diff options
Diffstat (limited to 'src/common/crypto.c')
| -rw-r--r-- | src/common/crypto.c | 83 |
1 files changed, 74 insertions, 9 deletions
diff --git a/src/common/crypto.c b/src/common/crypto.c index 2b2f3b3118..53c261b142 100644 --- a/src/common/crypto.c +++ b/src/common/crypto.c @@ -644,31 +644,70 @@ int crypto_pk_private_sign(crypto_pk_env_t *env, unsigned char *from, int fromle } } -/* Given a private or public key pk, put a fingerprint of the - * public key into fp_out. +/* Encode the public portion of 'pk' into 'dest'. Return -1 on error, + * or the number of characters used on success. */ -int -crypto_pk_get_fingerprint(crypto_pk_env_t *pk, char *fp_out) +int crypto_pk_asn1_encode(crypto_pk_env_t *pk, char *dest, int dest_len) +{ + int len; + len = i2d_RSAPublicKey((RSA*)pk->key, NULL); + if (len < 0 || len > dest_len) + return -1; + len = i2d_RSAPublicKey((RSA*)pk->key, (unsigned char**)&dest); + if (len < 0) + return -1; + return len; +} + +/* Decode an ASN1-encoded public key from str. + */ +crypto_pk_env_t *crypto_pk_asn1_decode(const char *str, int len) +{ + RSA *rsa; + rsa = d2i_RSAPublicKey(NULL, (const unsigned char**)&str, len); + if (!rsa) + return NULL; /* XXXX log openssl error */ + return _crypto_new_pk_env_rsa(rsa); +} + +/* Given a private or public key pk, put a SHA1 hash of the public key into + * digest_out (must have 20 bytes of space). + */ +int crypto_pk_get_digest(crypto_pk_env_t *pk, char *digest_out) { unsigned char *buf, *bufp; - unsigned char digest[20]; int len; - int i; assert(pk->type == CRYPTO_PK_RSA); len = i2d_RSAPublicKey((RSA*)pk->key, NULL); if (len < 0) return -1; - if (len<FINGERPRINT_LEN+1) len = FINGERPRINT_LEN+1; buf = bufp = tor_malloc(len+1); len = i2d_RSAPublicKey((RSA*)pk->key, &bufp); if (len < 0) { free(buf); return -1; } - if (crypto_SHA_digest(buf, len, digest) < 0) { + if (crypto_SHA_digest(buf, len, digest_out) < 0) { free(buf); return -1; } + return 0; +} + +/* Given a private or public key pk, put a fingerprint of the + * public key into fp_out (must have at least FINGERPRINT_LEN+1 bytes of + * space). + */ +int +crypto_pk_get_fingerprint(crypto_pk_env_t *pk, char *fp_out) +{ + unsigned char *bufp; + unsigned char digest[20]; + unsigned char buf[FINGERPRINT_LEN+1]; + int i; + if (crypto_pk_get_digest(pk, digest)) { + return -1; + } bufp = buf; for (i = 0; i < 20; ++i) { sprintf(bufp,"%02X",digest[i]); @@ -681,7 +720,6 @@ crypto_pk_get_fingerprint(crypto_pk_env_t *pk, char *fp_out) assert(strlen(buf) == FINGERPRINT_LEN); assert(crypto_pk_check_fingerprint_syntax(buf)); strcpy(fp_out, buf); - free(buf); return 0; } @@ -1173,3 +1211,30 @@ base64_decode(char *dest, int destlen, const char *src, int srclen) ret += len; return ret; } + +static const char BASE32_CHARS[] = "abcdefghijklmnopqrstuvwxyz012345"; + +int +base32_encode(char *dest, int destlen, const char *src, int srclen) +{ + int nbits, i, bit, v, u; + nbits = srclen * 8; + + if ((nbits%5) != 0) + /* We need an even multiple of 5 bits. */ + return -1; + if ((nbits/5)+1 < destlen) + /* Not enough space. */ + return -1; + + for (i=0,bit=0; bit < nbits; ++i, bit+=5) { + /* set v to the 16-bit value starting at src[bits/8], 0-padded. */ + v = ((unsigned char)src[bit/8]) << 8; + if (bit+5<nbits) v += src[(bit/8)+1]; + /* set u to the 5-bit value at the bit'th bit of src. */ + u = (v >> (11-(bit%8))) & 0x1F; + dest[i] = BASE32_CHARS[u]; + } + dest[i] = '\0'; + return 0; +} |