dropbear: ecc_sys.c annotate

annotate ecc_sys.c @ 147:c2b93763dac9 libtomcrypt

Fixes for it to compile and work nicely with Dropbear. In particular, OS X's 'ar' doesn't seem to like arrays which don't have initialising values.

author	Matt Johnston <matt@ucc.asn.au>
date	Sun, 19 Dec 2004 16:23:32 +0000
parents	5d99163f7e32
children

rev	line source
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	1 /* LibTomCrypt, modular cryptographic library -- Tom St Denis
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	2 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	3 * LibTomCrypt is a library that provides various cryptographic
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	4 * algorithms in a highly modular and flexible manner.
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	5 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	6 * The library is free for all purposes without any express
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	7 * guarantee it works.
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	8 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	9 * Tom St Denis, [email protected], http://libtomcrypt.org
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	10 */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	11 int ecc_encrypt_key(const unsigned char *inkey, unsigned long keylen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	12 unsigned char out, unsigned long len,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	13 prng_state *prng, int wprng, int hash,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	14 ecc_key *key)
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	15 {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	16 unsigned char pub_expt, ecc_shared, *skey;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	17 ecc_key pubkey;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	18 unsigned long x, y, z, hashsize, pubkeysize;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	19 int err;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	20
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	21 _ARGCHK(inkey != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	22 _ARGCHK(out != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	23 _ARGCHK(len != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	24 _ARGCHK(key != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	25
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	26 /* check that wprng/cipher/hash are not invalid */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	27 if ((err = prng_is_valid(wprng)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	28 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	29 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	30
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	31 if ((err = hash_is_valid(hash)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	32 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	33 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	34
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	35 if (keylen > hash_descriptor[hash].hashsize) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	36 return CRYPT_INVALID_HASH;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	37 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	38
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	39 /* make a random key and export the public copy */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	40 if ((err = ecc_make_key(prng, wprng, ecc_get_size(key), &pubkey)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	41 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	42 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	43
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	44 pub_expt = XMALLOC(ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	45 ecc_shared = XMALLOC(ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	46 skey = XMALLOC(MAXBLOCKSIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	47 if (pub_expt == NULL \|\| ecc_shared == NULL \|\| skey == NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	48 if (pub_expt != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	49 XFREE(pub_expt);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	50 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	51 if (ecc_shared != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	52 XFREE(ecc_shared);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	53 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	54 if (skey != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	55 XFREE(skey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	56 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	57 ecc_free(&pubkey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	58 return CRYPT_MEM;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	59 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	60
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	61 pubkeysize = ECC_BUF_SIZE;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	62 if ((err = ecc_export(pub_expt, &pubkeysize, PK_PUBLIC, &pubkey)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	63 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	64 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	65 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	66
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	67 /* now check if the out buffer is big enough */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	68 if (*len < (9 + PACKET_SIZE + pubkeysize + hash_descriptor[hash].hashsize)) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	69 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	70 err = CRYPT_BUFFER_OVERFLOW;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	71 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	72 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	73
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	74 /* make random key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	75 hashsize = hash_descriptor[hash].hashsize;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	76 x = ECC_BUF_SIZE;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	77 if ((err = ecc_shared_secret(&pubkey, key, ecc_shared, &x)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	78 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	79 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	80 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	81 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	82 z = MAXBLOCKSIZE;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	83 if ((err = hash_memory(hash, ecc_shared, x, skey, &z)) != CRYPT_OK) {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	84 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	85 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	86
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	87 /* store header */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	88 packet_store_header(out, PACKET_SECT_ECC, PACKET_SUB_ENC_KEY);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	89
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	90 /* output header */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	91 y = PACKET_SIZE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	92
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	93 /* size of hash name and the name itself */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	94 out[y++] = hash_descriptor[hash].ID;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	95
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	96 /* length of ECC pubkey and the key itself */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	97 STORE32L(pubkeysize, out+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	98 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	99
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	100 for (x = 0; x < pubkeysize; x++, y++) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	101 out[y] = pub_expt[x];
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	102 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	103
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	104 STORE32L(keylen, out+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	105 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	106
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	107 /* Encrypt/Store the encrypted key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	108 for (x = 0; x < keylen; x++, y++) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	109 out[y] = skey[x] ^ inkey[x];
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	110 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	111 *len = y;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	112
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	113 err = CRYPT_OK;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	114 __ERR:
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	115 #ifdef CLEAN_STACK
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	116 /* clean up */
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	117 zeromem(pub_expt, ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	118 zeromem(ecc_shared, ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	119 zeromem(skey, MAXBLOCKSIZE);
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	120 #endif
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	121
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	122 XFREE(skey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	123 XFREE(ecc_shared);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	124 XFREE(pub_expt);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	125
