From: Richard Levitte Date: Thu, 19 Mar 2020 13:02:51 +0000 (+0100) Subject: EVP: Add a temporary SM2 hack to key generation X-Git-Tag: openssl-3.0.0-alpha1~105 X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=813d31717853252e777b810cb74fa5793fcbb154;p=oweals%2Fopenssl.git EVP: Add a temporary SM2 hack to key generation The reason to do this is many-fold. We need EC key generation for other work. However, SM2 are currently closely related to EC keys with legacy methods, but not with provider methods. To avoid having to wait on provider support for SM2, we temporarly do an extra check for what the legacy methods identify as SM2 keys (either the EVP_PKEY_SM2 pkey id was used, or the SM2 curve), and redirect to legacy code in one case, and in the other case, we forcedly downgrade provider side EC keys with SM2 curves to legacy SM2 keys, using available tools. Reviewed-by: Matt Caswell Reviewed-by: Nicola Tuveri (Merged from https://github.com/openssl/openssl/pull/11328) --- diff --git a/crypto/evp/pmeth_gn.c b/crypto/evp/pmeth_gn.c index 67800282de..78ed9ec781 100644 --- a/crypto/evp/pmeth_gn.c +++ b/crypto/evp/pmeth_gn.c @@ -20,6 +20,17 @@ #include "crypto/evp.h" #include "evp_local.h" +#if !defined(FIPS_MODE) && !defined(OPENSSL_NO_EC) +# define TMP_SM2_HACK +#endif + +/* TODO(3.0) remove when provider SM2 key generation is implemented */ +#ifdef TMP_SM2_HACK +# include +# include +# include "internal/sizes.h" +#endif + static int gen_init(EVP_PKEY_CTX *ctx, int operation) { int ret = 0; @@ -33,6 +44,12 @@ static int gen_init(EVP_PKEY_CTX *ctx, int operation) if (ctx->keymgmt == NULL || ctx->keymgmt->gen_init == NULL) goto legacy; +/* TODO remove when provider SM2 key generation is implemented */ +#ifdef TMP_SM2_HACK + if (ctx->pmeth != NULL && ctx->pmeth->pkey_id == EVP_PKEY_SM2) + goto legacy; +#endif + switch (operation) { case EVP_PKEY_OP_PARAMGEN: ctx->op.keymgmt.genctx = @@ -143,7 +160,7 @@ int EVP_PKEY_gen(EVP_PKEY_CTX *ctx, EVP_PKEY **ppkey) return -1; } - if (ctx->keymgmt == NULL || ctx->op.keymgmt.genctx == NULL) + if (ctx->op.keymgmt.genctx == NULL) goto legacy; ret = 1; @@ -174,6 +191,31 @@ int EVP_PKEY_gen(EVP_PKEY_CTX *ctx, EVP_PKEY **ppkey) evp_pkey_free_legacy(*ppkey); #endif +/* TODO remove when SM2 key have been cleanly separated from EC keys */ +#ifdef TMP_SM2_HACK + /* + * Legacy SM2 keys are implemented as EC_KEY with a twist. The legacy + * key generation detects the SM2 curve and "magically" changes the pkey + * id accordingly. + * Since we don't have SM2 in the provider implementation, we need to + * downgrade the generated provider side key to a legacy one under the + * same conditions. + * + * THIS IS AN UGLY BUT TEMPORARY HACK + */ + { + char curve_name[OSSL_MAX_NAME_SIZE] = ""; + + if (EVP_PKEY_CTX_get_ec_paramgen_curve_name(ctx, curve_name, + sizeof(curve_name)) < 1 + || strcmp(curve_name, "SM2") != 0) + goto end; + } + + if (!evp_pkey_downgrade(*ppkey) + || !EVP_PKEY_set_alias_type(*ppkey, EVP_PKEY_SM2)) + ret = 0; +#endif goto end; legacy: