make RSA and DSA operations throw MISSING_PRIVATE_KEY if needed, adapt ECDSA

author David von Oheimb <David.von.Oheimb@siemens.com>

Fri, 26 Jul 2019 09:03:12 +0000 (11:03 +0200)

committer Nicola Tuveri <nic.tuv@gmail.com>

Wed, 31 Jul 2019 14:07:44 +0000 (17:07 +0300)
author David von Oheimb <David.von.Oheimb@siemens.com>
Fri, 26 Jul 2019 09:03:12 +0000 (11:03 +0200)
committer Nicola Tuveri <nic.tuv@gmail.com>
Wed, 31 Jul 2019 14:07:44 +0000 (17:07 +0300)
diff --git a/crypto/dsa/dsa_err.c b/crypto/dsa/dsa_err.c

index 8f97f6f3f9eed6ddc84798fd42d3eb07fb8bc872..a7176af8ac2fff60b9f85887a56871232c02f290 100644 (file)
--- a/crypto/dsa/dsa_err.c
+++ b/crypto/dsa/dsa_err.c
@@ -52,6 +52,8 @@ static const ERR_STRING_DATA DSA_str_reasons[] = {
      "invalid digest type"},
      {ERR_PACK(ERR_LIB_DSA, 0, DSA_R_INVALID_PARAMETERS), "invalid parameters"},
      {ERR_PACK(ERR_LIB_DSA, 0, DSA_R_MISSING_PARAMETERS), "missing parameters"},
+    {ERR_PACK(ERR_LIB_DSA, 0, DSA_R_MISSING_PRIVATE_KEY),
+    "missing private key"},
      {ERR_PACK(ERR_LIB_DSA, 0, DSA_R_MODULUS_TOO_LARGE), "modulus too large"},
      {ERR_PACK(ERR_LIB_DSA, 0, DSA_R_NO_PARAMETERS_SET), "no parameters set"},
      {ERR_PACK(ERR_LIB_DSA, 0, DSA_R_PARAMETER_ENCODING_ERROR),
diff --git a/crypto/dsa/dsa_ossl.c b/crypto/dsa/dsa_ossl.c

index cefda5a450fa5175b51a8a643af592c399c5b35b..9361fbdf0c4bbd5f1e581df5fcb27447dc412982 100644 (file)
--- a/crypto/dsa/dsa_ossl.c
+++ b/crypto/dsa/dsa_ossl.c
@@ -72,6 +72,10 @@ static DSA_SIG *dsa_do_sign(const unsigned char *dgst, int dlen, DSA *dsa)
          reason = DSA_R_MISSING_PARAMETERS;
          goto err;
      }
+    if (dsa->priv_key == NULL) {
+        reason = DSA_R_MISSING_PRIVATE_KEY;
+        goto err;
+    }
  
      ret = DSA_SIG_new();
      if (ret == NULL)
@@ -195,6 +199,10 @@ static int dsa_sign_setup(DSA *dsa, BN_CTX *ctx_in,
          DSAerr(DSA_F_DSA_SIGN_SETUP, DSA_R_INVALID_PARAMETERS);
          return 0;
      }
+    if (dsa->priv_key == NULL) {
+        DSAerr(DSA_F_DSA_SIGN_SETUP, DSA_R_MISSING_PRIVATE_KEY);
+        return 0;
+    }
  
      k = BN_new();
      l = BN_new();
diff --git a/crypto/ec/ecdh_ossl.c b/crypto/ec/ecdh_ossl.c

index 5608c62b2ac94e3d1798c38eb115bb1e3be206c5..ab51ee7138ff8928fe534ffbe310edbb5c283961 100644 (file)
--- a/crypto/ec/ecdh_ossl.c
+++ b/crypto/ec/ecdh_ossl.c
@@ -58,7 +58,7 @@ int ecdh_simple_compute_key(unsigned char **pout, size_t *poutlen,
  
      priv_key = EC_KEY_get0_private_key(ecdh);
      if (priv_key == NULL) {
-        ECerr(EC_F_ECDH_SIMPLE_COMPUTE_KEY, EC_R_NO_PRIVATE_VALUE);
+        ECerr(EC_F_ECDH_SIMPLE_COMPUTE_KEY, EC_R_MISSING_PRIVATE_KEY);
          goto err;
      }
  
diff --git a/crypto/ec/ecdsa_ossl.c b/crypto/ec/ecdsa_ossl.c

index e35c7600d8668de0005d36c24b4134ae6aaf8024..554420449f6259704fe304b04f389d5b9ebe311f 100644 (file)
--- a/crypto/ec/ecdsa_ossl.c
+++ b/crypto/ec/ecdsa_ossl.c
@@ -41,11 +41,16 @@ static int ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in,
      const EC_GROUP *group;
      int ret = 0;
      int order_bits;
+    const BIGNUM *priv_key;
  
