src - OpenBSD base system

diff options


context:
space:
mode:

author	Bob Beck <beck@cvs.openbsd.org>	2014-04-17 13:37:51 +0000
committer	Bob Beck <beck@cvs.openbsd.org>	2014-04-17 13:37:51 +0000
commit	798a6f0972ce4f8ea25aa987dc43e626dc6d4087 (patch)
tree	557371c7b1514332c466ec6233d3e6af96c88520 /lib/libcrypto/cms
parent	eea79ffdb77e3dd4cdbd3f98ed1b44d9522496fa (diff)

Change library to use intrinsic memory allocation functions instead of

OPENSSL_foo wrappers. This changes: OPENSSL_malloc->malloc OPENSSL_free->free OPENSSL_relloc->realloc OPENSSL_freeFunc->free

Diffstat (limited to 'lib/libcrypto/cms')

-rw-r--r--

lib/libcrypto/cms/cms_asn1.c

-rw-r--r--

lib/libcrypto/cms/cms_enc.c

-rw-r--r--

lib/libcrypto/cms/cms_env.c

125

-rw-r--r--

lib/libcrypto/cms/cms_ess.c

-rw-r--r--

lib/libcrypto/cms/cms_pwri.c

-rw-r--r--

lib/libcrypto/cms/cms_sd.c

145

6 files changed, 253 insertions, 156 deletions

diff --git a/lib/libcrypto/cms/cms_asn1.c b/lib/libcrypto/cms/cms_asn1.c
index 76649218618..bd7466cc1d3 100644
--- a/lib/libcrypto/cms/cms_asn1.c
+++ b/lib/libcrypto/cms/cms_asn1.c

@@ -87,7 +87,8 @@ ASN1_NDEF_SEQUENCE(CMS_EncapsulatedContentInfo) = {

} ASN1_NDEF_SEQUENCE_END(CMS_EncapsulatedContentInfo)

/* Minor tweak to operation: free up signer key, cert */

-static int cms_si_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it)

+static int cms_si_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it,

+ void *exarg)

{

if(operation == ASN1_OP_FREE_POST)

{

@@ -130,8 +131,8 @@ ASN1_NDEF_SEQUENCE(CMS_SignedData) = {

} ASN1_NDEF_SEQUENCE_END(CMS_SignedData)

ASN1_SEQUENCE(CMS_OriginatorInfo) = {

- ASN1_IMP_SET_OF_OPT(CMS_SignedData, certificates, CMS_CertificateChoices, 0),

- ASN1_IMP_SET_OF_OPT(CMS_SignedData, crls, CMS_RevocationInfoChoice, 1)

+ ASN1_IMP_SET_OF_OPT(CMS_OriginatorInfo, certificates, CMS_CertificateChoices, 0),

+ ASN1_IMP_SET_OF_OPT(CMS_OriginatorInfo, crls, CMS_RevocationInfoChoice, 1)

} ASN1_SEQUENCE_END(CMS_OriginatorInfo)

ASN1_NDEF_SEQUENCE(CMS_EncryptedContentInfo) = {

@@ -213,7 +214,8 @@ ASN1_SEQUENCE(CMS_OtherRecipientInfo) = {

} ASN1_SEQUENCE_END(CMS_OtherRecipientInfo)

/* Free up RecipientInfo additional data */

-static int cms_ri_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it)

+static int cms_ri_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it,

+ void *exarg)

{

if(operation == ASN1_OP_FREE_PRE)

{

@@ -232,7 +234,16 @@ static int cms_ri_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it)

if (kekri->key)

{

OPENSSL_cleanse(kekri->key, kekri->keylen);

- OPENSSL_free(kekri->key);

+ free(kekri->key);

+ }

+ else if (ri->type == CMS_RECIPINFO_PASS)

+ {

+ CMS_PasswordRecipientInfo *pwri = ri->d.pwri;

+ if (pwri->pass)

+ {

+ OPENSSL_cleanse(pwri->pass, pwri->passlen);

+ free(pwri->pass);

}

@@ -300,10 +311,42 @@ ASN1_ADB(CMS_ContentInfo) = {

ADB_ENTRY(NID_id_smime_ct_compressedData, ASN1_NDEF_EXP(CMS_ContentInfo, d.compressedData, CMS_CompressedData, 0)),

} ASN1_ADB_END(CMS_ContentInfo, 0, contentType, 0, &cms_default_tt, NULL);

-ASN1_NDEF_SEQUENCE(CMS_ContentInfo) = {

+/* CMS streaming support */

+static int cms_cb(int operation, ASN1_VALUE **pval, const ASN1_ITEM *it,

+ void *exarg)

+ {

+ ASN1_STREAM_ARG *sarg = exarg;

+ CMS_ContentInfo *cms = NULL;

+ if (pval)

