Blame - OpenSSL/crypto/pkey.c - platform/external/python/pyopenssl

blob: 69312db5941e38f6f81733c5252cec45a107ab9c [file] [log] [blame]

Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	1	/*
				2	* pkey.c
				3	*
Jean-Paul Calderone	8671c85	2011-03-02 19:26:20 -0500	[diff] [blame]	4	* Copyright (C) AB Strakt
				5	* Copyright (C) Jean-Paul Calderone
				6	* See LICENSE for details.
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	7	*
				8	* Public/rivate key handling code, mostly thin wrappers around OpenSSL.
				9	* See the file RATIONALE for a short explanation of why this module was written.
				10	*
				11	*/
				12	#include <Python.h>
				13	#define crypto_MODULE
				14	#include "crypto.h"
				15
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	16	/*
				17	* This is done every time something fails, so turning it into a macro is
				18	* really nice.
				19	*
				20	* Arguments: None
				21	* Returns: Doesn't return
				22	*/
				23	#define FAIL() \
				24	do { \
Rick Dean	d369c93	2009-07-08 11:48:33 -0500	[diff] [blame]	25	exception_from_error_queue(crypto_Error); \
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	26	return NULL; \
				27	} while (0)
				28
				29
				30	static char crypto_PKey_generate_key_doc[] = "\n\
				31	Generate a key of a given type, with a given number of a bits\n\
				32	\n\
Jonathan Ballet	78b92a2	2011-07-16 08:07:26 +0900	[diff] [blame]	33	:param type: The key type (TYPE_RSA or TYPE_DSA)\n\
				34	:param bits: The number of bits\n\
				35	:return: None\n\
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	36	";
				37
				38	static PyObject *
				39	crypto_PKey_generate_key(crypto_PKeyObj self, PyObject args)
				40	{
				41	int type, bits;
				42	RSA *rsa;
				43	DSA *dsa;
				44
				45	if (!PyArg_ParseTuple(args, "ii:generate_key", &type, &bits))
				46	return NULL;
				47
				48	switch (type)
				49	{
				50	case crypto_TYPE_RSA:
Jean-Paul Calderone	ab82db7	2008-03-06 00:09:31 -0500	[diff] [blame]	51	if (bits <= 0) {
				52	PyErr_SetString(PyExc_ValueError, "Invalid number of bits");
				53	return NULL;
				54	}
INADA Naoki	43e6654	2011-08-21 20:32:42 +0900	[diff] [blame]	55	Py_BEGIN_ALLOW_THREADS;
				56	rsa = RSA_generate_key(bits, 0x10001, NULL, NULL);
				57	Py_END_ALLOW_THREADS;
Jean-Paul Calderone	cf141b1	2012-04-03 14:50:30 -0400	[diff] [blame]	58	if (rsa == NULL) {
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	59	FAIL();
Jean-Paul Calderone	cf141b1	2012-04-03 14:50:30 -0400	[diff] [blame]	60	}
				61	if (!EVP_PKEY_assign_RSA(self->pkey, rsa)) {
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	62	FAIL();
Jean-Paul Calderone	cf141b1	2012-04-03 14:50:30 -0400	[diff] [blame]	63	}
Jean-Paul Calderone	ac0d95f	2008-03-10 00:00:42 -0400	[diff] [blame]	64	break;
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	65
				66	case crypto_TYPE_DSA:
INADA Naoki	43e6654	2011-08-21 20:32:42 +0900	[diff] [blame]	67	Py_BEGIN_ALLOW_THREADS;
				68	dsa = DSA_generate_parameters(bits, NULL, 0, NULL, NULL, NULL, NULL);
Jean-Paul Calderone	cf141b1	2012-04-03 14:50:30 -0400	[diff] [blame]	69	Py_END_ALLOW_THREADS;
INADA Naoki	e4582b0	2011-08-26 01:17:51 +0900	[diff] [blame]	70	if (dsa == NULL) {
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	71	FAIL();
INADA Naoki	e4582b0	2011-08-26 01:17:51 +0900	[diff] [blame]	72	}
				73	if (!DSA_generate_key(dsa)) {
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	74	FAIL();
