2
0

ecdsa.c 17 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540
  1. /*
  2. * Copyright 2020 The OpenSSL Project Authors. All Rights Reserved.
  3. *
  4. * Licensed under the Apache License 2.0 (the "License"). You may not use
  5. * this file except in compliance with the License. You can obtain a copy
  6. * in the file LICENSE in the source distribution or at
  7. * https://www.openssl.org/source/license.html
  8. */
  9. /*
  10. * ECDSA low level APIs are deprecated for public use, but still ok for
  11. * internal use.
  12. */
  13. #include "internal/deprecated.h"
  14. #include <string.h> /* memcpy */
  15. #include <openssl/crypto.h>
  16. #include <openssl/core_dispatch.h>
  17. #include <openssl/core_names.h>
  18. #include <openssl/dsa.h>
  19. #include <openssl/params.h>
  20. #include <openssl/evp.h>
  21. #include <openssl/err.h>
  22. #include "internal/nelem.h"
  23. #include "internal/sizes.h"
  24. #include "internal/cryptlib.h"
  25. #include "prov/providercommonerr.h"
  26. #include "prov/implementations.h"
  27. #include "prov/provider_ctx.h"
  28. #include "crypto/ec.h"
  29. #include "prov/der_ec.h"
  30. static OSSL_FUNC_signature_newctx_fn ecdsa_newctx;
  31. static OSSL_FUNC_signature_sign_init_fn ecdsa_signature_init;
  32. static OSSL_FUNC_signature_verify_init_fn ecdsa_signature_init;
  33. static OSSL_FUNC_signature_sign_fn ecdsa_sign;
  34. static OSSL_FUNC_signature_verify_fn ecdsa_verify;
  35. static OSSL_FUNC_signature_digest_sign_init_fn ecdsa_digest_signverify_init;
  36. static OSSL_FUNC_signature_digest_sign_update_fn ecdsa_digest_signverify_update;
  37. static OSSL_FUNC_signature_digest_sign_final_fn ecdsa_digest_sign_final;
  38. static OSSL_FUNC_signature_digest_verify_init_fn ecdsa_digest_signverify_init;
  39. static OSSL_FUNC_signature_digest_verify_update_fn ecdsa_digest_signverify_update;
  40. static OSSL_FUNC_signature_digest_verify_final_fn ecdsa_digest_verify_final;
  41. static OSSL_FUNC_signature_freectx_fn ecdsa_freectx;
  42. static OSSL_FUNC_signature_dupctx_fn ecdsa_dupctx;
  43. static OSSL_FUNC_signature_get_ctx_params_fn ecdsa_get_ctx_params;
  44. static OSSL_FUNC_signature_gettable_ctx_params_fn ecdsa_gettable_ctx_params;
  45. static OSSL_FUNC_signature_set_ctx_params_fn ecdsa_set_ctx_params;
  46. static OSSL_FUNC_signature_settable_ctx_params_fn ecdsa_settable_ctx_params;
  47. static OSSL_FUNC_signature_get_ctx_md_params_fn ecdsa_get_ctx_md_params;
  48. static OSSL_FUNC_signature_gettable_ctx_md_params_fn ecdsa_gettable_ctx_md_params;
  49. static OSSL_FUNC_signature_set_ctx_md_params_fn ecdsa_set_ctx_md_params;
  50. static OSSL_FUNC_signature_settable_ctx_md_params_fn ecdsa_settable_ctx_md_params;
  51. /*
  52. * What's passed as an actual key is defined by the KEYMGMT interface.
  53. * We happen to know that our KEYMGMT simply passes DSA structures, so
  54. * we use that here too.
  55. */
  56. typedef struct {
  57. OPENSSL_CTX *libctx;
  58. char *propq;
  59. EC_KEY *ec;
  60. char mdname[OSSL_MAX_NAME_SIZE];
  61. /* The Algorithm Identifier of the combined signature algorithm */
  62. unsigned char aid_buf[OSSL_MAX_ALGORITHM_ID_SIZE];
  63. unsigned char *aid;
  64. size_t aid_len;
  65. size_t mdsize;
  66. EVP_MD *md;
  67. EVP_MD_CTX *mdctx;
  68. /*
  69. * Internally used to cache the results of calling the EC group
  70. * sign_setup() methods which are then passed to the sign operation.
