Merge branch 'refs/heads/t/lopsub'

[paraslash.git] / crypt_common.c

/*
 * Copyright (C) 2005 Andre Noll <maan@tuebingen.mpg.de>
 *
 * Licensed under the GPL v2. For licencing details see COPYING.
 */

/** \file crypt_common.c Crypto functions independent of openssl/libgcrypt. */

#include <regex.h>

#include "para.h"
#include "error.h"
#include "string.h"
#include "crypt.h"
#include "crypt_backend.h"

/** If the key begins with this text, we treat it as an ssh key. */
#define KEY_TYPE_TXT "ssh-rsa"

/**
 * Check if given buffer starts with a ssh rsa key signature.
 *
 * \param data The buffer.
 * \param size Number of data bytes.
 *
 * \return Number of header bytes to be skipped on success, zero if
 * ssh rsa signature was not found.
 */
size_t is_ssh_rsa_key(char *data, size_t size)
{
        char *cp;

        if (size < strlen(KEY_TYPE_TXT) + 2)
                return 0;
        cp = memchr(data, ' ', size);
        if (cp == NULL)
                return 0;
        if (strncmp(KEY_TYPE_TXT, data, strlen(KEY_TYPE_TXT)))
                return 0;
        cp++;
        if (cp >= data + size)
                return 0;
        if (*cp == '\0')
                return 0;
        return cp - data;
}

/**
 * Read a 4-byte number from a buffer in big-endian format.
 *
 * \param vp The buffer.
 *
 * The byte-order of the buffer is expected to be big-endian, unlike read_u32()
 * of portable_io.h which expects little endian.
 *
 * \return The 32 bit number given by \a vp.
 */
uint32_t read_ssh_u32(const void *vp)
{
        const unsigned char *p = (const unsigned char *)vp;
        uint32_t v;

        v  = (uint32_t)p[0] << 24;
        v |= (uint32_t)p[1] << 16;
        v |= (uint32_t)p[2] << 8;
        v |= (uint32_t)p[3];

        return v;
}

/**
 * Sanity checks for the header of an ssh key.
 *
 * \param blob The buffer.
 * \param blen The number of bytes of \a blob.
 *
 * This performs some checks to make sure we really have an ssh key. It also
 * computes the offset in bytes of the start of the key values (modulus,
 * exponent..).
 *
 * \return The number of bytes to skip until the start of the first encoded
 * number (usually 11).
 */
int check_ssh_key_header(const unsigned char *blob, int blen)
{
        const unsigned char *p = blob, *end = blob + blen;
        uint32_t rlen;

        if (p + 4 > end)
                return -E_SSH_KEY_HEADER;
        rlen = read_ssh_u32(p);
        p += 4;
        if (p + rlen < p)
                return -E_SSH_KEY_HEADER;
        if (p + rlen > end)
                return -E_SSH_KEY_HEADER;
        if (rlen < strlen(KEY_TYPE_TXT))
                return -E_SSH_KEY_HEADER;
        PARA_DEBUG_LOG("type: %s, rlen: %u\n", p, rlen);
        if (strncmp((char *)p, KEY_TYPE_TXT, strlen(KEY_TYPE_TXT)))
                return -E_SSH_KEY_HEADER;
        return 4 + rlen;
}

/**
 * Check existence and permissions of a private key file.
 *
 * \param file The path of the key file.
 *
 * This checks whether the file exists and its permissions are restrictive
 * enough. It is considered an error if we own the file and it is readable for
 * others.
 *
 * \return Standard.
 */
int check_private_key_file(const char *file)
{
        struct stat st;

        if (stat(file, &st) != 0)
                return -ERRNO_TO_PARA_ERROR(errno);
        if ((st.st_uid == getuid()) && (st.st_mode & 077) != 0)
                return -E_KEY_PERM;
        return 1;
}

void hash_to_asc(unsigned char *hash, char *asc)
{
        int i;
        const char hexchar[] = "0123456789abcdef";

        for (i = 0; i < HASH_SIZE; i++) {
                asc[2 * i] = hexchar[hash[i] >> 4];
                asc[2 * i + 1] = hexchar[hash[i] & 0xf];
        }
        asc[2 * HASH_SIZE] = '\0';
}

int hash_compare(unsigned char *h1, unsigned char *h2)
{
        int i;

        for (i = 0; i < HASH_SIZE; i++) {
                if (h1[i] < h2[i])
                        return -1;
                if (h1[i] > h2[i])
                        return 1;
        }
        return 0;
}