2016-01-06 14:40:59 +00:00
|
|
|
/*
|
2018-04-14 17:38:34 +00:00
|
|
|
* sc-ossl-compat.h: OpenSC compatibility for older OpenSSL versions
|
2016-01-06 14:40:59 +00:00
|
|
|
*
|
|
|
|
|
* Copyright (C) 2016 Douglas E. Engert <deengert@gmail.com>
|
|
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
|
* version 2.1 of the License, or (at your option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#ifndef _SC_OSSL_COMPAT_H
|
|
|
|
|
#define _SC_OSSL_COMPAT_H
|
|
|
|
|
|
|
|
|
|
#ifdef ENABLE_OPENSSL
|
|
|
|
|
|
|
|
|
|
#ifdef __cplusplus
|
|
|
|
|
extern "C" {
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#include <openssl/opensslv.h>
|
|
|
|
|
#include <openssl/opensslconf.h>
|
|
|
|
|
/*
|
2018-04-14 17:38:34 +00:00
|
|
|
* Provide backward compatibility to older versions of OpenSSL
|
2016-01-06 14:40:59 +00:00
|
|
|
* while using most of OpenSSL 1.1 API
|
2016-10-04 01:10:21 +00:00
|
|
|
*
|
|
|
|
|
* LibreSSL is a fork of OpenSSL from 2014
|
|
|
|
|
* In its version of openssl/opensslv.h it defines:
|
|
|
|
|
* OPENSSL_VERSION_NUMBER 0x20000000L (Will not change)
|
|
|
|
|
* LIBRESSL_VERSION_NUMBER 0x2050000fL (changes with its versions.
|
|
|
|
|
* The LibreSSL appears to follow the OpenSSL-1.0.1 API
|
|
|
|
|
*
|
2016-01-06 14:40:59 +00:00
|
|
|
*/
|
|
|
|
|
|
2019-06-29 18:52:02 +00:00
|
|
|
/*
|
2020-08-29 08:34:51 +00:00
|
|
|
* 1.1.0 deprecated ERR_load_crypto_strings(), SSL_load_error_strings(), ERR_free_strings()
|
2019-06-29 18:52:02 +00:00
|
|
|
* and ENGINE_load_dynamic.EVP_CIPHER_CTX_cleanup and EVP_CIPHER_CTX_init are replaced
|
|
|
|
|
* by EVP_CIPHER_CTX_reset.
|
2020-08-29 08:34:51 +00:00
|
|
|
* But for compatibility with LibreSSL and older OpenSSL. OpenSC uses the older functions
|
2019-06-29 18:52:02 +00:00
|
|
|
*/
|
|
|
|
|
#if OPENSSL_VERSION_NUMBER >= 0x10100000L && !defined(LIBRESSL_VERSION_NUMBER)
|
2019-07-29 02:27:34 +00:00
|
|
|
# if defined(OPENSSL_API_COMPAT) && OPENSSL_API_COMPAT >= 0x10100000L
|
2019-08-04 23:17:58 +00:00
|
|
|
#define ERR_load_crypto_strings(x) while (0) continue
|
|
|
|
|
#define SSL_load_error_strings(x) while (0) continue
|
|
|
|
|
#define ERR_free_strings(x) while (0) continue
|
|
|
|
|
#define ENGINE_load_dynamic(x) while (0) continue
|
2019-06-29 18:52:02 +00:00
|
|
|
#define EVP_CIPHER_CTX_cleanup(x) EVP_CIPHER_CTX_reset(x)
|
|
|
|
|
#define EVP_CIPHER_CTX_init(x) EVP_CIPHER_CTX_reset(x)
|
2019-07-29 02:27:34 +00:00
|
|
|
# endif
|
2019-06-29 18:52:02 +00:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
|
2016-01-06 14:40:59 +00:00
|
|
|
/*
|
|
|
|
|
* 1.1 renames RSA_PKCS1_SSLeay to RSA_PKCS1_OpenSSL
|
|
|
|
|
* use RSA_PKCS1_OpenSSL
|
|
|
|
|
* Previous versions are missing a number of functions to access
|
|
|
|
|
* some hidden structures. Define them here:
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/* EVP_PKEY_base_id introduced in 1.0.1 */
|
|
|
|
|
#if OPENSSL_VERSION_NUMBER < 0x10001000L
|
|
|
|
|
#define EVP_PKEY_base_id(x) (x->type)
|
|
|
|
|
#endif
|
|
|
|
|
|
2016-10-04 01:10:21 +00:00
|
|
|
#if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER)
|
2016-01-06 14:40:59 +00:00
|
|
|
#define RSA_PKCS1_OpenSSL RSA_PKCS1_SSLeay
|
|
|
|
|
|
|
|
|
|
#define X509_get_extension_flags(x) (x->ex_flags)
|
|
|
|
|
#define X509_get_key_usage(x) (x->ex_kusage)
|
|
|
|
|
#define X509_get_extended_key_usage(x) (x->ex_xkusage)
|
2017-04-22 08:59:24 +00:00
|
|
|
#if !defined(LIBRESSL_VERSION_NUMBER) || LIBRESSL_VERSION_NUMBER < 0x2050300fL
|
2016-01-06 14:40:59 +00:00
|
|
|
#define X509_up_ref(cert) CRYPTO_add(&cert->references, 1, CRYPTO_LOCK_X509)
|
|
|
|
|
#endif
|
2018-06-22 19:21:03 +00:00
|
|
|