INADA Naoki	e4582b0	2011-08-26 01:17:51 +0900	[diff] [blame]	75	}
Jean-Paul Calderone	cf141b1	2012-04-03 14:50:30 -0400	[diff] [blame]	76	if (!EVP_PKEY_assign_DSA(self->pkey, dsa)) {
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	77	FAIL();
Jean-Paul Calderone	cf141b1	2012-04-03 14:50:30 -0400	[diff] [blame]	78	}
Jean-Paul Calderone	ac0d95f	2008-03-10 00:00:42 -0400	[diff] [blame]	79	break;
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	80
Jean-Paul Calderone	ac0d95f	2008-03-10 00:00:42 -0400	[diff] [blame]	81	default:
				82	PyErr_SetString(crypto_Error, "No such key type");
				83	return NULL;
				84
				85	}
				86	self->initialized = 1;
				87	Py_INCREF(Py_None);
				88	return Py_None;
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	89	}
				90
				91	static char crypto_PKey_bits_doc[] = "\n\
				92	Returns the number of bits of the key\n\
				93	\n\
Jonathan Ballet	78b92a2	2011-07-16 08:07:26 +0900	[diff] [blame]	94	:return: The number of bits of the key.\n\
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	95	";
				96
				97	static PyObject *
				98	crypto_PKey_bits(crypto_PKeyObj self, PyObject args)
				99	{
				100	if (!PyArg_ParseTuple(args, ":bits"))
				101	return NULL;
				102
Jean-Paul Calderone	2f6c66f	2010-08-11 19:53:43 -0400	[diff] [blame]	103	return PyLong_FromLong(EVP_PKEY_bits(self->pkey));
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	104	}
				105
				106	static char crypto_PKey_type_doc[] = "\n\
				107	Returns the type of the key\n\
				108	\n\
Jonathan Ballet	78b92a2	2011-07-16 08:07:26 +0900	[diff] [blame]	109	:return: The type of the key.\n\
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	110	";
				111
				112	static PyObject *
				113	crypto_PKey_type(crypto_PKeyObj self, PyObject args)
				114	{
				115	if (!PyArg_ParseTuple(args, ":type"))
				116	return NULL;
				117
Jean-Paul Calderone	2f6c66f	2010-08-11 19:53:43 -0400	[diff] [blame]	118	return PyLong_FromLong(self->pkey->type);
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	119	}
				120
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	121	static char crypto_PKey_check_doc[] = "\n\
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	122	";
				123
				124	static PyObject *
Jean-Paul Calderone	fd0b8d6	2011-06-12 18:05:50 -0400	[diff] [blame]	125	crypto_PKey_check(crypto_PKeyObj self, PyObject args) {
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	126	int r;
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	127
Jean-Paul Calderone	fd0b8d6	2011-06-12 18:05:50 -0400	[diff] [blame]	128	if (!PyArg_ParseTuple(args, ":check")) {
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	129	return NULL;
Jean-Paul Calderone	fd0b8d6	2011-06-12 18:05:50 -0400	[diff] [blame]	130	}
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	131
Anthony Uk	e334f71	2011-10-31 14:40:16 +0100	[diff] [blame]	132	if (self->only_public) {
				133	PyErr_SetString(PyExc_TypeError, "public key only");
				134	return NULL;
Jean-Paul Calderone	02d0197	2011-10-31 10:39:29 -0400	[diff] [blame]	135	}
Anthony Uk	e334f71	2011-10-31 14:40:16 +0100	[diff] [blame]	136
Jean-Paul Calderone	7d74854	2011-06-12 18:10:01 -0400	[diff] [blame]	137	if (self->pkey->type == EVP_PKEY_RSA) {
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	138	RSA *rsa;
Jean-Paul Calderone	de207e7	2009-05-13 14:19:05 -0400	[diff] [blame]	139	rsa = EVP_PKEY_get1_RSA(self->pkey);
