
| 121 | return(ok); | ||
| 122 | } | ||
| 123 | |||
| 124 | #endif | ||
| 125 | #endif | ||
diff --git a/src/lib/libssl/src/fips/dh/fips_dh_gen.c b/src/lib/libssl/src/fips/dh/fips_dh_gen.c deleted file mode 100644 index b569e3912d..0000000000 --- a/src/lib/libssl/src/fips/dh/fips_dh_gen.c +++ /dev/null | |||
| @@ -1,186 +0,0 @@ | |||
| 1 | /* crypto/dh/dh_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <openssl/err.h> | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | #ifndef OPENSSL_NO_DH | ||
| 64 | #include <openssl/dh.h> | ||
| 65 | #endif | ||
| 66 | #include <openssl/fips.h> | ||
| 67 | |||
| 68 | #ifndef OPENSSL_NO_DH | ||
| 69 | #ifdef OPENSSL_FIPS | ||
| 70 | |||
| 71 | /* We generate DH parameters as follows | ||
| 72 | * find a prime q which is prime_len/2 bits long. | ||
| 73 | * p=(2*q)+1 or (p-1)/2 = q | ||
| 74 | * For this case, g is a generator if | ||
| 75 | * g^((p-1)/q) mod p != 1 for values of q which are the factors of p-1. | ||
| 76 | * Since the factors of p-1 are q and 2, we just need to check | ||
| 77 | * g^2 mod p != 1 and g^q mod p != 1. | ||
| 78 | * | ||
| 79 | * Having said all that, | ||
| 80 | * there is another special case method for the generators 2, 3 and 5. | ||
| 81 | * for 2, p mod 24 == 11 | ||
| 82 | * for 3, p mod 12 == 5 <<<<< does not work for safe primes. | ||
| 83 | * for 5, p mod 10 == 3 or 7 | ||
| 84 | * | ||
| 85 | * Thanks to Phil Karn <karn@qualcomm.com> for the pointers about the | ||
| 86 | * special generators and for answering some of my questions. | ||
| 87 | * | ||
| 88 | * I've implemented the second simple method :-). | ||
| 89 | * Since DH should be using a safe prime (both p and q are prime), | ||
| 90 | * this generator function can take a very very long time to run. | ||
| 91 | */ | ||
| 92 | /* Actually there is no reason to insist that 'generator' be a generator. | ||
| 93 | * It's just as OK (and in some sense better) to use a generator of the | ||
| 94 | * order-q subgroup. | ||
| 95 | */ | ||
| 96 | |||
| 97 | DH *DH_generate_parameters(int prime_len, int generator, | ||
| 98 | void (*callback)(int,int,void *), void *cb_arg) | ||
| 99 | { | ||
| 100 | BIGNUM *p=NULL,*t1,*t2; | ||
| 101 | DH *ret=NULL; | ||
| 102 | int g,ok= -1; | ||
| 103 | BN_CTX *ctx=NULL; | ||
| 104 | |||
| 105 | if(FIPS_selftest_failed()) | ||
| 106 | { | ||
| 107 | FIPSerr(FIPS_F_DH_GENERATE_PARAMETERS,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 108 | return NULL; | ||
| 109 | } | ||
| 110 | |||
| 111 | ret=DH_new(); | ||
| 112 | if (ret == NULL) goto err; | ||
| 113 | ctx=BN_CTX_new(); | ||
| 114 | if (ctx == NULL) goto err; | ||
| 115 | BN_CTX_start(ctx); | ||
| 116 | t1 = BN_CTX_get(ctx); | ||
| 117 | t2 = BN_CTX_get(ctx); | ||
| 118 | if (t1 == NULL || t2 == NULL) goto err; | ||
| 119 | |||
| 120 | if (generator <= 1) | ||
| 121 | { | ||
| 122 | DHerr(DH_F_DH_GENERATE_PARAMETERS, DH_R_BAD_GENERATOR); | ||
| 123 | goto err; | ||
| 124 | } | ||
| 125 | if (generator == DH_GENERATOR_2) | ||
| 126 | { | ||
| 127 | if (!BN_set_word(t1,24)) goto err; | ||
| 128 | if (!BN_set_word(t2,11)) goto err; | ||
| 129 | g=2; | ||
| 130 | } | ||
| 131 | #if 0 /* does not work for safe primes */ | ||
| 132 | else if (generator == DH_GENERATOR_3) | ||
| 133 | { | ||
| 134 | if (!BN_set_word(t1,12)) goto err; | ||
| 135 | if (!BN_set_word(t2,5)) goto err; | ||
| 136 | g=3; | ||
| 137 | } | ||
| 138 | #endif | ||
| 139 | else if (generator == DH_GENERATOR_5) | ||
| 140 | { | ||
| 141 | if (!BN_set_word(t1,10)) goto err; | ||
| 142 | if (!BN_set_word(t2,3)) goto err; | ||
| 143 | /* BN_set_word(t3,7); just have to miss | ||
| 144 | * out on these ones :-( */ | ||
| 145 | g=5; | ||
| 146 | } | ||
| 147 | else | ||
| 148 | { | ||
| 149 | /* in the general case, don't worry if 'generator' is a | ||
| 150 | * generator or not: since we are using safe primes, | ||
| 151 | * it will generate either an order-q or an order-2q group, | ||
| 152 | * which both is OK */ | ||
| 153 | if (!BN_set_word(t1,2)) goto err; | ||
| 154 | if (!BN_set_word(t2,1)) goto err; | ||
| 155 | g=generator; | ||
| 156 | } | ||
| 157 | |||
| 158 | p=BN_generate_prime(NULL,prime_len,1,t1,t2,callback,cb_arg); | ||
| 159 | if (p == NULL) goto err; | ||
| 160 | if (callback != NULL) callback(3,0,cb_arg); | ||
| 161 | ret->p=p; | ||
| 162 | ret->g=BN_new(); | ||
| 163 | if (!BN_set_word(ret->g,g)) goto err; | ||
| 164 | ok=1; | ||
| 165 | err: | ||
| 166 | if (ok == -1) | ||
| 167 | { | ||
| 168 | DHerr(DH_F_DH_GENERATE_PARAMETERS,ERR_R_BN_LIB); | ||
| 169 | ok=0; | ||
| 170 | } | ||
| 171 | |||
| 172 | if (ctx != NULL) | ||
| 173 | { | ||
| 174 | BN_CTX_end(ctx); | ||
| 175 | BN_CTX_free(ctx); | ||
| 176 | } | ||
| 177 | if (!ok && (ret != NULL)) | ||
| 178 | { | ||
| 179 | DH_free(ret); | ||
| 180 | ret=NULL; | ||
| 181 | } | ||
| 182 | return(ret); | ||
| 183 | } | ||
| 184 | |||
| 185 | #endif | ||
| 186 | #endif | ||
diff --git a/src/lib/libssl/src/fips/dh/fips_dh_key.c b/src/lib/libssl/src/fips/dh/fips_dh_key.c deleted file mode 100644 index 41e3a661c0..0000000000 --- a/src/lib/libssl/src/fips/dh/fips_dh_key.c +++ /dev/null | |||
| @@ -1,230 +0,0 @@ | |||
| 1 | /* crypto/dh/dh_key.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <openssl/err.h> | ||
| 61 | #include <openssl/bn.h> | ||
| 62 | #ifndef OPENSSL_NO_RAND | ||
| 63 | #include <openssl/rand.h> | ||
| 64 | #endif | ||
| 65 | #ifndef OPENSSL_NO_DH | ||
| 66 | #include <openssl/dh.h> | ||
| 67 | |||
| 68 | #ifdef OPENSSL_FIPS | ||
| 69 | |||
| 70 | static int generate_key(DH *dh); | ||
| 71 | static int compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh); | ||
| 72 | static int dh_bn_mod_exp(const DH *dh, BIGNUM *r, | ||
| 73 | const BIGNUM *a, const BIGNUM *p, | ||
| 74 | const BIGNUM *m, BN_CTX *ctx, | ||
| 75 | BN_MONT_CTX *m_ctx); | ||
| 76 | static int dh_init(DH *dh); | ||
| 77 | static int dh_finish(DH *dh); | ||
| 78 | |||
| 79 | int DH_generate_key(DH *dh) | ||
| 80 | { | ||
| 81 | return dh->meth->generate_key(dh); | ||
| 82 | } | ||
| 83 | |||
| 84 | int DH_compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh) | ||
| 85 | { | ||
| 86 | return dh->meth->compute_key(key, pub_key, dh); | ||
| 87 | } | ||
| 88 | |||
| 89 | static DH_METHOD dh_ossl = { | ||
| 90 | "OpenSSL DH Method", | ||
| 91 | generate_key, | ||
| 92 | compute_key, | ||
| 93 | dh_bn_mod_exp, | ||
| 94 | dh_init, | ||
| 95 | dh_finish, | ||
| 96 | 0, | ||
| 97 | NULL | ||
| 98 | }; | ||
| 99 | |||
| 100 | const DH_METHOD *DH_OpenSSL(void) | ||
| 101 | { | ||
| 102 | return &dh_ossl; | ||
| 103 | } | ||
| 104 | |||
| 105 | static int generate_key(DH *dh) | ||
| 106 | { | ||
| 107 | int ok=0; | ||
| 108 | int generate_new_key=0; | ||
| 109 | unsigned l; | ||
| 110 | BN_CTX *ctx; | ||
| 111 | BN_MONT_CTX *mont; | ||
| 112 | BIGNUM *pub_key=NULL,*priv_key=NULL; | ||
| 113 | |||
| 114 | ctx = BN_CTX_new(); | ||
| 115 | if (ctx == NULL) goto err; | ||
| 116 | |||
| 117 | if (dh->priv_key == NULL) | ||
| 118 | { | ||
| 119 | priv_key=BN_new(); | ||
| 120 | if (priv_key == NULL) goto err; | ||
| 121 | generate_new_key=1; | ||
| 122 | } | ||
| 123 | else | ||
| 124 | priv_key=dh->priv_key; | ||
| 125 | |||
| 126 | if (dh->pub_key == NULL) | ||
| 127 | { | ||
| 128 | pub_key=BN_new(); | ||
| 129 | if (pub_key == NULL) goto err; | ||
| 130 | } | ||
| 131 | else | ||
| 132 | pub_key=dh->pub_key; | ||
| 133 | |||
| 134 | if ((dh->method_mont_p == NULL) && (dh->flags & DH_FLAG_CACHE_MONT_P)) | ||
| 135 | { | ||
| 136 | if ((dh->method_mont_p=(char *)BN_MONT_CTX_new()) != NULL) | ||
| 137 | if (!BN_MONT_CTX_set((BN_MONT_CTX *)dh->method_mont_p, | ||
| 138 | dh->p,ctx)) goto err; | ||
| 139 | } | ||
| 140 | mont=(BN_MONT_CTX *)dh->method_mont_p; | ||
| 141 | |||
| 142 | if (generate_new_key) | ||
| 143 | { | ||
| 144 | l = dh->length ? dh->length : BN_num_bits(dh->p)-1; /* secret exponent length */ | ||
| 145 | if (!BN_rand(priv_key, l, 0, 0)) goto err; | ||
| 146 | } | ||
| 147 | if (!dh->meth->bn_mod_exp(dh, pub_key, dh->g, priv_key,dh->p,ctx,mont)) | ||
| 148 | goto err; | ||
| 149 | |||
| 150 | dh->pub_key=pub_key; | ||
| 151 | dh->priv_key=priv_key; | ||
| 152 | ok=1; | ||
| 153 | err: | ||
| 154 | if (ok != 1) | ||
| 155 | DHerr(DH_F_DH_GENERATE_KEY,ERR_R_BN_LIB); | ||
| 156 | |||
| 157 | if ((pub_key != NULL) && (dh->pub_key == NULL)) BN_free(pub_key); | ||
| 158 | if ((priv_key != NULL) && (dh->priv_key == NULL)) BN_free(priv_key); | ||
| 159 | BN_CTX_free(ctx); | ||
| 160 | return(ok); | ||
| 161 | } | ||
| 162 | |||
| 163 | static int compute_key(unsigned char *key, const BIGNUM *pub_key, DH *dh) | ||
| 164 | { | ||
| 165 | BN_CTX *ctx; | ||
| 166 | BN_MONT_CTX *mont; | ||
| 167 | BIGNUM *tmp; | ||
| 168 | int ret= -1; | ||
| 169 | |||
| 170 | ctx = BN_CTX_new(); | ||
| 171 | if (ctx == NULL) goto err; | ||
| 172 | BN_CTX_start(ctx); | ||
| 173 | tmp = BN_CTX_get(ctx); | ||
| 174 | |||
| 175 | if (dh->priv_key == NULL) | ||
| 176 | { | ||
| 177 | DHerr(DH_F_DH_COMPUTE_KEY,DH_R_NO_PRIVATE_VALUE); | ||
| 178 | goto err; | ||
| 179 | } | ||
| 180 | if ((dh->method_mont_p == NULL) && (dh->flags & DH_FLAG_CACHE_MONT_P)) | ||
| 181 | { | ||
| 182 | if ((dh->method_mont_p=(char *)BN_MONT_CTX_new()) != NULL) | ||
| 183 | if (!BN_MONT_CTX_set((BN_MONT_CTX *)dh->method_mont_p, | ||
| 184 | dh->p,ctx)) goto err; | ||
| 185 | } | ||
| 186 | |||
| 187 | mont=(BN_MONT_CTX *)dh->method_mont_p; | ||
| 188 | if (!dh->meth->bn_mod_exp(dh, tmp, pub_key, dh->priv_key,dh->p,ctx,mont)) | ||
| 189 | { | ||
| 190 | DHerr(DH_F_DH_COMPUTE_KEY,ERR_R_BN_LIB); | ||
| 191 | goto err; | ||
| 192 | } | ||
| 193 | |||
| 194 | ret=BN_bn2bin(tmp,key); | ||
| 195 | err: | ||
| 196 | BN_CTX_end(ctx); | ||
| 197 | BN_CTX_free(ctx); | ||
| 198 | return(ret); | ||
| 199 | } | ||
| 200 | |||
| 201 | static int dh_bn_mod_exp(const DH *dh, BIGNUM *r, | ||
| 202 | const BIGNUM *a, const BIGNUM *p, | ||
| 203 | const BIGNUM *m, BN_CTX *ctx, | ||
| 204 | BN_MONT_CTX *m_ctx) | ||
| 205 | { | ||
| 206 | if (a->top == 1) | ||
| 207 | { | ||
| 208 | BN_ULONG A = a->d[0]; | ||
| 209 | return BN_mod_exp_mont_word(r,A,p,m,ctx,m_ctx); | ||
| 210 | } | ||
| 211 | else | ||
| 212 | return BN_mod_exp_mont(r,a,p,m,ctx,m_ctx); | ||
| 213 | } | ||
| 214 | |||
| 215 | |||
| 216 | static int dh_init(DH *dh) | ||
| 217 | { | ||
| 218 | dh->flags |= DH_FLAG_CACHE_MONT_P; | ||
| 219 | return(1); | ||
| 220 | } | ||
| 221 | |||
| 222 | static int dh_finish(DH *dh) | ||
| 223 | { | ||
| 224 | if(dh->method_mont_p) | ||
| 225 | BN_MONT_CTX_free((BN_MONT_CTX *)dh->method_mont_p); | ||
| 226 | return(1); | ||
| 227 | } | ||
| 228 | |||
| 229 | #endif | ||
| 230 | #endif | ||
diff --git a/src/lib/libssl/src/fips/dsa/Makefile b/src/lib/libssl/src/fips/dsa/Makefile deleted file mode 100644 index 0cc5704ed1..0000000000 --- a/src/lib/libssl/src/fips/dsa/Makefile +++ /dev/null | |||
| @@ -1,158 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/dsa/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= dsa | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST=fips_dsatest.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_dsa_ossl.c fips_dsa_gen.c fips_dsa_selftest.c | ||
| 26 | LIBOBJ=fips_dsa_ossl.o fips_dsa_gen.o fips_dsa_selftest.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: check lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | $(AR) $(LIB) $(LIBOBJ) | ||
| 42 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 43 | @sleep 2; touch lib | ||
| 44 | |||
| 45 | check: | ||
| 46 | TOP=`pwd`/$(TOP) ../fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 47 | |||
| 48 | files: | ||
| 49 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 50 | |||
| 51 | links: | ||
| 52 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 53 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 54 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 55 | |||
| 56 | install: | ||
| 57 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 58 | do \ | ||
| 59 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 60 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 61 | done | ||
| 62 | |||
| 63 | tags: | ||
| 64 | ctags $(SRC) | ||
| 65 | |||
| 66 | tests: | ||
| 67 | |||
| 68 | top_fips_dssvs: | ||
| 69 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) TARGET=fips_dssvs sub_target) | ||
| 70 | |||
| 71 | fips_dssvs: fips_dssvs.o $(TOP)/libcrypto.a | ||
| 72 | $(CC) $(CFLAGS) -o fips_dssvs fips_dssvs.o $(PEX_LIBS) $(TOP)/libcrypto.a $(EX_LIBS) | ||
| 73 | TOP=$(TOP) $(TOP)/fips/openssl_fips_fingerprint $(TOP)/libcrypto.a fips_dssvs | ||
| 74 | |||
| 75 | Q=../testvectors/dsa/req | ||
| 76 | A=../testvectors/dsa/rsp | ||
| 77 | |||
| 78 | fips_test: top_fips_dssvs | ||
| 79 | -rm -rf $A | ||
| 80 | mkdir $A | ||
| 81 | ./fips_dssvs pqg < $Q/PQGGen.req > $A/PQGGen.rsp | ||
| 82 | ./fips_dssvs keypair < $Q/KeyPair.req > $A/KeyPair.rsp | ||
| 83 | ./fips_dssvs siggen < $Q/SigGen.req > $A/SigGen.rsp | ||
| 84 | ./fips_dssvs sigver < $Q/SigVer.req > $A/SigVer.rsp | ||
| 85 | |||
| 86 | lint: | ||
| 87 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 88 | |||
| 89 | depend: | ||
| 90 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 91 | |||
| 92 | dclean: | ||
| 93 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 94 | mv -f Makefile.new $(MAKEFILE) | ||
| 95 | |||
| 96 | clean: | ||
| 97 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 98 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 99 | |||
| 100 | fips_dsa_gen.o: ../../include/openssl/aes.h ../../include/openssl/asn1.h | ||
| 101 | fips_dsa_gen.o: ../../include/openssl/bio.h ../../include/openssl/blowfish.h | ||
| 102 | fips_dsa_gen.o: ../../include/openssl/bn.h ../../include/openssl/cast.h | ||
| 103 | fips_dsa_gen.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 104 | fips_dsa_gen.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 105 | fips_dsa_gen.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 106 | fips_dsa_gen.o: ../../include/openssl/err.h ../../include/openssl/evp.h | ||
| 107 | fips_dsa_gen.o: ../../include/openssl/fips.h ../../include/openssl/idea.h | ||
| 108 | fips_dsa_gen.o: ../../include/openssl/lhash.h ../../include/openssl/md2.h | ||
| 109 | fips_dsa_gen.o: ../../include/openssl/md4.h ../../include/openssl/md5.h | ||
| 110 | fips_dsa_gen.o: ../../include/openssl/mdc2.h ../../include/openssl/obj_mac.h | ||
| 111 | fips_dsa_gen.o: ../../include/openssl/objects.h | ||
| 112 | fips_dsa_gen.o: ../../include/openssl/opensslconf.h | ||
| 113 | fips_dsa_gen.o: ../../include/openssl/opensslv.h | ||
| 114 | fips_dsa_gen.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 115 | fips_dsa_gen.o: ../../include/openssl/rc2.h ../../include/openssl/rc4.h | ||
| 116 | fips_dsa_gen.o: ../../include/openssl/rc5.h ../../include/openssl/ripemd.h | ||
| 117 | fips_dsa_gen.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 118 | fips_dsa_gen.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 119 | fips_dsa_gen.o: ../../include/openssl/symhacks.h ../../include/openssl/ui.h | ||
| 120 | fips_dsa_gen.o: ../../include/openssl/ui_compat.h fips_dsa_gen.c | ||
| 121 | fips_dsa_ossl.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 122 | fips_dsa_ossl.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 123 | fips_dsa_ossl.o: ../../include/openssl/dh.h ../../include/openssl/dsa.h | ||
| 124 | fips_dsa_ossl.o: ../../include/openssl/e_os2.h ../../include/openssl/engine.h | ||
| 125 | fips_dsa_ossl.o: ../../include/openssl/err.h ../../include/openssl/fips.h | ||
| 126 | fips_dsa_ossl.o: ../../include/openssl/lhash.h | ||
| 127 | fips_dsa_ossl.o: ../../include/openssl/opensslconf.h | ||
| 128 | fips_dsa_ossl.o: ../../include/openssl/opensslv.h | ||
| 129 | fips_dsa_ossl.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 130 | fips_dsa_ossl.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 131 | fips_dsa_ossl.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 132 | fips_dsa_ossl.o: ../../include/openssl/ui.h fips_dsa_ossl.c | ||
| 133 | fips_dsa_selftest.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 134 | fips_dsa_selftest.o: ../../include/openssl/crypto.h ../../include/openssl/dh.h | ||
| 135 | fips_dsa_selftest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 136 | fips_dsa_selftest.o: ../../include/openssl/err.h ../../include/openssl/fips.h | ||
| 137 | fips_dsa_selftest.o: ../../include/openssl/lhash.h | ||
| 138 | fips_dsa_selftest.o: ../../include/openssl/opensslconf.h | ||
| 139 | fips_dsa_selftest.o: ../../include/openssl/opensslv.h | ||
| 140 | fips_dsa_selftest.o: ../../include/openssl/ossl_typ.h | ||
| 141 | fips_dsa_selftest.o: ../../include/openssl/safestack.h | ||
| 142 | fips_dsa_selftest.o: ../../include/openssl/stack.h | ||
| 143 | fips_dsa_selftest.o: ../../include/openssl/symhacks.h fips_dsa_selftest.c | ||
| 144 | fips_dsatest.o: ../../e_os.h ../../include/openssl/asn1.h | ||
| 145 | fips_dsatest.o: ../../include/openssl/bio.h ../../include/openssl/bn.h | ||
| 146 | fips_dsatest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 147 | fips_dsatest.o: ../../include/openssl/des_old.h ../../include/openssl/dh.h | ||
| 148 | fips_dsatest.o: ../../include/openssl/dsa.h ../../include/openssl/e_os2.h | ||
| 149 | fips_dsatest.o: ../../include/openssl/engine.h ../../include/openssl/err.h | ||
| 150 | fips_dsatest.o: ../../include/openssl/fips.h ../../include/openssl/fips_rand.h | ||
| 151 | fips_dsatest.o: ../../include/openssl/lhash.h | ||
| 152 | fips_dsatest.o: ../../include/openssl/opensslconf.h | ||
| 153 | fips_dsatest.o: ../../include/openssl/opensslv.h | ||
| 154 | fips_dsatest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 155 | fips_dsatest.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 156 | fips_dsatest.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 157 | fips_dsatest.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 158 | fips_dsatest.o: fips_dsatest.c | ||
diff --git a/src/lib/libssl/src/fips/dsa/fips_dsa_gen.c b/src/lib/libssl/src/fips/dsa/fips_dsa_gen.c deleted file mode 100644 index 21fa3d1783..0000000000 --- a/src/lib/libssl/src/fips/dsa/fips_dsa_gen.c +++ /dev/null | |||
| @@ -1,374 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsa_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #undef GENUINE_DSA | ||
| 60 | |||
| 61 | #ifdef GENUINE_DSA | ||
| 62 | /* Parameter generation follows the original release of FIPS PUB 186, | ||
| 63 | * Appendix 2.2 (i.e. use SHA as defined in FIPS PUB 180) */ | ||
| 64 | #define HASH EVP_sha() | ||
| 65 | #else | ||
| 66 | /* Parameter generation follows the updated Appendix 2.2 for FIPS PUB 186, | ||
| 67 | * also Appendix 2.2 of FIPS PUB 186-1 (i.e. use SHA as defined in | ||
| 68 | * FIPS PUB 180-1) */ | ||
| 69 | #define HASH EVP_sha1() | ||
| 70 | #endif | ||
| 71 | |||
| 72 | #include <stdio.h> | ||
| 73 | #include <string.h> | ||
| 74 | #include <time.h> | ||
| 75 | /*#include "cryptlib.h"*/ | ||
| 76 | #include <openssl/evp.h> | ||
| 77 | #include <openssl/bn.h> | ||
| 78 | #ifndef OPENSSL_NO_DSA | ||
| 79 | #include <openssl/dsa.h> | ||
| 80 | #endif | ||
| 81 | #ifndef OPENSSL_NO_RAND | ||
| 82 | #include <openssl/rand.h> | ||
| 83 | #endif | ||
| 84 | #ifndef OPENSSL_NO_SHA | ||
| 85 | #include <openssl/sha.h> | ||
| 86 | #endif | ||
| 87 | #include <openssl/fips.h> | ||
| 88 | #include <openssl/err.h> | ||
| 89 | |||
| 90 | #ifndef OPENSSL_NO_DSA | ||
| 91 | #ifdef OPENSSL_FIPS | ||
| 92 | |||
| 93 | static int fips_check_dsa(DSA *dsa) | ||
| 94 | { | ||
| 95 | static const unsigned char str1[]="12345678901234567890"; | ||
| 96 | unsigned char sig[256]; | ||
| 97 | unsigned int siglen; | ||
| 98 | |||
| 99 | DSA_sign(0, str1, 20, sig, &siglen, dsa); | ||
| 100 | if(DSA_verify(0, str1, 20, sig, siglen, dsa) != 1) | ||
| 101 | { | ||
| 102 | FIPSerr(FIPS_F_FIPS_CHECK_DSA,FIPS_R_PAIRWISE_TEST_FAILED); | ||
| 103 | return 0; | ||
| 104 | } | ||
| 105 | return 1; | ||
| 106 | } | ||
| 107 | |||
| 108 | DSA *DSA_generate_parameters(FIPS_DSA_SIZE_T bits, | ||
| 109 | unsigned char *seed_in, FIPS_DSA_SIZE_T seed_len, | ||
| 110 | int *counter_ret, unsigned long *h_ret, | ||
| 111 | void (*callback)(int, int, void *), | ||
| 112 | void *cb_arg) | ||
| 113 | { | ||
| 114 | int ok=0; | ||
| 115 | unsigned char seed[SHA_DIGEST_LENGTH]; | ||
| 116 | unsigned char md[SHA_DIGEST_LENGTH]; | ||
| 117 | unsigned char buf[SHA_DIGEST_LENGTH],buf2[SHA_DIGEST_LENGTH]; | ||
| 118 | BIGNUM *r0,*W,*X,*c,*test; | ||
| 119 | BIGNUM *g=NULL,*q=NULL,*p=NULL; | ||
| 120 | BN_MONT_CTX *mont=NULL; | ||
| 121 | int k,n=0,i,b,m=0; | ||
| 122 | int counter=0; | ||
| 123 | int r=0; | ||
| 124 | BN_CTX *ctx=NULL,*ctx2=NULL,*ctx3=NULL; | ||
| 125 | unsigned int h=2; | ||
| 126 | DSA *ret=NULL; | ||
| 127 | unsigned char *seed_out=seed_in; | ||
| 128 | |||
| 129 | if(FIPS_selftest_failed()) | ||
| 130 | { | ||
| 131 | FIPSerr(FIPS_F_DSA_GENERATE_PARAMETERS, | ||
| 132 | FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 133 | goto err; | ||
| 134 | } | ||
| 135 | |||
| 136 | if (bits < 512) bits=512; | ||
| 137 | bits=(bits+63)/64*64; | ||
| 138 | |||
| 139 | if (seed_len < 20) | ||
| 140 | seed_in = NULL; /* seed buffer too small -- ignore */ | ||
| 141 | if (seed_len > 20) | ||
| 142 | seed_len = 20; /* App. 2.2 of FIPS PUB 186 allows larger SEED, | ||
| 143 | * but our internal buffers are restricted to 160 bits*/ | ||
| 144 | if ((seed_in != NULL) && (seed_len == 20)) | ||
| 145 | memcpy(seed,seed_in,seed_len); | ||
| 146 | |||
| 147 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 148 | if ((ctx2=BN_CTX_new()) == NULL) goto err; | ||
| 149 | if ((ctx3=BN_CTX_new()) == NULL) goto err; | ||
| 150 | if ((ret=DSA_new()) == NULL) goto err; | ||
| 151 | |||
| 152 | if ((mont=BN_MONT_CTX_new()) == NULL) goto err; | ||
| 153 | |||
| 154 | BN_CTX_start(ctx2); | ||
| 155 | r0 = BN_CTX_get(ctx2); | ||
| 156 | g = BN_CTX_get(ctx2); | ||
| 157 | W = BN_CTX_get(ctx2); | ||
| 158 | q = BN_CTX_get(ctx2); | ||
| 159 | X = BN_CTX_get(ctx2); | ||
| 160 | c = BN_CTX_get(ctx2); | ||
| 161 | p = BN_CTX_get(ctx2); | ||
| 162 | test = BN_CTX_get(ctx2); | ||
| 163 | |||
| 164 | BN_lshift(test,BN_value_one(),bits-1); | ||
| 165 | |||
| 166 | for (;;) | ||
| 167 | { | ||
| 168 | for (;;) /* find q */ | ||
| 169 | { | ||
| 170 | int seed_is_random; | ||
| 171 | |||
| 172 | /* step 1 */ | ||
| 173 | if (callback != NULL) callback(0,m++,cb_arg); | ||
| 174 | |||
| 175 | if (!seed_len) | ||
| 176 | { | ||
| 177 | if(RAND_pseudo_bytes(seed,SHA_DIGEST_LENGTH) < 0) | ||
| 178 | goto err; | ||
| 179 | seed_is_random = 1; | ||
| 180 | } | ||
| 181 | else | ||
| 182 | { | ||
| 183 | seed_is_random = 0; | ||
| 184 | seed_len=0; /* use random seed if 'seed_in' turns out to be bad*/ | ||
| 185 | } | ||
| 186 | memcpy(buf,seed,SHA_DIGEST_LENGTH); | ||
| 187 | memcpy(buf2,seed,SHA_DIGEST_LENGTH); | ||
| 188 | /* precompute "SEED + 1" for step 7: */ | ||
| 189 | for (i=SHA_DIGEST_LENGTH-1; i >= 0; i--) | ||
| 190 | { | ||
| 191 | buf[i]++; | ||
| 192 | if (buf[i] != 0) break; | ||
| 193 | } | ||
| 194 | |||
| 195 | /* step 2 */ | ||
| 196 | EVP_Digest(seed,SHA_DIGEST_LENGTH,md,NULL,HASH, NULL); | ||
| 197 | EVP_Digest(buf,SHA_DIGEST_LENGTH,buf2,NULL,HASH, NULL); | ||
| 198 | for (i=0; i<SHA_DIGEST_LENGTH; i++) | ||
| 199 | md[i]^=buf2[i]; | ||
| 200 | |||
| 201 | /* step 3 */ | ||
| 202 | md[0]|=0x80; | ||
| 203 | md[SHA_DIGEST_LENGTH-1]|=0x01; | ||
| 204 | if (!BN_bin2bn(md,SHA_DIGEST_LENGTH,q)) goto err; | ||
| 205 | |||
| 206 | /* step 4 */ | ||
| 207 | r = BN_is_prime_fasttest(q, DSS_prime_checks, callback, ctx3, cb_arg, seed_is_random); | ||
| 208 | if (r > 0) | ||
| 209 | break; | ||
| 210 | if (r != 0) | ||
| 211 | goto err; | ||
| 212 | |||
| 213 | /* do a callback call */ | ||
| 214 | /* step 5 */ | ||
| 215 | } | ||
| 216 | |||
| 217 | if (callback != NULL) callback(2,0,cb_arg); | ||
| 218 | if (callback != NULL) callback(3,0,cb_arg); | ||
| 219 | |||
| 220 | /* step 6 */ | ||
| 221 | counter=0; | ||
| 222 | /* "offset = 2" */ | ||
| 223 | |||
| 224 | n=(bits-1)/160; | ||
| 225 | b=(bits-1)-n*160; | ||
| 226 | |||
| 227 | for (;;) | ||
| 228 | { | ||
| 229 | if (callback != NULL && counter != 0) | ||
| 230 | callback(0,counter,cb_arg); | ||
| 231 | |||
| 232 | /* step 7 */ | ||
| 233 | BN_zero(W); | ||
| 234 | /* now 'buf' contains "SEED + offset - 1" */ | ||
| 235 | for (k=0; k<=n; k++) | ||
| 236 | { | ||
| 237 | /* obtain "SEED + offset + k" by incrementing: */ | ||
| 238 | for (i=SHA_DIGEST_LENGTH-1; i >= 0; i--) | ||
| 239 | { | ||
| 240 | buf[i]++; | ||
| 241 | if (buf[i] != 0) break; | ||
| 242 | } | ||
| 243 | |||
| 244 | EVP_Digest(buf,SHA_DIGEST_LENGTH,md,NULL,HASH, NULL); | ||
| 245 | |||
| 246 | /* step 8 */ | ||
| 247 | if (!BN_bin2bn(md,SHA_DIGEST_LENGTH,r0)) | ||
| 248 | goto err; | ||
| 249 | BN_lshift(r0,r0,160*k); | ||
| 250 | BN_add(W,W,r0); | ||
| 251 | } | ||
| 252 | |||
| 253 | /* more of step 8 */ | ||
| 254 | BN_mask_bits(W,bits-1); | ||
| 255 | BN_copy(X,W); /* this should be ok */ | ||
| 256 | BN_add(X,X,test); /* this should be ok */ | ||
| 257 | |||
| 258 | /* step 9 */ | ||
| 259 | BN_lshift1(r0,q); | ||
| 260 | BN_mod(c,X,r0,ctx); | ||
| 261 | BN_sub(r0,c,BN_value_one()); | ||
| 262 | BN_sub(p,X,r0); | ||
| 263 | |||
| 264 | /* step 10 */ | ||
| 265 | if (BN_cmp(p,test) >= 0) | ||
| 266 | { | ||
| 267 | /* step 11 */ | ||
| 268 | r = BN_is_prime_fasttest(p, DSS_prime_checks, callback, ctx3, cb_arg, 1); | ||
| 269 | if (r > 0) | ||
| 270 | goto end; /* found it */ | ||
| 271 | if (r != 0) | ||
| 272 | goto err; | ||
| 273 | } | ||
| 274 | |||
| 275 | /* step 13 */ | ||
| 276 | counter++; | ||
| 277 | /* "offset = offset + n + 1" */ | ||
| 278 | |||
| 279 | /* step 14 */ | ||
| 280 | if (counter >= 4096) break; | ||
| 281 | } | ||
| 282 | } | ||
| 283 | end: | ||
| 284 | if (callback != NULL) callback(2,1,cb_arg); | ||
| 285 | |||
| 286 | /* We now need to generate g */ | ||
| 287 | /* Set r0=(p-1)/q */ | ||
| 288 | BN_sub(test,p,BN_value_one()); | ||
| 289 | BN_div(r0,NULL,test,q,ctx); | ||
| 290 | |||
| 291 | BN_set_word(test,h); | ||
| 292 | BN_MONT_CTX_set(mont,p,ctx); | ||
| 293 | |||
| 294 | for (;;) | ||
| 295 | { | ||
| 296 | /* g=test^r0%p */ | ||
| 297 | BN_mod_exp_mont(g,test,r0,p,ctx,mont); | ||
| 298 | if (!BN_is_one(g)) break; | ||
| 299 | BN_add(test,test,BN_value_one()); | ||
| 300 | h++; | ||
| 301 | } | ||
| 302 | |||
| 303 | if (callback != NULL) callback(3,1,cb_arg); | ||
| 304 | |||
| 305 | ok=1; | ||
| 306 | err: | ||
| 307 | if (!ok) | ||
| 308 | { | ||
| 309 | if (ret != NULL) DSA_free(ret); | ||
| 310 | } | ||
| 311 | else | ||
| 312 | { | ||
| 313 | ret->p=BN_dup(p); | ||
| 314 | ret->q=BN_dup(q); | ||
| 315 | ret->g=BN_dup(g); | ||
| 316 | if(seed_out != NULL) memcpy(seed_out,seed,20); | ||
| 317 | if (counter_ret != NULL) *counter_ret=counter; | ||
| 318 | if (h_ret != NULL) *h_ret=h; | ||
| 319 | } | ||
| 320 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 321 | if (ctx2 != NULL) | ||
| 322 | { | ||
| 323 | BN_CTX_end(ctx2); | ||
| 324 | BN_CTX_free(ctx2); | ||
| 325 | } | ||
| 326 | if (ctx3 != NULL) BN_CTX_free(ctx3); | ||
| 327 | if (mont != NULL) BN_MONT_CTX_free(mont); | ||
| 328 | return(ok?ret:NULL); | ||
| 329 | } | ||
| 330 | |||
| 331 | int DSA_generate_key(DSA *dsa) | ||
| 332 | { | ||
| 333 | int ok=0; | ||
| 334 | BN_CTX *ctx=NULL; | ||
| 335 | BIGNUM *pub_key=NULL,*priv_key=NULL; | ||
| 336 | |||
| 337 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 338 | |||
| 339 | if (dsa->priv_key == NULL) | ||
| 340 | { | ||
| 341 | if ((priv_key=BN_new()) == NULL) goto err; | ||
| 342 | } | ||
| 343 | else | ||
| 344 | priv_key=dsa->priv_key; | ||
| 345 | |||
| 346 | do | ||
| 347 | if (!BN_rand_range(priv_key,dsa->q)) goto err; | ||
| 348 | while (BN_is_zero(priv_key)); | ||
| 349 | |||
| 350 | if (dsa->pub_key == NULL) | ||
| 351 | { | ||
| 352 | if ((pub_key=BN_new()) == NULL) goto err; | ||
| 353 | } | ||
| 354 | else | ||
| 355 | pub_key=dsa->pub_key; | ||
| 356 | |||
| 357 | if (!BN_mod_exp(pub_key,dsa->g,priv_key,dsa->p,ctx)) goto err; | ||
| 358 | |||
| 359 | dsa->priv_key=priv_key; | ||
| 360 | dsa->pub_key=pub_key; | ||
| 361 | |||
| 362 | if(!fips_check_dsa(dsa)) | ||
| 363 | goto err; | ||
| 364 | |||
| 365 | ok=1; | ||
| 366 | |||
| 367 | err: | ||
| 368 | if ((pub_key != NULL) && (dsa->pub_key == NULL)) BN_free(pub_key); | ||
| 369 | if ((priv_key != NULL) && (dsa->priv_key == NULL)) BN_free(priv_key); | ||
| 370 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 371 | return(ok); | ||
| 372 | } | ||
| 373 | #endif | ||
| 374 | #endif | ||
diff --git a/src/lib/libssl/src/fips/dsa/fips_dsa_ossl.c b/src/lib/libssl/src/fips/dsa/fips_dsa_ossl.c deleted file mode 100644 index 0ae5eb4b9e..0000000000 --- a/src/lib/libssl/src/fips/dsa/fips_dsa_ossl.c +++ /dev/null | |||
| @@ -1,387 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsa_ossl.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | /* Original version from Steven Schoch <schoch@sheba.arc.nasa.gov> */ | ||
| 60 | |||
| 61 | #include <stdio.h> | ||
| 62 | #include <openssl/bn.h> | ||
| 63 | #include <openssl/dsa.h> | ||
| 64 | #include <openssl/rand.h> | ||
| 65 | #include <openssl/asn1.h> | ||
| 66 | #ifndef OPENSSL_NO_ENGINE | ||
| 67 | #include <openssl/engine.h> | ||
| 68 | #endif | ||
| 69 | #include <openssl/fips.h> | ||
| 70 | |||
| 71 | #ifdef OPENSSL_FIPS | ||
| 72 | |||
| 73 | static DSA_SIG *dsa_do_sign(const unsigned char *dgst, FIPS_DSA_SIZE_T dlen, DSA *dsa); | ||
| 74 | static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in, BIGNUM **kinvp, BIGNUM **rp); | ||
| 75 | static int dsa_do_verify(const unsigned char *dgst, FIPS_DSA_SIZE_T dgst_len, DSA_SIG *sig, | ||
| 76 | DSA *dsa); | ||
| 77 | static int dsa_init(DSA *dsa); | ||
| 78 | static int dsa_finish(DSA *dsa); | ||
| 79 | static int dsa_mod_exp(DSA *dsa, BIGNUM *rr, BIGNUM *a1, BIGNUM *p1, | ||
| 80 | BIGNUM *a2, BIGNUM *p2, BIGNUM *m, BN_CTX *ctx, | ||
| 81 | BN_MONT_CTX *in_mont); | ||
| 82 | static int dsa_bn_mod_exp(DSA *dsa, BIGNUM *r, BIGNUM *a, const BIGNUM *p, | ||
| 83 | const BIGNUM *m, BN_CTX *ctx, | ||
| 84 | BN_MONT_CTX *m_ctx); | ||
| 85 | |||
| 86 | static DSA_METHOD openssl_dsa_meth = { | ||
| 87 | "OpenSSL FIPS DSA method", | ||
| 88 | dsa_do_sign, | ||
| 89 | dsa_sign_setup, | ||
| 90 | dsa_do_verify, | ||
| 91 | dsa_mod_exp, | ||
| 92 | dsa_bn_mod_exp, | ||
| 93 | dsa_init, | ||
| 94 | dsa_finish, | ||
| 95 | 0, | ||
| 96 | NULL | ||
| 97 | }; | ||
| 98 | |||
| 99 | int FIPS_dsa_check(struct dsa_st *dsa) | ||
| 100 | { | ||
| 101 | if(dsa->meth != &openssl_dsa_meth || dsa->meth->dsa_do_sign != dsa_do_sign | ||
| 102 | || dsa->meth->dsa_sign_setup != dsa_sign_setup | ||
| 103 | || dsa->meth->dsa_mod_exp != dsa_mod_exp | ||
| 104 | || dsa->meth->bn_mod_exp != dsa_bn_mod_exp | ||
| 105 | || dsa->meth->init != dsa_init | ||
| 106 | || dsa->meth->finish != dsa_finish) | ||
| 107 | { | ||
| 108 | FIPSerr(FIPS_F_FIPS_DSA_CHECK,FIPS_R_NON_FIPS_METHOD); | ||
| 109 | return 0; | ||
| 110 | } | ||
| 111 | return 1; | ||
| 112 | } | ||
| 113 | |||
| 114 | const DSA_METHOD *DSA_OpenSSL(void) | ||
| 115 | { | ||
| 116 | return &openssl_dsa_meth; | ||
| 117 | } | ||
| 118 | |||
| 119 | static DSA_SIG *dsa_do_sign(const unsigned char *dgst, FIPS_DSA_SIZE_T dlen, DSA *dsa) | ||
| 120 | { | ||
| 121 | BIGNUM *kinv=NULL,*r=NULL,*s=NULL; | ||
| 122 | BIGNUM m; | ||
| 123 | BIGNUM xr; | ||
| 124 | BN_CTX *ctx=NULL; | ||
| 125 | int i,reason=ERR_R_BN_LIB; | ||
| 126 | DSA_SIG *ret=NULL; | ||
| 127 | |||
| 128 | if(FIPS_selftest_failed()) | ||
| 129 | { | ||
| 130 | FIPSerr(FIPS_F_DSA_DO_SIGN,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 131 | return NULL; | ||
| 132 | } | ||
| 133 | |||
| 134 | BN_init(&m); | ||
| 135 | BN_init(&xr); | ||
| 136 | |||
| 137 | if (!dsa->p || !dsa->q || !dsa->g) | ||
| 138 | { | ||
| 139 | reason=DSA_R_MISSING_PARAMETERS; | ||
| 140 | goto err; | ||
| 141 | } | ||
| 142 | |||
| 143 | s=BN_new(); | ||
| 144 | if (s == NULL) goto err; | ||
| 145 | |||
| 146 | i=BN_num_bytes(dsa->q); /* should be 20 */ | ||
| 147 | if ((dlen > i) || (dlen > 50)) | ||
| 148 | { | ||
| 149 | reason=DSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE; | ||
| 150 | goto err; | ||
| 151 | } | ||
| 152 | |||
| 153 | ctx=BN_CTX_new(); | ||
| 154 | if (ctx == NULL) goto err; | ||
| 155 | |||
| 156 | if ((dsa->kinv == NULL) || (dsa->r == NULL)) | ||
| 157 | { | ||
| 158 | if (!DSA_sign_setup(dsa,ctx,&kinv,&r)) goto err; | ||
| 159 | } | ||
| 160 | else | ||
| 161 | { | ||
| 162 | kinv=dsa->kinv; | ||
| 163 | dsa->kinv=NULL; | ||
| 164 | r=dsa->r; | ||
| 165 | dsa->r=NULL; | ||
| 166 | } | ||
| 167 | |||
| 168 | if (BN_bin2bn(dgst,dlen,&m) == NULL) goto err; | ||
| 169 | |||
| 170 | /* Compute s = inv(k) (m + xr) mod q */ | ||
| 171 | if (!BN_mod_mul(&xr,dsa->priv_key,r,dsa->q,ctx)) goto err;/* s = xr */ | ||
| 172 | if (!BN_add(s, &xr, &m)) goto err; /* s = m + xr */ | ||
| 173 | if (BN_cmp(s,dsa->q) > 0) | ||
| 174 | BN_sub(s,s,dsa->q); | ||
| 175 | if (!BN_mod_mul(s,s,kinv,dsa->q,ctx)) goto err; | ||
| 176 | |||
| 177 | ret=DSA_SIG_new(); | ||
| 178 | if (ret == NULL) goto err; | ||
| 179 | ret->r = r; | ||
| 180 | ret->s = s; | ||
| 181 | |||
| 182 | err: | ||
| 183 | if (!ret) | ||
| 184 | { | ||
| 185 | DSAerr(DSA_F_DSA_DO_SIGN,reason); | ||
| 186 | BN_free(r); | ||
| 187 | BN_free(s); | ||
| 188 | } | ||
| 189 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 190 | BN_clear_free(&m); | ||
| 191 | BN_clear_free(&xr); | ||
| 192 | if (kinv != NULL) /* dsa->kinv is NULL now if we used it */ | ||
| 193 | BN_clear_free(kinv); | ||
| 194 | return(ret); | ||
| 195 | } | ||
| 196 | |||
| 197 | static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in, BIGNUM **kinvp, BIGNUM **rp) | ||
| 198 | { | ||
| 199 | BN_CTX *ctx; | ||
| 200 | BIGNUM k,*kinv=NULL,*r=NULL; | ||
| 201 | int ret=0; | ||
| 202 | |||
| 203 | if (!dsa->p || !dsa->q || !dsa->g) | ||
| 204 | { | ||
| 205 | DSAerr(DSA_F_DSA_SIGN_SETUP,DSA_R_MISSING_PARAMETERS); | ||
| 206 | return 0; | ||
| 207 | } | ||
| 208 | |||
| 209 | BN_init(&k); | ||
| 210 | |||
| 211 | if (ctx_in == NULL) | ||
| 212 | { | ||
| 213 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 214 | } | ||
| 215 | else | ||
| 216 | ctx=ctx_in; | ||
| 217 | |||
| 218 | if ((r=BN_new()) == NULL) goto err; | ||
| 219 | kinv=NULL; | ||
| 220 | |||
| 221 | /* Get random k */ | ||
| 222 | do | ||
| 223 | if (!BN_rand_range(&k, dsa->q)) goto err; | ||
| 224 | while (BN_is_zero(&k)); | ||
| 225 | |||
| 226 | if ((dsa->method_mont_p == NULL) && (dsa->flags & DSA_FLAG_CACHE_MONT_P)) | ||
| 227 | { | ||
| 228 | if ((dsa->method_mont_p=(char *)BN_MONT_CTX_new()) != NULL) | ||
| 229 | if (!BN_MONT_CTX_set((BN_MONT_CTX *)dsa->method_mont_p, | ||
| 230 | dsa->p,ctx)) goto err; | ||
| 231 | } | ||
| 232 | |||
| 233 | /* Compute r = (g^k mod p) mod q */ | ||
| 234 | if (!dsa->meth->bn_mod_exp(dsa, r,dsa->g,&k,dsa->p,ctx, | ||
| 235 | (BN_MONT_CTX *)dsa->method_mont_p)) goto err; | ||
| 236 | if (!BN_mod(r,r,dsa->q,ctx)) goto err; | ||
| 237 | |||
| 238 | /* Compute part of 's = inv(k) (m + xr) mod q' */ | ||
| 239 | if ((kinv=BN_mod_inverse(NULL,&k,dsa->q,ctx)) == NULL) goto err; | ||
| 240 | |||
| 241 | if (*kinvp != NULL) BN_clear_free(*kinvp); | ||
| 242 | *kinvp=kinv; | ||
| 243 | kinv=NULL; | ||
| 244 | if (*rp != NULL) BN_clear_free(*rp); | ||
| 245 | *rp=r; | ||
| 246 | ret=1; | ||
| 247 | err: | ||
| 248 | if (!ret) | ||
| 249 | { | ||
| 250 | DSAerr(DSA_F_DSA_SIGN_SETUP,ERR_R_BN_LIB); | ||
| 251 | if (kinv != NULL) BN_clear_free(kinv); | ||
| 252 | if (r != NULL) BN_clear_free(r); | ||
| 253 | } | ||
| 254 | if (ctx_in == NULL) BN_CTX_free(ctx); | ||
| 255 | if (kinv != NULL) BN_clear_free(kinv); | ||
| 256 | BN_clear_free(&k); | ||
| 257 | return(ret); | ||
| 258 | } | ||
| 259 | |||
| 260 | static int dsa_do_verify(const unsigned char *dgst, FIPS_DSA_SIZE_T dgst_len, DSA_SIG *sig, | ||
| 261 | DSA *dsa) | ||
| 262 | { | ||
| 263 | BN_CTX *ctx; | ||
| 264 | BIGNUM u1,u2,t1; | ||
| 265 | BN_MONT_CTX *mont=NULL; | ||
| 266 | int ret = -1; | ||
| 267 | |||
| 268 | if (!dsa->p || !dsa->q || !dsa->g) | ||
| 269 | { | ||
| 270 | DSAerr(DSA_F_DSA_DO_VERIFY,DSA_R_MISSING_PARAMETERS); | ||
| 271 | return -1; | ||
| 272 | } | ||
| 273 | |||
| 274 | if(FIPS_selftest_failed()) | ||
| 275 | { | ||
| 276 | FIPSerr(FIPS_F_DSA_DO_VERIFY,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 277 | return -1; | ||
| 278 | } | ||
| 279 | |||
| 280 | BN_init(&u1); | ||
| 281 | BN_init(&u2); | ||
| 282 | BN_init(&t1); | ||
| 283 | |||
| 284 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 285 | |||
| 286 | if (BN_is_zero(sig->r) || sig->r->neg || BN_ucmp(sig->r, dsa->q) >= 0) | ||
| 287 | { | ||
| 288 | ret = 0; | ||
| 289 | goto err; | ||
| 290 | } | ||
| 291 | if (BN_is_zero(sig->s) || sig->s->neg || BN_ucmp(sig->s, dsa->q) >= 0) | ||
| 292 | { | ||
| 293 | ret = 0; | ||
| 294 | goto err; | ||
| 295 | } | ||
| 296 | |||
| 297 | /* Calculate W = inv(S) mod Q | ||
| 298 | * save W in u2 */ | ||
| 299 | if ((BN_mod_inverse(&u2,sig->s,dsa->q,ctx)) == NULL) goto err; | ||
| 300 | |||
| 301 | /* save M in u1 */ | ||
| 302 | if (BN_bin2bn(dgst,dgst_len,&u1) == NULL) goto err; | ||
| 303 | |||
| 304 | /* u1 = M * w mod q */ | ||
| 305 | if (!BN_mod_mul(&u1,&u1,&u2,dsa->q,ctx)) goto err; | ||
| 306 | |||
| 307 | /* u2 = r * w mod q */ | ||
| 308 | if (!BN_mod_mul(&u2,sig->r,&u2,dsa->q,ctx)) goto err; | ||
| 309 | |||
| 310 | if ((dsa->method_mont_p == NULL) && (dsa->flags & DSA_FLAG_CACHE_MONT_P)) | ||
| 311 | { | ||
| 312 | if ((dsa->method_mont_p=(char *)BN_MONT_CTX_new()) != NULL) | ||
| 313 | if (!BN_MONT_CTX_set((BN_MONT_CTX *)dsa->method_mont_p, | ||
| 314 | dsa->p,ctx)) goto err; | ||
| 315 | } | ||
| 316 | mont=(BN_MONT_CTX *)dsa->method_mont_p; | ||
| 317 | |||
| 318 | #if 0 | ||
| 319 | { | ||
| 320 | BIGNUM t2; | ||
| 321 | |||
| 322 | BN_init(&t2); | ||
| 323 | /* v = ( g^u1 * y^u2 mod p ) mod q */ | ||
| 324 | /* let t1 = g ^ u1 mod p */ | ||
| 325 | if (!BN_mod_exp_mont(&t1,dsa->g,&u1,dsa->p,ctx,mont)) goto err; | ||
| 326 | /* let t2 = y ^ u2 mod p */ | ||
| 327 | if (!BN_mod_exp_mont(&t2,dsa->pub_key,&u2,dsa->p,ctx,mont)) goto err; | ||
| 328 | /* let u1 = t1 * t2 mod p */ | ||
| 329 | if (!BN_mod_mul(&u1,&t1,&t2,dsa->p,ctx)) goto err_bn; | ||
| 330 | BN_free(&t2); | ||
| 331 | } | ||
| 332 | /* let u1 = u1 mod q */ | ||
| 333 | if (!BN_mod(&u1,&u1,dsa->q,ctx)) goto err; | ||
| 334 | #else | ||
| 335 | { | ||
| 336 | if (!dsa->meth->dsa_mod_exp(dsa, &t1,dsa->g,&u1,dsa->pub_key,&u2, | ||
| 337 | dsa->p,ctx,mont)) goto err; | ||
| 338 | /* BN_copy(&u1,&t1); */ | ||
| 339 | /* let u1 = u1 mod q */ | ||
| 340 | if (!BN_mod(&u1,&t1,dsa->q,ctx)) goto err; | ||
| 341 | } | ||
| 342 | #endif | ||
| 343 | /* V is now in u1. If the signature is correct, it will be | ||
| 344 | * equal to R. */ | ||
| 345 | ret=(BN_ucmp(&u1, sig->r) == 0); | ||
| 346 | |||
| 347 | err: | ||
| 348 | if (ret != 1) DSAerr(DSA_F_DSA_DO_VERIFY,ERR_R_BN_LIB); | ||
| 349 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 350 | BN_free(&u1); | ||
| 351 | BN_free(&u2); | ||
| 352 | BN_free(&t1); | ||
| 353 | return(ret); | ||
| 354 | } | ||
| 355 | |||
| 356 | static int dsa_init(DSA *dsa) | ||
| 357 | { | ||
| 358 | dsa->flags|=DSA_FLAG_CACHE_MONT_P; | ||
| 359 | return(1); | ||
| 360 | } | ||
| 361 | |||
| 362 | static int dsa_finish(DSA *dsa) | ||
| 363 | { | ||
| 364 | if(dsa->method_mont_p) | ||
| 365 | BN_MONT_CTX_free((BN_MONT_CTX *)dsa->method_mont_p); | ||
| 366 | return(1); | ||
| 367 | } | ||
| 368 | |||
| 369 | static int dsa_mod_exp(DSA *dsa, BIGNUM *rr, BIGNUM *a1, BIGNUM *p1, | ||
| 370 | BIGNUM *a2, BIGNUM *p2, BIGNUM *m, BN_CTX *ctx, | ||
| 371 | BN_MONT_CTX *in_mont) | ||
| 372 | { | ||
| 373 | return BN_mod_exp2_mont(rr, a1, p1, a2, p2, m, ctx, in_mont); | ||
| 374 | } | ||
| 375 | |||
| 376 | static int dsa_bn_mod_exp(DSA *dsa, BIGNUM *r, BIGNUM *a, const BIGNUM *p, | ||
| 377 | const BIGNUM *m, BN_CTX *ctx, | ||
| 378 | BN_MONT_CTX *m_ctx) | ||
| 379 | { | ||
| 380 | return BN_mod_exp_mont(r, a, p, m, ctx, m_ctx); | ||
| 381 | } | ||
| 382 | |||
| 383 | #else /* ndef OPENSSL_FIPS */ | ||
| 384 | |||
| 385 | static void *dummy=&dummy; | ||
| 386 | |||
| 387 | #endif /* ndef OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips/dsa/fips_dsatest.c b/src/lib/libssl/src/fips/dsa/fips_dsatest.c deleted file mode 100644 index 7215940ede..0000000000 --- a/src/lib/libssl/src/fips/dsa/fips_dsatest.c +++ /dev/null | |||
| @@ -1,257 +0,0 @@ | |||
| 1 | /* crypto/dsa/dsatest.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <stdlib.h> | ||
| 61 | #include <string.h> | ||
| 62 | #include <sys/types.h> | ||
| 63 | #include <sys/stat.h> | ||
| 64 | |||
| 65 | #include "e_os.h" | ||
| 66 | |||
| 67 | #include <openssl/crypto.h> | ||
| 68 | #include <openssl/rand.h> | ||
| 69 | #include <openssl/bio.h> | ||
| 70 | #include <openssl/err.h> | ||
| 71 | #ifndef OPENSSL_NO_ENGINE | ||
| 72 | #include <openssl/engine.h> | ||
| 73 | #endif | ||
| 74 | #include <openssl/fips.h> | ||
| 75 | #include <openssl/fips_rand.h> | ||
| 76 | |||
| 77 | #if defined(OPENSSL_NO_DSA) || !defined(OPENSSL_FIPS) | ||
| 78 | int main(int argc, char *argv[]) | ||
| 79 | { | ||
| 80 | printf("No FIPS DSA support\n"); | ||
| 81 | return(0); | ||
| 82 | } | ||
| 83 | #else | ||
| 84 | #include <openssl/dsa.h> | ||
| 85 | |||
| 86 | #ifdef OPENSSL_SYS_WIN16 | ||
| 87 | #define MS_CALLBACK _far _loadds | ||
| 88 | #else | ||
| 89 | #define MS_CALLBACK | ||
| 90 | #endif | ||
| 91 | |||
| 92 | static void MS_CALLBACK dsa_cb(int p, int n, void *arg); | ||
| 93 | |||
| 94 | /* seed, out_p, out_q, out_g are taken from the updated Appendix 5 to | ||
| 95 | * FIPS PUB 186 and also appear in Appendix 5 to FIPS PIB 186-1 */ | ||
| 96 | static unsigned char seed[20]={ | ||
| 97 | 0xd5,0x01,0x4e,0x4b,0x60,0xef,0x2b,0xa8,0xb6,0x21,0x1b,0x40, | ||
| 98 | 0x62,0xba,0x32,0x24,0xe0,0x42,0x7d,0xd3, | ||
| 99 | }; | ||
| 100 | |||
| 101 | static unsigned char out_p[]={ | ||
| 102 | 0x8d,0xf2,0xa4,0x94,0x49,0x22,0x76,0xaa, | ||
| 103 | 0x3d,0x25,0x75,0x9b,0xb0,0x68,0x69,0xcb, | ||
| 104 | 0xea,0xc0,0xd8,0x3a,0xfb,0x8d,0x0c,0xf7, | ||
| 105 | 0xcb,0xb8,0x32,0x4f,0x0d,0x78,0x82,0xe5, | ||
| 106 | 0xd0,0x76,0x2f,0xc5,0xb7,0x21,0x0e,0xaf, | ||
| 107 | 0xc2,0xe9,0xad,0xac,0x32,0xab,0x7a,0xac, | ||
| 108 | 0x49,0x69,0x3d,0xfb,0xf8,0x37,0x24,0xc2, | ||
| 109 | 0xec,0x07,0x36,0xee,0x31,0xc8,0x02,0x91, | ||
| 110 | }; | ||
| 111 | |||
| 112 | static unsigned char out_q[]={ | ||
| 113 | 0xc7,0x73,0x21,0x8c,0x73,0x7e,0xc8,0xee, | ||
| 114 | 0x99,0x3b,0x4f,0x2d,0xed,0x30,0xf4,0x8e, | ||
| 115 | 0xda,0xce,0x91,0x5f, | ||
| 116 | }; | ||
| 117 | |||
| 118 | static unsigned char out_g[]={ | ||
| 119 | 0x62,0x6d,0x02,0x78,0x39,0xea,0x0a,0x13, | ||
| 120 | 0x41,0x31,0x63,0xa5,0x5b,0x4c,0xb5,0x00, | ||
| 121 | 0x29,0x9d,0x55,0x22,0x95,0x6c,0xef,0xcb, | ||
| 122 | 0x3b,0xff,0x10,0xf3,0x99,0xce,0x2c,0x2e, | ||
| 123 | 0x71,0xcb,0x9d,0xe5,0xfa,0x24,0xba,0xbf, | ||
| 124 | 0x58,0xe5,0xb7,0x95,0x21,0x92,0x5c,0x9c, | ||
| 125 | 0xc4,0x2e,0x9f,0x6f,0x46,0x4b,0x08,0x8c, | ||
| 126 | 0xc5,0x72,0xaf,0x53,0xe6,0xd7,0x88,0x02, | ||
| 127 | }; | ||
| 128 | |||
| 129 | static const unsigned char str1[]="12345678901234567890"; | ||
| 130 | |||
| 131 | static const char rnd_seed[] = "string to make the random number generator think it has entropy"; | ||
| 132 | static const unsigned char rnd_key1[]="12345678"; | ||
| 133 | static const unsigned char rnd_key2[]="abcdefgh"; | ||
| 134 | |||
| 135 | static BIO *bio_err=NULL; | ||
| 136 | |||
| 137 | int main(int argc, char **argv) | ||
| 138 | { | ||
| 139 | DSA *dsa=NULL; | ||
| 140 | int counter,ret=0,i,j; | ||
| 141 | unsigned char buf[256]; | ||
| 142 | unsigned long h; | ||
| 143 | unsigned char sig[256]; | ||
| 144 | unsigned int siglen; | ||
| 145 | |||
| 146 | if (bio_err == NULL) | ||
| 147 | bio_err=BIO_new_fp(stderr,BIO_NOCLOSE); | ||
| 148 | |||
| 149 | #ifdef OPENSSL_FIPS | ||
| 150 | if(!FIPS_mode_set(1,argv[0])) | ||
| 151 | { | ||
| 152 | ERR_print_errors(bio_err); | ||
| 153 | EXIT(1); | ||
| 154 | } | ||
| 155 | #endif | ||
| 156 | CRYPTO_malloc_debug_init(); | ||
| 157 | CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL); | ||
| 158 | CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON); | ||
| 159 | |||
| 160 | ERR_load_crypto_strings(); | ||
| 161 | FIPS_set_prng_key(rnd_key1,rnd_key2); | ||
| 162 | RAND_seed(rnd_seed, sizeof rnd_seed); | ||
| 163 | |||
| 164 | BIO_printf(bio_err,"test generation of DSA parameters\n"); | ||
| 165 | |||
| 166 | dsa=DSA_generate_parameters(512,seed,20,&counter,&h,dsa_cb,bio_err); | ||
| 167 | |||
| 168 | BIO_printf(bio_err,"seed\n"); | ||
| 169 | for (i=0; i<20; i+=4) | ||
| 170 | { | ||
| 171 | BIO_printf(bio_err,"%02X%02X%02X%02X ", | ||
| 172 | seed[i],seed[i+1],seed[i+2],seed[i+3]); | ||
| 173 | } | ||
| 174 | BIO_printf(bio_err,"\ncounter=%d h=%d\n",counter,h); | ||
| 175 | |||
| 176 | if (dsa == NULL) goto end; | ||
| 177 | DSA_print(bio_err,dsa,0); | ||
| 178 | if (counter != 105) | ||
| 179 | { | ||
| 180 | BIO_printf(bio_err,"counter should be 105\n"); | ||
| 181 | goto end; | ||
| 182 | } | ||
| 183 | if (h != 2) | ||
| 184 | { | ||
| 185 | BIO_printf(bio_err,"h should be 2\n"); | ||
| 186 | goto end; | ||
| 187 | } | ||
| 188 | |||
| 189 | i=BN_bn2bin(dsa->q,buf); | ||
| 190 | j=sizeof(out_q); | ||
| 191 | if ((i != j) || (memcmp(buf,out_q,i) != 0)) | ||
| 192 | { | ||
| 193 | BIO_printf(bio_err,"q value is wrong\n"); | ||
| 194 | goto end; | ||
| 195 | } | ||
| 196 | |||
| 197 | i=BN_bn2bin(dsa->p,buf); | ||
| 198 | j=sizeof(out_p); | ||
| 199 | if ((i != j) || (memcmp(buf,out_p,i) != 0)) | ||
| 200 | { | ||
| 201 | BIO_printf(bio_err,"p value is wrong\n"); | ||
| 202 | goto end; | ||
| 203 | } | ||
| 204 | |||
| 205 | i=BN_bn2bin(dsa->g,buf); | ||
| 206 | j=sizeof(out_g); | ||
| 207 | if ((i != j) || (memcmp(buf,out_g,i) != 0)) | ||
| 208 | { | ||
| 209 | BIO_printf(bio_err,"g value is wrong\n"); | ||
| 210 | goto end; | ||
| 211 | } | ||
| 212 | DSA_generate_key(dsa); | ||
| 213 | DSA_sign(0, str1, 20, sig, &siglen, dsa); | ||
| 214 | if (DSA_verify(0, str1, 20, sig, siglen, dsa) == 1) | ||
| 215 | ret=1; | ||
| 216 | end: | ||
| 217 | if (!ret) | ||
| 218 | ERR_print_errors(bio_err); | ||
| 219 | if (dsa != NULL) DSA_free(dsa); | ||
| 220 | CRYPTO_cleanup_all_ex_data(); | ||
| 221 | ERR_remove_state(0); | ||
| 222 | ERR_free_strings(); | ||
| 223 | CRYPTO_mem_leaks(bio_err); | ||
| 224 | if (bio_err != NULL) | ||
| 225 | { | ||
| 226 | BIO_free(bio_err); | ||
| 227 | bio_err = NULL; | ||
| 228 | } | ||
| 229 | EXIT(!ret); | ||
| 230 | return(!ret); | ||
| 231 | } | ||
| 232 | |||
| 233 | static int cb_exit(int ec) | ||
| 234 | { | ||
| 235 | EXIT(ec); | ||
| 236 | return(0); /* To keep some compilers quiet */ | ||
| 237 | } | ||
| 238 | |||
| 239 | static void MS_CALLBACK dsa_cb(int p, int n, void *arg) | ||
| 240 | { | ||
| 241 | char c='*'; | ||
| 242 | static int ok=0,num=0; | ||
| 243 | |||
| 244 | if (p == 0) { c='.'; num++; }; | ||
| 245 | if (p == 1) c='+'; | ||
| 246 | if (p == 2) { c='*'; ok++; } | ||
| 247 | if (p == 3) c='\n'; | ||
| 248 | BIO_write(arg,&c,1); | ||
| 249 | (void)BIO_flush(arg); | ||
| 250 | |||
| 251 | if (!ok && (p == 0) && (num > 1)) | ||
| 252 | { | ||
| 253 | BIO_printf((BIO *)arg,"error in dsatest\n"); | ||
| 254 | cb_exit(1); | ||
| 255 | } | ||
| 256 | } | ||
| 257 | #endif | ||
diff --git a/src/lib/libssl/src/fips/dsa/fips_dssvs.c b/src/lib/libssl/src/fips/dsa/fips_dssvs.c deleted file mode 100644 index 50a4d96986..0000000000 --- a/src/lib/libssl/src/fips/dsa/fips_dssvs.c +++ /dev/null | |||
| @@ -1,306 +0,0 @@ | |||
| 1 | #include <openssl/bn.h> | ||
| 2 | #include <openssl/dsa.h> | ||
| 3 | #include <openssl/fips.h> | ||
| 4 | #include <openssl/err.h> | ||
| 5 | #include <openssl/sha.h> | ||
| 6 | #include <string.h> | ||
| 7 | |||
| 8 | int hex2bin(const char *in, unsigned char *out) | ||
| 9 | { | ||
| 10 | int n1, n2; | ||
| 11 | unsigned char ch; | ||
| 12 | |||
| 13 | for (n1=0,n2=0 ; in[n1] && in[n1] != '\n' ; ) | ||
| 14 | { /* first byte */ | ||
| 15 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 16 | ch = in[n1++] - '0'; | ||
| 17 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 18 | ch = in[n1++] - 'A' + 10; | ||
| 19 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 20 | ch = in[n1++] - 'a' + 10; | ||
| 21 | else | ||
| 22 | return -1; | ||
| 23 | if(!in[n1]) | ||
| 24 | { | ||
| 25 | out[n2++]=ch; | ||
| 26 | break; | ||
| 27 | } | ||
| 28 | out[n2] = ch << 4; | ||
| 29 | /* second byte */ | ||
| 30 | if ((in[n1] >= '0') && (in[n1] <= '9')) | ||
| 31 | ch = in[n1++] - '0'; | ||
| 32 | else if ((in[n1] >= 'A') && (in[n1] <= 'F')) | ||
| 33 | ch = in[n1++] - 'A' + 10; | ||
| 34 | else if ((in[n1] >= 'a') && (in[n1] <= 'f')) | ||
| 35 | ch = in[n1++] - 'a' + 10; | ||
| 36 | else | ||
| 37 | return -1; | ||
| 38 | out[n2++] |= ch; | ||
| 39 | } | ||
| 40 | return n2; | ||
| 41 | } | ||
| 42 | |||
| 43 | BIGNUM *hex2bn(const char *in) | ||
| 44 | { | ||
| 45 | BIGNUM *p=BN_new(); | ||
| 46 | |||
| 47 | BN_hex2bn(&p,in); | ||
| 48 | |||
| 49 | return p; | ||
| 50 | } | ||
| 51 | |||
| 52 | int bin2hex(const unsigned char *in,int len,char *out) | ||
| 53 | { | ||
| 54 | int n1, n2; | ||
| 55 | unsigned char ch; | ||
| 56 | |||
| 57 | for (n1=0,n2=0 ; n1 < len ; ++n1) | ||
| 58 | { | ||
| 59 | ch=in[n1] >> 4; | ||
| 60 | if (ch <= 0x09) | ||
| 61 | out[n2++]=ch+'0'; | ||
| 62 | else | ||
| 63 | out[n2++]=ch-10+'a'; | ||
| 64 | ch=in[n1] & 0x0f; | ||
| 65 | if(ch <= 0x09) | ||
| 66 | out[n2++]=ch+'0'; | ||
| 67 | else | ||
| 68 | out[n2++]=ch-10+'a'; | ||
| 69 | } | ||
| 70 | out[n2]='\0'; | ||
| 71 | return n2; | ||
| 72 | } | ||
| 73 | |||
| 74 | void pv(const char *tag,const unsigned char *val,int len) | ||
| 75 | { | ||
| 76 | char obuf[2048]; | ||
| 77 | |||
| 78 | bin2hex(val,len,obuf); | ||
| 79 | printf("%s = %s\n",tag,obuf); | ||
| 80 | } | ||
| 81 | |||
| 82 | void pbn(const char *tag,const BIGNUM *val) | ||
| 83 | { | ||
| 84 | printf("%s = %s\n",tag,BN_bn2hex(val)); | ||
| 85 | } | ||
| 86 | |||
| 87 | void primes() | ||
| 88 | { | ||
| 89 | char buf[10240]; | ||
| 90 | |||
| 91 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 92 | { | ||
| 93 | fputs(buf,stdout); | ||
| 94 | if(!strncmp(buf,"Prime= ",7)) | ||
| 95 | { | ||
| 96 | BIGNUM *pp; | ||
| 97 | |||
| 98 | pp=BN_new(); | ||
| 99 | BN_hex2bn(&pp,buf+7); | ||
| 100 | printf("result= %c\n", | ||
| 101 | BN_is_prime(pp,20,NULL,NULL,NULL) ? 'P' : 'F'); | ||
| 102 | } | ||
| 103 | } | ||
| 104 | } | ||
| 105 | |||
| 106 | void pqg() | ||
| 107 | { | ||
| 108 | char buf[1024]; | ||
| 109 | int nmod=0; | ||
| 110 | |||
| 111 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 112 | { | ||
| 113 | if(!strncmp(buf,"[mod = ",7)) | ||
| 114 | nmod=atoi(buf+7); | ||
| 115 | else if(!strncmp(buf,"N = ",4)) | ||
| 116 | { | ||
| 117 | int n=atoi(buf+4); | ||
| 118 | |||
| 119 | printf("[mod = %d]\n\n",nmod); | ||
| 120 | |||
| 121 | while(n--) | ||
| 122 | { | ||
| 123 | unsigned char seed[20]; | ||
| 124 | DSA *dsa; | ||
| 125 | int counter; | ||
| 126 | unsigned long h; | ||
| 127 | |||
| 128 | dsa=DSA_generate_parameters(nmod,seed,0,&counter,&h,NULL,NULL); | ||
| 129 | printf("P = %s\n",BN_bn2hex(dsa->p)); | ||
| 130 | printf("Q = %s\n",BN_bn2hex(dsa->q)); | ||
| 131 | printf("G = %s\n",BN_bn2hex(dsa->g)); | ||
| 132 | pv("Seed",seed,20); | ||
| 133 | printf("c = %d\n",counter); | ||
| 134 | printf("H = %lx\n",h); | ||
| 135 | putc('\n',stdout); | ||
| 136 | } | ||
| 137 | } | ||
| 138 | else | ||
| 139 | fputs(buf,stdout); | ||
| 140 | } | ||
| 141 | } | ||
| 142 | |||
| 143 | void keypair() | ||
| 144 | { | ||
| 145 | char buf[1024]; | ||
| 146 | int nmod=0; | ||
| 147 | |||
| 148 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 149 | { | ||
| 150 | if(!strncmp(buf,"[mod = ",7)) | ||
| 151 | nmod=atoi(buf+7); | ||
| 152 | else if(!strncmp(buf,"N = ",4)) | ||
| 153 | { | ||
| 154 | DSA *dsa; | ||
| 155 | int n=atoi(buf+4); | ||
| 156 | |||
| 157 | printf("[mod = %d]\n\n",nmod); | ||
| 158 | |||
| 159 | dsa=DSA_generate_parameters(nmod,NULL,0,NULL,NULL,NULL,NULL); | ||
| 160 | pbn("P",dsa->p); | ||
| 161 | pbn("Q",dsa->q); | ||
| 162 | pbn("G",dsa->g); | ||
| 163 | putc('\n',stdout); | ||
| 164 | |||
| 165 | while(n--) | ||
| 166 | { | ||
| 167 | DSA_generate_key(dsa); | ||
| 168 | |||
| 169 | pbn("X",dsa->priv_key); | ||
| 170 | pbn("Y",dsa->pub_key); | ||
| 171 | putc('\n',stdout); | ||
| 172 | } | ||
| 173 | } | ||
| 174 | } | ||
| 175 | } | ||
| 176 | |||
| 177 | void siggen() | ||
| 178 | { | ||
| 179 | char buf[1024]; | ||
| 180 | int nmod=0; | ||
| 181 | DSA *dsa=NULL; | ||
| 182 | |||
| 183 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 184 | { | ||
| 185 | if(!strncmp(buf,"[mod = ",7)) | ||
| 186 | { | ||
| 187 | nmod=atoi(buf+7); | ||
| 188 | printf("[mod = %d]\n\n",nmod); | ||
| 189 | |||
| 190 | dsa=DSA_generate_parameters(nmod,NULL,0,NULL,NULL,NULL,NULL); | ||
| 191 | pbn("P",dsa->p); | ||
| 192 | pbn("Q",dsa->q); | ||
| 193 | pbn("G",dsa->g); | ||
| 194 | putc('\n',stdout); | ||
| 195 | } | ||
| 196 | else if(!strncmp(buf,"Msg = ",6)) | ||
| 197 | { | ||
| 198 | unsigned char msg[1024]; | ||
| 199 | unsigned char hash[20]; | ||
| 200 | int n; | ||
| 201 | DSA_SIG *sig; | ||
| 202 | |||
| 203 | n=hex2bin(buf+6,msg); | ||
| 204 | pv("Msg",msg,n); | ||
| 205 | |||
| 206 | DSA_generate_key(dsa); | ||
| 207 | pbn("Y",dsa->pub_key); | ||
| 208 | |||
| 209 | SHA1(msg,n,hash); | ||
| 210 | sig=DSA_do_sign(hash,sizeof hash,dsa); | ||
| 211 | pbn("R",sig->r); | ||
| 212 | pbn("S",sig->s); | ||
| 213 | putc('\n',stdout); | ||
| 214 | } | ||
| 215 | } | ||
| 216 | } | ||
| 217 | |||
| 218 | void sigver() | ||
| 219 | { | ||
| 220 | DSA *dsa=NULL; | ||
| 221 | char buf[1024]; | ||
| 222 | int nmod=0; | ||
| 223 | unsigned char hash[20]; | ||
| 224 | DSA_SIG *sig=DSA_SIG_new(); | ||
| 225 | |||
| 226 | while(fgets(buf,sizeof buf,stdin) != NULL) | ||
| 227 | { | ||
| 228 | if(!strncmp(buf,"[mod = ",7)) | ||
| 229 | { | ||
| 230 | nmod=atoi(buf+7); | ||
| 231 | if(dsa) | ||
| 232 | DSA_free(dsa); | ||
| 233 | dsa=DSA_new(); | ||
| 234 | } | ||
| 235 | else if(!strncmp(buf,"P = ",4)) | ||
| 236 | dsa->p=hex2bn(buf+4); | ||
| 237 | else if(!strncmp(buf,"Q = ",4)) | ||
| 238 | dsa->q=hex2bn(buf+4); | ||
| 239 | else if(!strncmp(buf,"G = ",4)) | ||
| 240 | { | ||
| 241 | dsa->g=hex2bn(buf+4); | ||
| 242 | |||
| 243 | printf("[mod = %d]\n\n",nmod); | ||
| 244 | pbn("P",dsa->p); | ||
| 245 | pbn("Q",dsa->q); | ||
| 246 | pbn("G",dsa->g); | ||
| 247 | putc('\n',stdout); | ||
| 248 | } | ||
| 249 | else if(!strncmp(buf,"Msg = ",6)) | ||
| 250 | { | ||
| 251 | unsigned char msg[1024]; | ||
| 252 | int n; | ||
| 253 | |||
| 254 | n=hex2bin(buf+6,msg); | ||
| 255 | pv("Msg",msg,n); | ||
| 256 | SHA1(msg,n,hash); | ||
| 257 | } | ||
| 258 | else if(!strncmp(buf,"Y = ",4)) | ||
| 259 | dsa->pub_key=hex2bn(buf+4); | ||
| 260 | else if(!strncmp(buf,"R = ",4)) | ||
| 261 | sig->r=hex2bn(buf+4); | ||
| 262 | else if(!strncmp(buf,"S = ",4)) | ||
| 263 | { | ||
| 264 | sig->s=hex2bn(buf+4); | ||
| 265 | |||
| 266 | pbn("Y",dsa->pub_key); | ||
| 267 | pbn("R",sig->r); | ||
| 268 | pbn("S",sig->s); | ||
| 269 | printf("Result = %c\n",DSA_do_verify(hash,sizeof hash,sig,dsa) | ||
| 270 | ? 'P' : 'F'); | ||
| 271 | putc('\n',stdout); | ||
| 272 | } | ||
| 273 | } | ||
| 274 | } | ||
| 275 | |||
| 276 | int main(int argc,char **argv) | ||
| 277 | { | ||
| 278 | if(argc != 2) | ||
| 279 | { | ||
| 280 | fprintf(stderr,"%s [prime|pqg]\n",argv[0]); | ||
| 281 | exit(1); | ||
| 282 | } | ||
| 283 | if(!FIPS_mode_set(1,argv[0])) | ||
| 284 | { | ||
| 285 | ERR_load_crypto_strings(); | ||
| 286 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 287 | exit(1); | ||
| 288 | } | ||
| 289 | if(!strcmp(argv[1],"prime")) | ||
| 290 | primes(); | ||
| 291 | else if(!strcmp(argv[1],"pqg")) | ||
| 292 | pqg(); | ||
| 293 | else if(!strcmp(argv[1],"keypair")) | ||
| 294 | keypair(); | ||
| 295 | else if(!strcmp(argv[1],"siggen")) | ||
| 296 | siggen(); | ||
| 297 | else if(!strcmp(argv[1],"sigver")) | ||
| 298 | sigver(); | ||
| 299 | else | ||
| 300 | { | ||
| 301 | fprintf(stderr,"Don't know how to %s.\n",argv[1]); | ||
| 302 | exit(1); | ||
| 303 | } | ||
| 304 | |||
| 305 | return 0; | ||
| 306 | } | ||
diff --git a/src/lib/libssl/src/fips/fips-lib.com b/src/lib/libssl/src/fips/fips-lib.com deleted file mode 100644 index f3571bf845..0000000000 --- a/src/lib/libssl/src/fips/fips-lib.com +++ /dev/null | |||
| @@ -1,1180 +0,0 @@ | |||
| 1 | $! | ||
| 2 | $! FIPS-LIB.COM | ||
| 3 | $! Written By: Robert Byer | ||
| 4 | $! Vice-President | ||
| 5 | $! A-Com Computing, Inc. | ||
| 6 | $! byer@mail.all-net.net | ||
| 7 | $! | ||
| 8 | $! Changes by Richard Levitte <richard@levitte.org> | ||
| 9 | $! | ||
| 10 | $! This command files compiles and creates the FIPS parts of the | ||
| 11 | $! "[.xxx.EXE.CRYPTO]LIBCRYPTO.OLB" library for OpenSSL. The "xxx" | ||
| 12 | $! denotes the machine architecture of AXP or VAX. | ||
| 13 | $! | ||
| 14 | $! It was re-written so it would try to determine what "C" compiler to use | ||
| 15 | $! or you can specify which "C" compiler to use. | ||
| 16 | $! | ||
| 17 | $! Specify the following as P1 to build just that part or ALL to just | ||
| 18 | $! build everything. | ||
| 19 | $! | ||
| 20 | $! LIBRARY To just compile the [.xxx.EXE.CRYPTO]LIBCRYPTO.OLB Library. | ||
| 21 | $! APPS To just compile the [.xxx.EXE.CRYPTO]*.EXE | ||
| 22 | $! ALL To do both LIBRARY and APPS | ||
| 23 | $! | ||
| 24 | $! Specify DEBUG or NODEBUG as P2 to compile with or without debugger | ||
| 25 | $! information. | ||
| 26 | $! | ||
| 27 | $! Specify which compiler at P3 to try to compile under. | ||
| 28 | $! | ||
| 29 | $! VAXC For VAX C. | ||
| 30 | $! DECC For DEC C. | ||
| 31 | $! GNUC For GNU C. | ||
| 32 | $! | ||
| 33 | $! If you don't speficy a compiler, it will try to determine which | ||
| 34 | $! "C" compiler to use. | ||
| 35 | $! | ||
| 36 | $! P4, if defined, sets a TCP/IP library to use, through one of the following | ||
| 37 | $! keywords: | ||
| 38 | $! | ||
| 39 | $! UCX for UCX | ||
| 40 | $! TCPIP for TCPIP (post UCX) | ||
| 41 | $! SOCKETSHR for SOCKETSHR+NETLIB | ||
| 42 | $! | ||
| 43 | $! P5, if defined, sets a compiler thread NOT needed on OpenVMS 7.1 (and up) | ||
| 44 | $! | ||
| 45 | $! P6, if defined, sets a choice of crypto methods to compile. | ||
| 46 | $! WARNING: this should only be done to recompile some part of an already | ||
| 47 | $! fully compiled library. | ||
| 48 | $! | ||
| 49 | $! | ||
| 50 | $! Define A TCP/IP Library That We Will Need To Link To. | ||
| 51 | $! (That Is, If We Need To Link To One.) | ||
| 52 | $! | ||
| 53 | $ TCPIP_LIB = "" | ||
| 54 | $! | ||
| 55 | $! Check Which Architecture We Are Using. | ||
| 56 | $! | ||
| 57 | $ IF (F$GETSYI("CPU").GE.128) | ||
| 58 | $ THEN | ||
| 59 | $! | ||
| 60 | $! The Architecture Is AXP | ||
| 61 | $! | ||
| 62 | $ ARCH := AXP | ||
| 63 | $! | ||
| 64 | $! Else... | ||
| 65 | $! | ||
| 66 | $ ELSE | ||
| 67 | $! | ||
| 68 | $! The Architecture Is VAX. | ||
| 69 | $! | ||
| 70 | $ ARCH := VAX | ||
| 71 | $! | ||
| 72 | $! End The Architecture Check. | ||
| 73 | $! | ||
| 74 | $ ENDIF | ||
| 75 | $! | ||
| 76 | $! Define The Different Encryption Types. | ||
| 77 | $! | ||
| 78 | $ ENCRYPT_TYPES = "Basic,SHA1,RAND,DES,AES,DSA,RSA,DH" | ||
| 79 | $! | ||
| 80 | $! Check To Make Sure We Have Valid Command Line Parameters. | ||
| 81 | $! | ||
| 82 | $ GOSUB CHECK_OPTIONS | ||
| 83 | $! | ||
| 84 | $! Initialise logical names and such | ||
| 85 | $! | ||
| 86 | $ GOSUB INITIALISE | ||
| 87 | $! | ||
| 88 | $! Tell The User What Kind of Machine We Run On. | ||
| 89 | $! | ||
| 90 | $ WRITE SYS$OUTPUT "Compiling On A ",ARCH," Machine." | ||
| 91 | $! | ||
| 92 | $! Define The OBJ Directory. | ||
| 93 | $! | ||
| 94 | $ OBJ_DIR := SYS$DISK:[-.'ARCH'.OBJ.CRYPTO] | ||
| 95 | $! | ||
| 96 | $! Check To See If The Architecture Specific OBJ Directory Exists. | ||
| 97 | $! | ||
| 98 | $ IF (F$PARSE(OBJ_DIR).EQS."") | ||
| 99 | $ THEN | ||
| 100 | $! | ||
| 101 | $! It Dosen't Exist, So Create It. | ||
| 102 | $! | ||
| 103 | $ CREATE/DIR 'OBJ_DIR' | ||
| 104 | $! | ||
| 105 | $! End The Architecture Specific OBJ Directory Check. | ||
| 106 | $! | ||
| 107 | $ ENDIF | ||
| 108 | $! | ||
| 109 | $! Define The EXE Directory. | ||
| 110 | $! | ||
| 111 | $ EXE_DIR := SYS$DISK:[-.'ARCH'.EXE.CRYPTO] | ||
| 112 | $! | ||
| 113 | $! Check To See If The Architecture Specific Directory Exists. | ||
| 114 | $! | ||
| 115 | $ IF (F$PARSE(EXE_DIR).EQS."") | ||
| 116 | $ THEN | ||
| 117 | $! | ||
| 118 | $! It Dosen't Exist, So Create It. | ||
| 119 | $! | ||
| 120 | $ CREATE/DIRECTORY 'EXE_DIR' | ||
| 121 | $! | ||
| 122 | $! End The Architecture Specific Directory Check. | ||
| 123 | $! | ||
| 124 | $ ENDIF | ||
| 125 | $! | ||
| 126 | $! Define The Library Name. | ||
| 127 | $! | ||
| 128 | $ LIB_NAME := 'EXE_DIR'LIBCRYPTO.OLB | ||
| 129 | $! | ||
| 130 | $! Define The CRYPTO-LIB We Are To Use. | ||
| 131 | $! | ||
| 132 | $ CRYPTO_LIB := 'EXE_DIR'LIBCRYPTO.OLB | ||
| 133 | $! | ||
| 134 | $! Check To See If We Already Have A "[.xxx.EXE.CRYPTO]LIBCRYPTO.OLB" Library... | ||
| 135 | $! | ||
| 136 | $ IF (F$SEARCH(LIB_NAME).EQS."") | ||
| 137 | $ THEN | ||
| 138 | $! | ||
| 139 | $! Guess Not, Create The Library. | ||
| 140 | $! | ||
| 141 | $ LIBRARY/CREATE/OBJECT 'LIB_NAME' | ||
| 142 | $! | ||
| 143 | $! End The Library Check. | ||
| 144 | $! | ||
| 145 | $ ENDIF | ||
| 146 | $! | ||
| 147 | $! Build our options file for the application | ||
| 148 | $! | ||
| 149 | $ GOSUB CHECK_OPT_FILE | ||
| 150 | $! | ||
| 151 | $! Define The Different Encryption "library" Strings. | ||
| 152 | $! | ||
| 153 | $ LIB_ = "fips,fips_err_wrapper" | ||
| 154 | $ LIB_SHA1 = "fips_sha1dgst,fips_sha1_selftest" | ||
| 155 | $ LIB_RAND = "fips_rand" | ||
| 156 | $ LIB_DES = "fips_des_enc,fips_des_selftest,fips_set_key" | ||
| 157 | $ LIB_AES = "fips_aes_core,fips_aes_selftest" | ||
| 158 | $ LIB_DSA = "fips_dsa_ossl,fips_dsa_gen,fips_dsa_selftest" | ||
| 159 | $ LIB_RSA = "fips_rsa_eay,fips_rsa_gen,fips_rsa_selftest" | ||
| 160 | $ LIB_DH = "fips_dh_check,fips_dh_gen,fips_dh_key" | ||
| 161 | $! | ||
| 162 | $! Setup exceptional compilations | ||
| 163 | $! | ||
| 164 | $ COMPILEWITH_CC3 = ",bss_rtcp," | ||
| 165 | $ COMPILEWITH_CC4 = ",a_utctm,bss_log,o_time," | ||
| 166 | $ COMPILEWITH_CC5 = ",md2_dgst,md4_dgst,md5_dgst,mdc2dgst," + - | ||
| 167 | "sha_dgst,sha1dgst,rmd_dgst,bf_enc," | ||
| 168 | $! | ||
| 169 | $! Figure Out What Other Modules We Are To Build. | ||
| 170 | $! | ||
| 171 | $ BUILD_SET: | ||
| 172 | $! | ||
| 173 | $! Define A Module Counter. | ||
| 174 | $! | ||
| 175 | $ MODULE_COUNTER = 0 | ||
| 176 | $! | ||
| 177 | $! Top Of The Loop. | ||
| 178 | $! | ||
| 179 | $ MODULE_NEXT: | ||
| 180 | $! | ||
| 181 | $! Extract The Module Name From The Encryption List. | ||
| 182 | $! | ||
| 183 | $ MODULE_NAME = F$ELEMENT(MODULE_COUNTER,",",ENCRYPT_TYPES) | ||
| 184 | $ IF MODULE_NAME.EQS."Basic" THEN MODULE_NAME = "" | ||
| 185 | $ MODULE_NAME1 = MODULE_NAME | ||
| 186 | $! | ||
| 187 | $! Check To See If We Are At The End Of The Module List. | ||
| 188 | $! | ||
| 189 | $ IF (MODULE_NAME.EQS.",") | ||
| 190 | $ THEN | ||
| 191 | $! | ||
| 192 | $! We Are At The End Of The Module List, Go To MODULE_DONE. | ||
| 193 | $! | ||
| 194 | $ GOTO MODULE_DONE | ||
| 195 | $! | ||
| 196 | $! End The Module List Check. | ||
| 197 | $! | ||
| 198 | $ ENDIF | ||
| 199 | $! | ||
| 200 | $! Increment The Moudle Counter. | ||
| 201 | $! | ||
| 202 | $ MODULE_COUNTER = MODULE_COUNTER + 1 | ||
| 203 | $! | ||
| 204 | $! Create The Library and Apps Module Names. | ||
| 205 | $! | ||
| 206 | $ LIB_MODULE = "LIB_" + MODULE_NAME | ||
| 207 | $ APPS_MODULE = "APPS_" + MODULE_NAME | ||
| 208 | $ IF (MODULE_NAME.EQS."ASN1_2") | ||
| 209 | $ THEN | ||
| 210 | $ MODULE_NAME = "ASN1" | ||
| 211 | $ ENDIF | ||
| 212 | $ IF (MODULE_NAME.EQS."EVP_2") | ||
| 213 | $ THEN | ||
| 214 | $ MODULE_NAME = "EVP" | ||
| 215 | $ ENDIF | ||
| 216 | $! | ||
| 217 | $! Set state (can be LIB and APPS) | ||
| 218 | $! | ||
| 219 | $ STATE = "LIB" | ||
| 220 | $ IF BUILDALL .EQS. "APPS" THEN STATE = "APPS" | ||
| 221 | $! | ||
| 222 | $! Check if the library module name actually is defined | ||
| 223 | $! | ||
| 224 | $ IF F$TYPE('LIB_MODULE') .EQS. "" | ||
| 225 | $ THEN | ||
| 226 | $ WRITE SYS$ERROR "" | ||
| 227 | $ WRITE SYS$ERROR "The module ",MODULE_NAME," does not exist. Continuing..." | ||
| 228 | $ WRITE SYS$ERROR "" | ||
| 229 | $ GOTO MODULE_NEXT | ||
| 230 | $ ENDIF | ||
| 231 | $! | ||
| 232 | $! Top Of The Module Loop. | ||
| 233 | $! | ||
| 234 | $ MODULE_AGAIN: | ||
| 235 | $! | ||
| 236 | $! Tell The User What Module We Are Building. | ||
| 237 | $! | ||
| 238 | $ IF (MODULE_NAME1.NES."") | ||
| 239 | $ THEN | ||
| 240 | $ IF STATE .EQS. "LIB" | ||
| 241 | $ THEN | ||
| 242 | $ WRITE SYS$OUTPUT "Compiling The ",MODULE_NAME1," Library Files. (",BUILDALL,",",STATE,")" | ||
| 243 | $ ELSE IF F$TYPE('APPS_MODULE') .NES. "" | ||
| 244 | $ THEN | ||
| 245 | $ WRITE SYS$OUTPUT "Compiling The ",MODULE_NAME1," Applications. (",BUILDALL,",",STATE,")" | ||
| 246 | $ ENDIF | ||
| 247 | $ ENDIF | ||
| 248 | $ ENDIF | ||
| 249 | $! | ||
| 250 | $! Define A File Counter And Set It To "0". | ||
| 251 | $! | ||
| 252 | $ FILE_COUNTER = 0 | ||
| 253 | $ APPLICATION = "" | ||
| 254 | $ APPLICATION_COUNTER = 0 | ||
| 255 | $! | ||
| 256 | $! Top Of The File Loop. | ||
| 257 | $! | ||
| 258 | $ NEXT_FILE: | ||
| 259 | $! | ||
| 260 | $! Look in the LIB_MODULE is we're in state LIB | ||
| 261 | $! | ||
| 262 | $ IF STATE .EQS. "LIB" | ||
| 263 | $ THEN | ||
| 264 | $! | ||
| 265 | $! O.K, Extract The File Name From The File List. | ||
| 266 | $! | ||
| 267 | $ FILE_NAME = F$ELEMENT(FILE_COUNTER,",",'LIB_MODULE') | ||
| 268 | $! | ||
| 269 | $! else | ||
| 270 | $! | ||
| 271 | $ ELSE | ||
| 272 | $ FILE_NAME = "," | ||
| 273 | $! | ||
| 274 | $ IF F$TYPE('APPS_MODULE') .NES. "" | ||
| 275 | $ THEN | ||
| 276 | $! | ||
| 277 | $! Extract The File Name From The File List. | ||
| 278 | $! This part is a bit more complicated. | ||
| 279 | $! | ||
| 280 | $ IF APPLICATION .EQS. "" | ||
| 281 | $ THEN | ||
| 282 | $ APPLICATION = F$ELEMENT(APPLICATION_COUNTER,";",'APPS_MODULE') | ||
| 283 | $ APPLICATION_COUNTER = APPLICATION_COUNTER + 1 | ||
| 284 | $ APPLICATION_OBJECTS = F$ELEMENT(1,"/",APPLICATION) | ||
| 285 | $ APPLICATION = F$ELEMENT(0,"/",APPLICATION) | ||
| 286 | $ FILE_COUNTER = 0 | ||
| 287 | $ ENDIF | ||
| 288 | $ | ||
| 289 | $! WRITE SYS$OUTPUT "DEBUG: SHOW SYMBOL APPLICATION*" | ||
| 290 | $! SHOW SYMBOL APPLICATION* | ||
| 291 | $! | ||
| 292 | $ IF APPLICATION .NES. ";" | ||
| 293 | $ THEN | ||
| 294 | $ FILE_NAME = F$ELEMENT(FILE_COUNTER,",",APPLICATION_OBJECTS) | ||
| 295 | $ IF FILE_NAME .EQS. "," | ||
| 296 | $ THEN | ||
| 297 | $ APPLICATION = "" | ||
| 298 | $ GOTO NEXT_FILE | ||
| 299 | $ ENDIF | ||
| 300 | $ ENDIF | ||
| 301 | $ ENDIF | ||
| 302 | $ ENDIF | ||
| 303 | $! | ||
| 304 | $! Check To See If We Are At The End Of The File List. | ||
| 305 | $! | ||
| 306 | $ IF (FILE_NAME.EQS.",") | ||
| 307 | $ THEN | ||
| 308 | $! | ||
| 309 | $! We Are At The End Of The File List, Change State Or Goto FILE_DONE. | ||
| 310 | $! | ||
| 311 | $ IF STATE .EQS. "LIB" .AND. BUILDALL .NES. "LIBRARY" | ||
| 312 | $ THEN | ||
| 313 | $ STATE = "APPS" | ||
| 314 | $ GOTO MODULE_AGAIN | ||
| 315 | $ ELSE | ||
| 316 | $ GOTO FILE_DONE | ||
| 317 | $ ENDIF | ||
| 318 | $! | ||
| 319 | $! End The File List Check. | ||
| 320 | $! | ||
| 321 | $ ENDIF | ||
| 322 | $! | ||
| 323 | $! Increment The Counter. | ||
| 324 | $! | ||
| 325 | $ FILE_COUNTER = FILE_COUNTER + 1 | ||
| 326 | $! | ||
| 327 | $! Create The Source File Name. | ||
| 328 | $! | ||
| 329 | $ TMP_FILE_NAME = F$ELEMENT(1,"]",FILE_NAME) | ||
| 330 | $ IF TMP_FILE_NAME .EQS. "]" THEN TMP_FILE_NAME = FILE_NAME | ||
| 331 | $ IF F$ELEMENT(0,".",TMP_FILE_NAME) .EQS. TMP_FILE_NAME THEN - | ||
| 332 | FILE_NAME = FILE_NAME + ".c" | ||
| 333 | $ IF (MODULE_NAME.NES."") | ||
| 334 | $ THEN | ||
| 335 | $ SOURCE_FILE = "SYS$DISK:[." + MODULE_NAME+ "]" + FILE_NAME | ||
| 336 | $ ELSE | ||
| 337 | $ SOURCE_FILE = "SYS$DISK:[]" + FILE_NAME | ||
| 338 | $ ENDIF | ||
| 339 | $ SOURCE_FILE = SOURCE_FILE - "][" | ||
| 340 | $! | ||
| 341 | $! Create The Object File Name. | ||
| 342 | $! | ||
| 343 | $ OBJECT_FILE = OBJ_DIR + F$PARSE(FILE_NAME,,,"NAME","SYNTAX_ONLY") + ".OBJ" | ||
| 344 | $ ON WARNING THEN GOTO NEXT_FILE | ||
| 345 | $! | ||
| 346 | $! Check To See If The File We Want To Compile Is Actually There. | ||
| 347 | $! | ||
| 348 | $ IF (F$SEARCH(SOURCE_FILE).EQS."") | ||
| 349 | $ THEN | ||
| 350 | $! | ||
| 351 | $! Tell The User That The File Doesn't Exist. | ||
| 352 | $! | ||
| 353 | $ WRITE SYS$OUTPUT "" | ||
| 354 | $ WRITE SYS$OUTPUT "The File ",SOURCE_FILE," Doesn't Exist." | ||
| 355 | $ WRITE SYS$OUTPUT "" | ||
| 356 | $! | ||
| 357 | $! Exit The Build. | ||
| 358 | $! | ||
| 359 | $ GOTO EXIT | ||
| 360 | $! | ||
| 361 | $! End The File Exist Check. | ||
| 362 | $! | ||
| 363 | $ ENDIF | ||
| 364 | $! | ||
| 365 | $! Tell The User We Are Compiling The File. | ||
| 366 | $! | ||
| 367 | $ IF (MODULE_NAME.EQS."") | ||
| 368 | $ THEN | ||
| 369 | $ WRITE SYS$OUTPUT "Compiling The ",FILE_NAME," File. (",BUILDALL,",",STATE,")" | ||
| 370 | $ ENDIF | ||
| 371 | $ IF (MODULE_NAME.NES."") | ||
| 372 | $ THEN | ||
| 373 | $ WRITE SYS$OUTPUT " ",FILE_NAME,"" | ||
| 374 | $ ENDIF | ||
| 375 | $! | ||
| 376 | $! Compile The File. | ||
| 377 | $! | ||
| 378 | $ ON ERROR THEN GOTO NEXT_FILE | ||
| 379 | $ FILE_NAME0 = F$ELEMENT(0,".",FILE_NAME) | ||
| 380 | $ IF FILE_NAME - ".mar" .NES. FILE_NAME | ||
| 381 | $ THEN | ||
| 382 | $ MACRO/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 383 | $ ELSE | ||
| 384 | $ IF COMPILEWITH_CC3 - FILE_NAME0 .NES. COMPILEWITH_CC3 | ||
| 385 | $ THEN | ||
| 386 | $ CC3/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 387 | $ ELSE | ||
| 388 | $ IF COMPILEWITH_CC4 - FILE_NAME0 .NES. COMPILEWITH_CC4 | ||
| 389 | $ THEN | ||
| 390 | $ CC4/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 391 | $ ELSE | ||
| 392 | $ IF COMPILEWITH_CC5 - FILE_NAME0 .NES. COMPILEWITH_CC5 | ||
| 393 | $ THEN | ||
| 394 | $ CC5/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 395 | $ ELSE | ||
| 396 | $ CC/OBJECT='OBJECT_FILE' 'SOURCE_FILE' | ||
| 397 | $ ENDIF | ||
| 398 | $ ENDIF | ||
| 399 | $ ENDIF | ||
| 400 | $ ENDIF | ||
| 401 | $ IF STATE .EQS. "LIB" | ||
| 402 | $ THEN | ||
| 403 | $! | ||
| 404 | $! Add It To The Library. | ||
| 405 | $! | ||
| 406 | $ LIBRARY/REPLACE 'LIB_NAME' 'OBJECT_FILE' | ||
| 407 | $! | ||
| 408 | $! Time To Clean Up The Object File. | ||
| 409 | $! | ||
| 410 | $ DELETE 'OBJECT_FILE';* | ||
| 411 | $ ENDIF | ||
| 412 | $! | ||
| 413 | $! Go Back And Do It Again. | ||
| 414 | $! | ||
| 415 | $ GOTO NEXT_FILE | ||
| 416 | $! | ||
| 417 | $! All Done With This Library Part. | ||
| 418 | $! | ||
| 419 | $ FILE_DONE: | ||
| 420 | $! | ||
| 421 | $! Time To Build Some Applications | ||
| 422 | $! | ||
| 423 | $ IF F$TYPE('APPS_MODULE') .NES. "" .AND. BUILDALL .NES. "LIBRARY" | ||
| 424 | $ THEN | ||
| 425 | $ APPLICATION_COUNTER = 0 | ||
| 426 | $ NEXT_APPLICATION: | ||
| 427 | $ APPLICATION = F$ELEMENT(APPLICATION_COUNTER,";",'APPS_MODULE') | ||
| 428 | $ IF APPLICATION .EQS. ";" THEN GOTO APPLICATION_DONE | ||
| 429 | $ | ||
| 430 | $ APPLICATION_COUNTER = APPLICATION_COUNTER + 1 | ||
| 431 | $ APPLICATION_OBJECTS = F$ELEMENT(1,"/",APPLICATION) | ||
| 432 | $ APPLICATION = F$ELEMENT(0,"/",APPLICATION) | ||
| 433 | $ | ||
| 434 | $! WRITE SYS$OUTPUT "DEBUG: SHOW SYMBOL APPLICATION*" | ||
| 435 | $! SHOW SYMBOL APPLICATION* | ||
| 436 | $! | ||
| 437 | $! Tell the user what happens | ||
| 438 | $! | ||
| 439 | $ WRITE SYS$OUTPUT " ",APPLICATION,".exe" | ||
| 440 | $! | ||
| 441 | $! Link The Program. | ||
| 442 | $! | ||
| 443 | $ ON ERROR THEN GOTO NEXT_APPLICATION | ||
| 444 | $! | ||
| 445 | $! Check To See If We Are To Link With A Specific TCP/IP Library. | ||
| 446 | $! | ||
| 447 | $ IF (TCPIP_LIB.NES."") | ||
| 448 | $ THEN | ||
| 449 | $! | ||
| 450 | $! Link With A TCP/IP Library. | ||
| 451 | $! | ||
| 452 | $ LINK/'DEBUGGER'/'TRACEBACK'/EXE='EXE_DIR''APPLICATION'.EXE - | ||
| 453 | 'OBJ_DIR''APPLICATION_OBJECTS', - | ||
| 454 | 'CRYPTO_LIB'/LIBRARY, - | ||
| 455 | 'TCPIP_LIB','OPT_FILE'/OPTION | ||
| 456 | $! | ||
| 457 | $! Else... | ||
| 458 | $! | ||
| 459 | $ ELSE | ||
| 460 | $! | ||
| 461 | $! Don't Link With A TCP/IP Library. | ||
| 462 | $! | ||
| 463 | $ LINK/'DEBUGGER'/'TRACEBACK'/EXE='EXE_DIR''APPLICATION'.EXE - | ||
| 464 | 'OBJ_DIR''APPLICATION_OBJECTS',- | ||
| 465 | 'CRYPTO_LIB'/LIBRARY, - | ||
| 466 | 'OPT_FILE'/OPTION | ||
| 467 | $! | ||
| 468 | $! End The TCP/IP Library Check. | ||
| 469 | $! | ||
| 470 | $ ENDIF | ||
| 471 | $ GOTO NEXT_APPLICATION | ||
| 472 | $ APPLICATION_DONE: | ||
| 473 | $ ENDIF | ||
| 474 | $! | ||
| 475 | $! Go Back And Get The Next Module. | ||
| 476 | $! | ||
| 477 | $ GOTO MODULE_NEXT | ||
| 478 | $! | ||
| 479 | $! All Done With This Module. | ||
| 480 | $! | ||
| 481 | $ MODULE_DONE: | ||
| 482 | $! | ||
| 483 | $! Tell The User That We Are All Done. | ||
| 484 | $! | ||
| 485 | $ WRITE SYS$OUTPUT "All Done..." | ||
| 486 | $ EXIT: | ||
| 487 | $ GOSUB CLEANUP | ||
| 488 | $ EXIT | ||
| 489 | $! | ||
| 490 | $! Check For The Link Option FIle. | ||
| 491 | $! | ||
| 492 | $ CHECK_OPT_FILE: | ||
| 493 | $! | ||
| 494 | $! Check To See If We Need To Make A VAX C Option File. | ||
| 495 | $! | ||
| 496 | $ IF (COMPILER.EQS."VAXC") | ||
| 497 | $ THEN | ||
| 498 | $! | ||
| 499 | $! Check To See If We Already Have A VAX C Linker Option File. | ||
| 500 | $! | ||
| 501 | $ IF (F$SEARCH(OPT_FILE).EQS."") | ||
| 502 | $ THEN | ||
| 503 | $! | ||
| 504 | $! We Need A VAX C Linker Option File. | ||
| 505 | $! | ||
| 506 | $ CREATE 'OPT_FILE' | ||
| 507 | $DECK | ||
| 508 | ! | ||
| 509 | ! Default System Options File To Link Agianst | ||
| 510 | ! The Sharable VAX C Runtime Library. | ||
| 511 | ! | ||
| 512 | SYS$SHARE:VAXCRTL.EXE/SHARE | ||
| 513 | $EOD | ||
| 514 | $! | ||
| 515 | $! End The Option File Check. | ||
| 516 | $! | ||
| 517 | $ ENDIF | ||
| 518 | $! | ||
| 519 | $! End The VAXC Check. | ||
| 520 | $! | ||
| 521 | $ ENDIF | ||
| 522 | $! | ||
| 523 | $! Check To See If We Need A GNU C Option File. | ||
| 524 | $! | ||
| 525 | $ IF (COMPILER.EQS."GNUC") | ||
| 526 | $ THEN | ||
| 527 | $! | ||
| 528 | $! Check To See If We Already Have A GNU C Linker Option File. | ||
| 529 | $! | ||
| 530 | $ IF (F$SEARCH(OPT_FILE).EQS."") | ||
| 531 | $ THEN | ||
| 532 | $! | ||
| 533 | $! We Need A GNU C Linker Option File. | ||
| 534 | $! | ||
| 535 | $ CREATE 'OPT_FILE' | ||
| 536 | $DECK | ||
| 537 | ! | ||
| 538 | ! Default System Options File To Link Agianst | ||
| 539 | ! The Sharable C Runtime Library. | ||
| 540 | ! | ||
| 541 | GNU_CC:[000000]GCCLIB/LIBRARY | ||
| 542 | SYS$SHARE:VAXCRTL/SHARE | ||
| 543 | $EOD | ||
| 544 | $! | ||
| 545 | $! End The Option File Check. | ||
| 546 | $! | ||
| 547 | $ ENDIF | ||
| 548 | $! | ||
| 549 | $! End The GNU C Check. | ||
| 550 | $! | ||
| 551 | $ ENDIF | ||
| 552 | $! | ||
| 553 | $! Check To See If We Need A DEC C Option File. | ||
| 554 | $! | ||
| 555 | $ IF (COMPILER.EQS."DECC") | ||
| 556 | $ THEN | ||
| 557 | $! | ||
| 558 | $! Check To See If We Already Have A DEC C Linker Option File. | ||
| 559 | $! | ||
| 560 | $ IF (F$SEARCH(OPT_FILE).EQS."") | ||
| 561 | $ THEN | ||
| 562 | $! | ||
| 563 | $! Figure Out If We Need An AXP Or A VAX Linker Option File. | ||
| 564 | $! | ||
| 565 | $ IF ARCH .EQS. "VAX" | ||
| 566 | $ THEN | ||
| 567 | $! | ||
| 568 | $! We Need A DEC C Linker Option File For VAX. | ||
| 569 | $! | ||
| 570 | $ CREATE 'OPT_FILE' | ||
| 571 | $DECK | ||
| 572 | ! | ||
| 573 | ! Default System Options File To Link Agianst | ||
| 574 | ! The Sharable DEC C Runtime Library. | ||
| 575 | ! | ||
| 576 | SYS$SHARE:DECC$SHR.EXE/SHARE | ||
| 577 | $EOD | ||
| 578 | $! | ||
| 579 | $! Else... | ||
| 580 | $! | ||
| 581 | $ ELSE | ||
| 582 | $! | ||
| 583 | $! Create The AXP Linker Option File. | ||
| 584 | $! | ||
| 585 | $ CREATE 'OPT_FILE' | ||
| 586 | $DECK | ||
| 587 | ! | ||
| 588 | ! Default System Options File For AXP To Link Agianst | ||
| 589 | ! The Sharable C Runtime Library. | ||
| 590 | ! | ||
| 591 | SYS$SHARE:CMA$OPEN_LIB_SHR/SHARE | ||
| 592 | SYS$SHARE:CMA$OPEN_RTL/SHARE | ||
| 593 | $EOD | ||
| 594 | $! | ||
| 595 | $! End The VAX/AXP DEC C Option File Check. | ||
| 596 | $! | ||
| 597 | $ ENDIF | ||
| 598 | $! | ||
| 599 | $! End The Option File Search. | ||
| 600 | $! | ||
| 601 | $ ENDIF | ||
| 602 | $! | ||
| 603 | $! End The DEC C Check. | ||
| 604 | $! | ||
| 605 | $ ENDIF | ||
| 606 | $! | ||
| 607 | $! Tell The User What Linker Option File We Are Using. | ||
| 608 | $! | ||
| 609 | $ WRITE SYS$OUTPUT "Using Linker Option File ",OPT_FILE,"." | ||
| 610 | $! | ||
| 611 | $! Time To RETURN. | ||
| 612 | $! | ||
| 613 | $ RETURN | ||
| 614 | $! | ||
| 615 | $! Check The User's Options. | ||
| 616 | $! | ||
| 617 | $ CHECK_OPTIONS: | ||
| 618 | $! | ||
| 619 | $! Check To See If P1 Is Blank. | ||
| 620 | $! | ||
| 621 | $ IF (P1.EQS."ALL") | ||
| 622 | $ THEN | ||
| 623 | $! | ||
| 624 | $! P1 Is Blank, So Build Everything. | ||
| 625 | $! | ||
| 626 | $ BUILDALL = "TRUE" | ||
| 627 | $! | ||
| 628 | $! Else... | ||
| 629 | $! | ||
| 630 | $ ELSE | ||
| 631 | $! | ||
| 632 | $! Else, Check To See If P1 Has A Valid Arguement. | ||
| 633 | $! | ||
| 634 | $ IF (P1.EQS."LIBRARY").OR.(P1.EQS."APPS") | ||
| 635 | $ THEN | ||
| 636 | $! | ||
| 637 | $! A Valid Arguement. | ||
| 638 | $! | ||
| 639 | $ BUILDALL = P1 | ||
| 640 | $! | ||
| 641 | $! Else... | ||
| 642 | $! | ||
| 643 | $ ELSE | ||
| 644 | $! | ||
| 645 | $! Tell The User We Don't Know What They Want. | ||
| 646 | $! | ||
| 647 | $ WRITE SYS$OUTPUT "" | ||
| 648 | $ WRITE SYS$OUTPUT "The Option ",P1," Is Invalid. The Valid Options Are:" | ||
| 649 | $ WRITE SYS$OUTPUT "" | ||
| 650 | $ WRITE SYS$OUTPUT " ALL : Just Build Everything." | ||
| 651 | $ WRITE SYS$OUTPUT " LIBRARY : To Compile Just The [.xxx.EXE.CRYPTO]LIBCRYPTO.OLB Library." | ||
| 652 | $ WRITE SYS$OUTPUT " APPS : To Compile Just The [.xxx.EXE.CRYPTO]*.EXE Programs." | ||
| 653 | $ WRITE SYS$OUTPUT "" | ||
| 654 | $ WRITE SYS$OUTPUT " Where 'xxx' Stands For:" | ||
| 655 | $ WRITE SYS$OUTPUT "" | ||
| 656 | $ WRITE SYS$OUTPUT " AXP : Alpha Architecture." | ||
| 657 | $ WRITE SYS$OUTPUT " VAX : VAX Architecture." | ||
| 658 | $ WRITE SYS$OUTPUT "" | ||
| 659 | $! | ||
| 660 | $! Time To EXIT. | ||
| 661 | $! | ||
| 662 | $ EXIT | ||
| 663 | $! | ||
| 664 | $! End The Valid Arguement Check. | ||
| 665 | $! | ||
| 666 | $ ENDIF | ||
| 667 | $! | ||
| 668 | $! End The P1 Check. | ||
| 669 | $! | ||
| 670 | $ ENDIF | ||
| 671 | $! | ||
| 672 | $! Check To See If P2 Is Blank. | ||
| 673 | $! | ||
| 674 | $ IF (P2.EQS."NODEBUG") | ||
| 675 | $ THEN | ||
| 676 | $! | ||
| 677 | $! P2 Is NODEBUG, So Compile Without The Debugger Information. | ||
| 678 | $! | ||
| 679 | $ DEBUGGER = "NODEBUG" | ||
| 680 | $ TRACEBACK = "NOTRACEBACK" | ||
| 681 | $ GCC_OPTIMIZE = "OPTIMIZE" | ||
| 682 | $ CC_OPTIMIZE = "OPTIMIZE" | ||
| 683 | $ MACRO_OPTIMIZE = "OPTIMIZE" | ||
| 684 | $ WRITE SYS$OUTPUT "No Debugger Information Will Be Produced During Compile." | ||
| 685 | $ WRITE SYS$OUTPUT "Compiling With Compiler Optimization." | ||
| 686 | $ ELSE | ||
| 687 | $! | ||
| 688 | $! Check To See If We Are To Compile With Debugger Information. | ||
| 689 | $! | ||
| 690 | $ IF (P2.EQS."DEBUG") | ||
| 691 | $ THEN | ||
| 692 | $! | ||
| 693 | $! Compile With Debugger Information. | ||
| 694 | $! | ||
| 695 | $ DEBUGGER = "DEBUG" | ||
| 696 | $ TRACEBACK = "TRACEBACK" | ||
| 697 | $ GCC_OPTIMIZE = "NOOPTIMIZE" | ||
| 698 | $ CC_OPTIMIZE = "NOOPTIMIZE" | ||
| 699 | $ MACRO_OPTIMIZE = "NOOPTIMIZE" | ||
| 700 | $ WRITE SYS$OUTPUT "Debugger Information Will Be Produced During Compile." | ||
| 701 | $ WRITE SYS$OUTPUT "Compiling Without Compiler Optimization." | ||
| 702 | $ ELSE | ||
| 703 | $! | ||
| 704 | $! They Entered An Invalid Option.. | ||
| 705 | $! | ||
| 706 | $ WRITE SYS$OUTPUT "" | ||
| 707 | $ WRITE SYS$OUTPUT "The Option ",P2," Is Invalid. The Valid Options Are:" | ||
| 708 | $ WRITE SYS$OUTPUT "" | ||
| 709 | $ WRITE SYS$OUTPUT " DEBUG : Compile With The Debugger Information." | ||
| 710 | $ WRITE SYS$OUTPUT " NODEBUG : Compile Without The Debugger Information." | ||
| 711 | $ WRITE SYS$OUTPUT "" | ||
| 712 | $! | ||
| 713 | $! Time To EXIT. | ||
| 714 | $! | ||
| 715 | $ EXIT | ||
| 716 | $! | ||
| 717 | $! End The Valid Arguement Check. | ||
| 718 | $! | ||
| 719 | $ ENDIF | ||
| 720 | $! | ||
| 721 | $! End The P2 Check. | ||
| 722 | $! | ||
| 723 | $ ENDIF | ||
| 724 | $! | ||
| 725 | $! Special Threads For OpenVMS v7.1 Or Later | ||
| 726 | $! | ||
| 727 | $! Written By: Richard Levitte | ||
| 728 | $! richard@levitte.org | ||
| 729 | $! | ||
| 730 | $! | ||
| 731 | $! Check To See If We Have A Option For P5. | ||
| 732 | $! | ||
| 733 | $ IF (P5.EQS."") | ||
| 734 | $ THEN | ||
| 735 | $! | ||
| 736 | $! Get The Version Of VMS We Are Using. | ||
| 737 | $! | ||
| 738 | $ ISSEVEN := | ||
| 739 | $ TMP = F$ELEMENT(0,"-",F$EXTRACT(1,4,F$GETSYI("VERSION"))) | ||
| 740 | $ TMP = F$INTEGER(F$ELEMENT(0,".",TMP)+F$ELEMENT(1,".",TMP)) | ||
| 741 | $! | ||
| 742 | $! Check To See If The VMS Version Is v7.1 Or Later. | ||
| 743 | $! | ||
| 744 | $ IF (TMP.GE.71) | ||
| 745 | $ THEN | ||
| 746 | $! | ||
| 747 | $! We Have OpenVMS v7.1 Or Later, So Use The Special Threads. | ||
| 748 | $! | ||
| 749 | $ ISSEVEN := ,PTHREAD_USE_D4 | ||
| 750 | $! | ||
| 751 | $! End The VMS Version Check. | ||
| 752 | $! | ||
| 753 | $ ENDIF | ||
| 754 | $! | ||
| 755 | $! End The P5 Check. | ||
| 756 | $! | ||
| 757 | $ ENDIF | ||
| 758 | $! | ||
| 759 | $! Check To See If P3 Is Blank. | ||
| 760 | $! | ||
| 761 | $ IF (P3.EQS."") | ||
| 762 | $ THEN | ||
| 763 | $! | ||
| 764 | $! O.K., The User Didn't Specify A Compiler, Let's Try To | ||
| 765 | $! Find Out Which One To Use. | ||
| 766 | $! | ||
| 767 | $! Check To See If We Have GNU C. | ||
| 768 | $! | ||
| 769 | $ IF (F$TRNLNM("GNU_CC").NES."") | ||
| 770 | $ THEN | ||
| 771 | $! | ||
| 772 | $! Looks Like GNUC, Set To Use GNUC. | ||
| 773 | $! | ||
| 774 | $ P3 = "GNUC" | ||
| 775 | $! | ||
| 776 | $! Else... | ||
| 777 | $! | ||
| 778 | $ ELSE | ||
| 779 | $! | ||
| 780 | $! Check To See If We Have VAXC Or DECC. | ||
| 781 | $! | ||
| 782 | $ IF (ARCH.EQS."AXP").OR.(F$TRNLNM("DECC$CC_DEFAULT").NES."") | ||
| 783 | $ THEN | ||
| 784 | $! | ||
| 785 | $! Looks Like DECC, Set To Use DECC. | ||
| 786 | $! | ||
| 787 | $ P3 = "DECC" | ||
| 788 | $! | ||
| 789 | $! Else... | ||
| 790 | $! | ||
| 791 | $ ELSE | ||
| 792 | $! | ||
| 793 | $! Looks Like VAXC, Set To Use VAXC. | ||
| 794 | $! | ||
| 795 | $ P3 = "VAXC" | ||
| 796 | $! | ||
| 797 | $! End The VAXC Compiler Check. | ||
| 798 | $! | ||
| 799 | $ ENDIF | ||
| 800 | $! | ||
| 801 | $! End The DECC & VAXC Compiler Check. | ||
| 802 | $! | ||
| 803 | $ ENDIF | ||
| 804 | $! | ||
| 805 | $! End The Compiler Check. | ||
| 806 | $! | ||
| 807 | $ ENDIF | ||
| 808 | $! | ||
| 809 | $! Check To See If We Have A Option For P4. | ||
| 810 | $! | ||
| 811 | $ IF (P4.EQS."") | ||
| 812 | $ THEN | ||
| 813 | $! | ||
| 814 | $! Find out what socket library we have available | ||
| 815 | $! | ||
| 816 | $ IF F$PARSE("SOCKETSHR:") .NES. "" | ||
| 817 | $ THEN | ||
| 818 | $! | ||
| 819 | $! We have SOCKETSHR, and it is my opinion that it's the best to use. | ||
| 820 | $! | ||
| 821 | $ P4 = "SOCKETSHR" | ||
| 822 | $! | ||
| 823 | $! Tell the user | ||
| 824 | $! | ||
| 825 | $ WRITE SYS$OUTPUT "Using SOCKETSHR for TCP/IP" | ||
| 826 | $! | ||
| 827 | $! Else, let's look for something else | ||
| 828 | $! | ||
| 829 | $ ELSE | ||
| 830 | $! | ||
| 831 | $! Like UCX (the reason to do this before Multinet is that the UCX | ||
| 832 | $! emulation is easier to use...) | ||
| 833 | $! | ||
| 834 | $ IF F$TRNLNM("UCX$IPC_SHR") .NES. "" - | ||
| 835 | .OR. F$PARSE("SYS$SHARE:UCX$IPC_SHR.EXE") .NES. "" - | ||
| 836 | .OR. F$PARSE("SYS$LIBRARY:UCX$IPC.OLB") .NES. "" | ||
| 837 | $ THEN | ||
| 838 | $! | ||
| 839 | $! Last resort: a UCX or UCX-compatible library | ||
| 840 | $! | ||
| 841 | $ P4 = "UCX" | ||
| 842 | $! | ||
| 843 | $! Tell the user | ||
| 844 | $! | ||
| 845 | $ WRITE SYS$OUTPUT "Using UCX or an emulation thereof for TCP/IP" | ||
| 846 | $! | ||
| 847 | $! That was all... | ||
| 848 | $! | ||
| 849 | $ ENDIF | ||
| 850 | $ ENDIF | ||
| 851 | $ ENDIF | ||
| 852 | $! | ||
| 853 | $! Set Up Initial CC Definitions, Possibly With User Ones | ||
| 854 | $! | ||
| 855 | $ CCDEFS = "TCPIP_TYPE_''P4',DSO_VMS" | ||
| 856 | $ IF F$TYPE(USER_CCDEFS) .NES. "" THEN CCDEFS = CCDEFS + "," + USER_CCDEFS | ||
| 857 | $ CCEXTRAFLAGS = "" | ||
| 858 | $ IF F$TYPE(USER_CCFLAGS) .NES. "" THEN CCEXTRAFLAGS = USER_CCFLAGS | ||
| 859 | $ CCDISABLEWARNINGS = "LONGLONGTYPE,LONGLONGSUFX" | ||
| 860 | $ IF F$TYPE(USER_CCDISABLEWARNINGS) .NES. "" THEN - | ||
| 861 | CCDISABLEWARNINGS = CCDISABLEWARNINGS + "," + USER_CCDISABLEWARNINGS | ||
| 862 | $! | ||
| 863 | $! Check To See If The User Entered A Valid Paramter. | ||
| 864 | $! | ||
| 865 | $ IF (P3.EQS."VAXC").OR.(P3.EQS."DECC").OR.(P3.EQS."GNUC") | ||
| 866 | $ THEN | ||
| 867 | $! | ||
| 868 | $! Check To See If The User Wanted DECC. | ||
| 869 | $! | ||
| 870 | $ IF (P3.EQS."DECC") | ||
| 871 | $ THEN | ||
| 872 | $! | ||
| 873 | $! Looks Like DECC, Set To Use DECC. | ||
| 874 | $! | ||
| 875 | $ COMPILER = "DECC" | ||
| 876 | $! | ||
| 877 | $! Tell The User We Are Using DECC. | ||
| 878 | $! | ||
| 879 | $ WRITE SYS$OUTPUT "Using DECC 'C' Compiler." | ||
| 880 | $! | ||
| 881 | $! Use DECC... | ||
| 882 | $! | ||
| 883 | $ CC = "CC" | ||
| 884 | $ IF ARCH.EQS."VAX" .AND. F$TRNLNM("DECC$CC_DEFAULT").NES."/DECC" - | ||
| 885 | THEN CC = "CC/DECC" | ||
| 886 | $ CC = CC + "/''CC_OPTIMIZE'/''DEBUGGER'/STANDARD=ANSI89" + - | ||
| 887 | "/NOLIST/PREFIX=ALL" + - | ||
| 888 | "/INCLUDE=(SYS$DISK:[],SYS$DISK:[-],SYS$DISK:[-.CRYPTO])" + - | ||
| 889 | CCEXTRAFLAGS | ||
| 890 | $! | ||
| 891 | $! Define The Linker Options File Name. | ||
| 892 | $! | ||
| 893 | $ OPT_FILE = "SYS$DISK:[]VAX_DECC_OPTIONS.OPT" | ||
| 894 | $! | ||
| 895 | $! End DECC Check. | ||
| 896 | $! | ||
| 897 | $ ENDIF | ||
| 898 | $! | ||
| 899 | $! Check To See If We Are To Use VAXC. | ||
| 900 | $! | ||
| 901 | $ IF (P3.EQS."VAXC") | ||
| 902 | $ THEN | ||
| 903 | $! | ||
| 904 | $! Looks Like VAXC, Set To Use VAXC. | ||
| 905 | $! | ||
| 906 | $ COMPILER = "VAXC" | ||
| 907 | $! | ||
| 908 | $! Tell The User We Are Using VAX C. | ||
| 909 | $! | ||
| 910 | $ WRITE SYS$OUTPUT "Using VAXC 'C' Compiler." | ||
| 911 | $! | ||
| 912 | $! Compile Using VAXC. | ||
| 913 | $! | ||
| 914 | $ CC = "CC" | ||
| 915 | $ IF ARCH.EQS."AXP" | ||
| 916 | $ THEN | ||
| 917 | $ WRITE SYS$OUTPUT "There is no VAX C on Alpha!" | ||
| 918 | $ EXIT | ||
| 919 | $ ENDIF | ||
| 920 | $ IF F$TRNLNM("DECC$CC_DEFAULT").EQS."/DECC" THEN CC = "CC/VAXC" | ||
| 921 | $ CC = CC + "/''CC_OPTIMIZE'/''DEBUGGER'/NOLIST" + - | ||
| 922 | "/INCLUDE=(SYS$DISK:[],SYS$DISK:[-],SYS$DISK:[-.CRYPTO])" + - | ||
| 923 | CCEXTRAFLAGS | ||
| 924 | $ CCDEFS = """VAXC""," + CCDEFS | ||
| 925 | $! | ||
| 926 | $! Define <sys> As SYS$COMMON:[SYSLIB] | ||
| 927 | $! | ||
| 928 | $ DEFINE/NOLOG SYS SYS$COMMON:[SYSLIB] | ||
| 929 | $! | ||
| 930 | $! Define The Linker Options File Name. | ||
| 931 | $! | ||
| 932 | $ OPT_FILE = "SYS$DISK:[]VAX_VAXC_OPTIONS.OPT" | ||
| 933 | $! | ||
| 934 | $! End VAXC Check | ||
| 935 | $! | ||
| 936 | $ ENDIF | ||
| 937 | $! | ||
| 938 | $! Check To See If We Are To Use GNU C. | ||
| 939 | $! | ||
| 940 | $ IF (P3.EQS."GNUC") | ||
| 941 | $ THEN | ||
| 942 | $! | ||
| 943 | $! Looks Like GNUC, Set To Use GNUC. | ||
| 944 | $! | ||
| 945 | $ COMPILER = "GNUC" | ||
| 946 | $! | ||
| 947 | $! Tell The User We Are Using GNUC. | ||
| 948 | $! | ||
| 949 | $ WRITE SYS$OUTPUT "Using GNU 'C' Compiler." | ||
| 950 | $! | ||
| 951 | $! Use GNU C... | ||
| 952 | $! | ||
| 953 | $ CC = "GCC/NOCASE_HACK/''GCC_OPTIMIZE'/''DEBUGGER'/NOLIST" + - | ||
| 954 | "/INCLUDE=(SYS$DISK:[],SYS$DISK:[-],SYS$DISK:[-.CRYPTO])" + - | ||