#if !defined(LIBRESSL_VERSION_NUMBER) || LIBRESSL_VERSION_NUMBER < 0x20700000L
|
|
|
|
|
#define OPENSSL_malloc_init CRYPTO_malloc_init
|
|
|
|
|
#define EVP_PKEY_get0_RSA(x) (x->pkey.rsa)
|
|
|
|
|
#define EVP_PKEY_get0_EC_KEY(x) (x->pkey.ec)
|
|
|
|
|
#define EVP_PKEY_get0_DSA(x) (x->pkey.dsa)
|
|
|
|
|
#define EVP_PKEY_up_ref(user_key) CRYPTO_add(&user_key->references, 1, CRYPTO_LOCK_EVP_PKEY)
|
|
|
|
|
#define ASN1_STRING_get0_data(x) ASN1_STRING_data(x)
|
|
|
|
|
#endif
|
2017-04-22 08:59:24 +00:00
|
|
|
#endif
|
2016-01-06 14:40:59 +00:00
|
|
|
|
2018-06-22 19:21:03 +00:00
|
|
|
/* workaround unused value warning for a macro that does nothing */
|
|
|
|
|
#if defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER >= 0x20700000L
|
|
|
|
|
#define OPENSSL_malloc_init()
|
PKCS#11 testsuite (#1224)
* Initial version of pkcs11 testsuite
* Refactor test cases to several files, clean up awful and unused stuff
* Static mechanism list based on the actual token offer
* Get rid of magic numbers
* Documentation
* License update based on the original project
* Verbose readme
* Cleanup unused code, long lines and method order
* Typo; More verbose errors
* Use fallback mechanisms
* Refactor object allocation and certificate search
* PKCS11SPY mentioned, more TODO
* add SHA mechanisms
* Do not try to Finalize already finalized cryptoki
* Add more flags and mechanisms
* Do not list table for no results
* Logical order of the tests (regression last)
* read ALWAYS_AUTHENTICATE from correct place
* ALWAYS_AUTHENTICATE for decryption
* Test EC key length signature based on the actual key length
* Shorten CKM_ list output, add keygen types detection
* Skip decrypting on non-supported mechanisms
* Fail hard if the C_Login fails
* Reorganize local FLAGS_ constants
* Test RSA Digest mechanisms
* Correct mechanisms naming, typos
* Do not attempt to do signature using empty keys
* CKM_ECDSA_SHA1 support
* Correct type cast when getting attributes
* Report failures from all mechanisms
* Standardize return values, eliminate complete fails, documentation interface
* Wait for slot event test
* Add switch to allow interaction with a card (WaitForSlotEvent)
* At least try to verify using C_Verify, if it fails, fall back to openssl
* Get rid of function_pointers
* Get rid of additional newline
* Share always_authenticate() function between the test cases
* Refactor Encrypt&decrypt test to functions
* Do not overwrite bits if they are not provided by CKA, indentation
* Cleanup and Break to more functions Sign&Verify test
* CKM_RSA_X_509 sign and verify with openssl padding
* More TODO's
* Proper abstracted padding with RSA_X_509 mechanism
* Add ongoing tasks from different TODO list
* Update instructions. Another todo
* Variables naming
* Increase mechanism list size, use different static buffers for flags and mechanism names
* nonstandard mechanism CKM_SHA224_RSA_PKCS supported by some softotkens
* Get rid of loop initial declarations
* Loop initial declaration, typos, strict warnings
* Move the p11test to the new folder to avoid problems with dynamically linked opensc.so
* Update path in README
* Possibility to validate the testsuite agains software tokens
* Add possibility to select slot ID on command-line (when there are more cards present)
* Clean up readme to reflect current options and TODOs
* Do not attempt to use keys without advertised sign&verify bits to avoid false positives
* Get and present more object attributes in readonly test; refactor table
* New test checking if the set of attributes (usage flags) is reasonable
* Test multipart signatures. There is not reasonable mechanism supporting multipart encryption