  71. * This is used by CAVS failure tests to terminate a loop if the signature
  72. * is not valid.
  73. * This could of also been done with a simple flag.
  74. */
  75. BIGNUM *kinv;
  76. BIGNUM *r;
  77. #if defined(FIPS_MODULE) && !defined(OPENSSL_NO_ACVP_TESTS)
  78. /*
  79. * This indicates that KAT (CAVS) test is running. Externally an app will
  80. * override the random callback such that the generated private key and k
  81. * are known.
  82. * Normal operation will loop to choose a new k if the signature is not
  83. * valid - but for this mode of operation it forces a failure instead.
  84. */
  85. unsigned int kattest;
  86. #endif
  87. } PROV_ECDSA_CTX;
  88. static void *ecdsa_newctx(void *provctx, const char *propq)
  89. {
  90. PROV_ECDSA_CTX *ctx = OPENSSL_zalloc(sizeof(PROV_ECDSA_CTX));
  91. if (ctx == NULL)
  92. return NULL;
  93. ctx->libctx = PROV_LIBRARY_CONTEXT_OF(provctx);
  94. if (propq != NULL && (ctx->propq = OPENSSL_strdup(propq)) == NULL) {
  95. OPENSSL_free(ctx);
  96. ctx = NULL;
  97. ERR_raise(ERR_LIB_PROV, ERR_R_MALLOC_FAILURE);
  98. }
  99. return ctx;
  100. }
  101. static int ecdsa_signature_init(void *vctx, void *ec)
  102. {
  103. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  104. if (ctx == NULL || ec == NULL || !EC_KEY_up_ref(ec))
  105. return 0;
  106. EC_KEY_free(ctx->ec);
  107. ctx->ec = ec;
  108. return 1;
  109. }
  110. static int ecdsa_sign(void *vctx, unsigned char *sig, size_t *siglen,
  111. size_t sigsize, const unsigned char *tbs, size_t tbslen)
  112. {
  113. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  114. int ret;
  115. unsigned int sltmp;
  116. size_t ecsize = ECDSA_size(ctx->ec);
  117. if (sig == NULL) {
  118. *siglen = ecsize;
  119. return 1;
  120. }
  121. #if defined(FIPS_MODULE) && !defined(OPENSSL_NO_ACVP_TESTS)
  122. if (ctx->kattest && !ECDSA_sign_setup(ctx->ec, NULL, &ctx->kinv, &ctx->r))
  123. return 0;
  124. #endif
  125. if (sigsize < (size_t)ecsize)
  126. return 0;
  127. if (ctx->mdsize != 0 && tbslen != ctx->mdsize)
  128. return 0;
  129. ret = ECDSA_sign_ex(0, tbs, tbslen, sig, &sltmp, ctx->kinv, ctx->r, ctx->ec);
  130. if (ret <= 0)
  131. return 0;
  132. *siglen = sltmp;
  133. return 1;
  134. }
  135. static int ecdsa_verify(void *vctx, const unsigned char *sig, size_t siglen,
  136. const unsigned char *tbs, size_t tbslen)
  137. {
  138. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  139. if (ctx->mdsize != 0 && tbslen != ctx->mdsize)
  140. return 0;
  141. return ECDSA_verify(0, tbs, tbslen, sig, siglen, ctx->ec);
  142. }
  143. static int get_md_nid(const EVP_MD *md)
  144. {
  145. /*
  146. * Because the ECDSA library deals with NIDs, we need to translate.
  147. * We do so using EVP_MD_is_a(), and therefore need a name to NID
  148. * map.