| 955 | CCEXTRAFLAGS | ||
| 956 | $! | ||
| 957 | $! Define The Linker Options File Name. | ||
| 958 | $! | ||
| 959 | $ OPT_FILE = "SYS$DISK:[]VAX_GNUC_OPTIONS.OPT" | ||
| 960 | $! | ||
| 961 | $! End The GNU C Check. | ||
| 962 | $! | ||
| 963 | $ ENDIF | ||
| 964 | $! | ||
| 965 | $! Set up default defines | ||
| 966 | $! | ||
| 967 | $ CCDEFS = """FLAT_INC=1""," + CCDEFS | ||
| 968 | $! | ||
| 969 | $! Finish up the definition of CC. | ||
| 970 | $! | ||
| 971 | $ IF COMPILER .EQS. "DECC" | ||
| 972 | $ THEN | ||
| 973 | $ IF CCDISABLEWARNINGS .EQS. "" | ||
| 974 | $ THEN | ||
| 975 | $ CC4DISABLEWARNINGS = "DOLLARID" | ||
| 976 | $ ELSE | ||
| 977 | $ CC4DISABLEWARNINGS = CCDISABLEWARNINGS + ",DOLLARID" | ||
| 978 | $ CCDISABLEWARNINGS = "/WARNING=(DISABLE=(" + CCDISABLEWARNINGS + "))" | ||
| 979 | $ ENDIF | ||
| 980 | $ CC4DISABLEWARNINGS = "/WARNING=(DISABLE=(" + CC4DISABLEWARNINGS + "))" | ||
| 981 | $ ELSE | ||
| 982 | $ CCDISABLEWARNINGS = "" | ||
| 983 | $ CC4DISABLEWARNINGS = "" | ||
| 984 | $ ENDIF | ||
| 985 | $ CC3 = CC + "/DEFINE=(" + CCDEFS + ISSEVEN + ")" + CCDISABLEWARNINGS | ||
| 986 | $ CC = CC + "/DEFINE=(" + CCDEFS + ")" + CCDISABLEWARNINGS | ||
| 987 | $ IF ARCH .EQS. "VAX" .AND. COMPILER .EQS. "DECC" .AND. P2 .NES. "DEBUG" | ||
| 988 | $ THEN | ||
| 989 | $ CC5 = CC + "/OPTIMIZE=NODISJOINT" | ||
| 990 | $ ELSE | ||
| 991 | $ CC5 = CC + "/NOOPTIMIZE" | ||
| 992 | $ ENDIF | ||
| 993 | $ CC4 = CC - CCDISABLEWARNINGS + CC4DISABLEWARNINGS | ||
| 994 | $! | ||
| 995 | $! Show user the result | ||
| 996 | $! | ||
| 997 | $ WRITE/SYMBOL SYS$OUTPUT "Main C Compiling Command: ",CC | ||
| 998 | $! | ||
| 999 | $! Else The User Entered An Invalid Arguement. | ||
| 1000 | $! | ||
| 1001 | $ ELSE | ||
| 1002 | $! | ||
| 1003 | $! Tell The User We Don't Know What They Want. | ||
| 1004 | $! | ||
| 1005 | $ WRITE SYS$OUTPUT "" | ||
| 1006 | $ WRITE SYS$OUTPUT "The Option ",P3," Is Invalid. The Valid Options Are:" | ||
| 1007 | $ WRITE SYS$OUTPUT "" | ||
| 1008 | $ WRITE SYS$OUTPUT " VAXC : To Compile With VAX C." | ||
| 1009 | $ WRITE SYS$OUTPUT " DECC : To Compile With DEC C." | ||
| 1010 | $ WRITE SYS$OUTPUT " GNUC : To Compile With GNU C." | ||
| 1011 | $ WRITE SYS$OUTPUT "" | ||
| 1012 | $! | ||
| 1013 | $! Time To EXIT. | ||
| 1014 | $! | ||
| 1015 | $ EXIT | ||
| 1016 | $! | ||
| 1017 | $! End The Valid Arguement Check. | ||
| 1018 | $! | ||
| 1019 | $ ENDIF | ||
| 1020 | $! | ||
| 1021 | $! Build a MACRO command for the architecture at hand | ||
| 1022 | $! | ||
| 1023 | $ IF ARCH .EQS. "VAX" THEN MACRO = "MACRO/''DEBUGGER'" | ||
| 1024 | $ IF ARCH .EQS. "AXP" THEN MACRO = "MACRO/MIGRATION/''DEBUGGER'/''MACRO_OPTIMIZE'" | ||
| 1025 | $! | ||
| 1026 | $! Show user the result | ||
| 1027 | $! | ||
| 1028 | $ WRITE/SYMBOL SYS$OUTPUT "Main MACRO Compiling Command: ",MACRO | ||
| 1029 | $! | ||
| 1030 | $! Time to check the contents, and to make sure we get the correct library. | ||
| 1031 | $! | ||
| 1032 | $ IF P4.EQS."SOCKETSHR" .OR. P4.EQS."MULTINET" .OR. P4.EQS."UCX" - | ||
| 1033 | .OR. P4.EQS."TCPIP" .OR. P4.EQS."NONE" | ||
| 1034 | $ THEN | ||
| 1035 | $! | ||
| 1036 | $! Check to see if SOCKETSHR was chosen | ||
| 1037 | $! | ||
| 1038 | $ IF P4.EQS."SOCKETSHR" | ||
| 1039 | $ THEN | ||
| 1040 | $! | ||
| 1041 | $! Set the library to use SOCKETSHR | ||
| 1042 | $! | ||
| 1043 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]SOCKETSHR_SHR.OPT/OPT" | ||
| 1044 | $! | ||
| 1045 | $! Done with SOCKETSHR | ||
| 1046 | $! | ||
| 1047 | $ ENDIF | ||
| 1048 | $! | ||
| 1049 | $! Check to see if MULTINET was chosen | ||
| 1050 | $! | ||
| 1051 | $ IF P4.EQS."MULTINET" | ||
| 1052 | $ THEN | ||
| 1053 | $! | ||
| 1054 | $! Set the library to use UCX emulation. | ||
| 1055 | $! | ||
| 1056 | $ P4 = "UCX" | ||
| 1057 | $! | ||
| 1058 | $! Done with MULTINET | ||
| 1059 | $! | ||
| 1060 | $ ENDIF | ||
| 1061 | $! | ||
| 1062 | $! Check to see if UCX was chosen | ||
| 1063 | $! | ||
| 1064 | $ IF P4.EQS."UCX" | ||
| 1065 | $ THEN | ||
| 1066 | $! | ||
| 1067 | $! Set the library to use UCX. | ||
| 1068 | $! | ||
| 1069 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]UCX_SHR_DECC.OPT/OPT" | ||
| 1070 | $ IF F$TRNLNM("UCX$IPC_SHR") .NES. "" | ||
| 1071 | $ THEN | ||
| 1072 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]UCX_SHR_DECC_LOG.OPT/OPT" | ||
| 1073 | $ ELSE | ||
| 1074 | $ IF COMPILER .NES. "DECC" .AND. ARCH .EQS. "VAX" THEN - | ||
| 1075 | TCPIP_LIB = "SYS$DISK:[-.VMS]UCX_SHR_VAXC.OPT/OPT" | ||
| 1076 | $ ENDIF | ||
| 1077 | $! | ||
| 1078 | $! Done with UCX | ||
| 1079 | $! | ||
| 1080 | $ ENDIF | ||
| 1081 | $! | ||
| 1082 | $! Check to see if TCPIP was chosen | ||
| 1083 | $! | ||
| 1084 | $ IF P4.EQS."TCPIP" | ||
| 1085 | $ THEN | ||
| 1086 | $! | ||
| 1087 | $! Set the library to use TCPIP (post UCX). | ||
| 1088 | $! | ||
| 1089 | $ TCPIP_LIB = "SYS$DISK:[-.VMS]TCPIP_SHR_DECC.OPT/OPT" | ||
| 1090 | $! | ||
| 1091 | $! Done with TCPIP | ||
| 1092 | $! | ||
| 1093 | $ ENDIF | ||
| 1094 | $! | ||
| 1095 | $! Check to see if NONE was chosen | ||
| 1096 | $! | ||
| 1097 | $ IF P4.EQS."NONE" | ||
| 1098 | $ THEN | ||
| 1099 | $! | ||
| 1100 | $! Do not use a TCPIP library. | ||
| 1101 | $! | ||
| 1102 | $ TCPIP_LIB = "" | ||
| 1103 | $! | ||
| 1104 | $! Done with TCPIP | ||
| 1105 | $! | ||
| 1106 | $ ENDIF | ||
| 1107 | $! | ||
| 1108 | $! Print info | ||
| 1109 | $! | ||
| 1110 | $ WRITE SYS$OUTPUT "TCP/IP library spec: ", TCPIP_LIB | ||
| 1111 | $! | ||
| 1112 | $! Else The User Entered An Invalid Arguement. | ||
| 1113 | $! | ||
| 1114 | $ ELSE | ||
| 1115 | $! | ||
| 1116 | $! Tell The User We Don't Know What They Want. | ||
| 1117 | $! | ||
| 1118 | $ WRITE SYS$OUTPUT "" | ||
| 1119 | $ WRITE SYS$OUTPUT "The Option ",P4," Is Invalid. The Valid Options Are:" | ||
| 1120 | $ WRITE SYS$OUTPUT "" | ||
| 1121 | $ WRITE SYS$OUTPUT " SOCKETSHR : To link with SOCKETSHR TCP/IP library." | ||
| 1122 | $ WRITE SYS$OUTPUT " UCX : To link with UCX TCP/IP library." | ||
| 1123 | $ WRITE SYS$OUTPUT " TCPIP : To link with TCPIP (post UCX) TCP/IP library." | ||
| 1124 | $ WRITE SYS$OUTPUT "" | ||
| 1125 | $! | ||
| 1126 | $! Time To EXIT. | ||
| 1127 | $! | ||
| 1128 | $ EXIT | ||
| 1129 | $! | ||
| 1130 | $! Done with TCP/IP libraries | ||
| 1131 | $! | ||
| 1132 | $ ENDIF | ||
| 1133 | $! | ||
| 1134 | $! Check if the user wanted to compile just a subset of all the encryption | ||
| 1135 | $! methods. | ||
| 1136 | $! | ||
| 1137 | $ IF P6 .NES. "" | ||
| 1138 | $ THEN | ||
| 1139 | $ ENCRYPT_TYPES = P6 | ||
| 1140 | $ ENDIF | ||
| 1141 | $! | ||
| 1142 | $! Time To RETURN... | ||
| 1143 | $! | ||
| 1144 | $ RETURN | ||
| 1145 | $! | ||
| 1146 | $ INITIALISE: | ||
| 1147 | $! | ||
| 1148 | $! Save old value of the logical name OPENSSL | ||
| 1149 | $! | ||
| 1150 | $ __SAVE_OPENSSL = F$TRNLNM("OPENSSL","LNM$PROCESS_TABLE") | ||
| 1151 | $! | ||
| 1152 | $! Save directory information | ||
| 1153 | $! | ||
| 1154 | $ __HERE = F$PARSE(F$PARSE("A.;",F$ENVIRONMENT("PROCEDURE"))-"A.;","[]A.;") - "A.;" | ||
| 1155 | $ __HERE = F$EDIT(__HERE,"UPCASE") | ||
| 1156 | $ __TOP = __HERE - "FIPS]" | ||
| 1157 | $ __INCLUDE = __TOP + "INCLUDE.OPENSSL]" | ||
| 1158 | $! | ||
| 1159 | $! Set up the logical name OPENSSL to point at the include directory | ||
| 1160 | $! | ||
| 1161 | $ DEFINE OPENSSL/NOLOG '__INCLUDE' | ||
| 1162 | $! | ||
| 1163 | $! Done | ||
| 1164 | $! | ||
| 1165 | $ RETURN | ||
| 1166 | $! | ||
| 1167 | $ CLEANUP: | ||
| 1168 | $! | ||
| 1169 | $! Restore the logical name OPENSSL if it had a value | ||
| 1170 | $! | ||
| 1171 | $ IF __SAVE_OPENSSL .EQS. "" | ||
| 1172 | $ THEN | ||
| 1173 | $ DEASSIGN OPENSSL | ||
| 1174 | $ ELSE | ||
| 1175 | $ DEFINE/NOLOG OPENSSL '__SAVE_OPENSSL' | ||
| 1176 | $ ENDIF | ||
| 1177 | $! | ||
| 1178 | $! Done | ||
| 1179 | $! | ||
| 1180 | $ RETURN | ||
diff --git a/src/lib/libssl/src/fips/fips.c b/src/lib/libssl/src/fips/fips.c deleted file mode 100644 index 7ecba57f70..0000000000 --- a/src/lib/libssl/src/fips/fips.c +++ /dev/null | |||
| @@ -1,260 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <openssl/fips.h> | ||
| 51 | #include <openssl/rand.h> | ||
| 52 | #include <openssl/fips_rand.h> | ||
| 53 | #include <openssl/err.h> | ||
| 54 | #include <openssl/bio.h> | ||
| 55 | #include <openssl/hmac.h> | ||
| 56 | #include <string.h> | ||
| 57 | #include <limits.h> | ||
| 58 | #include "fips_locl.h" | ||
| 59 | |||
| 60 | #ifdef OPENSSL_FIPS | ||
| 61 | |||
| 62 | #ifndef PATH_MAX | ||
| 63 | #define PATH_MAX 1024 | ||
| 64 | #endif | ||
| 65 | |||
| 66 | static int fips_md5_allowed = 0; | ||
| 67 | static int fips_selftest_fail = 0; | ||
| 68 | |||
| 69 | void FIPS_allow_md5(int onoff) | ||
| 70 | { | ||
| 71 | if (fips_is_started()) | ||
| 72 | { | ||
| 73 | int owning_thread = fips_is_owning_thread(); | ||
| 74 | |||
| 75 | if (!owning_thread) CRYPTO_w_lock(CRYPTO_LOCK_FIPS); | ||
| 76 | fips_md5_allowed = onoff; | ||
| 77 | if (!owning_thread) CRYPTO_w_unlock(CRYPTO_LOCK_FIPS); | ||
| 78 | } | ||
| 79 | } | ||
| 80 | |||
| 81 | int FIPS_md5_allowed(void) | ||
| 82 | { | ||
| 83 | int ret = 1; | ||
| 84 | if (fips_is_started()) | ||
| 85 | { | ||
| 86 | int owning_thread = fips_is_owning_thread(); | ||
| 87 | |||
| 88 | if (!owning_thread) CRYPTO_r_lock(CRYPTO_LOCK_FIPS); | ||
| 89 | ret = fips_md5_allowed; | ||
| 90 | if (!owning_thread) CRYPTO_r_unlock(CRYPTO_LOCK_FIPS); | ||
| 91 | } | ||
| 92 | return ret; | ||
| 93 | } | ||
| 94 | |||
| 95 | int FIPS_selftest_failed(void) | ||
| 96 | { | ||
| 97 | int ret = 0; | ||
| 98 | if (fips_is_started()) | ||
| 99 | { | ||
| 100 | int owning_thread = fips_is_owning_thread(); | ||
| 101 | |||
| 102 | if (!owning_thread) CRYPTO_r_lock(CRYPTO_LOCK_FIPS); | ||
| 103 | ret = fips_selftest_fail; | ||
| 104 | if (!owning_thread) CRYPTO_r_unlock(CRYPTO_LOCK_FIPS); | ||
| 105 | } | ||
| 106 | return ret; | ||
| 107 | } | ||
| 108 | |||
| 109 | int FIPS_selftest() | ||
| 110 | { | ||
| 111 | ERR_load_crypto_strings(); | ||
| 112 | |||
| 113 | return FIPS_selftest_sha1() | ||
| 114 | && FIPS_selftest_aes() | ||
| 115 | && FIPS_selftest_des() | ||
| 116 | && FIPS_selftest_rsa() | ||
| 117 | && FIPS_selftest_dsa(); | ||
| 118 | } | ||
| 119 | |||
| 120 | static int FIPS_check_exe(const char *path) | ||
| 121 | { | ||
| 122 | unsigned char buf[1024]; | ||
| 123 | char p2[PATH_MAX]; | ||
| 124 | unsigned int n; | ||
| 125 | unsigned char mdbuf[EVP_MAX_MD_SIZE]; | ||
| 126 | FILE *f; | ||
| 127 | static char key[]="etaonrishdlcupfm"; | ||
| 128 | HMAC_CTX hmac; | ||
| 129 | const char *sha1_fmt="%s.sha1"; | ||
| 130 | |||
| 131 | f=fopen(path,"rb"); | ||
| 132 | #ifdef __CYGWIN32__ | ||
| 133 | /* cygwin scrupulously strips .exe extentions:-( as of now it's | ||
| 134 | actually no point to attempt above fopen, but we keep the call | ||
| 135 | just in case the behavior changes in the future... */ | ||
| 136 | if (!f) | ||
| 137 | { | ||
| 138 | sha1_fmt="%s.exe.sha1"; | ||
| 139 | BIO_snprintf(p2,sizeof p2,"%s.exe",path); | ||
| 140 | f=fopen(p2,"rb"); | ||
| 141 | } | ||
| 142 | #endif | ||
| 143 | if(!f) | ||
| 144 | { | ||
| 145 | FIPSerr(FIPS_F_FIPS_CHECK_EXE,FIPS_R_CANNOT_READ_EXE); | ||
| 146 | return 0; | ||
| 147 | } | ||
| 148 | HMAC_Init(&hmac,key,strlen(key),EVP_sha1()); | ||
| 149 | while(!feof(f)) | ||
| 150 | { | ||
| 151 | n=fread(buf,1,sizeof buf,f); | ||
| 152 | if(ferror(f)) | ||
| 153 | { | ||
| 154 | clearerr(f); | ||
| 155 | fclose(f); | ||
| 156 | FIPSerr(FIPS_F_FIPS_CHECK_EXE,FIPS_R_CANNOT_READ_EXE); | ||
| 157 | return 0; | ||
| 158 | } | ||
| 159 | if (n) HMAC_Update(&hmac,buf,n); | ||
| 160 | } | ||
| 161 | fclose(f); | ||
| 162 | HMAC_Final(&hmac,mdbuf,&n); | ||
| 163 | HMAC_CTX_cleanup(&hmac); | ||
| 164 | BIO_snprintf(p2,sizeof p2,sha1_fmt,path); | ||
| 165 | f=fopen(p2,"rb"); | ||
| 166 | if(!f || fread(buf,1,20,f) != 20) | ||
| 167 | { | ||
| 168 | if (f) fclose(f); | ||
| 169 | FIPSerr(FIPS_F_FIPS_CHECK_EXE,FIPS_R_CANNOT_READ_EXE_DIGEST); | ||
| 170 | return 0; | ||
| 171 | } | ||
| 172 | fclose(f); | ||
| 173 | if(memcmp(buf,mdbuf,20)) | ||
| 174 | { | ||
| 175 | FIPSerr(FIPS_F_FIPS_CHECK_EXE,FIPS_R_EXE_DIGEST_DOES_NOT_MATCH); | ||
| 176 | return 0; | ||
| 177 | } | ||
| 178 | return 1; | ||
| 179 | } | ||
| 180 | |||
| 181 | int FIPS_mode_set(int onoff,const char *path) | ||
| 182 | { | ||
| 183 | void fips_set_mode(int _onoff); | ||
| 184 | int fips_set_owning_thread(); | ||
| 185 | int fips_clear_owning_thread(); | ||
| 186 | int ret = 0; | ||
| 187 | |||
| 188 | CRYPTO_w_lock(CRYPTO_LOCK_FIPS); | ||
| 189 | fips_set_started(); | ||
| 190 | fips_set_owning_thread(); | ||
| 191 | |||
| 192 | if(onoff) | ||
| 193 | { | ||
| 194 | unsigned char buf[24]; | ||
| 195 | |||
| 196 | fips_selftest_fail = 0; | ||
| 197 | |||
| 198 | /* Don't go into FIPS mode twice, just so we can do automagic | ||
| 199 | seeding */ | ||
| 200 | if(FIPS_mode()) | ||
| 201 | { | ||
| 202 | FIPSerr(FIPS_F_FIPS_MODE_SET,FIPS_R_FIPS_MODE_ALREADY_SET); | ||
| 203 | fips_selftest_fail = 1; | ||
| 204 | ret = 0; | ||
| 205 | goto end; | ||
| 206 | } | ||
| 207 | |||
| 208 | if(!FIPS_check_exe(path)) | ||
| 209 | { | ||
| 210 | fips_selftest_fail = 1; | ||
| 211 | ret = 0; | ||
| 212 | goto end; | ||
| 213 | } | ||
| 214 | |||
| 215 | /* automagically seed PRNG if not already seeded */ | ||
| 216 | if(!FIPS_rand_seeded()) | ||
| 217 | { | ||
| 218 | if(RAND_bytes(buf,sizeof buf) <= 0) | ||
| 219 | { | ||
| 220 | fips_selftest_fail = 1; | ||
| 221 | ret = 0; | ||
| 222 | goto end; | ||
| 223 | } | ||
| 224 | FIPS_set_prng_key(buf,buf+8); | ||
| 225 | FIPS_rand_seed(buf+16,8); | ||
| 226 | } | ||
| 227 | |||
| 228 | /* now switch into FIPS mode */ | ||
| 229 | fips_set_rand_check(FIPS_rand_method()); | ||
| 230 | RAND_set_rand_method(FIPS_rand_method()); | ||
| 231 | if(FIPS_selftest()) | ||
| 232 | fips_set_mode(1); | ||
| 233 | else | ||
| 234 | { | ||
| 235 | fips_selftest_fail = 1; | ||
| 236 | ret = 0; | ||
| 237 | goto end; | ||
| 238 | } | ||
| 239 | ret = 1; | ||
| 240 | goto end; | ||
| 241 | } | ||
| 242 | fips_set_mode(0); | ||
| 243 | fips_selftest_fail = 0; | ||
| 244 | ret = 1; | ||
| 245 | end: | ||
| 246 | fips_clear_owning_thread(); | ||
| 247 | CRYPTO_w_unlock(CRYPTO_LOCK_FIPS); | ||
| 248 | return ret; | ||
| 249 | } | ||
| 250 | |||
| 251 | #if 0 | ||
| 252 | /* here just to cause error codes to exist */ | ||
| 253 | static void dummy() | ||
| 254 | { | ||
| 255 | FIPSerr(FIPS_F_HASH_FINAL,FIPS_F_NON_FIPS_METHOD); | ||
| 256 | FIPSerr(FIPS_F_HASH_FINAL,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 257 | } | ||
| 258 | #endif | ||
| 259 | |||
| 260 | #endif | ||
diff --git a/src/lib/libssl/src/fips/fips.h b/src/lib/libssl/src/fips/fips.h deleted file mode 100644 index a4df06b148..0000000000 --- a/src/lib/libssl/src/fips/fips.h +++ /dev/null | |||
| @@ -1,125 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <openssl/opensslconf.h> | ||
| 51 | |||
| 52 | #ifdef OPENSSL_FIPS | ||
| 53 | |||
| 54 | #ifdef __cplusplus | ||
| 55 | extern "C" { | ||
| 56 | #endif | ||
| 57 | |||
| 58 | /* Note that these are defined in crypto/cryptlib.c so they're | ||
| 59 | * available even without -lfips. | ||
| 60 | */ | ||
| 61 | struct dsa_st; | ||
| 62 | |||
| 63 | int FIPS_mode_set(int onoff,const char *path); | ||
| 64 | void FIPS_allow_md5(int onoff); | ||
| 65 | int FIPS_md5_allowed(void); | ||
| 66 | int FIPS_selftest_failed(void); | ||
| 67 | int FIPS_dsa_check(struct dsa_st *dsa); | ||
| 68 | void FIPS_corrupt_sha1(void); | ||
| 69 | int FIPS_selftest_sha1(void); | ||
| 70 | void FIPS_corrupt_aes(void); | ||
| 71 | int FIPS_selftest_aes(void); | ||
| 72 | void FIPS_corrupt_des(void); | ||
| 73 | int FIPS_selftest_des(void); | ||
| 74 | void FIPS_corrupt_rsa(void); | ||
| 75 | int FIPS_selftest_rsa(void); | ||
| 76 | void FIPS_corrupt_dsa(void); | ||
| 77 | int FIPS_selftest_dsa(void); | ||
| 78 | |||
| 79 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 80 | * made after this point may be overwritten when the script is next run. | ||
| 81 | */ | ||
| 82 | void ERR_load_FIPS_strings(void); | ||
| 83 | |||
| 84 | /* BEGIN ERROR CODES */ | ||
| 85 | /* The following lines are auto generated by the script mkerr.pl. Any changes | ||
| 86 | * made after this point may be overwritten when the script is next run. | ||
| 87 | */ | ||
| 88 | void ERR_load_FIPS_strings(void); | ||
| 89 | |||
| 90 | /* Error codes for the FIPS functions. */ | ||
| 91 | |||
| 92 | /* Function codes. */ | ||
| 93 | #define FIPS_F_DSA_DO_SIGN 111 | ||
| 94 | #define FIPS_F_DSA_DO_VERIFY 112 | ||
| 95 | #define FIPS_F_DSA_GENERATE_PARAMETERS 110 | ||
| 96 | #define FIPS_F_FIPS_CHECK_DSA 116 | ||
| 97 | #define FIPS_F_FIPS_CHECK_EXE 106 | ||
| 98 | #define FIPS_F_FIPS_CHECK_RSA 115 | ||
| 99 | #define FIPS_F_FIPS_DSA_CHECK 102 | ||
| 100 | #define FIPS_F_FIPS_MODE_SET 105 | ||
| 101 | #define FIPS_F_FIPS_SELFTEST_AES 104 | ||
| 102 | #define FIPS_F_FIPS_SELFTEST_DES 107 | ||
| 103 | #define FIPS_F_FIPS_SELFTEST_DSA 109 | ||
| 104 | #define FIPS_F_FIPS_SELFTEST_RSA 108 | ||
| 105 | #define FIPS_F_FIPS_SELFTEST_SHA1 103 | ||
| 106 | #define FIPS_F_HASH_FINAL 100 | ||
| 107 | #define FIPS_F_DH_GENERATE_PARAMETERS 117 | ||
| 108 | #define FIPS_F_RSA_EAY_PUBLIC_ENCRYPT 114 | ||
| 109 | #define FIPS_F_RSA_GENERATE_KEY 113 | ||
| 110 | #define FIPS_F_SSLEAY_RAND_BYTES 101 | ||
| 111 | |||
| 112 | /* Reason codes. */ | ||
| 113 | #define FIPS_R_CANNOT_READ_EXE 103 | ||
| 114 | #define FIPS_R_CANNOT_READ_EXE_DIGEST 104 | ||
| 115 | #define FIPS_R_EXE_DIGEST_DOES_NOT_MATCH 105 | ||
| 116 | #define FIPS_R_FIPS_MODE_ALREADY_SET 102 | ||
| 117 | #define FIPS_R_FIPS_SELFTEST_FAILED 106 | ||
| 118 | #define FIPS_R_NON_FIPS_METHOD 100 | ||
| 119 | #define FIPS_R_PAIRWISE_TEST_FAILED 107 | ||
| 120 | #define FIPS_R_SELFTEST_FAILED 101 | ||
| 121 | |||
| 122 | #ifdef __cplusplus | ||
| 123 | } | ||
| 124 | #endif | ||
| 125 | #endif | ||
diff --git a/src/lib/libssl/src/fips/fips_test_suite.c b/src/lib/libssl/src/fips/fips_test_suite.c deleted file mode 100644 index 60ee8d856b..0000000000 --- a/src/lib/libssl/src/fips/fips_test_suite.c +++ /dev/null | |||
| @@ -1,341 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * | ||
| 5 | * This command is intended as a test driver for the FIPS-140 testing | ||
| 6 | * lab performing FIPS-140 validation. It demonstrates the use of the | ||
| 7 | * OpenSSL library ito perform a variety of common cryptographic | ||
| 8 | * functions. A power-up self test is demonstrated by deliberately | ||
| 9 | * pointing to an invalid executable hash | ||
| 10 | * | ||
| 11 | * Contributed by Steve Marquess. | ||
| 12 | * | ||
| 13 | */ | ||
| 14 | #include <stdio.h> | ||
| 15 | #include <assert.h> | ||
| 16 | #include <ctype.h> | ||
| 17 | #include <string.h> | ||
| 18 | #include <stdlib.h> | ||
| 19 | #include <openssl/aes.h> | ||
| 20 | #include <openssl/des.h> | ||
| 21 | #include <openssl/rsa.h> | ||
| 22 | #include <openssl/dsa.h> | ||
| 23 | #include <openssl/sha.h> | ||
| 24 | #include <openssl/md5.h> | ||
| 25 | #include <openssl/err.h> | ||
| 26 | #include <openssl/fips.h> | ||
| 27 | #include <openssl/bn.h> | ||
| 28 | #include <openssl/rand.h> | ||
| 29 | #ifndef OPENSSL_FIPS | ||
| 30 | int main(int argc, char *argv[]) | ||
| 31 | { | ||
| 32 | printf("No FIPS support\n"); | ||
| 33 | return(0); | ||
| 34 | } | ||
| 35 | #else | ||
| 36 | |||
| 37 | /* AES: encrypt and decrypt known plaintext, verify result matches original plaintext | ||
| 38 | */ | ||
| 39 | static int FIPS_aes_test() | ||
| 40 | { | ||
| 41 | unsigned char userkey[16] = { 0xde, 0xad, 0xbe, 0xef, 0xfe, 0xed, 0xf0, 0x0d }; | ||
| 42 | unsigned char plaintext[16] = "etaonrishdlcu"; | ||
| 43 | unsigned char ciphertext[16]; | ||
| 44 | unsigned char buf[16]; | ||
| 45 | AES_KEY key; | ||
| 46 | AES_KEY dkey; | ||
| 47 | |||
| 48 | ERR_clear_error(); | ||
| 49 | if (AES_set_encrypt_key( userkey, 128, &key )) | ||
| 50 | return 0; | ||
| 51 | AES_encrypt( plaintext, ciphertext, &key); | ||
| 52 | if (AES_set_decrypt_key( userkey, 128, &dkey )) | ||
| 53 | return 0; | ||
| 54 | AES_decrypt( ciphertext, buf, &dkey); | ||
| 55 | if (memcmp(buf, plaintext, sizeof(buf))) | ||
| 56 | return 0; | ||
| 57 | return 1; | ||
| 58 | } | ||
| 59 | |||
| 60 | /* DES: encrypt and decrypt known plaintext, verify result matches original plaintext | ||
| 61 | */ | ||
| 62 | static int FIPS_des_test() | ||
| 63 | { | ||
| 64 | DES_cblock userkey = { 0xde, 0xad, 0xbe, 0xef, 0xfe, 0xed, 0xf0, 0x0d }; | ||
| 65 | DES_cblock plaintext = { 'e', 't', 'a', 'o', 'n', 'r', 'i', 's' }; | ||
| 66 | |||
| 67 | DES_key_schedule key; | ||
| 68 | DES_cblock ciphertext; | ||
| 69 | DES_cblock buf; | ||
| 70 | |||
| 71 | ERR_clear_error(); | ||
| 72 | if (DES_set_key(&userkey, &key) < 0) | ||
| 73 | return 0; | ||
| 74 | DES_ecb_encrypt( &plaintext, &ciphertext, &key, 1); | ||
| 75 | DES_ecb_encrypt( &ciphertext, &buf, &key, 0); | ||
| 76 | if (memcmp(buf, plaintext, sizeof(buf))) | ||
| 77 | return 0; | ||
| 78 | return 1; | ||
| 79 | } | ||
| 80 | |||
| 81 | /* DSA: generate key and sign a known digest, then verify the signature | ||
| 82 | * against the digest | ||
| 83 | */ | ||
| 84 | static int FIPS_dsa_test() | ||
| 85 | { | ||
| 86 | DSA *dsa = NULL; | ||
| 87 | unsigned char dgst[] = "etaonrishdlc"; | ||
| 88 | unsigned char sig[256]; | ||
| 89 | unsigned int siglen; | ||
| 90 | |||
| 91 | ERR_clear_error(); | ||
| 92 | dsa = DSA_generate_parameters(512,NULL,0,NULL,NULL,NULL,NULL); | ||
| 93 | if (!dsa) | ||
| 94 | return 0; | ||
| 95 | if (!DSA_generate_key(dsa)) | ||
| 96 | return 0; | ||
| 97 | if ( DSA_sign(0,dgst,sizeof(dgst) - 1,sig,&siglen,dsa) != 1 ) | ||
| 98 | return 0; | ||
| 99 | if ( DSA_verify(0,dgst,sizeof(dgst) - 1,sig,siglen,dsa) != 1 ) | ||
| 100 | return 0; | ||
| 101 | DSA_free(dsa); | ||
| 102 | return 1; | ||
| 103 | } | ||
| 104 | |||
| 105 | /* RSA: generate keys and encrypt and decrypt known plaintext, verify result | ||
| 106 | * matches the original plaintext | ||
| 107 | */ | ||
| 108 | static int FIPS_rsa_test() | ||
| 109 | { | ||
| 110 | RSA *key; | ||
| 111 | unsigned char input_ptext[] = "etaonrishdlc"; | ||
| 112 | unsigned char ctext[256]; | ||
| 113 | unsigned char ptext[256]; | ||
| 114 | int n; | ||
| 115 | |||
| 116 | ERR_clear_error(); | ||
| 117 | key = RSA_generate_key(1024,65537,NULL,NULL); | ||
| 118 | if (!key) | ||
| 119 | return 0; | ||
| 120 | n = RSA_size(key); | ||
| 121 | n = RSA_public_encrypt(sizeof(input_ptext) - 1,input_ptext,ctext,key,RSA_PKCS1_PADDING); | ||
| 122 | if (n < 0) | ||
| 123 | return 0; | ||
| 124 | n = RSA_private_decrypt(n,ctext,ptext,key,RSA_PKCS1_PADDING); | ||
| 125 | if (n < 0) | ||
| 126 | return 0; | ||
| 127 | RSA_free(key); | ||
| 128 | if (memcmp(input_ptext,ptext,sizeof(input_ptext) - 1)) | ||
| 129 | return 0; | ||
| 130 | return 1; | ||
| 131 | } | ||
| 132 | |||
| 133 | /* SHA1: generate hash of known digest value and compare to known | ||
| 134 | precomputed correct hash | ||
| 135 | */ | ||
| 136 | static int FIPS_sha1_test() | ||
| 137 | { | ||
| 138 | unsigned char digest[SHA_DIGEST_LENGTH] = | ||
| 139 | { 0x11, 0xf1, 0x9a, 0x3a, 0xec, 0x1a, 0x1e, 0x8e, 0x65, 0xd4, 0x9a, 0x38, 0x0c, 0x8b, 0x1e, 0x2c, 0xe8, 0xb3, 0xc5, 0x18 }; | ||
| 140 | unsigned char str[] = "etaonrishd"; | ||
| 141 | |||
| 142 | unsigned char md[SHA_DIGEST_LENGTH]; | ||
| 143 | |||
| 144 | ERR_clear_error(); | ||
| 145 | if (!SHA1(str,sizeof(str) - 1,md)) return 0; | ||
| 146 | if (memcmp(md,digest,sizeof(md))) | ||
| 147 | return 0; | ||
| 148 | return 1; | ||
| 149 | } | ||
| 150 | |||
| 151 | /* MD5: generate hash of known digest value and compare to known | ||
| 152 | precomputed correct hash | ||
| 153 | */ | ||
| 154 | static int md5_test() | ||
| 155 | { | ||
| 156 | unsigned char digest[MD5_DIGEST_LENGTH] = | ||
| 157 | { 0x48, 0x50, 0xf0, 0xa3, 0x3a, 0xed, 0xd3, 0xaf, 0x6e, 0x47, 0x7f, 0x83, 0x02, 0xb1, 0x09, 0x68 }; | ||
| 158 | unsigned char str[] = "etaonrishd"; | ||
| 159 | |||
| 160 | unsigned char md[MD5_DIGEST_LENGTH]; | ||
| 161 | |||
| 162 | ERR_clear_error(); | ||
| 163 | if (!MD5(str,sizeof(str) - 1,md)) | ||
| 164 | return 0; | ||
| 165 | if (memcmp(md,digest,sizeof(md))) | ||
| 166 | return 0; | ||
| 167 | return 1; | ||
| 168 | } | ||
| 169 | |||
| 170 | /* DH: generate shared parameters | ||
| 171 | */ | ||
| 172 | static int dh_test() | ||
| 173 | { | ||
| 174 | DH *dh; | ||
| 175 | |||
| 176 | ERR_clear_error(); | ||
| 177 | dh = DH_generate_parameters(256, 2, NULL, NULL); | ||
| 178 | if (dh) | ||
| 179 | return 1; | ||
| 180 | return 0; | ||
| 181 | } | ||
| 182 | |||
| 183 | /* Zeroize | ||
| 184 | */ | ||
| 185 | static int Zeroize() | ||
| 186 | { | ||
| 187 | RSA *key; | ||
| 188 | unsigned char userkey[16] = | ||
| 189 | { 0x48, 0x50, 0xf0, 0xa3, 0x3a, 0xed, 0xd3, 0xaf, 0x6e, 0x47, 0x7f, 0x83, 0x02, 0xb1, 0x09, 0x68 }; | ||
| 190 | int i, n; | ||
| 191 | |||
| 192 | key = RSA_generate_key(1024,65537,NULL,NULL); | ||
| 193 | if (!key) | ||
| 194 | return 0; | ||
| 195 | n = BN_num_bytes(key->d); | ||
| 196 | printf(" Generated %d byte RSA private key\n", n); | ||
| 197 | printf("\tBN key before overwriting:\n%s\n", BN_bn2hex(key->d)); | ||
| 198 | BN_rand(key->d,n*8,-1,0); | ||
| 199 | printf("\tBN key after overwriting:\n%s\n", BN_bn2hex(key->d)); | ||
| 200 | |||
| 201 | printf("\tchar buffer key before overwriting: \n\t\t"); | ||
| 202 | for(i = 0; i < sizeof(userkey); i++) printf("%02x", userkey[i]); | ||
| 203 | printf("\n"); | ||
| 204 | RAND_bytes(userkey, sizeof userkey); | ||
| 205 | printf("\tchar buffer key after overwriting: \n\t\t"); | ||
| 206 | for(i = 0; i < sizeof(userkey); i++) printf("%02x", userkey[i]); | ||
| 207 | printf("\n"); | ||
| 208 | |||
| 209 | return 1; | ||
| 210 | } | ||
| 211 | |||
| 212 | static int Error; | ||
| 213 | const char * Fail(const char *msg) | ||
| 214 | { | ||
| 215 | Error++; | ||
| 216 | return msg; | ||
| 217 | } | ||
| 218 | |||
| 219 | int main(int argc,char **argv) | ||
| 220 | { | ||
| 221 | |||
| 222 | printf("\tFIPS-mode test application\n\n"); | ||
| 223 | |||
| 224 | /* Load entropy from external file, if any */ | ||
| 225 | RAND_load_file(".rnd", 1024); | ||
| 226 | |||
| 227 | if (argv[1]) { | ||
| 228 | /* Corrupted KAT tests */ | ||
| 229 | if (!strcmp(argv[1], "aes")) { | ||
| 230 | FIPS_corrupt_aes(); | ||
| 231 | printf("3. AES encryption/decryption with corrupted KAT...\n"); | ||
| 232 | } else if (!strcmp(argv[1], "des")) { | ||
| 233 | FIPS_corrupt_des(); | ||
| 234 | printf("5. DES-ECB encryption/decryption with corrupted KAT...\n"); | ||
| 235 | } else if (!strcmp(argv[1], "dsa")) { | ||
| 236 | FIPS_corrupt_dsa(); | ||
| 237 | printf("6. DSA key generation and signature validation with corrupted KAT...\n"); | ||
| 238 | } else if (!strcmp(argv[1], "rsa")) { | ||
| 239 | FIPS_corrupt_rsa(); | ||
| 240 | printf("4. RSA key generation and encryption/decryption with corrupted KAT...\n"); | ||
| 241 | } else if (!strcmp(argv[1], "sha1")) { | ||
| 242 | FIPS_corrupt_sha1(); | ||
| 243 | printf("7. SHA-1 hash with corrupted KAT...\n"); | ||
| 244 | } else { | ||
| 245 | printf("Bad argument \"%s\"\n", argv[1]); | ||
| 246 | exit(1); | ||
| 247 | } | ||
| 248 | if (!FIPS_mode_set(1,argv[0])) | ||
| 249 | { | ||
| 250 | ERR_load_crypto_strings(); | ||
| 251 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 252 | printf("Power-up self test failed\n"); | ||
| 253 | exit(1); | ||
| 254 | } | ||
| 255 | printf("Power-up self test successful\n"); | ||
| 256 | exit(0); | ||
| 257 | } | ||
| 258 | |||
| 259 | /* Non-Approved cryptographic operation | ||
| 260 | */ | ||
| 261 | printf("0. Non-Approved cryptographic operation test...\n"); | ||
| 262 | printf("\ta. Excluded algorithm (MD5)..."); | ||
| 263 | printf( md5_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 264 | printf("\tb. Included algorithm (D-H)..."); | ||
| 265 | printf( dh_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 266 | |||
| 267 | /* Power-up self test failure | ||
| 268 | */ | ||
| 269 | printf("1. Automatic power-up self test..."); | ||
| 270 | printf( FIPS_mode_set(1,"/dev/null") ? Fail("passed INCORRECTLY!\n") : "failed as expected\n" ); | ||
| 271 | |||
| 272 | /* Algorithm call when uninitialized failure | ||
| 273 | */ | ||
| 274 | printf("\ta. AES API failure on failed power-up self test..."); | ||
| 275 | printf( FIPS_aes_test() ? Fail("passed INCORRECTLY!\n") :"failed as expected\n" ); | ||
| 276 | printf("\tb. RSA API failure on failed power-up self test..."); | ||
| 277 | printf( FIPS_rsa_test() ? Fail("passed INCORRECTLY!\n") : "failed as expected\n" ); | ||
| 278 | printf("\tc. DES API failure on failed power-up self test..."); | ||
| 279 | printf( FIPS_des_test() ? Fail("passed INCORRECTLY!\n") : "failed as expected\n" ); | ||
| 280 | printf("\td. DSA API failure on failed power-up self test..."); | ||
| 281 | printf( FIPS_dsa_test() ? Fail("passed INCORRECTLY!\n") : "failed as expected\n" ); | ||
| 282 | printf("\te. SHA1 API failure on failed power-up self test..."); | ||
| 283 | printf( FIPS_sha1_test() ? Fail("passed INCORRECTLY!\n") : "failed as expected\n" ); | ||
| 284 | |||
| 285 | /* Power-up self test retry | ||
| 286 | */ | ||
| 287 | ERR_clear_error(); | ||
| 288 | printf("2. Automatic power-up self test retry..."); | ||
| 289 | if (!FIPS_mode_set(1,argv[0])) | ||
| 290 | { | ||
| 291 | ERR_load_crypto_strings(); | ||
| 292 | ERR_print_errors(BIO_new_fp(stderr,BIO_NOCLOSE)); | ||
| 293 | printf(Fail("FAILED!\n")); | ||
| 294 | exit(1); | ||
| 295 | } | ||
| 296 | printf("successful\n"); | ||
| 297 | |||
| 298 | /* AES encryption/decryption | ||
| 299 | */ | ||
| 300 | printf("3. AES encryption/decryption..."); | ||
| 301 | printf( FIPS_aes_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 302 | |||
| 303 | /* RSA key generation and encryption/decryption | ||
| 304 | */ | ||
| 305 | printf("4. RSA key generation and encryption/decryption..."); | ||
| 306 | printf( FIPS_rsa_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 307 | |||
| 308 | /* DES-CBC encryption/decryption | ||
| 309 | */ | ||
| 310 | printf("5. DES-ECB encryption/decryption..."); | ||
| 311 | printf( FIPS_des_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 312 | |||
| 313 | /* DSA key generation and signature validation | ||
| 314 | */ | ||
| 315 | printf("6. DSA key generation and signature validation..."); | ||
| 316 | printf( FIPS_dsa_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 317 | |||
| 318 | /* SHA-1 hash | ||
| 319 | */ | ||
| 320 | printf("7. SHA-1 hash..."); | ||
| 321 | printf( FIPS_sha1_test() ? "successful\n" : Fail("FAILED!\n") ); | ||
| 322 | |||
| 323 | /* Non-Approved cryptographic operation | ||
| 324 | */ | ||
| 325 | printf("8. Non-Approved cryptographic operation test...\n"); | ||
| 326 | printf("\ta. Excluded algorithm (MD5)..."); | ||
| 327 | printf( md5_test() ? Fail("passed INCORRECTLY!\n") | ||
| 328 | : "failed as expected\n" ); | ||
| 329 | printf("\tb. Included algorithm (D-H)..."); | ||
| 330 | printf( dh_test() ? "successful as expected\n" | ||
| 331 | : Fail("failed INCORRECTLY!\n") ); | ||
| 332 | |||
| 333 | /* Zeroization | ||
| 334 | */ | ||
| 335 | printf("9. Zero-ization...\n"); | ||
| 336 | Zeroize(); | ||
| 337 | |||
| 338 | printf("\nAll tests completed with %d errors\n", Error); | ||
| 339 | return 0; | ||
| 340 | } | ||
| 341 | #endif | ||
diff --git a/src/lib/libssl/src/fips/install.com b/src/lib/libssl/src/fips/install.com deleted file mode 100644 index aa19f0599d..0000000000 --- a/src/lib/libssl/src/fips/install.com +++ /dev/null | |||
| @@ -1,55 +0,0 @@ | |||
| 1 | $! INSTALL.COM -- Installs the files in a given directory tree | ||
| 2 | $! | ||
| 3 | $! Author: Richard Levitte <richard@levitte.org> | ||
| 4 | $! Time of creation: 27-MAY-2004 11:47 | ||
| 5 | $! | ||
| 6 | $! P1 root of the directory tree | ||
| 7 | $! | ||
| 8 | $ IF P1 .EQS. "" | ||
| 9 | $ THEN | ||
| 10 | $ WRITE SYS$OUTPUT "First argument missing." | ||
| 11 | $ WRITE SYS$OUTPUT "Should be the directory where you want things installed." | ||
| 12 | $ EXIT | ||
| 13 | $ ENDIF | ||
| 14 | $ | ||
| 15 | $ ROOT = F$PARSE(P1,"[]A.;0",,,"SYNTAX_ONLY,NO_CONCEAL") - "A.;0" | ||
| 16 | $ ROOT_DEV = F$PARSE(ROOT,,,"DEVICE","SYNTAX_ONLY") | ||
| 17 | $ ROOT_DIR = F$PARSE(ROOT,,,"DIRECTORY","SYNTAX_ONLY") - | ||
| 18 | - "[000000." - "][" - "[" - "]" | ||
| 19 | $ ROOT = ROOT_DEV + "[" + ROOT_DIR | ||
| 20 | $ | ||
| 21 | $ DEFINE/NOLOG WRK_SSLROOT 'ROOT'.] /TRANS=CONC | ||
| 22 | $ DEFINE/NOLOG WRK_SSLINCLUDE WRK_SSLROOT:[INCLUDE] | ||
| 23 | $ | ||
| 24 | $ IF F$PARSE("WRK_SSLROOT:[000000]") .EQS. "" THEN - | ||
| 25 | CREATE/DIR/LOG WRK_SSLROOT:[000000] | ||
| 26 | $ IF F$PARSE("WRK_SSLINCLUDE:") .EQS. "" THEN - | ||
| 27 | CREATE/DIR/LOG WRK_SSLINCLUDE: | ||
| 28 | $ | ||
| 29 | $ FDIRS := ,RAND,SHA1,DES,AES,DSA,RSA | ||
| 30 | $ EXHEADER_ := fips.h | ||
| 31 | $ EXHEADER_SHA1 := | ||
| 32 | $ EXHEADER_RAND := fips_rand.h | ||
| 33 | $ EXHEADER_DES := | ||
| 34 | $ EXHEADER_AES := | ||
| 35 | $ EXHEADER_DSA := | ||
| 36 | $ EXHEADER_RSA := | ||
| 37 | $ | ||
| 38 | $ I = 0 | ||
| 39 | $ LOOP_FDIRS: | ||
| 40 | $ D = F$EDIT(F$ELEMENT(I, ",", FDIRS),"TRIM") | ||
| 41 | $ I = I + 1 | ||
| 42 | $ IF D .EQS. "," THEN GOTO LOOP_FDIRS_END | ||
| 43 | $ tmp = EXHEADER_'D' | ||
| 44 | $ IF tmp .EQS. "" THEN GOTO LOOP_FDIRS | ||
| 45 | $ IF D .EQS. "" | ||
| 46 | $ THEN | ||
| 47 | $ COPY 'tmp' WRK_SSLINCLUDE: /LOG | ||
| 48 | $ ELSE | ||
| 49 | $ COPY [.'D']'tmp' WRK_SSLINCLUDE: /LOG | ||
| 50 | $ ENDIF | ||
| 51 | $ SET FILE/PROT=WORLD:RE WRK_SSLINCLUDE:'tmp' | ||
| 52 | $ GOTO LOOP_FDIRS | ||
| 53 | $ LOOP_FDIRS_END: | ||
| 54 | $ | ||
| 55 | $ EXIT | ||
diff --git a/src/lib/libssl/src/fips/openssl_fips_fingerprint b/src/lib/libssl/src/fips/openssl_fips_fingerprint deleted file mode 100755 index d3dfb7eb61..0000000000 --- a/src/lib/libssl/src/fips/openssl_fips_fingerprint +++ /dev/null | |||
| @@ -1,30 +0,0 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | # | ||
| 3 | # Check the library fingerprint and generate an executable fingerprint, or | ||
| 4 | # return an error | ||
| 5 | |||
| 6 | lib=$1 | ||
| 7 | exe=$2 | ||
| 8 | |||
| 9 | # deal with the case where we're run from within the build and OpenSSL is | ||
| 10 | # not yet installed. Also, make sure LD_LIBRARY_PATH is properly set in | ||
| 11 | # case shared libraries are built. | ||
| 12 | if [ "X$TOP" != "X" ] | ||
| 13 | then | ||
| 14 | if test "$OSTYPE" = msdosdjgpp; then | ||
| 15 | PATH="$TOP/apps;$TOP;$PATH" | ||
| 16 | else | ||
| 17 | PATH="$TOP/apps:$TOP:$PATH" | ||
| 18 | fi | ||
| 19 | LD_LIBRARY_PATH=$TOP; export LD_LIBRARY_PATH | ||
| 20 | else | ||
| 21 | LD_LIBRARY_PATH=.; export LD_LIBRARY_PATH | ||
| 22 | fi | ||
| 23 | |||
| 24 | echo "Checking library fingerprint for $lib" | ||
| 25 | openssl sha1 -hmac etaonrishdlcupfm $lib | sed "s/(.*\//(/" | diff -w $lib.sha1 - || { echo "$libs fingerprint mismatch"; exit 1; } | ||
| 26 | |||
| 27 | [ -x $exe.exe ] && exe=$exe.exe | ||
| 28 | |||
| 29 | echo "Making fingerprint for $exe" | ||
| 30 | openssl sha1 -hmac etaonrishdlcupfm -binary $exe > $exe.sha1 || rm $exe.sha1 | ||
diff --git a/src/lib/libssl/src/fips/rand/Makefile b/src/lib/libssl/src/fips/rand/Makefile deleted file mode 100644 index c8922abc77..0000000000 --- a/src/lib/libssl/src/fips/rand/Makefile +++ /dev/null | |||
| @@ -1,104 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/rand/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= rand | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST= fips_randtest.c | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_rand.c | ||
| 26 | LIBOBJ=fips_rand.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= fips_rand.h | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips SDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: check lib | ||
| 39 | |||
| 40 | check: | ||
| 41 | TOP=`pwd`/$(TOP) ../fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 42 | |||
| 43 | lib: $(LIBOBJ) | ||
| 44 | $(AR) $(LIB) $(LIBOBJ) | ||
| 45 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 46 | @sleep 2; touch lib | ||
| 47 | |||
| 48 | files: | ||
| 49 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 50 | |||
| 51 | links: | ||
| 52 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 53 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 54 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 55 | |||
| 56 | install: | ||
| 57 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 58 | do \ | ||
| 59 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 60 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 61 | done | ||
| 62 | |||
| 63 | tags: | ||
| 64 | ctags $(SRC) | ||
| 65 | |||
| 66 | tests: | ||
| 67 | |||
| 68 | lint: | ||
| 69 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 70 | |||
| 71 | depend: | ||
| 72 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 73 | |||
| 74 | dclean: | ||
| 75 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 76 | mv -f Makefile.new $(MAKEFILE) | ||
| 77 | |||
| 78 | clean: | ||
| 79 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 80 | |||
| 81 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 82 | |||
| 83 | fips_rand.o: ../../e_os.h ../../include/openssl/bio.h | ||
| 84 | fips_rand.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 85 | fips_rand.o: ../../include/openssl/des_old.h ../../include/openssl/e_os2.h | ||
| 86 | fips_rand.o: ../../include/openssl/err.h ../../include/openssl/fips_rand.h | ||
| 87 | fips_rand.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h | ||
| 88 | fips_rand.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h | ||
| 89 | fips_rand.o: ../../include/openssl/rand.h ../../include/openssl/safestack.h | ||
| 90 | fips_rand.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 91 | fips_rand.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 92 | fips_rand.o: fips_rand.c | ||
| 93 | fips_randtest.o: ../../e_os.h ../../include/openssl/bio.h | ||
| 94 | fips_randtest.o: ../../include/openssl/crypto.h ../../include/openssl/des.h | ||
| 95 | fips_randtest.o: ../../include/openssl/des_old.h ../../include/openssl/e_os2.h | ||
| 96 | fips_randtest.o: ../../include/openssl/err.h ../../include/openssl/fips_rand.h | ||
| 97 | fips_randtest.o: ../../include/openssl/lhash.h | ||
| 98 | fips_randtest.o: ../../include/openssl/opensslconf.h | ||
| 99 | fips_randtest.o: ../../include/openssl/opensslv.h | ||
| 100 | fips_randtest.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 101 | fips_randtest.o: ../../include/openssl/safestack.h | ||
| 102 | fips_randtest.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 103 | fips_randtest.o: ../../include/openssl/ui.h ../../include/openssl/ui_compat.h | ||
| 104 | fips_randtest.o: fips_randtest.c | ||
diff --git a/src/lib/libssl/src/fips/rand/fips_rand.c b/src/lib/libssl/src/fips/rand/fips_rand.c deleted file mode 100644 index cc2f12deb9..0000000000 --- a/src/lib/libssl/src/fips/rand/fips_rand.c +++ /dev/null | |||
| @@ -1,355 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | /* | ||
| 51 | * This is a FIPS approved PRNG, ANSI X9.31 A.2.4. | ||
| 52 | */ | ||
| 53 | |||
| 54 | #include "e_os.h" | ||
| 55 | |||
| 56 | /* If we don't define _XOPEN_SOURCE_EXTENDED, struct timeval won't | ||
| 57 | be defined and gettimeofday() won't be declared with strict compilers | ||
| 58 | like DEC C in ANSI C mode. */ | ||
| 59 | #ifndef _XOPEN_SOURCE_EXTENDED | ||
| 60 | #define _XOPEN_SOURCE_EXTENDED 1 | ||
| 61 | #endif | ||
| 62 | |||
| 63 | #include <openssl/des.h> | ||
| 64 | #include <openssl/rand.h> | ||
| 65 | #include <openssl/err.h> | ||
| 66 | #include <openssl/fips_rand.h> | ||
| 67 | #ifndef OPENSSL_SYS_WIN32 | ||
| 68 | #include <sys/time.h> | ||
| 69 | #endif | ||
| 70 | #include <assert.h> | ||
| 71 | #ifndef OPENSSL_SYS_WIN32 | ||
| 72 | # ifdef OPENSSL_UNISTD | ||
| 73 | # include OPENSSL_UNISTD | ||
| 74 | # else | ||
| 75 | # include <unistd.h> | ||
| 76 | # endif | ||
| 77 | #endif | ||
| 78 | #include <string.h> | ||
| 79 | |||
| 80 | #ifdef OPENSSL_FIPS | ||
| 81 | |||
| 82 | #define SEED_SIZE 8 | ||
| 83 | |||
| 84 | static unsigned char seed[SEED_SIZE]; | ||
| 85 | static FIPS_RAND_SIZE_T n_seed; | ||
| 86 | static FIPS_RAND_SIZE_T o_seed; | ||
| 87 | static DES_cblock key1; | ||
| 88 | static DES_cblock key2; | ||
| 89 | static DES_key_schedule ks1,ks2; | ||
| 90 | static int key_set; | ||
| 91 | static int test_mode; | ||
| 92 | static unsigned char test_faketime[8]; | ||
| 93 | |||
| 94 | #ifndef GETPID_IS_MEANINGLESS | ||
| 95 | static int seed_pid; | ||
| 96 | static int key_pid; | ||
| 97 | #endif | ||
| 98 | |||
| 99 | static void fips_rand_cleanup(void); | ||
| 100 | static void fips_rand_add(const void *buf, FIPS_RAND_SIZE_T num, double add_entropy); | ||
| 101 | static int fips_rand_bytes(unsigned char *buf, FIPS_RAND_SIZE_T num); | ||
| 102 | static int fips_rand_status(void); | ||
| 103 | |||
| 104 | static RAND_METHOD rand_fips_meth= | ||
| 105 | { | ||
| 106 | FIPS_rand_seed, | ||
| 107 | fips_rand_bytes, | ||
| 108 | fips_rand_cleanup, | ||
| 109 | fips_rand_add, | ||
| 110 | fips_rand_bytes, | ||
| 111 | fips_rand_status | ||
| 112 | }; | ||
| 113 | |||
| 114 | static int second; | ||
| 115 | |||
| 116 | RAND_METHOD *FIPS_rand_method(void) | ||
| 117 | { | ||
| 118 | return &rand_fips_meth; | ||
| 119 | } | ||
| 120 | |||
| 121 | void FIPS_set_prng_key(const unsigned char k1[8],const unsigned char k2[8]) | ||
| 122 | { | ||
| 123 | memcpy(&key1,k1,sizeof key1); | ||
| 124 | memcpy(&key2,k2,sizeof key2); | ||
| 125 | key_set=1; | ||
| 126 | #ifndef GETPID_IS_MEANINGLESS | ||
| 127 | key_pid=getpid(); | ||
| 128 | #endif | ||
| 129 | second=0; | ||
| 130 | } | ||
| 131 | |||
| 132 | void FIPS_test_mode(int test,const unsigned char faketime[8]) | ||
| 133 | { | ||
| 134 | test_mode=test; | ||
| 135 | if(!test_mode) | ||
| 136 | return; | ||
| 137 | memcpy(test_faketime,faketime,sizeof test_faketime); | ||
| 138 | } | ||
| 139 | |||
| 140 | /* NB: this returns true if _partially_ seeded */ | ||
| 141 | int FIPS_rand_seeded() | ||
| 142 | { return key_set || n_seed; } | ||
| 143 | |||
| 144 | static void fips_gettime(unsigned char buf[8]) | ||
| 145 | { | ||
| 146 | #ifdef OPENSSL_SYS_WIN32 | ||
| 147 | FILETIME ft; | ||
| 148 | #else | ||
| 149 | struct timeval tv; | ||
| 150 | #endif | ||
| 151 | |||
| 152 | if(test_mode) | ||
| 153 | { | ||
| 154 | fprintf(stderr,"WARNING!!! PRNG IN TEST MODE!!!\n"); | ||
| 155 | memcpy(buf,test_faketime,sizeof test_faketime); | ||
| 156 | return; | ||
| 157 | } | ||
| 158 | #ifdef OPENSSL_SYS_WIN32 | ||
| 159 | GetSystemTimeAsFileTime(&ft); | ||
| 160 | buf[0] = (unsigned char) (ft.dwHighDateTime & 0xff); | ||
| 161 | buf[1] = (unsigned char) ((ft.dwHighDateTime >> 8) & 0xff); | ||
| 162 | buf[2] = (unsigned char) ((ft.dwHighDateTime >> 16) & 0xff); | ||
| 163 | buf[3] = (unsigned char) ((ft.dwHighDateTime >> 24) & 0xff); | ||
| 164 | buf[4] = (unsigned char) (ft.dwLowDateTime & 0xff); | ||
| 165 | buf[5] = (unsigned char) ((ft.dwLowDateTime >> 8) & 0xff); | ||
| 166 | buf[6] = (unsigned char) ((ft.dwLowDateTime >> 16) & 0xff); | ||
| 167 | buf[7] = (unsigned char) ((ft.dwLowDateTime >> 24) & 0xff); | ||
| 168 | #else | ||
| 169 | gettimeofday(&tv,NULL); | ||
| 170 | buf[0] = (unsigned char) (tv.tv_sec & 0xff); | ||
| 171 | buf[1] = (unsigned char) ((tv.tv_sec >> 8) & 0xff); | ||
| 172 | buf[2] = (unsigned char) ((tv.tv_sec >> 16) & 0xff); | ||
| 173 | buf[3] = (unsigned char) ((tv.tv_sec >> 24) & 0xff); | ||
| 174 | buf[4] = (unsigned char) (tv.tv_usec & 0xff); | ||
| 175 | buf[5] = (unsigned char) ((tv.tv_usec >> 8) & 0xff); | ||
| 176 | buf[6] = (unsigned char) ((tv.tv_usec >> 16) & 0xff); | ||
| 177 | buf[7] = (unsigned char) ((tv.tv_usec >> 24) & 0xff); | ||
| 178 | #endif | ||
| 179 | |||
| 180 | #if 0 /* This eminently sensible strategy is not acceptable to NIST. Sigh. */ | ||
| 181 | #ifndef GETPID_IS_MEANINGLESS | ||
| 182 | /* we mix in the PID to ensure that after a fork the children don't give | ||
| 183 | * the same results as each other | ||
| 184 | */ | ||
| 185 | pid=getpid(); | ||
| 186 | /* make sure we shift the pid to the MSB */ | ||
| 187 | if((pid&0xffff0000) == 0) | ||
| 188 | pid<<=16; | ||
| 189 | *(long *)&buf[0]^=pid; | ||
| 190 | #endif | ||
| 191 | #endif | ||
| 192 | } | ||
| 193 | |||
| 194 | static void fips_rand_encrypt(unsigned char *out,const unsigned char *in) | ||
| 195 | { | ||
| 196 | DES_ecb2_encrypt(in,out,&ks1,&ks2,1); | ||
| 197 | } | ||
| 198 | |||
| 199 | static void fips_rand_cleanup(void) | ||
| 200 | { | ||
| 201 | OPENSSL_cleanse(seed,sizeof seed); | ||
| 202 | n_seed=0; | ||
| 203 | } | ||
| 204 | |||
| 205 | void FIPS_rand_seed(const void *buf_, FIPS_RAND_SIZE_T num) | ||
| 206 | { | ||
| 207 | const char *buf=buf_; | ||
| 208 | FIPS_RAND_SIZE_T n; | ||
| 209 | static int init; | ||
| 210 | |||
| 211 | /* If the key hasn't been set, we can't seed! */ | ||
| 212 | if(!key_set) | ||
| 213 | return; | ||
| 214 | |||
| 215 | CRYPTO_w_lock(CRYPTO_LOCK_RAND); | ||
| 216 | if(!init) | ||
| 217 | { | ||
| 218 | init=1; | ||
| 219 | DES_set_key(&key1,&ks1); | ||
| 220 | DES_set_key(&key2,&ks2); | ||
| 221 | } | ||
| 222 | |||
| 223 | /* | ||
| 224 | * This algorithm only uses 64 bits of seed, so ensure that we use | ||
| 225 | * the most recent 64 bits. | ||
| 226 | */ | ||
| 227 | for(n=0 ; n < num ; ) | ||
| 228 | { | ||
| 229 | FIPS_RAND_SIZE_T t=num-n; | ||
| 230 | |||
| 231 | if(o_seed+t > sizeof seed) | ||
| 232 | t=sizeof seed-o_seed; | ||
| 233 | memcpy(seed+o_seed,buf+n,t); | ||
| 234 | n+=t; | ||
| 235 | o_seed+=t; | ||
| 236 | if(o_seed == sizeof seed) | ||
| 237 | o_seed=0; | ||
| 238 | if(n_seed < sizeof seed) | ||
| 239 | n_seed+=t; | ||
| 240 | } | ||
| 241 | |||
| 242 | #ifndef GETPID_IS_MEANINGLESS | ||
| 243 | seed_pid=getpid(); | ||
| 244 | #endif | ||
| 245 | |||
| 246 | CRYPTO_w_unlock(CRYPTO_LOCK_RAND); | ||
| 247 | } | ||
| 248 | |||
| 249 | static void fips_rand_add(const void *buf, FIPS_RAND_SIZE_T num, double add_entropy) | ||
| 250 | { | ||
| 251 | FIPS_rand_seed(buf,num); | ||
| 252 | } | ||
| 253 | |||
| 254 | static int fips_rand_bytes(unsigned char *buf,FIPS_RAND_SIZE_T num) | ||
| 255 | { | ||
| 256 | FIPS_RAND_SIZE_T n; | ||
| 257 | unsigned char timeseed[8]; | ||
| 258 | unsigned char intermediate[SEED_SIZE]; | ||
| 259 | unsigned char output[SEED_SIZE]; | ||
| 260 | static unsigned char previous[SEED_SIZE]; | ||
| 261 | #ifndef GETPID_IS_MEANINGLESS | ||
| 262 | int pid; | ||
| 263 | #endif | ||
| 264 | |||
| 265 | if(n_seed < sizeof seed) | ||
| 266 | { | ||
| 267 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_NOT_SEEDED); | ||
| 268 | return 0; | ||
| 269 | } | ||
| 270 | |||
| 271 | #ifdef FIPS_RAND_MAX_SIZE_T | ||
| 272 | if (num > FIPS_RAND_MAX_SIZE_T) | ||
| 273 | { | ||
| 274 | #ifdef RAND_R_PRNG_ASKING_FOR_TOO_MUCH | ||
| 275 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_ASKING_FOR_TOO_MUCH); | ||
| 276 | return 0; | ||
| 277 | #else | ||
| 278 | return -1; /* signal "not supported" condition */ | ||
| 279 | #endif | ||
| 280 | } | ||
| 281 | #endif | ||
| 282 | |||
| 283 | #ifndef GETPID_IS_MEANINGLESS | ||
| 284 | pid=getpid(); | ||
| 285 | if(pid != seed_pid) | ||
| 286 | { | ||
| 287 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_NOT_RESEEDED); | ||
| 288 | return 0; | ||
| 289 | } | ||
| 290 | if(pid != key_pid) | ||
| 291 | { | ||
| 292 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_NOT_REKEYED); | ||
| 293 | return 0; | ||
| 294 | } | ||
| 295 | #endif | ||
| 296 | |||
| 297 | CRYPTO_w_lock(CRYPTO_LOCK_RAND); | ||
| 298 | |||
| 299 | for(n=0 ; n < num ; ) | ||
| 300 | { | ||
| 301 | unsigned char t[SEED_SIZE]; | ||
| 302 | FIPS_RAND_SIZE_T l; | ||
| 303 | |||
| 304 | /* ANS X9.31 A.2.4: I = ede*K(DT) | ||
| 305 | timeseed == DT | ||
| 306 | intermediate == I | ||
| 307 | */ | ||
| 308 | fips_gettime(timeseed); | ||
| 309 | fips_rand_encrypt(intermediate,timeseed); | ||
| 310 | |||
| 311 | /* ANS X9.31 A.2.4: R = ede*K(I^V) | ||
| 312 | intermediate == I | ||
| 313 | seed == V | ||
| 314 | output == R | ||
| 315 | */ | ||
| 316 | for(l=0 ; l < sizeof t ; ++l) | ||
| 317 | t[l]=intermediate[l]^seed[l]; | ||
| 318 | fips_rand_encrypt(output,t); | ||
| 319 | |||
| 320 | /* ANS X9.31 A.2.4: V = ede*K(R^I) | ||
| 321 | output == R | ||
| 322 | intermediate == I | ||
| 323 | seed == V | ||
| 324 | */ | ||
| 325 | for(l=0 ; l < sizeof t ; ++l) | ||
| 326 | t[l]=output[l]^intermediate[l]; | ||
| 327 | fips_rand_encrypt(seed,t); | ||
| 328 | |||
| 329 | if(second && !memcmp(output,previous,sizeof previous)) | ||
| 330 | { | ||
| 331 | RANDerr(RAND_F_FIPS_RAND_BYTES,RAND_R_PRNG_STUCK); | ||
| 332 | CRYPTO_w_unlock(CRYPTO_LOCK_RAND); | ||
| 333 | return 0; | ||
| 334 | } | ||
| 335 | memcpy(previous,output,sizeof previous); | ||
| 336 | second=1; | ||
| 337 | |||
| 338 | /* Successive values of R may be concatenated to produce a | ||
| 339 | pseudo random number of the desired length */ | ||
| 340 | l=SEED_SIZE < num-n ? SEED_SIZE : num-n; | ||
| 341 | memcpy(buf+n,output,l); | ||
| 342 | n+=l; | ||
| 343 | } | ||
| 344 | |||
| 345 | CRYPTO_w_unlock(CRYPTO_LOCK_RAND); | ||
| 346 | |||
| 347 | return 1; | ||
| 348 | } | ||
| 349 | |||
| 350 | static int fips_rand_status(void) | ||
| 351 | { | ||
| 352 | return n_seed == sizeof seed; | ||
| 353 | } | ||
| 354 | |||
| 355 | #endif /* OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/fips/rsa/Makefile b/src/lib/libssl/src/fips/rsa/Makefile deleted file mode 100644 index bb20f86442..0000000000 --- a/src/lib/libssl/src/fips/rsa/Makefile +++ /dev/null | |||
| @@ -1,111 +0,0 @@ | |||
| 1 | # | ||
| 2 | # SSLeay/fips/rsa/Makefile | ||
| 3 | # | ||
| 4 | |||
| 5 | DIR= rsa | ||
| 6 | TOP= ../.. | ||
| 7 | CC= cc | ||
| 8 | INCLUDES= | ||
| 9 | CFLAG=-g | ||
| 10 | INSTALL_PREFIX= | ||
| 11 | OPENSSLDIR= /usr/local/ssl | ||
| 12 | INSTALLTOP=/usr/local/ssl | ||
| 13 | MAKEDEPPROG= makedepend | ||
| 14 | MAKEDEPEND= $(TOP)/util/domd $(TOP) -MD $(MAKEDEPPROG) | ||
| 15 | MAKEFILE= Makefile | ||
| 16 | AR= ar r | ||
| 17 | |||
| 18 | CFLAGS= $(INCLUDES) $(CFLAG) | ||
| 19 | |||
| 20 | GENERAL=Makefile | ||
| 21 | TEST= | ||
| 22 | APPS= | ||
| 23 | |||
| 24 | LIB=$(TOP)/libcrypto.a | ||
| 25 | LIBSRC=fips_rsa_eay.c fips_rsa_gen.c fips_rsa_selftest.c | ||
| 26 | LIBOBJ=fips_rsa_eay.o fips_rsa_gen.o fips_rsa_selftest.o | ||
| 27 | |||
| 28 | SRC= $(LIBSRC) | ||
| 29 | |||
| 30 | EXHEADER= | ||
| 31 | HEADER= $(EXHEADER) | ||
| 32 | |||
| 33 | ALL= $(GENERAL) $(SRC) $(HEADER) | ||
| 34 | |||
| 35 | top: | ||
| 36 | (cd $(TOP); $(MAKE) DIRS=fips FDIRS=$(DIR) sub_all) | ||
| 37 | |||
| 38 | all: check lib | ||
| 39 | |||
| 40 | lib: $(LIBOBJ) | ||
| 41 | $(AR) $(LIB) $(LIBOBJ) | ||
| 42 | $(RANLIB) $(LIB) || echo Never mind. | ||
| 43 | @sleep 2; touch lib | ||
| 44 | |||
| 45 | check: | ||
| 46 | TOP=`pwd`/$(TOP) ../fips_check_sha1 fingerprint.sha1 $(SRC) $(HEADER) | ||
| 47 | |||
| 48 | files: | ||
| 49 | $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO | ||
| 50 | |||
| 51 | links: | ||
| 52 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/include/openssl $(EXHEADER) | ||
| 53 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/test $(TEST) | ||
| 54 | @$(PERL) $(TOP)/util/mklink.pl $(TOP)/apps $(APPS) | ||
| 55 | |||
| 56 | install: | ||
| 57 | @headerlist="$(EXHEADER)"; for i in $$headerlist; \ | ||
| 58 | do \ | ||
| 59 | (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \ | ||
| 60 | chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \ | ||
| 61 | done | ||
| 62 | |||
| 63 | tags: | ||
| 64 | ctags $(SRC) | ||
| 65 | |||
| 66 | tests: | ||
| 67 | |||
| 68 | lint: | ||
| 69 | lint -DLINT $(INCLUDES) $(SRC)>fluff | ||
| 70 | |||
| 71 | depend: | ||
| 72 | $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(SRC) $(TEST) | ||
| 73 | |||
| 74 | dclean: | ||
| 75 | $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new | ||
| 76 | mv -f Makefile.new $(MAKEFILE) | ||
| 77 | |||
| 78 | clean: | ||
| 79 | rm -f *.o *.obj lib tags core .pure .nfs* *.old *.bak fluff | ||
| 80 | # DO NOT DELETE THIS LINE -- make depend depends on it. | ||
| 81 | |||
| 82 | fips_rsa_eay.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 83 | fips_rsa_eay.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 84 | fips_rsa_eay.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 85 | fips_rsa_eay.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 86 | fips_rsa_eay.o: ../../include/openssl/opensslconf.h | ||
| 87 | fips_rsa_eay.o: ../../include/openssl/opensslv.h | ||
| 88 | fips_rsa_eay.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h | ||
| 89 | fips_rsa_eay.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h | ||
| 90 | fips_rsa_eay.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h | ||
| 91 | fips_rsa_eay.o: fips_rsa_eay.c | ||
| 92 | fips_rsa_gen.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 93 | fips_rsa_gen.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 94 | fips_rsa_gen.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 95 | fips_rsa_gen.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 96 | fips_rsa_gen.o: ../../include/openssl/opensslconf.h | ||
| 97 | fips_rsa_gen.o: ../../include/openssl/opensslv.h | ||
| 98 | fips_rsa_gen.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rsa.h | ||
| 99 | fips_rsa_gen.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h | ||
| 100 | fips_rsa_gen.o: ../../include/openssl/symhacks.h fips_rsa_gen.c | ||
| 101 | fips_rsa_selftest.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h | ||
| 102 | fips_rsa_selftest.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h | ||
| 103 | fips_rsa_selftest.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h | ||
| 104 | fips_rsa_selftest.o: ../../include/openssl/fips.h ../../include/openssl/lhash.h | ||
| 105 | fips_rsa_selftest.o: ../../include/openssl/opensslconf.h | ||
| 106 | fips_rsa_selftest.o: ../../include/openssl/opensslv.h | ||
| 107 | fips_rsa_selftest.o: ../../include/openssl/ossl_typ.h | ||
| 108 | fips_rsa_selftest.o: ../../include/openssl/rsa.h | ||
| 109 | fips_rsa_selftest.o: ../../include/openssl/safestack.h | ||
| 110 | fips_rsa_selftest.o: ../../include/openssl/sha.h ../../include/openssl/stack.h | ||
| 111 | fips_rsa_selftest.o: ../../include/openssl/symhacks.h fips_rsa_selftest.c | ||
diff --git a/src/lib/libssl/src/fips/rsa/fips_rsa_eay.c b/src/lib/libssl/src/fips/rsa/fips_rsa_eay.c deleted file mode 100644 index c571e2b1bf..0000000000 --- a/src/lib/libssl/src/fips/rsa/fips_rsa_eay.c +++ /dev/null | |||
| @@ -1,735 +0,0 @@ | |||
| 1 | /* crypto/rsa/rsa_eay.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <openssl/err.h> | ||
| 61 | #include <openssl/bn.h> | ||
| 62 | #include <openssl/rsa.h> | ||
| 63 | #include <openssl/rand.h> | ||
| 64 | #include <openssl/fips.h> | ||
| 65 | |||
| 66 | #if !defined(RSA_NULL) && defined(OPENSSL_FIPS) | ||
| 67 | |||
| 68 | static int RSA_eay_public_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 69 | unsigned char *to, RSA *rsa,int padding); | ||
| 70 | static int RSA_eay_private_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 71 | unsigned char *to, RSA *rsa,int padding); | ||
| 72 | static int RSA_eay_public_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 73 | unsigned char *to, RSA *rsa,int padding); | ||
| 74 | static int RSA_eay_private_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 75 | unsigned char *to, RSA *rsa,int padding); | ||
| 76 | static int RSA_eay_mod_exp(BIGNUM *r0, const BIGNUM *i, RSA *rsa); | ||
| 77 | static int RSA_eay_init(RSA *rsa); | ||
| 78 | static int RSA_eay_finish(RSA *rsa); | ||
| 79 | static RSA_METHOD rsa_pkcs1_eay_meth={ | ||
| 80 | "Eric Young's PKCS#1 RSA", | ||
| 81 | RSA_eay_public_encrypt, | ||
| 82 | RSA_eay_public_decrypt, /* signature verification */ | ||
| 83 | RSA_eay_private_encrypt, /* signing */ | ||
| 84 | RSA_eay_private_decrypt, | ||
| 85 | RSA_eay_mod_exp, | ||
| 86 | BN_mod_exp_mont, /* XXX probably we should not use Montgomery if e == 3 */ | ||
| 87 | RSA_eay_init, | ||
| 88 | RSA_eay_finish, | ||
| 89 | 0, /* flags */ | ||
| 90 | NULL, | ||
| 91 | 0, /* rsa_sign */ | ||
| 92 | 0 /* rsa_verify */ | ||
| 93 | }; | ||
| 94 | |||
| 95 | const RSA_METHOD *RSA_PKCS1_SSLeay(void) | ||
| 96 | { | ||
| 97 | return(&rsa_pkcs1_eay_meth); | ||
| 98 | } | ||
| 99 | |||
| 100 | static int RSA_eay_public_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 101 | unsigned char *to, RSA *rsa, int padding) | ||
| 102 | { | ||
| 103 | BIGNUM f,ret; | ||
| 104 | int i,j,k,num=0,r= -1; | ||
| 105 | unsigned char *buf=NULL; | ||
| 106 | BN_CTX *ctx=NULL; | ||
| 107 | |||
| 108 | BN_init(&f); | ||
| 109 | BN_init(&ret); | ||
| 110 | |||
| 111 | if(FIPS_selftest_failed()) | ||
| 112 | { | ||
| 113 | FIPSerr(FIPS_F_RSA_EAY_PUBLIC_ENCRYPT,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 114 | goto err; | ||
| 115 | } | ||
| 116 | |||
| 117 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 118 | num=BN_num_bytes(rsa->n); | ||
| 119 | if ((buf=(unsigned char *)OPENSSL_malloc(num)) == NULL) | ||
| 120 | { | ||
| 121 | RSAerr(RSA_F_RSA_EAY_PUBLIC_ENCRYPT,ERR_R_MALLOC_FAILURE); | ||
| 122 | goto err; | ||
| 123 | } | ||
| 124 | |||
| 125 | switch (padding) | ||
| 126 | { | ||
| 127 | case RSA_PKCS1_PADDING: | ||
| 128 | i=RSA_padding_add_PKCS1_type_2(buf,num,from,flen); | ||
| 129 | break; | ||
| 130 | #ifndef OPENSSL_NO_SHA | ||
| 131 | case RSA_PKCS1_OAEP_PADDING: | ||
| 132 | i=RSA_padding_add_PKCS1_OAEP(buf,num,from,flen,NULL,0); | ||
| 133 | break; | ||
| 134 | #endif | ||
| 135 | case RSA_SSLV23_PADDING: | ||
| 136 | i=RSA_padding_add_SSLv23(buf,num,from,flen); | ||
| 137 | break; | ||
| 138 | case RSA_NO_PADDING: | ||
| 139 | i=RSA_padding_add_none(buf,num,from,flen); | ||
| 140 | break; | ||
| 141 | default: | ||
| 142 | RSAerr(RSA_F_RSA_EAY_PUBLIC_ENCRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 143 | goto err; | ||
| 144 | } | ||
| 145 | if (i <= 0) goto err; | ||
| 146 | |||
| 147 | if (BN_bin2bn(buf,num,&f) == NULL) goto err; | ||
| 148 | |||
| 149 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 150 | { | ||
| 151 | /* usually the padding functions would catch this */ | ||
| 152 | RSAerr(RSA_F_RSA_EAY_PUBLIC_ENCRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 153 | goto err; | ||
| 154 | } | ||
| 155 | |||
| 156 | if ((rsa->_method_mod_n == NULL) && (rsa->flags & RSA_FLAG_CACHE_PUBLIC)) | ||
| 157 | { | ||
| 158 | BN_MONT_CTX* bn_mont_ctx; | ||
| 159 | if ((bn_mont_ctx=BN_MONT_CTX_new()) == NULL) | ||
| 160 | goto err; | ||
| 161 | if (!BN_MONT_CTX_set(bn_mont_ctx,rsa->n,ctx)) | ||
| 162 | { | ||
| 163 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 164 | goto err; | ||
| 165 | } | ||
| 166 | if (rsa->_method_mod_n == NULL) /* other thread may have finished first */ | ||
| 167 | { | ||
| 168 | CRYPTO_w_lock(CRYPTO_LOCK_RSA); | ||
| 169 | if (rsa->_method_mod_n == NULL) | ||
| 170 | { | ||
| 171 | rsa->_method_mod_n = bn_mont_ctx; | ||
| 172 | bn_mont_ctx = NULL; | ||
| 173 | } | ||
| 174 | CRYPTO_w_unlock(CRYPTO_LOCK_RSA); | ||
| 175 | } | ||
| 176 | if (bn_mont_ctx) | ||
| 177 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 178 | } | ||
| 179 | |||
| 180 | if (!rsa->meth->bn_mod_exp(&ret,&f,rsa->e,rsa->n,ctx, | ||
| 181 | rsa->_method_mod_n)) goto err; | ||
| 182 | |||
| 183 | /* put in leading 0 bytes if the number is less than the | ||
| 184 | * length of the modulus */ | ||
| 185 | j=BN_num_bytes(&ret); | ||
| 186 | i=BN_bn2bin(&ret,&(to[num-j])); | ||
| 187 | for (k=0; k<(num-i); k++) | ||
| 188 | to[k]=0; | ||
| 189 | |||
| 190 | r=num; | ||
| 191 | err: | ||
| 192 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 193 | BN_clear_free(&f); | ||
| 194 | BN_clear_free(&ret); | ||
| 195 | if (buf != NULL) | ||
| 196 | { | ||
| 197 | OPENSSL_cleanse(buf,num); | ||
| 198 | OPENSSL_free(buf); | ||
| 199 | } | ||
| 200 | return(r); | ||
| 201 | } | ||
| 202 | |||
| 203 | static int rsa_eay_blinding(RSA *rsa, BN_CTX *ctx) | ||
| 204 | { | ||
| 205 | int ret = 1; | ||
| 206 | CRYPTO_w_lock(CRYPTO_LOCK_RSA); | ||
| 207 | /* Check again inside the lock - the macro's check is racey */ | ||
| 208 | if(rsa->blinding == NULL) | ||
| 209 | ret = RSA_blinding_on(rsa, ctx); | ||
| 210 | CRYPTO_w_unlock(CRYPTO_LOCK_RSA); | ||
| 211 | return ret; | ||
| 212 | } | ||
| 213 | |||
| 214 | #define BLINDING_HELPER(rsa, ctx, err_instr) \ | ||
| 215 | do { \ | ||
| 216 | if((!((rsa)->flags & RSA_FLAG_NO_BLINDING)) && \ | ||
| 217 | ((rsa)->blinding == NULL) && \ | ||
| 218 | !rsa_eay_blinding(rsa, ctx)) \ | ||
| 219 | err_instr \ | ||
| 220 | } while(0) | ||
| 221 | |||
| 222 | static BN_BLINDING *setup_blinding(RSA *rsa, BN_CTX *ctx) | ||
| 223 | { | ||
| 224 | BIGNUM *A, *Ai; | ||
| 225 | BN_BLINDING *ret = NULL; | ||
| 226 | |||
| 227 | /* added in OpenSSL 0.9.6j and 0.9.7b */ | ||
| 228 | |||
| 229 | /* NB: similar code appears in RSA_blinding_on (rsa_lib.c); | ||
| 230 | * this should be placed in a new function of its own, but for reasons | ||
| 231 | * of binary compatibility can't */ | ||
| 232 | |||
| 233 | BN_CTX_start(ctx); | ||
| 234 | A = BN_CTX_get(ctx); | ||
| 235 | if ((RAND_status() == 0) && rsa->d != NULL && rsa->d->d != NULL) | ||
| 236 | { | ||
| 237 | /* if PRNG is not properly seeded, resort to secret exponent as unpredictable seed */ | ||
| 238 | RAND_add(rsa->d->d, rsa->d->dmax * sizeof rsa->d->d[0], 0); | ||
| 239 | if (!BN_pseudo_rand_range(A,rsa->n)) goto err; | ||
| 240 | } | ||
| 241 | else | ||
| 242 | { | ||
| 243 | if (!BN_rand_range(A,rsa->n)) goto err; | ||
| 244 | } | ||
| 245 | if ((Ai=BN_mod_inverse(NULL,A,rsa->n,ctx)) == NULL) goto err; | ||
| 246 | |||
| 247 | if (!rsa->meth->bn_mod_exp(A,A,rsa->e,rsa->n,ctx,rsa->_method_mod_n)) | ||
| 248 | goto err; | ||
| 249 | ret = BN_BLINDING_new(A,Ai,rsa->n); | ||
| 250 | BN_free(Ai); | ||
| 251 | err: | ||
| 252 | BN_CTX_end(ctx); | ||
| 253 | return ret; | ||
| 254 | } | ||
| 255 | |||
| 256 | /* signing */ | ||
| 257 | static int RSA_eay_private_encrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 258 | unsigned char *to, RSA *rsa, int padding) | ||
| 259 | { | ||
| 260 | BIGNUM f,ret; | ||
| 261 | int i,j,k,num=0,r= -1; | ||
| 262 | unsigned char *buf=NULL; | ||
| 263 | BN_CTX *ctx=NULL; | ||
| 264 | int local_blinding = 0; | ||
| 265 | BN_BLINDING *blinding = NULL; | ||
| 266 | |||
| 267 | BN_init(&f); | ||
| 268 | BN_init(&ret); | ||
| 269 | |||
| 270 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 271 | num=BN_num_bytes(rsa->n); | ||
| 272 | if ((buf=(unsigned char *)OPENSSL_malloc(num)) == NULL) | ||
| 273 | { | ||
| 274 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,ERR_R_MALLOC_FAILURE); | ||
| 275 | goto err; | ||
| 276 | } | ||
| 277 | |||
| 278 | switch (padding) | ||
| 279 | { | ||
| 280 | case RSA_PKCS1_PADDING: | ||
| 281 | i=RSA_padding_add_PKCS1_type_1(buf,num,from,flen); | ||
| 282 | break; | ||
| 283 | case RSA_NO_PADDING: | ||
| 284 | i=RSA_padding_add_none(buf,num,from,flen); | ||
| 285 | break; | ||
| 286 | case RSA_SSLV23_PADDING: | ||
| 287 | default: | ||
| 288 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 289 | goto err; | ||
| 290 | } | ||
| 291 | if (i <= 0) goto err; | ||
| 292 | |||
| 293 | if (BN_bin2bn(buf,num,&f) == NULL) goto err; | ||
| 294 | |||
| 295 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 296 | { | ||
| 297 | /* usually the padding functions would catch this */ | ||
| 298 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 299 | goto err; | ||
| 300 | } | ||
| 301 | |||
| 302 | BLINDING_HELPER(rsa, ctx, goto err;); | ||
| 303 | blinding = rsa->blinding; | ||
| 304 | |||
| 305 | /* Now unless blinding is disabled, 'blinding' is non-NULL. | ||
| 306 | * But the BN_BLINDING object may be owned by some other thread | ||
| 307 | * (we don't want to keep it constant and we don't want to use | ||
| 308 | * lots of locking to avoid race conditions, so only a single | ||
| 309 | * thread can use it; other threads have to use local blinding | ||
| 310 | * factors) */ | ||
| 311 | if (!(rsa->flags & RSA_FLAG_NO_BLINDING)) | ||
| 312 | { | ||
| 313 | if (blinding == NULL) | ||
| 314 | { | ||
| 315 | RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT, ERR_R_INTERNAL_ERROR); | ||
| 316 | goto err; | ||
| 317 | } | ||
| 318 | } | ||
| 319 | |||
| 320 | if (blinding != NULL) | ||
| 321 | { | ||
| 322 | if (blinding->thread_id != CRYPTO_thread_id()) | ||
| 323 | { | ||
| 324 | /* we need a local one-time blinding factor */ | ||
| 325 | |||
| 326 | blinding = setup_blinding(rsa, ctx); | ||
| 327 | if (blinding == NULL) | ||
| 328 | goto err; | ||
| 329 | local_blinding = 1; | ||
| 330 | } | ||
| 331 | } | ||
| 332 | |||
| 333 | if (blinding) | ||
| 334 | if (!BN_BLINDING_convert(&f, blinding, ctx)) goto err; | ||
| 335 | |||
| 336 | if ( (rsa->flags & RSA_FLAG_EXT_PKEY) || | ||
| 337 | ((rsa->p != NULL) && | ||
| 338 | (rsa->q != NULL) && | ||
| 339 | (rsa->dmp1 != NULL) && | ||
| 340 | (rsa->dmq1 != NULL) && | ||
| 341 | (rsa->iqmp != NULL)) ) | ||
| 342 | { if (!rsa->meth->rsa_mod_exp(&ret,&f,rsa)) goto err; } | ||
| 343 | else | ||
| 344 | { | ||
| 345 | if (!rsa->meth->bn_mod_exp(&ret,&f,rsa->d,rsa->n,ctx,NULL)) goto err; | ||
| 346 | } | ||
| 347 | |||
| 348 | if (blinding) | ||
| 349 | if (!BN_BLINDING_invert(&ret, blinding, ctx)) goto err; | ||
| 350 | |||
| 351 | /* put in leading 0 bytes if the number is less than the | ||
| 352 | * length of the modulus */ | ||
| 353 | j=BN_num_bytes(&ret); | ||
| 354 | i=BN_bn2bin(&ret,&(to[num-j])); | ||
| 355 | for (k=0; k<(num-i); k++) | ||
| 356 | to[k]=0; | ||
| 357 | |||
| 358 | r=num; | ||
| 359 | err: | ||
| 360 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 361 | BN_clear_free(&ret); | ||
| 362 | BN_clear_free(&f); | ||
| 363 | if (local_blinding) | ||
| 364 | BN_BLINDING_free(blinding); | ||
| 365 | if (buf != NULL) | ||
| 366 | { | ||
| 367 | OPENSSL_cleanse(buf,num); | ||
| 368 | OPENSSL_free(buf); | ||
| 369 | } | ||
| 370 | return(r); | ||
| 371 | } | ||
| 372 | |||
| 373 | static int RSA_eay_private_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 374 | unsigned char *to, RSA *rsa, int padding) | ||
| 375 | { | ||
| 376 | BIGNUM f,ret; | ||
| 377 | int j,num=0,r= -1; | ||
| 378 | unsigned char *p; | ||
| 379 | unsigned char *buf=NULL; | ||
| 380 | BN_CTX *ctx=NULL; | ||
| 381 | int local_blinding = 0; | ||
| 382 | BN_BLINDING *blinding = NULL; | ||
| 383 | |||
| 384 | BN_init(&f); | ||
| 385 | BN_init(&ret); | ||
| 386 | ctx=BN_CTX_new(); | ||
| 387 | if (ctx == NULL) goto err; | ||
| 388 | |||
| 389 | num=BN_num_bytes(rsa->n); | ||
| 390 | |||
| 391 | if ((buf=(unsigned char *)OPENSSL_malloc(num)) == NULL) | ||
| 392 | { | ||
| 393 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,ERR_R_MALLOC_FAILURE); | ||
| 394 | goto err; | ||
| 395 | } | ||
| 396 | |||
| 397 | /* This check was for equality but PGP does evil things | ||
| 398 | * and chops off the top '0' bytes */ | ||
| 399 | if (flen > num) | ||
| 400 | { | ||
| 401 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_DATA_GREATER_THAN_MOD_LEN); | ||
| 402 | goto err; | ||
| 403 | } | ||
| 404 | |||
| 405 | /* make data into a big number */ | ||
| 406 | if (BN_bin2bn(from,(int)flen,&f) == NULL) goto err; | ||
| 407 | |||
| 408 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 409 | { | ||
| 410 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 411 | goto err; | ||
| 412 | } | ||
| 413 | |||
| 414 | BLINDING_HELPER(rsa, ctx, goto err;); | ||
| 415 | blinding = rsa->blinding; | ||
| 416 | |||
| 417 | /* Now unless blinding is disabled, 'blinding' is non-NULL. | ||
| 418 | * But the BN_BLINDING object may be owned by some other thread | ||
| 419 | * (we don't want to keep it constant and we don't want to use | ||
| 420 | * lots of locking to avoid race conditions, so only a single | ||
| 421 | * thread can use it; other threads have to use local blinding | ||
| 422 | * factors) */ | ||
| 423 | if (!(rsa->flags & RSA_FLAG_NO_BLINDING)) | ||
| 424 | { | ||
| 425 | if (blinding == NULL) | ||
| 426 | { | ||
| 427 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT, ERR_R_INTERNAL_ERROR); | ||
| 428 | goto err; | ||
| 429 | } | ||
| 430 | } | ||
| 431 | |||
| 432 | if (blinding != NULL) | ||
| 433 | { | ||
| 434 | if (blinding->thread_id != CRYPTO_thread_id()) | ||
| 435 | { | ||
| 436 | /* we need a local one-time blinding factor */ | ||
| 437 | |||
| 438 | blinding = setup_blinding(rsa, ctx); | ||
| 439 | if (blinding == NULL) | ||
| 440 | goto err; | ||
| 441 | local_blinding = 1; | ||
| 442 | } | ||
| 443 | } | ||
| 444 | |||
| 445 | if (blinding) | ||
| 446 | if (!BN_BLINDING_convert(&f, blinding, ctx)) goto err; | ||
| 447 | |||
| 448 | /* do the decrypt */ | ||
| 449 | if ( (rsa->flags & RSA_FLAG_EXT_PKEY) || | ||
| 450 | ((rsa->p != NULL) && | ||
| 451 | (rsa->q != NULL) && | ||
| 452 | (rsa->dmp1 != NULL) && | ||
| 453 | (rsa->dmq1 != NULL) && | ||
| 454 | (rsa->iqmp != NULL)) ) | ||
| 455 | { if (!rsa->meth->rsa_mod_exp(&ret,&f,rsa)) goto err; } | ||
| 456 | else | ||
| 457 | { | ||
| 458 | if (!rsa->meth->bn_mod_exp(&ret,&f,rsa->d,rsa->n,ctx,NULL)) | ||
| 459 | goto err; | ||
| 460 | } | ||
| 461 | |||
| 462 | if (blinding) | ||
| 463 | if (!BN_BLINDING_invert(&ret, blinding, ctx)) goto err; | ||
| 464 | |||
| 465 | p=buf; | ||
| 466 | j=BN_bn2bin(&ret,p); /* j is only used with no-padding mode */ | ||
| 467 | |||
| 468 | switch (padding) | ||
| 469 | { | ||
| 470 | case RSA_PKCS1_PADDING: | ||
| 471 | r=RSA_padding_check_PKCS1_type_2(to,num,buf,j,num); | ||
| 472 | break; | ||
| 473 | #ifndef OPENSSL_NO_SHA | ||
| 474 | case RSA_PKCS1_OAEP_PADDING: | ||
| 475 | r=RSA_padding_check_PKCS1_OAEP(to,num,buf,j,num,NULL,0); | ||
| 476 | break; | ||
| 477 | #endif | ||
| 478 | case RSA_SSLV23_PADDING: | ||
| 479 | r=RSA_padding_check_SSLv23(to,num,buf,j,num); | ||
| 480 | break; | ||
| 481 | case RSA_NO_PADDING: | ||
| 482 | r=RSA_padding_check_none(to,num,buf,j,num); | ||
| 483 | break; | ||
| 484 | default: | ||
| 485 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 486 | goto err; | ||
| 487 | } | ||
| 488 | if (r < 0) | ||
| 489 | RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,RSA_R_PADDING_CHECK_FAILED); | ||
| 490 | |||
| 491 | err: | ||
| 492 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 493 | BN_clear_free(&f); | ||
| 494 | BN_clear_free(&ret); | ||
| 495 | if (local_blinding) | ||
| 496 | BN_BLINDING_free(blinding); | ||
| 497 | if (buf != NULL) | ||
| 498 | { | ||
| 499 | OPENSSL_cleanse(buf,num); | ||
| 500 | OPENSSL_free(buf); | ||
| 501 | } | ||
| 502 | return(r); | ||
| 503 | } | ||
| 504 | |||
| 505 | /* signature verification */ | ||
| 506 | static int RSA_eay_public_decrypt(FIPS_RSA_SIZE_T flen, const unsigned char *from, | ||
| 507 | unsigned char *to, RSA *rsa, int padding) | ||
| 508 | { | ||
| 509 | BIGNUM f,ret; | ||
| 510 | int i,num=0,r= -1; | ||
| 511 | unsigned char *p; | ||
| 512 | unsigned char *buf=NULL; | ||
| 513 | BN_CTX *ctx=NULL; | ||
| 514 | |||
| 515 | BN_init(&f); | ||
| 516 | BN_init(&ret); | ||
| 517 | ctx=BN_CTX_new(); | ||
| 518 | if (ctx == NULL) goto err; | ||
| 519 | |||
| 520 | num=BN_num_bytes(rsa->n); | ||
| 521 | buf=(unsigned char *)OPENSSL_malloc(num); | ||
| 522 | if (buf == NULL) | ||
| 523 | { | ||
| 524 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,ERR_R_MALLOC_FAILURE); | ||
| 525 | goto err; | ||
| 526 | } | ||
| 527 | |||
| 528 | /* This check was for equality but PGP does evil things | ||
| 529 | * and chops off the top '0' bytes */ | ||
| 530 | if (flen > num) | ||
| 531 | { | ||
| 532 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_DATA_GREATER_THAN_MOD_LEN); | ||
| 533 | goto err; | ||
| 534 | } | ||
| 535 | |||
| 536 | if (BN_bin2bn(from,flen,&f) == NULL) goto err; | ||
| 537 | |||
| 538 | if (BN_ucmp(&f, rsa->n) >= 0) | ||
| 539 | { | ||
| 540 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_DATA_TOO_LARGE_FOR_MODULUS); | ||
| 541 | goto err; | ||
| 542 | } | ||
| 543 | |||
| 544 | /* do the decrypt */ | ||
| 545 | if ((rsa->_method_mod_n == NULL) && (rsa->flags & RSA_FLAG_CACHE_PUBLIC)) | ||
| 546 | { | ||
| 547 | BN_MONT_CTX* bn_mont_ctx; | ||
| 548 | if ((bn_mont_ctx=BN_MONT_CTX_new()) == NULL) | ||
| 549 | goto err; | ||
| 550 | if (!BN_MONT_CTX_set(bn_mont_ctx,rsa->n,ctx)) | ||
| 551 | { | ||
| 552 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 553 | goto err; | ||
| 554 | } | ||
| 555 | if (rsa->_method_mod_n == NULL) /* other thread may have finished first */ | ||
| 556 | { | ||
| 557 | CRYPTO_w_lock(CRYPTO_LOCK_RSA); | ||
| 558 | if (rsa->_method_mod_n == NULL) | ||
| 559 | { | ||
| 560 | rsa->_method_mod_n = bn_mont_ctx; | ||
| 561 | bn_mont_ctx = NULL; | ||
| 562 | } | ||
| 563 | CRYPTO_w_unlock(CRYPTO_LOCK_RSA); | ||
| 564 | } | ||
| 565 | if (bn_mont_ctx) | ||
| 566 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 567 | } | ||
| 568 | |||
| 569 | if (!rsa->meth->bn_mod_exp(&ret,&f,rsa->e,rsa->n,ctx, | ||
| 570 | rsa->_method_mod_n)) goto err; | ||
| 571 | |||
| 572 | p=buf; | ||
| 573 | i=BN_bn2bin(&ret,p); | ||
| 574 | |||
| 575 | switch (padding) | ||
| 576 | { | ||
| 577 | case RSA_PKCS1_PADDING: | ||
| 578 | r=RSA_padding_check_PKCS1_type_1(to,num,buf,i,num); | ||
| 579 | break; | ||
| 580 | case RSA_NO_PADDING: | ||
| 581 | r=RSA_padding_check_none(to,num,buf,i,num); | ||
| 582 | break; | ||
| 583 | default: | ||
| 584 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_UNKNOWN_PADDING_TYPE); | ||
| 585 | goto err; | ||
| 586 | } | ||
| 587 | if (r < 0) | ||
| 588 | RSAerr(RSA_F_RSA_EAY_PUBLIC_DECRYPT,RSA_R_PADDING_CHECK_FAILED); | ||
| 589 | |||
| 590 | err: | ||
| 591 | if (ctx != NULL) BN_CTX_free(ctx); | ||
| 592 | BN_clear_free(&f); | ||
| 593 | BN_clear_free(&ret); | ||
| 594 | if (buf != NULL) | ||
| 595 | { | ||
| 596 | OPENSSL_cleanse(buf,num); | ||
| 597 | OPENSSL_free(buf); | ||
| 598 | } | ||
| 599 | return(r); | ||
| 600 | } | ||
| 601 | |||
| 602 | static int RSA_eay_mod_exp(BIGNUM *r0, const BIGNUM *I, RSA *rsa) | ||
| 603 | { | ||
| 604 | BIGNUM r1,m1,vrfy; | ||
| 605 | int ret=0; | ||
| 606 | BN_CTX *ctx; | ||
| 607 | |||
| 608 | BN_init(&m1); | ||
| 609 | BN_init(&r1); | ||
| 610 | BN_init(&vrfy); | ||
| 611 | if ((ctx=BN_CTX_new()) == NULL) goto err; | ||
| 612 | |||
| 613 | if (rsa->flags & RSA_FLAG_CACHE_PRIVATE) | ||
| 614 | { | ||
| 615 | if (rsa->_method_mod_p == NULL) | ||
| 616 | { | ||
| 617 | BN_MONT_CTX* bn_mont_ctx; | ||
| 618 | if ((bn_mont_ctx=BN_MONT_CTX_new()) == NULL) | ||
| 619 | goto err; | ||
| 620 | if (!BN_MONT_CTX_set(bn_mont_ctx,rsa->p,ctx)) | ||
| 621 | { | ||
| 622 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 623 | goto err; | ||
| 624 | } | ||
| 625 | if (rsa->_method_mod_p == NULL) /* other thread may have finished first */ | ||
| 626 | { | ||
| 627 | CRYPTO_w_lock(CRYPTO_LOCK_RSA); | ||
| 628 | if (rsa->_method_mod_p == NULL) | ||
| 629 | { | ||
| 630 | rsa->_method_mod_p = bn_mont_ctx; | ||
| 631 | bn_mont_ctx = NULL; | ||
| 632 | } | ||
| 633 | CRYPTO_w_unlock(CRYPTO_LOCK_RSA); | ||
| 634 | } | ||
| 635 | if (bn_mont_ctx) | ||
| 636 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 637 | } | ||
| 638 | |||
| 639 | if (rsa->_method_mod_q == NULL) | ||
| 640 | { | ||
| 641 | BN_MONT_CTX* bn_mont_ctx; | ||
| 642 | if ((bn_mont_ctx=BN_MONT_CTX_new()) == NULL) | ||
| 643 | goto err; | ||
| 644 | if (!BN_MONT_CTX_set(bn_mont_ctx,rsa->q,ctx)) | ||
| 645 | { | ||
| 646 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 647 | goto err; | ||
| 648 | } | ||
| 649 | if (rsa->_method_mod_q == NULL) /* other thread may have finished first */ | ||
| 650 | { | ||
| 651 | CRYPTO_w_lock(CRYPTO_LOCK_RSA); | ||
| 652 | if (rsa->_method_mod_q == NULL) | ||
| 653 | { | ||
| 654 | rsa->_method_mod_q = bn_mont_ctx; | ||
| 655 | bn_mont_ctx = NULL; | ||
| 656 | } | ||
| 657 | CRYPTO_w_unlock(CRYPTO_LOCK_RSA); | ||
| 658 | } | ||
| 659 | if (bn_mont_ctx) | ||
| 660 | BN_MONT_CTX_free(bn_mont_ctx); | ||
| 661 | } | ||
| 662 | } | ||
| 663 | |||
| 664 | if (!BN_mod(&r1,I,rsa->q,ctx)) goto err; | ||
| 665 | if (!rsa->meth->bn_mod_exp(&m1,&r1,rsa->dmq1,rsa->q,ctx, | ||
| 666 | rsa->_method_mod_q)) goto err; | ||
| 667 | |||
| 668 | if (!BN_mod(&r1,I,rsa->p,ctx)) goto err; | ||
| 669 | if (!rsa->meth->bn_mod_exp(r0,&r1,rsa->dmp1,rsa->p,ctx, | ||
| 670 | rsa->_method_mod_p)) goto err; | ||
| 671 | |||
| 672 | if (!BN_sub(r0,r0,&m1)) goto err; | ||
| 673 | /* This will help stop the size of r0 increasing, which does | ||
| 674 | * affect the multiply if it optimised for a power of 2 size */ | ||
| 675 | if (r0->neg) | ||
| 676 | if (!BN_add(r0,r0,rsa->p)) goto err; | ||
| 677 | |||
| 678 | if (!BN_mul(&r1,r0,rsa->iqmp,ctx)) goto err; | ||
| 679 | if (!BN_mod(r0,&r1,rsa->p,ctx)) goto err; | ||
| 680 | /* If p < q it is occasionally possible for the correction of | ||
| 681 | * adding 'p' if r0 is negative above to leave the result still | ||
| 682 | * negative. This can break the private key operations: the following | ||
| 683 | * second correction should *always* correct this rare occurrence. | ||
| 684 | * This will *never* happen with OpenSSL generated keys because | ||
| 685 | * they ensure p > q [steve] | ||
| 686 | */ | ||
| 687 | if (r0->neg) | ||
| 688 | if (!BN_add(r0,r0,rsa->p)) goto err; | ||
| 689 | if (!BN_mul(&r1,r0,rsa->q,ctx)) goto err; | ||
| 690 | if (!BN_add(r0,&r1,&m1)) goto err; | ||
| 691 | |||
| 692 | if (rsa->e && rsa->n) | ||
| 693 | { | ||
| 694 | if (!rsa->meth->bn_mod_exp(&vrfy,r0,rsa->e,rsa->n,ctx,NULL)) goto err; | ||
| 695 | /* If 'I' was greater than (or equal to) rsa->n, the operation | ||
| 696 | * will be equivalent to using 'I mod n'. However, the result of | ||
| 697 | * the verify will *always* be less than 'n' so we don't check | ||
| 698 | * for absolute equality, just congruency. */ | ||
| 699 | if (!BN_sub(&vrfy, &vrfy, I)) goto err; | ||
| 700 | if (!BN_mod(&vrfy, &vrfy, rsa->n, ctx)) goto err; | ||
| 701 | if (vrfy.neg) | ||
| 702 | if (!BN_add(&vrfy, &vrfy, rsa->n)) goto err; | ||
| 703 | if (!BN_is_zero(&vrfy)) | ||
| 704 | /* 'I' and 'vrfy' aren't congruent mod n. Don't leak | ||
| 705 | * miscalculated CRT output, just do a raw (slower) | ||
| 706 | * mod_exp and return that instead. */ | ||
| 707 | if (!rsa->meth->bn_mod_exp(r0,I,rsa->d,rsa->n,ctx,NULL)) goto err; | ||
| 708 | } | ||
| 709 | ret=1; | ||
| 710 | err: | ||
| 711 | BN_clear_free(&m1); | ||
| 712 | BN_clear_free(&r1); | ||
| 713 | BN_clear_free(&vrfy); | ||
| 714 | BN_CTX_free(ctx); | ||
| 715 | return(ret); | ||
| 716 | } | ||
| 717 | |||
| 718 | static int RSA_eay_init(RSA *rsa) | ||
| 719 | { | ||
| 720 | rsa->flags|=RSA_FLAG_CACHE_PUBLIC|RSA_FLAG_CACHE_PRIVATE; | ||
| 721 | return(1); | ||
| 722 | } | ||
| 723 | |||
| 724 | static int RSA_eay_finish(RSA *rsa) | ||
| 725 | { | ||
| 726 | if (rsa->_method_mod_n != NULL) | ||
| 727 | BN_MONT_CTX_free(rsa->_method_mod_n); | ||
| 728 | if (rsa->_method_mod_p != NULL) | ||
| 729 | BN_MONT_CTX_free(rsa->_method_mod_p); | ||
| 730 | if (rsa->_method_mod_q != NULL) | ||
| 731 | BN_MONT_CTX_free(rsa->_method_mod_q); | ||
| 732 | return(1); | ||
| 733 | } | ||
| 734 | |||
| 735 | #endif | ||
diff --git a/src/lib/libssl/src/fips/rsa/fips_rsa_gen.c b/src/lib/libssl/src/fips/rsa/fips_rsa_gen.c deleted file mode 100644 index 2c92112477..0000000000 --- a/src/lib/libssl/src/fips/rsa/fips_rsa_gen.c +++ /dev/null | |||
| @@ -1,249 +0,0 @@ | |||
| 1 | /* crypto/rsa/rsa_gen.c */ | ||
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 3 | * All rights reserved. | ||
| 4 | * | ||
| 5 | * This package is an SSL implementation written | ||
| 6 | * by Eric Young (eay@cryptsoft.com). | ||
| 7 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 8 | * | ||
| 9 | * This library is free for commercial and non-commercial use as long as | ||
| 10 | * the following conditions are aheared to. The following conditions | ||
| 11 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 12 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 13 | * included with this distribution is covered by the same copyright terms | ||
| 14 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 15 | * | ||
| 16 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 17 | * the code are not to be removed. | ||
| 18 | * If this package is used in a product, Eric Young should be given attribution | ||
| 19 | * as the author of the parts of the library used. | ||
| 20 | * This can be in the form of a textual message at program startup or | ||
| 21 | * in documentation (online or textual) provided with the package. | ||
| 22 | * | ||
| 23 | * Redistribution and use in source and binary forms, with or without | ||
| 24 | * modification, are permitted provided that the following conditions | ||
| 25 | * are met: | ||
| 26 | * 1. Redistributions of source code must retain the copyright | ||
| 27 | * notice, this list of conditions and the following disclaimer. | ||
| 28 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 29 | * notice, this list of conditions and the following disclaimer in the | ||
| 30 | * documentation and/or other materials provided with the distribution. | ||
| 31 | * 3. All advertising materials mentioning features or use of this software | ||
| 32 | * must display the following acknowledgement: | ||
| 33 | * "This product includes cryptographic software written by | ||
| 34 | * Eric Young (eay@cryptsoft.com)" | ||
| 35 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 36 | * being used are not cryptographic related :-). | ||
| 37 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 38 | * the apps directory (application code) you must include an acknowledgement: | ||
| 39 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 40 | * | ||
| 41 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 42 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 43 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 44 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 45 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 46 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 47 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 49 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 50 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 51 | * SUCH DAMAGE. | ||
| 52 | * | ||
| 53 | * The licence and distribution terms for any publically available version or | ||
| 54 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 55 | * copied and put under another distribution licence | ||
| 56 | * [including the GNU Public Licence.] | ||
| 57 | */ | ||
| 58 | |||
| 59 | #include <stdio.h> | ||
| 60 | #include <string.h> | ||
| 61 | #include <time.h> | ||
| 62 | #include <openssl/err.h> | ||
| 63 | #include <openssl/bn.h> | ||
| 64 | #include <openssl/rsa.h> | ||
| 65 | #include <openssl/fips.h> | ||
| 66 | |||
| 67 | #ifdef OPENSSL_FIPS | ||
| 68 | |||
| 69 | static int fips_check_rsa(RSA *rsa) | ||
| 70 | { | ||
| 71 | int n; | ||
| 72 | unsigned char ctext[256]; | ||
| 73 | unsigned char ptext[256]; | ||
| 74 | /* The longest we can have with OAEP padding and a 512 bit key */ | ||
| 75 | static unsigned char original_ptext[] = | ||
| 76 | "\x01\x23\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0" | ||
| 77 | "\x23\x45\x67\x89\xab\xcd"; | ||
| 78 | |||
| 79 | /* this will fail for keys shorter than 512 bits */ | ||
| 80 | n=RSA_public_encrypt(sizeof(original_ptext)-1,original_ptext,ctext,rsa, | ||
| 81 | RSA_PKCS1_OAEP_PADDING); | ||
| 82 | if(n < 0) | ||
| 83 | { | ||
| 84 | ERR_print_errors_fp(stderr); | ||
| 85 | exit(1); | ||
| 86 | } | ||
| 87 | if(!memcmp(ctext,original_ptext,n)) | ||
| 88 | { | ||
| 89 | FIPSerr(FIPS_F_FIPS_CHECK_RSA,FIPS_R_PAIRWISE_TEST_FAILED); | ||
| 90 | return 0; | ||
| 91 | } | ||
| 92 | n=RSA_private_decrypt(n,ctext,ptext,rsa,RSA_PKCS1_OAEP_PADDING); | ||
| 93 | if(n < 0) | ||
| 94 | { | ||
| 95 | ERR_print_errors_fp(stderr); | ||
| 96 | exit(1); | ||
| 97 | } | ||
| 98 | if(n != sizeof(original_ptext)-1 || memcmp(ptext,original_ptext,n)) | ||
| 99 | { | ||
| 100 | FIPSerr(FIPS_F_FIPS_CHECK_RSA,FIPS_R_PAIRWISE_TEST_FAILED); | ||
| 101 | return 0; | ||
| 102 | } | ||
| 103 | |||
| 104 | return 1; | ||
| 105 | } | ||
| 106 | |||
| 107 | RSA *RSA_generate_key(FIPS_RSA_SIZE_T bits, unsigned long e_value, | ||
| 108 | void (*callback)(int,int,void *), void *cb_arg) | ||
| 109 | { | ||
| 110 | RSA *rsa=NULL; | ||
| 111 | BIGNUM *r0=NULL,*r1=NULL,*r2=NULL,*r3=NULL,*tmp; | ||
| 112 | int bitsp,bitsq,ok= -1,n=0,i; | ||
| 113 | BN_CTX *ctx=NULL,*ctx2=NULL; | ||
| 114 | |||
| 115 | if(FIPS_selftest_failed()) | ||
| 116 | { | ||
| 117 | FIPSerr(FIPS_F_RSA_GENERATE_KEY,FIPS_R_FIPS_SELFTEST_FAILED); | ||
| 118 | return NULL; | ||
| 119 | } | ||
| 120 | |||
| 121 | ctx=BN_CTX_new(); | ||
| 122 | if (ctx == NULL) goto err; | ||
| 123 | ctx2=BN_CTX_new(); | ||
| 124 | if (ctx2 == NULL) goto err; | ||
| 125 | BN_CTX_start(ctx); | ||
| 126 | r0 = BN_CTX_get(ctx); | ||
| 127 | r1 = BN_CTX_get(ctx); | ||
| 128 | r2 = BN_CTX_get(ctx); | ||
| 129 | r3 = BN_CTX_get(ctx); | ||
| 130 | if (r3 == NULL) goto err; | ||
| 131 | |||
| 132 | bitsp=(bits+1)/2; | ||
| 133 | bitsq=bits-bitsp; | ||
| 134 | rsa=RSA_new(); | ||
| 135 | if (rsa == NULL) goto err; | ||
| 136 | |||
| 137 | /* set e */ | ||
| 138 | rsa->e=BN_new(); | ||
| 139 | if (rsa->e == NULL) goto err; | ||
| 140 | |||
| 141 | #if 1 | ||
| 142 | /* The problem is when building with 8, 16, or 32 BN_ULONG, | ||
| 143 | * unsigned long can be larger */ | ||
| 144 | for (i=0; i<sizeof(unsigned long)*8; i++) | ||
| 145 | { | ||
| 146 | if (e_value & (1UL<<i)) | ||
| 147 | BN_set_bit(rsa->e,i); | ||
| 148 | } | ||
| 149 | #else | ||
| 150 | if (!BN_set_word(rsa->e,e_value)) goto err; | ||
| 151 | #endif | ||
| 152 | |||
| 153 | /* generate p and q */ | ||
| 154 | for (;;) | ||
| 155 | { | ||
| 156 | rsa->p=BN_generate_prime(NULL,bitsp,0,NULL,NULL,callback,cb_arg); | ||
| 157 | if (rsa->p == NULL) goto err; | ||
| 158 | if (!BN_sub(r2,rsa->p,BN_value_one())) goto err; | ||
| 159 | if (!BN_gcd(r1,r2,rsa->e,ctx)) goto err; | ||
| 160 | if (BN_is_one(r1)) break; | ||
| 161 | if (callback != NULL) callback(2,n++,cb_arg); | ||
| 162 | BN_free(rsa->p); | ||
| 163 | } | ||
| 164 | if (callback != NULL) callback(3,0,cb_arg); | ||
| 165 | for (;;) | ||
| 166 | { | ||
| 167 | rsa->q=BN_generate_prime(NULL,bitsq,0,NULL,NULL,callback,cb_arg); | ||
| 168 | if (rsa->q == NULL) goto err; | ||
| 169 | if (!BN_sub(r2,rsa->q,BN_value_one())) goto err; | ||
| 170 | if (!BN_gcd(r1,r2,rsa->e,ctx)) goto err; | ||
| 171 | if (BN_is_one(r1) && (BN_cmp(rsa->p,rsa->q) != 0)) | ||
| 172 | break; | ||
| 173 | if (callback != NULL) callback(2,n++,cb_arg); | ||
| 174 | BN_free(rsa->q); | ||
| 175 | } | ||
| 176 | if (callback != NULL) callback(3,1,cb_arg); | ||
| 177 | if (BN_cmp(rsa->p,rsa->q) < 0) | ||
| 178 | { | ||
| 179 | tmp=rsa->p; | ||
| 180 | rsa->p=rsa->q; | ||
| 181 | rsa->q=tmp; | ||
| 182 | } | ||
| 183 | |||
| 184 | /* calculate n */ | ||
| 185 | rsa->n=BN_new(); | ||
| 186 | if (rsa->n == NULL) goto err; | ||
| 187 | if (!BN_mul(rsa->n,rsa->p,rsa->q,ctx)) goto err; | ||
| 188 | |||
| 189 | /* calculate d */ | ||
| 190 | if (!BN_sub(r1,rsa->p,BN_value_one())) goto err; /* p-1 */ | ||
| 191 | if (!BN_sub(r2,rsa->q,BN_value_one())) goto err; /* q-1 */ | ||
| 192 | if (!BN_mul(r0,r1,r2,ctx)) goto err; /* (p-1)(q-1) */ | ||
| 193 | |||
| 194 | /* should not be needed, since gcd(p-1,e) == 1 and gcd(q-1,e) == 1 */ | ||
| 195 | /* for (;;) | ||
| 196 | { | ||
| 197 | if (!BN_gcd(r3,r0,rsa->e,ctx)) goto err; | ||
| 198 | if (BN_is_one(r3)) break; | ||
| 199 | |||
| 200 | if (1) | ||
| 201 | { | ||
| 202 | if (!BN_add_word(rsa->e,2L)) goto err; | ||
| 203 | continue; | ||
| 204 | } | ||
| 205 | RSAerr(RSA_F_RSA_GENERATE_KEY,RSA_R_BAD_E_VALUE); | ||
| 206 | goto err; | ||
| 207 | } | ||
| 208 | */ | ||
| 209 | rsa->d=BN_mod_inverse(NULL,rsa->e,r0,ctx2); /* d */ | ||
| 210 | if (rsa->d == NULL) goto err; | ||
| 211 | |||
| 212 | /* calculate d mod (p-1) */ | ||
| 213 | rsa->dmp1=BN_new(); | ||
| 214 | if (rsa->dmp1 == NULL) goto err; | ||
| 215 | if (!BN_mod(rsa->dmp1,rsa->d,r1,ctx)) goto err; | ||
| 216 | |||
| 217 | /* calculate d mod (q-1) */ | ||
| 218 | rsa->dmq1=BN_new(); | ||
| 219 | if (rsa->dmq1 == NULL) goto err; | ||
| 220 | if (!BN_mod(rsa->dmq1,rsa->d,r2,ctx)) goto err; | ||
| 221 | |||