* Use PKCS#11 encryption if possible (with openssl fallback)
* Identify few more mechanisms (PSS) in the lest
* Resize table to fit new mechanisms
* Remove initial loop declaration from multipart test
* Use pkcs11-tool instead of p11tool form most of the operations (master have most of the features)
* Preparation for machine readable results
* Refactor log variables out of the main context, try to export generic data
* Do not write to non-existing FD if not logging
* Export missing data into the log file in JSON
* Store database in json
* Sanity check
* Avoid uninitialized structure fields using in state structure
* Dump always_authenticate attribute too
* Manual selection of slots with possibility to use slots without tokens
* Do not free before finalizing
* Proper cleanup of message in all cases
* Proper allocation and deallocation of messages
* Sanitize missing cases (memory leaks)
* Suppressions for testing under valgrind
* Better handling message_lengt during sign&verify (avoid invalid access)
* Suppress another PCSC error
* Do not use default PIN. Fail if none specified
* Sanitize initialization. Skip incomplete key pairs
* Add missing newline in errors
* Fix condition for certificate search
* Avoid several calls for attributes of zero length
* Handle if the private key is not present on the card
* Improve memory handling, silent GCC warning of 'unused' variable
* Fail early with missing private key, cleanup the messages
* Use correct padding for encryption
* Cache if the card supports Verify/Encrypt and avoid trying over and over again
* Loosen the condition for the Usage flags
* OpenSSL 1.1.0 compatibility
* Add missing mechanisms
* Do not require certificates on the card and pass valid data for RSA_PKCS mechanisms
* Add missing PIN argument in runtest.sh
* Add OpenSSL < 1.1 comatible bits
* Add SHA2 ECDSA mechanisms handling
* Use public key from PKCS#11 if the certificate is missing (or compare it with certificate)
* Avoid long definitions in OpenSSL compat layer
* In older OpenSSL, the header file is ecdsa.h
* Add missing config.h to apply compat OpenSSL layer
* ASN1_STRING_get0_data() is also new in 1.1.0
* Return back RSA_X_509 mechanism
* Drop bogus CKM_* in the definitions
* Drop CKM_SHA224_RSA_PKCS as it is already in pkcs11.h
* Update documentation
* Use NDEBUG as intended
* typos, cleanup
* Typos, cleanup, update copyright
* Additional check for OpenCryptoki, generate more key types on soft tokens
* Prepare for RSA-PSS and RSA-OAEP
* Use usage&result flags for the tests, gracefully ignore PSS&OAEP
* pkcs11.h: Add missing definitions for PSS
* PSS and OAEP tests
readonly: Typos, reformat
* Working version, memory leak
* Tweak message lengths for OAEP and PSS
* Skip tests that are not aplicable for tokens
* configure.ac: New switch --enable-tests
Do not attempt to build tests if cmocka is not available or
--enable-tests is provided. It makes also more lightweight release
builds out of the box (or with --disable-tests).
* travis: Install cmocka if not available
* Do not build tests on Windows and make dist pass
* Try to install cmocka from apt and from brew
* Do not require sudo (cmocka from apt and brew works)
2018-05-18 10:31:55 +00:00
|
|
|
#endif
|
|
|
|
|
|
2019-01-30 21:01:24 +00:00
|
|
|
#if OPENSSL_VERSION_NUMBER >= 0x30000000L
|
|
|
|
|
#define EC_POINT_get_affine_coordinates_GFp EC_POINT_get_affine_coordinates
|
|
|
|
|
#define EC_POINT_set_affine_coordinates_GFp EC_POINT_set_affine_coordinates
|
|
|
|
|
#endif
|
|
|
|
|
|
2016-01-06 14:40:59 +00:00
|
|
|
/*
|
|
|
|
|
* OpenSSL-1.1.0-pre5 has hidden the RSA and DSA structures
|
|
|
|
|
* One can no longer use statements like rsa->n = ...
