2005-07-05 01:21:44 +00:00
|
|
|
/*
|
2009-03-29 20:19:18 +00:00
|
|
|
* keys.c - decoding a public key or signature and verifying them
|
|
|
|
|
*
|
|
|
|
|
* This file is part of the SSH Library
|
|
|
|
|
*
|
|
|
|
|
* Copyright (c) 2003-2005 by Aris Adamantiadis
|
|
|
|
|
*
|
|
|
|
|
* The SSH Library is free software; you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU Lesser General Public License as published by
|
|
|
|
|
* the Free Software Foundation; either version 2.1 of the License, or (at your
|
|
|
|
|
* option) any later version.
|
|
|
|
|
*
|
|
|
|
|
* The SSH Library is distributed in the hope that it will be useful, but
|
|
|
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
|
|
|
|
|
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public
|
|
|
|
|
* License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public License
|
|
|
|
|
* along with the SSH Library; see the file COPYING. If not, write to
|
|
|
|
|
* the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston,
|
|
|
|
|
* MA 02111-1307, USA.
|
|
|
|
|
*/
|
2005-07-05 01:21:44 +00:00
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#include <stdlib.h>
|
2005-07-05 01:21:44 +00:00
|
|
|
#include <string.h>
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBCRYPTO
|
2005-07-05 01:21:44 +00:00
|
|
|
#include <openssl/dsa.h>
|
|
|
|
|
#include <openssl/rsa.h>
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2005-07-05 01:21:44 +00:00
|
|
|
#include "libssh/priv.h"
|
2009-07-27 17:59:02 +02:00
|
|
|
#include "libssh/ssh2.h"
|
|
|
|
|
#include "libssh/server.h"
|
2009-09-23 23:51:04 +02:00
|
|
|
#include "libssh/buffer.h"
|
|
|
|
|
#include "libssh/agent.h"
|
|
|
|
|
#include "libssh/session.h"
|
2009-09-26 01:15:48 +02:00
|
|
|
#include "libssh/keys.h"
|
|
|
|
|
#include "libssh/dh.h"
|
2009-09-26 14:05:58 +02:00
|
|
|
#include "libssh/messages.h"
|
2005-07-05 01:21:44 +00:00
|
|
|
|
2008-05-13 23:09:41 +00:00
|
|
|
/** \addtogroup ssh_auth
|
|
|
|
|
* @{
|
|
|
|
|
*/
|
2005-07-05 01:21:44 +00:00
|
|
|
/* Public key decoding functions */
|
|
|
|
|
|
2009-04-05 10:00:41 +00:00
|
|
|
const char *ssh_type_to_char(int type) {
|
2009-04-18 11:18:35 +00:00
|
|
|
switch (type) {
|
|
|
|
|
case TYPE_DSS:
|
|
|
|
|
return "ssh-dss";
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
return "ssh-rsa";
|
|
|
|
|
case TYPE_RSA1:
|
|
|
|
|
return "ssh-rsa1";
|
|
|
|
|
default:
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2009-04-05 11:26:34 +00:00
|
|
|
int ssh_type_from_name(const char *name) {
|
2009-02-06 09:46:10 +00:00
|
|
|
if (strcmp(name, "rsa1") == 0) {
|
|
|
|
|
return TYPE_RSA1;
|
|
|
|
|
} else if (strcmp(name, "rsa") == 0) {
|
|
|
|
|
return TYPE_RSA;
|
|
|
|
|
} else if (strcmp(name, "dsa") == 0) {
|
|
|
|
|
return TYPE_DSS;
|
|
|
|
|
} else if (strcmp(name, "ssh-rsa1") == 0) {
|
|
|
|
|
return TYPE_RSA1;
|
|
|
|
|
} else if (strcmp(name, "ssh-rsa") == 0) {
|
|
|
|
|
return TYPE_RSA;
|
|
|
|
|
} else if (strcmp(name, "ssh-dss") == 0) {
|
|
|
|
|
return TYPE_DSS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_public_key publickey_make_dss(ssh_session session, ssh_buffer buffer) {
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string p = NULL;
|
|
|
|
|
ssh_string q = NULL;
|
|
|
|
|
ssh_string g = NULL;
|
|
|
|
|
ssh_string pubkey = NULL;
|
2009-07-24 22:02:32 +02:00
|
|
|
ssh_public_key key = NULL;
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-07-24 22:02:32 +02:00
|
|
|
key = malloc(sizeof(struct ssh_public_key_struct));
|
2009-04-08 12:52:32 +00:00
|
|
|
if (key == NULL) {
|
2009-04-17 18:30:25 +00:00
|
|
|
buffer_free(buffer);
|
2009-04-08 12:52:32 +00:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 11:05:21 +00:00
|
|
|
key->type = TYPE_DSS;
|
2009-04-18 11:18:35 +00:00
|
|
|
key->type_c = ssh_type_to_char(key->type);
|
2009-04-08 12:52:32 +00:00
|
|
|
|
|
|
|
|
p = buffer_get_ssh_string(buffer);
|
|
|
|
|
q = buffer_get_ssh_string(buffer);
|
|
|
|
|
g = buffer_get_ssh_string(buffer);
|
|
|
|
|
pubkey = buffer_get_ssh_string(buffer);
|
|
|
|
|
|
|
|
|
|
buffer_free(buffer); /* we don't need it anymore */
|
|
|
|
|
|
|
|
|
|
if (p == NULL || q == NULL || g == NULL || pubkey == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Invalid DSA public key");
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 12:52:32 +00:00
|
|
|
gcry_sexp_build(&key->dsa_pub, NULL,
|
|
|
|
|
"(public-key(dsa(p %b)(q %b)(g %b)(y %b)))",
|
2009-09-25 23:38:09 +02:00
|
|
|
string_len(p), string_data(p),
|
|
|
|
|
string_len(q), string_data(q),
|
|
|
|
|
string_len(g), string_data(g),
|
|
|
|
|
string_len(pubkey), string_data(pubkey));
|
2009-04-08 12:52:32 +00:00
|
|
|
if (key->dsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-08 12:52:32 +00:00
|
|
|
|
|
|
|
|
key->dsa_pub = DSA_new();
|
|
|
|
|
if (key->dsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
key->dsa_pub->p = make_string_bn(p);
|
|
|
|
|
key->dsa_pub->q = make_string_bn(q);
|
|
|
|
|
key->dsa_pub->g = make_string_bn(g);
|
|
|
|
|
key->dsa_pub->pub_key = make_string_bn(pubkey);
|
|
|
|
|
if (key->dsa_pub->p == NULL ||
|
|
|
|
|
key->dsa_pub->q == NULL ||
|
|
|
|
|
key->dsa_pub->g == NULL ||
|
|
|
|
|
key->dsa_pub->pub_key == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
#endif /* HAVE_LIBCRYPTO */
|
|
|
|
|
|
2009-04-08 13:03:50 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
|
|
|
|
ssh_print_hexa("p", p->string, string_len(p));
|
|
|
|
|
ssh_print_hexa("q", q->string, string_len(q));
|
|
|
|
|
ssh_print_hexa("g", g->string, string_len(g));
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-04-08 12:52:32 +00:00
|
|
|
string_burn(p);
|
|
|
|
|
string_free(p);
|
|
|
|
|
string_burn(q);
|
|
|
|
|
string_free(q);
|
|
|
|
|
string_burn(g);
|
|
|
|
|
string_free(g);
|
|
|
|
|
string_burn(pubkey);
|
|
|
|
|
string_free(pubkey);
|
|
|
|
|
|
|
|
|
|
return key;
|
|
|
|
|
error:
|
|
|
|
|
string_burn(p);
|
|
|
|
|
string_free(p);
|
|
|
|
|
string_burn(q);
|
|
|
|
|
string_free(q);
|
|
|
|
|
string_burn(g);
|
|
|
|
|
string_free(g);
|
|
|
|
|
string_burn(pubkey);
|
|
|
|
|
string_free(pubkey);
|
|
|
|
|
publickey_free(key);
|
|
|
|
|
|
2009-04-17 18:30:25 +00:00
|
|
|
return NULL;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_public_key publickey_make_rsa(ssh_session session, ssh_buffer buffer,
|
2009-04-18 11:18:35 +00:00
|
|
|
int type) {
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string e = NULL;
|
|
|
|
|
ssh_string n = NULL;
|
2009-07-24 22:02:32 +02:00
|
|
|
ssh_public_key key = NULL;
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-07-24 22:02:32 +02:00
|
|
|
