OpenCoverage

p12_mutl.c

Absolute File Name:/home/opencoverage/opencoverage/guest-scripts/libressl/src/crypto/pkcs12/p12_mutl.c
Source codeSwitch to Preprocessed file
LineSourceCount
1/* $OpenBSD: p12_mutl.c,v 1.23 2017/01/29 17:49:23 beck Exp $ */-
2/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL-
3 * project 1999.-
4 */-
5/* ====================================================================-
6 * Copyright (c) 1999 The OpenSSL Project. All rights reserved.-
7 *-
8 * Redistribution and use in source and binary forms, with or without-
9 * modification, are permitted provided that the following conditions-
10 * are met:-
11 *-
12 * 1. Redistributions of source code must retain the above copyright-
13 * notice, this list of conditions and the following disclaimer.-
14 *-
15 * 2. Redistributions in binary form must reproduce the above copyright-
16 * notice, this list of conditions and the following disclaimer in-
17 * the documentation and/or other materials provided with the-
18 * distribution.-
19 *-
20 * 3. All advertising materials mentioning features or use of this-
21 * software must display the following acknowledgment:-
22 * "This product includes software developed by the OpenSSL Project-
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"-
24 *-
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to-
26 * endorse or promote products derived from this software without-
27 * prior written permission. For written permission, please contact-
28 * licensing@OpenSSL.org.-
29 *-
30 * 5. Products derived from this software may not be called "OpenSSL"-
31 * nor may "OpenSSL" appear in their names without prior written-
32 * permission of the OpenSSL Project.-
33 *-
34 * 6. Redistributions of any form whatsoever must retain the following-
35 * acknowledgment:-
36 * "This product includes software developed by the OpenSSL Project-
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"-
38 *-
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY-
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE-
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR-
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR-
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,-
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT-
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;-
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)-
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,-
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)-
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED-
50 * OF THE POSSIBILITY OF SUCH DAMAGE.-
51 * ====================================================================-
52 *-
53 * This product includes cryptographic software written by Eric Young-
54 * (eay@cryptsoft.com). This product includes software written by Tim-
55 * Hudson (tjh@cryptsoft.com).-
56 *-
57 */-
58-
59#include <stdio.h>-
60#include <stdlib.h>-
61#include <string.h>-
62-
63#include <openssl/opensslconf.h>-
64-
65#ifndef OPENSSL_NO_HMAC-
66-
67#include <openssl/err.h>-
68#include <openssl/hmac.h>-
69#include <openssl/pkcs12.h>-
70-
71/* Generate a MAC */-
72int-
73PKCS12_gen_mac(PKCS12 *p12, const char *pass, int passlen,-
74 unsigned char *mac, unsigned int *maclen)-
75{-
76 const EVP_MD *md_type;-
77 HMAC_CTX hmac;-
78 unsigned char key[EVP_MAX_MD_SIZE], *salt;-
79 int saltlen, iter;-
