diff --git a/BUILDING.md b/BUILDING.md index e3a45251fd5..510382c36db 100644 --- a/BUILDING.md +++ b/BUILDING.md @@ -257,7 +257,7 @@ It is also expected to disable the Data Memory-dependent Prefetcher article](https://appleinsider.com/articles/24/03/21/apple-silicon-vulnerability-leaks-encryption-keys-and-cant-be-patched-easily). Building with the option `-DENABLE_DATA_INDEPENDENT_TIMING_AARCH64=ON` -will enable the macro `SET_DIT_AUTO_DISABLE`. This macro is present at +will enable the macro `SET_DIT_AUTO_RESET`. This macro is present at the entry of functions that process/load/store secret data to set the DIT flag and then reset it to its original value on entry. With this build option, there is an effect on performance that varies by diff --git a/crypto/fipsmodule/aes/aes.c b/crypto/fipsmodule/aes/aes.c index 40edc2982f0..d78fd094ced 100644 --- a/crypto/fipsmodule/aes/aes.c +++ b/crypto/fipsmodule/aes/aes.c @@ -60,7 +60,7 @@ // code, above, is incompatible with the |aes_hw_*| functions. void AES_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (hwaes_capable()) { aes_hw_encrypt(in, out, key); } else if (vpaes_capable()) { @@ -71,7 +71,7 @@ void AES_encrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) { } void AES_decrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (hwaes_capable()) { aes_hw_decrypt(in, out, key); } else if (vpaes_capable()) { @@ -82,7 +82,7 @@ void AES_decrypt(const uint8_t *in, uint8_t *out, const AES_KEY *key) { } int AES_set_encrypt_key(const uint8_t *key, unsigned bits, AES_KEY *aeskey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (bits != 128 && bits != 192 && bits != 256) { return -2; } @@ -96,7 +96,7 @@ int AES_set_encrypt_key(const uint8_t *key, unsigned bits, AES_KEY *aeskey) { } int AES_set_decrypt_key(const uint8_t *key, unsigned bits, AES_KEY *aeskey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (bits != 128 && bits != 192 && bits != 256) { return -2; } diff --git a/crypto/fipsmodule/cipher/aead.c b/crypto/fipsmodule/cipher/aead.c index a5e47f98c6d..8ae39706a1c 100644 --- a/crypto/fipsmodule/cipher/aead.c +++ b/crypto/fipsmodule/cipher/aead.c @@ -79,7 +79,7 @@ int EVP_AEAD_CTX_init_with_direction(EVP_AEAD_CTX *ctx, const EVP_AEAD *aead, const uint8_t *key, size_t key_len, size_t tag_len, enum evp_aead_direction_t dir) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (key_len != aead->key_len) { OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_UNSUPPORTED_KEY_SIZE); ctx->aead = NULL; @@ -125,7 +125,7 @@ int EVP_AEAD_CTX_seal(const EVP_AEAD_CTX *ctx, uint8_t *out, size_t *out_len, size_t max_out_len, const uint8_t *nonce, size_t nonce_len, const uint8_t *in, size_t in_len, const uint8_t *ad, size_t ad_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (in_len + ctx->aead->overhead < in_len /* overflow */) { OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_TOO_LARGE); goto error; @@ -164,7 +164,7 @@ int EVP_AEAD_CTX_seal_scatter(const EVP_AEAD_CTX *ctx, uint8_t *out, size_t in_len, const uint8_t *extra_in, size_t extra_in_len, const uint8_t *ad, size_t ad_len) { - SET_DIT_AUTO_DISABLE; //check that it was preserved + SET_DIT_AUTO_RESET; //check that it was preserved // |in| and |out| may alias exactly, |out_tag| may not alias. if (!check_alias(in, in_len, out, in_len) || buffers_alias(out, in_len, out_tag, max_out_tag_len) || @@ -197,7 +197,7 @@ int EVP_AEAD_CTX_open(const EVP_AEAD_CTX *ctx, uint8_t *out, size_t *out_len, size_t max_out_len, const uint8_t *nonce, size_t nonce_len, const uint8_t *in, size_t in_len, const uint8_t *ad, size_t ad_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!check_alias(in, in_len, out, max_out_len)) { OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_OUTPUT_ALIASES_INPUT); goto error; @@ -245,7 +245,7 @@ int EVP_AEAD_CTX_open_gather(const EVP_AEAD_CTX *ctx, uint8_t *out, const uint8_t *in, size_t in_len, const uint8_t *in_tag, size_t in_tag_len, const uint8_t *ad, size_t ad_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!check_alias(in, in_len, out, in_len)) { OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_OUTPUT_ALIASES_INPUT); goto error; diff --git a/crypto/fipsmodule/cipher/cipher.c b/crypto/fipsmodule/cipher/cipher.c index 7a71fb2fc02..d3a13921def 100644 --- a/crypto/fipsmodule/cipher/cipher.c +++ b/crypto/fipsmodule/cipher/cipher.c @@ -104,7 +104,7 @@ void EVP_CIPHER_CTX_free(EVP_CIPHER_CTX *ctx) { } int EVP_CIPHER_CTX_copy(EVP_CIPHER_CTX *out, const EVP_CIPHER_CTX *in) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (in == NULL || in->cipher == NULL) { OPENSSL_PUT_ERROR(CIPHER, CIPHER_R_INPUT_NOT_INITIALIZED); return 0; @@ -146,7 +146,7 @@ int EVP_CIPHER_CTX_reset(EVP_CIPHER_CTX *ctx) { int EVP_CipherInit_ex(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *cipher, ENGINE *engine, const uint8_t *key, const uint8_t *iv, int enc) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; GUARD_PTR(ctx); if (enc == -1) { enc = ctx->encrypt; @@ -264,7 +264,7 @@ static int block_remainder(const EVP_CIPHER_CTX *ctx, int len) { int EVP_EncryptUpdate(EVP_CIPHER_CTX *ctx, uint8_t *out, int *out_len, const uint8_t *in, int in_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; GUARD_PTR(ctx); if (ctx->poisoned) { OPENSSL_PUT_ERROR(CIPHER, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED); @@ -357,7 +357,7 @@ int EVP_EncryptUpdate(EVP_CIPHER_CTX *ctx, uint8_t *out, int *out_len, } int EVP_EncryptFinal_ex(EVP_CIPHER_CTX *ctx, uint8_t *out, int *out_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int n; unsigned int i, b, bl; GUARD_PTR(ctx); @@ -412,7 +412,7 @@ int EVP_EncryptFinal_ex(EVP_CIPHER_CTX *ctx, uint8_t *out, int *out_len) { int EVP_DecryptUpdate(EVP_CIPHER_CTX *ctx, uint8_t *out, int *out_len, const uint8_t *in, int in_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; GUARD_PTR(ctx); if (ctx->poisoned) { OPENSSL_PUT_ERROR(CIPHER, ERR_R_SHOULD_NOT_HAVE_BEEN_CALLED); @@ -479,7 +479,7 @@ int EVP_DecryptUpdate(EVP_CIPHER_CTX *ctx, uint8_t *out, int *out_len, } int EVP_DecryptFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *out, int *out_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int i, n; unsigned int b; *out_len = 0; @@ -552,7 +552,7 @@ int EVP_DecryptFinal_ex(EVP_CIPHER_CTX *ctx, unsigned char *out, int *out_len) { int EVP_Cipher(EVP_CIPHER_CTX *ctx, uint8_t *out, const uint8_t *in, size_t in_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; GUARD_PTR(ctx); GUARD_PTR(ctx->cipher); const int ret = ctx->cipher->cipher(ctx, out, in, in_len); diff --git a/crypto/fipsmodule/curve25519/curve25519.c b/crypto/fipsmodule/curve25519/curve25519.c index 84b42661f2f..9a9e8fe7748 100644 --- a/crypto/fipsmodule/curve25519/curve25519.c +++ b/crypto/fipsmodule/curve25519/curve25519.c @@ -106,7 +106,7 @@ void ED25519_keypair_from_seed(uint8_t out_public_key[ED25519_PUBLIC_KEY_LEN], void ED25519_keypair(uint8_t out_public_key[ED25519_PUBLIC_KEY_LEN], uint8_t out_private_key[ED25519_PRIVATE_KEY_LEN]) { boringssl_ensure_eddsa_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // Ed25519 key generation: rfc8032 5.1.5 // Private key is 32 octets of random data. @@ -143,7 +143,7 @@ int ED25519_sign_no_self_test(uint8_t out_sig[ED25519_SIGNATURE_LEN], // seed = private_key[0:31] // A = private_key[32:61] (per 5.1.5.4) // Compute az = SHA512(seed). - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; uint8_t az[SHA512_DIGEST_LENGTH]; SHA512(private_key, ED25519_PRIVATE_KEY_SEED_LEN, az); // s = az[0:31] @@ -253,7 +253,7 @@ int ED25519_check_public_key(const uint8_t public_key[ED25519_PUBLIC_KEY_LEN]) { void X25519_public_from_private( uint8_t out_public_value[X25519_PUBLIC_VALUE_LEN], const uint8_t private_key[X25519_PRIVATE_KEY_LEN]) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; #if defined(CURVE25519_S2N_BIGNUM_CAPABLE) x25519_public_from_private_s2n_bignum(out_public_value, private_key); @@ -266,7 +266,7 @@ void X25519_public_from_private( void X25519_keypair(uint8_t out_public_value[X25519_PUBLIC_VALUE_LEN], uint8_t out_private_key[X25519_PRIVATE_KEY_LEN]) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RAND_bytes(out_private_key, X25519_PRIVATE_KEY_LEN); @@ -294,7 +294,7 @@ int X25519(uint8_t out_shared_key[X25519_SHARED_KEY_LEN], const uint8_t private_key[X25519_PRIVATE_KEY_LEN], const uint8_t peer_public_value[X25519_PUBLIC_VALUE_LEN]) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; static const uint8_t kZeros[X25519_SHARED_KEY_LEN] = {0}; #if defined(CURVE25519_S2N_BIGNUM_CAPABLE) diff --git a/crypto/fipsmodule/dh/dh.c b/crypto/fipsmodule/dh/dh.c index e0da26c7369..3d0f4543e85 100644 --- a/crypto/fipsmodule/dh/dh.c +++ b/crypto/fipsmodule/dh/dh.c @@ -97,7 +97,7 @@ DH *DH_new_by_nid(int nid) { } void DH_free(DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (dh == NULL) { return; } @@ -118,38 +118,38 @@ void DH_free(DH *dh) { } unsigned DH_bits(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return BN_num_bits(dh->p); } const BIGNUM *DH_get0_pub_key(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return dh->pub_key;; } const BIGNUM *DH_get0_priv_key(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return dh->priv_key; } const BIGNUM *DH_get0_p(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return dh->p; } const BIGNUM *DH_get0_q(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return dh->q; } const BIGNUM *DH_get0_g(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return dh->g; } void DH_get0_key(const DH *dh, const BIGNUM **out_pub_key, const BIGNUM **out_priv_key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (out_pub_key != NULL) { *out_pub_key = dh->pub_key; } @@ -159,13 +159,13 @@ void DH_get0_key(const DH *dh, const BIGNUM **out_pub_key, } void DH_clear_flags(DH *dh, int flags) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; (void) dh; (void) flags; } int DH_set0_key(DH *dh, BIGNUM *pub_key, BIGNUM *priv_key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pub_key != NULL) { BN_free(dh->pub_key); dh->pub_key = pub_key; @@ -181,7 +181,7 @@ int DH_set0_key(DH *dh, BIGNUM *pub_key, BIGNUM *priv_key) { void DH_get0_pqg(const DH *dh, const BIGNUM **out_p, const BIGNUM **out_q, const BIGNUM **out_g) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (out_p != NULL) { *out_p = dh->p; } @@ -194,7 +194,7 @@ void DH_get0_pqg(const DH *dh, const BIGNUM **out_p, const BIGNUM **out_q, } int DH_set0_pqg(DH *dh, BIGNUM *p, BIGNUM *q, BIGNUM *g) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if ((dh->p == NULL && p == NULL) || (dh->g == NULL && g == NULL)) { return 0; @@ -222,13 +222,13 @@ int DH_set0_pqg(DH *dh, BIGNUM *p, BIGNUM *q, BIGNUM *g) { } int DH_set_length(DH *dh, unsigned priv_length) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; dh->priv_length = priv_length; return 1; } int DH_generate_key(DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; boringssl_ensure_ffdh_self_test(); if (!dh_check_params_fast(dh)) { @@ -412,14 +412,14 @@ int dh_compute_key_padded_no_self_test(unsigned char *out, int DH_compute_key_padded(unsigned char *out, const BIGNUM *peers_key, DH *dh) { boringssl_ensure_ffdh_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return dh_compute_key_padded_no_self_test(out, peers_key, dh); } int DH_compute_key(unsigned char *out, const BIGNUM *peers_key, DH *dh) { boringssl_ensure_ffdh_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; BN_CTX *ctx = BN_CTX_new(); if (ctx == NULL) { @@ -442,7 +442,7 @@ int DH_compute_key(unsigned char *out, const BIGNUM *peers_key, DH *dh) { int DH_compute_key_hashed(DH *dh, uint8_t *out, size_t *out_len, size_t max_out_len, const BIGNUM *peers_key, const EVP_MD *digest) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; *out_len = SIZE_MAX; @@ -482,17 +482,17 @@ int DH_compute_key_hashed(DH *dh, uint8_t *out, size_t *out_len, } int DH_size(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return BN_num_bytes(dh->p); } unsigned DH_num_bits(const DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return BN_num_bits(dh->p); } int DH_up_ref(DH *dh) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; CRYPTO_refcount_inc(&dh->references); return 