search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Patrick Welche <prlw1@cam.ac.uk>
[netbsd-mini2440.git] / external / bsd / bind / dist / lib / dns / opensslrsa_link.c
blob04a825b97c84232edebdcbd2db362f7e06671eee
1 /* $NetBSD$ */
2
3 /*
4 * Copyright (C) 2004-2009 Internet Systems Consortium, Inc. ("ISC")
5 * Copyright (C) 2000-2003 Internet Software Consortium.
6 *
7 * Permission to use, copy, modify, and/or distribute this software for any
8 * purpose with or without fee is hereby granted, provided that the above
9 * copyright notice and this permission notice appear in all copies.
10 *
11 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
12 * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
13 * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
14 * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
15 * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
16 * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
17 * PERFORMANCE OF THIS SOFTWARE.
18 */
19
20 /*
21 * Principal Author: Brian Wellington
22 * Id: opensslrsa_link.c,v 1.37 2009/10/30 05:08:23 marka Exp
23 */
24 #ifdef OPENSSL
25 #include <config.h>
26
27 #ifndef USE_EVP
28 #if !defined(HAVE_EVP_SHA256) || !defined(HAVE_EVP_SHA512)
29 #define USE_EVP 0
30 #else
31 #define USE_EVP 1
32 #endif
33 #endif
34
35
36 #include <isc/entropy.h>
37 #include <isc/md5.h>
38 #include <isc/sha1.h>
39 #include <isc/sha2.h>
40 #include <isc/mem.h>
41 #include <isc/string.h>
42 #include <isc/util.h>
43
44 #include <dst/result.h>
45
46 #include "dst_internal.h"
47 #include "dst_openssl.h"
48 #include "dst_parse.h"
49
50 #include <openssl/err.h>
51 #include <openssl/objects.h>
52 #include <openssl/rsa.h>
53 #if OPENSSL_VERSION_NUMBER > 0x00908000L
54 #include <openssl/bn.h>
55 #endif
56 #include <openssl/engine.h>
57
58 /*
59 * We don't use configure for windows so enforce the OpenSSL version
60 * here. Unlike with configure we don't support overriding this test.
61 */
62 #ifdef WIN32
63 #if !((OPENSSL_VERSION_NUMBER >= 0x009070cfL && \
64 OPENSSL_VERSION_NUMBER < 0x00908000L) || \
65 OPENSSL_VERSION_NUMBER >= 0x0090804fL)
66 #error Please upgrade OpenSSL to 0.9.8d/0.9.7l or greater.
67 #endif
68 #endif
69
70
71 /*
72 * XXXMPA Temporarily disable RSA_BLINDING as it requires
73 * good quality random data that cannot currently be guaranteed.
74 * XXXMPA Find which versions of openssl use pseudo random data
75 * and set RSA_FLAG_BLINDING for those.
76 */
77
78 #if 0
79 #if OPENSSL_VERSION_NUMBER < 0x0090601fL
80 #define SET_FLAGS(rsa) \
81 do { \
82 (rsa)->flags &= ~(RSA_FLAG_CACHE_PUBLIC | RSA_FLAG_CACHE_PRIVATE); \
83 (rsa)->flags |= RSA_FLAG_BLINDING; \
84 } while (0)
85 #else
86 #define SET_FLAGS(rsa) \
87 do { \
88 (rsa)->flags |= RSA_FLAG_BLINDING; \
89 } while (0)
90 #endif
91 #endif
92
93 #if OPENSSL_VERSION_NUMBER < 0x0090601fL
94 #define SET_FLAGS(rsa) \
95 do { \
96 (rsa)->flags &= ~(RSA_FLAG_CACHE_PUBLIC | RSA_FLAG_CACHE_PRIVATE); \
97 (rsa)->flags &= ~RSA_FLAG_BLINDING; \
98 } while (0)