  149. */
  150. static const OSSL_ITEM name_to_nid[] = {
  151. { NID_sha1, OSSL_DIGEST_NAME_SHA1 },
  152. { NID_sha224, OSSL_DIGEST_NAME_SHA2_224 },
  153. { NID_sha256, OSSL_DIGEST_NAME_SHA2_256 },
  154. { NID_sha384, OSSL_DIGEST_NAME_SHA2_384 },
  155. { NID_sha512, OSSL_DIGEST_NAME_SHA2_512 },
  156. { NID_sha3_224, OSSL_DIGEST_NAME_SHA3_224 },
  157. { NID_sha3_256, OSSL_DIGEST_NAME_SHA3_256 },
  158. { NID_sha3_384, OSSL_DIGEST_NAME_SHA3_384 },
  159. { NID_sha3_512, OSSL_DIGEST_NAME_SHA3_512 },
  160. /* TODO - Add SHAKE OIDS when they are standardized */
  161. };
  162. size_t i;
  163. int mdnid = NID_undef;
  164. if (md == NULL)
  165. goto end;
  166. for (i = 0; i < OSSL_NELEM(name_to_nid); i++) {
  167. if (EVP_MD_is_a(md, name_to_nid[i].ptr)) {
  168. mdnid = (int)name_to_nid[i].id;
  169. break;
  170. }
  171. }
  172. if (mdnid == NID_undef)
  173. ERR_raise(ERR_LIB_PROV, PROV_R_INVALID_DIGEST);
  174. end:
  175. return mdnid;
  176. }
  177. static void free_md(PROV_ECDSA_CTX *ctx)
  178. {
  179. OPENSSL_free(ctx->propq);
  180. EVP_MD_CTX_free(ctx->mdctx);
  181. EVP_MD_free(ctx->md);
  182. ctx->propq = NULL;
  183. ctx->mdctx = NULL;
  184. ctx->md = NULL;
  185. ctx->mdsize = 0;
  186. }
  187. static int ecdsa_digest_signverify_init(void *vctx, const char *mdname,
  188. void *ec)
  189. {
  190. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  191. int md_nid = NID_undef;
  192. WPACKET pkt;
  193. free_md(ctx);
  194. if (!ecdsa_signature_init(vctx, ec))
  195. return 0;
  196. ctx->md = EVP_MD_fetch(ctx->libctx, mdname, ctx->propq);
  197. if ((md_nid = get_md_nid(ctx->md)) == NID_undef)
  198. goto error;
  199. ctx->mdsize = EVP_MD_size(ctx->md);
  200. ctx->mdctx = EVP_MD_CTX_new();
  201. if (ctx->mdctx == NULL)
  202. goto error;
  203. /*
  204. * TODO(3.0) Should we care about DER writing errors?
  205. * All it really means is that for some reason, there's no
  206. * AlgorithmIdentifier to be had, but the operation itself is
  207. * still valid, just as long as it's not used to construct
  208. * anything that needs an AlgorithmIdentifier.
  209. */
  210. ctx->aid_len = 0;
  211. if (WPACKET_init_der(&pkt, ctx->aid_buf, sizeof(ctx->aid_buf))
  212. && DER_w_algorithmIdentifier_ECDSA_with_MD(&pkt, -1, ctx->ec, md_nid)
  213. && WPACKET_finish(&pkt)) {
  214. WPACKET_get_total_written(&pkt, &ctx->aid_len);
  215. ctx->aid = WPACKET_get_curr(&pkt);
  216. }
  217. WPACKET_cleanup(&pkt);
  218. if (!EVP_DigestInit_ex(ctx->mdctx, ctx->md, NULL))
  219. goto error;
  220. return 1;
  221. error:
  222. free_md(ctx);
  223. return 0;
  224. }
  225. int ecdsa_digest_signverify_update(void *vctx, const unsigned char *data,
  226. size_t datalen)
  227. {
  228. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  229. if (ctx == NULL || ctx->mdctx == NULL)
  230. return 0;
  231. return EVP_DigestUpdate(ctx->mdctx, data, datalen);
  232. }
  233. int ecdsa_digest_sign_final(void *vctx, unsigned char *sig, size_t *siglen,
  234. size_t sigsize)
  235. {
  236. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  237. unsigned char digest[EVP_MAX_MD_SIZE];
  238. unsigned int dlen = 0;
  239. if (ctx == NULL || ctx->mdctx == NULL)
  240. return 0;
  241. /*
  242. * If sig is NULL then we're just finding out the sig size. Other fields
  243. * are ignored. Defer to ecdsa_sign.