key = malloc(sizeof(struct ssh_public_key_struct));
|
2009-04-08 13:03:50 +00:00
|
|
|
if (key == NULL) {
|
2009-04-17 18:30:25 +00:00
|
|
|
buffer_free(buffer);
|
2009-04-08 13:03:50 +00:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 11:18:35 +00:00
|
|
|
key->type = type;
|
2009-04-18 11:05:21 +00:00
|
|
|
key->type_c = ssh_type_to_char(key->type);
|
2009-04-18 11:18:35 +00:00
|
|
|
|
2009-04-08 13:03:50 +00:00
|
|
|
e = buffer_get_ssh_string(buffer);
|
|
|
|
|
n = buffer_get_ssh_string(buffer);
|
2009-04-17 18:30:25 +00:00
|
|
|
|
2009-04-08 13:03:50 +00:00
|
|
|
buffer_free(buffer); /* we don't need it anymore */
|
|
|
|
|
|
|
|
|
|
if(e == NULL || n == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Invalid RSA public key");
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 13:03:50 +00:00
|
|
|
gcry_sexp_build(&key->rsa_pub, NULL,
|
|
|
|
|
"(public-key(rsa(n %b)(e %b)))",
|
2009-09-25 23:38:09 +02:00
|
|
|
string_len(n), string_data(n),
|
|
|
|
|
string_len(e),string_data(e));
|
2009-04-08 13:03:50 +00:00
|
|
|
if (key->rsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif HAVE_LIBCRYPTO
|
2009-04-08 13:03:50 +00:00
|
|
|
key->rsa_pub = RSA_new();
|
|
|
|
|
if (key->rsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
key->rsa_pub->e = make_string_bn(e);
|
|
|
|
|
key->rsa_pub->n = make_string_bn(n);
|
|
|
|
|
if (key->rsa_pub->e == NULL ||
|
|
|
|
|
key->rsa_pub->n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-08 13:03:50 +00:00
|
|
|
|
2005-07-05 01:21:44 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-08 13:03:50 +00:00
|
|
|
ssh_print_hexa("e", e->string, string_len(e));
|
|
|
|
|
ssh_print_hexa("n", n->string, string_len(n));
|
2005-07-05 01:21:44 +00:00
|
|
|
#endif
|
2009-04-08 13:03:50 +00:00
|
|
|
|
|
|
|
|
string_burn(e);
|
|
|
|
|
string_free(e);
|
|
|
|
|
string_burn(n);
|
|
|
|
|
string_free(n);
|
|
|
|
|
|
|
|
|
|
return key;
|
|
|
|
|
error:
|
|
|
|
|
string_burn(e);
|
|
|
|
|
string_free(e);
|
|
|
|
|
string_burn(n);
|
|
|
|
|
string_free(n);
|
|
|
|
|
publickey_free(key);
|
|
|
|
|
|
|
|
|
|
return NULL;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2009-07-24 22:02:32 +02:00
|
|
|
void publickey_free(ssh_public_key key) {
|
2009-04-04 13:55:32 +00:00
|
|
|
if (key == NULL) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch(key->type) {
|
|
|
|
|
case TYPE_DSS:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-04 13:55:32 +00:00
|
|
|
gcry_sexp_release(key->dsa_pub);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif HAVE_LIBCRYPTO
|
2009-04-04 13:55:32 +00:00
|
|
|
DSA_free(key->dsa_pub);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-04 13:55:32 +00:00
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
case TYPE_RSA1:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-04 13:55:32 +00:00
|
|
|
gcry_sexp_release(key->rsa_pub);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-04 13:55:32 +00:00
|
|
|
RSA_free(key->rsa_pub);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-04 13:55:32 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
SAFE_FREE(key);
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_public_key publickey_from_string(ssh_session session, ssh_string pubkey_s) {
|
2009-07-24 21:56:11 +02:00
|
|
|
ssh_buffer tmpbuf = NULL;
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string type_s = NULL;
|
2009-04-18 11:18:35 +00:00
|
|
|
char *type_c = NULL;
|
|
|
|
|
int type;
|
2009-04-08 13:11:26 +00:00
|
|
|
|
|
|
|
|
tmpbuf = buffer_new();
|
|
|
|
|
if (tmpbuf == NULL) {
|
2005-07-05 01:21:44 +00:00
|
|
|
return NULL;
|
2009-04-08 13:11:26 +00:00
|
|
|
}
|
|
|
|
|
|
2009-09-23 23:51:04 +02:00
|
|
|
if (buffer_add_data(tmpbuf, string_data(pubkey_s), string_len(pubkey_s)) < 0) {
|
2009-04-08 13:11:26 +00:00
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type_s = buffer_get_ssh_string(tmpbuf);
|
|
|
|
|
if (type_s == NULL) {
|
|
|
|
|
ssh_set_error(session,SSH_FATAL,"Invalid public key format");
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 11:18:35 +00:00
|
|
|
type_c = string_to_char(type_s);
|
2009-04-08 13:11:26 +00:00
|
|
|
string_free(type_s);
|
2009-04-18 11:18:35 +00:00
|
|
|
if (type_c == NULL) {
|
2009-04-08 13:11:26 +00:00
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 11:18:35 +00:00
|
|
|
type = ssh_type_from_name(type_c);
|
|
|
|
|
SAFE_FREE(type_c);
|
|
|
|
|
|
|
|
|
|
switch (type) {
|
|
|
|
|
case TYPE_DSS:
|
|
|
|
|
return publickey_make_dss(session, tmpbuf);
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
case TYPE_RSA1:
|
|
|
|
|
return publickey_make_rsa(session, tmpbuf, type);
|
2009-04-08 13:11:26 +00:00
|
|
|
}
|
|
|
|
|
|
2009-04-18 11:18:35 +00:00
|
|
|
ssh_set_error(session, SSH_FATAL, "Unknown public key protocol %s",
|
|
|
|
|
ssh_type_to_char(type));
|
|
|
|
|
|
2009-04-08 13:11:26 +00:00
|
|
|
error:
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2008-05-13 23:09:41 +00:00
|
|
|
/** \brief Makes a PUBLIC_KEY object out of a PRIVATE_KEY object
|
|
|
|
|
* \param prv the Private key
|
|
|
|
|
* \returns the public key
|
|
|
|
|
* \see publickey_to_string()
|
|
|
|
|
*/
|
2009-07-24 22:08:04 +02:00
|
|
|
ssh_public_key publickey_from_privatekey(ssh_private_key prv) {
|
2009-07-24 22:02:32 +02:00
|
|
|
ssh_public_key key = NULL;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 13:27:39 +00:00
|
|
|
gcry_sexp_t sexp;
|
|
|
|
|
const char *tmp = NULL;
|
|
|
|
|
size_t size;
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string p = NULL;
|
|
|
|
|
ssh_string q = NULL;
|
|
|
|
|
ssh_string g = NULL;
|
|
|
|
|
ssh_string y = NULL;
|
|
|
|
|
ssh_string e = NULL;
|
|
|
|
|
ssh_string n = NULL;
|
2009-04-01 19:34:26 +00:00
|
|
|
#endif /* HAVE_LIBGCRYPT */
|
|
|
|
|
|
2009-07-24 22:02:32 +02:00
|
|
|
key = malloc(sizeof(struct ssh_public_key_struct));
|
2009-04-08 13:27:39 +00:00
|
|
|
if (key == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
key->type = prv->type;
|
|
|
|
|
switch(key->type) {
|
|
|
|
|
case TYPE_DSS:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 13:27:39 +00:00
|
|
|
sexp = gcry_sexp_find_token(prv->dsa_priv, "p", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 13:27:39 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
p = string_new(size);
|
|
|
|
|
if (p == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(p,(char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(prv->dsa_priv,"q",0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 13:27:39 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp,1,&size);
|
|
|
|
|
q = string_new(size);
|
|
|
|
|
