OpenCoverage

a_sign.c

Absolute File Name:

/home/opencoverage/opencoverage/guest-scripts/libressl/src/crypto/asn1/a_sign.c

Source code

Switch to Preprocessed file

Line Source Count

1 /* $OpenBSD: a_sign.c,v 1.23 2017/05/02 03:59:44 deraadt Exp $ */ -

4 * -

5 * This package is an SSL implementation written -

6 * by Eric Young (eay@cryptsoft.com). -

7 * The implementation was written so as to conform with Netscapes SSL. -

8 * -

9 * This library is free for commercial and non-commercial use as long as -

10 * the following conditions are aheared to. The following conditions -

11 * apply to all code found in this distribution, be it the RC4, RSA, -

12 * lhash, DES, etc., code; not just the SSL code. The SSL documentation -

13 * included with this distribution is covered by the same copyright terms -

14 * except that the holder is Tim Hudson (tjh@cryptsoft.com). -

15 * -

16 * Copyright remains Eric Young's, and as such any Copyright notices in -

17 * the code are not to be removed. -

18 * If this package is used in a product, Eric Young should be given attribution -

19 * as the author of the parts of the library used. -

20 * This can be in the form of a textual message at program startup or -

21 * in documentation (online or textual) provided with the package. -

22 * -

23 * Redistribution and use in source and binary forms, with or without -

24 * modification, are permitted provided that the following conditions -

25 * are met: -

26 * 1. Redistributions of source code must retain the copyright -

27 * notice, this list of conditions and the following disclaimer. -

28 * 2. Redistributions in binary form must reproduce the above copyright -

29 * notice, this list of conditions and the following disclaimer in the -

30 * documentation and/or other materials provided with the distribution. -

31 * 3. All advertising materials mentioning features or use of this software -

32 * must display the following acknowledgement: -

33 * "This product includes cryptographic software written by -

34 * Eric Young (eay@cryptsoft.com)" -

35 * The word 'cryptographic' can be left out if the rouines from the library -

36 * being used are not cryptographic related :-). -

37 * 4. If you include any Windows specific code (or a derivative thereof) from -

38 * the apps directory (application code) you must include an acknowledgement: -

39 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" -

40 * -

41 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND -

42 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE -

43 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE -

44 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE -

45 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL -

46 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS -

47 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) -

48 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT -

49 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY -

50 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF -

51 * SUCH DAMAGE. -

52 * -

53 * The licence and distribution terms for any publically available version or -

54 * derivative of this code cannot be changed. i.e. this code cannot simply be -

55 * copied and put under another distribution licence -

56 * [including the GNU Public Licence.] -

57 */ -

58 /* ==================================================================== -

60 * -

61 * Redistribution and use in source and binary forms, with or without -

62 * modification, are permitted provided that the following conditions -

63 * are met: -

64 * -

65 * 1. Redistributions of source code must retain the above copyright -

66 * notice, this list of conditions and the following disclaimer. -

67 * -

68 * 2. Redistributions in binary form must reproduce the above copyright -

69 * notice, this list of conditions and the following disclaimer in -

70 * the documentation and/or other materials provided with the -

71 * distribution. -

72 * -

73 * 3. All advertising materials mentioning features or use of this -

74 * software must display the following acknowledgment: -

75 * "This product includes software developed by the OpenSSL Project -

76 * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" -

77 * -

78 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to -

79 * endorse or promote products derived from this software without -

80 * prior written permission. For written permission, please contact -

81 * openssl-core@openssl.org. -

82 * -

83 * 5. Products derived from this software may not be called "OpenSSL" -

84 * nor may "OpenSSL" appear in their names without prior written -

85 * permission of the OpenSSL Project. -

86 * -

87 * 6. Redistributions of any form whatsoever must retain the following -

88 * acknowledgment: -

89 * "This product includes software developed by the OpenSSL Project -

90 * for use in the OpenSSL Toolkit (http://www.openssl.org/)" -

91 * -

92 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY -

93 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE -

94 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR -

95 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR -

96 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, -

97 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT -

98 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; -

99 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) -

100 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, -

101 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) -

102 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED -

103 * OF THE POSSIBILITY OF SUCH DAMAGE. -

104 * ==================================================================== -

105 * -

106 * This product includes cryptographic software written by Eric Young -

107 * (eay@cryptsoft.com). This product includes software written by Tim -

108 * Hudson (tjh@cryptsoft.com). -

109 * -

110 */ -

111 -

112 #include <sys/types.h> -

113 -

114 #include <stdio.h> -

115 #include <string.h> -

116 #include <time.h> -

117 -

118 #include <openssl/bn.h> -

119 #include <openssl/buffer.h> -

120 #include <openssl/err.h> -

121 #include <openssl/evp.h> -

122 #include <openssl/objects.h> -

123 #include <openssl/x509.h> -

124 -

125 #include "asn1_locl.h" -

126 -

127 int -

128 ASN1_item_sign(const ASN1_ITEM *it, X509_ALGOR *algor1, X509_ALGOR *algor2, -

129 ASN1_BIT_STRING *signature, void *asn, EVP_PKEY *pkey, const EVP_MD *type) -

130 { -

131 EVP_MD_CTX ctx; -

132 EVP_MD_CTX_init(&ctx); -

133

if (!EVP_DigestSignInit(&ctx, NULL, type, NULL, pkey)) {

!EVP_DigestSig...d *)0) , pkey)	Description
TRUE	never evaluated
FALSE	never evaluated

134 EVP_MD_CTX_cleanup(&ctx); -

135

return 0;

never executed: return 0;

136 } -

137

return ASN1_item_sign_ctx(it, algor1, algor2, signature, asn, &ctx);

never executed: return ASN1_item_sign_ctx(it, algor1, algor2, signature, asn, &ctx);

138 } -

139 -

140 -

141 int -

142 ASN1_item_sign_ctx(const ASN1_ITEM *it, X509_ALGOR *algor1, X509_ALGOR *algor2, -

143 ASN1_BIT_STRING *signature, void *asn, EVP_MD_CTX *ctx) -

144 { -

145 const EVP_MD *type; -

146 EVP_PKEY *pkey; -

147 unsigned char *buf_in = NULL, *buf_out = NULL; -

148 size_t inl = 0, outl = 0, outll = 0; -

149 int signid, paramtype; -

150 int rv; -

151 -

152 type = EVP_MD_CTX_md(ctx); -

153 pkey = EVP_PKEY_CTX_get0_pkey(ctx->pctx); -

154 -

155

if (!type || !pkey) {

!type	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

!pkey	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

156 ASN1error(ASN1_R_CONTEXT_NOT_INITIALISED); -

157

return 0;

never executed: return 0;

158 } -

159 -

160

if (pkey->ameth->item_sign) {

pkey->ameth->item_sign	Description
TRUE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1
FALSE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1

161 rv = pkey->ameth->item_sign(ctx, it, asn, algor1, algor2, -

162 signature); -

163

if (rv == 1)

rv == 1	Description
TRUE	never evaluated
FALSE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1

0-1

164

outl = signature->length;

never executed: outl = signature->length;

165 /* Return value meanings: -

166 * <=0: error. -

167 * 1: method does everything. -

168 * 2: carry on as normal. -

169 * 3: ASN1 method sets algorithm identifiers: just sign. -

170 */ -

171

if (rv <= 0)

rv <= 0	Description
TRUE	never evaluated
FALSE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1

0-1

172

ASN1error(ERR_R_EVP_LIB);

never executed: ERR_put_error(13,(0xfff),(6),__FILE__,172);

173

if (rv <= 1)

rv <= 1	Description
TRUE	never evaluated
FALSE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1

0-1

174

goto err;

never executed: goto err;

175

} else

executed 1 time by 1 test: end of block

Executed by:

libcrypto.so.44.0.1

176

rv = 2;

executed 1 time by 1 test: rv = 2;

Executed by:

libcrypto.so.44.0.1

177 -

178

if (rv == 2) {

rv == 2	Description
TRUE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1
FALSE	never evaluated

0-2

179

if (type->flags & EVP_MD_FLAG_PKEY_METHOD_SIGNATURE) {

type->flags & 0x0004	Description
TRUE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1
FALSE	never evaluated

0-2

180

if (!pkey->ameth ||

!pkey->ameth	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

181

!OBJ_find_sigid_by_algs(&signid,

!OBJ_find_sigi...meth->pkey_id)	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

182

EVP_MD_nid(type), pkey->ameth->pkey_id)) {

!OBJ_find_sigi...meth->pkey_id)	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

