2 * Portions Copyright (C) 2004-2009 Internet Systems Consortium, Inc. ("ISC")
3 * Portions Copyright (C) 1999-2002 Internet Software Consortium.
5 * Permission to use, copy, modify, and/or distribute this software for any
6 * purpose with or without fee is hereby granted, provided that the above
7 * copyright notice and this permission notice appear in all copies.
9 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC AND NETWORK ASSOCIATES DISCLAIMS
10 * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED
11 * WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE
12 * FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR
15 * IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 * Portions Copyright (C) 1995-2000 by Network Associates, Inc.
19 * Permission to use, copy, modify, and/or distribute this software for any
20 * purpose with or without fee is hereby granted, provided that the above
21 * copyright notice and this permission notice appear in all copies.
23 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC AND NETWORK ASSOCIATES DISCLAIMS
24 * ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED
25 * WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE
26 * FOR ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
27 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
28 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR
29 * IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
32 /* $Id: openssldsa_link.c,v 1.13.120.2 2009/01/14 23:47:26 tbox Exp $ */
43 #include <isc/entropy.h>
48 #include <dst/result.h>
50 #include "dst_internal.h"
51 #include "dst_openssl.h"
52 #include "dst_parse.h"
54 #include <openssl/dsa.h>
56 static isc_result_t openssldsa_todns(const dst_key_t *key, isc_buffer_t *data);
59 openssldsa_createctx(dst_key_t *key, dst_context_t *dctx) {
61 EVP_MD_CTX *evp_md_ctx;
65 evp_md_ctx = EVP_MD_CTX_create();
66 if (evp_md_ctx == NULL)
67 return (ISC_R_NOMEMORY);
69 if (!EVP_DigestInit_ex(evp_md_ctx, EVP_dss1(), NULL)) {
70 EVP_MD_CTX_destroy(evp_md_ctx);
71 return (ISC_R_FAILURE);
74 dctx->ctxdata.evp_md_ctx = evp_md_ctx;
76 return (ISC_R_SUCCESS);
82 sha1ctx = isc_mem_get(dctx->mctx, sizeof(isc_sha1_t));
83 isc_sha1_init(sha1ctx);
84 dctx->ctxdata.sha1ctx = sha1ctx;
85 return (ISC_R_SUCCESS);
90 openssldsa_destroyctx(dst_context_t *dctx) {
92 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
94 if (evp_md_ctx != NULL) {
95 EVP_MD_CTX_destroy(evp_md_ctx);
96 dctx->ctxdata.evp_md_ctx = NULL;
99 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
101 if (sha1ctx != NULL) {
102 isc_sha1_invalidate(sha1ctx);
103 isc_mem_put(dctx->mctx, sha1ctx, sizeof(isc_sha1_t));
104 dctx->ctxdata.sha1ctx = NULL;
110 openssldsa_adddata(dst_context_t *dctx, const isc_region_t *data) {
112 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
114 if (!EVP_DigestUpdate(evp_md_ctx, data->base, data->length)) {
115 return (ISC_R_FAILURE);
118 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
120 isc_sha1_update(sha1ctx, data->base, data->length);
122 return (ISC_R_SUCCESS);