  244. */
  245. if (sig != NULL) {
  246. /*
  247. * TODO(3.0): There is the possibility that some externally provided
  248. * digests exceed EVP_MAX_MD_SIZE. We should probably handle that somehow -
  249. * but that problem is much larger than just in DSA.
  250. */
  251. if (!EVP_DigestFinal_ex(ctx->mdctx, digest, &dlen))
  252. return 0;
  253. }
  254. return ecdsa_sign(vctx, sig, siglen, sigsize, digest, (size_t)dlen);
  255. }
  256. int ecdsa_digest_verify_final(void *vctx, const unsigned char *sig,
  257. size_t siglen)
  258. {
  259. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  260. unsigned char digest[EVP_MAX_MD_SIZE];
  261. unsigned int dlen = 0;
  262. if (ctx == NULL || ctx->mdctx == NULL)
  263. return 0;
  264. /*
  265. * TODO(3.0): There is the possibility that some externally provided
  266. * digests exceed EVP_MAX_MD_SIZE. We should probably handle that somehow -
  267. * but that problem is much larger than just in DSA.
  268. */
  269. if (!EVP_DigestFinal_ex(ctx->mdctx, digest, &dlen))
  270. return 0;
  271. return ecdsa_verify(ctx, sig, siglen, digest, (size_t)dlen);
  272. }
  273. static void ecdsa_freectx(void *vctx)
  274. {
  275. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  276. free_md(ctx);
  277. EC_KEY_free(ctx->ec);
  278. BN_clear_free(ctx->kinv);
  279. BN_clear_free(ctx->r);
  280. OPENSSL_free(ctx);
  281. }
  282. static void *ecdsa_dupctx(void *vctx)
  283. {
  284. PROV_ECDSA_CTX *srcctx = (PROV_ECDSA_CTX *)vctx;
  285. PROV_ECDSA_CTX *dstctx;
  286. dstctx = OPENSSL_zalloc(sizeof(*srcctx));
  287. if (dstctx == NULL)
  288. return NULL;
  289. *dstctx = *srcctx;
  290. dstctx->ec = NULL;
  291. dstctx->md = NULL;
  292. dstctx->mdctx = NULL;
  293. if (srcctx->ec != NULL && !EC_KEY_up_ref(srcctx->ec))
  294. goto err;
  295. /* Test KATS should not need to be supported */
  296. if (srcctx->kinv != NULL || srcctx->r != NULL)
  297. goto err;
  298. dstctx->ec = srcctx->ec;
  299. if (srcctx->md != NULL && !EVP_MD_up_ref(srcctx->md))
  300. goto err;
  301. dstctx->md = srcctx->md;
  302. if (srcctx->mdctx != NULL) {
  303. dstctx->mdctx = EVP_MD_CTX_new();
  304. if (dstctx->mdctx == NULL
  305. || !EVP_MD_CTX_copy_ex(dstctx->mdctx, srcctx->mdctx))
  306. goto err;
  307. }
  308. return dstctx;
  309. err:
  310. ecdsa_freectx(dstctx);
  311. return NULL;
  312. }
  313. static int ecdsa_get_ctx_params(void *vctx, OSSL_PARAM *params)
  314. {
  315. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  316. OSSL_PARAM *p;
  317. if (ctx == NULL || params == NULL)
  318. return 0;
  319. p = OSSL_PARAM_locate(params, OSSL_SIGNATURE_PARAM_ALGORITHM_ID);
  320. if (p != NULL && !OSSL_PARAM_set_octet_string(p, ctx->aid, ctx->aid_len))
  321. return 0;
