openssl/crypto/evp/p_seal.c

/*
 * Copyright 1995-2020 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stdio.h>
#include "internal/cryptlib.h"
#include <openssl/rand.h>
#include <openssl/rsa.h>
#include <openssl/evp.h>
#include <openssl/objects.h>
#include <openssl/x509.h>

int EVP_SealInit(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *type,
                 unsigned char **ek, int *ekl, unsigned char *iv,
                 EVP_PKEY **pubk, int npubk)
{
    unsigned char key[EVP_MAX_KEY_LENGTH];
    int i;
    int rv = 0;

    if (type) {
        EVP_CIPHER_CTX_reset(ctx);
        if (!EVP_EncryptInit_ex(ctx, type, NULL, NULL, NULL))
            return 0;
    }
    if ((npubk <= 0) || !pubk)
        return 1;

    if (EVP_CIPHER_CTX_rand_key(ctx, key) <= 0)
        return 0;

    if (EVP_CIPHER_CTX_iv_length(ctx)
            && RAND_bytes(iv, EVP_CIPHER_CTX_iv_length(ctx)) <= 0)
        goto err;

    if (!EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv))
        goto err;

    for (i = 0; i < npubk; i++) {
        size_t keylen = EVP_CIPHER_CTX_key_length(ctx);
        EVP_PKEY_CTX *pctx = NULL;

        if ((pctx = EVP_PKEY_CTX_new(pubk[i], NULL)) == NULL) {
            ERR_raise(ERR_LIB_EVP, ERR_R_MALLOC_FAILURE);
            goto err;
        }

        if (EVP_PKEY_encrypt_init(pctx) <= 0
            || EVP_PKEY_encrypt(pctx, ek[i], &keylen, key, keylen) <= 0)
            goto err;
        ekl[i] = (int)keylen;
        EVP_PKEY_CTX_free(pctx);
    }
    rv = npubk;
err:
    OPENSSL_cleanse(key, sizeof(key));
    return rv;
}

int EVP_SealFinal(EVP_CIPHER_CTX *ctx, unsigned char *out, int *outl)
{
    int i;
    i = EVP_EncryptFinal_ex(ctx, out, outl);
    if (i)
        i = EVP_EncryptInit_ex(ctx, NULL, NULL, NULL, NULL);
    return i;
}
Copyright consolidation 05/10 Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 03:38:09 +08:00			`/*`
Update copyright year Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11616) 2020-04-23 20:55:52 +08:00			`* Copyright 1995-2020 The OpenSSL Project Authors. All Rights Reserved.`
Import of old SSLeay release: SSLeay 0.8.1b 1998-12-21 18:52:47 +08:00			`*`
Following the license change, modify the boilerplates in crypto/evp/ [skip ci] Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/7794) 2018-12-06 20:40:06 +08:00			`* Licensed under the Apache License 2.0 (the "License"). You may not use`
Copyright consolidation 05/10 Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-05-18 03:38:09 +08:00			`* this file except in compliance with the License. You can obtain a copy`
			`* in the file LICENSE in the source distribution or at`
			`* https://www.openssl.org/source/license.html`
Import of old SSLeay release: SSLeay 0.8.1b 1998-12-21 18:52:47 +08:00			`*/`

