1 /**********************************************************************
3 * Main file of GOST engine *
5 * Copyright (c) 2005-2006 Cryptocom LTD *
6 * Copyright (c) 2020 Chikunov Vitaly <vt@altlinux.org> *
8 * This file is distributed under the same license as OpenSSL *
10 **********************************************************************/
12 #include <openssl/crypto.h>
13 #include <openssl/err.h>
14 #include <openssl/evp.h>
15 #include <openssl/engine.h>
16 #include <openssl/obj_mac.h>
17 #include "e_gost_err.h"
20 #include "gost_grasshopper_cipher.h"
22 static const char* engine_gost_id = "gost";
24 static const char* engine_gost_name =
25 "Reference implementation of GOST engine";
27 /* Symmetric cipher and digest function registrar */
29 static int gost_ciphers(ENGINE* e, const EVP_CIPHER** cipher,
30 const int** nids, int nid);
32 static int gost_digests(ENGINE* e, const EVP_MD** digest,
33 const int** nids, int nid);
35 static int gost_pkey_meths(ENGINE* e, EVP_PKEY_METHOD** pmeth,
36 const int** nids, int nid);
38 static int gost_pkey_asn1_meths(ENGINE* e, EVP_PKEY_ASN1_METHOD** ameth,
39 const int** nids, int nid);
41 static EVP_PKEY_METHOD* pmeth_GostR3410_2001 = NULL,
42 * pmeth_GostR3410_2012_256 = NULL,
43 * pmeth_GostR3410_2012_512 = NULL,
44 * pmeth_Gost28147_MAC = NULL, * pmeth_Gost28147_MAC_12 = NULL,
45 * pmeth_magma_mac = NULL, * pmeth_grasshopper_mac = NULL,
46 * pmeth_magma_mac_acpkm = NULL, * pmeth_grasshopper_mac_acpkm = NULL;
48 static EVP_PKEY_ASN1_METHOD* ameth_GostR3410_2001 = NULL,
49 * ameth_GostR3410_2012_256 = NULL,
50 * ameth_GostR3410_2012_512 = NULL,
51 * ameth_Gost28147_MAC = NULL, * ameth_Gost28147_MAC_12 = NULL,
52 * ameth_magma_mac = NULL, * ameth_grasshopper_mac = NULL,
53 * ameth_magma_mac_acpkm = NULL, * ameth_grasshopper_mac_acpkm = NULL;
55 static struct gost_digest_minfo {
57 EVP_MD *(*digest)(void);
58 void (*destroy)(void);
61 } gost_digest_array[] = {
68 NID_id_Gost28147_89_MAC,
70 imit_gost_cpa_destroy,
73 NID_id_GostR3411_2012_256,
75 digest_gost2012_256_destroy,
76 SN_id_GostR3411_2012_256,
80 NID_id_GostR3411_2012_512,
82 digest_gost2012_512_destroy,
83 SN_id_GostR3411_2012_512,
89 imit_gost_cp_12_destroy,
99 grasshopper_omac_destroy,
102 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
103 grasshopper_omac_acpkm,
104 grasshopper_omac_acpkm_destroy,
109 static struct gost_cipher_minfo {
111 const EVP_CIPHER *(*cipher)(void);
113 } gost_cipher_array[] = {
117 &Gost28147_89_cipher,
122 &Gost28147_89_cnt_cipher,
127 &Gost28147_89_cnt_12_cipher,
132 &Gost28147_89_cbc_cipher,
137 &grasshopper_ecb_cipher,
142 &grasshopper_cbc_cipher,
147 &grasshopper_cfb_cipher,
152 &grasshopper_ofb_cipher,
157 &grasshopper_ctr_cipher,
172 &magma_ctr_acpkm_cipher,
175 NID_magma_ctr_acpkm_omac,
177 &magma_ctr_acpkm_omac_cipher,
180 NID_kuznyechik_ctr_acpkm,
182 &grasshopper_ctr_acpkm_cipher,
185 NID_kuznyechik_ctr_acpkm_omac,
187 &grasshopper_ctr_acpkm_omac_cipher,
194 NID_kuznyechik_kexp15,
195 cipher_kuznyechik_wrap,
200 static struct gost_meth_minfo {
202 EVP_PKEY_METHOD **pmeth;
203 EVP_PKEY_ASN1_METHOD **ameth;
206 } gost_meth_array[] = {
208 NID_id_GostR3410_2001,
209 &pmeth_GostR3410_2001,
