sl@0: /* crypto/rsa/rsa_saos.c */ sl@0: /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) sl@0: * All rights reserved. sl@0: * sl@0: * This package is an SSL implementation written sl@0: * by Eric Young (eay@cryptsoft.com). sl@0: * The implementation was written so as to conform with Netscapes SSL. sl@0: * sl@0: * This library is free for commercial and non-commercial use as long as sl@0: * the following conditions are aheared to. The following conditions sl@0: * apply to all code found in this distribution, be it the RC4, RSA, sl@0: * lhash, DES, etc., code; not just the SSL code. The SSL documentation sl@0: * included with this distribution is covered by the same copyright terms sl@0: * except that the holder is Tim Hudson (tjh@cryptsoft.com). sl@0: * sl@0: * Copyright remains Eric Young's, and as such any Copyright notices in sl@0: * the code are not to be removed. sl@0: * If this package is used in a product, Eric Young should be given attribution sl@0: * as the author of the parts of the library used. sl@0: * This can be in the form of a textual message at program startup or sl@0: * in documentation (online or textual) provided with the package. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * 1. Redistributions of source code must retain the copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in the sl@0: * documentation and/or other materials provided with the distribution. sl@0: * 3. All advertising materials mentioning features or use of this software sl@0: * must display the following acknowledgement: sl@0: * "This product includes cryptographic software written by sl@0: * Eric Young (eay@cryptsoft.com)" sl@0: * The word 'cryptographic' can be left out if the rouines from the library sl@0: * being used are not cryptographic related :-). sl@0: * 4. If you include any Windows specific code (or a derivative thereof) from sl@0: * the apps directory (application code) you must include an acknowledgement: sl@0: * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND sl@0: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE sl@0: * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE sl@0: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL sl@0: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS sl@0: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT sl@0: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY sl@0: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF sl@0: * SUCH DAMAGE. sl@0: * sl@0: * The licence and distribution terms for any publically available version or sl@0: * derivative of this code cannot be changed. i.e. this code cannot simply be sl@0: * copied and put under another distribution licence sl@0: * [including the GNU Public Licence.] sl@0: */ sl@0: sl@0: #include sl@0: #include "cryptlib.h" sl@0: #include sl@0: #include sl@0: #include sl@0: #include sl@0: sl@0: EXPORT_C int RSA_sign_ASN1_OCTET_STRING(int type, sl@0: const unsigned char *m, unsigned int m_len, sl@0: unsigned char *sigret, unsigned int *siglen, RSA *rsa) sl@0: { sl@0: ASN1_OCTET_STRING sig; sl@0: int i,j,ret=1; sl@0: unsigned char *p,*s; sl@0: sl@0: sig.type=V_ASN1_OCTET_STRING; sl@0: sig.length=m_len; sl@0: sig.data=(unsigned char *)m; sl@0: sl@0: i=i2d_ASN1_OCTET_STRING(&sig,NULL); sl@0: j=RSA_size(rsa); sl@0: if (i > (j-RSA_PKCS1_PADDING_SIZE)) sl@0: { sl@0: RSAerr(RSA_F_RSA_SIGN_ASN1_OCTET_STRING,RSA_R_DIGEST_TOO_BIG_FOR_RSA_KEY); sl@0: return(0); sl@0: } sl@0: s=(unsigned char *)OPENSSL_malloc((unsigned int)j+1); sl@0: if (s == NULL) sl@0: { sl@0: RSAerr(RSA_F_RSA_SIGN_ASN1_OCTET_STRING,ERR_R_MALLOC_FAILURE); sl@0: return(0); sl@0: } sl@0: p=s; sl@0: i2d_ASN1_OCTET_STRING(&sig,&p); sl@0: i=RSA_private_encrypt(i,s,sigret,rsa,RSA_PKCS1_PADDING); sl@0: if (i <= 0) sl@0: ret=0; sl@0: else sl@0: *siglen=i; sl@0: sl@0: OPENSSL_cleanse(s,(unsigned int)j+1); sl@0: OPENSSL_free(s); sl@0: return(ret); sl@0: } sl@0: sl@0: EXPORT_C int RSA_verify_ASN1_OCTET_STRING(int dtype, sl@0: const unsigned char *m, sl@0: unsigned int m_len, unsigned char *sigbuf, unsigned int siglen, sl@0: RSA *rsa) sl@0: { sl@0: int i,ret=0; sl@0: unsigned char *s; sl@0: const unsigned char *p; sl@0: ASN1_OCTET_STRING *sig=NULL; sl@0: sl@0: if (siglen != (unsigned int)RSA_size(rsa)) sl@0: { sl@0: RSAerr(RSA_F_RSA_VERIFY_ASN1_OCTET_STRING,RSA_R_WRONG_SIGNATURE_LENGTH); sl@0: return(0); sl@0: } sl@0: sl@0: s=(unsigned char *)OPENSSL_malloc((unsigned int)siglen); sl@0: if (s == NULL) sl@0: { sl@0: RSAerr(RSA_F_RSA_VERIFY_ASN1_OCTET_STRING,ERR_R_MALLOC_FAILURE); sl@0: goto err; sl@0: } sl@0: i=RSA_public_decrypt((int)siglen,sigbuf,s,rsa,RSA_PKCS1_PADDING); sl@0: sl@0: if (i <= 0) goto err; sl@0: sl@0: p=s; sl@0: sig=d2i_ASN1_OCTET_STRING(NULL,&p,(long)i); sl@0: if (sig == NULL) goto err; sl@0: sl@0: if ( ((unsigned int)sig->length != m_len) || sl@0: (memcmp(m,sig->data,m_len) != 0)) sl@0: { sl@0: RSAerr(RSA_F_RSA_VERIFY_ASN1_OCTET_STRING,RSA_R_BAD_SIGNATURE); sl@0: } sl@0: else sl@0: ret=1; sl@0: err: sl@0: if (sig != NULL) M_ASN1_OCTET_STRING_free(sig); sl@0: if (s != NULL) sl@0: { sl@0: OPENSSL_cleanse(s,(unsigned int)siglen); sl@0: OPENSSL_free(s); sl@0: } sl@0: return(ret); sl@0: } sl@0: