Age Owner TLA Line data Source code
1 : /*
2 : * openssl.c
3 : * Wrapper for OpenSSL library.
4 : *
5 : * Copyright (c) 2001 Marko Kreen
6 : * All rights reserved.
7 : *
8 : * Redistribution and use in source and binary forms, with or without
9 : * modification, are permitted provided that the following conditions
10 : * are met:
11 : * 1. Redistributions of source code must retain the above copyright
12 : * notice, this list of conditions and the following disclaimer.
13 : * 2. Redistributions in binary form must reproduce the above copyright
14 : * notice, this list of conditions and the following disclaimer in the
15 : * documentation and/or other materials provided with the distribution.
16 : *
17 : * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18 : * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 : * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 : * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21 : * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 : * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 : * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 : * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 : * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 : * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27 : * SUCH DAMAGE.
28 : *
29 : * contrib/pgcrypto/openssl.c
30 : */
31 :
32 : #include "postgres.h"
33 :
34 : #include <openssl/evp.h>
35 : #include <openssl/err.h>
36 : #include <openssl/rand.h>
37 :
38 : #include "px.h"
39 : #include "utils/memutils.h"
40 : #include "utils/resowner.h"
41 :
42 : /*
43 : * Max lengths we might want to handle.
44 : */
45 : #define MAX_KEY (512/8)
46 : #define MAX_IV (128/8)
47 :
48 : /*
49 : * Hashes
50 : */
51 :
52 : /*
53 : * To make sure we don't leak OpenSSL handles on abort, we keep OSSLDigest
54 : * objects in a linked list, allocated in TopMemoryContext. We use the
55 : * ResourceOwner mechanism to free them on abort.
56 : */
57 : typedef struct OSSLDigest
58 : {
59 : const EVP_MD *algo;
60 : EVP_MD_CTX *ctx;
61 :
62 : ResourceOwner owner;
63 : struct OSSLDigest *next;
64 : struct OSSLDigest *prev;
65 : } OSSLDigest;
66 :
67 : static OSSLDigest *open_digests = NULL;
68 : static bool digest_resowner_callback_registered = false;
69 :
70 : static void
2309 heikki.linnakangas 71 CBC 298 : free_openssl_digest(OSSLDigest *digest)
72 : {
2397 73 298 : EVP_MD_CTX_destroy(digest->ctx);
74 298 : if (digest->prev)
2397 heikki.linnakangas 75 UBC 0 : digest->prev->next = digest->next;
76 : else
2397 heikki.linnakangas 77 CBC 298 : open_digests = digest->next;
78 298 : if (digest->next)
79 4 : digest->next->prev = digest->prev;
80 298 : pfree(digest);
81 298 : }
82 :
83 : /*
84 : * Close any open OpenSSL handles on abort.
85 : */
86 : static void
87 903 : digest_free_callback(ResourceReleasePhase phase,
88 : bool isCommit,
89 : bool isTopLevel,
90 : void *arg)
91 : {
92 : OSSLDigest *curr;
93 : OSSLDigest *next;
94 :
95 903 : if (phase != RESOURCE_RELEASE_AFTER_LOCKS)
96 602 : return;
97 :
98 301 : next = open_digests;
99 301 : while (next)
100 : {
2397 heikki.linnakangas 101 UBC 0 : curr = next;
102 0 : next = curr->next;
103 :
104 0 : if (curr->owner == CurrentResourceOwner)
105 : {
106 0 : if (isCommit)
107 0 : elog(WARNING, "pgcrypto digest reference leak: digest %p still referenced", curr);
2309 108 0 : free_openssl_digest(curr);
109 : }
110 : }
111 : }
112 :
113 : static unsigned
5050 bruce 114 CBC 164 : digest_result_size(PX_MD *h)
115 : {
6031 116 164 : OSSLDigest *digest = (OSSLDigest *) h->p.ptr;
852 michael 117 164 : int result = EVP_MD_CTX_size(digest->ctx);
118 :
119 164 : if (result < 0)
852 michael 120 UBC 0 : elog(ERROR, "EVP_MD_CTX_size() failed");
121 :
852 michael 122 CBC 164 : return result;
123 : }
124 :
125 : static unsigned
5050 bruce 126 56 : digest_block_size(PX_MD *h)
127 : {