| 222 | /* calculate inverse of q mod p */ | ||
| 223 | rsa->iqmp=BN_mod_inverse(NULL,rsa->q,rsa->p,ctx2); | ||
| 224 | if (rsa->iqmp == NULL) goto err; | ||
| 225 | |||
| 226 | if(!fips_check_rsa(rsa)) | ||
| 227 | goto err; | ||
| 228 | |||
| 229 | ok=1; | ||
| 230 | err: | ||
| 231 | if (ok == -1) | ||
| 232 | { | ||
| 233 | RSAerr(RSA_F_RSA_GENERATE_KEY,ERR_LIB_BN); | ||
| 234 | ok=0; | ||
| 235 | } | ||
| 236 | BN_CTX_end(ctx); | ||
| 237 | BN_CTX_free(ctx); | ||
| 238 | BN_CTX_free(ctx2); | ||
| 239 | |||
| 240 | if (!ok) | ||
| 241 | { | ||
| 242 | if (rsa != NULL) RSA_free(rsa); | ||
| 243 | return(NULL); | ||
| 244 | } | ||
| 245 | else | ||
| 246 | return(rsa); | ||
| 247 | } | ||
| 248 | |||
| 249 | #endif | ||
diff --git a/src/lib/libssl/src/fips/rsa/fips_rsa_selftest.c b/src/lib/libssl/src/fips/rsa/fips_rsa_selftest.c deleted file mode 100644 index 4e3b9445fc..0000000000 --- a/src/lib/libssl/src/fips/rsa/fips_rsa_selftest.c +++ /dev/null | |||
| @@ -1,251 +0,0 @@ | |||
| 1 | /* ==================================================================== | ||
| 2 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 3 | * | ||
| 4 | * Redistribution and use in source and binary forms, with or without | ||
| 5 | * modification, are permitted provided that the following conditions | ||
| 6 | * are met: | ||
| 7 | * | ||
| 8 | * 1. Redistributions of source code must retain the above copyright | ||
| 9 | * notice, this list of conditions and the following disclaimer. | ||
| 10 | * | ||
| 11 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 12 | * notice, this list of conditions and the following disclaimer in | ||
| 13 | * the documentation and/or other materials provided with the | ||
| 14 | * distribution. | ||
| 15 | * | ||
| 16 | * 3. All advertising materials mentioning features or use of this | ||
| 17 | * software must display the following acknowledgment: | ||
| 18 | * "This product includes software developed by the OpenSSL Project | ||
| 19 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 20 | * | ||
| 21 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 22 | * endorse or promote products derived from this software without | ||
| 23 | * prior written permission. For written permission, please contact | ||
| 24 | * openssl-core@openssl.org. | ||
| 25 | * | ||
| 26 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 27 | * nor may "OpenSSL" appear in their names without prior written | ||
| 28 | * permission of the OpenSSL Project. | ||
| 29 | * | ||
| 30 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 31 | * acknowledgment: | ||
| 32 | * "This product includes software developed by the OpenSSL Project | ||
| 33 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 34 | * | ||
| 35 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 36 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 37 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 38 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 39 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 40 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 41 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 42 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 43 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 44 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 45 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 46 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 47 | * | ||
| 48 | */ | ||
| 49 | |||
| 50 | #include <string.h> | ||
| 51 | #include <openssl/err.h> | ||
| 52 | #include <openssl/fips.h> | ||
| 53 | #include <openssl/rsa.h> | ||
| 54 | #include <openssl/sha.h> | ||
| 55 | #include <openssl/opensslconf.h> | ||
| 56 | |||
| 57 | #ifdef OPENSSL_FIPS | ||
| 58 | #define SetKey \ | ||
| 59 | key->n = BN_bin2bn(n, sizeof(n)-1, key->n); \ | ||
| 60 | key->e = BN_bin2bn(e, sizeof(e)-1, key->e); \ | ||
| 61 | key->d = BN_bin2bn(d, sizeof(d)-1, key->d); \ | ||
| 62 | key->p = BN_bin2bn(p, sizeof(p)-1, key->p); \ | ||
| 63 | key->q = BN_bin2bn(q, sizeof(q)-1, key->q); \ | ||
| 64 | key->dmp1 = BN_bin2bn(dmp1, sizeof(dmp1)-1, key->dmp1); \ | ||
| 65 | key->dmq1 = BN_bin2bn(dmq1, sizeof(dmq1)-1, key->dmq1); \ | ||
| 66 | key->iqmp = BN_bin2bn(iqmp, sizeof(iqmp)-1, key->iqmp); \ | ||
| 67 | memcpy(c, ctext_ex, sizeof(ctext_ex) - 1); \ | ||
| 68 | return (sizeof(ctext_ex) - 1); | ||
| 69 | |||
| 70 | static unsigned char n[] = | ||
| 71 | "\x00\xBB\xF8\x2F\x09\x06\x82\xCE\x9C\x23\x38\xAC\x2B\x9D\xA8\x71" | ||
| 72 | "\xF7\x36\x8D\x07\xEE\xD4\x10\x43\xA4\x40\xD6\xB6\xF0\x74\x54\xF5" | ||
| 73 | "\x1F\xB8\xDF\xBA\xAF\x03\x5C\x02\xAB\x61\xEA\x48\xCE\xEB\x6F\xCD" | ||
| 74 | "\x48\x76\xED\x52\x0D\x60\xE1\xEC\x46\x19\x71\x9D\x8A\x5B\x8B\x80" | ||
| 75 | "\x7F\xAF\xB8\xE0\xA3\xDF\xC7\x37\x72\x3E\xE6\xB4\xB7\xD9\x3A\x25" | ||
| 76 | "\x84\xEE\x6A\x64\x9D\x06\x09\x53\x74\x88\x34\xB2\x45\x45\x98\x39" | ||
| 77 | "\x4E\xE0\xAA\xB1\x2D\x7B\x61\xA5\x1F\x52\x7A\x9A\x41\xF6\xC1\x68" | ||
| 78 | "\x7F\xE2\x53\x72\x98\xCA\x2A\x8F\x59\x46\xF8\xE5\xFD\x09\x1D\xBD" | ||
| 79 | "\xCB"; | ||
| 80 | |||
| 81 | |||
| 82 | static int setrsakey(RSA *key, unsigned char *c) | ||
| 83 | { | ||
| 84 | static unsigned char e[] = "\x11"; | ||
| 85 | |||
| 86 | static unsigned char d[] = | ||
| 87 | "\x00\xA5\xDA\xFC\x53\x41\xFA\xF2\x89\xC4\xB9\x88\xDB\x30\xC1\xCD" | ||
| 88 | "\xF8\x3F\x31\x25\x1E\x06\x68\xB4\x27\x84\x81\x38\x01\x57\x96\x41" | ||
| 89 | "\xB2\x94\x10\xB3\xC7\x99\x8D\x6B\xC4\x65\x74\x5E\x5C\x39\x26\x69" | ||
| 90 | "\xD6\x87\x0D\xA2\xC0\x82\xA9\x39\xE3\x7F\xDC\xB8\x2E\xC9\x3E\xDA" | ||
| 91 | "\xC9\x7F\xF3\xAD\x59\x50\xAC\xCF\xBC\x11\x1C\x76\xF1\xA9\x52\x94" | ||
| 92 | "\x44\xE5\x6A\xAF\x68\xC5\x6C\x09\x2C\xD3\x8D\xC3\xBE\xF5\xD2\x0A" | ||
| 93 | "\x93\x99\x26\xED\x4F\x74\xA1\x3E\xDD\xFB\xE1\xA1\xCE\xCC\x48\x94" | ||
| 94 | "\xAF\x94\x28\xC2\xB7\xB8\x88\x3F\xE4\x46\x3A\x4B\xC8\x5B\x1C\xB3" | ||
| 95 | "\xC1"; | ||
| 96 | |||
| 97 | static unsigned char p[] = | ||
| 98 | "\x00\xEE\xCF\xAE\x81\xB1\xB9\xB3\xC9\x08\x81\x0B\x10\xA1\xB5\x60" | ||
| 99 | "\x01\x99\xEB\x9F\x44\xAE\xF4\xFD\xA4\x93\xB8\x1A\x9E\x3D\x84\xF6" | ||
| 100 | "\x32\x12\x4E\xF0\x23\x6E\x5D\x1E\x3B\x7E\x28\xFA\xE7\xAA\x04\x0A" | ||
| 101 | "\x2D\x5B\x25\x21\x76\x45\x9D\x1F\x39\x75\x41\xBA\x2A\x58\xFB\x65" | ||
| 102 | "\x99"; | ||
| 103 | |||
| 104 | static unsigned char q[] = | ||
| 105 | "\x00\xC9\x7F\xB1\xF0\x27\xF4\x53\xF6\x34\x12\x33\xEA\xAA\xD1\xD9" | ||
| 106 | "\x35\x3F\x6C\x42\xD0\x88\x66\xB1\xD0\x5A\x0F\x20\x35\x02\x8B\x9D" | ||
| 107 | "\x86\x98\x40\xB4\x16\x66\xB4\x2E\x92\xEA\x0D\xA3\xB4\x32\x04\xB5" | ||
| 108 | "\xCF\xCE\x33\x52\x52\x4D\x04\x16\xA5\xA4\x41\xE7\x00\xAF\x46\x15" | ||
| 109 | "\x03"; | ||
| 110 | |||
| 111 | static unsigned char dmp1[] = | ||
| 112 | "\x54\x49\x4C\xA6\x3E\xBA\x03\x37\xE4\xE2\x40\x23\xFC\xD6\x9A\x5A" | ||
| 113 | "\xEB\x07\xDD\xDC\x01\x83\xA4\xD0\xAC\x9B\x54\xB0\x51\xF2\xB1\x3E" | ||
| 114 | "\xD9\x49\x09\x75\xEA\xB7\x74\x14\xFF\x59\xC1\xF7\x69\x2E\x9A\x2E" | ||
| 115 | "\x20\x2B\x38\xFC\x91\x0A\x47\x41\x74\xAD\xC9\x3C\x1F\x67\xC9\x81"; | ||
| 116 | |||
| 117 | static unsigned char dmq1[] = | ||
| 118 | "\x47\x1E\x02\x90\xFF\x0A\xF0\x75\x03\x51\xB7\xF8\x78\x86\x4C\xA9" | ||
| 119 | "\x61\xAD\xBD\x3A\x8A\x7E\x99\x1C\x5C\x05\x56\xA9\x4C\x31\x46\xA7" | ||
| 120 | "\xF9\x80\x3F\x8F\x6F\x8A\xE3\x42\xE9\x31\xFD\x8A\xE4\x7A\x22\x0D" | ||
| 121 | "\x1B\x99\xA4\x95\x84\x98\x07\xFE\x39\xF9\x24\x5A\x98\x36\xDA\x3D"; | ||
| 122 | |||
| 123 | static unsigned char iqmp[] = | ||
| 124 | "\x00\xB0\x6C\x4F\xDA\xBB\x63\x01\x19\x8D\x26\x5B\xDB\xAE\x94\x23" | ||
| 125 | "\xB3\x80\xF2\x71\xF7\x34\x53\x88\x50\x93\x07\x7F\xCD\x39\xE2\x11" | ||
| 126 | "\x9F\xC9\x86\x32\x15\x4F\x58\x83\xB1\x67\xA9\x67\xBF\x40\x2B\x4E" | ||
| 127 | "\x9E\x2E\x0F\x96\x56\xE6\x98\xEA\x36\x66\xED\xFB\x25\x79\x80\x39" | ||
| 128 | "\xF7"; | ||
| 129 | |||
| 130 | static unsigned char ctext_ex[] = | ||
| 131 | "\x42\x4b\xc9\x51\x61\xd4\xca\xa0\x18\x6c\x4d\xca\x61\x8f\x2d\x07" | ||
| 132 | "\x8c\x63\xc5\x6b\xa2\x4c\x32\xb1\xda\xb7\xdd\x32\xb6\x51\x68\xc3" | ||
| 133 | "\x6e\x98\x46\xd6\xbb\x1a\xd5\x99\x05\x92\x7c\xd7\xbc\x08\x9e\xe4" | ||
| 134 | "\xc3\x70\x4d\xe6\x99\x7e\x61\x31\x07\x7a\x19\xdb\x3e\x11\xfa\x3d" | ||
| 135 | "\x7c\x61\xd7\x78\x14\x3f\x05\x16\xa0\xc4\xbf\xcd\xee\xca\x67\x4c" | ||
| 136 | "\x80\x4e\xca\x43\x2f\x35\x43\x58\xa7\x50\x7e\x3e\x52\x82\xab\xac" | ||
| 137 | "\xa6\x50\xe8\x39\x9f\xe0\x7f\x58\x1d\x1b\x90\x93\x04\xec\xb3\xf9" | ||
| 138 | "\x24\xd3\x75\x3e\x39\xd1\x14\xc6\x33\xce\xd6\xee\x20\x47\xec\xe4"; | ||
| 139 | |||
| 140 | SetKey; | ||
| 141 | } | ||
| 142 | |||
| 143 | void FIPS_corrupt_rsa() | ||
| 144 | { | ||
| 145 | n[0]++; | ||
| 146 | } | ||
| 147 | |||
| 148 | int FIPS_selftest_rsa() | ||
| 149 | { | ||
| 150 | int clen; | ||
| 151 | RSA *key; | ||
| 152 | unsigned char expected_ctext[256]; | ||
| 153 | unsigned char ctext[256]; | ||
| 154 | unsigned char ptext[256]; | ||
| 155 | static unsigned char original_ptext[] = | ||
| 156 | "\x01\x23\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0" | ||
| 157 | "\x23\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12" | ||
| 158 | "\x45\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34" | ||
| 159 | "\x67\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56" | ||
| 160 | "\x89\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78" | ||
| 161 | "\xab\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a" | ||
| 162 | "\xcd\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a\xbc" | ||
| 163 | "\xef\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a\xbc\xde" | ||
| 164 | "\xf0\x12\x34\x56\x78\x9a\xbc\xde\xf0\x12\x34\x56\x78\x9a\xbc\xde"; | ||
| 165 | unsigned char md[SHA_DIGEST_LENGTH]; | ||
| 166 | unsigned char mdkat[SHA_DIGEST_LENGTH] = | ||
| 167 | "\x2d\x57\x1d\x6f\x5c\x37\xf9\xf0\x3b\xb4\x3c\xe8\x2c\x4c\xb3\x04" | ||
| 168 | "\x75\xa2\x0e\xfb"; | ||
| 169 | unsigned char ctextkat[] = | ||
| 170 | "\x3e\xc5\x0a\xbe\x29\xa2\xca\x9a\x35\x14\x17\x26\xa4\x0f\xa3\x03" | ||
| 171 | "\x65\xb5\x37\xf5\x6a\xaa\xb\xf\x2c\x0d\x8\xc0\x73\x8\x3c\x88\x85" | ||
| 172 | "\x36\x68\x16\xfe\x2f\x59\x77\x7e\x2a\x76\x9a\xc7\x27\x19\x9b\x54" | ||
| 173 | "\x14\x87\xf3\xe0\xce\x1e\x68\x10\x40\x14\xac\xbc\xe6\x6f\x26\x1f" | ||
| 174 | "\x55\xd1\x15\x81\x48\x10\xf4\x89\xe5\x67\x52\x42\x87\x04\x74\x4e" | ||
| 175 | "\x96\x14\x7c\x53\xc9\x1e\x84\x11\x7d\x7d\x23\xbd\xff\x6c\xcb\x00" | ||
| 176 | "\x96\x2e\x7d\xfb\x47\xea\x78\xcd\xd8\x04\x3a\x98\x06\x13\x68\x39" | ||
| 177 | "\xa1\xe2\xbc\x9f\x64\xc7\x62\xf0\x74\x4d\x42\xe0\x0b\xcf\x24\x48"; | ||
| 178 | int i; | ||
| 179 | |||
| 180 | /* Perform pairwise consistency test by: ... */ | ||
| 181 | |||
| 182 | key=RSA_new(); | ||
| 183 | clen=setrsakey(key,expected_ctext); | ||
| 184 | /* ...1) apply public key to plaintext, resulting ciphertext must be | ||
| 185 | * different | ||
| 186 | */ | ||
| 187 | i=RSA_public_encrypt(128,original_ptext,ctext,key, | ||
| 188 | RSA_NO_PADDING); | ||
| 189 | if(i != clen || memcmp(ctext,expected_ctext,i)) | ||
| 190 | { | ||
| 191 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 192 | return 0; | ||
| 193 | } | ||
| 194 | if(!memcmp(ctext,original_ptext,i)) | ||
| 195 | { | ||
| 196 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 197 | return 0; | ||
| 198 | } | ||
| 199 | /* ...2) apply private key to ciphertext and compare result to | ||
| 200 | * original plaintext; results must be equal | ||
| 201 | */ | ||
| 202 | i=RSA_private_decrypt(i,ctext,ptext,key,RSA_NO_PADDING); | ||
| 203 | if(i != 128 || memcmp(ptext,original_ptext,i)) | ||
| 204 | { | ||
| 205 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 206 | return 0; | ||
| 207 | } | ||
| 208 | |||
| 209 | /* Perform sign and verify Known Answer Test by... */ | ||
| 210 | |||
| 211 | /* ...1) using the same RSA key to encrypt the SHA-1 hash of a | ||
| 212 | * plaintext value larger than the RSA key size | ||
| 213 | */ | ||
| 214 | if (RSA_size(key) >= sizeof(original_ptext) - 1) | ||
| 215 | { | ||
| 216 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 217 | return 0; | ||
| 218 | } | ||
| 219 | /* ...2) then generate the SHA-1 digest of plaintext, and compare the | ||
| 220 | * digest to the Known Answer (note here we duplicate the SHA-1 KAT) | ||
| 221 | */ | ||
| 222 | SHA1(original_ptext,sizeof(original_ptext) - 1,md); | ||
| 223 | if(memcmp(md,mdkat,SHA_DIGEST_LENGTH)) | ||
| 224 | { | ||
| 225 | FIPSerr(FIPS_F_FIPS_SELFTEST_SHA1,FIPS_R_SELFTEST_FAILED); | ||
| 226 | return 0; | ||
| 227 | } | ||
| 228 | /* ...3) then encrypt the digest, and compare the ciphertext | ||
| 229 | * to the Known Answer | ||
| 230 | */ | ||
| 231 | i=RSA_private_encrypt(sizeof(md),md,ctext,key,RSA_PKCS1_PADDING); | ||
| 232 | if(i != clen || memcmp(ctextkat,ctext,i)) | ||
| 233 | { | ||
| 234 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 235 | return 0; | ||
| 236 | } | ||
| 237 | /* ...4) and finally decrypt the signed digest and compare with | ||
| 238 | * the original Known Answer | ||
| 239 | */ | ||
| 240 | i=RSA_public_decrypt(i,ctext,md,key,RSA_PKCS1_PADDING); | ||
| 241 | if(i != sizeof(md) || memcmp(mdkat,md,i)) | ||
| 242 | { | ||
| 243 | FIPSerr(FIPS_F_FIPS_SELFTEST_RSA,FIPS_R_SELFTEST_FAILED); | ||
| 244 | return 0; | ||
| 245 | } | ||
| 246 | |||
| 247 | RSA_free(key); | ||
| 248 | return 1; | ||
| 249 | } | ||
| 250 | |||
| 251 | #endif /* def OPENSSL_FIPS */ | ||
diff --git a/src/lib/libssl/src/ms/16all.bat b/src/lib/libssl/src/ms/16all.bat deleted file mode 100644 index 62ccf78963..0000000000 --- a/src/lib/libssl/src/ms/16all.bat +++ /dev/null | |||
| @@ -1,15 +0,0 @@ | |||
| 1 | set OPTS=no_asm | ||
| 2 | |||
| 3 | perl Configure VC-WIN16 | ||
| 4 | perl util\mkfiles.pl >MINFO | ||
| 5 | perl util\mk1mf.pl %OPTS% debug VC-WIN16 >d16.mak | ||
| 6 | perl util\mk1mf.pl %OPTS% VC-WIN16 >16.mak | ||
| 7 | perl util\mk1mf.pl %OPTS% debug dll VC-WIN16 >d16dll.mak | ||
| 8 | perl util\mk1mf.pl %OPTS% dll VC-WIN16 >16dll.mak | ||
| 9 | perl util\mkdef.pl 16 libeay > ms\libeay32.def | ||
| 10 | perl util\mkdef.pl 16 ssleay > ms\ssleay32.def | ||
| 11 | |||
| 12 | nmake -f d16.mak | ||
| 13 | nmake -f 16.mak | ||
| 14 | nmake -f d16dll.mak | ||
| 15 | nmake -f 16dll.mak | ||
diff --git a/src/lib/libssl/src/ms/fipscheck.pl b/src/lib/libssl/src/ms/fipscheck.pl deleted file mode 100644 index 80ffbd15ae..0000000000 --- a/src/lib/libssl/src/ms/fipscheck.pl +++ /dev/null | |||
| @@ -1,38 +0,0 @@ | |||
| 1 | #!/usr/bin/perl | ||
| 2 | |||
| 3 | # fipscheck.pl | ||
| 4 | # sample perl script to check integrity of critical FIPS files | ||
| 5 | |||
| 6 | my ($fipsdir) = @ARGV; | ||
| 7 | |||
| 8 | die "Directory $fipsdir not found or invalid" unless -d $fipsdir; | ||
| 9 | |||
| 10 | die "Standalone SHA1 check program ${fipsdir}/fips_standalone_sha1.exe not found" unless -f "${fipsdir}/fips_standalone_sha1.exe"; | ||
| 11 | |||
| 12 | check_hash("fips_premain.c", $fipsdir); | ||
| 13 | check_hash("fipscanister.o", $fipsdir); | ||
| 14 | |||
| 15 | sub check_hash | ||
| 16 | { | ||
| 17 | my ($filename, $dir) = @_; | ||
| 18 | my ($hashfile, $hashval); | ||
| 19 | |||
| 20 | $filename = "$dir/$filename"; | ||
| 21 | |||
| 22 | die "File $filename does not exist" unless -f $filename; | ||
| 23 | die "File ${filename}.sha1 does not exist" unless -f "${filename}.sha1"; | ||
| 24 | |||
| 25 | open(IN, "${filename}.sha1") || die "Cannot open file hash file ${filename}.sha1"; | ||
| 26 | $hashfile = <IN>; | ||
| 27 | close IN; | ||
| 28 | $hashval = `${dir}/fips_standalone_sha1.exe $filename`; | ||
| 29 | chomp $hashfile; | ||
| 30 | chomp $hashval; | ||
| 31 | $hashfile =~ s/^.*=\s+//; | ||
| 32 | $hashval =~ s/^.*=\s+//; | ||
| 33 | die "Invalid hash syntax in file" if (length($hashfile) != 40); | ||
| 34 | die "Invalid hash received for file" if (length($hashval) != 40); | ||
| 35 | die "*** HASH VALUE MISMATCH FOR FILE $filename ***" if ($hashval ne $hashfile); | ||
| 36 | } | ||
| 37 | |||
| 38 | |||
diff --git a/src/lib/libssl/src/ms/speed16.bat b/src/lib/libssl/src/ms/speed16.bat deleted file mode 100644 index 7ff08851a2..0000000000 --- a/src/lib/libssl/src/ms/speed16.bat +++ /dev/null | |||
| @@ -1,38 +0,0 @@ | |||
| 1 | set makefile=ms\dos.bat | ||
| 2 | |||
| 3 | perl Configure b | ||
| 4 | del tmp\*.obj | ||
| 5 | nmake -f %makefile% | ||
| 6 | nmake -f %makefile% | ||
| 7 | nmake -f %makefile% | ||
| 8 | out\ssleay version -v -b -f >speed.1 | ||
| 9 | out\ssleay speed >speed.1l | ||
| 10 | |||
| 11 | perl Configure bl-4c-2c | ||
| 12 | del tmp\rc4*.obj tmp\bn*.obj tmp\md2_dgst.obj | ||
| 13 | nmake -f %makefile% | ||
| 14 | nmake -f %makefile% | ||
| 15 | nmake -f %makefile% | ||
| 16 | out\ssleay speed rc4 rsa md2 >speed.2l | ||
| 17 | |||
| 18 | perl Configure bl-4c-ri | ||
| 19 | del tmp\rc4*.obj | ||
| 20 | nmake -f %makefile% | ||
| 21 | nmake -f %makefile% | ||
| 22 | nmake -f %makefile% | ||
| 23 | out\ssleay speed rc4 >speed.3l | ||
| 24 | |||
| 25 | perl Configure b2-is-ri-dp | ||
| 26 | perl util\mk1mf.pl VC-MSDOS no-asm >m2 | ||
| 27 | del tmp\i_*.obj tmp\rc4*.obj tmp\ecb_enc.obj tmp\bn*.obj | ||
| 28 | nmake -f m2 | ||
| 29 | nmake -f m2 | ||
| 30 | nmake -f m2 | ||
| 31 | out\ssleay speed rsa rc4 idea des >speed.4l | ||
| 32 | |||
| 33 | type speed.1 >speed.log | ||
| 34 | type speed.1l >>speed.log | ||
| 35 | perl util\sp-diff.pl speed.1l speed.2l >>speed.log | ||
| 36 | perl util\sp-diff.pl speed.1l speed.3l >>speed.log | ||
| 37 | perl util\sp-diff.pl speed.1l speed.4l >>speed.log | ||
| 38 | |||
diff --git a/src/lib/libssl/src/ssl/d1_both.c b/src/lib/libssl/src/ssl/d1_both.c new file mode 100644 index 0000000000..15a201a25c --- /dev/null +++ b/src/lib/libssl/src/ssl/d1_both.c | |||
| @@ -0,0 +1,1193 @@ | |||
| 1 | /* ssl/d1_both.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@openssl.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 60 | * All rights reserved. | ||
| 61 | * | ||
| 62 | * This package is an SSL implementation written | ||
| 63 | * by Eric Young (eay@cryptsoft.com). | ||
| 64 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 65 | * | ||
| 66 | * This library is free for commercial and non-commercial use as long as | ||
| 67 | * the following conditions are aheared to. The following conditions | ||
| 68 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 69 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 70 | * included with this distribution is covered by the same copyright terms | ||
| 71 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 72 | * | ||
| 73 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 74 | * the code are not to be removed. | ||
| 75 | * If this package is used in a product, Eric Young should be given attribution | ||
| 76 | * as the author of the parts of the library used. | ||
| 77 | * This can be in the form of a textual message at program startup or | ||
| 78 | * in documentation (online or textual) provided with the package. | ||
| 79 | * | ||
| 80 | * Redistribution and use in source and binary forms, with or without | ||
| 81 | * modification, are permitted provided that the following conditions | ||
| 82 | * are met: | ||
| 83 | * 1. Redistributions of source code must retain the copyright | ||
| 84 | * notice, this list of conditions and the following disclaimer. | ||
| 85 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 86 | * notice, this list of conditions and the following disclaimer in the | ||
| 87 | * documentation and/or other materials provided with the distribution. | ||
| 88 | * 3. All advertising materials mentioning features or use of this software | ||
| 89 | * must display the following acknowledgement: | ||
| 90 | * "This product includes cryptographic software written by | ||
| 91 | * Eric Young (eay@cryptsoft.com)" | ||
| 92 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 93 | * being used are not cryptographic related :-). | ||
| 94 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 95 | * the apps directory (application code) you must include an acknowledgement: | ||
| 96 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 97 | * | ||
| 98 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 99 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 100 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 101 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 102 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 103 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 104 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 105 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 106 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 107 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 108 | * SUCH DAMAGE. | ||
| 109 | * | ||
| 110 | * The licence and distribution terms for any publically available version or | ||
| 111 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 112 | * copied and put under another distribution licence | ||
| 113 | * [including the GNU Public Licence.] | ||
| 114 | */ | ||
| 115 | |||
| 116 | #include <limits.h> | ||
| 117 | #include <string.h> | ||
| 118 | #include <stdio.h> | ||
| 119 | #include "ssl_locl.h" | ||
| 120 | #include <openssl/buffer.h> | ||
| 121 | #include <openssl/rand.h> | ||
| 122 | #include <openssl/objects.h> | ||
| 123 | #include <openssl/evp.h> | ||
| 124 | #include <openssl/x509.h> | ||
| 125 | |||
| 126 | |||
| 127 | /* XDTLS: figure out the right values */ | ||
| 128 | static unsigned int g_probable_mtu[] = {1500 - 28, 512 - 28, 256 - 28}; | ||
| 129 | |||
| 130 | static unsigned int dtls1_min_mtu(void); | ||
| 131 | static unsigned int dtls1_guess_mtu(unsigned int curr_mtu); | ||
| 132 | static void dtls1_fix_message_header(SSL *s, unsigned long frag_off, | ||
| 133 | unsigned long frag_len); | ||
| 134 | static unsigned char *dtls1_write_message_header(SSL *s, | ||
| 135 | unsigned char *p); | ||
| 136 | static void dtls1_set_message_header_int(SSL *s, unsigned char mt, | ||
| 137 | unsigned long len, unsigned short seq_num, unsigned long frag_off, | ||
| 138 | unsigned long frag_len); | ||
| 139 | static int dtls1_retransmit_buffered_messages(SSL *s); | ||
| 140 | static long dtls1_get_message_fragment(SSL *s, int st1, int stn, | ||
| 141 | long max, int *ok); | ||
| 142 | |||
| 143 | static hm_fragment * | ||
| 144 | dtls1_hm_fragment_new(unsigned long frag_len) | ||
| 145 | { | ||
| 146 | hm_fragment *frag = NULL; | ||
| 147 | unsigned char *buf = NULL; | ||
| 148 | |||
| 149 | frag = (hm_fragment *)OPENSSL_malloc(sizeof(hm_fragment)); | ||
| 150 | if ( frag == NULL) | ||
| 151 | return NULL; | ||
| 152 | |||
| 153 | if (frag_len) | ||
| 154 | { | ||
| 155 | buf = (unsigned char *)OPENSSL_malloc(frag_len); | ||
| 156 | if ( buf == NULL) | ||
| 157 | { | ||
| 158 | OPENSSL_free(frag); | ||
| 159 | return NULL; | ||
| 160 | } | ||
| 161 | } | ||
| 162 | |||
| 163 | /* zero length fragment gets zero frag->fragment */ | ||
| 164 | frag->fragment = buf; | ||
| 165 | |||
| 166 | return frag; | ||
| 167 | } | ||
| 168 | |||
| 169 | static void | ||
| 170 | dtls1_hm_fragment_free(hm_fragment *frag) | ||
| 171 | { | ||
| 172 | if (frag->fragment) OPENSSL_free(frag->fragment); | ||
| 173 | OPENSSL_free(frag); | ||
| 174 | } | ||
| 175 | |||
| 176 | /* send s->init_buf in records of type 'type' (SSL3_RT_HANDSHAKE or SSL3_RT_CHANGE_CIPHER_SPEC) */ | ||
| 177 | int dtls1_do_write(SSL *s, int type) | ||
| 178 | { | ||
| 179 | int ret; | ||
| 180 | int curr_mtu; | ||
| 181 | unsigned int len, frag_off; | ||
| 182 | |||
| 183 | /* AHA! Figure out the MTU, and stick to the right size */ | ||
| 184 | if ( ! (SSL_get_options(s) & SSL_OP_NO_QUERY_MTU)) | ||
| 185 | { | ||
| 186 | s->d1->mtu = | ||
| 187 | BIO_ctrl(SSL_get_wbio(s), BIO_CTRL_DGRAM_QUERY_MTU, 0, NULL); | ||
| 188 | |||
| 189 | /* I've seen the kernel return bogus numbers when it doesn't know | ||
| 190 | * (initial write), so just make sure we have a reasonable number */ | ||
| 191 | if ( s->d1->mtu < dtls1_min_mtu()) | ||
| 192 | { | ||
| 193 | s->d1->mtu = 0; | ||
| 194 | s->d1->mtu = dtls1_guess_mtu(s->d1->mtu); | ||
| 195 | BIO_ctrl(SSL_get_wbio(s), BIO_CTRL_DGRAM_SET_MTU, | ||
| 196 | s->d1->mtu, NULL); | ||
| 197 | } | ||
| 198 | } | ||
| 199 | #if 0 | ||
| 200 | mtu = s->d1->mtu; | ||
| 201 | |||
| 202 | fprintf(stderr, "using MTU = %d\n", mtu); | ||
| 203 | |||
| 204 | mtu -= (DTLS1_HM_HEADER_LENGTH + DTLS1_RT_HEADER_LENGTH); | ||
| 205 | |||
| 206 | curr_mtu = mtu - BIO_wpending(SSL_get_wbio(s)); | ||
| 207 | |||
| 208 | if ( curr_mtu > 0) | ||
| 209 | mtu = curr_mtu; | ||
| 210 | else if ( ( ret = BIO_flush(SSL_get_wbio(s))) <= 0) | ||
| 211 | return ret; | ||
| 212 | |||
| 213 | if ( BIO_wpending(SSL_get_wbio(s)) + s->init_num >= mtu) | ||
| 214 | { | ||
| 215 | ret = BIO_flush(SSL_get_wbio(s)); | ||
| 216 | if ( ret <= 0) | ||
| 217 | return ret; | ||
| 218 | mtu = s->d1->mtu - (DTLS1_HM_HEADER_LENGTH + DTLS1_RT_HEADER_LENGTH); | ||
| 219 | } | ||
| 220 | |||
| 221 | OPENSSL_assert(mtu > 0); /* should have something reasonable now */ | ||
| 222 | |||
| 223 | #endif | ||
| 224 | |||
| 225 | if ( s->init_off == 0 && type == SSL3_RT_HANDSHAKE) | ||
| 226 | OPENSSL_assert(s->init_num == | ||
| 227 | (int)s->d1->w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH); | ||
| 228 | |||
| 229 | frag_off = 0; | ||
| 230 | while( s->init_num) | ||
| 231 | { | ||
| 232 | curr_mtu = s->d1->mtu - BIO_wpending(SSL_get_wbio(s)) - | ||
| 233 | DTLS1_RT_HEADER_LENGTH; | ||
| 234 | |||
| 235 | if ( curr_mtu <= DTLS1_HM_HEADER_LENGTH) | ||
| 236 | { | ||
| 237 | /* grr.. we could get an error if MTU picked was wrong */ | ||
| 238 | ret = BIO_flush(SSL_get_wbio(s)); | ||
| 239 | if ( ret <= 0) | ||
| 240 | return ret; | ||
| 241 | curr_mtu = s->d1->mtu - DTLS1_RT_HEADER_LENGTH; | ||
| 242 | } | ||
| 243 | |||
| 244 | if ( s->init_num > curr_mtu) | ||
| 245 | len = curr_mtu; | ||
| 246 | else | ||
| 247 | len = s->init_num; | ||
| 248 | |||
| 249 | |||
| 250 | /* XDTLS: this function is too long. split out the CCS part */ | ||
| 251 | if ( type == SSL3_RT_HANDSHAKE) | ||
| 252 | { | ||
| 253 | if ( s->init_off != 0) | ||
| 254 | { | ||
| 255 | OPENSSL_assert(s->init_off > DTLS1_HM_HEADER_LENGTH); | ||
| 256 | s->init_off -= DTLS1_HM_HEADER_LENGTH; | ||
| 257 | s->init_num += DTLS1_HM_HEADER_LENGTH; | ||
| 258 | |||
| 259 | /* write atleast DTLS1_HM_HEADER_LENGTH bytes */ | ||
| 260 | if ( len <= DTLS1_HM_HEADER_LENGTH) | ||
| 261 | len += DTLS1_HM_HEADER_LENGTH; | ||
| 262 | } | ||
| 263 | |||
| 264 | dtls1_fix_message_header(s, frag_off, | ||
| 265 | len - DTLS1_HM_HEADER_LENGTH); | ||
| 266 | |||
| 267 | dtls1_write_message_header(s, (unsigned char *)&s->init_buf->data[s->init_off]); | ||
| 268 | |||
| 269 | OPENSSL_assert(len >= DTLS1_HM_HEADER_LENGTH); | ||
| 270 | } | ||
| 271 | |||
| 272 | ret=dtls1_write_bytes(s,type,&s->init_buf->data[s->init_off], | ||
| 273 | len); | ||
| 274 | if (ret < 0) | ||
| 275 | { | ||
| 276 | /* might need to update MTU here, but we don't know | ||
| 277 | * which previous packet caused the failure -- so can't | ||
| 278 | * really retransmit anything. continue as if everything | ||
| 279 | * is fine and wait for an alert to handle the | ||
| 280 | * retransmit | ||
| 281 | */ | ||
| 282 | if ( BIO_ctrl(SSL_get_wbio(s), | ||
| 283 | BIO_CTRL_DGRAM_MTU_EXCEEDED, 0, NULL)) | ||
| 284 | s->d1->mtu = BIO_ctrl(SSL_get_wbio(s), | ||
| 285 | BIO_CTRL_DGRAM_QUERY_MTU, 0, NULL); | ||
| 286 | else | ||
| 287 | return(-1); | ||
| 288 | } | ||
| 289 | else | ||
| 290 | { | ||
| 291 | |||
| 292 | /* bad if this assert fails, only part of the handshake | ||
| 293 | * message got sent. but why would this happen? */ | ||
| 294 | OPENSSL_assert(len == (unsigned int)ret); | ||
| 295 | |||
| 296 | if (type == SSL3_RT_HANDSHAKE && ! s->d1->retransmitting) | ||
| 297 | { | ||
| 298 | /* should not be done for 'Hello Request's, but in that case | ||
| 299 | * we'll ignore the result anyway */ | ||
| 300 | unsigned char *p = (unsigned char *)&s->init_buf->data[s->init_off]; | ||
| 301 | const struct hm_header_st *msg_hdr = &s->d1->w_msg_hdr; | ||
| 302 | int xlen; | ||
| 303 | |||
| 304 | if (frag_off == 0 && s->client_version != DTLS1_BAD_VER) | ||
| 305 | { | ||
| 306 | /* reconstruct message header is if it | ||
| 307 | * is being sent in single fragment */ | ||
| 308 | *p++ = msg_hdr->type; | ||
| 309 | l2n3(msg_hdr->msg_len,p); | ||
| 310 | s2n (msg_hdr->seq,p); | ||
| 311 | l2n3(0,p); | ||
| 312 | l2n3(msg_hdr->msg_len,p); | ||
| 313 | p -= DTLS1_HM_HEADER_LENGTH; | ||
| 314 | xlen = ret; | ||
| 315 | } | ||
| 316 | else | ||
| 317 | { | ||
| 318 | p += DTLS1_HM_HEADER_LENGTH; | ||
| 319 | xlen = ret - DTLS1_HM_HEADER_LENGTH; | ||
| 320 | } | ||
| 321 | |||
| 322 | ssl3_finish_mac(s, p, xlen); | ||
| 323 | } | ||
| 324 | |||
| 325 | if (ret == s->init_num) | ||
| 326 | { | ||
| 327 | if (s->msg_callback) | ||
| 328 | s->msg_callback(1, s->version, type, s->init_buf->data, | ||
| 329 | (size_t)(s->init_off + s->init_num), s, | ||
| 330 | s->msg_callback_arg); | ||
| 331 | |||
| 332 | s->init_off = 0; /* done writing this message */ | ||
| 333 | s->init_num = 0; | ||
| 334 | |||
| 335 | return(1); | ||
| 336 | } | ||
| 337 | s->init_off+=ret; | ||
| 338 | s->init_num-=ret; | ||
| 339 | frag_off += (ret -= DTLS1_HM_HEADER_LENGTH); | ||
| 340 | } | ||
| 341 | } | ||
| 342 | return(0); | ||
| 343 | } | ||
| 344 | |||
| 345 | |||
| 346 | /* Obtain handshake message of message type 'mt' (any if mt == -1), | ||
| 347 | * maximum acceptable body length 'max'. | ||
| 348 | * Read an entire handshake message. Handshake messages arrive in | ||
| 349 | * fragments. | ||
| 350 | */ | ||
| 351 | long dtls1_get_message(SSL *s, int st1, int stn, int mt, long max, int *ok) | ||
| 352 | { | ||
| 353 | int i, al; | ||
| 354 | struct hm_header_st *msg_hdr; | ||
| 355 | |||
| 356 | /* s3->tmp is used to store messages that are unexpected, caused | ||
| 357 | * by the absence of an optional handshake message */ | ||
| 358 | if (s->s3->tmp.reuse_message) | ||
| 359 | { | ||
| 360 | s->s3->tmp.reuse_message=0; | ||
| 361 | if ((mt >= 0) && (s->s3->tmp.message_type != mt)) | ||
| 362 | { | ||
| 363 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 364 | SSLerr(SSL_F_DTLS1_GET_MESSAGE,SSL_R_UNEXPECTED_MESSAGE); | ||
| 365 | goto f_err; | ||
| 366 | } | ||
| 367 | *ok=1; | ||
| 368 | s->init_msg = s->init_buf->data + DTLS1_HM_HEADER_LENGTH; | ||
| 369 | s->init_num = (int)s->s3->tmp.message_size; | ||
| 370 | return s->init_num; | ||
| 371 | } | ||
| 372 | |||
| 373 | msg_hdr = &s->d1->r_msg_hdr; | ||
| 374 | do | ||
| 375 | { | ||
| 376 | if ( msg_hdr->frag_off == 0) | ||
| 377 | { | ||
| 378 | /* s->d1->r_message_header.msg_len = 0; */ | ||
| 379 | memset(msg_hdr, 0x00, sizeof(struct hm_header_st)); | ||
| 380 | } | ||
| 381 | |||
| 382 | i = dtls1_get_message_fragment(s, st1, stn, max, ok); | ||
| 383 | if ( i == DTLS1_HM_BAD_FRAGMENT || | ||
| 384 | i == DTLS1_HM_FRAGMENT_RETRY) /* bad fragment received */ | ||
| 385 | continue; | ||
| 386 | else if ( i <= 0 && !*ok) | ||
| 387 | return i; | ||
| 388 | |||
| 389 | /* Note that s->init_sum is used as a counter summing | ||
| 390 | * up fragments' lengths: as soon as they sum up to | ||
| 391 | * handshake packet length, we assume we have got all | ||
| 392 | * the fragments. Overlapping fragments would cause | ||
| 393 | * premature termination, so we don't expect overlaps. | ||
| 394 | * Well, handling overlaps would require something more | ||
| 395 | * drastic. Indeed, as it is now there is no way to | ||
| 396 | * tell if out-of-order fragment from the middle was | ||
| 397 | * the last. '>=' is the best/least we can do to control | ||
| 398 | * the potential damage caused by malformed overlaps. */ | ||
| 399 | if ((unsigned int)s->init_num >= msg_hdr->msg_len) | ||
| 400 | { | ||
| 401 | unsigned char *p = (unsigned char *)s->init_buf->data; | ||
| 402 | unsigned long msg_len = msg_hdr->msg_len; | ||
| 403 | |||
| 404 | /* reconstruct message header as if it was | ||
| 405 | * sent in single fragment */ | ||
| 406 | *(p++) = msg_hdr->type; | ||
| 407 | l2n3(msg_len,p); | ||
| 408 | s2n (msg_hdr->seq,p); | ||
| 409 | l2n3(0,p); | ||
| 410 | l2n3(msg_len,p); | ||
| 411 | if (s->client_version != DTLS1_BAD_VER) | ||
| 412 | p -= DTLS1_HM_HEADER_LENGTH, | ||
| 413 | msg_len += DTLS1_HM_HEADER_LENGTH; | ||
| 414 | |||
| 415 | ssl3_finish_mac(s, p, msg_len); | ||
| 416 | if (s->msg_callback) | ||
| 417 | s->msg_callback(0, s->version, SSL3_RT_HANDSHAKE, | ||
| 418 | p, msg_len, | ||
| 419 | s, s->msg_callback_arg); | ||
| 420 | |||
| 421 | memset(msg_hdr, 0x00, sizeof(struct hm_header_st)); | ||
| 422 | |||
| 423 | s->d1->handshake_read_seq++; | ||
| 424 | /* we just read a handshake message from the other side: | ||
| 425 | * this means that we don't need to retransmit of the | ||
| 426 | * buffered messages. | ||
| 427 | * XDTLS: may be able clear out this | ||
| 428 | * buffer a little sooner (i.e if an out-of-order | ||
| 429 | * handshake message/record is received at the record | ||
| 430 | * layer. | ||
| 431 | * XDTLS: exception is that the server needs to | ||
| 432 | * know that change cipher spec and finished messages | ||
| 433 | * have been received by the client before clearing this | ||
| 434 | * buffer. this can simply be done by waiting for the | ||
| 435 | * first data segment, but is there a better way? */ | ||
| 436 | dtls1_clear_record_buffer(s); | ||
| 437 | |||
| 438 | s->init_msg = s->init_buf->data + DTLS1_HM_HEADER_LENGTH; | ||
| 439 | return s->init_num; | ||
| 440 | } | ||
| 441 | else | ||
| 442 | msg_hdr->frag_off = i; | ||
| 443 | } while(1) ; | ||
| 444 | |||
| 445 | f_err: | ||
| 446 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 447 | *ok = 0; | ||
| 448 | return -1; | ||
| 449 | } | ||
| 450 | |||
| 451 | |||
| 452 | static int dtls1_preprocess_fragment(SSL *s,struct hm_header_st *msg_hdr,int max) | ||
| 453 | { | ||
| 454 | size_t frag_off,frag_len,msg_len; | ||
| 455 | |||
| 456 | msg_len = msg_hdr->msg_len; | ||
| 457 | frag_off = msg_hdr->frag_off; | ||
| 458 | frag_len = msg_hdr->frag_len; | ||
| 459 | |||
| 460 | /* sanity checking */ | ||
| 461 | if ( (frag_off+frag_len) > msg_len) | ||
| 462 | { | ||
| 463 | SSLerr(SSL_F_DTLS1_PREPROCESS_FRAGMENT,SSL_R_EXCESSIVE_MESSAGE_SIZE); | ||
| 464 | return SSL_AD_ILLEGAL_PARAMETER; | ||
| 465 | } | ||
| 466 | |||
| 467 | if ( (frag_off+frag_len) > (unsigned long)max) | ||
| 468 | { | ||
| 469 | SSLerr(SSL_F_DTLS1_PREPROCESS_FRAGMENT,SSL_R_EXCESSIVE_MESSAGE_SIZE); | ||
| 470 | return SSL_AD_ILLEGAL_PARAMETER; | ||
| 471 | } | ||
| 472 | |||
| 473 | if ( s->d1->r_msg_hdr.frag_off == 0) /* first fragment */ | ||
| 474 | { | ||
| 475 | /* msg_len is limited to 2^24, but is effectively checked | ||
| 476 | * against max above */ | ||
| 477 | if (!BUF_MEM_grow_clean(s->init_buf,(int)msg_len+DTLS1_HM_HEADER_LENGTH)) | ||
| 478 | { | ||
| 479 | SSLerr(SSL_F_DTLS1_PREPROCESS_FRAGMENT,ERR_R_BUF_LIB); | ||
| 480 | return SSL_AD_INTERNAL_ERROR; | ||
| 481 | } | ||
| 482 | |||
| 483 | s->s3->tmp.message_size = msg_len; | ||
| 484 | s->d1->r_msg_hdr.msg_len = msg_len; | ||
| 485 | s->s3->tmp.message_type = msg_hdr->type; | ||
| 486 | s->d1->r_msg_hdr.type = msg_hdr->type; | ||
| 487 | s->d1->r_msg_hdr.seq = msg_hdr->seq; | ||
| 488 | } | ||
| 489 | else if (msg_len != s->d1->r_msg_hdr.msg_len) | ||
| 490 | { | ||
| 491 | /* They must be playing with us! BTW, failure to enforce | ||
| 492 | * upper limit would open possibility for buffer overrun. */ | ||
| 493 | SSLerr(SSL_F_DTLS1_PREPROCESS_FRAGMENT,SSL_R_EXCESSIVE_MESSAGE_SIZE); | ||
| 494 | return SSL_AD_ILLEGAL_PARAMETER; | ||
| 495 | } | ||
| 496 | |||
| 497 | return 0; /* no error */ | ||
| 498 | } | ||
| 499 | |||
| 500 | |||
| 501 | static int | ||
| 502 | dtls1_retrieve_buffered_fragment(SSL *s, long max, int *ok) | ||
| 503 | { | ||
| 504 | /* (0) check whether the desired fragment is available | ||
| 505 | * if so: | ||
| 506 | * (1) copy over the fragment to s->init_buf->data[] | ||
| 507 | * (2) update s->init_num | ||
| 508 | */ | ||
| 509 | pitem *item; | ||
| 510 | hm_fragment *frag; | ||
| 511 | int al; | ||
| 512 | |||
| 513 | *ok = 0; | ||
| 514 | item = pqueue_peek(s->d1->buffered_messages); | ||
| 515 | if ( item == NULL) | ||
| 516 | return 0; | ||
| 517 | |||
| 518 | frag = (hm_fragment *)item->data; | ||
| 519 | |||
| 520 | if ( s->d1->handshake_read_seq == frag->msg_header.seq) | ||
| 521 | { | ||
| 522 | pqueue_pop(s->d1->buffered_messages); | ||
| 523 | |||
| 524 | al=dtls1_preprocess_fragment(s,&frag->msg_header,max); | ||
| 525 | |||
| 526 | if (al==0) /* no alert */ | ||
| 527 | { | ||
| 528 | unsigned char *p = (unsigned char *)s->init_buf->data+DTLS1_HM_HEADER_LENGTH; | ||
| 529 | memcpy(&p[frag->msg_header.frag_off], | ||
| 530 | frag->fragment,frag->msg_header.frag_len); | ||
| 531 | } | ||
| 532 | |||
| 533 | dtls1_hm_fragment_free(frag); | ||
| 534 | pitem_free(item); | ||
| 535 | |||
| 536 | if (al==0) | ||
| 537 | { | ||
| 538 | *ok = 1; | ||
| 539 | return frag->msg_header.frag_len; | ||
| 540 | } | ||
| 541 | |||
| 542 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 543 | s->init_num = 0; | ||
| 544 | *ok = 0; | ||
| 545 | return -1; | ||
| 546 | } | ||
| 547 | else | ||
| 548 | return 0; | ||
| 549 | } | ||
| 550 | |||
| 551 | |||
| 552 | static int | ||
| 553 | dtls1_process_out_of_seq_message(SSL *s, struct hm_header_st* msg_hdr, int *ok) | ||
| 554 | { | ||
| 555 | int i=-1; | ||
| 556 | hm_fragment *frag = NULL; | ||
| 557 | pitem *item = NULL; | ||
| 558 | PQ_64BIT seq64; | ||
| 559 | unsigned long frag_len = msg_hdr->frag_len; | ||
| 560 | |||
| 561 | if ((msg_hdr->frag_off+frag_len) > msg_hdr->msg_len) | ||
| 562 | goto err; | ||
| 563 | |||
| 564 | if (msg_hdr->seq <= s->d1->handshake_read_seq) | ||
| 565 | { | ||
| 566 | unsigned char devnull [256]; | ||
| 567 | |||
| 568 | while (frag_len) | ||
| 569 | { | ||
| 570 | i = s->method->ssl_read_bytes(s,SSL3_RT_HANDSHAKE, | ||
| 571 | devnull, | ||
| 572 | frag_len>sizeof(devnull)?sizeof(devnull):frag_len,0); | ||
| 573 | if (i<=0) goto err; | ||
| 574 | frag_len -= i; | ||
| 575 | } | ||
| 576 | } | ||
| 577 | |||
| 578 | frag = dtls1_hm_fragment_new(frag_len); | ||
| 579 | if ( frag == NULL) | ||
| 580 | goto err; | ||
| 581 | |||
| 582 | memcpy(&(frag->msg_header), msg_hdr, sizeof(*msg_hdr)); | ||
| 583 | |||
| 584 | if (frag_len) | ||
| 585 | { | ||
| 586 | /* read the body of the fragment (header has already been read */ | ||
| 587 | i = s->method->ssl_read_bytes(s,SSL3_RT_HANDSHAKE, | ||
| 588 | frag->fragment,frag_len,0); | ||
| 589 | if (i<=0 || (unsigned long)i!=frag_len) | ||
| 590 | goto err; | ||
| 591 | } | ||
| 592 | |||
| 593 | pq_64bit_init(&seq64); | ||
| 594 | pq_64bit_assign_word(&seq64, msg_hdr->seq); | ||
| 595 | |||
| 596 | item = pitem_new(seq64, frag); | ||
| 597 | pq_64bit_free(&seq64); | ||
| 598 | if ( item == NULL) | ||
| 599 | goto err; | ||
| 600 | |||
| 601 | pqueue_insert(s->d1->buffered_messages, item); | ||
| 602 | return DTLS1_HM_FRAGMENT_RETRY; | ||
| 603 | |||
| 604 | err: | ||
| 605 | if ( frag != NULL) dtls1_hm_fragment_free(frag); | ||
| 606 | if ( item != NULL) OPENSSL_free(item); | ||
| 607 | *ok = 0; | ||
| 608 | return i; | ||
| 609 | } | ||
| 610 | |||
| 611 | |||
| 612 | static long | ||
| 613 | dtls1_get_message_fragment(SSL *s, int st1, int stn, long max, int *ok) | ||
| 614 | { | ||
| 615 | unsigned char wire[DTLS1_HM_HEADER_LENGTH]; | ||
| 616 | unsigned long l, frag_off, frag_len; | ||
| 617 | int i,al; | ||
| 618 | struct hm_header_st msg_hdr; | ||
| 619 | |||
| 620 | /* see if we have the required fragment already */ | ||
| 621 | if ((frag_len = dtls1_retrieve_buffered_fragment(s,max,ok)) || *ok) | ||
| 622 | { | ||
| 623 | if (*ok) s->init_num += frag_len; | ||
| 624 | return frag_len; | ||
| 625 | } | ||
| 626 | |||
| 627 | /* read handshake message header */ | ||
| 628 | i=s->method->ssl_read_bytes(s,SSL3_RT_HANDSHAKE,wire, | ||
| 629 | DTLS1_HM_HEADER_LENGTH, 0); | ||
| 630 | if (i <= 0) /* nbio, or an error */ | ||
| 631 | { | ||
| 632 | s->rwstate=SSL_READING; | ||
| 633 | *ok = 0; | ||
| 634 | return i; | ||
| 635 | } | ||
| 636 | OPENSSL_assert(i == DTLS1_HM_HEADER_LENGTH); | ||
| 637 | |||
| 638 | /* parse the message fragment header */ | ||
| 639 | dtls1_get_message_header(wire, &msg_hdr); | ||
| 640 | |||
| 641 | /* | ||
| 642 | * if this is a future (or stale) message it gets buffered | ||
| 643 | * (or dropped)--no further processing at this time | ||
| 644 | */ | ||
| 645 | if ( msg_hdr.seq != s->d1->handshake_read_seq) | ||
| 646 | return dtls1_process_out_of_seq_message(s, &msg_hdr, ok); | ||
| 647 | |||
| 648 | l = msg_hdr.msg_len; | ||
| 649 | frag_off = msg_hdr.frag_off; | ||
| 650 | frag_len = msg_hdr.frag_len; | ||
| 651 | |||
| 652 | if (!s->server && s->d1->r_msg_hdr.frag_off == 0 && | ||
| 653 | wire[0] == SSL3_MT_HELLO_REQUEST) | ||
| 654 | { | ||
| 655 | /* The server may always send 'Hello Request' messages -- | ||
| 656 | * we are doing a handshake anyway now, so ignore them | ||
| 657 | * if their format is correct. Does not count for | ||
| 658 | * 'Finished' MAC. */ | ||
| 659 | if (wire[1] == 0 && wire[2] == 0 && wire[3] == 0) | ||
| 660 | { | ||
| 661 | if (s->msg_callback) | ||
| 662 | s->msg_callback(0, s->version, SSL3_RT_HANDSHAKE, | ||
| 663 | wire, DTLS1_HM_HEADER_LENGTH, s, | ||
| 664 | s->msg_callback_arg); | ||
| 665 | |||
| 666 | s->init_num = 0; | ||
| 667 | return dtls1_get_message_fragment(s, st1, stn, | ||
| 668 | max, ok); | ||
| 669 | } | ||
| 670 | else /* Incorrectly formated Hello request */ | ||
| 671 | { | ||
| 672 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 673 | SSLerr(SSL_F_DTLS1_GET_MESSAGE_FRAGMENT,SSL_R_UNEXPECTED_MESSAGE); | ||
| 674 | goto f_err; | ||
| 675 | } | ||
| 676 | } | ||
| 677 | |||
| 678 | if ((al=dtls1_preprocess_fragment(s,&msg_hdr,max))) | ||
| 679 | goto f_err; | ||
| 680 | |||
| 681 | /* XDTLS: ressurect this when restart is in place */ | ||
| 682 | s->state=stn; | ||
| 683 | |||
| 684 | if ( frag_len > 0) | ||
| 685 | { | ||
| 686 | unsigned char *p=(unsigned char *)s->init_buf->data+DTLS1_HM_HEADER_LENGTH; | ||
| 687 | |||
| 688 | i=s->method->ssl_read_bytes(s,SSL3_RT_HANDSHAKE, | ||
| 689 | &p[frag_off],frag_len,0); | ||
| 690 | /* XDTLS: fix this--message fragments cannot span multiple packets */ | ||
| 691 | if (i <= 0) | ||
| 692 | { | ||
| 693 | s->rwstate=SSL_READING; | ||
| 694 | *ok = 0; | ||
| 695 | return i; | ||
| 696 | } | ||
| 697 | } | ||
| 698 | else | ||
| 699 | i = 0; | ||
| 700 | |||
| 701 | /* XDTLS: an incorrectly formatted fragment should cause the | ||
| 702 | * handshake to fail */ | ||
| 703 | OPENSSL_assert(i == (int)frag_len); | ||
| 704 | |||
| 705 | *ok = 1; | ||
| 706 | |||
| 707 | /* Note that s->init_num is *not* used as current offset in | ||
| 708 | * s->init_buf->data, but as a counter summing up fragments' | ||
| 709 | * lengths: as soon as they sum up to handshake packet | ||
| 710 | * length, we assume we have got all the fragments. */ | ||
| 711 | s->init_num += frag_len; | ||
| 712 | return frag_len; | ||
| 713 | |||
| 714 | f_err: | ||
| 715 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 716 | s->init_num = 0; | ||
| 717 | |||
| 718 | *ok=0; | ||
| 719 | return(-1); | ||
| 720 | } | ||
| 721 | |||
| 722 | int dtls1_send_finished(SSL *s, int a, int b, const char *sender, int slen) | ||
| 723 | { | ||
| 724 | unsigned char *p,*d; | ||
| 725 | int i; | ||
| 726 | unsigned long l; | ||
| 727 | |||
| 728 | if (s->state == a) | ||
| 729 | { | ||
| 730 | d=(unsigned char *)s->init_buf->data; | ||
| 731 | p= &(d[DTLS1_HM_HEADER_LENGTH]); | ||
| 732 | |||
| 733 | i=s->method->ssl3_enc->final_finish_mac(s, | ||
| 734 | &(s->s3->finish_dgst1), | ||
| 735 | &(s->s3->finish_dgst2), | ||
| 736 | sender,slen,s->s3->tmp.finish_md); | ||
| 737 | s->s3->tmp.finish_md_len = i; | ||
| 738 | memcpy(p, s->s3->tmp.finish_md, i); | ||
| 739 | p+=i; | ||
| 740 | l=i; | ||
| 741 | |||
| 742 | #ifdef OPENSSL_SYS_WIN16 | ||
| 743 | /* MSVC 1.5 does not clear the top bytes of the word unless | ||
| 744 | * I do this. | ||
| 745 | */ | ||
| 746 | l&=0xffff; | ||
| 747 | #endif | ||
| 748 | |||
| 749 | d = dtls1_set_message_header(s, d, SSL3_MT_FINISHED, l, 0, l); | ||
| 750 | s->init_num=(int)l+DTLS1_HM_HEADER_LENGTH; | ||
| 751 | s->init_off=0; | ||
| 752 | |||
| 753 | /* buffer the message to handle re-xmits */ | ||
| 754 | dtls1_buffer_message(s, 0); | ||
| 755 | |||
| 756 | s->state=b; | ||
| 757 | } | ||
| 758 | |||
| 759 | /* SSL3_ST_SEND_xxxxxx_HELLO_B */ | ||
| 760 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 761 | } | ||
| 762 | |||
| 763 | /* for these 2 messages, we need to | ||
| 764 | * ssl->enc_read_ctx re-init | ||
| 765 | * ssl->s3->read_sequence zero | ||
| 766 | * ssl->s3->read_mac_secret re-init | ||
| 767 | * ssl->session->read_sym_enc assign | ||
| 768 | * ssl->session->read_compression assign | ||
| 769 | * ssl->session->read_hash assign | ||
| 770 | */ | ||
| 771 | int dtls1_send_change_cipher_spec(SSL *s, int a, int b) | ||
| 772 | { | ||
| 773 | unsigned char *p; | ||
| 774 | |||
| 775 | if (s->state == a) | ||
| 776 | { | ||
| 777 | p=(unsigned char *)s->init_buf->data; | ||
| 778 | *p++=SSL3_MT_CCS; | ||
| 779 | s->d1->handshake_write_seq = s->d1->next_handshake_write_seq; | ||
| 780 | s->init_num=DTLS1_CCS_HEADER_LENGTH; | ||
| 781 | |||
| 782 | if (s->client_version == DTLS1_BAD_VER) | ||
| 783 | { | ||
| 784 | s->d1->next_handshake_write_seq++; | ||
| 785 | s2n(s->d1->handshake_write_seq,p); | ||
| 786 | s->init_num+=2; | ||
| 787 | } | ||
| 788 | |||
| 789 | s->init_off=0; | ||
| 790 | |||
| 791 | dtls1_set_message_header_int(s, SSL3_MT_CCS, 0, | ||
| 792 | s->d1->handshake_write_seq, 0, 0); | ||
| 793 | |||
| 794 | /* buffer the message to handle re-xmits */ | ||
| 795 | dtls1_buffer_message(s, 1); | ||
| 796 | |||
| 797 | s->state=b; | ||
| 798 | } | ||
| 799 | |||
| 800 | /* SSL3_ST_CW_CHANGE_B */ | ||
| 801 | return(dtls1_do_write(s,SSL3_RT_CHANGE_CIPHER_SPEC)); | ||
| 802 | } | ||
| 803 | |||
| 804 | unsigned long dtls1_output_cert_chain(SSL *s, X509 *x) | ||
| 805 | { | ||
| 806 | unsigned char *p; | ||
| 807 | int n,i; | ||
| 808 | unsigned long l= 3 + DTLS1_HM_HEADER_LENGTH; | ||
| 809 | BUF_MEM *buf; | ||
| 810 | X509_STORE_CTX xs_ctx; | ||
| 811 | X509_OBJECT obj; | ||
| 812 | |||
| 813 | /* TLSv1 sends a chain with nothing in it, instead of an alert */ | ||
| 814 | buf=s->init_buf; | ||
| 815 | if (!BUF_MEM_grow_clean(buf,10)) | ||
| 816 | { | ||
| 817 | SSLerr(SSL_F_DTLS1_OUTPUT_CERT_CHAIN,ERR_R_BUF_LIB); | ||
| 818 | return(0); | ||
| 819 | } | ||
| 820 | if (x != NULL) | ||
| 821 | { | ||
| 822 | if(!X509_STORE_CTX_init(&xs_ctx,s->ctx->cert_store,NULL,NULL)) | ||
| 823 | { | ||
| 824 | SSLerr(SSL_F_DTLS1_OUTPUT_CERT_CHAIN,ERR_R_X509_LIB); | ||
| 825 | return(0); | ||
| 826 | } | ||
| 827 | |||
| 828 | for (;;) | ||
| 829 | { | ||
| 830 | n=i2d_X509(x,NULL); | ||
| 831 | if (!BUF_MEM_grow_clean(buf,(int)(n+l+3))) | ||
| 832 | { | ||
| 833 | SSLerr(SSL_F_DTLS1_OUTPUT_CERT_CHAIN,ERR_R_BUF_LIB); | ||
| 834 | return(0); | ||
| 835 | } | ||
| 836 | p=(unsigned char *)&(buf->data[l]); | ||
| 837 | l2n3(n,p); | ||
| 838 | i2d_X509(x,&p); | ||
| 839 | l+=n+3; | ||
| 840 | if (X509_NAME_cmp(X509_get_subject_name(x), | ||
| 841 | X509_get_issuer_name(x)) == 0) break; | ||
| 842 | |||
| 843 | i=X509_STORE_get_by_subject(&xs_ctx,X509_LU_X509, | ||
| 844 | X509_get_issuer_name(x),&obj); | ||
| 845 | if (i <= 0) break; | ||
| 846 | x=obj.data.x509; | ||
| 847 | /* Count is one too high since the X509_STORE_get uped the | ||
| 848 | * ref count */ | ||
| 849 | X509_free(x); | ||
| 850 | } | ||
| 851 | |||
| 852 | X509_STORE_CTX_cleanup(&xs_ctx); | ||
| 853 | } | ||
| 854 | |||
| 855 | /* Thawte special :-) */ | ||
| 856 | if (s->ctx->extra_certs != NULL) | ||
| 857 | for (i=0; i<sk_X509_num(s->ctx->extra_certs); i++) | ||
| 858 | { | ||
| 859 | x=sk_X509_value(s->ctx->extra_certs,i); | ||
| 860 | n=i2d_X509(x,NULL); | ||
| 861 | if (!BUF_MEM_grow_clean(buf,(int)(n+l+3))) | ||
| 862 | { | ||
| 863 | SSLerr(SSL_F_DTLS1_OUTPUT_CERT_CHAIN,ERR_R_BUF_LIB); | ||
| 864 | return(0); | ||
| 865 | } | ||
| 866 | p=(unsigned char *)&(buf->data[l]); | ||
| 867 | l2n3(n,p); | ||
| 868 | i2d_X509(x,&p); | ||
| 869 | l+=n+3; | ||
| 870 | } | ||
| 871 | |||
| 872 | l-= (3 + DTLS1_HM_HEADER_LENGTH); | ||
| 873 | |||
| 874 | p=(unsigned char *)&(buf->data[DTLS1_HM_HEADER_LENGTH]); | ||
| 875 | l2n3(l,p); | ||
| 876 | l+=3; | ||
| 877 | p=(unsigned char *)&(buf->data[0]); | ||
| 878 | p = dtls1_set_message_header(s, p, SSL3_MT_CERTIFICATE, l, 0, l); | ||
| 879 | |||
| 880 | l+=DTLS1_HM_HEADER_LENGTH; | ||
| 881 | return(l); | ||
| 882 | } | ||
| 883 | |||
| 884 | int dtls1_read_failed(SSL *s, int code) | ||
| 885 | { | ||
| 886 | DTLS1_STATE *state; | ||
| 887 | BIO *bio; | ||
| 888 | int send_alert = 0; | ||
| 889 | |||
| 890 | if ( code > 0) | ||
| 891 | { | ||
| 892 | fprintf( stderr, "invalid state reached %s:%d", __FILE__, __LINE__); | ||
| 893 | return 1; | ||
| 894 | } | ||
| 895 | |||
| 896 | bio = SSL_get_rbio(s); | ||
| 897 | if ( ! BIO_dgram_recv_timedout(bio)) | ||
| 898 | { | ||
| 899 | /* not a timeout, none of our business, | ||
| 900 | let higher layers handle this. in fact it's probably an error */ | ||
| 901 | return code; | ||
| 902 | } | ||
| 903 | |||
| 904 | if ( ! SSL_in_init(s)) /* done, no need to send a retransmit */ | ||
| 905 | { | ||
| 906 | BIO_set_flags(SSL_get_rbio(s), BIO_FLAGS_READ); | ||
| 907 | return code; | ||
| 908 | } | ||
| 909 | |||
| 910 | state = s->d1; | ||
| 911 | state->timeout.num_alerts++; | ||
| 912 | if ( state->timeout.num_alerts > DTLS1_TMO_ALERT_COUNT) | ||
| 913 | { | ||
| 914 | /* fail the connection, enough alerts have been sent */ | ||
| 915 | SSLerr(SSL_F_DTLS1_READ_FAILED,SSL_R_READ_TIMEOUT_EXPIRED); | ||
| 916 | return 0; | ||
| 917 | } | ||
| 918 | |||
| 919 | state->timeout.read_timeouts++; | ||
| 920 | if ( state->timeout.read_timeouts > DTLS1_TMO_READ_COUNT) | ||
| 921 | { | ||
| 922 | send_alert = 1; | ||
| 923 | state->timeout.read_timeouts = 1; | ||
| 924 | } | ||
| 925 | |||
| 926 | |||
| 927 | #if 0 /* for now, each alert contains only one record number */ | ||
| 928 | item = pqueue_peek(state->rcvd_records); | ||
| 929 | if ( item ) | ||
| 930 | { | ||
| 931 | /* send an alert immediately for all the missing records */ | ||
| 932 | } | ||
| 933 | else | ||
| 934 | #endif | ||
| 935 | |||
| 936 | #if 0 /* no more alert sending, just retransmit the last set of messages */ | ||
| 937 | if ( send_alert) | ||
| 938 | ssl3_send_alert(s,SSL3_AL_WARNING, | ||
| 939 | DTLS1_AD_MISSING_HANDSHAKE_MESSAGE); | ||
| 940 | #endif | ||
| 941 | |||
| 942 | return dtls1_retransmit_buffered_messages(s) ; | ||
| 943 | } | ||
| 944 | |||
| 945 | |||
| 946 | static int | ||
| 947 | dtls1_retransmit_buffered_messages(SSL *s) | ||
| 948 | { | ||
| 949 | pqueue sent = s->d1->sent_messages; | ||
| 950 | piterator iter; | ||
| 951 | pitem *item; | ||
| 952 | hm_fragment *frag; | ||
| 953 | int found = 0; | ||
| 954 | |||
| 955 | iter = pqueue_iterator(sent); | ||
| 956 | |||
| 957 | for ( item = pqueue_next(&iter); item != NULL; item = pqueue_next(&iter)) | ||
| 958 | { | ||
| 959 | frag = (hm_fragment *)item->data; | ||
| 960 | if ( dtls1_retransmit_message(s, frag->msg_header.seq, 0, &found) <= 0 && | ||
| 961 | found) | ||
| 962 | { | ||
| 963 | fprintf(stderr, "dtls1_retransmit_message() failed\n"); | ||
| 964 | return -1; | ||
| 965 | } | ||
| 966 | } | ||
| 967 | |||
| 968 | return 1; | ||
| 969 | } | ||
| 970 | |||
| 971 | int | ||
| 972 | dtls1_buffer_message(SSL *s, int is_ccs) | ||
| 973 | { | ||
| 974 | pitem *item; | ||
| 975 | hm_fragment *frag; | ||
| 976 | PQ_64BIT seq64; | ||
| 977 | unsigned int epoch = s->d1->w_epoch; | ||
| 978 | |||
| 979 | /* this function is called immediately after a message has | ||
| 980 | * been serialized */ | ||
| 981 | OPENSSL_assert(s->init_off == 0); | ||
| 982 | |||
| 983 | frag = dtls1_hm_fragment_new(s->init_num); | ||
| 984 | |||
| 985 | memcpy(frag->fragment, s->init_buf->data, s->init_num); | ||
| 986 | |||
| 987 | if ( is_ccs) | ||
| 988 | { | ||
| 989 | OPENSSL_assert(s->d1->w_msg_hdr.msg_len + | ||
| 990 | DTLS1_CCS_HEADER_LENGTH <= (unsigned int)s->init_num); | ||
| 991 | epoch++; | ||
| 992 | } | ||
| 993 | else | ||
| 994 | { | ||
| 995 | OPENSSL_assert(s->d1->w_msg_hdr.msg_len + | ||
| 996 | DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num); | ||
| 997 | } | ||
| 998 | |||
| 999 | frag->msg_header.msg_len = s->d1->w_msg_hdr.msg_len; | ||
| 1000 | frag->msg_header.seq = s->d1->w_msg_hdr.seq; | ||
| 1001 | frag->msg_header.type = s->d1->w_msg_hdr.type; | ||
| 1002 | frag->msg_header.frag_off = 0; | ||
| 1003 | frag->msg_header.frag_len = s->d1->w_msg_hdr.msg_len; | ||
| 1004 | frag->msg_header.is_ccs = is_ccs; | ||
| 1005 | |||
| 1006 | pq_64bit_init(&seq64); | ||
| 1007 | pq_64bit_assign_word(&seq64, epoch<<16 | frag->msg_header.seq); | ||
| 1008 | |||
| 1009 | item = pitem_new(seq64, frag); | ||
| 1010 | pq_64bit_free(&seq64); | ||
| 1011 | if ( item == NULL) | ||
| 1012 | { | ||
| 1013 | dtls1_hm_fragment_free(frag); | ||
| 1014 | return 0; | ||
| 1015 | } | ||
| 1016 | |||
| 1017 | #if 0 | ||
| 1018 | fprintf( stderr, "buffered messge: \ttype = %xx\n", msg_buf->type); | ||
| 1019 | fprintf( stderr, "\t\t\t\t\tlen = %d\n", msg_buf->len); | ||
| 1020 | fprintf( stderr, "\t\t\t\t\tseq_num = %d\n", msg_buf->seq_num); | ||
| 1021 | #endif | ||
| 1022 | |||
| 1023 | pqueue_insert(s->d1->sent_messages, item); | ||
| 1024 | return 1; | ||
| 1025 | } | ||
| 1026 | |||
| 1027 | int | ||
| 1028 | dtls1_retransmit_message(SSL *s, unsigned short seq, unsigned long frag_off, | ||
| 1029 | int *found) | ||
| 1030 | { | ||
| 1031 | int ret; | ||
| 1032 | /* XDTLS: for now assuming that read/writes are blocking */ | ||
| 1033 | pitem *item; | ||
| 1034 | hm_fragment *frag ; | ||
| 1035 | unsigned long header_length; | ||
| 1036 | PQ_64BIT seq64; | ||
| 1037 | |||
| 1038 | /* | ||
| 1039 | OPENSSL_assert(s->init_num == 0); | ||
| 1040 | OPENSSL_assert(s->init_off == 0); | ||
| 1041 | */ | ||
| 1042 | |||
| 1043 | /* XDTLS: the requested message ought to be found, otherwise error */ | ||
| 1044 | pq_64bit_init(&seq64); | ||
| 1045 | pq_64bit_assign_word(&seq64, seq); | ||
| 1046 | |||
| 1047 | item = pqueue_find(s->d1->sent_messages, seq64); | ||
| 1048 | pq_64bit_free(&seq64); | ||
| 1049 | if ( item == NULL) | ||
| 1050 | { | ||
| 1051 | fprintf(stderr, "retransmit: message %d non-existant\n", seq); | ||
| 1052 | *found = 0; | ||
| 1053 | return 0; | ||
| 1054 | } | ||
| 1055 | |||
| 1056 | *found = 1; | ||
| 1057 | frag = (hm_fragment *)item->data; | ||
| 1058 | |||
| 1059 | if ( frag->msg_header.is_ccs) | ||
| 1060 | header_length = DTLS1_CCS_HEADER_LENGTH; | ||
| 1061 | else | ||
| 1062 | header_length = DTLS1_HM_HEADER_LENGTH; | ||
| 1063 | |||
| 1064 | memcpy(s->init_buf->data, frag->fragment, | ||
| 1065 | frag->msg_header.msg_len + header_length); | ||
| 1066 | s->init_num = frag->msg_header.msg_len + header_length; | ||
| 1067 | |||
| 1068 | dtls1_set_message_header_int(s, frag->msg_header.type, | ||
| 1069 | frag->msg_header.msg_len, frag->msg_header.seq, 0, | ||
| 1070 | frag->msg_header.frag_len); | ||
| 1071 | |||
| 1072 | s->d1->retransmitting = 1; | ||
| 1073 | ret = dtls1_do_write(s, frag->msg_header.is_ccs ? | ||
| 1074 | SSL3_RT_CHANGE_CIPHER_SPEC : SSL3_RT_HANDSHAKE); | ||
| 1075 | s->d1->retransmitting = 0; | ||
| 1076 | |||
| 1077 | (void)BIO_flush(SSL_get_wbio(s)); | ||
| 1078 | return ret; | ||
| 1079 | } | ||
| 1080 | |||
| 1081 | /* call this function when the buffered messages are no longer needed */ | ||
| 1082 | void | ||
| 1083 | dtls1_clear_record_buffer(SSL *s) | ||
| 1084 | { | ||
| 1085 | pitem *item; | ||
| 1086 | |||
| 1087 | for(item = pqueue_pop(s->d1->sent_messages); | ||
| 1088 | item != NULL; item = pqueue_pop(s->d1->sent_messages)) | ||
| 1089 | { | ||
| 1090 | dtls1_hm_fragment_free((hm_fragment *)item->data); | ||
| 1091 | pitem_free(item); | ||
| 1092 | } | ||
| 1093 | } | ||
| 1094 | |||
| 1095 | |||
| 1096 | unsigned char * | ||
| 1097 | dtls1_set_message_header(SSL *s, unsigned char *p, unsigned char mt, | ||
| 1098 | unsigned long len, unsigned long frag_off, unsigned long frag_len) | ||
| 1099 | { | ||
| 1100 | if ( frag_off == 0) | ||
| 1101 | { | ||
| 1102 | s->d1->handshake_write_seq = s->d1->next_handshake_write_seq; | ||
| 1103 | s->d1->next_handshake_write_seq++; | ||
| 1104 | } | ||
| 1105 | |||
| 1106 | dtls1_set_message_header_int(s, mt, len, s->d1->handshake_write_seq, | ||
| 1107 | frag_off, frag_len); | ||
| 1108 | |||
| 1109 | return p += DTLS1_HM_HEADER_LENGTH; | ||
| 1110 | } | ||
| 1111 | |||
| 1112 | |||
| 1113 | /* don't actually do the writing, wait till the MTU has been retrieved */ | ||
| 1114 | static void | ||
| 1115 | dtls1_set_message_header_int(SSL *s, unsigned char mt, | ||
| 1116 | unsigned long len, unsigned short seq_num, unsigned long frag_off, | ||
| 1117 | unsigned long frag_len) | ||
| 1118 | { | ||
| 1119 | struct hm_header_st *msg_hdr = &s->d1->w_msg_hdr; | ||
| 1120 | |||
| 1121 | msg_hdr->type = mt; | ||
| 1122 | msg_hdr->msg_len = len; | ||
| 1123 | msg_hdr->seq = seq_num; | ||
| 1124 | msg_hdr->frag_off = frag_off; | ||
| 1125 | msg_hdr->frag_len = frag_len; | ||
| 1126 | } | ||
| 1127 | |||
| 1128 | static void | ||
| 1129 | dtls1_fix_message_header(SSL *s, unsigned long frag_off, | ||
| 1130 | unsigned long frag_len) | ||
| 1131 | { | ||
| 1132 | struct hm_header_st *msg_hdr = &s->d1->w_msg_hdr; | ||
| 1133 | |||
| 1134 | msg_hdr->frag_off = frag_off; | ||
| 1135 | msg_hdr->frag_len = frag_len; | ||
| 1136 | } | ||
| 1137 | |||
| 1138 | static unsigned char * | ||
| 1139 | dtls1_write_message_header(SSL *s, unsigned char *p) | ||
| 1140 | { | ||
| 1141 | struct hm_header_st *msg_hdr = &s->d1->w_msg_hdr; | ||
| 1142 | |||
| 1143 | *p++ = msg_hdr->type; | ||
| 1144 | l2n3(msg_hdr->msg_len, p); | ||
| 1145 | |||
| 1146 | s2n(msg_hdr->seq, p); | ||
| 1147 | l2n3(msg_hdr->frag_off, p); | ||
| 1148 | l2n3(msg_hdr->frag_len, p); | ||
| 1149 | |||
| 1150 | return p; | ||
| 1151 | } | ||
| 1152 | |||
| 1153 | static unsigned int | ||
| 1154 | dtls1_min_mtu(void) | ||
| 1155 | { | ||
| 1156 | return (g_probable_mtu[(sizeof(g_probable_mtu) / | ||
| 1157 | sizeof(g_probable_mtu[0])) - 1]); | ||
| 1158 | } | ||
| 1159 | |||
| 1160 | static unsigned int | ||
| 1161 | dtls1_guess_mtu(unsigned int curr_mtu) | ||
| 1162 | { | ||
| 1163 | size_t i; | ||
| 1164 | |||
| 1165 | if ( curr_mtu == 0 ) | ||
| 1166 | return g_probable_mtu[0] ; | ||
| 1167 | |||
| 1168 | for ( i = 0; i < sizeof(g_probable_mtu)/sizeof(g_probable_mtu[0]); i++) | ||
| 1169 | if ( curr_mtu > g_probable_mtu[i]) | ||
| 1170 | return g_probable_mtu[i]; | ||
| 1171 | |||
| 1172 | return curr_mtu; | ||
| 1173 | } | ||
| 1174 | |||
| 1175 | void | ||
| 1176 | dtls1_get_message_header(unsigned char *data, struct hm_header_st *msg_hdr) | ||
| 1177 | { | ||
| 1178 | memset(msg_hdr, 0x00, sizeof(struct hm_header_st)); | ||
| 1179 | msg_hdr->type = *(data++); | ||
| 1180 | n2l3(data, msg_hdr->msg_len); | ||
| 1181 | |||
| 1182 | n2s(data, msg_hdr->seq); | ||
| 1183 | n2l3(data, msg_hdr->frag_off); | ||
| 1184 | n2l3(data, msg_hdr->frag_len); | ||
| 1185 | } | ||
| 1186 | |||
| 1187 | void | ||
| 1188 | dtls1_get_ccs_header(unsigned char *data, struct ccs_header_st *ccs_hdr) | ||
| 1189 | { | ||
| 1190 | memset(ccs_hdr, 0x00, sizeof(struct ccs_header_st)); | ||
| 1191 | |||
| 1192 | ccs_hdr->type = *(data++); | ||
| 1193 | } | ||
diff --git a/src/lib/libssl/src/ssl/d1_clnt.c b/src/lib/libssl/src/ssl/d1_clnt.c new file mode 100644 index 0000000000..5e59dc845a --- /dev/null +++ b/src/lib/libssl/src/ssl/d1_clnt.c | |||
| @@ -0,0 +1,1156 @@ | |||
| 1 | /* ssl/d1_clnt.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 60 | * All rights reserved. | ||
| 61 | * | ||
| 62 | * This package is an SSL implementation written | ||
| 63 | * by Eric Young (eay@cryptsoft.com). | ||
| 64 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 65 | * | ||
| 66 | * This library is free for commercial and non-commercial use as long as | ||
| 67 | * the following conditions are aheared to. The following conditions | ||
| 68 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 69 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 70 | * included with this distribution is covered by the same copyright terms | ||
| 71 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 72 | * | ||
| 73 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 74 | * the code are not to be removed. | ||
| 75 | * If this package is used in a product, Eric Young should be given attribution | ||
| 76 | * as the author of the parts of the library used. | ||
| 77 | * This can be in the form of a textual message at program startup or | ||
| 78 | * in documentation (online or textual) provided with the package. | ||
| 79 | * | ||
| 80 | * Redistribution and use in source and binary forms, with or without | ||
| 81 | * modification, are permitted provided that the following conditions | ||
| 82 | * are met: | ||
| 83 | * 1. Redistributions of source code must retain the copyright | ||
| 84 | * notice, this list of conditions and the following disclaimer. | ||
| 85 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 86 | * notice, this list of conditions and the following disclaimer in the | ||
| 87 | * documentation and/or other materials provided with the distribution. | ||
| 88 | * 3. All advertising materials mentioning features or use of this software | ||
| 89 | * must display the following acknowledgement: | ||
| 90 | * "This product includes cryptographic software written by | ||
| 91 | * Eric Young (eay@cryptsoft.com)" | ||
| 92 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 93 | * being used are not cryptographic related :-). | ||
| 94 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 95 | * the apps directory (application code) you must include an acknowledgement: | ||
| 96 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 97 | * | ||
| 98 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 99 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 100 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 101 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 102 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 103 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 104 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 105 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 106 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 107 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 108 | * SUCH DAMAGE. | ||
| 109 | * | ||
| 110 | * The licence and distribution terms for any publically available version or | ||
| 111 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 112 | * copied and put under another distribution licence | ||
| 113 | * [including the GNU Public Licence.] | ||
| 114 | */ | ||
| 115 | |||
| 116 | #include <stdio.h> | ||
| 117 | #include "ssl_locl.h" | ||
| 118 | #include "kssl_lcl.h" | ||
| 119 | #include <openssl/buffer.h> | ||
| 120 | #include <openssl/rand.h> | ||
| 121 | #include <openssl/objects.h> | ||
| 122 | #include <openssl/evp.h> | ||
| 123 | #include <openssl/md5.h> | ||
| 124 | #ifndef OPENSSL_NO_DH | ||
| 125 | #include <openssl/dh.h> | ||
| 126 | #endif | ||
| 127 | |||
| 128 | static SSL_METHOD *dtls1_get_client_method(int ver); | ||
| 129 | static int dtls1_get_hello_verify(SSL *s); | ||
| 130 | |||
| 131 | static SSL_METHOD *dtls1_get_client_method(int ver) | ||
| 132 | { | ||
| 133 | if (ver == DTLS1_VERSION) | ||
| 134 | return(DTLSv1_client_method()); | ||
| 135 | else | ||
| 136 | return(NULL); | ||
| 137 | } | ||
| 138 | |||
| 139 | IMPLEMENT_dtls1_meth_func(DTLSv1_client_method, | ||
| 140 | ssl_undefined_function, | ||
| 141 | dtls1_connect, | ||
| 142 | dtls1_get_client_method) | ||
| 143 | |||
| 144 | int dtls1_connect(SSL *s) | ||
| 145 | { | ||
| 146 | BUF_MEM *buf=NULL; | ||
| 147 | unsigned long Time=(unsigned long)time(NULL),l; | ||
| 148 | long num1; | ||
| 149 | void (*cb)(const SSL *ssl,int type,int val)=NULL; | ||
| 150 | int ret= -1; | ||
| 151 | int new_state,state,skip=0;; | ||
| 152 | |||
| 153 | RAND_add(&Time,sizeof(Time),0); | ||
| 154 | ERR_clear_error(); | ||
| 155 | clear_sys_error(); | ||
| 156 | |||
| 157 | if (s->info_callback != NULL) | ||
| 158 | cb=s->info_callback; | ||
| 159 | else if (s->ctx->info_callback != NULL) | ||
| 160 | cb=s->ctx->info_callback; | ||
| 161 | |||
| 162 | s->in_handshake++; | ||
| 163 | if (!SSL_in_init(s) || SSL_in_before(s)) SSL_clear(s); | ||
| 164 | |||
| 165 | for (;;) | ||
| 166 | { | ||
| 167 | state=s->state; | ||
| 168 | |||
| 169 | switch(s->state) | ||
| 170 | { | ||
| 171 | case SSL_ST_RENEGOTIATE: | ||
| 172 | s->new_session=1; | ||
| 173 | s->state=SSL_ST_CONNECT; | ||
| 174 | s->ctx->stats.sess_connect_renegotiate++; | ||
| 175 | /* break */ | ||
| 176 | case SSL_ST_BEFORE: | ||
| 177 | case SSL_ST_CONNECT: | ||
| 178 | case SSL_ST_BEFORE|SSL_ST_CONNECT: | ||
| 179 | case SSL_ST_OK|SSL_ST_CONNECT: | ||
| 180 | |||
| 181 | s->server=0; | ||
| 182 | if (cb != NULL) cb(s,SSL_CB_HANDSHAKE_START,1); | ||
| 183 | |||
| 184 | if ((s->version & 0xff00 ) != (DTLS1_VERSION & 0xff00)) | ||
| 185 | { | ||
| 186 | SSLerr(SSL_F_DTLS1_CONNECT, ERR_R_INTERNAL_ERROR); | ||
| 187 | ret = -1; | ||
| 188 | goto end; | ||
| 189 | } | ||
| 190 | |||
| 191 | /* s->version=SSL3_VERSION; */ | ||
| 192 | s->type=SSL_ST_CONNECT; | ||
| 193 | |||
| 194 | if (s->init_buf == NULL) | ||
| 195 | { | ||
| 196 | if ((buf=BUF_MEM_new()) == NULL) | ||
| 197 | { | ||
| 198 | ret= -1; | ||
| 199 | goto end; | ||
| 200 | } | ||
| 201 | if (!BUF_MEM_grow(buf,SSL3_RT_MAX_PLAIN_LENGTH)) | ||
| 202 | { | ||
| 203 | ret= -1; | ||
| 204 | goto end; | ||
| 205 | } | ||
| 206 | s->init_buf=buf; | ||
| 207 | buf=NULL; | ||
| 208 | } | ||
| 209 | |||
| 210 | if (!ssl3_setup_buffers(s)) { ret= -1; goto end; } | ||
| 211 | |||
| 212 | /* setup buffing BIO */ | ||
| 213 | if (!ssl_init_wbio_buffer(s,0)) { ret= -1; goto end; } | ||
| 214 | |||
| 215 | /* don't push the buffering BIO quite yet */ | ||
| 216 | |||
| 217 | s->state=SSL3_ST_CW_CLNT_HELLO_A; | ||
| 218 | s->ctx->stats.sess_connect++; | ||
| 219 | s->init_num=0; | ||
| 220 | /* mark client_random uninitialized */ | ||
| 221 | memset(s->s3->client_random,0,sizeof(s->s3->client_random)); | ||
| 222 | break; | ||
| 223 | |||
| 224 | case SSL3_ST_CW_CLNT_HELLO_A: | ||
| 225 | case SSL3_ST_CW_CLNT_HELLO_B: | ||
| 226 | |||
| 227 | s->shutdown=0; | ||
| 228 | |||
| 229 | /* every DTLS ClientHello resets Finished MAC */ | ||
| 230 | ssl3_init_finished_mac(s); | ||
| 231 | |||
| 232 | ret=dtls1_client_hello(s); | ||
| 233 | if (ret <= 0) goto end; | ||
| 234 | |||
| 235 | if ( s->d1->send_cookie) | ||
| 236 | { | ||
| 237 | s->state=SSL3_ST_CW_FLUSH; | ||
| 238 | s->s3->tmp.next_state=SSL3_ST_CR_SRVR_HELLO_A; | ||
| 239 | } | ||
| 240 | else | ||
| 241 | s->state=SSL3_ST_CR_SRVR_HELLO_A; | ||
| 242 | |||
| 243 | s->init_num=0; | ||
| 244 | |||
| 245 | /* turn on buffering for the next lot of output */ | ||
| 246 | if (s->bbio != s->wbio) | ||
| 247 | s->wbio=BIO_push(s->bbio,s->wbio); | ||
| 248 | |||
| 249 | break; | ||
| 250 | |||
| 251 | case SSL3_ST_CR_SRVR_HELLO_A: | ||
| 252 | case SSL3_ST_CR_SRVR_HELLO_B: | ||
| 253 | ret=ssl3_get_server_hello(s); | ||
| 254 | if (ret <= 0) goto end; | ||
| 255 | else | ||
| 256 | { | ||
| 257 | if (s->hit) | ||
| 258 | s->state=SSL3_ST_CR_FINISHED_A; | ||
| 259 | else | ||
| 260 | s->state=DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A; | ||
| 261 | } | ||
| 262 | s->init_num=0; | ||
| 263 | break; | ||
| 264 | |||
| 265 | case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A: | ||
| 266 | case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_B: | ||
| 267 | |||
| 268 | ret = dtls1_get_hello_verify(s); | ||
| 269 | if ( ret <= 0) | ||
| 270 | goto end; | ||
| 271 | if ( s->d1->send_cookie) /* start again, with a cookie */ | ||
| 272 | s->state=SSL3_ST_CW_CLNT_HELLO_A; | ||
| 273 | else | ||
| 274 | s->state = SSL3_ST_CR_CERT_A; | ||
| 275 | s->init_num = 0; | ||
| 276 | break; | ||
| 277 | |||
| 278 | case SSL3_ST_CR_CERT_A: | ||
| 279 | case SSL3_ST_CR_CERT_B: | ||
| 280 | /* Check if it is anon DH */ | ||
| 281 | if (!(s->s3->tmp.new_cipher->algorithms & SSL_aNULL)) | ||
| 282 | { | ||
| 283 | ret=ssl3_get_server_certificate(s); | ||
| 284 | if (ret <= 0) goto end; | ||
| 285 | } | ||
| 286 | else | ||
| 287 | skip=1; | ||
| 288 | s->state=SSL3_ST_CR_KEY_EXCH_A; | ||
| 289 | s->init_num=0; | ||
| 290 | break; | ||
| 291 | |||
| 292 | case SSL3_ST_CR_KEY_EXCH_A: | ||
| 293 | case SSL3_ST_CR_KEY_EXCH_B: | ||
| 294 | ret=ssl3_get_key_exchange(s); | ||
| 295 | if (ret <= 0) goto end; | ||
| 296 | s->state=SSL3_ST_CR_CERT_REQ_A; | ||
| 297 | s->init_num=0; | ||
| 298 | |||
| 299 | /* at this point we check that we have the | ||
| 300 | * required stuff from the server */ | ||
| 301 | if (!ssl3_check_cert_and_algorithm(s)) | ||
| 302 | { | ||
| 303 | ret= -1; | ||
| 304 | goto end; | ||
| 305 | } | ||
| 306 | break; | ||
| 307 | |||
| 308 | case SSL3_ST_CR_CERT_REQ_A: | ||
| 309 | case SSL3_ST_CR_CERT_REQ_B: | ||
| 310 | ret=ssl3_get_certificate_request(s); | ||
| 311 | if (ret <= 0) goto end; | ||
| 312 | s->state=SSL3_ST_CR_SRVR_DONE_A; | ||
| 313 | s->init_num=0; | ||
| 314 | break; | ||
| 315 | |||
| 316 | case SSL3_ST_CR_SRVR_DONE_A: | ||
| 317 | case SSL3_ST_CR_SRVR_DONE_B: | ||
| 318 | ret=ssl3_get_server_done(s); | ||
| 319 | if (ret <= 0) goto end; | ||
| 320 | if (s->s3->tmp.cert_req) | ||
| 321 | s->state=SSL3_ST_CW_CERT_A; | ||
| 322 | else | ||
| 323 | s->state=SSL3_ST_CW_KEY_EXCH_A; | ||
| 324 | s->init_num=0; | ||
| 325 | |||
| 326 | break; | ||
| 327 | |||
| 328 | case SSL3_ST_CW_CERT_A: | ||
| 329 | case SSL3_ST_CW_CERT_B: | ||
| 330 | case SSL3_ST_CW_CERT_C: | ||
| 331 | case SSL3_ST_CW_CERT_D: | ||
| 332 | ret=dtls1_send_client_certificate(s); | ||
| 333 | if (ret <= 0) goto end; | ||
| 334 | s->state=SSL3_ST_CW_KEY_EXCH_A; | ||
| 335 | s->init_num=0; | ||
| 336 | break; | ||
| 337 | |||
| 338 | case SSL3_ST_CW_KEY_EXCH_A: | ||
| 339 | case SSL3_ST_CW_KEY_EXCH_B: | ||
| 340 | ret=dtls1_send_client_key_exchange(s); | ||
| 341 | if (ret <= 0) goto end; | ||
| 342 | l=s->s3->tmp.new_cipher->algorithms; | ||
| 343 | /* EAY EAY EAY need to check for DH fix cert | ||
| 344 | * sent back */ | ||
| 345 | /* For TLS, cert_req is set to 2, so a cert chain | ||
| 346 | * of nothing is sent, but no verify packet is sent */ | ||
| 347 | if (s->s3->tmp.cert_req == 1) | ||
| 348 | { | ||
| 349 | s->state=SSL3_ST_CW_CERT_VRFY_A; | ||
| 350 | } | ||
| 351 | else | ||
| 352 | { | ||
| 353 | s->state=SSL3_ST_CW_CHANGE_A; | ||
| 354 | s->s3->change_cipher_spec=0; | ||
| 355 | } | ||
| 356 | |||
| 357 | s->init_num=0; | ||
| 358 | break; | ||
| 359 | |||
| 360 | case SSL3_ST_CW_CERT_VRFY_A: | ||
| 361 | case SSL3_ST_CW_CERT_VRFY_B: | ||
| 362 | ret=dtls1_send_client_verify(s); | ||
| 363 | if (ret <= 0) goto end; | ||
| 364 | s->state=SSL3_ST_CW_CHANGE_A; | ||
| 365 | s->init_num=0; | ||
| 366 | s->s3->change_cipher_spec=0; | ||
| 367 | break; | ||
| 368 | |||
| 369 | case SSL3_ST_CW_CHANGE_A: | ||
| 370 | case SSL3_ST_CW_CHANGE_B: | ||
| 371 | ret=dtls1_send_change_cipher_spec(s, | ||
| 372 | SSL3_ST_CW_CHANGE_A,SSL3_ST_CW_CHANGE_B); | ||
| 373 | if (ret <= 0) goto end; | ||
| 374 | s->state=SSL3_ST_CW_FINISHED_A; | ||
| 375 | s->init_num=0; | ||
| 376 | |||
| 377 | s->session->cipher=s->s3->tmp.new_cipher; | ||
| 378 | #ifdef OPENSSL_NO_COMP | ||
| 379 | s->session->compress_meth=0; | ||
| 380 | #else | ||
| 381 | if (s->s3->tmp.new_compression == NULL) | ||
| 382 | s->session->compress_meth=0; | ||
| 383 | else | ||
| 384 | s->session->compress_meth= | ||
| 385 | s->s3->tmp.new_compression->id; | ||
| 386 | #endif | ||
| 387 | if (!s->method->ssl3_enc->setup_key_block(s)) | ||
| 388 | { | ||
| 389 | ret= -1; | ||
| 390 | goto end; | ||
| 391 | } | ||
| 392 | |||
| 393 | if (!s->method->ssl3_enc->change_cipher_state(s, | ||
| 394 | SSL3_CHANGE_CIPHER_CLIENT_WRITE)) | ||
| 395 | { | ||
| 396 | ret= -1; | ||
| 397 | goto end; | ||
| 398 | } | ||
| 399 | |||
| 400 | dtls1_reset_seq_numbers(s, SSL3_CC_WRITE); | ||
| 401 | break; | ||
| 402 | |||
| 403 | case SSL3_ST_CW_FINISHED_A: | ||
| 404 | case SSL3_ST_CW_FINISHED_B: | ||
| 405 | ret=dtls1_send_finished(s, | ||
| 406 | SSL3_ST_CW_FINISHED_A,SSL3_ST_CW_FINISHED_B, | ||
| 407 | s->method->ssl3_enc->client_finished_label, | ||
| 408 | s->method->ssl3_enc->client_finished_label_len); | ||
| 409 | if (ret <= 0) goto end; | ||
| 410 | s->state=SSL3_ST_CW_FLUSH; | ||
| 411 | |||
| 412 | /* clear flags */ | ||
| 413 | s->s3->flags&= ~SSL3_FLAGS_POP_BUFFER; | ||
| 414 | if (s->hit) | ||
| 415 | { | ||
| 416 | s->s3->tmp.next_state=SSL_ST_OK; | ||
| 417 | if (s->s3->flags & SSL3_FLAGS_DELAY_CLIENT_FINISHED) | ||
| 418 | { | ||
| 419 | s->state=SSL_ST_OK; | ||
| 420 | s->s3->flags|=SSL3_FLAGS_POP_BUFFER; | ||
| 421 | s->s3->delay_buf_pop_ret=0; | ||
| 422 | } | ||
| 423 | } | ||
| 424 | else | ||
| 425 | { | ||
| 426 | s->s3->tmp.next_state=SSL3_ST_CR_FINISHED_A; | ||
| 427 | } | ||
| 428 | s->init_num=0; | ||
| 429 | /* mark client_random uninitialized */ | ||
| 430 | memset (s->s3->client_random,0,sizeof(s->s3->client_random)); | ||
| 431 | |||
| 432 | break; | ||
| 433 | |||
| 434 | case SSL3_ST_CR_FINISHED_A: | ||
| 435 | case SSL3_ST_CR_FINISHED_B: | ||
| 436 | |||
| 437 | ret=ssl3_get_finished(s,SSL3_ST_CR_FINISHED_A, | ||
| 438 | SSL3_ST_CR_FINISHED_B); | ||
| 439 | if (ret <= 0) goto end; | ||
| 440 | |||
| 441 | if (s->hit) | ||
| 442 | s->state=SSL3_ST_CW_CHANGE_A; | ||
| 443 | else | ||
| 444 | s->state=SSL_ST_OK; | ||
| 445 | s->init_num=0; | ||
| 446 | break; | ||
| 447 | |||
| 448 | case SSL3_ST_CW_FLUSH: | ||
| 449 | /* number of bytes to be flushed */ | ||
| 450 | num1=BIO_ctrl(s->wbio,BIO_CTRL_INFO,0,NULL); | ||
| 451 | if (num1 > 0) | ||
| 452 | { | ||
| 453 | s->rwstate=SSL_WRITING; | ||
| 454 | num1=BIO_flush(s->wbio); | ||
| 455 | if (num1 <= 0) { ret= -1; goto end; } | ||
| 456 | s->rwstate=SSL_NOTHING; | ||
| 457 | } | ||
| 458 | |||
| 459 | s->state=s->s3->tmp.next_state; | ||
| 460 | break; | ||
| 461 | |||
| 462 | case SSL_ST_OK: | ||
| 463 | /* clean a few things up */ | ||
| 464 | ssl3_cleanup_key_block(s); | ||
| 465 | |||
| 466 | #if 0 | ||
| 467 | if (s->init_buf != NULL) | ||
| 468 | { | ||
| 469 | BUF_MEM_free(s->init_buf); | ||
| 470 | s->init_buf=NULL; | ||
| 471 | } | ||
| 472 | #endif | ||
| 473 | |||
| 474 | /* If we are not 'joining' the last two packets, | ||
| 475 | * remove the buffering now */ | ||
| 476 | if (!(s->s3->flags & SSL3_FLAGS_POP_BUFFER)) | ||
| 477 | ssl_free_wbio_buffer(s); | ||
| 478 | /* else do it later in ssl3_write */ | ||
| 479 | |||
| 480 | s->init_num=0; | ||
| 481 | s->new_session=0; | ||
| 482 | |||
| 483 | ssl_update_cache(s,SSL_SESS_CACHE_CLIENT); | ||
| 484 | if (s->hit) s->ctx->stats.sess_hit++; | ||
| 485 | |||
| 486 | ret=1; | ||
| 487 | /* s->server=0; */ | ||
| 488 | s->handshake_func=dtls1_connect; | ||
| 489 | s->ctx->stats.sess_connect_good++; | ||
| 490 | |||
| 491 | if (cb != NULL) cb(s,SSL_CB_HANDSHAKE_DONE,1); | ||
| 492 | |||
| 493 | /* done with handshaking */ | ||
| 494 | s->d1->handshake_read_seq = 0; | ||
| 495 | goto end; | ||
| 496 | /* break; */ | ||
| 497 | |||
| 498 | default: | ||
| 499 | SSLerr(SSL_F_DTLS1_CONNECT,SSL_R_UNKNOWN_STATE); | ||
| 500 | ret= -1; | ||
| 501 | goto end; | ||
| 502 | /* break; */ | ||
| 503 | } | ||
| 504 | |||
| 505 | /* did we do anything */ | ||
| 506 | if (!s->s3->tmp.reuse_message && !skip) | ||
| 507 | { | ||
| 508 | if (s->debug) | ||
| 509 | { | ||
| 510 | if ((ret=BIO_flush(s->wbio)) <= 0) | ||
| 511 | goto end; | ||
| 512 | } | ||
| 513 | |||
| 514 | if ((cb != NULL) && (s->state != state)) | ||
| 515 | { | ||
| 516 | new_state=s->state; | ||
| 517 | s->state=state; | ||
| 518 | cb(s,SSL_CB_CONNECT_LOOP,1); | ||
| 519 | s->state=new_state; | ||
| 520 | } | ||
| 521 | } | ||
| 522 | skip=0; | ||
| 523 | } | ||
| 524 | end: | ||
| 525 | s->in_handshake--; | ||
| 526 | if (buf != NULL) | ||
| 527 | BUF_MEM_free(buf); | ||
| 528 | if (cb != NULL) | ||
| 529 | cb(s,SSL_CB_CONNECT_EXIT,ret); | ||
| 530 | return(ret); | ||
| 531 | } | ||
| 532 | |||
| 533 | int dtls1_client_hello(SSL *s) | ||
| 534 | { | ||
| 535 | unsigned char *buf; | ||
| 536 | unsigned char *p,*d; | ||
| 537 | unsigned int i,j; | ||
| 538 | unsigned long Time,l; | ||
| 539 | SSL_COMP *comp; | ||
| 540 | |||
| 541 | buf=(unsigned char *)s->init_buf->data; | ||
| 542 | if (s->state == SSL3_ST_CW_CLNT_HELLO_A) | ||
| 543 | { | ||
| 544 | if ((s->session == NULL) || | ||
| 545 | (s->session->ssl_version != s->version) || | ||
| 546 | (s->session->not_resumable)) | ||
| 547 | { | ||
| 548 | if (!ssl_get_new_session(s,0)) | ||
| 549 | goto err; | ||
| 550 | } | ||
| 551 | /* else use the pre-loaded session */ | ||
| 552 | |||
| 553 | p=s->s3->client_random; | ||
| 554 | /* if client_random is initialized, reuse it, we are | ||
| 555 | * required to use same upon reply to HelloVerify */ | ||
| 556 | for (i=0;p[i]=='\0' && i<sizeof(s->s3->client_random);i++) ; | ||
| 557 | if (i==sizeof(s->s3->client_random)) | ||
| 558 | { | ||
| 559 | Time=(unsigned long)time(NULL); /* Time */ | ||
| 560 | l2n(Time,p); | ||
| 561 | RAND_pseudo_bytes(p,SSL3_RANDOM_SIZE-4); | ||
| 562 | } | ||
| 563 | |||
| 564 | /* Do the message type and length last */ | ||
| 565 | d=p= &(buf[DTLS1_HM_HEADER_LENGTH]); | ||
| 566 | |||
| 567 | *(p++)=s->version>>8; | ||
| 568 | *(p++)=s->version&0xff; | ||
| 569 | s->client_version=s->version; | ||
| 570 | |||
| 571 | /* Random stuff */ | ||
| 572 | memcpy(p,s->s3->client_random,SSL3_RANDOM_SIZE); | ||
| 573 | p+=SSL3_RANDOM_SIZE; | ||
| 574 | |||
| 575 | /* Session ID */ | ||
| 576 | if (s->new_session) | ||
| 577 | i=0; | ||
| 578 | else | ||
| 579 | i=s->session->session_id_length; | ||
| 580 | *(p++)=i; | ||
| 581 | if (i != 0) | ||
| 582 | { | ||
| 583 | if (i > sizeof s->session->session_id) | ||
| 584 | { | ||
| 585 | SSLerr(SSL_F_DTLS1_CLIENT_HELLO, ERR_R_INTERNAL_ERROR); | ||
| 586 | goto err; | ||
| 587 | } | ||
| 588 | memcpy(p,s->session->session_id,i); | ||
| 589 | p+=i; | ||
| 590 | } | ||
| 591 | |||
| 592 | /* cookie stuff */ | ||
| 593 | if ( s->d1->cookie_len > sizeof(s->d1->cookie)) | ||
| 594 | { | ||
| 595 | SSLerr(SSL_F_DTLS1_CLIENT_HELLO, ERR_R_INTERNAL_ERROR); | ||
| 596 | goto err; | ||
| 597 | } | ||
| 598 | *(p++) = s->d1->cookie_len; | ||
| 599 | memcpy(p, s->d1->cookie, s->d1->cookie_len); | ||
| 600 | p += s->d1->cookie_len; | ||
| 601 | |||
| 602 | /* Ciphers supported */ | ||
| 603 | i=ssl_cipher_list_to_bytes(s,SSL_get_ciphers(s),&(p[2]),0); | ||
| 604 | if (i == 0) | ||
| 605 | { | ||
| 606 | SSLerr(SSL_F_DTLS1_CLIENT_HELLO,SSL_R_NO_CIPHERS_AVAILABLE); | ||
| 607 | goto err; | ||
| 608 | } | ||
| 609 | s2n(i,p); | ||
| 610 | p+=i; | ||
| 611 | |||
| 612 | /* COMPRESSION */ | ||
| 613 | if (s->ctx->comp_methods == NULL) | ||
| 614 | j=0; | ||
| 615 | else | ||
| 616 | j=sk_SSL_COMP_num(s->ctx->comp_methods); | ||
| 617 | *(p++)=1+j; | ||
| 618 | for (i=0; i<j; i++) | ||
| 619 | { | ||
| 620 | comp=sk_SSL_COMP_value(s->ctx->comp_methods,i); | ||
| 621 | *(p++)=comp->id; | ||
| 622 | } | ||
| 623 | *(p++)=0; /* Add the NULL method */ | ||
| 624 | |||
| 625 | l=(p-d); | ||
| 626 | d=buf; | ||
| 627 | |||
| 628 | d = dtls1_set_message_header(s, d, SSL3_MT_CLIENT_HELLO, l, 0, l); | ||
| 629 | |||
| 630 | s->state=SSL3_ST_CW_CLNT_HELLO_B; | ||
| 631 | /* number of bytes to write */ | ||
| 632 | s->init_num=p-buf; | ||
| 633 | s->init_off=0; | ||
| 634 | |||
| 635 | /* buffer the message to handle re-xmits */ | ||
| 636 | dtls1_buffer_message(s, 0); | ||
| 637 | } | ||
| 638 | |||
| 639 | /* SSL3_ST_CW_CLNT_HELLO_B */ | ||
| 640 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 641 | err: | ||
| 642 | return(-1); | ||
| 643 | } | ||
| 644 | |||
| 645 | static int dtls1_get_hello_verify(SSL *s) | ||
| 646 | { | ||
| 647 | int n, al, ok = 0; | ||
| 648 | unsigned char *data; | ||
| 649 | unsigned int cookie_len; | ||
| 650 | |||
| 651 | n=s->method->ssl_get_message(s, | ||
| 652 | DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A, | ||
| 653 | DTLS1_ST_CR_HELLO_VERIFY_REQUEST_B, | ||
| 654 | -1, | ||
| 655 | s->max_cert_list, | ||
| 656 | &ok); | ||
| 657 | |||
| 658 | if (!ok) return((int)n); | ||
| 659 | |||
| 660 | if (s->s3->tmp.message_type != DTLS1_MT_HELLO_VERIFY_REQUEST) | ||
| 661 | { | ||
| 662 | s->d1->send_cookie = 0; | ||
| 663 | s->s3->tmp.reuse_message=1; | ||
| 664 | return(1); | ||
| 665 | } | ||
| 666 | |||
| 667 | data = (unsigned char *)s->init_msg; | ||
| 668 | |||
| 669 | if ((data[0] != (s->version>>8)) || (data[1] != (s->version&0xff))) | ||
| 670 | { | ||
| 671 | SSLerr(SSL_F_DTLS1_GET_HELLO_VERIFY,SSL_R_WRONG_SSL_VERSION); | ||
| 672 | s->version=(s->version&0xff00)|data[1]; | ||
| 673 | al = SSL_AD_PROTOCOL_VERSION; | ||
| 674 | goto f_err; | ||
| 675 | } | ||
| 676 | data+=2; | ||
| 677 | |||
| 678 | cookie_len = *(data++); | ||
| 679 | if ( cookie_len > sizeof(s->d1->cookie)) | ||
| 680 | { | ||
| 681 | al=SSL_AD_ILLEGAL_PARAMETER; | ||
| 682 | goto f_err; | ||
| 683 | } | ||
| 684 | |||
| 685 | memcpy(s->d1->cookie, data, cookie_len); | ||
| 686 | s->d1->cookie_len = cookie_len; | ||
| 687 | |||
| 688 | s->d1->send_cookie = 1; | ||
| 689 | return 1; | ||
| 690 | |||
| 691 | f_err: | ||
| 692 | ssl3_send_alert(s, SSL3_AL_FATAL, al); | ||
| 693 | return -1; | ||
| 694 | } | ||
| 695 | |||
| 696 | int dtls1_send_client_key_exchange(SSL *s) | ||
| 697 | { | ||
| 698 | unsigned char *p,*d; | ||
| 699 | int n; | ||
| 700 | unsigned long l; | ||
| 701 | #ifndef OPENSSL_NO_RSA | ||
| 702 | unsigned char *q; | ||
| 703 | EVP_PKEY *pkey=NULL; | ||
| 704 | #endif | ||
| 705 | #ifndef OPENSSL_NO_KRB5 | ||
| 706 | KSSL_ERR kssl_err; | ||
| 707 | #endif /* OPENSSL_NO_KRB5 */ | ||
| 708 | |||
| 709 | if (s->state == SSL3_ST_CW_KEY_EXCH_A) | ||
| 710 | { | ||
| 711 | d=(unsigned char *)s->init_buf->data; | ||
| 712 | p= &(d[DTLS1_HM_HEADER_LENGTH]); | ||
| 713 | |||
| 714 | l=s->s3->tmp.new_cipher->algorithms; | ||
| 715 | |||
| 716 | /* Fool emacs indentation */ | ||
| 717 | if (0) {} | ||
| 718 | #ifndef OPENSSL_NO_RSA | ||
| 719 | else if (l & SSL_kRSA) | ||
| 720 | { | ||
| 721 | RSA *rsa; | ||
| 722 | unsigned char tmp_buf[SSL_MAX_MASTER_KEY_LENGTH]; | ||
| 723 | |||
| 724 | if (s->session->sess_cert->peer_rsa_tmp != NULL) | ||
| 725 | rsa=s->session->sess_cert->peer_rsa_tmp; | ||
| 726 | else | ||
| 727 | { | ||
| 728 | pkey=X509_get_pubkey(s->session->sess_cert->peer_pkeys[SSL_PKEY_RSA_ENC].x509); | ||
| 729 | if ((pkey == NULL) || | ||
| 730 | (pkey->type != EVP_PKEY_RSA) || | ||
| 731 | (pkey->pkey.rsa == NULL)) | ||
| 732 | { | ||
| 733 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,ERR_R_INTERNAL_ERROR); | ||
| 734 | goto err; | ||
| 735 | } | ||
| 736 | rsa=pkey->pkey.rsa; | ||
| 737 | EVP_PKEY_free(pkey); | ||
| 738 | } | ||
| 739 | |||
| 740 | tmp_buf[0]=s->client_version>>8; | ||
| 741 | tmp_buf[1]=s->client_version&0xff; | ||
| 742 | if (RAND_bytes(&(tmp_buf[2]),sizeof tmp_buf-2) <= 0) | ||
| 743 | goto err; | ||
| 744 | |||
| 745 | s->session->master_key_length=sizeof tmp_buf; | ||
| 746 | |||
| 747 | q=p; | ||
| 748 | /* Fix buf for TLS and [incidentally] DTLS */ | ||
| 749 | if (s->version > SSL3_VERSION) | ||
| 750 | p+=2; | ||
| 751 | n=RSA_public_encrypt(sizeof tmp_buf, | ||
| 752 | tmp_buf,p,rsa,RSA_PKCS1_PADDING); | ||
| 753 | #ifdef PKCS1_CHECK | ||
| 754 | if (s->options & SSL_OP_PKCS1_CHECK_1) p[1]++; | ||
| 755 | if (s->options & SSL_OP_PKCS1_CHECK_2) tmp_buf[0]=0x70; | ||
| 756 | #endif | ||
| 757 | if (n <= 0) | ||
| 758 | { | ||
| 759 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,SSL_R_BAD_RSA_ENCRYPT); | ||
| 760 | goto err; | ||
| 761 | } | ||
| 762 | |||
| 763 | /* Fix buf for TLS and [incidentally] DTLS */ | ||
| 764 | if (s->version > SSL3_VERSION) | ||
| 765 | { | ||
| 766 | s2n(n,q); | ||
| 767 | n+=2; | ||
| 768 | } | ||
| 769 | |||
| 770 | s->session->master_key_length= | ||
| 771 | s->method->ssl3_enc->generate_master_secret(s, | ||
| 772 | s->session->master_key, | ||
| 773 | tmp_buf,sizeof tmp_buf); | ||
| 774 | OPENSSL_cleanse(tmp_buf,sizeof tmp_buf); | ||
| 775 | } | ||
| 776 | #endif | ||
| 777 | #ifndef OPENSSL_NO_KRB5 | ||
| 778 | else if (l & SSL_kKRB5) | ||
| 779 | { | ||
| 780 | krb5_error_code krb5rc; | ||
| 781 | KSSL_CTX *kssl_ctx = s->kssl_ctx; | ||
| 782 | /* krb5_data krb5_ap_req; */ | ||
| 783 | krb5_data *enc_ticket; | ||
| 784 | krb5_data authenticator, *authp = NULL; | ||
| 785 | EVP_CIPHER_CTX ciph_ctx; | ||
| 786 | EVP_CIPHER *enc = NULL; | ||
| 787 | unsigned char iv[EVP_MAX_IV_LENGTH]; | ||
| 788 | unsigned char tmp_buf[SSL_MAX_MASTER_KEY_LENGTH]; | ||
| 789 | unsigned char epms[SSL_MAX_MASTER_KEY_LENGTH | ||
| 790 | + EVP_MAX_IV_LENGTH]; | ||
| 791 | int padl, outl = sizeof(epms); | ||
| 792 | |||
| 793 | EVP_CIPHER_CTX_init(&ciph_ctx); | ||
| 794 | |||
| 795 | #ifdef KSSL_DEBUG | ||
| 796 | printf("ssl3_send_client_key_exchange(%lx & %lx)\n", | ||
| 797 | l, SSL_kKRB5); | ||
| 798 | #endif /* KSSL_DEBUG */ | ||
| 799 | |||
| 800 | authp = NULL; | ||
| 801 | #ifdef KRB5SENDAUTH | ||
| 802 | if (KRB5SENDAUTH) authp = &authenticator; | ||
| 803 | #endif /* KRB5SENDAUTH */ | ||
| 804 | |||
| 805 | krb5rc = kssl_cget_tkt(kssl_ctx, &enc_ticket, authp, | ||
| 806 | &kssl_err); | ||
| 807 | enc = kssl_map_enc(kssl_ctx->enctype); | ||
| 808 | if (enc == NULL) | ||
| 809 | goto err; | ||
| 810 | #ifdef KSSL_DEBUG | ||
| 811 | { | ||
| 812 | printf("kssl_cget_tkt rtn %d\n", krb5rc); | ||
| 813 | if (krb5rc && kssl_err.text) | ||
| 814 | printf("kssl_cget_tkt kssl_err=%s\n", kssl_err.text); | ||
| 815 | } | ||
| 816 | #endif /* KSSL_DEBUG */ | ||
| 817 | |||
| 818 | if (krb5rc) | ||
| 819 | { | ||
| 820 | ssl3_send_alert(s,SSL3_AL_FATAL, | ||
| 821 | SSL_AD_HANDSHAKE_FAILURE); | ||
| 822 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE, | ||
| 823 | kssl_err.reason); | ||
| 824 | goto err; | ||
| 825 | } | ||
| 826 | |||
| 827 | /* 20010406 VRS - Earlier versions used KRB5 AP_REQ | ||
| 828 | ** in place of RFC 2712 KerberosWrapper, as in: | ||
| 829 | ** | ||
| 830 | ** Send ticket (copy to *p, set n = length) | ||
| 831 | ** n = krb5_ap_req.length; | ||
| 832 | ** memcpy(p, krb5_ap_req.data, krb5_ap_req.length); | ||
| 833 | ** if (krb5_ap_req.data) | ||
| 834 | ** kssl_krb5_free_data_contents(NULL,&krb5_ap_req); | ||
| 835 | ** | ||
| 836 | ** Now using real RFC 2712 KerberosWrapper | ||
| 837 | ** (Thanks to Simon Wilkinson <sxw@sxw.org.uk>) | ||
| 838 | ** Note: 2712 "opaque" types are here replaced | ||
| 839 | ** with a 2-byte length followed by the value. | ||
| 840 | ** Example: | ||
| 841 | ** KerberosWrapper= xx xx asn1ticket 0 0 xx xx encpms | ||
| 842 | ** Where "xx xx" = length bytes. Shown here with | ||
| 843 | ** optional authenticator omitted. | ||
| 844 | */ | ||
| 845 | |||
| 846 | /* KerberosWrapper.Ticket */ | ||
| 847 | s2n(enc_ticket->length,p); | ||
| 848 | memcpy(p, enc_ticket->data, enc_ticket->length); | ||
| 849 | p+= enc_ticket->length; | ||
| 850 | n = enc_ticket->length + 2; | ||
| 851 | |||
| 852 | /* KerberosWrapper.Authenticator */ | ||
| 853 | if (authp && authp->length) | ||
| 854 | { | ||
| 855 | s2n(authp->length,p); | ||
| 856 | memcpy(p, authp->data, authp->length); | ||
| 857 | p+= authp->length; | ||
| 858 | n+= authp->length + 2; | ||
| 859 | |||
| 860 | free(authp->data); | ||
| 861 | authp->data = NULL; | ||
| 862 | authp->length = 0; | ||
| 863 | } | ||
| 864 | else | ||
| 865 | { | ||
| 866 | s2n(0,p);/* null authenticator length */ | ||
| 867 | n+=2; | ||
| 868 | } | ||
| 869 | |||
| 870 | if (RAND_bytes(tmp_buf,sizeof tmp_buf) <= 0) | ||
| 871 | goto err; | ||
| 872 | |||
| 873 | /* 20010420 VRS. Tried it this way; failed. | ||
| 874 | ** EVP_EncryptInit_ex(&ciph_ctx,enc, NULL,NULL); | ||
| 875 | ** EVP_CIPHER_CTX_set_key_length(&ciph_ctx, | ||
| 876 | ** kssl_ctx->length); | ||
| 877 | ** EVP_EncryptInit_ex(&ciph_ctx,NULL, key,iv); | ||
| 878 | */ | ||
| 879 | |||
| 880 | memset(iv, 0, sizeof iv); /* per RFC 1510 */ | ||
| 881 | EVP_EncryptInit_ex(&ciph_ctx,enc, NULL, | ||
| 882 | kssl_ctx->key,iv); | ||
| 883 | EVP_EncryptUpdate(&ciph_ctx,epms,&outl,tmp_buf, | ||