+ cms = (CMS_ContentInfo *)*pval;

+ else

+ return 1;

+ switch(operation)

+ {

+ case ASN1_OP_STREAM_PRE:

+ if (CMS_stream(&sarg->boundary, cms) <= 0)

+ return 0;

+ case ASN1_OP_DETACHED_PRE:

+ sarg->ndef_bio = CMS_dataInit(cms, sarg->out);

+ if (!sarg->ndef_bio)

+ return 0;

+ break;

+ case ASN1_OP_STREAM_POST:

+ case ASN1_OP_DETACHED_POST:

+ if (CMS_dataFinal(cms, sarg->ndef_bio) <= 0)

+ return 0;

+ break;

+ }

+ return 1;

+ }

+ASN1_NDEF_SEQUENCE_cb(CMS_ContentInfo, cms_cb) = {

ASN1_SIMPLE(CMS_ContentInfo, contentType, ASN1_OBJECT),

ASN1_ADB_OBJECT(CMS_ContentInfo)

-} ASN1_NDEF_SEQUENCE_END(CMS_ContentInfo)

+} ASN1_NDEF_SEQUENCE_END_cb(CMS_ContentInfo, CMS_ContentInfo)

/* Specials for signed attributes */

diff --git a/lib/libcrypto/cms/cms_enc.c b/lib/libcrypto/cms/cms_enc.c
index bab26235bdc..612fce6dde8 100644
--- a/lib/libcrypto/cms/cms_enc.c
+++ b/lib/libcrypto/cms/cms_enc.c

@@ -73,6 +73,8 @@ BIO *cms_EncryptedContent_init_bio(CMS_EncryptedContentInfo *ec)

const EVP_CIPHER *ciph;

X509_ALGOR *calg = ec->contentEncryptionAlgorithm;

unsigned char iv[EVP_MAX_IV_LENGTH], *piv = NULL;

+ unsigned char *tkey = NULL;

+ size_t tkeylen = 0;

int ok = 0;

@@ -137,32 +139,57 @@ BIO *cms_EncryptedContent_init_bio(CMS_EncryptedContentInfo *ec)

CMS_R_CIPHER_PARAMETER_INITIALISATION_ERROR);

goto err;

}

- if (enc && !ec->key)

+ tkeylen = EVP_CIPHER_CTX_key_length(ctx);

+ /* Generate random session key */

+ if (!enc || !ec->key)

{

- /* Generate random key */

- if (!ec->keylen)

- ec->keylen = EVP_CIPHER_CTX_key_length(ctx);

- ec->key = OPENSSL_malloc(ec->keylen);

- if (!ec->key)

+ tkey = malloc(tkeylen);

+ if (!tkey)

{

CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO,

ERR_R_MALLOC_FAILURE);

goto err;

}

- if (EVP_CIPHER_CTX_rand_key(ctx, ec->key) <= 0)

+ if (EVP_CIPHER_CTX_rand_key(ctx, tkey) <= 0)

goto err;

- keep_key = 1;

}

- else if (ec->keylen != (unsigned int)EVP_CIPHER_CTX_key_length(ctx))

+ if (!ec->key)

+ {

+ ec->key = tkey;

+ ec->keylen = tkeylen;

+ tkey = NULL;

+ if (enc)

+ keep_key = 1;

+ else

+ ERR_clear_error();

+ }

+ if (ec->keylen != tkeylen)

{

/* If necessary set key length */

if (EVP_CIPHER_CTX_set_key_length(ctx, ec->keylen) <= 0)

{

- CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO,

- CMS_R_INVALID_KEY_LENGTH);

- goto err;

+ /* Only reveal failure if debugging so we don't

+ * leak information which may be useful in MMA.

+ */

+ if (enc || ec->debug)

+ {

+ CMSerr(CMS_F_CMS_ENCRYPTEDCONTENT_INIT_BIO,

+ CMS_R_INVALID_KEY_LENGTH);

+ goto err;

+ }

+ else

+ {

+ /* Use random key */

+ OPENSSL_cleanse(ec->key, ec->keylen);

+ free(ec->key);

+ ec->key = tkey;

+ ec->keylen = tkeylen;

+ tkey = NULL;

+ ERR_clear_error();

+ }

}

@@ -195,9 +222,14 @@ BIO *cms_EncryptedContent_init_bio(CMS_EncryptedContentInfo *ec)

if (ec->key && !keep_key)

{

OPENSSL_cleanse(ec->key, ec->keylen);

- OPENSSL_free(ec->key);

+ free(ec->key);

ec->key = NULL;

}

+ if (tkey)

+ {

+ OPENSSL_cleanse(tkey, tkeylen);

+ free(tkey);

+ }

if (ok)

return b;

BIO_free(b);