if (q == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(q,(char *) tmp,size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(prv->dsa_priv, "g", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 13:27:39 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp,1,&size);
|
|
|
|
|
g = string_new(size);
|
|
|
|
|
if (g == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(g,(char *) tmp,size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
2009-04-18 08:56:22 +00:00
|
|
|
sexp = gcry_sexp_find_token(prv->dsa_priv,"y",0);
|
|
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
tmp = gcry_sexp_nth_data(sexp,1,&size);
|
2009-04-08 13:27:39 +00:00
|
|
|
y = string_new(size);
|
|
|
|
|
if (y == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(y,(char *) tmp,size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
gcry_sexp_build(&key->dsa_pub, NULL,
|
|
|
|
|
"(public-key(dsa(p %b)(q %b)(g %b)(y %b)))",
|
2009-09-25 23:38:09 +02:00
|
|
|
string_len(p), string_data(p),
|
|
|
|
|
string_len(q), string_data(q),
|
|
|
|
|
string_len(g), string_data(g),
|
|
|
|
|
string_len(y), string_data(y));
|
2009-04-08 13:27:39 +00:00
|
|
|
|
|
|
|
|
string_burn(p);
|
|
|
|
|
string_free(p);
|
|
|
|
|
string_burn(q);
|
|
|
|
|
string_free(q);
|
|
|
|
|
string_burn(g);
|
|
|
|
|
string_free(g);
|
|
|
|
|
string_burn(y);
|
|
|
|
|
string_free(y);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-08 13:27:39 +00:00
|
|
|
key->dsa_pub = DSA_new();
|
|
|
|
|
if (key->dsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
key->dsa_pub->p = BN_dup(prv->dsa_priv->p);
|
|
|
|
|
key->dsa_pub->q = BN_dup(prv->dsa_priv->q);
|
|
|
|
|
key->dsa_pub->g = BN_dup(prv->dsa_priv->g);
|
|
|
|
|
key->dsa_pub->pub_key = BN_dup(prv->dsa_priv->pub_key);
|
|
|
|
|
if (key->dsa_pub->p == NULL ||
|
|
|
|
|
key->dsa_pub->q == NULL ||
|
|
|
|
|
key->dsa_pub->g == NULL ||
|
|
|
|
|
key->dsa_pub->pub_key == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
#endif /* HAVE_LIBCRYPTO */
|
|
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
case TYPE_RSA1:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 13:27:39 +00:00
|
|
|
sexp = gcry_sexp_find_token(prv->rsa_priv, "n", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 13:27:39 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
n = string_new(size);
|
|
|
|
|
if (n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(n, (char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(prv->rsa_priv, "e", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 13:27:39 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
e = string_new(size);
|
|
|
|
|
if (e == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(e, (char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
gcry_sexp_build(&key->rsa_pub, NULL,
|
|
|
|
|
"(public-key(rsa(n %b)(e %b)))",
|
2009-09-25 23:38:09 +02:00
|
|
|
string_len(n), string_data(n),
|
|
|
|
|
string_len(e), string_data(e));
|
2009-04-08 13:27:39 +00:00
|
|
|
if (key->rsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
string_burn(e);
|
|
|
|
|
string_free(e);
|
|
|
|
|
string_burn(n);
|
|
|
|
|
string_free(n);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-08 13:27:39 +00:00
|
|
|
key->rsa_pub = RSA_new();
|
|
|
|
|
if (key->rsa_pub == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
key->rsa_pub->e = BN_dup(prv->rsa_priv->e);
|
|
|
|
|
key->rsa_pub->n = BN_dup(prv->rsa_priv->n);
|
|
|
|
|
if (key->rsa_pub->e == NULL ||
|
|
|
|
|
key->rsa_pub->n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-08 13:27:39 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
key->type_c = ssh_type_to_char(prv->type);
|
|
|
|
|
|
|
|
|
|
return key;
|
|
|
|
|
error:
|
|
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 08:56:22 +00:00
|
|
|
gcry_sexp_release(sexp);
|
2009-04-08 13:27:39 +00:00
|
|
|
string_burn(p);
|
|
|
|
|
string_free(p);
|
|
|
|
|
string_burn(q);
|
|
|
|
|
string_free(q);
|
|
|
|
|
string_burn(g);
|
|
|
|
|
string_free(g);
|
|
|
|
|
string_burn(y);
|
|
|
|
|
string_free(y);
|
|
|
|
|
|
|
|
|
|
string_burn(e);
|
|
|
|
|
string_free(e);
|
|
|
|
|
string_burn(n);
|
|
|
|
|
string_free(n);
|
|
|
|
|
#endif
|
|
|
|
|
publickey_free(key);
|
|
|
|
|
|
|
|
|
|
return NULL;
|
2005-08-07 10:48:08 +00:00
|
|
|
}
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-07-24 21:56:11 +02:00
|
|
|
static int dsa_public_to_string(gcry_sexp_t key, ssh_buffer buffer) {
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-07-24 21:56:11 +02:00
|
|
|
static int dsa_public_to_string(DSA *key, ssh_buffer buffer) {
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string p = NULL;
|
|
|
|
|
ssh_string q = NULL;
|
|
|
|
|
ssh_string g = NULL;
|
|
|
|
|
ssh_string n = NULL;
|
2009-04-08 14:57:38 +00:00
|
|
|
|
|
|
|
|
int rc = -1;
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 14:57:38 +00:00
|
|
|
const char *tmp = NULL;
|
|
|
|
|
size_t size;
|
|
|
|
|
gcry_sexp_t sexp;
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(key, "p", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 14:57:38 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
p = string_new(size);
|
|
|
|
|
if (p == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(p, (char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(key, "q", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 14:57:38 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
q = string_new(size);
|
|
|
|
|
if (q == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(q, (char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(key, "g", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 14:57:38 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
g = string_new(size);
|
|
|
|
|
if (g == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(g, (char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(key, "y", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 14:57:38 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
n = string_new(size);
|
|
|
|
|
if (n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(n, (char *) tmp, size);
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-08 14:57:38 +00:00
|
|
|
p = make_bignum_string(key->p);
|
|
|
|
|
q = make_bignum_string(key->q);
|
|
|
|
|
g = make_bignum_string(key->g);
|
|
|
|
|
n = make_bignum_string(key->pub_key);
|
|
|
|
|
if (p == NULL || q == NULL || g == NULL || n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
#endif /* HAVE_LIBCRYPTO */
|
|
|
|
|
if (buffer_add_ssh_string(buffer, p) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
if (buffer_add_ssh_string(buffer, q) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
if (buffer_add_ssh_string(buffer, g) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