| 884 | sizeof tmp_buf); | ||
| 885 | EVP_EncryptFinal_ex(&ciph_ctx,&(epms[outl]),&padl); | ||
| 886 | outl += padl; | ||
| 887 | if (outl > sizeof epms) | ||
| 888 | { | ||
| 889 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE, ERR_R_INTERNAL_ERROR); | ||
| 890 | goto err; | ||
| 891 | } | ||
| 892 | EVP_CIPHER_CTX_cleanup(&ciph_ctx); | ||
| 893 | |||
| 894 | /* KerberosWrapper.EncryptedPreMasterSecret */ | ||
| 895 | s2n(outl,p); | ||
| 896 | memcpy(p, epms, outl); | ||
| 897 | p+=outl; | ||
| 898 | n+=outl + 2; | ||
| 899 | |||
| 900 | s->session->master_key_length= | ||
| 901 | s->method->ssl3_enc->generate_master_secret(s, | ||
| 902 | s->session->master_key, | ||
| 903 | tmp_buf, sizeof tmp_buf); | ||
| 904 | |||
| 905 | OPENSSL_cleanse(tmp_buf, sizeof tmp_buf); | ||
| 906 | OPENSSL_cleanse(epms, outl); | ||
| 907 | } | ||
| 908 | #endif | ||
| 909 | #ifndef OPENSSL_NO_DH | ||
| 910 | else if (l & (SSL_kEDH|SSL_kDHr|SSL_kDHd)) | ||
| 911 | { | ||
| 912 | DH *dh_srvr,*dh_clnt; | ||
| 913 | |||
| 914 | if (s->session->sess_cert->peer_dh_tmp != NULL) | ||
| 915 | dh_srvr=s->session->sess_cert->peer_dh_tmp; | ||
| 916 | else | ||
| 917 | { | ||
| 918 | /* we get them from the cert */ | ||
| 919 | ssl3_send_alert(s,SSL3_AL_FATAL,SSL_AD_HANDSHAKE_FAILURE); | ||
| 920 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,SSL_R_UNABLE_TO_FIND_DH_PARAMETERS); | ||
| 921 | goto err; | ||
| 922 | } | ||
| 923 | |||
| 924 | /* generate a new random key */ | ||
| 925 | if ((dh_clnt=DHparams_dup(dh_srvr)) == NULL) | ||
| 926 | { | ||
| 927 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,ERR_R_DH_LIB); | ||
| 928 | goto err; | ||
| 929 | } | ||
| 930 | if (!DH_generate_key(dh_clnt)) | ||
| 931 | { | ||
| 932 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,ERR_R_DH_LIB); | ||
| 933 | goto err; | ||
| 934 | } | ||
| 935 | |||
| 936 | /* use the 'p' output buffer for the DH key, but | ||
| 937 | * make sure to clear it out afterwards */ | ||
| 938 | |||
| 939 | n=DH_compute_key(p,dh_srvr->pub_key,dh_clnt); | ||
| 940 | |||
| 941 | if (n <= 0) | ||
| 942 | { | ||
| 943 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,ERR_R_DH_LIB); | ||
| 944 | goto err; | ||
| 945 | } | ||
| 946 | |||
| 947 | /* generate master key from the result */ | ||
| 948 | s->session->master_key_length= | ||
| 949 | s->method->ssl3_enc->generate_master_secret(s, | ||
| 950 | s->session->master_key,p,n); | ||
| 951 | /* clean up */ | ||
| 952 | memset(p,0,n); | ||
| 953 | |||
| 954 | /* send off the data */ | ||
| 955 | n=BN_num_bytes(dh_clnt->pub_key); | ||
| 956 | s2n(n,p); | ||
| 957 | BN_bn2bin(dh_clnt->pub_key,p); | ||
| 958 | n+=2; | ||
| 959 | |||
| 960 | DH_free(dh_clnt); | ||
| 961 | |||
| 962 | /* perhaps clean things up a bit EAY EAY EAY EAY*/ | ||
| 963 | } | ||
| 964 | #endif | ||
| 965 | else | ||
| 966 | { | ||
| 967 | ssl3_send_alert(s,SSL3_AL_FATAL,SSL_AD_HANDSHAKE_FAILURE); | ||
| 968 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_KEY_EXCHANGE,ERR_R_INTERNAL_ERROR); | ||
| 969 | goto err; | ||
| 970 | } | ||
| 971 | |||
| 972 | d = dtls1_set_message_header(s, d, | ||
| 973 | SSL3_MT_CLIENT_KEY_EXCHANGE, n, 0, n); | ||
| 974 | /* | ||
| 975 | *(d++)=SSL3_MT_CLIENT_KEY_EXCHANGE; | ||
| 976 | l2n3(n,d); | ||
| 977 | l2n(s->d1->handshake_write_seq,d); | ||
| 978 | s->d1->handshake_write_seq++; | ||
| 979 | */ | ||
| 980 | |||
| 981 | s->state=SSL3_ST_CW_KEY_EXCH_B; | ||
| 982 | /* number of bytes to write */ | ||
| 983 | s->init_num=n+DTLS1_HM_HEADER_LENGTH; | ||
| 984 | s->init_off=0; | ||
| 985 | |||
| 986 | /* buffer the message to handle re-xmits */ | ||
| 987 | dtls1_buffer_message(s, 0); | ||
| 988 | } | ||
| 989 | |||
| 990 | /* SSL3_ST_CW_KEY_EXCH_B */ | ||
| 991 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 992 | err: | ||
| 993 | return(-1); | ||
| 994 | } | ||
| 995 | |||
| 996 | int dtls1_send_client_verify(SSL *s) | ||
| 997 | { | ||
| 998 | unsigned char *p,*d; | ||
| 999 | unsigned char data[MD5_DIGEST_LENGTH+SHA_DIGEST_LENGTH]; | ||
| 1000 | EVP_PKEY *pkey; | ||
| 1001 | #ifndef OPENSSL_NO_RSA | ||
| 1002 | unsigned u=0; | ||
| 1003 | #endif | ||
| 1004 | unsigned long n; | ||
| 1005 | #ifndef OPENSSL_NO_DSA | ||
| 1006 | int j; | ||
| 1007 | #endif | ||
| 1008 | |||
| 1009 | if (s->state == SSL3_ST_CW_CERT_VRFY_A) | ||
| 1010 | { | ||
| 1011 | d=(unsigned char *)s->init_buf->data; | ||
| 1012 | p= &(d[DTLS1_HM_HEADER_LENGTH]); | ||
| 1013 | pkey=s->cert->key->privatekey; | ||
| 1014 | |||
| 1015 | s->method->ssl3_enc->cert_verify_mac(s,&(s->s3->finish_dgst2), | ||
| 1016 | &(data[MD5_DIGEST_LENGTH])); | ||
| 1017 | |||
| 1018 | #ifndef OPENSSL_NO_RSA | ||
| 1019 | if (pkey->type == EVP_PKEY_RSA) | ||
| 1020 | { | ||
| 1021 | s->method->ssl3_enc->cert_verify_mac(s, | ||
| 1022 | &(s->s3->finish_dgst1),&(data[0])); | ||
| 1023 | if (RSA_sign(NID_md5_sha1, data, | ||
| 1024 | MD5_DIGEST_LENGTH+SHA_DIGEST_LENGTH, | ||
| 1025 | &(p[2]), &u, pkey->pkey.rsa) <= 0 ) | ||
| 1026 | { | ||
| 1027 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_VERIFY,ERR_R_RSA_LIB); | ||
| 1028 | goto err; | ||
| 1029 | } | ||
| 1030 | s2n(u,p); | ||
| 1031 | n=u+2; | ||
| 1032 | } | ||
| 1033 | else | ||
| 1034 | #endif | ||
| 1035 | #ifndef OPENSSL_NO_DSA | ||
| 1036 | if (pkey->type == EVP_PKEY_DSA) | ||
| 1037 | { | ||
| 1038 | if (!DSA_sign(pkey->save_type, | ||
| 1039 | &(data[MD5_DIGEST_LENGTH]), | ||
| 1040 | SHA_DIGEST_LENGTH,&(p[2]), | ||
| 1041 | (unsigned int *)&j,pkey->pkey.dsa)) | ||
| 1042 | { | ||
| 1043 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_VERIFY,ERR_R_DSA_LIB); | ||
| 1044 | goto err; | ||
| 1045 | } | ||
| 1046 | s2n(j,p); | ||
| 1047 | n=j+2; | ||
| 1048 | } | ||
| 1049 | else | ||
| 1050 | #endif | ||
| 1051 | { | ||
| 1052 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_VERIFY,ERR_R_INTERNAL_ERROR); | ||
| 1053 | goto err; | ||
| 1054 | } | ||
| 1055 | |||
| 1056 | d = dtls1_set_message_header(s, d, | ||
| 1057 | SSL3_MT_CERTIFICATE_VERIFY, n, 0, n) ; | ||
| 1058 | |||
| 1059 | s->init_num=(int)n+DTLS1_HM_HEADER_LENGTH; | ||
| 1060 | s->init_off=0; | ||
| 1061 | |||
| 1062 | /* buffer the message to handle re-xmits */ | ||
| 1063 | dtls1_buffer_message(s, 0); | ||
| 1064 | |||
| 1065 | s->state = SSL3_ST_CW_CERT_VRFY_B; | ||
| 1066 | } | ||
| 1067 | |||
| 1068 | /* s->state = SSL3_ST_CW_CERT_VRFY_B */ | ||
| 1069 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 1070 | err: | ||
| 1071 | return(-1); | ||
| 1072 | } | ||
| 1073 | |||
| 1074 | int dtls1_send_client_certificate(SSL *s) | ||
| 1075 | { | ||
| 1076 | X509 *x509=NULL; | ||
| 1077 | EVP_PKEY *pkey=NULL; | ||
| 1078 | int i; | ||
| 1079 | unsigned long l; | ||
| 1080 | |||
| 1081 | if (s->state == SSL3_ST_CW_CERT_A) | ||
| 1082 | { | ||
| 1083 | if ((s->cert == NULL) || | ||
| 1084 | (s->cert->key->x509 == NULL) || | ||
| 1085 | (s->cert->key->privatekey == NULL)) | ||
| 1086 | s->state=SSL3_ST_CW_CERT_B; | ||
| 1087 | else | ||
| 1088 | s->state=SSL3_ST_CW_CERT_C; | ||
| 1089 | } | ||
| 1090 | |||
| 1091 | /* We need to get a client cert */ | ||
| 1092 | if (s->state == SSL3_ST_CW_CERT_B) | ||
| 1093 | { | ||
| 1094 | /* If we get an error, we need to | ||
| 1095 | * ssl->rwstate=SSL_X509_LOOKUP; return(-1); | ||
| 1096 | * We then get retied later */ | ||
| 1097 | i=0; | ||
| 1098 | if (s->ctx->client_cert_cb != NULL) | ||
| 1099 | i=s->ctx->client_cert_cb(s,&(x509),&(pkey)); | ||
| 1100 | if (i < 0) | ||
| 1101 | { | ||
| 1102 | s->rwstate=SSL_X509_LOOKUP; | ||
| 1103 | return(-1); | ||
| 1104 | } | ||
| 1105 | s->rwstate=SSL_NOTHING; | ||
| 1106 | if ((i == 1) && (pkey != NULL) && (x509 != NULL)) | ||
| 1107 | { | ||
| 1108 | s->state=SSL3_ST_CW_CERT_B; | ||
| 1109 | if ( !SSL_use_certificate(s,x509) || | ||
| 1110 | !SSL_use_PrivateKey(s,pkey)) | ||
| 1111 | i=0; | ||
| 1112 | } | ||
| 1113 | else if (i == 1) | ||
| 1114 | { | ||
| 1115 | i=0; | ||
| 1116 | SSLerr(SSL_F_DTLS1_SEND_CLIENT_CERTIFICATE,SSL_R_BAD_DATA_RETURNED_BY_CALLBACK); | ||
| 1117 | } | ||
| 1118 | |||
| 1119 | if (x509 != NULL) X509_free(x509); | ||
| 1120 | if (pkey != NULL) EVP_PKEY_free(pkey); | ||
| 1121 | if (i == 0) | ||
| 1122 | { | ||
| 1123 | if (s->version == SSL3_VERSION) | ||
| 1124 | { | ||
| 1125 | s->s3->tmp.cert_req=0; | ||
| 1126 | ssl3_send_alert(s,SSL3_AL_WARNING,SSL_AD_NO_CERTIFICATE); | ||
| 1127 | return(1); | ||
| 1128 | } | ||
| 1129 | else | ||
| 1130 | { | ||
| 1131 | s->s3->tmp.cert_req=2; | ||
| 1132 | } | ||
| 1133 | } | ||
| 1134 | |||
| 1135 | /* Ok, we have a cert */ | ||
| 1136 | s->state=SSL3_ST_CW_CERT_C; | ||
| 1137 | } | ||
| 1138 | |||
| 1139 | if (s->state == SSL3_ST_CW_CERT_C) | ||
| 1140 | { | ||
| 1141 | s->state=SSL3_ST_CW_CERT_D; | ||
| 1142 | l=dtls1_output_cert_chain(s, | ||
| 1143 | (s->s3->tmp.cert_req == 2)?NULL:s->cert->key->x509); | ||
| 1144 | s->init_num=(int)l; | ||
| 1145 | s->init_off=0; | ||
| 1146 | |||
| 1147 | /* set header called by dtls1_output_cert_chain() */ | ||
| 1148 | |||
| 1149 | /* buffer the message to handle re-xmits */ | ||
| 1150 | dtls1_buffer_message(s, 0); | ||
| 1151 | } | ||
| 1152 | /* SSL3_ST_CW_CERT_D */ | ||
| 1153 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 1154 | } | ||
| 1155 | |||
| 1156 | |||
diff --git a/src/lib/libssl/src/fips/rand/fips_randtest.c b/src/lib/libssl/src/ssl/d1_enc.c index 6165944e56..cbff7495c5 100644 --- a/src/lib/libssl/src/fips/rand/fips_randtest.c +++ b/src/lib/libssl/src/ssl/d1_enc.c | |||
| @@ -1,3 +1,61 @@ | |||
| 1 | /* ssl/d1_enc.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@openssl.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 1 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 59 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 2 | * All rights reserved. | 60 | * All rights reserved. |
| 3 | * | 61 | * |
| @@ -54,316 +112,170 @@ | |||
| 54 | * copied and put under another distribution licence | 112 | * copied and put under another distribution licence |
| 55 | * [including the GNU Public Licence.] | 113 | * [including the GNU Public Licence.] |
| 56 | */ | 114 | */ |
| 57 | /* ==================================================================== | ||
| 58 | * Copyright (c) 2003 The OpenSSL Project. All rights reserved. | ||
| 59 | * | ||
| 60 | * Redistribution and use in source and binary forms, with or without | ||
| 61 | * modification, are permitted provided that the following conditions | ||
| 62 | * are met: | ||
| 63 | * | ||
| 64 | * 1. Redistributions of source code must retain the above copyright | ||
| 65 | * notice, this list of conditions and the following disclaimer. | ||
| 66 | * | ||
| 67 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 68 | * notice, this list of conditions and the following disclaimer in | ||
| 69 | * the documentation and/or other materials provided with the | ||
| 70 | * distribution. | ||
| 71 | * | ||
| 72 | * 3. All advertising materials mentioning features or use of this | ||
| 73 | * software must display the following acknowledgment: | ||
| 74 | * "This product includes software developed by the OpenSSL Project | ||
| 75 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 76 | * | ||
| 77 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 78 | * endorse or promote products derived from this software without | ||
| 79 | * prior written permission. For written permission, please contact | ||
| 80 | * openssl-core@openssl.org. | ||
| 81 | * | ||
| 82 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 83 | * nor may "OpenSSL" appear in their names without prior written | ||
| 84 | * permission of the OpenSSL Project. | ||
| 85 | * | ||
| 86 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 87 | * acknowledgment: | ||
| 88 | * "This product includes software developed by the OpenSSL Project | ||
| 89 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 90 | * | ||
| 91 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 92 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 93 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 94 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 95 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 96 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 97 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 98 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 99 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 100 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 101 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 102 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 103 | * | ||
| 104 | */ | ||
| 105 | 115 | ||
| 106 | #include <stdio.h> | 116 | #include <stdio.h> |
| 107 | #include <stdlib.h> | 117 | #include "ssl_locl.h" |
| 118 | #include <openssl/comp.h> | ||
| 119 | #include <openssl/evp.h> | ||
| 120 | #include <openssl/hmac.h> | ||
| 121 | #include <openssl/md5.h> | ||
| 108 | #include <openssl/rand.h> | 122 | #include <openssl/rand.h> |
| 109 | #include <openssl/fips_rand.h> | ||
| 110 | #include <openssl/err.h> | ||
| 111 | |||
| 112 | #include "e_os.h" | ||
| 113 | |||
| 114 | #ifndef OPENSSL_FIPS | ||
| 115 | int main(int argc, char *argv[]) | ||
| 116 | { | ||
| 117 | printf("No FIPS RAND support\n"); | ||
| 118 | return(0); | ||
| 119 | } | ||
| 120 | |||
| 121 | #else | ||
| 122 | |||
| 123 | /* some FIPS 140-1 random number test */ | ||
| 124 | /* some simple tests */ | ||
| 125 | 123 | ||
| 126 | static DES_cblock prng_key1={0x21,0x58,0x47,0xb7,0xc2,0x97,0x5a,0x8e}; | ||
| 127 | static DES_cblock prng_key2={0x61,0x23,0x05,0x96,0x18,0x91,0x86,0xac}; | ||
| 128 | static unsigned char prng_seed[8]={0x6b,0xa3,0x4f,0x07,0xe4,0x2a,0xb0,0xc}; | ||
| 129 | 124 | ||
| 130 | typedef struct | 125 | int dtls1_enc(SSL *s, int send) |
| 131 | { | ||
| 132 | DES_cblock keys[2]; | ||
| 133 | const unsigned char time[8]; | ||
| 134 | const unsigned char seed[8]; | ||
| 135 | const unsigned char block1[8]; | ||
| 136 | const unsigned char block100[8]; | ||
| 137 | } PRNGtest; | ||
| 138 | |||
| 139 | /* FIXME: these test vectors are made up! */ | ||
| 140 | static PRNGtest t1= | ||
| 141 | { | ||
| 142 | { { 0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07 }, | ||
| 143 | { 0x08,0x09,0x0a,0x0b,0x0c,0x0d,0x0e,0x0f }, | ||
| 144 | }, | ||
| 145 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 146 | { 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00 }, | ||
| 147 | { 0x33,0xc3,0xdf,0xfe,0x60,0x60,0x49,0x9e }, | ||
| 148 | { 0xcd,0x2b,0x41,0xaf,0x80,0x51,0x37,0xd8 } | ||
| 149 | }; | ||
| 150 | static PRNGtest t2= | ||
| 151 | { | ||
| 152 | { { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff }, | ||
| 153 | { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff } }, | ||
| 154 | { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff }, | ||
| 155 | { 0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff }, | ||
| 156 | { 0x65,0xf1,0xa4,0x07,0x42,0x38,0xd5,0x25 }, | ||
| 157 | { 0xbb,0x75,0x84,0x20,0x7a,0x44,0xf0,0xa0 } | ||
| 158 | }; | ||
| 159 | |||
| 160 | static void dump(const unsigned char *b,int n) | ||
| 161 | { | ||
| 162 | while(n-- > 0) | ||
| 163 | { | ||
| 164 | printf(" %02x",*b++); | ||
| 165 | } | ||
| 166 | } | ||
| 167 | |||
| 168 | static void compare(const unsigned char *result,const unsigned char *expected, | ||
| 169 | int n) | ||
| 170 | { | ||
| 171 | int i; | ||
| 172 | |||
| 173 | for(i=0 ; i < n ; ++i) | ||
| 174 | if(result[i] != expected[i]) | ||
| 175 | { | ||
| 176 | puts("Random test failed, got:"); | ||
| 177 | dump(result,8); | ||
| 178 | puts("\n expected:"); | ||
| 179 | dump(expected,8); | ||
| 180 | putchar('\n'); | ||
| 181 | EXIT(1); | ||
| 182 | } | ||
| 183 | } | ||
| 184 | |||
| 185 | static void run_test(const PRNGtest *t) | ||
| 186 | { | ||
| 187 | unsigned char buf[8]; | ||
| 188 | int n; | ||
| 189 | |||
| 190 | FIPS_set_prng_key(t->keys[0],t->keys[1]); | ||
| 191 | FIPS_test_mode(1,t->time); | ||
| 192 | RAND_seed(t->seed,sizeof t->seed); | ||
| 193 | |||
| 194 | if(RAND_bytes(buf,8) <= 0) | ||
| 195 | { | ||
| 196 | ERR_print_errors_fp(stderr); | ||
| 197 | EXIT(2); | ||
| 198 | } | ||
| 199 | compare(buf,t->block1,8); | ||
| 200 | for(n=0 ; n < 99 ; ++n) | ||
| 201 | if(RAND_bytes(buf,8) <= 0) | ||
| 202 | { | ||
| 203 | ERR_print_errors_fp(stderr); | ||
| 204 | EXIT(2); | ||
| 205 | } | ||
| 206 | compare(buf,t->block100,8); | ||
| 207 | FIPS_test_mode(0,NULL); | ||
| 208 | } | ||
| 209 | |||
| 210 | int main() | ||
| 211 | { | 126 | { |
| 212 | unsigned char buf[2500]; | 127 | SSL3_RECORD *rec; |
| 213 | int i,j,k,s,sign,nsign,err=0; | 128 | EVP_CIPHER_CTX *ds; |
| 214 | unsigned long n1; | 129 | unsigned long l; |
| 215 | unsigned long n2[16]; | 130 | int bs,i,ii,j,k,n=0; |
| 216 | unsigned long runs[2][34]; | 131 | const EVP_CIPHER *enc; |
| 217 | /*double d; */ | ||
| 218 | long d; | ||
| 219 | |||
| 220 | ERR_load_crypto_strings(); | ||
| 221 | RAND_set_rand_method(FIPS_rand_method()); | ||
| 222 | |||
| 223 | run_test(&t1); | ||
| 224 | run_test(&t2); | ||
| 225 | |||
| 226 | FIPS_set_prng_key(prng_key1,prng_key2); | ||
| 227 | RAND_seed(prng_seed,sizeof prng_seed); | ||
| 228 | 132 | ||
| 229 | i = RAND_pseudo_bytes(buf,2500); | 133 | if (send) |
| 230 | if (i <= 0) | ||
| 231 | { | 134 | { |
| 232 | printf ("init failed, the rand method is not properly installed\n"); | 135 | if (s->write_hash != NULL) |
| 233 | err++; | 136 | n=EVP_MD_size(s->write_hash); |
| 234 | goto err; | 137 | ds=s->enc_write_ctx; |
| 235 | } | 138 | rec= &(s->s3->wrec); |
| 236 | 139 | if (s->enc_write_ctx == NULL) | |
| 237 | n1=0; | 140 | enc=NULL; |
| 238 | for (i=0; i<16; i++) n2[i]=0; | 141 | else |
| 239 | for (i=0; i<34; i++) runs[0][i]=runs[1][i]=0; | ||
| 240 | |||
| 241 | /* test 1 and 2 */ | ||
| 242 | sign=0; | ||
| 243 | nsign=0; | ||
| 244 | for (i=0; i<2500; i++) | ||
| 245 | { | ||
| 246 | j=buf[i]; | ||
| 247 | |||
| 248 | n2[j&0x0f]++; | ||
| 249 | n2[(j>>4)&0x0f]++; | ||
| 250 | |||
| 251 | for (k=0; k<8; k++) | ||
| 252 | { | 142 | { |
| 253 | s=(j&0x01); | 143 | enc=EVP_CIPHER_CTX_cipher(s->enc_write_ctx); |
| 254 | if (s == sign) | 144 | if ( rec->data != rec->input) |
| 255 | nsign++; | 145 | /* we can't write into the input stream */ |
| 256 | else | 146 | fprintf(stderr, "%s:%d: rec->data != rec->input\n", |
| 147 | __FILE__, __LINE__); | ||
| 148 | else if ( EVP_CIPHER_block_size(ds->cipher) > 1) | ||
| 257 | { | 149 | { |
| 258 | if (nsign > 34) nsign=34; | 150 | if (!RAND_bytes(rec->input, EVP_CIPHER_block_size(ds->cipher))) |
| 259 | if (nsign != 0) | 151 | return -1; |
| 260 | { | ||
| 261 | runs[sign][nsign-1]++; | ||
| 262 | if (nsign > 6) | ||
| 263 | runs[sign][5]++; | ||
| 264 | } | ||
| 265 | sign=s; | ||
| 266 | nsign=1; | ||
| 267 | } | 152 | } |
| 268 | |||
| 269 | if (s) n1++; | ||
| 270 | j>>=1; | ||
| 271 | } | 153 | } |
| 272 | } | 154 | } |
| 273 | if (nsign > 34) nsign=34; | 155 | else |
| 274 | if (nsign != 0) runs[sign][nsign-1]++; | ||
| 275 | |||
| 276 | /* test 1 */ | ||
| 277 | if (!((9654 < n1) && (n1 < 10346))) | ||
| 278 | { | 156 | { |
| 279 | printf("test 1 failed, X=%lu\n",n1); | 157 | if (s->read_hash != NULL) |
| 280 | err++; | 158 | n=EVP_MD_size(s->read_hash); |
| 159 | ds=s->enc_read_ctx; | ||
| 160 | rec= &(s->s3->rrec); | ||
| 161 | if (s->enc_read_ctx == NULL) | ||
| 162 | enc=NULL; | ||
| 163 | else | ||
| 164 | enc=EVP_CIPHER_CTX_cipher(s->enc_read_ctx); | ||
| 281 | } | 165 | } |
| 282 | printf("test 1 done\n"); | ||
| 283 | 166 | ||
| 284 | /* test 2 */ | 167 | #ifdef KSSL_DEBUG |
| 285 | #ifdef undef | 168 | printf("dtls1_enc(%d)\n", send); |
| 286 | d=0; | 169 | #endif /* KSSL_DEBUG */ |
| 287 | for (i=0; i<16; i++) | 170 | |
| 288 | d+=n2[i]*n2[i]; | 171 | if ((s->session == NULL) || (ds == NULL) || |
| 289 | d=d*16.0/5000.0-5000.0; | 172 | (enc == NULL)) |
| 290 | if (!((1.03 < d) && (d < 57.4))) | ||
| 291 | { | 173 | { |
| 292 | printf("test 2 failed, X=%.2f\n",d); | 174 | memmove(rec->data,rec->input,rec->length); |
| 293 | err++; | 175 | rec->input=rec->data; |
| 294 | } | 176 | } |
| 295 | #endif | 177 | else |
| 296 | d=0; | ||
| 297 | for (i=0; i<16; i++) | ||
| 298 | d+=n2[i]*n2[i]; | ||
| 299 | d=(d*8)/25-500000; | ||
| 300 | if (!((103 < d) && (d < 5740))) | ||
| 301 | { | 178 | { |
| 302 | printf("test 2 failed, X=%ld.%02ld\n",d/100L,d%100L); | 179 | l=rec->length; |
| 303 | err++; | 180 | bs=EVP_CIPHER_block_size(ds->cipher); |
| 304 | } | ||
| 305 | printf("test 2 done\n"); | ||
| 306 | 181 | ||
| 307 | /* test 3 */ | 182 | if ((bs != 1) && send) |
| 308 | for (i=0; i<2; i++) | ||
| 309 | { | ||
| 310 | if (!((2267 < runs[i][0]) && (runs[i][0] < 2733))) | ||
| 311 | { | ||
| 312 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | ||
| 313 | i,1,runs[i][0]); | ||
| 314 | err++; | ||
| 315 | } | ||
| 316 | if (!((1079 < runs[i][1]) && (runs[i][1] < 1421))) | ||
| 317 | { | 183 | { |
| 318 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 184 | i=bs-((int)l%bs); |
| 319 | i,2,runs[i][1]); | 185 | |
| 320 | err++; | 186 | /* Add weird padding of upto 256 bytes */ |
| 321 | } | 187 | |
| 322 | if (!(( 502 < runs[i][2]) && (runs[i][2] < 748))) | 188 | /* we need to add 'i' padding bytes of value j */ |
| 323 | { | 189 | j=i-1; |
| 324 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 190 | if (s->options & SSL_OP_TLS_BLOCK_PADDING_BUG) |
| 325 | i,3,runs[i][2]); | 191 | { |
| 326 | err++; | 192 | if (s->s3->flags & TLS1_FLAGS_TLS_PADDING_BUG) |
| 327 | } | 193 | j++; |
| 328 | if (!(( 223 < runs[i][3]) && (runs[i][3] < 402))) | 194 | } |
| 329 | { | 195 | for (k=(int)l; k<(int)(l+i); k++) |
| 330 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 196 | rec->input[k]=j; |
| 331 | i,4,runs[i][3]); | 197 | l+=i; |
| 332 | err++; | 198 | rec->length+=i; |
| 333 | } | 199 | } |
| 334 | if (!(( 90 < runs[i][4]) && (runs[i][4] < 223))) | 200 | |
| 201 | #ifdef KSSL_DEBUG | ||
| 202 | { | ||
| 203 | unsigned long ui; | ||
| 204 | printf("EVP_Cipher(ds=%p,rec->data=%p,rec->input=%p,l=%ld) ==>\n", | ||
| 205 | ds,rec->data,rec->input,l); | ||
| 206 | printf("\tEVP_CIPHER_CTX: %d buf_len, %d key_len [%d %d], %d iv_len\n", | ||
| 207 | ds->buf_len, ds->cipher->key_len, | ||
| 208 | DES_KEY_SZ, DES_SCHEDULE_SZ, | ||
| 209 | ds->cipher->iv_len); | ||
| 210 | printf("\t\tIV: "); | ||
| 211 | for (i=0; i<ds->cipher->iv_len; i++) printf("%02X", ds->iv[i]); | ||
| 212 | printf("\n"); | ||
| 213 | printf("\trec->input="); | ||
| 214 | for (ui=0; ui<l; ui++) printf(" %02x", rec->input[ui]); | ||
| 215 | printf("\n"); | ||
| 216 | } | ||
| 217 | #endif /* KSSL_DEBUG */ | ||
| 218 | |||
| 219 | if (!send) | ||
| 335 | { | 220 | { |
| 336 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 221 | if (l == 0 || l%bs != 0) |
| 337 | i,5,runs[i][4]); | 222 | { |
| 338 | err++; | 223 | SSLerr(SSL_F_DTLS1_ENC,SSL_R_BLOCK_CIPHER_PAD_IS_WRONG); |
| 224 | ssl3_send_alert(s,SSL3_AL_FATAL,SSL_AD_DECRYPTION_FAILED); | ||
| 225 | return 0; | ||
| 226 | } | ||
| 339 | } | 227 | } |
| 340 | if (!(( 90 < runs[i][5]) && (runs[i][5] < 223))) | 228 | |
| 229 | EVP_Cipher(ds,rec->data,rec->input,l); | ||
| 230 | |||
| 231 | #ifdef KSSL_DEBUG | ||
| 232 | { | ||
| 233 | unsigned long i; | ||
| 234 | printf("\trec->data="); | ||
| 235 | for (i=0; i<l; i++) | ||
| 236 | printf(" %02x", rec->data[i]); printf("\n"); | ||
| 237 | } | ||
| 238 | #endif /* KSSL_DEBUG */ | ||
| 239 | |||
| 240 | if ((bs != 1) && !send) | ||
| 341 | { | 241 | { |
| 342 | printf("test 3 failed, bit=%d run=%d num=%lu\n", | 242 | ii=i=rec->data[l-1]; /* padding_length */ |
| 343 | i,6,runs[i][5]); | 243 | i++; |
| 344 | err++; | 244 | if (s->options&SSL_OP_TLS_BLOCK_PADDING_BUG) |
| 245 | { | ||
| 246 | /* First packet is even in size, so check */ | ||
| 247 | if ((memcmp(s->s3->read_sequence, | ||
| 248 | "\0\0\0\0\0\0\0\0",8) == 0) && !(ii & 1)) | ||
| 249 | s->s3->flags|=TLS1_FLAGS_TLS_PADDING_BUG; | ||
| 250 | if (s->s3->flags & TLS1_FLAGS_TLS_PADDING_BUG) | ||
| 251 | i--; | ||
| 252 | } | ||
| 253 | /* TLS 1.0 does not bound the number of padding bytes by the block size. | ||
| 254 | * All of them must have value 'padding_length'. */ | ||
| 255 | if (i > (int)rec->length) | ||
| 256 | { | ||
| 257 | /* Incorrect padding. SSLerr() and ssl3_alert are done | ||
| 258 | * by caller: we don't want to reveal whether this is | ||
| 259 | * a decryption error or a MAC verification failure | ||
| 260 | * (see http://www.openssl.org/~bodo/tls-cbc.txt) | ||
| 261 | */ | ||
| 262 | return -1; | ||
| 263 | } | ||
| 264 | for (j=(int)(l-i); j<(int)l; j++) | ||
| 265 | { | ||
| 266 | if (rec->data[j] != ii) | ||
| 267 | { | ||
| 268 | /* Incorrect padding */ | ||
| 269 | return -1; | ||
| 270 | } | ||
| 271 | } | ||
| 272 | rec->length-=i; | ||
| 273 | |||
| 274 | rec->data += bs; /* skip the implicit IV */ | ||
| 275 | rec->input += bs; | ||
| 276 | rec->length -= bs; | ||
| 345 | } | 277 | } |
| 346 | } | 278 | } |
| 347 | printf("test 3 done\n"); | 279 | return(1); |
| 348 | |||
| 349 | /* test 4 */ | ||
| 350 | if (runs[0][33] != 0) | ||
| 351 | { | ||
| 352 | printf("test 4 failed, bit=%d run=%d num=%lu\n", | ||
| 353 | 0,34,runs[0][33]); | ||
| 354 | err++; | ||
| 355 | } | ||
| 356 | if (runs[1][33] != 0) | ||
| 357 | { | ||
| 358 | printf("test 4 failed, bit=%d run=%d num=%lu\n", | ||
| 359 | 1,34,runs[1][33]); | ||
| 360 | err++; | ||
| 361 | } | ||
| 362 | printf("test 4 done\n"); | ||
| 363 | err: | ||
| 364 | err=((err)?1:0); | ||
| 365 | EXIT(err); | ||
| 366 | return(err); | ||
| 367 | } | 280 | } |
| 368 | 281 | ||
| 369 | #endif | ||
diff --git a/src/lib/libssl/src/ssl/d1_lib.c b/src/lib/libssl/src/ssl/d1_lib.c new file mode 100644 index 0000000000..fc088b4148 --- /dev/null +++ b/src/lib/libssl/src/ssl/d1_lib.c | |||
| @@ -0,0 +1,210 @@ | |||
| 1 | /* ssl/d1_lib.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include <openssl/objects.h> | ||
| 62 | #include "ssl_locl.h" | ||
| 63 | |||
| 64 | const char dtls1_version_str[]="DTLSv1" OPENSSL_VERSION_PTEXT; | ||
| 65 | |||
| 66 | SSL3_ENC_METHOD DTLSv1_enc_data={ | ||
| 67 | dtls1_enc, | ||
| 68 | tls1_mac, | ||
| 69 | tls1_setup_key_block, | ||
| 70 | tls1_generate_master_secret, | ||
| 71 | tls1_change_cipher_state, | ||
| 72 | tls1_final_finish_mac, | ||
| 73 | TLS1_FINISH_MAC_LENGTH, | ||
| 74 | tls1_cert_verify_mac, | ||
| 75 | TLS_MD_CLIENT_FINISH_CONST,TLS_MD_CLIENT_FINISH_CONST_SIZE, | ||
| 76 | TLS_MD_SERVER_FINISH_CONST,TLS_MD_SERVER_FINISH_CONST_SIZE, | ||
| 77 | tls1_alert_code, | ||
| 78 | }; | ||
| 79 | |||
| 80 | long dtls1_default_timeout(void) | ||
| 81 | { | ||
| 82 | /* 2 hours, the 24 hours mentioned in the DTLSv1 spec | ||
| 83 | * is way too long for http, the cache would over fill */ | ||
| 84 | return(60*60*2); | ||
| 85 | } | ||
| 86 | |||
| 87 | IMPLEMENT_dtls1_meth_func(dtlsv1_base_method, | ||
| 88 | ssl_undefined_function, | ||
| 89 | ssl_undefined_function, | ||
| 90 | ssl_bad_method) | ||
| 91 | |||
| 92 | int dtls1_new(SSL *s) | ||
| 93 | { | ||
| 94 | DTLS1_STATE *d1; | ||
| 95 | |||
| 96 | if (!ssl3_new(s)) return(0); | ||
| 97 | if ((d1=OPENSSL_malloc(sizeof *d1)) == NULL) return (0); | ||
| 98 | memset(d1,0, sizeof *d1); | ||
| 99 | |||
| 100 | /* d1->handshake_epoch=0; */ | ||
| 101 | #if defined(OPENSSL_SYS_VMS) || defined(VMS_TEST) | ||
| 102 | d1->bitmap.length=64; | ||
| 103 | #else | ||
| 104 | d1->bitmap.length=sizeof(d1->bitmap.map) * 8; | ||
| 105 | #endif | ||
| 106 | pq_64bit_init(&(d1->bitmap.map)); | ||
| 107 | pq_64bit_init(&(d1->bitmap.max_seq_num)); | ||
| 108 | |||
| 109 | pq_64bit_init(&(d1->next_bitmap.map)); | ||
| 110 | pq_64bit_init(&(d1->next_bitmap.max_seq_num)); | ||
| 111 | |||
| 112 | d1->unprocessed_rcds.q=pqueue_new(); | ||
| 113 | d1->processed_rcds.q=pqueue_new(); | ||
| 114 | d1->buffered_messages = pqueue_new(); | ||
| 115 | d1->sent_messages=pqueue_new(); | ||
| 116 | |||
| 117 | if ( s->server) | ||
| 118 | { | ||
| 119 | d1->cookie_len = sizeof(s->d1->cookie); | ||
| 120 | } | ||
| 121 | |||
| 122 | if( ! d1->unprocessed_rcds.q || ! d1->processed_rcds.q | ||
| 123 | || ! d1->buffered_messages || ! d1->sent_messages) | ||
| 124 | { | ||
| 125 | if ( d1->unprocessed_rcds.q) pqueue_free(d1->unprocessed_rcds.q); | ||
| 126 | if ( d1->processed_rcds.q) pqueue_free(d1->processed_rcds.q); | ||
| 127 | if ( d1->buffered_messages) pqueue_free(d1->buffered_messages); | ||
| 128 | if ( d1->sent_messages) pqueue_free(d1->sent_messages); | ||
| 129 | OPENSSL_free(d1); | ||
| 130 | return (0); | ||
| 131 | } | ||
| 132 | |||
| 133 | s->d1=d1; | ||
| 134 | s->method->ssl_clear(s); | ||
| 135 | return(1); | ||
| 136 | } | ||
| 137 | |||
| 138 | void dtls1_free(SSL *s) | ||
| 139 | { | ||
| 140 | pitem *item = NULL; | ||
| 141 | hm_fragment *frag = NULL; | ||
| 142 | |||
| 143 | ssl3_free(s); | ||
| 144 | |||
| 145 | while( (item = pqueue_pop(s->d1->unprocessed_rcds.q)) != NULL) | ||
| 146 | { | ||
| 147 | OPENSSL_free(item->data); | ||
| 148 | pitem_free(item); | ||
| 149 | } | ||
| 150 | pqueue_free(s->d1->unprocessed_rcds.q); | ||
| 151 | |||
| 152 | while( (item = pqueue_pop(s->d1->processed_rcds.q)) != NULL) | ||
| 153 | { | ||
| 154 | OPENSSL_free(item->data); | ||
| 155 | pitem_free(item); | ||
| 156 | } | ||
| 157 | pqueue_free(s->d1->processed_rcds.q); | ||
| 158 | |||
| 159 | while( (item = pqueue_pop(s->d1->buffered_messages)) != NULL) | ||
| 160 | { | ||
| 161 | frag = (hm_fragment *)item->data; | ||
| 162 | OPENSSL_free(frag->fragment); | ||
| 163 | OPENSSL_free(frag); | ||
| 164 | pitem_free(item); | ||
| 165 | } | ||
| 166 | pqueue_free(s->d1->buffered_messages); | ||
| 167 | |||
| 168 | while ( (item = pqueue_pop(s->d1->sent_messages)) != NULL) | ||
| 169 | { | ||
| 170 | frag = (hm_fragment *)item->data; | ||
| 171 | OPENSSL_free(frag->fragment); | ||
| 172 | OPENSSL_free(frag); | ||
| 173 | pitem_free(item); | ||
| 174 | } | ||
| 175 | pqueue_free(s->d1->sent_messages); | ||
| 176 | |||
| 177 | pq_64bit_free(&(s->d1->bitmap.map)); | ||
| 178 | pq_64bit_free(&(s->d1->bitmap.max_seq_num)); | ||
| 179 | |||
| 180 | pq_64bit_free(&(s->d1->next_bitmap.map)); | ||
| 181 | pq_64bit_free(&(s->d1->next_bitmap.max_seq_num)); | ||
| 182 | |||
| 183 | OPENSSL_free(s->d1); | ||
| 184 | } | ||
| 185 | |||
| 186 | void dtls1_clear(SSL *s) | ||
| 187 | { | ||
| 188 | ssl3_clear(s); | ||
| 189 | s->version=DTLS1_VERSION; | ||
| 190 | } | ||
| 191 | |||
| 192 | /* | ||
| 193 | * As it's impossible to use stream ciphers in "datagram" mode, this | ||
| 194 | * simple filter is designed to disengage them in DTLS. Unfortunately | ||
| 195 | * there is no universal way to identify stream SSL_CIPHER, so we have | ||
| 196 | * to explicitly list their SSL_* codes. Currently RC4 is the only one | ||
| 197 | * available, but if new ones emerge, they will have to be added... | ||
| 198 | */ | ||
| 199 | SSL_CIPHER *dtls1_get_cipher(unsigned int u) | ||
| 200 | { | ||
| 201 | SSL_CIPHER *ciph = ssl3_get_cipher(u); | ||
| 202 | |||
| 203 | if (ciph != NULL) | ||
| 204 | { | ||
| 205 | if ((ciph->algorithms&SSL_ENC_MASK) == SSL_RC4) | ||
| 206 | return NULL; | ||
| 207 | } | ||
| 208 | |||
| 209 | return ciph; | ||
| 210 | } | ||
diff --git a/src/lib/libssl/src/ssl/d1_meth.c b/src/lib/libssl/src/ssl/d1_meth.c new file mode 100644 index 0000000000..8a6cf31947 --- /dev/null +++ b/src/lib/libssl/src/ssl/d1_meth.c | |||
| @@ -0,0 +1,77 @@ | |||
| 1 | /* ssl/d1_meth.h */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #include <stdio.h> | ||
| 61 | #include <openssl/objects.h> | ||
| 62 | #include "ssl_locl.h" | ||
| 63 | |||
| 64 | static SSL_METHOD *dtls1_get_method(int ver); | ||
| 65 | static SSL_METHOD *dtls1_get_method(int ver) | ||
| 66 | { | ||
| 67 | if (ver == DTLS1_VERSION) | ||
| 68 | return(DTLSv1_method()); | ||
| 69 | else | ||
| 70 | return(NULL); | ||
| 71 | } | ||
| 72 | |||
| 73 | IMPLEMENT_dtls1_meth_func(DTLSv1_method, | ||
| 74 | dtls1_accept, | ||
| 75 | dtls1_connect, | ||
| 76 | dtls1_get_method) | ||
| 77 | |||
diff --git a/src/lib/libssl/src/ssl/d1_pkt.c b/src/lib/libssl/src/ssl/d1_pkt.c new file mode 100644 index 0000000000..377696deac --- /dev/null +++ b/src/lib/libssl/src/ssl/d1_pkt.c | |||
| @@ -0,0 +1,1778 @@ | |||
| 1 | /* ssl/d1_pkt.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1998-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@openssl.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 60 | * All rights reserved. | ||
| 61 | * | ||
| 62 | * This package is an SSL implementation written | ||
| 63 | * by Eric Young (eay@cryptsoft.com). | ||
| 64 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 65 | * | ||
| 66 | * This library is free for commercial and non-commercial use as long as | ||
| 67 | * the following conditions are aheared to. The following conditions | ||
| 68 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 69 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 70 | * included with this distribution is covered by the same copyright terms | ||
| 71 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 72 | * | ||
| 73 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 74 | * the code are not to be removed. | ||
| 75 | * If this package is used in a product, Eric Young should be given attribution | ||
| 76 | * as the author of the parts of the library used. | ||
| 77 | * This can be in the form of a textual message at program startup or | ||
| 78 | * in documentation (online or textual) provided with the package. | ||
| 79 | * | ||
| 80 | * Redistribution and use in source and binary forms, with or without | ||
| 81 | * modification, are permitted provided that the following conditions | ||
| 82 | * are met: | ||
| 83 | * 1. Redistributions of source code must retain the copyright | ||
| 84 | * notice, this list of conditions and the following disclaimer. | ||
| 85 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 86 | * notice, this list of conditions and the following disclaimer in the | ||
| 87 | * documentation and/or other materials provided with the distribution. | ||
| 88 | * 3. All advertising materials mentioning features or use of this software | ||
| 89 | * must display the following acknowledgement: | ||
| 90 | * "This product includes cryptographic software written by | ||
| 91 | * Eric Young (eay@cryptsoft.com)" | ||
| 92 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 93 | * being used are not cryptographic related :-). | ||
| 94 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 95 | * the apps directory (application code) you must include an acknowledgement: | ||
| 96 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 97 | * | ||
| 98 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 99 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 100 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 101 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 102 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 103 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 104 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 105 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 106 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 107 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 108 | * SUCH DAMAGE. | ||
| 109 | * | ||
| 110 | * The licence and distribution terms for any publically available version or | ||
| 111 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 112 | * copied and put under another distribution licence | ||
| 113 | * [including the GNU Public Licence.] | ||
| 114 | */ | ||
| 115 | |||
| 116 | #include <stdio.h> | ||
| 117 | #include <errno.h> | ||
| 118 | #define USE_SOCKETS | ||
| 119 | #include "ssl_locl.h" | ||
| 120 | #include <openssl/evp.h> | ||
| 121 | #include <openssl/buffer.h> | ||
| 122 | #include <openssl/pqueue.h> | ||
| 123 | #include <openssl/rand.h> | ||
| 124 | |||
| 125 | static int have_handshake_fragment(SSL *s, int type, unsigned char *buf, | ||
| 126 | int len, int peek); | ||
| 127 | static int dtls1_record_replay_check(SSL *s, DTLS1_BITMAP *bitmap, | ||
| 128 | PQ_64BIT *seq_num); | ||
| 129 | static void dtls1_record_bitmap_update(SSL *s, DTLS1_BITMAP *bitmap); | ||
| 130 | static DTLS1_BITMAP *dtls1_get_bitmap(SSL *s, SSL3_RECORD *rr, | ||
| 131 | unsigned int *is_next_epoch); | ||
| 132 | #if 0 | ||
| 133 | static int dtls1_record_needs_buffering(SSL *s, SSL3_RECORD *rr, | ||
| 134 | unsigned short *priority, unsigned long *offset); | ||
| 135 | #endif | ||
| 136 | static int dtls1_buffer_record(SSL *s, record_pqueue *q, | ||
| 137 | PQ_64BIT priority); | ||
| 138 | static int dtls1_process_record(SSL *s); | ||
| 139 | #if PQ_64BIT_IS_INTEGER | ||
| 140 | static PQ_64BIT bytes_to_long_long(unsigned char *bytes, PQ_64BIT *num); | ||
| 141 | #endif | ||
| 142 | static void dtls1_clear_timeouts(SSL *s); | ||
| 143 | |||
| 144 | /* copy buffered record into SSL structure */ | ||
| 145 | static int | ||
| 146 | dtls1_copy_record(SSL *s, pitem *item) | ||
| 147 | { | ||
| 148 | DTLS1_RECORD_DATA *rdata; | ||
| 149 | |||
| 150 | rdata = (DTLS1_RECORD_DATA *)item->data; | ||
| 151 | |||
| 152 | if (s->s3->rbuf.buf != NULL) | ||
| 153 | OPENSSL_free(s->s3->rbuf.buf); | ||
| 154 | |||
| 155 | s->packet = rdata->packet; | ||
| 156 | s->packet_length = rdata->packet_length; | ||
| 157 | memcpy(&(s->s3->rbuf), &(rdata->rbuf), sizeof(SSL3_BUFFER)); | ||
| 158 | memcpy(&(s->s3->rrec), &(rdata->rrec), sizeof(SSL3_RECORD)); | ||
| 159 | |||
| 160 | return(1); | ||
| 161 | } | ||
| 162 | |||
| 163 | |||
| 164 | static int | ||
| 165 | dtls1_buffer_record(SSL *s, record_pqueue *queue, PQ_64BIT priority) | ||
| 166 | { | ||
| 167 | DTLS1_RECORD_DATA *rdata; | ||
| 168 | pitem *item; | ||
| 169 | |||
| 170 | rdata = OPENSSL_malloc(sizeof(DTLS1_RECORD_DATA)); | ||
| 171 | item = pitem_new(priority, rdata); | ||
| 172 | if (rdata == NULL || item == NULL) | ||
| 173 | { | ||
| 174 | if (rdata != NULL) OPENSSL_free(rdata); | ||
| 175 | if (item != NULL) pitem_free(item); | ||
| 176 | |||
| 177 | SSLerr(SSL_F_DTLS1_BUFFER_RECORD, ERR_R_INTERNAL_ERROR); | ||
| 178 | return(0); | ||
| 179 | } | ||
| 180 | |||
| 181 | rdata->packet = s->packet; | ||
| 182 | rdata->packet_length = s->packet_length; | ||
| 183 | memcpy(&(rdata->rbuf), &(s->s3->rbuf), sizeof(SSL3_BUFFER)); | ||
| 184 | memcpy(&(rdata->rrec), &(s->s3->rrec), sizeof(SSL3_RECORD)); | ||
| 185 | |||
| 186 | item->data = rdata; | ||
| 187 | |||
| 188 | /* insert should not fail, since duplicates are dropped */ | ||
| 189 | if (pqueue_insert(queue->q, item) == NULL) | ||
| 190 | { | ||
| 191 | OPENSSL_free(rdata); | ||
| 192 | pitem_free(item); | ||
| 193 | return(0); | ||
| 194 | } | ||
| 195 | |||
| 196 | s->packet = NULL; | ||
| 197 | s->packet_length = 0; | ||
| 198 | memset(&(s->s3->rbuf), 0, sizeof(SSL3_BUFFER)); | ||
| 199 | memset(&(s->s3->rrec), 0, sizeof(SSL3_RECORD)); | ||
| 200 | |||
| 201 | if (!ssl3_setup_buffers(s)) | ||
| 202 | { | ||
| 203 | SSLerr(SSL_F_DTLS1_BUFFER_RECORD, ERR_R_INTERNAL_ERROR); | ||
| 204 | OPENSSL_free(rdata); | ||
| 205 | pitem_free(item); | ||
| 206 | return(0); | ||
| 207 | } | ||
| 208 | |||
| 209 | return(1); | ||
| 210 | } | ||
| 211 | |||
| 212 | |||
| 213 | static int | ||
| 214 | dtls1_retrieve_buffered_record(SSL *s, record_pqueue *queue) | ||
| 215 | { | ||
| 216 | pitem *item; | ||
| 217 | |||
| 218 | item = pqueue_pop(queue->q); | ||
| 219 | if (item) | ||
| 220 | { | ||
| 221 | dtls1_copy_record(s, item); | ||
| 222 | |||
| 223 | OPENSSL_free(item->data); | ||
| 224 | pitem_free(item); | ||
| 225 | |||
| 226 | return(1); | ||
| 227 | } | ||
| 228 | |||
| 229 | return(0); | ||
| 230 | } | ||
| 231 | |||
| 232 | |||
| 233 | /* retrieve a buffered record that belongs to the new epoch, i.e., not processed | ||
| 234 | * yet */ | ||
| 235 | #define dtls1_get_unprocessed_record(s) \ | ||
| 236 | dtls1_retrieve_buffered_record((s), \ | ||
| 237 | &((s)->d1->unprocessed_rcds)) | ||
| 238 | |||
| 239 | /* retrieve a buffered record that belongs to the current epoch, ie, processed */ | ||
| 240 | #define dtls1_get_processed_record(s) \ | ||
| 241 | dtls1_retrieve_buffered_record((s), \ | ||
| 242 | &((s)->d1->processed_rcds)) | ||
| 243 | |||
| 244 | static int | ||
| 245 | dtls1_process_buffered_records(SSL *s) | ||
| 246 | { | ||
| 247 | pitem *item; | ||
| 248 | |||
| 249 | item = pqueue_peek(s->d1->unprocessed_rcds.q); | ||
| 250 | if (item) | ||
| 251 | { | ||
| 252 | DTLS1_RECORD_DATA *rdata; | ||
| 253 | rdata = (DTLS1_RECORD_DATA *)item->data; | ||
| 254 | |||
| 255 | /* Check if epoch is current. */ | ||
| 256 | if (s->d1->unprocessed_rcds.epoch != s->d1->r_epoch) | ||
| 257 | return(1); /* Nothing to do. */ | ||
| 258 | |||
| 259 | /* Process all the records. */ | ||
| 260 | while (pqueue_peek(s->d1->unprocessed_rcds.q)) | ||
| 261 | { | ||
| 262 | dtls1_get_unprocessed_record(s); | ||
| 263 | if ( ! dtls1_process_record(s)) | ||
| 264 | return(0); | ||
| 265 | dtls1_buffer_record(s, &(s->d1->processed_rcds), | ||
| 266 | s->s3->rrec.seq_num); | ||
| 267 | } | ||
| 268 | } | ||
| 269 | |||
| 270 | /* sync epoch numbers once all the unprocessed records | ||
| 271 | * have been processed */ | ||
| 272 | s->d1->processed_rcds.epoch = s->d1->r_epoch; | ||
| 273 | s->d1->unprocessed_rcds.epoch = s->d1->r_epoch + 1; | ||
| 274 | |||
| 275 | return(1); | ||
| 276 | } | ||
| 277 | |||
| 278 | |||
| 279 | #if 0 | ||
| 280 | |||
| 281 | static int | ||
| 282 | dtls1_get_buffered_record(SSL *s) | ||
| 283 | { | ||
| 284 | pitem *item; | ||
| 285 | PQ_64BIT priority = | ||
| 286 | (((PQ_64BIT)s->d1->handshake_read_seq) << 32) | | ||
| 287 | ((PQ_64BIT)s->d1->r_msg_hdr.frag_off); | ||
| 288 | |||
| 289 | if ( ! SSL_in_init(s)) /* if we're not (re)negotiating, | ||
| 290 | nothing buffered */ | ||
| 291 | return 0; | ||
| 292 | |||
| 293 | |||
| 294 | item = pqueue_peek(s->d1->rcvd_records); | ||
| 295 | if (item && item->priority == priority) | ||
| 296 | { | ||
| 297 | /* Check if we've received the record of interest. It must be | ||
| 298 | * a handshake record, since data records as passed up without | ||
| 299 | * buffering */ | ||
| 300 | DTLS1_RECORD_DATA *rdata; | ||
| 301 | item = pqueue_pop(s->d1->rcvd_records); | ||
| 302 | rdata = (DTLS1_RECORD_DATA *)item->data; | ||
| 303 | |||
| 304 | if (s->s3->rbuf.buf != NULL) | ||
| 305 | OPENSSL_free(s->s3->rbuf.buf); | ||
| 306 | |||
| 307 | s->packet = rdata->packet; | ||
| 308 | s->packet_length = rdata->packet_length; | ||
| 309 | memcpy(&(s->s3->rbuf), &(rdata->rbuf), sizeof(SSL3_BUFFER)); | ||
| 310 | memcpy(&(s->s3->rrec), &(rdata->rrec), sizeof(SSL3_RECORD)); | ||
| 311 | |||
| 312 | OPENSSL_free(item->data); | ||
| 313 | pitem_free(item); | ||
| 314 | |||
| 315 | /* s->d1->next_expected_seq_num++; */ | ||
| 316 | return(1); | ||
| 317 | } | ||
| 318 | |||
| 319 | return 0; | ||
| 320 | } | ||
| 321 | |||
| 322 | #endif | ||
| 323 | |||
| 324 | static int | ||
| 325 | dtls1_process_record(SSL *s) | ||
| 326 | { | ||
| 327 | int i,al; | ||
| 328 | int clear=0; | ||
| 329 | int enc_err; | ||
| 330 | SSL_SESSION *sess; | ||
| 331 | SSL3_RECORD *rr; | ||
| 332 | unsigned int mac_size; | ||
| 333 | unsigned char md[EVP_MAX_MD_SIZE]; | ||
| 334 | |||
| 335 | |||
| 336 | rr= &(s->s3->rrec); | ||
| 337 | sess = s->session; | ||
| 338 | |||
| 339 | /* At this point, s->packet_length == SSL3_RT_HEADER_LNGTH + rr->length, | ||
| 340 | * and we have that many bytes in s->packet | ||
| 341 | */ | ||
| 342 | rr->input= &(s->packet[DTLS1_RT_HEADER_LENGTH]); | ||
| 343 | |||
| 344 | /* ok, we can now read from 's->packet' data into 'rr' | ||
| 345 | * rr->input points at rr->length bytes, which | ||
| 346 | * need to be copied into rr->data by either | ||
| 347 | * the decryption or by the decompression | ||
| 348 | * When the data is 'copied' into the rr->data buffer, | ||
| 349 | * rr->input will be pointed at the new buffer */ | ||
| 350 | |||
| 351 | /* We now have - encrypted [ MAC [ compressed [ plain ] ] ] | ||
| 352 | * rr->length bytes of encrypted compressed stuff. */ | ||
| 353 | |||
| 354 | /* check is not needed I believe */ | ||
| 355 | if (rr->length > SSL3_RT_MAX_ENCRYPTED_LENGTH) | ||
| 356 | { | ||
| 357 | al=SSL_AD_RECORD_OVERFLOW; | ||
| 358 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_ENCRYPTED_LENGTH_TOO_LONG); | ||
| 359 | goto f_err; | ||
| 360 | } | ||
| 361 | |||
| 362 | /* decrypt in place in 'rr->input' */ | ||
| 363 | rr->data=rr->input; | ||
| 364 | |||
| 365 | enc_err = s->method->ssl3_enc->enc(s,0); | ||
| 366 | if (enc_err <= 0) | ||
| 367 | { | ||
| 368 | if (enc_err == 0) | ||
| 369 | /* SSLerr() and ssl3_send_alert() have been called */ | ||
| 370 | goto err; | ||
| 371 | |||
| 372 | /* otherwise enc_err == -1 */ | ||
| 373 | goto decryption_failed_or_bad_record_mac; | ||
| 374 | } | ||
| 375 | |||
| 376 | #ifdef TLS_DEBUG | ||
| 377 | printf("dec %d\n",rr->length); | ||
| 378 | { unsigned int z; for (z=0; z<rr->length; z++) printf("%02X%c",rr->data[z],((z+1)%16)?' ':'\n'); } | ||
| 379 | printf("\n"); | ||
| 380 | #endif | ||
| 381 | |||
| 382 | /* r->length is now the compressed data plus mac */ | ||
| 383 | if ( (sess == NULL) || | ||
| 384 | (s->enc_read_ctx == NULL) || | ||
| 385 | (s->read_hash == NULL)) | ||
| 386 | clear=1; | ||
| 387 | |||
| 388 | if (!clear) | ||
| 389 | { | ||
| 390 | mac_size=EVP_MD_size(s->read_hash); | ||
| 391 | |||
| 392 | if (rr->length > SSL3_RT_MAX_COMPRESSED_LENGTH+mac_size) | ||
| 393 | { | ||
| 394 | #if 0 /* OK only for stream ciphers (then rr->length is visible from ciphertext anyway) */ | ||
| 395 | al=SSL_AD_RECORD_OVERFLOW; | ||
| 396 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_PRE_MAC_LENGTH_TOO_LONG); | ||
| 397 | goto f_err; | ||
| 398 | #else | ||
| 399 | goto decryption_failed_or_bad_record_mac; | ||
| 400 | #endif | ||
| 401 | } | ||
| 402 | /* check the MAC for rr->input (it's in mac_size bytes at the tail) */ | ||
| 403 | if (rr->length < mac_size) | ||
| 404 | { | ||
| 405 | #if 0 /* OK only for stream ciphers */ | ||
| 406 | al=SSL_AD_DECODE_ERROR; | ||
| 407 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_LENGTH_TOO_SHORT); | ||
| 408 | goto f_err; | ||
| 409 | #else | ||
| 410 | goto decryption_failed_or_bad_record_mac; | ||
| 411 | #endif | ||
| 412 | } | ||
| 413 | rr->length-=mac_size; | ||
| 414 | i=s->method->ssl3_enc->mac(s,md,0); | ||
| 415 | if (memcmp(md,&(rr->data[rr->length]),mac_size) != 0) | ||
| 416 | { | ||
| 417 | goto decryption_failed_or_bad_record_mac; | ||
| 418 | } | ||
| 419 | } | ||
| 420 | |||
| 421 | /* r->length is now just compressed */ | ||
| 422 | if (s->expand != NULL) | ||
| 423 | { | ||
| 424 | if (rr->length > SSL3_RT_MAX_COMPRESSED_LENGTH) | ||
| 425 | { | ||
| 426 | al=SSL_AD_RECORD_OVERFLOW; | ||
| 427 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_COMPRESSED_LENGTH_TOO_LONG); | ||
| 428 | goto f_err; | ||
| 429 | } | ||
| 430 | if (!ssl3_do_uncompress(s)) | ||
| 431 | { | ||
| 432 | al=SSL_AD_DECOMPRESSION_FAILURE; | ||
| 433 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_BAD_DECOMPRESSION); | ||
| 434 | goto f_err; | ||
| 435 | } | ||
| 436 | } | ||
| 437 | |||
| 438 | if (rr->length > SSL3_RT_MAX_PLAIN_LENGTH) | ||
| 439 | { | ||
| 440 | al=SSL_AD_RECORD_OVERFLOW; | ||
| 441 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_DATA_LENGTH_TOO_LONG); | ||
| 442 | goto f_err; | ||
| 443 | } | ||
| 444 | |||
| 445 | rr->off=0; | ||
| 446 | /* So at this point the following is true | ||
| 447 | * ssl->s3->rrec.type is the type of record | ||
| 448 | * ssl->s3->rrec.length == number of bytes in record | ||
| 449 | * ssl->s3->rrec.off == offset to first valid byte | ||
| 450 | * ssl->s3->rrec.data == where to take bytes from, increment | ||
| 451 | * after use :-). | ||
| 452 | */ | ||
| 453 | |||
| 454 | /* we have pulled in a full packet so zero things */ | ||
| 455 | s->packet_length=0; | ||
| 456 | dtls1_record_bitmap_update(s, &(s->d1->bitmap));/* Mark receipt of record. */ | ||
| 457 | return(1); | ||
| 458 | |||
| 459 | decryption_failed_or_bad_record_mac: | ||
| 460 | /* Separate 'decryption_failed' alert was introduced with TLS 1.0, | ||
| 461 | * SSL 3.0 only has 'bad_record_mac'. But unless a decryption | ||
| 462 | * failure is directly visible from the ciphertext anyway, | ||
| 463 | * we should not reveal which kind of error occured -- this | ||
| 464 | * might become visible to an attacker (e.g. via logfile) */ | ||
| 465 | al=SSL_AD_BAD_RECORD_MAC; | ||
| 466 | SSLerr(SSL_F_DTLS1_PROCESS_RECORD,SSL_R_DECRYPTION_FAILED_OR_BAD_RECORD_MAC); | ||
| 467 | f_err: | ||
| 468 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 469 | err: | ||
| 470 | return(0); | ||
| 471 | } | ||
| 472 | |||
| 473 | |||
| 474 | /* Call this to get a new input record. | ||
| 475 | * It will return <= 0 if more data is needed, normally due to an error | ||
| 476 | * or non-blocking IO. | ||
| 477 | * When it finishes, one packet has been decoded and can be found in | ||
| 478 | * ssl->s3->rrec.type - is the type of record | ||
| 479 | * ssl->s3->rrec.data, - data | ||
| 480 | * ssl->s3->rrec.length, - number of bytes | ||
| 481 | */ | ||
| 482 | /* used only by dtls1_read_bytes */ | ||
| 483 | int dtls1_get_record(SSL *s) | ||
| 484 | { | ||
| 485 | int ssl_major,ssl_minor,al; | ||
| 486 | int i,n; | ||
| 487 | SSL3_RECORD *rr; | ||
| 488 | SSL_SESSION *sess; | ||
| 489 | unsigned char *p; | ||
| 490 | unsigned short version; | ||
| 491 | DTLS1_BITMAP *bitmap; | ||
| 492 | unsigned int is_next_epoch; | ||
| 493 | |||
| 494 | rr= &(s->s3->rrec); | ||
| 495 | sess=s->session; | ||
| 496 | |||
| 497 | /* The epoch may have changed. If so, process all the | ||
| 498 | * pending records. This is a non-blocking operation. */ | ||
| 499 | if ( ! dtls1_process_buffered_records(s)) | ||
| 500 | return 0; | ||
| 501 | |||
| 502 | /* if we're renegotiating, then there may be buffered records */ | ||
| 503 | if (dtls1_get_processed_record(s)) | ||
| 504 | return 1; | ||
| 505 | |||
| 506 | /* get something from the wire */ | ||
| 507 | again: | ||
| 508 | /* check if we have the header */ | ||
| 509 | if ( (s->rstate != SSL_ST_READ_BODY) || | ||
| 510 | (s->packet_length < DTLS1_RT_HEADER_LENGTH)) | ||
| 511 | { | ||
| 512 | n=ssl3_read_n(s, DTLS1_RT_HEADER_LENGTH, s->s3->rbuf.len, 0); | ||
| 513 | /* read timeout is handled by dtls1_read_bytes */ | ||
| 514 | if (n <= 0) return(n); /* error or non-blocking */ | ||
| 515 | |||
| 516 | OPENSSL_assert(s->packet_length == DTLS1_RT_HEADER_LENGTH); | ||
| 517 | |||
| 518 | s->rstate=SSL_ST_READ_BODY; | ||
| 519 | |||
| 520 | p=s->packet; | ||
| 521 | |||
| 522 | /* Pull apart the header into the DTLS1_RECORD */ | ||
| 523 | rr->type= *(p++); | ||
| 524 | ssl_major= *(p++); | ||
| 525 | ssl_minor= *(p++); | ||
| 526 | version=(ssl_major<<8)|ssl_minor; | ||
| 527 | |||
| 528 | /* sequence number is 64 bits, with top 2 bytes = epoch */ | ||
| 529 | n2s(p,rr->epoch); | ||
| 530 | |||
| 531 | memcpy(&(s->s3->read_sequence[2]), p, 6); | ||
| 532 | p+=6; | ||
| 533 | |||
| 534 | n2s(p,rr->length); | ||
| 535 | |||
| 536 | /* Lets check version */ | ||
| 537 | if (!s->first_packet) | ||
| 538 | { | ||
| 539 | if (version != s->version && version != DTLS1_BAD_VER) | ||
| 540 | { | ||
| 541 | SSLerr(SSL_F_DTLS1_GET_RECORD,SSL_R_WRONG_VERSION_NUMBER); | ||
| 542 | /* Send back error using their | ||
| 543 | * version number :-) */ | ||
| 544 | s->version=version; | ||
| 545 | al=SSL_AD_PROTOCOL_VERSION; | ||
| 546 | goto f_err; | ||
| 547 | } | ||
| 548 | } | ||
| 549 | |||
| 550 | if ((version & 0xff00) != (DTLS1_VERSION & 0xff00) && | ||
| 551 | (version & 0xff00) != (DTLS1_BAD_VER & 0xff00)) | ||
| 552 | { | ||
| 553 | SSLerr(SSL_F_DTLS1_GET_RECORD,SSL_R_WRONG_VERSION_NUMBER); | ||
| 554 | goto err; | ||
| 555 | } | ||
| 556 | |||
| 557 | if (rr->length > SSL3_RT_MAX_ENCRYPTED_LENGTH) | ||
| 558 | { | ||
| 559 | al=SSL_AD_RECORD_OVERFLOW; | ||
| 560 | SSLerr(SSL_F_DTLS1_GET_RECORD,SSL_R_PACKET_LENGTH_TOO_LONG); | ||
| 561 | goto f_err; | ||
| 562 | } | ||
| 563 | |||
| 564 | s->client_version = version; | ||
| 565 | /* now s->rstate == SSL_ST_READ_BODY */ | ||
| 566 | } | ||
| 567 | |||
| 568 | /* s->rstate == SSL_ST_READ_BODY, get and decode the data */ | ||
| 569 | |||
| 570 | if (rr->length > s->packet_length-DTLS1_RT_HEADER_LENGTH) | ||
| 571 | { | ||
| 572 | /* now s->packet_length == DTLS1_RT_HEADER_LENGTH */ | ||
| 573 | i=rr->length; | ||
| 574 | n=ssl3_read_n(s,i,i,1); | ||
| 575 | if (n <= 0) return(n); /* error or non-blocking io */ | ||
| 576 | |||
| 577 | /* this packet contained a partial record, dump it */ | ||
| 578 | if ( n != i) | ||
| 579 | { | ||
| 580 | s->packet_length = 0; | ||
| 581 | goto again; | ||
| 582 | } | ||
| 583 | |||
| 584 | /* now n == rr->length, | ||
| 585 | * and s->packet_length == DTLS1_RT_HEADER_LENGTH + rr->length */ | ||
| 586 | } | ||
| 587 | s->rstate=SSL_ST_READ_HEADER; /* set state for later operations */ | ||
| 588 | |||
| 589 | /* match epochs. NULL means the packet is dropped on the floor */ | ||
| 590 | bitmap = dtls1_get_bitmap(s, rr, &is_next_epoch); | ||
| 591 | if ( bitmap == NULL) | ||
| 592 | { | ||
| 593 | s->packet_length = 0; /* dump this record */ | ||
| 594 | goto again; /* get another record */ | ||
| 595 | } | ||
| 596 | |||
| 597 | /* check whether this is a repeat, or aged record */ | ||
| 598 | if ( ! dtls1_record_replay_check(s, bitmap, &(rr->seq_num))) | ||
| 599 | { | ||
| 600 | s->packet_length=0; /* dump this record */ | ||
| 601 | goto again; /* get another record */ | ||
| 602 | } | ||
| 603 | |||
| 604 | /* just read a 0 length packet */ | ||
| 605 | if (rr->length == 0) goto again; | ||
| 606 | |||
| 607 | /* If this record is from the next epoch (either HM or ALERT), buffer it | ||
| 608 | * since it cannot be processed at this time. | ||
| 609 | * Records from the next epoch are marked as received even though they are | ||
| 610 | * not processed, so as to prevent any potential resource DoS attack */ | ||
| 611 | if (is_next_epoch) | ||
| 612 | { | ||
| 613 | dtls1_record_bitmap_update(s, bitmap); | ||
| 614 | dtls1_buffer_record(s, &(s->d1->unprocessed_rcds), rr->seq_num); | ||
| 615 | s->packet_length = 0; | ||
| 616 | goto again; | ||
| 617 | } | ||
| 618 | |||
| 619 | if ( ! dtls1_process_record(s)) | ||
| 620 | return(0); | ||
| 621 | |||
| 622 | dtls1_clear_timeouts(s); /* done waiting */ | ||
| 623 | return(1); | ||
| 624 | |||
| 625 | f_err: | ||
| 626 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 627 | err: | ||
| 628 | return(0); | ||
| 629 | } | ||
| 630 | |||
| 631 | /* Return up to 'len' payload bytes received in 'type' records. | ||
| 632 | * 'type' is one of the following: | ||
| 633 | * | ||
| 634 | * - SSL3_RT_HANDSHAKE (when ssl3_get_message calls us) | ||
| 635 | * - SSL3_RT_APPLICATION_DATA (when ssl3_read calls us) | ||
| 636 | * - 0 (during a shutdown, no data has to be returned) | ||
| 637 | * | ||
| 638 | * If we don't have stored data to work from, read a SSL/TLS record first | ||
| 639 | * (possibly multiple records if we still don't have anything to return). | ||
| 640 | * | ||
| 641 | * This function must handle any surprises the peer may have for us, such as | ||
| 642 | * Alert records (e.g. close_notify), ChangeCipherSpec records (not really | ||
| 643 | * a surprise, but handled as if it were), or renegotiation requests. | ||
| 644 | * Also if record payloads contain fragments too small to process, we store | ||
| 645 | * them until there is enough for the respective protocol (the record protocol | ||
| 646 | * may use arbitrary fragmentation and even interleaving): | ||
| 647 | * Change cipher spec protocol | ||
| 648 | * just 1 byte needed, no need for keeping anything stored | ||
| 649 | * Alert protocol | ||
| 650 | * 2 bytes needed (AlertLevel, AlertDescription) | ||
| 651 | * Handshake protocol | ||
| 652 | * 4 bytes needed (HandshakeType, uint24 length) -- we just have | ||
| 653 | * to detect unexpected Client Hello and Hello Request messages | ||
| 654 | * here, anything else is handled by higher layers | ||
| 655 | * Application data protocol | ||
| 656 | * none of our business | ||
| 657 | */ | ||
| 658 | int dtls1_read_bytes(SSL *s, int type, unsigned char *buf, int len, int peek) | ||
| 659 | { | ||
| 660 | int al,i,j,ret; | ||
| 661 | unsigned int n; | ||
| 662 | SSL3_RECORD *rr; | ||
| 663 | void (*cb)(const SSL *ssl,int type2,int val)=NULL; | ||
| 664 | |||
| 665 | if (s->s3->rbuf.buf == NULL) /* Not initialized yet */ | ||
| 666 | if (!ssl3_setup_buffers(s)) | ||
| 667 | return(-1); | ||
| 668 | |||
| 669 | /* XXX: check what the second '&& type' is about */ | ||
| 670 | if ((type && (type != SSL3_RT_APPLICATION_DATA) && | ||
| 671 | (type != SSL3_RT_HANDSHAKE) && type) || | ||
| 672 | (peek && (type != SSL3_RT_APPLICATION_DATA))) | ||
| 673 | { | ||
| 674 | SSLerr(SSL_F_DTLS1_READ_BYTES, ERR_R_INTERNAL_ERROR); | ||
| 675 | return -1; | ||
| 676 | } | ||
| 677 | |||
| 678 | /* check whether there's a handshake message (client hello?) waiting */ | ||
| 679 | if ( (ret = have_handshake_fragment(s, type, buf, len, peek))) | ||
| 680 | return ret; | ||
| 681 | |||
| 682 | /* Now s->d1->handshake_fragment_len == 0 if type == SSL3_RT_HANDSHAKE. */ | ||
| 683 | |||
| 684 | if (!s->in_handshake && SSL_in_init(s)) | ||
| 685 | { | ||
| 686 | /* type == SSL3_RT_APPLICATION_DATA */ | ||
| 687 | i=s->handshake_func(s); | ||
| 688 | if (i < 0) return(i); | ||
| 689 | if (i == 0) | ||
| 690 | { | ||
| 691 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_SSL_HANDSHAKE_FAILURE); | ||
| 692 | return(-1); | ||
| 693 | } | ||
| 694 | } | ||
| 695 | |||
| 696 | start: | ||
| 697 | s->rwstate=SSL_NOTHING; | ||
| 698 | |||
| 699 | /* s->s3->rrec.type - is the type of record | ||
| 700 | * s->s3->rrec.data, - data | ||
| 701 | * s->s3->rrec.off, - offset into 'data' for next read | ||
| 702 | * s->s3->rrec.length, - number of bytes. */ | ||
| 703 | rr = &(s->s3->rrec); | ||
| 704 | |||
| 705 | /* get new packet if necessary */ | ||
| 706 | if ((rr->length == 0) || (s->rstate == SSL_ST_READ_BODY)) | ||
| 707 | { | ||
| 708 | ret=dtls1_get_record(s); | ||
| 709 | if (ret <= 0) | ||
| 710 | { | ||
| 711 | ret = dtls1_read_failed(s, ret); | ||
| 712 | /* anything other than a timeout is an error */ | ||
| 713 | if (ret <= 0) | ||
| 714 | return(ret); | ||
| 715 | else | ||
| 716 | goto start; | ||
| 717 | } | ||
| 718 | } | ||
| 719 | |||
| 720 | /* we now have a packet which can be read and processed */ | ||
| 721 | |||
| 722 | if (s->s3->change_cipher_spec /* set when we receive ChangeCipherSpec, | ||
| 723 | * reset by ssl3_get_finished */ | ||
| 724 | && (rr->type != SSL3_RT_HANDSHAKE)) | ||
| 725 | { | ||
| 726 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 727 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_DATA_BETWEEN_CCS_AND_FINISHED); | ||
| 728 | goto err; | ||
| 729 | } | ||
| 730 | |||
| 731 | /* If the other end has shut down, throw anything we read away | ||
| 732 | * (even in 'peek' mode) */ | ||
| 733 | if (s->shutdown & SSL_RECEIVED_SHUTDOWN) | ||
| 734 | { | ||
| 735 | rr->length=0; | ||
| 736 | s->rwstate=SSL_NOTHING; | ||
| 737 | return(0); | ||
| 738 | } | ||
| 739 | |||
| 740 | |||
| 741 | if (type == rr->type) /* SSL3_RT_APPLICATION_DATA or SSL3_RT_HANDSHAKE */ | ||
| 742 | { | ||
| 743 | /* make sure that we are not getting application data when we | ||
| 744 | * are doing a handshake for the first time */ | ||
| 745 | if (SSL_in_init(s) && (type == SSL3_RT_APPLICATION_DATA) && | ||
| 746 | (s->enc_read_ctx == NULL)) | ||
| 747 | { | ||
| 748 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 749 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_APP_DATA_IN_HANDSHAKE); | ||
| 750 | goto f_err; | ||
| 751 | } | ||
| 752 | |||
| 753 | if (len <= 0) return(len); | ||
| 754 | |||
| 755 | if ((unsigned int)len > rr->length) | ||
| 756 | n = rr->length; | ||
| 757 | else | ||
| 758 | n = (unsigned int)len; | ||
| 759 | |||
| 760 | memcpy(buf,&(rr->data[rr->off]),n); | ||
| 761 | if (!peek) | ||
| 762 | { | ||
| 763 | rr->length-=n; | ||
| 764 | rr->off+=n; | ||
| 765 | if (rr->length == 0) | ||
| 766 | { | ||
| 767 | s->rstate=SSL_ST_READ_HEADER; | ||
| 768 | rr->off=0; | ||
| 769 | } | ||
| 770 | } | ||
| 771 | return(n); | ||
| 772 | } | ||
| 773 | |||
| 774 | |||
| 775 | /* If we get here, then type != rr->type; if we have a handshake | ||
| 776 | * message, then it was unexpected (Hello Request or Client Hello). */ | ||
| 777 | |||
| 778 | /* In case of record types for which we have 'fragment' storage, | ||
| 779 | * fill that so that we can process the data at a fixed place. | ||
| 780 | */ | ||
| 781 | { | ||
| 782 | unsigned int k, dest_maxlen = 0; | ||
| 783 | unsigned char *dest = NULL; | ||
| 784 | unsigned int *dest_len = NULL; | ||
| 785 | |||
| 786 | if (rr->type == SSL3_RT_HANDSHAKE) | ||
| 787 | { | ||
| 788 | dest_maxlen = sizeof s->d1->handshake_fragment; | ||
| 789 | dest = s->d1->handshake_fragment; | ||
| 790 | dest_len = &s->d1->handshake_fragment_len; | ||
| 791 | } | ||
| 792 | else if (rr->type == SSL3_RT_ALERT) | ||
| 793 | { | ||
| 794 | dest_maxlen = sizeof(s->d1->alert_fragment); | ||
| 795 | dest = s->d1->alert_fragment; | ||
| 796 | dest_len = &s->d1->alert_fragment_len; | ||
| 797 | } | ||
| 798 | /* else it's a CCS message, or it's wrong */ | ||
| 799 | else if (rr->type != SSL3_RT_CHANGE_CIPHER_SPEC) | ||
| 800 | { | ||
| 801 | /* Not certain if this is the right error handling */ | ||
| 802 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 803 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_UNEXPECTED_RECORD); | ||
| 804 | goto f_err; | ||
| 805 | } | ||
| 806 | |||
| 807 | |||
| 808 | if (dest_maxlen > 0) | ||
| 809 | { | ||
| 810 | /* XDTLS: In a pathalogical case, the Client Hello | ||
| 811 | * may be fragmented--don't always expect dest_maxlen bytes */ | ||
| 812 | if ( rr->length < dest_maxlen) | ||
| 813 | { | ||
| 814 | s->rstate=SSL_ST_READ_HEADER; | ||
| 815 | rr->length = 0; | ||
| 816 | goto start; | ||
| 817 | } | ||
| 818 | |||
| 819 | /* now move 'n' bytes: */ | ||
| 820 | for ( k = 0; k < dest_maxlen; k++) | ||
| 821 | { | ||
| 822 | dest[k] = rr->data[rr->off++]; | ||
| 823 | rr->length--; | ||
| 824 | } | ||
| 825 | *dest_len = dest_maxlen; | ||
| 826 | } | ||
| 827 | } | ||
| 828 | |||
| 829 | /* s->d1->handshake_fragment_len == 12 iff rr->type == SSL3_RT_HANDSHAKE; | ||
| 830 | * s->d1->alert_fragment_len == 7 iff rr->type == SSL3_RT_ALERT. | ||
| 831 | * (Possibly rr is 'empty' now, i.e. rr->length may be 0.) */ | ||
| 832 | |||
| 833 | /* If we are a client, check for an incoming 'Hello Request': */ | ||
| 834 | if ((!s->server) && | ||
| 835 | (s->d1->handshake_fragment_len >= DTLS1_HM_HEADER_LENGTH) && | ||
| 836 | (s->d1->handshake_fragment[0] == SSL3_MT_HELLO_REQUEST) && | ||
| 837 | (s->session != NULL) && (s->session->cipher != NULL)) | ||
| 838 | { | ||
| 839 | s->d1->handshake_fragment_len = 0; | ||
| 840 | |||
| 841 | if ((s->d1->handshake_fragment[1] != 0) || | ||
| 842 | (s->d1->handshake_fragment[2] != 0) || | ||
| 843 | (s->d1->handshake_fragment[3] != 0)) | ||
| 844 | { | ||
| 845 | al=SSL_AD_DECODE_ERROR; | ||
| 846 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_BAD_HELLO_REQUEST); | ||
| 847 | goto err; | ||
| 848 | } | ||
| 849 | |||
| 850 | /* no need to check sequence number on HELLO REQUEST messages */ | ||
| 851 | |||
| 852 | if (s->msg_callback) | ||
| 853 | s->msg_callback(0, s->version, SSL3_RT_HANDSHAKE, | ||
| 854 | s->d1->handshake_fragment, 4, s, s->msg_callback_arg); | ||
| 855 | |||
| 856 | if (SSL_is_init_finished(s) && | ||
| 857 | !(s->s3->flags & SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS) && | ||
| 858 | !s->s3->renegotiate) | ||
| 859 | { | ||
| 860 | ssl3_renegotiate(s); | ||
| 861 | if (ssl3_renegotiate_check(s)) | ||
| 862 | { | ||
| 863 | i=s->handshake_func(s); | ||
| 864 | if (i < 0) return(i); | ||
| 865 | if (i == 0) | ||
| 866 | { | ||
| 867 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_SSL_HANDSHAKE_FAILURE); | ||
| 868 | return(-1); | ||
| 869 | } | ||
| 870 | |||
| 871 | if (!(s->mode & SSL_MODE_AUTO_RETRY)) | ||
| 872 | { | ||
| 873 | if (s->s3->rbuf.left == 0) /* no read-ahead left? */ | ||
| 874 | { | ||
| 875 | BIO *bio; | ||
| 876 | /* In the case where we try to read application data, | ||
| 877 | * but we trigger an SSL handshake, we return -1 with | ||
| 878 | * the retry option set. Otherwise renegotiation may | ||
| 879 | * cause nasty problems in the blocking world */ | ||
| 880 | s->rwstate=SSL_READING; | ||
| 881 | bio=SSL_get_rbio(s); | ||
| 882 | BIO_clear_retry_flags(bio); | ||
| 883 | BIO_set_retry_read(bio); | ||
| 884 | return(-1); | ||
| 885 | } | ||
| 886 | } | ||
| 887 | } | ||
| 888 | } | ||
| 889 | /* we either finished a handshake or ignored the request, | ||
| 890 | * now try again to obtain the (application) data we were asked for */ | ||
| 891 | goto start; | ||
| 892 | } | ||
| 893 | |||
| 894 | if (s->d1->alert_fragment_len >= DTLS1_AL_HEADER_LENGTH) | ||
| 895 | { | ||
| 896 | int alert_level = s->d1->alert_fragment[0]; | ||
| 897 | int alert_descr = s->d1->alert_fragment[1]; | ||
| 898 | |||
| 899 | s->d1->alert_fragment_len = 0; | ||
| 900 | |||
| 901 | if (s->msg_callback) | ||
| 902 | s->msg_callback(0, s->version, SSL3_RT_ALERT, | ||
| 903 | s->d1->alert_fragment, 2, s, s->msg_callback_arg); | ||
| 904 | |||
| 905 | if (s->info_callback != NULL) | ||
| 906 | cb=s->info_callback; | ||
| 907 | else if (s->ctx->info_callback != NULL) | ||
| 908 | cb=s->ctx->info_callback; | ||
| 909 | |||
| 910 | if (cb != NULL) | ||
| 911 | { | ||
| 912 | j = (alert_level << 8) | alert_descr; | ||
| 913 | cb(s, SSL_CB_READ_ALERT, j); | ||
| 914 | } | ||
| 915 | |||
| 916 | if (alert_level == 1) /* warning */ | ||
| 917 | { | ||
| 918 | s->s3->warn_alert = alert_descr; | ||
| 919 | if (alert_descr == SSL_AD_CLOSE_NOTIFY) | ||
| 920 | { | ||
| 921 | s->shutdown |= SSL_RECEIVED_SHUTDOWN; | ||
| 922 | return(0); | ||
| 923 | } | ||
| 924 | #if 0 | ||
| 925 | /* XXX: this is a possible improvement in the future */ | ||
| 926 | /* now check if it's a missing record */ | ||
| 927 | if (alert_descr == DTLS1_AD_MISSING_HANDSHAKE_MESSAGE) | ||
| 928 | { | ||
| 929 | unsigned short seq; | ||
| 930 | unsigned int frag_off; | ||
| 931 | unsigned char *p = &(s->d1->alert_fragment[2]); | ||
| 932 | |||
| 933 | n2s(p, seq); | ||
| 934 | n2l3(p, frag_off); | ||
| 935 | |||
| 936 | dtls1_retransmit_message(s, seq, frag_off, &found); | ||
| 937 | if ( ! found && SSL_in_init(s)) | ||
| 938 | { | ||
| 939 | /* fprintf( stderr,"in init = %d\n", SSL_in_init(s)); */ | ||
| 940 | /* requested a message not yet sent, | ||
| 941 | send an alert ourselves */ | ||
| 942 | ssl3_send_alert(s,SSL3_AL_WARNING, | ||
| 943 | DTLS1_AD_MISSING_HANDSHAKE_MESSAGE); | ||
| 944 | } | ||
| 945 | } | ||
| 946 | #endif | ||
| 947 | } | ||
| 948 | else if (alert_level == 2) /* fatal */ | ||
| 949 | { | ||
| 950 | char tmp[16]; | ||
| 951 | |||
| 952 | s->rwstate=SSL_NOTHING; | ||
| 953 | s->s3->fatal_alert = alert_descr; | ||
| 954 | SSLerr(SSL_F_DTLS1_READ_BYTES, SSL_AD_REASON_OFFSET + alert_descr); | ||
| 955 | BIO_snprintf(tmp,sizeof tmp,"%d",alert_descr); | ||
| 956 | ERR_add_error_data(2,"SSL alert number ",tmp); | ||
| 957 | s->shutdown|=SSL_RECEIVED_SHUTDOWN; | ||
| 958 | SSL_CTX_remove_session(s->ctx,s->session); | ||
| 959 | return(0); | ||
| 960 | } | ||
| 961 | else | ||
| 962 | { | ||
| 963 | al=SSL_AD_ILLEGAL_PARAMETER; | ||
| 964 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_UNKNOWN_ALERT_TYPE); | ||
| 965 | goto f_err; | ||
| 966 | } | ||
| 967 | |||
| 968 | goto start; | ||
| 969 | } | ||
| 970 | |||
| 971 | if (s->shutdown & SSL_SENT_SHUTDOWN) /* but we have not received a shutdown */ | ||
| 972 | { | ||
| 973 | s->rwstate=SSL_NOTHING; | ||
| 974 | rr->length=0; | ||
| 975 | return(0); | ||
| 976 | } | ||
| 977 | |||
| 978 | if (rr->type == SSL3_RT_CHANGE_CIPHER_SPEC) | ||
| 979 | { | ||
| 980 | struct ccs_header_st ccs_hdr; | ||
| 981 | |||
| 982 | dtls1_get_ccs_header(rr->data, &ccs_hdr); | ||
| 983 | |||
| 984 | /* 'Change Cipher Spec' is just a single byte, so we know | ||
| 985 | * exactly what the record payload has to look like */ | ||
| 986 | /* XDTLS: check that epoch is consistent */ | ||
| 987 | if ( (s->client_version == DTLS1_BAD_VER && rr->length != 3) || | ||
| 988 | (s->client_version != DTLS1_BAD_VER && rr->length != DTLS1_CCS_HEADER_LENGTH) || | ||
| 989 | (rr->off != 0) || (rr->data[0] != SSL3_MT_CCS)) | ||
| 990 | { | ||
| 991 | i=SSL_AD_ILLEGAL_PARAMETER; | ||
| 992 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_BAD_CHANGE_CIPHER_SPEC); | ||
| 993 | goto err; | ||
| 994 | } | ||
| 995 | |||
| 996 | rr->length=0; | ||
| 997 | |||
| 998 | if (s->msg_callback) | ||
| 999 | s->msg_callback(0, s->version, SSL3_RT_CHANGE_CIPHER_SPEC, | ||
| 1000 | rr->data, 1, s, s->msg_callback_arg); | ||
| 1001 | |||
| 1002 | s->s3->change_cipher_spec=1; | ||
| 1003 | if (!ssl3_do_change_cipher_spec(s)) | ||
| 1004 | goto err; | ||
| 1005 | |||
| 1006 | /* do this whenever CCS is processed */ | ||
| 1007 | dtls1_reset_seq_numbers(s, SSL3_CC_READ); | ||
| 1008 | |||
| 1009 | if (s->client_version == DTLS1_BAD_VER) | ||
| 1010 | s->d1->handshake_read_seq++; | ||
| 1011 | |||
| 1012 | goto start; | ||
| 1013 | } | ||
| 1014 | |||
| 1015 | /* Unexpected handshake message (Client Hello, or protocol violation) */ | ||
| 1016 | if ((s->d1->handshake_fragment_len >= DTLS1_HM_HEADER_LENGTH) && | ||
| 1017 | !s->in_handshake) | ||
| 1018 | { | ||
| 1019 | struct hm_header_st msg_hdr; | ||
| 1020 | |||
| 1021 | /* this may just be a stale retransmit */ | ||
| 1022 | dtls1_get_message_header(rr->data, &msg_hdr); | ||
| 1023 | if( rr->epoch != s->d1->r_epoch) | ||
| 1024 | { | ||
| 1025 | rr->length = 0; | ||
| 1026 | goto start; | ||
| 1027 | } | ||
| 1028 | |||
| 1029 | if (((s->state&SSL_ST_MASK) == SSL_ST_OK) && | ||
| 1030 | !(s->s3->flags & SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS)) | ||
| 1031 | { | ||
| 1032 | #if 0 /* worked only because C operator preferences are not as expected (and | ||
| 1033 | * because this is not really needed for clients except for detecting | ||
| 1034 | * protocol violations): */ | ||
| 1035 | s->state=SSL_ST_BEFORE|(s->server) | ||
| 1036 | ?SSL_ST_ACCEPT | ||
| 1037 | :SSL_ST_CONNECT; | ||
| 1038 | #else | ||
| 1039 | s->state = s->server ? SSL_ST_ACCEPT : SSL_ST_CONNECT; | ||
| 1040 | #endif | ||
| 1041 | s->new_session=1; | ||
| 1042 | } | ||
| 1043 | i=s->handshake_func(s); | ||
| 1044 | if (i < 0) return(i); | ||
| 1045 | if (i == 0) | ||
| 1046 | { | ||
| 1047 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_SSL_HANDSHAKE_FAILURE); | ||
| 1048 | return(-1); | ||
| 1049 | } | ||
| 1050 | |||
| 1051 | if (!(s->mode & SSL_MODE_AUTO_RETRY)) | ||
| 1052 | { | ||
| 1053 | if (s->s3->rbuf.left == 0) /* no read-ahead left? */ | ||
| 1054 | { | ||
| 1055 | BIO *bio; | ||
| 1056 | /* In the case where we try to read application data, | ||
| 1057 | * but we trigger an SSL handshake, we return -1 with | ||
| 1058 | * the retry option set. Otherwise renegotiation may | ||
| 1059 | * cause nasty problems in the blocking world */ | ||
| 1060 | s->rwstate=SSL_READING; | ||
| 1061 | bio=SSL_get_rbio(s); | ||
| 1062 | BIO_clear_retry_flags(bio); | ||
| 1063 | BIO_set_retry_read(bio); | ||
| 1064 | return(-1); | ||
| 1065 | } | ||
| 1066 | } | ||
| 1067 | goto start; | ||
| 1068 | } | ||
| 1069 | |||
| 1070 | switch (rr->type) | ||
| 1071 | { | ||
| 1072 | default: | ||
| 1073 | #ifndef OPENSSL_NO_TLS | ||
| 1074 | /* TLS just ignores unknown message types */ | ||
| 1075 | if (s->version == TLS1_VERSION) | ||
| 1076 | { | ||
| 1077 | rr->length = 0; | ||
| 1078 | goto start; | ||
| 1079 | } | ||
| 1080 | #endif | ||
| 1081 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 1082 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_UNEXPECTED_RECORD); | ||
| 1083 | goto f_err; | ||
| 1084 | case SSL3_RT_CHANGE_CIPHER_SPEC: | ||
| 1085 | case SSL3_RT_ALERT: | ||
| 1086 | case SSL3_RT_HANDSHAKE: | ||
| 1087 | /* we already handled all of these, with the possible exception | ||
| 1088 | * of SSL3_RT_HANDSHAKE when s->in_handshake is set, but that | ||
| 1089 | * should not happen when type != rr->type */ | ||
| 1090 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 1091 | SSLerr(SSL_F_DTLS1_READ_BYTES,ERR_R_INTERNAL_ERROR); | ||
| 1092 | goto f_err; | ||
| 1093 | case SSL3_RT_APPLICATION_DATA: | ||
| 1094 | /* At this point, we were expecting handshake data, | ||
| 1095 | * but have application data. If the library was | ||
| 1096 | * running inside ssl3_read() (i.e. in_read_app_data | ||
| 1097 | * is set) and it makes sense to read application data | ||
| 1098 | * at this point (session renegotiation not yet started), | ||
| 1099 | * we will indulge it. | ||
| 1100 | */ | ||
| 1101 | if (s->s3->in_read_app_data && | ||
| 1102 | (s->s3->total_renegotiations != 0) && | ||
| 1103 | (( | ||
| 1104 | (s->state & SSL_ST_CONNECT) && | ||
| 1105 | (s->state >= SSL3_ST_CW_CLNT_HELLO_A) && | ||
| 1106 | (s->state <= SSL3_ST_CR_SRVR_HELLO_A) | ||
| 1107 | ) || ( | ||
| 1108 | (s->state & SSL_ST_ACCEPT) && | ||
| 1109 | (s->state <= SSL3_ST_SW_HELLO_REQ_A) && | ||
| 1110 | (s->state >= SSL3_ST_SR_CLNT_HELLO_A) | ||
| 1111 | ) | ||
| 1112 | )) | ||
| 1113 | { | ||
| 1114 | s->s3->in_read_app_data=2; | ||
| 1115 | return(-1); | ||
| 1116 | } | ||
| 1117 | else | ||
| 1118 | { | ||
| 1119 | al=SSL_AD_UNEXPECTED_MESSAGE; | ||
| 1120 | SSLerr(SSL_F_DTLS1_READ_BYTES,SSL_R_UNEXPECTED_RECORD); | ||
| 1121 | goto f_err; | ||
| 1122 | } | ||
| 1123 | } | ||
| 1124 | /* not reached */ | ||
| 1125 | |||
| 1126 | f_err: | ||
| 1127 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 1128 | err: | ||
| 1129 | return(-1); | ||
| 1130 | } | ||
| 1131 | |||
| 1132 | int | ||
| 1133 | dtls1_write_app_data_bytes(SSL *s, int type, const void *buf_, int len) | ||
| 1134 | { | ||
| 1135 | unsigned int n,tot; | ||
| 1136 | int i; | ||
| 1137 | |||
| 1138 | if (SSL_in_init(s) && !s->in_handshake) | ||
| 1139 | { | ||
| 1140 | i=s->handshake_func(s); | ||
| 1141 | if (i < 0) return(i); | ||
| 1142 | if (i == 0) | ||
| 1143 | { | ||
| 1144 | SSLerr(SSL_F_DTLS1_WRITE_APP_DATA_BYTES,SSL_R_SSL_HANDSHAKE_FAILURE); | ||
| 1145 | return -1; | ||
| 1146 | } | ||
| 1147 | } | ||
| 1148 | |||
| 1149 | tot = s->s3->wnum; | ||
| 1150 | n = len - tot; | ||
| 1151 | |||
| 1152 | while( n) | ||
| 1153 | { | ||
| 1154 | /* dtls1_write_bytes sends one record at a time, sized according to | ||
| 1155 | * the currently known MTU */ | ||
| 1156 | i = dtls1_write_bytes(s, type, buf_, len); | ||
| 1157 | if (i <= 0) return i; | ||
| 1158 | |||
| 1159 | if ((i == (int)n) || | ||
| 1160 | (type == SSL3_RT_APPLICATION_DATA && | ||
| 1161 | (s->mode & SSL_MODE_ENABLE_PARTIAL_WRITE))) | ||
| 1162 | { | ||
| 1163 | /* next chunk of data should get another prepended empty fragment | ||
| 1164 | * in ciphersuites with known-IV weakness: */ | ||
| 1165 | s->s3->empty_fragment_done = 0; | ||
| 1166 | return tot+i; | ||
| 1167 | } | ||
| 1168 | |||
| 1169 | tot += i; | ||
| 1170 | n-=i; | ||
| 1171 | } | ||
| 1172 | |||
| 1173 | return tot; | ||
| 1174 | } | ||
| 1175 | |||
| 1176 | |||
| 1177 | /* this only happens when a client hello is received and a handshake | ||
| 1178 | * is started. */ | ||
| 1179 | static int | ||
| 1180 | have_handshake_fragment(SSL *s, int type, unsigned char *buf, | ||
| 1181 | int len, int peek) | ||
| 1182 | { | ||
| 1183 | |||
| 1184 | if ((type == SSL3_RT_HANDSHAKE) && (s->d1->handshake_fragment_len > 0)) | ||
| 1185 | /* (partially) satisfy request from storage */ | ||
| 1186 | { | ||
| 1187 | unsigned char *src = s->d1->handshake_fragment; | ||
| 1188 | unsigned char *dst = buf; | ||
| 1189 | unsigned int k,n; | ||
| 1190 | |||
| 1191 | /* peek == 0 */ | ||
| 1192 | n = 0; | ||
| 1193 | while ((len > 0) && (s->d1->handshake_fragment_len > 0)) | ||
| 1194 | { | ||
| 1195 | *dst++ = *src++; | ||
| 1196 | len--; s->d1->handshake_fragment_len--; | ||
| 1197 | n++; | ||
| 1198 | } | ||
| 1199 | /* move any remaining fragment bytes: */ | ||
| 1200 | for (k = 0; k < s->d1->handshake_fragment_len; k++) | ||
| 1201 | s->d1->handshake_fragment[k] = *src++; | ||
| 1202 | return n; | ||
| 1203 | } | ||
| 1204 | |||
| 1205 | return 0; | ||
| 1206 | } | ||
| 1207 | |||
| 1208 | |||
| 1209 | |||
| 1210 | |||
| 1211 | /* Call this to write data in records of type 'type' | ||
| 1212 | * It will return <= 0 if not all data has been sent or non-blocking IO. | ||
| 1213 | */ | ||
| 1214 | int dtls1_write_bytes(SSL *s, int type, const void *buf_, int len) | ||
| 1215 | { | ||
| 1216 | const unsigned char *buf=buf_; | ||
| 1217 | unsigned int tot,n,nw; | ||
| 1218 | int i; | ||
| 1219 | unsigned int mtu; | ||
| 1220 | |||
| 1221 | s->rwstate=SSL_NOTHING; | ||
| 1222 | tot=s->s3->wnum; | ||
| 1223 | |||
| 1224 | n=(len-tot); | ||
| 1225 | |||
| 1226 | /* handshake layer figures out MTU for itself, but data records | ||
| 1227 | * are also sent through this interface, so need to figure out MTU */ | ||
| 1228 | #if 0 | ||
| 1229 | mtu = BIO_ctrl(SSL_get_wbio(s), BIO_CTRL_DGRAM_GET_MTU, 0, NULL); | ||
| 1230 | mtu += DTLS1_HM_HEADER_LENGTH; /* HM already inserted */ | ||
| 1231 | #endif | ||
| 1232 | mtu = s->d1->mtu; | ||
| 1233 | |||
| 1234 | if (mtu > SSL3_RT_MAX_PLAIN_LENGTH) | ||
| 1235 | mtu = SSL3_RT_MAX_PLAIN_LENGTH; | ||
| 1236 | |||
| 1237 | if (n > mtu) | ||
| 1238 | nw=mtu; | ||
| 1239 | else | ||
| 1240 | nw=n; | ||
| 1241 | |||
| 1242 | i=do_dtls1_write(s, type, &(buf[tot]), nw, 0); | ||
| 1243 | if (i <= 0) | ||
| 1244 | { | ||
| 1245 | s->s3->wnum=tot; | ||
| 1246 | return i; | ||
| 1247 | } | ||
| 1248 | |||
| 1249 | if ( (int)s->s3->wnum + i == len) | ||
| 1250 | s->s3->wnum = 0; | ||
| 1251 | else | ||
| 1252 | s->s3->wnum += i; | ||
| 1253 | |||
| 1254 | return tot + i; | ||
| 1255 | } | ||
| 1256 | |||
| 1257 | int do_dtls1_write(SSL *s, int type, const unsigned char *buf, unsigned int len, int create_empty_fragment) | ||
| 1258 | { | ||
| 1259 | unsigned char *p,*pseq; | ||
| 1260 | int i,mac_size,clear=0; | ||
| 1261 | int prefix_len = 0; | ||
| 1262 | SSL3_RECORD *wr; | ||
| 1263 | SSL3_BUFFER *wb; | ||
| 1264 | SSL_SESSION *sess; | ||
| 1265 | int bs; | ||
| 1266 | |||
| 1267 | /* first check if there is a SSL3_BUFFER still being written | ||
| 1268 | * out. This will happen with non blocking IO */ | ||
| 1269 | if (s->s3->wbuf.left != 0) | ||
| 1270 | { | ||
| 1271 | OPENSSL_assert(0); /* XDTLS: want to see if we ever get here */ | ||
| 1272 | return(ssl3_write_pending(s,type,buf,len)); | ||
| 1273 | } | ||
| 1274 | |||
| 1275 | /* If we have an alert to send, lets send it */ | ||
| 1276 | if (s->s3->alert_dispatch) | ||
| 1277 | { | ||
| 1278 | i=s->method->ssl_dispatch_alert(s); | ||
| 1279 | if (i <= 0) | ||
| 1280 | return(i); | ||
| 1281 | /* if it went, fall through and send more stuff */ | ||
| 1282 | } | ||
| 1283 | |||
| 1284 | if (len == 0 && !create_empty_fragment) | ||
| 1285 | return 0; | ||
| 1286 | |||
| 1287 | wr= &(s->s3->wrec); | ||
| 1288 | wb= &(s->s3->wbuf); | ||
| 1289 | sess=s->session; | ||
| 1290 | |||
| 1291 | if ( (sess == NULL) || | ||
| 1292 | (s->enc_write_ctx == NULL) || | ||
| 1293 | (s->write_hash == NULL)) | ||
| 1294 | clear=1; | ||
| 1295 | |||
| 1296 | if (clear) | ||
| 1297 | mac_size=0; | ||
| 1298 | else | ||
| 1299 | mac_size=EVP_MD_size(s->write_hash); | ||
| 1300 | |||
| 1301 | /* DTLS implements explicit IV, so no need for empty fragments */ | ||
| 1302 | #if 0 | ||
| 1303 | /* 'create_empty_fragment' is true only when this function calls itself */ | ||
| 1304 | if (!clear && !create_empty_fragment && !s->s3->empty_fragment_done | ||
| 1305 | && SSL_version(s) != DTLS1_VERSION) | ||
| 1306 | { | ||
| 1307 | /* countermeasure against known-IV weakness in CBC ciphersuites | ||
| 1308 | * (see http://www.openssl.org/~bodo/tls-cbc.txt) | ||
| 1309 | */ | ||
| 1310 | |||
| 1311 | if (s->s3->need_empty_fragments && type == SSL3_RT_APPLICATION_DATA) | ||
| 1312 | { | ||
| 1313 | /* recursive function call with 'create_empty_fragment' set; | ||
| 1314 | * this prepares and buffers the data for an empty fragment | ||
| 1315 | * (these 'prefix_len' bytes are sent out later | ||
| 1316 | * together with the actual payload) */ | ||
| 1317 | prefix_len = s->method->do_ssl_write(s, type, buf, 0, 1); | ||
| 1318 | if (prefix_len <= 0) | ||
| 1319 | goto err; | ||
| 1320 | |||
| 1321 | if (s->s3->wbuf.len < (size_t)prefix_len + SSL3_RT_MAX_PACKET_SIZE) | ||
| 1322 | { | ||
| 1323 | /* insufficient space */ | ||
| 1324 | SSLerr(SSL_F_DO_DTLS1_WRITE, ERR_R_INTERNAL_ERROR); | ||
| 1325 | goto err; | ||
| 1326 | } | ||
| 1327 | } | ||
| 1328 | |||
| 1329 | s->s3->empty_fragment_done = 1; | ||
| 1330 | } | ||
| 1331 | #endif | ||
| 1332 | |||
| 1333 | p = wb->buf + prefix_len; | ||
| 1334 | |||
| 1335 | /* write the header */ | ||
| 1336 | |||
| 1337 | *(p++)=type&0xff; | ||
| 1338 | wr->type=type; | ||
| 1339 | |||
| 1340 | if (s->client_version == DTLS1_BAD_VER) | ||
| 1341 | *(p++) = DTLS1_BAD_VER>>8, | ||
| 1342 | *(p++) = DTLS1_BAD_VER&0xff; | ||
| 1343 | else | ||
| 1344 | *(p++)=(s->version>>8), | ||
| 1345 | *(p++)=s->version&0xff; | ||
| 1346 | |||
| 1347 | /* field where we are to write out packet epoch, seq num and len */ | ||
| 1348 | pseq=p; | ||
| 1349 | p+=10; | ||
| 1350 | |||
| 1351 | /* lets setup the record stuff. */ | ||
| 1352 | |||
| 1353 | /* Make space for the explicit IV in case of CBC. | ||
| 1354 | * (this is a bit of a boundary violation, but what the heck). | ||
| 1355 | */ | ||
| 1356 | if ( s->enc_write_ctx && | ||
| 1357 | (EVP_CIPHER_mode( s->enc_write_ctx->cipher ) & EVP_CIPH_CBC_MODE)) | ||
| 1358 | bs = EVP_CIPHER_block_size(s->enc_write_ctx->cipher); | ||
| 1359 | else | ||
| 1360 | bs = 0; | ||
| 1361 | |||
| 1362 | wr->data=p + bs; /* make room for IV in case of CBC */ | ||
| 1363 | wr->length=(int)len; | ||
| 1364 | wr->input=(unsigned char *)buf; | ||
| 1365 | |||
| 1366 | /* we now 'read' from wr->input, wr->length bytes into | ||
| 1367 | * wr->data */ | ||
| 1368 | |||
| 1369 | /* first we compress */ | ||
| 1370 | if (s->compress != NULL) | ||
| 1371 | { | ||
| 1372 | if (!ssl3_do_compress(s)) | ||
| 1373 | { | ||
| 1374 | SSLerr(SSL_F_DO_DTLS1_WRITE,SSL_R_COMPRESSION_FAILURE); | ||
| 1375 | goto err; | ||
| 1376 | } | ||
| 1377 | } | ||
| 1378 | else | ||
| 1379 | { | ||
| 1380 | memcpy(wr->data,wr->input,wr->length); | ||
| 1381 | wr->input=wr->data; | ||
| 1382 | } | ||
| 1383 | |||
| 1384 | /* we should still have the output to wr->data and the input | ||
| 1385 | * from wr->input. Length should be wr->length. | ||
| 1386 | * wr->data still points in the wb->buf */ | ||
| 1387 | |||
| 1388 | if (mac_size != 0) | ||
| 1389 | { | ||
| 1390 | s->method->ssl3_enc->mac(s,&(p[wr->length + bs]),1); | ||
| 1391 | wr->length+=mac_size; | ||
| 1392 | } | ||
| 1393 | |||
| 1394 | /* this is true regardless of mac size */ | ||
| 1395 | wr->input=p; | ||
| 1396 | wr->data=p; | ||
| 1397 | |||
| 1398 | |||
| 1399 | /* ssl3_enc can only have an error on read */ | ||
| 1400 | if (bs) /* bs != 0 in case of CBC */ | ||
| 1401 | { | ||
| 1402 | RAND_pseudo_bytes(p,bs); | ||
| 1403 | /* master IV and last CBC residue stand for | ||
| 1404 | * the rest of randomness */ | ||
| 1405 | wr->length += bs; | ||
| 1406 | } | ||
| 1407 | |||
| 1408 | s->method->ssl3_enc->enc(s,1); | ||
| 1409 | |||
| 1410 | /* record length after mac and block padding */ | ||
| 1411 | /* if (type == SSL3_RT_APPLICATION_DATA || | ||
| 1412 | (type == SSL3_RT_ALERT && ! SSL_in_init(s))) */ | ||
| 1413 | |||
| 1414 | /* there's only one epoch between handshake and app data */ | ||
| 1415 | |||
| 1416 | s2n(s->d1->w_epoch, pseq); | ||
| 1417 | |||
| 1418 | /* XDTLS: ?? */ | ||
| 1419 | /* else | ||
| 1420 | s2n(s->d1->handshake_epoch, pseq); */ | ||
| 1421 | |||
| 1422 | memcpy(pseq, &(s->s3->write_sequence[2]), 6); | ||
| 1423 | pseq+=6; | ||
| 1424 | s2n(wr->length,pseq); | ||
| 1425 | |||
| 1426 | /* we should now have | ||
| 1427 | * wr->data pointing to the encrypted data, which is | ||
| 1428 | * wr->length long */ | ||
| 1429 | wr->type=type; /* not needed but helps for debugging */ | ||
| 1430 | wr->length+=DTLS1_RT_HEADER_LENGTH; | ||
| 1431 | |||
| 1432 | #if 0 /* this is now done at the message layer */ | ||
| 1433 | /* buffer the record, making it easy to handle retransmits */ | ||
| 1434 | if ( type == SSL3_RT_HANDSHAKE || type == SSL3_RT_CHANGE_CIPHER_SPEC) | ||
| 1435 | dtls1_buffer_record(s, wr->data, wr->length, | ||
| 1436 | *((PQ_64BIT *)&(s->s3->write_sequence[0]))); | ||
| 1437 | #endif | ||
| 1438 | |||
| 1439 | ssl3_record_sequence_update(&(s->s3->write_sequence[0])); | ||
| 1440 | |||
| 1441 | if (create_empty_fragment) | ||
| 1442 | { | ||
| 1443 | /* we are in a recursive call; | ||
| 1444 | * just return the length, don't write out anything here | ||
| 1445 | */ | ||
| 1446 | return wr->length; | ||
| 1447 | } | ||
| 1448 | |||
| 1449 | /* now let's set up wb */ | ||
| 1450 | wb->left = prefix_len + wr->length; | ||
| 1451 | wb->offset = 0; | ||
| 1452 | |||
| 1453 | /* memorize arguments so that ssl3_write_pending can detect bad write retries later */ | ||
| 1454 | s->s3->wpend_tot=len; | ||
| 1455 | s->s3->wpend_buf=buf; | ||
| 1456 | s->s3->wpend_type=type; | ||
| 1457 | s->s3->wpend_ret=len; | ||
| 1458 | |||
| 1459 | /* we now just need to write the buffer */ | ||
| 1460 | return ssl3_write_pending(s,type,buf,len); | ||
| 1461 | err: | ||
| 1462 | return -1; | ||
| 1463 | } | ||
| 1464 | |||
| 1465 | |||
| 1466 | |||
| 1467 | static int dtls1_record_replay_check(SSL *s, DTLS1_BITMAP *bitmap, | ||
| 1468 | PQ_64BIT *seq_num) | ||
| 1469 | { | ||
| 1470 | #if PQ_64BIT_IS_INTEGER | ||
| 1471 | PQ_64BIT mask = 0x0000000000000001L; | ||
| 1472 | #endif | ||
| 1473 | PQ_64BIT rcd_num, tmp; | ||
| 1474 | |||
| 1475 | pq_64bit_init(&rcd_num); | ||
| 1476 | pq_64bit_init(&tmp); | ||
| 1477 | |||
| 1478 | /* this is the sequence number for the record just read */ | ||
| 1479 | pq_64bit_bin2num(&rcd_num, s->s3->read_sequence, 8); | ||
| 1480 | |||
| 1481 | |||
| 1482 | if (pq_64bit_gt(&rcd_num, &(bitmap->max_seq_num)) || | ||
| 1483 | pq_64bit_eq(&rcd_num, &(bitmap->max_seq_num))) | ||
| 1484 | { | ||
| 1485 | pq_64bit_assign(seq_num, &rcd_num); | ||
| 1486 | pq_64bit_free(&rcd_num); | ||
| 1487 | pq_64bit_free(&tmp); | ||
| 1488 | return 1; /* this record is new */ | ||
| 1489 | } | ||
| 1490 | |||
| 1491 | pq_64bit_sub(&tmp, &(bitmap->max_seq_num), &rcd_num); | ||
| 1492 | |||
| 1493 | if ( pq_64bit_get_word(&tmp) > bitmap->length) | ||
| 1494 | { | ||
| 1495 | pq_64bit_free(&rcd_num); | ||
| 1496 | pq_64bit_free(&tmp); | ||
| 1497 | return 0; /* stale, outside the window */ | ||
| 1498 | } | ||
| 1499 | |||
| 1500 | #if PQ_64BIT_IS_BIGNUM | ||
| 1501 | { | ||
| 1502 | int offset; | ||
| 1503 | pq_64bit_sub(&tmp, &(bitmap->max_seq_num), &rcd_num); | ||
| 1504 | pq_64bit_sub_word(&tmp, 1); | ||
| 1505 | offset = pq_64bit_get_word(&tmp); | ||
| 1506 | if ( pq_64bit_is_bit_set(&(bitmap->map), offset)) | ||
| 1507 | { | ||
| 1508 | pq_64bit_free(&rcd_num); | ||
| 1509 | pq_64bit_free(&tmp); | ||
| 1510 | return 0; | ||
| 1511 | } | ||
| 1512 | } | ||
| 1513 | #else | ||
| 1514 | mask <<= (bitmap->max_seq_num - rcd_num - 1); | ||
| 1515 | if (bitmap->map & mask) | ||
| 1516 | return 0; /* record previously received */ | ||
| 1517 | #endif | ||
| 1518 | |||
| 1519 | pq_64bit_assign(seq_num, &rcd_num); | ||
| 1520 | pq_64bit_free(&rcd_num); | ||
| 1521 | pq_64bit_free(&tmp); | ||
| 1522 | return 1; | ||
| 1523 | } | ||
| 1524 | |||
| 1525 | |||
| 1526 | static void dtls1_record_bitmap_update(SSL *s, DTLS1_BITMAP *bitmap) | ||
| 1527 | { | ||
| 1528 | unsigned int shift; | ||
| 1529 | PQ_64BIT rcd_num; | ||
| 1530 | PQ_64BIT tmp; | ||
| 1531 | PQ_64BIT_CTX *ctx; | ||
| 1532 | |||
| 1533 | pq_64bit_init(&rcd_num); | ||
| 1534 | pq_64bit_init(&tmp); | ||
| 1535 | |||
| 1536 | pq_64bit_bin2num(&rcd_num, s->s3->read_sequence, 8); | ||
| 1537 | |||
| 1538 | /* unfortunate code complexity due to 64-bit manipulation support | ||
| 1539 | * on 32-bit machines */ | ||
| 1540 | if ( pq_64bit_gt(&rcd_num, &(bitmap->max_seq_num)) || | ||
| 1541 | pq_64bit_eq(&rcd_num, &(bitmap->max_seq_num))) | ||
| 1542 | { | ||
| 1543 | pq_64bit_sub(&tmp, &rcd_num, &(bitmap->max_seq_num)); | ||
| 1544 | pq_64bit_add_word(&tmp, 1); | ||
| 1545 | |||
| 1546 | shift = (unsigned int)pq_64bit_get_word(&tmp); | ||
