Blame - scard.c - platform/external/openssh

blob: 779106f851e5056d9658e76ec30150c5959b564b [file] [log] [blame]

Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	1	/*
				2	* Copyright (c) 2001 Markus Friedl. All rights reserved.
				3	*
				4	* Redistribution and use in source and binary forms, with or without
				5	* modification, are permitted provided that the following conditions
				6	* are met:
				7	* 1. Redistributions of source code must retain the above copyright
				8	* notice, this list of conditions and the following disclaimer.
				9	* 2. Redistributions in binary form must reproduce the above copyright
				10	* notice, this list of conditions and the following disclaimer in the
				11	* documentation and/or other materials provided with the distribution.
				12	*
				13	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
				14	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
				15	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
				16	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
				17	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
				18	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
				19	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
				20	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
				21	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
				22	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
				23	*/
				24
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	25	#include "includes.h"
Damien Miller	85de580	2001-09-18 14:01:11 +1000	[diff] [blame]	26	#ifdef SMARTCARD
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	27	RCSID("$OpenBSD: scard.c,v 1.24 2002/03/25 17:34:27 markus Exp $");
Ben Lindstrom	818659a	2002-03-22 03:38:35 +0000	[diff] [blame]	28
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	29	#include <openssl/evp.h>
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	30	#include <sectok.h>
				31
				32	#include "key.h"
				33	#include "log.h"
				34	#include "xmalloc.h"
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	35	#include "readpass.h"
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	36	#include "scard.h"
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	37
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	38	#if OPENSSL_VERSION_NUMBER < 0x00907000L
				39	#define USE_ENGINE
				40	#define RSA_get_default_method RSA_get_default_openssl_method
				41	#else
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	42	#endif
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	43
				44	#ifdef USE_ENGINE
				45	#include <openssl/engine.h>
				46	#define sc_get_rsa sc_get_engine
				47	#else
				48	#define sc_get_rsa sc_get_rsa_method
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	49	#endif
				50
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	51	#define CLA_SSH 0x05
				52	#define INS_DECRYPT 0x10
				53	#define INS_GET_KEYLENGTH 0x20
				54	#define INS_GET_PUBKEY 0x30
				55	#define INS_GET_RESPONSE 0xc0
				56
				57	#define MAX_BUF_SIZE 256
				58
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	59	u_char DEFAUT0[] = {0xad, 0x9f, 0x61, 0xfe, 0xfa, 0x20, 0xce, 0x63};
				60
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	61	static int sc_fd = -1;
Ben Lindstrom	f7db3bb	2001-08-06 21:35:51 +0000	[diff] [blame]	62	static char *sc_reader_id = NULL;
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	63	static char *sc_pin = NULL;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	64	static int cla = 0x00; /* class */
				65
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	66	static void sc_mk_digest(const char pin, u_char digest);
				67	static int get_AUT0(u_char *aut0);
				68
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	69	/* interface to libsectok */
				70
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	71	static int
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	72	sc_open(void)
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	73	{
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	74	int sw;
				75
				76	if (sc_fd >= 0)
				77	return sc_fd;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	78