if (buffer_add_ssh_string(buffer, n) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rc = 0;
|
|
|
|
|
error:
|
2009-04-18 08:56:22 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-04-08 14:57:38 +00:00
|
|
|
string_burn(p);
|
|
|
|
|
string_free(p);
|
|
|
|
|
string_burn(q);
|
|
|
|
|
string_free(q);
|
|
|
|
|
string_burn(g);
|
|
|
|
|
string_free(g);
|
|
|
|
|
string_burn(n);
|
|
|
|
|
string_free(n);
|
|
|
|
|
|
|
|
|
|
return rc;
|
2005-08-07 10:48:08 +00:00
|
|
|
}
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-07-24 21:56:11 +02:00
|
|
|
static int rsa_public_to_string(gcry_sexp_t key, ssh_buffer buffer) {
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-07-24 21:56:11 +02:00
|
|
|
static int rsa_public_to_string(RSA *key, ssh_buffer buffer) {
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-08 14:57:38 +00:00
|
|
|
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string e = NULL;
|
|
|
|
|
ssh_string n = NULL;
|
2009-04-08 14:57:38 +00:00
|
|
|
|
|
|
|
|
int rc = -1;
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-08 14:57:38 +00:00
|
|
|
const char *tmp;
|
|
|
|
|
size_t size;
|
|
|
|
|
gcry_sexp_t sexp;
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(key, "n", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 14:57:38 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
n = string_new(size);
|
|
|
|
|
if (n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(n, (char *) tmp, size);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(key, "e", 0);
|
2009-04-18 08:56:22 +00:00
|
|
|
if (sexp == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-08 14:57:38 +00:00
|
|
|
tmp = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
e = string_new(size);
|
|
|
|
|
if (e == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(e, (char *) tmp, size);
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-08 14:57:38 +00:00
|
|
|
e = make_bignum_string(key->e);
|
|
|
|
|
n = make_bignum_string(key->n);
|
|
|
|
|
if (e == NULL || n == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-08 14:57:38 +00:00
|
|
|
|
|
|
|
|
if (buffer_add_ssh_string(buffer, e) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
if (buffer_add_ssh_string(buffer, n) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rc = 0;
|
|
|
|
|
error:
|
2009-04-18 08:56:22 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-04-08 14:57:38 +00:00
|
|
|
string_burn(e);
|
|
|
|
|
string_free(e);
|
|
|
|
|
string_burn(n);
|
|
|
|
|
string_free(n);
|
|
|
|
|
|
|
|
|
|
return rc;
|
2005-08-07 10:48:08 +00:00
|
|
|
}
|
|
|
|
|
|
2008-05-13 23:09:41 +00:00
|
|
|
/** \brief makes a SSH String out of a PUBLIC_KEY object
|
|
|
|
|
* \param key the public key
|
|
|
|
|
* \returns a SSH String containing the public key
|
|
|
|
|
* \see string_free()
|
|
|
|
|
*/
|
2009-07-24 22:02:32 +02:00
|
|
|
ssh_string publickey_to_string(ssh_public_key key) {
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string type = NULL;
|
|
|
|
|
ssh_string ret = NULL;
|
2009-07-24 21:56:11 +02:00
|
|
|
ssh_buffer buf = NULL;
|
2009-04-08 14:57:38 +00:00
|
|
|
|
|
|
|
|
buf = buffer_new();
|
|
|
|
|
if (buf == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 10:59:53 +00:00
|
|
|
type = string_from_char(key->type_c);
|
2009-04-08 14:57:38 +00:00
|
|
|
if (type == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
2009-04-18 10:53:28 +00:00
|
|
|
|
|
|
|
|
if (buffer_add_ssh_string(buf, type) < 0) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 10:59:53 +00:00
|
|
|
switch (key->type) {
|
2009-04-08 14:57:38 +00:00
|
|
|
case TYPE_DSS:
|
2009-04-18 10:53:28 +00:00
|
|
|
if (dsa_public_to_string(key->dsa_pub, buf) < 0) {
|
2009-04-08 14:57:38 +00:00
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
case TYPE_RSA1:
|
2009-04-18 10:53:28 +00:00
|
|
|
if (rsa_public_to_string(key->rsa_pub, buf) < 0) {
|
2009-04-08 14:57:38 +00:00
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ret = string_new(buffer_get_len(buf));
|
|
|
|
|
if (ret == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
string_fill(ret, buffer_get(buf), buffer_get_len(buf));
|
|
|
|
|
error:
|
|
|
|
|
buffer_free(buf);
|
|
|
|
|
string_free(type);
|
|
|
|
|
|
|
|
|
|
return ret;
|
2005-08-07 10:48:08 +00:00
|
|
|
}
|
|
|
|
|
|
2005-07-05 01:21:44 +00:00
|
|
|
/* Signature decoding functions */
|
2009-07-24 21:45:41 +02:00
|
|
|
static ssh_string signature_to_string(SIGNATURE *sign) {
|
2009-04-18 09:14:44 +00:00
|
|
|
unsigned char buffer[40] = {0};
|
2009-07-24 21:56:11 +02:00
|
|
|
ssh_buffer tmpbuf = NULL;
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string str = NULL;
|
|
|
|
|
ssh_string tmp = NULL;
|
|
|
|
|
ssh_string rs = NULL;
|
2009-04-18 09:14:44 +00:00
|
|
|
int rc = -1;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:14:44 +00:00
|
|
|
const char *r = NULL;
|
|
|
|
|
const char *s = NULL;
|
|
|
|
|
gcry_sexp_t sexp;
|
|
|
|
|
size_t size = 0;
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string r = NULL;
|
|
|
|
|
ssh_string s = NULL;
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:14:44 +00:00
|
|
|
|
|
|
|
|
tmpbuf = buffer_new();
|
|
|
|
|
if (tmpbuf == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tmp = string_from_char(ssh_type_to_char(sign->type));
|
|
|
|
|
if (tmp == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
if (buffer_add_ssh_string(tmpbuf, tmp) < 0) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
string_free(tmp);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
string_free(tmp);
|
|
|
|
|
|
|
|
|
|
switch(sign->type) {
|
|
|
|
|
case TYPE_DSS:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:14:44 +00:00
|
|
|
sexp = gcry_sexp_find_token(sign->dsa_sign, "r", 0);
|
|
|
|
|
if (sexp == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
r = gcry_sexp_nth_data(sexp, 1, &size);
|
|
|
|
|
if (*r == 0) { /* libgcrypt put 0 when first bit is set */
|
|
|
|
|
size--;
|
|
|
|
|
r++;
|
|
|
|
|
}
|
|
|
|
|
memcpy(buffer, r + size - 20, 20);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
|
|
|
|
|
sexp = gcry_sexp_find_token(sign->dsa_sign, "s", 0);
|
|
|
|
|
if (sexp == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
s = gcry_sexp_nth_data(sexp,1,&size);
|
|
|
|
|
if (*s == 0) {
|
|
|
|
|
size--;
|
|
|
|
|
s++;
|
|
|
|
|
}
|
|
|
|
|
memcpy(buffer+ 20, s + size - 20, 20);
|
|
|
|
|
gcry_sexp_release(sexp);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:14:44 +00:00
|
|
|
r = make_bignum_string(sign->dsa_sign->r);
|
|
|
|
|
if (r == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
s = make_bignum_string(sign->dsa_sign->s);