| 1547 | |||
| 1548 | pq_64bit_lshift(&(tmp), &(bitmap->map), shift); | ||
| 1549 | pq_64bit_assign(&(bitmap->map), &tmp); | ||
| 1550 | |||
| 1551 | pq_64bit_set_bit(&(bitmap->map), 0); | ||
| 1552 | pq_64bit_add_word(&rcd_num, 1); | ||
| 1553 | pq_64bit_assign(&(bitmap->max_seq_num), &rcd_num); | ||
| 1554 | |||
| 1555 | pq_64bit_assign_word(&tmp, 1); | ||
| 1556 | pq_64bit_lshift(&tmp, &tmp, bitmap->length); | ||
| 1557 | ctx = pq_64bit_ctx_new(&ctx); | ||
| 1558 | pq_64bit_mod(&(bitmap->map), &(bitmap->map), &tmp, ctx); | ||
| 1559 | pq_64bit_ctx_free(ctx); | ||
| 1560 | } | ||
| 1561 | else | ||
| 1562 | { | ||
| 1563 | pq_64bit_sub(&tmp, &(bitmap->max_seq_num), &rcd_num); | ||
| 1564 | pq_64bit_sub_word(&tmp, 1); | ||
| 1565 | shift = (unsigned int)pq_64bit_get_word(&tmp); | ||
| 1566 | |||
| 1567 | pq_64bit_set_bit(&(bitmap->map), shift); | ||
| 1568 | } | ||
| 1569 | |||
| 1570 | pq_64bit_free(&rcd_num); | ||
| 1571 | pq_64bit_free(&tmp); | ||
| 1572 | } | ||
| 1573 | |||
| 1574 | |||
| 1575 | int dtls1_dispatch_alert(SSL *s) | ||
| 1576 | { | ||
| 1577 | int i,j; | ||
| 1578 | void (*cb)(const SSL *ssl,int type,int val)=NULL; | ||
| 1579 | unsigned char buf[2 + 2 + 3]; /* alert level + alert desc + message seq +frag_off */ | ||
| 1580 | unsigned char *ptr = &buf[0]; | ||
| 1581 | |||
| 1582 | s->s3->alert_dispatch=0; | ||
| 1583 | |||
| 1584 | memset(buf, 0x00, sizeof(buf)); | ||
| 1585 | *ptr++ = s->s3->send_alert[0]; | ||
| 1586 | *ptr++ = s->s3->send_alert[1]; | ||
| 1587 | |||
| 1588 | if (s->s3->send_alert[1] == DTLS1_AD_MISSING_HANDSHAKE_MESSAGE) | ||
| 1589 | { | ||
| 1590 | s2n(s->d1->handshake_read_seq, ptr); | ||
| 1591 | #if 0 | ||
| 1592 | if ( s->d1->r_msg_hdr.frag_off == 0) /* waiting for a new msg */ | ||
| 1593 | |||
| 1594 | else | ||
| 1595 | s2n(s->d1->r_msg_hdr.seq, ptr); /* partial msg read */ | ||
| 1596 | #endif | ||
| 1597 | |||
| 1598 | #if 0 | ||
| 1599 | fprintf(stderr, "s->d1->handshake_read_seq = %d, s->d1->r_msg_hdr.seq = %d\n",s->d1->handshake_read_seq,s->d1->r_msg_hdr.seq); | ||
| 1600 | #endif | ||
| 1601 | l2n3(s->d1->r_msg_hdr.frag_off, ptr); | ||
| 1602 | } | ||
| 1603 | |||
| 1604 | i = do_dtls1_write(s, SSL3_RT_ALERT, &buf[0], sizeof(buf), 0); | ||
| 1605 | if (i <= 0) | ||
| 1606 | { | ||
| 1607 | s->s3->alert_dispatch=1; | ||
| 1608 | /* fprintf( stderr, "not done with alert\n" ); */ | ||
| 1609 | } | ||
| 1610 | else | ||
| 1611 | { | ||
| 1612 | if ( s->s3->send_alert[0] == SSL3_AL_FATAL || | ||
| 1613 | s->s3->send_alert[1] == DTLS1_AD_MISSING_HANDSHAKE_MESSAGE) | ||
| 1614 | (void)BIO_flush(s->wbio); | ||
| 1615 | |||
| 1616 | if (s->msg_callback) | ||
| 1617 | s->msg_callback(1, s->version, SSL3_RT_ALERT, s->s3->send_alert, | ||
| 1618 | 2, s, s->msg_callback_arg); | ||
| 1619 | |||
| 1620 | if (s->info_callback != NULL) | ||
| 1621 | cb=s->info_callback; | ||
| 1622 | else if (s->ctx->info_callback != NULL) | ||
| 1623 | cb=s->ctx->info_callback; | ||
| 1624 | |||
| 1625 | if (cb != NULL) | ||
| 1626 | { | ||
| 1627 | j=(s->s3->send_alert[0]<<8)|s->s3->send_alert[1]; | ||
| 1628 | cb(s,SSL_CB_WRITE_ALERT,j); | ||
| 1629 | } | ||
| 1630 | } | ||
| 1631 | return(i); | ||
| 1632 | } | ||
| 1633 | |||
| 1634 | |||
| 1635 | static DTLS1_BITMAP * | ||
| 1636 | dtls1_get_bitmap(SSL *s, SSL3_RECORD *rr, unsigned int *is_next_epoch) | ||
| 1637 | { | ||
| 1638 | |||
| 1639 | *is_next_epoch = 0; | ||
| 1640 | |||
| 1641 | /* In current epoch, accept HM, CCS, DATA, & ALERT */ | ||
| 1642 | if (rr->epoch == s->d1->r_epoch) | ||
| 1643 | return &s->d1->bitmap; | ||
| 1644 | |||
| 1645 | /* Only HM and ALERT messages can be from the next epoch */ | ||
| 1646 | else if (rr->epoch == (unsigned long)(s->d1->r_epoch + 1) && | ||
| 1647 | (rr->type == SSL3_RT_HANDSHAKE || | ||
| 1648 | rr->type == SSL3_RT_ALERT)) | ||
| 1649 | { | ||
| 1650 | *is_next_epoch = 1; | ||
| 1651 | return &s->d1->next_bitmap; | ||
| 1652 | } | ||
| 1653 | |||
| 1654 | return NULL; | ||
| 1655 | } | ||
| 1656 | |||
| 1657 | #if 0 | ||
| 1658 | static int | ||
| 1659 | dtls1_record_needs_buffering(SSL *s, SSL3_RECORD *rr, unsigned short *priority, | ||
| 1660 | unsigned long *offset) | ||
| 1661 | { | ||
| 1662 | |||
| 1663 | /* alerts are passed up immediately */ | ||
| 1664 | if ( rr->type == SSL3_RT_APPLICATION_DATA || | ||
| 1665 | rr->type == SSL3_RT_ALERT) | ||
| 1666 | return 0; | ||
| 1667 | |||
| 1668 | /* Only need to buffer if a handshake is underway. | ||
| 1669 | * (this implies that Hello Request and Client Hello are passed up | ||
| 1670 | * immediately) */ | ||
| 1671 | if ( SSL_in_init(s)) | ||
| 1672 | { | ||
| 1673 | unsigned char *data = rr->data; | ||
| 1674 | /* need to extract the HM/CCS sequence number here */ | ||
| 1675 | if ( rr->type == SSL3_RT_HANDSHAKE || | ||
| 1676 | rr->type == SSL3_RT_CHANGE_CIPHER_SPEC) | ||
| 1677 | { | ||
| 1678 | unsigned short seq_num; | ||
| 1679 | struct hm_header_st msg_hdr; | ||
| 1680 | struct ccs_header_st ccs_hdr; | ||
| 1681 | |||
| 1682 | if ( rr->type == SSL3_RT_HANDSHAKE) | ||
| 1683 | { | ||
| 1684 | dtls1_get_message_header(data, &msg_hdr); | ||
| 1685 | seq_num = msg_hdr.seq; | ||
| 1686 | *offset = msg_hdr.frag_off; | ||
| 1687 | } | ||
| 1688 | else | ||
| 1689 | { | ||
| 1690 | dtls1_get_ccs_header(data, &ccs_hdr); | ||
| 1691 | seq_num = ccs_hdr.seq; | ||
| 1692 | *offset = 0; | ||
| 1693 | } | ||
| 1694 | |||
| 1695 | /* this is either a record we're waiting for, or a | ||
| 1696 | * retransmit of something we happened to previously | ||
| 1697 | * receive (higher layers will drop the repeat silently */ | ||
| 1698 | if ( seq_num < s->d1->handshake_read_seq) | ||
| 1699 | return 0; | ||
| 1700 | if (rr->type == SSL3_RT_HANDSHAKE && | ||
| 1701 | seq_num == s->d1->handshake_read_seq && | ||
| 1702 | msg_hdr.frag_off < s->d1->r_msg_hdr.frag_off) | ||
| 1703 | return 0; | ||
| 1704 | else if ( seq_num == s->d1->handshake_read_seq && | ||
| 1705 | (rr->type == SSL3_RT_CHANGE_CIPHER_SPEC || | ||
| 1706 | msg_hdr.frag_off == s->d1->r_msg_hdr.frag_off)) | ||
| 1707 | return 0; | ||
| 1708 | else | ||
| 1709 | { | ||
| 1710 | *priority = seq_num; | ||
| 1711 | return 1; | ||
| 1712 | } | ||
| 1713 | } | ||
| 1714 | else /* unknown record type */ | ||
| 1715 | return 0; | ||
| 1716 | } | ||
| 1717 | |||
| 1718 | return 0; | ||
| 1719 | } | ||
| 1720 | #endif | ||
| 1721 | |||
| 1722 | void | ||
| 1723 | dtls1_reset_seq_numbers(SSL *s, int rw) | ||
| 1724 | { | ||
| 1725 | unsigned char *seq; | ||
| 1726 | unsigned int seq_bytes = sizeof(s->s3->read_sequence); | ||
| 1727 | |||
| 1728 | if ( rw & SSL3_CC_READ) | ||
| 1729 | { | ||
| 1730 | seq = s->s3->read_sequence; | ||
| 1731 | s->d1->r_epoch++; | ||
| 1732 | |||
| 1733 | pq_64bit_assign(&(s->d1->bitmap.map), &(s->d1->next_bitmap.map)); | ||
| 1734 | s->d1->bitmap.length = s->d1->next_bitmap.length; | ||
| 1735 | pq_64bit_assign(&(s->d1->bitmap.max_seq_num), | ||
| 1736 | &(s->d1->next_bitmap.max_seq_num)); | ||
| 1737 | |||
| 1738 | pq_64bit_free(&(s->d1->next_bitmap.map)); | ||
| 1739 | pq_64bit_free(&(s->d1->next_bitmap.max_seq_num)); | ||
| 1740 | memset(&(s->d1->next_bitmap), 0x00, sizeof(DTLS1_BITMAP)); | ||
| 1741 | pq_64bit_init(&(s->d1->next_bitmap.map)); | ||
| 1742 | pq_64bit_init(&(s->d1->next_bitmap.max_seq_num)); | ||
| 1743 | } | ||
| 1744 | else | ||
| 1745 | { | ||
| 1746 | seq = s->s3->write_sequence; | ||
| 1747 | s->d1->w_epoch++; | ||
| 1748 | } | ||
| 1749 | |||
| 1750 | memset(seq, 0x00, seq_bytes); | ||
| 1751 | } | ||
| 1752 | |||
| 1753 | #if PQ_64BIT_IS_INTEGER | ||
| 1754 | static PQ_64BIT | ||
| 1755 | bytes_to_long_long(unsigned char *bytes, PQ_64BIT *num) | ||
| 1756 | { | ||
| 1757 | PQ_64BIT _num; | ||
| 1758 | |||
| 1759 | _num = (((PQ_64BIT)bytes[0]) << 56) | | ||
| 1760 | (((PQ_64BIT)bytes[1]) << 48) | | ||
| 1761 | (((PQ_64BIT)bytes[2]) << 40) | | ||
| 1762 | (((PQ_64BIT)bytes[3]) << 32) | | ||
| 1763 | (((PQ_64BIT)bytes[4]) << 24) | | ||
| 1764 | (((PQ_64BIT)bytes[5]) << 16) | | ||
| 1765 | (((PQ_64BIT)bytes[6]) << 8) | | ||
| 1766 | (((PQ_64BIT)bytes[7]) ); | ||
| 1767 | |||
| 1768 | *num = _num ; | ||
| 1769 | return _num; | ||
| 1770 | } | ||
| 1771 | #endif | ||
| 1772 | |||
| 1773 | |||
| 1774 | static void | ||
| 1775 | dtls1_clear_timeouts(SSL *s) | ||
| 1776 | { | ||
| 1777 | memset(&(s->d1->timeout), 0x00, sizeof(struct dtls1_timeout_st)); | ||
| 1778 | } | ||
diff --git a/src/lib/libssl/src/ssl/d1_srvr.c b/src/lib/libssl/src/ssl/d1_srvr.c new file mode 100644 index 0000000000..927b01f3c4 --- /dev/null +++ b/src/lib/libssl/src/ssl/d1_srvr.c | |||
| @@ -0,0 +1,1147 @@ | |||
| 1 | /* ssl/d1_srvr.c */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | ||
| 60 | * All rights reserved. | ||
| 61 | * | ||
| 62 | * This package is an SSL implementation written | ||
| 63 | * by Eric Young (eay@cryptsoft.com). | ||
| 64 | * The implementation was written so as to conform with Netscapes SSL. | ||
| 65 | * | ||
| 66 | * This library is free for commercial and non-commercial use as long as | ||
| 67 | * the following conditions are aheared to. The following conditions | ||
| 68 | * apply to all code found in this distribution, be it the RC4, RSA, | ||
| 69 | * lhash, DES, etc., code; not just the SSL code. The SSL documentation | ||
| 70 | * included with this distribution is covered by the same copyright terms | ||
| 71 | * except that the holder is Tim Hudson (tjh@cryptsoft.com). | ||
| 72 | * | ||
| 73 | * Copyright remains Eric Young's, and as such any Copyright notices in | ||
| 74 | * the code are not to be removed. | ||
| 75 | * If this package is used in a product, Eric Young should be given attribution | ||
| 76 | * as the author of the parts of the library used. | ||
| 77 | * This can be in the form of a textual message at program startup or | ||
| 78 | * in documentation (online or textual) provided with the package. | ||
| 79 | * | ||
| 80 | * Redistribution and use in source and binary forms, with or without | ||
| 81 | * modification, are permitted provided that the following conditions | ||
| 82 | * are met: | ||
| 83 | * 1. Redistributions of source code must retain the copyright | ||
| 84 | * notice, this list of conditions and the following disclaimer. | ||
| 85 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 86 | * notice, this list of conditions and the following disclaimer in the | ||
| 87 | * documentation and/or other materials provided with the distribution. | ||
| 88 | * 3. All advertising materials mentioning features or use of this software | ||
| 89 | * must display the following acknowledgement: | ||
| 90 | * "This product includes cryptographic software written by | ||
| 91 | * Eric Young (eay@cryptsoft.com)" | ||
| 92 | * The word 'cryptographic' can be left out if the rouines from the library | ||
| 93 | * being used are not cryptographic related :-). | ||
| 94 | * 4. If you include any Windows specific code (or a derivative thereof) from | ||
| 95 | * the apps directory (application code) you must include an acknowledgement: | ||
| 96 | * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" | ||
| 97 | * | ||
| 98 | * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND | ||
| 99 | * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 100 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE | ||
| 101 | * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE | ||
| 102 | * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL | ||
| 103 | * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS | ||
| 104 | * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 105 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT | ||
| 106 | * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY | ||
| 107 | * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF | ||
| 108 | * SUCH DAMAGE. | ||
| 109 | * | ||
| 110 | * The licence and distribution terms for any publically available version or | ||
| 111 | * derivative of this code cannot be changed. i.e. this code cannot simply be | ||
| 112 | * copied and put under another distribution licence | ||
| 113 | * [including the GNU Public Licence.] | ||
| 114 | */ | ||
| 115 | |||
| 116 | #include <stdio.h> | ||
| 117 | #include "ssl_locl.h" | ||
| 118 | #include <openssl/buffer.h> | ||
| 119 | #include <openssl/rand.h> | ||
| 120 | #include <openssl/objects.h> | ||
| 121 | #include <openssl/evp.h> | ||
| 122 | #include <openssl/x509.h> | ||
| 123 | #include <openssl/md5.h> | ||
| 124 | #ifndef OPENSSL_NO_DH | ||
| 125 | #include <openssl/dh.h> | ||
| 126 | #endif | ||
| 127 | |||
| 128 | static SSL_METHOD *dtls1_get_server_method(int ver); | ||
| 129 | static int dtls1_send_hello_verify_request(SSL *s); | ||
| 130 | |||
| 131 | static SSL_METHOD *dtls1_get_server_method(int ver) | ||
| 132 | { | ||
| 133 | if (ver == DTLS1_VERSION) | ||
| 134 | return(DTLSv1_server_method()); | ||
| 135 | else | ||
| 136 | return(NULL); | ||
| 137 | } | ||
| 138 | |||
| 139 | IMPLEMENT_dtls1_meth_func(DTLSv1_server_method, | ||
| 140 | dtls1_accept, | ||
| 141 | ssl_undefined_function, | ||
| 142 | dtls1_get_server_method) | ||
| 143 | |||
| 144 | int dtls1_accept(SSL *s) | ||
| 145 | { | ||
| 146 | BUF_MEM *buf; | ||
| 147 | unsigned long l,Time=(unsigned long)time(NULL); | ||
| 148 | void (*cb)(const SSL *ssl,int type,int val)=NULL; | ||
| 149 | long num1; | ||
| 150 | int ret= -1; | ||
| 151 | int new_state,state,skip=0; | ||
| 152 | |||
| 153 | RAND_add(&Time,sizeof(Time),0); | ||
| 154 | ERR_clear_error(); | ||
| 155 | clear_sys_error(); | ||
| 156 | |||
| 157 | if (s->info_callback != NULL) | ||
| 158 | cb=s->info_callback; | ||
| 159 | else if (s->ctx->info_callback != NULL) | ||
| 160 | cb=s->ctx->info_callback; | ||
| 161 | |||
| 162 | /* init things to blank */ | ||
| 163 | s->in_handshake++; | ||
| 164 | if (!SSL_in_init(s) || SSL_in_before(s)) SSL_clear(s); | ||
| 165 | |||
| 166 | if (s->cert == NULL) | ||
| 167 | { | ||
| 168 | SSLerr(SSL_F_DTLS1_ACCEPT,SSL_R_NO_CERTIFICATE_SET); | ||
| 169 | return(-1); | ||
| 170 | } | ||
| 171 | |||
| 172 | for (;;) | ||
| 173 | { | ||
| 174 | state=s->state; | ||
| 175 | |||
| 176 | switch (s->state) | ||
| 177 | { | ||
| 178 | case SSL_ST_RENEGOTIATE: | ||
| 179 | s->new_session=1; | ||
| 180 | /* s->state=SSL_ST_ACCEPT; */ | ||
| 181 | |||
| 182 | case SSL_ST_BEFORE: | ||
| 183 | case SSL_ST_ACCEPT: | ||
| 184 | case SSL_ST_BEFORE|SSL_ST_ACCEPT: | ||
| 185 | case SSL_ST_OK|SSL_ST_ACCEPT: | ||
| 186 | |||
| 187 | s->server=1; | ||
| 188 | if (cb != NULL) cb(s,SSL_CB_HANDSHAKE_START,1); | ||
| 189 | |||
| 190 | if ((s->version & 0xff00) != (DTLS1_VERSION & 0xff00)) | ||
| 191 | { | ||
| 192 | SSLerr(SSL_F_DTLS1_ACCEPT, ERR_R_INTERNAL_ERROR); | ||
| 193 | return -1; | ||
| 194 | } | ||
| 195 | s->type=SSL_ST_ACCEPT; | ||
| 196 | |||
| 197 | if (s->init_buf == NULL) | ||
| 198 | { | ||
| 199 | if ((buf=BUF_MEM_new()) == NULL) | ||
| 200 | { | ||
| 201 | ret= -1; | ||
| 202 | goto end; | ||
| 203 | } | ||
| 204 | if (!BUF_MEM_grow(buf,SSL3_RT_MAX_PLAIN_LENGTH)) | ||
| 205 | { | ||
| 206 | ret= -1; | ||
| 207 | goto end; | ||
| 208 | } | ||
| 209 | s->init_buf=buf; | ||
| 210 | } | ||
| 211 | |||
| 212 | if (!ssl3_setup_buffers(s)) | ||
| 213 | { | ||
| 214 | ret= -1; | ||
| 215 | goto end; | ||
| 216 | } | ||
| 217 | |||
| 218 | s->init_num=0; | ||
| 219 | |||
| 220 | if (s->state != SSL_ST_RENEGOTIATE) | ||
| 221 | { | ||
| 222 | /* Ok, we now need to push on a buffering BIO so that | ||
| 223 | * the output is sent in a way that TCP likes :-) | ||
| 224 | */ | ||
| 225 | if (!ssl_init_wbio_buffer(s,1)) { ret= -1; goto end; } | ||
| 226 | |||
| 227 | ssl3_init_finished_mac(s); | ||
| 228 | s->state=SSL3_ST_SR_CLNT_HELLO_A; | ||
| 229 | s->ctx->stats.sess_accept++; | ||
| 230 | } | ||
| 231 | else | ||
| 232 | { | ||
| 233 | /* s->state == SSL_ST_RENEGOTIATE, | ||
| 234 | * we will just send a HelloRequest */ | ||
| 235 | s->ctx->stats.sess_accept_renegotiate++; | ||
| 236 | s->state=SSL3_ST_SW_HELLO_REQ_A; | ||
| 237 | } | ||
| 238 | |||
| 239 | if ( (SSL_get_options(s) & SSL_OP_COOKIE_EXCHANGE)) | ||
| 240 | s->d1->send_cookie = 1; | ||
| 241 | else | ||
| 242 | s->d1->send_cookie = 0; | ||
| 243 | |||
| 244 | break; | ||
| 245 | |||
| 246 | case SSL3_ST_SW_HELLO_REQ_A: | ||
| 247 | case SSL3_ST_SW_HELLO_REQ_B: | ||
| 248 | |||
| 249 | s->shutdown=0; | ||
| 250 | ret=dtls1_send_hello_request(s); | ||
| 251 | if (ret <= 0) goto end; | ||
| 252 | s->s3->tmp.next_state=SSL3_ST_SW_HELLO_REQ_C; | ||
| 253 | s->state=SSL3_ST_SW_FLUSH; | ||
| 254 | s->init_num=0; | ||
| 255 | |||
| 256 | ssl3_init_finished_mac(s); | ||
| 257 | break; | ||
| 258 | |||
| 259 | case SSL3_ST_SW_HELLO_REQ_C: | ||
| 260 | s->state=SSL_ST_OK; | ||
| 261 | break; | ||
| 262 | |||
| 263 | case SSL3_ST_SR_CLNT_HELLO_A: | ||
| 264 | case SSL3_ST_SR_CLNT_HELLO_B: | ||
| 265 | case SSL3_ST_SR_CLNT_HELLO_C: | ||
| 266 | |||
| 267 | s->shutdown=0; | ||
| 268 | ret=ssl3_get_client_hello(s); | ||
| 269 | if (ret <= 0) goto end; | ||
| 270 | s->new_session = 2; | ||
| 271 | |||
| 272 | if ( s->d1->send_cookie) | ||
| 273 | s->state = DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A; | ||
| 274 | else | ||
| 275 | s->state = SSL3_ST_SW_SRVR_HELLO_A; | ||
| 276 | |||
| 277 | s->init_num=0; | ||
| 278 | break; | ||
| 279 | |||
| 280 | case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A: | ||
| 281 | case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B: | ||
| 282 | |||
| 283 | ret = dtls1_send_hello_verify_request(s); | ||
| 284 | if ( ret <= 0) goto end; | ||
| 285 | s->d1->send_cookie = 0; | ||
| 286 | s->state=SSL3_ST_SW_FLUSH; | ||
| 287 | s->s3->tmp.next_state=SSL3_ST_SR_CLNT_HELLO_A; | ||
| 288 | |||
| 289 | /* HelloVerifyRequests resets Finished MAC */ | ||
| 290 | if (s->client_version != DTLS1_BAD_VER) | ||
| 291 | ssl3_init_finished_mac(s); | ||
| 292 | break; | ||
| 293 | |||
| 294 | case SSL3_ST_SW_SRVR_HELLO_A: | ||
| 295 | case SSL3_ST_SW_SRVR_HELLO_B: | ||
| 296 | ret=dtls1_send_server_hello(s); | ||
| 297 | if (ret <= 0) goto end; | ||
| 298 | |||
| 299 | if (s->hit) | ||
| 300 | s->state=SSL3_ST_SW_CHANGE_A; | ||
| 301 | else | ||
| 302 | s->state=SSL3_ST_SW_CERT_A; | ||
| 303 | s->init_num=0; | ||
| 304 | break; | ||
| 305 | |||
| 306 | case SSL3_ST_SW_CERT_A: | ||
| 307 | case SSL3_ST_SW_CERT_B: | ||
| 308 | /* Check if it is anon DH */ | ||
| 309 | if (!(s->s3->tmp.new_cipher->algorithms & SSL_aNULL)) | ||
| 310 | { | ||
| 311 | ret=dtls1_send_server_certificate(s); | ||
| 312 | if (ret <= 0) goto end; | ||
| 313 | } | ||
| 314 | else | ||
| 315 | skip=1; | ||
| 316 | s->state=SSL3_ST_SW_KEY_EXCH_A; | ||
| 317 | s->init_num=0; | ||
| 318 | break; | ||
| 319 | |||
| 320 | case SSL3_ST_SW_KEY_EXCH_A: | ||
| 321 | case SSL3_ST_SW_KEY_EXCH_B: | ||
| 322 | l=s->s3->tmp.new_cipher->algorithms; | ||
| 323 | |||
| 324 | /* clear this, it may get reset by | ||
| 325 | * send_server_key_exchange */ | ||
| 326 | if ((s->options & SSL_OP_EPHEMERAL_RSA) | ||
| 327 | #ifndef OPENSSL_NO_KRB5 | ||
| 328 | && !(l & SSL_KRB5) | ||
| 329 | #endif /* OPENSSL_NO_KRB5 */ | ||
| 330 | ) | ||
| 331 | /* option SSL_OP_EPHEMERAL_RSA sends temporary RSA key | ||
| 332 | * even when forbidden by protocol specs | ||
| 333 | * (handshake may fail as clients are not required to | ||
| 334 | * be able to handle this) */ | ||
| 335 | s->s3->tmp.use_rsa_tmp=1; | ||
| 336 | else | ||
| 337 | s->s3->tmp.use_rsa_tmp=0; | ||
| 338 | |||
| 339 | /* only send if a DH key exchange, fortezza or | ||
| 340 | * RSA but we have a sign only certificate */ | ||
| 341 | if (s->s3->tmp.use_rsa_tmp | ||
| 342 | || (l & (SSL_DH|SSL_kFZA)) | ||
| 343 | || ((l & SSL_kRSA) | ||
| 344 | && (s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey == NULL | ||
| 345 | || (SSL_C_IS_EXPORT(s->s3->tmp.new_cipher) | ||
| 346 | && EVP_PKEY_size(s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey)*8 > SSL_C_EXPORT_PKEYLENGTH(s->s3->tmp.new_cipher) | ||
| 347 | ) | ||
| 348 | ) | ||
| 349 | ) | ||
| 350 | ) | ||
| 351 | { | ||
| 352 | ret=dtls1_send_server_key_exchange(s); | ||
| 353 | if (ret <= 0) goto end; | ||
| 354 | } | ||
| 355 | else | ||
| 356 | skip=1; | ||
| 357 | |||
| 358 | s->state=SSL3_ST_SW_CERT_REQ_A; | ||
| 359 | s->init_num=0; | ||
| 360 | break; | ||
| 361 | |||
| 362 | case SSL3_ST_SW_CERT_REQ_A: | ||
| 363 | case SSL3_ST_SW_CERT_REQ_B: | ||
| 364 | if (/* don't request cert unless asked for it: */ | ||
| 365 | !(s->verify_mode & SSL_VERIFY_PEER) || | ||
| 366 | /* if SSL_VERIFY_CLIENT_ONCE is set, | ||
| 367 | * don't request cert during re-negotiation: */ | ||
| 368 | ((s->session->peer != NULL) && | ||
| 369 | (s->verify_mode & SSL_VERIFY_CLIENT_ONCE)) || | ||
| 370 | /* never request cert in anonymous ciphersuites | ||
| 371 | * (see section "Certificate request" in SSL 3 drafts | ||
| 372 | * and in RFC 2246): */ | ||
| 373 | ((s->s3->tmp.new_cipher->algorithms & SSL_aNULL) && | ||
| 374 | /* ... except when the application insists on verification | ||
| 375 | * (against the specs, but s3_clnt.c accepts this for SSL 3) */ | ||
| 376 | !(s->verify_mode & SSL_VERIFY_FAIL_IF_NO_PEER_CERT)) || | ||
| 377 | /* never request cert in Kerberos ciphersuites */ | ||
| 378 | (s->s3->tmp.new_cipher->algorithms & SSL_aKRB5)) | ||
| 379 | { | ||
| 380 | /* no cert request */ | ||
| 381 | skip=1; | ||
| 382 | s->s3->tmp.cert_request=0; | ||
| 383 | s->state=SSL3_ST_SW_SRVR_DONE_A; | ||
| 384 | } | ||
| 385 | else | ||
| 386 | { | ||
| 387 | s->s3->tmp.cert_request=1; | ||
| 388 | ret=dtls1_send_certificate_request(s); | ||
| 389 | if (ret <= 0) goto end; | ||
| 390 | #ifndef NETSCAPE_HANG_BUG | ||
| 391 | s->state=SSL3_ST_SW_SRVR_DONE_A; | ||
| 392 | #else | ||
| 393 | s->state=SSL3_ST_SW_FLUSH; | ||
| 394 | s->s3->tmp.next_state=SSL3_ST_SR_CERT_A; | ||
| 395 | #endif | ||
| 396 | s->init_num=0; | ||
| 397 | } | ||
| 398 | break; | ||
| 399 | |||
| 400 | case SSL3_ST_SW_SRVR_DONE_A: | ||
| 401 | case SSL3_ST_SW_SRVR_DONE_B: | ||
| 402 | ret=dtls1_send_server_done(s); | ||
| 403 | if (ret <= 0) goto end; | ||
| 404 | s->s3->tmp.next_state=SSL3_ST_SR_CERT_A; | ||
| 405 | s->state=SSL3_ST_SW_FLUSH; | ||
| 406 | s->init_num=0; | ||
| 407 | break; | ||
| 408 | |||
| 409 | case SSL3_ST_SW_FLUSH: | ||
| 410 | /* number of bytes to be flushed */ | ||
| 411 | num1=BIO_ctrl(s->wbio,BIO_CTRL_INFO,0,NULL); | ||
| 412 | if (num1 > 0) | ||
| 413 | { | ||
| 414 | s->rwstate=SSL_WRITING; | ||
| 415 | num1=BIO_flush(s->wbio); | ||
| 416 | if (num1 <= 0) { ret= -1; goto end; } | ||
| 417 | s->rwstate=SSL_NOTHING; | ||
| 418 | } | ||
| 419 | |||
| 420 | s->state=s->s3->tmp.next_state; | ||
| 421 | break; | ||
| 422 | |||
| 423 | case SSL3_ST_SR_CERT_A: | ||
| 424 | case SSL3_ST_SR_CERT_B: | ||
| 425 | /* Check for second client hello (MS SGC) */ | ||
| 426 | ret = ssl3_check_client_hello(s); | ||
| 427 | if (ret <= 0) | ||
| 428 | goto end; | ||
| 429 | if (ret == 2) | ||
| 430 | s->state = SSL3_ST_SR_CLNT_HELLO_C; | ||
| 431 | else { | ||
| 432 | /* could be sent for a DH cert, even if we | ||
| 433 | * have not asked for it :-) */ | ||
| 434 | ret=ssl3_get_client_certificate(s); | ||
| 435 | if (ret <= 0) goto end; | ||
| 436 | s->init_num=0; | ||
| 437 | s->state=SSL3_ST_SR_KEY_EXCH_A; | ||
| 438 | } | ||
| 439 | break; | ||
| 440 | |||
| 441 | case SSL3_ST_SR_KEY_EXCH_A: | ||
| 442 | case SSL3_ST_SR_KEY_EXCH_B: | ||
| 443 | ret=ssl3_get_client_key_exchange(s); | ||
| 444 | if (ret <= 0) goto end; | ||
| 445 | s->state=SSL3_ST_SR_CERT_VRFY_A; | ||
| 446 | s->init_num=0; | ||
| 447 | |||
| 448 | /* We need to get hashes here so if there is | ||
| 449 | * a client cert, it can be verified */ | ||
| 450 | s->method->ssl3_enc->cert_verify_mac(s, | ||
| 451 | &(s->s3->finish_dgst1), | ||
| 452 | &(s->s3->tmp.cert_verify_md[0])); | ||
| 453 | s->method->ssl3_enc->cert_verify_mac(s, | ||
| 454 | &(s->s3->finish_dgst2), | ||
| 455 | &(s->s3->tmp.cert_verify_md[MD5_DIGEST_LENGTH])); | ||
| 456 | |||
| 457 | break; | ||
| 458 | |||
| 459 | case SSL3_ST_SR_CERT_VRFY_A: | ||
| 460 | case SSL3_ST_SR_CERT_VRFY_B: | ||
| 461 | |||
| 462 | /* we should decide if we expected this one */ | ||
| 463 | ret=ssl3_get_cert_verify(s); | ||
| 464 | if (ret <= 0) goto end; | ||
| 465 | |||
| 466 | s->state=SSL3_ST_SR_FINISHED_A; | ||
| 467 | s->init_num=0; | ||
| 468 | break; | ||
| 469 | |||
| 470 | case SSL3_ST_SR_FINISHED_A: | ||
| 471 | case SSL3_ST_SR_FINISHED_B: | ||
| 472 | ret=ssl3_get_finished(s,SSL3_ST_SR_FINISHED_A, | ||
| 473 | SSL3_ST_SR_FINISHED_B); | ||
| 474 | if (ret <= 0) goto end; | ||
| 475 | if (s->hit) | ||
| 476 | s->state=SSL_ST_OK; | ||
| 477 | else | ||
| 478 | s->state=SSL3_ST_SW_CHANGE_A; | ||
| 479 | s->init_num=0; | ||
| 480 | break; | ||
| 481 | |||
| 482 | case SSL3_ST_SW_CHANGE_A: | ||
| 483 | case SSL3_ST_SW_CHANGE_B: | ||
| 484 | |||
| 485 | s->session->cipher=s->s3->tmp.new_cipher; | ||
| 486 | if (!s->method->ssl3_enc->setup_key_block(s)) | ||
| 487 | { ret= -1; goto end; } | ||
| 488 | |||
| 489 | ret=dtls1_send_change_cipher_spec(s, | ||
| 490 | SSL3_ST_SW_CHANGE_A,SSL3_ST_SW_CHANGE_B); | ||
| 491 | |||
| 492 | if (ret <= 0) goto end; | ||
| 493 | s->state=SSL3_ST_SW_FINISHED_A; | ||
| 494 | s->init_num=0; | ||
| 495 | |||
| 496 | if (!s->method->ssl3_enc->change_cipher_state(s, | ||
| 497 | SSL3_CHANGE_CIPHER_SERVER_WRITE)) | ||
| 498 | { | ||
| 499 | ret= -1; | ||
| 500 | goto end; | ||
| 501 | } | ||
| 502 | |||
| 503 | dtls1_reset_seq_numbers(s, SSL3_CC_WRITE); | ||
| 504 | break; | ||
| 505 | |||
| 506 | case SSL3_ST_SW_FINISHED_A: | ||
| 507 | case SSL3_ST_SW_FINISHED_B: | ||
| 508 | ret=dtls1_send_finished(s, | ||
| 509 | SSL3_ST_SW_FINISHED_A,SSL3_ST_SW_FINISHED_B, | ||
| 510 | s->method->ssl3_enc->server_finished_label, | ||
| 511 | s->method->ssl3_enc->server_finished_label_len); | ||
| 512 | if (ret <= 0) goto end; | ||
| 513 | s->state=SSL3_ST_SW_FLUSH; | ||
| 514 | if (s->hit) | ||
| 515 | s->s3->tmp.next_state=SSL3_ST_SR_FINISHED_A; | ||
| 516 | else | ||
| 517 | s->s3->tmp.next_state=SSL_ST_OK; | ||
| 518 | s->init_num=0; | ||
| 519 | break; | ||
| 520 | |||
| 521 | case SSL_ST_OK: | ||
| 522 | /* clean a few things up */ | ||
| 523 | ssl3_cleanup_key_block(s); | ||
| 524 | |||
| 525 | #if 0 | ||
| 526 | BUF_MEM_free(s->init_buf); | ||
| 527 | s->init_buf=NULL; | ||
| 528 | #endif | ||
| 529 | |||
| 530 | /* remove buffering on output */ | ||
| 531 | ssl_free_wbio_buffer(s); | ||
| 532 | |||
| 533 | s->init_num=0; | ||
| 534 | |||
| 535 | if (s->new_session == 2) /* skipped if we just sent a HelloRequest */ | ||
| 536 | { | ||
| 537 | /* actually not necessarily a 'new' session unless | ||
| 538 | * SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION is set */ | ||
| 539 | |||
| 540 | s->new_session=0; | ||
| 541 | |||
| 542 | ssl_update_cache(s,SSL_SESS_CACHE_SERVER); | ||
| 543 | |||
| 544 | s->ctx->stats.sess_accept_good++; | ||
| 545 | /* s->server=1; */ | ||
| 546 | s->handshake_func=dtls1_accept; | ||
| 547 | |||
| 548 | if (cb != NULL) cb(s,SSL_CB_HANDSHAKE_DONE,1); | ||
| 549 | } | ||
| 550 | |||
| 551 | ret = 1; | ||
| 552 | |||
| 553 | /* done handshaking, next message is client hello */ | ||
| 554 | s->d1->handshake_read_seq = 0; | ||
| 555 | /* next message is server hello */ | ||
| 556 | s->d1->handshake_write_seq = 0; | ||
| 557 | goto end; | ||
| 558 | /* break; */ | ||
| 559 | |||
| 560 | default: | ||
| 561 | SSLerr(SSL_F_DTLS1_ACCEPT,SSL_R_UNKNOWN_STATE); | ||
| 562 | ret= -1; | ||
| 563 | goto end; | ||
| 564 | /* break; */ | ||
| 565 | } | ||
| 566 | |||
| 567 | if (!s->s3->tmp.reuse_message && !skip) | ||
| 568 | { | ||
| 569 | if (s->debug) | ||
| 570 | { | ||
| 571 | if ((ret=BIO_flush(s->wbio)) <= 0) | ||
| 572 | goto end; | ||
| 573 | } | ||
| 574 | |||
| 575 | |||
| 576 | if ((cb != NULL) && (s->state != state)) | ||
| 577 | { | ||
| 578 | new_state=s->state; | ||
| 579 | s->state=state; | ||
| 580 | cb(s,SSL_CB_ACCEPT_LOOP,1); | ||
| 581 | s->state=new_state; | ||
| 582 | } | ||
| 583 | } | ||
| 584 | skip=0; | ||
| 585 | } | ||
| 586 | end: | ||
| 587 | /* BIO_flush(s->wbio); */ | ||
| 588 | |||
| 589 | s->in_handshake--; | ||
| 590 | if (cb != NULL) | ||
| 591 | cb(s,SSL_CB_ACCEPT_EXIT,ret); | ||
| 592 | return(ret); | ||
| 593 | } | ||
| 594 | |||
| 595 | int dtls1_send_hello_request(SSL *s) | ||
| 596 | { | ||
| 597 | unsigned char *p; | ||
| 598 | |||
| 599 | if (s->state == SSL3_ST_SW_HELLO_REQ_A) | ||
| 600 | { | ||
| 601 | p=(unsigned char *)s->init_buf->data; | ||
| 602 | p = dtls1_set_message_header(s, p, SSL3_MT_HELLO_REQUEST, 0, 0, 0); | ||
| 603 | |||
| 604 | s->state=SSL3_ST_SW_HELLO_REQ_B; | ||
| 605 | /* number of bytes to write */ | ||
| 606 | s->init_num=DTLS1_HM_HEADER_LENGTH; | ||
| 607 | s->init_off=0; | ||
| 608 | |||
| 609 | /* no need to buffer this message, since there are no retransmit | ||
| 610 | * requests for it */ | ||
| 611 | } | ||
| 612 | |||
| 613 | /* SSL3_ST_SW_HELLO_REQ_B */ | ||
| 614 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 615 | } | ||
| 616 | |||
| 617 | int dtls1_send_hello_verify_request(SSL *s) | ||
| 618 | { | ||
| 619 | unsigned int msg_len; | ||
| 620 | unsigned char *msg, *buf, *p; | ||
| 621 | |||
| 622 | if (s->state == DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A) | ||
| 623 | { | ||
| 624 | buf = (unsigned char *)s->init_buf->data; | ||
| 625 | |||
| 626 | msg = p = &(buf[DTLS1_HM_HEADER_LENGTH]); | ||
| 627 | if (s->client_version == DTLS1_BAD_VER) | ||
| 628 | *(p++) = DTLS1_BAD_VER>>8, | ||
| 629 | *(p++) = DTLS1_BAD_VER&0xff; | ||
| 630 | else | ||
| 631 | *(p++) = s->version >> 8, | ||
| 632 | *(p++) = s->version & 0xFF; | ||
| 633 | |||
| 634 | if (s->ctx->app_gen_cookie_cb != NULL && | ||
| 635 | s->ctx->app_gen_cookie_cb(s, s->d1->cookie, | ||
| 636 | &(s->d1->cookie_len)) == 0) | ||
| 637 | { | ||
| 638 | SSLerr(SSL_F_DTLS1_SEND_HELLO_VERIFY_REQUEST,ERR_R_INTERNAL_ERROR); | ||
| 639 | return 0; | ||
| 640 | } | ||
| 641 | /* else the cookie is assumed to have | ||
| 642 | * been initialized by the application */ | ||
| 643 | |||
| 644 | *(p++) = (unsigned char) s->d1->cookie_len; | ||
| 645 | memcpy(p, s->d1->cookie, s->d1->cookie_len); | ||
| 646 | p += s->d1->cookie_len; | ||
| 647 | msg_len = p - msg; | ||
| 648 | |||
| 649 | dtls1_set_message_header(s, buf, | ||
| 650 | DTLS1_MT_HELLO_VERIFY_REQUEST, msg_len, 0, msg_len); | ||
| 651 | |||
| 652 | s->state=DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B; | ||
| 653 | /* number of bytes to write */ | ||
| 654 | s->init_num=p-buf; | ||
| 655 | s->init_off=0; | ||
| 656 | |||
| 657 | /* buffer the message to handle re-xmits */ | ||
| 658 | dtls1_buffer_message(s, 0); | ||
| 659 | } | ||
| 660 | |||
| 661 | /* s->state = DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B */ | ||
| 662 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 663 | } | ||
| 664 | |||
| 665 | int dtls1_send_server_hello(SSL *s) | ||
| 666 | { | ||
| 667 | unsigned char *buf; | ||
| 668 | unsigned char *p,*d; | ||
| 669 | int i; | ||
| 670 | unsigned int sl; | ||
| 671 | unsigned long l,Time; | ||
| 672 | |||
| 673 | if (s->state == SSL3_ST_SW_SRVR_HELLO_A) | ||
| 674 | { | ||
| 675 | buf=(unsigned char *)s->init_buf->data; | ||
| 676 | p=s->s3->server_random; | ||
| 677 | Time=(unsigned long)time(NULL); /* Time */ | ||
| 678 | l2n(Time,p); | ||
| 679 | RAND_pseudo_bytes(p,SSL3_RANDOM_SIZE-sizeof(Time)); | ||
| 680 | /* Do the message type and length last */ | ||
| 681 | d=p= &(buf[DTLS1_HM_HEADER_LENGTH]); | ||
| 682 | |||
| 683 | if (s->client_version == DTLS1_BAD_VER) | ||
| 684 | *(p++)=DTLS1_BAD_VER>>8, | ||
| 685 | *(p++)=DTLS1_BAD_VER&0xff; | ||
| 686 | else | ||
| 687 | *(p++)=s->version>>8, | ||
| 688 | *(p++)=s->version&0xff; | ||
| 689 | |||
| 690 | /* Random stuff */ | ||
| 691 | memcpy(p,s->s3->server_random,SSL3_RANDOM_SIZE); | ||
| 692 | p+=SSL3_RANDOM_SIZE; | ||
| 693 | |||
| 694 | /* now in theory we have 3 options to sending back the | ||
| 695 | * session id. If it is a re-use, we send back the | ||
| 696 | * old session-id, if it is a new session, we send | ||
| 697 | * back the new session-id or we send back a 0 length | ||
| 698 | * session-id if we want it to be single use. | ||
| 699 | * Currently I will not implement the '0' length session-id | ||
| 700 | * 12-Jan-98 - I'll now support the '0' length stuff. | ||
| 701 | */ | ||
| 702 | if (!(s->ctx->session_cache_mode & SSL_SESS_CACHE_SERVER)) | ||
| 703 | s->session->session_id_length=0; | ||
| 704 | |||
| 705 | sl=s->session->session_id_length; | ||
| 706 | if (sl > sizeof s->session->session_id) | ||
| 707 | { | ||
| 708 | SSLerr(SSL_F_DTLS1_SEND_SERVER_HELLO, ERR_R_INTERNAL_ERROR); | ||
| 709 | return -1; | ||
| 710 | } | ||
| 711 | *(p++)=sl; | ||
| 712 | memcpy(p,s->session->session_id,sl); | ||
| 713 | p+=sl; | ||
| 714 | |||
| 715 | /* put the cipher */ | ||
| 716 | i=ssl3_put_cipher_by_char(s->s3->tmp.new_cipher,p); | ||
| 717 | p+=i; | ||
| 718 | |||
| 719 | /* put the compression method */ | ||
| 720 | #ifdef OPENSSL_NO_COMP | ||
| 721 | *(p++)=0; | ||
| 722 | #else | ||
| 723 | if (s->s3->tmp.new_compression == NULL) | ||
| 724 | *(p++)=0; | ||
| 725 | else | ||
| 726 | *(p++)=s->s3->tmp.new_compression->id; | ||
| 727 | #endif | ||
| 728 | |||
| 729 | /* do the header */ | ||
| 730 | l=(p-d); | ||
| 731 | d=buf; | ||
| 732 | |||
| 733 | d = dtls1_set_message_header(s, d, SSL3_MT_SERVER_HELLO, l, 0, l); | ||
| 734 | |||
| 735 | s->state=SSL3_ST_CW_CLNT_HELLO_B; | ||
| 736 | /* number of bytes to write */ | ||
| 737 | s->init_num=p-buf; | ||
| 738 | s->init_off=0; | ||
| 739 | |||
| 740 | /* buffer the message to handle re-xmits */ | ||
| 741 | dtls1_buffer_message(s, 0); | ||
| 742 | } | ||
| 743 | |||
| 744 | /* SSL3_ST_CW_CLNT_HELLO_B */ | ||
| 745 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 746 | } | ||
| 747 | |||
| 748 | int dtls1_send_server_done(SSL *s) | ||
| 749 | { | ||
| 750 | unsigned char *p; | ||
| 751 | |||
| 752 | if (s->state == SSL3_ST_SW_SRVR_DONE_A) | ||
| 753 | { | ||
| 754 | p=(unsigned char *)s->init_buf->data; | ||
| 755 | |||
| 756 | /* do the header */ | ||
| 757 | p = dtls1_set_message_header(s, p, SSL3_MT_SERVER_DONE, 0, 0, 0); | ||
| 758 | |||
| 759 | s->state=SSL3_ST_SW_SRVR_DONE_B; | ||
| 760 | /* number of bytes to write */ | ||
| 761 | s->init_num=DTLS1_HM_HEADER_LENGTH; | ||
| 762 | s->init_off=0; | ||
| 763 | |||
| 764 | /* buffer the message to handle re-xmits */ | ||
| 765 | dtls1_buffer_message(s, 0); | ||
| 766 | } | ||
| 767 | |||
| 768 | /* SSL3_ST_CW_CLNT_HELLO_B */ | ||
| 769 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 770 | } | ||
| 771 | |||
| 772 | int dtls1_send_server_key_exchange(SSL *s) | ||
| 773 | { | ||
| 774 | #ifndef OPENSSL_NO_RSA | ||
| 775 | unsigned char *q; | ||
| 776 | int j,num; | ||
| 777 | RSA *rsa; | ||
| 778 | unsigned char md_buf[MD5_DIGEST_LENGTH+SHA_DIGEST_LENGTH]; | ||
| 779 | unsigned int u; | ||
| 780 | #endif | ||
| 781 | #ifndef OPENSSL_NO_DH | ||
| 782 | DH *dh=NULL,*dhp; | ||
| 783 | #endif | ||
| 784 | EVP_PKEY *pkey; | ||
| 785 | unsigned char *p,*d; | ||
| 786 | int al,i; | ||
| 787 | unsigned long type; | ||
| 788 | int n; | ||
| 789 | CERT *cert; | ||
| 790 | BIGNUM *r[4]; | ||
| 791 | int nr[4],kn; | ||
| 792 | BUF_MEM *buf; | ||
| 793 | EVP_MD_CTX md_ctx; | ||
| 794 | |||
| 795 | EVP_MD_CTX_init(&md_ctx); | ||
| 796 | if (s->state == SSL3_ST_SW_KEY_EXCH_A) | ||
| 797 | { | ||
| 798 | type=s->s3->tmp.new_cipher->algorithms & SSL_MKEY_MASK; | ||
| 799 | cert=s->cert; | ||
| 800 | |||
| 801 | buf=s->init_buf; | ||
| 802 | |||
| 803 | r[0]=r[1]=r[2]=r[3]=NULL; | ||
| 804 | n=0; | ||
| 805 | #ifndef OPENSSL_NO_RSA | ||
| 806 | if (type & SSL_kRSA) | ||
| 807 | { | ||
| 808 | rsa=cert->rsa_tmp; | ||
| 809 | if ((rsa == NULL) && (s->cert->rsa_tmp_cb != NULL)) | ||
| 810 | { | ||
| 811 | rsa=s->cert->rsa_tmp_cb(s, | ||
| 812 | SSL_C_IS_EXPORT(s->s3->tmp.new_cipher), | ||
| 813 | SSL_C_EXPORT_PKEYLENGTH(s->s3->tmp.new_cipher)); | ||
| 814 | if(rsa == NULL) | ||
| 815 | { | ||
| 816 | al=SSL_AD_HANDSHAKE_FAILURE; | ||
| 817 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,SSL_R_ERROR_GENERATING_TMP_RSA_KEY); | ||
| 818 | goto f_err; | ||
| 819 | } | ||
| 820 | RSA_up_ref(rsa); | ||
| 821 | cert->rsa_tmp=rsa; | ||
| 822 | } | ||
| 823 | if (rsa == NULL) | ||
| 824 | { | ||
| 825 | al=SSL_AD_HANDSHAKE_FAILURE; | ||
| 826 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,SSL_R_MISSING_TMP_RSA_KEY); | ||
| 827 | goto f_err; | ||
| 828 | } | ||
| 829 | r[0]=rsa->n; | ||
| 830 | r[1]=rsa->e; | ||
| 831 | s->s3->tmp.use_rsa_tmp=1; | ||
| 832 | } | ||
| 833 | else | ||
| 834 | #endif | ||
| 835 | #ifndef OPENSSL_NO_DH | ||
| 836 | if (type & SSL_kEDH) | ||
| 837 | { | ||
| 838 | dhp=cert->dh_tmp; | ||
| 839 | if ((dhp == NULL) && (s->cert->dh_tmp_cb != NULL)) | ||
| 840 | dhp=s->cert->dh_tmp_cb(s, | ||
| 841 | SSL_C_IS_EXPORT(s->s3->tmp.new_cipher), | ||
| 842 | SSL_C_EXPORT_PKEYLENGTH(s->s3->tmp.new_cipher)); | ||
| 843 | if (dhp == NULL) | ||
| 844 | { | ||
| 845 | al=SSL_AD_HANDSHAKE_FAILURE; | ||
| 846 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,SSL_R_MISSING_TMP_DH_KEY); | ||
| 847 | goto f_err; | ||
| 848 | } | ||
| 849 | |||
| 850 | if (s->s3->tmp.dh != NULL) | ||
| 851 | { | ||
| 852 | DH_free(dh); | ||
| 853 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE, ERR_R_INTERNAL_ERROR); | ||
| 854 | goto err; | ||
| 855 | } | ||
| 856 | |||
| 857 | if ((dh=DHparams_dup(dhp)) == NULL) | ||
| 858 | { | ||
| 859 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,ERR_R_DH_LIB); | ||
| 860 | goto err; | ||
| 861 | } | ||
| 862 | |||
| 863 | s->s3->tmp.dh=dh; | ||
| 864 | if ((dhp->pub_key == NULL || | ||
| 865 | dhp->priv_key == NULL || | ||
| 866 | (s->options & SSL_OP_SINGLE_DH_USE))) | ||
| 867 | { | ||
| 868 | if(!DH_generate_key(dh)) | ||
| 869 | { | ||
| 870 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE, | ||
| 871 | ERR_R_DH_LIB); | ||
| 872 | goto err; | ||
| 873 | } | ||
| 874 | } | ||
| 875 | else | ||
| 876 | { | ||
| 877 | dh->pub_key=BN_dup(dhp->pub_key); | ||
| 878 | dh->priv_key=BN_dup(dhp->priv_key); | ||
| 879 | if ((dh->pub_key == NULL) || | ||
| 880 | (dh->priv_key == NULL)) | ||
| 881 | { | ||
| 882 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,ERR_R_DH_LIB); | ||
| 883 | goto err; | ||
| 884 | } | ||
| 885 | } | ||
| 886 | r[0]=dh->p; | ||
| 887 | r[1]=dh->g; | ||
| 888 | r[2]=dh->pub_key; | ||
| 889 | } | ||
| 890 | else | ||
| 891 | #endif | ||
| 892 | { | ||
| 893 | al=SSL_AD_HANDSHAKE_FAILURE; | ||
| 894 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,SSL_R_UNKNOWN_KEY_EXCHANGE_TYPE); | ||
| 895 | goto f_err; | ||
| 896 | } | ||
| 897 | for (i=0; r[i] != NULL; i++) | ||
| 898 | { | ||
| 899 | nr[i]=BN_num_bytes(r[i]); | ||
| 900 | n+=2+nr[i]; | ||
| 901 | } | ||
| 902 | |||
| 903 | if (!(s->s3->tmp.new_cipher->algorithms & SSL_aNULL)) | ||
| 904 | { | ||
| 905 | if ((pkey=ssl_get_sign_pkey(s,s->s3->tmp.new_cipher)) | ||
| 906 | == NULL) | ||
| 907 | { | ||
| 908 | al=SSL_AD_DECODE_ERROR; | ||
| 909 | goto f_err; | ||
| 910 | } | ||
| 911 | kn=EVP_PKEY_size(pkey); | ||
| 912 | } | ||
| 913 | else | ||
| 914 | { | ||
| 915 | pkey=NULL; | ||
| 916 | kn=0; | ||
| 917 | } | ||
| 918 | |||
| 919 | if (!BUF_MEM_grow_clean(buf,n+DTLS1_HM_HEADER_LENGTH+kn)) | ||
| 920 | { | ||
| 921 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,ERR_LIB_BUF); | ||
| 922 | goto err; | ||
| 923 | } | ||
| 924 | d=(unsigned char *)s->init_buf->data; | ||
| 925 | p= &(d[DTLS1_HM_HEADER_LENGTH]); | ||
| 926 | |||
| 927 | for (i=0; r[i] != NULL; i++) | ||
| 928 | { | ||
| 929 | s2n(nr[i],p); | ||
| 930 | BN_bn2bin(r[i],p); | ||
| 931 | p+=nr[i]; | ||
| 932 | } | ||
| 933 | |||
| 934 | /* not anonymous */ | ||
| 935 | if (pkey != NULL) | ||
| 936 | { | ||
| 937 | /* n is the length of the params, they start at | ||
| 938 | * &(d[DTLS1_HM_HEADER_LENGTH]) and p points to the space | ||
| 939 | * at the end. */ | ||
| 940 | #ifndef OPENSSL_NO_RSA | ||
| 941 | if (pkey->type == EVP_PKEY_RSA) | ||
| 942 | { | ||
| 943 | q=md_buf; | ||
| 944 | j=0; | ||
| 945 | for (num=2; num > 0; num--) | ||
| 946 | { | ||
| 947 | EVP_DigestInit_ex(&md_ctx,(num == 2) | ||
| 948 | ?s->ctx->md5:s->ctx->sha1, NULL); | ||
| 949 | EVP_DigestUpdate(&md_ctx,&(s->s3->client_random[0]),SSL3_RANDOM_SIZE); | ||
| 950 | EVP_DigestUpdate(&md_ctx,&(s->s3->server_random[0]),SSL3_RANDOM_SIZE); | ||
| 951 | EVP_DigestUpdate(&md_ctx,&(d[DTLS1_HM_HEADER_LENGTH]),n); | ||
| 952 | EVP_DigestFinal_ex(&md_ctx,q, | ||
| 953 | (unsigned int *)&i); | ||
| 954 | q+=i; | ||
| 955 | j+=i; | ||
| 956 | } | ||
| 957 | if (RSA_sign(NID_md5_sha1, md_buf, j, | ||
| 958 | &(p[2]), &u, pkey->pkey.rsa) <= 0) | ||
| 959 | { | ||
| 960 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,ERR_LIB_RSA); | ||
| 961 | goto err; | ||
| 962 | } | ||
| 963 | s2n(u,p); | ||
| 964 | n+=u+2; | ||
| 965 | } | ||
| 966 | else | ||
| 967 | #endif | ||
| 968 | #if !defined(OPENSSL_NO_DSA) | ||
| 969 | if (pkey->type == EVP_PKEY_DSA) | ||
| 970 | { | ||
| 971 | /* lets do DSS */ | ||
| 972 | EVP_SignInit_ex(&md_ctx,EVP_dss1(), NULL); | ||
| 973 | EVP_SignUpdate(&md_ctx,&(s->s3->client_random[0]),SSL3_RANDOM_SIZE); | ||
| 974 | EVP_SignUpdate(&md_ctx,&(s->s3->server_random[0]),SSL3_RANDOM_SIZE); | ||
| 975 | EVP_SignUpdate(&md_ctx,&(d[DTLS1_HM_HEADER_LENGTH]),n); | ||
| 976 | if (!EVP_SignFinal(&md_ctx,&(p[2]), | ||
| 977 | (unsigned int *)&i,pkey)) | ||
| 978 | { | ||
| 979 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,ERR_LIB_DSA); | ||
| 980 | goto err; | ||
| 981 | } | ||
| 982 | s2n(i,p); | ||
| 983 | n+=i+2; | ||
| 984 | } | ||
| 985 | else | ||
| 986 | #endif | ||
| 987 | { | ||
| 988 | /* Is this error check actually needed? */ | ||
| 989 | al=SSL_AD_HANDSHAKE_FAILURE; | ||
| 990 | SSLerr(SSL_F_DTLS1_SEND_SERVER_KEY_EXCHANGE,SSL_R_UNKNOWN_PKEY_TYPE); | ||
| 991 | goto f_err; | ||
| 992 | } | ||
| 993 | } | ||
| 994 | |||
| 995 | d = dtls1_set_message_header(s, d, | ||
| 996 | SSL3_MT_SERVER_KEY_EXCHANGE, n, 0, n); | ||
| 997 | |||
| 998 | /* we should now have things packed up, so lets send | ||
| 999 | * it off */ | ||
| 1000 | s->init_num=n+DTLS1_HM_HEADER_LENGTH; | ||
| 1001 | s->init_off=0; | ||
| 1002 | |||
| 1003 | /* buffer the message to handle re-xmits */ | ||
| 1004 | dtls1_buffer_message(s, 0); | ||
| 1005 | } | ||
| 1006 | |||
| 1007 | s->state = SSL3_ST_SW_KEY_EXCH_B; | ||
| 1008 | EVP_MD_CTX_cleanup(&md_ctx); | ||
| 1009 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 1010 | f_err: | ||
| 1011 | ssl3_send_alert(s,SSL3_AL_FATAL,al); | ||
| 1012 | err: | ||
| 1013 | EVP_MD_CTX_cleanup(&md_ctx); | ||
| 1014 | return(-1); | ||
| 1015 | } | ||
| 1016 | |||
| 1017 | int dtls1_send_certificate_request(SSL *s) | ||
| 1018 | { | ||
| 1019 | unsigned char *p,*d; | ||
| 1020 | int i,j,nl,off,n; | ||
| 1021 | STACK_OF(X509_NAME) *sk=NULL; | ||
| 1022 | X509_NAME *name; | ||
| 1023 | BUF_MEM *buf; | ||
| 1024 | unsigned int msg_len; | ||
| 1025 | |||
| 1026 | if (s->state == SSL3_ST_SW_CERT_REQ_A) | ||
| 1027 | { | ||
| 1028 | buf=s->init_buf; | ||
| 1029 | |||
| 1030 | d=p=(unsigned char *)&(buf->data[DTLS1_HM_HEADER_LENGTH]); | ||
| 1031 | |||
| 1032 | /* get the list of acceptable cert types */ | ||
| 1033 | p++; | ||
| 1034 | n=ssl3_get_req_cert_type(s,p); | ||
| 1035 | d[0]=n; | ||
| 1036 | p+=n; | ||
| 1037 | n++; | ||
| 1038 | |||
| 1039 | off=n; | ||
| 1040 | p+=2; | ||
| 1041 | n+=2; | ||
| 1042 | |||
| 1043 | sk=SSL_get_client_CA_list(s); | ||
| 1044 | nl=0; | ||
| 1045 | if (sk != NULL) | ||
| 1046 | { | ||
| 1047 | for (i=0; i<sk_X509_NAME_num(sk); i++) | ||
| 1048 | { | ||
| 1049 | name=sk_X509_NAME_value(sk,i); | ||
| 1050 | j=i2d_X509_NAME(name,NULL); | ||
| 1051 | if (!BUF_MEM_grow_clean(buf,DTLS1_HM_HEADER_LENGTH+n+j+2)) | ||
| 1052 | { | ||
| 1053 | SSLerr(SSL_F_DTLS1_SEND_CERTIFICATE_REQUEST,ERR_R_BUF_LIB); | ||
| 1054 | goto err; | ||
| 1055 | } | ||
| 1056 | p=(unsigned char *)&(buf->data[DTLS1_HM_HEADER_LENGTH+n]); | ||
| 1057 | if (!(s->options & SSL_OP_NETSCAPE_CA_DN_BUG)) | ||
| 1058 | { | ||
| 1059 | s2n(j,p); | ||
| 1060 | i2d_X509_NAME(name,&p); | ||
| 1061 | n+=2+j; | ||
| 1062 | nl+=2+j; | ||
| 1063 | } | ||
| 1064 | else | ||
| 1065 | { | ||
| 1066 | d=p; | ||
| 1067 | i2d_X509_NAME(name,&p); | ||
| 1068 | j-=2; s2n(j,d); j+=2; | ||
| 1069 | n+=j; | ||
| 1070 | nl+=j; | ||
| 1071 | } | ||
| 1072 | } | ||
| 1073 | } | ||
| 1074 | /* else no CA names */ | ||
| 1075 | p=(unsigned char *)&(buf->data[DTLS1_HM_HEADER_LENGTH+off]); | ||
| 1076 | s2n(nl,p); | ||
| 1077 | |||
| 1078 | d=(unsigned char *)buf->data; | ||
| 1079 | *(d++)=SSL3_MT_CERTIFICATE_REQUEST; | ||
| 1080 | l2n3(n,d); | ||
| 1081 | s2n(s->d1->handshake_write_seq,d); | ||
| 1082 | s->d1->handshake_write_seq++; | ||
| 1083 | |||
| 1084 | /* we should now have things packed up, so lets send | ||
| 1085 | * it off */ | ||
| 1086 | |||
| 1087 | s->init_num=n+DTLS1_HM_HEADER_LENGTH; | ||
| 1088 | s->init_off=0; | ||
| 1089 | #ifdef NETSCAPE_HANG_BUG | ||
| 1090 | /* XXX: what to do about this? */ | ||
| 1091 | p=(unsigned char *)s->init_buf->data + s->init_num; | ||
| 1092 | |||
| 1093 | /* do the header */ | ||
| 1094 | *(p++)=SSL3_MT_SERVER_DONE; | ||
| 1095 | *(p++)=0; | ||
| 1096 | *(p++)=0; | ||
| 1097 | *(p++)=0; | ||
| 1098 | s->init_num += 4; | ||
| 1099 | #endif | ||
| 1100 | |||
| 1101 | /* XDTLS: set message header ? */ | ||
| 1102 | msg_len = s->init_num - DTLS1_HM_HEADER_LENGTH; | ||
| 1103 | dtls1_set_message_header(s, (void *)s->init_buf->data, | ||
| 1104 | SSL3_MT_CERTIFICATE_REQUEST, msg_len, 0, msg_len); | ||
| 1105 | |||
| 1106 | /* buffer the message to handle re-xmits */ | ||
| 1107 | dtls1_buffer_message(s, 0); | ||
| 1108 | |||
| 1109 | s->state = SSL3_ST_SW_CERT_REQ_B; | ||
| 1110 | } | ||
| 1111 | |||
| 1112 | /* SSL3_ST_SW_CERT_REQ_B */ | ||
| 1113 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 1114 | err: | ||
| 1115 | return(-1); | ||
| 1116 | } | ||
| 1117 | |||
| 1118 | int dtls1_send_server_certificate(SSL *s) | ||
| 1119 | { | ||
| 1120 | unsigned long l; | ||
| 1121 | X509 *x; | ||
| 1122 | |||
| 1123 | if (s->state == SSL3_ST_SW_CERT_A) | ||
| 1124 | { | ||
| 1125 | x=ssl_get_server_send_cert(s); | ||
| 1126 | if (x == NULL && | ||
| 1127 | /* VRS: allow null cert if auth == KRB5 */ | ||
| 1128 | (s->s3->tmp.new_cipher->algorithms | ||
| 1129 | & (SSL_MKEY_MASK|SSL_AUTH_MASK)) | ||
| 1130 | != (SSL_aKRB5|SSL_kKRB5)) | ||
| 1131 | { | ||
| 1132 | SSLerr(SSL_F_DTLS1_SEND_SERVER_CERTIFICATE,ERR_R_INTERNAL_ERROR); | ||
| 1133 | return(0); | ||
| 1134 | } | ||
| 1135 | |||
| 1136 | l=dtls1_output_cert_chain(s,x); | ||
| 1137 | s->state=SSL3_ST_SW_CERT_B; | ||
| 1138 | s->init_num=(int)l; | ||
| 1139 | s->init_off=0; | ||
| 1140 | |||
| 1141 | /* buffer the message to handle re-xmits */ | ||
| 1142 | dtls1_buffer_message(s, 0); | ||
| 1143 | } | ||
| 1144 | |||
| 1145 | /* SSL3_ST_SW_CERT_B */ | ||
| 1146 | return(dtls1_do_write(s,SSL3_RT_HANDSHAKE)); | ||
| 1147 | } | ||
diff --git a/src/lib/libssl/src/ssl/dtls1.h b/src/lib/libssl/src/ssl/dtls1.h new file mode 100644 index 0000000000..a663cf85f2 --- /dev/null +++ b/src/lib/libssl/src/ssl/dtls1.h | |||
| @@ -0,0 +1,211 @@ | |||
| 1 | /* ssl/dtls1.h */ | ||
| 2 | /* | ||
| 3 | * DTLS implementation written by Nagendra Modadugu | ||
| 4 | * (nagendra@cs.stanford.edu) for the OpenSSL project 2005. | ||
| 5 | */ | ||
| 6 | /* ==================================================================== | ||
| 7 | * Copyright (c) 1999-2005 The OpenSSL Project. All rights reserved. | ||
| 8 | * | ||
| 9 | * Redistribution and use in source and binary forms, with or without | ||
| 10 | * modification, are permitted provided that the following conditions | ||
| 11 | * are met: | ||
| 12 | * | ||
| 13 | * 1. Redistributions of source code must retain the above copyright | ||
| 14 | * notice, this list of conditions and the following disclaimer. | ||
| 15 | * | ||
| 16 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 17 | * notice, this list of conditions and the following disclaimer in | ||
| 18 | * the documentation and/or other materials provided with the | ||
| 19 | * distribution. | ||
| 20 | * | ||
| 21 | * 3. All advertising materials mentioning features or use of this | ||
| 22 | * software must display the following acknowledgment: | ||
| 23 | * "This product includes software developed by the OpenSSL Project | ||
| 24 | * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 25 | * | ||
| 26 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 27 | * endorse or promote products derived from this software without | ||
| 28 | * prior written permission. For written permission, please contact | ||
| 29 | * openssl-core@OpenSSL.org. | ||
| 30 | * | ||
| 31 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 32 | * nor may "OpenSSL" appear in their names without prior written | ||
| 33 | * permission of the OpenSSL Project. | ||
| 34 | * | ||
| 35 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 36 | * acknowledgment: | ||
| 37 | * "This product includes software developed by the OpenSSL Project | ||
| 38 | * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 39 | * | ||
| 40 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 41 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 42 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 43 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 44 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 45 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 46 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 47 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 48 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 49 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 50 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 51 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 52 | * ==================================================================== | ||
| 53 | * | ||
| 54 | * This product includes cryptographic software written by Eric Young | ||
| 55 | * (eay@cryptsoft.com). This product includes software written by Tim | ||
| 56 | * Hudson (tjh@cryptsoft.com). | ||
| 57 | * | ||
| 58 | */ | ||
| 59 | |||
| 60 | #ifndef HEADER_DTLS1_H | ||
| 61 | #define HEADER_DTLS1_H | ||
| 62 | |||
| 63 | #include <openssl/buffer.h> | ||
| 64 | #include <openssl/pqueue.h> | ||
| 65 | |||
| 66 | #ifdef __cplusplus | ||
| 67 | extern "C" { | ||
| 68 | #endif | ||
| 69 | |||
| 70 | #define DTLS1_VERSION 0xFEFF | ||
| 71 | #define DTLS1_BAD_VER 0x0100 | ||
| 72 | |||
| 73 | #define DTLS1_AD_MISSING_HANDSHAKE_MESSAGE 110 | ||
| 74 | |||
| 75 | /* lengths of messages */ | ||
| 76 | #define DTLS1_COOKIE_LENGTH 32 | ||
| 77 | |||
| 78 | #define DTLS1_RT_HEADER_LENGTH 13 | ||
| 79 | |||
| 80 | #define DTLS1_HM_HEADER_LENGTH 12 | ||
| 81 | |||
| 82 | #define DTLS1_HM_BAD_FRAGMENT -2 | ||
| 83 | #define DTLS1_HM_FRAGMENT_RETRY -3 | ||
| 84 | |||
| 85 | #define DTLS1_CCS_HEADER_LENGTH 1 | ||
| 86 | |||
| 87 | #define DTLS1_AL_HEADER_LENGTH 7 | ||
| 88 | |||
| 89 | |||
| 90 | typedef struct dtls1_bitmap_st | ||
| 91 | { | ||
| 92 | PQ_64BIT map; | ||
| 93 | unsigned long length; /* sizeof the bitmap in bits */ | ||
| 94 | PQ_64BIT max_seq_num; /* max record number seen so far */ | ||
| 95 | } DTLS1_BITMAP; | ||
| 96 | |||
| 97 | struct hm_header_st | ||
| 98 | { | ||
| 99 | unsigned char type; | ||
| 100 | unsigned long msg_len; | ||
| 101 | unsigned short seq; | ||
| 102 | unsigned long frag_off; | ||
| 103 | unsigned long frag_len; | ||
| 104 | unsigned int is_ccs; | ||
| 105 | }; | ||
| 106 | |||
| 107 | struct ccs_header_st | ||
| 108 | { | ||
| 109 | unsigned char type; | ||
| 110 | unsigned short seq; | ||
| 111 | }; | ||
| 112 | |||
| 113 | struct dtls1_timeout_st | ||
| 114 | { | ||
| 115 | /* Number of read timeouts so far */ | ||
| 116 | unsigned int read_timeouts; | ||
| 117 | |||
| 118 | /* Number of write timeouts so far */ | ||
| 119 | unsigned int write_timeouts; | ||
| 120 | |||
| 121 | /* Number of alerts received so far */ | ||
| 122 | unsigned int num_alerts; | ||
| 123 | }; | ||
| 124 | |||
| 125 | typedef struct record_pqueue_st | ||
| 126 | { | ||
| 127 | unsigned short epoch; | ||
| 128 | pqueue q; | ||
| 129 | } record_pqueue; | ||
| 130 | |||
| 131 | typedef struct hm_fragment_st | ||
| 132 | { | ||
| 133 | struct hm_header_st msg_header; | ||
| 134 | unsigned char *fragment; | ||
| 135 | } hm_fragment; | ||
| 136 | |||
| 137 | typedef struct dtls1_state_st | ||
| 138 | { | ||
| 139 | unsigned int send_cookie; | ||
| 140 | unsigned char cookie[DTLS1_COOKIE_LENGTH]; | ||
| 141 | unsigned char rcvd_cookie[DTLS1_COOKIE_LENGTH]; | ||
| 142 | unsigned int cookie_len; | ||
| 143 | |||
| 144 | /* | ||
| 145 | * The current data and handshake epoch. This is initially | ||
| 146 | * undefined, and starts at zero once the initial handshake is | ||
| 147 | * completed | ||
| 148 | */ | ||
| 149 | unsigned short r_epoch; | ||
| 150 | unsigned short w_epoch; | ||
| 151 | |||
| 152 | /* records being received in the current epoch */ | ||
| 153 | DTLS1_BITMAP bitmap; | ||
| 154 | |||
| 155 | /* renegotiation starts a new set of sequence numbers */ | ||
| 156 | DTLS1_BITMAP next_bitmap; | ||
| 157 | |||
| 158 | /* handshake message numbers */ | ||
| 159 | unsigned short handshake_write_seq; | ||
| 160 | unsigned short next_handshake_write_seq; | ||
| 161 | |||
| 162 | unsigned short handshake_read_seq; | ||
| 163 | |||
| 164 | /* Received handshake records (processed and unprocessed) */ | ||
| 165 | record_pqueue unprocessed_rcds; | ||
| 166 | record_pqueue processed_rcds; | ||
| 167 | |||
| 168 | /* Buffered handshake messages */ | ||
| 169 | pqueue buffered_messages; | ||
| 170 | |||
| 171 | /* Buffered (sent) handshake records */ | ||
| 172 | pqueue sent_messages; | ||
| 173 | |||
| 174 | unsigned int mtu; /* max wire packet size */ | ||
| 175 | |||
| 176 | struct hm_header_st w_msg_hdr; | ||
| 177 | struct hm_header_st r_msg_hdr; | ||
| 178 | |||
| 179 | struct dtls1_timeout_st timeout; | ||
| 180 | |||
| 181 | /* storage for Alert/Handshake protocol data received but not | ||
| 182 | * yet processed by ssl3_read_bytes: */ | ||
| 183 | unsigned char alert_fragment[DTLS1_AL_HEADER_LENGTH]; | ||
| 184 | unsigned int alert_fragment_len; | ||
| 185 | unsigned char handshake_fragment[DTLS1_HM_HEADER_LENGTH]; | ||
| 186 | unsigned int handshake_fragment_len; | ||
| 187 | |||
| 188 | unsigned int retransmitting; | ||
| 189 | |||
| 190 | } DTLS1_STATE; | ||
| 191 | |||
| 192 | typedef struct dtls1_record_data_st | ||
| 193 | { | ||
| 194 | unsigned char *packet; | ||
| 195 | unsigned int packet_length; | ||
| 196 | SSL3_BUFFER rbuf; | ||
| 197 | SSL3_RECORD rrec; | ||
| 198 | } DTLS1_RECORD_DATA; | ||
| 199 | |||
| 200 | |||
| 201 | /* Timeout multipliers (timeout slice is defined in apps/timeouts.h */ | ||
| 202 | #define DTLS1_TMO_READ_COUNT 2 | ||
| 203 | #define DTLS1_TMO_WRITE_COUNT 2 | ||
| 204 | |||
| 205 | #define DTLS1_TMO_ALERT_COUNT 12 | ||
| 206 | |||
| 207 | #ifdef __cplusplus | ||
| 208 | } | ||
| 209 | #endif | ||
| 210 | #endif | ||
| 211 | |||
diff --git a/src/lib/libssl/src/test/SHAmix.fax b/src/lib/libssl/src/test/SHAmix.fax deleted file mode 100644 index 83bcb14126..0000000000 --- a/src/lib/libssl/src/test/SHAmix.fax +++ /dev/null | |||
| @@ -1,129 +0,0 @@ | |||
| 1 | [L = 64] | ||
| 2 | |||
| 3 | Len = 16 | ||
| 4 | Msg = 98a1 | ||
| 5 | MD = 74d78642f70ca830bec75fc60a585917e388cfa4cd1d23daab1c4d9ff1010cac3e67275df64db5a6a7c7d0fda24f1fc3eb272678a7c8becff6743ee812129078 | ||
| 6 | |||
| 7 | Len = 104 | ||
| 8 | Msg = 35a37a46df4ccbadd815942249 | ||
| 9 | MD = 6f5589ea195e745654885d50de687d7fe682affc8da1fb09e681540525f04ecb93022361a27759b9e272c883564223c5e4ecafeb0daaf1abce6caa4bd4153379 | ||
| 10 | |||
| 11 | Len = 352 | ||
| 12 | Msg = a93aed0fa5e163a82c9a934aebaab8180edf7de0b32f0fe99f9c75ec305b24609334cefa372c7c758262dc8f | ||
| 13 | MD = 66a16799d606c569d2fcd70d7d8321ec90ef61711481aaf7d747744ebfd08ec2e7aead49429af7b4ceec6d8e147ed018e034efbe07982699e818db5fc4b1d71a | ||
| 14 | |||
| 15 | Len = 1016 | ||
| 16 | Msg = 433e88eb2f8aba562d15c18126fbdffb81d5d6c9397fa052321f5f78cd629708ba099b540da5451e949eeab8687a8d6ac35c531411cb37144ab5ff6a7eb46f1ab28fbcd2ea0444cd87c57bf7d3c02952dba3d3987da07622c16e7c086d90e88ad3d9d4afee301d2bad915d868f54197b70b23c9fa385c443404fbc9abf7e6a | ||
| 17 | MD = 790bc4844e9aeef8938df0ccda17890556a4151817111a526a88919cfb172f0b03c216080c1b60210eb1942097f17b6d0691bf5b018b6d959198d6a694b922c9 | ||
| 18 | |||
| 19 | Len = 13696 | ||
| 20 | Msg = 2c46a76a9dfbae1f5e59f085e9c3d4b600c24b2d404d062cf948e75a3d4ab5b137a31397be9eb34b2a03c78367e0b85448891b511ddee1f787cccd498b172cb7e656c044a03ffde8e42478330fbe9c34072a9e99ce31b41757cc820d98e7d564e06694b96b66f4be34c5eadd0ae4e61fe6abbe4d7ccee855104fedee8b451a7fcedb793d469b0094c0ed07c97fda00dd8c1662b44e3ee6775a5ef6368cb662d257be561a5967893433a4b63f97295036a37272176d081545df00852bc5c4162324161296cd51f76433f2df867a5840f2d0c8d5be00b4dc89443d82175bf69c3bdceb97facae2b2ed68e06ae74fef36d8bd1f75f130cba509341dd54079d45de22845cc8e77a022977c7540aa3e779cb1127f39f825d4d78e55a967ef45e7c1dfb02d9999fd15af2914ba47177177d94576f1091a0657d9e04fe81e6be7b631fc1baae66584c9c26ddbb568750d77555c927bcda1fbdc15c7cbe3e3fe88ca13ff12c59b383343c12976708c0e3dff78be0e286dd32eecf20b71a09fee50a9d0b13c85a15b320b162690f399282798aa3291fdd2f9c40ed873e829388466ddd1da42f2de16aaa9272ccf44790cf3c95382c304e25ae8cb2fc9d9869808f3ee7d42cb143bb0c3a55e03db6d1202ca1bdb744e448640c0aa60d3ebbda5c21e623bb080f4a073a48822725d764e51d415aad1d7c5a7f17433d15ac7d849f910c375ee0899f6a576dada42fd651343383f286009902bb62deeeb2514de6af7f09892c20d0b238f6021f03b62444b1e1f21beeb89acfcd7136416fe7bd8f202e76afaf5345311798be7cb25351add2bb044d2380221009c4d1cbbaba4cdc8631dc0144f2778a6aa1eb3d3c81df0b1b2142fce111af8214d049e40f536c5d462b9224a978e82cc6c420e70ecc3cdaffb726a183c793845315f730fa4dac9fe46e4180397107a6a051f7f0a58ceb9bf4df37e1a81c8e9569187228e8037df2e59c52ba815566768bedc8e09d5e7bdc9f2bff23aaaaf133bb5a3332750f6124ce185e29fda0851addfa2c3d52bb6dfb530fd4ee27dd5bfdce5dc2f41debe6740274bc651aecd4023b098a7d622e2296b50d51b79c4e3f521695a9d43f038e8f273405e26584d3db179e7c1758114a3d39970df674580bbf2884405974f0b9c4b0d8b3287a2314f3f81b6991812f354d655f62513c9551b378cc2efa4c3e08b313c56cada52217fb6112eb8299b28445aca8f72e7170a1cd8bbfee4d2145fbe8d49c6af8831c4d4fc7177a50ee55a7b484261504af946c6bd5e1d6b89092f3c487c0568fa07c356fae9b8e831b8320289039746a435b122cfbc4a0d316bf90d481d3b7d979cc50d98c1190af8dc58e0035557dd5e94f437f41fab513202643a77748f76c6b77302bf40c392cd18731da082c99bdedeb70e15cd68bff59619cabcc92adcf122753c55afde0817352bc247d1170b8ddba1ad1b0faadfe0efbfc5fe6334377fa372c3435691f53dfc2ad5e08966b2d3525b1eec2d993a5cd4ff34278bd40dd80313a0727d05e0a932156152f3e11a190d8d69726f5c57d20f811e1e8932e86409ffdac96c6251c2a2976b8757adcac5d2de94931d1cbea866ec8bcba5774f8a7fde792f6acfd0f01356fd66fdf54a416af6a9397e00f848a2e9831627cbcbb52b5a868ec174e69b4cfa1ed72cdf23f39d7eaf4bdb318c188b1f0fe75655e34ad71907cdb77a1a2b162cd7c22d93dc45321eafb17cd60282e83736267b3e1fb249c307d49509f50839942f0f493afd9ef37db053a918e3ec83d801bbdead07554a018b8ba348fe9b7dd92ea7c5fc0e65a644ba19aa1fb6c022ab768ec7cb249ba17b9dda2860bd4aaaa3dc70ec009804141ad5ebc61203658e57a0887ec0fded18d844a96e79ba7e879c4253056f23e205a80ab1471953438f85848f4ab31ab175c089e0bbb97ea0dd6a67385770356741966053735e2cc2ecdd2c8c75cc045181dd7267584b901674b553082b2c58fb8f8be0b99306194a6f069f684535423304d40a268d55784a14260fa9c9cb1306b82f91cbee3c9f43dea9e50903135cc1c6505605a100bfa28564a2057974eef0852b7b72ce264815026d0759f691db618ef760edde73ec888e181403834f7221bb27a69479ec9b28a3fb0c3f68d4467d25712fc48ad78763f9ea6e8a2e85260225ca1b1a38b720e589fafca29f07257c5467cb74ee53189b8c81b784c43e93f98abde1ed53af60b27b13df6ce45001c6e1813de3521028981086f7d88ba13f6fb1a800f312fbe2f842eebe847fd760c394668cfbfd353ec14ca0366eccd7b4cd63318116bdc42e20a632a0d2b8c5cddb37bfc0a239ebe3800a787d2ece077a7968036b3d9b31cd906f888e3ed742cd769033e2c24c5a9e3c10b6d300db5a17dd88 | ||
| 21 | MD = a86e07bcd19080d4a83e1384bd8189f60a7dd7a6998406ade0bf03f805375bd823c7656dd51cd9d63e542f8ade41f16d73794d60d0906424133778156ee54b95 | ||
| 22 | |||
| 23 | Len = 100816 | ||
| 24 | Msg = f8ed40e878dc68ceec52cc8e2868722310fb117ca3a52e1839eb85d308b8aa00ed0bf0b76aec8a70eba4f0d14d2d85c5a0e876ce2c8ee59cb36947def6c40a587aa07b368ca8e8a08367018e45b984de0d7f1aa46b977cc18c0cd9b7bb897cbb2814aa0ce8f8c9843e03c86c19f2ba95dd2ac4a466a93aae4b3b05055ff148517ecf43e286c57744a3e10a14d0c26e139a503e7927aa688c78609170ebe3b54104390e5f6cf538093a67922e7210e77fcb584ec9b6844e829be246a266460cb442bad52ca47255fb8cfe276108c36e02f9acbd3d191d34b93d29ec40d80496d1c1bb5ef036221641200e905598c54bc4abb3527c5a5f6258e59d4bf54a0498c108a2725428efc2047e0096b32dfdc6ec69d5d72f81301f881ca62a66c22e5dab9fd9d90084c0a36b2f3a0123cc5327a3bc7a12fd947ab57169ac533e4b6a2cb80fc65b9b527cff9fba26994c7fafb5102a0acd8f9d246a3a54178c23eaa04c0fdfd3c0cd980d1fc7a72b25d74df9b95c3dedce8ca316870c654f9ebea9b806da9767cf40605a4b0c7fb06f6b3f197bae7d8cde9daf38530e25bc51b68f9aa23ec0e95199b14bca96c91f3db15bf8432f714dc46ac87218691bc66cb3a42f6865e1c30f8394c8e68c0ddf5851ab7c5906a1994a9af6ac1c44d0d6b95ff15d9f77825ccea40fb9e516d45888f2378e045d95d936d541cea9c8ca52fe5f7d0d919b2b1c59a42d06105ea4f2943c05178e59d67351c5b2c0051c93a4045e512884fa656b772cf398af89081546d920fd3d24ebd16310506a786ab33293027394c1bcb7b1efe46b550ac28529646e8d2a5ae65c59345e24b44cd7b06673f3ed3b9008aa568a739c26682fa596b7a655842cc6b2758b583487c78d14a76bdac7033806c5c210828ef313f8efc4072681f5fded748c31a58ac933b4665c445f07d603e0905e49b84aa55146eb1c1c99196413832a05efee2e64d6732fefc629b79b37bb9390fcbed7226b412204bda523b8b8af5c4a8bdb263ef9f3f6c7b9e1de3a1dc257c1f33b3d54a9101be5b4f2a9db319993c2cd137c41e35c434ce52e859afd1a635af4d8852252dc5e28c729b2b4c96a56d57f3f3854ded59fe612b9b3a51fee3fc1c83db673b0cc7433bff2472bc74a2eeb6706605e308690fd072a7042ca6474603711d8310909e47063f46f287260a26c4f11fe492298a0f98d28c45948a4899e08fcf443a6ba36457dd8329314d53ac0fd0819fcfc3357426c5bb8d3dfd706e205a81091cf08f31cd3459854f3d07e503991ba5f067e3c406c6c5396d8257496f4ba3703cb1ba25c2fe4aa54577af782cd57e85a88a2d75c54039e8b7bb559219edd6e81e41acb6d575d6f798afb2cbf7f00abd5c9c7b0fceec79f9a0fb040ebcbb7bff3602df7b71357efacd37aa57019350bb81213508a006160acde3dae5c42f03141887eaca22d7b33d6791febfb619d11ebabb13e6c5378e9a72e852ddccd31cc53a43275966b7042ddc51485ca20e1c456dcc7020cafb5407548b044d332229911fc74d7fb97de25abff7efb431da82de2ed7e25d0dcc06ffc74e57ca93a6a9f64d76a5c39776fe2266f88d6d0229b527525fd2e22a1407e26f94c5bc6adb1e7327f3c8bb8d4c983385c579dd8f5623df8cd6da569c7de73d9210e6b9253a177653a13ece075940fc81016d8c35fa4f6542df5120c174158ff32533476f4e059e35117081a24798fbdd1eb10f82809836f8dbefe755611347f75423dd8571695960c6f66cca71f0a01e8fecbe1183bee3335eff10b4ff8104132040e2145ec3164b2448f60c730887b9d7894e5f7df3f876cb17136c99cf32db1c02fba860937378dbd093c4c5112133781f06c8ca07c527c2c085e8ba5e52b399f2909e217aef6e3035ecafe2caeb1004069dea023af7eab873deb5ebcef2313c9827821bb9f89fd3d1570a569673d3ede86a4fb13dff242eb98450a8917fd8865c56e0a9f11d72394b79808b0429f3a83cf2465161596887fa2d557b367a1de9c7753666b0cca9c30cba9f0a749c03c55cdc7a6d45852c76ce2010de3e7f75d95228efdc79949b238d90b25f983868b7f07f585f7b00e45d9e132f3c09ee84f794d899759be3dabd46a256f4cf8da71270617cc2425b24cef25d1d2f3945afa6f81abfccc858cd02e05619649b1a5347650934105c02622d538447223d136a8a0455cf3c6f61f696b32266197b5cd1d936fd3ad4288520fb4a2f59bf95e659f33210446ef18debeb679dd99de0c3c74a6eb3dd783861f5db4e94a151c42ce27519d0bbbf1f3b1163563ec06c8bfd881d94a3b896fc07352fc97ada73685588a2242da1b718f81bb1077bc70fbd58b8b52163489ae403838b533851bec30ed0ecd97d72d1af534f3703db59f1f563bdc39d690a0e90e545506463a37e84974fd7b256bbb912cb4077d3e3f5bdd4bd2bab713b696c830b1f2185734c4d2dbd49d5372fe8b813ce73f5e01c36bddbb376ef4541033f2b0355613eeda8951ebf7377e08f967902eb7e23c0fa798c6ae52401721053f1095cacb1e9496500e83c412236fc21566090b3a3eee55aa402c0b774802fd81c9e8579761cfcfdfb1aa23786b2dc35dacd5ca8d8d283369f53e4a5db18060c2c6b0c303052aeeffe169fcaf7ecc63090a9ade245045ab9c8aebf738772297caaef5f857322a597846c7370083d409df27612e47b0cb240daa3cfa51c57108612ac0dddb0f59791289ccbdb3a2cb1fa9ac31a23dd5440682fb373bf0c1f41c4fe2185ad7c53eb69552807410053b0c2d40132250e637b8c425e6a35d93333b5b7d0557927b6179c848ec455fd1ab38348c0e96c60b2da49bd15118df64b6ce4fa48fbc555a4b2874141718e731a40b85382ae6e86ead31cea77f83bf5c063bf1febf71688a832d615e09d6f14badedeaeb6ffbfe343fc7274e78cd46a2aaec0a349c5f133291ee57cdcb65c5474e46294de6bb50886bce6c6f44dcb95f2a4761ed2e6c9e7bfed51e0964afab4e0f7e0b07960f2590baae66b1ec9a63ba0fb6c0d27e81508c51487dbbdc9beb8879fd58c188dfc774b3d0ddbd77ee8bdcdfa0ed8a9387728e12b13e8b3c10cc1c132bd822c2147c5ddf9a993aedbf78ec256db1be76644ca8ca7727208bf89732657152d34e948d73c47561d156f773136684d4162d02260300020123d13a95f4f835907c344942ddeccafe2abb7dc4792c4f1e39c24748c63cba933b16be0b8853e058c47a1ae2c4dfff39ec2339b345fe3557d03c1df91a0607a711636c4416ffdb73532aeeb74f237ed8bf971388a0659e4682a46b8327e751034cbf2c87c7828da9d24baf07a742ada34d1ef38ab1e8f2b4f801192c146600709533e61bc2665dc1e9e6441bf3c4f6643bc0c102a10f9a69da5b0e3d0a0c7cb694c682493032b5853f02953b5c2fc0e1348565389762fc2dcfbb34fd305f2d9df080e859396ffcbb7da78aae0a0d72e3de76c774bc6a81c87f2872b6afe97ced5269009304a4992c4add0bbe24e57632e19ad0fe37ae910193aab0aeae32cf6d618ab33eba59f6a04fad00b1d2403396e6fa661d31b695a1b349d62f56c08fe6c6eae7a482177adf341e51d03ea511d7959c721bd20bf371860ecd7fce1d25212891850b85648db0a039e6638d9c78bc958add3e41341536b5007be63fd1f7e3308876bcebcb97dc3b05a7b2eaadd00f8fcc8dcfa7b961bbe727c9aed1626ff786d6a0ffdbd1002cae8a7d047b6181962a686c152b2341c7c58c9f1dab5af424d183ed1c7d003165a1d04ea3683ff31a0f68615af6f91c21f736e67df641ed31b998445afadf9052bbe004d5dad08f62e5d353e42fc35a92242d8414d99dc4e7e81c8c027af686baa5c185e3f99abb3855b22cfdff0a62e2f47a632b7df8e00e0317af5c24ce7c64077bbb15ec27e062070cd3eb8e549ed9112469090ad9a96eb59294b021eed81987178cb2dcff67a9a2e930f6032c753e203380f8a7c987cea393234699de03a1d09ce204f0a8b6d5cf522b6887174fdbccb08f3e7c4fe2f778254465b32766c48812a45151ac37ae354dac87419f9476baa27e24b2f322b2da4ddf579750684a5881bae2269351fb7de59b9d5a4badd8951135f2713dafc57215dc626ee170fae7f20bff98e36b864e1fe0f0f9a300c903069bf0e0b6f2f8e78423cf6063e89dde6c81efcf26ef15510563c84730f611ac879a6628e55115e1a29de6945d37fbe4f803fcf2e344712d9e0d6f6c79f8773a9f199b705235e20a7830ee3357c5dca29d7a6c29a3d2628bf2c42c8f076cc4525301d8e1860729070dc53164d9fa08bf63cc889eed01b0130a7146d860bbc09ead3865a3082db0836a45f5506c3e46e452e298764939226cedfd06700e4e33c6b4a78add601140249596831e97f960b973a4e4dc3fe2813fa34eb47f998ce57270368fb81719a09298a223f7e3931ce5cdfab3f658649533354e982c87dc9e49eacebb5bb4af9a767b4f1c03d774431168cd4fec1b2726f1aae3f9a062a825f3295557eebf3af4784487b869fb049de44d03fee71194fc200af72103b157431935b5ab9bc122773ffd313d52d7acf1078386090fc011de695e71567cfd51c06317d4ff8841ceeb74ad35f4e5f4d20921123cb88bb2079674ad39e133cdfd6478d69c9bddc7a818be5d7b254bd9e0abdb030f52846fdfeae8ff370a51a9c5f6017af3c6c3db17c5c614ea18ab0e3ca0dd5de621217dffa36e5c5318fe191040a50cc3ca620683bc34da6c142e1c50afce28a86b8b66d189adcd755561a647080d93f3ede1cf54c3afb7e863fc8a82a2576d3f79e9b2bb634e598507a3d7d017e0176b7868bff3a3dfb4474b3ce03c401f33929364e727fbf8096b77eb351435c7a113b3215cc6246dd86f1517a7e550cf828900248f7c1754e40fed62477b296a37d3e53231360d012c4908b466e49b0e620c0a5031228009f259b030956ebd70e49357c3c3ac2842b6bd6e3ca5a3e985dc03f7105681fec03b320a7ca753b782ad3b52fd9c8e3bd980b48dd6ec8901dbf756108e85015821c880416e0693e0479cb31c0743450f6d9214afabc4feadb9bcee9def460a58d3a02d9e3039970068b8e3fd0a403a6ca7f2c71ae2b46ab3c731b1e65e2104c47fcb1f69e7c8c6df8c09b33f2e1cd4192faab316a44536dcac608832019f5765cc5240eabe3c87445c980c299a5e7ae0acc2c2ed19fdc8f011515bcb00476b03633c7669db1b44f97f6cd402778e9687c740dbe5686789b79d0b13f784a2a866eb91ab2d66f064c49e8df513ec348fd7272ee548ba08e1f9f99696ffb53677550d59c67f88404f6e610455a422d9cd987493ca5c366a397dccface2bba8e3e99719dafa768956cbf6fd8defc4104b8925878716a0514f70cbf3fa2c2bc2f66fabe654eed3076257e71117665703eb88c79e4c2b94e8e856e7a6ef90ee2a358409db78b98056ce1750eb80725d70e35507fdfa5933a61496ba48fbd5555717b33b59d4ef211fe096aefd478859ffc97a41372023ef114adcae5a8d5e03c21369baf1e7f417cb40326bc6db1cdf0904651dda3c1039a2f1755e7c329f7c03bf33f324206ce6e1638711c8c9a45f153aa1f847cca2a5d3af1d24fe7a1e1094819e8e712cbe10ead1012b7371b35cbcc2bd5b10505fb63bea20ac81d25e83ed0105e7595b6c28400f4d336791ce4a584323d0b455bbed44392c5f86c9d5287593f6986d4b0b8f9974a7a4157859ba801251d3b44b2bad84f29cb87dcf1680d6d10d1bfd59f0c95fb7bd07fdb3ea2fccd6e3ee80af438956ccfe31e750972f893ea5dcaa26d077fb3f09d990c2f41c8707368bba007803621ecd76540cdb8705435d74f4300eee04710a936f241c034709e625b0dd5dae1f6e86d034426819c365a05f5be420cdf4042bbff965a666a5756f67259448ebf742b6ea189fa17a4c3bfaf651d19a8a525f09d9cff637c8fac02eaa58d3ee3f7221da1e61833c0b183cd9f47686f09597e8115b435454acef80c079eafaa22b18927d07bf8b7c5ebfdec9c42a52b7824d45decef41e6184dc2db1505ca6f94172fafc10731706e79b9856dfede353d2eadeceaf72a302e3492d7dc81e3777e4e9e1f3d33cc4402833ffedb241a75a09e9495d671f80ad3acf06823bb04a92b815edd0ca7d01dcb3318c1ae5c62d3e99c0ec37908b45b51dd65f6b45b34ede2d6f553f60a45e20fafcb34ae4dbd375f52a5db9c62650deeee78e955087c2bea75ede7c304347b171fe0c1a2a033894be6e04605271307f307b2a9cf6ae24b8c87ce033a3fa4cf2bacdfcf54fcccb1f580476c7d00c631a8529a9eea2a713610341e0e25609dc8927e51c58a0a9197a54963b5cb95877354f4b8316df02ed2bea367704a12274d96bcbe0d0d728923a368bb8ab98d5db5401894c822632308ddfd309071fb4b477d8eac0ea5dbbc3e3606d8510d9051dfb5e4b7cdcf2c57c1b76902d864c3109c901da53019ed33cea84b407490486ad9f980a8a63df3d2e3921064afea137f35179130db3351f5bc3f5e7d590a5ab08b5415efbd345f9d57b71ade7dca939efa5a12d677b9af0af14468176a43712bde10cb15787c18bf066eaef8abcdea77d3a0c61d6c74ae7b54fe90940d0233e4b874c9a141dcc740d7fff43b9fbbc012a933d890232cf74fccb7ff7eac1148e203c7381b7f1d1429b1b1152ec25cbf7562596eb402a9328e43b5dc5cae36592da5523f0b9907a6817ecd395a7c778daae85bb11372b20641a04250b77b3a0ece885d07faf9622650259b874536d6d2b92181c834dc111b6fcba483167be40ecc922fb87006f63b9e8e632879563f37a8f712db9fa68c1a20ab239c0116fe022fad1279f3288b8e74a16d447e467b6381515814dd3aecab5c2a09c400b44e9100c04c720dc7e8c6d9460002da6c52004c16999975fef8752c2f9c229cbd9e6446b226cc454bd68cd665668a17328bb30f301e92ef5c7a2197a326df5c99b422096de8af231d1d8872e6e505bcfff026d4862f28d4bb3856a66ced22c9b0587451d8da4230a38561b5b1c69b523a4701a2001382aa82fcbd60733a14696a540227db44aef346d6c0a7ae5173604d59eb828614cafc1b8cfecda054dcc7306f73925e6d1af56ed74c51c6cdb66e9fee8d7a0078254fedb0c0f5dc85a4686870709b499eafbc8451aebadf848b0598ce8f955688bd2d6032abe10d1391d67c20a049841f95d2ee0c8deae2bc1baca0c098d8718cba1ddcd968981c47cd98d247aca4f838f3bf16d092eab8be8deb1f8d504d37cc44a8c96c9f22f2698036d4ad3bb48b31f109626565c147d20a4a7dfd61fb918f81548fb4f78875c1d138e819f6822651b93a3c92ad77793fba5222d870ea671f9cac967919d18f96e92778548415b2e170d90b201215354fc48a77e62823a2c2bb354782ad052732f08beb278f751529416f37d83ea26248517ae2ef2ead28c1077908995a2d25db0deaa957bcab39715283287fd626ea7388abccba2d90e364a7ff4284c84f70da68ce1aafb5be0401cb9d45e085aab41892a49e10cbd5baf2c34f5e0ca076f2772abea6f622b66020d546f8c2f134a87f96edbeb9b08394b585f2c2f98aa792f97b43b5f3aa9c34189804a9ecc2cfaeefbd0f967d85a25bf3136fd8132dec38aa82e4af6ff677682f3b62be27a180aeb22f918c24f23bf6f5954e0722324cccd06829fc32ae4fe3aee6e5a03b3651900e13fb0a759e544d033418b6ed40d037b4549a0404792c8fddc317b7f028493c4c91d6773932f8486417544f3d007e5f9e6fc02fadff175303f77f6b0e1f709bb3d3a93b38552ccf62688a39da1a602dd5e122e6f4e9171769ada5255cc5cf938dfefcbe3ab0faca434c42dc8c357e89a3d1488fa3df35c3580b124ba3bf6d0d203d586707eb692150ed05a01bf9de5c4e67bb948088784016394d47abb853f2b6b643a066ad81bcd1735aed4e108a8c1fcd025b548de874eb60de7f3c568728959147d1219e4b830e06ca2bee1f8a035e28a54ee6958d4821a84e5d1e41139905f7ec60fe67ce5f4eccdcc2c3d1e4a753a32dd3004970a4ff3824471822fe2b5010b9b6c6b01336dbf0181a95cba2624663215468519871cc39e8a7f4a151c8bd03363b402020f2fb98069b2cb8cc1b7e930938e7540d95d1d223e47865135793f9eb573660ff79f7ed2fae503e68ba44596ee745fbd8fa562c5c666d174cc01b1961736e18b8b517161ab9c8058026e0ddd6c94aed0086a26e1b959a5e05eb9d8c1ff5b2ef518ca23b4f265db61b499a48cc46bed28d23ffc1e8d9c9e345c06079ad47c88dd4e8e286575bd7f9420ab9c2d5c6685488b8b34d4c9ac04e1427ae0994cf789b48b01d1db9c2fe75fc5187727bb11119f82d0739ce4048467a08cd635bf78cc1b6cc9c28fdc199d351064a81456f81c9e56a43aef7332973804b06b18a26caa62523a7d0acc272ba49124b17bb68800d5756afd34ddb2b7e2dd8a118aac3fcf39d9f853c4d2c4fd3ed5bd25a6604d68d57db93d15aa1160f8a97e6c24238e84f272780966867f9c644ca2775cdac4af0ece036cfa6ebb1cd9d701dd7daec5763c9a4de0385db383a5647918e79c6a6de1f4ee1f6b722c561704c8d7efa4710d78dfce8ad2df0d3d82cbb59cef0bcb001f70bdc6e17af1a720b117fe02bb1dd527b18e6bce70e9447cd0cc85cbcf431fe7c006f5e4ef878a974a93b25f492847c9ae020583c9d412f4124246164d8f080b615e2eee267a7aeb5fa0974de52cefef23cdda7b305a33a91e9b50471ceb72dae337c485d636e28d6ee31f5705983808b1567d4d4ae820ec445c56e6a404cad6b408691475397c0dd6cfad232106ba96e5104052700a653e21f9ac6d79578a9f52548f426a1e81dd45bae30acdd4d22a2dafd633564d6b2f45e7d35413503c955cb0a9784b42ae8c2a5933a6729f3922f969a158540dcd201ecb6e32f88b5b4921914a2e8f424c8b031f115ea5d23a21e6f22439ffd7e5d11b08df729f65613b4f6ad3edbc9a066a5e712ecbddfa6fa764cdf170c0485f82d924a99b7e7ad8dc44c1f93e49b6469a9af3de5691944413f1417b753bcb84d5b7a34f362c383cbc802b0c88bd23a7ac471b9287571c42081b1134bfc8ce104a550942ab1f2a074cb00a90558d6e841ff15cfde6951f03e450a1bfc90dec6c513fcb2692ddccc31d22e5274d41036656183c72fce208e44920776f196193137ac67d6d65ce9cfaae774f23a86e6ee8ff3a4e9422a4667d971906e5496a4e80278774899c882708611bad282f6c1d666bc5e7c40082b43a6e98d494a18e9b3cf7f154fdbf90d786e59e83b72ad0ab893c49aca50ed37ea5202e650fda54f5c46ca2a35c476f4b009c5e6733232275abd1341199b63d22386c484cb95c43ea90e609c407bc79ddd00609cc2eb0d82848db239b249f164b7ea384d0239fe1e64d04955b9297472cafa2ff272c5c78100aaa86cdd8120556f25652a3c12da5853338e3be8f505d93ea03cd1cae7e78e95befdc0e26b760d11e05403c348e0523fe036381408033c009a8e1f117af5100a6eb91f08307df465c20bc1dd029875ef7e49338689f602d98f2dc690a57a6f2864e57098f8bd723574944ad3688b292db6d01387a16493912722ac8f91fd12b748899bdaeabdf0479df788eda440d7bf30d1c25d78d757f00b74bb556506637fc1ab87162f05d464e63a6272db3fe56e9357275035d6b6bee32bd92c4a1dc94778551e94ee1d8854f767bfac3811bd0287672aaa01ea18c25650f05a68cbacd9158e479b508e72df778589e1e03dc543b60bb3b10399e5c50de9e728e69774fb3f5fea757ddefccd0f9da75afe4b67f9c54aaaaf646e858fb001a6deed0a8a769ecef0689c988de566b6015fb8c40aeb5f2df7ea4bee60e8e69d15c4a4aa5411dbe63fbdd6418cf025d87f37362f15e22aba83abe1a3de9857c71c2234023b969eacc0bc526363b7f30b092ca114f2a6cefb34394d146866ac86a33fc497a8cb8e2a5bac398579ff7958878421fb08fff4f8f3deb8c9641b8de392647df3017a5467f9d7b23036935ec6e188dd6dbfb544b8a9e04a4b3c7fa1e4d1d9879daf69986b8083e6eb023a4b5eff80fef17f8f65433c882a21565a919448e6091d1b61013fdaf9fc3e45bbe827c9b4ab10b05600a1961e81d31c7404f8e0d32bfcac2937eaed811db167dfdc29286b0d51bad2bcdb9dea76eaf495a31a7fe717c1c98be374a36271cdd06ed06c02ef4c3c06cb42f73b3332ed488416010e6bf2f4dc4dade6e2e61f19e9306bf941868f59fa0939005743dd647f0a04b576a7e71d4c383c479453501e18ec56d7cb79fe31ff534afbd8609ed701ef163f9de31bc58114399fa0f22b62c66c380e8a10c34b7e731df2a8d39dcf36fbf3a66d67b973e3a94bf6ee0bd96f5c76baa76492032fdd2f59ecaee403d486f543f2cd7ae7b0dabe1b5566e681cd40d384a94349e9668650a6f2d2daf86c59a7b02ba466cd03ce1d50c3f0ca4c02dc4b3d1c0e7b9a77df9eae0bfcffa32117d7e05adc7195f4278c93497401629897a58d08ad7141ea52e0163f14992d7a284e7b875ce4640b4dd48ceedad1ea17d8ab1e760773044845e0899602f1bdfff4d42ab80c0765d1a8bde2ba0a830c050923956d06c80b182264ad19ae4f7c39e43195f7d421bdcda00e3eb5ec5ef2ec91d69df691ba7fe250352acf01fa92af5e2c634b9c7c97889e9147e869acc153d88cdc18908f882f371ba9c1e13c26e9cb8e3cbd4c5e1988080ca65a67b3a4c3460cfadbec904d853fddd2f5375b6070941fca53cc106b5748480213cfbdc1c34320a0478b05f76fd0454c75eca069cb1fa7b21704dab67dc40d041c8a1040db378e76655636ad725219c049e6536982d6ee9f11dd032280e622547c7ff44a938a1f233c356a98182d22d5770fbc871e20bb37483dd5d6ea1551993b95b30774a49b50d411ebe0e8c92834094e23ec2664d822c40e96fb42b8607b62b6949e05edcaa436d0ffac6a8ff384068acfc0220c0b098d368fb8113918a4f8c9de37cece74c8695cef2427e54a6e77ad092a9b7f1d94ac9f0836deff41b905b5dafc58ad6063759b0372a634f69a639e19521825d66a282f489c3172a3659264d0132af3571e637782bb6fe5c0afd24547612166fd3409d0991392fa054ea5bd07a4cd0921a13ad7b62a0b5e6d56cd8adb7f3eaa5c99576941c38aff311c49a8c9d8c755869302a2e5e40109c8365a551cd3f859b9421be189d3a0e9ed78830d5cd6a2414e9cc4c25814d94d98f8848e5386d6dbddd65d22b96c5d20020a5dd409c7e5344065871e57e01c91a443501dc8bf619890fe231319b5480c3879dee618d319962596539e2970513fb5c0c8eac3a71ff99962779cf1d7e916566d0e29d121c5cec5d7302a18ed00be9316f3de8c669a64c2a960a588f9c8a42690f6867cda7146e8ce27aa6a7fb27606eed9df6a235a42d17ce71627446e206e879de56025a66556263f06684dedcfd6f083d6a707e5fc8f8212d716e062f0f7fd0c2fc62bea93d68581265a803c31cac3f8ac8939c5f8c464ebd19df42c7e8998494af614c8383294f3f3883f2404ac10404759e182a038c97aea04a85530ec005e203807c5bc30fa9f5339b32fb0427e64915e29a25bb25ac60b92256470e7de5298d42c6b88995f8d2fb704e49d55b66b71e237af90fcbfd71d9093e1a543da2e9911ac4102346dc4704859cb33ac5f5dce2b3331a9dc9fb506461a5436c89bf90d39afcf93cbca4cfc35da6ddb112243928246ae0d1ba269b0fce0468d3ecabbdb925c9ea3241e2dbdc6b151fb4aa724a42f98b0248171fa01fa103f116d0e7deb65dc359b09126f9a420300fd209508ec7a50be56d5b470e387d0c52a1d104625f9571ce1404d1b7af3fb00475b95f752ab96610be112d33ded48624015781e7198f4dcdf917839471fbedb43c34efabe09941fab6b342cf672a29dbb1eed0db788dbfcfcc63bcfe80f7718571f691818dd6f839e3cc282f85f03fe0400171cdf1235049fa53de7450b4c40ed398d5a486f52124c1c63de2afc950e81839f52d17e2a7d32f82788465a65da6cd763c6360763561ed2bf47749080549b6e2db87514e1ee1c85a0bbd346eb6e3cc29267cbedcad67a287fc5be65ec59ba8b6854b31c83dfc5155187d4150685c5c2c342ed68b01ac9e44b60f0c100a347a0f93074dd37d8956fe2f43110dda66e9f9e6185c23dab74cfca21f3ede4bca87687549ea02662f45dfa0ad27f9959a120cacb7c419810e1b1a50fad31c12c47d5bbc61bad77044aa541d29faa6126c60ef088b82eead17a52843307d4bf798b853d90d14c5347ff10615381d85e964331b7a123d15a77a6790d93e920052ddb4db4baaac5e2b27b66ff955e53b8308151c81da4711189ccf0eb393c5bbccfa1f6c94a8d5f4bcd266fc6a12061967ce836ca042257368f567dc42de6ce0be84449234a6163b72069f25b7ead4b2003e1a7665e87ccf211abe94175d1c11bff2c0b6bc110194d34aab96934ef59804cd26e4434ba166d9833fb091be37b139cc10748b881c93690528a96ccccd2dbe024510b8da37dceab567dc52706461c486a0463369cbb99bcca2e8a4d2e005c45401964722a4b3ed37c351c9f21685e8992c9634349379f41796deebffc2928058c8ef6ea37c6e4970dedb78d1c2a00ea9e1ff1e7708470a6c60e6a2b1e966aa872776afdb238e97f716b3df8dfd42bf0f7ceb52bf9eb33731bdba5987b8f48b4599d67b383e77413107857e951ae0625059e5616ccb41131df9a480efd5beab3a9c99615921caedc53dbad675c00ba1030577db1d22731677914fa958b44792cc9c19e2ac71ebe61a05ee67ae7116e39e1c0d103f18bbc9d531164360d901da8234d29fb0b37cd2a60c7aa2adb2a4b297ea2fb14122ad95bd4592ef86c88fdae1e37dc8e44ad03c0fcdfa3801e93796771c5a2ec1e4ab12a64b3ffe48e7442c6224661ed5cc987aada6e778399941f7b20f16f94fb346b916be87f005c9c13789741602039d38270643cce3c347565eef5ee09139330301951c15756be47994de6f1802dc5131b9b011051b1d87d744756831a71cc8528487f032fee9dbffccc751e6a1ee6d07bb218b3a7ec6bf5740ead7a47b6907d7aa95b79aecedf4a637ead8fc6fb8654c93d13ee79f5d6258dcc61993aebc65e4fc14eea7d006e31f6e9f60e3bca8ce52ec559876fd20255e507daa99b185671ce1ac11d448c30bcdf97b9617195e0ccd2d15246308dd6cda74a8071114327fe203b1adbaa780f3243105c5111636a51dce966f5652e39d4f91abbbb4576234d6cacc3ec57cef2dd4dda49a6c33d12bb7595fd5ab5bb15b40301f34ddfb831a5dbf62218f496c003227fe6282e2ac054c45e7f3fc93e51b3ee8690f08612395095a0a12729d663eded879d9ffb325c62f2cb546a48bed51ae232fa6ce28a2494c132a6e09d98c2e3d478d5d2d15dce2e2665e4a3db448931068b99899c2bd8ba87349b0cf9e3c52cffdcf58a59b4fe0089b298b42ad7553f831bd60f5cfa3e09102fe773e4c05412973a678f3b3ed420433cd664dc7f218e816a17c5c9013ecb84abf2dd073557dbc41b92a91e0339d57b8b077a9a44d56427fec5748c47c1460b2e2412094db6d0ad06dea0aa0c1368592594bf0b2f590a9d6149e44dd4adc4cb42e5d9940d59397b83b33b88604c210694e3fbd84795c80c1b09ddb3b1ec8bef6e9dfc4d7f295e551a79436007ca48aa605ef5a89571e59cb26f2766e564e39d3bb441deaa0c8664549881d90a77256c0f6c77241fd6ab74b0e2890f78ff16fd2f9271ef96ebfbd0b878ba9c703900752b7447f4efaa60bd9dc9cd5673a36b39d49f54274caf03c0cf82b95141fa20ed3ce02ebf0dd74d9eff8eb9e2dd3a2976b244b12fd33ee75c1f1c459f86a1cefbc817f42d7f43ba406098165cbeab99df4fe751ae3382efce32af252e461652c7598161e74fd8eeca474fab6b1ede039935f2fd4d7562623b90a422a78941f47a76863d95857c33653d1b42b806bbafcfeccb7bb4a0c58acebf6104b2570afc3ca88e4fdf2719cf39c964a1ea7d2ae4a7fadc938abc95adac495093f6b959b1347501606b3f960b6d739291aa8c13eb49e98b0f78d2b91400b6d8961cb6165c8b684738e4d4db2f2ac30ddaa03a5e0cde4142b625e81907f08c60d7cb5729456806c89ff0efd08397423e44738ff38f8e88684f3a099dcda455521caca37ab4f4d9ed5d37975d4fdd778b97cc93babc804864a35e3a2db04598152e67a2f1f157681c3962d46ada23ea5d9a524f9cdbdd08a07a3a85b1f6fbde11d5a35c7743b83bbefd19aedf6d92241d16aeca7f33cc51839b75f111e8edaeaed808daf2f43fdb3c6f032ea45052ac31d4870c4d0d76aa75d0b88635ce449054013f234c4a16cffc58c95ba1cb8a0a0399861eecb1039bdedfab4d05f0270c6b16f03f6b8e629f687f133ebf2662c7f930530746679aac2791f54d6a95bfab5be0c33739074ed4e7ae88dde4a8036a7d6095cf41776366b6ae3f8f4a0734f48c275e129cfffff5e0abd042f99a957bf6f0f47fc7288750f4fe30198f8cad7067b36cd87ebca08abd3f9475e7443f83cca91a1ebfc42ef3494871f51f6d52a5524b9391c687571be5327c7c94ee2a096653acb410917fd51e56a92be4f24c1db6b97b465ca84c31c04c2f61eae07e952eb6554aa4d8a380d9ee81c1c462c360fcc3cdff2867a953b655562cd06162af8b99bbe662e0c27ce4d9a1c1a907def48a3231c2110c930a2f1498e32dbbfee0e5c5869332f3024fa5dfb0327a27c663cacd4e9902de34dd93529e90eb347bafa5035f56fc578e8386c7571d1f0ba335225ecd8be026b4544ad70f3af11501a53119ee39a8558ca0ed5b3d897ffb9cf0fcab55a0942d3bf7bc6b94ea27a6b748f2cfda431f35252c44610b7e843ed91ebf7e8fe10638f04f52d6d5a7752ec62350efcb7c473f80b1f2a26805151e8346d39d23551e92fbe372df7979c3f756bbb43f6bed09bbc6b65fe6fd241ae1c2f1a0d0b805c582853b85502968f9478e9a84895f9d4ef01ec4f3f571e57cd0bda68ee1f6f7e14fb6e0f4ef8c7dff6796472a935294fc27b16216966d5021339ded059687355b42b55926854bbfbd9f974a0c26eadbfca8a6183093996cf252894e6db910c71ca3ab2e82d90d371c36b92c9409cf7937bb266ea9b29c41d774aa522e103cb30bbabfe872b57beb027623742806aa7694a859ede9bc1fd7b9e32880b064b0030fce1a0e5cdf3ce558a5feaa32e323dbfab6661c5878c9377ee52a615b7c17bf1228e328aa20f92d070c71561969e1af532e76835fb0436810c3d87b982217edfb1143bfc3405ac9f6f3a50145608dfa8658b0ab642a347255c55b59cd1c5897b2cf625a0f0706c30ca1c1321e90cec57b7c3d1bd1af455e3732db80643383c41eaa6781f63da6233360ee720cc04d171ae2445b0c071e339d547f7ac32f407d29ec7abce0a9e1ef5276544877bab2f84bd2eef47ffa66f96e7170cd54d836c9badbc59435146031502c1a3cc744a470f693636d9050c5b894d2d6047df60eb0bac16d905d46cbf017ca69d66427cb88036eca4ea9d0e579f6bfd8a4a850703a0fe49d39c107c9358e98689fb62bd0475aab4b2031446b437c7f9e373caf0270a28d7b15c71f02079dde401e26175bb6e392106a9072021f0e5c5145a1db6f595b032faed8551f6e2ce318db1ab513db876a3eb42d225014949c19543e9c5dfd2290e28c5d72c87223f0195ffbcba1c02c7d0087721efd2af6881dee7dba7565e07abc35bc3fa41c6a4d6a313222ac6dbb117c69c62db2691c68869ac5fc5e987b0ae4335f815c73ea4235da2582dde81d6fdae5911617daef847be17f2bc09edd88830eac03977f89179fe03eb2dc3b38df43803ca2d38455232549110f4580ec3cc04c0d8cfe493013d2cde47c506ef6a8dfc42d998f70378fac5ce4709345926dc477e9e339d8c87ff6287ea6e2873e14d538cdc3f2a47e0e37a2601652f5b665b616a7d1ef3537a3327a76f93990f7694e6484e7a52a10e9eea2edc92b99406abfb2b11ec86667c7af4a333dfe900bf071d1bbcf4f0ad768fae4f450c53817c507d26e926e753e3395201d3ad89061f16706d841994abad283f0db74cada25beb5fe46f48669a62e0b849cb77097e1b4578b45062af4a071b04f0cfddf87519cf2bfa10ebb4b860239ff187e6dad73806ae968e6ac0f738baa88edb3ae4883a9e59be7a6b222c5f54818f95578daff9fc7a7aba8c4a41a699923e85ddf24a32bb71c808516f64d506058a70539276d57984d75161cba7d53a4a864c51a249a6b8fcad5738dd0055ba8468b56579ba5f102642df65c598490f3a0c9b1064f4eb1962c4c38bfb7d55d496a0b0f7b3f90b42f733d112c89176aaf937eea4bada845f3ca4e9b56b3a5a06b4c90fa4c1914ea47020c2f32531e270007ed389246906ecf2c4465f7cc5d6a347583dd73341ad97199021819be81100d867d628323ef7552db945e4c0be604cf6c4a8197958bcbd6c1879387d3286dff979632c54baba2a35ea84efd7726b662b94fae61464d069e0103692599fb86fdc3a06e01c6ae3deb3de6fdb21806c716e5f82b784e4ad3f0e2de629a18e3a2309003dfde9dde8e5101b83312f76e811277afc286b56879f4eb80468e58c60bc088284d05d725ddfe3185b7c51b472a7ff7db3930839142d4a452ddab628e07d43375801d7c6a711a55b452748d770b84ede35920c1ac74b595baef963d21df9418533fcf959593ccf5afccc753e86c4ae231eafe77a158c2472143faf169db29bf2b53c3288d8b3c9added65778095f85e2cb471ab58362041f0a27d874c42bbb06385a0403ca193cba67cf70029cdb7e73c7e2267b856fa0b8dd4c706b45e7174659b0ee2891df911724324f7ca5daf07c912b9b2abff762e62a1817688757492975db7185c4695f3a90895634b8d07453b36dd95197abc31d5d153dfb0d0ec92639540e99d6590f9b394f14c93a5e829fbb33616e810f59c502be44a13b700fd3009545e34c211abf9afe1bb8ced793c6f516d40010649f83a78ddbe9b71d8596582997d0aa54192e1200db61dade30500d72a184ca7dfcbfb80e5442f489d316cc8b75005564835d4b11c482e2c4d0d160f14a8b13ae0a0fb0ba5e3b782770aaca357df0e1c4d1c3b28b776a8b3e0da1abfd4f7190673fca1e1c5a31c688d6e8ddb21300e4178d07c4e854a718ac3f672b0120d6a54c16957c9ec8c444208e47737bc4eeb0bf2d801eb2fcb72f91fe988aa75f38e6cf26e858dc2a718580ff5d281d13e8fc3e3bc30c75c0193481c39c375a5b06b962d9491f3f1fb80f1cb27067f0709e0b0730573a9b5f5bdbee1708ad84b4ceb1a9a61e4c41e90655764057bfa07b8c81cc83a315be1aed6a49715479c0fd0f53f625fe6c7f36fadd001149ab978532e4d0de3d1a38934c74265b161899843704fad16ffc6189f42a5cadec98603e0f98c6889bd4a559079e074cb40678fad4690a20d988735280a1ee8ea71275069132101b35c18ecc9d3c6eceb4cfe9b165e4b6acc17d4f113ef8283c0fb6506f5635401e916d4f7e7bc3cf49aed166587a0c72cdbe673f467d81bc2e9cd08cd8dd16d90b353481df31e89b45e8b | ||
| 25 | MD = be3cfa6c965b2ee4e6fb0236665b0b95f66c8da8b338375b7393672283b0e50b96112d7cb76fffaa6db8ea4a7687fc6234dc1ee52e764d69ba8ac40c0f51beba | ||
| 26 | |||
| 27 | [L = 48] | ||
| 28 | |||
| 29 | Len = 16 | ||
| 30 | Msg = 3a35 | ||
| 31 | MD = 87bea682792f6bb4977fe1b92e0cc7017413dd263732c3604f0ebd63c2817ce5ddc5d78c0137f614a06e72ab1cab2f4c | ||
| 32 | |||
| 33 | Len = 104 | ||
| 34 | Msg = 7db15b3ee240b45d4610950996 | ||
| 35 | MD = 7311a6356ab38a690c0b3a1581c3e7b6de418996c05e79849891b061c51d53dffc0fff2b8ad1c1eff165aee5ef6e18ff | ||
| 36 | |||
| 37 | Len = 352 | ||
| 38 | Msg = d2a1efc725c46cd6a19760f49edf0bae823c1b4992ae2260085746cf65833bd008e56e64002383f51f960239 | ||
| 39 | MD = adb1778360ec659e90609e74b6af219a01a024f216b68aa944841429ed5b03b139444b8b848f73fd5f350ef02d46b6ce | ||
| 40 | |||
| 41 | Len = 1016 | ||
| 42 | Msg = d11ad1253592c094746da7b5c88d329bc3ce1929913b8be07e82d3f6b7a536a855f31ad197376eba6f2f4534413fc4e4e7673fdff8739f774a710754b568b7c61a473059a41c98aa4e86617aa66d2601d0f0d584cd9f132afeebdc0ce3da6a8b290059e6e4aa080c195c42ae7f7e1e99865223439929b0a3a0d79b46ca6419 | ||
| 43 | MD = 0cbec7be7299f48f043c3d1aacf833b4258c32190a21a8ac2471666b4a51b63cc77fff6e081aaf5ef21b1b7523d65763 | ||
| 44 | |||
| 45 | Len = 13696 | ||
| 46 | Msg = 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 | ||
| 47 | MD = 70e1259106fc7a7c6be11d95fb673bfaf0074e342fdaefb458faf4619e7f0edbd68d509b9ca7243d2e5e039d42ee3b47 | ||
| 48 | |||
| 49 | Len = 100816 | ||
| 50 | Msg = 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 | ||
| 51 | MD = b70acba01bd715f542859a4224d035eb177fe7b34d5447e099acd1716ba6d00f515bd02021b5b3015d736b04687544de | ||
| 52 | |||
| 53 | [L = 32] | ||
| 54 | |||
| 55 | Len = 16 | ||
| 56 | Msg = 43cd | ||
| 57 | MD = 7c5f9ed821a021ef1850dd4e0b179a656fbe27b104463720f467db32bbfab5a4 | ||
| 58 | |||
| 59 | Len = 104 | ||
| 60 | Msg = 5f75a437ce0698a7d8151c3fe0 | ||
| 61 | MD = 774782a9c3023dcef8b2cb83f7994324e3cca35323419b3914a9b6bc3ace5ce1 | ||
| 62 | |||
| 63 | Len = 352 | ||
| 64 | Msg = f88bac738d1e3e10f75e46e3fe026d7e423fdcf3d7e4028b33a291bb4aabca53f780fbf99e0346d610d4a38f | ||
| 65 | MD = f114f1a390bfc30f34652751f3a38e8bdc9597625e363689459b80082eb34009 | ||
| 66 | |||
| 67 | Len = 488 | ||
| 68 | Msg = 832e5b78a73a1012ee62e00621db7f4d248893007c6e5d6e0e689c6b291baeebc72df9cf10b289fe20e7fab80a2399271d0ac63766049da875eed56264 | ||
| 69 | MD = 7d00fe393c308eadb8c0a4f771d409e17c9a796e63b45fc8e84c0cb2bdb62532 | ||
| 70 | |||
| 71 | Len = 13976 | ||
| 72 | Msg = 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 | ||
| 73 | MD = 6e5905b22cb95e48b73c5a885f5463f554d81257bd26301c4393d57fff1c8323 | ||
| 74 | |||
| 75 | Len = 48824 | ||
| 76 | Msg = 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 | ||
| 77 | MD = d7c901f0d92a868dced7e2659e90121108611dd7781325fc57e5c336c2279510 | ||
| 78 | |||
| 79 | [L = 28] | ||
| 80 | |||
| 81 | Len = 16 | ||
| 82 | Msg = 3dd2 | ||
| 83 | MD = b7399529fe614af98f9ecd73e45790406883cb22e3bdcdf28fadd033 | ||
| 84 | |||
| 85 | Len = 104 | ||
| 86 | Msg = 3d232201038fe7d846ac1bd4c6 | ||
| 87 | MD = d0aee5482c509540a4ea4b902bf42fc8df3af6de42fb14e903d1b2e4 | ||
| 88 | |||
| 89 | Len = 352 | ||