99 #elif defined(RSA_FLAG_NO_BLINDING)
100 #define SET_FLAGS(rsa) \
101 do { \
102 (rsa)->flags &= ~RSA_FLAG_BLINDING; \
103 (rsa)->flags |= RSA_FLAG_NO_BLINDING; \
104 } while (0)
105 #else
106 #define SET_FLAGS(rsa) \
107 do { \
108 (rsa)->flags &= ~RSA_FLAG_BLINDING; \
109 } while (0)
110 #endif
111
112 #define DST_RET(a) {ret = a; goto err;}
113
114 static isc_result_t opensslrsa_todns(const dst_key_t *key, isc_buffer_t *data);
115
116 static isc_result_t
117 opensslrsa_createctx(dst_key_t *key, dst_context_t *dctx) {
118 #if USE_EVP
119 EVP_MD_CTX *evp_md_ctx;
120 const EVP_MD *type = NULL;
121 #endif
122
123 UNUSED(key);
124 REQUIRE(dctx->key->key_alg == DST_ALG_RSAMD5 ||
125 dctx->key->key_alg == DST_ALG_RSASHA1 ||
126 dctx->key->key_alg == DST_ALG_NSEC3RSASHA1 ||
127 dctx->key->key_alg == DST_ALG_RSASHA256 ||
128 dctx->key->key_alg == DST_ALG_RSASHA512);
129
130 #if USE_EVP
131 evp_md_ctx = EVP_MD_CTX_create();
132 if (evp_md_ctx == NULL)
133 return (ISC_R_NOMEMORY);
134
135 switch (dctx->key->key_alg) {
136 case DST_ALG_RSAMD5:
137 type = EVP_md5(); /* MD5 + RSA */
138 break;
139 case DST_ALG_RSASHA1:
140 case DST_ALG_NSEC3RSASHA1:
141 type = EVP_sha1(); /* SHA1 + RSA */
142 break;
143 #ifdef HAVE_EVP_SHA256
144 case DST_ALG_RSASHA256:
145 type = EVP_sha256(); /* SHA256 + RSA */
146 break;
147 #endif
148 #ifdef HAVE_EVP_SHA512
149 case DST_ALG_RSASHA512:
150 type = EVP_sha512();
151 break;
152 #endif
153 default:
154 INSIST(0);
155 }
156
157 if (!EVP_DigestInit_ex(evp_md_ctx, type, NULL)) {
158 EVP_MD_CTX_destroy(evp_md_ctx);
159 return (ISC_R_FAILURE);
160 }
161 dctx->ctxdata.evp_md_ctx = evp_md_ctx;
162 #else
163 switch (dctx->key->key_alg) {
164 case DST_ALG_RSAMD5:
165 {
166 isc_md5_t *md5ctx;
167
168 md5ctx = isc_mem_get(dctx->mctx, sizeof(isc_md5_t));
169 if (md5ctx == NULL)
170 return (ISC_R_NOMEMORY);
171 isc_md5_init(md5ctx);
172 dctx->ctxdata.md5ctx = md5ctx;
173 }
174 break;
175 case DST_ALG_RSASHA1:
176 case DST_ALG_NSEC3RSASHA1:
177 {
178 isc_sha1_t *sha1ctx;
179
180 sha1ctx = isc_mem_get(dctx->mctx, sizeof(isc_sha1_t));
181 if (sha1ctx == NULL)
182 return (ISC_R_NOMEMORY);
183 isc_sha1_init(sha1ctx);
184 dctx->ctxdata.sha1ctx = sha1ctx;
185 }
186 break;
187 case DST_ALG_RSASHA256:
188 {
189 isc_sha256_t *sha256ctx;
190
191 sha256ctx = isc_mem_get(dctx->mctx,
192 sizeof(isc_sha256_t));
193 if (sha256ctx == NULL)
194 return (ISC_R_NOMEMORY);
195 isc_sha256_init(sha256ctx);
196 dctx->ctxdata.sha256ctx = sha256ctx;
197 }
198 break;
199 case DST_ALG_RSASHA512:
200 {
201 isc_sha512_t *sha512ctx;
202
203 sha512ctx = isc_mem_get(dctx->mctx,
204 sizeof(isc_sha512_t));
205 if (sha512ctx == NULL)
206 return (ISC_R_NOMEMORY);
207 isc_sha512_init(sha512ctx);
208 dctx->ctxdata.sha512ctx = sha512ctx;
209 }
210 break;
211 default:
212 INSIST(0);
213 }
214 #endif
215
216 return (ISC_R_SUCCESS);
217 }
218
219 static void
220 opensslrsa_destroyctx(dst_context_t *dctx) {
221 #if USE_EVP
222 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
223 #endif
224
225 REQUIRE(dctx->key->key_alg == DST_ALG_RSAMD5 ||