|
|
|
|
|
if (s == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
string_free(r);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-23 23:51:04 +02:00
|
|
|
memcpy(buffer, (char *)string_data(r) + string_len(r) - 20, 20);
|
|
|
|
|
memcpy(buffer + 20, (char *)string_data(s) + string_len(s) - 20, 20);
|
2009-04-18 09:14:44 +00:00
|
|
|
|
|
|
|
|
string_free(r);
|
|
|
|
|
string_free(s);
|
|
|
|
|
#endif /* HAVE_LIBCRYPTO */
|
|
|
|
|
rs = string_new(40);
|
|
|
|
|
if (rs == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
string_fill(rs, buffer, 40);
|
|
|
|
|
rc = buffer_add_ssh_string(tmpbuf, rs);
|
|
|
|
|
string_free(rs);
|
|
|
|
|
if (rc < 0) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
case TYPE_RSA1:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:14:44 +00:00
|
|
|
sexp = gcry_sexp_find_token(sign->rsa_sign, "s", 0);
|
|
|
|
|
if (sexp == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
s = gcry_sexp_nth_data(sexp,1,&size);
|
|
|
|
|
if (*s == 0) {
|
|
|
|
|
size--;
|
|
|
|
|
s++;
|
|
|
|
|
}
|
|
|
|
|
rs = string_new(size);
|
|
|
|
|
if (rs == NULL) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
string_fill(rs, (char *) s, size);
|
|
|
|
|
rc = buffer_add_ssh_string(tmpbuf, rs);
|
|
|
|
|
gcry_sexp_release(sexp);
|
|
|
|
|
string_free(rs);
|
|
|
|
|
if (rc < 0) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:14:44 +00:00
|
|
|
if (buffer_add_ssh_string(tmpbuf,sign->rsa_sign) < 0) {
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
str = string_new(buffer_get_len(tmpbuf));
|
|
|
|
|
if (str == NULL) {
|
2005-07-05 01:21:44 +00:00
|
|
|
buffer_free(tmpbuf);
|
2009-04-18 09:14:44 +00:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
string_fill(str, buffer_get(tmpbuf), buffer_get_len(tmpbuf));
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
|
|
|
|
|
return str;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* TODO : split this function in two so it becomes smaller */
|
2009-09-23 21:55:54 +02:00
|
|
|
SIGNATURE *signature_from_string(ssh_session session, ssh_string signature,
|
2009-07-24 22:02:32 +02:00
|
|
|
ssh_public_key pubkey, int needed_type) {
|
2009-04-18 09:33:32 +00:00
|
|
|
SIGNATURE *sign = NULL;
|
2009-07-24 21:56:11 +02:00
|
|
|
ssh_buffer tmpbuf = NULL;
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string rs = NULL;
|
|
|
|
|
ssh_string type_s = NULL;
|
|
|
|
|
ssh_string e = NULL;
|
2009-04-18 12:02:34 +00:00
|
|
|
char *type_c = NULL;
|
|
|
|
|
int type;
|
2009-04-18 09:33:32 +00:00
|
|
|
int len;
|
|
|
|
|
int rsalen;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:33:32 +00:00
|
|
|
gcry_sexp_t sig;
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:33:32 +00:00
|
|
|
DSA_SIG *sig = NULL;
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string r = NULL;
|
|
|
|
|
ssh_string s = NULL;
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 09:33:32 +00:00
|
|
|
sign = malloc(sizeof(SIGNATURE));
|
|
|
|
|
if (sign == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Not enough space");
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tmpbuf = buffer_new();
|
|
|
|
|
if (tmpbuf == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Not enough space");
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-23 23:51:04 +02:00
|
|
|
if (buffer_add_data(tmpbuf, string_data(signature), string_len(signature)) < 0) {
|
2009-04-18 09:33:32 +00:00
|
|
|
signature_free(sign);
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type_s = buffer_get_ssh_string(tmpbuf);
|
|
|
|
|
if (type_s == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Invalid signature packet");
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 12:02:34 +00:00
|
|
|
type_c = string_to_char(type_s);
|
|
|
|
|
string_free(type_s);
|
|
|
|
|
if (type_c == NULL) {
|
2009-04-18 09:33:32 +00:00
|
|
|
signature_free(sign);
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-04-18 12:02:34 +00:00
|
|
|
type = ssh_type_from_name(type_c);
|
|
|
|
|
SAFE_FREE(type_c);
|
2009-04-18 09:33:32 +00:00
|
|
|
|
2009-04-18 12:02:34 +00:00
|
|
|
if (needed_type != type) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Invalid signature type: %s",
|
|
|
|
|
ssh_type_to_char(type));
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
return NULL;
|
2009-04-18 09:33:32 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch(needed_type) {
|
|
|
|
|
case TYPE_DSS:
|
|
|
|
|
rs = buffer_get_ssh_string(tmpbuf);
|
|
|
|
|
buffer_free(tmpbuf);
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 09:33:32 +00:00
|
|
|
/* 40 is the dual signature blob len. */
|
|
|
|
|
if (rs == NULL || string_len(rs) != 40) {
|
|
|
|
|
string_free(rs);
|
2009-04-01 19:34:26 +00:00
|
|
|
signature_free(sign);
|
2005-07-05 01:21:44 +00:00
|
|
|
return NULL;
|
2009-04-18 09:33:32 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* we make use of strings (because we have all-made functions to convert
|
|
|
|
|
* them to bignums (ou pas ;) */
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:33:32 +00:00
|
|
|
if (gcry_sexp_build(&sig, NULL, "(sig-val(dsa(r %b)(s %b)))",
|
2009-09-25 23:38:09 +02:00
|
|
|
20 ,string_data(rs), 20,(unsigned char *)string_data(rs) + 20)) {
|
2009-04-18 09:33:32 +00:00
|
|
|
string_free(rs);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:33:32 +00:00
|
|
|
r = string_new(20);
|
|
|
|
|
s = string_new(20);
|
|
|
|
|
if (r == NULL || s == NULL) {
|
|
|
|
|
string_free(r);
|
|
|
|
|
string_free(s);
|
|
|
|
|
string_free(rs);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-23 23:51:04 +02:00
|
|
|
string_fill(r, string_data(rs), 20);
|
|
|
|
|
string_fill(s, (char *)string_data(rs) + 20, 20);
|
2009-04-18 09:33:32 +00:00
|
|
|
|
|
|
|
|
sig = DSA_SIG_new();
|
|
|
|
|
if (sig == NULL) {
|
|
|
|
|
string_free(r);
|
|
|
|
|
string_free(s);
|
|
|
|
|
string_free(rs);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
sig->r = make_string_bn(r); /* is that really portable ? Openssh's hack isn't better */
|
|
|
|
|
sig->s = make_string_bn(s);
|
|
|
|
|
string_free(r);
|
|
|
|
|
string_free(s);
|
|
|
|
|
|
|
|
|
|
if (sig->r == NULL || sig->s == NULL) {
|
|
|
|
|
string_free(rs);
|
|
|
|
|
DSA_SIG_free(sig);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:33:32 +00:00
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-18 09:33:32 +00:00
|
|
|
ssh_print_hexa("r", rs->string, 20);
|
|
|
|
|
ssh_print_hexa("s", rs->string + 20, 20);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:33:32 +00:00
|
|
|
string_free(rs);
|
|
|
|
|
|
|
|
|
|
sign->type = TYPE_DSS;
|
|
|
|
|
sign->dsa_sign = sig;
|
|
|
|
|
|
|
|
|
|
return sign;
