1 /**********************************************************************
3 * Main file of GOST engine *
5 * Copyright (c) 2005-2006 Cryptocom LTD *
6 * Copyright (c) 2020 Chikunov Vitaly <vt@altlinux.org> *
8 * This file is distributed under the same license as OpenSSL *
10 **********************************************************************/
12 #include <openssl/crypto.h>
13 #include <openssl/err.h>
14 #include <openssl/evp.h>
15 #include <openssl/engine.h>
16 #include <openssl/obj_mac.h>
17 #include "e_gost_err.h"
20 #include "gost_grasshopper_cipher.h"
22 static const char* engine_gost_id = "gost";
24 static const char* engine_gost_name =
25 "Reference implementation of GOST engine";
27 /* Symmetric cipher and digest function registrar */
29 static int gost_ciphers(ENGINE* e, const EVP_CIPHER** cipher,
30 const int** nids, int nid);
32 static int gost_digests(ENGINE* e, const EVP_MD** digest,
33 const int** nids, int nid);
35 static int gost_pkey_meths(ENGINE* e, EVP_PKEY_METHOD** pmeth,
36 const int** nids, int nid);
38 static int gost_pkey_asn1_meths(ENGINE* e, EVP_PKEY_ASN1_METHOD** ameth,
39 const int** nids, int nid);
41 static EVP_PKEY_METHOD* pmeth_GostR3410_2001 = NULL,
42 * pmeth_GostR3410_2012_256 = NULL,
43 * pmeth_GostR3410_2012_512 = NULL,
44 * pmeth_Gost28147_MAC = NULL, * pmeth_Gost28147_MAC_12 = NULL,
45 * pmeth_magma_mac = NULL, * pmeth_grasshopper_mac = NULL,
46 * pmeth_magma_mac_acpkm = NULL, * pmeth_grasshopper_mac_acpkm = NULL;
48 static EVP_PKEY_ASN1_METHOD* ameth_GostR3410_2001 = NULL,
49 * ameth_GostR3410_2012_256 = NULL,
50 * ameth_GostR3410_2012_512 = NULL,
51 * ameth_Gost28147_MAC = NULL, * ameth_Gost28147_MAC_12 = NULL,
52 * ameth_magma_mac = NULL, * ameth_grasshopper_mac = NULL,
53 * ameth_magma_mac_acpkm = NULL, * ameth_grasshopper_mac_acpkm = NULL;
55 static struct gost_digest_minfo {
57 EVP_MD *(*digest)(void);
58 void (*destroy)(void);
61 } gost_digest_array[] = {
68 NID_id_Gost28147_89_MAC,
70 imit_gost_cpa_destroy,
73 NID_id_GostR3411_2012_256,
75 digest_gost2012_256_destroy,
76 SN_id_GostR3411_2012_256,
80 NID_id_GostR3411_2012_512,
82 digest_gost2012_512_destroy,
83 SN_id_GostR3411_2012_512,
89 imit_gost_cp_12_destroy,
99 grasshopper_omac_destroy,
102 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
103 grasshopper_omac_acpkm,
104 grasshopper_omac_acpkm_destroy,
109 static struct gost_cipher_minfo {
111 const EVP_CIPHER *(*cipher)(void);
113 } gost_cipher_array[] = {
117 &Gost28147_89_cipher,
122 &Gost28147_89_cnt_cipher,
126 cipher_gost_cpcnt_12,
131 &Gost28147_89_cbc_cipher,
135 cipher_gost_grasshopper_ecb,
139 cipher_gost_grasshopper_cbc,
143 cipher_gost_grasshopper_cfb,
147 cipher_gost_grasshopper_ofb,
151 cipher_gost_grasshopper_ctr,
163 cipher_magma_ctr_acpkm,
166 NID_magma_ctr_acpkm_omac,
167 cipher_magma_ctr_acpkm_omac,
170 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm,
171 cipher_gost_grasshopper_ctracpkm,
174 NID_kuznyechik_ctr_acpkm_omac,
175 cipher_gost_grasshopper_ctracpkm_omac,
182 NID_kuznyechik_kexp15,
183 cipher_kuznyechik_wrap,
188 static struct gost_meth_minfo {
190 EVP_PKEY_METHOD **pmeth;
191 EVP_PKEY_ASN1_METHOD **ameth;
194 } gost_meth_array[] = {
