summaryrefslogtreecommitdiff
path: root/sbin
diff options
context:
space:
mode:
authorAngelos D. Keromytis <angelos@cvs.openbsd.org>2001-05-31 20:20:08 +0000
committerAngelos D. Keromytis <angelos@cvs.openbsd.org>2001-05-31 20:20:08 +0000
commit038ceeab02c8e53c681c6f959c786dca020ab9fb (patch)
treeb790ae173d57a5334ea98979e3d45a9401fa21d9 /sbin
parent20966370968bfc7c85367c6cb024568a28a524ac (diff)
Key handling routines.
Diffstat (limited to 'sbin')
-rw-r--r--sbin/isakmpd/key.c175
1 files changed, 175 insertions, 0 deletions
diff --git a/sbin/isakmpd/key.c b/sbin/isakmpd/key.c
new file mode 100644
index 00000000000..27781d0d154
--- /dev/null
+++ b/sbin/isakmpd/key.c
@@ -0,0 +1,175 @@
+/* $OpenBSD: key.c,v 1.1 2001/05/31 20:20:07 angelos Exp $ */
+
+/*
+ * The author of this code is Angelos D. Keromytis (angelos@cis.upenn.edu)
+ *
+ * Copyright (c) 2000 Angelos D. Keromytis.
+ *
+ * Permission to use, copy, and modify this software without fee
+ * is hereby granted, provided that this entire notice is included in
+ * all copies of any software which is or includes a copy or
+ * modification of this software.
+ * You may use this code under the GNU public license if you so wish. Please
+ * contribute changes back to the authors under this freer than GPL license
+ * so that we may further the use of strong encryption without limitations to
+ * all.
+ *
+ * THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRESS OR
+ * IMPLIED WARRANTY. IN PARTICULAR, NONE OF THE AUTHORS MAKES ANY
+ * REPRESENTATION OR WARRANTY OF ANY KIND CONCERNING THE
+ * MERCHANTABILITY OF THIS SOFTWARE OR ITS FITNESS FOR ANY PARTICULAR
+ * PURPOSE.
+ */
+
+#include <string.h>
+
+#include "sysdep.h"
+
+#include "dyn.h"
+#include "util.h"
+#include "log.h"
+#include "key.h"
+#include "x509.h"
+
+void
+key_free (int type, int private, void *key)
+{
+ switch (type)
+ {
+ case ISAKMP_KEY_PASSPHRASE:
+ free (key);
+ break;
+ case ISAKMP_KEY_RSA:
+ LC (RSA_free, (key));
+ break;
+ case ISAKMP_KEY_NONE:
+ default:
+ log_error ("key_free: unknown/unsupportedkey type %d", type);
+ break;
+ }
+}
+
+/* Convert from internal form to serialized */
+void
+key_serialize (int type, int private, void *key, u_int8_t **data, int *datalen)
+{
+ u_int8_t *p;
+
+ switch (type)
+ {
+ case ISAKMP_KEY_PASSPHRASE:
+ *datalen = strlen ((char *)key);
+ *data = strdup ((char *)key);
+ break;
+ case ISAKMP_KEY_RSA:
+ switch (private)
+ {
+ case ISAKMP_KEYTYPE_PUBLIC:
+ *datalen = LC (i2d_RSAPublicKey, ((RSA *)key, NULL));
+ *data = p = malloc (*datalen);
+ if (*data == NULL)
+ {
+ log_error("key_serialize: malloc (%d) failed", *datalen);
+ return;
+ }
+ *datalen = LC (i2d_RSAPublicKey, ((RSA *)key, &p));
+ break;
+ case ISAKMP_KEYTYPE_PRIVATE:
+ *datalen = LC (i2d_RSAPrivateKey, ((RSA *)key, NULL));
+ *data = p = malloc (*datalen);
+ if (*data == NULL)
+ {
+ log_error("key_serialize: malloc (%d) failed", *datalen);
+ return;
+ }
+ *datalen = LC (i2d_RSAPrivateKey, ((RSA *)key, &p));
+ break;
+ }
+ break;
+ default:
+ log_error ("key_serialize: unknown/unsupported key type %d", type);
+ break;
+ }
+}
+
+/* Convert from serialized to printable */
+char *
+key_printable (int type, int private, u_int8_t *data, int datalen)
+{
+ char *s;
+ int i;
+
+ switch (type)
+ {
+ case ISAKMP_KEY_PASSPHRASE:
+ return strdup ((char *)data);
+ case ISAKMP_KEY_RSA:
+ s = malloc (datalen * 2);
+ if (s == NULL)
+ {
+ log_error ("key_printable: malloc (%d) failed", datalen * 2);
+ return NULL;
+ }
+ for (i = 0; i < datalen; i++)
+ sprintf (s + (2 * i), "%02x", data[i]);
+ return s;
+ default:
+ log_error ("key_printable: unknown/unsupported key type %d", type);
+ return NULL;
+ }
+}
+
+/* Convert from serialized to internal */
+void *
+key_internalize (int type, int private, u_int8_t *data, int datalen)
+{
+ switch (type)
+ {
+ case ISAKMP_KEY_PASSPHRASE:
+ return strdup (data);
+ case ISAKMP_KEY_RSA:
+ switch (private)
+ {
+ case ISAKMP_KEYTYPE_PUBLIC:
+ return LC (d2i_RSAPublicKey, (NULL, &data, datalen));
+ case ISAKMP_KEYTYPE_PRIVATE:
+ return LC (d2i_RSAPrivateKey, (NULL, &data, datalen));
+ default:
+ log_error ("key_internalize: not public or private RSA key passed");
+ return NULL;
+ }
+ break;
+ default:
+ log_error ("key_internalize: unknown/unsupported key type %d", type);
+ break;
+ }
+
+ return NULL;
+}
+
+/* Convert from printable to serialized */
+void
+key_from_printable (int type, int private, char *key, u_int8_t **data,
+ int *datalen)
+{
+ switch (type)
+ {
+ case ISAKMP_KEY_PASSPHRASE:
+ *datalen = strlen (key);
+ *data = strdup (key);
+ break;
+ case ISAKMP_KEY_RSA:
+ *datalen = (strlen (key) + 1) / 2; /* Round up, just in case */
+ *data = malloc (*datalen);
+ if (*data == NULL)
+ {
+ log_error ("key_from_printable: malloc (%d) failed", *datalen);
+ return;
+ }
+ *datalen = hex2raw (key, *data, *datalen);
+ break;
+ default:
+ log_error ("key_from_printable: unknown/unsupported key type %d", type);
+ break;
+ }
+}