Ben Lindstrom	f7db3bb	2001-08-06 21:35:51 +0000	[diff] [blame]	79	sc_fd = sectok_friendly_open(sc_reader_id, STONOWAIT, &sw);
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	80	if (sc_fd < 0) {
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	81	error("sectok_open failed: %s", sectok_get_sw(sw));
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	82	return SCARD_ERROR_FAIL;
				83	}
				84	if (! sectok_cardpresent(sc_fd)) {
Ben Lindstrom	f7db3bb	2001-08-06 21:35:51 +0000	[diff] [blame]	85	debug("smartcard in reader %s not present, skipping",
				86	sc_reader_id);
Ben Lindstrom	3ab1dfa	2001-08-06 21:33:44 +0000	[diff] [blame]	87	sc_close();
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	88	return SCARD_ERROR_NOCARD;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	89	}
Ben Lindstrom	60df8e4	2001-08-06 21:10:52 +0000	[diff] [blame]	90	if (sectok_reset(sc_fd, 0, NULL, &sw) <= 0) {
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	91	error("sectok_reset failed: %s", sectok_get_sw(sw));
				92	sc_fd = -1;
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	93	return SCARD_ERROR_FAIL;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	94	}
Ben Lindstrom	60df8e4	2001-08-06 21:10:52 +0000	[diff] [blame]	95	if ((cla = cyberflex_inq_class(sc_fd)) < 0)
				96	cla = 0;
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	97
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	98	debug("sc_open ok %d", sc_fd);
				99	return sc_fd;
				100	}
				101
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	102	static int
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	103	sc_enable_applet(void)
				104	{
Ben Lindstrom	60df8e4	2001-08-06 21:10:52 +0000	[diff] [blame]	105	static u_char aid[] = {0xfc, 0x53, 0x73, 0x68, 0x2e, 0x62, 0x69, 0x6e};
				106	int sw = 0;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	107
Ben Lindstrom	60df8e4	2001-08-06 21:10:52 +0000	[diff] [blame]	108	/* select applet id */
				109	sectok_apdu(sc_fd, cla, 0xa4, 0x04, 0, sizeof aid, aid, 0, NULL, &sw);
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	110	if (!sectok_swOK(sw)) {
				111	error("sectok_apdu failed: %s", sectok_get_sw(sw));
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	112	sc_close();
				113	return -1;
				114	}
				115	return 0;
				116	}
				117
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	118	static int
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	119	sc_init(void)
				120	{
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	121	int status;
				122
				123	status = sc_open();
				124	if (status == SCARD_ERROR_NOCARD) {
				125	return SCARD_ERROR_NOCARD;
				126	}
				127	if (status < 0 ) {
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	128	error("sc_open failed");
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	129	return status;
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	130	}
				131	if (sc_enable_applet() < 0) {
				132	error("sc_enable_applet failed");
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	133	return SCARD_ERROR_APPLET;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	134	}
				135	return 0;
				136	}
				137
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	138	static int
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	139	sc_read_pubkey(Key * k)
				140	{
				141	u_char buf[2], *n;
				142	char *p;
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	143	int len, sw, status = -1;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	144
				145	len = sw = 0;
Damien Miller	3ff36d6	2001-09-28 19:51:54 +1000	[diff] [blame]	146	n = NULL;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	147
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	148	if (sc_fd < 0) {
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	149	if (sc_init() < 0)
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	150	goto err;
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	151	}
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	152
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	153	/* get key size */
				154	sectok_apdu(sc_fd, CLA_SSH, INS_GET_KEYLENGTH, 0, 0, 0, NULL,
Damien Miller	9f0f5c6	2001-12-21 14:45:46 +1100	[diff] [blame]	155	sizeof(buf), buf, &sw);
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	156	if (!sectok_swOK(sw)) {
				157	error("could not obtain key length: %s", sectok_get_sw(sw));
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	158	goto err;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	159	}
				160	len = (buf[0] << 8) \| buf[1];
				161	len /= 8;
				162	debug("INS_GET_KEYLENGTH: len %d sw %s", len, sectok_get_sw(sw));
				163
				164	n = xmalloc(len);
				165	/* get n */
				166	sectok_apdu(sc_fd, CLA_SSH, INS_GET_PUBKEY, 0, 0, 0, NULL, len, n, &sw);
				167	if (!sectok_swOK(sw)) {
				168	error("could not obtain public key: %s", sectok_get_sw(sw));
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	169	goto err;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	170	}
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	171
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	172	debug("INS_GET_KEYLENGTH: sw %s", sectok_get_sw(sw));
				173
				174	if (BN_bin2bn(n, len, k->rsa->n) == NULL) {
				175	error("c_read_pubkey: BN_bin2bn failed");
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	176	goto err;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	177	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	178
				179	/* currently the java applet just stores 'n' */
				180	if (!BN_set_word(k->rsa->e, 35)) {
				181	error("c_read_pubkey: BN_set_word(e, 35) failed");
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	182	goto err;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	183	}
				184
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	185	status = 0;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	186	p = key_fingerprint(k, SSH_FP_MD5, SSH_FP_HEX);
				187	debug("fingerprint %d %s", key_size(k), p);
				188	xfree(p);
				189
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	190	err:
				191	if (n != NULL)
				192	xfree(n);
				193	sc_close();
				194	return status;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	195	}
				196
Ben Lindstrom	c2c6cbc	2002-03-26 02:44:44 +0000	[diff] [blame]	197	static int
				198	try_AUT0(void)
				199	{
				200	u_char aut0[EVP_MAX_MD_SIZE];
				201
				202	/* permission denied; try PIN if provided */
				203	if (sc_pin && strlen(sc_pin) > 0) {
				204	sc_mk_digest(sc_pin, aut0);
				205	if (cyberflex_verify_AUT0(sc_fd, cla, aut0, 8) < 0) {
				206	error("smartcard passphrase incorrect");
				207	return (-1);
				208	}
				209	} else {
				210	/* try default AUT0 key */
				211	if (cyberflex_verify_AUT0(sc_fd, cla, DEFAUT0, 8) < 0) {
				212	/* default AUT0 key failed; prompt for passphrase */
				213	if (get_AUT0(aut0) < 0 \|\|
				214	cyberflex_verify_AUT0(sc_fd, cla, aut0, 8) < 0) {
				215	error("smartcard passphrase incorrect");
				216	return (-1);
				217	}
				218	}
				219	}
				220	return (0);
				221	}
				222
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	223	/* private key operations */
				224
				225	static int
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	226	sc_private_decrypt(int flen, u_char from, u_char to, RSA *rsa,
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	227	int padding)
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	228	{
				229	u_char *padded = NULL;
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	230	int sw, len, olen, status = -1;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	231
				232	debug("sc_private_decrypt called");
				233
				234	olen = len = sw = 0;
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	235	if (sc_fd < 0) {
				236	status = sc_init();
				237	if (status < 0 )
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	238	goto err;
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	239	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	240	if (padding != RSA_PKCS1_PADDING)
				241	goto err;
				242
				243	len = BN_num_bytes(rsa->n);
				244	padded = xmalloc(len);
				245
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	246	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, from, len, padded, &sw);
				247
				248	if (sw == 0x6982) {
Ben Lindstrom	c2c6cbc	2002-03-26 02:44:44 +0000	[diff] [blame]	249	if (try_AUT0() < 0)
				250	goto err;
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	251	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, from, len, padded, &sw);
				252	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	253	if (!sectok_swOK(sw)) {
				254	error("sc_private_decrypt: INS_DECRYPT failed: %s",
				255	sectok_get_sw(sw));
				256	goto err;
				257	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	258	olen = RSA_padding_check_PKCS1_type_2(to, len, padded + 1, len - 1,
				259	len);
				260	err:
				261	if (padded)
				262	xfree(padded);
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	263	sc_close();
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	264	return (olen >= 0 ? olen : status);
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	265	}
				266
				267	static int
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	268	sc_private_encrypt(int flen, u_char from, u_char to, RSA *rsa,
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	269	int padding)
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	270	{
				271	u_char *padded = NULL;
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	272	int sw, len, status = -1;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	273
				274	len = sw = 0;
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	275	if (sc_fd < 0) {
				276	status = sc_init();
				277	if (status < 0 )
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	278	goto err;
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	279	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	280	if (padding != RSA_PKCS1_PADDING)
				281	goto err;
				282
				283	debug("sc_private_encrypt called");
				284	len = BN_num_bytes(rsa->n);
				285	padded = xmalloc(len);
				286
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	287	if (RSA_padding_add_PKCS1_type_1(padded, len, (u_char *)from, flen) <= 0) {
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	288	error("RSA_padding_add_PKCS1_type_1 failed");
				289	goto err;
				290	}
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	291	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, padded, len, to, &sw);
Ben Lindstrom	c2c6cbc	2002-03-26 02:44:44 +0000	[diff] [blame]	292	if (sw == 0x6982) {
				293	if (try_AUT0() < 0)
				294	goto err;
				295	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, padded, len, to, &sw);
				296	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	297	if (!sectok_swOK(sw)) {
Ben Lindstrom	c2c6cbc	2002-03-26 02:44:44 +0000	[diff] [blame]	298	error("sc_private_encrypt: INS_DECRYPT failed: %s",
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	299	sectok_get_sw(sw));
				300	goto err;
				301	}
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	302	err:
				303	if (padded)
				304	xfree(padded);
Ben Lindstrom	a2fec90	2001-09-18 05:45:44 +0000	[diff] [blame]	305	sc_close();
Ben Lindstrom	30b00be	2001-08-06 21:22:10 +0000	[diff] [blame]	306	return (len >= 0 ? len : status);
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	307	}
				308
Ben Lindstrom	a6c8a8d	2001-08-06 21:42:00 +0000	[diff] [blame]	309	/* called on free */
				310
				311	static int (orig_finish)(RSA rsa) = NULL;
				312
				313	static int
				314	sc_finish(RSA *rsa)
				315	{
				316	if (orig_finish)
				317	orig_finish(rsa);
				318	sc_close();
				319	return 1;
				320	}
				321
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	322	/* engine for overloading private key operations */
				323
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	324	static RSA_METHOD *
				325	sc_get_rsa_method(void)
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	326	{
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	327	static RSA_METHOD smart_rsa;
				328	const RSA_METHOD *def = RSA_get_default_method();
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	329
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	330	/* use the OpenSSL version */
				331	memcpy(&smart_rsa, def, sizeof(smart_rsa));
				332
				333	smart_rsa.name = "sectok";
				334
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	335	/* overload */
				336	smart_rsa.rsa_priv_enc = sc_private_encrypt;
				337	smart_rsa.rsa_priv_dec = sc_private_decrypt;
				338
Ben Lindstrom	a6c8a8d	2001-08-06 21:42:00 +0000	[diff] [blame]	339	/* save original */
				340	orig_finish = def->finish;
				341	smart_rsa.finish = sc_finish;
				342
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	343	return &smart_rsa;
				344	}
				345
				346	#ifdef USE_ENGINE
				347	static ENGINE *
				348	sc_get_engine(void)
				349	{
				350	static ENGINE *smart_engine = NULL;
				351
Damien Miller	da75516	2002-01-22 23:09:22 +1100	[diff] [blame]	352	if ((smart_engine = ENGINE_new()) == NULL)
				353	fatal("ENGINE_new failed");
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	354
				355	ENGINE_set_id(smart_engine, "sectok");
				356	ENGINE_set_name(smart_engine, "libsectok");
Ben Lindstrom	0b675b1	2002-03-22 03:28:11 +0000	[diff] [blame]	357
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	358	ENGINE_set_RSA(smart_engine, sc_get_rsa_method());
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	359	ENGINE_set_DSA(smart_engine, DSA_get_default_openssl_method());
				360	ENGINE_set_DH(smart_engine, DH_get_default_openssl_method());
				361	ENGINE_set_RAND(smart_engine, RAND_SSLeay());
				362	ENGINE_set_BN_mod_exp(smart_engine, BN_mod_exp);
				363
				364	return smart_engine;
				365	}
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	366	#endif
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	367
Damien Miller	694be4b	2001-07-14 12:13:26 +1000	[diff] [blame]	368	void
				369	sc_close(void)
				370	{
				371	if (sc_fd >= 0) {
				372	sectok_close(sc_fd);
				373	sc_fd = -1;
				374	}
				375	}
				376
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	377	Key **
				378	sc_get_keys(const char id, const char pin)
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	379	{
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	380	Key k, n, **keys;
				381	int status, nkeys = 2;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	382
Ben Lindstrom	f7db3bb	2001-08-06 21:35:51 +0000	[diff] [blame]	383	if (sc_reader_id != NULL)
				384	xfree(sc_reader_id);
				385	sc_reader_id = xstrdup(id);
				386
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	387	if (sc_pin != NULL)
				388	xfree(sc_pin);
				389	sc_pin = (pin == NULL) ? NULL : xstrdup(pin);
				390
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	391	k = key_new(KEY_RSA);
				392	if (k == NULL) {
				393	return NULL;
				394	}
Ben Lindstrom	94baf30	2001-08-06 21:25:38 +0000	[diff] [blame]	395	status = sc_read_pubkey(k);
				396	if (status == SCARD_ERROR_NOCARD) {
				397	key_free(k);
				398	return NULL;
				399	}
				400	if (status < 0 ) {
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	401	error("sc_read_pubkey failed");
				402	key_free(k);
				403	return NULL;
				404	}
Ben Lindstrom	0936a5b	2002-03-26 03:17:42 +0000	[diff] [blame^]	405	keys = xmalloc((nkeys+1) * sizeof(Key *));
				406
				407	n = key_new(KEY_RSA1);
				408	BN_copy(n->rsa->n, k->rsa->n);
				409	BN_copy(n->rsa->e, k->rsa->e);
				410	RSA_set_method(n->rsa, sc_get_rsa());
				411	n->flags \|= KEY_FLAG_EXT;
				412	keys[0] = n;
				413
				414	n = key_new(KEY_RSA);
				415	BN_copy(n->rsa->n, k->rsa->n);
				416	BN_copy(n->rsa->e, k->rsa->e);
				417	RSA_set_method(n->rsa, sc_get_rsa());
				418	n->flags \|= KEY_FLAG_EXT;
				419	keys[1] = n;
				420
				421	keys[2] = NULL;
				422
				423	key_free(k);
				424	return keys;
Ben Lindstrom	3133dbb	2001-07-04 05:35:00 +0000	[diff] [blame]	425	}
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	426
				427	#define NUM_RSA_KEY_ELEMENTS 5+1
				428	#define COPY_RSA_KEY(x, i) \
				429	do { \
				430	len = BN_num_bytes(prv->rsa->x); \
				431	elements[i] = xmalloc(len); \
				432	debug("#bytes %d", len); \
				433	if (BN_bn2bin(prv->rsa->x, elements[i]) < 0) \
				434	goto done; \
				435	} while (0)
				436
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	437	static void
				438	sc_mk_digest(const char pin, u_char digest)
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	439	{
				440	const EVP_MD *evp_md = EVP_sha1();
				441	EVP_MD_CTX md;
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	442