226 dctx->key->key_alg == DST_ALG_RSASHA1 ||
227 dctx->key->key_alg == DST_ALG_NSEC3RSASHA1 ||
228 dctx->key->key_alg == DST_ALG_RSASHA256 ||
229 dctx->key->key_alg == DST_ALG_RSASHA512);
230
231 #if USE_EVP
232 if (evp_md_ctx != NULL) {
233 EVP_MD_CTX_destroy(evp_md_ctx);
234 dctx->ctxdata.evp_md_ctx = NULL;
235 }
236 #else
237 switch (dctx->key->key_alg) {
238 case DST_ALG_RSAMD5:
239 {
240 isc_md5_t *md5ctx = dctx->ctxdata.md5ctx;
241
242 if (md5ctx != NULL) {
243 isc_md5_invalidate(md5ctx);
244 isc_mem_put(dctx->mctx, md5ctx,
245 sizeof(isc_md5_t));
246 dctx->ctxdata.md5ctx = NULL;
247 }
248 }
249 break;
250 case DST_ALG_RSASHA1:
251 case DST_ALG_NSEC3RSASHA1:
252 {
253 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
254
255 if (sha1ctx != NULL) {
256 isc_sha1_invalidate(sha1ctx);
257 isc_mem_put(dctx->mctx, sha1ctx,
258 sizeof(isc_sha1_t));
259 dctx->ctxdata.sha1ctx = NULL;
260 }
261 }
262 break;
263 case DST_ALG_RSASHA256:
264 {
265 isc_sha256_t *sha256ctx = dctx->ctxdata.sha256ctx;
266
267 if (sha256ctx != NULL) {
268 isc_sha256_invalidate(sha256ctx);
269 isc_mem_put(dctx->mctx, sha256ctx,
270 sizeof(isc_sha256_t));
271 dctx->ctxdata.sha256ctx = NULL;
272 }
273 }
274 break;
275 case DST_ALG_RSASHA512:
276 {
277 isc_sha512_t *sha512ctx = dctx->ctxdata.sha512ctx;
278
279 if (sha512ctx != NULL) {
280 isc_sha512_invalidate(sha512ctx);
281 isc_mem_put(dctx->mctx, sha512ctx,
282 sizeof(isc_sha512_t));
283 dctx->ctxdata.sha512ctx = NULL;
284 }
285 }
286 break;
287 default:
288 INSIST(0);
289 }
290 #endif
291 }
292
293 static isc_result_t
294 opensslrsa_adddata(dst_context_t *dctx, const isc_region_t *data) {
295 #if USE_EVP
296 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
297 #endif
298
299 REQUIRE(dctx->key->key_alg == DST_ALG_RSAMD5 ||
300 dctx->key->key_alg == DST_ALG_RSASHA1 ||
301 dctx->key->key_alg == DST_ALG_NSEC3RSASHA1 ||
302 dctx->key->key_alg == DST_ALG_RSASHA256 ||
303 dctx->key->key_alg == DST_ALG_RSASHA512);
304
305 #if USE_EVP
306 if (!EVP_DigestUpdate(evp_md_ctx, data->base, data->length)) {
307 return (ISC_R_FAILURE);
308 }
309 #else
310 switch (dctx->key->key_alg) {
311 case DST_ALG_RSAMD5:
312 {
313 isc_md5_t *md5ctx = dctx->ctxdata.md5ctx;
314
315 isc_md5_update(md5ctx, data->base, data->length);
316 }
317 break;
318 case DST_ALG_RSASHA1:
319 case DST_ALG_NSEC3RSASHA1:
320 {
321 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
322
323 isc_sha1_update(sha1ctx, data->base, data->length);
324 }
325 break;
326 case DST_ALG_RSASHA256:
327 {
328 isc_sha256_t *sha256ctx = dctx->ctxdata.sha256ctx;
329
330 isc_sha256_update(sha256ctx, data->base, data->length);
331 }
332 break;
333 case DST_ALG_RSASHA512:
334 {
335 isc_sha512_t *sha512ctx = dctx->ctxdata.sha512ctx;
336
337 isc_sha512_update(sha512ctx, data->base, data->length);
338 }
339 break;
340 default:
341 INSIST(0);
342 }
343 #endif
344 return (ISC_R_SUCCESS);
345 }
346
347 #if ! USE_EVP && OPENSSL_VERSION_NUMBER < 0x00908000L
348 /*
349 * Digest prefixes from RFC 5702.