210 &ameth_GostR3410_2001,
215 NID_id_Gost28147_89_MAC,
216 &pmeth_Gost28147_MAC,
217 &ameth_Gost28147_MAC,
222 NID_id_GostR3410_2012_256,
223 &pmeth_GostR3410_2012_256,
224 &ameth_GostR3410_2012_256,
226 "GOST R 34.10-2012 with 256 bit key",
229 NID_id_GostR3410_2012_512,
230 &pmeth_GostR3410_2012_512,
231 &ameth_GostR3410_2012_512,
233 "GOST R 34.10-2012 with 512 bit key",
237 &pmeth_Gost28147_MAC_12,
238 &ameth_Gost28147_MAC_12,
240 "GOST 28147-89 MAC with 2012 params",
247 "GOST R 34.13-2015 Magma MAC",
251 &pmeth_grasshopper_mac,
252 &ameth_grasshopper_mac,
254 "GOST R 34.13-2015 Grasshopper MAC",
257 NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac,
258 &pmeth_magma_mac_acpkm,
259 &ameth_magma_mac_acpkm,
260 "ID-TC26-CIPHER-GOSTR3412-2015-MAGMA-CTRACPKM-OMAC",
261 "GOST R 34.13-2015 Magma MAC ACPKM",
264 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
265 &pmeth_grasshopper_mac_acpkm,
266 &ameth_grasshopper_mac_acpkm,
267 "ID-TC26-CIPHER-GOSTR3412-2015-KUZNYECHIK-CTRACPKM-OMAC",
268 "GOST R 34.13-2015 Grasshopper MAC ACPKM",
274 # define OSSL_NELEM(x) (sizeof(x)/sizeof((x)[0]))
277 /* `- 1' because of terminating zero element */
278 static int known_digest_nids[OSSL_NELEM(gost_digest_array) - 1];
279 static int known_cipher_nids[OSSL_NELEM(gost_cipher_array) - 1];
280 static int known_meths_nids[OSSL_NELEM(gost_meth_array) - 1];
282 static int gost_engine_init(ENGINE* e) {
286 static int gost_engine_finish(ENGINE* e) {
290 static int gost_engine_destroy(ENGINE* e) {
291 struct gost_digest_minfo *dinfo = gost_digest_array;
292 for (; dinfo->nid; dinfo++) {
294 EVP_delete_digest_alias(dinfo->alias);
298 struct gost_cipher_minfo *cinfo = gost_cipher_array;
299 for (; cinfo->nid; cinfo++) {
301 GOST_deinit_cipher(cinfo->reg);
303 EVP_CIPHER_meth_free((EVP_CIPHER *)cinfo->cipher());
306 //cipher_gost_grasshopper_destroy();
307 //wrap_ciphers_destroy();
311 struct gost_meth_minfo *minfo = gost_meth_array;
312 for (; minfo->nid; minfo++) {
313 *minfo->pmeth = NULL;
314 *minfo->ameth = NULL;
317 ERR_unload_GOST_strings();
322 static int bind_gost(ENGINE* e, const char* id) {
324 if (id != NULL && strcmp(id, engine_gost_id) != 0)
326 if (ameth_GostR3410_2001) {
327 printf("GOST engine already loaded\n");
330 if (!ENGINE_set_id(e, engine_gost_id)) {
331 printf("ENGINE_set_id failed\n");
334 if (!ENGINE_set_name(e, engine_gost_name)) {
335 printf("ENGINE_set_name failed\n");
338 if (!ENGINE_set_digests(e, gost_digests)) {
339 printf("ENGINE_set_digests failed\n");
342 if (!ENGINE_set_ciphers(e, gost_ciphers)) {
343 printf("ENGINE_set_ciphers failed\n");
346 if (!ENGINE_set_pkey_meths(e, gost_pkey_meths)) {
347 printf("ENGINE_set_pkey_meths failed\n");
350 if (!ENGINE_set_pkey_asn1_meths(e, gost_pkey_asn1_meths)) {
351 printf("ENGINE_set_pkey_asn1_meths failed\n");
354 /* Control function and commands */
355 if (!ENGINE_set_cmd_defns(e, gost_cmds)) {
356 fprintf(stderr, "ENGINE_set_cmd_defns failed\n");
359 if (!ENGINE_set_ctrl_function(e, gost_control_func)) {
360 fprintf(stderr, "ENGINE_set_ctrl_func failed\n");
363 if (!ENGINE_set_destroy_function(e, gost_engine_destroy)
