summaryrefslogtreecommitdiff
path: root/src/lib/libcrypto/rsa
diff options
context:
space:
mode:
Diffstat (limited to 'src/lib/libcrypto/rsa')
-rw-r--r--src/lib/libcrypto/rsa/Makefile287
-rw-r--r--src/lib/libcrypto/rsa/rsa_eay.c80
-rw-r--r--src/lib/libcrypto/rsa/rsa_null.c151
-rw-r--r--src/lib/libcrypto/rsa/rsa_test.c340
4 files changed, 807 insertions, 51 deletions
diff --git a/src/lib/libcrypto/rsa/Makefile b/src/lib/libcrypto/rsa/Makefile
new file mode 100644
index 0000000000..bb64223e05
--- /dev/null
+++ b/src/lib/libcrypto/rsa/Makefile
@@ -0,0 +1,287 @@
1#
2# OpenSSL/crypto/rsa/Makefile
3#
4
5DIR= rsa
6TOP= ../..
7CC= cc
8INCLUDES= -I.. -I$(TOP) -I../../include
9CFLAG=-g
10MAKEFILE= Makefile
11AR= ar r
12
13CFLAGS= $(INCLUDES) $(CFLAG)
14
15GENERAL=Makefile
16TEST=rsa_test.c
17APPS=
18
19LIB=$(TOP)/libcrypto.a
20LIBSRC= rsa_eay.c rsa_gen.c rsa_lib.c rsa_sign.c rsa_saos.c rsa_err.c \
21 rsa_pk1.c rsa_ssl.c rsa_none.c rsa_oaep.c rsa_chk.c rsa_null.c \
22 rsa_pss.c rsa_x931.c rsa_asn1.c rsa_depr.c rsa_ameth.c rsa_prn.c \
23 rsa_pmeth.c
24LIBOBJ= rsa_eay.o rsa_gen.o rsa_lib.o rsa_sign.o rsa_saos.o rsa_err.o \
25 rsa_pk1.o rsa_ssl.o rsa_none.o rsa_oaep.o rsa_chk.o rsa_null.o \
26 rsa_pss.o rsa_x931.o rsa_asn1.o rsa_depr.o rsa_ameth.o rsa_prn.o \
27 rsa_pmeth.o
28
29SRC= $(LIBSRC)
30
31EXHEADER= rsa.h
32HEADER= $(EXHEADER)
33
34ALL= $(GENERAL) $(SRC) $(HEADER)
35
36top:
37 (cd ../..; $(MAKE) DIRS=crypto SDIRS=$(DIR) sub_all)
38
39all: lib
40
41lib: $(LIBOBJ)
42 $(AR) $(LIB) $(LIBOBJ)
43 $(RANLIB) $(LIB) || echo Never mind.
44 @touch lib
45
46files:
47 $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO
48
49links:
50 @$(PERL) $(TOP)/util/mklink.pl ../../include/openssl $(EXHEADER)
51 @$(PERL) $(TOP)/util/mklink.pl ../../test $(TEST)
52 @$(PERL) $(TOP)/util/mklink.pl ../../apps $(APPS)
53
54install:
55 @[ -n "$(INSTALLTOP)" ] # should be set by top Makefile...
56 @headerlist="$(EXHEADER)"; for i in $$headerlist ; \
57 do \
58 (cp $$i $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i; \
59 chmod 644 $(INSTALL_PREFIX)$(INSTALLTOP)/include/openssl/$$i ); \
60 done;
61
62tags:
63 ctags $(SRC)
64
65tests:
66
67lint:
68 lint -DLINT $(INCLUDES) $(SRC)>fluff
69
70depend:
71 @[ -n "$(MAKEDEPEND)" ] # should be set by upper Makefile...
72 $(MAKEDEPEND) -- $(CFLAG) $(INCLUDES) $(DEPFLAG) -- $(PROGS) $(LIBSRC)
73
74dclean:
75 $(PERL) -pe 'if (/^# DO NOT DELETE THIS LINE/) {print; exit(0);}' $(MAKEFILE) >Makefile.new
76 mv -f Makefile.new $(MAKEFILE)
77
78clean:
79 rm -f *.o */*.o *.obj lib tags core .pure .nfs* *.old *.bak fluff
80
81# DO NOT DELETE THIS LINE -- make depend depends on it.
82
83rsa_ameth.o: ../../e_os.h ../../include/openssl/asn1.h
84rsa_ameth.o: ../../include/openssl/asn1t.h ../../include/openssl/bio.h
85rsa_ameth.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h
86rsa_ameth.o: ../../include/openssl/cms.h ../../include/openssl/crypto.h
87rsa_ameth.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h
88rsa_ameth.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h
89rsa_ameth.o: ../../include/openssl/err.h ../../include/openssl/evp.h
90rsa_ameth.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h
91rsa_ameth.o: ../../include/openssl/objects.h
92rsa_ameth.o: ../../include/openssl/opensslconf.h
93rsa_ameth.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
94rsa_ameth.o: ../../include/openssl/pkcs7.h ../../include/openssl/rsa.h
95rsa_ameth.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h
96rsa_ameth.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
97rsa_ameth.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h
98rsa_ameth.o: ../asn1/asn1_locl.h ../cryptlib.h rsa_ameth.c
99rsa_asn1.o: ../../e_os.h ../../include/openssl/asn1.h
100rsa_asn1.o: ../../include/openssl/asn1t.h ../../include/openssl/bio.h
101rsa_asn1.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h
102rsa_asn1.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h
103rsa_asn1.o: ../../include/openssl/err.h ../../include/openssl/lhash.h
104rsa_asn1.o: ../../include/openssl/opensslconf.h
105rsa_asn1.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
106rsa_asn1.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h
107rsa_asn1.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
108rsa_asn1.o: ../cryptlib.h rsa_asn1.c
109rsa_chk.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h
110rsa_chk.o: ../../include/openssl/bn.h ../../include/openssl/crypto.h
111rsa_chk.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
112rsa_chk.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
113rsa_chk.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
114rsa_chk.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h
115rsa_chk.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
116rsa_chk.o: rsa_chk.c
117rsa_depr.o: ../../e_os.h ../../include/openssl/asn1.h
118rsa_depr.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
119rsa_depr.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
120rsa_depr.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
121rsa_depr.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
122rsa_depr.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
123rsa_depr.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h
124rsa_depr.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
125rsa_depr.o: ../cryptlib.h rsa_depr.c
126rsa_eay.o: ../../e_os.h ../../include/openssl/asn1.h
127rsa_eay.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
128rsa_eay.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
129rsa_eay.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
130rsa_eay.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
131rsa_eay.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
132rsa_eay.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
133rsa_eay.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
134rsa_eay.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_eay.c
135rsa_err.o: ../../include/openssl/asn1.h ../../include/openssl/bio.h
136rsa_err.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h