6031 128 56 : OSSLDigest *digest = (OSSLDigest *) h->p.ptr;
852 michael 129 56 : int result = EVP_MD_CTX_block_size(digest->ctx);
130 :
131 56 : if (result < 0)
852 michael 132 UBC 0 : elog(ERROR, "EVP_MD_CTX_block_size() failed");
133 :
852 michael 134 CBC 56 : return result;
135 : }
136 :
137 : static void
5050 bruce 138 4128 : digest_reset(PX_MD *h)
139 : {
6031 140 4128 : OSSLDigest *digest = (OSSLDigest *) h->p.ptr;
141 :
852 michael 142 4128 : if (!EVP_DigestInit_ex(digest->ctx, digest->algo, NULL))
852 michael 143 UBC 0 : elog(ERROR, "EVP_DigestInit_ex() failed");
8195 peter_e 144 CBC 4128 : }
145 :
146 : static void
5050 bruce 147 25454265 : digest_update(PX_MD *h, const uint8 *data, unsigned dlen)
148 : {
6031 149 25454265 : OSSLDigest *digest = (OSSLDigest *) h->p.ptr;
150 :
852 michael 151 25454265 : if (!EVP_DigestUpdate(digest->ctx, data, dlen))
852 michael 152 UBC 0 : elog(ERROR, "EVP_DigestUpdate() failed");
7901 bruce 153 CBC 25454265 : }
154 :
155 : static void
5050 156 4328 : digest_finish(PX_MD *h, uint8 *dst)
157 : {
6031 158 4328 : OSSLDigest *digest = (OSSLDigest *) h->p.ptr;
159 :
852 michael 160 4328 : if (!EVP_DigestFinal_ex(digest->ctx, dst, NULL))
852 michael 161 UBC 0 : elog(ERROR, "EVP_DigestFinal_ex() failed");
8195 peter_e 162 CBC 4328 : }
163 :
164 : static void
5050 bruce 165 298 : digest_free(PX_MD *h)
166 : {
6031 167 298 : OSSLDigest *digest = (OSSLDigest *) h->p.ptr;
168 :
2309 heikki.linnakangas 169 298 : free_openssl_digest(digest);
926 michael 170 298 : pfree(h);
7901 bruce 171 298 : }
172 :
173 : static int px_openssl_initialized = 0;
174 :
175 : /* PUBLIC functions */
176 :
177 : int
5050 178 300 : px_find_digest(const char *name, PX_MD **res)
179 : {
180 : const EVP_MD *md;
181 : EVP_MD_CTX *ctx;
182 : PX_MD *h;
183 : OSSLDigest *digest;
184 :
7450 185 300 : if (!px_openssl_initialized)
186 : {
187 13 : px_openssl_initialized = 1;
188 13 : OpenSSL_add_all_algorithms();
189 : }
190 :
2309 heikki.linnakangas 191 300 : if (!digest_resowner_callback_registered)
192 : {
2397 193 13 : RegisterResourceReleaseCallback(digest_free_callback, NULL);
2309 194 13 : digest_resowner_callback_registered = true;
195 : }
196 :
7450 bruce 197 300 : md = EVP_get_digestbyname(name);
198 300 : if (md == NULL)
2414 heikki.linnakangas 199 2 : return PXE_NO_HASH;
200 :
201 : /*
202 : * Create an OSSLDigest object, an OpenSSL MD object, and a PX_MD object.
203 : * The order is crucial, to make sure we don't leak anything on
204 : * out-of-memory or other error.
205 : */
2397 206 298 : digest = MemoryContextAlloc(TopMemoryContext, sizeof(*digest));
207 :
208 298 : ctx = EVP_MD_CTX_create();
209 298 : if (!ctx)
210 : {
2397 heikki.linnakangas 211 UBC 0 : pfree(digest);
338 dgustafsson 212 0 : return PXE_CIPHER_INIT;
213 : }
2397 heikki.linnakangas 214 CBC 298 : if (EVP_DigestInit_ex(ctx, md, NULL) == 0)
215 : {
902 michael 216 UBC 0 : EVP_MD_CTX_destroy(ctx);
2397 heikki.linnakangas 217 0 : pfree(digest);
338 dgustafsson 218 0 : return PXE_CIPHER_INIT;
219 : }
220 :
2397 heikki.linnakangas 221 CBC 298 : digest->algo = md;
222 298 : digest->ctx = ctx;
223 298 : digest->owner = CurrentResourceOwner;
224 298 : digest->next = open_digests;
225 298 : digest->prev = NULL;
226 298 : open_digests = digest;
227 :
228 : /* The PX_MD object is allocated in the current memory context. */
926 michael 229 298 : h = palloc(sizeof(*h));
7450 bruce 230 298 : h->result_size = digest_result_size;
231 298 : h->block_size = digest_block_size;
232 298 : h->reset = digest_reset;
233 298 : h->update = digest_update;
234 298 : h->finish = digest_finish;
235 298 : h->free = digest_free;
6259 neilc 236 298 : h->p.ptr = (void *) digest;
237 :
7450 bruce 238 298 : *res = h;
239 298 : return 0;
240 : }
241 :
242 : /*
243 : * Ciphers
244 : *
245 : * We use OpenSSL's EVP* family of functions for these.