80 int md_size;-
81-
82 if (!PKCS7_type_is_data(p12->authsafes)) {
!(OBJ_obj2nid(...->type) == 21)Description
TRUEnever evaluated
FALSEnever evaluated
0
83 PKCS12error(PKCS12_R_CONTENT_TYPE_NOT_DATA);-
84 return 0;
never executed: return 0;
0
85 }-
86-
87 salt = p12->mac->salt->data;-
88 saltlen = p12->mac->salt->length;-
89 if (!p12->mac->iter)
!p12->mac->iterDescription
TRUEnever evaluated
FALSEnever evaluated
0
90 iter = 1;
never executed: iter = 1;
0
91 else if ((iter = ASN1_INTEGER_get(p12->mac->iter)) <= 0) {
(iter = ASN1_I...c->iter)) <= 0Description
TRUEnever evaluated
FALSEnever evaluated
0
92 PKCS12error(PKCS12_R_DECODE_ERROR);-
93 return 0;
never executed: return 0;
0
94 }-
95 if (!(md_type = EVP_get_digestbyobj(
!(md_type = EV...algorithm))) )Description
TRUEnever evaluated
FALSEnever evaluated
0
96 p12->mac->dinfo->algor->algorithm))) {
!(md_type = EV...algorithm))) )Description
TRUEnever evaluated
FALSEnever evaluated
0
97 PKCS12error(PKCS12_R_UNKNOWN_DIGEST_ALGORITHM);-
98 return 0;
never executed: return 0;
0
99 }-
100 md_size = EVP_MD_size(md_type);-
101 if (md_size < 0)
md_size < 0Description
TRUEnever evaluated
FALSEnever evaluated
0
102 return 0;
never executed: return 0;
0
103 if (!PKCS12_key_gen(pass, passlen, salt, saltlen, PKCS12_MAC_ID, iter,
!PKCS12_key_ge... key, md_type)Description
TRUEnever evaluated
FALSEnever evaluated
0
104 md_size, key, md_type)) {
!PKCS12_key_ge... key, md_type)Description
TRUEnever evaluated
FALSEnever evaluated
0
105 PKCS12error(PKCS12_R_KEY_GEN_ERROR);-
106 return 0;
never executed: return 0;
0
107 }-
108 HMAC_CTX_init(&hmac);-
109 if (!HMAC_Init_ex(&hmac, key, md_size, md_type, NULL) ||
!HMAC_Init_ex(... ((void *)0) )Description
TRUEnever evaluated
FALSEnever evaluated
0
110 !HMAC_Update(&hmac, p12->authsafes->d.data->data,
!HMAC_Update(&....data->length)Description
TRUEnever evaluated
FALSEnever evaluated
0
111 p12->authsafes->d.data->length) ||
!HMAC_Update(&....data->length)Description
TRUEnever evaluated
FALSEnever evaluated
0
112 !HMAC_Final(&hmac, mac, maclen)) {
!HMAC_Final(&h..., mac, maclen)Description
TRUEnever evaluated
FALSEnever evaluated
0
113 HMAC_CTX_cleanup(&hmac);-
114 return 0;
never executed: return 0;
0
115 }-
116 HMAC_CTX_cleanup(&hmac);-
117 return 1;
never executed: return 1;
0
118}-
119-
120/* Verify the mac */-
121int-
122PKCS12_verify_mac(PKCS12 *p12, const char *pass, int passlen)-
123{-
124 unsigned char mac[EVP_MAX_MD_SIZE];-
125 unsigned int maclen;-
126-
127 if (p12->mac == NULL) {
p12->mac == ((void *)0)Description
TRUEnever evaluated
FALSEnever evaluated
0
128 PKCS12error(PKCS12_R_MAC_ABSENT);-
129 return 0;
never executed: return 0;
0
130 }-
131 if (!PKCS12_gen_mac(p12, pass, passlen, mac, &maclen)) {
!PKCS12_gen_ma... mac, &maclen)Description
TRUEnever evaluated
FALSEnever evaluated
0
132 PKCS12error(PKCS12_R_MAC_GENERATION_ERROR);-
133 return 0;
never executed: return 0;
0
134 }-
135 if ((maclen != (unsigned int)p12->mac->dinfo->digest->length) ||
(maclen != (un...igest->length)Description
TRUEnever evaluated
FALSEnever evaluated
0
136 memcmp(mac, p12->mac->dinfo->digest->data, maclen))
memcmp(mac, p1...>data, maclen)Description
TRUEnever evaluated
FALSEnever evaluated
0
137 return 0;
never executed: return 0;
0
138 return 1;
never executed: return 1;
0
139}-
140-
141/* Set a mac */-
142-
143int-