137rsa_err.o: ../../include/openssl/err.h ../../include/openssl/lhash.h
138rsa_err.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h
139rsa_err.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rsa.h
140rsa_err.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
141rsa_err.o: ../../include/openssl/symhacks.h rsa_err.c
142rsa_gen.o: ../../e_os.h ../../include/openssl/asn1.h
143rsa_gen.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
144rsa_gen.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
145rsa_gen.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
146rsa_gen.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
147rsa_gen.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
148rsa_gen.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h
149rsa_gen.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
150rsa_gen.o: ../cryptlib.h rsa_gen.c
151rsa_lib.o: ../../e_os.h ../../include/openssl/asn1.h
152rsa_lib.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
153rsa_lib.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
154rsa_lib.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h
155rsa_lib.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h
156rsa_lib.o: ../../include/openssl/engine.h ../../include/openssl/err.h
157rsa_lib.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h
158rsa_lib.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h
159rsa_lib.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h
160rsa_lib.o: ../../include/openssl/ossl_typ.h ../../include/openssl/pkcs7.h
161rsa_lib.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
162rsa_lib.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h
163rsa_lib.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
164rsa_lib.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h
165rsa_lib.o: ../cryptlib.h rsa_lib.c
166rsa_none.o: ../../e_os.h ../../include/openssl/asn1.h
167rsa_none.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
168rsa_none.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
169rsa_none.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
170rsa_none.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
171rsa_none.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
172rsa_none.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
173rsa_none.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
174rsa_none.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_none.c
175rsa_null.o: ../../e_os.h ../../include/openssl/asn1.h
176rsa_null.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
177rsa_null.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
178rsa_null.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
179rsa_null.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
180rsa_null.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
181rsa_null.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
182rsa_null.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
183rsa_null.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_null.c
184rsa_oaep.o: ../../e_os.h ../../include/openssl/asn1.h
185rsa_oaep.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
186rsa_oaep.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
187rsa_oaep.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
188rsa_oaep.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h
189rsa_oaep.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h
190rsa_oaep.o: ../../include/openssl/opensslconf.h
191rsa_oaep.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
192rsa_oaep.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
193rsa_oaep.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h
194rsa_oaep.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
195rsa_oaep.o: ../cryptlib.h rsa_oaep.c
196rsa_pk1.o: ../../e_os.h ../../include/openssl/asn1.h
197rsa_pk1.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
198rsa_pk1.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
199rsa_pk1.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
200rsa_pk1.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
201rsa_pk1.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
202rsa_pk1.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
203rsa_pk1.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
204rsa_pk1.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_pk1.c
205rsa_pmeth.o: ../../e_os.h ../../include/openssl/asn1.h
206rsa_pmeth.o: ../../include/openssl/asn1t.h ../../include/openssl/bio.h
207rsa_pmeth.o: ../../include/openssl/bn.h ../../include/openssl/buffer.h
208rsa_pmeth.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h
209rsa_pmeth.o: ../../include/openssl/ec.h ../../include/openssl/ecdh.h
210rsa_pmeth.o: ../../include/openssl/ecdsa.h ../../include/openssl/err.h
211rsa_pmeth.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h
212rsa_pmeth.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h
213rsa_pmeth.o: ../../include/openssl/opensslconf.h
214rsa_pmeth.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
215rsa_pmeth.o: ../../include/openssl/pkcs7.h ../../include/openssl/rsa.h
216rsa_pmeth.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h
217rsa_pmeth.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
218rsa_pmeth.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h
219rsa_pmeth.o: ../cryptlib.h ../evp/evp_locl.h rsa_locl.h rsa_pmeth.c
220rsa_prn.o: ../../e_os.h ../../include/openssl/asn1.h
221rsa_prn.o: ../../include/openssl/bio.h ../../include/openssl/buffer.h
222rsa_prn.o: ../../include/openssl/crypto.h ../../include/openssl/e_os2.h
223rsa_prn.o: ../../include/openssl/err.h ../../include/openssl/evp.h
224rsa_prn.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h
225rsa_prn.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h
226rsa_prn.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
227rsa_prn.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h
228rsa_prn.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
229rsa_prn.o: ../cryptlib.h rsa_prn.c
230rsa_pss.o: ../../e_os.h ../../include/openssl/asn1.h
