Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / openssh / 8ac2ffd7aa06042f6b924c87139f2fea5c5682f7 / . / key.c
blob: bbe027b668557740feeb2ccff26db573525fba20 [file] [log] [blame]
djm@openbsd.org9ce86c92015-01-28 22:36:00 +0000[diff] [blame]1/* $OpenBSD: key.c,v 1.127 2015/01/28 22:36:00 djm Exp $ */
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]2/*
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]3 * placed in the public domain
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]4 */
Damien Millerd7834352006-08-05 12:39:39 +1000[diff] [blame]5
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]6#include "includes.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +0000[diff] [blame]7
Damien Millerd7834352006-08-05 12:39:39 +1000[diff] [blame]8#include <sys/types.h>
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]9#include <errno.h>
Damien Millerded319c2006-09-01 15:38:36 +1000[diff] [blame]10#include <stdarg.h>
Damien Millera7a73ee2006-08-05 11:37:59 +1000[diff] [blame]11#include <stdio.h>
deraadt@openbsd.org087266e2015-01-20 23:14:00 +0000[diff] [blame]12#include <limits.h>
Damien Millere3476ed2006-07-24 14:13:33 +1000[diff] [blame]13
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]14#define SSH_KEY_NO_DEFINE
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]15#include "key.h"
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]16
17#include "compat.h"
18#include "sshkey.h"
19#include "ssherr.h"
Ben Lindstrom226cfa02001-01-22 05:34:40 +0000[diff] [blame]20#include "log.h"
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]21#include "authfile.h"
Ben Lindstrom836f0e92002-06-23 21:21:30 +0000[diff] [blame]22
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]23void
24key_add_private(Key *k)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]25{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]26 int r;
27
28 if ((r = sshkey_add_private(k)) != 0)
29 fatal("%s: %s", __func__, ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]30}
31
32Key *
33key_new_private(int type)
34{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]35 Key *ret = NULL;
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]36
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]37 if ((ret = sshkey_new_private(type)) == NULL)
38 fatal("%s: failed", __func__);
39 return ret;
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]40}
41
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]42int
Damien Millereba71ba2000-04-29 23:57:08 +1000[diff] [blame]43key_read(Key *ret, char **cpp)
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]44{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]45 return sshkey_read(ret, cpp) == 0 ? 1 : -1;
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]46}
Ben Lindstrom836f0e92002-06-23 21:21:30 +0000[diff] [blame]47
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]48int
Damien Millerf58b58c2003-11-17 21:18:23 +1100[diff] [blame]49key_write(const Key *key, FILE *f)
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]50{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]51 return sshkey_write(key, f) == 0 ? 1 : 0;
Damien Miller450a7a12000-03-26 13:04:51 +1000[diff] [blame]52}
Ben Lindstrom836f0e92002-06-23 21:21:30 +0000[diff] [blame]53
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]54Key *
Ben Lindstrom46c16222000-12-22 01:43:59 +0000[diff] [blame]55key_generate(int type, u_int bits)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]56{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]57 int r;
58 Key *ret = NULL;
59
60 if ((r = sshkey_generate(type, bits, &ret)) != 0)
61 fatal("%s: %s", __func__, ssh_err(r));
62 return ret;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]63}
64
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]65void
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]66key_cert_copy(const Key *from_key, Key *to_key)
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]67{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]68 int r;
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]69
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]70 if ((r = sshkey_cert_copy(from_key, to_key)) != 0)
71 fatal("%s: %s", __func__, ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]72}
73
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]74Key *
