1 /* $OpenBSD: cryptlib.c,v 1.36 2015/09/13 10:02:49 miod Exp $ */
2 /* ====================================================================
3 * Copyright (c) 1998-2006 The OpenSSL Project. All rights reserved.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in
14 * the documentation and/or other materials provided with the
17 * 3. All advertising materials mentioning features or use of this
18 * software must display the following acknowledgment:
19 * "This product includes software developed by the OpenSSL Project
20 * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
22 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
23 * endorse or promote products derived from this software without
24 * prior written permission. For written permission, please contact
25 * openssl-core@openssl.org.
27 * 5. Products derived from this software may not be called "OpenSSL"
28 * nor may "OpenSSL" appear in their names without prior written
29 * permission of the OpenSSL Project.
31 * 6. Redistributions of any form whatsoever must retain the following
33 * "This product includes software developed by the OpenSSL Project
34 * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
36 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
37 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
38 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
39 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
40 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
41 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
42 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
43 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
44 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
45 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
46 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
47 * OF THE POSSIBILITY OF SUCH DAMAGE.
48 * ====================================================================
50 * This product includes cryptographic software written by Eric Young
51 * (eay@cryptsoft.com). This product includes software written by Tim
52 * Hudson (tjh@cryptsoft.com).
55 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
56 * All rights reserved.
58 * This package is an SSL implementation written
59 * by Eric Young (eay@cryptsoft.com).
60 * The implementation was written so as to conform with Netscapes SSL.
62 * This library is free for commercial and non-commercial use as long as
63 * the following conditions are aheared to. The following conditions
64 * apply to all code found in this distribution, be it the RC4, RSA,
65 * lhash, DES, etc., code; not just the SSL code. The SSL documentation
66 * included with this distribution is covered by the same copyright terms
67 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
69 * Copyright remains Eric Young's, and as such any Copyright notices in
70 * the code are not to be removed.
71 * If this package is used in a product, Eric Young should be given attribution
72 * as the author of the parts of the library used.
73 * This can be in the form of a textual message at program startup or
74 * in documentation (online or textual) provided with the package.
76 * Redistribution and use in source and binary forms, with or without
77 * modification, are permitted provided that the following conditions
79 * 1. Redistributions of source code must retain the copyright
80 * notice, this list of conditions and the following disclaimer.
81 * 2. Redistributions in binary form must reproduce the above copyright
82 * notice, this list of conditions and the following disclaimer in the
83 * documentation and/or other materials provided with the distribution.
84 * 3. All advertising materials mentioning features or use of this software
85 * must display the following acknowledgement:
86 * "This product includes cryptographic software written by
87 * Eric Young (eay@cryptsoft.com)"
88 * The word 'cryptographic' can be left out if the rouines from the library
89 * being used are not cryptographic related :-).
90 * 4. If you include any Windows specific code (or a derivative thereof) from
91 * the apps directory (application code) you must include an acknowledgement:
92 * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
94 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
95 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
96 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
97 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
98 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
99 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
100 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
101 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
102 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
103 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
106 * The licence and distribution terms for any publically available version or
107 * derivative of this code cannot be changed. i.e. this code cannot simply be
108 * copied and put under another distribution licence
109 * [including the GNU Public Licence.]
111 /* ====================================================================
112 * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED.
113 * ECDH support in OpenSSL originally developed by
114 * SUN MICROSYSTEMS, INC., and contributed to the OpenSSL project.
