1 /**********************************************************************
3 * Main file of GOST engine *
5 * Copyright (c) 2005-2006 Cryptocom LTD *
6 * Copyright (c) 2020 Chikunov Vitaly <vt@altlinux.org> *
8 * This file is distributed under the same license as OpenSSL *
10 **********************************************************************/
12 #include <openssl/crypto.h>
13 #include <openssl/err.h>
14 #include <openssl/evp.h>
15 #include <openssl/engine.h>
16 #include <openssl/obj_mac.h>
17 #include "e_gost_err.h"
20 #include "gost_grasshopper_cipher.h"
22 static const char* engine_gost_id = "gost";
24 static const char* engine_gost_name =
25 "Reference implementation of GOST engine";
27 /* Symmetric cipher and digest function registrar */
29 static int gost_ciphers(ENGINE* e, const EVP_CIPHER** cipher,
30 const int** nids, int nid);
32 static int gost_digests(ENGINE* e, const EVP_MD** digest,
33 const int** nids, int nid);
35 static int gost_pkey_meths(ENGINE* e, EVP_PKEY_METHOD** pmeth,
36 const int** nids, int nid);
38 static int gost_pkey_asn1_meths(ENGINE* e, EVP_PKEY_ASN1_METHOD** ameth,
39 const int** nids, int nid);
41 static EVP_PKEY_METHOD* pmeth_GostR3410_2001 = NULL,
42 * pmeth_GostR3410_2012_256 = NULL,
43 * pmeth_GostR3410_2012_512 = NULL,
44 * pmeth_Gost28147_MAC = NULL, * pmeth_Gost28147_MAC_12 = NULL,
45 * pmeth_magma_mac = NULL, * pmeth_grasshopper_mac = NULL,
46 * pmeth_magma_mac_acpkm = NULL, * pmeth_grasshopper_mac_acpkm = NULL;
48 static EVP_PKEY_ASN1_METHOD* ameth_GostR3410_2001 = NULL,
49 * ameth_GostR3410_2012_256 = NULL,
50 * ameth_GostR3410_2012_512 = NULL,
51 * ameth_Gost28147_MAC = NULL, * ameth_Gost28147_MAC_12 = NULL,
52 * ameth_magma_mac = NULL, * ameth_grasshopper_mac = NULL,
53 * ameth_magma_mac_acpkm = NULL, * ameth_grasshopper_mac_acpkm = NULL;
55 static struct gost_digest_minfo {
57 EVP_MD *(*digest)(void);
58 void (*destroy)(void);
61 } gost_digest_array[] = {
68 NID_id_Gost28147_89_MAC,
70 imit_gost_cpa_destroy,
73 NID_id_GostR3411_2012_256,
75 digest_gost2012_256_destroy,
76 SN_id_GostR3411_2012_256,
80 NID_id_GostR3411_2012_512,
82 digest_gost2012_512_destroy,
83 SN_id_GostR3411_2012_512,
89 imit_gost_cp_12_destroy,
99 grasshopper_omac_destroy,
102 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
103 grasshopper_omac_acpkm,
104 grasshopper_omac_acpkm_destroy,
109 static struct gost_cipher_minfo {
111 const EVP_CIPHER *(*cipher)(void);
113 } gost_cipher_array[] = {
117 &Gost28147_89_cipher,
122 &Gost28147_89_cnt_cipher,
127 &Gost28147_89_cnt_12_cipher,
132 &Gost28147_89_cbc_cipher,
136 cipher_gost_grasshopper_ecb,
140 cipher_gost_grasshopper_cbc,
144 cipher_gost_grasshopper_cfb,
148 cipher_gost_grasshopper_ofb,
152 cipher_gost_grasshopper_ctr,
164 cipher_magma_ctr_acpkm,
167 NID_magma_ctr_acpkm_omac,
168 cipher_magma_ctr_acpkm_omac,
171 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm,
172 cipher_gost_grasshopper_ctracpkm,
175 NID_kuznyechik_ctr_acpkm_omac,
176 cipher_gost_grasshopper_ctracpkm_omac,
183 NID_kuznyechik_kexp15,
184 cipher_kuznyechik_wrap,
189 static struct gost_meth_minfo {
191 EVP_PKEY_METHOD **pmeth;
192 EVP_PKEY_ASN1_METHOD **ameth;
195 } gost_meth_array[] = {