231rsa_pss.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
232rsa_pss.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
233rsa_pss.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
234rsa_pss.o: ../../include/openssl/evp.h ../../include/openssl/lhash.h
235rsa_pss.o: ../../include/openssl/obj_mac.h ../../include/openssl/objects.h
236rsa_pss.o: ../../include/openssl/opensslconf.h ../../include/openssl/opensslv.h
237rsa_pss.o: ../../include/openssl/ossl_typ.h ../../include/openssl/rand.h
238rsa_pss.o: ../../include/openssl/rsa.h ../../include/openssl/safestack.h
239rsa_pss.o: ../../include/openssl/sha.h ../../include/openssl/stack.h
240rsa_pss.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_pss.c
241rsa_saos.o: ../../e_os.h ../../include/openssl/asn1.h
242rsa_saos.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
243rsa_saos.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
244rsa_saos.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h
245rsa_saos.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h
246rsa_saos.o: ../../include/openssl/err.h ../../include/openssl/evp.h
247rsa_saos.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h
248rsa_saos.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h
249rsa_saos.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
250rsa_saos.o: ../../include/openssl/pkcs7.h ../../include/openssl/rsa.h
251rsa_saos.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h
252rsa_saos.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
253rsa_saos.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h
254rsa_saos.o: ../cryptlib.h rsa_saos.c
255rsa_sign.o: ../../e_os.h ../../include/openssl/asn1.h
256rsa_sign.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
257rsa_sign.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
258rsa_sign.o: ../../include/openssl/e_os2.h ../../include/openssl/ec.h
259rsa_sign.o: ../../include/openssl/ecdh.h ../../include/openssl/ecdsa.h
260rsa_sign.o: ../../include/openssl/err.h ../../include/openssl/evp.h
261rsa_sign.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h
262rsa_sign.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h
263rsa_sign.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
264rsa_sign.o: ../../include/openssl/pkcs7.h ../../include/openssl/rsa.h
265rsa_sign.o: ../../include/openssl/safestack.h ../../include/openssl/sha.h
266rsa_sign.o: ../../include/openssl/stack.h ../../include/openssl/symhacks.h
267rsa_sign.o: ../../include/openssl/x509.h ../../include/openssl/x509_vfy.h
268rsa_sign.o: ../cryptlib.h rsa_locl.h rsa_sign.c
269rsa_ssl.o: ../../e_os.h ../../include/openssl/asn1.h
270rsa_ssl.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
271rsa_ssl.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
272rsa_ssl.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
273rsa_ssl.o: ../../include/openssl/lhash.h ../../include/openssl/opensslconf.h
274rsa_ssl.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
275rsa_ssl.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
276rsa_ssl.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
277rsa_ssl.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_ssl.c
278rsa_x931.o: ../../e_os.h ../../include/openssl/asn1.h
279rsa_x931.o: ../../include/openssl/bio.h ../../include/openssl/bn.h
280rsa_x931.o: ../../include/openssl/buffer.h ../../include/openssl/crypto.h
281rsa_x931.o: ../../include/openssl/e_os2.h ../../include/openssl/err.h
282rsa_x931.o: ../../include/openssl/lhash.h ../../include/openssl/obj_mac.h
283rsa_x931.o: ../../include/openssl/objects.h ../../include/openssl/opensslconf.h
284rsa_x931.o: ../../include/openssl/opensslv.h ../../include/openssl/ossl_typ.h
285rsa_x931.o: ../../include/openssl/rand.h ../../include/openssl/rsa.h
286rsa_x931.o: ../../include/openssl/safestack.h ../../include/openssl/stack.h
287rsa_x931.o: ../../include/openssl/symhacks.h ../cryptlib.h rsa_x931.c
diff --git a/src/lib/libcrypto/rsa/rsa_eay.c b/src/lib/libcrypto/rsa/rsa_eay.c
index 2e1ddd48d3..7c941885f0 100644
--- a/src/lib/libcrypto/rsa/rsa_eay.c
+++ b/src/lib/libcrypto/rsa/rsa_eay.c
@@ -314,56 +314,51 @@ static BN_BLINDING *rsa_get_blinding(RSA *rsa, int *local, BN_CTX *ctx)
314 return ret; 314 return ret;
315} 315}
316 316
317static int rsa_blinding_convert(BN_BLINDING *b, BIGNUM *f, BIGNUM *unblind, 317static int rsa_blinding_convert(BN_BLINDING *b, int local, BIGNUM *f,
318 BN_CTX *ctx) 318 BIGNUM *r, BN_CTX *ctx)
319 { 319{
320 if (unblind == NULL) 320 if (local)
321 /* Local blinding: store the unblinding factor
322 * in BN_BLINDING. */
323 return BN_BLINDING_convert_ex(f, NULL, b, ctx); 321 return BN_BLINDING_convert_ex(f, NULL, b, ctx);
324 else 322 else
325 { 323 {
326 /* Shared blinding: store the unblinding factor 324 int ret;
327 * outside BN_BLINDING. */ 325 CRYPTO_r_lock(CRYPTO_LOCK_RSA_BLINDING);
326 ret = BN_BLINDING_convert_ex(f, r, b, ctx);
327 CRYPTO_r_unlock(CRYPTO_LOCK_RSA_BLINDING);
328 return ret;
329 }
330}
331
332static int rsa_blinding_invert(BN_BLINDING *b, int local, BIGNUM *f,
333 BIGNUM *r, BN_CTX *ctx)
334{
335 if (local)
336 return BN_BLINDING_invert_ex(f, NULL, b, ctx);
337 else
338 {
328 int ret; 339 int ret;
329 CRYPTO_w_lock(CRYPTO_LOCK_RSA_BLINDING); 340 CRYPTO_w_lock(CRYPTO_LOCK_RSA_BLINDING);
330 ret = BN_BLINDING_convert_ex(f, unblind, b, ctx); 341 ret = BN_BLINDING_invert_ex(f, r, b, ctx);
331 CRYPTO_w_unlock(CRYPTO_LOCK_RSA_BLINDING); 342 CRYPTO_w_unlock(CRYPTO_LOCK_RSA_BLINDING);
332 return ret; 343 return ret;
333 } 344 }
334 } 345}
335
336static int rsa_blinding_invert(BN_BLINDING *b, BIGNUM *f, BIGNUM *unblind,
337 BN_CTX *ctx)
338 {
339 /* For local blinding, unblind is set to NULL, and BN_BLINDING_invert_ex
340 * will use the unblinding factor stored in BN_BLINDING.
341 * If BN_BLINDING is shared between threads, unblind must be non-null:
342 * BN_BLINDING_invert_ex will then use the local unblinding factor,
343 * and will only read the modulus from BN_BLINDING.
344 * In both cases it's safe to access the blinding without a lock.