246 : */
247 :
248 : /*
249 : * prototype for the EVP functions that return an algorithm, e.g.
250 : * EVP_aes_128_cbc().
251 : */
252 : typedef const EVP_CIPHER *(*ossl_EVP_cipher_func) (void);
253 :
254 : /*
255 : * ossl_cipher contains the static information about each cipher.
256 : */
257 : struct ossl_cipher
258 : {
259 : int (*init) (PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv);
260 : ossl_EVP_cipher_func cipher_func;
261 : int block_size;
262 : int max_key_size;
263 : };
264 :
265 : /*
266 : * OSSLCipher contains the state for using a cipher. A separate OSSLCipher
267 : * object is allocated in each px_find_cipher() call.
268 : *
269 : * To make sure we don't leak OpenSSL handles on abort, we keep OSSLCipher
270 : * objects in a linked list, allocated in TopMemoryContext. We use the
271 : * ResourceOwner mechanism to free them on abort.
272 : */
273 : typedef struct OSSLCipher
274 : {
275 : EVP_CIPHER_CTX *evp_ctx;
276 : const EVP_CIPHER *evp_ciph;
277 : uint8 key[MAX_KEY];
278 : uint8 iv[MAX_IV];
279 : unsigned klen;
280 : unsigned init;
281 : const struct ossl_cipher *ciph;
282 :
283 : ResourceOwner owner;
284 : struct OSSLCipher *next;
285 : struct OSSLCipher *prev;
286 : } OSSLCipher;
287 :
288 : static OSSLCipher *open_ciphers = NULL;
289 : static bool cipher_resowner_callback_registered = false;
290 :
291 : static void
2309 heikki.linnakangas 292 190 : free_openssl_cipher(OSSLCipher *od)
293 : {
294 190 : EVP_CIPHER_CTX_free(od->evp_ctx);
295 190 : if (od->prev)
2309 heikki.linnakangas 296 UBC 0 : od->prev->next = od->next;
297 : else
2309 heikki.linnakangas 298 CBC 190 : open_ciphers = od->next;
299 190 : if (od->next)
2309 heikki.linnakangas 300 UBC 0 : od->next->prev = od->prev;
2309 heikki.linnakangas 301 CBC 190 : pfree(od);
302 190 : }
303 :
304 : /*
305 : * Close any open OpenSSL cipher handles on abort.