Damien Millerf58b58c2003-11-17 21:18:23 +1100[diff] [blame]75key_from_private(const Key *k)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]76{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]77 int r;
78 Key *ret = NULL;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]79
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]80 if ((r = sshkey_from_private(k, &ret)) != 0)
81 fatal("%s: %s", __func__, ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]82 return ret;
83}
84
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]85static void
86fatal_on_fatal_errors(int r, const char *func, int extra_fatal)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]87{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]88 if (r == SSH_ERR_INTERNAL_ERROR ||
89 r == SSH_ERR_ALLOC_FAIL ||
90 (extra_fatal != 0 && r == extra_fatal))
91 fatal("%s: %s", func, ssh_err(r));
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]92}
93
Damien Miller4a3a9d42013-10-30 22:19:47 +1100[diff] [blame]94Key *
95key_from_blob(const u_char *blob, u_int blen)
96{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]97 int r;
98 Key *ret = NULL;
Damien Miller4a3a9d42013-10-30 22:19:47 +1100[diff] [blame]99
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]100 if ((r = sshkey_from_blob(blob, blen, &ret)) != 0) {
101 fatal_on_fatal_errors(r, __func__, 0);
102 error("%s: %s", __func__, ssh_err(r));
103 return NULL;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]104 }
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]105 return ret;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]106}
107
108int
Damien Millerf3747bf2013-01-18 11:44:04 +1100[diff] [blame]109key_to_blob(const Key *key, u_char **blobp, u_int *lenp)
110{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]111 u_char *blob;
112 size_t blen;
113 int r;
114
115 if (blobp != NULL)
116 *blobp = NULL;
117 if (lenp != NULL)
118 *lenp = 0;
119 if ((r = sshkey_to_blob(key, &blob, &blen)) != 0) {
120 fatal_on_fatal_errors(r, __func__, 0);
121 error("%s: %s", __func__, ssh_err(r));
122 return 0;
123 }
124 if (blen > INT_MAX)
125 fatal("%s: giant len %zu", __func__, blen);
126 if (blobp != NULL)
127 *blobp = blob;
128 if (lenp != NULL)
129 *lenp = blen;
130 return blen;
Damien Millerf3747bf2013-01-18 11:44:04 +1100[diff] [blame]131}
132
133int
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]134key_sign(const Key *key, u_char **sigp, u_int *lenp,
Damien Millerf58b58c2003-11-17 21:18:23 +1100[diff] [blame]135 const u_char *data, u_int datalen)
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]136{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]137 int r;
138 u_char *sig;
139 size_t siglen;
140
141 if (sigp != NULL)
142 *sigp = NULL;
143 if (lenp != NULL)
144 *lenp = 0;
145 if ((r = sshkey_sign(key, &sig, &siglen,
146 data, datalen, datafellows)) != 0) {
147 fatal_on_fatal_errors(r, __func__, 0);
148 error("%s: %s", __func__, ssh_err(r));
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]149 return -1;
Damien Miller0bc1bd82000-11-13 22:57:25 +1100[diff] [blame]150 }
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]151 if (siglen > INT_MAX)
152 fatal("%s: giant len %zu", __func__, siglen);
153 if (sigp != NULL)
154 *sigp = sig;
155 if (lenp != NULL)
156 *lenp = siglen;
Damien Miller5be9d9e2013-12-07 11:24:01 +1100[diff] [blame]157 return 0;
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]158}
159
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]160int
161key_verify(const Key *key, const u_char *signature, u_int signaturelen,
162 const u_char *data, u_int datalen)
163{
164 int r;
165
166 if ((r = sshkey_verify(key, signature, signaturelen,
167 data, datalen, datafellows)) != 0) {
168 fatal_on_fatal_errors(r, __func__, 0);
169 error("%s: %s", __func__, ssh_err(r));
170 return r == SSH_ERR_SIGNATURE_INVALID ? 0 : -1;
171 }
172 return 1;
173}
174
175Key *
176key_demote(const Key *k)
177{
178 int r;
179 Key *ret = NULL;
180
181 if ((r = sshkey_demote(k, &ret)) != 0)
182 fatal("%s: %s", __func__, ssh_err(r));
183 return ret;
184}
185
186int
187key_to_certified(Key *k, int legacy)
188{
189 int r;
190
191 if ((r = sshkey_to_certified(k, legacy)) != 0) {
192 fatal_on_fatal_errors(r, __func__, 0);
193 error("%s: %s", __func__, ssh_err(r));
194 return -1;
195 }
196 return 0;
197}