@@ -211,7 +243,7 @@ int cms_EncryptedContent_init(CMS_EncryptedContentInfo *ec,

ec->cipher = cipher;

if (key)

{

- ec->key = OPENSSL_malloc(keylen);

+ ec->key = malloc(keylen);

if (!ec->key)

return 0;

memcpy(ec->key, key, keylen);

diff --git a/lib/libcrypto/cms/cms_env.c b/lib/libcrypto/cms/cms_env.c
index d499ae85b40..78fa2aa7b73 100644
--- a/lib/libcrypto/cms/cms_env.c
+++ b/lib/libcrypto/cms/cms_env.c

@@ -60,18 +60,18 @@

#include <openssl/rand.h>

#include <openssl/aes.h>

#include "cms_lcl.h"

+#include "asn1_locl.h"

/* CMS EnvelopedData Utilities */

DECLARE_ASN1_ITEM(CMS_EnvelopedData)

-DECLARE_ASN1_ITEM(CMS_RecipientInfo)

DECLARE_ASN1_ITEM(CMS_KeyTransRecipientInfo)

DECLARE_ASN1_ITEM(CMS_KEKRecipientInfo)

DECLARE_ASN1_ITEM(CMS_OtherKeyAttribute)

DECLARE_STACK_OF(CMS_RecipientInfo)

-static CMS_EnvelopedData *cms_get0_enveloped(CMS_ContentInfo *cms)

+CMS_EnvelopedData *cms_get0_enveloped(CMS_ContentInfo *cms)

{

if (OBJ_obj2nid(cms->contentType) != NID_pkcs7_enveloped)

{

@@ -151,7 +151,7 @@ CMS_RecipientInfo *CMS_add1_recipient_cert(CMS_ContentInfo *cms,

CMS_KeyTransRecipientInfo *ktri;

CMS_EnvelopedData *env;

EVP_PKEY *pk = NULL;

- int type;

+ int i, type;

env = cms_get0_enveloped(cms);

if (!env)

goto err;

@@ -200,21 +200,22 @@ CMS_RecipientInfo *CMS_add1_recipient_cert(CMS_ContentInfo *cms,

if (!cms_set1_SignerIdentifier(ktri->rid, recip, type))

goto err;

- /* Since we have no EVP_PKEY_ASN1_METHOD in OpenSSL 0.9.8,

- * hard code algorithm parameters.

- */

- if (pk->type == EVP_PKEY_RSA)

- {

- X509_ALGOR_set0(ktri->keyEncryptionAlgorithm,

- OBJ_nid2obj(NID_rsaEncryption),

- V_ASN1_NULL, 0);

- }

- else

+ if (pk->ameth && pk->ameth->pkey_ctrl)

{

- CMSerr(CMS_F_CMS_ADD1_RECIPIENT_CERT,

+ i = pk->ameth->pkey_ctrl(pk, ASN1_PKEY_CTRL_CMS_ENVELOPE,

+ 0, ri);

+ if (i == -2)

+ {

+ CMSerr(CMS_F_CMS_ADD1_RECIPIENT_CERT,

CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE);

- goto err;

+ goto err;

+ }

+ if (i <= 0)

+ {

+ CMSerr(CMS_F_CMS_ADD1_RECIPIENT_CERT,

+ CMS_R_CTRL_FAILURE);

+ goto err;

+ }

}

if (!sk_CMS_RecipientInfo_push(env->recipientInfos, ri))

@@ -301,8 +302,9 @@ static int cms_RecipientInfo_ktri_encrypt(CMS_ContentInfo *cms,

{

CMS_KeyTransRecipientInfo *ktri;

CMS_EncryptedContentInfo *ec;

+ EVP_PKEY_CTX *pctx = NULL;

unsigned char *ek = NULL;

- int eklen;

+ size_t eklen;

int ret = 0;

@@ -315,9 +317,24 @@ static int cms_RecipientInfo_ktri_encrypt(CMS_ContentInfo *cms,

ktri = ri->d.ktri;

ec = cms->d.envelopedData->encryptedContentInfo;

- eklen = EVP_PKEY_size(ktri->pkey);

+ pctx = EVP_PKEY_CTX_new(ktri->pkey, NULL);

+ if (!pctx)

+ return 0;

+ if (EVP_PKEY_encrypt_init(pctx) <= 0)

+ goto err;

+ if (EVP_PKEY_CTX_ctrl(pctx, -1, EVP_PKEY_OP_ENCRYPT,

+ EVP_PKEY_CTRL_CMS_ENCRYPT, 0, ri) <= 0)

+ {

+ CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_ENCRYPT, CMS_R_CTRL_ERROR);

+ goto err;

+ }

+ if (EVP_PKEY_encrypt(pctx, NULL, &eklen, ec->key, ec->keylen) <= 0)

+ goto err;