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	126 return err;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	127 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	128
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	129 int ecc_decrypt_key(const unsigned char *in, unsigned long inlen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	130 unsigned char outkey, unsigned long keylen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	131 ecc_key *key)
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	132 {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	133 unsigned char shared_secret, skey;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	134 unsigned long x, y, z, hashsize, keysize;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	135 int hash, err;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	136 ecc_key pubkey;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	137
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	138 _ARGCHK(in != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	139 _ARGCHK(outkey != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	140 _ARGCHK(keylen != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	141 _ARGCHK(key != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	142
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	143 /* right key type? */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	144 if (key->type != PK_PRIVATE) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	145 return CRYPT_PK_NOT_PRIVATE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	146 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	147
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	148 /* correct length ? */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	149 if (inlen < PACKET_SIZE+1+4+4) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	150 return CRYPT_INVALID_PACKET;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	151 } else {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	152 inlen -= PACKET_SIZE+1+4+4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	153 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	154
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	155 /* is header correct? */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	156 if ((err = packet_valid_header((unsigned char *)in, PACKET_SECT_ECC, PACKET_SUB_ENC_KEY)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	157 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	158 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	159
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	160 /* now lets get the hash name */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	161 y = PACKET_SIZE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	162 hash = find_hash_id(in[y++]);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	163 if (hash == -1) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	164 return CRYPT_INVALID_HASH;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	165 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	166
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	167 /* common values */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	168 hashsize = hash_descriptor[hash].hashsize;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	169
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	170 /* get public key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	171 LOAD32L(x, in+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	172 if (inlen < x) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	173 return CRYPT_INVALID_PACKET;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	174 } else {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	175 inlen -= x;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	176 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	177 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	178 if ((err = ecc_import(in+y, x, &pubkey)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	179 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	180 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	181 y += x;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	182
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	183 /* allocate memory */
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	184 shared_secret = XMALLOC(ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	185 skey = XMALLOC(MAXBLOCKSIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	186 if (shared_secret == NULL \|\| skey == NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	187 if (shared_secret != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	188 XFREE(shared_secret);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	189 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	190 if (skey != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	191 XFREE(skey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	192 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	193 ecc_free(&pubkey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	194 return CRYPT_MEM;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	195 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	196
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	197 /* make shared key */
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	198 x = ECC_BUF_SIZE;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	199 if ((err = ecc_shared_secret(key, &pubkey, shared_secret, &x)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	200 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	201 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	202 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	203 ecc_free(&pubkey);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	204
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	205 z = MAXBLOCKSIZE;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	206 if ((err = hash_memory(hash, shared_secret, x, skey, &z)) != CRYPT_OK) {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	207 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	208 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	209
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	210 LOAD32L(keysize, in+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	211 if (inlen < keysize) {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	212 err = CRYPT_INVALID_PACKET;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	213 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	214 } else {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	215 inlen -= keysize;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	216 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	217 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	218
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	219 if (*keylen < keysize) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	220 err = CRYPT_BUFFER_OVERFLOW;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	221 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	222 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	223
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	224 /* Decrypt the key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	225 for (x = 0; x < keysize; x++, y++) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	226 outkey[x] = skey[x] ^ in[y];
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	227 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	228
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	229 *keylen = keysize;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	230
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	231 err = CRYPT_OK;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	232 __ERR:
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	233 #ifdef CLEAN_STACK
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	234 zeromem(shared_secret, ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	235 zeromem(skey, MAXBLOCKSIZE);
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	236 #endif
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	237
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	238 XFREE(skey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	239 XFREE(shared_secret);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	240
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	241 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	242 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	243
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	244 int ecc_sign_hash(const unsigned char *in, unsigned long inlen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	245 unsigned char out, unsigned long outlen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	246 prng_state prng, int wprng, ecc_key key)
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	247 {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	248 ecc_key pubkey;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	249 mp_int b, p;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	250 unsigned char epubkey, er;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	251 unsigned long x, y, pubkeysize, rsize;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	252 int err;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	253
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	254 _ARGCHK(in != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	255 _ARGCHK(out != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	256 _ARGCHK(outlen != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	257 _ARGCHK(key != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	258