				443	EVP_DigestInit(&md, evp_md);
				444	EVP_DigestUpdate(&md, pin, strlen(pin));
				445	EVP_DigestFinal(&md, digest, NULL);
				446	}
				447
				448	static int
				449	get_AUT0(u_char *aut0)
				450	{
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	451	char *pass;
				452
				453	pass = read_passphrase("Enter passphrase for smartcard: ", RP_ALLOW_STDIN);
				454	if (pass == NULL)
				455	return -1;
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	456	if (!strcmp(pass, "-")) {
				457	memcpy(aut0, DEFAUT0, sizeof DEFAUT0);
				458	return 0;
				459	}
				460	sc_mk_digest(pass, aut0);
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	461	memset(pass, 0, strlen(pass));
				462	xfree(pass);
				463	return 0;
				464	}
				465
				466	int
				467	sc_put_key(Key prv, const char id)
				468	{
				469	u_char *elements[NUM_RSA_KEY_ELEMENTS];
				470	u_char key_fid[2];
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	471	u_char AUT0[EVP_MAX_MD_SIZE];
				472	int len, status = -1, i, fd = -1, ret;
				473	int sw = 0, cla = 0x00;
				474
				475	for (i = 0; i < NUM_RSA_KEY_ELEMENTS; i++)
				476	elements[i] = NULL;
				477
				478	COPY_RSA_KEY(q, 0);
				479	COPY_RSA_KEY(p, 1);
				480	COPY_RSA_KEY(iqmp, 2);
				481	COPY_RSA_KEY(dmq1, 3);
				482	COPY_RSA_KEY(dmp1, 4);
				483	COPY_RSA_KEY(n, 5);
				484	len = BN_num_bytes(prv->rsa->n);
Ben Lindstrom	818659a	2002-03-22 03:38:35 +0000	[diff] [blame]	485	fd = sectok_friendly_open(id, STONOWAIT, &sw);
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	486	if (fd < 0) {
				487	error("sectok_open failed: %s", sectok_get_sw(sw));
				488	goto done;
				489	}
				490	if (! sectok_cardpresent(fd)) {
Ben Lindstrom	818659a	2002-03-22 03:38:35 +0000	[diff] [blame]	491	error("smartcard in reader %s not present", id);
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	492	goto done;
				493	}
				494	ret = sectok_reset(fd, 0, NULL, &sw);
				495	if (ret <= 0) {
				496	error("sectok_reset failed: %s", sectok_get_sw(sw));
				497	goto done;
				498	}
				499	if ((cla = cyberflex_inq_class(fd)) < 0) {
				500	error("cyberflex_inq_class failed");
				501	goto done;
				502	}
				503	memcpy(AUT0, DEFAUT0, sizeof(DEFAUT0));
				504	if (cyberflex_verify_AUT0(fd, cla, AUT0, sizeof(DEFAUT0)) < 0) {
				505	if (get_AUT0(AUT0) < 0 \|\|
				506	cyberflex_verify_AUT0(fd, cla, AUT0, sizeof(DEFAUT0)) < 0) {
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	507	memset(AUT0, 0, sizeof(DEFAUT0));
				508	error("smartcard passphrase incorrect");
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	509	goto done;
				510	}
				511	}
Ben Lindstrom	266ec63	2002-03-22 03:47:38 +0000	[diff] [blame]	512	memset(AUT0, 0, sizeof(DEFAUT0));
Ben Lindstrom	70e3ad8	2002-03-22 03:33:43 +0000	[diff] [blame]	513	key_fid[0] = 0x00;
				514	key_fid[1] = 0x12;
				515	if (cyberflex_load_rsa_priv(fd, cla, key_fid, 5, 8*len, elements,
				516	&sw) < 0) {
				517	error("cyberflex_load_rsa_priv failed: %s", sectok_get_sw(sw));
				518	goto done;
				519	}
				520	if (!sectok_swOK(sw))
				521	goto done;
				522	log("cyberflex_load_rsa_priv done");
				523	key_fid[0] = 0x73;
				524	key_fid[1] = 0x68;
				525	if (cyberflex_load_rsa_pub(fd, cla, key_fid, len, elements[5],
				526	&sw) < 0) {
				527	error("cyberflex_load_rsa_pub failed: %s", sectok_get_sw(sw));
				528	goto done;
				529	}
				530	if (!sectok_swOK(sw))
				531	goto done;
				532	log("cyberflex_load_rsa_pub done");
				533	status = 0;
				534
				535	done:
				536	memset(elements[0], '\0', BN_num_bytes(prv->rsa->q));
				537	memset(elements[1], '\0', BN_num_bytes(prv->rsa->p));
				538	memset(elements[2], '\0', BN_num_bytes(prv->rsa->iqmp));
				539	memset(elements[3], '\0', BN_num_bytes(prv->rsa->dmq1));
				540	memset(elements[4], '\0', BN_num_bytes(prv->rsa->dmp1));
				541	memset(elements[5], '\0', BN_num_bytes(prv->rsa->n));
				542
				543	for (i = 0; i < NUM_RSA_KEY_ELEMENTS; i++)
				544	if (elements[i])
				545	xfree(elements[i]);
				546	if (fd != -1)
				547	sectok_close(fd);
				548	return (status);
				549	}
Ben Lindstrom	bcc1808	2001-08-06 21:59:25 +0000	[diff] [blame]	550	#endif /* SMARTCARD */