345 */
346 return BN_BLINDING_invert_ex(f, unblind, b, ctx);
347 }
348 346
349/* signing */ 347/* signing */
350static int RSA_eay_private_encrypt(int flen, const unsigned char *from, 348static int RSA_eay_private_encrypt(int flen, const unsigned char *from,
351 unsigned char *to, RSA *rsa, int padding) 349 unsigned char *to, RSA *rsa, int padding)
352 { 350 {
353 BIGNUM *f, *ret, *res; 351 BIGNUM *f, *ret, *br, *res;
354 int i,j,k,num=0,r= -1; 352 int i,j,k,num=0,r= -1;
355 unsigned char *buf=NULL; 353 unsigned char *buf=NULL;
356 BN_CTX *ctx=NULL; 354 BN_CTX *ctx=NULL;
357 int local_blinding = 0; 355 int local_blinding = 0;
358 /* Used only if the blinding structure is shared. A non-NULL unblind
359 * instructs rsa_blinding_convert() and rsa_blinding_invert() to store
360 * the unblinding factor outside the blinding structure. */
361 BIGNUM *unblind = NULL;
362 BN_BLINDING *blinding = NULL; 356 BN_BLINDING *blinding = NULL;
363 357
364 if ((ctx=BN_CTX_new()) == NULL) goto err; 358 if ((ctx=BN_CTX_new()) == NULL) goto err;
365 BN_CTX_start(ctx); 359 BN_CTX_start(ctx);
366 f = BN_CTX_get(ctx); 360 f = BN_CTX_get(ctx);
361 br = BN_CTX_get(ctx);
367 ret = BN_CTX_get(ctx); 362 ret = BN_CTX_get(ctx);
368 num = BN_num_bytes(rsa->n); 363 num = BN_num_bytes(rsa->n);
369 buf = OPENSSL_malloc(num); 364 buf = OPENSSL_malloc(num);
@@ -411,15 +406,8 @@ static int RSA_eay_private_encrypt(int flen, const unsigned char *from,
411 } 406 }
412 407
413 if (blinding != NULL) 408 if (blinding != NULL)
414 { 409 if (!rsa_blinding_convert(blinding, local_blinding, f, br, ctx))
415 if (!local_blinding && ((unblind = BN_CTX_get(ctx)) == NULL))
416 {
417 RSAerr(RSA_F_RSA_EAY_PRIVATE_ENCRYPT,ERR_R_MALLOC_FAILURE);
418 goto err;
419 }
420 if (!rsa_blinding_convert(blinding, f, unblind, ctx))
421 goto err; 410 goto err;
422 }
423 411
424 if ( (rsa->flags & RSA_FLAG_EXT_PKEY) || 412 if ( (rsa->flags & RSA_FLAG_EXT_PKEY) ||
425 ((rsa->p != NULL) && 413 ((rsa->p != NULL) &&
@@ -453,7 +441,7 @@ static int RSA_eay_private_encrypt(int flen, const unsigned char *from,
453 } 441 }
454 442
455 if (blinding) 443 if (blinding)
456 if (!rsa_blinding_invert(blinding, ret, unblind, ctx)) 444 if (!rsa_blinding_invert(blinding, local_blinding, ret, br, ctx))
457 goto err; 445 goto err;
458 446
459 if (padding == RSA_X931_PADDING) 447 if (padding == RSA_X931_PADDING)
@@ -492,21 +480,18 @@ err:
492static int RSA_eay_private_decrypt(int flen, const unsigned char *from, 480static int RSA_eay_private_decrypt(int flen, const unsigned char *from,
493 unsigned char *to, RSA *rsa, int padding) 481 unsigned char *to, RSA *rsa, int padding)
494 { 482 {
495 BIGNUM *f, *ret; 483 BIGNUM *f, *ret, *br;
496 int j,num=0,r= -1; 484 int j,num=0,r= -1;
497 unsigned char *p; 485 unsigned char *p;
498 unsigned char *buf=NULL; 486 unsigned char *buf=NULL;
499 BN_CTX *ctx=NULL; 487 BN_CTX *ctx=NULL;
500 int local_blinding = 0; 488 int local_blinding = 0;
501 /* Used only if the blinding structure is shared. A non-NULL unblind
502 * instructs rsa_blinding_convert() and rsa_blinding_invert() to store
503 * the unblinding factor outside the blinding structure. */
504 BIGNUM *unblind = NULL;
505 BN_BLINDING *blinding = NULL; 489 BN_BLINDING *blinding = NULL;
506 490
507 if((ctx = BN_CTX_new()) == NULL) goto err; 491 if((ctx = BN_CTX_new()) == NULL) goto err;
508 BN_CTX_start(ctx); 492 BN_CTX_start(ctx);
509 f = BN_CTX_get(ctx); 493 f = BN_CTX_get(ctx);
494 br = BN_CTX_get(ctx);
510 ret = BN_CTX_get(ctx); 495 ret = BN_CTX_get(ctx);
511 num = BN_num_bytes(rsa->n); 496 num = BN_num_bytes(rsa->n);
512 buf = OPENSSL_malloc(num); 497 buf = OPENSSL_malloc(num);
@@ -544,15 +529,8 @@ static int RSA_eay_private_decrypt(int flen, const unsigned char *from,
544 } 529 }
545 530
546 if (blinding != NULL) 531 if (blinding != NULL)
547 { 532 if (!rsa_blinding_convert(blinding, local_blinding, f, br, ctx))
548 if (!local_blinding && ((unblind = BN_CTX_get(ctx)) == NULL))
549 {
550 RSAerr(RSA_F_RSA_EAY_PRIVATE_DECRYPT,ERR_R_MALLOC_FAILURE);
551 goto err; 533 goto err;
552 }
553 if (!rsa_blinding_convert(blinding, f, unblind, ctx))
554 goto err;
555 }
556 534
557 /* do the decrypt */ 535 /* do the decrypt */
558 if ( (rsa->flags & RSA_FLAG_EXT_PKEY) || 536 if ( (rsa->flags & RSA_FLAG_EXT_PKEY) ||
@@ -586,7 +564,7 @@ static int RSA_eay_private_decrypt(int flen, const unsigned char *from,
586 } 564 }
587 565
588 if (blinding) 566 if (blinding)
589 if (!rsa_blinding_invert(blinding, ret, unblind, ctx)) 567 if (!rsa_blinding_invert(blinding, local_blinding, ret, br, ctx))
590 goto err; 568 goto err;
591 569
592 p=buf; 570 p=buf;
diff --git a/src/lib/libcrypto/rsa/rsa_null.c b/src/lib/libcrypto/rsa/rsa_null.c
new file mode 100644
index 0000000000..2f2202f142
--- /dev/null
+++ b/src/lib/libcrypto/rsa/rsa_null.c
@@ -0,0 +1,151 @@
1/* rsa_null.c */
2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
3 * project 1999.