- ek = OPENSSL_malloc(eklen);

+ ek = malloc(eklen);

if (ek == NULL)

{

@@ -326,9 +343,7 @@ static int cms_RecipientInfo_ktri_encrypt(CMS_ContentInfo *cms,

goto err;

}

- eklen = EVP_PKEY_encrypt(ek, ec->key, ec->keylen, ktri->pkey);

- if (eklen <= 0)

+ if (EVP_PKEY_encrypt(pctx, ek, &eklen, ec->key, ec->keylen) <= 0)

goto err;

ASN1_STRING_set0(ktri->encryptedKey, ek, eklen);

@@ -337,8 +352,10 @@ static int cms_RecipientInfo_ktri_encrypt(CMS_ContentInfo *cms,

ret = 1;

err:

+ if (pctx)

+ EVP_PKEY_CTX_free(pctx);

if (ek)

- OPENSSL_free(ek);

+ free(ek);

return ret;

}

@@ -349,9 +366,12 @@ static int cms_RecipientInfo_ktri_decrypt(CMS_ContentInfo *cms,

CMS_RecipientInfo *ri)

{

CMS_KeyTransRecipientInfo *ktri = ri->d.ktri;

+ EVP_PKEY_CTX *pctx = NULL;

unsigned char *ek = NULL;

- int eklen;

+ size_t eklen;

int ret = 0;

+ CMS_EncryptedContentInfo *ec;

+ ec = cms->d.envelopedData->encryptedContentInfo;

if (ktri->pkey == NULL)

{

@@ -360,9 +380,26 @@ static int cms_RecipientInfo_ktri_decrypt(CMS_ContentInfo *cms,

return 0;

}

- eklen = EVP_PKEY_size(ktri->pkey);

+ pctx = EVP_PKEY_CTX_new(ktri->pkey, NULL);

+ if (!pctx)

+ return 0;

- ek = OPENSSL_malloc(eklen);

+ if (EVP_PKEY_decrypt_init(pctx) <= 0)

+ goto err;

+ if (EVP_PKEY_CTX_ctrl(pctx, -1, EVP_PKEY_OP_DECRYPT,

+ EVP_PKEY_CTRL_CMS_DECRYPT, 0, ri) <= 0)

+ {

+ CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT, CMS_R_CTRL_ERROR);

+ goto err;

+ }

+ if (EVP_PKEY_decrypt(pctx, NULL, &eklen,

+ ktri->encryptedKey->data,

+ ktri->encryptedKey->length) <= 0)

+ goto err;

+ ek = malloc(eklen);

if (ek == NULL)

{

@@ -371,10 +408,9 @@ static int cms_RecipientInfo_ktri_decrypt(CMS_ContentInfo *cms,

goto err;

}

- eklen = EVP_PKEY_decrypt(ek,

+ if (EVP_PKEY_decrypt(pctx, ek, &eklen,

ktri->encryptedKey->data,

- ktri->encryptedKey->length, ktri->pkey);

- if (eklen <= 0)

+ ktri->encryptedKey->length) <= 0)

{

CMSerr(CMS_F_CMS_RECIPIENTINFO_KTRI_DECRYPT, CMS_R_CMS_LIB);

goto err;

@@ -382,12 +418,20 @@ static int cms_RecipientInfo_ktri_decrypt(CMS_ContentInfo *cms,

ret = 1;

- cms->d.envelopedData->encryptedContentInfo->key = ek;

- cms->d.envelopedData->encryptedContentInfo->keylen = eklen;

+ if (ec->key)

+ {

+ OPENSSL_cleanse(ec->key, ec->keylen);

+ free(ec->key);

+ }

+ ec->key = ek;

+ ec->keylen = eklen;

err:

+ if (pctx)

+ EVP_PKEY_CTX_free(pctx);

if (!ret && ek)

- OPENSSL_free(ek);

+ free(ek);

return ret;

}

@@ -627,7 +671,7 @@ static int cms_RecipientInfo_kekri_encrypt(CMS_ContentInfo *cms,

goto err;

}

- wkey = OPENSSL_malloc(ec->keylen + 8);

+ wkey = malloc(ec->keylen + 8);

if (!wkey)

{

@@ -651,7 +695,7 @@ static int cms_RecipientInfo_kekri_encrypt(CMS_ContentInfo *cms,

err:

if (!r && wkey)

- OPENSSL_free(wkey);

+ free(wkey);

OPENSSL_cleanse(&actx, sizeof(actx));

return r;

@@ -704,7 +748,7 @@ static int cms_RecipientInfo_kekri_decrypt(CMS_ContentInfo *cms,

goto err;

}

- ukey = OPENSSL_malloc(kekri->encryptedKey->length - 8);

+ ukey = malloc(kekri->encryptedKey->length - 8);

if (!ukey)