126 BN_bn2bin_fixed(BIGNUM *bn, unsigned char *buf, int size) {
127 int bytes = size - BN_num_bytes(bn);
135 openssldsa_sign(dst_context_t *dctx, isc_buffer_t *sig) {
136 dst_key_t *key = dctx->key;
137 DSA *dsa = key->keydata.dsa;
141 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
143 unsigned char *sigbuf;
144 const unsigned char *sb;
147 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
148 unsigned char digest[ISC_SHA1_DIGESTLENGTH];
151 isc_buffer_availableregion(sig, &r);
152 if (r.length < ISC_SHA1_DIGESTLENGTH * 2 + 1)
153 return (ISC_R_NOSPACE);
156 pkey = EVP_PKEY_new();
158 return (ISC_R_NOMEMORY);
159 if (!EVP_PKEY_set1_DSA(pkey, dsa)) {
161 return (ISC_R_FAILURE);
163 sigbuf = malloc(EVP_PKEY_size(pkey));
164 if (sigbuf == NULL) {
166 return (ISC_R_NOMEMORY);
168 if (!EVP_SignFinal(evp_md_ctx, sigbuf, &siglen, pkey)) {
171 return (ISC_R_FAILURE);
173 INSIST(EVP_PKEY_size(pkey) >= (int) siglen);
175 /* Convert from Dss-Sig-Value (RFC2459). */
176 dsasig = DSA_SIG_new();
177 if (dsasig == NULL) {
179 return (ISC_R_NOMEMORY);
182 if (d2i_DSA_SIG(&dsasig, &sb, (long) siglen) == NULL) {
184 return (ISC_R_FAILURE);
188 /* Only use EVP for the Digest */
189 if (!EVP_DigestFinal_ex(evp_md_ctx, digest, &siglen)) {
190 return (ISC_R_FAILURE);
192 dsasig = DSA_do_sign(digest, ISC_SHA1_DIGESTLENGTH, dsa);
194 return (dst__openssl_toresult(DST_R_SIGNFAILURE));
196 isc_sha1_final(sha1ctx, digest);
198 dsasig = DSA_do_sign(digest, ISC_SHA1_DIGESTLENGTH, dsa);
200 return (dst__openssl_toresult(DST_R_SIGNFAILURE));
202 *r.base++ = (key->key_size - 512)/64;
203 BN_bn2bin_fixed(dsasig->r, r.base, ISC_SHA1_DIGESTLENGTH);
204 r.base += ISC_SHA1_DIGESTLENGTH;
205 BN_bn2bin_fixed(dsasig->s, r.base, ISC_SHA1_DIGESTLENGTH);
206 r.base += ISC_SHA1_DIGESTLENGTH;
207 DSA_SIG_free(dsasig);
208 isc_buffer_add(sig, ISC_SHA1_DIGESTLENGTH * 2 + 1);
210 return (ISC_R_SUCCESS);
214 openssldsa_verify(dst_context_t *dctx, const isc_region_t *sig) {
215 dst_key_t *key = dctx->key;
216 DSA *dsa = key->keydata.dsa;
218 unsigned char *cp = sig->base;
221 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
224 unsigned char *sigbuf;
228 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
230 unsigned char digest[ISC_SHA1_DIGESTLENGTH];
235 /* Only use EVP for the digest */
236 if (!EVP_DigestFinal_ex(evp_md_ctx, digest, &siglen)) {
237 return (ISC_R_FAILURE);
241 isc_sha1_final(sha1ctx, digest);
244 if (sig->length != 2 * ISC_SHA1_DIGESTLENGTH + 1) {
245 return (DST_R_VERIFYFAILURE);
249 dsasig = DSA_SIG_new();
251 return (ISC_R_NOMEMORY);
252 dsasig->r = BN_bin2bn(cp, ISC_SHA1_DIGESTLENGTH, NULL);
253 cp += ISC_SHA1_DIGESTLENGTH;
254 dsasig->s = BN_bin2bn(cp, ISC_SHA1_DIGESTLENGTH, NULL);
255 cp += ISC_SHA1_DIGESTLENGTH;
258 pkey = EVP_PKEY_new();
260 return (ISC_R_NOMEMORY);
261 if (!EVP_PKEY_set1_DSA(pkey, dsa)) {
263 return (ISC_R_FAILURE);
265 /* Convert to Dss-Sig-Value (RFC2459). */
266 sigbuf = malloc(EVP_PKEY_size(pkey) + 50);
267 if (sigbuf == NULL) {
269 return (ISC_R_NOMEMORY);
