gecko-dev/security/nss/lib/crmf/challcli.c

286 строки
8.6 KiB
C

/* -*- Mode: C; tab-width: 8 -*-*/
/*
* The contents of this file are subject to the Mozilla Public
* License Version 1.1 (the "License"); you may not use this file
* except in compliance with the License. You may obtain a copy of
* the License at http://www.mozilla.org/MPL/
*
* Software distributed under the License is distributed on an "AS
* IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
* implied. See the License for the specific language governing
* rights and limitations under the License.
*
* The Original Code is the Netscape security libraries.
*
* The Initial Developer of the Original Code is Netscape
* Communications Corporation. Portions created by Netscape are
* Copyright (C) 1994-2000 Netscape Communications Corporation. All
* Rights Reserved.
*
* Contributor(s):
*
* Alternatively, the contents of this file may be used under the
* terms of the GNU General Public License Version 2 or later (the
* "GPL"), in which case the provisions of the GPL are applicable
* instead of those above. If you wish to allow use of your
* version of this file only under the terms of the GPL and not to
* allow others to use your version of this file under the MPL,
* indicate your decision by deleting the provisions above and
* replace them with the notice and other provisions required by
* the GPL. If you do not delete the provisions above, a recipient
* may use your version of this file under either the MPL or the
* GPL.
*/
#include "cmmf.h"
#include "cmmfi.h"
#include "secitem.h"
#include "pk11func.h"
#include "secder.h"
CMMFPOPODecKeyChallContent*
CMMF_CreatePOPODecKeyChallContentFromDER(const char *buf, long len)
{
PRArenaPool *poolp;
CMMFPOPODecKeyChallContent *challContent;
SECStatus rv;
poolp = PORT_NewArena(CRMF_DEFAULT_ARENA_SIZE);
if (poolp == NULL) {
return NULL;
}
challContent = PORT_ArenaZNew(poolp, CMMFPOPODecKeyChallContent);
if (challContent == NULL) {
goto loser;
}
challContent->poolp = poolp;
rv = SEC_ASN1Decode(poolp, challContent,
CMMFPOPODecKeyChallContentTemplate, buf, len);
if (rv != SECSuccess) {
goto loser;
}
if (challContent->challenges) {
while (challContent->challenges[challContent->numChallenges] != NULL) {
challContent->numChallenges++;
}
challContent->numAllocated = challContent->numChallenges;
}
return challContent;
loser:
if (poolp != NULL) {
PORT_FreeArena(poolp, PR_FALSE);
}
return NULL;
}
int
CMMF_POPODecKeyChallContentGetNumChallenges
(CMMFPOPODecKeyChallContent *inKeyChallCont)
{
PORT_Assert(inKeyChallCont != NULL);
if (inKeyChallCont == NULL) {
return 0;
}
return inKeyChallCont->numChallenges;
}
SECItem*
CMMF_POPODecKeyChallContentGetPublicValue
(CMMFPOPODecKeyChallContent *inKeyChallCont,
int inIndex)
{
PORT_Assert(inKeyChallCont != NULL);
if (inKeyChallCont == NULL || (inIndex > inKeyChallCont->numChallenges-1)||
inIndex < 0) {
return NULL;
}
return SECITEM_DupItem(&inKeyChallCont->challenges[inIndex]->key);
}
static SECAlgorithmID*
cmmf_get_owf(CMMFPOPODecKeyChallContent *inChalCont,
int inIndex)
{
int i;
for (i=inIndex; i >= 0; i--) {
if (inChalCont->challenges[i]->owf != NULL) {
return inChalCont->challenges[i]->owf;
}
}
return NULL;
}
SECStatus
CMMF_POPODecKeyChallContDecryptChallenge(CMMFPOPODecKeyChallContent *inChalCont,
int inIndex,
SECKEYPrivateKey *inPrivKey)
{
CMMFChallenge *challenge;
SECItem *decryptedRand=NULL;
SECStatus rv = SECFailure;
PK11SlotInfo *slot;
PK11SymKey *symKey = NULL;
CMMFRand randStr;
SECAlgorithmID *owf;
unsigned char hash[SHA1_LENGTH]; /*SHA1 is the longest, so we'll use
*it's length.