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	259 /* is this a private key? */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	260 if (key->type != PK_PRIVATE) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	261 return CRYPT_PK_NOT_PRIVATE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	262 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	263
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	264 /* is the IDX valid ? */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	265 if (is_valid_idx(key->idx) != 1) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	266 return CRYPT_PK_INVALID_TYPE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	267 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	268
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	269 if ((err = prng_is_valid(wprng)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	270 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	271 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	272
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	273 /* make up a key and export the public copy */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	274 if ((err = ecc_make_key(prng, wprng, ecc_get_size(key), &pubkey)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	275 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	276 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	277
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	278 /* allocate ram */
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	279 epubkey = XMALLOC(ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	280 er = XMALLOC(ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	281 if (epubkey == NULL \|\| er == NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	282 if (epubkey != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	283 XFREE(epubkey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	284 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	285 if (er != NULL) {
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	286 XFREE(er);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	287 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	288 ecc_free(&pubkey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	289 return CRYPT_MEM;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	290 }
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	291
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	292 pubkeysize = ECC_BUF_SIZE;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	293 if ((err = ecc_export(epubkey, &pubkeysize, PK_PUBLIC, &pubkey)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	294 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	295 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	296 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	297
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	298 /* get the hash and load it as a bignum into 'b' */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	299 /* init the bignums */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	300 if ((err = mp_init_multi(&b, &p, NULL)) != MP_OKAY) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	301 ecc_free(&pubkey);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	302 err = mpi_to_ltc_error(err);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	303 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	304 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	305 if ((err = mp_read_radix(&p, (char *)sets[key->idx].order, 64)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	306 if ((err = mp_read_unsigned_bin(&b, (unsigned char *)in, (int)inlen)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	307
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	308 /* find b = (m - x)/k */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	309 if ((err = mp_invmod(&pubkey.k, &p, &pubkey.k)) != MP_OKAY) { goto error; } /* k = 1/k */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	310 if ((err = mp_submod(&b, &key->k, &p, &b)) != MP_OKAY) { goto error; } /* b = m - x */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	311 if ((err = mp_mulmod(&b, &pubkey.k, &p, &b)) != MP_OKAY) { goto error; } /* b = (m - x)/k */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	312
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	313 /* export it */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	314 rsize = (unsigned long)mp_unsigned_bin_size(&b);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	315 if (rsize > ECC_BUF_SIZE) {
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	316 err = CRYPT_BUFFER_OVERFLOW;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	317 goto error;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	318 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	319 if ((err = mp_to_unsigned_bin(&b, er)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	320
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	321 /* now lets check the outlen before we write */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	322 if (*outlen < (12 + rsize + pubkeysize)) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	323 err = CRYPT_BUFFER_OVERFLOW;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	324 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	325 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	326
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	327 /* lets output */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	328 y = PACKET_SIZE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	329
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	330 /* size of public key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	331 STORE32L(pubkeysize, out+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	332 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	333
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	334 /* copy the public key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	335 for (x = 0; x < pubkeysize; x++, y++) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	336 out[y] = epubkey[x];
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	337 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	338
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	339 /* size of 'r' */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	340 STORE32L(rsize, out+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	341 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	342
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	343 /* copy r */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	344 for (x = 0; x < rsize; x++, y++) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	345 out[y] = er[x];
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	346 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	347
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	348 /* store header */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	349 packet_store_header(out, PACKET_SECT_ECC, PACKET_SUB_SIGNED);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	350 *outlen = y;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	351
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	352 /* all ok */
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	353 err = CRYPT_OK;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	354 goto __ERR;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	355 error:
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	356 err = mpi_to_ltc_error(err);
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	357 __ERR:
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	358 mp_clear_multi(&b, &p, NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	359 ecc_free(&pubkey);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	360 #ifdef CLEAN_STACK
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	361 zeromem(er, ECC_BUF_SIZE);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	362 zeromem(epubkey, ECC_BUF_SIZE);
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	363 #endif
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	364
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	365 XFREE(epubkey);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	366 XFREE(er);
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	367
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	368 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	369 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	370
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	371 /* verify that mG = (bA + Y)
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	372 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	373 * The signatures work by making up a fresh key "a" with a public key "A". Now we want to sign so the
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	374 * public key Y = xG can verify it.
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	375 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	376 * b = (m - x)/k, A is the public key embedded and Y is the users public key [who signed it]
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	377 * A = kG therefore bA == ((m-x)/k)kG == (m-x)G
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	378 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	379 * Adding Y = xG to the bA gives us (m-x)G + xG == mG
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	380 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	381 * The user given only xG, kG and b cannot determine k or x which means they can't find the private key.