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	140	r = RSA_check_key(rsa);
Jean-Paul Calderone	d338e4e	2009-05-13 15:45:07 -0400	[diff] [blame]	141	if (r == 1) {
Jean-Paul Calderone	49f93ab	2009-05-13 14:20:00 -0400	[diff] [blame]	142	return PyBool_FromLong(1L);
Jean-Paul Calderone	d338e4e	2009-05-13 15:45:07 -0400	[diff] [blame]	143	} else {
				144	FAIL();
				145	}
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	146	} else {
Jean-Paul Calderone	fd0b8d6	2011-06-12 18:05:50 -0400	[diff] [blame]	147	PyErr_SetString(PyExc_TypeError, "key type unsupported");
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	148	return NULL;
				149	}
				150	}
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	151
				152	/*
				153	* ADD_METHOD(name) expands to a correct PyMethodDef declaration
				154	* { 'name', (PyCFunction)crypto_PKey_name, METH_VARARGS }
				155	* for convenience
				156	*/
				157	#define ADD_METHOD(name) \
				158	{ #name, (PyCFunction)crypto_PKey_##name, METH_VARARGS, crypto_PKey_##name##_doc }
				159	static PyMethodDef crypto_PKey_methods[] =
				160	{
				161	ADD_METHOD(generate_key),
				162	ADD_METHOD(bits),
				163	ADD_METHOD(type),
Jean-Paul Calderone	8e6ce97	2009-05-13 12:32:49 -0400	[diff] [blame]	164	ADD_METHOD(check),
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	165	{ NULL, NULL }
				166	};
				167	#undef ADD_METHOD
				168
				169
				170	/*
				171	* Constructor for PKey objects, never called by Python code directly
				172	*
				173	* Arguments: pkey - A "real" EVP_PKEY object
				174	* dealloc - Boolean value to specify whether the destructor should
				175	* free the "real" EVP_PKEY object
				176	* Returns: The newly created PKey object
				177	*/
				178	crypto_PKeyObj *
				179	crypto_PKey_New(EVP_PKEY *pkey, int dealloc)
				180	{
				181	crypto_PKeyObj *self;
				182
				183	self = PyObject_New(crypto_PKeyObj, &crypto_PKey_Type);
				184
				185	if (self == NULL)
				186	return NULL;
				187
				188	self->pkey = pkey;
				189	self->dealloc = dealloc;
Jean-Paul Calderone	ac0d95f	2008-03-10 00:00:42 -0400	[diff] [blame]	190	self->only_public = 0;
				191
				192	/*
				193	* Heuristic. Most call-sites pass an initialized EVP_PKEY. Not
				194	* necessarily the case that they will, though. That's part of why this is
				195	* a hack. -exarkun
				196	*/
				197	self->initialized = 1;
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	198
				199	return self;
				200	}
				201
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	202	static char crypto_PKey_doc[] = "\n\
				203	PKey() -> PKey instance\n\
				204	\n\
				205	Create a new PKey object.\n\
				206	\n\
Jonathan Ballet	78b92a2	2011-07-16 08:07:26 +0900	[diff] [blame]	207	:return: The PKey object\n\
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	208	";
				209	static PyObject*
				210	crypto_PKey_new(PyTypeObject subtype, PyObject args, PyObject *kwargs) {
				211	crypto_PKeyObj *self;
				212
				213	if (!PyArg_ParseTuple(args, ":PKey")) {
				214	return NULL;
				215	}
				216
				217	self = crypto_PKey_New(EVP_PKEY_new(), 1);
				218	if (self) {
				219	self->initialized = 0;
				220	}
				221
				222	return (PyObject *)self;
				223	}
				224
				225
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	226	/*
				227	* Deallocate the memory used by the PKey object
				228	*
				229	* Arguments: self - The PKey object
				230	* Returns: None
				231	*/