|
|
|
|
|
* Macros and defines don't work on all systems, so use inline versions
|
|
|
|
|
* If that is not good enough, versions could be added to libopensc
|
|
|
|
|
*/
|
|
|
|
|
|
2018-06-22 19:21:03 +00:00
|
|
|
#if OPENSSL_VERSION_NUMBER < 0x10100000L || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000L)
|
2016-01-06 14:40:59 +00:00
|
|
|
/* based on OpenSSL-1.1.0 e_os2.h */
|
|
|
|
|
/* sc_ossl_inline: portable inline definition usable in public headers */
|
|
|
|
|
# if !defined(inline) && !defined(__cplusplus)
|
|
|
|
|
# if defined(__STDC_VERSION__) && __STDC_VERSION__>=199901L
|
|
|
|
|
/* just use inline */
|
|
|
|
|
# define sc_ossl_inline inline
|
|
|
|
|
# elif defined(__GNUC__) && __GNUC__>=2
|
|
|
|
|
# define sc_ossl_inline __inline__
|
|
|
|
|
# elif defined(_MSC_VER)
|
|
|
|
|
# define sc_ossl_inline __inline
|
|
|
|
|
# else
|
|
|
|
|
# define sc_ossl_inline
|
|
|
|
|
# endif
|
|
|
|
|
# else
|
|
|
|
|
# define sc_ossl_inline inline
|
|
|
|
|
# endif
|
|
|
|
|
#endif
|
|
|
|
|
|
2018-06-22 19:21:03 +00:00
|
|
|
#if OPENSSL_VERSION_NUMBER < 0x10100000L || (defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x2050300fL)
|
2016-01-06 14:40:59 +00:00
|
|
|
|
|
|
|
|
#define RSA_bits(R) (BN_num_bits(R->n))
|
|
|
|
|
|
|
|
|
|
#include <openssl/bn.h>
|
|
|
|
|
#ifndef OPENSSL_NO_RSA
|
|
|
|
|
#include <openssl/rsa.h>
|
|
|
|
|
#endif
|
|
|
|
|
#ifndef OPENSSL_NO_DSA
|
|
|
|
|
#include <openssl/dsa.h>
|
|
|
|
|
#endif
|
PKCS#11 testsuite (#1224)
* Initial version of pkcs11 testsuite
* Refactor test cases to several files, clean up awful and unused stuff
* Static mechanism list based on the actual token offer
* Get rid of magic numbers
* Documentation
* License update based on the original project
* Verbose readme
* Cleanup unused code, long lines and method order
* Typo; More verbose errors
* Use fallback mechanisms
* Refactor object allocation and certificate search
* PKCS11SPY mentioned, more TODO
* add SHA mechanisms
* Do not try to Finalize already finalized cryptoki
* Add more flags and mechanisms
* Do not list table for no results
* Logical order of the tests (regression last)
* read ALWAYS_AUTHENTICATE from correct place
* ALWAYS_AUTHENTICATE for decryption
* Test EC key length signature based on the actual key length
* Shorten CKM_ list output, add keygen types detection
* Skip decrypting on non-supported mechanisms
* Fail hard if the C_Login fails
* Reorganize local FLAGS_ constants
* Test RSA Digest mechanisms
* Correct mechanisms naming, typos
* Do not attempt to do signature using empty keys
* CKM_ECDSA_SHA1 support
* Correct type cast when getting attributes
* Report failures from all mechanisms
* Standardize return values, eliminate complete fails, documentation interface
* Wait for slot event test
* Add switch to allow interaction with a card (WaitForSlotEvent)
* At least try to verify using C_Verify, if it fails, fall back to openssl
* Get rid of function_pointers
* Get rid of additional newline
* Share always_authenticate() function between the test cases
* Refactor Encrypt&decrypt test to functions
* Do not overwrite bits if they are not provided by CKA, indentation
* Cleanup and Break to more functions Sign&Verify test
* CKM_RSA_X_509 sign and verify with openssl padding
* More TODO's
* Proper abstracted padding with RSA_X_509 mechanism
* Add ongoing tasks from different TODO list
* Update instructions. Another todo
* Variables naming
* Increase mechanism list size, use different static buffers for flags and mechanism names
* nonstandard mechanism CKM_SHA224_RSA_PKCS supported by some softotkens
* Get rid of loop initial declarations
* Loop initial declaration, typos, strict warnings
* Move the p11test to the new folder to avoid problems with dynamically linked opensc.so
* Update path in README
* Possibility to validate the testsuite agains software tokens
* Add possibility to select slot ID on command-line (when there are more cards present)
* Clean up readme to reflect current options and TODOs
* Do not attempt to use keys without advertised sign&verify bits to avoid false positives
* Get and present more object attributes in readonly test; refactor table
* New test checking if the set of attributes (usage flags) is reasonable
* Test multipart signatures. There is not reasonable mechanism supporting multipart encryption
* Use PKCS#11 encryption if possible (with openssl fallback)
* Identify few more mechanisms (PSS) in the lest
* Resize table to fit new mechanisms
* Remove initial loop declaration from multipart test
* Use pkcs11-tool instead of p11tool form most of the operations (master have most of the features)
* Preparation for machine readable results
* Refactor log variables out of the main context, try to export generic data