198
199int
200key_drop_cert(Key *k)
201{
202 int r;
203
204 if ((r = sshkey_drop_cert(k)) != 0) {
205 fatal_on_fatal_errors(r, __func__, 0);
206 error("%s: %s", __func__, ssh_err(r));
207 return -1;
208 }
209 return 0;
210}
211
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]212int
213key_certify(Key *k, Key *ca)
214{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]215 int r;
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]216
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]217 if ((r = sshkey_certify(k, ca)) != 0) {
218 fatal_on_fatal_errors(r, __func__, 0);
219 error("%s: %s", __func__, ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]220 return -1;
221 }
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]222 return 0;
223}
224
225int
226key_cert_check_authority(const Key *k, int want_host, int require_principal,
227 const char *name, const char **reason)
228{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]229 int r;
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]230
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]231 if ((r = sshkey_cert_check_authority(k, want_host, require_principal,
232 name, reason)) != 0) {
233 fatal_on_fatal_errors(r, __func__, 0);
234 error("%s: %s", __func__, ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]235 return -1;
236 }
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]237 return 0;
238}
239
Darren Tuckerd1a04212014-07-19 07:23:55 +1000[diff] [blame]240#if defined(WITH_OPENSSL) && defined(OPENSSL_HAS_ECC)
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]241int
242key_ec_validate_public(const EC_GROUP *group, const EC_POINT *public)
243{
244 int r;
245
246 if ((r = sshkey_ec_validate_public(group, public)) != 0) {
247 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
248 error("%s: %s", __func__, ssh_err(r));
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]249 return -1;
250 }
Damien Miller0a80ca12010-02-27 07:55:05 +1100[diff] [blame]251 return 0;
252}
Damien Miller4e270b02010-04-16 15:56:21 +1000[diff] [blame]253
254int
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]255key_ec_validate_private(const EC_KEY *key)
256{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]257 int r;
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]258
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]259 if ((r = sshkey_ec_validate_private(key)) != 0) {
260 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
261 error("%s: %s", __func__, ssh_err(r));
262 return -1;
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]263 }
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]264 return 0;
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]265}
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]266#endif /* WITH_OPENSSL */
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]267
268void
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]269key_private_serialize(const Key *key, struct sshbuf *b)
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]270{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]271 int r;
Damien Millereb8b60e2010-08-31 22:41:14 +1000[diff] [blame]272
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]273 if ((r = sshkey_private_serialize(key, b)) != 0)
274 fatal("%s: %s", __func__, ssh_err(r));
Damien Millerf0e90602013-12-07 10:40:26 +1100[diff] [blame]275}
276
277Key *
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]278key_private_deserialize(struct sshbuf *blob)
Damien Millerf0e90602013-12-07 10:40:26 +1100[diff] [blame]279{
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]280 int r;
281 Key *ret = NULL;
Damien Millerf0e90602013-12-07 10:40:26 +1100[diff] [blame]282
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]283 if ((r = sshkey_private_deserialize(blob, &ret)) != 0) {
284 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
285 error("%s: %s", __func__, ssh_err(r));
Damien Millerf0e90602013-12-07 10:40:26 +1100[diff] [blame]286 return NULL;
287 }
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]288 return ret;
289}
Damien Millerf0e90602013-12-07 10:40:26 +1100[diff] [blame]290
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]291/* authfile.c */
292
293int
294key_save_private(Key *key, const char *filename, const char *passphrase,
295 const char *comment, int force_new_format, const char *new_format_cipher,