| 90 | Msg = 44c98cfc71f82215dadf494d68d1d6b92bb4eb81fa0fbf945a659d9aa2c2302b5c93fd3eedba31e479e29d36 | ||
| 91 | MD = 56c22e6066cd4c4d6415c5a225257e7f888b317ba4e98eadb72b4be0 | ||
| 92 | |||
| 93 | Len = 504 | ||
| 94 | Msg = 02a5c7b1b749d6d49bed302d9439f23ab83020bd4d573906f4190e74216ad33aceab775f71cd31092bba5cfa42f0845bd16fc1b8bed6434dedc92f80b395aa | ||
| 95 | MD = 33a84e66cf1ce6970c35807db25e05ca05809e53d4e34cda9bfc0045 | ||
| 96 | |||
| 97 | Len = 13976 | ||
| 98 | Msg = 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 | ||
| 99 | MD = 60700d4ef068822d0fe6df450b4aa8e206b2790d6dcf973229a59889 | ||
| 100 | |||
| 101 | Len = 48824 | ||
| 102 | Msg = 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 | ||
| 103 | MD = 85747c796a910421ecb364b4b4f0e68b49e9217944f6586eac4993ec | ||
| 104 | |||
| 105 | [L = 20] | ||
| 106 | |||
| 107 | Len = 16 | ||
| 108 | Msg = 8a61 | ||
| 109 | MD = 60bdeabf39efdf21ba9c0f94af6552d2ffe699e1 | ||
| 110 | |||
| 111 | Len = 104 | ||
| 112 | Msg = 37487aa02b03bdbc6bc62e7e26 | ||
| 113 | MD = f146072f92dc4a551721a10bf0b01564cc2b43df | ||
| 114 | |||
| 115 | Len = 352 | ||
| 116 | Msg = 6ecd002568bae3bf1873993041bfa292eb94e9ad092d8eb3585be82e8a20cb36a47a06e7a57d301268a4a533 | ||
| 117 | MD = b0a2d6033cf1d8ff120a605b745d736ee4aa06d2 | ||
| 118 | |||
| 119 | Len = 504 | ||
| 120 | Msg = f6dc1d2f6b8e126d99939664693d8709513f97d730074ec2794e536d94ede79c81f2b2ecbff3c2c26ca2d181ada2c60050997f3bb087ce48d956c18dedb227 | ||
| 121 | MD = 395dd2989edc854746e384f339f0808c515747be | ||
| 122 | |||
| 123 | Len = 13976 | ||
| 124 | Msg = 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 | ||
| 125 | MD = 1adccf11e5b7ce2a3ddf71e920138c8647ad699c | ||
| 126 | |||
| 127 | Len = 48824 | ||
| 128 | Msg = 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 | ||
| 129 | MD = 2cbc07b9b9c819b8fd38d8a614a8a9c3fa7e40ee | ||
diff --git a/src/lib/libssl/src/test/SHAmix.req b/src/lib/libssl/src/test/SHAmix.req deleted file mode 100644 index 453fce20ce..0000000000 --- a/src/lib/libssl/src/test/SHAmix.req +++ /dev/null | |||
| @@ -1,99 +0,0 @@ | |||
| 1 | [L = 64] | ||
| 2 | |||
| 3 | Len = 16 | ||
| 4 | Msg = 98a1 | ||
| 5 | |||
| 6 | Len = 104 | ||
| 7 | Msg = 35a37a46df4ccbadd815942249 | ||
| 8 | |||
| 9 | Len = 352 | ||
| 10 | Msg = a93aed0fa5e163a82c9a934aebaab8180edf7de0b32f0fe99f9c75ec305b24609334cefa372c7c758262dc8f | ||
| 11 | |||
| 12 | Len = 1016 | ||
| 13 | Msg = 433e88eb2f8aba562d15c18126fbdffb81d5d6c9397fa052321f5f78cd629708ba099b540da5451e949eeab8687a8d6ac35c531411cb37144ab5ff6a7eb46f1ab28fbcd2ea0444cd87c57bf7d3c02952dba3d3987da07622c16e7c086d90e88ad3d9d4afee301d2bad915d868f54197b70b23c9fa385c443404fbc9abf7e6a | ||
| 14 | |||
| 15 | Len = 13696 | ||
| 16 | Msg = 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 | ||
| 17 | |||
| 18 | Len = 100816 | ||
| 19 | Msg = f8ed40e878dc68ceec52cc8e2868722310fb117ca3a52e1839eb85d308b8aa00ed0bf0b76aec8a70eba4f0d14d2d85c5a0e876ce2c8ee59cb36947def6c40a587aa07b368ca8e8a08367018e45b984de0d7f1aa46b977cc18c0cd9b7bb897cbb2814aa0ce8f8c9843e03c86c19f2ba95dd2ac4a466a93aae4b3b05055ff148517ecf43e286c57744a3e10a14d0c26e139a503e7927aa688c78609170ebe3b54104390e5f6cf538093a67922e7210e77fcb584ec9b6844e829be246a266460cb442bad52ca47255fb8cfe276108c36e02f9acbd3d191d34b93d29ec40d80496d1c1bb5ef036221641200e905598c54bc4abb3527c5a5f6258e59d4bf54a0498c108a2725428efc2047e0096b32dfdc6ec69d5d72f81301f881ca62a66c22e5dab9fd9d90084c0a36b2f3a0123cc5327a3bc7a12fd947ab57169ac533e4b6a2cb80fc65b9b527cff9fba26994c7fafb5102a0acd8f9d246a3a54178c23eaa04c0fdfd3c0cd980d1fc7a72b25d74df9b95c3dedce8ca316870c654f9ebea9b806da9767cf40605a4b0c7fb06f6b3f197bae7d8cde9daf38530e25bc51b68f9aa23ec0e95199b14bca96c91f3db15bf8432f714dc46ac87218691bc66cb3a42f6865e1c30f8394c8e68c0ddf5851ab7c5906a1994a9af6ac1c44d0d6b95ff15d9f77825ccea40fb9e516d45888f2378e045d95d936d541cea9c8ca52fe5f7d0d919b2b1c59a42d06105ea4f2943c05178e59d67351c5b2c0051c93a4045e512884fa656b772cf398af89081546d920fd3d24ebd16310506a786ab33293027394c1bcb7b1efe46b550ac28529646e8d2a5ae65c59345e24b44cd7b06673f3ed3b9008aa568a739c26682fa596b7a655842cc6b2758b583487c78d14a76bdac7033806c5c210828ef313f8efc4072681f5fded748c31a58ac933b4665c445f07d603e0905e49b84aa55146eb1c1c99196413832a05efee2e64d6732fefc629b79b37bb9390fcbed7226b412204bda523b8b8af5c4a8bdb263ef9f3f6c7b9e1de3a1dc257c1f33b3d54a9101be5b4f2a9db319993c2cd137c41e35c434ce52e859afd1a635af4d8852252dc5e28c729b2b4c96a56d57f3f3854ded59fe612b9b3a51fee3fc1c83db673b0cc7433bff2472bc74a2eeb6706605e308690fd072a7042ca6474603711d8310909e47063f46f287260a26c4f11fe492298a0f98d28c45948a4899e08fcf443a6ba36457dd8329314d53ac0fd0819fcfc3357426c5bb8d3dfd706e205a81091cf08f31cd3459854f3d07e503991ba5f067e3c406c6c5396d8257496f4ba3703cb1ba25c2fe4aa54577af782cd57e85a88a2d75c54039e8b7bb559219edd6e81e41acb6d575d6f798afb2cbf7f00abd5c9c7b0fceec79f9a0fb040ebcbb7bff3602df7b71357efacd37aa57019350bb81213508a006160acde3dae5c42f03141887eaca22d7b33d6791febfb619d11ebabb13e6c5378e9a72e852ddccd31cc53a43275966b7042ddc51485ca20e1c456dcc7020cafb5407548b044d332229911fc74d7fb97de25abff7efb431da82de2ed7e25d0dcc06ffc74e57ca93a6a9f64d76a5c39776fe2266f88d6d0229b527525fd2e22a1407e26f94c5bc6adb1e7327f3c8bb8d4c983385c579dd8f5623df8cd6da569c7de73d9210e6b9253a177653a13ece075940fc81016d8c35fa4f6542df5120c174158ff32533476f4e059e35117081a24798fbdd1eb10f82809836f8dbefe755611347f75423dd8571695960c6f66cca71f0a01e8fecbe1183bee3335eff10b4ff8104132040e2145ec3164b2448f60c730887b9d7894e5f7df3f876cb17136c99cf32db1c02fba860937378dbd093c4c5112133781f06c8ca07c527c2c085e8ba5e52b399f2909e217aef6e3035ecafe2caeb1004069dea023af7eab873deb5ebcef2313c9827821bb9f89fd3d1570a569673d3ede86a4fb13dff242eb98450a8917fd8865c56e0a9f11d72394b79808b0429f3a83cf2465161596887fa2d557b367a1de9c7753666b0cca9c30cba9f0a749c03c55cdc7a6d45852c76ce2010de3e7f75d95228efdc79949b238d90b25f983868b7f07f585f7b00e45d9e132f3c09ee84f794d899759be3dabd46a256f4cf8da71270617cc2425b24cef25d1d2f3945afa6f81abfccc858cd02e05619649b1a5347650934105c02622d538447223d136a8a0455cf3c6f61f696b32266197b5cd1d936fd3ad4288520fb4a2f59bf95e659f33210446ef18debeb679dd99de0c3c74a6eb3dd783861f5db4e94a151c42ce27519d0bbbf1f3b1163563ec06c8bfd881d94a3b896fc07352fc97ada73685588a2242da1b718f81bb1077bc70fbd58b8b52163489ae403838b533851bec30ed0ecd97d72d1af534f3703db59f1f563bdc39d690a0e90e545506463a37e84974fd7b256bbb912cb4077d3e3f5bdd4bd2bab713b696c830b1f2185734c4d2dbd49d5372fe8b813ce73f5e01c36bddbb376ef4541033f2b0355613eeda8951ebf7377e08f967902eb7e23c0fa798c6ae52401721053f1095cacb1e9496500e83c412236fc21566090b3a3eee55aa402c0b774802fd81c9e8579761cfcfdfb1aa23786b2dc35dacd5ca8d8d283369f53e4a5db18060c2c6b0c303052aeeffe169fcaf7ecc63090a9ade245045ab9c8aebf738772297caaef5f857322a597846c7370083d409df27612e47b0cb240daa3cfa51c57108612ac0dddb0f59791289ccbdb3a2cb1fa9ac31a23dd5440682fb373bf0c1f41c4fe2185ad7c53eb69552807410053b0c2d40132250e637b8c425e6a35d93333b5b7d0557927b6179c848ec455fd1ab38348c0e96c60b2da49bd15118df64b6ce4fa48fbc555a4b2874141718e731a40b85382ae6e86ead31cea77f83bf5c063bf1febf71688a832d615e09d6f14badedeaeb6ffbfe343fc7274e78cd46a2aaec0a349c5f133291ee57cdcb65c5474e46294de6bb50886bce6c6f44dcb95f2a4761ed2e6c9e7bfed51e0964afab4e0f7e0b07960f2590baae66b1ec9a63ba0fb6c0d27e81508c51487dbbdc9beb8879fd58c188dfc774b3d0ddbd77ee8bdcdfa0ed8a9387728e12b13e8b3c10cc1c132bd822c2147c5ddf9a993aedbf78ec256db1be76644ca8ca7727208bf89732657152d34e948d73c47561d156f773136684d4162d02260300020123d13a95f4f835907c344942ddeccafe2abb7dc4792c4f1e39c24748c63cba933b16be0b8853e058c47a1ae2c4dfff39ec2339b345fe3557d03c1df91a0607a711636c4416ffdb73532aeeb74f237ed8bf971388a0659e4682a46b8327e751034cbf2c87c7828da9d24baf07a742ada34d1ef38ab1e8f2b4f801192c146600709533e61bc2665dc1e9e6441bf3c4f6643bc0c102a10f9a69da5b0e3d0a0c7cb694c682493032b5853f02953b5c2fc0e1348565389762fc2dcfbb34fd305f2d9df080e859396ffcbb7da78aae0a0d72e3de76c774bc6a81c87f2872b6afe97ced5269009304a4992c4add0bbe24e57632e19ad0fe37ae910193aab0aeae32cf6d618ab33eba59f6a04fad00b1d2403396e6fa661d31b695a1b349d62f56c08fe6c6eae7a482177adf341e51d03ea511d7959c721bd20bf371860ecd7fce1d25212891850b85648db0a039e6638d9c78bc958add3e41341536b5007be63fd1f7e3308876bcebcb97dc3b05a7b2eaadd00f8fcc8dcfa7b961bbe727c9aed1626ff786d6a0ffdbd1002cae8a7d047b6181962a686c152b2341c7c58c9f1dab5af424d183ed1c7d003165a1d04ea3683ff31a0f68615af6f91c21f736e67df641ed31b998445afadf9052bbe004d5dad08f62e5d353e42fc35a92242d8414d99dc4e7e81c8c027af686baa5c185e3f99abb3855b22cfdff0a62e2f47a632b7df8e00e0317af5c24ce7c64077bbb15ec27e062070cd3eb8e549ed9112469090ad9a96eb59294b021eed81987178cb2dcff67a9a2e930f6032c753e203380f8a7c987cea393234699de03a1d09ce204f0a8b6d5cf522b6887174fdbccb08f3e7c4fe2f778254465b32766c48812a45151ac37ae354dac87419f9476baa27e24b2f322b2da4ddf579750684a5881bae2269351fb7de59b9d5a4badd8951135f2713dafc57215dc626ee170fae7f20bff98e36b864e1fe0f0f9a300c903069bf0e0b6f2f8e78423cf6063e89dde6c81efcf26ef15510563c84730f611ac879a6628e55115e1a29de6945d37fbe4f803fcf2e344712d9e0d6f6c79f8773a9f199b705235e20a7830ee3357c5dca29d7a6c29a3d2628bf2c42c8f076cc4525301d8e1860729070dc53164d9fa08bf63cc889eed01b0130a7146d860bbc09ead3865a3082db0836a45f5506c3e46e452e298764939226cedfd06700e4e33c6b4a78add601140249596831e97f960b973a4e4dc3fe2813fa34eb47f998ce57270368fb81719a09298a223f7e3931ce5cdfab3f658649533354e982c87dc9e49eacebb5bb4af9a767b4f1c03d774431168cd4fec1b2726f1aae3f9a062a825f3295557eebf3af4784487b869fb049de44d03fee71194fc200af72103b157431935b5ab9bc122773ffd313d52d7acf1078386090fc011de695e71567cfd51c06317d4ff8841ceeb74ad35f4e5f4d20921123cb88bb2079674ad39e133cdfd6478d69c9bddc7a818be5d7b254bd9e0abdb030f52846fdfeae8ff370a51a9c5f6017af3c6c3db17c5c614ea18ab0e3ca0dd5de621217dffa36e5c5318fe191040a50cc3ca620683bc34da6c142e1c50afce28a86b8b66d189adcd755561a647080d93f3ede1cf54c3afb7e863fc8a82a2576d3f79e9b2bb634e598507a3d7d017e0176b7868bff3a3dfb4474b3ce03c401f33929364e727fbf8096b77eb351435c7a113b3215cc6246dd86f1517a7e550cf828900248f7c1754e40fed62477b296a37d3e53231360d012c4908b466e49b0e620c0a5031228009f259b030956ebd70e49357c3c3ac2842b6bd6e3ca5a3e985dc03f7105681fec03b320a7ca753b782ad3b52fd9c8e3bd980b48dd6ec8901dbf756108e85015821c880416e0693e0479cb31c0743450f6d9214afabc4feadb9bcee9def460a58d3a02d9e3039970068b8e3fd0a403a6ca7f2c71ae2b46ab3c731b1e65e2104c47fcb1f69e7c8c6df8c09b33f2e1cd4192faab316a44536dcac608832019f5765cc5240eabe3c87445c980c299a5e7ae0acc2c2ed19fdc8f011515bcb00476b03633c7669db1b44f97f6cd402778e9687c740dbe5686789b79d0b13f784a2a866eb91ab2d66f064c49e8df513ec348fd7272ee548ba08e1f9f99696ffb53677550d59c67f88404f6e610455a422d9cd987493ca5c366a397dccface2bba8e3e99719dafa768956cbf6fd8defc4104b8925878716a0514f70cbf3fa2c2bc2f66fabe654eed3076257e71117665703eb88c79e4c2b94e8e856e7a6ef90ee2a358409db78b98056ce1750eb80725d70e35507fdfa5933a61496ba48fbd5555717b33b59d4ef211fe096aefd478859ffc97a41372023ef114adcae5a8d5e03c21369baf1e7f417cb40326bc6db1cdf0904651dda3c1039a2f1755e7c329f7c03bf33f324206ce6e1638711c8c9a45f153aa1f847cca2a5d3af1d24fe7a1e1094819e8e712cbe10ead1012b7371b35cbcc2bd5b10505fb63bea20ac81d25e83ed0105e7595b6c28400f4d336791ce4a584323d0b455bbed44392c5f86c9d5287593f6986d4b0b8f9974a7a4157859ba801251d3b44b2bad84f29cb87dcf1680d6d10d1bfd59f0c95fb7bd07fdb3ea2fccd6e3ee80af438956ccfe31e750972f893ea5dcaa26d077fb3f09d990c2f41c8707368bba007803621ecd76540cdb8705435d74f4300eee04710a936f241c034709e625b0dd5dae1f6e86d034426819c365a05f5be420cdf4042bbff965a666a5756f67259448ebf742b6ea189fa17a4c3bfaf651d19a8a525f09d9cff637c8fac02eaa58d3ee3f7221da1e61833c0b183cd9f47686f09597e8115b435454acef80c079eafaa22b18927d07bf8b7c5ebfdec9c42a52b7824d45decef41e6184dc2db1505ca6f94172fafc10731706e79b9856dfede353d2eadeceaf72a302e3492d7dc81e3777e4e9e1f3d33cc4402833ffedb241a75a09e9495d671f80ad3acf06823bb04a92b815edd0ca7d01dcb3318c1ae5c62d3e99c0ec37908b45b51dd65f6b45b34ede2d6f553f60a45e20fafcb34ae4dbd375f52a5db9c62650deeee78e955087c2bea75ede7c304347b171fe0c1a2a033894be6e04605271307f307b2a9cf6ae24b8c87ce033a3fa4cf2bacdfcf54fcccb1f580476c7d00c631a8529a9eea2a713610341e0e25609dc8927e51c58a0a9197a54963b5cb95877354f4b8316df02ed2bea367704a12274d96bcbe0d0d728923a368bb8ab98d5db5401894c822632308ddfd309071fb4b477d8eac0ea5dbbc3e3606d8510d9051dfb5e4b7cdcf2c57c1b76902d864c3109c901da53019ed33cea84b407490486ad9f980a8a63df3d2e3921064afea137f35179130db3351f5bc3f5e7d590a5ab08b5415efbd345f9d57b71ade7dca939efa5a12d677b9af0af14468176a43712bde10cb15787c18bf066eaef8abcdea77d3a0c61d6c74ae7b54fe90940d0233e4b874c9a141dcc740d7fff43b9fbbc012a933d890232cf74fccb7ff7eac1148e203c7381b7f1d1429b1b1152ec25cbf7562596eb402a9328e43b5dc5cae36592da5523f0b9907a6817ecd395a7c778daae85bb11372b20641a04250b77b3a0ece885d07faf9622650259b874536d6d2b92181c834dc111b6fcba483167be40ecc922fb87006f63b9e8e632879563f37a8f712db9fa68c1a20ab239c0116fe022fad1279f3288b8e74a16d447e467b6381515814dd3aecab5c2a09c400b44e9100c04c720dc7e8c6d9460002da6c52004c16999975fef8752c2f9c229cbd9e6446b226cc454bd68cd665668a17328bb30f301e92ef5c7a2197a326df5c99b422096de8af231d1d8872e6e505bcfff026d4862f28d4bb3856a66ced22c9b0587451d8da4230a38561b5b1c69b523a4701a2001382aa82fcbd60733a14696a540227db44aef346d6c0a7ae5173604d59eb828614cafc1b8cfecda054dcc7306f73925e6d1af56ed74c51c6cdb66e9fee8d7a0078254fedb0c0f5dc85a4686870709b499eafbc8451aebadf848b0598ce8f955688bd2d6032abe10d1391d67c20a049841f95d2ee0c8deae2bc1baca0c098d8718cba1ddcd968981c47cd98d247aca4f838f3bf16d092eab8be8deb1f8d504d37cc44a8c96c9f22f2698036d4ad3bb48b31f109626565c147d20a4a7dfd61fb918f81548fb4f78875c1d138e819f6822651b93a3c92ad77793fba5222d870ea671f9cac967919d18f96e92778548415b2e170d90b201215354fc48a77e62823a2c2bb354782ad052732f08beb278f751529416f37d83ea26248517ae2ef2ead28c1077908995a2d25db0deaa957bcab39715283287fd626ea7388abccba2d90e364a7ff4284c84f70da68ce1aafb5be0401cb9d45e085aab41892a49e10cbd5baf2c34f5e0ca076f2772abea6f622b66020d546f8c2f134a87f96edbeb9b08394b585f2c2f98aa792f97b43b5f3aa9c34189804a9ecc2cfaeefbd0f967d85a25bf3136fd8132dec38aa82e4af6ff677682f3b62be27a180aeb22f918c24f23bf6f5954e0722324cccd06829fc32ae4fe3aee6e5a03b3651900e13fb0a759e544d033418b6ed40d037b4549a0404792c8fddc317b7f028493c4c91d6773932f8486417544f3d007e5f9e6fc02fadff175303f77f6b0e1f709bb3d3a93b38552ccf62688a39da1a602dd5e122e6f4e9171769ada5255cc5cf938dfefcbe3ab0faca434c42dc8c357e89a3d1488fa3df35c3580b124ba3bf6d0d203d586707eb692150ed05a01bf9de5c4e67bb948088784016394d47abb853f2b6b643a066ad81bcd1735aed4e108a8c1fcd025b548de874eb60de7f3c568728959147d1219e4b830e06ca2bee1f8a035e28a54ee6958d4821a84e5d1e41139905f7ec60fe67ce5f4eccdcc2c3d1e4a753a32dd3004970a4ff3824471822fe2b5010b9b6c6b01336dbf0181a95cba2624663215468519871cc39e8a7f4a151c8bd03363b402020f2fb98069b2cb8cc1b7e930938e7540d95d1d223e47865135793f9eb573660ff79f7ed2fae503e68ba44596ee745fbd8fa562c5c666d174cc01b1961736e18b8b517161ab9c8058026e0ddd6c94aed0086a26e1b959a5e05eb9d8c1ff5b2ef518ca23b4f265db61b499a48cc46bed28d23ffc1e8d9c9e345c06079ad47c88dd4e8e286575bd7f9420ab9c2d5c6685488b8b34d4c9ac04e1427ae0994cf789b48b01d1db9c2fe75fc5187727bb11119f82d0739ce4048467a08cd635bf78cc1b6cc9c28fdc199d351064a81456f81c9e56a43aef7332973804b06b18a26caa62523a7d0acc272ba49124b17bb68800d5756afd34ddb2b7e2dd8a118aac3fcf39d9f853c4d2c4fd3ed5bd25a6604d68d57db93d15aa1160f8a97e6c24238e84f272780966867f9c644ca2775cdac4af0ece036cfa6ebb1cd9d701dd7daec5763c9a4de0385db383a5647918e79c6a6de1f4ee1f6b722c561704c8d7efa4710d78dfce8ad2df0d3d82cbb59cef0bcb001f70bdc6e17af1a720b117fe02bb1dd527b18e6bce70e9447cd0cc85cbcf431fe7c006f5e4ef878a974a93b25f492847c9ae020583c9d412f4124246164d8f080b615e2eee267a7aeb5fa0974de52cefef23cdda7b305a33a91e9b50471ceb72dae337c485d636e28d6ee31f5705983808b1567d4d4ae820ec445c56e6a404cad6b408691475397c0dd6cfad232106ba96e5104052700a653e21f9ac6d79578a9f52548f426a1e81dd45bae30acdd4d22a2dafd633564d6b2f45e7d35413503c955cb0a9784b42ae8c2a5933a6729f3922f969a158540dcd201ecb6e32f88b5b4921914a2e8f424c8b031f115ea5d23a21e6f22439ffd7e5d11b08df729f65613b4f6ad3edbc9a066a5e712ecbddfa6fa764cdf170c0485f82d924a99b7e7ad8dc44c1f93e49b6469a9af3de5691944413f1417b753bcb84d5b7a34f362c383cbc802b0c88bd23a7ac471b9287571c42081b1134bfc8ce104a550942ab1f2a074cb00a90558d6e841ff15cfde6951f03e450a1bfc90dec6c513fcb2692ddccc31d22e5274d41036656183c72fce208e44920776f196193137ac67d6d65ce9cfaae774f23a86e6ee8ff3a4e9422a4667d971906e5496a4e80278774899c882708611bad282f6c1d666bc5e7c40082b43a6e98d494a18e9b3cf7f154fdbf90d786e59e83b72ad0ab893c49aca50ed37ea5202e650fda54f5c46ca2a35c476f4b009c5e6733232275abd1341199b63d22386c484cb95c43ea90e609c407bc79ddd00609cc2eb0d82848db239b249f164b7ea384d0239fe1e64d04955b9297472cafa2ff272c5c78100aaa86cdd8120556f25652a3c12da5853338e3be8f505d93ea03cd1cae7e78e95befdc0e26b760d11e05403c348e0523fe036381408033c009a8e1f117af5100a6eb91f08307df465c20bc1dd029875ef7e49338689f602d98f2dc690a57a6f2864e57098f8bd723574944ad3688b292db6d01387a16493912722ac8f91fd12b748899bdaeabdf0479df788eda440d7bf30d1c25d78d757f00b74bb556506637fc1ab87162f05d464e63a6272db3fe56e9357275035d6b6bee32bd92c4a1dc94778551e94ee1d8854f767bfac3811bd0287672aaa01ea18c25650f05a68cbacd9158e479b508e72df778589e1e03dc543b60bb3b10399e5c50de9e728e69774fb3f5fea757ddefccd0f9da75afe4b67f9c54aaaaf646e858fb001a6deed0a8a769ecef0689c988de566b6015fb8c40aeb5f2df7ea4bee60e8e69d15c4a4aa5411dbe63fbdd6418cf025d87f37362f15e22aba83abe1a3de9857c71c2234023b969eacc0bc526363b7f30b092ca114f2a6cefb34394d146866ac86a33fc497a8cb8e2a5bac398579ff7958878421fb08fff4f8f3deb8c9641b8de392647df3017a5467f9d7b23036935ec6e188dd6dbfb544b8a9e04a4b3c7fa1e4d1d9879daf69986b8083e6eb023a4b5eff80fef17f8f65433c882a21565a919448e6091d1b61013fdaf9fc3e45bbe827c9b4ab10b05600a1961e81d31c7404f8e0d32bfcac2937eaed811db167dfdc29286b0d51bad2bcdb9dea76eaf495a31a7fe717c1c98be374a36271cdd06ed06c02ef4c3c06cb42f73b3332ed488416010e6bf2f4dc4dade6e2e61f19e9306bf941868f59fa0939005743dd647f0a04b576a7e71d4c383c479453501e18ec56d7cb79fe31ff534afbd8609ed701ef163f9de31bc58114399fa0f22b62c66c380e8a10c34b7e731df2a8d39dcf36fbf3a66d67b973e3a94bf6ee0bd96f5c76baa76492032fdd2f59ecaee403d486f543f2cd7ae7b0dabe1b5566e681cd40d384a94349e9668650a6f2d2daf86c59a7b02ba466cd03ce1d50c3f0ca4c02dc4b3d1c0e7b9a77df9eae0bfcffa32117d7e05adc7195f4278c93497401629897a58d08ad7141ea52e0163f14992d7a284e7b875ce4640b4dd48ceedad1ea17d8ab1e760773044845e0899602f1bdfff4d42ab80c0765d1a8bde2ba0a830c050923956d06c80b182264ad19ae4f7c39e43195f7d421bdcda00e3eb5ec5ef2ec91d69df691ba7fe250352acf01fa92af5e2c634b9c7c97889e9147e869acc153d88cdc18908f882f371ba9c1e13c26e9cb8e3cbd4c5e1988080ca65a67b3a4c3460cfadbec904d853fddd2f5375b6070941fca53cc106b5748480213cfbdc1c34320a0478b05f76fd0454c75eca069cb1fa7b21704dab67dc40d041c8a1040db378e76655636ad725219c049e6536982d6ee9f11dd032280e622547c7ff44a938a1f233c356a98182d22d5770fbc871e20bb37483dd5d6ea1551993b95b30774a49b50d411ebe0e8c92834094e23ec2664d822c40e96fb42b8607b62b6949e05edcaa436d0ffac6a8ff384068acfc0220c0b098d368fb8113918a4f8c9de37cece74c8695cef2427e54a6e77ad092a9b7f1d94ac9f0836deff41b905b5dafc58ad6063759b0372a634f69a639e19521825d66a282f489c3172a3659264d0132af3571e637782bb6fe5c0afd24547612166fd3409d0991392fa054ea5bd07a4cd0921a13ad7b62a0b5e6d56cd8adb7f3eaa5c99576941c38aff311c49a8c9d8c755869302a2e5e40109c8365a551cd3f859b9421be189d3a0e9ed78830d5cd6a2414e9cc4c25814d94d98f8848e5386d6dbddd65d22b96c5d20020a5dd409c7e5344065871e57e01c91a443501dc8bf619890fe231319b5480c3879dee618d319962596539e2970513fb5c0c8eac3a71ff99962779cf1d7e916566d0e29d121c5cec5d7302a18ed00be9316f3de8c669a64c2a960a588f9c8a42690f6867cda7146e8ce27aa6a7fb27606eed9df6a235a42d17ce71627446e206e879de56025a66556263f06684dedcfd6f083d6a707e5fc8f8212d716e062f0f7fd0c2fc62bea93d68581265a803c31cac3f8ac8939c5f8c464ebd19df42c7e8998494af614c8383294f3f3883f2404ac10404759e182a038c97aea04a85530ec005e203807c5bc30fa9f5339b32fb0427e64915e29a25bb25ac60b92256470e7de5298d42c6b88995f8d2fb704e49d55b66b71e237af90fcbfd71d9093e1a543da2e9911ac4102346dc4704859cb33ac5f5dce2b3331a9dc9fb506461a5436c89bf90d39afcf93cbca4cfc35da6ddb112243928246ae0d1ba269b0fce0468d3ecabbdb925c9ea3241e2dbdc6b151fb4aa724a42f98b0248171fa01fa103f116d0e7deb65dc359b09126f9a420300fd209508ec7a50be56d5b470e387d0c52a1d104625f9571ce1404d1b7af3fb00475b95f752ab96610be112d33ded48624015781e7198f4dcdf917839471fbedb43c34efabe09941fab6b342cf672a29dbb1eed0db788dbfcfcc63bcfe80f7718571f691818dd6f839e3cc282f85f03fe0400171cdf1235049fa53de7450b4c40ed398d5a486f52124c1c63de2afc950e81839f52d17e2a7d32f82788465a65da6cd763c6360763561ed2bf47749080549b6e2db87514e1ee1c85a0bbd346eb6e3cc29267cbedcad67a287fc5be65ec59ba8b6854b31c83dfc5155187d4150685c5c2c342ed68b01ac9e44b60f0c100a347a0f93074dd37d8956fe2f43110dda66e9f9e6185c23dab74cfca21f3ede4bca87687549ea02662f45dfa0ad27f9959a120cacb7c419810e1b1a50fad31c12c47d5bbc61bad77044aa541d29faa6126c60ef088b82eead17a52843307d4bf798b853d90d14c5347ff10615381d85e964331b7a123d15a77a6790d93e920052ddb4db4baaac5e2b27b66ff955e53b8308151c81da4711189ccf0eb393c5bbccfa1f6c94a8d5f4bcd266fc6a12061967ce836ca042257368f567dc42de6ce0be84449234a6163b72069f25b7ead4b2003e1a7665e87ccf211abe94175d1c11bff2c0b6bc110194d34aab96934ef59804cd26e4434ba166d9833fb091be37b139cc10748b881c93690528a96ccccd2dbe024510b8da37dceab567dc52706461c486a0463369cbb99bcca2e8a4d2e005c45401964722a4b3ed37c351c9f21685e8992c9634349379f41796deebffc2928058c8ef6ea37c6e4970dedb78d1c2a00ea9e1ff1e7708470a6c60e6a2b1e966aa872776afdb238e97f716b3df8dfd42bf0f7ceb52bf9eb33731bdba5987b8f48b4599d67b383e77413107857e951ae0625059e5616ccb41131df9a480efd5beab3a9c99615921caedc53dbad675c00ba1030577db1d22731677914fa958b44792cc9c19e2ac71ebe61a05ee67ae7116e39e1c0d103f18bbc9d531164360d901da8234d29fb0b37cd2a60c7aa2adb2a4b297ea2fb14122ad95bd4592ef86c88fdae1e37dc8e44ad03c0fcdfa3801e93796771c5a2ec1e4ab12a64b3ffe48e7442c6224661ed5cc987aada6e778399941f7b20f16f94fb346b916be87f005c9c13789741602039d38270643cce3c347565eef5ee09139330301951c15756be47994de6f1802dc5131b9b011051b1d87d744756831a71cc8528487f032fee9dbffccc751e6a1ee6d07bb218b3a7ec6bf5740ead7a47b6907d7aa95b79aecedf4a637ead8fc6fb8654c93d13ee79f5d6258dcc61993aebc65e4fc14eea7d006e31f6e9f60e3bca8ce52ec559876fd20255e507daa99b185671ce1ac11d448c30bcdf97b9617195e0ccd2d15246308dd6cda74a8071114327fe203b1adbaa780f3243105c5111636a51dce966f5652e39d4f91abbbb4576234d6cacc3ec57cef2dd4dda49a6c33d12bb7595fd5ab5bb15b40301f34ddfb831a5dbf62218f496c003227fe6282e2ac054c45e7f3fc93e51b3ee8690f08612395095a0a12729d663eded879d9ffb325c62f2cb546a48bed51ae232fa6ce28a2494c132a6e09d98c2e3d478d5d2d15dce2e2665e4a3db448931068b99899c2bd8ba87349b0cf9e3c52cffdcf58a59b4fe0089b298b42ad7553f831bd60f5cfa3e09102fe773e4c05412973a678f3b3ed420433cd664dc7f218e816a17c5c9013ecb84abf2dd073557dbc41b92a91e0339d57b8b077a9a44d56427fec5748c47c1460b2e2412094db6d0ad06dea0aa0c1368592594bf0b2f590a9d6149e44dd4adc4cb42e5d9940d59397b83b33b88604c210694e3fbd84795c80c1b09ddb3b1ec8bef6e9dfc4d7f295e551a79436007ca48aa605ef5a89571e59cb26f2766e564e39d3bb441deaa0c8664549881d90a77256c0f6c77241fd6ab74b0e2890f78ff16fd2f9271ef96ebfbd0b878ba9c703900752b7447f4efaa60bd9dc9cd5673a36b39d49f54274caf03c0cf82b95141fa20ed3ce02ebf0dd74d9eff8eb9e2dd3a2976b244b12fd33ee75c1f1c459f86a1cefbc817f42d7f43ba406098165cbeab99df4fe751ae3382efce32af252e461652c7598161e74fd8eeca474fab6b1ede039935f2fd4d7562623b90a422a78941f47a76863d95857c33653d1b42b806bbafcfeccb7bb4a0c58acebf6104b2570afc3ca88e4fdf2719cf39c964a1ea7d2ae4a7fadc938abc95adac495093f6b959b1347501606b3f960b6d739291aa8c13eb49e98b0f78d2b91400b6d8961cb6165c8b684738e4d4db2f2ac30ddaa03a5e0cde4142b625e81907f08c60d7cb5729456806c89ff0efd08397423e44738ff38f8e88684f3a099dcda455521caca37ab4f4d9ed5d37975d4fdd778b97cc93babc804864a35e3a2db04598152e67a2f1f157681c3962d46ada23ea5d9a524f9cdbdd08a07a3a85b1f6fbde11d5a35c7743b83bbefd19aedf6d92241d16aeca7f33cc51839b75f111e8edaeaed808daf2f43fdb3c6f032ea45052ac31d4870c4d0d76aa75d0b88635ce449054013f234c4a16cffc58c95ba1cb8a0a0399861eecb1039bdedfab4d05f0270c6b16f03f6b8e629f687f133ebf2662c7f930530746679aac2791f54d6a95bfab5be0c33739074ed4e7ae88dde4a8036a7d6095cf41776366b6ae3f8f4a0734f48c275e129cfffff5e0abd042f99a957bf6f0f47fc7288750f4fe30198f8cad7067b36cd87ebca08abd3f9475e7443f83cca91a1ebfc42ef3494871f51f6d52a5524b9391c687571be5327c7c94ee2a096653acb410917fd51e56a92be4f24c1db6b97b465ca84c31c04c2f61eae07e952eb6554aa4d8a380d9ee81c1c462c360fcc3cdff2867a953b655562cd06162af8b99bbe662e0c27ce4d9a1c1a907def48a3231c2110c930a2f1498e32dbbfee0e5c5869332f3024fa5dfb0327a27c663cacd4e9902de34dd93529e90eb347bafa5035f56fc578e8386c7571d1f0ba335225ecd8be026b4544ad70f3af11501a53119ee39a8558ca0ed5b3d897ffb9cf0fcab55a0942d3bf7bc6b94ea27a6b748f2cfda431f35252c44610b7e843ed91ebf7e8fe10638f04f52d6d5a7752ec62350efcb7c473f80b1f2a26805151e8346d39d23551e92fbe372df7979c3f756bbb43f6bed09bbc6b65fe6fd241ae1c2f1a0d0b805c582853b85502968f9478e9a84895f9d4ef01ec4f3f571e57cd0bda68ee1f6f7e14fb6e0f4ef8c7dff6796472a935294fc27b16216966d5021339ded059687355b42b55926854bbfbd9f974a0c26eadbfca8a6183093996cf252894e6db910c71ca3ab2e82d90d371c36b92c9409cf7937bb266ea9b29c41d774aa522e103cb30bbabfe872b57beb027623742806aa7694a859ede9bc1fd7b9e32880b064b0030fce1a0e5cdf3ce558a5feaa32e323dbfab6661c5878c9377ee52a615b7c17bf1228e328aa20f92d070c71561969e1af532e76835fb0436810c3d87b982217edfb1143bfc3405ac9f6f3a50145608dfa8658b0ab642a347255c55b59cd1c5897b2cf625a0f0706c30ca1c1321e90cec57b7c3d1bd1af455e3732db80643383c41eaa6781f63da6233360ee720cc04d171ae2445b0c071e339d547f7ac32f407d29ec7abce0a9e1ef5276544877bab2f84bd2eef47ffa66f96e7170cd54d836c9badbc59435146031502c1a3cc744a470f693636d9050c5b894d2d6047df60eb0bac16d905d46cbf017ca69d66427cb88036eca4ea9d0e579f6bfd8a4a850703a0fe49d39c107c9358e98689fb62bd0475aab4b2031446b437c7f9e373caf0270a28d7b15c71f02079dde401e26175bb6e392106a9072021f0e5c5145a1db6f595b032faed8551f6e2ce318db1ab513db876a3eb42d225014949c19543e9c5dfd2290e28c5d72c87223f0195ffbcba1c02c7d0087721efd2af6881dee7dba7565e07abc35bc3fa41c6a4d6a313222ac6dbb117c69c62db2691c68869ac5fc5e987b0ae4335f815c73ea4235da2582dde81d6fdae5911617daef847be17f2bc09edd88830eac03977f89179fe03eb2dc3b38df43803ca2d38455232549110f4580ec3cc04c0d8cfe493013d2cde47c506ef6a8dfc42d998f70378fac5ce4709345926dc477e9e339d8c87ff6287ea6e2873e14d538cdc3f2a47e0e37a2601652f5b665b616a7d1ef3537a3327a76f93990f7694e6484e7a52a10e9eea2edc92b99406abfb2b11ec86667c7af4a333dfe900bf071d1bbcf4f0ad768fae4f450c53817c507d26e926e753e3395201d3ad89061f16706d841994abad283f0db74cada25beb5fe46f48669a62e0b849cb77097e1b4578b45062af4a071b04f0cfddf87519cf2bfa10ebb4b860239ff187e6dad73806ae968e6ac0f738baa88edb3ae4883a9e59be7a6b222c5f54818f95578daff9fc7a7aba8c4a41a699923e85ddf24a32bb71c808516f64d506058a70539276d57984d75161cba7d53a4a864c51a249a6b8fcad5738dd0055ba8468b56579ba5f102642df65c598490f3a0c9b1064f4eb1962c4c38bfb7d55d496a0b0f7b3f90b42f733d112c89176aaf937eea4bada845f3ca4e9b56b3a5a06b4c90fa4c1914ea47020c2f32531e270007ed389246906ecf2c4465f7cc5d6a347583dd73341ad97199021819be81100d867d628323ef7552db945e4c0be604cf6c4a8197958bcbd6c1879387d3286dff979632c54baba2a35ea84efd7726b662b94fae61464d069e0103692599fb86fdc3a06e01c6ae3deb3de6fdb21806c716e5f82b784e4ad3f0e2de629a18e3a2309003dfde9dde8e5101b83312f76e811277afc286b56879f4eb80468e58c60bc088284d05d725ddfe3185b7c51b472a7ff7db3930839142d4a452ddab628e07d43375801d7c6a711a55b452748d770b84ede35920c1ac74b595baef963d21df9418533fcf959593ccf5afccc753e86c4ae231eafe77a158c2472143faf169db29bf2b53c3288d8b3c9added65778095f85e2cb471ab58362041f0a27d874c42bbb06385a0403ca193cba67cf70029cdb7e73c7e2267b856fa0b8dd4c706b45e7174659b0ee2891df911724324f7ca5daf07c912b9b2abff762e62a1817688757492975db7185c4695f3a90895634b8d07453b36dd95197abc31d5d153dfb0d0ec92639540e99d6590f9b394f14c93a5e829fbb33616e810f59c502be44a13b700fd3009545e34c211abf9afe1bb8ced793c6f516d40010649f83a78ddbe9b71d8596582997d0aa54192e1200db61dade30500d72a184ca7dfcbfb80e5442f489d316cc8b75005564835d4b11c482e2c4d0d160f14a8b13ae0a0fb0ba5e3b782770aaca357df0e1c4d1c3b28b776a8b3e0da1abfd4f7190673fca1e1c5a31c688d6e8ddb21300e4178d07c4e854a718ac3f672b0120d6a54c16957c9ec8c444208e47737bc4eeb0bf2d801eb2fcb72f91fe988aa75f38e6cf26e858dc2a718580ff5d281d13e8fc3e3bc30c75c0193481c39c375a5b06b962d9491f3f1fb80f1cb27067f0709e0b0730573a9b5f5bdbee1708ad84b4ceb1a9a61e4c41e90655764057bfa07b8c81cc83a315be1aed6a49715479c0fd0f53f625fe6c7f36fadd001149ab978532e4d0de3d1a38934c74265b161899843704fad16ffc6189f42a5cadec98603e0f98c6889bd4a559079e074cb40678fad4690a20d988735280a1ee8ea71275069132101b35c18ecc9d3c6eceb4cfe9b165e4b6acc17d4f113ef8283c0fb6506f5635401e916d4f7e7bc3cf49aed166587a0c72cdbe673f467d81bc2e9cd08cd8dd16d90b353481df31e89b45e8b | ||
| 20 | |||
| 21 | [L = 48] | ||
| 22 | |||
| 23 | Len = 16 | ||
| 24 | Msg = 3a35 | ||
| 25 | |||
| 26 | Len = 104 | ||
| 27 | Msg = 7db15b3ee240b45d4610950996 | ||
| 28 | |||
| 29 | Len = 352 | ||
| 30 | Msg = d2a1efc725c46cd6a19760f49edf0bae823c1b4992ae2260085746cf65833bd008e56e64002383f51f960239 | ||
| 31 | |||
| 32 | Len = 1016 | ||
| 33 | Msg = d11ad1253592c094746da7b5c88d329bc3ce1929913b8be07e82d3f6b7a536a855f31ad197376eba6f2f4534413fc4e4e7673fdff8739f774a710754b568b7c61a473059a41c98aa4e86617aa66d2601d0f0d584cd9f132afeebdc0ce3da6a8b290059e6e4aa080c195c42ae7f7e1e99865223439929b0a3a0d79b46ca6419 | ||
| 34 | |||
| 35 | Len = 13696 | ||
| 36 | Msg = 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 | ||
| 37 | |||
| 38 | Len = 100816 | ||
| 39 | Msg = 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 | ||
| 40 | |||
| 41 | [L = 32] | ||
| 42 | |||
| 43 | Len = 16 | ||
| 44 | Msg = 43cd | ||
| 45 | |||
| 46 | Len = 104 | ||
| 47 | Msg = 5f75a437ce0698a7d8151c3fe0 | ||
| 48 | |||
| 49 | Len = 352 | ||
| 50 | Msg = f88bac738d1e3e10f75e46e3fe026d7e423fdcf3d7e4028b33a291bb4aabca53f780fbf99e0346d610d4a38f | ||
| 51 | |||
| 52 | Len = 488 | ||
| 53 | Msg = 832e5b78a73a1012ee62e00621db7f4d248893007c6e5d6e0e689c6b291baeebc72df9cf10b289fe20e7fab80a2399271d0ac63766049da875eed56264 | ||
| 54 | |||
| 55 | Len = 13976 | ||
| 56 | Msg = deab57cdeb41974037a9bef5e292894038264eb4d8993d4d1501e6ef9c68fb0f571f57b0925640925deae9a6317e3bc4d6cdd5a0833e52fb48baca16a9ba9b6c8ca469a0555763b54f04c87d4e41aa549258f30eefe5a52d2ba06657a8773b0842e094857b6d8911d6a0636280025e56356fade362b4bf4c875cc19be0c6644b447be0454dbf390eb966c03e10e9de3487b90d0825d327c12495e3c89ad09c9d591e55c91376fb14c2fde9f7461fb25450df1a65806b65f3caf4d5c81ebc6e664871fcf915b9578bb70ee6776acc62205888dce2baa4024941209e81b4b35f0eda1bdcbd9ab1d6db6140bda4c41776fe675d5c681da5852d50c246dda4ddf9fdd7c5fdfeec85ff6c883c78689c2977584406a1ddef977606c182d6c33561c39c071668a2515e5aa6f4aa1faa392aed95b82ab32b79a15e3b5a07551ab068455131b72493126470f26c30b852e4415e1d8b719b3803ecc336e4facbcc5d1908851f4f39b776bec8b6b9794d47e5965458858560eed5a0305e260240c0849d93a19787b0f8c795eb5ba32be573845256ae6d0b0a3336e42a1beac8bdde6d1b6e0b6207903d4b105f4af2ef89bd099ded870daea2f170e03bd5f6f4490e60bc222d4876e16d4c58aeea6e6c400dbb9e9f4b2b142f0fc9bdeaf4132ded38a4a8366e107cac7210945fa2df4b124be37ef76290e5b9758aa3bfe0091bb0448206323584c2f833e0edfbdc0c33075fc9647a3404ca490bfab94302a0679a1a42fe9fec6af0cd98038b09ffbecd2832b579b2294f6ae5b96328fdc0a0b9b3a32cba04fa8bae3389c3951173bdc17caaefe526aa386f98670b177683d0b804c5875fe9c7afa233ee66349c9fd1b60bb0becf5e1d887e67fd3baf34b4f90d94699d18d6bb9d77d4af358f31edc254de2d6c5fe3ec07425c633b18c1b9e3606b78b40b543e1fd31fb578cf58c45744fc073fbf3c7d7d607e815379a5fc565892d81560eab8fb5f1ae6771b998c592e6d288014f13ab283d53fcbfa66e31a9d107308402191fac2cf2b799c7dae91b93a7676898b8a6e516a86eac58ed8f6d8ed2fd4d38031e4a4466dc8798b90c48e6adb6b4391d47872443cfaffa542b4b132f6c3408f0081af8692aadb4c9bbd55053ea56d8b82998f6b4b41d331891acfe6af1bb0d6679989978368ea463743b514866d2d01fb9950e8990867bc14f1db1142254adeccf3da812949cd03cd1d569e9d0bab7ca7405cc21096e3cd4d007cbb9629372e98584b4c6b97ad0bc314e1ab6ac71184ee555c01973570ed9b115bed956f9e4e349083013098b1e483f0fe44d5e9849f38a2f7ae152b36a266ea1faf263ea8c706632ba8629602187379546fc6b82e57ededd6d074c15c771754710731e07c207899eb47e8d7c72ffd768c36257d373375ffa06f9b3f0af11417f9ff9f9b44e1f1f96ae8aaa429af88b14da1da81c7bb38a0fe9372ed6a9ac6fb5e9e56b82593d94c5192904450227bf040b7ce0904789f979845e112a1f995c849ec3f7e49bd975a474e8201630f40fc0d80e76019f110ae158cd0f8da96ea4561f24237d8e795ebf52368218bff3e9d5b040ecd2caef4ab1e7127e53bfa2b3b4fb74829f9993ac703192aedef79dd9ad24c2c976638b4575afbce22ecacc273ba43379ed55ceeb51838b0adb80585bd1b5f2707ee16b67a7232adf7163415b24b9ff9dc94b7197fdc89e2a90d2b9eccde45e965edd064dc0d1eadabe11b8ec3aad2742b5d3323ebf913a92817749090c20758f98aef2544d4c8b48874e8936d7ee492d5585675c214deeb74fd67c4d170ac5e0aeefa607c6e37abd4f8238e776fde3921afab75cbd8f392d3e88da057903ce2e140797f4a85737bd89455e6aa27c7535687b78cd0ea59848e006c8de9c9c0cbc7a9f5e977be850adc710503ce4ba7c7bd0b042297f518abec6c8ef451c33e030251f506cbc3744228b6bb4dab86877d9e6019a0ea9f39ed37557b3b5527c171da5f013e0d3c480a038cff2c087d6e5d41b17e6c8f90c334b5e2b9ccbe9d4efd99fba1f907d00a49b71b5a08aedb644fed24bcf04e71be67b03cd20d53ccef8f854f5e9f7f28c1e98a8a53496646713bebe15a93f1ea336e6e8a4e68de5dab0fe880bf983eec75d1c5027357f6669e098411e0bc3ea2293138f5b34425f78b6508b94d4c0cc32ee9afaa409a26e5f2a1fddcd6d5ff42a89755a58b08f243957a2e208e24b055f51992ab447bc06876eba169c545fa71b88a0fc15d1e0be9d334a1dd0c86f44bd149b42c07608a9a30d0b7e13574f8d862f2ac72b2ed38904d7cab194fdb9e4dcb615f5610b24e202a36866baccac01fadb575df11dd43e00a3b92fcdd8c7702ea49d951e7dad2a56c075730b4af1ceda2bcb2310256f28312579fad40ff471336ea6a44143edfcffc297258d48bd2ea47efab8f0dc00f1e6dba1a55009ed627b7 | ||
| 57 | |||
| 58 | Len = 48824 | ||
| 59 | Msg = 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 | ||
| 60 | |||
| 61 | [L = 28] | ||
| 62 | |||
| 63 | Len = 16 | ||
| 64 | Msg = 3dd2 | ||
| 65 | |||
| 66 | Len = 104 | ||
| 67 | Msg = 3d232201038fe7d846ac1bd4c6 | ||
| 68 | |||
| 69 | Len = 352 | ||
| 70 | Msg = 44c98cfc71f82215dadf494d68d1d6b92bb4eb81fa0fbf945a659d9aa2c2302b5c93fd3eedba31e479e29d36 | ||
| 71 | |||
| 72 | Len = 504 | ||
| 73 | Msg = 02a5c7b1b749d6d49bed302d9439f23ab83020bd4d573906f4190e74216ad33aceab775f71cd31092bba5cfa42f0845bd16fc1b8bed6434dedc92f80b395aa | ||
| 74 | |||
| 75 | Len = 13976 | ||
| 76 | Msg = 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 | ||
| 77 | |||
| 78 | Len = 48824 | ||
| 79 | Msg = 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 | ||
| 80 | |||
| 81 | [L = 20] | ||
| 82 | |||
| 83 | Len = 16 | ||
| 84 | Msg = 8a61 | ||
| 85 | |||
| 86 | Len = 104 | ||
| 87 | Msg = 37487aa02b03bdbc6bc62e7e26 | ||
| 88 | |||
| 89 | Len = 352 | ||
| 90 | Msg = 6ecd002568bae3bf1873993041bfa292eb94e9ad092d8eb3585be82e8a20cb36a47a06e7a57d301268a4a533 | ||
| 91 | |||
| 92 | Len = 504 | ||
| 93 | Msg = f6dc1d2f6b8e126d99939664693d8709513f97d730074ec2794e536d94ede79c81f2b2ecbff3c2c26ca2d181ada2c60050997f3bb087ce48d956c18dedb227 | ||
| 94 | |||
| 95 | Len = 13976 | ||
| 96 | Msg = 07a6372c863c7d7c6764e4f05addbbe161762735dfd2d23bf268e2d603cd28de9c369ac379390473e1d3fa7e37af1178cca54fa0f782dfbe68070952b93462ea46c640d43ffe71f5fba42df98f4c48ada0d8aca8753e0731508bc15dff283178ae5c10a6ff132eca5dde63a78d3ac94685152897828eb25a55fdf140fd33fd4e7b03f283e201a1baae8986d25603fb0b2566aab345fb48031d648144dddc2e3556c0ceb1104f348d96ae7dc0152e45c625d21b46e70c31f250c858aec4ab2cf5e79d8c79b0854e0abf5330b9f044113d306161968f4ad6f0973160c9dc296056d5a11523ea2b56fbce8387070fccc639ec1c65ec663b9dc49aa880dc4ddd3020c9d44ff7e8cab6266e436af19b4ecb82010a0f8f9469ef380034a02e3f50051a6a3f233dcfe9d553459dc1bebc538ae0183448c9405c351271dea808d908480e61e9793cca111b4cfb9874b799626a1bd9a0f6e0929ad51b97ad81b2438f5fc255db3a3dfec9f0d8393c6b245b03d3faeb58021db3ad391b17a91174a66db4feef1b4c889699bcbea7928f4d29be2d47f76455c8cb1dc7da9cda41962a28ad8cd7b39965b809e7c7eca1c6792c1ce1c8a4cad6290170e91fcc49fa5ff64ab433b4aa081c8da2d9bbb072f9f18ca455469b946c877e3006b34ffd2219335b30ba2e0980f43cebfb629d0b11fe70dff28883ca012c6ae4855fcefea20a08e189eaeed7eb36ed6db3835976f4e60053205805727c5eec15d0e9f155637a9e66268b9c1c302bcaae6ae88cbb8cf1668a487cc996c4662c4a4e195f094cb31c717165e0e13718f8388957dfe0bf69c70cd0bd763dc38c530b67b9c12244fcab8bd13f602de848a2937699f9ef77944e5f22e3b470601789e1838fbea9359c733aaee2c7082b02ee459b7684ef9bbc200da4b62d368351f5520a65ffa506dc9b097117bb7ae88d04d85fb525e91327689ec0fe86971480c0e864012b1e9f044c7d80a4e48c07320dd4292086e4c71d4c98dd826a9bfced112bfa2beb1ce85cad204451ec45703931bf637d4fe89fe8f485620b7f4b21e011a232ade7a8c92be77925e878ae0bea9723749528fe83cf89ecb9616dae6ca0e8d5754ec6c92abb21108c2f33cdc18c6887c430b72c5b193356494cddccc577bd4c2cd53188f352846edff0c2ac7869cb74bb16a77c0f0f194a7a9477ae15abb890bd0bcfeb0c39381a87f1d05319c7e971c10e9ef687f96450b400e25b4285032892b849fd5db8649cedfb03c88defea063ee144a1ab1f3bf05f59c7db364dc39c11a446c3ce16307d78d50315ba29f5bb9a57438564c8c7b3e367cd37d74b2375a4966f47489dc5448f4979428abd32193d3840aa983d3020a9f29d760fc7493ab2576c90b1934b799c1d0d55e4f2caa78f4ce61930c79dc017c2dea0c5085d73a3b0e4a6f341e9a5061a6658af11e5edf95bdad915ac3619969e39bee15788a8de667f92f4efc84f35082d52d562aa74e12cc7f22d3425b58f5056d74afcf162cd44e65b9ee510ff91af094c3d2d42c3b088536d62a98f1c689edcf3ea3fc228d711c109d76ae83d82d6a34dcfbad563cf3726519b519fd48b51741aa86720836494b7a589c778927047a25d73508adaa401e9a6c0767a675e31c5556cbe35fadc9671359b45e985c3c8af84113989b299ae4474b85e4b5d4b0578ab1e8a2915a8df97c4f52a639fe32272cb91bbfb721505dec46d51383cb8973425a714245c2e37d0577fbe0d66381d9239db1f08a380cf609dc699698e0fada2caeda44d58d766c4f8214b10642b80b8d7d8add7cc41d47108ab7d07dab71069a2d982cc900b331caec317942122158bac6eac9175c2dcba0c04443aa9188832b553f5ca8c336880824d6bc02486a2b4c086665d276aafe3b1b93729829adca50c44466fd5b5cb977aa78fbcf5c0f0da1b09216468a11493ffb39efdeda5d669ae92bee2f2fb250aa1b9cbb11c36c7a6c6dd26cdc3cfd572ffd8c1dd72a13c27a327a34c6b6b3d80fc6c67c72152eec0c8ecbdc1bd5cb829b811e7f29af6d786f4e93dd4c96fdda295a6aa258d7b2fcf291c2d68e0b1866032475964ec0c6f2fa8c2d6a3936ecb187350def4e818507bf157c0e9b33406be7660605af14cccc9c799b4e051d0d0899e53495bb8931a6e2984bc6dbe4e02ec8b4642fc2f1cb5fd5a5520b48cfcb49e1f9533838753554dd98b6a1b8a67409279df477330e5f37367e06247ca5c3ffefd00e693dcc0c9c30754121c9ee88a574915b9e77c104fd2f921c2c096573951407ba9b440423d76bdc6fc978237a6e302cede7f99038ec31500884775556941f1edc30e3a417b0e02cb6fb5bfbe5cdfacf4006411287bedc565fb06f1be987416407dc852254934df4ab59edce476f3506e65be6ce6ddf91038642291fb8e92ba5b1f0b105670905a2c14796110bac6f52455b430a47b8eff61 | ||
| 97 | |||
| 98 | Len = 48824 | ||
| 99 | Msg = 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 | ||
diff --git a/src/lib/libssl/src/test/cms-examples.pl b/src/lib/libssl/src/test/cms-examples.pl new file mode 100644 index 0000000000..2e95b48ba4 --- /dev/null +++ b/src/lib/libssl/src/test/cms-examples.pl | |||
| @@ -0,0 +1,409 @@ | |||
| 1 | # test/cms-examples.pl | ||
| 2 | # Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | # project. | ||
| 4 | # | ||
| 5 | # ==================================================================== | ||
| 6 | # Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | # | ||
| 8 | # Redistribution and use in source and binary forms, with or without | ||
| 9 | # modification, are permitted provided that the following conditions | ||
| 10 | # are met: | ||
| 11 | # | ||
| 12 | # 1. Redistributions of source code must retain the above copyright | ||
| 13 | # notice, this list of conditions and the following disclaimer. | ||
| 14 | # | ||
| 15 | # 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | # notice, this list of conditions and the following disclaimer in | ||
| 17 | # the documentation and/or other materials provided with the | ||
| 18 | # distribution. | ||
| 19 | # | ||
| 20 | # 3. All advertising materials mentioning features or use of this | ||
| 21 | # software must display the following acknowledgment: | ||
| 22 | # "This product includes software developed by the OpenSSL Project | ||
| 23 | # for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | # | ||
| 25 | # 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | # endorse or promote products derived from this software without | ||
| 27 | # prior written permission. For written permission, please contact | ||
| 28 | # licensing@OpenSSL.org. | ||
| 29 | # | ||
| 30 | # 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | # nor may "OpenSSL" appear in their names without prior written | ||
| 32 | # permission of the OpenSSL Project. | ||
| 33 | # | ||
| 34 | # 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | # acknowledgment: | ||
| 36 | # "This product includes software developed by the OpenSSL Project | ||
| 37 | # for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | # | ||
| 39 | # THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | # EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | # IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | # ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | # NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | # LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | # HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | # STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | # ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | # OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | # ==================================================================== | ||
| 52 | |||
| 53 | # Perl script to run tests against S/MIME examples in RFC4134 | ||
| 54 | # Assumes RFC is in current directory and called "rfc4134.txt" | ||
| 55 | |||
| 56 | use MIME::Base64; | ||
| 57 | |||
| 58 | my $badttest = 0; | ||
| 59 | my $verbose = 1; | ||
| 60 | |||
| 61 | my $cmscmd; | ||
| 62 | my $exdir = "./"; | ||
| 63 | my $exfile = "./rfc4134.txt"; | ||
| 64 | |||
| 65 | if (-f "../apps/openssl") | ||
| 66 | { | ||
| 67 | $cmscmd = "../util/shlib_wrap.sh ../apps/openssl cms"; | ||
| 68 | } | ||
| 69 | elsif (-f "..\\out32dll\\openssl.exe") | ||
| 70 | { | ||
| 71 | $cmscmd = "..\\out32dll\\openssl.exe cms"; | ||
| 72 | } | ||
| 73 | elsif (-f "..\\out32\\openssl.exe") | ||
| 74 | { | ||
| 75 | $cmscmd = "..\\out32\\openssl.exe cms"; | ||
| 76 | } | ||
| 77 | |||
| 78 | my @test_list = ( | ||
| 79 | [ "3.1.bin" => "dataout" ], | ||
| 80 | [ "3.2.bin" => "encode, dataout" ], | ||
| 81 | [ "4.1.bin" => "encode, verifyder, cont, dss" ], | ||
| 82 | [ "4.2.bin" => "encode, verifyder, cont, rsa" ], | ||
| 83 | [ "4.3.bin" => "encode, verifyder, cont_extern, dss" ], | ||
| 84 | [ "4.4.bin" => "encode, verifyder, cont, dss" ], | ||
| 85 | [ "4.5.bin" => "verifyder, cont, rsa" ], | ||
| 86 | [ "4.6.bin" => "encode, verifyder, cont, dss" ], | ||
| 87 | [ "4.7.bin" => "encode, verifyder, cont, dss" ], | ||
| 88 | [ "4.8.eml" => "verifymime, dss" ], | ||
| 89 | [ "4.9.eml" => "verifymime, dss" ], | ||
| 90 | [ "4.10.bin" => "encode, verifyder, cont, dss" ], | ||
| 91 | [ "4.11.bin" => "encode, certsout" ], | ||
| 92 | [ "5.1.bin" => "encode, envelopeder, cont" ], | ||
| 93 | [ "5.2.bin" => "encode, envelopeder, cont" ], | ||
| 94 | [ "5.3.eml" => "envelopemime, cont" ], | ||
| 95 | [ "6.0.bin" => "encode, digest, cont" ], | ||
| 96 | [ "7.1.bin" => "encode, encrypted, cont" ], | ||
| 97 | [ "7.2.bin" => "encode, encrypted, cont" ] | ||
| 98 | ); | ||
| 99 | |||
| 100 | # Extract examples from RFC4134 text. | ||
| 101 | # Base64 decode all examples, certificates and | ||
| 102 | # private keys are converted to PEM format. | ||
| 103 | |||
| 104 | my ( $filename, $data ); | ||
| 105 | |||
| 106 | my @cleanup = ( "cms.out", "cms.err", "tmp.der", "tmp.txt" ); | ||
| 107 | |||
| 108 | $data = ""; | ||
| 109 | |||
| 110 | open( IN, $exfile ) || die "Can't Open RFC examples file $exfile"; | ||
| 111 | |||
| 112 | while (<IN>) { | ||
| 113 | next unless (/^\|/); | ||
| 114 | s/^\|//; | ||
| 115 | next if (/^\*/); | ||
| 116 | if (/^>(.*)$/) { | ||
| 117 | $filename = $1; | ||
| 118 | next; | ||
| 119 | } | ||
| 120 | if (/^</) { | ||
| 121 | $filename = "$exdir/$filename"; | ||
| 122 | if ( $filename =~ /\.bin$/ || $filename =~ /\.eml$/ ) { | ||
| 123 | $data = decode_base64($data); | ||
| 124 | open OUT, ">$filename"; | ||
| 125 | binmode OUT; | ||
| 126 | print OUT $data; | ||
| 127 | close OUT; | ||
| 128 | push @cleanup, $filename; | ||
| 129 | } | ||
| 130 | elsif ( $filename =~ /\.cer$/ ) { | ||
| 131 | write_pem( $filename, "CERTIFICATE", $data ); | ||
| 132 | } | ||
| 133 | elsif ( $filename =~ /\.pri$/ ) { | ||
| 134 | write_pem( $filename, "PRIVATE KEY", $data ); | ||
| 135 | } | ||
| 136 | $data = ""; | ||
| 137 | $filename = ""; | ||
| 138 | } | ||
| 139 | else { | ||
| 140 | $data .= $_; | ||
| 141 | } | ||
| 142 | |||
| 143 | } | ||
| 144 | |||
| 145 | my $secretkey = | ||
| 146 | "73:7c:79:1f:25:ea:d0:e0:46:29:25:43:52:f7:dc:62:91:e5:cb:26:91:7a:da:32"; | ||
| 147 | |||
| 148 | foreach (@test_list) { | ||
| 149 | my ( $file, $tlist ) = @$_; | ||
| 150 | print "Example file $file:\n"; | ||
| 151 | if ( $tlist =~ /encode/ ) { | ||
| 152 | run_reencode_test( $exdir, $file ); | ||
| 153 | } | ||
| 154 | if ( $tlist =~ /certsout/ ) { | ||
| 155 | run_certsout_test( $exdir, $file ); | ||
| 156 | } | ||
| 157 | if ( $tlist =~ /dataout/ ) { | ||
| 158 | run_dataout_test( $exdir, $file ); | ||
| 159 | } | ||
| 160 | if ( $tlist =~ /verify/ ) { | ||
| 161 | run_verify_test( $exdir, $tlist, $file ); | ||
| 162 | } | ||
| 163 | if ( $tlist =~ /digest/ ) { | ||
| 164 | run_digest_test( $exdir, $tlist, $file ); | ||
| 165 | } | ||
| 166 | if ( $tlist =~ /encrypted/ ) { | ||
| 167 | run_encrypted_test( $exdir, $tlist, $file, $secretkey ); | ||
| 168 | } | ||
| 169 | if ( $tlist =~ /envelope/ ) { | ||
| 170 | run_envelope_test( $exdir, $tlist, $file ); | ||
| 171 | } | ||
| 172 | |||
| 173 | } | ||
| 174 | |||
| 175 | foreach (@cleanup) { | ||
| 176 | unlink $_; | ||
| 177 | } | ||
| 178 | |||
| 179 | if ($badtest) { | ||
| 180 | print "\n$badtest TESTS FAILED!!\n"; | ||
| 181 | } | ||
| 182 | else { | ||
| 183 | print "\n***All tests successful***\n"; | ||
| 184 | } | ||
| 185 | |||
| 186 | sub write_pem { | ||
| 187 | my ( $filename, $str, $data ) = @_; | ||
| 188 | |||
| 189 | $filename =~ s/\.[^.]*$/.pem/; | ||
| 190 | |||
| 191 | push @cleanup, $filename; | ||
| 192 | |||
| 193 | open OUT, ">$filename"; | ||
| 194 | |||
| 195 | print OUT "-----BEGIN $str-----\n"; | ||
| 196 | print OUT $data; | ||
| 197 | print OUT "-----END $str-----\n"; | ||
| 198 | |||
| 199 | close OUT; | ||
| 200 | } | ||
| 201 | |||
| 202 | sub run_reencode_test { | ||
| 203 | my ( $cmsdir, $tfile ) = @_; | ||
| 204 | unlink "tmp.der"; | ||
| 205 | |||
| 206 | system( "$cmscmd -cmsout -inform DER -outform DER" | ||
| 207 | . " -in $cmsdir/$tfile -out tmp.der" ); | ||
| 208 | |||
| 209 | if ($?) { | ||
| 210 | print "\tReencode command FAILED!!\n"; | ||
| 211 | $badtest++; | ||
| 212 | } | ||
| 213 | elsif ( !cmp_files( "$cmsdir/$tfile", "tmp.der" ) ) { | ||
| 214 | print "\tReencode FAILED!!\n"; | ||
| 215 | $badtest++; | ||
| 216 | } | ||
| 217 | else { | ||
| 218 | print "\tReencode passed\n" if $verbose; | ||
| 219 | } | ||
| 220 | } | ||
| 221 | |||
| 222 | sub run_certsout_test { | ||
| 223 | my ( $cmsdir, $tfile ) = @_; | ||
| 224 | unlink "tmp.der"; | ||
| 225 | unlink "tmp.pem"; | ||
| 226 | |||
| 227 | system( "$cmscmd -cmsout -inform DER -certsout tmp.pem" | ||
| 228 | . " -in $cmsdir/$tfile -out tmp.der" ); | ||
| 229 | |||
| 230 | if ($?) { | ||
| 231 | print "\tCertificate output command FAILED!!\n"; | ||
| 232 | $badtest++; | ||
| 233 | } | ||
| 234 | else { | ||
| 235 | print "\tCertificate output passed\n" if $verbose; | ||
| 236 | } | ||
| 237 | } | ||
| 238 | |||
| 239 | sub run_dataout_test { | ||
| 240 | my ( $cmsdir, $tfile ) = @_; | ||
| 241 | unlink "tmp.txt"; | ||
| 242 | |||
| 243 | system( | ||
| 244 | "$cmscmd -data_out -inform DER" . " -in $cmsdir/$tfile -out tmp.txt" ); | ||
| 245 | |||
| 246 | if ($?) { | ||
| 247 | print "\tDataout command FAILED!!\n"; | ||
| 248 | $badtest++; | ||
| 249 | } | ||
| 250 | elsif ( !cmp_files( "$cmsdir/ExContent.bin", "tmp.txt" ) ) { | ||
| 251 | print "\tDataout compare FAILED!!\n"; | ||
| 252 | $badtest++; | ||
| 253 | } | ||
| 254 | else { | ||
| 255 | print "\tDataout passed\n" if $verbose; | ||
| 256 | } | ||
| 257 | } | ||
| 258 | |||
| 259 | sub run_verify_test { | ||
| 260 | my ( $cmsdir, $tlist, $tfile ) = @_; | ||
| 261 | unlink "tmp.txt"; | ||
| 262 | |||
| 263 | $form = "DER" if $tlist =~ /verifyder/; | ||
| 264 | $form = "SMIME" if $tlist =~ /verifymime/; | ||
| 265 | $cafile = "$cmsdir/CarlDSSSelf.pem" if $tlist =~ /dss/; | ||
| 266 | $cafile = "$cmsdir/CarlRSASelf.pem" if $tlist =~ /rsa/; | ||
| 267 | |||
| 268 | $cmd = | ||
| 269 | "$cmscmd -verify -inform $form" | ||
| 270 | . " -CAfile $cafile" | ||
| 271 | . " -in $cmsdir/$tfile -out tmp.txt"; | ||
| 272 | |||
| 273 | $cmd .= " -content $cmsdir/ExContent.bin" if $tlist =~ /cont_extern/; | ||
| 274 | |||
| 275 | system("$cmd 2>cms.err 1>cms.out"); | ||
| 276 | |||
| 277 | if ($?) { | ||
| 278 | print "\tVerify command FAILED!!\n"; | ||
| 279 | $badtest++; | ||
| 280 | } | ||
| 281 | elsif ( $tlist =~ /cont/ | ||
| 282 | && !cmp_files( "$cmsdir/ExContent.bin", "tmp.txt" ) ) | ||
| 283 | { | ||
| 284 | print "\tVerify content compare FAILED!!\n"; | ||
| 285 | $badtest++; | ||
| 286 | } | ||
| 287 | else { | ||
| 288 | print "\tVerify passed\n" if $verbose; | ||
| 289 | } | ||
| 290 | } | ||
| 291 | |||
| 292 | sub run_envelope_test { | ||
| 293 | my ( $cmsdir, $tlist, $tfile ) = @_; | ||
| 294 | unlink "tmp.txt"; | ||
| 295 | |||
| 296 | $form = "DER" if $tlist =~ /envelopeder/; | ||
| 297 | $form = "SMIME" if $tlist =~ /envelopemime/; | ||
| 298 | |||
| 299 | $cmd = | ||
| 300 | "$cmscmd -decrypt -inform $form" | ||
| 301 | . " -recip $cmsdir/BobRSASignByCarl.pem" | ||
| 302 | . " -inkey $cmsdir/BobPrivRSAEncrypt.pem" | ||
| 303 | . " -in $cmsdir/$tfile -out tmp.txt"; | ||
| 304 | |||
| 305 | system("$cmd 2>cms.err 1>cms.out"); | ||
| 306 | |||
| 307 | if ($?) { | ||
| 308 | print "\tDecrypt command FAILED!!\n"; | ||
| 309 | $badtest++; | ||
| 310 | } | ||
| 311 | elsif ( $tlist =~ /cont/ | ||
| 312 | && !cmp_files( "$cmsdir/ExContent.bin", "tmp.txt" ) ) | ||
| 313 | { | ||
| 314 | print "\tDecrypt content compare FAILED!!\n"; | ||
| 315 | $badtest++; | ||
| 316 | } | ||
| 317 | else { | ||
| 318 | print "\tDecrypt passed\n" if $verbose; | ||
| 319 | } | ||
| 320 | } | ||
| 321 | |||
| 322 | sub run_digest_test { | ||
| 323 | my ( $cmsdir, $tlist, $tfile ) = @_; | ||
| 324 | unlink "tmp.txt"; | ||
| 325 | |||
| 326 | my $cmd = | ||
| 327 | "$cmscmd -digest_verify -inform DER" . " -in $cmsdir/$tfile -out tmp.txt"; | ||
| 328 | |||
| 329 | system("$cmd 2>cms.err 1>cms.out"); | ||
| 330 | |||
| 331 | if ($?) { | ||
| 332 | print "\tDigest verify command FAILED!!\n"; | ||
| 333 | $badtest++; | ||
| 334 | } | ||
| 335 | elsif ( $tlist =~ /cont/ | ||
| 336 | && !cmp_files( "$cmsdir/ExContent.bin", "tmp.txt" ) ) | ||
| 337 | { | ||
| 338 | print "\tDigest verify content compare FAILED!!\n"; | ||
| 339 | $badtest++; | ||
| 340 | } | ||
| 341 | else { | ||
| 342 | print "\tDigest verify passed\n" if $verbose; | ||
| 343 | } | ||
| 344 | } | ||
| 345 | |||
| 346 | sub run_encrypted_test { | ||
| 347 | my ( $cmsdir, $tlist, $tfile, $key ) = @_; | ||
| 348 | unlink "tmp.txt"; | ||
| 349 | |||
| 350 | system( "$cmscmd -EncryptedData_decrypt -inform DER" | ||
| 351 | . " -secretkey $key" | ||
| 352 | . " -in $cmsdir/$tfile -out tmp.txt" ); | ||
| 353 | |||
| 354 | if ($?) { | ||
| 355 | print "\tEncrypted Data command FAILED!!\n"; | ||
| 356 | $badtest++; | ||
| 357 | } | ||
| 358 | elsif ( $tlist =~ /cont/ | ||
| 359 | && !cmp_files( "$cmsdir/ExContent.bin", "tmp.txt" ) ) | ||
| 360 | { | ||
| 361 | print "\tEncrypted Data content compare FAILED!!\n"; | ||
| 362 | $badtest++; | ||
| 363 | } | ||
| 364 | else { | ||
| 365 | print "\tEncryptedData verify passed\n" if $verbose; | ||
| 366 | } | ||
| 367 | } | ||
| 368 | |||
| 369 | sub cmp_files { | ||
| 370 | my ( $f1, $f2 ) = @_; | ||
| 371 | my ( $fp1, $fp2 ); | ||
| 372 | |||
| 373 | my ( $rd1, $rd2 ); | ||
| 374 | |||
| 375 | if ( !open( $fp1, "<$f1" ) ) { | ||
| 376 | print STDERR "Can't Open file $f1\n"; | ||
| 377 | return 0; | ||
| 378 | } | ||
| 379 | |||
| 380 | if ( !open( $fp2, "<$f2" ) ) { | ||
| 381 | print STDERR "Can't Open file $f2\n"; | ||
| 382 | return 0; | ||
| 383 | } | ||
| 384 | |||
| 385 | binmode $fp1; | ||
| 386 | binmode $fp2; | ||
| 387 | |||
| 388 | my $ret = 0; | ||
| 389 | |||
| 390 | for ( ; ; ) { | ||
| 391 | $n1 = sysread $fp1, $rd1, 4096; | ||
| 392 | $n2 = sysread $fp2, $rd2, 4096; | ||
| 393 | last if ( $n1 != $n2 ); | ||
| 394 | last if ( $rd1 ne $rd2 ); | ||
| 395 | |||
| 396 | if ( $n1 == 0 ) { | ||
| 397 | $ret = 1; | ||
| 398 | last; | ||
| 399 | } | ||
| 400 | |||
| 401 | } | ||
| 402 | |||
| 403 | close $fp1; | ||
| 404 | close $fp2; | ||
| 405 | |||
| 406 | return $ret; | ||
| 407 | |||
| 408 | } | ||
| 409 | |||
diff --git a/src/lib/libssl/src/test/cms-test.pl b/src/lib/libssl/src/test/cms-test.pl new file mode 100644 index 0000000000..a84e089ddc --- /dev/null +++ b/src/lib/libssl/src/test/cms-test.pl | |||
| @@ -0,0 +1,453 @@ | |||
| 1 | # test/cms-test.pl | ||
| 2 | # Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL | ||
| 3 | # project. | ||
| 4 | # | ||
| 5 | # ==================================================================== | ||
| 6 | # Copyright (c) 2008 The OpenSSL Project. All rights reserved. | ||
| 7 | # | ||
| 8 | # Redistribution and use in source and binary forms, with or without | ||
| 9 | # modification, are permitted provided that the following conditions | ||
| 10 | # are met: | ||
| 11 | # | ||
| 12 | # 1. Redistributions of source code must retain the above copyright | ||
| 13 | # notice, this list of conditions and the following disclaimer. | ||
| 14 | # | ||
| 15 | # 2. Redistributions in binary form must reproduce the above copyright | ||
| 16 | # notice, this list of conditions and the following disclaimer in | ||
| 17 | # the documentation and/or other materials provided with the | ||
| 18 | # distribution. | ||
| 19 | # | ||
| 20 | # 3. All advertising materials mentioning features or use of this | ||
| 21 | # software must display the following acknowledgment: | ||
| 22 | # "This product includes software developed by the OpenSSL Project | ||
| 23 | # for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" | ||
| 24 | # | ||
| 25 | # 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 26 | # endorse or promote products derived from this software without | ||
| 27 | # prior written permission. For written permission, please contact | ||
| 28 | # licensing@OpenSSL.org. | ||
| 29 | # | ||
| 30 | # 5. Products derived from this software may not be called "OpenSSL" | ||
| 31 | # nor may "OpenSSL" appear in their names without prior written | ||
| 32 | # permission of the OpenSSL Project. | ||
| 33 | # | ||
| 34 | # 6. Redistributions of any form whatsoever must retain the following | ||
| 35 | # acknowledgment: | ||
| 36 | # "This product includes software developed by the OpenSSL Project | ||
| 37 | # for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" | ||
| 38 | # | ||
| 39 | # THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 40 | # EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 41 | # IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 42 | # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 43 | # ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 44 | # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 45 | # NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 46 | # LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 47 | # HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 48 | # STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 49 | # ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 50 | # OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 51 | # ==================================================================== | ||
| 52 | |||
| 53 | # CMS, PKCS7 consistency test script. Run extensive tests on | ||
| 54 | # OpenSSL PKCS#7 and CMS implementations. | ||
| 55 | |||
| 56 | my $ossl_path; | ||
| 57 | |||
| 58 | if ( -f "../apps/openssl" ) { | ||
| 59 | $ossl_path = "../util/shlib_wrap.sh ../apps/openssl"; | ||
| 60 | } | ||
| 61 | elsif ( -f "..\\out32dll\\openssl.exe" ) { | ||
| 62 | $ossl_path = "..\\out32dll\\openssl.exe"; | ||
| 63 | } | ||
| 64 | elsif ( -f "..\\out32\\openssl.exe" ) { | ||
| 65 | $ossl_path = "..\\out32\\openssl.exe"; | ||
| 66 | } | ||
| 67 | else { | ||
| 68 | die "Can't find OpenSSL executable"; | ||
| 69 | } | ||
| 70 | |||
| 71 | my $pk7cmd = "$ossl_path smime "; | ||
| 72 | my $cmscmd = "$ossl_path cms "; | ||
| 73 | my $smdir = "smime-certs"; | ||
| 74 | my $halt_err = 1; | ||
| 75 | |||
| 76 | my $badcmd = 0; | ||
| 77 | my $ossl8 = `$ossl_path version -v` =~ /0\.9\.8/; | ||
| 78 | |||
| 79 | my @smime_pkcs7_tests = ( | ||
| 80 | |||
| 81 | [ | ||
| 82 | "signed content DER format, RSA key", | ||
| 83 | "-sign -in smcont.txt -outform DER -nodetach" | ||
| 84 | . " -certfile $smdir/smroot.pem" | ||
| 85 | . " -signer $smdir/smrsa1.pem -out test.cms", | ||
| 86 | "-verify -in test.cms -inform DER " | ||
| 87 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 88 | ], | ||
| 89 | |||
| 90 | [ | ||
| 91 | "signed detached content DER format, RSA key", | ||
| 92 | "-sign -in smcont.txt -outform DER" | ||
| 93 | . " -signer $smdir/smrsa1.pem -out test.cms", | ||
| 94 | "-verify -in test.cms -inform DER " | ||
| 95 | . " -CAfile $smdir/smroot.pem -out smtst.txt -content smcont.txt" | ||
| 96 | ], | ||
| 97 | |||
| 98 | [ | ||
| 99 | "signed content test streaming BER format, RSA", | ||
| 100 | "-sign -in smcont.txt -outform DER -nodetach" | ||
| 101 | . " -stream -signer $smdir/smrsa1.pem -out test.cms", | ||
| 102 | "-verify -in test.cms -inform DER " | ||
| 103 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 104 | ], | ||
| 105 | |||
| 106 | [ | ||
| 107 | "signed content DER format, DSA key", | ||
| 108 | "-sign -in smcont.txt -outform DER -nodetach" | ||
| 109 | . " -signer $smdir/smdsa1.pem -out test.cms", | ||
| 110 | "-verify -in test.cms -inform DER " | ||
| 111 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 112 | ], | ||
| 113 | |||
| 114 | [ | ||
| 115 | "signed detached content DER format, DSA key", | ||
| 116 | "-sign -in smcont.txt -outform DER" | ||
| 117 | . " -signer $smdir/smdsa1.pem -out test.cms", | ||
| 118 | "-verify -in test.cms -inform DER " | ||
| 119 | . " -CAfile $smdir/smroot.pem -out smtst.txt -content smcont.txt" | ||
| 120 | ], | ||
| 121 | |||
| 122 | [ | ||
| 123 | "signed detached content DER format, add RSA signer", | ||
| 124 | "-resign -inform DER -in test.cms -outform DER" | ||
| 125 | . " -signer $smdir/smrsa1.pem -out test2.cms", | ||
| 126 | "-verify -in test2.cms -inform DER " | ||
| 127 | . " -CAfile $smdir/smroot.pem -out smtst.txt -content smcont.txt" | ||
| 128 | ], | ||
| 129 | |||
| 130 | [ | ||
| 131 | "signed content test streaming BER format, DSA key", | ||
| 132 | "-sign -in smcont.txt -outform DER -nodetach" | ||
| 133 | . " -stream -signer $smdir/smdsa1.pem -out test.cms", | ||
| 134 | "-verify -in test.cms -inform DER " | ||
| 135 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 136 | ], | ||
| 137 | |||
| 138 | [ | ||
| 139 | "signed content test streaming BER format, 2 DSA and 2 RSA keys", | ||
| 140 | "-sign -in smcont.txt -outform DER -nodetach" | ||
| 141 | . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem" | ||
| 142 | . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem" | ||
| 143 | . " -stream -out test.cms", | ||
| 144 | "-verify -in test.cms -inform DER " | ||
| 145 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 146 | ], | ||
| 147 | |||
| 148 | [ | ||
| 149 | "signed content test streaming BER format, 2 DSA and 2 RSA keys, no attributes", | ||
| 150 | "-sign -in smcont.txt -outform DER -noattr -nodetach" | ||
| 151 | . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem" | ||
| 152 | . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem" | ||
| 153 | . " -stream -out test.cms", | ||
| 154 | "-verify -in test.cms -inform DER " | ||
| 155 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 156 | ], | ||
| 157 | |||
| 158 | [ | ||
| 159 | "signed content test streaming S/MIME format, 2 DSA and 2 RSA keys", | ||
| 160 | "-sign -in smcont.txt -nodetach" | ||
| 161 | . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem" | ||
| 162 | . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem" | ||
| 163 | . " -stream -out test.cms", | ||
| 164 | "-verify -in test.cms " . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 165 | ], | ||
| 166 | |||
| 167 | [ | ||
| 168 | "signed content test streaming multipart S/MIME format, 2 DSA and 2 RSA keys", | ||
| 169 | "-sign -in smcont.txt" | ||
| 170 | . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem" | ||
| 171 | . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem" | ||
| 172 | . " -stream -out test.cms", | ||
| 173 | "-verify -in test.cms " . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 174 | ], | ||
| 175 | |||
| 176 | [ | ||
| 177 | "enveloped content test streaming S/MIME format, 3 recipients", | ||
| 178 | "-encrypt -in smcont.txt" | ||
| 179 | . " -stream -out test.cms" | ||
| 180 | . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ", | ||
| 181 | "-decrypt -recip $smdir/smrsa1.pem -in test.cms -out smtst.txt" | ||
| 182 | ], | ||
| 183 | |||
| 184 | [ | ||
| 185 | "enveloped content test streaming S/MIME format, 3 recipients, 3rd used", | ||
| 186 | "-encrypt -in smcont.txt" | ||
| 187 | . " -stream -out test.cms" | ||
| 188 | . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ", | ||
| 189 | "-decrypt -recip $smdir/smrsa3.pem -in test.cms -out smtst.txt" | ||
| 190 | ], | ||
| 191 | |||
| 192 | [ | ||
| 193 | "enveloped content test streaming S/MIME format, 3 recipients, key only used", | ||
| 194 | "-encrypt -in smcont.txt" | ||
| 195 | . " -stream -out test.cms" | ||
| 196 | . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ", | ||
| 197 | "-decrypt -inkey $smdir/smrsa3.pem -in test.cms -out smtst.txt" | ||
| 198 | ], | ||
| 199 | |||
| 200 | [ | ||
| 201 | "enveloped content test streaming S/MIME format, AES-256 cipher, 3 recipients", | ||
| 202 | "-encrypt -in smcont.txt" | ||
| 203 | . " -aes256 -stream -out test.cms" | ||
| 204 | . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ", | ||
| 205 | "-decrypt -recip $smdir/smrsa1.pem -in test.cms -out smtst.txt" | ||
| 206 | ], | ||
| 207 | |||
| 208 | ); | ||
| 209 | |||
| 210 | my @smime_cms_tests = ( | ||
| 211 | |||
| 212 | [ | ||
| 213 | "signed content test streaming BER format, 2 DSA and 2 RSA keys, keyid", | ||
| 214 | "-sign -in smcont.txt -outform DER -nodetach -keyid" | ||
| 215 | . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem" | ||
| 216 | . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem" | ||
| 217 | . " -stream -out test.cms", | ||
| 218 | "-verify -in test.cms -inform DER " | ||
| 219 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 220 | ], | ||
| 221 | |||
| 222 | [ | ||
| 223 | "signed content test streaming PEM format, 2 DSA and 2 RSA keys", | ||
| 224 | "-sign -in smcont.txt -outform PEM -nodetach" | ||
| 225 | . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem" | ||
| 226 | . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem" | ||
| 227 | . " -stream -out test.cms", | ||
| 228 | "-verify -in test.cms -inform PEM " | ||
| 229 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 230 | ], | ||
| 231 | |||
| 232 | [ | ||
| 233 | "signed content MIME format, RSA key, signed receipt request", | ||
| 234 | "-sign -in smcont.txt -signer $smdir/smrsa1.pem -nodetach" | ||
| 235 | . " -receipt_request_to test@openssl.org -receipt_request_all" | ||
| 236 | . " -out test.cms", | ||
| 237 | "-verify -in test.cms " | ||
| 238 | . " -CAfile $smdir/smroot.pem -out smtst.txt" | ||
| 239 | ], | ||
| 240 | |||
| 241 | [ | ||
| 242 | "signed receipt MIME format, RSA key", | ||
| 243 | "-sign_receipt -in test.cms" | ||
| 244 | . " -signer $smdir/smrsa2.pem" | ||
| 245 | . " -out test2.cms", | ||
| 246 | "-verify_receipt test2.cms -in test.cms" | ||
| 247 | . " -CAfile $smdir/smroot.pem" | ||
| 248 | ], | ||
| 249 | |||
| 250 | [ | ||
| 251 | "enveloped content test streaming S/MIME format, 3 recipients, keyid", | ||
| 252 | "-encrypt -in smcont.txt" | ||
| 253 | . " -stream -out test.cms -keyid" | ||
| 254 | . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ", | ||
| 255 | "-decrypt -recip $smdir/smrsa1.pem -in test.cms -out smtst.txt" | ||
| 256 | ], | ||
| 257 | |||
| 258 | [ | ||
| 259 | "enveloped content test streaming PEM format, KEK", | ||
| 260 | "-encrypt -in smcont.txt -outform PEM -aes128" | ||
| 261 | . " -stream -out test.cms " | ||
| 262 | . " -secretkey 000102030405060708090A0B0C0D0E0F " | ||
| 263 | . " -secretkeyid C0FEE0", | ||
| 264 | "-decrypt -in test.cms -out smtst.txt -inform PEM" | ||
| 265 | . " -secretkey 000102030405060708090A0B0C0D0E0F " | ||
| 266 | . " -secretkeyid C0FEE0" | ||
| 267 | ], | ||
| 268 | |||
| 269 | [ | ||
| 270 | "enveloped content test streaming PEM format, KEK, key only", | ||
| 271 | "-encrypt -in smcont.txt -outform PEM -aes128" | ||
| 272 | . " -stream -out test.cms " | ||
| 273 | . " -secretkey 000102030405060708090A0B0C0D0E0F " | ||
| 274 | . " -secretkeyid C0FEE0", | ||
| 275 | "-decrypt -in test.cms -out smtst.txt -inform PEM" | ||
| 276 | . " -secretkey 000102030405060708090A0B0C0D0E0F " | ||
| 277 | ], | ||
| 278 | |||
| 279 | [ | ||
| 280 | "data content test streaming PEM format", | ||
| 281 | "-data_create -in smcont.txt -outform PEM -nodetach" | ||
| 282 | . " -stream -out test.cms", | ||
| 283 | "-data_out -in test.cms -inform PEM -out smtst.txt" | ||
| 284 | ], | ||
| 285 | |||
| 286 | [ | ||
| 287 | "encrypted content test streaming PEM format, 128 bit RC2 key", | ||
| 288 | "-EncryptedData_encrypt -in smcont.txt -outform PEM" | ||
| 289 | . " -rc2 -secretkey 000102030405060708090A0B0C0D0E0F" | ||
| 290 | . " -stream -out test.cms", | ||
| 291 | "-EncryptedData_decrypt -in test.cms -inform PEM " | ||
| 292 | . " -secretkey 000102030405060708090A0B0C0D0E0F -out smtst.txt" | ||
| 293 | ], | ||
| 294 | |||
| 295 | [ | ||
| 296 | "encrypted content test streaming PEM format, 40 bit RC2 key", | ||
| 297 | "-EncryptedData_encrypt -in smcont.txt -outform PEM" | ||
| 298 | . " -rc2 -secretkey 0001020304" | ||
| 299 | . " -stream -out test.cms", | ||
| 300 | "-EncryptedData_decrypt -in test.cms -inform PEM " | ||
| 301 | . " -secretkey 0001020304 -out smtst.txt" | ||
| 302 | ], | ||
| 303 | |||
| 304 | [ | ||
| 305 | "encrypted content test streaming PEM format, triple DES key", | ||
| 306 | "-EncryptedData_encrypt -in smcont.txt -outform PEM" | ||
| 307 | . " -des3 -secretkey 000102030405060708090A0B0C0D0E0F1011121314151617" | ||
| 308 | . " -stream -out test.cms", | ||
| 309 | "-EncryptedData_decrypt -in test.cms -inform PEM " | ||
| 310 | . " -secretkey 000102030405060708090A0B0C0D0E0F1011121314151617" | ||
| 311 | . " -out smtst.txt" | ||
| 312 | ], | ||
| 313 | |||
| 314 | [ | ||
| 315 | "encrypted content test streaming PEM format, 128 bit AES key", | ||
| 316 | "-EncryptedData_encrypt -in smcont.txt -outform PEM" | ||
| 317 | . " -aes128 -secretkey 000102030405060708090A0B0C0D0E0F" | ||
| 318 | . " -stream -out test.cms", | ||
| 319 | "-EncryptedData_decrypt -in test.cms -inform PEM " | ||
| 320 | . " -secretkey 000102030405060708090A0B0C0D0E0F -out smtst.txt" | ||
| 321 | ], | ||
| 322 | |||
| 323 | ); | ||
| 324 | |||
| 325 | my @smime_cms_comp_tests = ( | ||
| 326 | |||
| 327 | [ | ||
| 328 | "compressed content test streaming PEM format", | ||
| 329 | "-compress -in smcont.txt -outform PEM -nodetach" | ||
| 330 | . " -stream -out test.cms", | ||
| 331 | "-uncompress -in test.cms -inform PEM -out smtst.txt" | ||
| 332 | ] | ||
| 333 | |||
| 334 | ); | ||
| 335 | |||
| 336 | print "PKCS#7 <=> PKCS#7 consistency tests\n"; | ||
| 337 | |||
| 338 | run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $pk7cmd, $pk7cmd ); | ||
| 339 | |||
| 340 | print "CMS => PKCS#7 compatibility tests\n"; | ||
| 341 | |||
| 342 | run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $cmscmd, $pk7cmd ); | ||
| 343 | |||
| 344 | print "CMS <= PKCS#7 compatibility tests\n"; | ||
| 345 | |||
| 346 | run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $pk7cmd, $cmscmd ); | ||
| 347 | |||
| 348 | print "CMS <=> CMS consistency tests\n"; | ||
| 349 | |||
| 350 | run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $cmscmd, $cmscmd ); | ||
| 351 | run_smime_tests( \$badcmd, \@smime_cms_tests, $cmscmd, $cmscmd ); | ||
| 352 | |||
| 353 | if ( `$ossl_path version -f` =~ /ZLIB/ ) { | ||
| 354 | run_smime_tests( \$badcmd, \@smime_cms_comp_tests, $cmscmd, $cmscmd ); | ||
| 355 | } | ||
| 356 | else { | ||
| 357 | print "Zlib not supported: compression tests skipped\n"; | ||
| 358 | } | ||
| 359 | |||
| 360 | print "Running modified tests for OpenSSL 0.9.8 cms backport\n" if($ossl8); | ||
| 361 | |||
| 362 | if ($badcmd) { | ||
| 363 | print "$badcmd TESTS FAILED!!\n"; | ||
| 364 | } | ||
| 365 | else { | ||
| 366 | print "ALL TESTS SUCCESSFUL.\n"; | ||
| 367 | } | ||
| 368 | |||
| 369 | unlink "test.cms"; | ||
| 370 | unlink "test2.cms"; | ||
| 371 | unlink "smtst.txt"; | ||
| 372 | unlink "cms.out"; | ||
| 373 | unlink "cms.err"; | ||
| 374 | |||
| 375 | sub run_smime_tests { | ||
| 376 | my ( $rv, $aref, $scmd, $vcmd ) = @_; | ||
| 377 | |||
| 378 | foreach $smtst (@$aref) { | ||
| 379 | my ( $tnam, $rscmd, $rvcmd ) = @$smtst; | ||
| 380 | if ($ossl8) | ||
| 381 | { | ||
| 382 | # Skip smime resign: 0.9.8 smime doesn't support -resign | ||
| 383 | next if ($scmd =~ /smime/ && $rscmd =~ /-resign/); | ||
| 384 | # Disable streaming: option not supported in 0.9.8 | ||
| 385 | $tnam =~ s/streaming//; | ||
| 386 | $rscmd =~ s/-stream//; | ||
| 387 | $rvcmd =~ s/-stream//; | ||
| 388 | } | ||
| 389 | system("$scmd$rscmd 2>cms.err 1>cms.out"); | ||
| 390 | if ($?) { | ||
| 391 | print "$tnam: generation error\n"; | ||
| 392 | $$rv++; | ||
| 393 | exit 1 if $halt_err; | ||
| 394 | next; | ||
| 395 | } | ||
| 396 | system("$vcmd$rvcmd 2>cms.err 1>cms.out"); | ||
| 397 | if ($?) { | ||
| 398 | print "$tnam: verify error\n"; | ||
| 399 | $$rv++; | ||
| 400 | exit 1 if $halt_err; | ||
| 401 | next; | ||
| 402 | } | ||
| 403 | if (!cmp_files("smtst.txt", "smcont.txt")) { | ||
| 404 | print "$tnam: content verify error\n"; | ||
| 405 | $$rv++; | ||
| 406 | exit 1 if $halt_err; | ||
| 407 | next; | ||
| 408 | } | ||
| 409 | print "$tnam: OK\n"; | ||
| 410 | } | ||
| 411 | } | ||
| 412 | |||
| 413 | sub cmp_files { | ||
| 414 | my ( $f1, $f2 ) = @_; | ||
| 415 | my ( $fp1, $fp2 ); | ||
| 416 | |||
| 417 | my ( $rd1, $rd2 ); | ||
| 418 | |||
| 419 | if ( !open( $fp1, "<$f1" ) ) { | ||
| 420 | print STDERR "Can't Open file $f1\n"; | ||
| 421 | return 0; | ||
| 422 | } | ||
| 423 | |||
| 424 | if ( !open( $fp2, "<$f2" ) ) { | ||
| 425 | print STDERR "Can't Open file $f2\n"; | ||
| 426 | return 0; | ||
| 427 | } | ||
| 428 | |||
| 429 | binmode $fp1; | ||
| 430 | binmode $fp2; | ||
| 431 | |||
| 432 | my $ret = 0; | ||
| 433 | |||
| 434 | for ( ; ; ) { | ||
| 435 | $n1 = sysread $fp1, $rd1, 4096; | ||
| 436 | $n2 = sysread $fp2, $rd2, 4096; | ||
| 437 | last if ( $n1 != $n2 ); | ||
| 438 | last if ( $rd1 ne $rd2 ); | ||
| 439 | |||
| 440 | if ( $n1 == 0 ) { | ||
| 441 | $ret = 1; | ||
| 442 | last; | ||
| 443 | } | ||
| 444 | |||
| 445 | } | ||
| 446 | |||
| 447 | close $fp1; | ||
| 448 | close $fp2; | ||
| 449 | |||
| 450 | return $ret; | ||
| 451 | |||
| 452 | } | ||
| 453 | |||
diff --git a/src/lib/libssl/src/test/igetest.c b/src/lib/libssl/src/test/igetest.c new file mode 100644 index 0000000000..95452d0965 --- /dev/null +++ b/src/lib/libssl/src/test/igetest.c | |||
| @@ -0,0 +1,503 @@ | |||
| 1 | /* test/igetest.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #include <openssl/aes.h> | ||
| 53 | #include <openssl/rand.h> | ||
| 54 | #include <stdio.h> | ||
| 55 | #include <string.h> | ||
| 56 | #include <assert.h> | ||
| 57 | |||
| 58 | #define TEST_SIZE 128 | ||
| 59 | #define BIG_TEST_SIZE 10240 | ||
| 60 | |||
| 61 | static void hexdump(FILE *f,const char *title,const unsigned char *s,int l) | ||
| 62 | { | ||
| 63 | int n=0; | ||
| 64 | |||
| 65 | fprintf(f,"%s",title); | ||
| 66 | for( ; n < l ; ++n) | ||
| 67 | { | ||
| 68 | if((n%16) == 0) | ||
| 69 | fprintf(f,"\n%04x",n); | ||
| 70 | fprintf(f," %02x",s[n]); | ||
| 71 | } | ||
| 72 | fprintf(f,"\n"); | ||
| 73 | } | ||
| 74 | |||
| 75 | #define MAX_VECTOR_SIZE 64 | ||
| 76 | |||
| 77 | struct ige_test | ||
| 78 | { | ||
| 79 | const unsigned char key[16]; | ||
| 80 | const unsigned char iv[32]; | ||
| 81 | const unsigned char in[MAX_VECTOR_SIZE]; | ||
| 82 | const unsigned char out[MAX_VECTOR_SIZE]; | ||
| 83 | const size_t length; | ||
| 84 | const int encrypt; | ||
| 85 | }; | ||
| 86 | |||
| 87 | static struct ige_test const ige_test_vectors[] = { | ||
| 88 | { { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 89 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f }, /* key */ | ||
| 90 | { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 91 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, | ||
| 92 | 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 93 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f }, /* iv */ | ||
| 94 | { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 95 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 96 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 97 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, /* in */ | ||
| 98 | { 0x1a, 0x85, 0x19, 0xa6, 0x55, 0x7b, 0xe6, 0x52, | ||
| 99 | 0xe9, 0xda, 0x8e, 0x43, 0xda, 0x4e, 0xf4, 0x45, | ||
| 100 | 0x3c, 0xf4, 0x56, 0xb4, 0xca, 0x48, 0x8a, 0xa3, | ||
| 101 | 0x83, 0xc7, 0x9c, 0x98, 0xb3, 0x47, 0x97, 0xcb }, /* out */ | ||
| 102 | 32, AES_ENCRYPT }, /* test vector 0 */ | ||
| 103 | |||
| 104 | { { 0x54, 0x68, 0x69, 0x73, 0x20, 0x69, 0x73, 0x20, | ||
| 105 | 0x61, 0x6e, 0x20, 0x69, 0x6d, 0x70, 0x6c, 0x65 }, /* key */ | ||
| 106 | { 0x6d, 0x65, 0x6e, 0x74, 0x61, 0x74, 0x69, 0x6f, | ||
| 107 | 0x6e, 0x20, 0x6f, 0x66, 0x20, 0x49, 0x47, 0x45, | ||
| 108 | 0x20, 0x6d, 0x6f, 0x64, 0x65, 0x20, 0x66, 0x6f, | ||
| 109 | 0x72, 0x20, 0x4f, 0x70, 0x65, 0x6e, 0x53, 0x53 }, /* iv */ | ||
| 110 | { 0x4c, 0x2e, 0x20, 0x4c, 0x65, 0x74, 0x27, 0x73, | ||
| 111 | 0x20, 0x68, 0x6f, 0x70, 0x65, 0x20, 0x42, 0x65, | ||
| 112 | 0x6e, 0x20, 0x67, 0x6f, 0x74, 0x20, 0x69, 0x74, | ||
| 113 | 0x20, 0x72, 0x69, 0x67, 0x68, 0x74, 0x21, 0x0a }, /* in */ | ||
| 114 | { 0x99, 0x70, 0x64, 0x87, 0xa1, 0xcd, 0xe6, 0x13, | ||
| 115 | 0xbc, 0x6d, 0xe0, 0xb6, 0xf2, 0x4b, 0x1c, 0x7a, | ||
| 116 | 0xa4, 0x48, 0xc8, 0xb9, 0xc3, 0x40, 0x3e, 0x34, | ||
| 117 | 0x67, 0xa8, 0xca, 0xd8, 0x93, 0x40, 0xf5, 0x3b }, /* out */ | ||
| 118 | 32, AES_DECRYPT }, /* test vector 1 */ | ||
| 119 | }; | ||
| 120 | |||
| 121 | struct bi_ige_test | ||
| 122 | { | ||
| 123 | const unsigned char key1[32]; | ||
| 124 | const unsigned char key2[32]; | ||
| 125 | const unsigned char iv[64]; | ||
| 126 | const unsigned char in[MAX_VECTOR_SIZE]; | ||
| 127 | const unsigned char out[MAX_VECTOR_SIZE]; | ||
| 128 | const size_t keysize; | ||
| 129 | const size_t length; | ||
| 130 | const int encrypt; | ||
| 131 | }; | ||
| 132 | |||
| 133 | static struct bi_ige_test const bi_ige_test_vectors[] = { | ||
| 134 | { { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 135 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f }, /* key1 */ | ||
| 136 | { 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 137 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f }, /* key2 */ | ||
| 138 | { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 139 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, | ||
| 140 | 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 141 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, | ||
| 142 | 0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27, | ||
| 143 | 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f, | ||
| 144 | 0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, | ||
| 145 | 0x38, 0x39, 0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f }, /* iv */ | ||
| 146 | { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 147 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 148 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 149 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, /* in */ | ||
| 150 | { 0x14, 0x40, 0x6f, 0xae, 0xa2, 0x79, 0xf2, 0x56, | ||
| 151 | 0x1f, 0x86, 0xeb, 0x3b, 0x7d, 0xff, 0x53, 0xdc, | ||
| 152 | 0x4e, 0x27, 0x0c, 0x03, 0xde, 0x7c, 0xe5, 0x16, | ||
| 153 | 0x6a, 0x9c, 0x20, 0x33, 0x9d, 0x33, 0xfe, 0x12 }, /* out */ | ||
| 154 | 16, 32, AES_ENCRYPT }, /* test vector 0 */ | ||
| 155 | { { 0x58, 0x0a, 0x06, 0xe9, 0x97, 0x07, 0x59, 0x5c, | ||
| 156 | 0x9e, 0x19, 0xd2, 0xa7, 0xbb, 0x40, 0x2b, 0x7a, | ||
| 157 | 0xc7, 0xd8, 0x11, 0x9e, 0x4c, 0x51, 0x35, 0x75, | ||
| 158 | 0x64, 0x28, 0x0f, 0x23, 0xad, 0x74, 0xac, 0x37 }, /* key1 */ | ||
| 159 | { 0xd1, 0x80, 0xa0, 0x31, 0x47, 0xa3, 0x11, 0x13, | ||
| 160 | 0x86, 0x26, 0x9e, 0x6d, 0xff, 0xaf, 0x72, 0x74, | ||
| 161 | 0x5b, 0xa2, 0x35, 0x81, 0xd2, 0xa6, 0x3d, 0x21, | ||
| 162 | 0x67, 0x7b, 0x58, 0xa8, 0x18, 0xf9, 0x72, 0xe4 }, /* key2 */ | ||
| 163 | { 0x80, 0x3d, 0xbd, 0x4c, 0xe6, 0x7b, 0x06, 0xa9, | ||
| 164 | 0x53, 0x35, 0xd5, 0x7e, 0x71, 0xc1, 0x70, 0x70, | ||
| 165 | 0x74, 0x9a, 0x00, 0x28, 0x0c, 0xbf, 0x6c, 0x42, | ||
| 166 | 0x9b, 0xa4, 0xdd, 0x65, 0x11, 0x77, 0x7c, 0x67, | ||
| 167 | 0xfe, 0x76, 0x0a, 0xf0, 0xd5, 0xc6, 0x6e, 0x6a, | ||
| 168 | 0xe7, 0x5e, 0x4c, 0xf2, 0x7e, 0x9e, 0xf9, 0x20, | ||
| 169 | 0x0e, 0x54, 0x6f, 0x2d, 0x8a, 0x8d, 0x7e, 0xbd, | ||
| 170 | 0x48, 0x79, 0x37, 0x99, 0xff, 0x27, 0x93, 0xa3 }, /* iv */ | ||
| 171 | { 0xf1, 0x54, 0x3d, 0xca, 0xfe, 0xb5, 0xef, 0x1c, | ||
| 172 | 0x4f, 0xa6, 0x43, 0xf6, 0xe6, 0x48, 0x57, 0xf0, | ||
| 173 | 0xee, 0x15, 0x7f, 0xe3, 0xe7, 0x2f, 0xd0, 0x2f, | ||
| 174 | 0x11, 0x95, 0x7a, 0x17, 0x00, 0xab, 0xa7, 0x0b, | ||
| 175 | 0xbe, 0x44, 0x09, 0x9c, 0xcd, 0xac, 0xa8, 0x52, | ||
| 176 | 0xa1, 0x8e, 0x7b, 0x75, 0xbc, 0xa4, 0x92, 0x5a, | ||
| 177 | 0xab, 0x46, 0xd3, 0x3a, 0xa0, 0xd5, 0x35, 0x1c, | ||
| 178 | 0x55, 0xa4, 0xb3, 0xa8, 0x40, 0x81, 0xa5, 0x0b}, /* in */ | ||
| 179 | { 0x42, 0xe5, 0x28, 0x30, 0x31, 0xc2, 0xa0, 0x23, | ||
| 180 | 0x68, 0x49, 0x4e, 0xb3, 0x24, 0x59, 0x92, 0x79, | ||
| 181 | 0xc1, 0xa5, 0xcc, 0xe6, 0x76, 0x53, 0xb1, 0xcf, | ||
| 182 | 0x20, 0x86, 0x23, 0xe8, 0x72, 0x55, 0x99, 0x92, | ||
| 183 | 0x0d, 0x16, 0x1c, 0x5a, 0x2f, 0xce, 0xcb, 0x51, | ||
| 184 | 0xe2, 0x67, 0xfa, 0x10, 0xec, 0xcd, 0x3d, 0x67, | ||
| 185 | 0xa5, 0xe6, 0xf7, 0x31, 0x26, 0xb0, 0x0d, 0x76, | ||
| 186 | 0x5e, 0x28, 0xdc, 0x7f, 0x01, 0xc5, 0xa5, 0x4c}, /* out */ | ||
| 187 | 32, 64, AES_ENCRYPT }, /* test vector 1 */ | ||
| 188 | |||
| 189 | }; | ||
| 190 | |||
| 191 | static int run_test_vectors(void) | ||
| 192 | { | ||
| 193 | int n; | ||
| 194 | int errs = 0; | ||
| 195 | |||
| 196 | for(n=0 ; n < sizeof(ige_test_vectors)/sizeof(ige_test_vectors[0]) ; ++n) | ||
| 197 | { | ||
| 198 | const struct ige_test * const v = &ige_test_vectors[n]; | ||
| 199 | AES_KEY key; | ||
| 200 | unsigned char buf[MAX_VECTOR_SIZE]; | ||
| 201 | unsigned char iv[AES_BLOCK_SIZE*2]; | ||
| 202 | |||
| 203 | assert(v->length <= MAX_VECTOR_SIZE); | ||
| 204 | |||
| 205 | if(v->encrypt == AES_ENCRYPT) | ||
| 206 | AES_set_encrypt_key(v->key, 8*sizeof v->key, &key); | ||
| 207 | else | ||
| 208 | AES_set_decrypt_key(v->key, 8*sizeof v->key, &key); | ||
| 209 | memcpy(iv, v->iv, sizeof iv); | ||
| 210 | AES_ige_encrypt(v->in, buf, v->length, &key, iv, v->encrypt); | ||
| 211 | |||
| 212 | if(memcmp(v->out, buf, v->length)) | ||
| 213 | { | ||
| 214 | printf("IGE test vector %d failed\n", n); | ||
| 215 | hexdump(stdout, "key", v->key, sizeof v->key); | ||
| 216 | hexdump(stdout, "iv", v->iv, sizeof v->iv); | ||
| 217 | hexdump(stdout, "in", v->in, v->length); | ||
| 218 | hexdump(stdout, "expected", v->out, v->length); | ||
| 219 | hexdump(stdout, "got", buf, v->length); | ||
| 220 | |||
| 221 | ++errs; | ||
| 222 | } | ||
| 223 | |||
| 224 | /* try with in == out */ | ||
| 225 | memcpy(iv, v->iv, sizeof iv); | ||
| 226 | memcpy(buf, v->in, v->length); | ||
| 227 | AES_ige_encrypt(buf, buf, v->length, &key, iv, v->encrypt); | ||
| 228 | |||
| 229 | if(memcmp(v->out, buf, v->length)) | ||
| 230 | { | ||
| 231 | printf("IGE test vector %d failed (with in == out)\n", n); | ||
| 232 | hexdump(stdout, "key", v->key, sizeof v->key); | ||
| 233 | hexdump(stdout, "iv", v->iv, sizeof v->iv); | ||
| 234 | hexdump(stdout, "in", v->in, v->length); | ||
| 235 | hexdump(stdout, "expected", v->out, v->length); | ||
| 236 | hexdump(stdout, "got", buf, v->length); | ||
| 237 | |||
| 238 | ++errs; | ||
| 239 | } | ||
| 240 | } | ||
| 241 | |||
| 242 | for(n=0 ; n < sizeof(bi_ige_test_vectors)/sizeof(bi_ige_test_vectors[0]) | ||
| 243 | ; ++n) | ||
| 244 | { | ||
| 245 | const struct bi_ige_test * const v = &bi_ige_test_vectors[n]; | ||
| 246 | AES_KEY key1; | ||
| 247 | AES_KEY key2; | ||
| 248 | unsigned char buf[MAX_VECTOR_SIZE]; | ||
| 249 | |||
| 250 | assert(v->length <= MAX_VECTOR_SIZE); | ||
| 251 | |||
| 252 | if(v->encrypt == AES_ENCRYPT) | ||
| 253 | { | ||
| 254 | AES_set_encrypt_key(v->key1, 8*v->keysize, &key1); | ||
| 255 | AES_set_encrypt_key(v->key2, 8*v->keysize, &key2); | ||
| 256 | } | ||
| 257 | else | ||
| 258 | { | ||
| 259 | AES_set_decrypt_key(v->key1, 8*v->keysize, &key1); | ||
| 260 | AES_set_decrypt_key(v->key2, 8*v->keysize, &key2); | ||
| 261 | } | ||
| 262 | |||
| 263 | AES_bi_ige_encrypt(v->in, buf, v->length, &key1, &key2, v->iv, | ||
| 264 | v->encrypt); | ||
| 265 | |||
| 266 | if(memcmp(v->out, buf, v->length)) | ||
| 267 | { | ||
| 268 | printf("Bidirectional IGE test vector %d failed\n", n); | ||
| 269 | hexdump(stdout, "key 1", v->key1, sizeof v->key1); | ||
| 270 | hexdump(stdout, "key 2", v->key2, sizeof v->key2); | ||
| 271 | hexdump(stdout, "iv", v->iv, sizeof v->iv); | ||
| 272 | hexdump(stdout, "in", v->in, v->length); | ||
| 273 | hexdump(stdout, "expected", v->out, v->length); | ||
| 274 | hexdump(stdout, "got", buf, v->length); | ||
| 275 | |||
| 276 | ++errs; | ||
| 277 | } | ||
| 278 | } | ||
| 279 | |||
| 280 | return errs; | ||
| 281 | } | ||
| 282 | |||
| 283 | int main(int argc, char **argv) | ||
| 284 | { | ||
| 285 | unsigned char rkey[16]; | ||
| 286 | unsigned char rkey2[16]; | ||
| 287 | AES_KEY key; | ||
| 288 | AES_KEY key2; | ||
| 289 | unsigned char plaintext[BIG_TEST_SIZE]; | ||
| 290 | unsigned char ciphertext[BIG_TEST_SIZE]; | ||
| 291 | unsigned char checktext[BIG_TEST_SIZE]; | ||
| 292 | unsigned char iv[AES_BLOCK_SIZE*4]; | ||
| 293 | unsigned char saved_iv[AES_BLOCK_SIZE*4]; | ||
| 294 | int err = 0; | ||
| 295 | int n; | ||
| 296 | unsigned matches; | ||
| 297 | |||
| 298 | assert(BIG_TEST_SIZE >= TEST_SIZE); | ||
| 299 | |||
| 300 | RAND_pseudo_bytes(rkey, sizeof rkey); | ||
| 301 | RAND_pseudo_bytes(plaintext, sizeof plaintext); | ||
| 302 | RAND_pseudo_bytes(iv, sizeof iv); | ||
| 303 | memcpy(saved_iv, iv, sizeof saved_iv); | ||
| 304 | |||
| 305 | /* Forward IGE only... */ | ||
| 306 | |||
| 307 | /* Straight encrypt/decrypt */ | ||
| 308 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 309 | AES_ige_encrypt(plaintext, ciphertext, TEST_SIZE, &key, iv, | ||
| 310 | AES_ENCRYPT); | ||
| 311 | |||
| 312 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 313 | memcpy(iv, saved_iv, sizeof iv); | ||
| 314 | AES_ige_encrypt(ciphertext, checktext, TEST_SIZE, &key, iv, | ||
| 315 | AES_DECRYPT); | ||
| 316 | |||
| 317 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 318 | { | ||
| 319 | printf("Encrypt+decrypt doesn't match\n"); | ||
| 320 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 321 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 322 | ++err; | ||
| 323 | } | ||
| 324 | |||
| 325 | /* Now check encrypt chaining works */ | ||
| 326 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 327 | memcpy(iv, saved_iv, sizeof iv); | ||
| 328 | AES_ige_encrypt(plaintext, ciphertext, TEST_SIZE/2, &key, iv, | ||
| 329 | AES_ENCRYPT); | ||
| 330 | AES_ige_encrypt(plaintext+TEST_SIZE/2, | ||
| 331 | ciphertext+TEST_SIZE/2, TEST_SIZE/2, | ||
| 332 | &key, iv, AES_ENCRYPT); | ||
| 333 | |||
| 334 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 335 | memcpy(iv, saved_iv, sizeof iv); | ||
| 336 | AES_ige_encrypt(ciphertext, checktext, TEST_SIZE, &key, iv, | ||
| 337 | AES_DECRYPT); | ||
| 338 | |||
| 339 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 340 | { | ||
| 341 | printf("Chained encrypt+decrypt doesn't match\n"); | ||
| 342 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 343 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 344 | ++err; | ||
| 345 | } | ||
| 346 | |||
| 347 | /* And check decrypt chaining */ | ||
| 348 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 349 | memcpy(iv, saved_iv, sizeof iv); | ||
| 350 | AES_ige_encrypt(plaintext, ciphertext, TEST_SIZE/2, &key, iv, | ||
| 351 | AES_ENCRYPT); | ||
| 352 | AES_ige_encrypt(plaintext+TEST_SIZE/2, | ||
| 353 | ciphertext+TEST_SIZE/2, TEST_SIZE/2, | ||
| 354 | &key, iv, AES_ENCRYPT); | ||
| 355 | |||
| 356 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 357 | memcpy(iv, saved_iv, sizeof iv); | ||
| 358 | AES_ige_encrypt(ciphertext, checktext, TEST_SIZE/2, &key, iv, | ||
| 359 | AES_DECRYPT); | ||
| 360 | AES_ige_encrypt(ciphertext+TEST_SIZE/2, | ||
| 361 | checktext+TEST_SIZE/2, TEST_SIZE/2, &key, iv, | ||
| 362 | AES_DECRYPT); | ||
| 363 | |||
| 364 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 365 | { | ||
| 366 | printf("Chained encrypt+chained decrypt doesn't match\n"); | ||
| 367 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 368 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 369 | ++err; | ||
| 370 | } | ||
| 371 | |||
| 372 | /* make sure garble extends forwards only */ | ||
| 373 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 374 | memcpy(iv, saved_iv, sizeof iv); | ||
| 375 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 376 | AES_ENCRYPT); | ||
| 377 | |||
| 378 | /* corrupt halfway through */ | ||
| 379 | ++ciphertext[sizeof ciphertext/2]; | ||
| 380 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 381 | memcpy(iv, saved_iv, sizeof iv); | ||
| 382 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 383 | AES_DECRYPT); | ||
| 384 | |||
| 385 | matches=0; | ||
| 386 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 387 | if(checktext[n] == plaintext[n]) | ||
| 388 | ++matches; | ||
| 389 | |||
| 390 | if(matches > sizeof checktext/2+sizeof checktext/100) | ||
| 391 | { | ||
| 392 | printf("More than 51%% matches after garbling\n"); | ||
| 393 | ++err; | ||
| 394 | } | ||
| 395 | |||
| 396 | if(matches < sizeof checktext/2) | ||
| 397 | { | ||
| 398 | printf("Garble extends backwards!\n"); | ||
| 399 | ++err; | ||
| 400 | } | ||
| 401 | |||
| 402 | /* Bi-directional IGE */ | ||
| 403 | |||
| 404 | /* Note that we don't have to recover the IV, because chaining isn't */ | ||
| 405 | /* possible with biIGE, so the IV is not updated. */ | ||
| 406 | |||
| 407 | RAND_pseudo_bytes(rkey2, sizeof rkey2); | ||
| 408 | |||
| 409 | /* Straight encrypt/decrypt */ | ||
| 410 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 411 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 412 | AES_bi_ige_encrypt(plaintext, ciphertext, TEST_SIZE, &key, &key2, iv, | ||
| 413 | AES_ENCRYPT); | ||
| 414 | |||
| 415 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 416 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 417 | AES_bi_ige_encrypt(ciphertext, checktext, TEST_SIZE, &key, &key2, iv, | ||
| 418 | AES_DECRYPT); | ||
| 419 | |||
| 420 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 421 | { | ||
| 422 | printf("Encrypt+decrypt doesn't match\n"); | ||
| 423 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 424 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 425 | ++err; | ||
| 426 | } | ||
| 427 | |||
| 428 | /* make sure garble extends both ways */ | ||
| 429 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 430 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 431 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 432 | AES_ENCRYPT); | ||
| 433 | |||
| 434 | /* corrupt halfway through */ | ||
| 435 | ++ciphertext[sizeof ciphertext/2]; | ||
| 436 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 437 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 438 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 439 | AES_DECRYPT); | ||
| 440 | |||
| 441 | matches=0; | ||
| 442 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 443 | if(checktext[n] == plaintext[n]) | ||
| 444 | ++matches; | ||
| 445 | |||
| 446 | if(matches > sizeof checktext/100) | ||
| 447 | { | ||
| 448 | printf("More than 1%% matches after bidirectional garbling\n"); | ||
| 449 | ++err; | ||
| 450 | } | ||
| 451 | |||
| 452 | /* make sure garble extends both ways (2) */ | ||
| 453 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 454 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 455 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 456 | AES_ENCRYPT); | ||