306 : */
307 : static void
308 735 : cipher_free_callback(ResourceReleasePhase phase,
309 : bool isCommit,
310 : bool isTopLevel,
311 : void *arg)
312 : {
313 : OSSLCipher *curr;
314 : OSSLCipher *next;
315 :
316 735 : if (phase != RESOURCE_RELEASE_AFTER_LOCKS)
317 490 : return;
318 :
319 245 : next = open_ciphers;
320 245 : while (next)
321 : {
2309 heikki.linnakangas 322 UBC 0 : curr = next;
323 0 : next = curr->next;
324 :
325 0 : if (curr->owner == CurrentResourceOwner)
326 : {
327 0 : if (isCommit)
328 0 : elog(WARNING, "pgcrypto cipher reference leak: cipher %p still referenced", curr);
329 0 : free_openssl_cipher(curr);
330 : }
331 : }
332 : }
333 :
334 : /* Common routines for all algorithms */
335 :
336 : static unsigned
5050 bruce 337 CBC 310 : gen_ossl_block_size(PX_Cipher *c)
338 : {
2309 heikki.linnakangas 339 310 : OSSLCipher *od = (OSSLCipher *) c->ptr;
340 :
7450 bruce 341 310 : return od->ciph->block_size;
342 : }
343 :
344 : static unsigned
5050 345 70 : gen_ossl_key_size(PX_Cipher *c)
346 : {
2309 heikki.linnakangas 347 70 : OSSLCipher *od = (OSSLCipher *) c->ptr;
348 :
7450 bruce 349 70 : return od->ciph->max_key_size;
350 : }
351 :
352 : static unsigned
5050 353 70 : gen_ossl_iv_size(PX_Cipher *c)
354 : {
355 : unsigned ivlen;
2309 heikki.linnakangas 356 70 : OSSLCipher *od = (OSSLCipher *) c->ptr;
357 :
7450 bruce 358 70 : ivlen = od->ciph->block_size;
7901 359 70 : return ivlen;
360 : }
361 :
362 : static void
5050 363 190 : gen_ossl_free(PX_Cipher *c)
364 : {
2309 heikki.linnakangas 365 190 : OSSLCipher *od = (OSSLCipher *) c->ptr;
366 :
367 190 : free_openssl_cipher(od);
926 michael 368 190 : pfree(c);
7901 bruce 369 190 : }
370 :
371 : static int
383 peter 372 11 : gen_ossl_decrypt(PX_Cipher *c, int padding, const uint8 *data, unsigned dlen,
373 : uint8 *res, unsigned *rlen)
374 : {
2309 heikki.linnakangas 375 11 : OSSLCipher *od = c->ptr;
376 : int outlen,
377 : outlen2;
378 :
2365 379 11 : if (!od->init)
380 : {
2309 381 11 : if (!EVP_DecryptInit_ex(od->evp_ctx, od->evp_ciph, NULL, NULL, NULL))
2365 382 3 : return PXE_CIPHER_INIT;
383 peter 383 8 : if (!EVP_CIPHER_CTX_set_padding(od->evp_ctx, padding))
607 dgustafsson 384 UBC 0 : return PXE_CIPHER_INIT;
2309 heikki.linnakangas 385 CBC 8 : if (!EVP_CIPHER_CTX_set_key_length(od->evp_ctx, od->klen))
2365 heikki.linnakangas 386 UBC 0 : return PXE_CIPHER_INIT;
2309 heikki.linnakangas 387 CBC 8 : if (!EVP_DecryptInit_ex(od->evp_ctx, NULL, NULL, od->key, od->iv))
2365 heikki.linnakangas 388 UBC 0 : return PXE_CIPHER_INIT;
2365 heikki.linnakangas 389 CBC 8 : od->init = true;
390 : }
391 :
2309 392 8 : if (!EVP_DecryptUpdate(od->evp_ctx, res, &outlen, data, dlen))
2365 heikki.linnakangas 393 UBC 0 : return PXE_DECRYPT_FAILED;
383 peter 394 CBC 8 : if (!EVP_DecryptFinal_ex(od->evp_ctx, res + outlen, &outlen2))
395 2 : return PXE_DECRYPT_FAILED;
396 6 : *rlen = outlen + outlen2;
397 :
2365 heikki.linnakangas 398 6 : return 0;
399 : }
400 :
401 : static int
383 peter 402 10868 : gen_ossl_encrypt(PX_Cipher *c, int padding, const uint8 *data, unsigned dlen,
403 : uint8 *res, unsigned *rlen)
404 : {
2309 heikki.linnakangas 405 10868 : OSSLCipher *od = c->ptr;
406 : int outlen,
407 : outlen2;
408 :
2365 409 10868 : if (!od->init)
410 : {
2309 411 201 : if (!EVP_EncryptInit_ex(od->evp_ctx, od->evp_ciph, NULL, NULL, NULL))
2365 412 65 : return PXE_CIPHER_INIT;
383 peter 413 136 : if (!EVP_CIPHER_CTX_set_padding(od->evp_ctx, padding))
607 dgustafsson 414 UBC 0 : return PXE_CIPHER_INIT;
2309 heikki.linnakangas 415 CBC 136 : if (!EVP_CIPHER_CTX_set_key_length(od->evp_ctx, od->klen))
2365 heikki.linnakangas 416 UBC 0 : return PXE_CIPHER_INIT;
2309 heikki.linnakangas 417 CBC 136 : if (!EVP_EncryptInit_ex(od->evp_ctx, NULL, NULL, od->key, od->iv))
2365 heikki.linnakangas 418 UBC 0 : return PXE_CIPHER_INIT;
2365 heikki.linnakangas 419 CBC 136 : od->init = true;
420 : }
421 :
2309 422 10803 : if (!EVP_EncryptUpdate(od->evp_ctx, res, &outlen, data, dlen))
889 michael 423 UBC 0 : return PXE_ENCRYPT_FAILED;
383 peter 424 CBC 10803 : if (!EVP_EncryptFinal_ex(od->evp_ctx, res + outlen, &outlen2))
425 1 : return PXE_ENCRYPT_FAILED;
426 10802 : *rlen = outlen + outlen2;
427 :
2365 heikki.linnakangas 428 10802 : return 0;
429 : }
430 :
431 : /* Blowfish */
432 :
433 : /*
434 : * Check if strong crypto is supported. Some OpenSSL installations
435 : * support only short keys and unfortunately BF_set_key does not return any
436 : * error value. This function tests if is possible to use strong key.