197 NID_id_GostR3410_2001,
198 &pmeth_GostR3410_2001,
199 &ameth_GostR3410_2001,
204 NID_id_Gost28147_89_MAC,
205 &pmeth_Gost28147_MAC,
206 &ameth_Gost28147_MAC,
211 NID_id_GostR3410_2012_256,
212 &pmeth_GostR3410_2012_256,
213 &ameth_GostR3410_2012_256,
215 "GOST R 34.10-2012 with 256 bit key",
218 NID_id_GostR3410_2012_512,
219 &pmeth_GostR3410_2012_512,
220 &ameth_GostR3410_2012_512,
222 "GOST R 34.10-2012 with 512 bit key",
226 &pmeth_Gost28147_MAC_12,
227 &ameth_Gost28147_MAC_12,
229 "GOST 28147-89 MAC with 2012 params",
236 "GOST R 34.13-2015 Magma MAC",
240 &pmeth_grasshopper_mac,
241 &ameth_grasshopper_mac,
243 "GOST R 34.13-2015 Grasshopper MAC",
246 NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac,
247 &pmeth_magma_mac_acpkm,
248 &ameth_magma_mac_acpkm,
249 "ID-TC26-CIPHER-GOSTR3412-2015-MAGMA-CTRACPKM-OMAC",
250 "GOST R 34.13-2015 Magma MAC ACPKM",
253 NID_id_tc26_cipher_gostr3412_2015_kuznyechik_ctracpkm_omac,
254 &pmeth_grasshopper_mac_acpkm,
255 &ameth_grasshopper_mac_acpkm,
256 "ID-TC26-CIPHER-GOSTR3412-2015-KUZNYECHIK-CTRACPKM-OMAC",
257 "GOST R 34.13-2015 Grasshopper MAC ACPKM",
263 # define OSSL_NELEM(x) (sizeof(x)/sizeof((x)[0]))
266 /* `- 1' because of terminating zero element */
267 static int known_digest_nids[OSSL_NELEM(gost_digest_array) - 1];
268 static int known_cipher_nids[OSSL_NELEM(gost_cipher_array) - 1];
269 static int known_meths_nids[OSSL_NELEM(gost_meth_array) - 1];
271 static int gost_engine_init(ENGINE* e) {
275 static int gost_engine_finish(ENGINE* e) {
279 static int gost_engine_destroy(ENGINE* e) {
280 struct gost_digest_minfo *dinfo = gost_digest_array;
281 for (; dinfo->nid; dinfo++) {
283 EVP_delete_digest_alias(dinfo->alias);
287 struct gost_cipher_minfo *cinfo = gost_cipher_array;
288 for (; cinfo->nid; cinfo++) {
290 GOST_deinit_cipher(cinfo->reg);
292 EVP_CIPHER_meth_free((EVP_CIPHER *)cinfo->cipher());
295 //cipher_gost_grasshopper_destroy();
296 //wrap_ciphers_destroy();
300 struct gost_meth_minfo *minfo = gost_meth_array;
301 for (; minfo->nid; minfo++) {
302 *minfo->pmeth = NULL;
303 *minfo->ameth = NULL;
306 ERR_unload_GOST_strings();
311 static int bind_gost(ENGINE* e, const char* id) {
313 if (id != NULL && strcmp(id, engine_gost_id) != 0)
315 if (ameth_GostR3410_2001) {
316 printf("GOST engine already loaded\n");
319 if (!ENGINE_set_id(e, engine_gost_id)) {
320 printf("ENGINE_set_id failed\n");
323 if (!ENGINE_set_name(e, engine_gost_name)) {
324 printf("ENGINE_set_name failed\n");
327 if (!ENGINE_set_digests(e, gost_digests)) {
328 printf("ENGINE_set_digests failed\n");
331 if (!ENGINE_set_ciphers(e, gost_ciphers)) {
332 printf("ENGINE_set_ciphers failed\n");
335 if (!ENGINE_set_pkey_meths(e, gost_pkey_meths)) {
336 printf("ENGINE_set_pkey_meths failed\n");
339 if (!ENGINE_set_pkey_asn1_meths(e, gost_pkey_asn1_meths)) {
340 printf("ENGINE_set_pkey_asn1_meths failed\n");
343 /* Control function and commands */
344 if (!ENGINE_set_cmd_defns(e, gost_cmds)) {
345 fprintf(stderr, "ENGINE_set_cmd_defns failed\n");
348 if (!ENGINE_set_ctrl_function(e, gost_control_func)) {
349 fprintf(stderr, "ENGINE_set_ctrl_func failed\n");
352 if (!ENGINE_set_destroy_function(e, gost_engine_destroy)