{

@@ -732,7 +776,7 @@ static int cms_RecipientInfo_kekri_decrypt(CMS_ContentInfo *cms,

err:

if (!r && ukey)

- OPENSSL_free(ukey);

+ free(ukey);

OPENSSL_cleanse(&actx, sizeof(actx));

return r;

@@ -749,6 +793,9 @@ int CMS_RecipientInfo_decrypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri)

case CMS_RECIPINFO_KEK:

return cms_RecipientInfo_kekri_decrypt(cms, ri);

+ case CMS_RECIPINFO_PASS:

+ return cms_RecipientInfo_pwri_crypt(cms, ri, 0);

default:

CMSerr(CMS_F_CMS_RECIPIENTINFO_DECRYPT,

CMS_R_UNSUPPORTED_RECPIENTINFO_TYPE);

@@ -792,6 +839,10 @@ BIO *cms_EnvelopedData_init_bio(CMS_ContentInfo *cms)

r = cms_RecipientInfo_kekri_encrypt(cms, ri);

break;

+ case CMS_RECIPINFO_PASS:

+ r = cms_RecipientInfo_pwri_crypt(cms, ri, 1);

+ break;

default:

CMSerr(CMS_F_CMS_ENVELOPEDDATA_INIT_BIO,

CMS_R_UNSUPPORTED_RECIPIENT_TYPE);

@@ -813,7 +864,7 @@ BIO *cms_EnvelopedData_init_bio(CMS_ContentInfo *cms)

if (ec->key)

{

OPENSSL_cleanse(ec->key, ec->keylen);

- OPENSSL_free(ec->key);

+ free(ec->key);

ec->key = NULL;

ec->keylen = 0;

}

diff --git a/lib/libcrypto/cms/cms_ess.c b/lib/libcrypto/cms/cms_ess.c
index ed34ff32282..99a4da63562 100644
--- a/lib/libcrypto/cms/cms_ess.c
+++ b/lib/libcrypto/cms/cms_ess.c

@@ -63,7 +63,7 @@

DECLARE_ASN1_ITEM(CMS_ReceiptRequest)

DECLARE_ASN1_ITEM(CMS_Receipt)

-IMPLEMENT_ASN1_FUNCTIONS_const(CMS_ReceiptRequest)

+IMPLEMENT_ASN1_FUNCTIONS(CMS_ReceiptRequest)

/* ESS services: for now just Signed Receipt related */

@@ -157,7 +157,7 @@ int CMS_add1_ReceiptRequest(CMS_SignerInfo *si, CMS_ReceiptRequest *rr)

CMSerr(CMS_F_CMS_ADD1_RECEIPTREQUEST, ERR_R_MALLOC_FAILURE);

if (rrder)

- OPENSSL_free(rrder);

+ free(rrder);

return r;

@@ -344,7 +344,7 @@ int cms_Receipt_verify(CMS_ContentInfo *cms, CMS_ContentInfo *req_cms)

/* Get original receipt request details */

- if (!CMS_get1_ReceiptRequest(osi, &rr))

+ if (CMS_get1_ReceiptRequest(osi, &rr) <= 0)

{

CMSerr(CMS_F_CMS_RECEIPT_VERIFY, CMS_R_NO_RECEIPT_REQUEST);

goto err;

@@ -385,7 +385,7 @@ ASN1_OCTET_STRING *cms_encode_Receipt(CMS_SignerInfo *si)

/* Get original receipt request details */

- if (!CMS_get1_ReceiptRequest(si, &rr))

+ if (CMS_get1_ReceiptRequest(si, &rr) <= 0)

{

CMSerr(CMS_F_CMS_ENCODE_RECEIPT, CMS_R_NO_RECEIPT_REQUEST);

goto err;

diff --git a/lib/libcrypto/cms/cms_pwri.c b/lib/libcrypto/cms/cms_pwri.c
index b79612a12df..36a5db04b83 100644
--- a/lib/libcrypto/cms/cms_pwri.c
+++ b/lib/libcrypto/cms/cms_pwri.c

@@ -237,7 +237,7 @@ static int kek_unwrap_key(unsigned char *out, size_t *outlen,

/* Invalid size */

return 0;

}

- tmp = OPENSSL_malloc(inlen);

+ tmp = malloc(inlen);

/* setup IV by decrypting last two blocks */

EVP_DecryptUpdate(ctx, tmp + inlen - 2 * blocklen, &outl,

in + inlen - 2 * blocklen, blocklen * 2);

@@ -270,7 +270,7 @@ static int kek_unwrap_key(unsigned char *out, size_t *outlen,

rv = 1;

err:

OPENSSL_cleanse(tmp, inlen);

- OPENSSL_free(tmp);

+ free(tmp);

return rv;

