Coverage Report

Created: 2020-03-07 10:10

/libfido2/src/eddsa.c
Line
Count
Source
1
/*
2
 * Copyright (c) 2019 Yubico AB. All rights reserved.
3
 * Use of this source code is governed by a BSD-style
4
 * license that can be found in the LICENSE file.
5
 */
6
7
#include <openssl/bn.h>
8
#include <openssl/ec.h>
9
#include <openssl/evp.h>
10
#include <openssl/obj_mac.h>
11
12
#include <string.h>
13
#include "fido.h"
14
#include "fido/eddsa.h"
15
16
#if defined(LIBRESSL_VERSION_NUMBER) || OPENSSL_VERSION_NUMBER < 0x10101000L
17
EVP_PKEY *
18
EVP_PKEY_new_raw_public_key(int type, ENGINE *e, const unsigned char *key,
19
    size_t keylen)
20
{
21
        (void)type;
22
        (void)e;
23
        (void)key;
24
        (void)keylen;
25
26
        fido_log_debug("%s: unimplemented", __func__);
27
28
        return (NULL);
29
}
30
31
int
32
EVP_PKEY_get_raw_public_key(const EVP_PKEY *pkey, unsigned char *pub,
33
    size_t *len)
34
{
35
        (void)pkey;
36
        (void)pub;
37
        (void)len;
38
39
        fido_log_debug("%s: unimplemented", __func__);
40
41
        return (0);
42
}
43
44
int
45
EVP_DigestVerify(EVP_MD_CTX *ctx, const unsigned char *sigret, size_t siglen,
46
    const unsigned char *tbs, size_t tbslen)
47
{
48
        (void)ctx;
49
        (void)sigret;
50
        (void)siglen;
51
        (void)tbs;
52
        (void)tbslen;
53
54
        fido_log_debug("%s: unimplemented", __func__);
55
56
        return (0);
57
}
58
#endif /* LIBRESSL_VERSION_NUMBER || OPENSSL_VERSION_NUMBER < 0x10101000L */
59
60
#if OPENSSL_VERSION_NUMBER < 0x10100000L
61
EVP_MD_CTX *
62
EVP_MD_CTX_new(void)
63
{
64
        fido_log_debug("%s: unimplemented", __func__);
65
66
        return (NULL);
67
}
68
69
void
70
EVP_MD_CTX_free(EVP_MD_CTX *ctx)
71
{
72
        (void)ctx;
73
}
74
#endif /* OPENSSL_VERSION_NUMBER < 0x10100000L */
75
76
static int
77
decode_coord(const cbor_item_t *item, void *xy, size_t xy_len)
78
166
{
79
166
        if (cbor_isa_bytestring(item) == false ||
80
166
            cbor_bytestring_is_definite(item) == false ||
81
166
            cbor_bytestring_length(item) != xy_len) {
82
3
                fido_log_debug("%s: cbor type", __func__);
83
3
                return (-1);
84
3
        }
85
163
86
163
        memcpy(xy, cbor_bytestring_handle(item), xy_len);
87
163
88
163
        return (0);
89
163
}
90
91
static int
92
decode_pubkey_point(const cbor_item_t *key, const cbor_item_t *val, void *arg)
93
699
{
94
699
        eddsa_pk_t *k = arg;
95
699
96
699
        if (cbor_isa_negint(key) == false ||
97
699
            cbor_int_get_width(key) != CBOR_INT_8)
98
353
                return (0); /* ignore */
99
346
100
346
        switch (cbor_get_uint8(key)) {
101
346
        case 1: /* x coordinate */
102
166
                return (decode_coord(val, &k->x, sizeof(k->x)));
103
180
        }
104
180
105
180
        return (0); /* ignore */
106
180
}
107
108
int
109
eddsa_pk_decode(const cbor_item_t *item, eddsa_pk_t *k)
110
175
{
111
175
        if (cbor_isa_map(item) == false ||
112
175
            cbor_map_is_definite(item) == false ||
113
175
            cbor_map_iter(item, k, decode_pubkey_point) < 0) {
114
3
                fido_log_debug("%s: cbor type", __func__);
115
3
                return (-1);
116
3
        }
117
172
118
172
        return (0);
119
172
}
120
121
eddsa_pk_t *
122
eddsa_pk_new(void)
123
2.04k
{
124
2.04k
        return (calloc(1, sizeof(eddsa_pk_t)));
125
2.04k
}
126
127
void
128
eddsa_pk_free(eddsa_pk_t **pkp)
129
4.53k
{
130
4.53k
        eddsa_pk_t *pk;
131
4.53k
132
4.53k
        if (pkp == NULL || (pk = *pkp) == NULL)
133
4.53k
                return;
134
2.04k
135
2.04k
        explicit_bzero(pk, sizeof(*pk));
136
2.04k
        free(pk);
137
2.04k
138
2.04k
        *pkp = NULL;
139
2.04k
}
140
141
int
142
eddsa_pk_from_ptr(eddsa_pk_t *pk, const void *ptr, size_t len)
143
1.02k
{
144
1.02k
        if (len < sizeof(*pk))
145
364
                return (FIDO_ERR_INVALID_ARGUMENT);
146
661
147
661
        memcpy(pk, ptr, sizeof(*pk));
148
661
149
661
        return (FIDO_OK);
150
661
}
151
152
EVP_PKEY *
153
eddsa_pk_to_EVP_PKEY(const eddsa_pk_t *k)
154
1.05k
{
155
1.05k
        EVP_PKEY *pkey = NULL;
156
1.05k
157
1.05k
        if ((pkey = EVP_PKEY_new_raw_public_key(EVP_PKEY_ED25519, NULL, k->x,
158
1.05k
            sizeof(k->x))) == NULL)
159
1.05k
                fido_log_debug("%s: EVP_PKEY_new_raw_public_key", __func__);
160
1.05k
161
1.05k
        return (pkey);
162
1.05k
}
163
164
int
165
eddsa_pk_from_EVP_PKEY(eddsa_pk_t *pk, const EVP_PKEY *pkey)
166
1.01k
{
167
1.01k
        size_t len = 0;
168
1.01k
169
1.01k
        if (EVP_PKEY_get_raw_public_key(pkey, NULL, &len) != 1 ||
170
1.01k
            len != sizeof(pk->x))
171
5
                return (FIDO_ERR_INTERNAL);
172
1.01k
        if (EVP_PKEY_get_raw_public_key(pkey, pk->x, &len) != 1 ||
173
1.01k
            len != sizeof(pk->x))
174
3
                return (FIDO_ERR_INTERNAL);
175
1.01k
176
1.01k
        return (FIDO_OK);
177
1.01k
}