1 /**********************************************************************
3 * Main file of GOST engine *
5 * Copyright (c) 2005-2006 Cryptocom LTD *
6 * Copyright (c) 2020 Chikunov Vitaly <vt@altlinux.org> *
8 * This file is distributed under the same license as OpenSSL *
10 **********************************************************************/
12 #include <openssl/crypto.h>
13 #include <openssl/err.h>
14 #include <openssl/evp.h>
15 #include <openssl/engine.h>
16 #include <openssl/obj_mac.h>
17 #include "e_gost_err.h"
20 #include "gost_grasshopper_cipher.h"
22 static const char* engine_gost_id = "gost";
24 static const char* engine_gost_name =
25 "Reference implementation of GOST engine";
27 /* Symmetric cipher and digest function registrar */
29 static int gost_ciphers(ENGINE* e, const EVP_CIPHER** cipher,
30 const int** nids, int nid);
32 static int gost_digests(ENGINE* e, const EVP_MD** digest,
33 const int** nids, int nid);
35 static int gost_pkey_meths(ENGINE* e, EVP_PKEY_METHOD** pmeth,
36 const int** nids, int nid);
38 static int gost_pkey_asn1_meths(ENGINE* e, EVP_PKEY_ASN1_METHOD** ameth,
39 const int** nids, int nid);
41 static EVP_PKEY_METHOD* pmeth_GostR3410_2001 = NULL,
42 * pmeth_GostR3410_2012_256 = NULL,
43 * pmeth_GostR3410_2012_512 = NULL,
44 * pmeth_Gost28147_MAC = NULL, * pmeth_Gost28147_MAC_12 = NULL,
45 * pmeth_magma_mac = NULL, * pmeth_grasshopper_mac = NULL,
46 * pmeth_magma_mac_acpkm = NULL, * pmeth_grasshopper_mac_acpkm = NULL;
48 static EVP_PKEY_ASN1_METHOD* ameth_GostR3410_2001 = NULL,
49 * ameth_GostR3410_2012_256 = NULL,
50 * ameth_GostR3410_2012_512 = NULL,
51 * ameth_Gost28147_MAC = NULL, * ameth_Gost28147_MAC_12 = NULL,
52 * ameth_magma_mac = NULL, * ameth_grasshopper_mac = NULL,
53 * ameth_magma_mac_acpkm = NULL, * ameth_grasshopper_mac_acpkm = NULL;
55 static struct gost_digest_minfo {
57 EVP_MD *(*digest)(void);
58 void (*destroy)(void);
61 } gost_digest_array[] = {
68 NID_id_Gost28147_89_MAC,
70 imit_gost_cpa_destroy,
73 NID_id_GostR3411_2012_256,
75 digest_gost2012_256_destroy,
76 SN_id_GostR3411_2012_256,
80 NID_id_GostR3411_2012_512,
82 digest_gost2012_512_destroy,
83 SN_id_GostR3411_2012_512,
89 imit_gost_cp_12_destroy,
99 grasshopper_omac_destroy,
102 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
103 grasshopper_omac_acpkm,
104 grasshopper_omac_acpkm_destroy,
109 static struct gost_cipher_minfo {
111 const EVP_CIPHER *(*cipher)(void);
113 } gost_cipher_array[] = {
117 &Gost28147_89_cipher,
125 cipher_gost_cpcnt_12,
130 &Gost28147_89_cbc_cipher,
134 cipher_gost_grasshopper_ecb,
138 cipher_gost_grasshopper_cbc,
142 cipher_gost_grasshopper_cfb,
146 cipher_gost_grasshopper_ofb,
150 cipher_gost_grasshopper_ctr,
162 cipher_magma_ctr_acpkm,
165 NID_magma_ctr_acpkm_omac,
166 cipher_magma_ctr_acpkm_omac,
169 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm,
170 cipher_gost_grasshopper_ctracpkm,
173 NID_kuznyechik_ctr_acpkm_omac,
174 cipher_gost_grasshopper_ctracpkm_omac,
181 NID_kuznyechik_kexp15,
182 cipher_kuznyechik_wrap,
187 static struct gost_meth_minfo {
189 EVP_PKEY_METHOD **pmeth;
190 EVP_PKEY_ASN1_METHOD **ameth;
193 } gost_meth_array[] = {
195 NID_id_GostR3410_2001,