144PKCS12_set_mac(PKCS12 *p12, const char *pass, int passlen, unsigned char *salt,-
145 int saltlen, int iter, const EVP_MD *md_type)-
146{-
147 unsigned char mac[EVP_MAX_MD_SIZE];-
148 unsigned int maclen;-
149-
150 if (!md_type)
!md_typeDescription
TRUEnever evaluated
FALSEnever evaluated
0
151 md_type = EVP_sha1();
never executed: md_type = EVP_sha1();
0
152 if (PKCS12_setup_mac(p12, iter, salt, saltlen, md_type) ==
PKCS12_setup_m... md_type) == 0Description
TRUEnever evaluated
FALSEnever evaluated
0
153 PKCS12_ERROR) {
PKCS12_setup_m... md_type) == 0Description
TRUEnever evaluated
FALSEnever evaluated
0
154 PKCS12error(PKCS12_R_MAC_SETUP_ERROR);-
155 return 0;
never executed: return 0;
0
156 }-
157 if (!PKCS12_gen_mac(p12, pass, passlen, mac, &maclen)) {
!PKCS12_gen_ma... mac, &maclen)Description
TRUEnever evaluated
FALSEnever evaluated
0
158 PKCS12error(PKCS12_R_MAC_GENERATION_ERROR);-
159 return 0;
never executed: return 0;
0
160 }-
161 if (!(ASN1_STRING_set(p12->mac->dinfo->digest, mac, maclen))) {
!(ASN1_STRING_... mac, maclen))Description
TRUEnever evaluated
FALSEnever evaluated
0
162 PKCS12error(PKCS12_R_MAC_STRING_SET_ERROR);-
163 return 0;
never executed: return 0;
0
164 }-
165 return 1;
never executed: return 1;
0
166}-
167-
168/* Set up a mac structure */-
169int-
170PKCS12_setup_mac(PKCS12 *p12, int iter, unsigned char *salt, int saltlen,-
171 const EVP_MD *md_type)-
172{-
173 if (!(p12->mac = PKCS12_MAC_DATA_new()))
!(p12->mac = P...AC_DATA_new())Description
TRUEnever evaluated
FALSEnever evaluated
0
174 return PKCS12_ERROR;
never executed: return 0;
0
175 if (iter > 1) {
iter > 1Description
TRUEnever evaluated
FALSEnever evaluated
0
176 if (!(p12->mac->iter = ASN1_INTEGER_new())) {
!(p12->mac->it...INTEGER_new())Description
TRUEnever evaluated
FALSEnever evaluated
0
177 PKCS12error(ERR_R_MALLOC_FAILURE);-
178 return 0;
never executed: return 0;
0
179 }-
180 if (!ASN1_INTEGER_set(p12->mac->iter, iter)) {
!ASN1_INTEGER_...c->iter, iter)Description
TRUEnever evaluated
FALSEnever evaluated
0
181 PKCS12error(ERR_R_MALLOC_FAILURE);-
182 return 0;
never executed: return 0;
0
183 }-
184 }
never executed: end of block
0
185 if (!saltlen)
!saltlenDescription
TRUEnever evaluated
FALSEnever evaluated
0
186 saltlen = PKCS12_SALT_LEN;
never executed: saltlen = 8;
0
187 if (!(p12->mac->salt->data = malloc(saltlen))) {
!(p12->mac->sa...lloc(saltlen))Description
TRUEnever evaluated
FALSEnever evaluated
0
188 PKCS12error(ERR_R_MALLOC_FAILURE);-
189 return 0;
never executed: return 0;
0
190 }-
191 p12->mac->salt->length = saltlen;-
192 if (!salt)
!saltDescription
TRUEnever evaluated
FALSEnever evaluated
0
193 arc4random_buf(p12->mac->salt->data, saltlen);
never executed: arc4random_buf(p12->mac->salt->data, saltlen);
0
194 else-
195 memcpy (p12->mac->salt->data, salt, saltlen);
never executed: memcpy (p12->mac->salt->data, salt, saltlen);
0
196 p12->mac->dinfo->algor->algorithm = OBJ_nid2obj(EVP_MD_type(md_type));-
197 if (!(p12->mac->dinfo->algor->parameter = ASN1_TYPE_new())) {
!(p12->mac->di...N1_TYPE_new())Description
TRUEnever evaluated
FALSEnever evaluated
0
198 PKCS12error(ERR_R_MALLOC_FAILURE);-
199 return 0;
never executed: return 0;
0
200 }-
201 p12->mac->dinfo->algor->parameter->type = V_ASN1_NULL;-
202-
203 return 1;
never executed: return 1;
0
204}-
205#endif-
Source codeSwitch to Preprocessed file
Generated by Squish Coco 4.2.2