437 : */
438 : static int
5671 tgl 439 4 : bf_check_supported_key_len(void)
440 : {
441 : static const uint8 key[56] = {
442 : 0xf0, 0xe1, 0xd2, 0xc3, 0xb4, 0xa5, 0x96, 0x87, 0x78, 0x69,
443 : 0x5a, 0x4b, 0x3c, 0x2d, 0x1e, 0x0f, 0x00, 0x11, 0x22, 0x33,
444 : 0x44, 0x55, 0x66, 0x77, 0x04, 0x68, 0x91, 0x04, 0xc2, 0xfd,
445 : 0x3b, 0x2f, 0x58, 0x40, 0x23, 0x64, 0x1a, 0xba, 0x61, 0x76,
446 : 0x1f, 0x1f, 0x1f, 0x1f, 0x0e, 0x0e, 0x0e, 0x0e, 0xff, 0xff,
447 : 0xff, 0xff, 0xff, 0xff, 0xff, 0xff
448 : };
449 :
450 : static const uint8 data[8] = {0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10};
451 : static const uint8 res[8] = {0xc0, 0x45, 0x04, 0x01, 0x2e, 0x4e, 0x1f, 0x53};
452 : uint8 out[8];
453 : EVP_CIPHER_CTX *evp_ctx;
454 : int outlen;
2309 heikki.linnakangas 455 4 : int status = 0;
456 :
457 : /* encrypt with 448bits key and verify output */
458 4 : evp_ctx = EVP_CIPHER_CTX_new();
459 4 : if (!evp_ctx)
2365 heikki.linnakangas 460 UBC 0 : return 0;
2309 heikki.linnakangas 461 CBC 4 : if (!EVP_EncryptInit_ex(evp_ctx, EVP_bf_ecb(), NULL, NULL, NULL))
462 4 : goto leave;
2309 heikki.linnakangas 463 UBC 0 : if (!EVP_CIPHER_CTX_set_key_length(evp_ctx, 56))
464 0 : goto leave;
465 0 : if (!EVP_EncryptInit_ex(evp_ctx, NULL, NULL, key, NULL))
466 0 : goto leave;
467 :
468 0 : if (!EVP_EncryptUpdate(evp_ctx, out, &outlen, data, 8))
469 0 : goto leave;
470 :
5624 bruce 471 0 : if (memcmp(out, res, 8) != 0)
2309 heikki.linnakangas 472 0 : goto leave; /* Output does not match -> strong cipher is
473 : * not supported */
474 0 : status = 1;
475 :
2309 heikki.linnakangas 476 CBC 4 : leave:
477 4 : EVP_CIPHER_CTX_free(evp_ctx);
478 4 : return status;
479 : }
480 :
481 : static int
5050 bruce 482 28 : bf_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
483 : {
2309 heikki.linnakangas 484 28 : OSSLCipher *od = c->ptr;
2365 485 28 : unsigned bs = gen_ossl_block_size(c);
486 : static int bf_is_strong = -1;
487 :
488 : /*
489 : * Test if key len is supported. BF_set_key silently cut large keys and it
490 : * could be a problem when user transfer crypted data from one server to
491 : * another.