* Do not write to non-existing FD if not logging
* Export missing data into the log file in JSON
* Store database in json
* Sanity check
* Avoid uninitialized structure fields using in state structure
* Dump always_authenticate attribute too
* Manual selection of slots with possibility to use slots without tokens
* Do not free before finalizing
* Proper cleanup of message in all cases
* Proper allocation and deallocation of messages
* Sanitize missing cases (memory leaks)
* Suppressions for testing under valgrind
* Better handling message_lengt during sign&verify (avoid invalid access)
* Suppress another PCSC error
* Do not use default PIN. Fail if none specified
* Sanitize initialization. Skip incomplete key pairs
* Add missing newline in errors
* Fix condition for certificate search
* Avoid several calls for attributes of zero length
* Handle if the private key is not present on the card
* Improve memory handling, silent GCC warning of 'unused' variable
* Fail early with missing private key, cleanup the messages
* Use correct padding for encryption
* Cache if the card supports Verify/Encrypt and avoid trying over and over again
* Loosen the condition for the Usage flags
* OpenSSL 1.1.0 compatibility
* Add missing mechanisms
* Do not require certificates on the card and pass valid data for RSA_PKCS mechanisms
* Add missing PIN argument in runtest.sh
* Add OpenSSL < 1.1 comatible bits
* Add SHA2 ECDSA mechanisms handling
* Use public key from PKCS#11 if the certificate is missing (or compare it with certificate)
* Avoid long definitions in OpenSSL compat layer
* In older OpenSSL, the header file is ecdsa.h
* Add missing config.h to apply compat OpenSSL layer
* ASN1_STRING_get0_data() is also new in 1.1.0
* Return back RSA_X_509 mechanism
* Drop bogus CKM_* in the definitions
* Drop CKM_SHA224_RSA_PKCS as it is already in pkcs11.h
* Update documentation
* Use NDEBUG as intended
* typos, cleanup
* Typos, cleanup, update copyright
* Additional check for OpenCryptoki, generate more key types on soft tokens
* Prepare for RSA-PSS and RSA-OAEP
* Use usage&result flags for the tests, gracefully ignore PSS&OAEP
* pkcs11.h: Add missing definitions for PSS
* PSS and OAEP tests
readonly: Typos, reformat
* Working version, memory leak
* Tweak message lengths for OAEP and PSS
* Skip tests that are not aplicable for tokens
* configure.ac: New switch --enable-tests
Do not attempt to build tests if cmocka is not available or
--enable-tests is provided. It makes also more lightweight release
builds out of the box (or with --disable-tests).
* travis: Install cmocka if not available
* Do not build tests on Windows and make dist pass
* Try to install cmocka from apt and from brew
* Do not require sudo (cmocka from apt and brew works)
2018-05-18 10:31:55 +00:00
|
|
|
#ifndef OPENSSL_NO_EC
|
|
|
|
|
#include <openssl/ecdsa.h>
|
|
|
|
|
#endif
|
2016-01-06 14:40:59 +00:00
|
|
|
|
|
|
|
|
#ifndef OPENSSL_NO_RSA
|
|
|
|
|
static sc_ossl_inline int RSA_set0_key(RSA *r, BIGNUM *n, BIGNUM *e, BIGNUM *d)
|
|
|
|
|
{
|
|
|
|
|
/* d is the private component and may be NULL */
|
|
|
|
|
if (n == NULL || e == NULL)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
BN_free(r->n);
|
|
|
|
|
BN_free(r->e);
|
|
|
|
|
BN_free(r->d);
|
|
|
|
|
r->n = n;
|
|
|
|
|
r->e = e;
|
|
|
|
|
r->d = d;
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline int RSA_set0_factors(RSA *r, BIGNUM *p, BIGNUM *q)
|
|
|
|
|
{
|
|
|
|
|
if (p == NULL || q == NULL)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
BN_free(r->p);
|
|
|
|
|
BN_free(r->q);
|
|
|
|
|
r->p = p;
|
|
|
|
|
r->q = q;
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline int RSA_set0_crt_params(RSA *r, BIGNUM *dmp1, BIGNUM *dmq1, BIGNUM *iqmp)
|
|
|
|
|
{
|
|
|
|
|
if (dmp1 == NULL || dmq1 == NULL || iqmp == NULL)
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
BN_free(r->dmp1);
|
|
|
|
|
BN_free(r->dmq1);
|
|
|
|
|
BN_free(r->iqmp);
|
|
|
|
|
r->dmp1 = dmp1;
|
|
|
|
|
r->dmq1 = dmq1;
|
|
|
|
|
r->iqmp = iqmp;
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline void RSA_get0_key(const RSA *r, const BIGNUM **n, const BIGNUM **e, const BIGNUM **d)
|
|
|
|
|
{
|
|
|
|
|
if (n != NULL)
|
|
|
|
|
*n = r->n;
|
|
|
|
|
if (e != NULL)
|
|
|
|
|
*e = r->e;
|
|
|
|
|
if (d != NULL)
|
|
|
|
|
*d = r->d;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline void RSA_get0_factors(const RSA *r, const BIGNUM **p, const BIGNUM **q)
|
|
|
|
|
{
|
|
|
|
|
if (p != NULL)
|
|
|
|
|
*p = r->p;
|
|
|
|
|
if (q != NULL)
|
|
|
|
|
*q = r->q;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline void RSA_get0_crt_params(const RSA *r,
|
|
|
|
|
const BIGNUM **dmp1, const BIGNUM **dmq1, const BIGNUM **iqmp)
|
|
|
|
|
{
|
|
|
|
|
if (dmp1 != NULL)
|
|
|
|
|
*dmp1 = r->dmp1;
|
|
|
|
|
if (dmq1 != NULL)