      if (eckey == NULL || (group = EC_KEY_get0_group(eckey)) == NULL) {
          ECerr(EC_F_ECDSA_SIGN_SETUP, ERR_R_PASSED_NULL_PARAMETER);
          return 0;
      }
+    if ((priv_key = EC_KEY_get0_private_key(eckey)) == NULL) {
+        ECerr(EC_F_ECDSA_SIGN_SETUP, EC_R_MISSING_PRIVATE_KEY);
+        return 0;
+    }
  
      if (!EC_KEY_can_sign(eckey)) {
          ECerr(EC_F_ECDSA_SIGN_SETUP, EC_R_CURVE_DOES_NOT_SUPPORT_SIGNING);
@@ -83,8 +88,7 @@ static int ecdsa_sign_setup(EC_KEY *eckey, BN_CTX *ctx_in,
          /* get random k */
          do {
              if (dgst != NULL) {
-                if (!BN_generate_dsa_nonce(k, order,
-                                           EC_KEY_get0_private_key(eckey),
+                if (!BN_generate_dsa_nonce(k, order, priv_key,
                                             dgst, dlen, ctx)) {
                      ECerr(EC_F_ECDSA_SIGN_SETUP,
                            EC_R_RANDOM_NUMBER_GENERATION_FAILED);
@@ -162,10 +166,14 @@ ECDSA_SIG *ossl_ecdsa_sign_sig(const unsigned char *dgst, int dgst_len,
      group = EC_KEY_get0_group(eckey);
      priv_key = EC_KEY_get0_private_key(eckey);
  
-    if (group == NULL || priv_key == NULL) {
+    if (group == NULL) {
          ECerr(EC_F_OSSL_ECDSA_SIGN_SIG, ERR_R_PASSED_NULL_PARAMETER);
          return NULL;
      }
+    if (priv_key == NULL) {
+        ECerr(EC_F_OSSL_ECDSA_SIGN_SIG, EC_R_MISSING_PRIVATE_KEY);
+        return NULL;
+    }
  
      if (!EC_KEY_can_sign(eckey)) {
          ECerr(EC_F_OSSL_ECDSA_SIGN_SIG, EC_R_CURVE_DOES_NOT_SUPPORT_SIGNING);
diff --git a/crypto/err/openssl.txt b/crypto/err/openssl.txt

index 722a08773ad63ba0582ce697e1332056ecee36c6..a433b03240788929d7bbcddc2cbefdccc202af2b 100644 (file)
--- a/crypto/err/openssl.txt
+++ b/crypto/err/openssl.txt
@@ -2101,6 +2101,7 @@ DSA_R_DECODE_ERROR:104:decode error
  DSA_R_INVALID_DIGEST_TYPE:106:invalid digest type
  DSA_R_INVALID_PARAMETERS:112:invalid parameters
  DSA_R_MISSING_PARAMETERS:101:missing parameters
+DSA_R_MISSING_PRIVATE_KEY:111:missing private key
  DSA_R_MODULUS_TOO_LARGE:103:modulus too large
  DSA_R_NO_PARAMETERS_SET:107:no parameters set
  DSA_R_PARAMETER_ENCODING_ERROR:105:parameter encoding error
@@ -2536,6 +2537,7 @@ RSA_R_KEY_PRIME_NUM_INVALID:165:key prime num invalid
  RSA_R_KEY_SIZE_TOO_SMALL:120:key size too small
  RSA_R_LAST_OCTET_INVALID:134:last octet invalid
  RSA_R_MGF1_DIGEST_NOT_ALLOWED:152:mgf1 digest not allowed
+RSA_R_MISSING_PRIVATE_KEY:179:missing private key
  RSA_R_MODULUS_TOO_LARGE:105:modulus too large
  RSA_R_MP_COEFFICIENT_NOT_INVERSE_OF_R:168:mp coefficient not inverse of r
  RSA_R_MP_EXPONENT_NOT_CONGRUENT_TO_D:169:mp exponent not congruent to d
diff --git a/crypto/rsa/rsa_err.c b/crypto/rsa/rsa_err.c

index 62fd9e0b114d22492f192d971fdeb246cb08f836..228e0712163d74152bafc06d931f2f49c830db11 100644 (file)
--- a/crypto/rsa/rsa_err.c
+++ b/crypto/rsa/rsa_err.c
@@ -174,6 +174,8 @@ static const ERR_STRING_DATA RSA_str_reasons[] = {
      {ERR_PACK(ERR_LIB_RSA, 0, RSA_R_LAST_OCTET_INVALID), "last octet invalid"},
      {ERR_PACK(ERR_LIB_RSA, 0, RSA_R_MGF1_DIGEST_NOT_ALLOWED),
      "mgf1 digest not allowed"},
+    {ERR_PACK(ERR_LIB_RSA, 0, RSA_R_MISSING_PRIVATE_KEY),
+    "missing private key"},
      {ERR_PACK(ERR_LIB_RSA, 0, RSA_R_MODULUS_TOO_LARGE), "modulus too large"},
      {ERR_PACK(ERR_LIB_RSA, 0, RSA_R_MP_COEFFICIENT_NOT_INVERSE_OF_R),
      "mp coefficient not inverse of r"},
diff --git a/crypto/rsa/rsa_ossl.c b/crypto/rsa/rsa_ossl.c