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
e = buffer_get_ssh_string(tmpbuf);
|
|
|
|
|
buffer_free(tmpbuf);
|
|
|
|
|
if (e == NULL) {
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
len = string_len(e);
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:33:32 +00:00
|
|
|
rsalen = (gcry_pk_get_nbits(pubkey->rsa_pub) + 7) / 8;
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:33:32 +00:00
|
|
|
rsalen = RSA_size(pubkey->rsa_pub);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:33:32 +00:00
|
|
|
if (len > rsalen) {
|
|
|
|
|
string_free(e);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signature too big! %d instead of %d",
|
|
|
|
|
len, rsalen);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (len < rsalen) {
|
|
|
|
|
ssh_log(session, SSH_LOG_RARE, "RSA signature len %d < %d",
|
|
|
|
|
len, rsalen);
|
|
|
|
|
}
|
|
|
|
|
sign->type = TYPE_RSA;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:33:32 +00:00
|
|
|
if (gcry_sexp_build(&sig, NULL, "(sig-val(rsa(s %b)))",
|
2009-09-25 23:38:09 +02:00
|
|
|
string_len(e), string_data(e))) {
|
2009-04-18 09:33:32 +00:00
|
|
|
signature_free(sign);
|
|
|
|
|
string_free(e);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sign->rsa_sign = sig;
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:33:32 +00:00
|
|
|
sign->rsa_sign = e;
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:33:32 +00:00
|
|
|
|
2005-07-05 01:21:44 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-18 09:33:32 +00:00
|
|
|
ssh_log(session, SSH_LOG_FUNCTIONS, "len e: %d", len);
|
|
|
|
|
ssh_print_hexa("RSA signature", e->string, len);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:33:32 +00:00
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:33:32 +00:00
|
|
|
string_free(e);
|
2005-07-05 01:21:44 +00:00
|
|
|
#endif
|
2009-04-18 09:33:32 +00:00
|
|
|
|
|
|
|
|
return sign;
|
|
|
|
|
default:
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return NULL;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2009-04-04 13:55:32 +00:00
|
|
|
void signature_free(SIGNATURE *sign) {
|
|
|
|
|
if (sign == NULL) {
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
switch(sign->type) {
|
|
|
|
|
case TYPE_DSS:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-04 13:55:32 +00:00
|
|
|
gcry_sexp_release(sign->dsa_sign);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-04 13:55:32 +00:00
|
|
|
DSA_SIG_free(sign->dsa_sign);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-04 13:55:32 +00:00
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
|
|
|
|
case TYPE_RSA1:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-04 13:55:32 +00:00
|
|
|
gcry_sexp_release(sign->rsa_sign);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-04 13:55:32 +00:00
|
|
|
SAFE_FREE(sign->rsa_sign);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-04 13:55:32 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
2009-04-18 09:47:22 +00:00
|
|
|
/* FIXME Passing NULL segfaults */
|
|
|
|
|
#if 0
|
|
|
|
|
ssh_log(NULL, SSH_LOG_RARE, "Freeing a signature with no type!\n"); */
|
|
|
|
|
#endif
|
2009-04-18 09:57:20 +00:00
|
|
|
break;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
2009-04-04 13:55:32 +00:00
|
|
|
SAFE_FREE(sign);
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBCRYPTO
|
2009-04-18 09:44:50 +00:00
|
|
|
/*
|
|
|
|
|
* Maybe the missing function from libcrypto
|
|
|
|
|
*
|
|
|
|
|
* I think now, maybe it's a bad idea to name it has it should have be
|
|
|
|
|
* named in libcrypto
|
|
|
|
|
*/
|
2009-07-24 21:45:41 +02:00
|
|
|
static ssh_string RSA_do_sign(const unsigned char *payload, int len, RSA *privkey) {
|
|
|
|
|
ssh_string sign = NULL;
|
2009-04-18 09:44:50 +00:00
|
|
|
unsigned char *buffer = NULL;
|
|
|
|
|
unsigned int size;
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 09:44:50 +00:00
|
|
|
buffer = malloc(RSA_size(privkey));
|
|
|
|
|
if (buffer == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (RSA_sign(NID_sha1, payload, len, buffer, &size, privkey) == 0) {
|
|
|
|
|
SAFE_FREE(buffer);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sign = string_new(size);
|
|
|
|
|
if (sign == NULL) {
|
|
|
|
|
SAFE_FREE(buffer);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
string_fill(sign, buffer, size);
|
|
|
|
|
SAFE_FREE(buffer);
|
|
|
|
|
|
|
|
|
|
return sign;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2005-07-05 01:21:44 +00:00
|
|
|
|
2009-02-06 13:37:43 +00:00
|
|
|
#ifndef _WIN32
|
2009-07-25 20:26:01 +02:00
|
|
|
ssh_string ssh_do_sign_with_agent(ssh_session session,
|
2009-07-24 20:49:46 +02:00
|
|
|
struct ssh_buffer_struct *buf, struct ssh_public_key_struct *publickey) {
|
|
|
|
|
struct ssh_buffer_struct *sigbuf = NULL;
|
|
|
|
|
struct ssh_string_struct *signature = NULL;
|
|
|
|
|
struct ssh_string_struct *session_id = NULL;
|
2009-02-06 09:46:10 +00:00
|
|
|
struct ssh_crypto_struct *crypto = NULL;
|
|
|
|
|
|
|
|
|
|
if (session->current_crypto) {
|
|
|
|
|
crypto = session->current_crypto;
|
|
|
|
|
} else {
|
|
|
|
|
crypto = session->next_crypto;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* prepend session identifier */
|
|
|
|
|
session_id = string_new(SHA_DIGEST_LEN);
|
2009-04-18 11:22:27 +00:00
|
|
|
if (session_id == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-02-06 09:46:10 +00:00
|
|
|
string_fill(session_id, crypto->session_id, SHA_DIGEST_LEN);
|
|
|
|
|
|
|
|
|
|
sigbuf = buffer_new();
|
2009-04-18 11:22:27 +00:00
|
|
|
if (sigbuf == NULL) {
|
|
|
|
|
string_free(session_id);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-02-06 09:46:10 +00:00
|
|
|
|
2009-04-18 11:22:27 +00:00
|
|
|
if (buffer_add_ssh_string(sigbuf, session_id) < 0) {
|
|
|
|
|
buffer_free(sigbuf);
|
|
|
|
|
string_free(session_id);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
string_free(session_id);
|
2009-02-06 09:46:10 +00:00
|
|
|
|
|
|
|
|
/* append out buffer */
|
2009-04-18 11:22:27 +00:00
|
|
|
if (buffer_add_buffer(sigbuf, buf) < 0) {
|
|
|
|
|
buffer_free(sigbuf);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-02-06 09:46:10 +00:00
|
|
|
|
|
|
|
|
/* create signature */
|
|
|
|
|
signature = agent_sign_data(session, sigbuf, publickey);
|
|
|
|
|
|
|
|
|
|
buffer_free(sigbuf);
|
|
|
|
|
|
|
|
|
|
return signature;
|
|
|
|
|
}
|
2009-02-06 12:51:37 +00:00
|
|
|
#endif /* _WIN32 */
|
2009-02-06 09:46:10 +00:00
|
|
|
|
2009-07-27 17:59:02 +02:00
|
|
|
/*
|
|
|
|
|
* This function concats in a buffer the values needed to do a signature
|
|
|
|
|
* verification. */
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_buffer ssh_userauth_build_digest(ssh_session session, ssh_message msg, char *service) {