|
|
|
|
|
*dmq1 = r->dmq1;
|
|
|
|
|
if (iqmp != NULL)
|
|
|
|
|
*iqmp = r->iqmp;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#endif /* OPENSSL_NO_RSA */
|
|
|
|
|
|
|
|
|
|
#ifndef OPENSSL_NO_DSA
|
|
|
|
|
static sc_ossl_inline void DSA_get0_pqg(const DSA *d, const BIGNUM **p, const BIGNUM **q, const BIGNUM **g)
|
|
|
|
|
{
|
|
|
|
|
if (p != NULL)
|
|
|
|
|
*p = d->p;
|
|
|
|
|
if (q != NULL)
|
|
|
|
|
*q = d->q;
|
|
|
|
|
if (g != NULL)
|
|
|
|
|
*g = d->g;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline void DSA_get0_key(const DSA *d, const BIGNUM **pub_key, const BIGNUM **priv_key)
|
|
|
|
|
{
|
|
|
|
|
if (pub_key != NULL)
|
|
|
|
|
*pub_key = d->pub_key;
|
|
|
|
|
if (priv_key != NULL)
|
|
|
|
|
*priv_key = d->priv_key;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* NOTE: DSA_set0_* functions not defined because they are not currently used in OpenSC */
|
|
|
|
|
#endif /* OPENSSL_NO_DSA */
|
|
|
|
|
|
PKCS#11 testsuite (#1224)
* Initial version of pkcs11 testsuite
* Refactor test cases to several files, clean up awful and unused stuff
* Static mechanism list based on the actual token offer
* Get rid of magic numbers
* Documentation
* License update based on the original project
* Verbose readme
* Cleanup unused code, long lines and method order
* Typo; More verbose errors
* Use fallback mechanisms
* Refactor object allocation and certificate search
* PKCS11SPY mentioned, more TODO
* add SHA mechanisms
* Do not try to Finalize already finalized cryptoki
* Add more flags and mechanisms
* Do not list table for no results
* Logical order of the tests (regression last)
* read ALWAYS_AUTHENTICATE from correct place
* ALWAYS_AUTHENTICATE for decryption
* Test EC key length signature based on the actual key length
* Shorten CKM_ list output, add keygen types detection
* Skip decrypting on non-supported mechanisms
* Fail hard if the C_Login fails
* Reorganize local FLAGS_ constants
* Test RSA Digest mechanisms
* Correct mechanisms naming, typos
* Do not attempt to do signature using empty keys
* CKM_ECDSA_SHA1 support
* Correct type cast when getting attributes
* Report failures from all mechanisms
* Standardize return values, eliminate complete fails, documentation interface
* Wait for slot event test
* Add switch to allow interaction with a card (WaitForSlotEvent)
* At least try to verify using C_Verify, if it fails, fall back to openssl
* Get rid of function_pointers
* Get rid of additional newline
* Share always_authenticate() function between the test cases
* Refactor Encrypt&decrypt test to functions
* Do not overwrite bits if they are not provided by CKA, indentation
* Cleanup and Break to more functions Sign&Verify test
* CKM_RSA_X_509 sign and verify with openssl padding
* More TODO's
* Proper abstracted padding with RSA_X_509 mechanism
* Add ongoing tasks from different TODO list
* Update instructions. Another todo
* Variables naming
* Increase mechanism list size, use different static buffers for flags and mechanism names
* nonstandard mechanism CKM_SHA224_RSA_PKCS supported by some softotkens
* Get rid of loop initial declarations
* Loop initial declaration, typos, strict warnings
* Move the p11test to the new folder to avoid problems with dynamically linked opensc.so
* Update path in README
* Possibility to validate the testsuite agains software tokens
* Add possibility to select slot ID on command-line (when there are more cards present)
* Clean up readme to reflect current options and TODOs
* Do not attempt to use keys without advertised sign&verify bits to avoid false positives
* Get and present more object attributes in readonly test; refactor table
* New test checking if the set of attributes (usage flags) is reasonable
* Test multipart signatures. There is not reasonable mechanism supporting multipart encryption
* Use PKCS#11 encryption if possible (with openssl fallback)
* Identify few more mechanisms (PSS) in the lest
* Resize table to fit new mechanisms
* Remove initial loop declaration from multipart test
* Use pkcs11-tool instead of p11tool form most of the operations (master have most of the features)
* Preparation for machine readable results
* Refactor log variables out of the main context, try to export generic data
* Do not write to non-existing FD if not logging
* Export missing data into the log file in JSON
* Store database in json
* Sanity check
* Avoid uninitialized structure fields using in state structure
* Dump always_authenticate attribute too
* Manual selection of slots with possibility to use slots without tokens
* Do not free before finalizing
* Proper cleanup of message in all cases
* Proper allocation and deallocation of messages
* Sanitize missing cases (memory leaks)
* Suppressions for testing under valgrind