}

@@ -405,7 +405,7 @@ int cms_RecipientInfo_pwri_crypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri,

if (!kek_wrap_key(NULL, &keylen, ec->key, ec->keylen, &kekctx))

goto err;

- key = OPENSSL_malloc(keylen);

+ key = malloc(keylen);

if (!key)

goto err;

@@ -417,7 +417,7 @@ int cms_RecipientInfo_pwri_crypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri,

}

else

{

- key = OPENSSL_malloc(pwri->encryptedKey->length);

+ key = malloc(pwri->encryptedKey->length);

if (!key)

{

@@ -446,7 +446,7 @@ int cms_RecipientInfo_pwri_crypt(CMS_ContentInfo *cms, CMS_RecipientInfo *ri,

EVP_CIPHER_CTX_cleanup(&kekctx);

if (!r && key)

- OPENSSL_free(key);

+ free(key);

X509_ALGOR_free(kekalg);

return r;

diff --git a/lib/libcrypto/cms/cms_sd.c b/lib/libcrypto/cms/cms_sd.c
index 591bfbec33b..d852af596d3 100644
--- a/lib/libcrypto/cms/cms_sd.c
+++ b/lib/libcrypto/cms/cms_sd.c

@@ -58,6 +58,7 @@

#include <openssl/err.h>

#include <openssl/cms.h>

#include "cms_lcl.h"

+#include "asn1_locl.h"

/* CMS SignedData Utilities */

@@ -218,10 +219,9 @@ int cms_set1_SignerIdentifier(CMS_SignerIdentifier *sid, X509 *cert, int type)

if (!X509_NAME_set(&sid->d.issuerAndSerialNumber->issuer,

X509_get_issuer_name(cert)))

goto merr;

- ASN1_STRING_free(sid->d.issuerAndSerialNumber->serialNumber);

- sid->d.issuerAndSerialNumber->serialNumber =

- ASN1_STRING_dup(X509_get_serialNumber(cert));

- if(!sid->d.issuerAndSerialNumber->serialNumber)

+ if (!ASN1_STRING_copy(

+ sid->d.issuerAndSerialNumber->serialNumber,

+ X509_get_serialNumber(cert)))

goto merr;

break;

@@ -341,16 +341,22 @@ CMS_SignerInfo *CMS_add1_signer(CMS_ContentInfo *cms,

if (!cms_set1_SignerIdentifier(si->sid, signer, type))

goto err;

- /* Since no EVP_PKEY_METHOD in 0.9.8 hard code SHA1 as default */

if (md == NULL)

- md = EVP_sha1();

- /* OpenSSL 0.9.8 only supports SHA1 with non-RSA keys */

+ {

+ int def_nid;

+ if (EVP_PKEY_get_default_digest_nid(pk, &def_nid) <= 0)

+ goto err;

+ md = EVP_get_digestbynid(def_nid);

+ if (md == NULL)

+ {

+ CMSerr(CMS_F_CMS_ADD1_SIGNER, CMS_R_NO_DEFAULT_DIGEST);

+ goto err;

+ }

- if ((pk->type != EVP_PKEY_RSA) && (EVP_MD_type(md) != NID_sha1))

+ if (!md)

{

- CMSerr(CMS_F_CMS_ADD1_SIGNER,

- CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE);

+ CMSerr(CMS_F_CMS_ADD1_SIGNER, CMS_R_NO_DIGEST_SET);

goto err;

}

@@ -379,37 +385,21 @@ CMS_SignerInfo *CMS_add1_signer(CMS_ContentInfo *cms,

}

- /* Since we have no EVP_PKEY_ASN1_METHOD in OpenSSL 0.9.8,

- * hard code algorithm parameters.

- */

- switch (pk->type)

+ if (pk->ameth && pk->ameth->pkey_ctrl)

{

- case EVP_PKEY_RSA:

- X509_ALGOR_set0(si->signatureAlgorithm,

- OBJ_nid2obj(NID_rsaEncryption),

- V_ASN1_NULL, 0);

- break;

- case EVP_PKEY_DSA:

- X509_ALGOR_set0(si->signatureAlgorithm,

- OBJ_nid2obj(NID_dsaWithSHA1),

- V_ASN1_UNDEF, 0);

- break;

- case EVP_PKEY_EC:

- X509_ALGOR_set0(si->signatureAlgorithm,

- OBJ_nid2obj(NID_ecdsa_with_SHA1),

- V_ASN1_UNDEF, 0);

- break;

- default:

- CMSerr(CMS_F_CMS_ADD1_SIGNER,

+ i = pk->ameth->pkey_ctrl(pk, ASN1_PKEY_CTRL_CMS_SIGN,

+ 0, si);

+ if (i == -2)

+ {

+ CMSerr(CMS_F_CMS_ADD1_SIGNER,

CMS_R_NOT_SUPPORTED_FOR_THIS_KEY_TYPE);

- goto err;

+ goto err;

+ }

+ if (i <= 0)

+ {

+ CMSerr(CMS_F_CMS_ADD1_SIGNER, CMS_R_CTRL_FAILURE);

+ goto err;

+ }

}

if (!(flags & CMS_NOATTR))

@@ -626,25 +616,6 @@ void CMS_SignerInfo_get0_algs(CMS_SignerInfo *si, EVP_PKEY **pk, X509 **signer,

*psig = si->signatureAlgorithm;

}

-/* In OpenSSL 0.9.8 we have the link between digest types and public

- * key types so we need to fixup the digest type if the public key

- * type is not appropriate.

