Swap to FIPS186-2 DSA generation outside of the FIPS module

author Matt Caswell <matt@openssl.org>

Fri, 23 Oct 2020 11:35:00 +0000 (12:35 +0100)

committer Matt Caswell <matt@openssl.org>

Wed, 18 Nov 2020 14:54:18 +0000 (14:54 +0000)
author Matt Caswell <matt@openssl.org>
Fri, 23 Oct 2020 11:35:00 +0000 (12:35 +0100)
committer Matt Caswell <matt@openssl.org>
Wed, 18 Nov 2020 14:54:18 +0000 (14:54 +0000)
diff --git a/doc/man3/EVP_PKEY_CTX_ctrl.pod b/doc/man3/EVP_PKEY_CTX_ctrl.pod

index 8b06a49d066cca6db49ef0b2ef715cc38c3df8b6..1de332c3b3eb8adbf4edb59808a59cb32bb9703d 100644 (file)
--- a/doc/man3/EVP_PKEY_CTX_ctrl.pod
+++ b/doc/man3/EVP_PKEY_CTX_ctrl.pod
@@ -455,9 +455,10 @@ Uses a safe prime generator g (PKCS#3 format).
  
  =back
  
-The default is B<DH_PARAMGEN_TYPE_GENERATOR> in the default provider for the
-"DH" keytype, and B<DH_PARAMGEN_TYPE_FIPS_186_4> in the FIPS provider and for
-the "DHX" keytype in the default provider.
+The default in the default provider is B<DH_PARAMGEN_TYPE_GENERATOR> for the
+"DH" keytype, and B<DH_PARAMGEN_TYPE_FIPS_186_2> for the "DHX" keytype. In the
+FIPS provider the default value is B<DH_PARAMGEN_TYPE_GROUP> for the "DH"
+keytype and <B<DH_PARAMGEN_TYPE_FIPS_186_4> for the "DHX" keytype.
  
  EVP_PKEY_CTX_set_dh_paramgen_gindex() sets the I<gindex> used by the generator G.
  The default value is -1 which uses unverifiable g, otherwise a positive value
diff --git a/providers/implementations/keymgmt/build.info b/providers/implementations/keymgmt/build.info

index d55f0b3c18327f36082d335359070b70abe8aa49..75f61a6de1e623ccbc0d0a65ac6123a2d007f245 100644 (file)
--- a/providers/implementations/keymgmt/build.info
+++ b/providers/implementations/keymgmt/build.info
@@ -1,7 +1,6 @@
  # We make separate GOAL variables for each algorithm, to make it easy to
  # switch each to the Legacy provider when needed.
  
-$DSA_GOAL=../../libimplementations.a
  $EC_GOAL=../../libimplementations.a
  $ECX_GOAL=../../libimplementations.a
  $KDF_GOAL=../../libimplementations.a
@@ -11,7 +10,8 @@ IF[{- !$disabled{dh} -}]
    SOURCE[../../libnonfips.a]=dh_kmgmt.c
  ENDIF
  IF[{- !$disabled{dsa} -}]
-  SOURCE[$DSA_GOAL]=dsa_kmgmt.c
+  SOURCE[../../libfips.a]=dsa_kmgmt.c
+  SOURCE[../../libnonfips.a]=dsa_kmgmt.c
  ENDIF
  IF[{- !$disabled{ec} -}]
    SOURCE[$EC_GOAL]=ec_kmgmt.c
diff --git a/providers/implementations/keymgmt/dsa_kmgmt.c b/providers/implementations/keymgmt/dsa_kmgmt.c

index c3f178d34c90163a2051cc88fd7d567bd57bc75d..6dbd4503863f06e271eb6bcc26a34d72dba850e3 100644 (file)
--- a/providers/implementations/keymgmt/dsa_kmgmt.c
+++ b/providers/implementations/keymgmt/dsa_kmgmt.c
@@ -75,7 +75,11 @@ typedef struct dh_name2id_st{
  
  static const DSA_GENTYPE_NAME2ID dsatype2id[]=
  {
+#ifdef FIPS_MODULE
      { "default", DSA_PARAMGEN_TYPE_FIPS_186_4 },
+#else
+    { "default", DSA_PARAMGEN_TYPE_FIPS_186_2 },
+#endif
      { "fips186_4", DSA_PARAMGEN_TYPE_FIPS_186_4 },
      { "fips186_2", DSA_PARAMGEN_TYPE_FIPS_186_2 },
  };
@@ -374,7 +378,11 @@ static void *dsa_gen_init(void *provctx, int selection)
          gctx->libctx = libctx;
          gctx->pbits = 2048;
          gctx->qbits = 224;
+#ifdef FIPS_MODULE
          gctx->gen_type = DSA_PARAMGEN_TYPE_FIPS_186_4;
+#else
+        gctx->gen_type = DSA_PARAMGEN_TYPE_FIPS_186_2;
+#endif
          gctx->gindex = -1;
          gctx->pcounter = -1;
          gctx->hindex = 0;
diff --git a/test/dsatest.c b/test/dsatest.c

index 614a8ea1d8ecd6b4332cc3fcd0dc9de89fd4997b..962946602e5ad1e9de933bb4b5357873effb5b8b 100644 (file)
--- a/test/dsatest.c
+++ b/test/dsatest.c
@@ -249,6 +249,7 @@ static int dsa_keygen_test(void)
          || !TEST_ptr(settables = EVP_PKEY_CTX_settable_params(pg_ctx))
          || !TEST_ptr(OSSL_PARAM_locate_const(settables,
                                               OSSL_PKEY_PARAM_FFC_PBITS))
+        || !TEST_true(EVP_PKEY_CTX_set_dsa_paramgen_type(pg_ctx, "fips186_4"))
          || !TEST_true(EVP_PKEY_CTX_set_dsa_paramgen_bits(pg_ctx, 2048))
          || !TEST_true(EVP_PKEY_CTX_set_dsa_paramgen_q_bits(pg_ctx, 224))
          || !TEST_true(EVP_PKEY_CTX_set_dsa_paramgen_seed(pg_ctx, seed_data,
diff --git a/test/recipes/15-test_gendsa.t b/test/recipes/15-test_gendsa.t

index 4dc387cac566b6e04d52b936572fb9e0b5f72203..910cc7da56ea9f8ea1c7ab543ae6b3216482a2e1 100644 (file)
--- a/test/recipes/15-test_gendsa.t
+++ b/test/recipes/15-test_gendsa.t
@@ -79,6 +79,7 @@ ok(run(app([ 'openssl', 'genpkey',
  # Just put some dummy ones in to show it works.
  ok(run(app([ 'openssl', 'genpkey',
               '-paramfile', 'dsagen.der',
+             '-pkeyopt', 'type:fips186_4',
               '-pkeyopt', 'gindex:1',
               '-pkeyopt', 'hexseed:0102030405060708090A0B0C0D0E0F1011121314',
               '-pkeyopt', 'pcounter:25',
author	Matt Caswell <matt@openssl.org>
	Fri, 23 Oct 2020 11:35:00 +0000 (12:35 +0100)
committer	Matt Caswell <matt@openssl.org>
	Wed, 18 Nov 2020 14:54:18 +0000 (14:54 +0000)
doc/man3/EVP_PKEY_CTX_ctrl.pod		patch \| blob \| history
providers/implementations/keymgmt/build.info		patch \| blob \| history
providers/implementations/keymgmt/dsa_kmgmt.c		patch \| blob \| history
test/dsatest.c		patch \| blob \| history
test/recipes/15-test_gendsa.t		patch \| blob \| history