|
2009-07-27 17:59:02 +02:00
|
|
|
/*
|
|
|
|
|
The value of 'signature' is a signature by the corresponding private
|
|
|
|
|
key over the following data, in the following order:
|
|
|
|
|
|
|
|
|
|
string session identifier
|
|
|
|
|
byte SSH_MSG_USERAUTH_REQUEST
|
|
|
|
|
string user name
|
|
|
|
|
string service name
|
|
|
|
|
string "publickey"
|
|
|
|
|
boolean TRUE
|
|
|
|
|
string public key algorithm name
|
|
|
|
|
string public key to be used for authentication
|
|
|
|
|
*/
|
2009-09-23 23:55:07 +02:00
|
|
|
struct ssh_crypto_struct *crypto = session->current_crypto ? session->current_crypto :
|
2009-07-27 17:59:02 +02:00
|
|
|
session->next_crypto;
|
|
|
|
|
ssh_buffer buffer = NULL;
|
|
|
|
|
ssh_string session_id = NULL;
|
|
|
|
|
uint8_t type = SSH2_MSG_USERAUTH_REQUEST;
|
|
|
|
|
ssh_string username = string_from_char(msg->auth_request.username);
|
|
|
|
|
ssh_string servicename = string_from_char(service);
|
|
|
|
|
ssh_string method = string_from_char("publickey");
|
|
|
|
|
uint8_t has_sign = 1;
|
|
|
|
|
ssh_string algo = string_from_char(msg->auth_request.public_key->type_c);
|
|
|
|
|
ssh_string publickey = publickey_to_string(msg->auth_request.public_key);
|
|
|
|
|
|
|
|
|
|
buffer = buffer_new();
|
|
|
|
|
if (buffer == NULL) {
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
session_id = string_new(SHA_DIGEST_LEN);
|
|
|
|
|
if (session_id == NULL) {
|
|
|
|
|
buffer_free(buffer);
|
|
|
|
|
buffer = NULL;
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
string_fill(session_id, crypto->session_id, SHA_DIGEST_LEN);
|
|
|
|
|
|
|
|
|
|
if(buffer_add_ssh_string(buffer, session_id) < 0 ||
|
|
|
|
|
buffer_add_u8(buffer, type) < 0 ||
|
|
|
|
|
buffer_add_ssh_string(buffer, username) < 0 ||
|
|
|
|
|
buffer_add_ssh_string(buffer, servicename) < 0 ||
|
|
|
|
|
buffer_add_ssh_string(buffer, method) < 0 ||
|
|
|
|
|
buffer_add_u8(buffer, has_sign) < 0 ||
|
|
|
|
|
buffer_add_ssh_string(buffer, algo) < 0 ||
|
|
|
|
|
buffer_add_ssh_string(buffer, publickey) < 0) {
|
|
|
|
|
buffer_free(buffer);
|
|
|
|
|
buffer = NULL;
|
|
|
|
|
goto error;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
error:
|
|
|
|
|
if(session_id) string_free(session_id);
|
|
|
|
|
if(username) string_free(username);
|
|
|
|
|
if(servicename) string_free(servicename);
|
|
|
|
|
if(method) string_free(method);
|
|
|
|
|
if(algo) string_free(algo);
|
|
|
|
|
if(publickey) string_free(publickey);
|
|
|
|
|
return buffer;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-18 08:31:26 +00:00
|
|
|
/*
|
|
|
|
|
* This function signs the session id (known as H) as a string then
|
|
|
|
|
* the content of sigbuf */
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_string ssh_do_sign(ssh_session session, ssh_buffer sigbuf,
|
2009-07-24 22:08:04 +02:00
|
|
|
ssh_private_key privatekey) {
|
2009-09-23 23:55:07 +02:00
|
|
|
struct ssh_crypto_struct *crypto = session->current_crypto ? session->current_crypto :
|
2009-04-18 08:31:26 +00:00
|
|
|
session->next_crypto;
|
|
|
|
|
unsigned char hash[SHA_DIGEST_LEN + 1] = {0};
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string session_str = NULL;
|
|
|
|
|
ssh_string signature = NULL;
|
2009-04-18 08:31:26 +00:00
|
|
|
SIGNATURE *sign = NULL;
|
|
|
|
|
SHACTX ctx = NULL;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 08:31:26 +00:00
|
|
|
gcry_sexp_t gcryhash;
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 08:31:26 +00:00
|
|
|
session_str = string_new(SHA_DIGEST_LEN);
|
|
|
|
|
if (session_str == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
string_fill(session_str, crypto->session_id, SHA_DIGEST_LEN);
|
|
|
|
|
|
|
|
|
|
ctx = sha1_init();
|
|
|
|
|
if (ctx == NULL) {
|
|
|
|
|
string_free(session_str);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sha1_update(ctx, session_str, string_len(session_str) + 4);
|
|
|
|
|
string_free(session_str);
|
|
|
|
|
sha1_update(ctx, buffer_get(sigbuf), buffer_get_len(sigbuf));
|
|
|
|
|
sha1_final(hash + 1,ctx);
|
|
|
|
|
hash[0] = 0;
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2005-08-07 10:48:08 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-18 08:31:26 +00:00
|
|
|
ssh_print_hexa("Hash being signed with dsa", hash + 1, SHA_DIGEST_LEN);
|
2005-08-07 10:48:08 +00:00
|
|
|
#endif
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 08:31:26 +00:00
|
|
|
sign = malloc(sizeof(SIGNATURE));
|
|
|
|
|
if (sign == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 08:31:26 +00:00
|
|
|
switch(privatekey->type) {
|
|
|
|
|
case TYPE_DSS:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 08:31:26 +00:00
|
|
|
if (gcry_sexp_build(&gcryhash, NULL, "%b", SHA_DIGEST_LEN + 1, hash) ||
|
|
|
|
|
gcry_pk_sign(&sign->dsa_sign, gcryhash, privatekey->dsa_priv)) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: libcrypt error");
|
|
|
|
|
gcry_sexp_release(gcryhash);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 08:31:26 +00:00
|
|
|
sign->dsa_sign = DSA_do_sign(hash + 1, SHA_DIGEST_LEN,
|
|
|
|
|
privatekey->dsa_priv);
|
|
|
|
|
if (sign->dsa_sign == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: openssl error");
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-08-07 10:48:08 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-18 08:31:26 +00:00
|
|
|
ssh_print_bignum("r", sign->dsa_sign->r);
|
|
|
|
|
ssh_print_bignum("s", sign->dsa_sign->s);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 08:31:26 +00:00
|
|
|
#endif /* HAVE_LIBCRYPTO */
|
|
|
|
|
sign->rsa_sign = NULL;
|
|
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 08:31:26 +00:00
|
|
|
if (gcry_sexp_build(&gcryhash, NULL, "(data(flags pkcs1)(hash sha1 %b))",
|
|
|
|
|
SHA_DIGEST_LEN, hash + 1) ||
|
|
|
|
|
gcry_pk_sign(&sign->rsa_sign, gcryhash, privatekey->rsa_priv)) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: libcrypt error");
|
|
|
|
|
gcry_sexp_release(gcryhash);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 08:31:26 +00:00
|
|
|
sign->rsa_sign = RSA_do_sign(hash + 1, SHA_DIGEST_LEN,
|
|
|
|
|
privatekey->rsa_priv);
|
|
|
|
|
if (sign->rsa_sign == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: openssl error");
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 08:31:26 +00:00
|
|
|
sign->dsa_sign = NULL;
|
|
|
|
|
break;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 08:31:26 +00:00
|
|
|
gcry_sexp_release(gcryhash);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 08:31:26 +00:00
|
|
|
|
|
|
|
|
sign->type = privatekey->type;
|
|
|
|
|
|
|
|
|
|
signature = signature_to_string(sign);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