*/
SECItem hashItem;
SECOidTag tag;
PORT_Assert(inChalCont != NULL && inPrivKey != NULL);
if (inChalCont == NULL || inIndex <0 || inIndex > inChalCont->numChallenges
|| inPrivKey == NULL){
return SECFailure;
}
challenge = inChalCont->challenges[inIndex];
decryptedRand = PORT_ZNew(SECItem);
if (decryptedRand == NULL) {
goto loser;
}
decryptedRand->data =
PORT_NewArray(unsigned char, challenge->challenge.len);
if (decryptedRand->data == NULL) {
goto loser;
}
slot = inPrivKey->pkcs11Slot;
symKey = PK11_PubUnwrapSymKey(inPrivKey, &challenge->challenge,
CKM_RSA_PKCS, CKA_VALUE, 0);
if (symKey == NULL) {
rv = SECFailure;
goto loser;
}
rv = PK11_ExtractKeyValue(symKey);
if (rv != SECSuccess) {
goto loser;
}
decryptedRand = PK11_GetKeyData(symKey);
rv = SEC_ASN1DecodeItem(NULL, &randStr, CMMFRandTemplate,
decryptedRand);
/* The decryptedRand returned points to a member within the symKey structure,
* so we don't want to free it. Let the symKey destruction function deal with
* freeing that memory.
*/
if (rv != SECSuccess) {
goto loser;
}
rv = SECFailure; /* Just so that when we do go to loser,
* I won't have to set it again.
*/
owf = cmmf_get_owf(inChalCont, inIndex);
if (owf == NULL) {
/* No hashing algorithm came with the challenges. Can't verify */
goto loser;
}
/* Verify the hashes in the challenge */
tag = SECOID_FindOIDTag(&owf->algorithm);
switch (tag) {
case SEC_OID_MD2:
hashItem.len = MD2_LENGTH;
break;
case SEC_OID_MD5:
hashItem.len = MD5_LENGTH;
break;
case SEC_OID_SHA1:
hashItem.len = SHA1_LENGTH;
break;
default:
goto loser;
}
rv = PK11_HashBuf(tag, hash, randStr.integer.data, randStr.integer.len);
if (rv != SECSuccess) {
goto loser;
}
hashItem.data = hash;
if (SECITEM_CompareItem(&hashItem, &challenge->witness) != SECEqual) {
/* The hash for the data we decrypted doesn't match the hash provided
* in the challenge. Bail out.
*/
rv = SECFailure;
goto loser;
}
rv = PK11_HashBuf(tag, hash, challenge->senderDER.data,
challenge->senderDER.len);
if (rv != SECSuccess) {
goto loser;
}
if (SECITEM_CompareItem(&hashItem, &randStr.senderHash) != SECEqual) {
/* The hash for the data we decrypted doesn't match the hash provided
* in the challenge. Bail out.
*/
rv = SECFailure;
goto loser;
}
/* All of the hashes have verified, so we can now store the integer away.*/
rv = SECITEM_CopyItem(inChalCont->poolp, &challenge->randomNumber,
&randStr.integer);
loser:
if (symKey != NULL) {
PK11_FreeSymKey(symKey);
}
return rv;
}
SECStatus
CMMF_POPODecKeyChallContentGetRandomNumber
(CMMFPOPODecKeyChallContent *inKeyChallCont,
int inIndex,
long *inDest)
{
CMMFChallenge *challenge;
PORT_Assert(inKeyChallCont != NULL);
if (inKeyChallCont == NULL || inIndex > 0 || inIndex >=
inKeyChallCont->numChallenges) {
return SECFailure;
}
challenge = inKeyChallCont->challenges[inIndex];
if (challenge->randomNumber.data == NULL) {
/* There is no random number here, nothing to see. */
return SECFailure;
}
*inDest = DER_GetInteger(&challenge->randomNumber);
return (*inDest == -1) ? SECFailure : SECSuccess;
}
SECStatus
CMMF_EncodePOPODecKeyRespContent(long *inDecodedRand,
int inNumRand,
CRMFEncoderOutputCallback inCallback,
void *inArg)
{
PRArenaPool *poolp;
CMMFPOPODecKeyRespContent *response;
SECItem *currItem;
SECStatus rv=SECFailure;
int i;
poolp = PORT_NewArena(CRMF_DEFAULT_ARENA_SIZE);
if (poolp == NULL) {
return SECFailure;
}
response = PORT_ArenaZNew(poolp, CMMFPOPODecKeyRespContent);
if (response == NULL) {
goto loser;
}
response->responses = PORT_ArenaZNewArray(poolp, SECItem*, inNumRand+1);
if (response->responses == NULL) {
goto loser;
}
for (i=0; i<inNumRand; i++) {
currItem = response->responses[i] = PORT_ArenaZNew(poolp,SECItem);
if (currItem == NULL) {
goto loser;
}
SEC_ASN1EncodeInteger(poolp, currItem,inDecodedRand[i]);
}
rv = cmmf_user_encode(response, inCallback, inArg,
CMMFPOPODecKeyRespContentTemplate);
loser:
if (poolp != NULL) {
PORT_FreeArena(poolp, PR_FALSE);
}
return rv;
}