196 &pmeth_GostR3410_2001,
197 &ameth_GostR3410_2001,
202 NID_id_Gost28147_89_MAC,
203 &pmeth_Gost28147_MAC,
204 &ameth_Gost28147_MAC,
209 NID_id_GostR3410_2012_256,
210 &pmeth_GostR3410_2012_256,
211 &ameth_GostR3410_2012_256,
213 "GOST R 34.10-2012 with 256 bit key",
216 NID_id_GostR3410_2012_512,
217 &pmeth_GostR3410_2012_512,
218 &ameth_GostR3410_2012_512,
220 "GOST R 34.10-2012 with 512 bit key",
224 &pmeth_Gost28147_MAC_12,
225 &ameth_Gost28147_MAC_12,
227 "GOST 28147-89 MAC with 2012 params",
234 "GOST R 34.13-2015 Magma MAC",
238 &pmeth_grasshopper_mac,
239 &ameth_grasshopper_mac,
241 "GOST R 34.13-2015 Grasshopper MAC",
244 NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac,
245 &pmeth_magma_mac_acpkm,
246 &ameth_magma_mac_acpkm,
247 "ID-TC26-CIPHER-GOSTR3412-2015-MAGMA-CTRACPKM-OMAC",
248 "GOST R 34.13-2015 Magma MAC ACPKM",
251 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
252 &pmeth_grasshopper_mac_acpkm,
253 &ameth_grasshopper_mac_acpkm,
254 "ID-TC26-CIPHER-GOSTR3412-2015-KUZNYECHIK-CTRACPKM-OMAC",
255 "GOST R 34.13-2015 Grasshopper MAC ACPKM",
261 # define OSSL_NELEM(x) (sizeof(x)/sizeof((x)[0]))
264 /* `- 1' because of terminating zero element */
265 static int known_digest_nids[OSSL_NELEM(gost_digest_array) - 1];
266 static int known_cipher_nids[OSSL_NELEM(gost_cipher_array) - 1];
267 static int known_meths_nids[OSSL_NELEM(gost_meth_array) - 1];
269 static int gost_engine_init(ENGINE* e) {
273 static int gost_engine_finish(ENGINE* e) {
277 static int gost_engine_destroy(ENGINE* e) {
278 struct gost_digest_minfo *dinfo = gost_digest_array;
279 for (; dinfo->nid; dinfo++) {
281 EVP_delete_digest_alias(dinfo->alias);
285 struct gost_cipher_minfo *cinfo = gost_cipher_array;
286 for (; cinfo->nid; cinfo++) {
288 GOST_deinit_cipher(cinfo->reg);
290 EVP_CIPHER_meth_free((EVP_CIPHER *)cinfo->cipher());
293 //cipher_gost_grasshopper_destroy();
294 //wrap_ciphers_destroy();
298 struct gost_meth_minfo *minfo = gost_meth_array;
299 for (; minfo->nid; minfo++) {
300 *minfo->pmeth = NULL;
301 *minfo->ameth = NULL;
304 ERR_unload_GOST_strings();
309 static int bind_gost(ENGINE* e, const char* id) {
311 if (id != NULL && strcmp(id, engine_gost_id) != 0)
313 if (ameth_GostR3410_2001) {
314 printf("GOST engine already loaded\n");
317 if (!ENGINE_set_id(e, engine_gost_id)) {
318 printf("ENGINE_set_id failed\n");
321 if (!ENGINE_set_name(e, engine_gost_name)) {
322 printf("ENGINE_set_name failed\n");
325 if (!ENGINE_set_digests(e, gost_digests)) {
326 printf("ENGINE_set_digests failed\n");
329 if (!ENGINE_set_ciphers(e, gost_ciphers)) {
330 printf("ENGINE_set_ciphers failed\n");
333 if (!ENGINE_set_pkey_meths(e, gost_pkey_meths)) {
334 printf("ENGINE_set_pkey_meths failed\n");
337 if (!ENGINE_set_pkey_asn1_meths(e, gost_pkey_asn1_meths)) {
338 printf("ENGINE_set_pkey_asn1_meths failed\n");
341 /* Control function and commands */
342 if (!ENGINE_set_cmd_defns(e, gost_cmds)) {
343 fprintf(stderr, "ENGINE_set_cmd_defns failed\n");
346 if (!ENGINE_set_ctrl_function(e, gost_control_func)) {
347 fprintf(stderr, "ENGINE_set_ctrl_func failed\n");
350 if (!ENGINE_set_destroy_function(e, gost_engine_destroy)