353 || !ENGINE_set_init_function(e, gost_engine_init)
354 || !ENGINE_set_finish_function(e, gost_engine_finish)) {
358 struct gost_meth_minfo *minfo = gost_meth_array;
359 for (; minfo->nid; minfo++) {
361 /* This skip looks temporary. */
362 if (minfo->nid == NID_id_tc26_cipher_gostr3412_2015_magma_ctracpkm_omac)
365 if (!register_ameth_gost(minfo->nid, minfo->ameth, minfo->pemstr,
368 if (!register_pmeth_gost(minfo->nid, minfo->pmeth, 0))
372 if (!ENGINE_register_ciphers(e)
373 || !ENGINE_register_digests(e)
374 || !ENGINE_register_pkey_meths(e))
377 struct gost_cipher_minfo *cinfo = gost_cipher_array;
378 for (; cinfo->nid; cinfo++) {
379 const EVP_CIPHER *cipher;
382 cipher = GOST_init_cipher(cinfo->reg);
384 cipher = cinfo->cipher();
385 if (!EVP_add_cipher(cipher))
389 struct gost_digest_minfo *dinfo = gost_digest_array;
390 for (; dinfo->nid; dinfo++) {
391 if (!EVP_add_digest(dinfo->digest()))
394 !EVP_add_digest_alias(dinfo->sn, dinfo->alias))
398 ENGINE_register_all_complete();
400 ERR_load_GOST_strings();
406 #ifndef OPENSSL_NO_DYNAMIC_ENGINE
407 IMPLEMENT_DYNAMIC_BIND_FN(bind_gost)
408 IMPLEMENT_DYNAMIC_CHECK_FN()
409 #endif /* ndef OPENSSL_NO_DYNAMIC_ENGINE */
411 /* ENGINE_DIGESTS_PTR callback installed by ENGINE_set_digests */
412 static int gost_digests(ENGINE *e, const EVP_MD **digest,
413 const int **nids, int nid)
415 struct gost_digest_minfo *info = gost_digest_array;
418 int *n = known_digest_nids;
421 for (; info->nid; info++)
423 return OSSL_NELEM(known_digest_nids);
426 for (; info->nid; info++)
427 if (nid == info->nid) {
428 *digest = info->digest();
435 /* ENGINE_CIPHERS_PTR callback installed by ENGINE_set_ciphers */
436 static int gost_ciphers(ENGINE *e, const EVP_CIPHER **cipher,
437 const int **nids, int nid)
439 struct gost_cipher_minfo *info = gost_cipher_array;
442 int *n = known_cipher_nids;
445 for (; info->nid; info++)
447 return OSSL_NELEM(known_cipher_nids);
450 for (; info->nid; info++)
451 if (nid == info->nid) {
453 *cipher = GOST_init_cipher(info->reg);
455 *cipher = info->cipher();
462 static int gost_meth_nids(const int **nids)
464 struct gost_meth_minfo *info = gost_meth_array;
465 int *n = known_meths_nids;
468 for (; info->nid; info++)
470 return OSSL_NELEM(known_meths_nids);
473 /* ENGINE_PKEY_METHS_PTR installed by ENGINE_set_pkey_meths */
474 static int gost_pkey_meths(ENGINE *e, EVP_PKEY_METHOD **pmeth,
475 const int **nids, int nid)
477 struct gost_meth_minfo *info;
480 return gost_meth_nids(nids);
482 for (info = gost_meth_array; info->nid; info++)
483 if (nid == info->nid) {
484 *pmeth = *info->pmeth;
491 /* ENGINE_PKEY_ASN1_METHS_PTR installed by ENGINE_set_pkey_asn1_meths */
492 static int gost_pkey_asn1_meths(ENGINE *e, EVP_PKEY_ASN1_METHOD **ameth,
493 const int **nids, int nid)
495 struct gost_meth_minfo *info;
498 return gost_meth_nids(nids);
500 for (info = gost_meth_array; info->nid; info++)
501 if (nid == info->nid) {
502 *ameth = *info->ameth;
509 #ifdef OPENSSL_NO_DYNAMIC_ENGINE
511 static ENGINE* engine_gost(void) {
512 ENGINE* ret = ENGINE_new();
515 if (!bind_gost(ret, engine_gost_id)) {
522 void ENGINE_load_gost(void) {
524 if (pmeth_GostR3410_2001)
526 toadd = engine_gost();