492 : */
493 :
5624 bruce 494 28 : if (bf_is_strong == -1)
5671 tgl 495 4 : bf_is_strong = bf_check_supported_key_len();
496 :
5624 bruce 497 28 : if (!bf_is_strong && klen > 16)
498 4 : return PXE_KEY_TOO_BIG;
499 :
500 : /* Key len is supported. We can use it. */
2365 heikki.linnakangas 501 24 : od->klen = klen;
502 24 : memcpy(od->key, key, klen);
503 :
7836 bruce 504 24 : if (iv)
2365 heikki.linnakangas 505 16 : memcpy(od->iv, iv, bs);
506 : else
507 8 : memset(od->iv, 0, bs);
7450 bruce 508 24 : return 0;
509 : }
510 :
511 : /* DES */
512 :
513 : static int
5050 514 8 : ossl_des_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
515 : {
2309 heikki.linnakangas 516 8 : OSSLCipher *od = c->ptr;
2365 517 8 : unsigned bs = gen_ossl_block_size(c);
518 :
519 8 : od->klen = 8;
520 8 : memset(od->key, 0, 8);
521 8 : memcpy(od->key, key, klen > 8 ? 8 : klen);
522 :
7836 bruce 523 8 : if (iv)
2365 heikki.linnakangas 524 8 : memcpy(od->iv, iv, bs);
525 : else
2365 heikki.linnakangas 526 UBC 0 : memset(od->iv, 0, bs);
7901 bruce 527 CBC 8 : return 0;
528 : }
529 :
530 : /* DES3 */
531 :
532 : static int
5050 533 11 : ossl_des3_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
534 : {
2309 heikki.linnakangas 535 11 : OSSLCipher *od = c->ptr;
6593 neilc 536 11 : unsigned bs = gen_ossl_block_size(c);
537 :
2365 heikki.linnakangas 538 11 : od->klen = 24;
539 11 : memset(od->key, 0, 24);
540 11 : memcpy(od->key, key, klen > 24 ? 24 : klen);
541 :
542 11 : if (iv)
543 11 : memcpy(od->iv, iv, bs);
544 : else
2365 heikki.linnakangas 545 UBC 0 : memset(od->iv, 0, bs);
6593 neilc 546 CBC 11 : return 0;
547 : }
548 :
549 : /* CAST5 */
550 :
551 : static int
5050 bruce 552 10 : ossl_cast_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
553 : {
2309 heikki.linnakangas 554 10 : OSSLCipher *od = c->ptr;
7450 bruce 555 10 : unsigned bs = gen_ossl_block_size(c);
556 :
2365 heikki.linnakangas 557 10 : od->klen = klen;
558 10 : memcpy(od->key, key, klen);
559 :
7450 bruce 560 10 : if (iv)
561 10 : memcpy(od->iv, iv, bs);
562 : else
7450 bruce 563 UBC 0 : memset(od->iv, 0, bs);
7901 bruce 564 CBC 10 : return 0;
565 : }
566 :
567 : /* AES */
568 :
569 : static int
5050 570 133 : ossl_aes_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
571 : {
2309 heikki.linnakangas 572 133 : OSSLCipher *od = c->ptr;
6593 neilc 573 133 : unsigned bs = gen_ossl_block_size(c);
574 :
6385 bruce 575 133 : if (klen <= 128 / 8)
576 104 : od->klen = 128 / 8;
577 29 : else if (klen <= 192 / 8)
578 13 : od->klen = 192 / 8;
579 16 : else if (klen <= 256 / 8)
580 16 : od->klen = 256 / 8;
581 : else
6593 neilc 582 UBC 0 : return PXE_KEY_TOO_BIG;
583 :
6593 neilc 584 CBC 133 : memcpy(od->key, key, klen);
585 :
586 133 : if (iv)
587 21 : memcpy(od->iv, iv, bs);
588 : else
589 112 : memset(od->iv, 0, bs);
590 :
591 133 : return 0;
592 : }
593 :
594 : static int
2365 heikki.linnakangas 595 115 : ossl_aes_ecb_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
596 : {
2309 597 115 : OSSLCipher *od = c->ptr;
598 : int err;
599 :
2365 600 115 : err = ossl_aes_init(c, key, klen, iv);
601 115 : if (err)