196 NID_id_GostR3410_2001,
197 &pmeth_GostR3410_2001,
198 &ameth_GostR3410_2001,
203 NID_id_Gost28147_89_MAC,
204 &pmeth_Gost28147_MAC,
205 &ameth_Gost28147_MAC,
210 NID_id_GostR3410_2012_256,
211 &pmeth_GostR3410_2012_256,
212 &ameth_GostR3410_2012_256,
214 "GOST R 34.10-2012 with 256 bit key",
217 NID_id_GostR3410_2012_512,
218 &pmeth_GostR3410_2012_512,
219 &ameth_GostR3410_2012_512,
221 "GOST R 34.10-2012 with 512 bit key",
225 &pmeth_Gost28147_MAC_12,
226 &ameth_Gost28147_MAC_12,
228 "GOST 28147-89 MAC with 2012 params",
235 "GOST R 34.13-2015 Magma MAC",
239 &pmeth_grasshopper_mac,
240 &ameth_grasshopper_mac,
242 "GOST R 34.13-2015 Grasshopper MAC",
245 NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac,
246 &pmeth_magma_mac_acpkm,
247 &ameth_magma_mac_acpkm,
248 "ID-TC26-CIPHER-GOSTR3412-2015-MAGMA-CTRACPKM-OMAC",
249 "GOST R 34.13-2015 Magma MAC ACPKM",
252 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
253 &pmeth_grasshopper_mac_acpkm,
254 &ameth_grasshopper_mac_acpkm,
255 "ID-TC26-CIPHER-GOSTR3412-2015-KUZNYECHIK-CTRACPKM-OMAC",
256 "GOST R 34.13-2015 Grasshopper MAC ACPKM",
262 # define OSSL_NELEM(x) (sizeof(x)/sizeof((x)[0]))
265 /* `- 1' because of terminating zero element */
266 static int known_digest_nids[OSSL_NELEM(gost_digest_array) - 1];
267 static int known_cipher_nids[OSSL_NELEM(gost_cipher_array) - 1];
268 static int known_meths_nids[OSSL_NELEM(gost_meth_array) - 1];
270 static int gost_engine_init(ENGINE* e) {
274 static int gost_engine_finish(ENGINE* e) {
278 static int gost_engine_destroy(ENGINE* e) {
279 struct gost_digest_minfo *dinfo = gost_digest_array;
280 for (; dinfo->nid; dinfo++) {
282 EVP_delete_digest_alias(dinfo->alias);
286 struct gost_cipher_minfo *cinfo = gost_cipher_array;
287 for (; cinfo->nid; cinfo++) {
289 GOST_deinit_cipher(cinfo->reg);
291 EVP_CIPHER_meth_free((EVP_CIPHER *)cinfo->cipher());
294 //cipher_gost_grasshopper_destroy();
295 //wrap_ciphers_destroy();
299 struct gost_meth_minfo *minfo = gost_meth_array;
300 for (; minfo->nid; minfo++) {
301 *minfo->pmeth = NULL;
302 *minfo->ameth = NULL;
305 ERR_unload_GOST_strings();
310 static int bind_gost(ENGINE* e, const char* id) {
312 if (id != NULL && strcmp(id, engine_gost_id) != 0)
314 if (ameth_GostR3410_2001) {
315 printf("GOST engine already loaded\n");
318 if (!ENGINE_set_id(e, engine_gost_id)) {
319 printf("ENGINE_set_id failed\n");
322 if (!ENGINE_set_name(e, engine_gost_name)) {
323 printf("ENGINE_set_name failed\n");
326 if (!ENGINE_set_digests(e, gost_digests)) {
327 printf("ENGINE_set_digests failed\n");
330 if (!ENGINE_set_ciphers(e, gost_ciphers)) {
331 printf("ENGINE_set_ciphers failed\n");
334 if (!ENGINE_set_pkey_meths(e, gost_pkey_meths)) {
335 printf("ENGINE_set_pkey_meths failed\n");
338 if (!ENGINE_set_pkey_asn1_meths(e, gost_pkey_asn1_meths)) {
339 printf("ENGINE_set_pkey_asn1_meths failed\n");
342 /* Control function and commands */
343 if (!ENGINE_set_cmd_defns(e, gost_cmds)) {
344 fprintf(stderr, "ENGINE_set_cmd_defns failed\n");
347 if (!ENGINE_set_ctrl_function(e, gost_control_func)) {
348 fprintf(stderr, "ENGINE_set_ctrl_func failed\n");
351 if (!ENGINE_set_destroy_function(e, gost_engine_destroy)