4 */
5/* ====================================================================
6 * Copyright (c) 1999 The OpenSSL Project. All rights reserved.
7 *
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
10 * are met:
11 *
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
14 *
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
18 * distribution.
19 *
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
24 *
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
29 *
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
33 *
34 * 6. Redistributions of any form whatsoever must retain the following
35 * acknowledgment:
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
38 *
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
52 *
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
56 *
57 */
58
59#include <stdio.h>
60#include "cryptlib.h"
61#include <openssl/bn.h>
62#include <openssl/rsa.h>
63#include <openssl/rand.h>
64
65/* This is a dummy RSA implementation that just returns errors when called.
66 * It is designed to allow some RSA functions to work while stopping those
67 * covered by the RSA patent. That is RSA, encryption, decryption, signing
68 * and verify is not allowed but RSA key generation, key checking and other
69 * operations (like storing RSA keys) are permitted.
70 */
71
72static int RSA_null_public_encrypt(int flen, const unsigned char *from,
73 unsigned char *to, RSA *rsa,int padding);
74static int RSA_null_private_encrypt(int flen, const unsigned char *from,
75 unsigned char *to, RSA *rsa,int padding);
76static int RSA_null_public_decrypt(int flen, const unsigned char *from,
77 unsigned char *to, RSA *rsa,int padding);
78static int RSA_null_private_decrypt(int flen, const unsigned char *from,
79 unsigned char *to, RSA *rsa,int padding);
80#if 0 /* not currently used */
81static int RSA_null_mod_exp(const BIGNUM *r0, const BIGNUM *i, RSA *rsa);
82#endif
83static int RSA_null_init(RSA *rsa);
84static int RSA_null_finish(RSA *rsa);
85static RSA_METHOD rsa_null_meth={
86 "Null RSA",
87 RSA_null_public_encrypt,
88 RSA_null_public_decrypt,
89 RSA_null_private_encrypt,
90 RSA_null_private_decrypt,
91 NULL,
92 NULL,
93 RSA_null_init,
94 RSA_null_finish,
95 0,
96 NULL,
97 NULL,
98 NULL,
99 NULL
100 };
101
102const RSA_METHOD *RSA_null_method(void)
103 {
104 return(&rsa_null_meth);
105 }
106
107static int RSA_null_public_encrypt(int flen, const unsigned char *from,
108 unsigned char *to, RSA *rsa, int padding)
109 {
110 RSAerr(RSA_F_RSA_NULL_PUBLIC_ENCRYPT, RSA_R_RSA_OPERATIONS_NOT_SUPPORTED);
111 return -1;
112 }
113
114static int RSA_null_private_encrypt(int flen, const unsigned char *from,
115 unsigned char *to, RSA *rsa, int padding)
116 {
117 RSAerr(RSA_F_RSA_NULL_PRIVATE_ENCRYPT, RSA_R_RSA_OPERATIONS_NOT_SUPPORTED);
118 return -1;
119 }
120
121static int RSA_null_private_decrypt(int flen, const unsigned char *from,
122 unsigned char *to, RSA *rsa, int padding)
123 {
124 RSAerr(RSA_F_RSA_NULL_PRIVATE_DECRYPT, RSA_R_RSA_OPERATIONS_NOT_SUPPORTED);
125 return -1;
126 }
127
128static int RSA_null_public_decrypt(int flen, const unsigned char *from,
129 unsigned char *to, RSA *rsa, int padding)
130 {
131 RSAerr(RSA_F_RSA_NULL_PUBLIC_DECRYPT, RSA_R_RSA_OPERATIONS_NOT_SUPPORTED);
132 return -1;
133 }
134
135#if 0 /* not currently used */
136static int RSA_null_mod_exp(BIGNUM *r0, BIGNUM *I, RSA *rsa)
137 {
138 ...err(RSA_F_RSA_NULL_MOD_EXP, RSA_R_RSA_OPERATIONS_NOT_SUPPORTED);
139 return -1;
140 }
141#endif
142
143static int RSA_null_init(RSA *rsa)
144 {
145 return(1);
146 }
147
148static int RSA_null_finish(RSA *rsa)
149 {
150 return(1);
151 }
diff --git a/src/lib/libcrypto/rsa/rsa_test.c b/src/lib/libcrypto/rsa/rsa_test.c
new file mode 100644
index 0000000000..c8705a0f6e
--- /dev/null
+++ b/src/lib/libcrypto/rsa/rsa_test.c
@@ -0,0 +1,340 @@