2365 heikki.linnakangas 602 UBC 0 : return err;
603 :
2365 heikki.linnakangas 604 CBC 115 : switch (od->klen)
605 : {
606 91 : case 128 / 8:
607 91 : od->evp_ciph = EVP_aes_128_ecb();
608 91 : break;
609 11 : case 192 / 8:
610 11 : od->evp_ciph = EVP_aes_192_ecb();
611 11 : break;
612 13 : case 256 / 8:
613 13 : od->evp_ciph = EVP_aes_256_ecb();
614 13 : break;
2365 heikki.linnakangas 615 UBC 0 : default:
616 : /* shouldn't happen */
617 0 : err = PXE_CIPHER_INIT;
618 0 : break;
619 : }
620 :
2365 heikki.linnakangas 621 CBC 115 : return err;
622 : }
623 :
624 : static int
625 18 : ossl_aes_cbc_init(PX_Cipher *c, const uint8 *key, unsigned klen, const uint8 *iv)
626 : {
2309 627 18 : OSSLCipher *od = c->ptr;
628 : int err;
629 :
2365 630 18 : err = ossl_aes_init(c, key, klen, iv);
631 18 : if (err)
2365 heikki.linnakangas 632 UBC 0 : return err;
633 :
2365 heikki.linnakangas 634 CBC 18 : switch (od->klen)
635 : {
636 13 : case 128 / 8:
637 13 : od->evp_ciph = EVP_aes_128_cbc();
638 13 : break;
639 2 : case 192 / 8:
640 2 : od->evp_ciph = EVP_aes_192_cbc();
641 2 : break;
642 3 : case 256 / 8:
643 3 : od->evp_ciph = EVP_aes_256_cbc();
644 3 : break;
2365 heikki.linnakangas 645 UBC 0 : default:
646 : /* shouldn't happen */
647 0 : err = PXE_CIPHER_INIT;
648 0 : break;
649 : }
650 :
2365 heikki.linnakangas 651 CBC 18 : return err;
652 : }
653 :
654 : /*
655 : * aliases
656 : */
657 :
658 : static PX_Alias ossl_aliases[] = {
659 : {"bf", "bf-cbc"},
660 : {"blowfish", "bf-cbc"},
661 : {"blowfish-cbc", "bf-cbc"},
662 : {"blowfish-ecb", "bf-ecb"},
663 : {"blowfish-cfb", "bf-cfb"},
664 : {"des", "des-cbc"},
665 : {"3des", "des3-cbc"},
666 : {"3des-ecb", "des3-ecb"},
667 : {"3des-cbc", "des3-cbc"},
668 : {"cast5", "cast5-cbc"},
669 : {"aes", "aes-cbc"},
670 : {"rijndael", "aes-cbc"},
671 : {"rijndael-cbc", "aes-cbc"},
672 : {"rijndael-ecb", "aes-ecb"},
673 : {NULL}
674 : };
675 :
676 : static const struct ossl_cipher ossl_bf_cbc = {
677 : bf_init,
678 : EVP_bf_cbc,
679 : 64 / 8, 448 / 8
680 : };
681 :
682 : static const struct ossl_cipher ossl_bf_ecb = {
683 : bf_init,
684 : EVP_bf_ecb,
685 : 64 / 8, 448 / 8
686 : };
687 :
688 : static const struct ossl_cipher ossl_bf_cfb = {
689 : bf_init,
690 : EVP_bf_cfb,
691 : 64 / 8, 448 / 8
692 : };
693 :
694 : static const struct ossl_cipher ossl_des_ecb = {
695 : ossl_des_init,
696 : EVP_des_ecb,
697 : 64 / 8, 64 / 8
698 : };
699 :
700 : static const struct ossl_cipher ossl_des_cbc = {
701 : ossl_des_init,
702 : EVP_des_cbc,
703 : 64 / 8, 64 / 8
704 : };
705 :
706 : static const struct ossl_cipher ossl_des3_ecb = {
707 : ossl_des3_init,
708 : EVP_des_ede3_ecb,
709 : 64 / 8, 192 / 8
710 : };
711 :
712 : static const struct ossl_cipher ossl_des3_cbc = {
713 : ossl_des3_init,
714 : EVP_des_ede3_cbc,
715 : 64 / 8, 192 / 8
716 : };
717 :
718 : static const struct ossl_cipher ossl_cast_ecb = {
719 : ossl_cast_init,
720 : EVP_cast5_ecb,
721 : 64 / 8, 128 / 8
722 : };
723 :
724 : static const struct ossl_cipher ossl_cast_cbc = {
725 : ossl_cast_init,
726 : EVP_cast5_cbc,
727 : 64 / 8, 128 / 8
728 : };
729 :
730 : static const struct ossl_cipher ossl_aes_ecb = {