352 || !ENGINE_set_init_function(e, gost_engine_init)
353 || !ENGINE_set_finish_function(e, gost_engine_finish)) {
357 struct gost_meth_minfo *minfo = gost_meth_array;
358 for (; minfo->nid; minfo++) {
360 /* This skip looks temporary. */
361 if (minfo->nid == NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac)
364 if (!register_ameth_gost(minfo->nid, minfo->ameth, minfo->pemstr,
367 if (!register_pmeth_gost(minfo->nid, minfo->pmeth, 0))
371 if (!ENGINE_register_ciphers(e)
372 || !ENGINE_register_digests(e)
373 || !ENGINE_register_pkey_meths(e))
376 struct gost_cipher_minfo *cinfo = gost_cipher_array;
377 for (; cinfo->nid; cinfo++) {
378 const EVP_CIPHER *cipher;
381 cipher = GOST_init_cipher(cinfo->reg);
383 cipher = cinfo->cipher();
384 if (!EVP_add_cipher(cipher))
388 struct gost_digest_minfo *dinfo = gost_digest_array;
389 for (; dinfo->nid; dinfo++) {
390 if (!EVP_add_digest(dinfo->digest()))
393 !EVP_add_digest_alias(dinfo->sn, dinfo->alias))
397 ENGINE_register_all_complete();
399 ERR_load_GOST_strings();
405 #ifndef OPENSSL_NO_DYNAMIC_ENGINE
406 IMPLEMENT_DYNAMIC_BIND_FN(bind_gost)
407 IMPLEMENT_DYNAMIC_CHECK_FN()
408 #endif /* ndef OPENSSL_NO_DYNAMIC_ENGINE */
410 /* ENGINE_DIGESTS_PTR callback installed by ENGINE_set_digests */
411 static int gost_digests(ENGINE *e, const EVP_MD **digest,
412 const int **nids, int nid)
414 struct gost_digest_minfo *info = gost_digest_array;
417 int *n = known_digest_nids;
420 for (; info->nid; info++)
422 return OSSL_NELEM(known_digest_nids);
425 for (; info->nid; info++)
426 if (nid == info->nid) {
427 *digest = info->digest();
434 /* ENGINE_CIPHERS_PTR callback installed by ENGINE_set_ciphers */
435 static int gost_ciphers(ENGINE *e, const EVP_CIPHER **cipher,
436 const int **nids, int nid)
438 struct gost_cipher_minfo *info = gost_cipher_array;
441 int *n = known_cipher_nids;
444 for (; info->nid; info++)
446 return OSSL_NELEM(known_cipher_nids);
449 for (; info->nid; info++)
450 if (nid == info->nid) {
452 *cipher = GOST_init_cipher(info->reg);
454 *cipher = info->cipher();
461 static int gost_meth_nids(const int **nids)
463 struct gost_meth_minfo *info = gost_meth_array;
464 int *n = known_meths_nids;
467 for (; info->nid; info++)
469 return OSSL_NELEM(known_meths_nids);
472 /* ENGINE_PKEY_METHS_PTR installed by ENGINE_set_pkey_meths */
473 static int gost_pkey_meths(ENGINE *e, EVP_PKEY_METHOD **pmeth,
474 const int **nids, int nid)
476 struct gost_meth_minfo *info;
479 return gost_meth_nids(nids);
481 for (info = gost_meth_array; info->nid; info++)
482 if (nid == info->nid) {
483 *pmeth = *info->pmeth;
490 /* ENGINE_PKEY_ASN1_METHS_PTR installed by ENGINE_set_pkey_asn1_meths */
491 static int gost_pkey_asn1_meths(ENGINE *e, EVP_PKEY_ASN1_METHOD **ameth,
492 const int **nids, int nid)
494 struct gost_meth_minfo *info;
497 return gost_meth_nids(nids);
499 for (info = gost_meth_array; info->nid; info++)
500 if (nid == info->nid) {
501 *ameth = *info->ameth;
508 #ifdef OPENSSL_NO_DYNAMIC_ENGINE
510 static ENGINE* engine_gost(void) {
511 ENGINE* ret = ENGINE_new();
514 if (!bind_gost(ret, engine_gost_id)) {
521 void ENGINE_load_gost(void) {
523 if (pmeth_GostR3410_2001)
525 toadd = engine_gost();