- */

-static void cms_fixup_mctx(EVP_MD_CTX *mctx, EVP_PKEY *pkey)

- {

- if (EVP_MD_CTX_type(mctx) != NID_sha1)

- return;

-#ifndef OPENSSL_NO_DSA

- if (pkey->type == EVP_PKEY_DSA)

- mctx->digest = EVP_dss1();

-#endif

-#ifndef OPENSSL_NO_ECDSA

- if (pkey->type == EVP_PKEY_EC)

- mctx->digest = EVP_ecdsa();

-#endif

- }

static int cms_SignerInfo_content_sign(CMS_ContentInfo *cms,

CMS_SignerInfo *si, BIO *chain)

{

@@ -670,7 +641,8 @@ static int cms_SignerInfo_content_sign(CMS_ContentInfo *cms,

cms->d.signedData->encapContentInfo->eContentType;

unsigned char md[EVP_MAX_MD_SIZE];

unsigned int mdlen;

- EVP_DigestFinal_ex(&mctx, md, &mdlen);

+ if (!EVP_DigestFinal_ex(&mctx, md, &mdlen))

+ goto err;

if (!CMS_signed_add1_attr_by_NID(si, NID_pkcs9_messageDigest,

V_ASN1_OCTET_STRING,

md, mdlen))

@@ -686,19 +658,18 @@ static int cms_SignerInfo_content_sign(CMS_ContentInfo *cms,

{

unsigned char *sig;

unsigned int siglen;

- sig = OPENSSL_malloc(EVP_PKEY_size(si->pkey));

+ sig = malloc(EVP_PKEY_size(si->pkey));

if (!sig)

{

CMSerr(CMS_F_CMS_SIGNERINFO_CONTENT_SIGN,

ERR_R_MALLOC_FAILURE);

goto err;

}

- cms_fixup_mctx(&mctx, si->pkey);

if (!EVP_SignFinal(&mctx, sig, &siglen, si->pkey))

{

CMSerr(CMS_F_CMS_SIGNERINFO_CONTENT_SIGN,

CMS_R_SIGNFINAL_ERROR);

- OPENSSL_free(sig);

+ free(sig);

goto err;

}

ASN1_STRING_set0(si->signature, sig, siglen);

@@ -731,9 +702,10 @@ int cms_SignedData_final(CMS_ContentInfo *cms, BIO *chain)

int CMS_SignerInfo_sign(CMS_SignerInfo *si)

{

EVP_MD_CTX mctx;

+ EVP_PKEY_CTX *pctx;

unsigned char *abuf = NULL;

int alen;

- unsigned int siglen;

+ size_t siglen;

const EVP_MD *md = NULL;

md = EVP_get_digestbyobj(si->digestAlgorithm->algorithm);

@@ -748,40 +720,38 @@ int CMS_SignerInfo_sign(CMS_SignerInfo *si)

goto err;

}

- if (EVP_SignInit_ex(&mctx, md, NULL) <= 0)

+ if (EVP_DigestSignInit(&mctx, &pctx, md, NULL, si->pkey) <= 0)

goto err;

-#if 0

if (EVP_PKEY_CTX_ctrl(pctx, -1, EVP_PKEY_OP_SIGN,

EVP_PKEY_CTRL_CMS_SIGN, 0, si) <= 0)

{

CMSerr(CMS_F_CMS_SIGNERINFO_SIGN, CMS_R_CTRL_ERROR);

goto err;

}

-#endif

alen = ASN1_item_i2d((ASN1_VALUE *)si->signedAttrs,&abuf,

ASN1_ITEM_rptr(CMS_Attributes_Sign));

if(!abuf)

goto err;

- if (EVP_SignUpdate(&mctx, abuf, alen) <= 0)

+ if (EVP_DigestSignUpdate(&mctx, abuf, alen) <= 0)

goto err;

- siglen = EVP_PKEY_size(si->pkey);

- OPENSSL_free(abuf);

- abuf = OPENSSL_malloc(siglen);

+ if (EVP_DigestSignFinal(&mctx, NULL, &siglen) <= 0)