| 457 | |||
| 458 | /* corrupt right at the end */ | ||
| 459 | ++ciphertext[sizeof ciphertext-1]; | ||
| 460 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 461 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 462 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 463 | AES_DECRYPT); | ||
| 464 | |||
| 465 | matches=0; | ||
| 466 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 467 | if(checktext[n] == plaintext[n]) | ||
| 468 | ++matches; | ||
| 469 | |||
| 470 | if(matches > sizeof checktext/100) | ||
| 471 | { | ||
| 472 | printf("More than 1%% matches after bidirectional garbling (2)\n"); | ||
| 473 | ++err; | ||
| 474 | } | ||
| 475 | |||
| 476 | /* make sure garble extends both ways (3) */ | ||
| 477 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 478 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 479 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 480 | AES_ENCRYPT); | ||
| 481 | |||
| 482 | /* corrupt right at the start */ | ||
| 483 | ++ciphertext[0]; | ||
| 484 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 485 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 486 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 487 | AES_DECRYPT); | ||
| 488 | |||
| 489 | matches=0; | ||
| 490 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 491 | if(checktext[n] == plaintext[n]) | ||
| 492 | ++matches; | ||
| 493 | |||
| 494 | if(matches > sizeof checktext/100) | ||
| 495 | { | ||
| 496 | printf("More than 1%% matches after bidirectional garbling (3)\n"); | ||
| 497 | ++err; | ||
| 498 | } | ||
| 499 | |||
| 500 | err += run_test_vectors(); | ||
| 501 | |||
| 502 | return err; | ||
| 503 | } | ||
diff --git a/src/lib/libssl/src/test/smcont.txt b/src/lib/libssl/src/test/smcont.txt new file mode 100644 index 0000000000..e837c0b75b --- /dev/null +++ b/src/lib/libssl/src/test/smcont.txt | |||
| @@ -0,0 +1 @@ | |||
| Some test content for OpenSSL CMS \ No newline at end of file | |||
diff --git a/src/lib/libssl/src/test/smime-certs/smdsa1.pem b/src/lib/libssl/src/test/smime-certs/smdsa1.pem new file mode 100644 index 0000000000..d5677dbfbe --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smdsa1.pem | |||
| @@ -0,0 +1,34 @@ | |||
| 1 | -----BEGIN DSA PRIVATE KEY----- | ||
| 2 | MIIBuwIBAAKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3 | ||
| 3 | OjSGLh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqt | ||
| 4 | GcoAgsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2J | ||
| 5 | jt+dqk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qt | ||
| 6 | wjqvWp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK | ||
| 7 | +FMOGnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4Z | ||
| 8 | SJCBQw5zAoGATQlPPF+OeU8nu3rsdXGDiZdJzOkuCce3KQfTABA9C+Dk4CVcvBdd | ||
| 9 | YRLGpnykumkNTO1sTO+4/Gphsuje1ujK9td4UEhdYqylCe5QjEMrszDlJtelDQF9 | ||
| 10 | C0yhdjKGTP0kxofLhsGckcuQvcKEKffT2pDDKJIy4vWQO0UyJl1vjLcCFG2uiGGx | ||
| 11 | 9fMUZq1v0ePD4Wo0Xkxo | ||
| 12 | -----END DSA PRIVATE KEY----- | ||
| 13 | -----BEGIN CERTIFICATE----- | ||
| 14 | MIIDpDCCAw2gAwIBAgIJAMtotfHYdEsWMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 15 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 16 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx | ||
| 17 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU | ||
| 18 | ZXN0IFMvTUlNRSBFRSBEU0EgIzEwggG3MIIBLAYHKoZIzjgEATCCAR8CgYEAxSX7 | ||
| 19 | CDziGsDDuW4sPgKGFITVcUXgTi0KLFN0L+AfJK2nNATa9zo0hi4dcGcR6oZQBNEJ | ||
| 20 | mrE2iqI7pNtJzVnhZ3M0s+rw5dCFSRIUvFWKK+ZLfYC6rRnKAILH+IEQyLrSckA2 | ||
| 21 | jZ9yFWPPbl1FSKHsb0Hi0AwQoEDwuTvKyXagcLcCFQCtiY7fnapNO3kFBOfZKGFB | ||
| 22 | CsjaKwKBgQCOCBKbrH/BteJAh5kbZx1zNrRuRFiQ5lukLcI6r1qdRilMeVhctbVV | ||
| 23 | kfZ5eay9A4vpDXRDaPkpCo+4d7g7pRjiOk9JkGG1dodSCvhTDhpzqr2fHjUxNp+D | ||
| 24 | xk6OabmetywZvkGK0LKzYlGOL2pCxUNqxCv0i8HbAxSuGUiQgUMOcwOBhAACgYBN | ||
| 25 | CU88X455Tye7eux1cYOJl0nM6S4Jx7cpB9MAED0L4OTgJVy8F11hEsamfKS6aQ1M | ||
| 26 | 7WxM77j8amGy6N7W6Mr213hQSF1irKUJ7lCMQyuzMOUm16UNAX0LTKF2MoZM/STG | ||
| 27 | h8uGwZyRy5C9woQp99PakMMokjLi9ZA7RTImXW+Mt6OBgzCBgDAdBgNVHQ4EFgQU | ||
| 28 | 4Qfbhpi5yqXaXuCLXj427mR25MkwHwYDVR0jBBgwFoAUE89Lp7uJLrM4Vxd2xput | ||
| 29 | aFvl7RcwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBsAwIAYDVR0RBBkwF4EV | ||
| 30 | c21pbWVkc2ExQG9wZW5zc2wub3JnMA0GCSqGSIb3DQEBBQUAA4GBAFrdUzKK1pWO | ||
| 31 | kd02S423KUBc4GWWyiGlVoEO7WxVhHLJ8sm67X7OtJOwe0UGt+Nc5qLtyJYSirw8 | ||
| 32 | phjiTdNpQCTJ8+Kc56tWkJ6H7NAI4vTJtPL5BM/EmeYrVSU9JI9xhqpyKw9IBD+n | ||
| 33 | hRJ79W9FaiJRvaAOX+TkyTukJrxAWRyv | ||
| 34 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smdsa2.pem b/src/lib/libssl/src/test/smime-certs/smdsa2.pem new file mode 100644 index 0000000000..ef86c115d7 --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smdsa2.pem | |||
| @@ -0,0 +1,34 @@ | |||
| 1 | -----BEGIN DSA PRIVATE KEY----- | ||
| 2 | MIIBvAIBAAKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3 | ||
| 3 | OjSGLh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqt | ||
| 4 | GcoAgsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2J | ||
| 5 | jt+dqk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qt | ||
| 6 | wjqvWp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK | ||
| 7 | +FMOGnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4Z | ||
| 8 | SJCBQw5zAoGBAIPmO8BtJ+Yac58trrPwq9b/6VW3jQTWzTLWSH84/QQdqQa+Pz3v | ||
| 9 | It/+hHM0daNF5uls8ICsPL1aLXmRx0pHvIyb0aAzYae4T4Jv/COPDMTdKbA1uitJ | ||
| 10 | VbkGZrm+LIrs7I9lOkb4T0vI6kL/XdOCXY1469zsqCgJ/O2ibn6mq0nWAhR716o2 | ||
| 11 | Nf8SimTZYB0/CKje6M5ufA== | ||
| 12 | -----END DSA PRIVATE KEY----- | ||
| 13 | -----BEGIN CERTIFICATE----- | ||
| 14 | MIIDpTCCAw6gAwIBAgIJAMtotfHYdEsXMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 15 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 16 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx | ||
| 17 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU | ||
| 18 | ZXN0IFMvTUlNRSBFRSBEU0EgIzIwggG4MIIBLAYHKoZIzjgEATCCAR8CgYEAxSX7 | ||
| 19 | CDziGsDDuW4sPgKGFITVcUXgTi0KLFN0L+AfJK2nNATa9zo0hi4dcGcR6oZQBNEJ | ||
| 20 | mrE2iqI7pNtJzVnhZ3M0s+rw5dCFSRIUvFWKK+ZLfYC6rRnKAILH+IEQyLrSckA2 | ||
| 21 | jZ9yFWPPbl1FSKHsb0Hi0AwQoEDwuTvKyXagcLcCFQCtiY7fnapNO3kFBOfZKGFB | ||
| 22 | CsjaKwKBgQCOCBKbrH/BteJAh5kbZx1zNrRuRFiQ5lukLcI6r1qdRilMeVhctbVV | ||
| 23 | kfZ5eay9A4vpDXRDaPkpCo+4d7g7pRjiOk9JkGG1dodSCvhTDhpzqr2fHjUxNp+D | ||
| 24 | xk6OabmetywZvkGK0LKzYlGOL2pCxUNqxCv0i8HbAxSuGUiQgUMOcwOBhQACgYEA | ||
| 25 | g+Y7wG0n5hpzny2us/Cr1v/pVbeNBNbNMtZIfzj9BB2pBr4/Pe8i3/6EczR1o0Xm | ||
| 26 | 6WzwgKw8vVoteZHHSke8jJvRoDNhp7hPgm/8I48MxN0psDW6K0lVuQZmub4siuzs | ||
| 27 | j2U6RvhPS8jqQv9d04JdjXjr3OyoKAn87aJufqarSdajgYMwgYAwHQYDVR0OBBYE | ||
| 28 | FHsAGNfVltSYUq4hC+YVYwsYtA+dMB8GA1UdIwQYMBaAFBPPS6e7iS6zOFcXdsab | ||
| 29 | rWhb5e0XMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgbAMCAGA1UdEQQZMBeB | ||
| 30 | FXNtaW1lZHNhMkBvcGVuc3NsLm9yZzANBgkqhkiG9w0BAQUFAAOBgQCx9BtCbaYF | ||
| 31 | FXjLClkuKXbESaDZA1biPgY25i00FsUzARuhCpqD2v+0tu5c33ZzIhL6xlvBRU5l | ||
| 32 | 6Atw/xpZhae+hdBEtxPJoGekLLrHOau7Md3XwDjV4lFgcEJkWZoaSOOIK+4D5jF0 | ||
| 33 | jZWtHjnwEzuLYlo7ScHSsbcQfjH0M1TP5A== | ||
| 34 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smdsa3.pem b/src/lib/libssl/src/test/smime-certs/smdsa3.pem new file mode 100644 index 0000000000..eeb848dabc --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smdsa3.pem | |||
| @@ -0,0 +1,34 @@ | |||
| 1 | -----BEGIN DSA PRIVATE KEY----- | ||
| 2 | MIIBvAIBAAKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3 | ||
| 3 | OjSGLh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqt | ||
| 4 | GcoAgsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2J | ||
| 5 | jt+dqk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qt | ||
| 6 | wjqvWp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK | ||
| 7 | +FMOGnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4Z | ||
| 8 | SJCBQw5zAoGAYzOpPmh8Je1IDauEXhgaLz14wqYUHHcrj2VWVJ6fRm8GhdQFJSI7 | ||
| 9 | GUk08pgKZSKic2lNqxuzW7/vFxKQ/nvzfytY16b+2i+BR4Q6yvMzCebE1hHVg0Ju | ||
| 10 | TwfUMwoFEOhYP6ZwHSUiQl9IBMH9TNJCMwYMxfY+VOrURFsjGTRUgpwCFQCIGt5g | ||
| 11 | Y+XZd0Sv69CatDIRYWvaIA== | ||
| 12 | -----END DSA PRIVATE KEY----- | ||
| 13 | -----BEGIN CERTIFICATE----- | ||
| 14 | MIIDpDCCAw2gAwIBAgIJAMtotfHYdEsYMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 15 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 16 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx | ||
| 17 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU | ||
| 18 | ZXN0IFMvTUlNRSBFRSBEU0EgIzMwggG3MIIBLAYHKoZIzjgEATCCAR8CgYEAxSX7 | ||
| 19 | CDziGsDDuW4sPgKGFITVcUXgTi0KLFN0L+AfJK2nNATa9zo0hi4dcGcR6oZQBNEJ | ||
| 20 | mrE2iqI7pNtJzVnhZ3M0s+rw5dCFSRIUvFWKK+ZLfYC6rRnKAILH+IEQyLrSckA2 | ||
| 21 | jZ9yFWPPbl1FSKHsb0Hi0AwQoEDwuTvKyXagcLcCFQCtiY7fnapNO3kFBOfZKGFB | ||
| 22 | CsjaKwKBgQCOCBKbrH/BteJAh5kbZx1zNrRuRFiQ5lukLcI6r1qdRilMeVhctbVV | ||
| 23 | kfZ5eay9A4vpDXRDaPkpCo+4d7g7pRjiOk9JkGG1dodSCvhTDhpzqr2fHjUxNp+D | ||
| 24 | xk6OabmetywZvkGK0LKzYlGOL2pCxUNqxCv0i8HbAxSuGUiQgUMOcwOBhAACgYBj | ||
| 25 | M6k+aHwl7UgNq4ReGBovPXjCphQcdyuPZVZUnp9GbwaF1AUlIjsZSTTymAplIqJz | ||
| 26 | aU2rG7Nbv+8XEpD+e/N/K1jXpv7aL4FHhDrK8zMJ5sTWEdWDQm5PB9QzCgUQ6Fg/ | ||
| 27 | pnAdJSJCX0gEwf1M0kIzBgzF9j5U6tREWyMZNFSCnKOBgzCBgDAdBgNVHQ4EFgQU | ||
| 28 | VhpVXqQ/EzUMdxLvP7o9EhJ8h70wHwYDVR0jBBgwFoAUE89Lp7uJLrM4Vxd2xput | ||
| 29 | aFvl7RcwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBsAwIAYDVR0RBBkwF4EV | ||
| 30 | c21pbWVkc2EzQG9wZW5zc2wub3JnMA0GCSqGSIb3DQEBBQUAA4GBACM9e75EQa8m | ||
| 31 | k/AZkH/tROqf3yeqijULl9x8FjFatqoY+29OM6oMGM425IqSkKd2ipz7OxO0SShu | ||
| 32 | rE0O3edS7DvYBwvhWPviRaYBMyZ4iFJVup+fOzoYK/j/bASxS3BHQBwb2r4rhe25 | ||
| 33 | OlTyyFEk7DJyW18YFOG97S1P52oQ5f5x | ||
| 34 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smdsap.pem b/src/lib/libssl/src/test/smime-certs/smdsap.pem new file mode 100644 index 0000000000..249706c8c7 --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smdsap.pem | |||
| @@ -0,0 +1,9 @@ | |||
| 1 | -----BEGIN DSA PARAMETERS----- | ||
| 2 | MIIBHwKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3OjSG | ||
| 3 | Lh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqtGcoA | ||
| 4 | gsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2Jjt+d | ||
| 5 | qk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qtwjqv | ||
| 6 | Wp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK+FMO | ||
| 7 | GnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4ZSJCB | ||
| 8 | Qw5z | ||
| 9 | -----END DSA PARAMETERS----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smroot.pem b/src/lib/libssl/src/test/smime-certs/smroot.pem new file mode 100644 index 0000000000..a59eb2684c --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smroot.pem | |||
| @@ -0,0 +1,30 @@ | |||
| 1 | -----BEGIN RSA PRIVATE KEY----- | ||
| 2 | MIICXAIBAAKBgQDBV1Z/Q5gPF7lojc8pKUdyz5+Jf2B3vs4he6egekugWnoJduki | ||
| 3 | 9Lnae/JchB/soIX0co3nLc11NuFFlnAWJNMDJr08l5AHAJLYNHevF5l/f9oDQwvZ | ||
| 4 | speKh1xpIAJNqCTzVeQ/ZLx6/GccIXV/xDuKIiovqJTPgR5WPkYKaw++lQIDAQAB | ||
| 5 | AoGALXnUj5SflJU4+B2652ydMKUjWl0KnL/VjkyejgGV/j6py8Ybaixz9q8Gv7oY | ||
| 6 | JDlRqMC1HfZJCFQDQrHy5VJ+CywA/H9WrqKo/Ch9U4tJAZtkig1Cmay/BAYixVu0 | ||
| 7 | xBeim10aKF6hxHH4Chg9We+OCuzWBWJhqveNjuDedL/i7JUCQQDlejovcwBUCbhJ | ||
| 8 | U12qKOwlaboolWbl7yF3XdckTJZg7+1UqQHZH5jYZlLZyZxiaC92SNV0SyTLJZnS | ||
| 9 | Jh5CO+VDAkEA16/pPcuVtMMz/R6SSPpRSIAa1stLs0mFSs3NpR4pdm0n42mu05pO | ||
| 10 | 1tJEt3a1g7zkreQBf53+Dwb+lA841EkjRwJBAIFmt0DifKDnCkBu/jZh9SfzwsH3 | ||
| 11 | 3Zpzik+hXxxdA7+ODCrdUul449vDd5zQD5t+XKU61QNLDGhxv5e9XvrCg7kCQH/a | ||
| 12 | 3ldsVF0oDaxxL+QkxoREtCQ5tLEd1u7F2q6Tl56FDE0pe6Ih6bQ8RtG+g9EI60IN | ||
| 13 | U7oTrOO5kLWx5E0q4ccCQAZVgoenn9MhRU1agKOCuM6LT2DxReTu4XztJzynej+8 | ||
| 14 | 0J93n3ebanB1MlRpn1XJwhQ7gAC8ImaQKLJK5jdJzFc= | ||
| 15 | -----END RSA PRIVATE KEY----- | ||
| 16 | -----BEGIN CERTIFICATE----- | ||
| 17 | MIICaTCCAdKgAwIBAgIJAP6VN47boiXRMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 18 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 19 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDdaFw0xNjA1MTExMzUzMDdaMEQx | ||
| 20 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRU | ||
| 21 | ZXN0IFMvTUlNRSBSU0EgUm9vdDCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA | ||
| 22 | wVdWf0OYDxe5aI3PKSlHcs+fiX9gd77OIXunoHpLoFp6CXbpIvS52nvyXIQf7KCF | ||
| 23 | 9HKN5y3NdTbhRZZwFiTTAya9PJeQBwCS2DR3rxeZf3/aA0ML2bKXiodcaSACTagk | ||
| 24 | 81XkP2S8evxnHCF1f8Q7iiIqL6iUz4EeVj5GCmsPvpUCAwEAAaNjMGEwHQYDVR0O | ||
| 25 | BBYEFBPPS6e7iS6zOFcXdsabrWhb5e0XMB8GA1UdIwQYMBaAFBPPS6e7iS6zOFcX | ||
| 26 | dsabrWhb5e0XMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMA0GCSqG | ||
| 27 | SIb3DQEBBQUAA4GBAIECprq5viDvnDbkyOaiSr9ubMUmWqvycfAJMdPZRKcOZczS | ||
| 28 | l+L9R9lF3JSqbt3knOe9u6bGDBOTY2285PdCCuHRVMk2Af1f6El1fqAlRUwNqipp | ||
| 29 | r68sWFuRqrcRNtk6QQvXfkOhrqQBuDa7te/OVQLa2lGN9Dr2mQsD8ijctatG | ||
| 30 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smrsa1.pem b/src/lib/libssl/src/test/smime-certs/smrsa1.pem new file mode 100644 index 0000000000..2cf3148e33 --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smrsa1.pem | |||
| @@ -0,0 +1,31 @@ | |||
| 1 | -----BEGIN RSA PRIVATE KEY----- | ||
| 2 | MIICXgIBAAKBgQC6A978j4pmPgUtUQqF+bjh6vdhwGOGZSD7xXgFTMjm88twfv+E | ||
| 3 | ixkq2KXSDjD0ZXoQbdOaSbvGRQrIJpG2NGiKAFdYNrP025kCCdh5wF/aEI7KLEm7 | ||
| 4 | JlHwXpQsuj4wkMgmkFjL3Ty4Z55aNH+2pPQIa0k+ENJXm2gDuhqgBmduAwIDAQAB | ||
| 5 | AoGBAJMuYu51aO2THyeHGwt81uOytcCbqGP7eoib62ZOJhxPRGYjpmuqX+R9/V5i | ||
| 6 | KiwGavm63JYUx0WO9YP+uIZxm1BUATzkgkS74u5LP6ajhkZh6/Bck1oIYYkbVOXl | ||
| 7 | JVrdENuH6U7nupznsyYgONByo+ykFPVUGmutgiaC7NMVo/MxAkEA6KLejWXdCIEn | ||
| 8 | xr7hGph9NlvY9xuRIMexRV/WrddcFfCdjI1PciIupgrIkR65M9yr7atm1iU6/aRf | ||
| 9 | KOr8rLZsSQJBAMyyXN71NsDNx4BP6rtJ/LJMP0BylznWkA7zWfGCbAYn9VhZVlSY | ||
| 10 | Eu9Gyr7quD1ix7G3kInKVYOEEOpockBLz+sCQQCedyMmKjcQLfpMVYW8uhbAynvW | ||
| 11 | h36qV5yXZxszO7nMcCTBsxhk5IfmLv5EbCs3+p9avCDGyoGOeUMg+kC33WORAkAg | ||
| 12 | oUIarH4o5+SoeJTTfCzTA0KF9H5U0vYt2+73h7HOnWoHxl3zqDZEfEVvf50U8/0f | ||
| 13 | QELDJETTbScBJtsnkq43AkEA38etvoZ2i4FJvvo7R/9gWBHVEcrGzcsCBYrNnIR1 | ||
| 14 | SZLRwHEGaiOK1wxMsWzqp7PJwL9z/M8A8DyOFBx3GPOniA== | ||
| 15 | -----END RSA PRIVATE KEY----- | ||
| 16 | -----BEGIN CERTIFICATE----- | ||
| 17 | MIICizCCAfSgAwIBAgIJAMtotfHYdEsTMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 18 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 19 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDhaFw0xNjA1MTAxMzUzMDhaMEUx | ||
| 20 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU | ||
| 21 | ZXN0IFMvTUlNRSBFRSBSU0EgIzEwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB | ||
| 22 | ALoD3vyPimY+BS1RCoX5uOHq92HAY4ZlIPvFeAVMyObzy3B+/4SLGSrYpdIOMPRl | ||
| 23 | ehBt05pJu8ZFCsgmkbY0aIoAV1g2s/TbmQIJ2HnAX9oQjsosSbsmUfBelCy6PjCQ | ||
| 24 | yCaQWMvdPLhnnlo0f7ak9AhrST4Q0lebaAO6GqAGZ24DAgMBAAGjgYMwgYAwHQYD | ||
| 25 | VR0OBBYEFE2vMvKz5jrC7Lbdg68XwZ95iL/QMB8GA1UdIwQYMBaAFBPPS6e7iS6z | ||
| 26 | OFcXdsabrWhb5e0XMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgXgMCAGA1Ud | ||
| 27 | EQQZMBeBFXNtaW1lcnNhMUBvcGVuc3NsLm9yZzANBgkqhkiG9w0BAQUFAAOBgQAi | ||
| 28 | O3GOkUl646oLnOimc36i9wxZ1tejsqs8vMjJ0Pym6Uq9FE2JoGzJ6OhB1GOsEVmj | ||
| 29 | 9cQ5UNQcRYL3cqOFtl6f4Dpu/lhzfbaqgmLjv29G1mS0uuTZrixhlyCXjwcbOkNC | ||
| 30 | I/+wvHHENYIK5+T/79M9LaZ2Qk4F9MNE1VMljdz9Qw== | ||
| 31 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smrsa2.pem b/src/lib/libssl/src/test/smime-certs/smrsa2.pem new file mode 100644 index 0000000000..d41f69c82f --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smrsa2.pem | |||
| @@ -0,0 +1,31 @@ | |||
| 1 | -----BEGIN RSA PRIVATE KEY----- | ||
| 2 | MIICWwIBAAKBgQCwBfryW4Vu5U9wNIDKspJO/N9YF4CcTlrCUyzVlKgb+8urHlSe | ||
| 3 | 59i5verR9IOCCXkemjOzZ/3nALTGqYZlnEvHp0Rjk+KdKXnKBIB+SRPpeu3LcXMT | ||
| 4 | WPgsThPa0UQxedNKG0g6aG+kLhsDlFBCoxd09jJtSpb9jmroJOq0ZYEHLwIDAQAB | ||
| 5 | AoGAKa/w4677Je1W5+r3SYoLDnvi5TkDs4D3C6ipKJgBTEdQz+DqB4w/DpZE4551 | ||
| 6 | +rkFn1LDxcxuHGRVa+tAMhZW97fwq9YUbjVZEyOz79qrX+BMyl/NbHkf1lIKDo3q | ||
| 7 | dWalzQvop7nbzeLC+VmmviwZfLQUbA61AQl3jm4dswT4XykCQQDloDadEv/28NTx | ||
| 8 | bvvywvyGuvJkCkEIycm4JrIInvwsd76h/chZ3oymrqzc7hkEtK6kThqlS5y+WXl6 | ||
| 9 | QzPruTKTAkEAxD2ro/VUoN+scIVaLmn0RBmZ67+9Pdn6pNSfjlK3s0T0EM6/iUWS | ||
| 10 | M06l6L9wFS3/ceu1tIifsh9BeqOGTa+udQJARIFnybTBaIqw/NZ/lA1YCVn8tpvY | ||
| 11 | iyaoZ6gjtS65TQrsdKeh/i3HCHNUXxUpoZ3F/H7QtD+6o49ODou+EbVOwQJAVmex | ||
| 12 | A2gp8wuJKaINqxIL81AybZLnCCzKJ3lXJ5tUNyLNM/lUbGStktm2Q1zHRQwTxV07 | ||
| 13 | jFn7trn8YrtNjzcjYQJAUKIJRt38A8Jw3HoPT+D0WS2IgxjVL0eYGsZX1lyeammG | ||
| 14 | 6rfnQ3u5uP7mEK2EH2o8mDUpAE0gclWBU9UkKxJsGA== | ||
| 15 | -----END RSA PRIVATE KEY----- | ||
| 16 | -----BEGIN CERTIFICATE----- | ||
| 17 | MIICizCCAfSgAwIBAgIJAMtotfHYdEsUMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 18 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 19 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDhaFw0xNjA1MTAxMzUzMDhaMEUx | ||
| 20 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU | ||
| 21 | ZXN0IFMvTUlNRSBFRSBSU0EgIzIwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB | ||
| 22 | ALAF+vJbhW7lT3A0gMqykk7831gXgJxOWsJTLNWUqBv7y6seVJ7n2Lm96tH0g4IJ | ||
| 23 | eR6aM7Nn/ecAtMaphmWcS8enRGOT4p0pecoEgH5JE+l67ctxcxNY+CxOE9rRRDF5 | ||
| 24 | 00obSDpob6QuGwOUUEKjF3T2Mm1Klv2Oaugk6rRlgQcvAgMBAAGjgYMwgYAwHQYD | ||
| 25 | VR0OBBYEFIL/u+mEvaw7RuKLRuElfVkxSQjYMB8GA1UdIwQYMBaAFBPPS6e7iS6z | ||
| 26 | OFcXdsabrWhb5e0XMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgXgMCAGA1Ud | ||
| 27 | EQQZMBeBFXNtaW1lcnNhMkBvcGVuc3NsLm9yZzANBgkqhkiG9w0BAQUFAAOBgQC2 | ||
| 28 | rXR5bm/9RtOMQPleNpd3y6uUX3oy+0CafK5Yl3PMnItjjnKJ0l1/DbLbDj2twehe | ||
| 29 | ewaB8CROcBCA3AMLSmGvPKgUCFMGtWam3328M4fBHzon5ka7qDXzM+imkAly/Yx2 | ||
| 30 | YNdR/aNOug+5sXygHmTSKqiCpQjOIClzXoPVVeEVHw== | ||
| 31 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/smime-certs/smrsa3.pem b/src/lib/libssl/src/test/smime-certs/smrsa3.pem new file mode 100644 index 0000000000..c8cbe55151 --- /dev/null +++ b/src/lib/libssl/src/test/smime-certs/smrsa3.pem | |||
| @@ -0,0 +1,31 @@ | |||
| 1 | -----BEGIN RSA PRIVATE KEY----- | ||
| 2 | MIICXAIBAAKBgQC6syTZtZNe1hRScFc4PUVyVLsr7+C1HDIZnOHmwFoLayX6RHwy | ||
| 3 | ep/TkdwiPHnemVLuwvpSjLMLZkXy/J764kSHJrNeVl3UvmCVCOm40hAtK1+F39pM | ||
| 4 | h8phkbPPD7i+hwq4/Vs79o46nzwbVKmzgoZBJhZ+codujUSYM3LjJ4aq+wIDAQAB | ||
| 5 | AoGAE1Zixrnr3bLGwBMqtYSDIOhtyos59whImCaLr17U9MHQWS+mvYO98if1aQZi | ||
| 6 | iQ/QazJ+wvYXxWJ+dEB+JvYwqrGeuAU6He/rAb4OShG4FPVU2D19gzRnaButWMeT | ||
| 7 | /1lgXV08hegGBL7RQNaN7b0viFYMcKnSghleMP0/q+Y/oaECQQDkXEwDYJW13X9p | ||
| 8 | ijS20ykWdY5lLknjkHRhhOYux0rlhOqsyMZjoUmwI2m0qj9yrIysKhrk4MZaM/uC | ||
| 9 | hy0xp3hdAkEA0Uv/UY0Kwsgc+W6YxeypECtg1qCE6FBib8n4iFy/6VcWqhvE5xrs | ||
| 10 | OdhKv9/p6aLjLneGd1sU+F8eS9LGyKIbNwJBAJPgbNzXA7uUZriqZb5qeTXxBDfj | ||
| 11 | RLfXSHYKAKEULxz3+JvRHB9SR4yHMiFrCdExiZrHXUkPgYLSHLGG5a4824UCQD6T | ||
| 12 | 9XvhquUARkGCAuWy0/3Eqoihp/t6BWSdQ9Upviu7YUhtUxsyXo0REZB7F4pGrJx5 | ||
| 13 | GlhXgFaewgUzuUHFzlMCQCzJMMWslWpoLntnR6sMhBMhBFHSw+Y5CbxBmFrdtSkd | ||
| 14 | VdtNO1VuDCTxjjW7W3Khj7LX4KZ1ye/5jfAgnnnXisc= | ||
| 15 | -----END RSA PRIVATE KEY----- | ||
| 16 | -----BEGIN CERTIFICATE----- | ||
| 17 | MIICizCCAfSgAwIBAgIJAMtotfHYdEsVMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV | ||
| 18 | BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv | ||
| 19 | TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx | ||
| 20 | CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU | ||
| 21 | ZXN0IFMvTUlNRSBFRSBSU0EgIzMwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB | ||
| 22 | ALqzJNm1k17WFFJwVzg9RXJUuyvv4LUcMhmc4ebAWgtrJfpEfDJ6n9OR3CI8ed6Z | ||
| 23 | Uu7C+lKMswtmRfL8nvriRIcms15WXdS+YJUI6bjSEC0rX4Xf2kyHymGRs88PuL6H | ||
| 24 | Crj9Wzv2jjqfPBtUqbOChkEmFn5yh26NRJgzcuMnhqr7AgMBAAGjgYMwgYAwHQYD | ||
| 25 | VR0OBBYEFDsSFjNtYZzd0tTHafNS7tneQQj6MB8GA1UdIwQYMBaAFBPPS6e7iS6z | ||
| 26 | OFcXdsabrWhb5e0XMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgXgMCAGA1Ud | ||
| 27 | EQQZMBeBFXNtaW1lcnNhM0BvcGVuc3NsLm9yZzANBgkqhkiG9w0BAQUFAAOBgQBE | ||
| 28 | tUDB+1Dqigu4p1xtdq7JRK6S+gfA7RWmhz0j2scb2zhpS12h37JLHsidGeKAzZYq | ||
| 29 | jUjOrH/j3xcV5AnuJoqImJaN23nzzxtR4qGGX2mrq6EtObzdEGgCUaizsGM+0slJ | ||
| 30 | PYxcy8KeY/63B1BpYhj2RjGkL6HrvuAaxVORa3acoA== | ||
| 31 | -----END CERTIFICATE----- | ||
diff --git a/src/lib/libssl/src/test/testfipsssl b/src/lib/libssl/src/test/testfipsssl deleted file mode 100644 index c4836edc25..0000000000 --- a/src/lib/libssl/src/test/testfipsssl +++ /dev/null | |||
| @@ -1,113 +0,0 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | |||
| 3 | if [ "$1" = "" ]; then | ||
| 4 | key=../apps/server.pem | ||
| 5 | else | ||
| 6 | key="$1" | ||
| 7 | fi | ||
| 8 | if [ "$2" = "" ]; then | ||
| 9 | cert=../apps/server.pem | ||
| 10 | else | ||
| 11 | cert="$2" | ||
| 12 | fi | ||
| 13 | |||
| 14 | ciphers="DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-SHA:EXP1024-DHE-DSS-DES-CBC-SHA:EXP1024-DES-CBC-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA" | ||
| 15 | |||
| 16 | ssltest="../util/shlib_wrap.sh ./ssltest -F -key $key -cert $cert -c_key $key -c_cert $cert -cipher $ciphers" | ||
| 17 | |||
| 18 | if ../util/shlib_wrap.sh ../apps/openssl x509 -in $cert -text -noout | fgrep 'DSA Public Key' >/dev/null; then | ||
| 19 | dsa_cert=YES | ||
| 20 | else | ||
| 21 | dsa_cert=NO | ||
| 22 | fi | ||
| 23 | |||
| 24 | if [ "$3" = "" ]; then | ||
| 25 | CA="-CApath ../certs" | ||
| 26 | else | ||
| 27 | CA="-CAfile $3" | ||
| 28 | fi | ||
| 29 | |||
| 30 | if [ "$4" = "" ]; then | ||
| 31 | extra="" | ||
| 32 | else | ||
| 33 | extra="$4" | ||
| 34 | fi | ||
| 35 | |||
| 36 | ############################################################################# | ||
| 37 | |||
| 38 | echo test ssl3 is forbidden in FIPS mode | ||
| 39 | $ssltest -ssl3 $extra && exit 1 | ||
| 40 | |||
| 41 | echo test ssl2 is forbidden in FIPS mode | ||
| 42 | $ssltest -ssl2 $extra && exit 1 | ||
| 43 | |||
| 44 | echo test tls1 | ||
| 45 | $ssltest -tls1 $extra || exit 1 | ||
| 46 | |||
| 47 | echo test tls1 with server authentication | ||
| 48 | $ssltest -tls1 -server_auth $CA $extra || exit 1 | ||
| 49 | |||
| 50 | echo test tls1 with client authentication | ||
| 51 | $ssltest -tls1 -client_auth $CA $extra || exit 1 | ||
| 52 | |||
| 53 | echo test tls1 with both client and server authentication | ||
| 54 | $ssltest -tls1 -server_auth -client_auth $CA $extra || exit 1 | ||
| 55 | |||
| 56 | echo test tls1 via BIO pair | ||
| 57 | $ssltest -bio_pair -tls1 $extra || exit 1 | ||
| 58 | |||
| 59 | echo test tls1 with server authentication via BIO pair | ||
| 60 | $ssltest -bio_pair -tls1 -server_auth $CA $extra || exit 1 | ||
| 61 | |||
| 62 | echo test tls1 with client authentication via BIO pair | ||
| 63 | $ssltest -bio_pair -tls1 -client_auth $CA $extra || exit 1 | ||
| 64 | |||
| 65 | echo test tls1 with both client and server authentication via BIO pair | ||
| 66 | $ssltest -bio_pair -tls1 -server_auth -client_auth $CA $extra || exit 1 | ||
| 67 | |||
| 68 | # note that all the below actually choose TLS... | ||
| 69 | |||
| 70 | if [ $dsa_cert = NO ]; then | ||
| 71 | echo test sslv2/sslv3 w/o DHE via BIO pair | ||
| 72 | $ssltest -bio_pair -no_dhe $extra || exit 1 | ||
| 73 | fi | ||
| 74 | |||
| 75 | echo test sslv2/sslv3 with 1024bit DHE via BIO pair | ||
| 76 | $ssltest -bio_pair -dhe1024dsa -v $extra || exit 1 | ||
| 77 | |||
| 78 | echo test sslv2/sslv3 with server authentication | ||
| 79 | $ssltest -bio_pair -server_auth $CA $extra || exit 1 | ||
| 80 | |||
| 81 | echo test sslv2/sslv3 with client authentication via BIO pair | ||
| 82 | $ssltest -bio_pair -client_auth $CA $extra || exit 1 | ||
| 83 | |||
| 84 | echo test sslv2/sslv3 with both client and server authentication via BIO pair | ||
| 85 | $ssltest -bio_pair -server_auth -client_auth $CA $extra || exit 1 | ||
| 86 | |||
| 87 | echo test sslv2/sslv3 with both client and server authentication via BIO pair and app verify | ||
| 88 | $ssltest -bio_pair -server_auth -client_auth -app_verify $CA $extra || exit 1 | ||
| 89 | |||
| 90 | ############################################################################# | ||
| 91 | |||
| 92 | if ../util/shlib_wrap.sh ../apps/openssl no-dh; then | ||
| 93 | echo skipping anonymous DH tests | ||
| 94 | else | ||
| 95 | echo test tls1 with 1024bit anonymous DH, multiple handshakes | ||
| 96 | $ssltest -v -bio_pair -tls1 -cipher ADH -dhe1024dsa -num 10 -f -time $extra || exit 1 | ||
| 97 | fi | ||
| 98 | |||
| 99 | if ../util/shlib_wrap.sh ../apps/openssl no-rsa; then | ||
| 100 | echo skipping RSA tests | ||
| 101 | else | ||
| 102 | echo test tls1 with 1024bit RSA, no DHE, multiple handshakes | ||
| 103 | ../util/shlib_wrap.sh ./ssltest -v -bio_pair -tls1 -cert ../apps/server2.pem -no_dhe -num 10 -f -time $extra || exit 1 | ||
| 104 | |||
| 105 | if ../util/shlib_wrap.sh ../apps/openssl no-dh; then | ||
| 106 | echo skipping RSA+DHE tests | ||
| 107 | else | ||
| 108 | echo test tls1 with 1024bit RSA, 1024bit DHE, multiple handshakes | ||
| 109 | ../util/shlib_wrap.sh ./ssltest -v -bio_pair -tls1 -cert ../apps/server2.pem -dhe1024dsa -num 10 -f -time $extra || exit 1 | ||
| 110 | fi | ||
| 111 | fi | ||
| 112 | |||
| 113 | exit 0 | ||
diff --git a/src/lib/libssl/src/util/checkhash.pl b/src/lib/libssl/src/util/checkhash.pl deleted file mode 100644 index c61fa72178..0000000000 --- a/src/lib/libssl/src/util/checkhash.pl +++ /dev/null | |||
| @@ -1,222 +0,0 @@ | |||
| 1 | #!/usr/bin/env perl -w | ||
| 2 | |||
| 3 | my $package = caller; | ||
| 4 | |||
| 5 | if (!(defined $package)) | ||
| 6 | { | ||
| 7 | my $retval = check_hashes(@ARGV); | ||
| 8 | exit $retval; | ||
| 9 | } | ||
| 10 | |||
| 11 | 1; | ||
| 12 | |||
| 13 | sub check_hashes | ||
| 14 | { | ||
| 15 | |||
| 16 | my @args = @_; | ||
| 17 | |||
| 18 | my $change_dir = ""; | ||
| 19 | my $check_program = "sha/fips_standalone_sha1"; | ||
| 20 | |||
| 21 | my $verbose = 0; | ||
| 22 | my $badfiles = 0; | ||
| 23 | my $rebuild = 0; | ||
| 24 | my $force_rewrite = 0; | ||
| 25 | my $hash_file = "fipshashes.c"; | ||
| 26 | my $recurse = 0; | ||
| 27 | |||
| 28 | my @fingerprint_files; | ||
| 29 | |||
| 30 | while (@args) | ||
| 31 | { | ||
| 32 | my $arg = $args[0]; | ||
| 33 | if ($arg eq "-chdir") | ||
| 34 | { | ||
| 35 | shift @args; | ||
| 36 | $change_dir = shift @args; | ||
| 37 | } | ||
| 38 | elsif ($arg eq "-rebuild") | ||
| 39 | { | ||
| 40 | shift @args; | ||
| 41 | $rebuild = 1; | ||
| 42 | } | ||
| 43 | elsif ($arg eq "-verbose") | ||
| 44 | { | ||
| 45 | shift @args; | ||
| 46 | $verbose = 1; | ||
| 47 | } | ||
| 48 | elsif ($arg eq "-force-rewrite") | ||
| 49 | { | ||
| 50 | shift @args; | ||
| 51 | $force_rewrite = 1; | ||
| 52 | } | ||
| 53 | elsif ($arg eq "-hash_file") | ||
| 54 | { | ||
| 55 | shift @args; | ||
| 56 | $hash_file = shift @args; | ||
| 57 | } | ||
| 58 | elsif ($arg eq "-recurse") | ||
| 59 | { | ||
| 60 | shift @args; | ||
| 61 | $recurse = 1; | ||
| 62 | } | ||
| 63 | elsif ($arg eq "-program_path") | ||
| 64 | { | ||
| 65 | shift @args; | ||
| 66 | $check_program = shift @args; | ||
| 67 | } | ||
| 68 | else | ||
| 69 | { | ||
| 70 | print STDERR "Unknown Option $arg"; | ||
| 71 | return 1; | ||
| 72 | } | ||
| 73 | |||
| 74 | } | ||
| 75 | |||
| 76 | chdir $change_dir if $change_dir ne ""; | ||
| 77 | |||
| 78 | if ($recurse) | ||
| 79 | { | ||
| 80 | @fingerprint_files = ("fingerprint.sha1", | ||
| 81 | <*/fingerprint.sha1>); | ||
| 82 | } | ||
| 83 | else | ||
| 84 | { | ||
| 85 | push @fingerprint_files, $hash_file; | ||
| 86 | } | ||
| 87 | |||
| 88 | foreach $fp (@fingerprint_files) | ||
| 89 | { | ||
| 90 | if (!open(IN, "$fp")) | ||
| 91 | { | ||
| 92 | print STDERR "Can't open file $fp"; | ||
| 93 | return 1; | ||
| 94 | } | ||
| 95 | print STDERR "Opening Fingerprint file $fp\n" if $verbose; | ||
| 96 | my $dir = $fp; | ||
| 97 | $dir =~ s/[^\/]*$//; | ||
| 98 | while (<IN>) | ||
| 99 | { | ||
| 100 | chomp; | ||
| 101 | if (!(($file, $hash) = /^\"HMAC-SHA1\((.*)\)\s*=\s*(\w*)\",$/)) | ||
| 102 | { | ||
| 103 | /^\"/ || next; | ||
| 104 | print STDERR "FATAL: Invalid syntax in file $fp\n"; | ||
| 105 | print STDERR "Line:\n$_\n"; | ||
| 106 | fatal_error(); | ||
| 107 | return 1; | ||
| 108 | } | ||
| 109 | if (!$rebuild && length($hash) != 40) | ||
| 110 | { | ||
| 111 | print STDERR "FATAL: Invalid hash length in $fp for file $file\n"; | ||
| 112 | fatal_error(); | ||
| 113 | return 1; | ||
| 114 | } | ||
| 115 | push @hashed_files, "$dir$file"; | ||
| 116 | if (exists $hashes{"$dir$file"}) | ||
| 117 | { | ||
| 118 | print STDERR "FATAL: Duplicate Hash file $dir$file\n"; | ||
| 119 | fatal_error(); | ||
| 120 | return 1; | ||
| 121 | } | ||
| 122 | if (! -r "$dir$file") | ||
| 123 | { | ||
| 124 | print STDERR "FATAL: Can't access $dir$file\n"; | ||
| 125 | fatal_error(); | ||
| 126 | return 1; | ||
| 127 | } | ||
| 128 | $hashes{"$dir$file"} = $hash; | ||
| 129 | } | ||
| 130 | close IN; | ||
| 131 | } | ||
| 132 | |||
| 133 | @checked_hashes = `$check_program @hashed_files`; | ||
| 134 | |||
| 135 | if ($? != 0) | ||
| 136 | { | ||
| 137 | print STDERR "Error running hash program $check_program\n"; | ||
| 138 | fatal_error(); | ||
| 139 | return 1; | ||
| 140 | } | ||
| 141 | |||
| 142 | if (@checked_hashes != @hashed_files) | ||
| 143 | { | ||
| 144 | print STDERR "FATAL: hash count incorrect\n"; | ||
| 145 | fatal_error(); | ||
| 146 | return 1; | ||
| 147 | } | ||
| 148 | |||
| 149 | foreach (@checked_hashes) | ||
| 150 | { | ||
| 151 | chomp; | ||
| 152 | if (!(($file, $hash) = /^HMAC-SHA1\((.*)\)\s*=\s*(\w*)$/)) | ||
| 153 | { | ||
| 154 | print STDERR "FATAL: Invalid syntax in file $fp\n"; | ||
| 155 | print STDERR "Line:\n$_\n"; | ||
| 156 | fatal_error(); | ||
| 157 | return 1; | ||
| 158 | } | ||
| 159 | if (length($hash) != 40) | ||
| 160 | { | ||
| 161 | print STDERR "FATAL: Invalid hash length for file $file\n"; | ||
| 162 | fatal_error(); | ||
| 163 | return 1; | ||
| 164 | } | ||
| 165 | if ($hash ne $hashes{$file}) | ||
| 166 | { | ||
| 167 | if ($rebuild) | ||
| 168 | { | ||
| 169 | print STDERR "Updating hash on file $file\n"; | ||
| 170 | $hashes{$file} = $hash; | ||
| 171 | } | ||
| 172 | else | ||
| 173 | { | ||
| 174 | print STDERR "Hash check failed for file $file\n"; | ||
| 175 | } | ||
| 176 | $badfiles++; | ||
| 177 | } | ||
| 178 | elsif ($verbose) | ||
| 179 | { print "Hash Check OK for $file\n";} | ||
| 180 | } | ||
| 181 | |||
| 182 | |||
| 183 | if ($badfiles && !$rebuild) | ||
| 184 | { | ||
| 185 | print STDERR "FATAL: hash mismatch on $badfiles files\n"; | ||
| 186 | fatal_error(); | ||
| 187 | return 1; | ||
| 188 | } | ||
| 189 | |||
| 190 | if ($badfiles || $force_rewrite) | ||
| 191 | { | ||
| 192 | print "Updating Hash file $hash_file\n"; | ||
| 193 | if (!open(OUT, ">$hash_file")) | ||
| 194 | { | ||
| 195 | print STDERR "Error rewriting $hash_file"; | ||
| 196 | return 1; | ||
| 197 | } | ||
| 198 | print OUT "const char * const FIPS_source_hashes[] = {\n"; | ||
| 199 | foreach (@hashed_files) | ||
| 200 | { | ||
| 201 | print OUT "\"HMAC-SHA1($_)= $hashes{$_}\",\n"; | ||
| 202 | } | ||
| 203 | print OUT "};\n"; | ||
| 204 | close OUT; | ||
| 205 | } | ||
| 206 | |||
| 207 | if (!$badfiles) | ||
| 208 | { | ||
| 209 | print "FIPS hash check successful\n"; | ||
| 210 | } | ||
| 211 | |||
| 212 | return 0; | ||
| 213 | |||
| 214 | } | ||
| 215 | |||
| 216 | |||
| 217 | sub fatal_error | ||
| 218 | { | ||
| 219 | print STDERR "*** Your source code does not match the FIPS validated source ***\n"; | ||
| 220 | } | ||
| 221 | |||
| 222 | |||
diff --git a/src/lib/libssl/src/util/copy.pl b/src/lib/libssl/src/util/copy.pl new file mode 100644 index 0000000000..e20b45530a --- /dev/null +++ b/src/lib/libssl/src/util/copy.pl | |||
| @@ -0,0 +1,59 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | |||
| 3 | use Fcntl; | ||
| 4 | |||
| 5 | |||
| 6 | # copy.pl | ||
| 7 | |||
| 8 | # Perl script 'copy' comment. On Windows the built in "copy" command also | ||
| 9 | # copies timestamps: this messes up Makefile dependencies. | ||
| 10 | |||
| 11 | my $arg; | ||
| 12 | |||
| 13 | foreach $arg (@ARGV) { | ||
| 14 | $arg =~ s|\\|/|g; # compensate for bug/feature in cygwin glob... | ||
| 15 | foreach (glob $arg) | ||
| 16 | { | ||
| 17 | push @filelist, $_; | ||
| 18 | } | ||
| 19 | } | ||
| 20 | |||
| 21 | $fnum = @filelist; | ||
| 22 | |||
| 23 | if ($fnum <= 1) | ||
| 24 | { | ||
| 25 | die "Need at least two filenames"; | ||
| 26 | } | ||
| 27 | |||
| 28 | $dest = pop @filelist; | ||
| 29 | |||
| 30 | if ($fnum > 2 && ! -d $dest) | ||
| 31 | { | ||
| 32 | die "Destination must be a directory"; | ||
| 33 | } | ||
| 34 | |||
| 35 | foreach (@filelist) | ||
| 36 | { | ||
| 37 | if (-d $dest) | ||
| 38 | { | ||
| 39 | $dfile = $_; | ||
| 40 | $dfile =~ s|^.*[/\\]([^/\\]*)$|$1|; | ||
| 41 | $dfile = "$dest/$dfile"; | ||
| 42 | } | ||
| 43 | else | ||
| 44 | { | ||
| 45 | $dfile = $dest; | ||
| 46 | } | ||
| 47 | sysopen(IN, $_, O_RDONLY|O_BINARY) || die "Can't Open $_"; | ||
| 48 | sysopen(OUT, $dfile, O_WRONLY|O_CREAT|O_TRUNC|O_BINARY) | ||
| 49 | || die "Can't Open $dfile"; | ||
| 50 | while (sysread IN, $buf, 10240) | ||
| 51 | { | ||
| 52 | syswrite(OUT, $buf, length($buf)); | ||
| 53 | } | ||
| 54 | close(IN); | ||
| 55 | close(OUT); | ||
| 56 | print "Copying: $_ to $dfile\n"; | ||
| 57 | } | ||
| 58 | |||
| 59 | |||
diff --git a/src/lib/libssl/src/util/extract-section.pl b/src/lib/libssl/src/util/extract-section.pl new file mode 100644 index 0000000000..7a0ba4f69a --- /dev/null +++ b/src/lib/libssl/src/util/extract-section.pl | |||
| @@ -0,0 +1,12 @@ | |||
| 1 | #!/usr/bin/perl | ||
| 2 | |||
| 3 | while(<STDIN>) { | ||
| 4 | if (/=for\s+comment\s+openssl_manual_section:(\S+)/) | ||
| 5 | { | ||
| 6 | print "$1\n"; | ||
| 7 | exit 0; | ||
| 8 | } | ||
| 9 | } | ||
| 10 | |||
| 11 | print "$ARGV[0]\n"; | ||
| 12 | |||
diff --git a/src/lib/libssl/src/util/fipslink.pl b/src/lib/libssl/src/util/fipslink.pl deleted file mode 100644 index a893833c5c..0000000000 --- a/src/lib/libssl/src/util/fipslink.pl +++ /dev/null | |||
| @@ -1,78 +0,0 @@ | |||
| 1 | #!/usr/bin/perl | ||
| 2 | |||
| 3 | sub check_env | ||
| 4 | { | ||
| 5 | my @ret; | ||
| 6 | foreach (@_) | ||
| 7 | { | ||
| 8 | die "Environment variable $_ not defined!\n" unless exists $ENV{$_}; | ||
| 9 | push @ret, $ENV{$_}; | ||
| 10 | } | ||
| 11 | return @ret; | ||
| 12 | } | ||
| 13 | |||
| 14 | |||
| 15 | my ($fips_cc,$fips_cc_args, $fips_link,$fips_target, $fips_libdir, $sha1_exe) | ||
| 16 | = check_env("FIPS_CC", "FIPS_CC_ARGS", "FIPS_LINK", "FIPS_TARGET", | ||
| 17 | "FIPSLIB_D", "FIPS_SHA1_EXE"); | ||
| 18 | |||
| 19 | |||
| 20 | |||
| 21 | if (exists $ENV{"PREMAIN_DSO_EXE"}) | ||
| 22 | { | ||
| 23 | $fips_premain_dso = $ENV{"PREMAIN_DSO_EXE"}; | ||
| 24 | } | ||
| 25 | else | ||
| 26 | { | ||
| 27 | $fips_premain_dso = ""; | ||
| 28 | } | ||
| 29 | |||
| 30 | check_hash($sha1_exe, "fips_premain.c"); | ||
| 31 | check_hash($sha1_exe, "fipscanister.o"); | ||
| 32 | |||
| 33 | |||
| 34 | print "Integrity check OK\n"; | ||
| 35 | |||
| 36 | print "$fips_cc $fips_cc_args $fips_libdir/fips_premain.c\n"; | ||
| 37 | system "$fips_cc $fips_cc_args $fips_libdir/fips_premain.c"; | ||
| 38 | die "First stage Compile failure" if $? != 0; | ||
| 39 | |||
| 40 | print "$fips_link @ARGV\n"; | ||
| 41 | system "$fips_link @ARGV"; | ||
| 42 | die "First stage Link failure" if $? != 0; | ||
| 43 | |||
| 44 | |||
| 45 | print "$fips_premain_dso $fips_target\n"; | ||
| 46 | $fips_hash=`$fips_premain_dso $fips_target`; | ||
| 47 | chomp $fips_hash; | ||
| 48 | die "Get hash failure" if $? != 0; | ||
| 49 | |||
| 50 | |||
| 51 | print "$fips_cc -DHMAC_SHA1_SIG=\\\"$fips_hash\\\" $fips_cc_args $fips_libdir/fips_premain.c\n"; | ||
| 52 | system "$fips_cc -DHMAC_SHA1_SIG=\\\"$fips_hash\\\" $fips_cc_args $fips_libdir/fips_premain.c"; | ||
| 53 | die "Second stage Compile failure" if $? != 0; | ||
| 54 | |||
| 55 | |||
| 56 | print "$fips_link @ARGV\n"; | ||
| 57 | system "$fips_link @ARGV"; | ||
| 58 | die "Second stage Link failure" if $? != 0; | ||
| 59 | |||
| 60 | sub check_hash | ||
| 61 | { | ||
| 62 | my ($sha1_exe, $filename) = @_; | ||
| 63 | my ($hashfile, $hashval); | ||
| 64 | |||
| 65 | open(IN, "${fips_libdir}/${filename}.sha1") || die "Cannot open file hash file ${fips_libdir}/${filename}.sha1"; | ||
| 66 | $hashfile = <IN>; | ||
| 67 | close IN; | ||
| 68 | $hashval = `$sha1_exe ${fips_libdir}/$filename`; | ||
| 69 | chomp $hashfile; | ||
| 70 | chomp $hashval; | ||
| 71 | $hashfile =~ s/^.*=\s+//; | ||
| 72 | $hashval =~ s/^.*=\s+//; | ||
| 73 | die "Invalid hash syntax in file" if (length($hashfile) != 40); | ||
| 74 | die "Invalid hash received for file" if (length($hashval) != 40); | ||
| 75 | die "***HASH VALUE MISMATCH FOR FILE $filename ***" if ($hashval ne $hashfile); | ||
| 76 | } | ||
| 77 | |||
| 78 | |||
diff --git a/src/lib/libssl/src/util/pl/BC-16.pl b/src/lib/libssl/src/util/pl/BC-16.pl deleted file mode 100644 index 8030653daa..0000000000 --- a/src/lib/libssl/src/util/pl/BC-16.pl +++ /dev/null | |||
| @@ -1,151 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # VCw16lib.pl - the file for Visual C++ 1.52b for windows, static libraries | ||
| 3 | # | ||
| 4 | |||
| 5 | $o='\\'; | ||
| 6 | $cp='copy'; | ||
| 7 | $rm='del'; | ||
| 8 | |||
| 9 | # C compiler stuff | ||
| 10 | $cc='bcc'; | ||
| 11 | |||
| 12 | if ($debug) | ||
| 13 | { $op="-v "; } | ||
| 14 | else { $op="-O "; } | ||
| 15 | |||
| 16 | $cflags="-d -ml $op -DL_ENDIAN"; | ||
| 17 | # I add the stack opt | ||
| 18 | $base_lflags="/c /C"; | ||
| 19 | $lflags="$base_lflags"; | ||
| 20 | |||
| 21 | if ($win16) | ||
| 22 | { | ||
| 23 | $shlib=1; | ||
| 24 | $cflags.=" -DOPENSSL_SYSNAME_WIN16"; | ||
| 25 | $app_cflag="-W"; | ||
| 26 | $lib_cflag="-WD"; | ||
| 27 | $lflags.="/Twe"; | ||
| 28 | } | ||
| 29 | else | ||
| 30 | { | ||
| 31 | $cflags.=" -DOENSSL_SYSNAME_MSDOS"; | ||
| 32 | $lflags.=" /Tde"; | ||
| 33 | } | ||
| 34 | |||
| 35 | if ($shlib) | ||
| 36 | { | ||
| 37 | $mlflags=" /Twd $base_lflags"; # stack if defined in .def file | ||
| 38 | $libs="libw ldllcew"; | ||
| 39 | $no_asm=1; | ||
| 40 | } | ||
| 41 | else | ||
| 42 | { $mlflags=''; } | ||
| 43 | |||
| 44 | $obj='.obj'; | ||
| 45 | $ofile="-o"; | ||
| 46 | |||
| 47 | # EXE linking stuff | ||
| 48 | $link="tlink"; | ||
| 49 | $efile=""; | ||
| 50 | $exep='.exe'; | ||
| 51 | $ex_libs="CL"; | ||
| 52 | $ex_libs.=$no_sock?"":" winsock.lib"; | ||
| 53 | |||
| 54 | $app_ex_obj="C0L.obj "; | ||
| 55 | $shlib_ex_obj="" if ($shlib); | ||
| 56 | |||
| 57 | # static library stuff | ||
| 58 | $mklib='tlib'; | ||
| 59 | $ranlib='echo no ranlib'; | ||
| 60 | $plib=""; | ||
| 61 | $libp=".lib"; | ||
| 62 | $shlibp=($shlib)?".dll":".lib"; | ||
| 63 | $lfile=''; | ||
| 64 | |||
| 65 | $asm='bcc -c -B -Tml'; | ||
| 66 | $afile='/o'; | ||
| 67 | if ($no_asm || $fips) | ||
| 68 | { | ||
| 69 | $bn_asm_obj=''; | ||
| 70 | $bn_asm_src=''; | ||
| 71 | } | ||
| 72 | elsif ($asmbits == 32) | ||
| 73 | { | ||
| 74 | $bn_asm_obj='crypto\bn\asm\x86w32.obj'; | ||
| 75 | $bn_asm_src='crypto\bn\asm\x86w32.asm'; | ||
| 76 | } | ||
| 77 | else | ||
| 78 | { | ||
| 79 | $bn_asm_obj='crypto\bn\asm\x86w16.obj'; | ||
| 80 | $bn_asm_src='crypto\bn\asm\x86w16.asm'; | ||
| 81 | } | ||
| 82 | |||
| 83 | sub do_lib_rule | ||
| 84 | { | ||
| 85 | local($target,$name,$shlib)=@_; | ||
| 86 | local($ret,$Name); | ||
| 87 | |||
| 88 | $taget =~ s/\//$o/g if $o ne '/'; | ||
| 89 | ($Name=$name) =~ tr/a-z/A-Z/; | ||
| 90 | |||
| 91 | $ret.="$target: \$(${Name}OBJ)\n"; | ||
| 92 | $ret.="\t\$(RM) \$(O_$Name)\n"; | ||
| 93 | |||
| 94 | # Due to a pathetic line length limit, I unwrap the args. | ||
| 95 | local($lib_names)=""; | ||
| 96 | local($dll_names)=""; | ||
| 97 | foreach $_ (sort split(/\s+/,$Vars{"${Name}OBJ"})) | ||
| 98 | { | ||
| 99 | $lib_names.=" +$_ &\n"; | ||
| 100 | $dll_names.=" $_\n"; | ||
| 101 | } | ||
| 102 | |||
| 103 | if (!$shlib) | ||
| 104 | { | ||
| 105 | $ret.="\t\$(MKLIB) $target & <<|\n$lib_names\n,\n|\n"; | ||
| 106 | } | ||
| 107 | else | ||
| 108 | { | ||
| 109 | local($ex)=($Name eq "SSL")?' $(L_CRYPTO) winsock':""; | ||
| 110 | $ret.="\t\$(LINK) \$(MLFLAGS) @&&|\n"; | ||
| 111 | $ret.=$dll_names; | ||
| 112 | $ret.="\n $target\n\n $ex $libs\nms$o${name}16.def;\n|\n"; | ||
| 113 | ($out_lib=$target) =~ s/O_/L_/; | ||
| 114 | $ret.="\timplib /nowep $out_lib $target\n\n"; | ||
| 115 | } | ||
| 116 | $ret.="\n"; | ||
| 117 | return($ret); | ||
| 118 | } | ||
| 119 | |||
| 120 | sub do_link_rule | ||
| 121 | { | ||
| 122 | local($target,$files,$dep_libs,$libs,$sha1file,$openssl)=@_; | ||
| 123 | local($ret,$f,$_,@f); | ||
| 124 | |||
| 125 | $file =~ s/\//$o/g if $o ne '/'; | ||
| 126 | $n=&bname($target); | ||
| 127 | $ret.="$target: $files $dep_libs\n"; | ||
| 128 | $ret.=" \$(LINK) @&&|"; | ||
| 129 | |||
| 130 | # Due to a pathetic line length limit, I have to unwrap the args. | ||
| 131 | $ret.=" \$(LFLAGS) "; | ||
| 132 | if ($files =~ /\(([^)]*)\)$/) | ||
| 133 | { | ||
| 134 | $ret.=" \$(APP_EX_OBJ)"; | ||
| 135 | foreach $_ (sort split(/\s+/,$Vars{$1})) | ||
| 136 | { $ret.="\n $r $_ +"; } | ||
| 137 | chop($ret); | ||
| 138 | $ret.="\n"; | ||
| 139 | } | ||
| 140 | else | ||
| 141 | { $ret.="\n $r \$(APP_EX_OBJ) $files\n"; } | ||
| 142 | $ret.=" $target\n\n $libs\n\n|\n"; | ||
| 143 | if (defined $sha1file) | ||
| 144 | { | ||
| 145 | $ret.=" $openssl sha1 -hmac etaonrishdlcupfm -binary $target > $sha1file"; | ||
| 146 | } | ||
| 147 | $ret.="\n"; | ||
| 148 | return($ret); | ||
| 149 | } | ||
| 150 | |||
| 151 | 1; | ||
diff --git a/src/lib/libssl/src/util/pl/VC-16.pl b/src/lib/libssl/src/util/pl/VC-16.pl deleted file mode 100644 index 564ba3fd08..0000000000 --- a/src/lib/libssl/src/util/pl/VC-16.pl +++ /dev/null | |||
| @@ -1,177 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # VCw16lib.pl - the file for Visual C++ 1.52b for windows, static libraries | ||
| 3 | # | ||
| 4 | |||
| 5 | $ssl= "ssleay16"; | ||
| 6 | $crypto="libeay16"; | ||
| 7 | |||
| 8 | $o='\\'; | ||
| 9 | $cp='copy'; | ||
| 10 | $rm='del'; | ||
| 11 | |||
| 12 | # C compiler stuff | ||
| 13 | $cc='cl'; | ||
| 14 | |||
| 15 | $out_def="out16"; | ||
| 16 | $tmp_def="tmp16"; | ||
| 17 | $inc_def="inc16"; | ||
| 18 | |||
| 19 | if ($debug) | ||
| 20 | { | ||
| 21 | $op="/Od /Zi /Zd"; | ||
| 22 | $base_lflags="/CO"; | ||
| 23 | } | ||
| 24 | else { | ||
| 25 | $op="/G2 /f- /Ocgnotb2"; | ||
| 26 | } | ||
| 27 | $base_lflags.=" /FARCALL /NOLOGO /NOD /SEG:1024 /ONERROR:NOEXE /NOE /PACKC:60000"; | ||
| 28 | if ($win16) { $base_lflags.=" /PACKD:60000"; } | ||
| 29 | |||
| 30 | $cflags="/ALw /Gx- /Gt256 /Gf $op /W3 /WX -DL_ENDIAN /nologo"; | ||
| 31 | # I add the stack opt | ||
| 32 | $lflags="$base_lflags /STACK:20000"; | ||
| 33 | |||
| 34 | if ($win16) | ||
| 35 | { | ||
| 36 | $cflags.=" -DOPENSSL_SYSNAME_WIN16"; | ||
| 37 | $app_cflag="/Gw /FPi87"; | ||
| 38 | $lib_cflag="/Gw"; | ||
| 39 | $lib_cflag.=" -D_WINDLL -D_DLL" if $shlib; | ||
| 40 | $lib_cflag.=" -DWIN16TTY" if !$shlib; | ||
| 41 | $lflags.=" /ALIGN:256"; | ||
| 42 | $ex_libs.="oldnames llibcewq libw"; | ||
| 43 | } | ||
| 44 | else | ||
| 45 | { | ||
| 46 | $no_sock=1; | ||
| 47 | $cflags.=" -DMSDOS"; | ||
| 48 | $lflags.=" /EXEPACK"; | ||
| 49 | $ex_libs.="oldnames.lib llibce.lib"; | ||
| 50 | } | ||
| 51 | |||
| 52 | if ($shlib) | ||
| 53 | { | ||
| 54 | $mlflags="$base_lflags"; | ||
| 55 | $libs="oldnames ldllcew libw"; | ||
| 56 | $shlib_ex_obj=""; | ||
| 57 | # $no_asm=1; | ||
| 58 | $out_def="out16dll"; | ||
| 59 | $tmp_def="tmp16dll"; | ||
| 60 | } | ||
| 61 | else | ||
| 62 | { $mlflags=''; } | ||
| 63 | |||
| 64 | $app_ex_obj=""; | ||
| 65 | |||
| 66 | $obj='.obj'; | ||
| 67 | $ofile="/Fo"; | ||
| 68 | |||
| 69 | # EXE linking stuff | ||
| 70 | $link="link"; | ||
| 71 | $efile=""; | ||
| 72 | $exep='.exe'; | ||
| 73 | $ex_libs.=$no_sock?"":" winsock"; | ||
| 74 | |||
| 75 | # static library stuff | ||
| 76 | $mklib='lib /PAGESIZE:1024'; | ||
| 77 | $ranlib=''; | ||
| 78 | $plib=""; | ||
| 79 | $libp=".lib"; | ||
| 80 | $shlibp=($shlib)?".dll":".lib"; | ||
| 81 | $lfile=''; | ||
| 82 | |||
| 83 | $asm='ml /Cp /c /Cx'; | ||
| 84 | $afile='/Fo'; | ||
| 85 | |||
| 86 | $bn_asm_obj=''; | ||
| 87 | $bn_asm_src=''; | ||
| 88 | $des_enc_obj=''; | ||
| 89 | $des_enc_src=''; | ||
| 90 | $bf_enc_obj=''; | ||
| 91 | $bf_enc_src=''; | ||
| 92 | |||
| 93 | if (!$no_asm && !$fips) | ||
| 94 | { | ||
| 95 | if ($asmbits == 32) | ||
| 96 | { | ||
| 97 | $bn_asm_obj='crypto\bn\asm\x86w32.obj'; | ||
| 98 | $bn_asm_src='crypto\bn\asm\x86w32.asm'; | ||
| 99 | } | ||
| 100 | else | ||
| 101 | { | ||
| 102 | $bn_asm_obj='crypto\bn\asm\x86w16.obj'; | ||
| 103 | $bn_asm_src='crypto\bn\asm\x86w16.asm'; | ||
| 104 | } | ||
| 105 | } | ||
| 106 | |||
| 107 | sub do_lib_rule | ||
| 108 | { | ||
| 109 | local($objs,$target,$name,$shlib)=@_; | ||
| 110 | local($ret,$Name); | ||
| 111 | |||
| 112 | $taget =~ s/\//$o/g if $o ne '/'; | ||
| 113 | ($Name=$name) =~ tr/a-z/A-Z/; | ||
| 114 | |||
| 115 | # $target="\$(LIB_D)$o$target"; | ||
| 116 | $ret.="$target: $objs\n"; | ||
| 117 | # $ret.="\t\$(RM) \$(O_$Name)\n"; | ||
| 118 | |||
| 119 | # Due to a pathetic line length limit, I unwrap the args. | ||
| 120 | local($lib_names)=""; | ||
| 121 | local($dll_names)=" \$(SHLIB_EX_OBJ) +\n"; | ||
| 122 | ($obj)= ($objs =~ /\((.*)\)/); | ||
| 123 | foreach $_ (sort split(/\s+/,$Vars{$obj})) | ||
| 124 | { | ||
| 125 | $lib_names.="+$_ &\n"; | ||
| 126 | $dll_names.=" $_ +\n"; | ||
| 127 | } | ||
| 128 | |||
| 129 | if (!$shlib) | ||
| 130 | { | ||
| 131 | $ret.="\tdel $target\n"; | ||
| 132 | $ret.="\t\$(MKLIB) @<<\n$target\ny\n$lib_names\n\n<<\n"; | ||
| 133 | } | ||
| 134 | else | ||
| 135 | { | ||
| 136 | local($ex)=($target =~ /O_SSL/)?'$(L_CRYPTO)':""; | ||
| 137 | $ex.=' winsock'; | ||
| 138 | $ret.="\t\$(LINK) \$(MLFLAGS) @<<\n"; | ||
| 139 | $ret.=$dll_names; | ||
| 140 | $ret.="\n $target\n\n $ex $libs\nms$o${name}.def;\n<<\n"; | ||
| 141 | ($out_lib=$target) =~ s/O_/L_/; | ||
| 142 | $ret.="\timplib /noignorecase /nowep $out_lib $target\n"; | ||
| 143 | } | ||
| 144 | $ret.="\n"; | ||
| 145 | return($ret); | ||
| 146 | } | ||
| 147 | |||
| 148 | sub do_link_rule | ||
| 149 | { | ||
| 150 | local($target,$files,$dep_libs,$libs,$sha1file,$openssl)=@_; | ||
| 151 | local($ret,$f,$_,@f); | ||
| 152 | |||
| 153 | $file =~ s/\//$o/g if $o ne '/'; | ||
| 154 | $n=&bname($targer); | ||
| 155 | $ret.="$target: $files $dep_libs\n"; | ||
| 156 | $ret.=" \$(LINK) \$(LFLAGS) @<<\n"; | ||
| 157 | |||
| 158 | # Due to a pathetic line length limit, I have to unwrap the args. | ||
| 159 | if ($files =~ /\(([^)]*)\)$/) | ||
| 160 | { | ||
| 161 | @a=('$(APP_EX_OBJ)'); | ||
| 162 | push(@a,sort split(/\s+/,$Vars{$1})); | ||
| 163 | for $_ (@a) | ||
| 164 | { $ret.=" $_ +\n"; } | ||
| 165 | } | ||
| 166 | else | ||
| 167 | { $ret.=" \$(APP_EX_OBJ) $files"; } | ||
| 168 | $ret.="\n $target\n\n $libs\n\n<<\n"; | ||
| 169 | if (defined $sha1file) | ||
| 170 | { | ||
| 171 | $ret.=" $openssl sha1 -hmac etaonrishdlcupfm -binary $target > $sha1file"; | ||
| 172 | } | ||
| 173 | $ret.="\n"; | ||
| 174 | return($ret); | ||
| 175 | } | ||
| 176 | |||
| 177 | 1; | ||
diff --git a/src/lib/libssl/src/util/pl/VC-32-GMAKE.pl b/src/lib/libssl/src/util/pl/VC-32-GMAKE.pl deleted file mode 100644 index b5bbcac6c2..0000000000 --- a/src/lib/libssl/src/util/pl/VC-32-GMAKE.pl +++ /dev/null | |||
| @@ -1,222 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # VCw32lib.pl - the file for Visual C++ 4.[01] for windows NT, static libraries | ||
| 3 | # | ||
| 4 | |||
| 5 | |||
| 6 | if ($fips && !$shlib) | ||
| 7 | { | ||
| 8 | $crypto="libeayfips32"; | ||
| 9 | $crypto_compat = "libeaycompat32.lib"; | ||
| 10 | } | ||
| 11 | else | ||
| 12 | { | ||
| 13 | $crypto="libeay32"; | ||
| 14 | } | ||
| 15 | $ssl= "ssleay32"; | ||
| 16 | |||
| 17 | $o='/'; | ||
| 18 | #$cp='copy nul+'; # Timestamps get stuffed otherwise | ||
| 19 | #$rm='del'; | ||
| 20 | |||
| 21 | $cp='cp'; | ||
| 22 | $rm='rm'; | ||
| 23 | |||
| 24 | $zlib_lib="zlib1.lib"; | ||
| 25 | |||
| 26 | # C compiler stuff | ||
| 27 | $cc='cl'; | ||
| 28 | $cflags=' -MD -W3 -WX -Ox -O2 -Ob2 -Gs0 -GF -Gy -nologo -DOPENSSL_SYSNAME_WIN32 -DWIN32_LEAN_AND_MEAN -DL_ENDIAN -DDSO_WIN32'; | ||
| 29 | $cflags.=' -D_CRT_SECURE_NO_DEPRECATE'; # shut up VC8 | ||
| 30 | $cflags.=' -D_CRT_NONSTDC_NO_DEPRECATE'; # shut up VC8 | ||
| 31 | $lflags="-nologo -subsystem:console -machine:I386 -opt:ref"; | ||
| 32 | $mlflags=''; | ||
| 33 | |||
| 34 | $out_def="gmout32"; | ||
| 35 | $tmp_def="gmtmp32"; | ||
| 36 | $inc_def="gminc32"; | ||
| 37 | |||
| 38 | if ($debug) | ||
| 39 | { | ||
| 40 | $cflags=" -MDd -W3 -WX -Zi -Yd -Od -nologo -DOPENSSL_SYSNAME_WIN32 -D_DEBUG -DL_ENDIAN -DWIN32_LEAN_AND_MEAN -DDEBUG -DDSO_WIN32"; | ||
| 41 | $lflags.=" -debug"; | ||
| 42 | $mlflags.=' -debug'; | ||
| 43 | } | ||
| 44 | $cflags .= " -DOPENSSL_SYSNAME_WINNT" if $NT == 1; | ||
| 45 | |||
| 46 | $obj='.obj'; | ||
| 47 | $ofile="-Fo"; | ||
| 48 | |||
| 49 | # EXE linking stuff | ||
| 50 | $link="link"; | ||
| 51 | $efile="-out:"; | ||
| 52 | $exep='.exe'; | ||
| 53 | if ($no_sock) | ||
| 54 | { $ex_libs=""; } | ||
| 55 | else { $ex_libs="wsock32.lib user32.lib gdi32.lib"; } | ||
| 56 | |||
| 57 | # static library stuff | ||
| 58 | $mklib='lib'; | ||
| 59 | $ranlib=''; | ||
| 60 | $plib=""; | ||
| 61 | $libp=".lib"; | ||
| 62 | $shlibp=($shlib)?".dll":".lib"; | ||
| 63 | $lfile='-out:'; | ||
| 64 | |||
| 65 | $shlib_ex_obj=""; | ||
| 66 | $app_ex_obj="setargv.obj"; | ||
| 67 | if ($nasm) { | ||
| 68 | $asm='nasmw -f win32'; | ||
| 69 | $afile='-o '; | ||
| 70 | } else { | ||
| 71 | $asm='ml -Cp -coff -c -Cx'; | ||
| 72 | $asm.=" -Zi" if $debug; | ||
| 73 | $afile='-Fo'; | ||
| 74 | } | ||
| 75 | |||
| 76 | $bn_asm_obj=''; | ||
| 77 | $bn_asm_src=''; | ||
| 78 | $des_enc_obj=''; | ||
| 79 | $des_enc_src=''; | ||
| 80 | $bf_enc_obj=''; | ||
| 81 | $bf_enc_src=''; | ||
| 82 | |||
| 83 | if (!$no_asm && !$fips) | ||
| 84 | { | ||
| 85 | $bn_asm_obj='crypto/bn/asm/bn_win32.obj'; | ||
| 86 | $bn_asm_src='crypto/bn/asm/bn_win32.asm'; | ||
| 87 | $des_enc_obj='crypto/des/asm/d_win32.obj crypto/des/asm/y_win32.obj'; | ||
| 88 | $des_enc_src='crypto/des/asm/d_win32.asm crypto/des/asm/y_win32.asm'; | ||
| 89 | $bf_enc_obj='crypto/bf/asm/b_win32.obj'; | ||
| 90 | $bf_enc_src='crypto/bf/asm/b_win32.asm'; | ||
| 91 | $cast_enc_obj='crypto/cast/asm/c_win32.obj'; | ||
| 92 | $cast_enc_src='crypto/cast/asm/c_win32.asm'; | ||
| 93 | $rc4_enc_obj='crypto/rc4/asm/r4_win32.obj'; | ||
| 94 | $rc4_enc_src='crypto/rc4/asm/r4_win32.asm'; | ||
| 95 | $rc5_enc_obj='crypto/rc5/asm/r5_win32.obj'; | ||
| 96 | $rc5_enc_src='crypto/rc5/asm/r5_win32.asm'; | ||
| 97 | $md5_asm_obj='crypto/md5/asm/m5_win32.obj'; | ||
| 98 | $md5_asm_src='crypto/md5/asm/m5_win32.asm'; | ||
| 99 | $sha1_asm_obj='crypto/sha/asm/s1_win32.obj'; | ||
| 100 | $sha1_asm_src='crypto/sha/asm/s1_win32.asm'; | ||
| 101 | $rmd160_asm_obj='crypto/ripemd/asm/rm_win32.obj'; | ||
| 102 | $rmd160_asm_src='crypto/ripemd/asm/rm_win32.asm'; | ||
| 103 | $cflags.=" -DBN_ASM -DMD5_ASM -DSHA1_ASM -DRMD160_ASM"; | ||
| 104 | } | ||
| 105 | |||
| 106 | if ($shlib) | ||
| 107 | { | ||
| 108 | $mlflags.=" $lflags -dll"; | ||
| 109 | # $cflags =~ s| -MD| -MT|; | ||
| 110 | $lib_cflag=" -D_WINDLL"; | ||
| 111 | $out_def="gmout32dll"; | ||
| 112 | $tmp_def="gmtmp32dll"; | ||
| 113 | } | ||
| 114 | |||
| 115 | $cflags.=" -Fd$out_def"; | ||
| 116 | |||
| 117 | sub do_lib_rule | ||
| 118 | { | ||
| 119 | local($objs,$target,$name,$shlib,$ign,$base_addr, $fips_get_sig, $fips_premain_src)=@_; | ||
| 120 | local($ret,$Name); | ||
| 121 | |||
| 122 | $taget =~ s/\//$o/g if $o ne '/'; | ||
| 123 | ($Name=$name) =~ tr/a-z/A-Z/; | ||
| 124 | my $base_arg; | ||
| 125 | if ($base_addr ne "") | ||
| 126 | { | ||
| 127 | $base_arg= " -base:$base_addr"; | ||
| 128 | } | ||
| 129 | else | ||
| 130 | { | ||
| 131 | $base_arg = ""; | ||
| 132 | } | ||
| 133 | |||
| 134 | |||
| 135 | # $target="\$(LIB_D)$o$target"; | ||
| 136 | if (!$shlib) | ||
| 137 | { | ||
| 138 | # $ret.="\t\$(RM) \$(O_$Name)\n"; | ||
| 139 | $ret.="$target: $objs\n"; | ||
| 140 | $ex =' advapi32.lib'; | ||
| 141 | $ret.="\t\$(MKLIB) $lfile$target $objs $ex\n\n"; | ||
| 142 | } | ||
| 143 | else | ||
| 144 | { | ||
| 145 | local($ex)=($target =~ /O_SSL/)?' $(L_CRYPTO)':''; | ||
| 146 | $ex.=' wsock32.lib gdi32.lib advapi32.lib user32.lib'; | ||
| 147 | $ex.=" $zlib_lib" if $zlib_opt == 1 && $target =~ /O_CRYPTO/; | ||
| 148 | if (defined $fips_get_sig) | ||
| 149 | { | ||
| 150 | $ret.="$target: \$(O_FIPSCANISTER) $objs $fips_get_sig\n"; | ||
| 151 | $ret.="\tFIPS_LINK=\$(LINK) "; | ||
| 152 | $ret.="FIPS_CC=\$(CC) "; | ||
| 153 | $ret.="FIPS_CC_ARGS=\"-Fo\$(OBJ_D)${o}fips_premain.obj \$(SHLIB_CFLAGS) -c\" "; | ||
| 154 | $ret.="FIPS_PREMAIN_DSO=$fips_get_sig "; | ||
| 155 | $ret.="FIPS_TARGET=$target "; | ||
| 156 | $ret.="FIPS_LIBDIR=\$(FIPSLIB_D) "; | ||
| 157 | $ret.="\$(FIPSLINK) \$(MLFLAGS) $base_arg $efile$target "; | ||
| 158 | $ret.="-def:ms/${Name}.def \$(SHLIB_EX_OBJ) $objs "; | ||
| 159 | $ret.="\$(OBJ_D)${o}fips_premain.obj $ex\n\n"; | ||
| 160 | } | ||
| 161 | else | ||
| 162 | { | ||
| 163 | $ret.="$target: $objs\n"; | ||
| 164 | $ret.="\t\$(LINK) \$(MLFLAGS) $base_arg $efile$target /def:ms/${Name}.def \$(SHLIB_EX_OBJ) $objs $ex\n\n"; | ||
| 165 | } | ||
| 166 | } | ||
| 167 | $ret.="\n"; | ||
| 168 | return($ret); | ||
| 169 | } | ||
| 170 | |||
| 171 | sub do_link_rule | ||
| 172 | { | ||
| 173 | local($target,$files,$dep_libs,$libs,$standalone)=@_; | ||
| 174 | local($ret,$_); | ||
| 175 | $file =~ s/\//$o/g if $o ne '/'; | ||
| 176 | $n=&bname($targer); | ||
| 177 | if ($standalone) | ||
| 178 | { | ||
| 179 | $ret.="$target: $files $dep_libs\n"; | ||
| 180 | $ret.="\t\$(LINK) \$(LFLAGS) $efile$target "; | ||
| 181 | $ret.="$files $libs\n\n"; | ||
| 182 | } | ||
| 183 | elsif ($fips && !$shlib) | ||
| 184 | { | ||
| 185 | $ret.="$target: \$(O_FIPSCANISTER) $files $dep_libs\n"; | ||
| 186 | $ret.="\tFIPS_LINK=\$(LINK) "; | ||
| 187 | $ret.="FIPS_CC=\$(CC) "; | ||
| 188 | $ret.="FIPS_CC_ARGS=\"-Fo\$(OBJ_D)${o}fips_premain.obj \$(SHLIB_CFLAGS) -c\" "; | ||
| 189 | $ret.="FIPS_PREMAIN_DSO= "; | ||
| 190 | $ret.="FIPS_TARGET=$target "; | ||
| 191 | $ret.="FIPS_LIBDIR=\$(FIPSLIB_D) "; | ||
| 192 | $ret.=" \$(FIPSLINK) \$(LFLAGS) $efile$target "; | ||
| 193 | $ret.="\$(APP_EX_OBJ) $files \$(OBJ_D)${o}fips_premain.obj $libs\n\n"; | ||
| 194 | } | ||
| 195 | else | ||
| 196 | { | ||
| 197 | $ret.="$target: $files $dep_libs\n"; | ||
| 198 | $ret.="\t\$(LINK) \$(LFLAGS) $efile$target "; | ||
| 199 | $ret.="\$(APP_EX_OBJ) $files $libs\n\n"; | ||
| 200 | } | ||
| 201 | $ret.="\n"; | ||
| 202 | return($ret); | ||
| 203 | } | ||
| 204 | |||
| 205 | sub do_rlink_rule | ||
| 206 | { | ||
| 207 | local($target,$files,$check_hash, $deps)=@_; | ||
| 208 | local($ret,$_); | ||
| 209 | |||
| 210 | $file =~ s/\//$o/g if $o ne '/'; | ||
| 211 | $n=&bname($targer); | ||
| 212 | $ret.="$target: $check_hash $files $deps\n"; | ||
| 213 | $ret.="\t\$(PERL) util${o}checkhash.pl -chdir fips-1.0 -program_path ..$o$check_hash\n"; | ||
| 214 | $ret.="\t\$(MKCANISTER) $target $files\n"; | ||
| 215 | $ret.="\t$check_hash $target > $target.sha1\n"; | ||
| 216 | $ret.="\t\$(CP) fips-1.0${o}fips_premain.c \$(FIPSLIB_D)\n"; | ||
| 217 | $ret.="\t$check_hash \$(FIPSLIB_D)${o}fips_premain.c > \$(FIPSLIB_D)${o}fips_premain.c.sha1\n\n"; | ||
| 218 | return($ret); | ||
| 219 | } | ||
| 220 | |||
| 221 | |||
| 222 | 1; | ||
diff --git a/src/lib/libssl/src/util/pl/VC-CE.pl b/src/lib/libssl/src/util/pl/VC-CE.pl deleted file mode 100644 index 2fd0c4dd32..0000000000 --- a/src/lib/libssl/src/util/pl/VC-CE.pl +++ /dev/null | |||
| @@ -1,116 +0,0 @@ | |||
| 1 | #!/usr/local/bin/perl | ||
| 2 | # VC-CE.pl - the file for eMbedded Visual C++ 3.0 for windows CE, static libraries | ||
| 3 | # | ||
| 4 | |||
| 5 | $ssl= "ssleay32"; | ||
| 6 | $crypto="libeay32"; | ||
| 7 | $RSAref="RSAref32"; | ||
| 8 | |||
| 9 | $o='\\'; | ||
| 10 | $cp='copy nul+'; # Timestamps get stuffed otherwise | ||
| 11 | $rm='del'; | ||
| 12 | |||
| 13 | # C compiler stuff | ||
| 14 | $cc='$(CC)'; | ||
| 15 | $cflags=' /W3 /WX /Ox /O2 /Ob2 /Gs0 /GF /Gy /nologo $(WCETARGETDEFS) -DUNICODE -D_UNICODE -DWIN32 -DWIN32_LEAN_AND_MEAN -DL_ENDIAN -DDSO_WIN32 -DNO_CHMOD -I$(WCECOMPAT)/include'; | ||
| 16 | $lflags='/nologo /subsystem:windowsce,$(WCELDVERSION) /machine:$(WCELDMACHINE) /opt:ref'; | ||
| 17 | $mlflags=''; | ||
| 18 | |||
| 19 | $out_def='out32_$(TARGETCPU)'; | ||
| 20 | $tmp_def='tmp32_$(TARGETCPU)'; | ||
| 21 | $inc_def="inc32"; | ||
| 22 | |||
| 23 | if ($debug) | ||
| 24 | { | ||
| 25 | $cflags=" /MDd /W3 /WX /Zi /Yd /Od /nologo -DWIN32 -D_DEBUG -DL_ENDIAN -DWIN32_LEAN_AND_MEAN -DDEBUG -DDSO_WIN32"; | ||
| 26 | $lflags.=" /debug"; | ||
| 27 | $mlflags.=' /debug'; | ||
| 28 | } | ||
| 29 | |||
| 30 | $obj='.obj'; | ||
| 31 | $ofile="/Fo"; | ||
| 32 | |||
| 33 | # EXE linking stuff | ||
| 34 | $link="link"; | ||
| 35 | $efile="/out:"; | ||
| 36 | $exep='.exe'; | ||
| 37 | if ($no_sock) | ||
| 38 | { $ex_libs=""; } | ||
| 39 | else { $ex_libs='winsock.lib $(WCECOMPAT)/lib/wcecompatex.lib $(WCELDFLAGS)'; } | ||
| 40 | |||
| 41 | # static library stuff | ||
| 42 | $mklib='lib'; | ||
| 43 | $ranlib=''; | ||
| 44 | $plib=""; | ||
| 45 | $libp=".lib"; | ||
| 46 | $shlibp=($shlib)?".dll":".lib"; | ||
| 47 | $lfile='/out:'; | ||
| 48 | |||
| 49 | $shlib_ex_obj=""; | ||
| 50 | $app_ex_obj=""; | ||
| 51 | $app_ex_obj=""; | ||
| 52 | |||
| 53 | $bn_asm_obj=''; | ||
| 54 | $bn_asm_src=''; | ||
| 55 | $des_enc_obj=''; | ||
| 56 | $des_enc_src=''; | ||
| 57 | $bf_enc_obj=''; | ||
| 58 | $bf_enc_src=''; | ||
| 59 | |||
| 60 | if ($shlib) | ||
| 61 | { | ||
| 62 | $mlflags.=" $lflags /dll"; | ||
| 63 | # $cflags =~ s| /MD| /MT|; | ||
| 64 | $lib_cflag=" -D_WINDLL -D_DLL"; | ||
| 65 | $out_def='out32dll_$(TARGETCPU)'; | ||
| 66 | $tmp_def='tmp32dll_$(TARGETCPU)'; | ||
| 67 | } | ||
| 68 | |||
| 69 | $cflags.=" /Fd$out_def"; | ||
| 70 | |||
| 71 | sub do_lib_rule | ||
| 72 | { | ||
| 73 | local($objs,$target,$name,$shlib)=@_; | ||
| 74 | local($ret,$Name); | ||
| 75 | |||
| 76 | $taget =~ s/\//$o/g if $o ne '/'; | ||
| 77 | ($Name=$name) =~ tr/a-z/A-Z/; | ||
| 78 | |||
| 79 | # $target="\$(LIB_D)$o$target"; | ||
| 80 | $ret.="$target: $objs\n"; | ||
| 81 | if (!$shlib) | ||
| 82 | { | ||
| 83 | # $ret.="\t\$(RM) \$(O_$Name)\n"; | ||
| 84 | $ex =' '; | ||
| 85 | $ret.="\t\$(MKLIB) $lfile$target @<<\n $objs $ex\n<<\n"; | ||
| 86 | } | ||
| 87 | else | ||
| 88 | { | ||
| 89 | local($ex)=($target =~ /O_SSL/)?' $(L_CRYPTO)':''; | ||
| 90 | # $ex.=' winsock.lib coredll.lib $(WCECOMPAT)/lib/wcecompatex.lib'; | ||
| 91 | $ex.=' winsock.lib $(WCECOMPAT)/lib/wcecompatex.lib'; | ||
| 92 | $ret.="\t\$(LINK) \$(MLFLAGS) $efile$target /def:ms/${Name}.def @<<\n \$(SHLIB_EX_OBJ) $objs $ex\n<<\n"; | ||
| 93 | } | ||
| 94 | $ret.="\n"; | ||
| 95 | return($ret); | ||
| 96 | } | ||
| 97 | |||
| 98 | sub do_link_rule | ||
| 99 | { | ||
| 100 | local($target,$files,$dep_libs,$libs,$sha1file,$openssl)=@_; | ||
| 101 | local($ret,$_); | ||
| 102 | |||
| 103 | $file =~ s/\//$o/g if $o ne '/'; | ||
| 104 | $n=&bname($targer); | ||
| 105 | $ret.="$target: $files $dep_libs\n"; | ||
| 106 | $ret.=" \$(LINK) \$(LFLAGS) $efile$target @<<\n"; | ||
| 107 | $ret.=" \$(APP_EX_OBJ) $files $libs\n<<\n"; | ||
| 108 | if (defined $sha1file) | ||
| 109 | { | ||
| 110 | $ret.=" $openssl sha1 -hmac etaonrishdlcupfm -binary $target > $sha1file"; | ||
| 111 | } | ||
| 112 | $ret.="\n"; | ||
| 113 | return($ret); | ||
| 114 | } | ||
| 115 | |||
| 116 | 1; | ||
diff --git a/src/lib/libssl/src/util/pl/netware.pl b/src/lib/libssl/src/util/pl/netware.pl new file mode 100644 index 0000000000..173c9919f2 --- /dev/null +++ b/src/lib/libssl/src/util/pl/netware.pl | |||
| @@ -0,0 +1,526 @@ | |||
| 1 | # Metrowerks Codewarrior or gcc / nlmconv for NetWare | ||
| 2 | # | ||
| 3 | |||
| 4 | $version_header = "crypto/opensslv.h"; | ||
| 5 | open(IN, "$version_header") or die "Couldn't open $version_header: $!"; | ||
| 6 | while (<IN>) { | ||
| 7 | if (/^#define[\s\t]+OPENSSL_VERSION_NUMBER[\s\t]+0x(\d)(\d{2})(\d{2})(\d{2})/) | ||
| 8 | { | ||
| 9 | # die "OpenSSL version detected: $1.$2.$3.$4\n"; | ||
| 10 | #$nlmvernum = "$1,$2,$3"; | ||
| 11 | $nlmvernum = "$1,".($2*10+$3).",".($4*1); | ||
| 12 | #$nlmverstr = "$1.".($2*1).".".($3*1).($4?(chr(96+$4)):""); | ||
| 13 | break; | ||
| 14 | } | ||
| 15 | } | ||
| 16 | close(IN) or die "Couldn't close $version_header: $!"; | ||
| 17 | |||
| 18 | $readme_file = "README"; | ||
| 19 | open(IN, $readme_file) or die "Couldn't open $readme_file: $!"; | ||
| 20 | while (<IN>) { | ||
| 21 | if (/^[\s\t]+OpenSSL[\s\t]+(\d)\.(\d{1,2})\.(\d{1,2})([a-z])(.*)/) | ||
| 22 | { | ||
| 23 | #$nlmvernum = "$1,$2,$3"; | ||
| 24 | #$nlmvernum = "$1,".($2*10+$3).",".($4*1); | ||
| 25 | $nlmverstr = "$1.$2.$3$4$5"; | ||
| 26 | } | ||
| 27 | elsif (/^[\s\t]+(Copyright \(c\) \d{4}\-\d{4} The OpenSSL Project)$/) | ||
| 28 | { | ||
| 29 | $nlmcpystr = $1; | ||
| 30 | } | ||
| 31 | break if ($nlmvernum && $nlmcpystr); | ||
| 32 | } | ||
| 33 | close(IN) or die "Couldn't close $readme_file: $!"; | ||
| 34 | |||
| 35 | # Define stacksize here | ||
| 36 | $nlmstack = "32768"; | ||
| 37 | |||
| 38 | # some default settings here in case we failed to find them in README | ||
| 39 | $nlmvernum = "1,0,0" if (!$nlmvernum); | ||
| 40 | $nlmverstr = "OpenSSL" if (!$nlmverstr); | ||
| 41 | $nlmcpystr = "Copyright (c) 1998-now The OpenSSL Project" if (!$nlmcpystr); | ||
| 42 | |||
| 43 | # die "OpenSSL copyright: $nlmcpystr\nOpenSSL verstring: $nlmverstr\nOpenSSL vernumber: $nlmvernum\n"; | ||
| 44 | |||
| 45 | # The import files and other misc imports needed to link | ||
| 46 | @misc_imports = ("GetProcessSwitchCount", "RunningProcess", | ||
| 47 | "GetSuperHighResolutionTimer"); | ||
| 48 | if ($LIBC) | ||
| 49 | { | ||
| 50 | @import_files = ("libc.imp"); | ||
| 51 | @module_files = ("libc"); | ||
| 52 | $libarch = "LIBC"; | ||
| 53 | } | ||
| 54 | else | ||
| 55 | { | ||
| 56 | # clib build | ||
| 57 | @import_files = ("clib.imp"); | ||
| 58 | push(@import_files, "socklib.imp") if ($BSDSOCK); | ||
| 59 | @module_files = ("clib"); | ||
| 60 | # push(@misc_imports, "_rt_modu64%16", "_rt_divu64%16"); | ||
| 61 | $libarch = "CLIB"; | ||
| 62 | } | ||
| 63 | if ($BSDSOCK) | ||
| 64 | { | ||
| 65 | $libarch .= "-BSD"; | ||
| 66 | } | ||
| 67 | else | ||
| 68 | { | ||
| 69 | $libarch .= "-WS2"; | ||
| 70 | push(@import_files, "ws2nlm.imp"); | ||
| 71 | } | ||
| 72 | |||
| 73 | # The "IMPORTS" environment variable must be set and point to the location | ||
| 74 | # where import files (*.imp) can be found. | ||
| 75 | # Example: set IMPORTS=c:\ndk\nwsdk\imports | ||
| 76 | $import_path = $ENV{"IMPORTS"} || die ("IMPORTS environment variable not set\n"); | ||
| 77 | |||
| 78 | |||
| 79 | # The "PRELUDE" environment variable must be set and point to the location | ||
| 80 | # and name of the prelude source to link with ( nwpre.obj is recommended ). | ||
| 81 | # Example: set PRELUDE=c:\codewar\novell support\metrowerks support\libraries\runtime\nwpre.obj | ||
| 82 | $prelude = $ENV{"PRELUDE"} || die ("PRELUDE environment variable not set\n"); | ||
| 83 | |||
| 84 | # The "INCLUDES" environment variable must be set and point to the location | ||
| 85 | # where import files (*.imp) can be found. | ||
| 86 | $include_path = $ENV{"INCLUDE"} || die ("INCLUDES environment variable not set\n"); | ||
| 87 | $include_path =~ s/\\/\//g; | ||
| 88 | $include_path = join(" -I", split(/;/, $include_path)); | ||
| 89 | |||
| 90 | # check for gcc compiler | ||
| 91 | $gnuc = $ENV{"GNUC"}; | ||
| 92 | |||
| 93 | #$ssl= "ssleay32"; | ||
| 94 | #$crypto="libeay32"; | ||
| 95 | |||
| 96 | if ($gnuc) | ||
| 97 | { | ||
| 98 | # C compiler | ||
| 99 | $cc='gcc'; | ||
| 100 | # Linker | ||
| 101 | $link='nlmconv'; | ||
| 102 | # librarian | ||
| 103 | $mklib='ar'; | ||
| 104 | $o='/'; | ||
| 105 | # cp command | ||
| 106 | $cp='cp -af'; | ||
| 107 | # rm command | ||
| 108 | $rm='rm -f'; | ||
| 109 | # mv command | ||
| 110 | $mv='mv -f'; | ||
| 111 | # mkdir command | ||
| 112 | $mkdir='gmkdir'; | ||
| 113 | #$ranlib='ranlib'; | ||
| 114 | } | ||
| 115 | else | ||
| 116 | { | ||
| 117 | # C compiler | ||
| 118 | $cc='mwccnlm'; | ||
| 119 | # Linker | ||
| 120 | $link='mwldnlm'; | ||
| 121 | # librarian | ||
| 122 | $mklib='mwldnlm'; | ||
| 123 | # Path separator | ||
| 124 | $o='\\'; | ||
| 125 | # cp command | ||
| 126 | $cp='copy >nul:'; | ||
| 127 | # rm command | ||
| 128 | $rm='del /f /q'; | ||
| 129 | } | ||
| 130 | |||
| 131 | # assembler | ||
| 132 | if ($nw_nasm) | ||
| 133 | { | ||
| 134 | if ($gnuc) | ||
| 135 | { | ||
| 136 | $asm="nasmw -s -f elf"; | ||
| 137 | } | ||
| 138 | else | ||
| 139 | { | ||
| 140 | $asm="nasmw -s -f coff"; | ||
| 141 | } | ||
| 142 | $afile="-o "; | ||
| 143 | $asm.=" -g" if $debug; | ||
| 144 | } | ||
| 145 | elsif ($nw_mwasm) | ||
| 146 | { | ||
| 147 | $asm="mwasmnlm -maxerrors 20"; | ||
| 148 | $afile="-o "; | ||
| 149 | $asm.=" -g" if $debug; | ||
| 150 | } | ||
| 151 | elsif ($nw_masm) | ||
| 152 | { | ||
| 153 | # masm assembly settings - it should be possible to use masm but haven't | ||
| 154 | # got it working. | ||
| 155 | # $asm='ml /Cp /coff /c /Cx'; | ||
| 156 | # $asm.=" /Zi" if $debug; | ||
| 157 | # $afile='/Fo'; | ||
| 158 | die("Support for masm assembler not yet functional\n"); | ||
| 159 | } | ||
| 160 | else | ||
| 161 | { | ||
| 162 | $asm=""; | ||
| 163 | $afile=""; | ||
| 164 | } | ||
| 165 | |||
| 166 | |||
| 167 | |||
| 168 | if ($gnuc) | ||
| 169 | { | ||
| 170 | # compile flags for GNUC | ||
| 171 | # additional flags based upon debug | non-debug | ||
| 172 | if ($debug) | ||
| 173 | { | ||
| 174 | $cflags="-g -DDEBUG"; | ||
| 175 | } | ||
| 176 | else | ||
| 177 | { | ||
| 178 | $cflags="-O2"; | ||
| 179 | } | ||
| 180 | $cflags.=" -nostdinc -I$include_path \\ | ||
| 181 | -fno-builtin -fpcc-struct-return -fno-strict-aliasing \\ | ||
| 182 | -funsigned-char -Wall -Wno-unused -Wno-uninitialized"; | ||
| 183 | |||
| 184 | # link flags | ||
| 185 | $lflags="-T"; | ||
| 186 | } | ||
| 187 | else | ||
| 188 | { | ||
| 189 | # compile flags for CodeWarrior | ||
| 190 | # additional flags based upon debug | non-debug | ||
| 191 | if ($debug) | ||
| 192 | { | ||
| 193 | $cflags="-opt off -g -sym internal -DDEBUG"; | ||
| 194 | } | ||
| 195 | else | ||
| 196 | { | ||
| 197 | # CodeWarrior compiler has a problem with optimizations for floating | ||
| 198 | # points - no optimizations until further investigation | ||
| 199 | # $cflags="-opt all"; | ||
| 200 | } | ||
| 201 | |||
| 202 | # NOTES: Several c files in the crypto subdirectory include headers from | ||
| 203 | # their local directories. Metrowerks wouldn't find these h files | ||
| 204 | # without adding individual include directives as compile flags | ||
| 205 | # or modifying the c files. Instead of adding individual include | ||
| 206 | # paths for each subdirectory a recursive include directive | ||
| 207 | # is used ( -ir crypto ). | ||
| 208 | # | ||
| 209 | # A similar issue exists for the engines and apps subdirectories. | ||
| 210 | # | ||
| 211 | # Turned off the "possible" warnings ( -w nopossible ). Metrowerks | ||
| 212 | # complained a lot about various stuff. May want to turn back | ||
| 213 | # on for further development. | ||
| 214 | $cflags.=" -nostdinc -ir crypto -ir engines -ir apps -I$include_path \\ | ||
| 215 | -msgstyle gcc -align 4 -processor pentium -char unsigned \\ | ||
| 216 | -w on -w nolargeargs -w nopossible -w nounusedarg -w nounusedexpr \\ | ||
| 217 | -w noimplicitconv -relax_pointers -nosyspath -maxerrors 20"; | ||
| 218 | |||
| 219 | # link flags | ||
| 220 | $lflags="-msgstyle gcc -zerobss -nostdlib -sym internal -commandfile"; | ||
| 221 | } | ||
| 222 | |||
| 223 | # common defines | ||
| 224 | $cflags.=" -DL_ENDIAN -DOPENSSL_SYSNAME_NETWARE -U_WIN32"; | ||
| 225 | |||
| 226 | # If LibC build add in NKS_LIBC define and set the entry/exit | ||
| 227 | # routines - The default entry/exit routines are for CLib and don't exist | ||
| 228 | # in LibC | ||
| 229 | if ($LIBC) | ||
| 230 | { | ||
| 231 | $cflags.=" -DNETWARE_LIBC"; | ||
| 232 | $nlmstart = "_LibCPrelude"; | ||
| 233 | $nlmexit = "_LibCPostlude"; | ||
| 234 | @nlm_flags = ("pseudopreemption", "flag_on 64"); | ||
| 235 | } | ||
| 236 | else | ||
| 237 | { | ||
| 238 | $cflags.=" -DNETWARE_CLIB"; | ||
| 239 | $nlmstart = "_Prelude"; | ||
| 240 | $nlmexit = "_Stop"; | ||
| 241 | } | ||
| 242 | |||
| 243 | # If BSD Socket support is requested, set a define for the compiler | ||
| 244 | if ($BSDSOCK) | ||
| 245 | { | ||
| 246 | $cflags.=" -DNETWARE_BSDSOCK"; | ||
| 247 | if (!$LIBC) | ||
| 248 | { | ||
| 249 | $cflags.=" -DNETDB_USE_INTERNET"; | ||
| 250 | } | ||
| 251 | } | ||
| 252 | |||
| 253 | |||
| 254 | # linking stuff | ||
| 255 | # for the output directories use the mk1mf.pl values with "_nw" appended | ||
| 256 | if ($shlib) | ||
| 257 | { | ||
| 258 | if ($LIBC) | ||
| 259 | { | ||
| 260 | $out_def.="_nw_libc_nlm"; | ||
| 261 | $tmp_def.="_nw_libc_nlm"; | ||
| 262 | $inc_def.="_nw_libc_nlm"; | ||
| 263 | } | ||
| 264 | else # NETWARE_CLIB | ||
| 265 | { | ||
| 266 | $out_def.="_nw_clib_nlm"; | ||
| 267 | $tmp_def.="_nw_clib_nlm"; | ||
| 268 | $inc_def.="_nw_clib_nlm"; | ||
| 269 | } | ||
| 270 | } | ||
| 271 | else | ||
| 272 | { | ||
| 273 | if ($gnuc) # GNUC Tools | ||
| 274 | { | ||
| 275 | $libp=".a"; | ||
| 276 | $shlibp=".a"; | ||
| 277 | $lib_flags="-cr"; | ||
| 278 | } | ||
| 279 | else # CodeWarrior | ||
| 280 | { | ||
| 281 | $libp=".lib"; | ||
| 282 | $shlibp=".lib"; | ||
| 283 | $lib_flags="-nodefaults -type library -o"; | ||
| 284 | } | ||
| 285 | if ($LIBC) | ||
| 286 | { | ||
| 287 | $out_def.="_nw_libc"; | ||
| 288 | $tmp_def.="_nw_libc"; | ||
| 289 | $inc_def.="_nw_libc"; | ||
| 290 | } | ||
| 291 | else # NETWARE_CLIB | ||
| 292 | { | ||
| 293 | $out_def.="_nw_clib"; | ||
| 294 | $tmp_def.="_nw_clib"; | ||
| 295 | $inc_def.="_nw_clib"; | ||
| 296 | } | ||
| 297 | } | ||
| 298 | |||
| 299 | # used by mk1mf.pl | ||
| 300 | $obj='.o'; | ||
| 301 | $ofile='-o '; | ||
| 302 | $efile=''; | ||
| 303 | $exep='.nlm'; | ||
| 304 | $ex_libs=''; | ||
| 305 | |||
| 306 | if (!$no_asm) | ||
| 307 | { | ||
| 308 | $bn_asm_obj="\$(OBJ_D)${o}bn-nw${obj}"; | ||
| 309 | $bn_asm_src="crypto${o}bn${o}asm${o}bn-nw.asm"; | ||
| 310 | $bnco_asm_obj="\$(OBJ_D)${o}co-nw${obj}"; | ||
| 311 | $bnco_asm_src="crypto${o}bn${o}asm${o}co-nw.asm"; | ||
| 312 | $aes_asm_obj="\$(OBJ_D)${o}a-nw${obj}"; | ||
| 313 | $aes_asm_src="crypto${o}aes${o}asm${o}a-nw.asm"; | ||
| 314 | $des_enc_obj="\$(OBJ_D)${o}d-nw${obj} \$(OBJ_D)${o}y-nw${obj}"; | ||
| 315 | $des_enc_src="crypto${o}des${o}asm${o}d-nw.asm crypto${o}des${o}asm${o}y-nw.asm"; | ||
| 316 | $bf_enc_obj="\$(OBJ_D)${o}b-nw${obj}"; | ||
| 317 | $bf_enc_src="crypto${o}bf${o}asm${o}b-nw.asm"; | ||
| 318 | $cast_enc_obj="\$(OBJ_D)${o}c-nw${obj}"; | ||
| 319 | $cast_enc_src="crypto${o}cast${o}asm${o}c-nw.asm"; | ||
| 320 | $rc4_enc_obj="\$(OBJ_D)${o}r4-nw${obj}"; | ||
| 321 | $rc4_enc_src="crypto${o}rc4${o}asm${o}r4-nw.asm"; | ||
| 322 | $rc5_enc_obj="\$(OBJ_D)${o}r5-nw${obj}"; | ||
| 323 | $rc5_enc_src="crypto${o}rc5${o}asm${o}r5-nw.asm"; | ||
| 324 | $md5_asm_obj="\$(OBJ_D)${o}m5-nw${obj}"; | ||
| 325 | $md5_asm_src="crypto${o}md5${o}asm${o}m5-nw.asm"; | ||
| 326 | $sha1_asm_obj="\$(OBJ_D)${o}s1-nw${obj}"; | ||
| 327 | $sha1_asm_src="crypto${o}sha${o}asm${o}s1-nw.asm"; | ||
| 328 | $rmd160_asm_obj="\$(OBJ_D)${o}rm-nw${obj}"; | ||
| 329 | $rmd160_asm_src="crypto${o}ripemd${o}asm${o}rm-nw.asm"; | ||
| 330 | $cpuid_asm_obj="\$(OBJ_D)${o}x86cpuid-nw${obj}"; | ||
| 331 | $cpuid_asm_src="crypto${o}x86cpuid-nw.asm"; | ||
| 332 | $cflags.=" -DOPENSSL_CPUID_OBJ -DBN_ASM -DOPENSSL_BN_ASM_PART_WORDS -DMD5_ASM -DSHA1_ASM"; | ||
| 333 | $cflags.=" -DAES_ASM -DRMD160_ASM"; | ||
| 334 | } | ||
| 335 | else | ||
| 336 | { | ||
| 337 | $bn_asm_obj=''; | ||
| 338 | $bn_asm_src=''; | ||
| 339 | $bnco_asm_obj=''; | ||
| 340 | $bnco_asm_src=''; | ||
| 341 | $aes_asm_obj=''; | ||
| 342 | $aes_asm_src=''; | ||
| 343 | $des_enc_obj=''; | ||
| 344 | $des_enc_src=''; | ||
| 345 | $bf_enc_obj=''; | ||
| 346 | $bf_enc_src=''; | ||
| 347 | $cast_enc_obj=''; | ||
| 348 | $cast_enc_src=''; | ||
| 349 | $rc4_enc_obj=''; | ||
| 350 | $rc4_enc_src=''; | ||
| 351 | $rc5_enc_obj=''; | ||
| 352 | $rc5_enc_src=''; | ||
| 353 | $md5_asm_obj=''; | ||
| 354 | $md5_asm_src=''; | ||
| 355 | $sha1_asm_obj=''; | ||
| 356 | $sha1_asm_src=''; | ||
| 357 | $rmd160_asm_obj=''; | ||
| 358 | $rmd160_asm_src=''; | ||
| 359 | $cpuid_asm_obj=''; | ||
| 360 | $cpuid_asm_src=''; | ||
| 361 | } | ||
| 362 | |||
| 363 | # create the *.def linker command files in \openssl\netware\ directory | ||
| 364 | sub do_def_file | ||
| 365 | { | ||
| 366 | # strip off the leading path | ||
| 367 | my($target) = bname(shift); | ||
| 368 | my($i); | ||
| 369 | |||
| 370 | if ($target =~ /(.*).nlm/) | ||
| 371 | { | ||
| 372 | $target = $1; | ||
| 373 | } | ||
| 374 | |||
| 375 | # special case for openssl - the mk1mf.pl defines E_EXE = openssl | ||
| 376 | if ($target =~ /E_EXE/) | ||
| 377 | { | ||
| 378 | $target =~ s/\$\(E_EXE\)/openssl/; | ||
| 379 | } | ||
| 380 | |||
| 381 | # Note: originally tried to use full path ( \openssl\netware\$target.def ) | ||
| 382 | # Metrowerks linker choked on this with an assertion failure. bug??? | ||
| 383 | # | ||
| 384 | my($def_file) = "netware${o}$target.def"; | ||
| 385 | |||
| 386 | open(DEF_OUT, ">$def_file") || die("unable to open file $def_file\n"); | ||
| 387 | |||
| 388 | print( DEF_OUT "# command file generated by netware.pl for NLM target.\n" ); | ||
| 389 | print( DEF_OUT "# do not edit this file - all your changes will be lost!!\n" ); | ||
| 390 | print( DEF_OUT "#\n"); | ||
| 391 | print( DEF_OUT "DESCRIPTION \"$target ($libarch) - OpenSSL $nlmverstr\"\n"); | ||
| 392 | print( DEF_OUT "COPYRIGHT \"$nlmcpystr\"\n"); | ||
| 393 | print( DEF_OUT "VERSION $nlmvernum\n"); | ||
| 394 | print( DEF_OUT "STACK $nlmstack\n"); | ||
| 395 | print( DEF_OUT "START $nlmstart\n"); | ||
| 396 | print( DEF_OUT "EXIT $nlmexit\n"); | ||
| 397 | |||
| 398 | # special case for openssl | ||
| 399 | if ($target eq "openssl") | ||
| 400 | { | ||
| 401 | print( DEF_OUT "SCREENNAME \"OpenSSL $nlmverstr\"\n"); | ||
| 402 | } | ||
| 403 | else | ||
| 404 | { | ||
| 405 | print( DEF_OUT "SCREENNAME \"DEFAULT\"\n"); | ||
| 406 | } | ||
| 407 | |||
| 408 | foreach $i (@misc_imports) | ||
| 409 | { | ||
| 410 | print( DEF_OUT "IMPORT $i\n"); | ||
| 411 | } | ||
| 412 | |||
| 413 | foreach $i (@import_files) | ||
| 414 | { | ||
| 415 | print( DEF_OUT "IMPORT \@$import_path${o}$i\n"); | ||
| 416 | } | ||
| 417 | |||
| 418 | foreach $i (@module_files) | ||
| 419 | { | ||
| 420 | print( DEF_OUT "MODULE $i\n"); | ||
| 421 | } | ||
| 422 | |||
| 423 | foreach $i (@nlm_flags) | ||
| 424 | { | ||
| 425 | print( DEF_OUT "$i\n"); | ||
| 426 | } | ||
| 427 | |||
| 428 | if ($gnuc) | ||
| 429 | { | ||
| 430 | if ($target =~ /openssl/) | ||
| 431 | { | ||
| 432 | print( DEF_OUT "INPUT ${tmp_def}${o}openssl${obj}\n"); | ||
| 433 | print( DEF_OUT "INPUT ${tmp_def}${o}openssl${libp}\n"); | ||
| 434 | } | ||
| 435 | else | ||
| 436 | { | ||
| 437 | print( DEF_OUT "INPUT ${tmp_def}${o}${target}${obj}\n"); | ||
| 438 | } | ||
| 439 | print( DEF_OUT "INPUT $prelude\n"); | ||
| 440 | print( DEF_OUT "INPUT ${out_def}${o}${ssl}${libp} ${out_def}${o}${crypto}${libp}\n"); | ||
| 441 | print( DEF_OUT "OUTPUT $target.nlm\n"); | ||
| 442 | } | ||
| 443 | |||
| 444 | close(DEF_OUT); | ||
| 445 | return($def_file); | ||
| 446 | } | ||
| 447 | |||
| 448 | sub do_lib_rule | ||
| 449 | { | ||
| 450 | my($objs,$target,$name,$shlib)=@_; | ||
| 451 | my($ret); | ||
| 452 | |||
| 453 | $ret.="$target: $objs\n"; | ||
| 454 | if (!$shlib) | ||
| 455 | { | ||
| 456 | $ret.="\t\@echo Building Lib: $name\n"; | ||
| 457 | $ret.="\t\$(MKLIB) $lib_flags $target $objs\n"; | ||
| 458 | $ret.="\t\@echo .\n" | ||
| 459 | } | ||
| 460 | else | ||
| 461 | { | ||
| 462 | die( "Building as NLM not currently supported!" ); | ||
| 463 | } | ||
| 464 | |||
| 465 | $ret.="\n"; | ||
| 466 | return($ret); | ||
| 467 | } | ||
| 468 | |||
| 469 | sub do_link_rule | ||
| 470 | { | ||
| 471 | my($target,$files,$dep_libs,$libs)=@_; | ||
| 472 | my($ret); | ||
| 473 | my($def_file) = do_def_file($target); | ||
| 474 | |||
| 475 | $ret.="$target: $files $dep_libs\n"; | ||
| 476 | |||
| 477 | # NOTE: When building the test nlms no screen name is given | ||
| 478 | # which causes the console screen to be used. By using the console | ||
| 479 | # screen there is no "<press any key to continue>" message which | ||
| 480 | # requires user interaction. The test script ( do_tests.pl ) needs | ||
| 481 | # to be able to run the tests without requiring user interaction. | ||
| 482 | # | ||
| 483 | # However, the sample program "openssl.nlm" is used by the tests and is | ||
| 484 | # a interactive sample so a screen is desired when not be run by the | ||
| 485 | # tests. To solve the problem, two versions of the program are built: | ||
| 486 | # openssl2 - no screen used by tests | ||
| 487 | # openssl - default screen - use for normal interactive modes | ||
| 488 | # | ||
| 489 | |||
| 490 | # special case for openssl - the mk1mf.pl defines E_EXE = openssl | ||
| 491 | if ($target =~ /E_EXE/) | ||
| 492 | { | ||
| 493 | my($target2) = $target; | ||
| 494 | |||
| 495 | $target2 =~ s/\(E_EXE\)/\(E_EXE\)2/; | ||
| 496 | |||
| 497 | # openssl2 | ||
| 498 | my($def_file2) = do_def_file($target2); | ||
| 499 | |||
| 500 | if ($gnuc) | ||
| 501 | { | ||
| 502 | $ret.="\t\$(MKLIB) $lib_flags \$(TMP_D)${o}\$(E_EXE).a \$(filter-out \$(TMP_D)${o}\$(E_EXE)${obj},$files)\n"; | ||
| 503 | $ret.="\t\$(LINK) \$(LFLAGS) $def_file2\n"; | ||
| 504 | $ret.="\t\@$mv \$(E_EXE)2.nlm \$(TEST_D)\n"; | ||
| 505 | } | ||
| 506 | else | ||
| 507 | { | ||
| 508 | $ret.="\t\$(LINK) \$(LFLAGS) $def_file2 $files \"$prelude\" $libs -o $target2\n"; | ||
| 509 | } | ||
| 510 | } | ||
| 511 | if ($gnuc) | ||
| 512 | { | ||
| 513 | $ret.="\t\$(LINK) \$(LFLAGS) $def_file\n"; | ||
| 514 | $ret.="\t\@$mv \$(\@F) \$(TEST_D)\n"; | ||
| 515 | } | ||
| 516 | else | ||
| 517 | { | ||
| 518 | $ret.="\t\$(LINK) \$(LFLAGS) $def_file $files \"$prelude\" $libs -o $target\n"; | ||
| 519 | } | ||
| 520 | |||
| 521 | $ret.="\n"; | ||
| 522 | return($ret); | ||
| 523 | |||
| 524 | } | ||
| 525 | |||
| 526 | 1; | ||
diff --git a/src/lib/libssl/test/SHAmix.fax b/src/lib/libssl/test/SHAmix.fax deleted file mode 100644 index 83bcb14126..0000000000 --- a/src/lib/libssl/test/SHAmix.fax +++ /dev/null | |||
| @@ -1,129 +0,0 @@ | |||
| 1 | [L = 64] | ||
| 2 | |||
| 3 | Len = 16 | ||
| 4 | Msg = 98a1 | ||
| 5 | MD = 74d78642f70ca830bec75fc60a585917e388cfa4cd1d23daab1c4d9ff1010cac3e67275df64db5a6a7c7d0fda24f1fc3eb272678a7c8becff6743ee812129078 | ||
| 6 | |||
| 7 | Len = 104 | ||
| 8 | Msg = 35a37a46df4ccbadd815942249 | ||
| 9 | MD = 6f5589ea195e745654885d50de687d7fe682affc8da1fb09e681540525f04ecb93022361a27759b9e272c883564223c5e4ecafeb0daaf1abce6caa4bd4153379 | ||
| 10 | |||
| 11 | Len = 352 | ||
| 12 | Msg = a93aed0fa5e163a82c9a934aebaab8180edf7de0b32f0fe99f9c75ec305b24609334cefa372c7c758262dc8f | ||
| 13 | MD = 66a16799d606c569d2fcd70d7d8321ec90ef61711481aaf7d747744ebfd08ec2e7aead49429af7b4ceec6d8e147ed018e034efbe07982699e818db5fc4b1d71a | ||
| 14 | |||
| 15 | Len = 1016 | ||
| 16 | Msg = 433e88eb2f8aba562d15c18126fbdffb81d5d6c9397fa052321f5f78cd629708ba099b540da5451e949eeab8687a8d6ac35c531411cb37144ab5ff6a7eb46f1ab28fbcd2ea0444cd87c57bf7d3c02952dba3d3987da07622c16e7c086d90e88ad3d9d4afee301d2bad915d868f54197b70b23c9fa385c443404fbc9abf7e6a | ||
| 17 | MD = 790bc4844e9aeef8938df0ccda17890556a4151817111a526a88919cfb172f0b03c216080c1b60210eb1942097f17b6d0691bf5b018b6d959198d6a694b922c9 | ||
| 18 | |||
| 19 | Len = 13696 | ||
| 20 | Msg = 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 | ||
| 21 | MD = a86e07bcd19080d4a83e1384bd8189f60a7dd7a6998406ade0bf03f805375bd823c7656dd51cd9d63e542f8ade41f16d73794d60d0906424133778156ee54b95 | ||
| 22 | |||
| 23 | Len = 100816 | ||
| 24 | Msg = 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 | ||
| 25 | MD = be3cfa6c965b2ee4e6fb0236665b0b95f66c8da8b338375b7393672283b0e50b96112d7cb76fffaa6db8ea4a7687fc6234dc1ee52e764d69ba8ac40c0f51beba | ||
| 26 | |||
| 27 | [L = 48] | ||
| 28 | |||
| 29 | Len = 16 | ||
| 30 | Msg = 3a35 | ||
| 31 | MD = 87bea682792f6bb4977fe1b92e0cc7017413dd263732c3604f0ebd63c2817ce5ddc5d78c0137f614a06e72ab1cab2f4c | ||
| 32 | |||
| 33 | Len = 104 | ||
| 34 | Msg = 7db15b3ee240b45d4610950996 | ||
| 35 | MD = 7311a6356ab38a690c0b3a1581c3e7b6de418996c05e79849891b061c51d53dffc0fff2b8ad1c1eff165aee5ef6e18ff | ||
| 36 | |||
| 37 | Len = 352 | ||
| 38 | Msg = d2a1efc725c46cd6a19760f49edf0bae823c1b4992ae2260085746cf65833bd008e56e64002383f51f960239 | ||
| 39 | MD = adb1778360ec659e90609e74b6af219a01a024f216b68aa944841429ed5b03b139444b8b848f73fd5f350ef02d46b6ce | ||
| 40 | |||
| 41 | Len = 1016 | ||
| 42 | Msg = d11ad1253592c094746da7b5c88d329bc3ce1929913b8be07e82d3f6b7a536a855f31ad197376eba6f2f4534413fc4e4e7673fdff8739f774a710754b568b7c61a473059a41c98aa4e86617aa66d2601d0f0d584cd9f132afeebdc0ce3da6a8b290059e6e4aa080c195c42ae7f7e1e99865223439929b0a3a0d79b46ca6419 | ||
| 43 | MD = 0cbec7be7299f48f043c3d1aacf833b4258c32190a21a8ac2471666b4a51b63cc77fff6e081aaf5ef21b1b7523d65763 | ||
| 44 | |||
| 45 | Len = 13696 | ||
| 46 | Msg = 2f7a9929dffaa4a4dcfeea1fc37b18e3cf935abbaa17cf9d834b3a8d61e9fabfb7683cfc387d6f46ece3f8bf845827c7ebe86a651d6dc1e83c5772cee1a9fee4b04453af2f68430bd87835126cfd1b3f8beea4d3822fb27864570e255cb65b414197480b6bc20a39c5450adf2474da93d72f6ecf8063899722d3755b7a19f71e93e782d89593ab19ddd3ddf053c54e0bf832311fbf132e8b9e540f38e4d9bcc3cdbf69de54e40ef348a9170ba2f65def167f568ce846889c0161448342fe907718a465e451bc1b0f2e4f21f9b911f186589f43dea305811473837c063b915d849c20deb43323bab4b64e61823f1df119e71962dd975700391b411f8778980a3080ba3c14a321d32c082d416ddd2345f0eb751a516d44ee55222395cfa11e7fc4edfbe7cd49bf4ebd4d7428843a2ad5538b3cd201ccd431aeafb146a65d28a4870a6948a7cc0413b0adac7e8dff3a898aeff5f4b65d10b28ceb749bd354c061c3008ec569d5f90a4d4f5caa51d35b49dc4028e738c8ff5939fef3fa202fed9ebef6f2c7dd0ba41cdb5c0c16985f96fd93a65d134fb4a90ffc0fb6cc5396b843c2151bb7c9170f2fa4fb44292a4af28df5481de0c3c917ba1c46467a35302738158493fbf6a0422cee558d4bce3d78e14b4fefb65bb05043e2cc2a6a8ea64565ff6ce2fd2c4f43fc02926ee44ee02fe1dce25cfde0115c9396c9ea06269f17b2caf58e2332cc1c8528d9705c70da1f76f22aeb1d1b93449180640fb5c4c4a708bc4621d7d2bed5b1a752191cfdd45086d34f247ed1df0f24e7c620de32bdfc4d1f882380d2cd7467c926f48abc75cbfac8788f88cd9dc5361517a5eb36311e6b39e21a85fba2038fd47d860f776697bb19cdb5a4d6746fae507e274399c91648537d905015e58910117e5914f44ebcb00e771d38b30c1473e1232d4e222cebceb4810c48e83e0fd4c852f4fffcd643c0ef9e4fae2d0ebc6f102f3f749b02a5e3a61517d53b539cc24120df3957a633d50369d46c0c226f8924cae51dcaf54d716f61385fd8cf38c2c311a32bcd6594d6930133dc18ef36a9671ba8b179abe95f588ef74e8558ebbc974dc73c26bb6eaae78ef464181e18b71f4b0f986ecc8495a9c4dc0b0b96be9806fbd3d32952ca3b4737a06ed6561e9c9581a33a720123fbaa2a70fc3233b83e56444f5aa0cfaf70fb24be6118404f3e11e6ea004cf2d079a3e93a8ac1d4e297cf4fc43851dd26314a7ed6a5a784b386daa26e50c64692f7db28c21d82234289bb45bad5042236667e6d70a24bc9525c3adcb793a6a5725d9b10911e3bc8e3fd604db7998346e7f7dd1815c0cbb735a977bd4b32b5b976932bc92ef3b56bcadc089045ec95f241cdb0a84c67f1f76353da6cb493bb27a881d37a2106b8b3010cf935eb3601ce4dce3e449eff8331e444ab117a20809a1010db4cf3be0c488f777b6532df908112e3d11592f04a0cc16232d62340cbb8b5268a662b8278d37c03d848a04f0ab498f5af43b0a20e310197b7e1395a65299fac29f051bcc5fcd09a5605bfee370ee8ea21f5807d9748acca815a44d81796d68b0014eed3bb6a94233fc51725de3809ac6f538beaacf8cbe3d96aca21a7a763a957f8892f22c6d086d9af2e5ac9d90321e186584f17e964c90739559ddd034df076c4aa38c2b78aab6dec8ef6be9adf33bfb66f159ec4826653ee6cb483539c47a4a1d95663e6cc7a42a3bf628623a4c9500a59a50a312aa104b198ce5f3e58952bb79ff1ccfa9ddba2fd4705e91b5acaddab9d6522d7666264ac5f533b6d8ac4512d8371c69c06b6d322b046ae2a0a20aec1c3bfb05f3d91b9044cabdd873abb5f2b0e3e19740df31e39828f9ff9bbb20b73541a7a70b8174ce4e43e0d356e629cdbc6c08d29bd7acb6a4347823075683ce9d7de4ab3ddda6572b175951f30a15263355fe9641b3322df7dd52077402a884cd472e6d0b6c34cd63ab63cec8760c7ebe384f7cc31066bbdb7a3417425e039c4d340166e4bba4839076ac9457c87459c57957d0a06dced2f7a18acd22b7295785dafa435a2a8a2c3a1fa05d115fe129d19fc44c5a29bf15b4d9c2b375bc8e591f92756cfc573a39b8fccb8395cad7617b11f14a60e2dbf69b897844cbbcb70363010f6e1bc0590ea594aa924597dbb32a868b55551789f82437180b85661809089d34a168d44b4d788dba23b13542715843eee797366d9ce7793e72331735bc78cd61b13421a568ba3e66926921c04e9d00888ba7ddeb474db63813756ea4a02c1823083e36ebd2d32d5c88cdebb98d511304cc276c7799cf84a1699ccac9569b13f530c762732e6bd0f8415001b2c02d11dff36660b717054b16df49ba38425e3764a56052ffddecdfc686aff22079897376cc15591e11579fe4feeccb55f | ||
| 47 | MD = 70e1259106fc7a7c6be11d95fb673bfaf0074e342fdaefb458faf4619e7f0edbd68d509b9ca7243d2e5e039d42ee3b47 | ||
| 48 | |||
| 49 | Len = 100816 | ||