1; } diff --git a/crypto/fipsmodule/ec/ec.c b/crypto/fipsmodule/ec/ec.c index 4976dd82306..3d92bcae39c 100644 --- a/crypto/fipsmodule/ec/ec.c +++ b/crypto/fipsmodule/ec/ec.c @@ -846,7 +846,7 @@ int ec_point_mul_no_self_test(const EC_GROUP *group, EC_POINT *r, int EC_POINT_mul(const EC_GROUP *group, EC_POINT *r, const BIGNUM *g_scalar, const EC_POINT *p, const BIGNUM *p_scalar, BN_CTX *ctx) { boringssl_ensure_ecc_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return ec_point_mul_no_self_test(group, r, g_scalar, p, p_scalar, ctx); } @@ -882,7 +882,7 @@ int ec_point_mul_scalar_public_batch(const EC_GROUP *group, EC_JACOBIAN *r, int ec_point_mul_scalar(const EC_GROUP *group, EC_JACOBIAN *r, const EC_JACOBIAN *p, const EC_SCALAR *scalar) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (p == NULL || scalar == NULL) { OPENSSL_PUT_ERROR(EC, ERR_R_PASSED_NULL_PARAMETER); return 0; @@ -902,7 +902,7 @@ int ec_point_mul_scalar(const EC_GROUP *group, EC_JACOBIAN *r, int ec_point_mul_scalar_base(const EC_GROUP *group, EC_JACOBIAN *r, const EC_SCALAR *scalar) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (scalar == NULL) { OPENSSL_PUT_ERROR(EC, ERR_R_PASSED_NULL_PARAMETER); return 0; diff --git a/crypto/fipsmodule/evp/digestsign.c b/crypto/fipsmodule/evp/digestsign.c index 39914db92a3..914db617891 100644 --- a/crypto/fipsmodule/evp/digestsign.c +++ b/crypto/fipsmodule/evp/digestsign.c @@ -157,18 +157,18 @@ static int do_sigver_init(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx, int EVP_DigestSignInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx, const EVP_MD *type, ENGINE *e, EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return do_sigver_init(ctx, pctx, type, e, pkey, evp_sign); } int EVP_DigestVerifyInit(EVP_MD_CTX *ctx, EVP_PKEY_CTX **pctx, const EVP_MD *type, ENGINE *e, EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return do_sigver_init(ctx, pctx, type, e, pkey, evp_verify); } int EVP_DigestSignUpdate(EVP_MD_CTX *ctx, const void *data, size_t len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!uses_prehash(ctx, evp_sign) && !used_for_hmac(ctx)) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -178,7 +178,7 @@ int EVP_DigestSignUpdate(EVP_MD_CTX *ctx, const void *data, size_t len) { } int EVP_DigestVerifyUpdate(EVP_MD_CTX *ctx, const void *data, size_t len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!uses_prehash(ctx, evp_verify) || used_for_hmac(ctx)) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -189,7 +189,7 @@ int EVP_DigestVerifyUpdate(EVP_MD_CTX *ctx, const void *data, size_t len) { int EVP_DigestSignFinal(EVP_MD_CTX *ctx, uint8_t *out_sig, size_t *out_sig_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!uses_prehash(ctx, evp_sign) && !used_for_hmac(ctx)) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -235,7 +235,7 @@ int EVP_DigestSignFinal(EVP_MD_CTX *ctx, uint8_t *out_sig, } int EVP_DigestVerifyFinal(EVP_MD_CTX *ctx, const uint8_t *sig, size_t sig_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!uses_prehash(ctx, evp_verify) || used_for_hmac(ctx)) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -267,7 +267,7 @@ int EVP_DigestSign(EVP_MD_CTX *ctx, uint8_t *out_sig, size_t *out_sig_len, // We have to avoid the underlying |EVP_DigestSignFinal| services updating // the indicator state, so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret = 0; if (uses_prehash(ctx, evp_sign) || used_for_hmac(ctx)) { @@ -305,7 +305,7 @@ int EVP_DigestVerify(EVP_MD_CTX *ctx, const uint8_t *sig, size_t sig_len, // We have to avoid the underlying |EVP_DigestSignFinal| services updating // the indicator state, so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret = 0; if (uses_prehash(ctx, evp_verify) && !used_for_hmac(ctx)) { @@ -332,7 +332,7 @@ int EVP_DigestVerify(EVP_MD_CTX *ctx, const uint8_t *sig, size_t sig_len, } void EVP_MD_CTX_set_pkey_ctx(EVP_MD_CTX *ctx, EVP_PKEY_CTX *pctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // |pctx| could be null, so we have to deal with the cleanup job here. if (!(ctx->flags & EVP_MD_CTX_FLAG_KEEP_PKEY_CTX)) { EVP_PKEY_CTX_free(ctx->pctx); diff --git a/crypto/fipsmodule/evp/evp.c b/crypto/fipsmodule/evp/evp.c index 4aeb94f1fc8..ed85e8d02ec 100644 --- a/crypto/fipsmodule/evp/evp.c +++ b/crypto/fipsmodule/evp/evp.c @@ -105,7 +105,7 @@ static void free_it(EVP_PKEY *pkey) { } void EVP_PKEY_free(EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey == NULL) { return; } @@ -119,13 +119,13 @@ void EVP_PKEY_free(EVP_PKEY *pkey) { } int EVP_PKEY_up_ref(EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; CRYPTO_refcount_inc(&pkey->references); return 1; } int EVP_PKEY_is_opaque(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey->ameth && pkey->ameth->pkey_opaque) { return pkey->ameth->pkey_opaque(pkey); } @@ -133,7 +133,7 @@ int EVP_PKEY_is_opaque(const EVP_PKEY *pkey) { } int EVP_PKEY_cmp(const EVP_PKEY *a, const EVP_PKEY *b) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (a->type != b->type) { return -1; } @@ -157,7 +157,7 @@ int EVP_PKEY_cmp(const EVP_PKEY *a, const EVP_PKEY *b) { } int EVP_PKEY_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (to->type == EVP_PKEY_NONE) { evp_pkey_set_method(to, from->ameth); } else if (to->type != from->type) { @@ -189,7 +189,7 @@ int EVP_PKEY_copy_parameters(EVP_PKEY *to, const EVP_PKEY *from) { } int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey->ameth && pkey->ameth->param_missing) { return pkey->ameth->param_missing(pkey); } @@ -197,7 +197,7 @@ int EVP_PKEY_missing_parameters(const EVP_PKEY *pkey) { } int EVP_PKEY_size(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey && pkey->ameth && pkey->ameth->pkey_size) { return pkey->ameth->pkey_size(pkey); } @@ -205,7 +205,7 @@ int EVP_PKEY_size(const EVP_PKEY *pkey) { } int EVP_PKEY_bits(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey && pkey->ameth && pkey->ameth->pkey_bits) { return pkey->ameth->pkey_bits(pkey); } @@ -213,7 +213,7 @@ int EVP_PKEY_bits(const EVP_PKEY *pkey) { } int