|
|
|
|
|
return signature;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_string ssh_encrypt_rsa1(ssh_session session, ssh_string data, ssh_public_key key) {
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string str = NULL;
|
2009-04-18 08:50:40 +00:00
|
|
|
size_t len = string_len(data);
|
2009-04-18 10:53:28 +00:00
|
|
|
size_t size = 0;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 08:50:40 +00:00
|
|
|
const char *tmp = NULL;
|
|
|
|
|
gcry_sexp_t ret_sexp;
|
|
|
|
|
gcry_sexp_t data_sexp;
|
|
|
|
|
|
|
|
|
|
if (gcry_sexp_build(&data_sexp, NULL, "(data(flags pkcs1)(value %b))",
|
2009-09-25 23:38:09 +02:00
|
|
|
len, string_data(data))) {
|
2009-04-18 08:50:40 +00:00
|
|
|
ssh_set_error(session, SSH_FATAL, "RSA1 encrypt: libgcrypt error");
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
if (gcry_pk_encrypt(&ret_sexp, data_sexp, key->rsa_pub)) {
|
|
|
|
|
gcry_sexp_release(data_sexp);
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "RSA1 encrypt: libgcrypt error");
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
gcry_sexp_release(data_sexp);
|
|
|
|
|
|
|
|
|
|
data_sexp = gcry_sexp_find_token(ret_sexp, "a", 0);
|
|
|
|
|
if (data_sexp == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "RSA1 encrypt: libgcrypt error");
|
|
|
|
|
gcry_sexp_release(ret_sexp);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
tmp = gcry_sexp_nth_data(data_sexp, 1, &size);
|
|
|
|
|
if (*tmp == 0) {
|
|
|
|
|
size--;
|
|
|
|
|
tmp++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
str = string_new(size);
|
|
|
|
|
if (str == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Not enough space");
|
2005-10-04 22:11:19 +00:00
|
|
|
gcry_sexp_release(data_sexp);
|
|
|
|
|
gcry_sexp_release(ret_sexp);
|
2009-04-18 08:50:40 +00:00
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
string_fill(str, tmp, size);
|
|
|
|
|
|
|
|
|
|
gcry_sexp_release(data_sexp);
|
|
|
|
|
gcry_sexp_release(ret_sexp);
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 08:50:40 +00:00
|
|
|
size = RSA_size(key->rsa_pub);
|
2009-02-02 16:09:38 +00:00
|
|
|
|
2009-04-18 08:50:40 +00:00
|
|
|
str = string_new(size);
|
|
|
|
|
if (str == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Not enough space");
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-23 23:51:04 +02:00
|
|
|
if (RSA_public_encrypt(len, string_data(data), string_data(str), key->rsa_pub,
|
2009-04-18 08:50:40 +00:00
|
|
|
RSA_PKCS1_PADDING) < 0) {
|
|
|
|
|
string_free(str);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
2009-02-02 16:09:38 +00:00
|
|
|
|
2009-04-18 08:50:40 +00:00
|
|
|
return str;
|
2005-07-05 01:21:44 +00:00
|
|
|
}
|
|
|
|
|
|
2005-08-07 10:48:08 +00:00
|
|
|
|
|
|
|
|
/* this function signs the session id */
|
2009-09-23 21:55:54 +02:00
|
|
|
ssh_string ssh_sign_session_id(ssh_session session, ssh_private_key privatekey) {
|
2009-09-23 23:55:07 +02:00
|
|
|
struct ssh_crypto_struct *crypto=session->current_crypto ? session->current_crypto :
|
2009-04-18 09:57:20 +00:00
|
|
|
session->next_crypto;
|
|
|
|
|
unsigned char hash[SHA_DIGEST_LEN + 1] = {0};
|
2009-07-24 21:45:41 +02:00
|
|
|
ssh_string signature = NULL;
|
2009-04-18 09:57:20 +00:00
|
|
|
SIGNATURE *sign = NULL;
|
|
|
|
|
SHACTX ctx = NULL;
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:57:20 +00:00
|
|
|
gcry_sexp_t data_sexp;
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:57:20 +00:00
|
|
|
|
|
|
|
|
ctx = sha1_init();
|
|
|
|
|
if (ctx == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
sha1_update(ctx,crypto->session_id,SHA_DIGEST_LEN);
|
|
|
|
|
sha1_final(hash + 1,ctx);
|
|
|
|
|
hash[0] = 0;
|
|
|
|
|
|
2005-08-07 10:48:08 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-18 09:57:20 +00:00
|
|
|
ssh_print_hexa("Hash being signed with dsa",hash+1,SHA_DIGEST_LEN);
|
2005-08-07 10:48:08 +00:00
|
|
|
#endif
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 09:57:20 +00:00
|
|
|
sign = malloc(sizeof(SIGNATURE));
|
|
|
|
|
if (sign == NULL) {
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2009-04-01 19:34:26 +00:00
|
|
|
|
2009-04-18 09:57:20 +00:00
|
|
|
switch(privatekey->type) {
|
|
|
|
|
case TYPE_DSS:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:57:20 +00:00
|
|
|
if (gcry_sexp_build(&data_sexp, NULL, "%b", SHA_DIGEST_LEN + 1, hash) ||
|
|
|
|
|
gcry_pk_sign(&sign->dsa_sign, data_sexp, privatekey->dsa_priv)) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: libgcrypt error");
|
|
|
|
|
gcry_sexp_release(data_sexp);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:57:20 +00:00
|
|
|
sign->dsa_sign = DSA_do_sign(hash + 1, SHA_DIGEST_LEN,
|
|
|
|
|
privatekey->dsa_priv);
|
|
|
|
|
if (sign->dsa_sign == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: openssl error");
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2005-08-07 10:48:08 +00:00
|
|
|
#ifdef DEBUG_CRYPTO
|
2009-04-18 09:57:20 +00:00
|
|
|
ssh_print_bignum("r",sign->dsa_sign->r);
|
|
|
|
|
ssh_print_bignum("s",sign->dsa_sign->s);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:57:20 +00:00
|
|
|
|
|
|
|
|
#endif /* HAVE_LIBCRYPTO */
|
|
|
|
|
sign->rsa_sign = NULL;
|
|
|
|
|
break;
|
|
|
|
|
case TYPE_RSA:
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:57:20 +00:00
|
|
|
if (gcry_sexp_build(&data_sexp, NULL, "(data(flags pkcs1)(hash sha1 %b))",
|
|
|
|
|
SHA_DIGEST_LEN, hash + 1) ||
|
|
|
|
|
gcry_pk_sign(&sign->rsa_sign, data_sexp, privatekey->rsa_priv)) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: libgcrypt error");
|
|
|
|
|
gcry_sexp_release(data_sexp);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#elif defined HAVE_LIBCRYPTO
|
2009-04-18 09:57:20 +00:00
|
|
|
sign->rsa_sign = RSA_do_sign(hash + 1, SHA_DIGEST_LEN,
|
|
|
|
|
privatekey->rsa_priv);
|
|
|
|
|
if (sign->rsa_sign == NULL) {
|
|
|
|
|
ssh_set_error(session, SSH_FATAL, "Signing: openssl error");
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:57:20 +00:00
|
|
|
sign->dsa_sign = NULL;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
|
2005-10-04 22:11:19 +00:00
|
|
|
#ifdef HAVE_LIBGCRYPT
|
2009-04-18 09:57:20 +00:00
|
|
|
gcry_sexp_release(data_sexp);
|
2005-10-04 22:11:19 +00:00
|
|
|
#endif
|
2009-04-18 09:57:20 +00:00
|
|
|
|
|
|
|
|
sign->type = privatekey->type;
|
|
|
|
|
|
|
|
|
|
signature = signature_to_string(sign);
|
|
|
|
|
signature_free(sign);
|
|
|
|
|
|
|
|
|
|
return signature;
|
2005-08-07 10:48:08 +00:00
|
|
|
}
|
2009-04-18 09:57:20 +00:00
|
|
|
|
2008-05-13 23:09:41 +00:00
|
|
|
/** @} */
|
2009-05-12 17:49:23 +00:00
|
|
|
/* vim: set ts=2 sw=2 et cindent: */
|