1/* test vectors from p1ovect1.txt */
2
3#include <stdio.h>
4#include <string.h>
5
6#include "e_os.h"
7
8#include <openssl/crypto.h>
9#include <openssl/err.h>
10#include <openssl/rand.h>
11#include <openssl/bn.h>
12#ifdef OPENSSL_NO_RSA
13int main(int argc, char *argv[])
14{
15 printf("No RSA support\n");
16 return(0);
17}
18#else
19#include <openssl/rsa.h>
20
21#define SetKey \
22 key->n = BN_bin2bn(n, sizeof(n)-1, key->n); \
23 key->e = BN_bin2bn(e, sizeof(e)-1, key->e); \
24 key->d = BN_bin2bn(d, sizeof(d)-1, key->d); \
25 key->p = BN_bin2bn(p, sizeof(p)-1, key->p); \
26 key->q = BN_bin2bn(q, sizeof(q)-1, key->q); \
27 key->dmp1 = BN_bin2bn(dmp1, sizeof(dmp1)-1, key->dmp1); \
28 key->dmq1 = BN_bin2bn(dmq1, sizeof(dmq1)-1, key->dmq1); \
29 key->iqmp = BN_bin2bn(iqmp, sizeof(iqmp)-1, key->iqmp); \
30 memcpy(c, ctext_ex, sizeof(ctext_ex) - 1); \
31 return (sizeof(ctext_ex) - 1);
32
33static int key1(RSA *key, unsigned char *c)
34 {
35 static unsigned char n[] =
36"\x00\xAA\x36\xAB\xCE\x88\xAC\xFD\xFF\x55\x52\x3C\x7F\xC4\x52\x3F"
37"\x90\xEF\xA0\x0D\xF3\x77\x4A\x25\x9F\x2E\x62\xB4\xC5\xD9\x9C\xB5"
38"\xAD\xB3\x00\xA0\x28\x5E\x53\x01\x93\x0E\x0C\x70\xFB\x68\x76\x93"
39"\x9C\xE6\x16\xCE\x62\x4A\x11\xE0\x08\x6D\x34\x1E\xBC\xAC\xA0\xA1"
40"\xF5";
41
42 static unsigned char e[] = "\x11";
43
44 static unsigned char d[] =
45"\x0A\x03\x37\x48\x62\x64\x87\x69\x5F\x5F\x30\xBC\x38\xB9\x8B\x44"
46"\xC2\xCD\x2D\xFF\x43\x40\x98\xCD\x20\xD8\xA1\x38\xD0\x90\xBF\x64"
47"\x79\x7C\x3F\xA7\xA2\xCD\xCB\x3C\xD1\xE0\xBD\xBA\x26\x54\xB4\xF9"
48"\xDF\x8E\x8A\xE5\x9D\x73\x3D\x9F\x33\xB3\x01\x62\x4A\xFD\x1D\x51";
49
50 static unsigned char p[] =
51"\x00\xD8\x40\xB4\x16\x66\xB4\x2E\x92\xEA\x0D\xA3\xB4\x32\x04\xB5"
52"\xCF\xCE\x33\x52\x52\x4D\x04\x16\xA5\xA4\x41\xE7\x00\xAF\x46\x12"
53"\x0D";
54
55 static unsigned char q[] =
56"\x00\xC9\x7F\xB1\xF0\x27\xF4\x53\xF6\x34\x12\x33\xEA\xAA\xD1\xD9"
57"\x35\x3F\x6C\x42\xD0\x88\x66\xB1\xD0\x5A\x0F\x20\x35\x02\x8B\x9D"
58"\x89";
59
60 static unsigned char dmp1[] =
61"\x59\x0B\x95\x72\xA2\xC2\xA9\xC4\x06\x05\x9D\xC2\xAB\x2F\x1D\xAF"
62"\xEB\x7E\x8B\x4F\x10\xA7\x54\x9E\x8E\xED\xF5\xB4\xFC\xE0\x9E\x05";
63
64 static unsigned char dmq1[] =
65"\x00\x8E\x3C\x05\x21\xFE\x15\xE0\xEA\x06\xA3\x6F\xF0\xF1\x0C\x99"
66"\x52\xC3\x5B\x7A\x75\x14\xFD\x32\x38\xB8\x0A\xAD\x52\x98\x62\x8D"
67"\x51";
68
69 static unsigned char iqmp[] =
70"\x36\x3F\xF7\x18\x9D\xA8\xE9\x0B\x1D\x34\x1F\x71\xD0\x9B\x76\xA8"
71"\xA9\x43\xE1\x1D\x10\xB2\x4D\x24\x9F\x2D\xEA\xFE\xF8\x0C\x18\x26";
72
73 static unsigned char ctext_ex[] =
74"\x1b\x8f\x05\xf9\xca\x1a\x79\x52\x6e\x53\xf3\xcc\x51\x4f\xdb\x89"
75"\x2b\xfb\x91\x93\x23\x1e\x78\xb9\x92\xe6\x8d\x50\xa4\x80\xcb\x52"
76"\x33\x89\x5c\x74\x95\x8d\x5d\x02\xab\x8c\x0f\xd0\x40\xeb\x58\x44"
77"\xb0\x05\xc3\x9e\xd8\x27\x4a\x9d\xbf\xa8\x06\x71\x40\x94\x39\xd2";
78
79 SetKey;
80 }
81
82static int key2(RSA *key, unsigned char *c)
83 {
84 static unsigned char n[] =
85"\x00\xA3\x07\x9A\x90\xDF\x0D\xFD\x72\xAC\x09\x0C\xCC\x2A\x78\xB8"
86"\x74\x13\x13\x3E\x40\x75\x9C\x98\xFA\xF8\x20\x4F\x35\x8A\x0B\x26"
87"\x3C\x67\x70\xE7\x83\xA9\x3B\x69\x71\xB7\x37\x79\xD2\x71\x7B\xE8"
88"\x34\x77\xCF";
89
90 static unsigned char e[] = "\x3";
91
92 static unsigned char d[] =
93"\x6C\xAF\xBC\x60\x94\xB3\xFE\x4C\x72\xB0\xB3\x32\xC6\xFB\x25\xA2"
94"\xB7\x62\x29\x80\x4E\x68\x65\xFC\xA4\x5A\x74\xDF\x0F\x8F\xB8\x41"
95"\x3B\x52\xC0\xD0\xE5\x3D\x9B\x59\x0F\xF1\x9B\xE7\x9F\x49\xDD\x21"
96"\xE5\xEB";
97
98 static unsigned char p[] =
99"\x00\xCF\x20\x35\x02\x8B\x9D\x86\x98\x40\xB4\x16\x66\xB4\x2E\x92"
100"\xEA\x0D\xA3\xB4\x32\x04\xB5\xCF\xCE\x91";
101
102 static unsigned char q[] =
103"\x00\xC9\x7F\xB1\xF0\x27\xF4\x53\xF6\x34\x12\x33\xEA\xAA\xD1\xD9"
104"\x35\x3F\x6C\x42\xD0\x88\x66\xB1\xD0\x5F";
105
106 static unsigned char dmp1[] =