123 #include <openssl/opensslconf.h>
125 #include <openssl/crypto.h>
126 #include <openssl/buffer.h>
127 #include <openssl/err.h>
128 #include <openssl/safestack.h>
129 #include <openssl/sha.h>
131 DECLARE_STACK_OF(CRYPTO_dynlock)
133 /* real #defines in crypto.h, keep these upto date */
134 static const char* const lock_names[CRYPTO_NUM_LOCKS] = {
176 #if CRYPTO_NUM_LOCKS != 41
177 # error "Inconsistency between crypto.h and cryptlib.c"
181 /* This is for applications to allocate new type names in the non-dynamic
182 array of lock names. These are numbered with positive numbers. */
183 static STACK_OF(OPENSSL_STRING) *app_locks = NULL;
185 /* For applications that want a more dynamic way of handling threads, the
186 following stack is used. These are externally numbered with negative
188 static STACK_OF(CRYPTO_dynlock) *dyn_locks = NULL;
190 static void (*locking_callback)(int mode, int type,
191 const char *file, int line) = 0;
192 static int (*add_lock_callback)(int *pointer, int amount,
193 int type, const char *file, int line) = 0;
194 #ifndef OPENSSL_NO_DEPRECATED
195 static unsigned long (*id_callback)(void) = 0;
197 static void (*threadid_callback)(CRYPTO_THREADID *) = 0;
198 static struct CRYPTO_dynlock_value *(*dynlock_create_callback)(
199 const char *file, int line) = 0;
200 static void (*dynlock_lock_callback)(int mode,
201 struct CRYPTO_dynlock_value *l, const char *file, int line) = 0;
202 static void (*dynlock_destroy_callback)(struct CRYPTO_dynlock_value *l,
203 const char *file, int line) = 0;
206 CRYPTO_get_new_lockid(char *name)
211 if ((app_locks == NULL) &&
212 ((app_locks = sk_OPENSSL_STRING_new_null()) == NULL)) {
213 CRYPTOerr(CRYPTO_F_CRYPTO_GET_NEW_LOCKID, ERR_R_MALLOC_FAILURE);
216 if (name == NULL || (str = strdup(name)) == NULL) {
217 CRYPTOerr(CRYPTO_F_CRYPTO_GET_NEW_LOCKID, ERR_R_MALLOC_FAILURE);
220 i = sk_OPENSSL_STRING_push(app_locks, str);
224 i += CRYPTO_NUM_LOCKS; /* gap of one :-) */
229 CRYPTO_num_locks(void)
231 return CRYPTO_NUM_LOCKS;
235 CRYPTO_get_new_dynlockid(void)
238 CRYPTO_dynlock *pointer = NULL;
240 if (dynlock_create_callback == NULL) {
241 CRYPTOerr(CRYPTO_F_CRYPTO_GET_NEW_DYNLOCKID,
242 CRYPTO_R_NO_DYNLOCK_CREATE_CALLBACK);
245 CRYPTO_w_lock(CRYPTO_LOCK_DYNLOCK);
246 if ((dyn_locks == NULL) &&
247 ((dyn_locks = sk_CRYPTO_dynlock_new_null()) == NULL)) {
248 CRYPTO_w_unlock(CRYPTO_LOCK_DYNLOCK);
249 CRYPTOerr(CRYPTO_F_CRYPTO_GET_NEW_DYNLOCKID,
250 ERR_R_MALLOC_FAILURE);
253 CRYPTO_w_unlock(CRYPTO_LOCK_DYNLOCK);
255 pointer = malloc(sizeof(CRYPTO_dynlock));
256 if (pointer == NULL) {
257 CRYPTOerr(CRYPTO_F_CRYPTO_GET_NEW_DYNLOCKID,
258 ERR_R_MALLOC_FAILURE);
261 pointer->references = 1;
262 pointer->data = dynlock_create_callback(__FILE__, __LINE__);
263 if (pointer->data == NULL) {
265 CRYPTOerr(CRYPTO_F_CRYPTO_GET_NEW_DYNLOCKID,
266 ERR_R_MALLOC_FAILURE);
270 CRYPTO_w_lock(CRYPTO_LOCK_DYNLOCK);
271 /* First, try to find an existing empty slot */
272 i = sk_CRYPTO_dynlock_find(dyn_locks, NULL);
273 /* If there was none, push, thereby creating a new one */
275 /* Since sk_push() returns the number of items on the
276 stack, not the location of the pushed item, we need
277 to transform the returned number into a position,
279 i = sk_CRYPTO_dynlock_push(dyn_locks, pointer) - 1;
281 /* If we found a place with a NULL pointer, put our pointer
283 (void)sk_CRYPTO_dynlock_set(dyn_locks, i, pointer);
284 CRYPTO_w_unlock(CRYPTO_LOCK_DYNLOCK);
287 dynlock_destroy_callback(pointer->data, __FILE__, __LINE__);
290 i += 1; /* to avoid 0 */
295 CRYPTO_destroy_dynlockid(int i)
297 CRYPTO_dynlock *pointer = NULL;
301 if (dynlock_destroy_callback == NULL)
304 CRYPTO_w_lock(CRYPTO_LOCK_DYNLOCK);