+ goto err;

+ free(abuf);

+ abuf = malloc(siglen);

if(!abuf)

goto err;

- cms_fixup_mctx(&mctx, si->pkey);

- if (EVP_SignFinal(&mctx, abuf, &siglen, si->pkey) <= 0)

+ if (EVP_DigestSignFinal(&mctx, abuf, &siglen) <= 0)

goto err;

-#if 0

if (EVP_PKEY_CTX_ctrl(pctx, -1, EVP_PKEY_OP_SIGN,

EVP_PKEY_CTRL_CMS_SIGN, 1, si) <= 0)

{

CMSerr(CMS_F_CMS_SIGNERINFO_SIGN, CMS_R_CTRL_ERROR);

goto err;

}

-#endif

EVP_MD_CTX_cleanup(&mctx);

ASN1_STRING_set0(si->signature, abuf, siglen);

@@ -790,7 +760,7 @@ int CMS_SignerInfo_sign(CMS_SignerInfo *si)

err:

if (abuf)

- OPENSSL_free(abuf);

+ free(abuf);

EVP_MD_CTX_cleanup(&mctx);

return 0;

@@ -799,6 +769,7 @@ int CMS_SignerInfo_sign(CMS_SignerInfo *si)

int CMS_SignerInfo_verify(CMS_SignerInfo *si)

{

EVP_MD_CTX mctx;

+ EVP_PKEY_CTX *pctx;

unsigned char *abuf = NULL;

int alen, r = -1;

const EVP_MD *md = NULL;

@@ -813,24 +784,23 @@ int CMS_SignerInfo_verify(CMS_SignerInfo *si)

if (md == NULL)

return -1;

EVP_MD_CTX_init(&mctx);

- if (EVP_VerifyInit_ex(&mctx, md, NULL) <= 0)

+ if (EVP_DigestVerifyInit(&mctx, &pctx, md, NULL, si->pkey) <= 0)

goto err;

alen = ASN1_item_i2d((ASN1_VALUE *)si->signedAttrs,&abuf,

ASN1_ITEM_rptr(CMS_Attributes_Verify));

if(!abuf)

goto err;

- r = EVP_VerifyUpdate(&mctx, abuf, alen);

- OPENSSL_free(abuf);

+ r = EVP_DigestVerifyUpdate(&mctx, abuf, alen);

+ free(abuf);

if (r <= 0)

{

r = -1;

goto err;

}

- cms_fixup_mctx(&mctx, si->pkey);

- r = EVP_VerifyFinal(&mctx,

- si->signature->data, si->signature->length, si->pkey);

- if (!r)

+ r = EVP_DigestVerifyFinal(&mctx,

+ si->signature->data, si->signature->length);

+ if (r <= 0)

CMSerr(CMS_F_CMS_SIGNERINFO_VERIFY, CMS_R_VERIFICATION_FAILURE);

err:

EVP_MD_CTX_cleanup(&mctx);

@@ -922,7 +892,6 @@ int CMS_SignerInfo_verify_content(CMS_SignerInfo *si, BIO *chain)

}

else

{

- cms_fixup_mctx(&mctx, si->pkey);

r = EVP_VerifyFinal(&mctx, si->signature->data,

si->signature->length, si->pkey);

if (r <= 0)

@@ -948,7 +917,7 @@ int CMS_add_smimecap(CMS_SignerInfo *si, STACK_OF(X509_ALGOR) *algs)

return 0;

r = CMS_signed_add1_attr_by_NID(si, NID_SMIMECapabilities,

V_ASN1_SEQUENCE, smder, smderlen);

- OPENSSL_free(smder);

+ free(smder);

return r;

}

@@ -991,17 +960,19 @@ static int cms_add_cipher_smcap(STACK_OF(X509_ALGOR) **sk, int nid, int arg)

return CMS_add_simple_smimecap(sk, nid, arg);

return 1;

}

-#if 0

static int cms_add_digest_smcap(STACK_OF(X509_ALGOR) **sk, int nid, int arg)

{

if (EVP_get_digestbynid(nid))

return CMS_add_simple_smimecap(sk, nid, arg);

return 1;

}

-#endif

int CMS_add_standard_smimecap(STACK_OF(X509_ALGOR) **smcap)

{

if (!cms_add_cipher_smcap(smcap, NID_aes_256_cbc, -1)

+ || !cms_add_digest_smcap(smcap, NID_id_GostR3411_94, -1)

+ || !cms_add_cipher_smcap(smcap, NID_id_Gost28147_89, -1)

|| !cms_add_cipher_smcap(smcap, NID_aes_192_cbc, -1)

|| !cms_add_cipher_smcap(smcap, NID_aes_128_cbc, -1)

|| !cms_add_cipher_smcap(smcap, NID_des_ede3_cbc, -1)