107"\x00\x8A\x15\x78\xAC\x5D\x13\xAF\x10\x2B\x22\xB9\x99\xCD\x74\x61"
108"\xF1\x5E\x6D\x22\xCC\x03\x23\xDF\xDF\x0B";
109
110 static unsigned char dmq1[] =
111"\x00\x86\x55\x21\x4A\xC5\x4D\x8D\x4E\xCD\x61\x77\xF1\xC7\x36\x90"
112"\xCE\x2A\x48\x2C\x8B\x05\x99\xCB\xE0\x3F";
113
114 static unsigned char iqmp[] =
115"\x00\x83\xEF\xEF\xB8\xA9\xA4\x0D\x1D\xB6\xED\x98\xAD\x84\xED\x13"
116"\x35\xDC\xC1\x08\xF3\x22\xD0\x57\xCF\x8D";
117
118 static unsigned char ctext_ex[] =
119"\x14\xbd\xdd\x28\xc9\x83\x35\x19\x23\x80\xe8\xe5\x49\xb1\x58\x2a"
120"\x8b\x40\xb4\x48\x6d\x03\xa6\xa5\x31\x1f\x1f\xd5\xf0\xa1\x80\xe4"
121"\x17\x53\x03\x29\xa9\x34\x90\x74\xb1\x52\x13\x54\x29\x08\x24\x52"
122"\x62\x51";
123
124 SetKey;
125 }
126
127static int key3(RSA *key, unsigned char *c)
128 {
129 static unsigned char n[] =
130"\x00\xBB\xF8\x2F\x09\x06\x82\xCE\x9C\x23\x38\xAC\x2B\x9D\xA8\x71"
131"\xF7\x36\x8D\x07\xEE\xD4\x10\x43\xA4\x40\xD6\xB6\xF0\x74\x54\xF5"
132"\x1F\xB8\xDF\xBA\xAF\x03\x5C\x02\xAB\x61\xEA\x48\xCE\xEB\x6F\xCD"
133"\x48\x76\xED\x52\x0D\x60\xE1\xEC\x46\x19\x71\x9D\x8A\x5B\x8B\x80"
134"\x7F\xAF\xB8\xE0\xA3\xDF\xC7\x37\x72\x3E\xE6\xB4\xB7\xD9\x3A\x25"
135"\x84\xEE\x6A\x64\x9D\x06\x09\x53\x74\x88\x34\xB2\x45\x45\x98\x39"
136"\x4E\xE0\xAA\xB1\x2D\x7B\x61\xA5\x1F\x52\x7A\x9A\x41\xF6\xC1\x68"
137"\x7F\xE2\x53\x72\x98\xCA\x2A\x8F\x59\x46\xF8\xE5\xFD\x09\x1D\xBD"
138"\xCB";
139
140 static unsigned char e[] = "\x11";
141
142 static unsigned char d[] =
143"\x00\xA5\xDA\xFC\x53\x41\xFA\xF2\x89\xC4\xB9\x88\xDB\x30\xC1\xCD"
144"\xF8\x3F\x31\x25\x1E\x06\x68\xB4\x27\x84\x81\x38\x01\x57\x96\x41"
145"\xB2\x94\x10\xB3\xC7\x99\x8D\x6B\xC4\x65\x74\x5E\x5C\x39\x26\x69"
146"\xD6\x87\x0D\xA2\xC0\x82\xA9\x39\xE3\x7F\xDC\xB8\x2E\xC9\x3E\xDA"
147"\xC9\x7F\xF3\xAD\x59\x50\xAC\xCF\xBC\x11\x1C\x76\xF1\xA9\x52\x94"
148"\x44\xE5\x6A\xAF\x68\xC5\x6C\x09\x2C\xD3\x8D\xC3\xBE\xF5\xD2\x0A"
149"\x93\x99\x26\xED\x4F\x74\xA1\x3E\xDD\xFB\xE1\xA1\xCE\xCC\x48\x94"
150"\xAF\x94\x28\xC2\xB7\xB8\x88\x3F\xE4\x46\x3A\x4B\xC8\x5B\x1C\xB3"
151"\xC1";
152
153 static unsigned char p[] =
154"\x00\xEE\xCF\xAE\x81\xB1\xB9\xB3\xC9\x08\x81\x0B\x10\xA1\xB5\x60"
155"\x01\x99\xEB\x9F\x44\xAE\xF4\xFD\xA4\x93\xB8\x1A\x9E\x3D\x84\xF6"
156"\x32\x12\x4E\xF0\x23\x6E\x5D\x1E\x3B\x7E\x28\xFA\xE7\xAA\x04\x0A"
157"\x2D\x5B\x25\x21\x76\x45\x9D\x1F\x39\x75\x41\xBA\x2A\x58\xFB\x65"
158"\x99";
159
160 static unsigned char q[] =
161"\x00\xC9\x7F\xB1\xF0\x27\xF4\x53\xF6\x34\x12\x33\xEA\xAA\xD1\xD9"
162"\x35\x3F\x6C\x42\xD0\x88\x66\xB1\xD0\x5A\x0F\x20\x35\x02\x8B\x9D"
163"\x86\x98\x40\xB4\x16\x66\xB4\x2E\x92\xEA\x0D\xA3\xB4\x32\x04\xB5"
164"\xCF\xCE\x33\x52\x52\x4D\x04\x16\xA5\xA4\x41\xE7\x00\xAF\x46\x15"
165"\x03";
166
167 static unsigned char dmp1[] =
168"\x54\x49\x4C\xA6\x3E\xBA\x03\x37\xE4\xE2\x40\x23\xFC\xD6\x9A\x5A"
169"\xEB\x07\xDD\xDC\x01\x83\xA4\xD0\xAC\x9B\x54\xB0\x51\xF2\xB1\x3E"
170"\xD9\x49\x09\x75\xEA\xB7\x74\x14\xFF\x59\xC1\xF7\x69\x2E\x9A\x2E"
171"\x20\x2B\x38\xFC\x91\x0A\x47\x41\x74\xAD\xC9\x3C\x1F\x67\xC9\x81";
172
173 static unsigned char dmq1[] =
174"\x47\x1E\x02\x90\xFF\x0A\xF0\x75\x03\x51\xB7\xF8\x78\x86\x4C\xA9"
175"\x61\xAD\xBD\x3A\x8A\x7E\x99\x1C\x5C\x05\x56\xA9\x4C\x31\x46\xA7"
176"\xF9\x80\x3F\x8F\x6F\x8A\xE3\x42\xE9\x31\xFD\x8A\xE4\x7A\x22\x0D"
177"\x1B\x99\xA4\x95\x84\x98\x07\xFE\x39\xF9\x24\x5A\x98\x36\xDA\x3D";
178
179 static unsigned char iqmp[] =
180"\x00\xB0\x6C\x4F\xDA\xBB\x63\x01\x19\x8D\x26\x5B\xDB\xAE\x94\x23"
181"\xB3\x80\xF2\x71\xF7\x34\x53\x88\x50\x93\x07\x7F\xCD\x39\xE2\x11"
182"\x9F\xC9\x86\x32\x15\x4F\x58\x83\xB1\x67\xA9\x67\xBF\x40\x2B\x4E"
183"\x9E\x2E\x0F\x96\x56\xE6\x98\xEA\x36\x66\xED\xFB\x25\x79\x80\x39"
184"\xF7";
185
186 static unsigned char ctext_ex[] =
187"\xb8\x24\x6b\x56\xa6\xed\x58\x81\xae\xb5\x85\xd9\xa2\x5b\x2a\xd7"
188"\x90\xc4\x17\xe0\x80\x68\x1b\xf1\xac\x2b\xc3\xde\xb6\x9d\x8b\xce"