| 50 | Msg = 5f464d3301c5e0871d6b41b002dcd09abc80a805de3482d97f3fd7b9838745da1c0534168f76b93c3c53bbabd904541ffe5179cae619dea77446140b7400f47d242141c7f2e9894d88f44c9e066861498e7394f206f594a419790d697f6a11187f84bc6fb288186109343eb11172bec076d041a4c7306d7978c009fc2d2d62563614ed3555ba2d21c8fcd70e8389352dbe4ec808af3231ce990452eb05b1b0dc4fbb1b4265e69235cc3561dae4148c386cd770474863a84a822b2e5f905fc255d55f90bd6a760d441dc52240ba7d8c888a5283891a2c99963d1fe680549d6267cdea92cfead167f6c49663668f2bfdc61fa647f5abf3ce5ad2c6c175dbd456ba41436aa06f5f68f5c88e6b74ea86a79934bd05b486210d3d470a0967ad6d67f7385260578088d7e63197849354f651aad07e04ed301f1fe7a6d2047d50ce5dc6bbffbb1da6b47d740898f4eb54e3c5a1fbd18ec93254cc01f705fce04e6100ced132c519674b2345547804a372b5c925bd9ee9701527db33408d37b72f8d18b882d3c4744eb58f011d21fce336d426de1fcd5e09610216248b51fe2b79b96c2bd6ca0155e05a8a516b7a24d529a9a475284735bd9c4c437ddf399864b64fc5d0d6ffc4e5a7a3dbdd476bc39ed29a0a92e1f2b6b3506c2be5452d4f896db6eb4f895b554b2af64c4cb8dc2369b91022dc50b7291404cc9605c31569c32756a64ff8c4fbb0f1bca346c7b58a5c6774b2fc7f7fd50741d34c8564d92f396b97be782923ff3c855ea9757bde419f632c8399763003b58ee9140c2d62e914c1e1fa742661a9166d42267edc40905b35a25d5c3cb3fb457376b7422896df7bb19c23e8f764416731d2e20cf2c1beb8663c07edd8f105e078e2fed05c5e5897c430017fa2160f565a75a4c5c64a15dd7d644bf355d169ae2696ae5ed1a39e8f81055cdf315e5b0c6f9235515fc4dbf30281ef17b83a6ed604f89293904bf78c7183fcb0ab236cb1f8935e59c51559217efabc000b165d819b717118a03facb61a13a99b194f8b6c7ddfe5850127d79078397a56564c7ed6716a129409680434061b2a4782c9006587de927c1ae09d6778a5f1c39fc419fe10493eb0d4ad492fbd05485eee7913c59df82fe7182af2cf06a6e8edf06676200077bd1408f5c1cec537cb8566470cb44895826d04ec20f0aba4297c501add65c75d5767ad2ab63aa81b7b66f01b32590f1d55b7e50e6df1ee077a19c8c895f5ef62d452cc336e9aee171fa997ddcedd7af86e6cc37722fb5838a46c5e58e7f700edfb7c6bf832171d9581f660752867118e9535a6118635709d6f1c1cb21b938068958e956149d9bffc67f355cb88205d4894ba97c3e3c8be9fa2d20abe79f3f93a6a2f4f56fd075bb49a4b7dc83630e58c32a29d757fdbcaa607352f65483cf2cb4208a3bf94ca7a25e2a4e05279be31c33696c10fa4971d1b64ee938dd299f483e5c098845749a3b706a787529bf2ca56693d0a7a98243e6482a43e1f5d3086ca1b00368d8ead5ed2d0fb79b1e2f537ab9340809ca3a9b5eb2900390432293008ab7086c2811d33de0648be5597ef002c7c462b5e0f4e0b1720a98b2299ad7aa55eb78f0c77c2ab4371385f280107ae40ebf814a8223dc74f31483c63d9e4ed09fc7e5a51bac34d69d97163116a66c84ea9fe4263269b71fd228555ae3cf5109c4d6ced7b9049a2b8069bd2f71834d6c07fffbd7561939188bc07dcea08086bc7182a5270427c3199bf5fb5c4549861fd32a38ec81c4ab058c777dc01864787f0275f911a17838272cd65135f66baf06d8d93bc439eeb55d50b7c5adafed8eb8140b4b05f59871dacf954f4b096c30b7857774fcd319c096750bf605db8e31fe02cd1b9294eaf8bb009d4609f2cdb3a8657f650501b8553765de8f572fb91ac77b35db35f402453e5c58f60146f2906ff56b9c6b3a5d0bb6afb9e2201110919ac9c01a7e9750dfdb2f72afbf7a8d6f64b1c68b9de17a2c9abf289eef24074eee9b1649caf3693118165503a30200993d271aa31b8b92606a10a52612dd1fab495b82f9a98cade18b9d8a723a71ceb63fd1d27372bd281f9b40aa1839b0cc2f2177a09aa8e7b159ac118d7c145e7a4f032e788d21facde2b4dbc1d5d2238f530d9bf9bd2798f611d03ed8919f0c85bc2da99750b7a8d6322d2e66ff6ab9ebaf7424e8c1c3f4fe92be61f65359106395f5ef995e925be3868ad513f561f873acdbaf18590c903d64bd275121c11ea655124d091740887868544c5348664399d3da96e2e35fff34f062fb939d656bc072096e510b40b2f75ff010af68d64fd0acc778e2e13c9667de266b1816c4ac449521b02bbb217002c604be72e73051aa9048d192e3210a68769dd2693e5d44951711aed3a751240d42f8925844131daa36c51d7d59bbaf99623fddf1649db954705fd6f3405e63894f5258c9ffecf83208c2c90cc55b1a8d2972ea6b3a049ee54942b50526b7930953986e428b2c75e47ed870bba68dbfa624dd94112f3059da0a80c583baeb570fe8314f5c66501b34116c81148dd22396fcd6479da49f7e952c8084f97d6803ff85c3787222064ca368f596a1ebb6dab20a03916b3ab071c927d87fc10ecc4e7ab4a5761e3eadaea4de1a0dee30aa39a9e4dbee047201d7d8a4df1284cf668ae3ed7dc4cb2cc4b5cae9307353fd2ae4c105c5d9f3bb021535fc3ae9bf3ff54ddda8b2e1037cd9d69822df436dc1c750a9f557d1a3a63fbe73c64261dae0c70bba6edb57519f5b957f138d1aa5fefe01b73c1851aea42938147bac2762527a492cb85da43014c876e223b05597354d7c9b328df67f354d168a84ce86dff57d8a870db034196dbeff83ebef80bbe52425a8810f2c9fea29ee688a201cce4a5f447be789a3881a9da3b6c491288e8f1091719032608b332e0410f4576597e17e0b5dde305f069be2e80d565bb979a3915488f88e3ebb90e81c264bcaddd72b8843af4a4ae31f723d50fa0995b027c334c351128913bb93e67b1b08f101f6b8dc8202b44fbc3d3dfb530f66e5a8f35e69725c86998c05ac87c561a4706e90fa095adab4a566da4fab82bff6b20076e5bdf62dbd6614245b6a6f8cb6bf60106f8d12b9c3e26f8127dc547e2181531ce980a3273f452892110cfe1ea834a30f99d66e026a9d22dc76fc3cec8fda2d7fea701deb84dd45c97dcde57a017693e90983a156f11c4d168d89c06d8a32dbfa590adadd16850854f24bba315b0bbf372f03711a20163afa0c137383b9120b26c59f5e9e7cd2ccaf0ef4e0d70d5a81748ad441ee5fe178e14317cab184fe178fb0cc0d82105d2f423467fdcda0f9871b9d84882609248356f3053a99866dad9f9b0f8c4a897a8cb8f30365a7ae5f3ca6e772d863d445e6d57c6a478e35d719d0e4e84f3a30b1816ddb55bcd79df21ea0e95da72a19cc1fe74fc576120bc108be3ed4cae3bea889fb4ddd67efe858a994237378eb623dab070d954ac780c1e6d2095383c98ba622cbdb18fb53260979fb2672c21a4600f4bf06583a112d303096d4e30e7e1060d869f386eba3cf7aec3052ca17593dcc9969fa9cd88179c262770211cf53f53f175037a5cd445d239cee48f7ed0aa1d715a22ac18a8aeecf191d415e4afd92b76c091803f4c757a9e89f696ab7b11ad6d5f24774e4a004dcb0e3f33705dd8150431f051016af37647b9e44b10bef114276d4b1055b634461c655a82a847639a038ec9f58876e84e9a2955b696e072d8054c3f81173473604d5fcc0a75b4a340dba0c375beb87b8b01a0f2de232bbb8371c3a9d27a0ce521c4c43dd3bdeebf92f42f87d88978d5b4e3e563cba0e5f59dd29c31096885b113ea5c57e66a3be015b703bc26d3fd1d51a7c14f85f65747ac909d7e30c8e800be27eebf4a62e42e538ae30b6883907cebb7fc5e150bc9da3a138f394e817df9a9e44420078f30d0d3d6981ca581791a097a5e3982c983d5cec239096c7d8cc55c87242026d769ef1d04eb96e5b5001e3358af88d417cc61f107659791a35d8b5f7a5767ae24d5b2ba7aa12230076db1f1b9b6f213dceea62949d98bc5db38743b23a59ea75dbe4231a285678f5f07facc053c2048022fcb01f15e8c100d64a877ecd56d196a6ac60ae35e0e09a517224ba409ba7b70d8f9fe65bc427b212a4e9b3cb17b0d332267cea4f3bea7c1e550f7ffe567b20e3057aa0ebb560d00d28e2f7aff718a9f2d4d044f0d20709bb9ad567c98cff7c4810e8c542370cf90a491bc1088f69998d59f344b74db6c1bdb61f284e99b517a11452ca0bb37c7bae77fca6514b341066086e600f098a32a92935380a173c9182a2513584c54ff67e580dfe16b508acf1729a3d649ff1eae286bffd688fe658612d6c8e69e6e7f7de4ba85ec54747cdc42b1f23546b7e490e31280f066e52fac117fd3b0792e4de62d5843ee98c7201529455c85b169fdb90cb05e3403cf2f737148bd20a53c73880880a14ffff37d62130e682e50bc7210ea6c1f0c27656cc1785a0d9ce93ff94dbc5b2877519d9bac4a339e98ec594a7cc76f4ddf994fee8070dd4b8e0fe0e51b93105fcf566f83d914dd862b4ce78de7e9e16f142234bd969ff8005dddc641dcd3c7cfbdd6113cd3ba34a9503a0f433899e90e158abde2ed4ed4b3711c991577c5aafeaa982bce80835f8e6d7c7975571fafb1499991646bc499ec32930367d4b1de76ff656442cab987bdecdbcc2b2bc35ce01816594bfa4b6e33080caa41dbdf8ebf2205649f98a2d3bf331fb16b9ecd1824eacbbc9f81297b115b4d36aa7496e05f7d40d4edd1886c1bac10cf3f97840a03277e6369e7a7e90d932050ab8720fce076de5c355fb17959bd75cfaeff325b0737f8f5b1160de0b0184ba04afcc30bca77a6a37e29662302d01858c0bc1d32b883011b7df5a387805296cd91bbc835a3e76152d017ee929d4cbf137eb78db89d71617dd76cb00707aacb8088ac77a1f52ed710331193edb29933a7efd8cc153e6adfc2c6637e88cd86b06036b8177847b4d086b0ff9b5dc91f3cbd1c08217023d7449253c25331594f0f16a3c5f2e122e0145c4ec94f096b45a1fd0b2dd3f1d51e58978471782a336eae49d7bc4e050d1c6a391658f71a1f752c0ec6302bc2dba9e3766359359ce34955a2db86740c90d09cc50e92dbb76e17a39955fa7108bddeaddaf860d1aff14acec8b609ac1d336270a940604209df91cf45be72edee04277d694a6f968ae6d8e065702f3d607f3baf8db4ab7637fa4c78bb0b7fe69937eb1dcb616fca564a5a521e12df71fefbc321187159bd6a47b066a3440ba634de9153a94546b63aa33aed9da2018e1f30628df37f5360ca4f2660a46ffd73e58183e8abffdea25f7bdf798a2b7cddeaa481bcc6e682a67e99143066963d96d4a928a478951dd6ec59b1be8cb23aa688e1867738aecdd9afade39c92c0b2572bdde84eb912ed990ac618834c412231216fdb84f1e01b3f8414fc6dd0f646fd0fa62bb0157b3535e1497c9272df1cc5dcd4e6ab9a8456222655c56ac73fe0d2aa8b599035daddf0986a45b1a59510abe19a11b6dba065c8bcf8a85d20a3681c2414dab7c036cc1358b1dba98d6ae62c5948c36b5b3e307a6f860c0c822ac724a5c917ed5f98ece548a7a741d366868e6c676394c3659f7f6786594196dde332543376f9ba0724b091d30f431f91d919417e5bf7ba1e9a21cb80f6c204c3a58d59d960a5788b5cba5abd7c7518f4c5170115125de97009a6c3fc4d5773e4f57fdd433eb7422c7c4dccee57a1679633ced3b5f08df763d4577983c5ca8b49bc4e08fa76f8bff36daf0fed068db47f0c87e0e45d518dffe37c129cc6e2f5f9e0430185723098e715284a42f302a6b8368a4f2dc16f534d1e5db9d0b86659fc4ba6f16c982774115d02a57684c7e5489b1f491584b0f0546e4194a6041f5e5be3bfff3852a4fc772d83491023a61a37228ef6260edc0d1cb972cba610d5ad1d92d554700771d8236ef55e983765ed8eb21e7de7c8bb51aee9368758454fee4a3f32179c1e54af1d069e0b9728cd0554351907e018146511e4d6f0450b57c8ebd21c71450116296bdfc779945da60b9192c5bb9a67b1f04d94992df4cbb3e30732dc8af2177fef17e0b7d01740b8a64db16bc29c1e589b6bdfc967edeb2ce8a649ba892bc856a929f0b837a838ca7f917a52436ea3d20e72afacc5b9d58a7fd0fefd96787c65ffa7f910d6d0ada63d64d5c4679960e7f06aeb8c70dfef954f8e39efdb629b72979be208d616071289cfaa0756a4bb5eea5c7baf8fe7a31501e7e2d67d708d461c0c93e85f03afd70bd9e16437171e01a34f475e4b5a58d13ce4e2fba72bbba93403f3f8981e0bbd6a8a6223327bf096c44b36e0ccbf7592a98c1fa67f198b628787ec80aaef848b4fea158c715799e6f458327f399e6420f0e7821f2dc4663bbea065c7bdfe830b6102e2e7193381b9dc7f2381ba808c43b8fdf3addab4b5fa81564716f7d46e0349d9b27b559710d723c7ef2f79eb55c3a9d75b99ae6fde6877b278b583f8ae3cae776b914b0cae0772397fd19b6a27676c7ca02cd07f4b4d49bbe1ec87f2ac7e39e5f7712319c31271dbbbaf4b826af8a9f4acab696c62719f7a6a032c4bcf90922a3c630647b7c1c7b78b10afbd863f07486561a0bc8d9b1ff5fc41998a7e3c604e24af1c1df2da1dd5d83eefa2e4012f7fb5959ef9339574367deff73723484b5a969c8c23dc251a3b887f34b9ea09c9a1838e8aaabb254445d7556dda257dfd5579737fe1dd6c67f3851ca68b011e7cb7b6958d588f143828f0bb24fceca31b47b77d1ce05e75ab05b55d6c9f9107f0c738f2cf8a1629f7e9b2694324e082503937ff8ca7c5098f770289af7d038dcedcf0ed77c8b82e2a9003a6f3db69e14131e144f6be7cf0bb5353ea96aebd78befbc6ceae9bdde97823cdbc5ca8ef8a993a9d9383aee9f2d6a18fc64ab92990672ea2dc9b89ed248aacf7f1a513da43fe5953335afe76d78867a066f226ae9c727c6c60671c50a50732698ef7a492d51998eb6da5368a667baf6d12b77eb36686ee0ca239dc6f3598be0bda79e47f0891fe4d8989df8c685480de11c148a2b44c8a6bea3a50b09be557c51f545a09a30e9362cf3080e6a6bee3dbad370ce24f6c5a6f8091007ca195057fa3af8f99703a601086c2a1ffe55fde4c2c4153dbff8d6601ab68743c0d50d021b0b3099535ba6c40f866ca3ff0df7c19d709a3f58b57b40ab5e43556a8c0c1938c875267bb39c0db6b45840e8ee7c22bf6b48798bd744f70e42fca343a8bdfbd7f55f275ca5d62c7288756d4861fba68d16d842c5b893c1d8171bb3c8b593387d3426f292ace5cee7753c9f9a12e6bb9af5a24192e4184f7d3d191d862d3c3dace7853eaa235b6369fd164e5a7bddd06daa3eec7fe4130e82478d36f88a0999cba1f251ffb3a7689ea2baf016073193898716a9f933448d7ba8e0968c669bdb7dd5e6e32fd84a6ce9e8632b393f9263532ec2107b4c0d2abdf3abb2de2d63511805eb58a70bc4ded040d76640af60ce7f03b9a682b8dd84ed8a47225a48e0b94ea47828f1c8974cd64e5027d8b13d43519875d2bbe4461a7f0f5b5b8d63a472765405ea9c994225806395e64dff88506f7f7f3b6368d769e6e550d4e3e81efb13771cf403e855f75312f1383ce4c2744d0b4e3735a0f1e1b99eb014fa60c0d1ca9035fbc4403330c2fefa8411fb7c3d6ede5b5c8f4736106bbe01923d483a84f031e9685a3b6a70646a2a5059ce35fa496b3f21fca6047471a5bdd33908cc9328de9fb032347c249bf7093390b750696124621dfa67fd9c7fe85d6e5a4d277ad8f8d169f8b5e8dbee280f8443518bd94abc5ca704e781e6cb1868ba2d6fbbaa850326fbfa5a20e4df6fb5f8ee2728e86a758763a8af21e1f7a8584d3f0b09a0b19fe8fcd37bc4fdf45084d7fd92b80544f29aba52496e2c9a0aa4adeb89820be321cfd2f0a53585a15d04c7fe4ec9be6eb5df419e20b71506c1f642df75c53a9e3b2414fe6102fa8af7be3f6c95de824c31fd6fe8ef9d49e26095a2674a33cb574e9e493939bdeaf5b309b4c51256ef71e95dbbcee0a11991693b533f916e1c82ce86d65d89b6d596017fae944ec364546e78abbcbe4322b83e2fcbb4c5d4ccb54d8642c7eb9e28c08598a356a5c46f8813e6b63ec2f3e3bb721b726361f85a734e0514f4e9c4732991ed3998b1ba8f618c2071d1b943eb0f8766fdb7f0492421429bd380deca3325c8d5c7b6ed16429539ae54f1eba39748f09aa44efb67d863cda304e8653ff7499cfad44dc27807779ef8e63be4b376ec403f3c84eda4e5af31c30f9807762e0980b4e5d9dc406cad4e888bfc3ec4186de8ccfcf631b0ba5831747a1c200d45ea06ac82c7952fd09aaae5dcdf5475da427cbc8c1f71ebe5132f2fcae15975ed6fa14a11b38766e1c446894f31c0496b0e5e96507d28e6e4549d6d78841e40630ef306491a1da60eaea3fb69bffcbf192610e2e07bc1124690fea61980e8ed654c5e796f67d26db5de35b4a2c67427833e360ac2a7d4fe7a5ce572144443ed62ac460c1b19402e85c79e3d80e1c143279b20a66d8dcf2bfe1cc44a0f5aa9b0d9b36c46c2cae148dd0f2ffe9a8e6e7274d1832e57aa39fb40553da6414094e838d613a20ce9307d49f97d904648d6460985b01af769800cff9a940f70729fe40e98feb64ff0a81c5b2b096b1a9d832e440c49e4e3684bd17a5169fe138d2544d9806fec027dd2a67f1856178e090f9bb2f9b314a202e7e95f2e41fa80dccf7b1810e9cbcaed2acc2445d60e26f7d63ee4b28e4299e60ea4fc659e7d6f0de91748bf1ede1fdb2acde9482bb76bf6716847eb2dd7517e0a94f0bbf20f248d2c79fa0f518b67a44d5c4c73a9bbc3816ba85ae8344b5f377649da75cf1857d6e4338a76446c48e52cc7bc7ce283d4252f8fac5e1427299edc33f84798316f77bad4a87849e91a1a23c0b7a86898046e278eaaa15ff33730a6d3f885dfe2d1dc0acda2a9e49a71cfecb7dcaa9e70eaa8fe15d4567a280e8960ba49d5289535907e9f277f96e8e652c21d89e81696dd821db5b7e1e53e160584477aa9e4c0e12160c9956df36cce6f4e724dd543827366010ed3d843cdf4319c1bf968a70e9b1b6bcd8af96c9eb0620c569716b7bc42e13251a6adf8201faa129844b5e1d699cafa1b66a674e732c7662b0410e5bca2704c5ebed7850d0ebb825cfb0627a183cc9643b709aedeac2c06700358400c389f99666ae97ccd37f265da7addeb07df9ccad6fa777d0da2fc47b6235179136bbbb409596841e921eb278142a19e6203c7f235bf8461ccadb4b47dd290d36ac27126c808b866f9531261f1e0f5c458a6bab6f064b4efc432e1c7379f9af19ac34c5c22e76e6e7651e48f9ce44eff542f018397889d896cc9001a63e8e455fbe4a9ee9a740edad894fe1af2bb21a1dd0318e28ba982c12ed69c08835ce17336ad1638af3cfe0ea892ab8e83d3f25e6bd98d5e4d36292992e2122c265a26cbb3931dd4c1b0d0ac5ee19974d0dd45777908bb416cbce52531820effcd7f28e1fb2d3d4d826e1b2673e834485a25af9f9d174f566abc3b36732ceefdd91a7c3885e1d10d51c321ff704d0883905b7539309ba5e7b7a2bfefd0494e90e9da7541ec37858ec05ea9a9ec5672b113cd5ad6ebfc5b8fe40ed7c3f17d8a73703dc89086b4d75c5eaf06b840bb2f5b4519a4fb17bfdca9605f17253f203efffc92da96fde023007d22cdad05d18aecb4bf08085c5ca5eecd21f2b611e7e8a0ef981fe7aa2014f5ac6862fab44011dfd33be8a1226943aa7ae5fee9221b0400d9ac2ce5241b09a68cde6b13c47d50bf310ecb37f25c32770a299020d8500d8a4b5d7621e4379dbd6ef34a9aceefd4055ea6144f54bbfedefb5b5b0fbd1d81c7a51a802072ec3d84f34585f22c1df84caca07849b1ef054cbef9b40848e9fd238761df5358cf55a79a53a1bc749e49ffab7c5bd9a28bf24ad5833facf43bcc3852c1e85cfe47929fc49c325c20d74588eb9833519f192243cf96625057899b70a7c93f8fdbfb60d8129d9c43c95f8782ed8293641ffd21d21d91a0b4db69d766f6d6497e9a414ceb04b65425d6ad6c8811da00639dce8d8030038f2d08330c75b0879aab81bfb3330b950e54c13780d308fceed2a103a1a8b77a923b66aba737654ba7995acd306aa7b80f632184412e2369c353c2132ae614553e626f0a3436959104ba6e0040dc597dfbc3602a49e401bf2249699375b2c722083489f54fcdc1f616a133ef6112a1754818158ff78f245b9046100b0e89407f74145fe336976af971c054f12d98002c68b3aa2bd699fbcd71bc4dc071e430bbf694595a951e01098aaa499be2f70611f248a694539ef8936b2e8b7a3c5de8662436fed1f7bc24a4e5c17a663d9a23b4692993301b08cb3bc10f518eca51081c717ec8dfbb0c2669f7987fe6aa0bd98231d8e8b58951b42537f12884a857e02d62de4fda6b88b6b754b1b27394c6a819e0f92f6b2b2473fe245678e252ed31477cc7ec6895bc361b718fcab3aa550fc9faeccfe77cdb5b151ab1db2e569b5bc923ee26f0b6113504d295112d47218140e44652a10af10a088f95c7cf2fccd040fc93980939122411ec643e26e7d69ced3178402e320fe156e774b75b5afc2f3d6b6ab828bb4993b1436faa5728cec34d66f520f59e82716ed6d1324944c3c91d04d5ffc5a921f4716c39de24768484d0096f7d8dbce35aeec22db11f899e5e7e3d57e7668f35d6c0db3542255d9262137d39ae6cf9bcde254dfccc54a6062fcf8982f781d9ffab2df4f49ec04a72eb9646d63bf9e1799bc0bec0ec7f0675ed9f8dc9b8be15d9f2175dfa1c8bc99071c70ad7bedb10a4143fa91c89f54777f84c9eae9361cf7f4c2b7ab873ee5785a5241db0af86f3c6d7f091623d6dc576d07550a42023633a09c8dfa21d7e70cce64c13f37663f75c47921c246f3f2d1d16a8283ce7697da4cb7e016971a2a1d0c59d6202bc18b7cee3828de597efdab53b33a9fb41aa7b49f1c964512901773bb396ac80e90ba1a94c408b2860065ae9aec64a41d76cf8842d299d0babf14d5840d647d075c34175e26a786f30091a24f1ce8db30137520dce1cfffb6318a0d0fdcac883eac603bf365efa2c806eb4f194cae8c16780342165222192f6ee2e103ae2a31dc08a84dfc89c64d2e9ada7ca1839dfff62ddfb7982c79684cfc821a098bc6bf09f87317209b16d14d45c6f38fc99f7bf9bb73460977bb323665d480c87c687cec052a5f08a2c6744c8e177a8a269b4a47a925b9123cd2c014313edae988f8aeaeb633ee5ba6be7f53fe36da3aa37ab2077f5fd75a82a55a0fe62af213b85e9e7694f78cc2b0e63a8c1b89db484722fc62c688678a511c474f0eff8eef1382946d26de00e5c626ec1d7079445c1b7c6f7f05073249b11fd1fb30257724a14cd7bbf451146bf366de2e826fdf1d25705587c4460040ab963e3bd504755b6aa5b18786b68efd3c8e59e8dbd172346fe7f4a18bac98164669d73984044f3c777368f965763742ab86a3720208c64801c796f6e3a1c4748b81e41ac58dcf6ecfa0453b18fad7e3473604f57f7da302e1fa81ad538d4a0280c4ad092007bb9a7a12907227a936871886c699db97d00a1966fdef64d9f3672f1b792c1edadc6781b391c91bea1bd7275f30859dbd1707b1f554e49ceb874ca06e92ab466efa7eeb6990667a27507a7ba789e24d593ea2af8eccb3862cce58daa63eaf212bdd86c01ed471cfc79b191c481ad773d20e821d18af85a7049034e5a9c660357a4c2808b9a6139f32c55c13282b8d98904f4f027d438189dc9487c96172e50dc1100ccc224e7374cf96ea6731032c43fbc9b367a4d1d0b31aa3fa8eb589672e69f1d9144114bbd508d56c2049ecdbfd7b43545375a099ad2885353d8c550d22dbb738e6fe3f104b444c89475a2cc24d7887daced8fa05006c02dfded01c00707e2ad04c41199c5decc1eae34b0c0abb5a5beee1b5253c3350e1a077682767a0b9124a4df2e8879366fd37fc04d4dbcf89883892f46a65ce3aec22123cbe6b3af6364df1f9f5f9751bc8179b6dcc5c126dd65feb7d11a85994e90ab6342834c79c5f82413e88198c73e932c66e3cb60b6e0c0cf438622e5dc5a1036c38afe9cf13559044a9e90f5fd72a3188ef6b1043f5f4e6b40ea51f6235dcb33b3099b2d8c2e02103235f0476ad51bce6d8a2934068549633e521a3ee4c62c22b042fb86c13c8da849233205a5e277aea1129678c31f5c379a71fe08b72fad9449cb923126dd465d1e0ae8a925374149b8248b3afb69f168f3ae701c00f6ea08fe07f1b5338ce6af2f3156ba6f300310114479f2f6119367c88c12c158b84be13b9c8c7b5dd7c90edb5b3ea1fa5927a25ad6d5596992dcd4877f58a134e05dcd80dde4fc2c2a680cc0ccf3084d3f4970e3603fa6bc5a180fcf1ca4241c0b8a1e7c607dc025016e297e2b0645de4ec2fc49851b9374f3ef99edd897c284a67b647ca8c96fcef935d541e9faf334043ea50b99fb8819ecce039227b624e52d8c20003b5a43808e4990da8e4398c4fc172b983351fd11a13dcd2aae5193d42d46e1b57c92e3e01d23fc968c729f3782d6c07dd5a17af2bda96735c12cc7d8023629fb0125e974425f7914690a7ed26508343ae58c8a439ebb6232049a194768d4594f5d65aca37a5686c2a86dd04bef35d74e0755937ac0ce3ebded1c00c8adabf030e5e4a5f44193b62fcf2f1bfa9dca2a25afaf2f1ec06c5d17ef3526d26d17af3e2f257ded24b177ba41c0ba64fd4fbd5042fbd5961a105e0e9f77f3db13c1b6c5bd9a9d04801a5c00a4c544218a21016c65bdff774a44b1d05256e0693e14d76605d67bd10048d3816caf31a6d10886c88c783538bd93e92bbc4484f3388b61adac4b92b911c76ebb1dd11b7b4e40be032bccff610068746f41e34a1fbfbfe5faf57c8a4331008e2c1cfd69f57e74379ac80eb6769f4ce4196795b835201ce4ec85ebcaf5eaaec242fe6695cbce1d53fde5b002e006bba8c8a1ee57da061ceed0d21bdd57ab0cab9e46bf3764d9a6c3ab19736d43b33f32eb955f9174ee4a54666e7f19cefeb49aac7a59b7370d9ae730b7bb4e08413222f0a66bfdac252fb61bcfa838f262312febfde8add8f6843f1d64ea3da42d4ef986498604d65737a44f5a099338520cdbdb65ce73b110dd4bcf8592a4adc3e0170b13404f99f0ec8f9fb225c1275a921f09369db165e9109dd5be472b9bc1901bfd882d264d9ed8d88b4c8f3b35f88b69e3e4b8ef5debb895be536a3af492d968dc1caf31879d672f70ad9869ea98335cf9e4a2760f955fd3e8099e4b2eb4269e354548f9de9921e50e49f3f5cbd63468b9db0cfdf17250c8f13535d4c0a1f21c87967cd798fe93b9b2960447401ef90db22c3adfba0f55f5585ad37040e8d6745184dd536d5a26edec365bd6edff1bcc616cdea3bfc8b9d98c0ef9a626054e361194cd05b2287612399f6d3d3be2f71555f14ad2893af6f60ab61adef663c3c2464ade671dd5ebc71935aad290573588fe6e11f48cd2b7db62e4b9932890d1b96e1b83eff70f026d199db75fb1e83197c937b672613c66ea131f485b4318e27c079b4018d4205484993bf50ce70275b244f2caf47cb47eb2a9ca59afbc78809a912eb56a4bb65cae4694f682c6329c690003a1c355f779b5857a60091b1c3685995a366cb43d753a704d3e59c5f5003c78feed877351e27334b3fdefe5907edd9eb25588a42248b9c4a93efa7cc63bad1e5900b95b70436c35eb85cc8251c4030fab9556920141cca24d6acd3122b92b7e868dc174bf071117958a4797fc90866aca685f1456fab397ae647ab9970348082bd74865bab7f248568db98ced7ed84e8360fa91afde3f23509e6b4caf948349ad9fb6a4efe0a0468302cae7a0f999195af1c19058669fc3b88b2780b9075dc180298498caeb7ba0cf8bd42eb36b1959d5ad3ca6fd1e85f76abd27ec5fb637ee38173ad7d86304d5708b6dc8817e099e77f5d43c1a70624cdb96e4e6103bb25e59eb51d894d1dc533a74005bb79cca35b66e10c61d06b5227fcb071457025d605a0862218ca252b871f8343ec231dbee15688aeb914c0f16ebabe6edb0a489b2bd10d4392c6f1863bb6a62181de7cef61997ab02f3bad0a893cc0cd8a99cd7b3f7773085f0929de36b5d124e3729140c375de9a2d0cd9a360cadf17b9e45b7f2adbdff9e75b743b62642ed67aa703b8ef33dcf51a50edc7dbab42d3d2b49badd2457a9f92847aa6a60ae2beae457a5fce1a9e485ecf907be22913893cd1350f20fc6c81c94be426eaf01864e813a03e4674491b61516bc95d8a77c15f03d0adfc4adc27f27a5ac4165ff6518eda1a5c408708f78a9e26b834179804a312148d4f75f21a77d78387139da40c0a6293c2a59d0162437d68504f189ed970c5abb9ffc6d8e1be2b0877c7f24b1dc273b1765bfc5ce6f4b8d99a96d5b1c92ee53a39f685b304313d909c1ba8130d20d51c824cec420b0315229df295f75b453a6c131afaae0c36d7c4fff70623638a4f7ded5eb7db58d95deb6249a29b171d8ce651556dee8037bf4ca74453a4a76aab7cc07ba44e55de57dbef8542c3851ea353fb8e259ee89bbecf9ce8d8bd6227afc0028afac48a7acd9b4e8cbe982eb1475917ad6be4cdca9cf6e7cddd971b2924f2bb730264801685d387485e41993c3fa0af9987e8b52c21688fd9a9595ad8d1b9f41e0457be18492aa09f69e64e2954d1ca3cc1d32b2915cd9cf6862ca79c80beb47347c4cceadf48a37b29b1d6de4e94717d60cdb4293fcf170bba388bddf7a9035a15d433f20fd697c3e4c8b8c5f590ab44aefdda94681407008ea48d03ff21e9bbb4ae7a9aa37c855fe3537c44106e8079f18c24d2584474bd4a99367660ce6f7e6d7c294961e174366e7babc569d5f80572a21a4bd7086629363e0c9ee2599c8b8863c96613ae6c32cc67ccafc66e1cce79654567ad08e62e9abc99e44d6a79ca4d8de15b7f8a763a4741676af0e1f3bd4e002c8fa1ebfbb3bd3a65ae68a80c230422f98f6e1e9837252e045eafd585ba389958297d59aea1e8e1f665fcbc5f7ff449996aa712dc0faf582cf3caf3dbae80594f9f07fc06de63d9d672d14d7ac4662b4a54f40d4aab2de766910be2fc7f6f679b5708790b5376498d3baf0463dca2f093b51bb7e9f3e7033ba0384af0174becc3bb477bc5e86959a12a5e8924adf0bffdf5e5b9c1cf24d232881ad5c05c5c0f50318ea83d8683339ca6a583c52198c00f7c1abbda282e7fd3b179297338ecf9c923a3a87a130dfc06164e9b4c1fe11d51b382643de44b30a6831dee119241d1b6f84f2484784fdf65e41f78c38e15fb4b00e45df1edc40e3467cdcda351a4c0a0185ac4649e91024377e1c331587a8586cc0a4dfe29e14004c3536d305f5dee0eeb8c2f216c1b8d27375b239f6458e08980badd6d82e9ee9e007578c0a3b48288d9ad0ec3c934a99a8c5741149af937dc82bdb545df26428b87fc935c05f1a4964a8408539f267e23de9bc498e2a4b0083cdb7c8e27de6252bfaf680a6d5b7ec1a6dac6d7d537334a95f1553324a0739414dbdb50445a767b0f589fd4c33b35905577ef5a53b0f097191f9cee4836a908748779941de2a78fe1bde0c2efd9f48cbf232ce101d9df93d3ed40d036ae7aedc3a5ff619abd1c159ca8d2dbda7de13b4ca62576c7f925c52925eae2d7500dc969fe14c0a335ff95a7df1d276a6f242765c781208d59edb5848d412b11638b27ce5a61b8209075976c2a6aae88f6e6d8704fe9e83b425dec4defeeb3cd311b8c5a818d51f917a8a4525361791d5c4fd5d70704d4b9fa9df1ea119882f400e682753a41931712c043c120a98f0fe786a600b47befefc9d64cc5bbe8a16c191490874e258760c9e4fd215bebf848e0b4d35521f53ec5f9308644b785171fc4cc3ff886e034bd833d59dbcacebdae8f00e43c151bcb24d1d226d1cc19ecf349361530a81ba3168af3df5536fbe52b3b93621f57959df298e5b4d3c14928d2ef7b9c977c7dda54242d17f8661978a62d94d565b00abc199790b9b25fbfd4a3ffc35c95ccafe35d9a138a2c24d17f06ae2cc376e822317f16fcbcd56e23f84ec135dc935e58c61b34cfbf5a36cb00350483b6bac786030e5c5045a6b61c9aba7dfaa4f7fb21897539863ee865ae061a77c0359915de3aacb3b5dc8cfe53c4d17b393c2b6bb23652f36390407922969d510cc97b99d1df4361530aef10707d7a021b2d9576b2d49ca88b3cc83ad1baa6d88ef8c81c08f8baaf515637b21ace9d5cc8fd9fe4ca6c3aa129caea7060791d566f4de8662b90f9e5d849cdadf9bd23cf6737b07ca105142663c30de27adcea11d64d433fe1ace84b0f6917c8b655f2a421602f07e0a7127e61ae9859c5e9f652ec82416fd2566f291f417ecdf99bf3231d02864e2e5a1cf34c13f59de9aa2760d8734bbda79576c62f566b8269990e9384a41c1634271acb4c7a8b768f276685c3a8c7f20872e56b683244b1af562c3e7dcf592a9915f44f886cc2ac5f679c07d5aa1fd69cf3a460f25c722073da336a310aa551062d92c7297002060072af2f3500b9310c239bedf45c5e985c2e0d60c7dd68522376dc7b560fb34d1b5089450c32ffcbff07b35a96bb6fe01259a06868d00af697f8bbb238d03d49570a109181c9576c1ea9d2ee02000cc23e63d6c93c6cf3050bbb15b6f73b09c25da62e5abd4c2bdb1110e1f25db39f04885595cd6a388c4726c8d4cdbad87d80d42fcaeae843e2e17f44c9aed25c8f6f9736c7ba1bbd3b839126de40a930024a65aacb872936e446114e706a868444cb140e53d976816983f3dd1d57eeca01eab8211b7aa8ae99d26e35c06ea4b226e0a6e52172a40e7f0df5f67759ae2ee026749ba10b8e33694c3e01a001526f9d75f6c419cdccece3ea3f78d69014e509c741214581034bbc7e2bbaf76db8421154abb2233117a1ffe2786b21424576e295c9baef262e80fa2edb69aff800b3ea436eb827e8adb73abc48d740b86c69d557b16e874038598b25f616afeb4f4a900be7dd0d38b5b6fb4259c51a3aaf4748d7a445f518485ed72b25c7df8ed0906b74bd29bd6a5724ac3a503c990f3697a5db484821f68718470810862728a80ce34599a41fc5bd8bb46dd845a4812ae1532c457ef4211d0e41835e5a6f030247614822571c930c727ba397e723d6b3aeba9244f054e331c82e65b74c9f6504c74b4301499a1a6f6269a3352aff57f88442d4eda42a82ebcf7776c5629f97d6160bffdd8282a40ce2e6375b161e4c22ee53bce7a45f4774aa827e2da657e1a1bc07445f0bbd770b7a5a25b1b469fd58715510dbf8d97af4e1b9459a20b08a8d3fa9d92feb32db95b22d36de0bc8b1c397b09970a6826392fd8392b2d790dcc1295888f42ac81ad213c7328b2324b28be7cc1f4fb8414a7785472f1dd3e11d66017b1756d1697be92490e15f056346d7e9126a1f35fd76cb016fe2841c8996a3507c4fffe7fc45026df10b03b86fb6cf26e8418926a030b5fa62748fbb728fa19dc2f8947468c1477750771e442e4a9d25b76d359211c05df788ade5b7824f8770b5dac0819737dec916ee59b28a49666ee8b7ca81386eec8049542f18a3207e51bdbc291470eeefecac385c096a | ||
| 51 | MD = b70acba01bd715f542859a4224d035eb177fe7b34d5447e099acd1716ba6d00f515bd02021b5b3015d736b04687544de | ||
| 52 | |||
| 53 | [L = 32] | ||
| 54 | |||
| 55 | Len = 16 | ||
| 56 | Msg = 43cd | ||
| 57 | MD = 7c5f9ed821a021ef1850dd4e0b179a656fbe27b104463720f467db32bbfab5a4 | ||
| 58 | |||
| 59 | Len = 104 | ||
| 60 | Msg = 5f75a437ce0698a7d8151c3fe0 | ||
| 61 | MD = 774782a9c3023dcef8b2cb83f7994324e3cca35323419b3914a9b6bc3ace5ce1 | ||
| 62 | |||
| 63 | Len = 352 | ||
| 64 | Msg = f88bac738d1e3e10f75e46e3fe026d7e423fdcf3d7e4028b33a291bb4aabca53f780fbf99e0346d610d4a38f | ||
| 65 | MD = f114f1a390bfc30f34652751f3a38e8bdc9597625e363689459b80082eb34009 | ||
| 66 | |||
| 67 | Len = 488 | ||
| 68 | Msg = 832e5b78a73a1012ee62e00621db7f4d248893007c6e5d6e0e689c6b291baeebc72df9cf10b289fe20e7fab80a2399271d0ac63766049da875eed56264 | ||
| 69 | MD = 7d00fe393c308eadb8c0a4f771d409e17c9a796e63b45fc8e84c0cb2bdb62532 | ||
| 70 | |||
| 71 | Len = 13976 | ||
| 72 | Msg = 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 | ||
| 73 | MD = 6e5905b22cb95e48b73c5a885f5463f554d81257bd26301c4393d57fff1c8323 | ||
| 74 | |||
| 75 | Len = 48824 | ||
| 76 | Msg = 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 | ||
| 77 | MD = d7c901f0d92a868dced7e2659e90121108611dd7781325fc57e5c336c2279510 | ||
| 78 | |||
| 79 | [L = 28] | ||
| 80 | |||
| 81 | Len = 16 | ||
| 82 | Msg = 3dd2 | ||
| 83 | MD = b7399529fe614af98f9ecd73e45790406883cb22e3bdcdf28fadd033 | ||
| 84 | |||
| 85 | Len = 104 | ||
| 86 | Msg = 3d232201038fe7d846ac1bd4c6 | ||
| 87 | MD = d0aee5482c509540a4ea4b902bf42fc8df3af6de42fb14e903d1b2e4 | ||
| 88 | |||
| 89 | Len = 352 | ||
| 90 | Msg = 44c98cfc71f82215dadf494d68d1d6b92bb4eb81fa0fbf945a659d9aa2c2302b5c93fd3eedba31e479e29d36 | ||
| 91 | MD = 56c22e6066cd4c4d6415c5a225257e7f888b317ba4e98eadb72b4be0 | ||
| 92 | |||
| 93 | Len = 504 | ||
| 94 | Msg = 02a5c7b1b749d6d49bed302d9439f23ab83020bd4d573906f4190e74216ad33aceab775f71cd31092bba5cfa42f0845bd16fc1b8bed6434dedc92f80b395aa | ||
| 95 | MD = 33a84e66cf1ce6970c35807db25e05ca05809e53d4e34cda9bfc0045 | ||
| 96 | |||
| 97 | Len = 13976 | ||
| 98 | Msg = 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 | ||
| 99 | MD = 60700d4ef068822d0fe6df450b4aa8e206b2790d6dcf973229a59889 | ||
| 100 | |||
| 101 | Len = 48824 | ||
| 102 | Msg = 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 | ||
| 103 | MD = 85747c796a910421ecb364b4b4f0e68b49e9217944f6586eac4993ec | ||
| 104 | |||
| 105 | [L = 20] | ||
| 106 | |||
| 107 | Len = 16 | ||
| 108 | Msg = 8a61 | ||
| 109 | MD = 60bdeabf39efdf21ba9c0f94af6552d2ffe699e1 | ||
| 110 | |||
| 111 | Len = 104 | ||
| 112 | Msg = 37487aa02b03bdbc6bc62e7e26 | ||
| 113 | MD = f146072f92dc4a551721a10bf0b01564cc2b43df | ||
| 114 | |||
| 115 | Len = 352 | ||
| 116 | Msg = 6ecd002568bae3bf1873993041bfa292eb94e9ad092d8eb3585be82e8a20cb36a47a06e7a57d301268a4a533 | ||
| 117 | MD = b0a2d6033cf1d8ff120a605b745d736ee4aa06d2 | ||
| 118 | |||
| 119 | Len = 504 | ||
| 120 | Msg = f6dc1d2f6b8e126d99939664693d8709513f97d730074ec2794e536d94ede79c81f2b2ecbff3c2c26ca2d181ada2c60050997f3bb087ce48d956c18dedb227 | ||
| 121 | MD = 395dd2989edc854746e384f339f0808c515747be | ||
| 122 | |||
| 123 | Len = 13976 | ||
| 124 | Msg = 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 | ||
| 125 | MD = 1adccf11e5b7ce2a3ddf71e920138c8647ad699c | ||
| 126 | |||
| 127 | Len = 48824 | ||
| 128 | Msg = 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 | ||
| 129 | MD = 2cbc07b9b9c819b8fd38d8a614a8a9c3fa7e40ee | ||
diff --git a/src/lib/libssl/test/SHAmix.req b/src/lib/libssl/test/SHAmix.req deleted file mode 100644 index 453fce20ce..0000000000 --- a/src/lib/libssl/test/SHAmix.req +++ /dev/null | |||
| @@ -1,99 +0,0 @@ | |||
| 1 | [L = 64] | ||
| 2 | |||
| 3 | Len = 16 | ||
| 4 | Msg = 98a1 | ||
| 5 | |||
| 6 | Len = 104 | ||
| 7 | Msg = 35a37a46df4ccbadd815942249 | ||
| 8 | |||
| 9 | Len = 352 | ||
| 10 | Msg = a93aed0fa5e163a82c9a934aebaab8180edf7de0b32f0fe99f9c75ec305b24609334cefa372c7c758262dc8f | ||
| 11 | |||
| 12 | Len = 1016 | ||
| 13 | Msg = 433e88eb2f8aba562d15c18126fbdffb81d5d6c9397fa052321f5f78cd629708ba099b540da5451e949eeab8687a8d6ac35c531411cb37144ab5ff6a7eb46f1ab28fbcd2ea0444cd87c57bf7d3c02952dba3d3987da07622c16e7c086d90e88ad3d9d4afee301d2bad915d868f54197b70b23c9fa385c443404fbc9abf7e6a | ||
| 14 | |||
| 15 | Len = 13696 | ||
| 16 | Msg = 2c46a76a9dfbae1f5e59f085e9c3d4b600c24b2d404d062cf948e75a3d4ab5b137a31397be9eb34b2a03c78367e0b85448891b511ddee1f787cccd498b172cb7e656c044a03ffde8e42478330fbe9c34072a9e99ce31b41757cc820d98e7d564e06694b96b66f4be34c5eadd0ae4e61fe6abbe4d7ccee855104fedee8b451a7fcedb793d469b0094c0ed07c97fda00dd8c1662b44e3ee6775a5ef6368cb662d257be561a5967893433a4b63f97295036a37272176d081545df00852bc5c4162324161296cd51f76433f2df867a5840f2d0c8d5be00b4dc89443d82175bf69c3bdceb97facae2b2ed68e06ae74fef36d8bd1f75f130cba509341dd54079d45de22845cc8e77a022977c7540aa3e779cb1127f39f825d4d78e55a967ef45e7c1dfb02d9999fd15af2914ba47177177d94576f1091a0657d9e04fe81e6be7b631fc1baae66584c9c26ddbb568750d77555c927bcda1fbdc15c7cbe3e3fe88ca13ff12c59b383343c12976708c0e3dff78be0e286dd32eecf20b71a09fee50a9d0b13c85a15b320b162690f399282798aa3291fdd2f9c40ed873e829388466ddd1da42f2de16aaa9272ccf44790cf3c95382c304e25ae8cb2fc9d9869808f3ee7d42cb143bb0c3a55e03db6d1202ca1bdb744e448640c0aa60d3ebbda5c21e623bb080f4a073a48822725d764e51d415aad1d7c5a7f17433d15ac7d849f910c375ee0899f6a576dada42fd651343383f286009902bb62deeeb2514de6af7f09892c20d0b238f6021f03b62444b1e1f21beeb89acfcd7136416fe7bd8f202e76afaf5345311798be7cb25351add2bb044d2380221009c4d1cbbaba4cdc8631dc0144f2778a6aa1eb3d3c81df0b1b2142fce111af8214d049e40f536c5d462b9224a978e82cc6c420e70ecc3cdaffb726a183c793845315f730fa4dac9fe46e4180397107a6a051f7f0a58ceb9bf4df37e1a81c8e9569187228e8037df2e59c52ba815566768bedc8e09d5e7bdc9f2bff23aaaaf133bb5a3332750f6124ce185e29fda0851addfa2c3d52bb6dfb530fd4ee27dd5bfdce5dc2f41debe6740274bc651aecd4023b098a7d622e2296b50d51b79c4e3f521695a9d43f038e8f273405e26584d3db179e7c1758114a3d39970df674580bbf2884405974f0b9c4b0d8b3287a2314f3f81b6991812f354d655f62513c9551b378cc2efa4c3e08b313c56cada52217fb6112eb8299b28445aca8f72e7170a1cd8bbfee4d2145fbe8d49c6af8831c4d4fc7177a50ee55a7b484261504af946c6bd5e1d6b89092f3c487c0568fa07c356fae9b8e831b8320289039746a435b122cfbc4a0d316bf90d481d3b7d979cc50d98c1190af8dc58e0035557dd5e94f437f41fab513202643a77748f76c6b77302bf40c392cd18731da082c99bdedeb70e15cd68bff59619cabcc92adcf122753c55afde0817352bc247d1170b8ddba1ad1b0faadfe0efbfc5fe6334377fa372c3435691f53dfc2ad5e08966b2d3525b1eec2d993a5cd4ff34278bd40dd80313a0727d05e0a932156152f3e11a190d8d69726f5c57d20f811e1e8932e86409ffdac96c6251c2a2976b8757adcac5d2de94931d1cbea866ec8bcba5774f8a7fde792f6acfd0f01356fd66fdf54a416af6a9397e00f848a2e9831627cbcbb52b5a868ec174e69b4cfa1ed72cdf23f39d7eaf4bdb318c188b1f0fe75655e34ad71907cdb77a1a2b162cd7c22d93dc45321eafb17cd60282e83736267b3e1fb249c307d49509f50839942f0f493afd9ef37db053a918e3ec83d801bbdead07554a018b8ba348fe9b7dd92ea7c5fc0e65a644ba19aa1fb6c022ab768ec7cb249ba17b9dda2860bd4aaaa3dc70ec009804141ad5ebc61203658e57a0887ec0fded18d844a96e79ba7e879c4253056f23e205a80ab1471953438f85848f4ab31ab175c089e0bbb97ea0dd6a67385770356741966053735e2cc2ecdd2c8c75cc045181dd7267584b901674b553082b2c58fb8f8be0b99306194a6f069f684535423304d40a268d55784a14260fa9c9cb1306b82f91cbee3c9f43dea9e50903135cc1c6505605a100bfa28564a2057974eef0852b7b72ce264815026d0759f691db618ef760edde73ec888e181403834f7221bb27a69479ec9b28a3fb0c3f68d4467d25712fc48ad78763f9ea6e8a2e85260225ca1b1a38b720e589fafca29f07257c5467cb74ee53189b8c81b784c43e93f98abde1ed53af60b27b13df6ce45001c6e1813de3521028981086f7d88ba13f6fb1a800f312fbe2f842eebe847fd760c394668cfbfd353ec14ca0366eccd7b4cd63318116bdc42e20a632a0d2b8c5cddb37bfc0a239ebe3800a787d2ece077a7968036b3d9b31cd906f888e3ed742cd769033e2c24c5a9e3c10b6d300db5a17dd88 | ||
| 17 | |||
| 18 | Len = 100816 | ||
| 19 | Msg = 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 | ||
| 20 | |||
| 21 | [L = 48] | ||
| 22 | |||
| 23 | Len = 16 | ||
| 24 | Msg = 3a35 | ||
| 25 | |||
| 26 | Len = 104 | ||
| 27 | Msg = 7db15b3ee240b45d4610950996 | ||
| 28 | |||
| 29 | Len = 352 | ||
| 30 | Msg = d2a1efc725c46cd6a19760f49edf0bae823c1b4992ae2260085746cf65833bd008e56e64002383f51f960239 | ||
| 31 | |||
| 32 | Len = 1016 | ||
| 33 | Msg = d11ad1253592c094746da7b5c88d329bc3ce1929913b8be07e82d3f6b7a536a855f31ad197376eba6f2f4534413fc4e4e7673fdff8739f774a710754b568b7c61a473059a41c98aa4e86617aa66d2601d0f0d584cd9f132afeebdc0ce3da6a8b290059e6e4aa080c195c42ae7f7e1e99865223439929b0a3a0d79b46ca6419 | ||
| 34 | |||
| 35 | Len = 13696 | ||
| 36 | Msg = 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 | ||
| 37 | |||
| 38 | Len = 100816 | ||
| 39 | Msg = 5f464d3301c5e0871d6b41b002dcd09abc80a805de3482d97f3fd7b9838745da1c0534168f76b93c3c53bbabd904541ffe5179cae619dea77446140b7400f47d242141c7f2e9894d88f44c9e066861498e7394f206f594a419790d697f6a11187f84bc6fb288186109343eb11172bec076d041a4c7306d7978c009fc2d2d62563614ed3555ba2d21c8fcd70e8389352dbe4ec808af3231ce990452eb05b1b0dc4fbb1b4265e69235cc3561dae4148c386cd770474863a84a822b2e5f905fc255d55f90bd6a760d441dc52240ba7d8c888a5283891a2c99963d1fe680549d6267cdea92cfead167f6c49663668f2bfdc61fa647f5abf3ce5ad2c6c175dbd456ba41436aa06f5f68f5c88e6b74ea86a79934bd05b486210d3d470a0967ad6d67f7385260578088d7e63197849354f651aad07e04ed301f1fe7a6d2047d50ce5dc6bbffbb1da6b47d740898f4eb54e3c5a1fbd18ec93254cc01f705fce04e6100ced132c519674b2345547804a372b5c925bd9ee9701527db33408d37b72f8d18b882d3c4744eb58f011d21fce336d426de1fcd5e09610216248b51fe2b79b96c2bd6ca0155e05a8a516b7a24d529a9a475284735bd9c4c437ddf399864b64fc5d0d6ffc4e5a7a3dbdd476bc39ed29a0a92e1f2b6b3506c2be5452d4f896db6eb4f895b554b2af64c4cb8dc2369b91022dc50b7291404cc9605c31569c32756a64ff8c4fbb0f1bca346c7b58a5c6774b2fc7f7fd50741d34c8564d92f396b97be782923ff3c855ea9757bde419f632c8399763003b58ee9140c2d62e914c1e1fa742661a9166d42267edc40905b35a25d5c3cb3fb457376b7422896df7bb19c23e8f764416731d2e20cf2c1beb8663c07edd8f105e078e2fed05c5e5897c430017fa2160f565a75a4c5c64a15dd7d644bf355d169ae2696ae5ed1a39e8f81055cdf315e5b0c6f9235515fc4dbf30281ef17b83a6ed604f89293904bf78c7183fcb0ab236cb1f8935e59c51559217efabc000b165d819b717118a03facb61a13a99b194f8b6c7ddfe5850127d79078397a56564c7ed6716a129409680434061b2a4782c9006587de927c1ae09d6778a5f1c39fc419fe10493eb0d4ad492fbd05485eee7913c59df82fe7182af2cf06a6e8edf06676200077bd1408f5c1cec537cb8566470cb44895826d04ec20f0aba4297c501add65c75d5767ad2ab63aa81b7b66f01b32590f1d55b7e50e6df1ee077a19c8c895f5ef62d452cc336e9aee171fa997ddcedd7af86e6cc37722fb5838a46c5e58e7f700edfb7c6bf832171d9581f660752867118e9535a6118635709d6f1c1cb21b938068958e956149d9bffc67f355cb88205d4894ba97c3e3c8be9fa2d20abe79f3f93a6a2f4f56fd075bb49a4b7dc83630e58c32a29d757fdbcaa607352f65483cf2cb4208a3bf94ca7a25e2a4e05279be31c33696c10fa4971d1b64ee938dd299f483e5c098845749a3b706a787529bf2ca56693d0a7a98243e6482a43e1f5d3086ca1b00368d8ead5ed2d0fb79b1e2f537ab9340809ca3a9b5eb2900390432293008ab7086c2811d33de0648be5597ef002c7c462b5e0f4e0b1720a98b2299ad7aa55eb78f0c77c2ab4371385f280107ae40ebf814a8223dc74f31483c63d9e4ed09fc7e5a51bac34d69d97163116a66c84ea9fe4263269b71fd228555ae3cf5109c4d6ced7b9049a2b8069bd2f71834d6c07fffbd7561939188bc07dcea08086bc7182a5270427c3199bf5fb5c4549861fd32a38ec81c4ab058c777dc01864787f0275f911a17838272cd65135f66baf06d8d93bc439eeb55d50b7c5adafed8eb8140b4b05f59871dacf954f4b096c30b7857774fcd319c096750bf605db8e31fe02cd1b9294eaf8bb009d4609f2cdb3a8657f650501b8553765de8f572fb91ac77b35db35f402453e5c58f60146f2906ff56b9c6b3a5d0bb6afb9e2201110919ac9c01a7e9750dfdb2f72afbf7a8d6f64b1c68b9de17a2c9abf289eef24074eee9b1649caf3693118165503a30200993d271aa31b8b92606a10a52612dd1fab495b82f9a98cade18b9d8a723a71ceb63fd1d27372bd281f9b40aa1839b0cc2f2177a09aa8e7b159ac118d7c145e7a4f032e788d21facde2b4dbc1d5d2238f530d9bf9bd2798f611d03ed8919f0c85bc2da99750b7a8d6322d2e66ff6ab9ebaf7424e8c1c3f4fe92be61f65359106395f5ef995e925be3868ad513f561f873acdbaf18590c903d64bd275121c11ea655124d091740887868544c5348664399d3da96e2e35fff34f062fb939d656bc072096e510b40b2f75ff010af68d64fd0acc778e2e13c9667de266b1816c4ac449521b02bbb217002c604be72e73051aa9048d192e3210a68769dd2693e5d44951711aed3a751240d42f8925844131daa36c51d7d59bbaf99623fddf1649db954705fd6f3405e63894f5258c9ffecf83208c2c90cc55b1a8d2972ea6b3a049ee54942b50526b7930953986e428b2c75e47ed870bba68dbfa624dd94112f3059da0a80c583baeb570fe8314f5c66501b34116c81148dd22396fcd6479da49f7e952c8084f97d6803ff85c3787222064ca368f596a1ebb6dab20a03916b3ab071c927d87fc10ecc4e7ab4a5761e3eadaea4de1a0dee30aa39a9e4dbee047201d7d8a4df1284cf668ae3ed7dc4cb2cc4b5cae9307353fd2ae4c105c5d9f3bb021535fc3ae9bf3ff54ddda8b2e1037cd9d69822df436dc1c750a9f557d1a3a63fbe73c64261dae0c70bba6edb57519f5b957f138d1aa5fefe01b73c1851aea42938147bac2762527a492cb85da43014c876e223b05597354d7c9b328df67f354d168a84ce86dff57d8a870db034196dbeff83ebef80bbe52425a8810f2c9fea29ee688a201cce4a5f447be789a3881a9da3b6c491288e8f1091719032608b332e0410f4576597e17e0b5dde305f069be2e80d565bb979a3915488f88e3ebb90e81c264bcaddd72b8843af4a4ae31f723d50fa0995b027c334c351128913bb93e67b1b08f101f6b8dc8202b44fbc3d3dfb530f66e5a8f35e69725c86998c05ac87c561a4706e90fa095adab4a566da4fab82bff6b20076e5bdf62dbd6614245b6a6f8cb6bf60106f8d12b9c3e26f8127dc547e2181531ce980a3273f452892110cfe1ea834a30f99d66e026a9d22dc76fc3cec8fda2d7fea701deb84dd45c97dcde57a017693e90983a156f11c4d168d89c06d8a32dbfa590adadd16850854f24bba315b0bbf372f03711a20163afa0c137383b9120b26c59f5e9e7cd2ccaf0ef4e0d70d5a81748ad441ee5fe178e14317cab184fe178fb0cc0d82105d2f423467fdcda0f9871b9d84882609248356f3053a99866dad9f9b0f8c4a897a8cb8f30365a7ae5f3ca6e772d863d445e6d57c6a478e35d719d0e4e84f3a30b1816ddb55bcd79df21ea0e95da72a19cc1fe74fc576120bc108be3ed4cae3bea889fb4ddd67efe858a994237378eb623dab070d954ac780c1e6d2095383c98ba622cbdb18fb53260979fb2672c21a4600f4bf06583a112d303096d4e30e7e1060d869f386eba3cf7aec3052ca17593dcc9969fa9cd88179c262770211cf53f53f175037a5cd445d239cee48f7ed0aa1d715a22ac18a8aeecf191d415e4afd92b76c091803f4c757a9e89f696ab7b11ad6d5f24774e4a004dcb0e3f33705dd8150431f051016af37647b9e44b10bef114276d4b1055b634461c655a82a847639a038ec9f58876e84e9a2955b696e072d8054c3f81173473604d5fcc0a75b4a340dba0c375beb87b8b01a0f2de232bbb8371c3a9d27a0ce521c4c43dd3bdeebf92f42f87d88978d5b4e3e563cba0e5f59dd29c31096885b113ea5c57e66a3be015b703bc26d3fd1d51a7c14f85f65747ac909d7e30c8e800be27eebf4a62e42e538ae30b6883907cebb7fc5e150bc9da3a138f394e817df9a9e44420078f30d0d3d6981ca581791a097a5e3982c983d5cec239096c7d8cc55c87242026d769ef1d04eb96e5b5001e3358af88d417cc61f107659791a35d8b5f7a5767ae24d5b2ba7aa12230076db1f1b9b6f213dceea62949d98bc5db38743b23a59ea75dbe4231a285678f5f07facc053c2048022fcb01f15e8c100d64a877ecd56d196a6ac60ae35e0e09a517224ba409ba7b70d8f9fe65bc427b212a4e9b3cb17b0d332267cea4f3bea7c1e550f7ffe567b20e3057aa0ebb560d00d28e2f7aff718a9f2d4d044f0d20709bb9ad567c98cff7c4810e8c542370cf90a491bc1088f69998d59f344b74db6c1bdb61f284e99b517a11452ca0bb37c7bae77fca6514b341066086e600f098a32a92935380a173c9182a2513584c54ff67e580dfe16b508acf1729a3d649ff1eae286bffd688fe658612d6c8e69e6e7f7de4ba85ec54747cdc42b1f23546b7e490e31280f066e52fac117fd3b0792e4de62d5843ee98c7201529455c85b169fdb90cb05e3403cf2f737148bd20a53c73880880a14ffff37d62130e682e50bc7210ea6c1f0c27656cc1785a0d9ce93ff94dbc5b2877519d9bac4a339e98ec594a7cc76f4ddf994fee8070dd4b8e0fe0e51b93105fcf566f83d914dd862b4ce78de7e9e16f142234bd969ff8005dddc641dcd3c7cfbdd6113cd3ba34a9503a0f433899e90e158abde2ed4ed4b3711c991577c5aafeaa982bce80835f8e6d7c7975571fafb1499991646bc499ec32930367d4b1de76ff656442cab987bdecdbcc2b2bc35ce01816594bfa4b6e33080caa41dbdf8ebf2205649f98a2d3bf331fb16b9ecd1824eacbbc9f81297b115b4d36aa7496e05f7d40d4edd1886c1bac10cf3f97840a03277e6369e7a7e90d932050ab8720fce076de5c355fb17959bd75cfaeff325b0737f8f5b1160de0b0184ba04afcc30bca77a6a37e29662302d01858c0bc1d32b883011b7df5a387805296cd91bbc835a3e76152d017ee929d4cbf137eb78db89d71617dd76cb00707aacb8088ac77a1f52ed710331193edb29933a7efd8cc153e6adfc2c6637e88cd86b06036b8177847b4d086b0ff9b5dc91f3cbd1c08217023d7449253c25331594f0f16a3c5f2e122e0145c4ec94f096b45a1fd0b2dd3f1d51e58978471782a336eae49d7bc4e050d1c6a391658f71a1f752c0ec6302bc2dba9e3766359359ce34955a2db86740c90d09cc50e92dbb76e17a39955fa7108bddeaddaf860d1aff14acec8b609ac1d336270a940604209df91cf45be72edee04277d694a6f968ae6d8e065702f3d607f3baf8db4ab7637fa4c78bb0b7fe69937eb1dcb616fca564a5a521e12df71fefbc321187159bd6a47b066a3440ba634de9153a94546b63aa33aed9da2018e1f30628df37f5360ca4f2660a46ffd73e58183e8abffdea25f7bdf798a2b7cddeaa481bcc6e682a67e99143066963d96d4a928a478951dd6ec59b1be8cb23aa688e1867738aecdd9afade39c92c0b2572bdde84eb912ed990ac618834c412231216fdb84f1e01b3f8414fc6dd0f646fd0fa62bb0157b3535e1497c9272df1cc5dcd4e6ab9a8456222655c56ac73fe0d2aa8b599035daddf0986a45b1a59510abe19a11b6dba065c8bcf8a85d20a3681c2414dab7c036cc1358b1dba98d6ae62c5948c36b5b3e307a6f860c0c822ac724a5c917ed5f98ece548a7a741d366868e6c676394c3659f7f6786594196dde332543376f9ba0724b091d30f431f91d919417e5bf7ba1e9a21cb80f6c204c3a58d59d960a5788b5cba5abd7c7518f4c5170115125de97009a6c3fc4d5773e4f57fdd433eb7422c7c4dccee57a1679633ced3b5f08df763d4577983c5ca8b49bc4e08fa76f8bff36daf0fed068db47f0c87e0e45d518dffe37c129cc6e2f5f9e0430185723098e715284a42f302a6b8368a4f2dc16f534d1e5db9d0b86659fc4ba6f16c982774115d02a57684c7e5489b1f491584b0f0546e4194a6041f5e5be3bfff3852a4fc772d83491023a61a37228ef6260edc0d1cb972cba610d5ad1d92d554700771d8236ef55e983765ed8eb21e7de7c8bb51aee9368758454fee4a3f32179c1e54af1d069e0b9728cd0554351907e018146511e4d6f0450b57c8ebd21c71450116296bdfc779945da60b9192c5bb9a67b1f04d94992df4cbb3e30732dc8af2177fef17e0b7d01740b8a64db16bc29c1e589b6bdfc967edeb2ce8a649ba892bc856a929f0b837a838ca7f917a52436ea3d20e72afacc5b9d58a7fd0fefd96787c65ffa7f910d6d0ada63d64d5c4679960e7f06aeb8c70dfef954f8e39efdb629b72979be208d616071289cfaa0756a4bb5eea5c7baf8fe7a31501e7e2d67d708d461c0c93e85f03afd70bd9e16437171e01a34f475e4b5a58d13ce4e2fba72bbba93403f3f8981e0bbd6a8a6223327bf096c44b36e0ccbf7592a98c1fa67f198b628787ec80aaef848b4fea158c715799e6f458327f399e6420f0e7821f2dc4663bbea065c7bdfe830b6102e2e7193381b9dc7f2381ba808c43b8fdf3addab4b5fa81564716f7d46e0349d9b27b559710d723c7ef2f79eb55c3a9d75b99ae6fde6877b278b583f8ae3cae776b914b0cae0772397fd19b6a27676c7ca02cd07f4b4d49bbe1ec87f2ac7e39e5f7712319c31271dbbbaf4b826af8a9f4acab696c62719f7a6a032c4bcf90922a3c630647b7c1c7b78b10afbd863f07486561a0bc8d9b1ff5fc41998a7e3c604e24af1c1df2da1dd5d83eefa2e4012f7fb5959ef9339574367deff73723484b5a969c8c23dc251a3b887f34b9ea09c9a1838e8aaabb254445d7556dda257dfd5579737fe1dd6c67f3851ca68b011e7cb7b6958d588f143828f0bb24fceca31b47b77d1ce05e75ab05b55d6c9f9107f0c738f2cf8a1629f7e9b2694324e082503937ff8ca7c5098f770289af7d038dcedcf0ed77c8b82e2a9003a6f3db69e14131e144f6be7cf0bb5353ea96aebd78befbc6ceae9bdde97823cdbc5ca8ef8a993a9d9383aee9f2d6a18fc64ab92990672ea2dc9b89ed248aacf7f1a513da43fe5953335afe76d78867a066f226ae9c727c6c60671c50a50732698ef7a492d51998eb6da5368a667baf6d12b77eb36686ee0ca239dc6f3598be0bda79e47f0891fe4d8989df8c685480de11c148a2b44c8a6bea3a50b09be557c51f545a09a30e9362cf3080e6a6bee3dbad370ce24f6c5a6f8091007ca195057fa3af8f99703a601086c2a1ffe55fde4c2c4153dbff8d6601ab68743c0d50d021b0b3099535ba6c40f866ca3ff0df7c19d709a3f58b57b40ab5e43556a8c0c1938c875267bb39c0db6b45840e8ee7c22bf6b48798bd744f70e42fca343a8bdfbd7f55f275ca5d62c7288756d4861fba68d16d842c5b893c1d8171bb3c8b593387d3426f292ace5cee7753c9f9a12e6bb9af5a24192e4184f7d3d191d862d3c3dace7853eaa235b6369fd164e5a7bddd06daa3eec7fe4130e82478d36f88a0999cba1f251ffb3a7689ea2baf016073193898716a9f933448d7ba8e0968c669bdb7dd5e6e32fd84a6ce9e8632b393f9263532ec2107b4c0d2abdf3abb2de2d63511805eb58a70bc4ded040d76640af60ce7f03b9a682b8dd84ed8a47225a48e0b94ea47828f1c8974cd64e5027d8b13d43519875d2bbe4461a7f0f5b5b8d63a472765405ea9c994225806395e64dff88506f7f7f3b6368d769e6e550d4e3e81efb13771cf403e855f75312f1383ce4c2744d0b4e3735a0f1e1b99eb014fa60c0d1ca9035fbc4403330c2fefa8411fb7c3d6ede5b5c8f4736106bbe01923d483a84f031e9685a3b6a70646a2a5059ce35fa496b3f21fca6047471a5bdd33908cc9328de9fb032347c249bf7093390b750696124621dfa67fd9c7fe85d6e5a4d277ad8f8d169f8b5e8dbee280f8443518bd94abc5ca704e781e6cb1868ba2d6fbbaa850326fbfa5a20e4df6fb5f8ee2728e86a758763a8af21e1f7a8584d3f0b09a0b19fe8fcd37bc4fdf45084d7fd92b80544f29aba52496e2c9a0aa4adeb89820be321cfd2f0a53585a15d04c7fe4ec9be6eb5df419e20b71506c1f642df75c53a9e3b2414fe6102fa8af7be3f6c95de824c31fd6fe8ef9d49e26095a2674a33cb574e9e493939bdeaf5b309b4c51256ef71e95dbbcee0a11991693b533f916e1c82ce86d65d89b6d596017fae944ec364546e78abbcbe4322b83e2fcbb4c5d4ccb54d8642c7eb9e28c08598a356a5c46f8813e6b63ec2f3e3bb721b726361f85a734e0514f4e9c4732991ed3998b1ba8f618c2071d1b943eb0f8766fdb7f0492421429bd380deca3325c8d5c7b6ed16429539ae54f1eba39748f09aa44efb67d863cda304e8653ff7499cfad44dc27807779ef8e63be4b376ec403f3c84eda4e5af31c30f9807762e0980b4e5d9dc406cad4e888bfc3ec4186de8ccfcf631b0ba5831747a1c200d45ea06ac82c7952fd09aaae5dcdf5475da427cbc8c1f71ebe5132f2fcae15975ed6fa14a11b38766e1c446894f31c0496b0e5e96507d28e6e4549d6d78841e40630ef306491a1da60eaea3fb69bffcbf192610e2e07bc1124690fea61980e8ed654c5e796f67d26db5de35b4a2c67427833e360ac2a7d4fe7a5ce572144443ed62ac460c1b19402e85c79e3d80e1c143279b20a66d8dcf2bfe1cc44a0f5aa9b0d9b36c46c2cae148dd0f2ffe9a8e6e7274d1832e57aa39fb40553da6414094e838d613a20ce9307d49f97d904648d6460985b01af769800cff9a940f70729fe40e98feb64ff0a81c5b2b096b1a9d832e440c49e4e3684bd17a5169fe138d2544d9806fec027dd2a67f1856178e090f9bb2f9b314a202e7e95f2e41fa80dccf7b1810e9cbcaed2acc2445d60e26f7d63ee4b28e4299e60ea4fc659e7d6f0de91748bf1ede1fdb2acde9482bb76bf6716847eb2dd7517e0a94f0bbf20f248d2c79fa0f518b67a44d5c4c73a9bbc3816ba85ae8344b5f377649da75cf1857d6e4338a76446c48e52cc7bc7ce283d4252f8fac5e1427299edc33f84798316f77bad4a87849e91a1a23c0b7a86898046e278eaaa15ff33730a6d3f885dfe2d1dc0acda2a9e49a71cfecb7dcaa9e70eaa8fe15d4567a280e8960ba49d5289535907e9f277f96e8e652c21d89e81696dd821db5b7e1e53e160584477aa9e4c0e12160c9956df36cce6f4e724dd543827366010ed3d843cdf4319c1bf968a70e9b1b6bcd8af96c9eb0620c569716b7bc42e13251a6adf8201faa129844b5e1d699cafa1b66a674e732c7662b0410e5bca2704c5ebed7850d0ebb825cfb0627a183cc9643b709aedeac2c06700358400c389f99666ae97ccd37f265da7addeb07df9ccad6fa777d0da2fc47b6235179136bbbb409596841e921eb278142a19e6203c7f235bf8461ccadb4b47dd290d36ac27126c808b866f9531261f1e0f5c458a6bab6f064b4efc432e1c7379f9af19ac34c5c22e76e6e7651e48f9ce44eff542f018397889d896cc9001a63e8e455fbe4a9ee9a740edad894fe1af2bb21a1dd0318e28ba982c12ed69c08835ce17336ad1638af3cfe0ea892ab8e83d3f25e6bd98d5e4d36292992e2122c265a26cbb3931dd4c1b0d0ac5ee19974d0dd45777908bb416cbce52531820effcd7f28e1fb2d3d4d826e1b2673e834485a25af9f9d174f566abc3b36732ceefdd91a7c3885e1d10d51c321ff704d0883905b7539309ba5e7b7a2bfefd0494e90e9da7541ec37858ec05ea9a9ec5672b113cd5ad6ebfc5b8fe40ed7c3f17d8a73703dc89086b4d75c5eaf06b840bb2f5b4519a4fb17bfdca9605f17253f203efffc92da96fde023007d22cdad05d18aecb4bf08085c5ca5eecd21f2b611e7e8a0ef981fe7aa2014f5ac6862fab44011dfd33be8a1226943aa7ae5fee9221b0400d9ac2ce5241b09a68cde6b13c47d50bf310ecb37f25c32770a299020d8500d8a4b5d7621e4379dbd6ef34a9aceefd4055ea6144f54bbfedefb5b5b0fbd1d81c7a51a802072ec3d84f34585f22c1df84caca07849b1ef054cbef9b40848e9fd238761df5358cf55a79a53a1bc749e49ffab7c5bd9a28bf24ad5833facf43bcc3852c1e85cfe47929fc49c325c20d74588eb9833519f192243cf96625057899b70a7c93f8fdbfb60d8129d9c43c95f8782ed8293641ffd21d21d91a0b4db69d766f6d6497e9a414ceb04b65425d6ad6c8811da00639dce8d8030038f2d08330c75b0879aab81bfb3330b950e54c13780d308fceed2a103a1a8b77a923b66aba737654ba7995acd306aa7b80f632184412e2369c353c2132ae614553e626f0a3436959104ba6e0040dc597dfbc3602a49e401bf2249699375b2c722083489f54fcdc1f616a133ef6112a1754818158ff78f245b9046100b0e89407f74145fe336976af971c054f12d98002c68b3aa2bd699fbcd71bc4dc071e430bbf694595a951e01098aaa499be2f70611f248a694539ef8936b2e8b7a3c5de8662436fed1f7bc24a4e5c17a663d9a23b4692993301b08cb3bc10f518eca51081c717ec8dfbb0c2669f7987fe6aa0bd98231d8e8b58951b42537f12884a857e02d62de4fda6b88b6b754b1b27394c6a819e0f92f6b2b2473fe245678e252ed31477cc7ec6895bc361b718fcab3aa550fc9faeccfe77cdb5b151ab1db2e569b5bc923ee26f0b6113504d295112d47218140e44652a10af10a088f95c7cf2fccd040fc93980939122411ec643e26e7d69ced3178402e320fe156e774b75b5afc2f3d6b6ab828bb4993b1436faa5728cec34d66f520f59e82716ed6d1324944c3c91d04d5ffc5a921f4716c39de24768484d0096f7d8dbce35aeec22db11f899e5e7e3d57e7668f35d6c0db3542255d9262137d39ae6cf9bcde254dfccc54a6062fcf8982f781d9ffab2df4f49ec04a72eb9646d63bf9e1799bc0bec0ec7f0675ed9f8dc9b8be15d9f2175dfa1c8bc99071c70ad7bedb10a4143fa91c89f54777f84c9eae9361cf7f4c2b7ab873ee5785a5241db0af86f3c6d7f091623d6dc576d07550a42023633a09c8dfa21d7e70cce64c13f37663f75c47921c246f3f2d1d16a8283ce7697da4cb7e016971a2a1d0c59d6202bc18b7cee3828de597efdab53b33a9fb41aa7b49f1c964512901773bb396ac80e90ba1a94c408b2860065ae9aec64a41d76cf8842d299d0babf14d5840d647d075c34175e26a786f30091a24f1ce8db30137520dce1cfffb6318a0d0fdcac883eac603bf365efa2c806eb4f194cae8c16780342165222192f6ee2e103ae2a31dc08a84dfc89c64d2e9ada7ca1839dfff62ddfb7982c79684cfc821a098bc6bf09f87317209b16d14d45c6f38fc99f7bf9bb73460977bb323665d480c87c687cec052a5f08a2c6744c8e177a8a269b4a47a925b9123cd2c014313edae988f8aeaeb633ee5ba6be7f53fe36da3aa37ab2077f5fd75a82a55a0fe62af213b85e9e7694f78cc2b0e63a8c1b89db484722fc62c688678a511c474f0eff8eef1382946d26de00e5c626ec1d7079445c1b7c6f7f05073249b11fd1fb30257724a14cd7bbf451146bf366de2e826fdf1d25705587c4460040ab963e3bd504755b6aa5b18786b68efd3c8e59e8dbd172346fe7f4a18bac98164669d73984044f3c777368f965763742ab86a3720208c64801c796f6e3a1c4748b81e41ac58dcf6ecfa0453b18fad7e3473604f57f7da302e1fa81ad538d4a0280c4ad092007bb9a7a12907227a936871886c699db97d00a1966fdef64d9f3672f1b792c1edadc6781b391c91bea1bd7275f30859dbd1707b1f554e49ceb874ca06e92ab466efa7eeb6990667a27507a7ba789e24d593ea2af8eccb3862cce58daa63eaf212bdd86c01ed471cfc79b191c481ad773d20e821d18af85a7049034e5a9c660357a4c2808b9a6139f32c55c13282b8d98904f4f027d438189dc9487c96172e50dc1100ccc224e7374cf96ea6731032c43fbc9b367a4d1d0b31aa3fa8eb589672e69f1d9144114bbd508d56c2049ecdbfd7b43545375a099ad2885353d8c550d22dbb738e6fe3f104b444c89475a2cc24d7887daced8fa05006c02dfded01c00707e2ad04c41199c5decc1eae34b0c0abb5a5beee1b5253c3350e1a077682767a0b9124a4df2e8879366fd37fc04d4dbcf89883892f46a65ce3aec22123cbe6b3af6364df1f9f5f9751bc8179b6dcc5c126dd65feb7d11a85994e90ab6342834c79c5f82413e88198c73e932c66e3cb60b6e0c0cf438622e5dc5a1036c38afe9cf13559044a9e90f5fd72a3188ef6b1043f5f4e6b40ea51f6235dcb33b3099b2d8c2e02103235f0476ad51bce6d8a2934068549633e521a3ee4c62c22b042fb86c13c8da849233205a5e277aea1129678c31f5c379a71fe08b72fad9449cb923126dd465d1e0ae8a925374149b8248b3afb69f168f3ae701c00f6ea08fe07f1b5338ce6af2f3156ba6f300310114479f2f6119367c88c12c158b84be13b9c8c7b5dd7c90edb5b3ea1fa5927a25ad6d5596992dcd4877f58a134e05dcd80dde4fc2c2a680cc0ccf3084d3f4970e3603fa6bc5a180fcf1ca4241c0b8a1e7c607dc025016e297e2b0645de4ec2fc49851b9374f3ef99edd897c284a67b647ca8c96fcef935d541e9faf334043ea50b99fb8819ecce039227b624e52d8c20003b5a43808e4990da8e4398c4fc172b983351fd11a13dcd2aae5193d42d46e1b57c92e3e01d23fc968c729f3782d6c07dd5a17af2bda96735c12cc7d8023629fb0125e974425f7914690a7ed26508343ae58c8a439ebb6232049a194768d4594f5d65aca37a5686c2a86dd04bef35d74e0755937ac0ce3ebded1c00c8adabf030e5e4a5f44193b62fcf2f1bfa9dca2a25afaf2f1ec06c5d17ef3526d26d17af3e2f257ded24b177ba41c0ba64fd4fbd5042fbd5961a105e0e9f77f3db13c1b6c5bd9a9d04801a5c00a4c544218a21016c65bdff774a44b1d05256e0693e14d76605d67bd10048d3816caf31a6d10886c88c783538bd93e92bbc4484f3388b61adac4b92b911c76ebb1dd11b7b4e40be032bccff610068746f41e34a1fbfbfe5faf57c8a4331008e2c1cfd69f57e74379ac80eb6769f4ce4196795b835201ce4ec85ebcaf5eaaec242fe6695cbce1d53fde5b002e006bba8c8a1ee57da061ceed0d21bdd57ab0cab9e46bf3764d9a6c3ab19736d43b33f32eb955f9174ee4a54666e7f19cefeb49aac7a59b7370d9ae730b7bb4e08413222f0a66bfdac252fb61bcfa838f262312febfde8add8f6843f1d64ea3da42d4ef986498604d65737a44f5a099338520cdbdb65ce73b110dd4bcf8592a4adc3e0170b13404f99f0ec8f9fb225c1275a921f09369db165e9109dd5be472b9bc1901bfd882d264d9ed8d88b4c8f3b35f88b69e3e4b8ef5debb895be536a3af492d968dc1caf31879d672f70ad9869ea98335cf9e4a2760f955fd3e8099e4b2eb4269e354548f9de9921e50e49f3f5cbd63468b9db0cfdf17250c8f13535d4c0a1f21c87967cd798fe93b9b2960447401ef90db22c3adfba0f55f5585ad37040e8d6745184dd536d5a26edec365bd6edff1bcc616cdea3bfc8b9d98c0ef9a626054e361194cd05b2287612399f6d3d3be2f71555f14ad2893af6f60ab61adef663c3c2464ade671dd5ebc71935aad290573588fe6e11f48cd2b7db62e4b9932890d1b96e1b83eff70f026d199db75fb1e83197c937b672613c66ea131f485b4318e27c079b4018d4205484993bf50ce70275b244f2caf47cb47eb2a9ca59afbc78809a912eb56a4bb65cae4694f682c6329c690003a1c355f779b5857a60091b1c3685995a366cb43d753a704d3e59c5f5003c78feed877351e27334b3fdefe5907edd9eb25588a42248b9c4a93efa7cc63bad1e5900b95b70436c35eb85cc8251c4030fab9556920141cca24d6acd3122b92b7e868dc174bf071117958a4797fc90866aca685f1456fab397ae647ab9970348082bd74865bab7f248568db98ced7ed84e8360fa91afde3f23509e6b4caf948349ad9fb6a4efe0a0468302cae7a0f999195af1c19058669fc3b88b2780b9075dc180298498caeb7ba0cf8bd42eb36b1959d5ad3ca6fd1e85f76abd27ec5fb637ee38173ad7d86304d5708b6dc8817e099e77f5d43c1a70624cdb96e4e6103bb25e59eb51d894d1dc533a74005bb79cca35b66e10c61d06b5227fcb071457025d605a0862218ca252b871f8343ec231dbee15688aeb914c0f16ebabe6edb0a489b2bd10d4392c6f1863bb6a62181de7cef61997ab02f3bad0a893cc0cd8a99cd7b3f7773085f0929de36b5d124e3729140c375de9a2d0cd9a360cadf17b9e45b7f2adbdff9e75b743b62642ed67aa703b8ef33dcf51a50edc7dbab42d3d2b49badd2457a9f92847aa6a60ae2beae457a5fce1a9e485ecf907be22913893cd1350f20fc6c81c94be426eaf01864e813a03e4674491b61516bc95d8a77c15f03d0adfc4adc27f27a5ac4165ff6518eda1a5c408708f78a9e26b834179804a312148d4f75f21a77d78387139da40c0a6293c2a59d0162437d68504f189ed970c5abb9ffc6d8e1be2b0877c7f24b1dc273b1765bfc5ce6f4b8d99a96d5b1c92ee53a39f685b304313d909c1ba8130d20d51c824cec420b0315229df295f75b453a6c131afaae0c36d7c4fff70623638a4f7ded5eb7db58d95deb6249a29b171d8ce651556dee8037bf4ca74453a4a76aab7cc07ba44e55de57dbef8542c3851ea353fb8e259ee89bbecf9ce8d8bd6227afc0028afac48a7acd9b4e8cbe982eb1475917ad6be4cdca9cf6e7cddd971b2924f2bb730264801685d387485e41993c3fa0af9987e8b52c21688fd9a9595ad8d1b9f41e0457be18492aa09f69e64e2954d1ca3cc1d32b2915cd9cf6862ca79c80beb47347c4cceadf48a37b29b1d6de4e94717d60cdb4293fcf170bba388bddf7a9035a15d433f20fd697c3e4c8b8c5f590ab44aefdda94681407008ea48d03ff21e9bbb4ae7a9aa37c855fe3537c44106e8079f18c24d2584474bd4a99367660ce6f7e6d7c294961e174366e7babc569d5f80572a21a4bd7086629363e0c9ee2599c8b8863c96613ae6c32cc67ccafc66e1cce79654567ad08e62e9abc99e44d6a79ca4d8de15b7f8a763a4741676af0e1f3bd4e002c8fa1ebfbb3bd3a65ae68a80c230422f98f6e1e9837252e045eafd585ba389958297d59aea1e8e1f665fcbc5f7ff449996aa712dc0faf582cf3caf3dbae80594f9f07fc06de63d9d672d14d7ac4662b4a54f40d4aab2de766910be2fc7f6f679b5708790b5376498d3baf0463dca2f093b51bb7e9f3e7033ba0384af0174becc3bb477bc5e86959a12a5e8924adf0bffdf5e5b9c1cf24d232881ad5c05c5c0f50318ea83d8683339ca6a583c52198c00f7c1abbda282e7fd3b179297338ecf9c923a3a87a130dfc06164e9b4c1fe11d51b382643de44b30a6831dee119241d1b6f84f2484784fdf65e41f78c38e15fb4b00e45df1edc40e3467cdcda351a4c0a0185ac4649e91024377e1c331587a8586cc0a4dfe29e14004c3536d305f5dee0eeb8c2f216c1b8d27375b239f6458e08980badd6d82e9ee9e007578c0a3b48288d9ad0ec3c934a99a8c5741149af937dc82bdb545df26428b87fc935c05f1a4964a8408539f267e23de9bc498e2a4b0083cdb7c8e27de6252bfaf680a6d5b7ec1a6dac6d7d537334a95f1553324a0739414dbdb50445a767b0f589fd4c33b35905577ef5a53b0f097191f9cee4836a908748779941de2a78fe1bde0c2efd9f48cbf232ce101d9df93d3ed40d036ae7aedc3a5ff619abd1c159ca8d2dbda7de13b4ca62576c7f925c52925eae2d7500dc969fe14c0a335ff95a7df1d276a6f242765c781208d59edb5848d412b11638b27ce5a61b8209075976c2a6aae88f6e6d8704fe9e83b425dec4defeeb3cd311b8c5a818d51f917a8a4525361791d5c4fd5d70704d4b9fa9df1ea119882f400e682753a41931712c043c120a98f0fe786a600b47befefc9d64cc5bbe8a16c191490874e258760c9e4fd215bebf848e0b4d35521f53ec5f9308644b785171fc4cc3ff886e034bd833d59dbcacebdae8f00e43c151bcb24d1d226d1cc19ecf349361530a81ba3168af3df5536fbe52b3b93621f57959df298e5b4d3c14928d2ef7b9c977c7dda54242d17f8661978a62d94d565b00abc199790b9b25fbfd4a3ffc35c95ccafe35d9a138a2c24d17f06ae2cc376e822317f16fcbcd56e23f84ec135dc935e58c61b34cfbf5a36cb00350483b6bac786030e5c5045a6b61c9aba7dfaa4f7fb21897539863ee865ae061a77c0359915de3aacb3b5dc8cfe53c4d17b393c2b6bb23652f36390407922969d510cc97b99d1df4361530aef10707d7a021b2d9576b2d49ca88b3cc83ad1baa6d88ef8c81c08f8baaf515637b21ace9d5cc8fd9fe4ca6c3aa129caea7060791d566f4de8662b90f9e5d849cdadf9bd23cf6737b07ca105142663c30de27adcea11d64d433fe1ace84b0f6917c8b655f2a421602f07e0a7127e61ae9859c5e9f652ec82416fd2566f291f417ecdf99bf3231d02864e2e5a1cf34c13f59de9aa2760d8734bbda79576c62f566b8269990e9384a41c1634271acb4c7a8b768f276685c3a8c7f20872e56b683244b1af562c3e7dcf592a9915f44f886cc2ac5f679c07d5aa1fd69cf3a460f25c722073da336a310aa551062d92c7297002060072af2f3500b9310c239bedf45c5e985c2e0d60c7dd68522376dc7b560fb34d1b5089450c32ffcbff07b35a96bb6fe01259a06868d00af697f8bbb238d03d49570a109181c9576c1ea9d2ee02000cc23e63d6c93c6cf3050bbb15b6f73b09c25da62e5abd4c2bdb1110e1f25db39f04885595cd6a388c4726c8d4cdbad87d80d42fcaeae843e2e17f44c9aed25c8f6f9736c7ba1bbd3b839126de40a930024a65aacb872936e446114e706a868444cb140e53d976816983f3dd1d57eeca01eab8211b7aa8ae99d26e35c06ea4b226e0a6e52172a40e7f0df5f67759ae2ee026749ba10b8e33694c3e01a001526f9d75f6c419cdccece3ea3f78d69014e509c741214581034bbc7e2bbaf76db8421154abb2233117a1ffe2786b21424576e295c9baef262e80fa2edb69aff800b3ea436eb827e8adb73abc48d740b86c69d557b16e874038598b25f616afeb4f4a900be7dd0d38b5b6fb4259c51a3aaf4748d7a445f518485ed72b25c7df8ed0906b74bd29bd6a5724ac3a503c990f3697a5db484821f68718470810862728a80ce34599a41fc5bd8bb46dd845a4812ae1532c457ef4211d0e41835e5a6f030247614822571c930c727ba397e723d6b3aeba9244f054e331c82e65b74c9f6504c74b4301499a1a6f6269a3352aff57f88442d4eda42a82ebcf7776c5629f97d6160bffdd8282a40ce2e6375b161e4c22ee53bce7a45f4774aa827e2da657e1a1bc07445f0bbd770b7a5a25b1b469fd58715510dbf8d97af4e1b9459a20b08a8d3fa9d92feb32db95b22d36de0bc8b1c397b09970a6826392fd8392b2d790dcc1295888f42ac81ad213c7328b2324b28be7cc1f4fb8414a7785472f1dd3e11d66017b1756d1697be92490e15f056346d7e9126a1f35fd76cb016fe2841c8996a3507c4fffe7fc45026df10b03b86fb6cf26e8418926a030b5fa62748fbb728fa19dc2f8947468c1477750771e442e4a9d25b76d359211c05df788ade5b7824f8770b5dac0819737dec916ee59b28a49666ee8b7ca81386eec8049542f18a3207e51bdbc291470eeefecac385c096a | ||
| 40 | |||
| 41 | [L = 32] | ||
| 42 | |||
| 43 | Len = 16 | ||
| 44 | Msg = 43cd | ||
| 45 | |||
| 46 | Len = 104 | ||
| 47 | Msg = 5f75a437ce0698a7d8151c3fe0 | ||
| 48 | |||
| 49 | Len = 352 | ||
| 50 | Msg = f88bac738d1e3e10f75e46e3fe026d7e423fdcf3d7e4028b33a291bb4aabca53f780fbf99e0346d610d4a38f | ||
| 51 | |||
| 52 | Len = 488 | ||
| 53 | Msg = 832e5b78a73a1012ee62e00621db7f4d248893007c6e5d6e0e689c6b291baeebc72df9cf10b289fe20e7fab80a2399271d0ac63766049da875eed56264 | ||
| 54 | |||
| 55 | Len = 13976 | ||
| 56 | Msg = deab57cdeb41974037a9bef5e292894038264eb4d8993d4d1501e6ef9c68fb0f571f57b0925640925deae9a6317e3bc4d6cdd5a0833e52fb48baca16a9ba9b6c8ca469a0555763b54f04c87d4e41aa549258f30eefe5a52d2ba06657a8773b0842e094857b6d8911d6a0636280025e56356fade362b4bf4c875cc19be0c6644b447be0454dbf390eb966c03e10e9de3487b90d0825d327c12495e3c89ad09c9d591e55c91376fb14c2fde9f7461fb25450df1a65806b65f3caf4d5c81ebc6e664871fcf915b9578bb70ee6776acc62205888dce2baa4024941209e81b4b35f0eda1bdcbd9ab1d6db6140bda4c41776fe675d5c681da5852d50c246dda4ddf9fdd7c5fdfeec85ff6c883c78689c2977584406a1ddef977606c182d6c33561c39c071668a2515e5aa6f4aa1faa392aed95b82ab32b79a15e3b5a07551ab068455131b72493126470f26c30b852e4415e1d8b719b3803ecc336e4facbcc5d1908851f4f39b776bec8b6b9794d47e5965458858560eed5a0305e260240c0849d93a19787b0f8c795eb5ba32be573845256ae6d0b0a3336e42a1beac8bdde6d1b6e0b6207903d4b105f4af2ef89bd099ded870daea2f170e03bd5f6f4490e60bc222d4876e16d4c58aeea6e6c400dbb9e9f4b2b142f0fc9bdeaf4132ded38a4a8366e107cac7210945fa2df4b124be37ef76290e5b9758aa3bfe0091bb0448206323584c2f833e0edfbdc0c33075fc9647a3404ca490bfab94302a0679a1a42fe9fec6af0cd98038b09ffbecd2832b579b2294f6ae5b96328fdc0a0b9b3a32cba04fa8bae3389c3951173bdc17caaefe526aa386f98670b177683d0b804c5875fe9c7afa233ee66349c9fd1b60bb0becf5e1d887e67fd3baf34b4f90d94699d18d6bb9d77d4af358f31edc254de2d6c5fe3ec07425c633b18c1b9e3606b78b40b543e1fd31fb578cf58c45744fc073fbf3c7d7d607e815379a5fc565892d81560eab8fb5f1ae6771b998c592e6d288014f13ab283d53fcbfa66e31a9d107308402191fac2cf2b799c7dae91b93a7676898b8a6e516a86eac58ed8f6d8ed2fd4d38031e4a4466dc8798b90c48e6adb6b4391d47872443cfaffa542b4b132f6c3408f0081af8692aadb4c9bbd55053ea56d8b82998f6b4b41d331891acfe6af1bb0d6679989978368ea463743b514866d2d01fb9950e8990867bc14f1db1142254adeccf3da812949cd03cd1d569e9d0bab7ca7405cc21096e3cd4d007cbb9629372e98584b4c6b97ad0bc314e1ab6ac71184ee555c01973570ed9b115bed956f9e4e349083013098b1e483f0fe44d5e9849f38a2f7ae152b36a266ea1faf263ea8c706632ba8629602187379546fc6b82e57ededd6d074c15c771754710731e07c207899eb47e8d7c72ffd768c36257d373375ffa06f9b3f0af11417f9ff9f9b44e1f1f96ae8aaa429af88b14da1da81c7bb38a0fe9372ed6a9ac6fb5e9e56b82593d94c5192904450227bf040b7ce0904789f979845e112a1f995c849ec3f7e49bd975a474e8201630f40fc0d80e76019f110ae158cd0f8da96ea4561f24237d8e795ebf52368218bff3e9d5b040ecd2caef4ab1e7127e53bfa2b3b4fb74829f9993ac703192aedef79dd9ad24c2c976638b4575afbce22ecacc273ba43379ed55ceeb51838b0adb80585bd1b5f2707ee16b67a7232adf7163415b24b9ff9dc94b7197fdc89e2a90d2b9eccde45e965edd064dc0d1eadabe11b8ec3aad2742b5d3323ebf913a92817749090c20758f98aef2544d4c8b48874e8936d7ee492d5585675c214deeb74fd67c4d170ac5e0aeefa607c6e37abd4f8238e776fde3921afab75cbd8f392d3e88da057903ce2e140797f4a85737bd89455e6aa27c7535687b78cd0ea59848e006c8de9c9c0cbc7a9f5e977be850adc710503ce4ba7c7bd0b042297f518abec6c8ef451c33e030251f506cbc3744228b6bb4dab86877d9e6019a0ea9f39ed37557b3b5527c171da5f013e0d3c480a038cff2c087d6e5d41b17e6c8f90c334b5e2b9ccbe9d4efd99fba1f907d00a49b71b5a08aedb644fed24bcf04e71be67b03cd20d53ccef8f854f5e9f7f28c1e98a8a53496646713bebe15a93f1ea336e6e8a4e68de5dab0fe880bf983eec75d1c5027357f6669e098411e0bc3ea2293138f5b34425f78b6508b94d4c0cc32ee9afaa409a26e5f2a1fddcd6d5ff42a89755a58b08f243957a2e208e24b055f51992ab447bc06876eba169c545fa71b88a0fc15d1e0be9d334a1dd0c86f44bd149b42c07608a9a30d0b7e13574f8d862f2ac72b2ed38904d7cab194fdb9e4dcb615f5610b24e202a36866baccac01fadb575df11dd43e00a3b92fcdd8c7702ea49d951e7dad2a56c075730b4af1ceda2bcb2310256f28312579fad40ff471336ea6a44143edfcffc297258d48bd2ea47efab8f0dc00f1e6dba1a55009ed627b7 | ||
| 57 | |||
| 58 | Len = 48824 | ||
| 59 | Msg = 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 | ||
| 60 | |||
| 61 | [L = 28] | ||
| 62 | |||
| 63 | Len = 16 | ||
| 64 | Msg = 3dd2 | ||
| 65 | |||
| 66 | Len = 104 | ||
| 67 | Msg = 3d232201038fe7d846ac1bd4c6 | ||
| 68 | |||
| 69 | Len = 352 | ||
| 70 | Msg = 44c98cfc71f82215dadf494d68d1d6b92bb4eb81fa0fbf945a659d9aa2c2302b5c93fd3eedba31e479e29d36 | ||
| 71 | |||
| 72 | Len = 504 | ||
| 73 | Msg = 02a5c7b1b749d6d49bed302d9439f23ab83020bd4d573906f4190e74216ad33aceab775f71cd31092bba5cfa42f0845bd16fc1b8bed6434dedc92f80b395aa | ||
| 74 | |||
| 75 | Len = 13976 | ||
| 76 | Msg = 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 | ||
| 77 | |||
| 78 | Len = 48824 | ||
| 79 | Msg = 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 | ||
| 80 | |||
| 81 | [L = 20] | ||
| 82 | |||
| 83 | Len = 16 | ||
| 84 | Msg = 8a61 | ||
| 85 | |||
| 86 | Len = 104 | ||
| 87 | Msg = 37487aa02b03bdbc6bc62e7e26 | ||
| 88 | |||
| 89 | Len = 352 | ||
| 90 | Msg = 6ecd002568bae3bf1873993041bfa292eb94e9ad092d8eb3585be82e8a20cb36a47a06e7a57d301268a4a533 | ||
| 91 | |||
| 92 | Len = 504 | ||
| 93 | Msg = f6dc1d2f6b8e126d99939664693d8709513f97d730074ec2794e536d94ede79c81f2b2ecbff3c2c26ca2d181ada2c60050997f3bb087ce48d956c18dedb227 | ||
| 94 | |||
| 95 | Len = 13976 | ||
| 96 | Msg = 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 | ||
| 97 | |||
| 98 | Len = 48824 | ||
| 99 | Msg = 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 | ||
diff --git a/src/lib/libssl/test/igetest.c b/src/lib/libssl/test/igetest.c new file mode 100644 index 0000000000..95452d0965 --- /dev/null +++ b/src/lib/libssl/test/igetest.c | |||
| @@ -0,0 +1,503 @@ | |||
| 1 | /* test/igetest.c -*- mode:C; c-file-style: "eay" -*- */ | ||
| 2 | /* ==================================================================== | ||
| 3 | * Copyright (c) 2006 The OpenSSL Project. All rights reserved. | ||
| 4 | * | ||
| 5 | * Redistribution and use in source and binary forms, with or without | ||
| 6 | * modification, are permitted provided that the following conditions | ||
| 7 | * are met: | ||
| 8 | * | ||
| 9 | * 1. Redistributions of source code must retain the above copyright | ||
| 10 | * notice, this list of conditions and the following disclaimer. | ||
| 11 | * | ||
| 12 | * 2. Redistributions in binary form must reproduce the above copyright | ||
| 13 | * notice, this list of conditions and the following disclaimer in | ||
| 14 | * the documentation and/or other materials provided with the | ||
| 15 | * distribution. | ||
| 16 | * | ||
| 17 | * 3. All advertising materials mentioning features or use of this | ||
| 18 | * software must display the following acknowledgment: | ||
| 19 | * "This product includes software developed by the OpenSSL Project | ||
| 20 | * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" | ||
| 21 | * | ||
| 22 | * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to | ||
| 23 | * endorse or promote products derived from this software without | ||
| 24 | * prior written permission. For written permission, please contact | ||
| 25 | * openssl-core@openssl.org. | ||
| 26 | * | ||
| 27 | * 5. Products derived from this software may not be called "OpenSSL" | ||
| 28 | * nor may "OpenSSL" appear in their names without prior written | ||
| 29 | * permission of the OpenSSL Project. | ||
| 30 | * | ||
| 31 | * 6. Redistributions of any form whatsoever must retain the following | ||
| 32 | * acknowledgment: | ||
| 33 | * "This product includes software developed by the OpenSSL Project | ||
| 34 | * for use in the OpenSSL Toolkit (http://www.openssl.org/)" | ||
| 35 | * | ||
| 36 | * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY | ||
| 37 | * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE | ||
| 38 | * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR | ||
| 39 | * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR | ||
| 40 | * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, | ||
| 41 | * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT | ||
| 42 | * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; | ||
| 43 | * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) | ||
| 44 | * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, | ||
| 45 | * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) | ||
| 46 | * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED | ||
| 47 | * OF THE POSSIBILITY OF SUCH DAMAGE. | ||
| 48 | * ==================================================================== | ||
| 49 | * | ||
| 50 | */ | ||
| 51 | |||
| 52 | #include <openssl/aes.h> | ||
| 53 | #include <openssl/rand.h> | ||
| 54 | #include <stdio.h> | ||
| 55 | #include <string.h> | ||
| 56 | #include <assert.h> | ||
| 57 | |||
| 58 | #define TEST_SIZE 128 | ||
| 59 | #define BIG_TEST_SIZE 10240 | ||
| 60 | |||
| 61 | static void hexdump(FILE *f,const char *title,const unsigned char *s,int l) | ||
| 62 | { | ||
| 63 | int n=0; | ||
| 64 | |||
| 65 | fprintf(f,"%s",title); | ||
| 66 | for( ; n < l ; ++n) | ||
| 67 | { | ||
| 68 | if((n%16) == 0) | ||
| 69 | fprintf(f,"\n%04x",n); | ||
| 70 | fprintf(f," %02x",s[n]); | ||
| 71 | } | ||
| 72 | fprintf(f,"\n"); | ||
| 73 | } | ||
| 74 | |||
| 75 | #define MAX_VECTOR_SIZE 64 | ||
| 76 | |||
| 77 | struct ige_test | ||
| 78 | { | ||
| 79 | const unsigned char key[16]; | ||
| 80 | const unsigned char iv[32]; | ||
| 81 | const unsigned char in[MAX_VECTOR_SIZE]; | ||
| 82 | const unsigned char out[MAX_VECTOR_SIZE]; | ||
| 83 | const size_t length; | ||
| 84 | const int encrypt; | ||
| 85 | }; | ||
| 86 | |||
| 87 | static struct ige_test const ige_test_vectors[] = { | ||
| 88 | { { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 89 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f }, /* key */ | ||
| 90 | { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 91 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, | ||
| 92 | 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 93 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f }, /* iv */ | ||
| 94 | { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 95 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 96 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 97 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, /* in */ | ||
| 98 | { 0x1a, 0x85, 0x19, 0xa6, 0x55, 0x7b, 0xe6, 0x52, | ||
| 99 | 0xe9, 0xda, 0x8e, 0x43, 0xda, 0x4e, 0xf4, 0x45, | ||
| 100 | 0x3c, 0xf4, 0x56, 0xb4, 0xca, 0x48, 0x8a, 0xa3, | ||
| 101 | 0x83, 0xc7, 0x9c, 0x98, 0xb3, 0x47, 0x97, 0xcb }, /* out */ | ||
| 102 | 32, AES_ENCRYPT }, /* test vector 0 */ | ||
| 103 | |||
| 104 | { { 0x54, 0x68, 0x69, 0x73, 0x20, 0x69, 0x73, 0x20, | ||
| 105 | 0x61, 0x6e, 0x20, 0x69, 0x6d, 0x70, 0x6c, 0x65 }, /* key */ | ||
| 106 | { 0x6d, 0x65, 0x6e, 0x74, 0x61, 0x74, 0x69, 0x6f, | ||
| 107 | 0x6e, 0x20, 0x6f, 0x66, 0x20, 0x49, 0x47, 0x45, | ||
| 108 | 0x20, 0x6d, 0x6f, 0x64, 0x65, 0x20, 0x66, 0x6f, | ||
| 109 | 0x72, 0x20, 0x4f, 0x70, 0x65, 0x6e, 0x53, 0x53 }, /* iv */ | ||
| 110 | { 0x4c, 0x2e, 0x20, 0x4c, 0x65, 0x74, 0x27, 0x73, | ||
| 111 | 0x20, 0x68, 0x6f, 0x70, 0x65, 0x20, 0x42, 0x65, | ||
| 112 | 0x6e, 0x20, 0x67, 0x6f, 0x74, 0x20, 0x69, 0x74, | ||
| 113 | 0x20, 0x72, 0x69, 0x67, 0x68, 0x74, 0x21, 0x0a }, /* in */ | ||
| 114 | { 0x99, 0x70, 0x64, 0x87, 0xa1, 0xcd, 0xe6, 0x13, | ||
| 115 | 0xbc, 0x6d, 0xe0, 0xb6, 0xf2, 0x4b, 0x1c, 0x7a, | ||
| 116 | 0xa4, 0x48, 0xc8, 0xb9, 0xc3, 0x40, 0x3e, 0x34, | ||
| 117 | 0x67, 0xa8, 0xca, 0xd8, 0x93, 0x40, 0xf5, 0x3b }, /* out */ | ||
| 118 | 32, AES_DECRYPT }, /* test vector 1 */ | ||
| 119 | }; | ||
| 120 | |||
| 121 | struct bi_ige_test | ||
| 122 | { | ||
| 123 | const unsigned char key1[32]; | ||
| 124 | const unsigned char key2[32]; | ||
| 125 | const unsigned char iv[64]; | ||
| 126 | const unsigned char in[MAX_VECTOR_SIZE]; | ||
| 127 | const unsigned char out[MAX_VECTOR_SIZE]; | ||
| 128 | const size_t keysize; | ||
| 129 | const size_t length; | ||
| 130 | const int encrypt; | ||
| 131 | }; | ||
| 132 | |||
| 133 | static struct bi_ige_test const bi_ige_test_vectors[] = { | ||
| 134 | { { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 135 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f }, /* key1 */ | ||
| 136 | { 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 137 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f }, /* key2 */ | ||
| 138 | { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, | ||
| 139 | 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, | ||
| 140 | 0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, | ||
| 141 | 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, | ||
| 142 | 0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27, | ||
| 143 | 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f, | ||
| 144 | 0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, | ||
| 145 | 0x38, 0x39, 0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f }, /* iv */ | ||
| 146 | { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 147 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 148 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, | ||
| 149 | 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, /* in */ | ||
| 150 | { 0x14, 0x40, 0x6f, 0xae, 0xa2, 0x79, 0xf2, 0x56, | ||
| 151 | 0x1f, 0x86, 0xeb, 0x3b, 0x7d, 0xff, 0x53, 0xdc, | ||
| 152 | 0x4e, 0x27, 0x0c, 0x03, 0xde, 0x7c, 0xe5, 0x16, | ||
| 153 | 0x6a, 0x9c, 0x20, 0x33, 0x9d, 0x33, 0xfe, 0x12 }, /* out */ | ||
| 154 | 16, 32, AES_ENCRYPT }, /* test vector 0 */ | ||
| 155 | { { 0x58, 0x0a, 0x06, 0xe9, 0x97, 0x07, 0x59, 0x5c, | ||
| 156 | 0x9e, 0x19, 0xd2, 0xa7, 0xbb, 0x40, 0x2b, 0x7a, | ||
| 157 | 0xc7, 0xd8, 0x11, 0x9e, 0x4c, 0x51, 0x35, 0x75, | ||
| 158 | 0x64, 0x28, 0x0f, 0x23, 0xad, 0x74, 0xac, 0x37 }, /* key1 */ | ||
| 159 | { 0xd1, 0x80, 0xa0, 0x31, 0x47, 0xa3, 0x11, 0x13, | ||
| 160 | 0x86, 0x26, 0x9e, 0x6d, 0xff, 0xaf, 0x72, 0x74, | ||
| 161 | 0x5b, 0xa2, 0x35, 0x81, 0xd2, 0xa6, 0x3d, 0x21, | ||
| 162 | 0x67, 0x7b, 0x58, 0xa8, 0x18, 0xf9, 0x72, 0xe4 }, /* key2 */ | ||
| 163 | { 0x80, 0x3d, 0xbd, 0x4c, 0xe6, 0x7b, 0x06, 0xa9, | ||
| 164 | 0x53, 0x35, 0xd5, 0x7e, 0x71, 0xc1, 0x70, 0x70, | ||
| 165 | 0x74, 0x9a, 0x00, 0x28, 0x0c, 0xbf, 0x6c, 0x42, | ||
| 166 | 0x9b, 0xa4, 0xdd, 0x65, 0x11, 0x77, 0x7c, 0x67, | ||
| 167 | 0xfe, 0x76, 0x0a, 0xf0, 0xd5, 0xc6, 0x6e, 0x6a, | ||
| 168 | 0xe7, 0x5e, 0x4c, 0xf2, 0x7e, 0x9e, 0xf9, 0x20, | ||
| 169 | 0x0e, 0x54, 0x6f, 0x2d, 0x8a, 0x8d, 0x7e, 0xbd, | ||
| 170 | 0x48, 0x79, 0x37, 0x99, 0xff, 0x27, 0x93, 0xa3 }, /* iv */ | ||
| 171 | { 0xf1, 0x54, 0x3d, 0xca, 0xfe, 0xb5, 0xef, 0x1c, | ||
| 172 | 0x4f, 0xa6, 0x43, 0xf6, 0xe6, 0x48, 0x57, 0xf0, | ||
| 173 | 0xee, 0x15, 0x7f, 0xe3, 0xe7, 0x2f, 0xd0, 0x2f, | ||
| 174 | 0x11, 0x95, 0x7a, 0x17, 0x00, 0xab, 0xa7, 0x0b, | ||
| 175 | 0xbe, 0x44, 0x09, 0x9c, 0xcd, 0xac, 0xa8, 0x52, | ||
| 176 | 0xa1, 0x8e, 0x7b, 0x75, 0xbc, 0xa4, 0x92, 0x5a, | ||
| 177 | 0xab, 0x46, 0xd3, 0x3a, 0xa0, 0xd5, 0x35, 0x1c, | ||
| 178 | 0x55, 0xa4, 0xb3, 0xa8, 0x40, 0x81, 0xa5, 0x0b}, /* in */ | ||
| 179 | { 0x42, 0xe5, 0x28, 0x30, 0x31, 0xc2, 0xa0, 0x23, | ||
| 180 | 0x68, 0x49, 0x4e, 0xb3, 0x24, 0x59, 0x92, 0x79, | ||
| 181 | 0xc1, 0xa5, 0xcc, 0xe6, 0x76, 0x53, 0xb1, 0xcf, | ||
| 182 | 0x20, 0x86, 0x23, 0xe8, 0x72, 0x55, 0x99, 0x92, | ||
| 183 | 0x0d, 0x16, 0x1c, 0x5a, 0x2f, 0xce, 0xcb, 0x51, | ||
| 184 | 0xe2, 0x67, 0xfa, 0x10, 0xec, 0xcd, 0x3d, 0x67, | ||
| 185 | 0xa5, 0xe6, 0xf7, 0x31, 0x26, 0xb0, 0x0d, 0x76, | ||
| 186 | 0x5e, 0x28, 0xdc, 0x7f, 0x01, 0xc5, 0xa5, 0x4c}, /* out */ | ||
| 187 | 32, 64, AES_ENCRYPT }, /* test vector 1 */ | ||
| 188 | |||
| 189 | }; | ||
| 190 | |||
| 191 | static int run_test_vectors(void) | ||
| 192 | { | ||
| 193 | int n; | ||
| 194 | int errs = 0; | ||
| 195 | |||
| 196 | for(n=0 ; n < sizeof(ige_test_vectors)/sizeof(ige_test_vectors[0]) ; ++n) | ||
| 197 | { | ||
| 198 | const struct ige_test * const v = &ige_test_vectors[n]; | ||
| 199 | AES_KEY key; | ||
| 200 | unsigned char buf[MAX_VECTOR_SIZE]; | ||
| 201 | unsigned char iv[AES_BLOCK_SIZE*2]; | ||
| 202 | |||
| 203 | assert(v->length <= MAX_VECTOR_SIZE); | ||
| 204 | |||
| 205 | if(v->encrypt == AES_ENCRYPT) | ||
| 206 | AES_set_encrypt_key(v->key, 8*sizeof v->key, &key); | ||
| 207 | else | ||
| 208 | AES_set_decrypt_key(v->key, 8*sizeof v->key, &key); | ||
| 209 | memcpy(iv, v->iv, sizeof iv); | ||
| 210 | AES_ige_encrypt(v->in, buf, v->length, &key, iv, v->encrypt); | ||
| 211 | |||
| 212 | if(memcmp(v->out, buf, v->length)) | ||
| 213 | { | ||
| 214 | printf("IGE test vector %d failed\n", n); | ||
| 215 | hexdump(stdout, "key", v->key, sizeof v->key); | ||
| 216 | hexdump(stdout, "iv", v->iv, sizeof v->iv); | ||
| 217 | hexdump(stdout, "in", v->in, v->length); | ||
| 218 | hexdump(stdout, "expected", v->out, v->length); | ||
| 219 | hexdump(stdout, "got", buf, v->length); | ||
| 220 | |||
| 221 | ++errs; | ||
| 222 | } | ||
| 223 | |||
| 224 | /* try with in == out */ | ||
| 225 | memcpy(iv, v->iv, sizeof iv); | ||
| 226 | memcpy(buf, v->in, v->length); | ||
| 227 | AES_ige_encrypt(buf, buf, v->length, &key, iv, v->encrypt); | ||
| 228 | |||
| 229 | if(memcmp(v->out, buf, v->length)) | ||
| 230 | { | ||
| 231 | printf("IGE test vector %d failed (with in == out)\n", n); | ||
| 232 | hexdump(stdout, "key", v->key, sizeof v->key); | ||
| 233 | hexdump(stdout, "iv", v->iv, sizeof v->iv); | ||
| 234 | hexdump(stdout, "in", v->in, v->length); | ||
| 235 | hexdump(stdout, "expected", v->out, v->length); | ||
| 236 | hexdump(stdout, "got", buf, v->length); | ||
| 237 | |||
| 238 | ++errs; | ||
| 239 | } | ||
| 240 | } | ||
| 241 | |||
| 242 | for(n=0 ; n < sizeof(bi_ige_test_vectors)/sizeof(bi_ige_test_vectors[0]) | ||
| 243 | ; ++n) | ||
| 244 | { | ||
| 245 | const struct bi_ige_test * const v = &bi_ige_test_vectors[n]; | ||
| 246 | AES_KEY key1; | ||
| 247 | AES_KEY key2; | ||
| 248 | unsigned char buf[MAX_VECTOR_SIZE]; | ||
| 249 | |||
| 250 | assert(v->length <= MAX_VECTOR_SIZE); | ||
| 251 | |||
| 252 | if(v->encrypt == AES_ENCRYPT) | ||
| 253 | { | ||
| 254 | AES_set_encrypt_key(v->key1, 8*v->keysize, &key1); | ||
| 255 | AES_set_encrypt_key(v->key2, 8*v->keysize, &key2); | ||
| 256 | } | ||
| 257 | else | ||
| 258 | { | ||
| 259 | AES_set_decrypt_key(v->key1, 8*v->keysize, &key1); | ||
| 260 | AES_set_decrypt_key(v->key2, 8*v->keysize, &key2); | ||
| 261 | } | ||
| 262 | |||
| 263 | AES_bi_ige_encrypt(v->in, buf, v->length, &key1, &key2, v->iv, | ||
| 264 | v->encrypt); | ||
| 265 | |||
| 266 | if(memcmp(v->out, buf, v->length)) | ||
| 267 | { | ||
| 268 | printf("Bidirectional IGE test vector %d failed\n", n); | ||
| 269 | hexdump(stdout, "key 1", v->key1, sizeof v->key1); | ||
| 270 | hexdump(stdout, "key 2", v->key2, sizeof v->key2); | ||
| 271 | hexdump(stdout, "iv", v->iv, sizeof v->iv); | ||
| 272 | hexdump(stdout, "in", v->in, v->length); | ||
| 273 | hexdump(stdout, "expected", v->out, v->length); | ||
| 274 | hexdump(stdout, "got", buf, v->length); | ||
| 275 | |||
| 276 | ++errs; | ||
| 277 | } | ||
| 278 | } | ||
| 279 | |||
| 280 | return errs; | ||
| 281 | } | ||
| 282 | |||
| 283 | int main(int argc, char **argv) | ||
| 284 | { | ||
| 285 | unsigned char rkey[16]; | ||
| 286 | unsigned char rkey2[16]; | ||
| 287 | AES_KEY key; | ||
| 288 | AES_KEY key2; | ||
| 289 | unsigned char plaintext[BIG_TEST_SIZE]; | ||
| 290 | unsigned char ciphertext[BIG_TEST_SIZE]; | ||
| 291 | unsigned char checktext[BIG_TEST_SIZE]; | ||
| 292 | unsigned char iv[AES_BLOCK_SIZE*4]; | ||
| 293 | unsigned char saved_iv[AES_BLOCK_SIZE*4]; | ||
| 294 | int err = 0; | ||
| 295 | int n; | ||
| 296 | unsigned matches; | ||
| 297 | |||
| 298 | assert(BIG_TEST_SIZE >= TEST_SIZE); | ||
| 299 | |||
| 300 | RAND_pseudo_bytes(rkey, sizeof rkey); | ||
| 301 | RAND_pseudo_bytes(plaintext, sizeof plaintext); | ||
| 302 | RAND_pseudo_bytes(iv, sizeof iv); | ||
| 303 | memcpy(saved_iv, iv, sizeof saved_iv); | ||
| 304 | |||
| 305 | /* Forward IGE only... */ | ||
| 306 | |||
| 307 | /* Straight encrypt/decrypt */ | ||
| 308 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 309 | AES_ige_encrypt(plaintext, ciphertext, TEST_SIZE, &key, iv, | ||
| 310 | AES_ENCRYPT); | ||
| 311 | |||
| 312 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 313 | memcpy(iv, saved_iv, sizeof iv); | ||
| 314 | AES_ige_encrypt(ciphertext, checktext, TEST_SIZE, &key, iv, | ||
| 315 | AES_DECRYPT); | ||
| 316 | |||
| 317 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 318 | { | ||
| 319 | printf("Encrypt+decrypt doesn't match\n"); | ||
| 320 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 321 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 322 | ++err; | ||
| 323 | } | ||
| 324 | |||
| 325 | /* Now check encrypt chaining works */ | ||
| 326 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 327 | memcpy(iv, saved_iv, sizeof iv); | ||
| 328 | AES_ige_encrypt(plaintext, ciphertext, TEST_SIZE/2, &key, iv, | ||
| 329 | AES_ENCRYPT); | ||
| 330 | AES_ige_encrypt(plaintext+TEST_SIZE/2, | ||
| 331 | ciphertext+TEST_SIZE/2, TEST_SIZE/2, | ||
| 332 | &key, iv, AES_ENCRYPT); | ||
| 333 | |||
| 334 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 335 | memcpy(iv, saved_iv, sizeof iv); | ||
| 336 | AES_ige_encrypt(ciphertext, checktext, TEST_SIZE, &key, iv, | ||
| 337 | AES_DECRYPT); | ||
| 338 | |||
| 339 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 340 | { | ||
| 341 | printf("Chained encrypt+decrypt doesn't match\n"); | ||
| 342 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 343 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 344 | ++err; | ||
| 345 | } | ||
| 346 | |||
| 347 | /* And check decrypt chaining */ | ||
| 348 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 349 | memcpy(iv, saved_iv, sizeof iv); | ||
| 350 | AES_ige_encrypt(plaintext, ciphertext, TEST_SIZE/2, &key, iv, | ||
| 351 | AES_ENCRYPT); | ||
| 352 | AES_ige_encrypt(plaintext+TEST_SIZE/2, | ||
| 353 | ciphertext+TEST_SIZE/2, TEST_SIZE/2, | ||
| 354 | &key, iv, AES_ENCRYPT); | ||
| 355 | |||
| 356 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 357 | memcpy(iv, saved_iv, sizeof iv); | ||
| 358 | AES_ige_encrypt(ciphertext, checktext, TEST_SIZE/2, &key, iv, | ||
| 359 | AES_DECRYPT); | ||
| 360 | AES_ige_encrypt(ciphertext+TEST_SIZE/2, | ||
| 361 | checktext+TEST_SIZE/2, TEST_SIZE/2, &key, iv, | ||
| 362 | AES_DECRYPT); | ||
| 363 | |||
| 364 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 365 | { | ||
| 366 | printf("Chained encrypt+chained decrypt doesn't match\n"); | ||
| 367 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 368 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 369 | ++err; | ||
| 370 | } | ||
| 371 | |||
| 372 | /* make sure garble extends forwards only */ | ||
| 373 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 374 | memcpy(iv, saved_iv, sizeof iv); | ||
| 375 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 376 | AES_ENCRYPT); | ||
| 377 | |||
| 378 | /* corrupt halfway through */ | ||
| 379 | ++ciphertext[sizeof ciphertext/2]; | ||
| 380 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 381 | memcpy(iv, saved_iv, sizeof iv); | ||
| 382 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 383 | AES_DECRYPT); | ||
| 384 | |||
| 385 | matches=0; | ||
| 386 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 387 | if(checktext[n] == plaintext[n]) | ||
| 388 | ++matches; | ||
| 389 | |||
| 390 | if(matches > sizeof checktext/2+sizeof checktext/100) | ||
| 391 | { | ||
| 392 | printf("More than 51%% matches after garbling\n"); | ||
| 393 | ++err; | ||
| 394 | } | ||
| 395 | |||
| 396 | if(matches < sizeof checktext/2) | ||
| 397 | { | ||
| 398 | printf("Garble extends backwards!\n"); | ||
| 399 | ++err; | ||
| 400 | } | ||
| 401 | |||
| 402 | /* Bi-directional IGE */ | ||
| 403 | |||
| 404 | /* Note that we don't have to recover the IV, because chaining isn't */ | ||
| 405 | /* possible with biIGE, so the IV is not updated. */ | ||
| 406 | |||
| 407 | RAND_pseudo_bytes(rkey2, sizeof rkey2); | ||
| 408 | |||
| 409 | /* Straight encrypt/decrypt */ | ||
| 410 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 411 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 412 | AES_bi_ige_encrypt(plaintext, ciphertext, TEST_SIZE, &key, &key2, iv, | ||
| 413 | AES_ENCRYPT); | ||
| 414 | |||
| 415 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 416 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 417 | AES_bi_ige_encrypt(ciphertext, checktext, TEST_SIZE, &key, &key2, iv, | ||
| 418 | AES_DECRYPT); | ||
| 419 | |||
| 420 | if(memcmp(checktext, plaintext, TEST_SIZE)) | ||
| 421 | { | ||
| 422 | printf("Encrypt+decrypt doesn't match\n"); | ||
| 423 | hexdump(stdout, "Plaintext", plaintext, TEST_SIZE); | ||
| 424 | hexdump(stdout, "Checktext", checktext, TEST_SIZE); | ||
| 425 | ++err; | ||
| 426 | } | ||
| 427 | |||
| 428 | /* make sure garble extends both ways */ | ||
| 429 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 430 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 431 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 432 | AES_ENCRYPT); | ||
| 433 | |||
| 434 | /* corrupt halfway through */ | ||
| 435 | ++ciphertext[sizeof ciphertext/2]; | ||
| 436 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 437 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 438 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 439 | AES_DECRYPT); | ||
| 440 | |||
| 441 | matches=0; | ||
| 442 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 443 | if(checktext[n] == plaintext[n]) | ||
| 444 | ++matches; | ||
| 445 | |||
| 446 | if(matches > sizeof checktext/100) | ||
| 447 | { | ||
| 448 | printf("More than 1%% matches after bidirectional garbling\n"); | ||
| 449 | ++err; | ||
| 450 | } | ||
| 451 | |||
| 452 | /* make sure garble extends both ways (2) */ | ||
| 453 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 454 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 455 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 456 | AES_ENCRYPT); | ||
| 457 | |||
| 458 | /* corrupt right at the end */ | ||
| 459 | ++ciphertext[sizeof ciphertext-1]; | ||
| 460 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 461 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 462 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 463 | AES_DECRYPT); | ||
| 464 | |||
| 465 | matches=0; | ||
| 466 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 467 | if(checktext[n] == plaintext[n]) | ||
| 468 | ++matches; | ||
| 469 | |||
| 470 | if(matches > sizeof checktext/100) | ||
| 471 | { | ||
| 472 | printf("More than 1%% matches after bidirectional garbling (2)\n"); | ||
| 473 | ++err; | ||
| 474 | } | ||
| 475 | |||
| 476 | /* make sure garble extends both ways (3) */ | ||
| 477 | AES_set_encrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 478 | AES_set_encrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 479 | AES_ige_encrypt(plaintext, ciphertext, sizeof plaintext, &key, iv, | ||
| 480 | AES_ENCRYPT); | ||
| 481 | |||
| 482 | /* corrupt right at the start */ | ||
| 483 | ++ciphertext[0]; | ||
| 484 | AES_set_decrypt_key(rkey, 8*sizeof rkey, &key); | ||
| 485 | AES_set_decrypt_key(rkey2, 8*sizeof rkey2, &key2); | ||
| 486 | AES_ige_encrypt(ciphertext, checktext, sizeof checktext, &key, iv, | ||
| 487 | AES_DECRYPT); | ||
| 488 | |||
| 489 | matches=0; | ||
| 490 | for(n=0 ; n < sizeof checktext ; ++n) | ||
| 491 | if(checktext[n] == plaintext[n]) | ||
| 492 | ++matches; | ||
| 493 | |||
| 494 | if(matches > sizeof checktext/100) | ||
| 495 | { | ||
| 496 | printf("More than 1%% matches after bidirectional garbling (3)\n"); | ||
| 497 | ++err; | ||
| 498 | } | ||
| 499 | |||
| 500 | err += run_test_vectors(); | ||
| 501 | |||
| 502 | return err; | ||
| 503 | } | ||
diff --git a/src/lib/libssl/test/testfipsssl b/src/lib/libssl/test/testfipsssl deleted file mode 100644 index c4836edc25..0000000000 --- a/src/lib/libssl/test/testfipsssl +++ /dev/null | |||
| @@ -1,113 +0,0 @@ | |||
| 1 | #!/bin/sh | ||
| 2 | |||
| 3 | if [ "$1" = "" ]; then | ||
| 4 | key=../apps/server.pem | ||
| 5 | else | ||
| 6 | key="$1" | ||
| 7 | fi | ||
| 8 | if [ "$2" = "" ]; then | ||
| 9 | cert=../apps/server.pem | ||
| 10 | else | ||
| 11 | cert="$2" | ||
| 12 | fi | ||
| 13 | |||
| 14 | ciphers="DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3-SHA:EDH-DSS-DES-CBC3-SHA:DES-CBC3-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA:AES128-SHA:EXP1024-DHE-DSS-DES-CBC-SHA:EXP1024-DES-CBC-SHA:EDH-RSA-DES-CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:EXP-EDH-RSA-DES-CBC-SHA:EXP-EDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA" | ||
| 15 | |||
| 16 | ssltest="../util/shlib_wrap.sh ./ssltest -F -key $key -cert $cert -c_key $key -c_cert $cert -cipher $ciphers" | ||
| 17 | |||
| 18 | if ../util/shlib_wrap.sh ../apps/openssl x509 -in $cert -text -noout | fgrep 'DSA Public Key' >/dev/null; then | ||
| 19 | dsa_cert=YES | ||
| 20 | else | ||
| 21 | dsa_cert=NO | ||
| 22 | fi | ||
| 23 | |||
| 24 | if [ "$3" = "" ]; then | ||
| 25 | CA="-CApath ../certs" | ||
| 26 | else | ||
| 27 | CA="-CAfile $3" | ||
| 28 | fi | ||
| 29 | |||
| 30 | if [ "$4" = "" ]; then | ||
| 31 | extra="" | ||
| 32 | else | ||
| 33 | extra="$4" | ||
| 34 | fi | ||
| 35 | |||
| 36 | ############################################################################# | ||
| 37 | |||
| 38 | echo test ssl3 is forbidden in FIPS mode | ||
| 39 | $ssltest -ssl3 $extra && exit 1 | ||
| 40 | |||
| 41 | echo test ssl2 is forbidden in FIPS mode | ||
| 42 | $ssltest -ssl2 $extra && exit 1 | ||
| 43 | |||
| 44 | echo test tls1 | ||
| 45 | $ssltest -tls1 $extra || exit 1 | ||
| 46 | |||
| 47 | echo test tls1 with server authentication | ||
| 48 | $ssltest -tls1 -server_auth $CA $extra || exit 1 | ||
| 49 | |||
| 50 | echo test tls1 with client authentication | ||
| 51 | $ssltest -tls1 -client_auth $CA $extra || exit 1 | ||
| 52 | |||
| 53 | echo test tls1 with both client and server authentication | ||
| 54 | $ssltest -tls1 -server_auth -client_auth $CA $extra || exit 1 | ||
| 55 | |||
| 56 | echo test tls1 via BIO pair | ||
| 57 | $ssltest -bio_pair -tls1 $extra || exit 1 | ||
| 58 | |||
| 59 | echo test tls1 with server authentication via BIO pair | ||
| 60 | $ssltest -bio_pair -tls1 -server_auth $CA $extra || exit 1 | ||
| 61 | |||
| 62 | echo test tls1 with client authentication via BIO pair | ||
| 63 | $ssltest -bio_pair -tls1 -client_auth $CA $extra || exit 1 | ||
| 64 | |||
| 65 | echo test tls1 with both client and server authentication via BIO pair | ||
| 66 | $ssltest -bio_pair -tls1 -server_auth -client_auth $CA $extra || exit 1 | ||
| 67 | |||
| 68 | # note that all the below actually choose TLS... | ||
| 69 | |||
| 70 | if [ $dsa_cert = NO ]; then | ||
| 71 | echo test sslv2/sslv3 w/o DHE via BIO pair | ||
| 72 | $ssltest -bio_pair -no_dhe $extra || exit 1 | ||
| 73 | fi | ||
| 74 | |||
| 75 | echo test sslv2/sslv3 with 1024bit DHE via BIO pair | ||
| 76 | $ssltest -bio_pair -dhe1024dsa -v $extra || exit 1 | ||
| 77 | |||
| 78 | echo test sslv2/sslv3 with server authentication | ||
| 79 | $ssltest -bio_pair -server_auth $CA $extra || exit 1 | ||
| 80 | |||
| 81 | echo test sslv2/sslv3 with client authentication via BIO pair | ||
| 82 | $ssltest -bio_pair -client_auth $CA $extra || exit 1 | ||
| 83 | |||
| 84 | echo test sslv2/sslv3 with both client and server authentication via BIO pair | ||
| 85 | $ssltest -bio_pair -server_auth -client_auth $CA $extra || exit 1 | ||
| 86 | |||
| 87 | echo test sslv2/sslv3 with both client and server authentication via BIO pair and app verify | ||
| 88 | $ssltest -bio_pair -server_auth -client_auth -app_verify $CA $extra || exit 1 | ||
| 89 | |||
| 90 | ############################################################################# | ||
| 91 | |||
| 92 | if ../util/shlib_wrap.sh ../apps/openssl no-dh; then | ||
| 93 | echo skipping anonymous DH tests | ||
| 94 | else | ||
| 95 | echo test tls1 with 1024bit anonymous DH, multiple handshakes | ||
| 96 | $ssltest -v -bio_pair -tls1 -cipher ADH -dhe1024dsa -num 10 -f -time $extra || exit 1 | ||
| 97 | fi | ||
| 98 | |||
| 99 | if ../util/shlib_wrap.sh ../apps/openssl no-rsa; then | ||
| 100 | echo skipping RSA tests | ||
| 101 | else | ||
| 102 | echo test tls1 with 1024bit RSA, no DHE, multiple handshakes | ||
| 103 | ../util/shlib_wrap.sh ./ssltest -v -bio_pair -tls1 -cert ../apps/server2.pem -no_dhe -num 10 -f -time $extra || exit 1 | ||
| 104 | |||
| 105 | if ../util/shlib_wrap.sh ../apps/openssl no-dh; then | ||
| 106 | echo skipping RSA+DHE tests | ||
| 107 | else | ||
| 108 | echo test tls1 with 1024bit RSA, 1024bit DHE, multiple handshakes | ||
| 109 | ../util/shlib_wrap.sh ./ssltest -v -bio_pair -tls1 -cert ../apps/server2.pem -dhe1024dsa -num 10 -f -time $extra || exit 1 | ||
| 110 | fi | ||
| 111 | fi | ||
| 112 | |||
| 113 | exit 0 | ||