kris
/
boringssl
1
0
Форк 0
Код Проблеми 0 Запити на злиття 0 Релізи 0 Вікі Активність
Ви не можете вибрати більше 25 тем Теми мають розпочинатися з літери або цифри, можуть містити дефіси (-) і не повинні перевищувати 35 символів.
5554 Коміти
12 Гілки
38 MiB
 
 
 
 
 
 
Дерево: 045ee41928
Гілки Теги
${ item.name }
Створити гілку ${ searchTerm }
з '045ee41928'
${ noResults }
boringssl/crypto/fipsmodule/bcm.c

156 рядки
4.0 KiB
Неформатований Звинувачення Історія 

  1. /* Copyright (c) 2017, Google Inc.

  2.  *

  3.  * Permission to use, copy, modify, and/or distribute this software for any

  4.  * purpose with or without fee is hereby granted, provided that the above

  5.  * copyright notice and this permission notice appear in all copies.

  6.  *

  7.  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES

  8.  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF

  9.  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY

  10.  * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES

  11.  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION

  12.  * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN

  13.  * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */

  14. 

  15. #if !defined(_GNU_SOURCE)

  16. #define _GNU_SOURCE  // needed for syscall() on Linux.

  17. #endif

  18. 

  19. #include <openssl/crypto.h>

  20. 

  21. #include <stdlib.h>

  22. 

  23. #include <openssl/digest.h>

  24. #include <openssl/hmac.h>

  25. #include <openssl/sha.h>

  26. 

  27. #include "../internal.h"

  28. 

  29. #include "aes/aes.c"

  30. #include "aes/key_wrap.c"

  31. #include "aes/mode_wrappers.c"

  32. #include "bn/add.c"

  33. #include "bn/asm/x86_64-gcc.c"

  34. #include "bn/bn.c"

  35. #include "bn/bytes.c"

  36. #include "bn/cmp.c"

  37. #include "bn/ctx.c"

  38. #include "bn/div.c"

  39. #include "bn/div_extra.c"

  40. #include "bn/exponentiation.c"

  41. #include "bn/gcd.c"

  42. #include "bn/gcd_extra.c"

  43. #include "bn/generic.c"

  44. #include "bn/jacobi.c"

  45. #include "bn/montgomery.c"

  46. #include "bn/montgomery_inv.c"

  47. #include "bn/mul.c"

  48. #include "bn/prime.c"

  49. #include "bn/random.c"

  50. #include "bn/rsaz_exp.c"

  51. #include "bn/shift.c"

  52. #include "bn/sqrt.c"

  53. #include "cipher/aead.c"

  54. #include "cipher/cipher.c"

  55. #include "cipher/e_aes.c"

  56. #include "cipher/e_des.c"

  57. #include "des/des.c"

  58. #include "digest/digest.c"

  59. #include "digest/digests.c"

  60. #include "ecdh/ecdh.c"

  61. #include "ecdsa/ecdsa.c"

  62. #include "ec/ec.c"

  63. #include "ec/ec_key.c"

  64. #include "ec/ec_montgomery.c"

  65. #include "ec/felem.c"

  66. #include "ec/oct.c"

  67. #include "ec/p224-64.c"

  68. #include "../../third_party/fiat/p256.c"

  69. #include "ec/p256-x86_64.c"

  70. #include "ec/scalar.c"

  71. #include "ec/simple.c"

  72. #include "ec/simple_mul.c"

  73. #include "ec/util.c"

  74. #include "ec/wnaf.c"

  75. #include "hmac/hmac.c"

  76. #include "md4/md4.c"

  77. #include "md5/md5.c"

  78. #include "modes/cbc.c"

  79. #include "modes/ccm.c"

  80. #include "modes/cfb.c"

  81. #include "modes/ctr.c"

  82. #include "modes/gcm.c"

  83. #include "modes/ofb.c"

  84. #include "modes/polyval.c"

  85. #include "rand/ctrdrbg.c"

  86. #include "rand/rand.c"

  87. #include "rand/urandom.c"

  88. #include "rsa/blinding.c"

  89. #include "rsa/padding.c"

  90. #include "rsa/rsa.c"

  91. #include "rsa/rsa_impl.c"

  92. #include "self_check/self_check.c"

  93. #include "sha/sha1-altivec.c"

  94. #include "sha/sha1.c"

  95. #include "sha/sha256.c"

  96. #include "sha/sha512.c"

  97. #include "tls/kdf.c"

  98. 

  99. 

  100. #if defined(BORINGSSL_FIPS)

  101. 

  102. #if !defined(OPENSSL_ASAN)

  103. // These symbols are filled in by delocate.go. They point to the start and end

  104. // of the module, and the location of the integrity hash, respectively.

  105. extern const uint8_t BORINGSSL_bcm_text_start[];

  106. extern const uint8_t BORINGSSL_bcm_text_end[];

  107. extern const uint8_t BORINGSSL_bcm_text_hash[];

  108. #endif

  109. 

  110. static void __attribute__((constructor))

  111. BORINGSSL_bcm_power_on_self_test(void) {

  112.   CRYPTO_library_init();

  113. 

  114. #if !defined(OPENSSL_ASAN)

  115.   // Integrity tests cannot run under ASAN because it involves reading the full

  116.   // .text section, which triggers the global-buffer overflow detection.

  117.   const uint8_t *const start = BORINGSSL_bcm_text_start;

  118.   const uint8_t *const end = BORINGSSL_bcm_text_end;

  119. 

  120.   static const uint8_t kHMACKey[64] = {0};

  121.   uint8_t result[SHA512_DIGEST_LENGTH];

  122. 

  123.   unsigned result_len;

  124.   if (!HMAC(EVP_sha512(), kHMACKey, sizeof(kHMACKey), start, end - start,

  125.             result, &result_len) ||

  126.       result_len != sizeof(result)) {

  127.     fprintf(stderr, "HMAC failed.\n");

  128.     goto err;

  129.   }

  130. 

  131.   const uint8_t *expected = BORINGSSL_bcm_text_hash;

  132. 

  133.   if (!check_test(expected, result, sizeof(result), "FIPS integrity test")) {

  134.     goto err;

  135.   }

  136. #endif

  137. 

  138.   if (!BORINGSSL_self_test()) {

  139.     goto err;

  140.   }

  141. 

  142.   return;

  143. 

  144. err:

  145.   BORINGSSL_FIPS_abort();

  146. }

  147. 

  148. void BORINGSSL_FIPS_abort(void) {

  149.   for (;;) {

  150.     abort();

  151.     exit(1);

  152.   }

  153. }

  154. 

  155. #endif  // BORINGSSL_FIPS