183 ASN1error(ASN1_R_DIGEST_AND_KEY_TYPE_NOT_SUPPORTED); -

184

return 0;

never executed: return 0;

185 } -

186

} else

executed 2 times by 1 test: end of block

Executed by:

libcrypto.so.44.0.1

187

signid = type->pkey_type;

never executed: signid = type->pkey_type;

188 -

189

if (pkey->ameth->pkey_flags & ASN1_PKEY_SIGPARAM_NULL)

pkey->ameth->pkey_flags & 0x4	Description
TRUE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1
FALSE	evaluated 1 time by 1 test Evaluated by: libcrypto.so.44.0.1

190

paramtype = V_ASN1_NULL;

executed 1 time by 1 test: paramtype = 5;

Executed by:

libcrypto.so.44.0.1

191 else -

192

paramtype = V_ASN1_UNDEF;

executed 1 time by 1 test: paramtype = -1;

Executed by:

libcrypto.so.44.0.1

193 -

194

if (algor1)

algor1	Description
TRUE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1
FALSE	never evaluated

0-2

195

X509_ALGOR_set0(algor1,

executed 2 times by 1 test: X509_ALGOR_set0(algor1, OBJ_nid2obj(signid), paramtype, ((void *)0) );

Executed by:

libcrypto.so.44.0.1

196

OBJ_nid2obj(signid), paramtype, NULL);

executed 2 times by 1 test: X509_ALGOR_set0(algor1, OBJ_nid2obj(signid), paramtype, ((void *)0) );

Executed by:

libcrypto.so.44.0.1

197

if (algor2)

algor2	Description
TRUE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1
FALSE	never evaluated

0-2

198

X509_ALGOR_set0(algor2,

executed 2 times by 1 test: X509_ALGOR_set0(algor2, OBJ_nid2obj(signid), paramtype, ((void *)0) );

Executed by:

libcrypto.so.44.0.1

199

OBJ_nid2obj(signid), paramtype, NULL);

executed 2 times by 1 test: X509_ALGOR_set0(algor2, OBJ_nid2obj(signid), paramtype, ((void *)0) );

Executed by:

libcrypto.so.44.0.1

200 -

201

}

executed 2 times by 1 test: end of block

Executed by:

libcrypto.so.44.0.1

202 -

203 inl = ASN1_item_i2d(asn, &buf_in, it); -

204 outll = outl = EVP_PKEY_size(pkey); -

205 buf_out = malloc(outl); -

206

if ((buf_in == NULL) || (buf_out == NULL)) {

(buf_in == ((void *)0) )	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

(buf_out == ((void *)0) )	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

207 outl = 0; -

208 ASN1error(ERR_R_MALLOC_FAILURE); -

209

goto err;

never executed: goto err;

210 } -

211 -

212

if (!EVP_DigestSignUpdate(ctx, buf_in, inl) ||

!EVP_DigestUpd...tx,buf_in,inl)	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

213

!EVP_DigestSignFinal(ctx, buf_out, &outl)) {

!EVP_DigestSig...uf_out, &outl)	Description
TRUE	never evaluated
FALSE	evaluated 2 times by 1 test Evaluated by: libcrypto.so.44.0.1

0-2

214 outl = 0; -

215 ASN1error(ERR_R_EVP_LIB); -

216

goto err;

never executed: goto err;

217 } -

218 free(signature->data); -

219 signature->data = buf_out; -

220 buf_out = NULL; -

221 signature->length = outl; -

222 /* In the interests of compatibility, I'll make sure that -

223 * the bit string has a 'not-used bits' value of 0 -

224 */ -

225 signature->flags &= ~(ASN1_STRING_FLAG_BITS_LEFT|0x07); -

226 signature->flags |= ASN1_STRING_FLAG_BITS_LEFT; -

227 -

228

err:

code before this statement executed 2 times by 1 test: err:

Executed by:

libcrypto.so.44.0.1

229 EVP_MD_CTX_cleanup(ctx); -

230 freezero((char *)buf_in, inl); -

231 freezero((char *)buf_out, outll); -

232

return (outl);

executed 2 times by 1 test: return (outl);

Executed by:

libcrypto.so.44.0.1

233 } -

Source code

Switch to Preprocessed file

Generated by Squish Coco 4.2.2