diff options
author | Dmitry Belyavskiy <beldmit@gmail.com> | 2020-05-10 15:14:48 +0300 |
---|---|---|
committer | Dmitry Belyavskiy <beldmit@gmail.com> | 2020-05-10 17:05:15 +0300 |
commit | 9cf021b8f3cc7b0f49ecd2f165bd1864903c90d0 (patch) | |
tree | d7b377bcfe638510f20e37574e9bbc559aab324a /gost_gost2015.c | |
parent | fd5447e7fca18868178b225de76b49bf3dce90c6 (diff) | |
download | gost-engine-9cf021b8f3cc7b0f49ecd2f165bd1864903c90d0.zip gost-engine-9cf021b8f3cc7b0f49ecd2f165bd1864903c90d0.tar.gz gost-engine-9cf021b8f3cc7b0f49ecd2f165bd1864903c90d0.tar.bz2 |
GOST CMS encryption implementation.
Diffstat (limited to 'gost_gost2015.c')
-rw-r--r-- | gost_gost2015.c | 51 |
1 files changed, 51 insertions, 0 deletions
diff --git a/gost_gost2015.c b/gost_gost2015.c index a9e3d35..a473375 100644 --- a/gost_gost2015.c +++ b/gost_gost2015.c @@ -2,6 +2,7 @@ #include "gost_gost2015.h" #include "e_gost_err.h" #include <string.h> +#include <openssl/rand.h> int gost2015_final_call(EVP_CIPHER_CTX *ctx, EVP_MD_CTX *omac_ctx, size_t mac_size, unsigned char *encrypted_mac, @@ -140,3 +141,53 @@ int gost2015_process_unprotected_attributes(STACK_OF(X509_ATTRIBUTE) *attrs, } return 1; } + +int gost2015_acpkm_omac_init(int nid, int enc, const unsigned char *inkey, + EVP_MD_CTX *omac_ctx, + unsigned char *outkey, unsigned char *kdf_seed) +{ + int ret = 0; + unsigned char keys[64]; + const EVP_MD *md = EVP_get_digestbynid(nid); + EVP_PKEY *mac_key; + + if (md == NULL) + return 0; + + if (enc) { + if (RAND_bytes(kdf_seed, 8) != 1) + return 0; + } + + if (gost_kdftree2012_256(keys, 64, inkey, 32, (const unsigned char *)"kdf tree", 8, kdf_seed, 8, 1) <= 0) + return 0; + + mac_key = EVP_PKEY_new_mac_key(nid, NULL, keys+32, 32); + + if (mac_key == NULL) + goto end; + + if (EVP_DigestInit_ex(omac_ctx, md, NULL) <= 0 || + EVP_DigestSignInit(omac_ctx, NULL, md, NULL, mac_key) <= 0) + goto end; + + memcpy(outkey, keys, 32); + + ret = 1; +end: + EVP_PKEY_free(mac_key); + OPENSSL_cleanse(keys, sizeof(keys)); + + return ret; +} + +int init_zero_kdf_seed(unsigned char *kdf_seed) +{ + int is_zero_kdfseed = 1, i; + for (i = 0; i < 8; i++) { + if (kdf_seed[i] != 0) + is_zero_kdfseed = 0; + } + + return is_zero_kdfseed ? RAND_bytes(kdf_seed, 8) : 1; +} |