				232	static void
				233	crypto_PKey_dealloc(crypto_PKeyObj *self)
				234	{
				235	/* Sometimes we don't have to dealloc the "real" EVP_PKEY pointer ourselves */
				236	if (self->dealloc)
				237	EVP_PKEY_free(self->pkey);
				238
				239	PyObject_Del(self);
				240	}
				241
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	242	PyTypeObject crypto_PKey_Type = {
Jean-Paul Calderone	3fe7f67	2010-08-11 23:55:10 -0400	[diff] [blame]	243	PyOpenSSL_HEAD_INIT(&PyType_Type, 0)
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	244	"OpenSSL.crypto.PKey",
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	245	sizeof(crypto_PKeyObj),
				246	0,
				247	(destructor)crypto_PKey_dealloc,
				248	NULL, /* print */
Jean-Paul Calderone	2f6c66f	2010-08-11 19:53:43 -0400	[diff] [blame]	249	NULL, /* getattr */
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	250	NULL, /* setattr */
				251	NULL, /* compare */
				252	NULL, /* repr */
				253	NULL, /* as_number */
				254	NULL, /* as_sequence */
				255	NULL, /* as_mapping */
				256	NULL, /* hash */
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	257	NULL, /* call */
				258	NULL, /* str */
				259	NULL, /* getattro */
				260	NULL, /* setattro */
				261	NULL, /* as_buffer */
Jean-Paul Calderone	09654fe	2009-06-27 10:54:48 -0400	[diff] [blame]	262	Py_TPFLAGS_DEFAULT,
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	263	crypto_PKey_doc, /* doc */
				264	NULL, /* traverse */
				265	NULL, /* clear */
				266	NULL, /* tp_richcompare */
				267	0, /* tp_weaklistoffset */
				268	NULL, /* tp_iter */
				269	NULL, /* tp_iternext */
				270	crypto_PKey_methods, /* tp_methods */
				271	NULL, /* tp_members */
				272	NULL, /* tp_getset */
				273	NULL, /* tp_base */
				274	NULL, /* tp_dict */
				275	NULL, /* tp_descr_get */
				276	NULL, /* tp_descr_set */
				277	0, /* tp_dictoffset */
				278	NULL, /* tp_init */
				279	NULL, /* tp_alloc */
				280	crypto_PKey_new, /* tp_new */
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	281	};
				282
				283
				284	/*
				285	* Initialize the PKey part of the crypto sub module
				286	*
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	287	* Arguments: module - The crypto module
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	288	* Returns: None
				289	*/
				290	int
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	291	init_crypto_pkey(PyObject *module)
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	292	{
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	293	if (PyType_Ready(&crypto_PKey_Type) < 0) {
				294	return 0;
				295	}
				296
Jean-Paul Calderone	86ad711	2010-05-11 16:08:45 -0400	[diff] [blame]	297	/* PyModule_AddObject steals a reference.
				298	*/
				299	Py_INCREF((PyObject *)&crypto_PKey_Type);
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	300	if (PyModule_AddObject(module, "PKey", (PyObject *)&crypto_PKey_Type) != 0) {
				301	return 0;
				302	}
				303
Jean-Paul Calderone	aed2358	2011-03-12 22:45:02 -0500	[diff] [blame]	304	/* PyModule_AddObject steals a reference.
				305	*/
				306	Py_INCREF((PyObject *)&crypto_PKey_Type);
Jean-Paul Calderone	2e1da57	2009-06-27 10:44:00 -0400	[diff] [blame]	307	if (PyModule_AddObject(module, "PKeyType", (PyObject *)&crypto_PKey_Type) != 0) {
				308	return 0;
				309	}
				310
Jean-Paul Calderone	897bc25	2008-02-18 20:50:23 -0500	[diff] [blame]	311	return 1;
				312	}
				313