306 if (dyn_locks == NULL || i >= sk_CRYPTO_dynlock_num(dyn_locks)) {
307 CRYPTO_w_unlock(CRYPTO_LOCK_DYNLOCK);
310 pointer = sk_CRYPTO_dynlock_value(dyn_locks, i);
311 if (pointer != NULL) {
312 --pointer->references;
313 if (pointer->references <= 0) {
314 (void)sk_CRYPTO_dynlock_set(dyn_locks, i, NULL);
318 CRYPTO_w_unlock(CRYPTO_LOCK_DYNLOCK);
321 dynlock_destroy_callback(pointer->data, __FILE__, __LINE__);
326 struct CRYPTO_dynlock_value *
327 CRYPTO_get_dynlock_value(int i)
329 CRYPTO_dynlock *pointer = NULL;
334 CRYPTO_w_lock(CRYPTO_LOCK_DYNLOCK);
336 if (dyn_locks != NULL && i < sk_CRYPTO_dynlock_num(dyn_locks))
337 pointer = sk_CRYPTO_dynlock_value(dyn_locks, i);
339 pointer->references++;
341 CRYPTO_w_unlock(CRYPTO_LOCK_DYNLOCK);
344 return pointer->data;
348 struct CRYPTO_dynlock_value *
349 (*CRYPTO_get_dynlock_create_callback(void))(const char *file, int line)
351 return (dynlock_create_callback);
355 (*CRYPTO_get_dynlock_lock_callback(void))(int mode,
356 struct CRYPTO_dynlock_value *l, const char *file, int line)
358 return (dynlock_lock_callback);
362 (*CRYPTO_get_dynlock_destroy_callback(void))(struct CRYPTO_dynlock_value *l,
363 const char *file, int line)
365 return (dynlock_destroy_callback);
369 CRYPTO_set_dynlock_create_callback(
370 struct CRYPTO_dynlock_value *(*func)(const char *file, int line))
372 dynlock_create_callback = func;
376 CRYPTO_set_dynlock_lock_callback(void (*func)(int mode,
377 struct CRYPTO_dynlock_value *l, const char *file, int line))
379 dynlock_lock_callback = func;
383 CRYPTO_set_dynlock_destroy_callback(
384 void (*func)(struct CRYPTO_dynlock_value *l, const char *file, int line))
386 dynlock_destroy_callback = func;
390 (*CRYPTO_get_locking_callback(void))(int mode, int type, const char *file,
393 return (locking_callback);
397 (*CRYPTO_get_add_lock_callback(void))(int *num, int mount, int type,
398 const char *file, int line)
400 return (add_lock_callback);
404 CRYPTO_set_locking_callback(void (*func)(int mode, int type,
405 const char *file, int line))
407 /* Calling this here ensures initialisation before any threads
411 locking_callback = func;
415 CRYPTO_set_add_lock_callback(int (*func)(int *num, int mount, int type,
416 const char *file, int line))
418 add_lock_callback = func;
421 /* the memset() here and in set_pointer() seem overkill, but for the sake of
422 * CRYPTO_THREADID_cmp() this avoids any platform silliness that might cause two
423 * "equal" THREADID structs to not be memcmp()-identical. */
425 CRYPTO_THREADID_set_numeric(CRYPTO_THREADID *id, unsigned long val)
427 memset(id, 0, sizeof(*id));
432 CRYPTO_THREADID_set_pointer(CRYPTO_THREADID *id, void *ptr)
434 memset(id, 0, sizeof(*id));
436 #if ULONG_MAX >= UINTPTR_MAX
437 /*s u 'ptr' can be embedded in 'val' without loss of uniqueness */
438 id->val = (uintptr_t)id->ptr;
442 uint8_t results[SHA256_DIGEST_LENGTH];
445 SHA256_Update(&ctx, (char *)(&id->ptr), sizeof(id->ptr));
446 SHA256_Final(results, &ctx);
447 memcpy(&id->val, results, sizeof(id->val));
453 CRYPTO_THREADID_set_callback(void (*func)(CRYPTO_THREADID *))
455 if (threadid_callback)
457 threadid_callback = func;
461 void (*CRYPTO_THREADID_get_callback(void))(CRYPTO_THREADID *)
463 return threadid_callback;
467 CRYPTO_THREADID_current(CRYPTO_THREADID *id)
469 if (threadid_callback) {
470 threadid_callback(id);
473 #ifndef OPENSSL_NO_DEPRECATED
474 /* If the deprecated callback was set, fall back to that */
476 CRYPTO_THREADID_set_numeric(id, id_callback());
480 /* Else pick a backup */
481 /* For everything else, default to using the address of 'errno' */
482 CRYPTO_THREADID_set_pointer(id, (void*)&errno);
486 CRYPTO_THREADID_cmp(const CRYPTO_THREADID *a, const CRYPTO_THREADID *b)