350 */
351 static unsigned char sha256_prefix[] =
352 { 0x30, 0x31, 0x30, 0x0d, 0x06, 0x09, 0x60, 0x86, 0x48,
353 0x01, 0x65, 0x03, 0x04, 0x02, 0x01, 0x05, 0x00, 0x04, 0x20};
354 static unsigned char sha512_prefix[] =
355 { 0x30, 0x51, 0x30, 0x0d, 0x06, 0x09, 0x60, 0x86, 0x48,
356 0x01, 0x65, 0x03, 0x04, 0x02, 0x03, 0x05, 0x00, 0x04, 0x40};
357 #define PREFIXLEN sizeof(sha512_prefix)
358 #else
359 #define PREFIXLEN 0
360 #endif
361
362 static isc_result_t
363 opensslrsa_sign(dst_context_t *dctx, isc_buffer_t *sig) {
364 dst_key_t *key = dctx->key;
365 isc_region_t r;
366 unsigned int siglen = 0;
367 #if USE_EVP
368 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
369 EVP_PKEY *pkey = key->keydata.pkey;
370 #else
371 RSA *rsa = key->keydata.rsa;
372 /* note: ISC_SHA512_DIGESTLENGTH >= ISC_*_DIGESTLENGTH */
373 unsigned char digest[PREFIXLEN + ISC_SHA512_DIGESTLENGTH];
374 int status;
375 int type = 0;
376 unsigned int digestlen = 0;
377 char *message;
378 unsigned long err;
379 const char* file;
380 int line;
381 #if OPENSSL_VERSION_NUMBER < 0x00908000L
382 unsigned int prefixlen = 0;
383 const unsigned char *prefix = NULL;
384 #endif
385 #endif
386
387 REQUIRE(dctx->key->key_alg == DST_ALG_RSAMD5 ||
388 dctx->key->key_alg == DST_ALG_RSASHA1 ||
389 dctx->key->key_alg == DST_ALG_NSEC3RSASHA1 ||
390 dctx->key->key_alg == DST_ALG_RSASHA256 ||
391 dctx->key->key_alg == DST_ALG_RSASHA512);
392
393 isc_buffer_availableregion(sig, &r);
394
395 #if USE_EVP
396 if (r.length < (unsigned int) EVP_PKEY_size(pkey))
397 return (ISC_R_NOSPACE);
398
399 if (!EVP_SignFinal(evp_md_ctx, r.base, &siglen, pkey)) {
400 return (ISC_R_FAILURE);
401 }
402 #else
403 if (r.length < (unsigned int) RSA_size(rsa))
404 return (ISC_R_NOSPACE);
405
406 switch (dctx->key->key_alg) {
407 case DST_ALG_RSAMD5:
408 {
409 isc_md5_t *md5ctx = dctx->ctxdata.md5ctx;
410
411 isc_md5_final(md5ctx, digest);
412 type = NID_md5;
413 digestlen = ISC_MD5_DIGESTLENGTH;
414 }
415 break;
416 case DST_ALG_RSASHA1:
417 case DST_ALG_NSEC3RSASHA1:
418 {
419 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
420
421 isc_sha1_final(sha1ctx, digest);
422 type = NID_sha1;
423 digestlen = ISC_SHA1_DIGESTLENGTH;
424 }
425 break;
426 case DST_ALG_RSASHA256:
427 {
428 isc_sha256_t *sha256ctx = dctx->ctxdata.sha256ctx;
429
430 isc_sha256_final(digest, sha256ctx);
431 digestlen = ISC_SHA256_DIGESTLENGTH;
432 #if OPENSSL_VERSION_NUMBER < 0x00908000L
433 prefix = sha256_prefix;
434 prefixlen = sizeof(sha256_prefix);
435 #else
436 type = NID_sha256;
437 #endif
438 }
439 break;
440 case DST_ALG_RSASHA512:
441 {
442 isc_sha512_t *sha512ctx = dctx->ctxdata.sha512ctx;
443
444 isc_sha512_final(digest, sha512ctx);
445 digestlen = ISC_SHA512_DIGESTLENGTH;
446 #if OPENSSL_VERSION_NUMBER < 0x00908000L
447 prefix = sha512_prefix;
448 prefixlen = sizeof(sha512_prefix);