EVP_PKEY_id(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return pkey->type; } @@ -273,7 +273,7 @@ int EVP_PKEY_type(int nid) { EVP_PKEY *EVP_PKEY_new_mac_key(int type, ENGINE *engine, const uint8_t *mac_key, size_t mac_key_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // Only |EVP_PKEY_HMAC| is supported as of now. if (type != EVP_PKEY_HMAC) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); @@ -315,7 +315,7 @@ EVP_PKEY *EVP_PKEY_new_mac_key(int type, ENGINE *engine, const uint8_t *mac_key, } int EVP_PKEY_set1_RSA(EVP_PKEY *pkey, RSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (EVP_PKEY_assign_RSA(pkey, key)) { RSA_up_ref(key); return 1; @@ -324,7 +324,7 @@ int EVP_PKEY_set1_RSA(EVP_PKEY *pkey, RSA *key) { } int EVP_PKEY_assign_RSA(EVP_PKEY *pkey, RSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; const EVP_PKEY_ASN1_METHOD *meth = evp_pkey_asn1_find(EVP_PKEY_RSA); assert(meth != NULL); evp_pkey_set_method(pkey, meth); @@ -333,7 +333,7 @@ int EVP_PKEY_assign_RSA(EVP_PKEY *pkey, RSA *key) { } RSA *EVP_PKEY_get0_RSA(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey->type != EVP_PKEY_RSA && pkey->type != EVP_PKEY_RSA_PSS) { OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_AN_RSA_KEY); return NULL; @@ -342,7 +342,7 @@ RSA *EVP_PKEY_get0_RSA(const EVP_PKEY *pkey) { } RSA *EVP_PKEY_get1_RSA(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RSA *rsa = EVP_PKEY_get0_RSA(pkey); if (rsa != NULL) { RSA_up_ref(rsa); @@ -351,7 +351,7 @@ RSA *EVP_PKEY_get1_RSA(const EVP_PKEY *pkey) { } int EVP_PKEY_set1_DSA(EVP_PKEY *pkey, DSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (EVP_PKEY_assign_DSA(pkey, key)) { DSA_up_ref(key); return 1; @@ -360,7 +360,7 @@ int EVP_PKEY_set1_DSA(EVP_PKEY *pkey, DSA *key) { } int EVP_PKEY_assign_DSA(EVP_PKEY *pkey, DSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; const EVP_PKEY_ASN1_METHOD *meth = evp_pkey_asn1_find(EVP_PKEY_DSA); assert(meth != NULL); evp_pkey_set_method(pkey, meth); @@ -369,7 +369,7 @@ int EVP_PKEY_assign_DSA(EVP_PKEY *pkey, DSA *key) { } DSA *EVP_PKEY_get0_DSA(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey->type != EVP_PKEY_DSA) { OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_A_DSA_KEY); return NULL; @@ -378,7 +378,7 @@ DSA *EVP_PKEY_get0_DSA(const EVP_PKEY *pkey) { } DSA *EVP_PKEY_get1_DSA(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; DSA *dsa = EVP_PKEY_get0_DSA(pkey); if (dsa != NULL) { DSA_up_ref(dsa); @@ -387,7 +387,7 @@ DSA *EVP_PKEY_get1_DSA(const EVP_PKEY *pkey) { } int EVP_PKEY_set1_EC_KEY(EVP_PKEY *pkey, EC_KEY *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (EVP_PKEY_assign_EC_KEY(pkey, key)) { EC_KEY_up_ref(key); return 1; @@ -396,7 +396,7 @@ int EVP_PKEY_set1_EC_KEY(EVP_PKEY *pkey, EC_KEY *key) { } int EVP_PKEY_assign_EC_KEY(EVP_PKEY *pkey, EC_KEY *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; const EVP_PKEY_ASN1_METHOD *meth = evp_pkey_asn1_find(EVP_PKEY_EC); assert(meth != NULL); evp_pkey_set_method(pkey, meth); @@ -405,7 +405,7 @@ int EVP_PKEY_assign_EC_KEY(EVP_PKEY *pkey, EC_KEY *key) { } EC_KEY *EVP_PKEY_get0_EC_KEY(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey->type != EVP_PKEY_EC) { OPENSSL_PUT_ERROR(EVP, EVP_R_EXPECTING_AN_EC_KEY_KEY); return NULL; @@ -414,7 +414,7 @@ EC_KEY *EVP_PKEY_get0_EC_KEY(const EVP_PKEY *pkey) { } EC_KEY *EVP_PKEY_get1_EC_KEY(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; EC_KEY *ec_key = EVP_PKEY_get0_EC_KEY(pkey); if (ec_key != NULL) { EC_KEY_up_ref(ec_key); @@ -426,7 +426,7 @@ int EVP_PKEY_assign(EVP_PKEY *pkey, int type, void *key) { // This function can only be used to assign RSA, DSA, EC, and DH keys. Other // key types have internal representations which are not exposed through the // public API. - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; switch (type) { case EVP_PKEY_RSA: return EVP_PKEY_assign_RSA(pkey, key); @@ -446,7 +446,7 @@ int EVP_PKEY_assign(EVP_PKEY *pkey, int type, void *key) { } int EVP_PKEY_set_type(EVP_PKEY *pkey, int type) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey && pkey->pkey.ptr) { // This isn't strictly necessary, but historically |EVP_PKEY_set_type| would // clear |pkey| even if |evp_pkey_asn1_find| failed, so we preserve that @@ -470,7 +470,7 @@ int EVP_PKEY_set_type(EVP_PKEY *pkey, int type) { EVP_PKEY *EVP_PKEY_new_raw_private_key(int type, ENGINE *unused, const uint8_t *in, size_t len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; EVP_PKEY *ret = EVP_PKEY_new(); if (ret == NULL || !EVP_PKEY_set_type(ret, type)) { @@ -519,7 +519,7 @@ EVP_PKEY *EVP_PKEY_new_raw_public_key(int type, ENGINE *unused, int EVP_PKEY_get_raw_private_key(const EVP_PKEY *pkey, uint8_t *out, size_t *out_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey == NULL || pkey->ameth == NULL || pkey->ameth->get_priv_raw == NULL) { @@ -532,7 +532,7 @@ int EVP_PKEY_get_raw_private_key(const EVP_PKEY *pkey, uint8_t *out, int EVP_PKEY_get_raw_public_key(const EVP_PKEY *pkey, uint8_t *out, size_t *out_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (pkey == NULL || pkey->ameth == NULL || pkey->ameth->get_pub_raw == NULL) { @@ -544,7 +544,7 @@ int EVP_PKEY_get_raw_public_key(const EVP_PKEY *pkey, uint8_t *out, } int EVP_PKEY_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (a->type != b->type) { return -1; } @@ -557,19 +557,19 @@ int EVP_PKEY_cmp_parameters(const EVP_PKEY *a, const EVP_PKEY *b) { } int EVP_PKEY_CTX_set_signature_md(EVP_PKEY_CTX *ctx, const EVP_MD *md) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, EVP_PKEY_CTRL_MD, 0, (void *)md); } int EVP_PKEY_CTX_get_signature_md(EVP_PKEY_CTX *ctx, const EVP_MD **out_md) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return EVP_PKEY_CTX_ctrl(ctx, -1, EVP_PKEY_OP_TYPE_SIG, EVP_PKEY_CTRL_GET_MD, 0, (void *)out_md); } void *EVP_PKEY_get0(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; GUARD_PTR(pkey); switch (pkey->type) { case EVP_PKEY_RSA: @@ -593,7 +593,7 @@ void OpenSSL_add_all_digests(void) {} void EVP_cleanup(void) {} int EVP_PKEY_base_id(const EVP_PKEY *pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // OpenSSL has two notions of key type because it supports multiple OIDs for // the same algorithm: NID_rsa vs NID_rsaEncryption and five distinct spelling // of DSA. We do not support these, so the base ID is simply the ID. @@ -746,7 +746,7 @@ static int evp_pkey_set1_tls_encodedpoint_x25519(EVP_PKEY *pkey, int EVP_PKEY_set1_tls_encodedpoint(EVP_PKEY *pkey, const uint8_t *in, size_t len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (NULL == pkey) { OPENSSL_PUT_ERROR(EVP, ERR_R_PASSED_NULL_PARAMETER); goto err; @@ -860,7 +860,7 @@ static size_t evp_pkey_get1_tls_encodedpoint_x25519(const EVP_PKEY *pkey, } size_t EVP_PKEY_get1_tls_encodedpoint(const EVP_PKEY *pkey, uint8_t **out_ptr) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (NULL == pkey) { OPENSSL_PUT_ERROR(EVP, ERR_R_PASSED_NULL_PARAMETER); goto err; diff --git a/crypto/fipsmodule/evp/evp_ctx.c b/crypto/fipsmodule/evp/evp_ctx.c index e827c39caf4..2ff5f8f7fc9 100644 --- a/crypto/fipsmodule/evp/evp_ctx.c +++ b/crypto/fipsmodule/evp/evp_ctx.c @@ -144,7 +144,7 @@ static EVP_PKEY_CTX *evp_pkey_ctx_new(EVP_PKEY *pkey, ENGINE *e, int id) { } EVP_PKEY_CTX *EVP_PKEY_CTX_new(EVP_PKEY *pkey, ENGINE *e) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return evp_pkey_ctx_new(pkey, e, -1); } @@ -153,7 +153,7 @@ EVP_PKEY_CTX *EVP_PKEY_CTX_new_id(int id, ENGINE *e) { } void EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (ctx == NULL) { return; } @@ -166,7 +166,7 @@ void EVP_PKEY_CTX_free(EVP_PKEY_CTX *ctx) { } EVP_PKEY_CTX *EVP_PKEY_CTX_dup(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx->pmeth || !ctx->pmeth->copy) { return NULL; } @@ -201,13 +201,13 @@ EVP_PKEY_CTX *EVP_PKEY_CTX_dup(EVP_PKEY_CTX *ctx) { } EVP_PKEY *EVP_PKEY_CTX_get0_pkey(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return ctx->pkey; } int EVP_PKEY_CTX_ctrl(EVP_PKEY_CTX *ctx, int keytype, int optype, int cmd, int p1, void *p2) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->ctrl) { OPENSSL_PUT_ERROR(EVP, EVP_R_COMMAND_NOT_SUPPORTED); return 0; @@ -231,7 +231,7 @@ int EVP_PKEY_CTX_ctrl(EVP_PKEY_CTX *ctx, int keytype, int optype, int cmd, } int EVP_PKEY_sign_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (ctx == NULL || ctx->pmeth == NULL || (ctx->pmeth->sign == NULL && ctx->pmeth->sign_message == NULL)) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); @@ -248,7 +248,7 @@ int EVP_PKEY_sign_init(EVP_PKEY_CTX *ctx) { int EVP_PKEY_sign(EVP_PKEY_CTX *ctx, uint8_t *sig, size_t *sig_len, const uint8_t *digest, size_t digest_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->sign) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -261,7 +261,7 @@ int EVP_PKEY_sign(EVP_PKEY_CTX *ctx, uint8_t *sig, size_t *sig_len, } int EVP_PKEY_verify_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (ctx == NULL || ctx->pmeth == NULL || (ctx->pmeth->verify == NULL && ctx->pmeth->verify_message == NULL)) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); @@ -277,7 +277,7 @@ int EVP_PKEY_verify_init(EVP_PKEY_CTX *ctx) { int EVP_PKEY_verify(EVP_PKEY_CTX *ctx, const uint8_t *sig, size_t sig_len, const uint8_t *digest, size_t digest_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->verify) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -300,7 +300,7 @@ int EVP_PKEY_encrypt_init(EVP_PKEY_CTX *ctx) { int EVP_PKEY_encrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen, const uint8_t *in, size_t inlen) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->encrypt) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -313,7 +313,7 @@ int EVP_PKEY_encrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen, } int EVP_PKEY_decrypt_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->decrypt) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -324,7 +324,7 @@ int EVP_PKEY_decrypt_init(EVP_PKEY_CTX *ctx) { int EVP_PKEY_decrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen, const uint8_t *in, size_t inlen) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->decrypt) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -337,7 +337,7 @@ int EVP_PKEY_decrypt(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *outlen, } int EVP_PKEY_verify_recover_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->verify_recover) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -348,7 +348,7 @@ int EVP_PKEY_verify_recover_init(EVP_PKEY_CTX *ctx) { int EVP_PKEY_verify_recover(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *out_len, const uint8_t *sig, size_t sig_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->verify_recover) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -361,7 +361,7 @@ int EVP_PKEY_verify_recover(EVP_PKEY_CTX *ctx, uint8_t *out, size_t *out_len, } int EVP_PKEY_derive_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->derive) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -371,7 +371,7 @@ int EVP_PKEY_derive_init(EVP_PKEY_CTX *ctx) { } int EVP_PKEY_derive_set_peer(EVP_PKEY_CTX *ctx, EVP_PKEY *peer) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret; if (!ctx || !ctx->pmeth || !(ctx->pmeth->derive || ctx->pmeth->encrypt || ctx->pmeth->decrypt) || @@ -432,7 +432,7 @@ int EVP_PKEY_derive_set_peer(EVP_PKEY_CTX *ctx, EVP_PKEY *peer) { } int EVP_PKEY_derive(EVP_PKEY_CTX *ctx, uint8_t *key, size_t *out_key_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->derive) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -445,7 +445,7 @@ int EVP_PKEY_derive(EVP_PKEY_CTX *ctx, uint8_t *key, size_t *out_key_len) { } int EVP_PKEY_keygen_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->keygen) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -495,7 +495,7 @@ int EVP_PKEY_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY **out_pkey) { // We have to avoid potential underlying services updating the indicator state, // so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret = 0; if (!ctx || !ctx->pmeth || !ctx->pmeth->keygen) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); @@ -534,7 +534,7 @@ int EVP_PKEY_keygen(EVP_PKEY_CTX *ctx, EVP_PKEY **out_pkey) { } int EVP_PKEY_paramgen_init(EVP_PKEY_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->paramgen) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -544,7 +544,7 @@ int EVP_PKEY_paramgen_init(EVP_PKEY_CTX *ctx) { } int EVP_PKEY_paramgen(EVP_PKEY_CTX *ctx, EVP_PKEY **out_pkey) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!ctx || !ctx->pmeth || !ctx->pmeth->paramgen) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); return 0; @@ -597,7 +597,7 @@ int EVP_PKEY_encapsulate(EVP_PKEY_CTX *ctx, uint8_t *ciphertext, // We have to avoid potential underlying services updating the indicator // state, so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret = 0; if (ctx == NULL || ctx->pmeth == NULL || ctx->pmeth->encapsulate == NULL) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); @@ -623,7 +623,7 @@ int EVP_PKEY_decapsulate(EVP_PKEY_CTX *ctx, uint8_t *shared_secret, // We have to avoid potential underlying services updating the indicator // state, so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret = 0; if (ctx == NULL || ctx->pmeth == NULL || ctx->pmeth->decapsulate == NULL) { OPENSSL_PUT_ERROR(EVP, EVP_R_OPERATION_NOT_SUPPORTED_FOR_THIS_KEYTYPE); diff --git a/crypto/fipsmodule/evp/p_hkdf.c b/crypto/fipsmodule/evp/p_hkdf.c index 2fbc31fa3c8..c2265d325ed 100644 --- a/crypto/fipsmodule/evp/p_hkdf.c +++ b/crypto/fipsmodule/evp/p_hkdf.c @@ -211,7 +211,7 @@ int EVP_PKEY_CTX_set_hkdf_md(EVP_PKEY_CTX *ctx, const EVP_MD *md) { int EVP_PKEY_CTX_set1_hkdf_key(EVP_PKEY_CTX *ctx, const uint8_t *key, size_t key_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; CBS cbs; CBS_init(&cbs, key, key_len); return EVP_PKEY_CTX_ctrl(ctx, EVP_PKEY_HKDF, EVP_PKEY_OP_DERIVE, diff --git a/crypto/fipsmodule/hkdf/hkdf.c b/crypto/fipsmodule/hkdf/hkdf.c index bccdaf15277..951e111e6e6 100644 --- a/crypto/fipsmodule/hkdf/hkdf.c +++ b/crypto/fipsmodule/hkdf/hkdf.c @@ -64,7 +64,7 @@ int HKDF_extract(uint8_t *out_key, size_t *out_len, const EVP_MD *digest, // We have to avoid the underlying HMAC services updating the indicator // state, so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // If salt is not given, HashLength zeros are used. However, HMAC does that // internally already so we can ignore it. unsigned len; @@ -104,7 +104,7 @@ int HKDF_expand(uint8_t *out_key, size_t out_len, const EVP_MD *digest, // We have to avoid the underlying HMAC services updating the indicator // state, so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (!HMAC_Init_ex(&hmac, prk, prk_len, digest, NULL)) { goto out; } diff --git a/crypto/fipsmodule/rand/ctrdrbg.c b/crypto/fipsmodule/rand/ctrdrbg.c index 3b523376c2d..a6f435b696d 100644 --- a/crypto/fipsmodule/rand/ctrdrbg.c +++ b/crypto/fipsmodule/rand/ctrdrbg.c @@ -30,7 +30,7 @@ static const uint64_t kMaxReseedCount = UINT64_C(1) << 48; CTR_DRBG_STATE *CTR_DRBG_new(const uint8_t entropy[CTR_DRBG_ENTROPY_LEN], const uint8_t *personalization, size_t personalization_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; CTR_DRBG_STATE *drbg = OPENSSL_malloc(sizeof(CTR_DRBG_STATE)); if (drbg == NULL || !CTR_DRBG_init(drbg, entropy, personalization, personalization_len)) { @@ -42,14 +42,14 @@ CTR_DRBG_STATE *CTR_DRBG_new(const uint8_t entropy[CTR_DRBG_ENTROPY_LEN], } void CTR_DRBG_free(CTR_DRBG_STATE *state) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; OPENSSL_free(state); } int CTR_DRBG_init(CTR_DRBG_STATE *drbg, const uint8_t entropy[CTR_DRBG_ENTROPY_LEN], const uint8_t *personalization, size_t personalization_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // Section 10.2.1.3.1 if (personalization_len > CTR_DRBG_ENTROPY_LEN) { return 0; @@ -123,7 +123,7 @@ int CTR_DRBG_reseed(CTR_DRBG_STATE *drbg, const uint8_t entropy[CTR_DRBG_ENTROPY_LEN], const uint8_t *additional_data, size_t additional_data_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // Section 10.2.1.4 uint8_t entropy_copy[CTR_DRBG_ENTROPY_LEN]; @@ -152,7 +152,7 @@ int CTR_DRBG_reseed(CTR_DRBG_STATE *drbg, int CTR_DRBG_generate(CTR_DRBG_STATE *drbg, uint8_t *out, size_t out_len, const uint8_t *additional_data, size_t additional_data_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; // See 9.3.1 if (out_len > CTR_DRBG_MAX_GENERATE_LENGTH) { return 0; diff --git a/crypto/fipsmodule/rsa/rsa.c b/crypto/fipsmodule/rsa/rsa.c index 6134c24bc98..e612174a0ec 100644 --- a/crypto/fipsmodule/rsa/rsa.c +++ b/crypto/fipsmodule/rsa/rsa.c @@ -111,7 +111,7 @@ RSA *RSA_new_public_key(const BIGNUM *n, const BIGNUM *e) { RSA *RSA_new_private_key(const BIGNUM *n, const BIGNUM *e, const BIGNUM *d, const BIGNUM *p, const BIGNUM *q, const BIGNUM *dmp1, const BIGNUM *dmq1, const BIGNUM *iqmp) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RSA *rsa = RSA_new(); if (rsa == NULL || // !bn_dup_into(&rsa->n, n) || // @@ -132,7 +132,7 @@ RSA *RSA_new_private_key(const BIGNUM *n, const BIGNUM *e, const BIGNUM *d, RSA *RSA_new_private_key_no_crt(const BIGNUM *n, const BIGNUM *e, const BIGNUM *d) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RSA *rsa = RSA_new(); if (rsa == NULL || // !bn_dup_into(&rsa->n, n) || // @@ -147,7 +147,7 @@ RSA *RSA_new_private_key_no_crt(const BIGNUM *n, const BIGNUM *e, } RSA *RSA_new_private_key_no_e(const BIGNUM *n, const BIGNUM *d) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RSA *rsa = RSA_new(); if (rsa == NULL) { return NULL; @@ -185,7 +185,7 @@ RSA *RSA_new_private_key_large_e(const BIGNUM *n, const BIGNUM *e, const BIGNUM *d, const BIGNUM *p, const BIGNUM *q, const BIGNUM *dmp1, const BIGNUM *dmq1, const BIGNUM *iqmp) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RSA *rsa = RSA_new(); if (rsa == NULL) { return NULL; @@ -251,7 +251,7 @@ RSA *RSA_new_method_no_e(const ENGINE *engine, const BIGNUM *n) { } void RSA_free(RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (rsa == NULL) { return; } @@ -282,59 +282,59 @@ void RSA_free(RSA *rsa) { } int RSA_up_ref(RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; CRYPTO_refcount_inc(&rsa->references); return 1; } unsigned