1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/ossrv/ssl/libcrypto/src/crypto/rsa/rsa_ssl.c Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,154 @@
1.4 +/* crypto/rsa/rsa_ssl.c */
1.5 +/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
1.6 + * All rights reserved.
1.7 + *
1.8 + * This package is an SSL implementation written
1.9 + * by Eric Young (eay@cryptsoft.com).
1.10 + * The implementation was written so as to conform with Netscapes SSL.
1.11 + *
1.12 + * This library is free for commercial and non-commercial use as long as
1.13 + * the following conditions are aheared to. The following conditions
1.14 + * apply to all code found in this distribution, be it the RC4, RSA,
1.15 + * lhash, DES, etc., code; not just the SSL code. The SSL documentation
1.16 + * included with this distribution is covered by the same copyright terms
1.17 + * except that the holder is Tim Hudson (tjh@cryptsoft.com).
1.18 + *
1.19 + * Copyright remains Eric Young's, and as such any Copyright notices in
1.20 + * the code are not to be removed.
1.21 + * If this package is used in a product, Eric Young should be given attribution
1.22 + * as the author of the parts of the library used.
1.23 + * This can be in the form of a textual message at program startup or
1.24 + * in documentation (online or textual) provided with the package.
1.25 + *
1.26 + * Redistribution and use in source and binary forms, with or without
1.27 + * modification, are permitted provided that the following conditions
1.28 + * are met:
1.29 + * 1. Redistributions of source code must retain the copyright
1.30 + * notice, this list of conditions and the following disclaimer.
1.31 + * 2. Redistributions in binary form must reproduce the above copyright
1.32 + * notice, this list of conditions and the following disclaimer in the
1.33 + * documentation and/or other materials provided with the distribution.
1.34 + * 3. All advertising materials mentioning features or use of this software
1.35 + * must display the following acknowledgement:
1.36 + * "This product includes cryptographic software written by
1.37 + * Eric Young (eay@cryptsoft.com)"
1.38 + * The word 'cryptographic' can be left out if the rouines from the library
1.39 + * being used are not cryptographic related :-).
1.40 + * 4. If you include any Windows specific code (or a derivative thereof) from
1.41 + * the apps directory (application code) you must include an acknowledgement:
1.42 + * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
1.43 + *
1.44 + * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
1.45 + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.46 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1.47 + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
1.48 + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.49 + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1.50 + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.51 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1.52 + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.53 + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.54 + * SUCH DAMAGE.
1.55 + *
1.56 + * The licence and distribution terms for any publically available version or
1.57 + * derivative of this code cannot be changed. i.e. this code cannot simply be
1.58 + * copied and put under another distribution licence
1.59 + * [including the GNU Public Licence.]
1.60 + */
1.61 +
1.62 +#include <stdio.h>
1.63 +#include "cryptlib.h"
1.64 +#include <openssl/bn.h>
1.65 +#include <openssl/rsa.h>
1.66 +#include <openssl/rand.h>
1.67 +
1.68 +EXPORT_C int RSA_padding_add_SSLv23(unsigned char *to, int tlen,
1.69 + const unsigned char *from, int flen)
1.70 + {
1.71 + int i,j;
1.72 + unsigned char *p;
1.73 +
1.74 + if (flen > (tlen-11))
1.75 + {
1.76 + RSAerr(RSA_F_RSA_PADDING_ADD_SSLV23,RSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE);
1.77 + return(0);
1.78 + }
1.79 +
1.80 + p=(unsigned char *)to;
1.81 +
1.82 + *(p++)=0;
1.83 + *(p++)=2; /* Public Key BT (Block Type) */
1.84 +
1.85 + /* pad out with non-zero random data */
1.86 + j=tlen-3-8-flen;
1.87 +
1.88 + if (RAND_bytes(p,j) <= 0)
1.89 + return(0);
1.90 + for (i=0; i<j; i++)
1.91 + {
1.92 + if (*p == '\0')
1.93 + do {
1.94 + if (RAND_bytes(p,1) <= 0)
1.95 + return(0);
1.96 + } while (*p == '\0');
1.97 + p++;
1.98 + }
1.99 +
1.100 + memset(p,3,8);
1.101 + p+=8;
1.102 + *(p++)='\0';
1.103 +
1.104 + memcpy(p,from,(unsigned int)flen);
1.105 + return(1);
1.106 + }
1.107 +
1.108 +EXPORT_C int RSA_padding_check_SSLv23(unsigned char *to, int tlen,
1.109 + const unsigned char *from, int flen, int num)
1.110 + {
1.111 + int i,j,k;
1.112 + const unsigned char *p;
1.113 +
1.114 + p=from;
1.115 + if (flen < 10)
1.116 + {
1.117 + RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_DATA_TOO_SMALL);
1.118 + return(-1);
1.119 + }
1.120 + if ((num != (flen+1)) || (*(p++) != 02))
1.121 + {
1.122 + RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_BLOCK_TYPE_IS_NOT_02);
1.123 + return(-1);
1.124 + }
1.125 +
1.126 + /* scan over padding data */
1.127 + j=flen-1; /* one for type */
1.128 + for (i=0; i<j; i++)
1.129 + if (*(p++) == 0) break;
1.130 +
1.131 + if ((i == j) || (i < 8))
1.132 + {
1.133 + RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_NULL_BEFORE_BLOCK_MISSING);
1.134 + return(-1);
1.135 + }
1.136 + for (k= -8; k<0; k++)
1.137 + {
1.138 + if (p[k] != 0x03) break;
1.139 + }
1.140 + if (k == -1)
1.141 + {
1.142 + RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_SSLV3_ROLLBACK_ATTACK);
1.143 + return(-1);
1.144 + }
1.145 +
1.146 + i++; /* Skip over the '\0' */
1.147 + j-=i;
1.148 + if (j > tlen)
1.149 + {
1.150 + RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,RSA_R_DATA_TOO_LARGE);
1.151 + return(-1);
1.152 + }
1.153 + memcpy(to,p,(unsigned int)j);
1.154 +
1.155 + return(j);
1.156 + }
1.157 +