  322. p = OSSL_PARAM_locate(params, OSSL_SIGNATURE_PARAM_DIGEST_SIZE);
  323. if (p != NULL && !OSSL_PARAM_set_size_t(p, ctx->mdsize))
  324. return 0;
  325. p = OSSL_PARAM_locate(params, OSSL_SIGNATURE_PARAM_DIGEST);
  326. if (p != NULL && !OSSL_PARAM_set_utf8_string(p, ctx->md == NULL
  327. ? ctx->mdname
  328. : EVP_MD_name(ctx->md)))
  329. return 0;
  330. return 1;
  331. }
  332. static const OSSL_PARAM known_gettable_ctx_params[] = {
  333. OSSL_PARAM_octet_string(OSSL_SIGNATURE_PARAM_ALGORITHM_ID, NULL, 0),
  334. OSSL_PARAM_size_t(OSSL_SIGNATURE_PARAM_DIGEST_SIZE, NULL),
  335. OSSL_PARAM_utf8_string(OSSL_SIGNATURE_PARAM_DIGEST, NULL, 0),
  336. OSSL_PARAM_END
  337. };
  338. static const OSSL_PARAM *ecdsa_gettable_ctx_params(ossl_unused void *provctx)
  339. {
  340. return known_gettable_ctx_params;
  341. }
  342. static int ecdsa_set_ctx_params(void *vctx, const OSSL_PARAM params[])
  343. {
  344. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  345. const OSSL_PARAM *p;
  346. char *mdname;
  347. if (ctx == NULL || params == NULL)
  348. return 0;
  349. if (ctx->md != NULL) {
  350. /*
  351. * You cannot set the digest name/size when doing a DigestSign or
  352. * DigestVerify.
  353. */
  354. return 1;
  355. }
  356. #if defined(FIPS_MODULE) && !defined(OPENSSL_NO_ACVP_TESTS)
  357. p = OSSL_PARAM_locate_const(params, OSSL_SIGNATURE_PARAM_KAT);
  358. if (p != NULL && !OSSL_PARAM_get_uint(p, &ctx->kattest))
  359. return 0;
  360. #endif
  361. p = OSSL_PARAM_locate_const(params, OSSL_SIGNATURE_PARAM_DIGEST_SIZE);
  362. if (p != NULL && !OSSL_PARAM_get_size_t(p, &ctx->mdsize))
  363. return 0;
  364. /*
  365. * We never actually use the mdname, but we do support getting it later.
  366. * This can be useful for applications that want to know the MD that they
  367. * previously set.
  368. */
  369. p = OSSL_PARAM_locate_const(params, OSSL_SIGNATURE_PARAM_DIGEST);
  370. mdname = ctx->mdname;
  371. if (p != NULL
  372. && !OSSL_PARAM_get_utf8_string(p, &mdname, sizeof(ctx->mdname)))
  373. return 0;
  374. return 1;
  375. }
  376. static const OSSL_PARAM known_settable_ctx_params[] = {
  377. OSSL_PARAM_size_t(OSSL_SIGNATURE_PARAM_DIGEST_SIZE, NULL),
  378. OSSL_PARAM_utf8_string(OSSL_SIGNATURE_PARAM_DIGEST, NULL, 0),
  379. OSSL_PARAM_uint(OSSL_SIGNATURE_PARAM_KAT, NULL),
  380. OSSL_PARAM_END
  381. };
  382. static const OSSL_PARAM *ecdsa_settable_ctx_params(ossl_unused void *provctx)
  383. {
  384. /*
  385. * TODO(3.0): Should this function return a different set of settable ctx
  386. * params if the ctx is being used for a DigestSign/DigestVerify? In that
  387. * case it is not allowed to set the digest size/digest name because the
  388. * digest is explicitly set as part of the init.