* Better handling message_lengt during sign&verify (avoid invalid access)
* Suppress another PCSC error
* Do not use default PIN. Fail if none specified
* Sanitize initialization. Skip incomplete key pairs
* Add missing newline in errors
* Fix condition for certificate search
* Avoid several calls for attributes of zero length
* Handle if the private key is not present on the card
* Improve memory handling, silent GCC warning of 'unused' variable
* Fail early with missing private key, cleanup the messages
* Use correct padding for encryption
* Cache if the card supports Verify/Encrypt and avoid trying over and over again
* Loosen the condition for the Usage flags
* OpenSSL 1.1.0 compatibility
* Add missing mechanisms
* Do not require certificates on the card and pass valid data for RSA_PKCS mechanisms
* Add missing PIN argument in runtest.sh
* Add OpenSSL < 1.1 comatible bits
* Add SHA2 ECDSA mechanisms handling
* Use public key from PKCS#11 if the certificate is missing (or compare it with certificate)
* Avoid long definitions in OpenSSL compat layer
* In older OpenSSL, the header file is ecdsa.h
* Add missing config.h to apply compat OpenSSL layer
* ASN1_STRING_get0_data() is also new in 1.1.0
* Return back RSA_X_509 mechanism
* Drop bogus CKM_* in the definitions
* Drop CKM_SHA224_RSA_PKCS as it is already in pkcs11.h
* Update documentation
* Use NDEBUG as intended
* typos, cleanup
* Typos, cleanup, update copyright
* Additional check for OpenCryptoki, generate more key types on soft tokens
* Prepare for RSA-PSS and RSA-OAEP
* Use usage&result flags for the tests, gracefully ignore PSS&OAEP
* pkcs11.h: Add missing definitions for PSS
* PSS and OAEP tests
readonly: Typos, reformat
* Working version, memory leak
* Tweak message lengths for OAEP and PSS
* Skip tests that are not aplicable for tokens
* configure.ac: New switch --enable-tests
Do not attempt to build tests if cmocka is not available or
--enable-tests is provided. It makes also more lightweight release
builds out of the box (or with --disable-tests).
* travis: Install cmocka if not available
* Do not build tests on Windows and make dist pass
* Try to install cmocka from apt and from brew
* Do not require sudo (cmocka from apt and brew works)
2018-05-18 10:31:55 +00:00
|
|
|
|
|
|
|
|
#ifndef OPENSSL_NO_EC
|
|
|
|
|
static sc_ossl_inline int ECDSA_SIG_set0(ECDSA_SIG *sig, BIGNUM *r, BIGNUM *s)
|
|
|
|
|
{
|
|
|
|
|
if (r == NULL || s == NULL)
|
|
|
|
|
return 0;
|
|
|
|
|
BN_clear_free(sig->r);
|
|
|
|
|
BN_clear_free(sig->s);
|
|
|
|
|
sig->r = r;
|
|
|
|
|
sig->s = s;
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
#endif /* OPENSSL_NO_EC */
|
|
|
|
|
|
2018-10-10 12:52:01 +00:00
|
|
|
static sc_ossl_inline int CRYPTO_secure_malloc_init(size_t size, int minsize)
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static sc_ossl_inline int CRYPTO_secure_malloc_initialized()
|
|
|
|
|
{
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-12 12:55:44 +00:00
|
|
|
static sc_ossl_inline void CRYPTO_secure_malloc_done()
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
2018-10-10 12:52:01 +00:00
|
|
|
#else
|
|
|
|
|
|
|
|
|
|
#include <openssl/crypto.h>
|
PKCS#11 testsuite (#1224)
* Initial version of pkcs11 testsuite
* Refactor test cases to several files, clean up awful and unused stuff
* Static mechanism list based on the actual token offer
* Get rid of magic numbers
* Documentation
* License update based on the original project
* Verbose readme
* Cleanup unused code, long lines and method order
* Typo; More verbose errors
* Use fallback mechanisms
* Refactor object allocation and certificate search
* PKCS11SPY mentioned, more TODO
* add SHA mechanisms
* Do not try to Finalize already finalized cryptoki
* Add more flags and mechanisms
* Do not list table for no results
* Logical order of the tests (regression last)
* read ALWAYS_AUTHENTICATE from correct place
* ALWAYS_AUTHENTICATE for decryption
* Test EC key length signature based on the actual key length
* Shorten CKM_ list output, add keygen types detection
* Skip decrypting on non-supported mechanisms
* Fail hard if the C_Login fails
* Reorganize local FLAGS_ constants
* Test RSA Digest mechanisms
* Correct mechanisms naming, typos
* Do not attempt to do signature using empty keys
* CKM_ECDSA_SHA1 support
* Correct type cast when getting attributes
* Report failures from all mechanisms
* Standardize return values, eliminate complete fails, documentation interface
* Wait for slot event test
* Add switch to allow interaction with a card (WaitForSlotEvent)
* At least try to verify using C_Verify, if it fails, fall back to openssl
* Get rid of function_pointers
* Get rid of additional newline
* Share always_authenticate() function between the test cases
* Refactor Encrypt&decrypt test to functions