			`#include <stdio.h>`
Identify and move common internal libcrypto header files There are header files in crypto/ that are used by a number of crypto/ submodules. Move those to crypto/include/internal and adapt the affected source code and Makefiles. The header files that got moved are: crypto/cryptolib.h crypto/md32_common.h Reviewed-by: Rich Salz <rsalz@openssl.org> 2015-05-14 22:56:48 +08:00			`#include "internal/cryptlib.h"`
Change #include filenames from <foo.h> to <openssl.h>. Submitted by: Reviewed by: PR: 1999-04-24 06:13:45 +08:00			`#include <openssl/rand.h>`
Remove #error from include files. Don't have #error statements in header files, but instead wrap the contents of that file in #ifndef OPENSSL_NO_xxx This means it is now always safe to include the header file. Reviewed-by: Richard Levitte <levitte@openssl.org> 2016-03-19 02:30:20 +08:00			`#include <openssl/rsa.h>`
Change #include filenames from <foo.h> to <openssl.h>. Submitted by: Reviewed by: PR: 1999-04-24 06:13:45 +08:00			`#include <openssl/evp.h>`
			`#include <openssl/objects.h>`
			`#include <openssl/x509.h>`
Import of old SSLeay release: SSLeay 0.8.1b 1998-12-21 18:52:47 +08:00
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`int EVP_SealInit(EVP_CIPHER_CTX ctx, const EVP_CIPHER type,`
			`unsigned char *ek, int ekl, unsigned char *iv,`
			`EVP_PKEY **pubk, int npubk)`
			`{`
			`unsigned char key[EVP_MAX_KEY_LENGTH];`
			`int i;`
Key zeroization fix for EVP_SealInit + added simple test Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/7105) 2018-09-06 06:34:45 +08:00			`int rv = 0;`
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00
			`if (type) {`
Adapt all EVP_CIPHER_CTX users for it becoming opaque Reviewed-by: Rich Salz <rsalz@openssl.org> 2015-12-14 05:08:41 +08:00			`EVP_CIPHER_CTX_reset(ctx);`
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`if (!EVP_EncryptInit_ex(ctx, type, NULL, NULL, NULL))`
			`return 0;`
			`}`
			`if ((npubk <= 0) \|\| !pubk)`
			`return 1;`
EVP: Adapt EVP_PKEY Seal and Open for provider keys This affects the following function, which can now deal with provider side keys: - EVP_SealInit() - EVP_OpenInit() Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10808) 2020-01-11 07:04:56 +08:00
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`if (EVP_CIPHER_CTX_rand_key(ctx, key) <= 0)`
			`return 0;`
Key zeroization fix for EVP_SealInit + added simple test Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/7105) 2018-09-06 06:34:45 +08:00
Don't use a ssl specific DRBG anymore Since the public and private DRBG are per thread we don't need one per ssl object anymore. It could also try to get entropy from a DRBG that's really from an other thread because the SSL object moved to an other thread. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (Merged from https://github.com/openssl/openssl/pull/5547) 2018-03-09 05:30:28 +08:00			`if (EVP_CIPHER_CTX_iv_length(ctx)`
Key zeroization fix for EVP_SealInit + added simple test Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/7105) 2018-09-06 06:34:45 +08:00			`&& RAND_bytes(iv, EVP_CIPHER_CTX_iv_length(ctx)) <= 0)`
			`goto err;`
Import of old SSLeay release: SSLeay 0.8.1b 1998-12-21 18:52:47 +08:00
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`if (!EVP_EncryptInit_ex(ctx, NULL, NULL, key, iv))`
Key zeroization fix for EVP_SealInit + added simple test Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/7105) 2018-09-06 06:34:45 +08:00			`goto err;`
Import of old SSLeay release: SSLeay 0.9.0b 1998-12-21 18:56:39 +08:00
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`for (i = 0; i < npubk; i++) {`
EVP: Adapt EVP_PKEY Seal and Open for provider keys This affects the following function, which can now deal with provider side keys: - EVP_SealInit() - EVP_OpenInit() Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10808) 2020-01-11 07:04:56 +08:00			`size_t keylen = EVP_CIPHER_CTX_key_length(ctx);`
			`EVP_PKEY_CTX *pctx = NULL;`

			`if ((pctx = EVP_PKEY_CTX_new(pubk[i], NULL)) == NULL) {`
			`ERR_raise(ERR_LIB_EVP, ERR_R_MALLOC_FAILURE);`
Key zeroization fix for EVP_SealInit + added simple test Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/7105) 2018-09-06 06:34:45 +08:00			`goto err;`
			`}`
EVP: Adapt EVP_PKEY Seal and Open for provider keys This affects the following function, which can now deal with provider side keys: - EVP_SealInit() - EVP_OpenInit() Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/10808) 2020-01-11 07:04:56 +08:00
			`if (EVP_PKEY_encrypt_init(pctx) <= 0`
			`\|\| EVP_PKEY_encrypt(pctx, ek[i], &keylen, key, keylen) <= 0)`
			`goto err;`
			`ekl[i] = (int)keylen;`
			`EVP_PKEY_CTX_free(pctx);`
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`}`
Key zeroization fix for EVP_SealInit + added simple test Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/7105) 2018-09-06 06:34:45 +08:00			`rv = npubk;`
			`err:`
			`OPENSSL_cleanse(key, sizeof(key));`
			`return rv;`
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`}`
Import of old SSLeay release: SSLeay 0.8.1b 1998-12-21 18:52:47 +08:00
EVP_SealFinal should return a value. 2002-05-12 01:37:08 +08:00			`int EVP_SealFinal(EVP_CIPHER_CTX ctx, unsigned char out, int *outl)`
Run util/openssl-format-source -v -c . Reviewed-by: Tim Hudson <tjh@openssl.org> 2015-01-22 11:40:55 +08:00			`{`
			`int i;`
			`i = EVP_EncryptFinal_ex(ctx, out, outl);`
			`if (i)`
			`i = EVP_EncryptInit_ex(ctx, NULL, NULL, NULL, NULL);`
			`return i;`
			`}`