index 33be9ea8cb848b2fb7dbc431e03a834c8e682944..c8c3b7886aa9a5aaa0a66b610af965fb5de2fe5b 100644 (file)
--- a/crypto/rsa/rsa_ossl.c
+++ b/crypto/rsa/rsa_ossl.c
@@ -321,6 +321,11 @@ static int rsa_ossl_private_encrypt(int flen, const unsigned char *from,
              RSAerr(RSA_F_RSA_OSSL_PRIVATE_ENCRYPT, ERR_R_MALLOC_FAILURE);
              goto err;
          }
+        if (rsa->d == NULL) {
+            RSAerr(RSA_F_RSA_OSSL_PRIVATE_ENCRYPT, RSA_R_MISSING_PRIVATE_KEY);
+            BN_free(d);
+            goto err;
+        }
          BN_with_flags(d, rsa->d, BN_FLG_CONSTTIME);
  
          if (!rsa->meth->bn_mod_exp(ret, f, d, rsa->n, ctx,
@@ -438,6 +443,11 @@ static int rsa_ossl_private_decrypt(int flen, const unsigned char *from,
              RSAerr(RSA_F_RSA_OSSL_PRIVATE_DECRYPT, ERR_R_MALLOC_FAILURE);
              goto err;
          }
+        if (rsa->d == NULL) {
+            RSAerr(RSA_F_RSA_OSSL_PRIVATE_DECRYPT, RSA_R_MISSING_PRIVATE_KEY);
+            BN_free(d);
+            goto err;
+        }
          BN_with_flags(d, rsa->d, BN_FLG_CONSTTIME);
  
          if (rsa->flags & RSA_FLAG_CACHE_PUBLIC)
diff --git a/include/openssl/dsaerr.h b/include/openssl/dsaerr.h

index 772ee2c13e01aa56e01a7f56f174092cec43d621..495a1ac89d6361533a257402b7538ad25a7a3a3a 100644 (file)
--- a/include/openssl/dsaerr.h
+++ b/include/openssl/dsaerr.h
@@ -61,6 +61,7 @@ int ERR_load_DSA_strings(void);
  #  define DSA_R_INVALID_DIGEST_TYPE                        106
  #  define DSA_R_INVALID_PARAMETERS                         112
  #  define DSA_R_MISSING_PARAMETERS                         101
+#  define DSA_R_MISSING_PRIVATE_KEY                        111
  #  define DSA_R_MODULUS_TOO_LARGE                          103
  #  define DSA_R_NO_PARAMETERS_SET                          107
  #  define DSA_R_PARAMETER_ENCODING_ERROR                   105
diff --git a/include/openssl/rsaerr.h b/include/openssl/rsaerr.h

index b3cb035c8e9e73b2367d95f6025ffb8de341ad9d..59b15e13e96532824b83f0a957b0ebaa6004dfc5 100644 (file)
--- a/include/openssl/rsaerr.h
+++ b/include/openssl/rsaerr.h
@@ -130,6 +130,7 @@ int ERR_load_RSA_strings(void);
  # define RSA_R_KEY_PRIME_NUM_INVALID                      165
  # define RSA_R_KEY_SIZE_TOO_SMALL                         120
  # define RSA_R_LAST_OCTET_INVALID                         134
+# define RSA_R_MISSING_PRIVATE_KEY                        179
  # define RSA_R_MGF1_DIGEST_NOT_ALLOWED                    152
  # define RSA_R_MODULUS_TOO_LARGE                          105
  # define RSA_R_MP_COEFFICIENT_NOT_INVERSE_OF_R            168
author	David von Oheimb <David.von.Oheimb@siemens.com>
	Fri, 26 Jul 2019 09:03:12 +0000 (11:03 +0200)
committer	Nicola Tuveri <nic.tuv@gmail.com>
	Wed, 31 Jul 2019 14:07:44 +0000 (17:07 +0300)
crypto/dsa/dsa_err.c		patch \| blob \| history
crypto/dsa/dsa_ossl.c		patch \| blob \| history
crypto/ec/ecdh_ossl.c		patch \| blob \| history
crypto/ec/ecdsa_ossl.c		patch \| blob \| history
crypto/err/openssl.txt		patch \| blob \| history
crypto/rsa/rsa_err.c		patch \| blob \| history
crypto/rsa/rsa_ossl.c		patch \| blob \| history
include/openssl/dsaerr.h		patch \| blob \| history
include/openssl/rsaerr.h		patch \| blob \| history