* Do not overwrite bits if they are not provided by CKA, indentation
* Cleanup and Break to more functions Sign&Verify test
* CKM_RSA_X_509 sign and verify with openssl padding
* More TODO's
* Proper abstracted padding with RSA_X_509 mechanism
* Add ongoing tasks from different TODO list
* Update instructions. Another todo
* Variables naming
* Increase mechanism list size, use different static buffers for flags and mechanism names
* nonstandard mechanism CKM_SHA224_RSA_PKCS supported by some softotkens
* Get rid of loop initial declarations
* Loop initial declaration, typos, strict warnings
* Move the p11test to the new folder to avoid problems with dynamically linked opensc.so
* Update path in README
* Possibility to validate the testsuite agains software tokens
* Add possibility to select slot ID on command-line (when there are more cards present)
* Clean up readme to reflect current options and TODOs
* Do not attempt to use keys without advertised sign&verify bits to avoid false positives
* Get and present more object attributes in readonly test; refactor table
* New test checking if the set of attributes (usage flags) is reasonable
* Test multipart signatures. There is not reasonable mechanism supporting multipart encryption
* Use PKCS#11 encryption if possible (with openssl fallback)
* Identify few more mechanisms (PSS) in the lest
* Resize table to fit new mechanisms
* Remove initial loop declaration from multipart test
* Use pkcs11-tool instead of p11tool form most of the operations (master have most of the features)
* Preparation for machine readable results
* Refactor log variables out of the main context, try to export generic data
* Do not write to non-existing FD if not logging
* Export missing data into the log file in JSON
* Store database in json
* Sanity check
* Avoid uninitialized structure fields using in state structure
* Dump always_authenticate attribute too
* Manual selection of slots with possibility to use slots without tokens
* Do not free before finalizing
* Proper cleanup of message in all cases
* Proper allocation and deallocation of messages
* Sanitize missing cases (memory leaks)
* Suppressions for testing under valgrind
* Better handling message_lengt during sign&verify (avoid invalid access)
* Suppress another PCSC error
* Do not use default PIN. Fail if none specified
* Sanitize initialization. Skip incomplete key pairs
* Add missing newline in errors
* Fix condition for certificate search
* Avoid several calls for attributes of zero length
* Handle if the private key is not present on the card
* Improve memory handling, silent GCC warning of 'unused' variable
* Fail early with missing private key, cleanup the messages
* Use correct padding for encryption
* Cache if the card supports Verify/Encrypt and avoid trying over and over again
* Loosen the condition for the Usage flags
* OpenSSL 1.1.0 compatibility
* Add missing mechanisms
* Do not require certificates on the card and pass valid data for RSA_PKCS mechanisms
* Add missing PIN argument in runtest.sh
* Add OpenSSL < 1.1 comatible bits
* Add SHA2 ECDSA mechanisms handling
* Use public key from PKCS#11 if the certificate is missing (or compare it with certificate)
* Avoid long definitions in OpenSSL compat layer
* In older OpenSSL, the header file is ecdsa.h
* Add missing config.h to apply compat OpenSSL layer
* ASN1_STRING_get0_data() is also new in 1.1.0
* Return back RSA_X_509 mechanism
* Drop bogus CKM_* in the definitions
* Drop CKM_SHA224_RSA_PKCS as it is already in pkcs11.h
* Update documentation
* Use NDEBUG as intended
* typos, cleanup
* Typos, cleanup, update copyright
* Additional check for OpenCryptoki, generate more key types on soft tokens
* Prepare for RSA-PSS and RSA-OAEP
* Use usage&result flags for the tests, gracefully ignore PSS&OAEP
* pkcs11.h: Add missing definitions for PSS
* PSS and OAEP tests
readonly: Typos, reformat
* Working version, memory leak
* Tweak message lengths for OAEP and PSS
* Skip tests that are not aplicable for tokens
* configure.ac: New switch --enable-tests
Do not attempt to build tests if cmocka is not available or
--enable-tests is provided. It makes also more lightweight release
builds out of the box (or with --disable-tests).
* travis: Install cmocka if not available
* Do not build tests on Windows and make dist pass
* Try to install cmocka from apt and from brew
* Do not require sudo (cmocka from apt and brew works)
2018-05-18 10:31:55 +00:00
|
|
|
|
2016-01-06 14:40:59 +00:00
|
|
|
#endif /* OPENSSL_VERSION_NUMBER < 0x10100000L */
|
|
|
|
|
|
2021-05-24 09:24:51 +00:00
|
|
|
|
2016-01-06 14:40:59 +00:00
|
|
|
#ifdef __cplusplus
|
|
|
|
|
}
|
|
|
|
|
#endif /* __cplusplus */
|
|
|
|
|
|
|
|
|
|
#endif /* ENABLE_OPENSSL */
|
|
|
|
|
#endif /* _SC_OSSL_COMPAT_H */
|