731 : ossl_aes_ecb_init,
732 : NULL, /* EVP_aes_XXX_ecb(), determined in init
733 : * function */
734 : 128 / 8, 256 / 8
735 : };
736 :
737 : static const struct ossl_cipher ossl_aes_cbc = {
738 : ossl_aes_cbc_init,
739 : NULL, /* EVP_aes_XXX_cbc(), determined in init
740 : * function */
741 : 128 / 8, 256 / 8
742 : };
743 :
744 : /*
745 : * Special handlers
746 : */
747 : struct ossl_cipher_lookup
748 : {
749 : const char *name;
750 : const struct ossl_cipher *ciph;
751 : };
752 :
753 : static const struct ossl_cipher_lookup ossl_cipher_types[] = {
754 : {"bf-cbc", &ossl_bf_cbc},
755 : {"bf-ecb", &ossl_bf_ecb},
756 : {"bf-cfb", &ossl_bf_cfb},
757 : {"des-ecb", &ossl_des_ecb},
758 : {"des-cbc", &ossl_des_cbc},
759 : {"des3-ecb", &ossl_des3_ecb},
760 : {"des3-cbc", &ossl_des3_cbc},
761 : {"cast5-ecb", &ossl_cast_ecb},
762 : {"cast5-cbc", &ossl_cast_cbc},
763 : {"aes-ecb", &ossl_aes_ecb},
764 : {"aes-cbc", &ossl_aes_cbc},
765 : {NULL}
766 : };
767 :
768 : /* PUBLIC functions */
769 :
770 : int
5050 bruce 771 191 : px_find_cipher(const char *name, PX_Cipher **res)
772 : {
773 : const struct ossl_cipher_lookup *i;
6593 neilc 774 191 : PX_Cipher *c = NULL;
775 : EVP_CIPHER_CTX *ctx;
776 : OSSLCipher *od;
777 :
7901 bruce 778 191 : name = px_resolve_alias(ossl_aliases, name);
6593 neilc 779 1608 : for (i = ossl_cipher_types; i->name; i++)
4121 peter_e 780 1607 : if (strcmp(i->name, name) == 0)
7450 bruce 781 190 : break;
6593 neilc 782 191 : if (i->name == NULL)
783 1 : return PXE_NO_CIPHER;
784 :
2309 heikki.linnakangas 785 190 : if (!cipher_resowner_callback_registered)
786 : {
787 10 : RegisterResourceReleaseCallback(cipher_free_callback, NULL);
788 10 : cipher_resowner_callback_registered = true;
789 : }
790 :
791 : /*
792 : * Create an OSSLCipher object, an EVP_CIPHER_CTX object and a PX_Cipher.
793 : * The order is crucial, to make sure we don't leak anything on
794 : * out-of-memory or other error.
795 : */
796 190 : od = MemoryContextAllocZero(TopMemoryContext, sizeof(*od));
6593 neilc 797 190 : od->ciph = i->ciph;
798 :
799 : /* Allocate an EVP_CIPHER_CTX object. */
2309 heikki.linnakangas 800 190 : ctx = EVP_CIPHER_CTX_new();
801 190 : if (!ctx)
802 : {
2309 heikki.linnakangas 803 UBC 0 : pfree(od);
804 0 : return PXE_CIPHER_INIT;
805 : }
806 :
2309 heikki.linnakangas 807 CBC 190 : od->evp_ctx = ctx;
808 190 : od->owner = CurrentResourceOwner;
809 190 : od->next = open_ciphers;
810 190 : od->prev = NULL;
811 190 : open_ciphers = od;
812 :
2365 813 190 : if (i->ciph->cipher_func)
814 57 : od->evp_ciph = i->ciph->cipher_func();
815 :
816 : /* The PX_Cipher is allocated in current memory context */
926 michael 817 190 : c = palloc(sizeof(*c));
7450 bruce 818 190 : c->block_size = gen_ossl_block_size;
819 190 : c->key_size = gen_ossl_key_size;
820 190 : c->iv_size = gen_ossl_iv_size;
821 190 : c->free = gen_ossl_free;
6593 neilc 822 190 : c->init = od->ciph->init;
2365 heikki.linnakangas 823 190 : c->encrypt = gen_ossl_encrypt;
824 190 : c->decrypt = gen_ossl_decrypt;
7901 bruce 825 190 : c->ptr = od;
826 :
827 190 : *res = c;
828 190 : return 0;
829 : }
|