189"\xf0\xc4\x36\x6f\xec\x40\x0a\xf0\x52\xa7\x2e\x9b\x0e\xff\xb5\xb3"
190"\xf2\xf1\x92\xdb\xea\xca\x03\xc1\x27\x40\x05\x71\x13\xbf\x1f\x06"
191"\x69\xac\x22\xe9\xf3\xa7\x85\x2e\x3c\x15\xd9\x13\xca\xb0\xb8\x86"
192"\x3a\x95\xc9\x92\x94\xce\x86\x74\x21\x49\x54\x61\x03\x46\xf4\xd4"
193"\x74\xb2\x6f\x7c\x48\xb4\x2e\xe6\x8e\x1f\x57\x2a\x1f\xc4\x02\x6a"
194"\xc4\x56\xb4\xf5\x9f\x7b\x62\x1e\xa1\xb9\xd8\x8f\x64\x20\x2f\xb1";
195
196 SetKey;
197 }
198
199static int pad_unknown(void)
200{
201 unsigned long l;
202 while ((l = ERR_get_error()) != 0)
203 if (ERR_GET_REASON(l) == RSA_R_UNKNOWN_PADDING_TYPE)
204 return(1);
205 return(0);
206}
207
208static const char rnd_seed[] = "string to make the random number generator think it has entropy";
209
210int main(int argc, char *argv[])
211 {
212 int err=0;
213 int v;
214 RSA *key;
215 unsigned char ptext[256];
216 unsigned char ctext[256];
217 static unsigned char ptext_ex[] = "\x54\x85\x9b\x34\x2c\x49\xea\x2a";
218 unsigned char ctext_ex[256];
219 int plen;
220 int clen = 0;
221 int num;
222 int n;
223
224 CRYPTO_malloc_debug_init();
225 CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL);
226 CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON);
227
228 RAND_seed(rnd_seed, sizeof rnd_seed); /* or OAEP may fail */
229
230 plen = sizeof(ptext_ex) - 1;
231
232 for (v = 0; v < 6; v++)
233 {
234 key = RSA_new();
235 switch (v%3) {
236 case 0:
237 clen = key1(key, ctext_ex);
238 break;
239 case 1:
240 clen = key2(key, ctext_ex);
241 break;
242 case 2:
243 clen = key3(key, ctext_ex);
244 break;
245 }
246 if (v/3 >= 1) key->flags |= RSA_FLAG_NO_CONSTTIME;
247
248 num = RSA_public_encrypt(plen, ptext_ex, ctext, key,
249 RSA_PKCS1_PADDING);
250 if (num != clen)
251 {
252 printf("PKCS#1 v1.5 encryption failed!\n");
253 err=1;
254 goto oaep;
255 }
256
257 num = RSA_private_decrypt(num, ctext, ptext, key,
258 RSA_PKCS1_PADDING);
259 if (num != plen || memcmp(ptext, ptext_ex, num) != 0)
260 {
261 printf("PKCS#1 v1.5 decryption failed!\n");
262 err=1;
263 }
264 else
265 printf("PKCS #1 v1.5 encryption/decryption ok\n");
266
267 oaep:
268 ERR_clear_error();
269 num = RSA_public_encrypt(plen, ptext_ex, ctext, key,
270 RSA_PKCS1_OAEP_PADDING);
271 if (num == -1 && pad_unknown())
272 {
273 printf("No OAEP support\n");
274 goto next;
275 }
276 if (num != clen)
277 {
278 printf("OAEP encryption failed!\n");
279 err=1;
280 goto next;
281 }
282
283 num = RSA_private_decrypt(num, ctext, ptext, key,
284 RSA_PKCS1_OAEP_PADDING);
285 if (num != plen || memcmp(ptext, ptext_ex, num) != 0)
286 {
287 printf("OAEP decryption (encrypted data) failed!\n");
288 err=1;
289 }
290 else if (memcmp(ctext, ctext_ex, num) == 0)
291 printf("OAEP test vector %d passed!\n", v);
292
293 /* Different ciphertexts (rsa_oaep.c without -DPKCS_TESTVECT).
294 Try decrypting ctext_ex */
295
296 num = RSA_private_decrypt(clen, ctext_ex, ptext, key,
297 RSA_PKCS1_OAEP_PADDING);
298
299 if (num != plen || memcmp(ptext, ptext_ex, num) != 0)
300 {
301 printf("OAEP decryption (test vector data) failed!\n");
302 err=1;
303 }
304 else
305 printf("OAEP encryption/decryption ok\n");
306
307 /* Try decrypting corrupted ciphertexts */
308 for(n = 0 ; n < clen ; ++n)
309 {
310 int b;
311 unsigned char saved = ctext[n];
312 for(b = 0 ; b < 256 ; ++b)
313 {
314 if(b == saved)
315 continue;
316 ctext[n] = b;
317 num = RSA_private_decrypt(num, ctext, ptext, key,
318 RSA_PKCS1_OAEP_PADDING);
319 if(num > 0)
320 {
321 printf("Corrupt data decrypted!\n");
322 err = 1;
323 }
324 }
325 }
326 next:
327 RSA_free(key);
328 }
329
330 CRYPTO_cleanup_all_ex_data();
331 ERR_remove_thread_state(NULL);
332
333 CRYPTO_mem_leaks_fp(stderr);
334
335#ifdef OPENSSL_SYS_NETWARE
336 if (err) printf("ERROR: %d\n", err);
337#endif
338 return err;
339 }
340#endif
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-27 06:08:41 +0000