RSA_bits(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return BN_num_bits(rsa->n); } const BIGNUM *RSA_get0_n(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->n; } const BIGNUM *RSA_get0_e(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->e; } const BIGNUM *RSA_get0_d(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->d; } const BIGNUM *RSA_get0_p(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->p; } const BIGNUM *RSA_get0_q(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->q; } const BIGNUM *RSA_get0_dmp1(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->dmp1; } const BIGNUM *RSA_get0_dmq1(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->dmq1; } const BIGNUM *RSA_get0_iqmp(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->iqmp; } void RSA_get0_key(const RSA *rsa, const BIGNUM **out_n, const BIGNUM **out_e, const BIGNUM **out_d) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (out_n != NULL) { *out_n = rsa->n; } @@ -348,7 +348,7 @@ void RSA_get0_key(const RSA *rsa, const BIGNUM **out_n, const BIGNUM **out_e, void RSA_get0_factors(const RSA *rsa, const BIGNUM **out_p, const BIGNUM **out_q) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (out_p != NULL) { *out_p = rsa->p; } @@ -360,13 +360,13 @@ void RSA_get0_factors(const RSA *rsa, const BIGNUM **out_p, const RSA_PSS_PARAMS *RSA_get0_pss_params(const RSA *rsa) { // We do not support the id-RSASSA-PSS key encoding. If we add support later, // the |maskHash| field should be filled in for OpenSSL compatibility. - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return NULL; } void RSA_get0_crt_params(const RSA *rsa, const BIGNUM **out_dmp1, const BIGNUM **out_dmq1, const BIGNUM **out_iqmp) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (out_dmp1 != NULL) { *out_dmp1 = rsa->dmp1; } @@ -379,7 +379,7 @@ void RSA_get0_crt_params(const RSA *rsa, const BIGNUM **out_dmp1, } int RSA_set0_key(RSA *rsa, BIGNUM *n, BIGNUM *e, BIGNUM *d) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if ((rsa->n == NULL && n == NULL) || (rsa->e == NULL && e == NULL && rsa->d == NULL && d == NULL)) { return 0; @@ -403,7 +403,7 @@ int RSA_set0_key(RSA *rsa, BIGNUM *n, BIGNUM *e, BIGNUM *d) { } int RSA_set0_factors(RSA *rsa, BIGNUM *p, BIGNUM *q) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if ((rsa->p == NULL && p == NULL) || (rsa->q == NULL && q == NULL)) { return 0; @@ -424,7 +424,7 @@ int RSA_set0_factors(RSA *rsa, BIGNUM *p, BIGNUM *q) { } int RSA_set0_crt_params(RSA *rsa, BIGNUM *dmp1, BIGNUM *dmq1, BIGNUM *iqmp) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if ((rsa->dmp1 == NULL && dmp1 == NULL) || (rsa->dmq1 == NULL && dmq1 == NULL) || (rsa->iqmp == NULL && iqmp == NULL)) { @@ -585,7 +585,7 @@ int RSA_meth_set_sign(RSA_METHOD *meth, int (*sign) (int type, static int rsa_sign_raw_no_self_test(RSA *rsa, size_t *out_len, uint8_t *out, size_t max_out, const uint8_t *in, size_t in_len, int padding) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (rsa->meth && rsa->meth->sign_raw) { // In OpenSSL, the RSA_METHOD |sign_raw| or |priv_enc| operation does // not directly take and initialize an |out_len| parameter. Instead, it @@ -609,14 +609,14 @@ static int rsa_sign_raw_no_self_test(RSA *rsa, size_t *out_len, uint8_t *out, int RSA_sign_raw(RSA *rsa, size_t *out_len, uint8_t *out, size_t max_out, const uint8_t *in, size_t in_len, int padding) { boringssl_ensure_rsa_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa_sign_raw_no_self_test(rsa, out_len, out, max_out, in, in_len, padding); } unsigned RSA_size(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; size_t ret = (rsa->meth && rsa->meth->size) ? rsa->meth->size(rsa) : rsa_default_size(rsa); // RSA modulus sizes are bounded by |BIGNUM|, which must fit in |unsigned|. @@ -627,13 +627,13 @@ unsigned RSA_size(const RSA *rsa) { } int RSA_is_opaque(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa->meth && (rsa->meth->flags & RSA_FLAG_OPAQUE); } int RSA_get_ex_new_index(long argl, void *argp, CRYPTO_EX_unused *unused, CRYPTO_EX_dup *dup_unused, CRYPTO_EX_free *free_func) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int index; if (!CRYPTO_get_ex_new_index(g_rsa_ex_data_class_bss_get(), &index, argl, argp, free_func)) { @@ -643,12 +643,12 @@ int RSA_get_ex_new_index(long argl, void *argp, CRYPTO_EX_unused *unused, } int RSA_set_ex_data(RSA *rsa, int idx, void *arg) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return CRYPTO_set_ex_data(&rsa->ex_data, idx, arg); } void *RSA_get_ex_data(const RSA *rsa, int idx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return CRYPTO_get_ex_data(&rsa->ex_data, idx); } @@ -885,7 +885,7 @@ int rsa_sign_no_self_test(int hash_nid, const uint8_t *digest, int RSA_sign(int hash_nid, const uint8_t *digest, size_t digest_len, uint8_t *out, unsigned *out_len, RSA *rsa) { boringssl_ensure_rsa_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa_sign_no_self_test(hash_nid, digest, digest_len, out, out_len, rsa); } @@ -893,7 +893,7 @@ int RSA_sign(int hash_nid, const uint8_t *digest, size_t digest_len, int RSA_sign_pss_mgf1(RSA *rsa, size_t *out_len, uint8_t *out, size_t max_out, const uint8_t *digest, size_t digest_len, const EVP_MD *md, const EVP_MD *mgf1_md, int salt_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (digest_len != EVP_MD_size(md)) { OPENSSL_PUT_ERROR(RSA, RSA_R_INVALID_MESSAGE_LENGTH); return 0; @@ -917,7 +917,7 @@ int RSA_sign_pss_mgf1(RSA *rsa, size_t *out_len, uint8_t *out, size_t max_out, int rsa_digestsign_no_self_test(const EVP_MD *md, const uint8_t *input, size_t in_len, uint8_t *out, unsigned *out_len, RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; uint8_t digest[EVP_MAX_MD_SIZE]; unsigned int digest_len = EVP_MAX_MD_SIZE; if (!EVP_Digest(input, in_len, digest, &digest_len, md, NULL)) { @@ -999,7 +999,7 @@ int rsa_digestverify_no_self_test(const EVP_MD *md, const uint8_t *input, int RSA_verify(int hash_nid, const uint8_t *digest, size_t digest_len, const uint8_t *sig, size_t sig_len, RSA *rsa) { boringssl_ensure_rsa_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa_verify_no_self_test(hash_nid, digest, digest_len, sig, sig_len, rsa); } @@ -1007,7 +1007,7 @@ int RSA_verify(int hash_nid, const uint8_t *digest, size_t digest_len, int RSA_verify_pss_mgf1(RSA *rsa, const uint8_t *digest, size_t digest_len, const EVP_MD *md, const EVP_MD *mgf1_md, int salt_len, const uint8_t *sig, size_t sig_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (digest_len != EVP_MD_size(md)) { OPENSSL_PUT_ERROR(RSA, RSA_R_INVALID_MESSAGE_LENGTH); return 0; @@ -1048,12 +1048,12 @@ int rsa_private_transform_no_self_test(RSA *rsa, uint8_t *out, int rsa_private_transform(RSA *rsa, uint8_t *out, const uint8_t *in, size_t len) { boringssl_ensure_rsa_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return rsa_private_transform_no_self_test(rsa, out, in, len); } int RSA_flags(const RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (rsa == NULL) { OPENSSL_PUT_ERROR(RSA, ERR_R_PASSED_NULL_PARAMETER); return 0; @@ -1073,7 +1073,7 @@ void RSA_set_flags(RSA *rsa, int flags) { } int RSA_test_flags(const RSA *rsa, int flags) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (rsa) { return rsa->flags & flags; } @@ -1083,19 +1083,19 @@ int RSA_test_flags(const RSA *rsa, int flags) { } int RSA_blinding_on(RSA *rsa, BN_CTX *ctx) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; return (rsa != NULL && ((rsa->flags & RSA_FLAG_NO_BLINDING) == 0)) ? 1 : 0; } void RSA_blinding_off_temp_for_accp_compatibility(RSA *rsa) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (rsa != NULL) { rsa->flags |= RSA_FLAG_NO_BLINDING; } } int RSA_pkey_ctx_ctrl(EVP_PKEY_CTX *ctx, int optype, int cmd, int p1, void *p2) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (ctx != NULL && ctx->pmeth != NULL) { if (ctx->pmeth->pkey_id == EVP_PKEY_RSA || ctx->pmeth->pkey_id == EVP_PKEY_RSA_PSS) { @@ -1120,7 +1120,7 @@ int RSA_pkey_ctx_ctrl(EVP_PKEY_CTX *ctx, int optype, int cmd, int p1, void *p2) // or <= n when RSA_FLAG_LARGE_PUBLIC_EXPONENT is set. // int is_public_component_of_rsa_key_good(const RSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (key->n == NULL) { OPENSSL_PUT_ERROR(RSA, RSA_R_VALUE_MISSING); return 0; @@ -1202,7 +1202,7 @@ enum rsa_key_type_for_checking { static enum rsa_key_type_for_checking determine_key_type_for_checking(const RSA *key) { // The key must have the modulus n. - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; if (key->n == NULL) { return RSA_KEY_TYPE_FOR_CHECKING_INVALID; } @@ -1270,7 +1270,7 @@ static enum rsa_key_type_for_checking determine_key_type_for_checking(const RSA // Note: see the rsa_key_type_for_checking enum for details on types of keys // the function can work with. int RSA_check_key(const RSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; enum rsa_key_type_for_checking key_type = determine_key_type_for_checking(key); if (key_type == RSA_KEY_TYPE_FOR_CHECKING_INVALID) { OPENSSL_PUT_ERROR(RSA, RSA_R_BAD_RSA_PARAMETERS); @@ -1498,7 +1498,7 @@ DEFINE_LOCAL_DATA(BIGNUM, g_small_factors) { // that the AWS-LC FIPS module offers only RSA signing and verification as // approved FIPS services. int RSA_check_fips(RSA *key) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; enum rsa_key_type_for_checking key_type = determine_key_type_for_checking(key); // In addition to invalid key type, stripped private keys can not be checked diff --git a/crypto/fipsmodule/rsa/rsa_impl.c b/crypto/fipsmodule/rsa/rsa_impl.c index 4eb90849748..4cac18b203e 100644 --- a/crypto/fipsmodule/rsa/rsa_impl.c +++ b/crypto/fipsmodule/rsa/rsa_impl.c @@ -1181,7 +1181,7 @@ static int RSA_generate_key_ex_maybe_fips(RSA *rsa, int bits, const BIGNUM *e_value, BN_GENCB *cb, int check_fips) { boringssl_ensure_rsa_self_test(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; RSA *tmp = NULL; uint32_t err; diff --git a/crypto/fipsmodule/sshkdf/sshkdf.c b/crypto/fipsmodule/sshkdf/sshkdf.c index a8b758ce41c..a12d1fafddb 100644 --- a/crypto/fipsmodule/sshkdf/sshkdf.c +++ b/crypto/fipsmodule/sshkdf/sshkdf.c @@ -21,7 +21,7 @@ int SSHKDF(const EVP_MD *evp_md, char type, uint8_t *out, size_t out_len) { - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; EVP_MD_CTX *md = NULL; uint8_t digest[EVP_MAX_MD_SIZE]; unsigned int digest_size = 0; diff --git a/crypto/fipsmodule/tls/kdf.c b/crypto/fipsmodule/tls/kdf.c index ab84d368bb0..4089fd34af4 100644 --- a/crypto/fipsmodule/tls/kdf.c +++ b/crypto/fipsmodule/tls/kdf.c @@ -143,7 +143,7 @@ int CRYPTO_tls1_prf(const EVP_MD *digest, // We have to avoid the underlying HMAC services updating the indicator state, // so we lock the state here. FIPS_service_indicator_lock_state(); - SET_DIT_AUTO_DISABLE; + SET_DIT_AUTO_RESET; int ret = 0; const EVP_MD *original_digest = digest; if (out_len == 0) { diff --git a/include/openssl/crypto.h b/include/openssl/crypto.h index 3aec763c934..41b34fb26f9 100644 --- a/include/openssl/crypto.h +++ b/include/openssl/crypto.h @@ -107,7 +107,7 @@ OPENSSL_EXPORT void armv8_disable_dit(void); OPENSSL_EXPORT void armv8_enable_dit(void); #if defined(ENABLE_AUTO_SET_RESET_DIT) -// SET_DIT_AUTO_DISABLE can be inserted in the caller's application at +// SET_DIT_AUTO_RESET can be inserted in the caller's application at // the beginning of the code section that makes repeated calls to AWS-LC // functions. The flag will be automatically restored to its original value // at the end of the scope. @@ -116,17 +116,17 @@ OPENSSL_EXPORT void armv8_enable_dit(void); // Instead of the macro, the functions above can be used. // An example of their usage is present in the benchmarking function // `Speed()` in `tool/speed.cc` when the option `-dit` is passed in. -#define SET_DIT_AUTO_DISABLE \ +#define SET_DIT_AUTO_RESET \ volatile uint64_t _dit_restore_orig \ __attribute__((cleanup(armv8_restore_dit))) \ OPENSSL_UNUSED = armv8_set_dit(); #else -#define SET_DIT_AUTO_DISABLE +#define SET_DIT_AUTO_RESET #endif // ENABLE_AUTO_SET_RESET_DIT #else -#define SET_DIT_AUTO_DISABLE +#define SET_DIT_AUTO_RESET #endif // OPENSSL_AARCH64 && !OPENSSL_WINDOWS // FIPS monitoring