296 int new_format_rounds)
297{
298 int r;
299
300 if ((r = sshkey_save_private(key, filename, passphrase, comment,
301 force_new_format, new_format_cipher, new_format_rounds)) != 0) {
302 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
303 error("%s: %s", __func__, ssh_err(r));
304 return 0;
Damien Millerf0e90602013-12-07 10:40:26 +1100[diff] [blame]305 }
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]306 return 1;
307}
308
309int
310key_load_file(int fd, const char *filename, struct sshbuf *blob)
311{
312 int r;
313
djm@openbsd.org1195f4c2015-01-08 10:14:08 +0000[diff] [blame]314 if ((r = sshkey_load_file(fd, blob)) != 0) {
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]315 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
316 error("%s: %s", __func__, ssh_err(r));
317 return 0;
318 }
319 return 1;
320}
321
322Key *
323key_load_cert(const char *filename)
324{
325 int r;
326 Key *ret = NULL;
327
328 if ((r = sshkey_load_cert(filename, &ret)) != 0) {
329 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
Damien Millerd0bb9502014-07-09 13:07:28 +1000[diff] [blame]330 /* Old authfile.c ignored all file errors. */
331 if (r == SSH_ERR_SYSTEM_ERROR)
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]332 debug("%s: %s", __func__, ssh_err(r));
333 else
334 error("%s: %s", __func__, ssh_err(r));
335 return NULL;
336 }
337 return ret;
338
339}
340
341Key *
342key_load_public(const char *filename, char **commentp)
343{
344 int r;
345 Key *ret = NULL;
346
347 if ((r = sshkey_load_public(filename, &ret, commentp)) != 0) {
348 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
Damien Millerd0bb9502014-07-09 13:07:28 +1000[diff] [blame]349 /* Old authfile.c ignored all file errors. */
350 if (r == SSH_ERR_SYSTEM_ERROR)
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]351 debug("%s: %s", __func__, ssh_err(r));
352 else
353 error("%s: %s", __func__, ssh_err(r));
354 return NULL;
355 }
356 return ret;
357}
358
359Key *
360key_load_private(const char *path, const char *passphrase,
361 char **commentp)
362{
363 int r;
364 Key *ret = NULL;
365
366 if ((r = sshkey_load_private(path, passphrase, &ret, commentp)) != 0) {
367 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
Damien Millerd0bb9502014-07-09 13:07:28 +1000[diff] [blame]368 /* Old authfile.c ignored all file errors. */
Damien Millerdad9a4a2014-07-18 15:03:49 +1000[diff] [blame]369 if (r == SSH_ERR_SYSTEM_ERROR ||
370 r == SSH_ERR_KEY_WRONG_PASSPHRASE)
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]371 debug("%s: %s", __func__, ssh_err(r));
372 else
373 error("%s: %s", __func__, ssh_err(r));
374 return NULL;
375 }
376 return ret;
377}
378
379Key *
380key_load_private_cert(int type, const char *filename, const char *passphrase,
381 int *perm_ok)
382{
383 int r;
384 Key *ret = NULL;
385
386 if ((r = sshkey_load_private_cert(type, filename, passphrase,
387 &ret, perm_ok)) != 0) {
388 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
Damien Millerd0bb9502014-07-09 13:07:28 +1000[diff] [blame]389 /* Old authfile.c ignored all file errors. */
Damien Millerdad9a4a2014-07-18 15:03:49 +1000[diff] [blame]390 if (r == SSH_ERR_SYSTEM_ERROR ||
391 r == SSH_ERR_KEY_WRONG_PASSPHRASE)
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]392 debug("%s: %s", __func__, ssh_err(r));
393 else
394 error("%s: %s", __func__, ssh_err(r));
395 return NULL;
396 }
397 return ret;
398}
399
400Key *
401key_load_private_type(int type, const char *filename, const char *passphrase,
402 char **commentp, int *perm_ok)
403{
404 int r;
405 Key *ret = NULL;
406
407 if ((r = sshkey_load_private_type(type, filename, passphrase,
408 &ret, commentp, perm_ok)) != 0) {
409 fatal_on_fatal_errors(r, __func__, SSH_ERR_LIBCRYPTO_ERROR);
Damien Millerd0bb9502014-07-09 13:07:28 +1000[diff] [blame]410 /* Old authfile.c ignored all file errors. */
411 if (r == SSH_ERR_SYSTEM_ERROR ||
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]412 (r == SSH_ERR_KEY_WRONG_PASSPHRASE))
413 debug("%s: %s", __func__, ssh_err(r));
414 else
415 error("%s: %s", __func__, ssh_err(r));
416 return NULL;
417 }
418 return ret;
419}
420
Damien Miller86687062014-07-02 15:28:02 +1000[diff] [blame]421int
422key_perm_ok(int fd, const char *filename)
423{
424 return sshkey_perm_ok(fd, filename) == 0 ? 1 : 0;
425}
426