449 #else
450 type = NID_sha512;
451 #endif
452 }
453 break;
454 default:
455 INSIST(0);
456 }
457
458 #if OPENSSL_VERSION_NUMBER < 0x00908000L
459 switch (dctx->key->key_alg) {
460 case DST_ALG_RSAMD5:
461 case DST_ALG_RSASHA1:
462 case DST_ALG_NSEC3RSASHA1:
463 INSIST(type != 0);
464 status = RSA_sign(type, digest, digestlen, r.base,
465 &siglen, rsa);
466 break;
467
468 case DST_ALG_RSASHA256:
469 case DST_ALG_RSASHA512:
470 INSIST(prefix != NULL);
471 INSIST(prefixlen != 0);
472 INSIST(prefixlen + digestlen <= sizeof(digest));
473
474 memmove(digest + prefixlen, digest, digestlen);
475 memcpy(digest, prefix, prefixlen);
476 status = RSA_private_encrypt(digestlen + prefixlen,
477 digest, r.base, rsa,
478 RSA_PKCS1_PADDING);
479 if (status < 0)
480 status = 0;
481 else
482 siglen = status;
483 break;
484
485 default:
486 INSIST(0);
487 }
488 #else
489 INSIST(type != 0);
490 status = RSA_sign(type, digest, digestlen, r.base, &siglen, rsa);
491 #endif
492 if (status == 0) {
493 err = ERR_peek_error_line(&file, &line);
494 if (err != 0U) {
495 message = ERR_error_string(err, NULL);
496 }
497 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
498 }
499 #endif
500
501 isc_buffer_add(sig, siglen);
502
503 return (ISC_R_SUCCESS);
504 }
505
506 static isc_result_t
507 opensslrsa_verify(dst_context_t *dctx, const isc_region_t *sig) {
508 dst_key_t *key = dctx->key;
509 int status = 0;
510 #if USE_EVP
511 EVP_MD_CTX *evp_md_ctx = dctx->ctxdata.evp_md_ctx;
512 EVP_PKEY *pkey = key->keydata.pkey;
513 #else
514 /* note: ISC_SHA512_DIGESTLENGTH >= ISC_*_DIGESTLENGTH */
515 unsigned char digest[ISC_SHA512_DIGESTLENGTH];
516 int type = 0;
517 unsigned int digestlen = 0;
518 RSA *rsa = key->keydata.rsa;
519 #if OPENSSL_VERSION_NUMBER < 0x00908000L
520 unsigned int prefixlen = 0;
521 const unsigned char *prefix = NULL;
522 #endif
523 #endif
524
525 REQUIRE(dctx->key->key_alg == DST_ALG_RSAMD5 ||
526 dctx->key->key_alg == DST_ALG_RSASHA1 ||
527 dctx->key->key_alg == DST_ALG_NSEC3RSASHA1 ||
528 dctx->key->key_alg == DST_ALG_RSASHA256 ||
529 dctx->key->key_alg == DST_ALG_RSASHA512);
530
531 #if USE_EVP
532 status = EVP_VerifyFinal(evp_md_ctx, sig->base, sig->length, pkey);
533 #else
534 switch (dctx->key->key_alg) {
535 case DST_ALG_RSAMD5:
536 {
537 isc_md5_t *md5ctx = dctx->ctxdata.md5ctx;
538
539 isc_md5_final(md5ctx, digest);
540 type = NID_md5;
541 digestlen = ISC_MD5_DIGESTLENGTH;
542 }
543 break;
544 case DST_ALG_RSASHA1:
545 case DST_ALG_NSEC3RSASHA1:
546 {
547 isc_sha1_t *sha1ctx = dctx->ctxdata.sha1ctx;
548
549 isc_sha1_final(sha1ctx, digest);
550 type = NID_sha1;
551 digestlen = ISC_SHA1_DIGESTLENGTH;
552 }
553 break;
554 case DST_ALG_RSASHA256:
555 {
556 isc_sha256_t *sha256ctx = dctx->ctxdata.sha256ctx;
557
558 isc_sha256_final(digest, sha256ctx);
559 digestlen = ISC_SHA256_DIGESTLENGTH;