  389. */
  390. return known_settable_ctx_params;
  391. }
  392. static int ecdsa_get_ctx_md_params(void *vctx, OSSL_PARAM *params)
  393. {
  394. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  395. if (ctx->mdctx == NULL)
  396. return 0;
  397. return EVP_MD_CTX_get_params(ctx->mdctx, params);
  398. }
  399. static const OSSL_PARAM *ecdsa_gettable_ctx_md_params(void *vctx)
  400. {
  401. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  402. if (ctx->md == NULL)
  403. return 0;
  404. return EVP_MD_gettable_ctx_params(ctx->md);
  405. }
  406. static int ecdsa_set_ctx_md_params(void *vctx, const OSSL_PARAM params[])
  407. {
  408. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  409. if (ctx->mdctx == NULL)
  410. return 0;
  411. return EVP_MD_CTX_set_params(ctx->mdctx, params);
  412. }
  413. static const OSSL_PARAM *ecdsa_settable_ctx_md_params(void *vctx)
  414. {
  415. PROV_ECDSA_CTX *ctx = (PROV_ECDSA_CTX *)vctx;
  416. if (ctx->md == NULL)
  417. return 0;
  418. return EVP_MD_settable_ctx_params(ctx->md);
  419. }
  420. const OSSL_DISPATCH ecdsa_signature_functions[] = {
  421. { OSSL_FUNC_SIGNATURE_NEWCTX, (void (*)(void))ecdsa_newctx },
  422. { OSSL_FUNC_SIGNATURE_SIGN_INIT, (void (*)(void))ecdsa_signature_init },
  423. { OSSL_FUNC_SIGNATURE_SIGN, (void (*)(void))ecdsa_sign },
  424. { OSSL_FUNC_SIGNATURE_VERIFY_INIT, (void (*)(void))ecdsa_signature_init },
  425. { OSSL_FUNC_SIGNATURE_VERIFY, (void (*)(void))ecdsa_verify },
  426. { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_INIT,
  427. (void (*)(void))ecdsa_digest_signverify_init },
  428. { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_UPDATE,
  429. (void (*)(void))ecdsa_digest_signverify_update },
  430. { OSSL_FUNC_SIGNATURE_DIGEST_SIGN_FINAL,
  431. (void (*)(void))ecdsa_digest_sign_final },
  432. { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_INIT,
  433. (void (*)(void))ecdsa_digest_signverify_init },
  434. { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_UPDATE,
  435. (void (*)(void))ecdsa_digest_signverify_update },
  436. { OSSL_FUNC_SIGNATURE_DIGEST_VERIFY_FINAL,
  437. (void (*)(void))ecdsa_digest_verify_final },
  438. { OSSL_FUNC_SIGNATURE_FREECTX, (void (*)(void))ecdsa_freectx },
  439. { OSSL_FUNC_SIGNATURE_DUPCTX, (void (*)(void))ecdsa_dupctx },
  440. { OSSL_FUNC_SIGNATURE_GET_CTX_PARAMS, (void (*)(void))ecdsa_get_ctx_params },
  441. { OSSL_FUNC_SIGNATURE_GETTABLE_CTX_PARAMS,
  442. (void (*)(void))ecdsa_gettable_ctx_params },
  443. { OSSL_FUNC_SIGNATURE_SET_CTX_PARAMS, (void (*)(void))ecdsa_set_ctx_params },
  444. { OSSL_FUNC_SIGNATURE_SETTABLE_CTX_PARAMS,
  445. (void (*)(void))ecdsa_settable_ctx_params },
  446. { OSSL_FUNC_SIGNATURE_GET_CTX_MD_PARAMS,
  447. (void (*)(void))ecdsa_get_ctx_md_params },
  448. { OSSL_FUNC_SIGNATURE_GETTABLE_CTX_MD_PARAMS,
  449. (void (*)(void))ecdsa_gettable_ctx_md_params },
  450. { OSSL_FUNC_SIGNATURE_SET_CTX_MD_PARAMS,
  451. (void (*)(void))ecdsa_set_ctx_md_params },
  452. { OSSL_FUNC_SIGNATURE_SETTABLE_CTX_MD_PARAMS,
  453. (void (*)(void))ecdsa_settable_ctx_md_params },
  454. { 0, NULL }
  455. };