providers/common/der/der_rsa_sig.c - third_party/openssl - Git at Google

 /*
  * Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
  *
  * Licensed under the Apache License 2.0 (the "License").  You may not use
  * this file except in compliance with the License.  You can obtain a copy
  * in the file LICENSE in the source distribution or at
  * https://www.openssl.org/source/license.html
  */

 #include <openssl/obj_mac.h>
 #include "internal/packet.h"
 #include "prov/der_rsa.h"
 #include "prov/der_digests.h"

 /* Aliases so we can have a uniform MD_with_RSA_CASE */
 #define ossl_der_oid_sha3_224WithRSAEncryption \
     ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_224
 #define ossl_der_oid_sha3_256WithRSAEncryption \
     ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_256
 #define ossl_der_oid_sha3_384WithRSAEncryption \
     ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_384
 #define ossl_der_oid_sha3_512WithRSAEncryption \
     ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_512
 #define ossl_der_oid_mdc2WithRSAEncryption \
     ossl_der_oid_mdc2WithRSASignature

 #define MD_with_RSA_CASE(name, var)                                     \
     case NID_##name:                                                    \
         var = ossl_der_oid_##name##WithRSAEncryption;                   \
         var##_sz = sizeof(ossl_der_oid_##name##WithRSAEncryption);      \
         break;

 int ossl_DER_w_algorithmIdentifier_MDWithRSAEncryption(WPACKET *pkt, int tag,
                                                        int mdnid)
 {
     const unsigned char *precompiled = NULL;
     size_t precompiled_sz = 0;

     switch (mdnid) {
 #ifndef FIPS_MODULE
         MD_with_RSA_CASE(md2, precompiled);
         MD_with_RSA_CASE(md5, precompiled);
         MD_with_RSA_CASE(md4, precompiled);
         MD_with_RSA_CASE(ripemd160, precompiled);
         MD_with_RSA_CASE(mdc2, precompiled);
 #endif
         MD_with_RSA_CASE(sha1, precompiled);
         MD_with_RSA_CASE(sha224, precompiled);
         MD_with_RSA_CASE(sha256, precompiled);
         MD_with_RSA_CASE(sha384, precompiled);
         MD_with_RSA_CASE(sha512, precompiled);
         MD_with_RSA_CASE(sha512_224, precompiled);
         MD_with_RSA_CASE(sha512_256, precompiled);
         MD_with_RSA_CASE(sha3_224, precompiled);
         MD_with_RSA_CASE(sha3_256, precompiled);
         MD_with_RSA_CASE(sha3_384, precompiled);
         MD_with_RSA_CASE(sha3_512, precompiled);
     default:
         /*
          * Hash algorithms for which we do not have a valid OID
          * such as md5sha1 will just fail to provide the der encoding.
          * That does not prevent producing signatures if OID is not needed.
          */
         return -1;
     }

     return ossl_DER_w_begin_sequence(pkt, tag)
         /* PARAMETERS, always NULL according to current standards */
         && ossl_DER_w_null(pkt, -1)
         /* OID */
         && ossl_DER_w_precompiled(pkt, -1, precompiled, precompiled_sz)
         && ossl_DER_w_end_sequence(pkt, tag);
 }
	/*
	* Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
	*
	* Licensed under the Apache License 2.0 (the "License"). You may not use
	* this file except in compliance with the License. You can obtain a copy
	* in the file LICENSE in the source distribution or at
	* https://www.openssl.org/source/license.html
	*/

	#include <openssl/obj_mac.h>
	#include "internal/packet.h"
	#include "prov/der_rsa.h"
	#include "prov/der_digests.h"

	/* Aliases so we can have a uniform MD_with_RSA_CASE */
	#define ossl_der_oid_sha3_224WithRSAEncryption \
	ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_224
	#define ossl_der_oid_sha3_256WithRSAEncryption \
	ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_256
	#define ossl_der_oid_sha3_384WithRSAEncryption \
	ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_384
	#define ossl_der_oid_sha3_512WithRSAEncryption \
	ossl_der_oid_id_rsassa_pkcs1_v1_5_with_sha3_512
	#define ossl_der_oid_mdc2WithRSAEncryption \
	ossl_der_oid_mdc2WithRSASignature

	#define MD_with_RSA_CASE(name, var) \
	case NID_##name: \
	var = ossl_der_oid_##name##WithRSAEncryption; \
	var##_sz = sizeof(ossl_der_oid_##name##WithRSAEncryption); \
	break;

	int ossl_DER_w_algorithmIdentifier_MDWithRSAEncryption(WPACKET *pkt, int tag,
	int mdnid)
	{
	const unsigned char *precompiled = NULL;
	size_t precompiled_sz = 0;

	switch (mdnid) {
	#ifndef FIPS_MODULE
	MD_with_RSA_CASE(md2, precompiled);
	MD_with_RSA_CASE(md5, precompiled);
	MD_with_RSA_CASE(md4, precompiled);
	MD_with_RSA_CASE(ripemd160, precompiled);
	MD_with_RSA_CASE(mdc2, precompiled);
	#endif
	MD_with_RSA_CASE(sha1, precompiled);
	MD_with_RSA_CASE(sha224, precompiled);
	MD_with_RSA_CASE(sha256, precompiled);
	MD_with_RSA_CASE(sha384, precompiled);
	MD_with_RSA_CASE(sha512, precompiled);
	MD_with_RSA_CASE(sha512_224, precompiled);
	MD_with_RSA_CASE(sha512_256, precompiled);
	MD_with_RSA_CASE(sha3_224, precompiled);
	MD_with_RSA_CASE(sha3_256, precompiled);
	MD_with_RSA_CASE(sha3_384, precompiled);
	MD_with_RSA_CASE(sha3_512, precompiled);
	default:
	/*
	* Hash algorithms for which we do not have a valid OID
	* such as md5sha1 will just fail to provide the der encoding.
	* That does not prevent producing signatures if OID is not needed.
	*/
	return -1;
	}

	return ossl_DER_w_begin_sequence(pkt, tag)
	/* PARAMETERS, always NULL according to current standards */
	&& ossl_DER_w_null(pkt, -1)
	/* OID */
	&& ossl_DER_w_precompiled(pkt, -1, precompiled, precompiled_sz)
	&& ossl_DER_w_end_sequence(pkt, tag);
	}