271 siglen = (unsigned) i2d_DSA_SIG(dsasig, &sigbuf);
272 INSIST(EVP_PKEY_size(pkey) >= (int) siglen);
273 status = EVP_VerifyFinal(evp_md_ctx, sigbuf, siglen, pkey);
277 status = DSA_do_verify(digest, ISC_SHA1_DIGESTLENGTH, dsasig, dsa);
279 DSA_SIG_free(dsasig);
281 return (dst__openssl_toresult(DST_R_VERIFYFAILURE));
283 return (ISC_R_SUCCESS);
287 openssldsa_compare(const dst_key_t *key1, const dst_key_t *key2) {
291 dsa1 = key1->keydata.dsa;
292 dsa2 = key2->keydata.dsa;
294 if (dsa1 == NULL && dsa2 == NULL)
296 else if (dsa1 == NULL || dsa2 == NULL)
299 status = BN_cmp(dsa1->p, dsa2->p) ||
300 BN_cmp(dsa1->q, dsa2->q) ||
301 BN_cmp(dsa1->g, dsa2->g) ||
302 BN_cmp(dsa1->pub_key, dsa2->pub_key);
307 if (dsa1->priv_key != NULL || dsa2->priv_key != NULL) {
308 if (dsa1->priv_key == NULL || dsa2->priv_key == NULL)
310 if (BN_cmp(dsa1->priv_key, dsa2->priv_key))
317 openssldsa_generate(dst_key_t *key, int unused) {
318 #if OPENSSL_VERSION_NUMBER > 0x00908000L
322 unsigned char rand_array[ISC_SHA1_DIGESTLENGTH];
327 result = dst__entropy_getdata(rand_array, sizeof(rand_array),
329 if (result != ISC_R_SUCCESS)
332 #if OPENSSL_VERSION_NUMBER > 0x00908000L
335 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
337 BN_GENCB_set_old(&cb, NULL, NULL);
339 if (!DSA_generate_parameters_ex(dsa, key->key_size, rand_array,
340 ISC_SHA1_DIGESTLENGTH, NULL, NULL,
344 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
347 dsa = DSA_generate_parameters(key->key_size, rand_array,
348 ISC_SHA1_DIGESTLENGTH, NULL, NULL,
351 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
354 if (DSA_generate_key(dsa) == 0) {
356 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
358 dsa->flags &= ~DSA_FLAG_CACHE_MONT_P;
360 key->keydata.dsa = dsa;
362 return (ISC_R_SUCCESS);
366 openssldsa_isprivate(const dst_key_t *key) {
367 DSA *dsa = key->keydata.dsa;
368 return (ISC_TF(dsa != NULL && dsa->priv_key != NULL));
372 openssldsa_destroy(dst_key_t *key) {
373 DSA *dsa = key->keydata.dsa;
375 key->keydata.dsa = NULL;
380 openssldsa_todns(const dst_key_t *key, isc_buffer_t *data) {
384 unsigned int t, p_bytes;
386 REQUIRE(key->keydata.dsa != NULL);
388 dsa = key->keydata.dsa;
390 isc_buffer_availableregion(data, &r);
392 t = (BN_num_bytes(dsa->p) - 64) / 8;
394 return (DST_R_INVALIDPUBLICKEY);
395 p_bytes = 64 + 8 * t;
397 dnslen = 1 + (key->key_size * 3)/8 + ISC_SHA1_DIGESTLENGTH;
398 if (r.length < (unsigned int) dnslen)
399 return (ISC_R_NOSPACE);
402 BN_bn2bin_fixed(dsa->q, r.base, ISC_SHA1_DIGESTLENGTH);
403 r.base += ISC_SHA1_DIGESTLENGTH;
404 BN_bn2bin_fixed(dsa->p, r.base, key->key_size/8);
406 BN_bn2bin_fixed(dsa->g, r.base, key->key_size/8);
408 BN_bn2bin_fixed(dsa->pub_key, r.base, key->key_size/8);
411 isc_buffer_add(data, dnslen);
413 return (ISC_R_SUCCESS);
417 openssldsa_fromdns(dst_key_t *key, isc_buffer_t *data) {
420 unsigned int t, p_bytes;
421 isc_mem_t *mctx = key->mctx;
425 isc_buffer_remainingregion(data, &r);
427 return (ISC_R_SUCCESS);
431 return (ISC_R_NOMEMORY);
432 dsa->flags &= ~DSA_FLAG_CACHE_MONT_P;