488 return memcmp(a, b, sizeof(*a));
492 CRYPTO_THREADID_cpy(CRYPTO_THREADID *dest, const CRYPTO_THREADID *src)
494 memcpy(dest, src, sizeof(*src));
498 CRYPTO_THREADID_hash(const CRYPTO_THREADID *id)
503 #ifndef OPENSSL_NO_DEPRECATED
504 unsigned long (*CRYPTO_get_id_callback(void))(void)
506 return (id_callback);
510 CRYPTO_set_id_callback(unsigned long (*func)(void))
516 CRYPTO_thread_id(void)
518 unsigned long ret = 0;
520 if (id_callback == NULL) {
521 ret = (unsigned long)getpid();
529 CRYPTO_lock(int mode, int type, const char *file, int line)
534 char *rw_text, *operation_text;
536 if (mode & CRYPTO_LOCK)
537 operation_text = "lock ";
538 else if (mode & CRYPTO_UNLOCK)
539 operation_text = "unlock";
541 operation_text = "ERROR ";
543 if (mode & CRYPTO_READ)
545 else if (mode & CRYPTO_WRITE)
550 CRYPTO_THREADID_current(&id);
551 fprintf(stderr, "lock:%08lx:(%s)%s %-18s %s:%d\n",
552 CRYPTO_THREADID_hash(&id), rw_text, operation_text,
553 CRYPTO_get_lock_name(type), file, line);
557 if (dynlock_lock_callback != NULL) {
558 struct CRYPTO_dynlock_value *pointer =
559 CRYPTO_get_dynlock_value(type);
561 OPENSSL_assert(pointer != NULL);
563 dynlock_lock_callback(mode, pointer, file, line);
565 CRYPTO_destroy_dynlockid(type);
567 } else if (locking_callback != NULL)
568 locking_callback(mode, type, file, line);
572 CRYPTO_add_lock(int *pointer, int amount, int type, const char *file,
577 if (add_lock_callback != NULL) {
579 int before= *pointer;
582 ret = add_lock_callback(pointer, amount, type, file, line);
586 CRYPTO_THREADID_current(&id);
587 fprintf(stderr, "ladd:%08lx:%2d+%2d->%2d %-18s %s:%d\n",
588 CRYPTO_THREADID_hash(&id), before, amount, ret,
589 CRYPTO_get_lock_name(type),
594 CRYPTO_lock(CRYPTO_LOCK|CRYPTO_WRITE, type, file, line);
596 ret= *pointer + amount;
600 CRYPTO_THREADID_current(&id);
601 fprintf(stderr, "ladd:%08lx:%2d+%2d->%2d %-18s %s:%d\n",
602 CRYPTO_THREADID_hash(&id), *pointer, amount, ret,
603 CRYPTO_get_lock_name(type), file, line);
607 CRYPTO_lock(CRYPTO_UNLOCK|CRYPTO_WRITE, type, file, line);
613 CRYPTO_get_lock_name(int type)
617 else if (type < CRYPTO_NUM_LOCKS)
618 return (lock_names[type]);
619 else if (type - CRYPTO_NUM_LOCKS > sk_OPENSSL_STRING_num(app_locks))
622 return (sk_OPENSSL_STRING_value(app_locks,
623 type - CRYPTO_NUM_LOCKS));
626 #if defined(__i386) || defined(__i386__) || defined(_M_IX86) || \
627 defined(__INTEL__) || \
628 defined(__x86_64) || defined(__x86_64__) || defined(_M_AMD64) || defined(_M_X64)
630 unsigned int OPENSSL_ia32cap_P[2];
633 OPENSSL_cpu_caps(void)
635 return *(uint64_t *)OPENSSL_ia32cap_P;
638 #if defined(OPENSSL_CPUID_OBJ) && !defined(OPENSSL_NO_ASM) && !defined(I386_ONLY)
639 #define OPENSSL_CPUID_SETUP
640 typedef unsigned long long IA32CAP;
642 OPENSSL_cpuid_setup(void)
644 static int trigger = 0;
645 IA32CAP OPENSSL_ia32_cpuid(void);
652 vec = OPENSSL_ia32_cpuid();
655 * |(1<<10) sets a reserved bit to signal that variable
656 * was initialized already... This is to avoid interference
657 * with cpuid snippets in ELF .init segment.
659 OPENSSL_ia32cap_P[0] = (unsigned int)vec | (1 << 10);
660 OPENSSL_ia32cap_P[1] = (unsigned int)(vec >> 32);
666 OPENSSL_ia32cap_loc(void)
672 OPENSSL_cpu_caps(void)
678 #if !defined(OPENSSL_CPUID_SETUP) && !defined(OPENSSL_CPUID_OBJ)
680 OPENSSL_cpuid_setup(void)
686 OPENSSL_showfatal(const char *fmta, ...)
691 vfprintf(stderr, fmta, ap);
696 OpenSSLDie(const char *file, int line, const char *assertion)
699 "%s(%d): OpenSSL internal error, assertion failed: %s\n",
700 file, line, assertion);
705 CRYPTO_memcmp(const void *in_a, const void *in_b, size_t len)
708 const unsigned char *a = in_a;
709 const unsigned char *b = in_b;
712 for (i = 0; i < len; i++)