364 || !ENGINE_set_init_function(e, gost_engine_init)
365 || !ENGINE_set_finish_function(e, gost_engine_finish)) {
369 struct gost_meth_minfo *minfo = gost_meth_array;
370 for (; minfo->nid; minfo++) {
372 /* This skip looks temporary. */
373 if (minfo->nid == NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac)
376 if (!register_ameth_gost(minfo->nid, minfo->ameth, minfo->pemstr,
379 if (!register_pmeth_gost(minfo->nid, minfo->pmeth, 0))
383 if (!ENGINE_register_ciphers(e)
384 || !ENGINE_register_digests(e)
385 || !ENGINE_register_pkey_meths(e))
388 struct gost_cipher_minfo *cinfo = gost_cipher_array;
389 for (; cinfo->nid; cinfo++) {
390 const EVP_CIPHER *cipher;
393 cipher = GOST_init_cipher(cinfo->reg);
395 cipher = cinfo->cipher();
396 if (!EVP_add_cipher(cipher))
400 struct gost_digest_minfo *dinfo = gost_digest_array;
401 for (; dinfo->nid; dinfo++) {
402 if (!EVP_add_digest(dinfo->digest()))
405 !EVP_add_digest_alias(dinfo->sn, dinfo->alias))
409 ENGINE_register_all_complete();
411 ERR_load_GOST_strings();
417 #ifndef OPENSSL_NO_DYNAMIC_ENGINE
418 IMPLEMENT_DYNAMIC_BIND_FN(bind_gost)
419 IMPLEMENT_DYNAMIC_CHECK_FN()
420 #endif /* ndef OPENSSL_NO_DYNAMIC_ENGINE */
422 /* ENGINE_DIGESTS_PTR callback installed by ENGINE_set_digests */
423 static int gost_digests(ENGINE *e, const EVP_MD **digest,
424 const int **nids, int nid)
426 struct gost_digest_minfo *info = gost_digest_array;
429 int *n = known_digest_nids;
432 for (; info->nid; info++)
434 return OSSL_NELEM(known_digest_nids);
437 for (; info->nid; info++)
438 if (nid == info->nid) {
439 *digest = info->digest();
446 /* ENGINE_CIPHERS_PTR callback installed by ENGINE_set_ciphers */
447 static int gost_ciphers(ENGINE *e, const EVP_CIPHER **cipher,
448 const int **nids, int nid)
450 struct gost_cipher_minfo *info = gost_cipher_array;
453 int *n = known_cipher_nids;
456 for (; info->nid; info++)
458 return OSSL_NELEM(known_cipher_nids);
461 for (; info->nid; info++)
462 if (nid == info->nid) {
464 *cipher = GOST_init_cipher(info->reg);
466 *cipher = info->cipher();
473 static int gost_meth_nids(const int **nids)
475 struct gost_meth_minfo *info = gost_meth_array;
476 int *n = known_meths_nids;
479 for (; info->nid; info++)
481 return OSSL_NELEM(known_meths_nids);
484 /* ENGINE_PKEY_METHS_PTR installed by ENGINE_set_pkey_meths */
485 static int gost_pkey_meths(ENGINE *e, EVP_PKEY_METHOD **pmeth,
486 const int **nids, int nid)
488 struct gost_meth_minfo *info;
491 return gost_meth_nids(nids);
493 for (info = gost_meth_array; info->nid; info++)
494 if (nid == info->nid) {
495 *pmeth = *info->pmeth;
502 /* ENGINE_PKEY_ASN1_METHS_PTR installed by ENGINE_set_pkey_asn1_meths */
503 static int gost_pkey_asn1_meths(ENGINE *e, EVP_PKEY_ASN1_METHOD **ameth,
504 const int **nids, int nid)
506 struct gost_meth_minfo *info;
509 return gost_meth_nids(nids);
511 for (info = gost_meth_array; info->nid; info++)
512 if (nid == info->nid) {
513 *ameth = *info->ameth;
520 #ifdef OPENSSL_NO_DYNAMIC_ENGINE
522 static ENGINE* engine_gost(void) {
523 ENGINE* ret = ENGINE_new();
526 if (!bind_gost(ret, engine_gost_id)) {
533 void ENGINE_load_gost(void) {
535 if (pmeth_GostR3410_2001)
537 toadd = engine_gost();