434 t = (unsigned int) *r.base++;
437 return (DST_R_INVALIDPUBLICKEY);
439 p_bytes = 64 + 8 * t;
441 if (r.length < 1 + ISC_SHA1_DIGESTLENGTH + 3 * p_bytes) {
443 return (DST_R_INVALIDPUBLICKEY);
446 dsa->q = BN_bin2bn(r.base, ISC_SHA1_DIGESTLENGTH, NULL);
447 r.base += ISC_SHA1_DIGESTLENGTH;
449 dsa->p = BN_bin2bn(r.base, p_bytes, NULL);
452 dsa->g = BN_bin2bn(r.base, p_bytes, NULL);
455 dsa->pub_key = BN_bin2bn(r.base, p_bytes, NULL);
458 key->key_size = p_bytes * 8;
460 isc_buffer_forward(data, 1 + ISC_SHA1_DIGESTLENGTH + 3 * p_bytes);
462 key->keydata.dsa = dsa;
464 return (ISC_R_SUCCESS);
469 openssldsa_tofile(const dst_key_t *key, const char *directory) {
473 unsigned char bufs[5][128];
475 if (key->keydata.dsa == NULL)
476 return (DST_R_NULLKEY);
478 dsa = key->keydata.dsa;
480 priv.elements[cnt].tag = TAG_DSA_PRIME;
481 priv.elements[cnt].length = BN_num_bytes(dsa->p);
482 BN_bn2bin(dsa->p, bufs[cnt]);
483 priv.elements[cnt].data = bufs[cnt];
486 priv.elements[cnt].tag = TAG_DSA_SUBPRIME;
487 priv.elements[cnt].length = BN_num_bytes(dsa->q);
488 BN_bn2bin(dsa->q, bufs[cnt]);
489 priv.elements[cnt].data = bufs[cnt];
492 priv.elements[cnt].tag = TAG_DSA_BASE;
493 priv.elements[cnt].length = BN_num_bytes(dsa->g);
494 BN_bn2bin(dsa->g, bufs[cnt]);
495 priv.elements[cnt].data = bufs[cnt];
498 priv.elements[cnt].tag = TAG_DSA_PRIVATE;
499 priv.elements[cnt].length = BN_num_bytes(dsa->priv_key);
500 BN_bn2bin(dsa->priv_key, bufs[cnt]);
501 priv.elements[cnt].data = bufs[cnt];
504 priv.elements[cnt].tag = TAG_DSA_PUBLIC;
505 priv.elements[cnt].length = BN_num_bytes(dsa->pub_key);
506 BN_bn2bin(dsa->pub_key, bufs[cnt]);
507 priv.elements[cnt].data = bufs[cnt];
510 priv.nelements = cnt;
511 return (dst__privstruct_writefile(key, &priv, directory));
515 openssldsa_parse(dst_key_t *key, isc_lex_t *lexer) {
520 isc_mem_t *mctx = key->mctx;
521 #define DST_RET(a) {ret = a; goto err;}
523 /* read private key file */
524 ret = dst__privstruct_parse(key, DST_ALG_DSA, lexer, mctx, &priv);
525 if (ret != ISC_R_SUCCESS)
530 DST_RET(ISC_R_NOMEMORY);
531 dsa->flags &= ~DSA_FLAG_CACHE_MONT_P;
532 key->keydata.dsa = dsa;
534 for (i=0; i < priv.nelements; i++) {
536 bn = BN_bin2bn(priv.elements[i].data,
537 priv.elements[i].length, NULL);
539 DST_RET(ISC_R_NOMEMORY);
541 switch (priv.elements[i].tag) {
545 case TAG_DSA_SUBPRIME:
551 case TAG_DSA_PRIVATE:
559 dst__privstruct_free(&priv, mctx);
561 key->key_size = BN_num_bits(dsa->p);
563 return (ISC_R_SUCCESS);
566 openssldsa_destroy(key);
567 dst__privstruct_free(&priv, mctx);
568 memset(&priv, 0, sizeof(priv));
572 static dst_func_t openssldsa_functions = {
573 openssldsa_createctx,
574 openssldsa_destroyctx,
578 NULL, /*%< computesecret */
580 NULL, /*%< paramcompare */
582 openssldsa_isprivate,
588 NULL, /*%< cleanup */
589 NULL, /*%< fromlabel */
593 dst__openssldsa_init(dst_func_t **funcp) {
594 REQUIRE(funcp != NULL);
596 *funcp = &openssldsa_functions;
597 return (ISC_R_SUCCESS);
602 #include <isc/util.h>
604 EMPTY_TRANSLATION_UNIT
projects / FreeBSD / releng / 8.1.git / blob