351 || !ENGINE_set_init_function(e, gost_engine_init)
352 || !ENGINE_set_finish_function(e, gost_engine_finish)) {
356 struct gost_meth_minfo *minfo = gost_meth_array;
357 for (; minfo->nid; minfo++) {
359 /* This skip looks temporary. */
360 if (minfo->nid == NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac)
363 if (!register_ameth_gost(minfo->nid, minfo->ameth, minfo->pemstr,
366 if (!register_pmeth_gost(minfo->nid, minfo->pmeth, 0))
370 if (!ENGINE_register_ciphers(e)
371 || !ENGINE_register_digests(e)
372 || !ENGINE_register_pkey_meths(e))
375 struct gost_cipher_minfo *cinfo = gost_cipher_array;
376 for (; cinfo->nid; cinfo++) {
377 const EVP_CIPHER *cipher;
380 cipher = GOST_init_cipher(cinfo->reg);
382 cipher = cinfo->cipher();
383 if (!EVP_add_cipher(cipher))
387 struct gost_digest_minfo *dinfo = gost_digest_array;
388 for (; dinfo->nid; dinfo++) {
389 if (!EVP_add_digest(dinfo->digest()))
392 !EVP_add_digest_alias(dinfo->sn, dinfo->alias))
396 ENGINE_register_all_complete();
398 ERR_load_GOST_strings();
404 #ifndef OPENSSL_NO_DYNAMIC_ENGINE
405 IMPLEMENT_DYNAMIC_BIND_FN(bind_gost)
406 IMPLEMENT_DYNAMIC_CHECK_FN()
407 #endif /* ndef OPENSSL_NO_DYNAMIC_ENGINE */
409 /* ENGINE_DIGESTS_PTR callback installed by ENGINE_set_digests */
410 static int gost_digests(ENGINE *e, const EVP_MD **digest,
411 const int **nids, int nid)
413 struct gost_digest_minfo *info = gost_digest_array;
416 int *n = known_digest_nids;
419 for (; info->nid; info++)
421 return OSSL_NELEM(known_digest_nids);
424 for (; info->nid; info++)
425 if (nid == info->nid) {
426 *digest = info->digest();
433 /* ENGINE_CIPHERS_PTR callback installed by ENGINE_set_ciphers */
434 static int gost_ciphers(ENGINE *e, const EVP_CIPHER **cipher,
435 const int **nids, int nid)
437 struct gost_cipher_minfo *info = gost_cipher_array;
440 int *n = known_cipher_nids;
443 for (; info->nid; info++)
445 return OSSL_NELEM(known_cipher_nids);
448 for (; info->nid; info++)
449 if (nid == info->nid) {
451 *cipher = GOST_init_cipher(info->reg);
453 *cipher = info->cipher();
460 static int gost_meth_nids(const int **nids)
462 struct gost_meth_minfo *info = gost_meth_array;
463 int *n = known_meths_nids;
466 for (; info->nid; info++)
468 return OSSL_NELEM(known_meths_nids);
471 /* ENGINE_PKEY_METHS_PTR installed by ENGINE_set_pkey_meths */
472 static int gost_pkey_meths(ENGINE *e, EVP_PKEY_METHOD **pmeth,
473 const int **nids, int nid)
475 struct gost_meth_minfo *info;
478 return gost_meth_nids(nids);
480 for (info = gost_meth_array; info->nid; info++)
481 if (nid == info->nid) {
482 *pmeth = *info->pmeth;
489 /* ENGINE_PKEY_ASN1_METHS_PTR installed by ENGINE_set_pkey_asn1_meths */
490 static int gost_pkey_asn1_meths(ENGINE *e, EVP_PKEY_ASN1_METHOD **ameth,
491 const int **nids, int nid)
493 struct gost_meth_minfo *info;
496 return gost_meth_nids(nids);
498 for (info = gost_meth_array; info->nid; info++)
499 if (nid == info->nid) {
500 *ameth = *info->ameth;
507 #ifdef OPENSSL_NO_DYNAMIC_ENGINE
509 static ENGINE* engine_gost(void) {
510 ENGINE* ret = ENGINE_new();
513 if (!bind_gost(ret, engine_gost_id)) {
520 void ENGINE_load_gost(void) {
522 if (pmeth_GostR3410_2001)
524 toadd = engine_gost();