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	382 *
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	383 */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	384 int ecc_verify_hash(const unsigned char *sig, unsigned long siglen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	385 const unsigned char *hash, unsigned long inlen,
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	386 int stat, ecc_key key)
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	387 {
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	388 ecc_point *mG;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	389 ecc_key pubkey;
5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	390 mp_int b, p, m, mu;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	391 unsigned long x, y;
143 5d99163f7e32 import of libtomcrypt 0.99 Matt Johnston <matt@ucc.asn.au> parents: 3 diff changeset	392 int err;
3 7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	393
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	394 _ARGCHK(sig != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	395 _ARGCHK(hash != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	396 _ARGCHK(stat != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	397 _ARGCHK(key != NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	398
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	399 /* default to invalid signature */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	400 *stat = 0;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	401
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	402 if (siglen < PACKET_SIZE+4+4) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	403 return CRYPT_INVALID_PACKET;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	404 } else {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	405 siglen -= PACKET_SIZE+4+4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	406 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	407
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	408 /* is the message format correct? */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	409 if ((err = packet_valid_header((unsigned char *)sig, PACKET_SECT_ECC, PACKET_SUB_SIGNED)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	410 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	411 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	412
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	413 /* get hash name */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	414 y = PACKET_SIZE;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	415
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	416 /* get size of public key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	417 LOAD32L(x, sig+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	418 if (siglen < x) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	419 return CRYPT_INVALID_PACKET;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	420 } else {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	421 siglen -= x;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	422 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	423 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	424
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	425 /* load the public key */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	426 if ((err = ecc_import((unsigned char*)sig+y, x, &pubkey)) != CRYPT_OK) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	427 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	428 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	429 y += x;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	430
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	431 /* load size of 'b' */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	432 LOAD32L(x, sig+y);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	433 if (siglen < x) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	434 return CRYPT_INVALID_PACKET;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	435 } else {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	436 siglen -= x;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	437 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	438 y += 4;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	439
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	440 /* init values */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	441 if ((err = mp_init_multi(&b, &m, &p, &mu, NULL)) != MP_OKAY) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	442 ecc_free(&pubkey);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	443 return mpi_to_ltc_error(err);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	444 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	445
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	446 mG = new_point();
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	447 if (mG == NULL) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	448 mp_clear_multi(&b, &m, &p, &mu, NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	449 ecc_free(&pubkey);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	450 return CRYPT_MEM;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	451 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	452
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	453 /* load b */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	454 if ((err = mp_read_unsigned_bin(&b, (unsigned char *)sig+y, (int)x)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	455 y += x;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	456
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	457 /* get m in binary a bignum */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	458 if ((err = mp_read_unsigned_bin(&m, (unsigned char *)hash, (int)inlen)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	459
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	460 /* load prime */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	461 if ((err = mp_read_radix(&p, (char *)sets[key->idx].prime, 64)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	462
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	463 /* calculate barrett stuff */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	464 mp_set(&mu, 1);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	465 mp_lshd(&mu, 2 * USED(&p));
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	466 if ((err = mp_div(&mu, &p, &mu, NULL)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	467
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	468 /* get bA */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	469 if ((err = ecc_mulmod(&b, &pubkey.pubkey, &pubkey.pubkey, &p)) != CRYPT_OK) { goto done; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	470
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	471 /* get bA + Y */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	472 if ((err = add_point(&pubkey.pubkey, &key->pubkey, &pubkey.pubkey, &p, &mu)) != CRYPT_OK) { goto done; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	473
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	474 /* get mG */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	475 if ((err = mp_read_radix(&mG->x, (char *)sets[key->idx].Gx, 64)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	476 if ((err = mp_read_radix(&mG->y, (char *)sets[key->idx].Gy, 64)) != MP_OKAY) { goto error; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	477 if ((err = ecc_mulmod(&m, mG, mG, &p)) != CRYPT_OK) { goto done; }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	478
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	479 /* compare mG to bA + Y */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	480 if (mp_cmp(&mG->x, &pubkey.pubkey.x) == MP_EQ && mp_cmp(&mG->y, &pubkey.pubkey.y) == MP_EQ) {
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	481 *stat = 1;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	482 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	483
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	484 /* clear up and return */
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	485 err = CRYPT_OK;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	486 goto done;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	487 error:
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	488 err = mpi_to_ltc_error(err);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	489 done:
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	490 del_point(mG);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	491 ecc_free(&pubkey);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	492 mp_clear_multi(&p, &m, &b, &mu, NULL);
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	493 return err;
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	494 }
7faae8f46238 Branch renaming Matt Johnston <matt@ucc.asn.au> parents: diff changeset	495

Mercurial > dropbear

annotate ecc_sys.c @ 147:c2b93763dac9 libtomcrypt