560 #if OPENSSL_VERSION_NUMBER < 0x00908000L
561 prefix = sha256_prefix;
562 prefixlen = sizeof(sha256_prefix);
563 #else
564 type = NID_sha256;
565 #endif
566 }
567 break;
568 case DST_ALG_RSASHA512:
569 {
570 isc_sha512_t *sha512ctx = dctx->ctxdata.sha512ctx;
571
572 isc_sha512_final(digest, sha512ctx);
573 digestlen = ISC_SHA512_DIGESTLENGTH;
574 #if OPENSSL_VERSION_NUMBER < 0x00908000L
575 prefix = sha512_prefix;
576 prefixlen = sizeof(sha512_prefix);
577 #else
578 type = NID_sha512;
579 #endif
580 }
581 break;
582 default:
583 INSIST(0);
584 }
585
586 if (sig->length != (unsigned int) RSA_size(rsa))
587 return (DST_R_VERIFYFAILURE);
588
589 #if OPENSSL_VERSION_NUMBER < 0x00908000L
590 switch (dctx->key->key_alg) {
591 case DST_ALG_RSAMD5:
592 case DST_ALG_RSASHA1:
593 case DST_ALG_NSEC3RSASHA1:
594 INSIST(type != 0);
595 status = RSA_verify(type, digest, digestlen, sig->base,
596 RSA_size(rsa), rsa);
597 break;
598
599 case DST_ALG_RSASHA256:
600 case DST_ALG_RSASHA512:
601 {
602 /*
603 * 1024 is big enough for all valid RSA bit sizes
604 * for use with DNSSEC.
605 */
606 unsigned char original[PREFIXLEN + 1024];
607
608 INSIST(prefix != NULL);
609 INSIST(prefixlen != 0U);
610
611 if (RSA_size(rsa) > (int)sizeof(original))
612 return (DST_R_VERIFYFAILURE);
613
614 status = RSA_public_decrypt(sig->length, sig->base,
615 original, rsa,
616 RSA_PKCS1_PADDING);
617 if (status <= 0)
618 return (DST_R_VERIFYFAILURE);
619 if (status != (int)(prefixlen + digestlen))
620 return (DST_R_VERIFYFAILURE);
621 if (memcmp(original, prefix, prefixlen))
622 return (DST_R_VERIFYFAILURE);
623 if (memcmp(original + prefixlen, digest, digestlen))
624 return (DST_R_VERIFYFAILURE);
625 status = 1;
626 }
627 break;
628
629 default:
630 INSIST(0);
631 }
632 #else
633 INSIST(type != 0);
634 status = RSA_verify(type, digest, digestlen, sig->base,
635 RSA_size(rsa), rsa);
636 #endif
637 #endif
638 if (status != 1)
639 return (dst__openssl_toresult(DST_R_VERIFYFAILURE));
640
641 return (ISC_R_SUCCESS);
642 }
643
644 static isc_boolean_t
645 opensslrsa_compare(const dst_key_t *key1, const dst_key_t *key2) {
646 int status;
647 RSA *rsa1 = NULL, *rsa2 = NULL;
648 #if USE_EVP
649 EVP_PKEY *pkey1, *pkey2;
650 #endif
651
652 #if USE_EVP
653 pkey1 = key1->keydata.pkey;
654 pkey2 = key2->keydata.pkey;
655 /*
656 * The pkey reference will keep these around after
657 * the RSA_free() call.
658 */
659 if (pkey1 != NULL) {
660 rsa1 = EVP_PKEY_get1_RSA(pkey1);
661 RSA_free(rsa1);
662 }
663 if (pkey2 != NULL) {
664 rsa2 = EVP_PKEY_get1_RSA(pkey2);
665 RSA_free(rsa2);
666 }
667 #else
668 rsa1 = key1->keydata.rsa;
669 rsa2 = key2->keydata.rsa;
670 #endif
671
672 if (rsa1 == NULL && rsa2 == NULL)
673 return (ISC_TRUE);
674 else if (rsa1 == NULL || rsa2 == NULL)
675 return (ISC_FALSE);
676
677 status = BN_cmp(rsa1->n, rsa2->n) ||
678 BN_cmp(rsa1->e, rsa2->e);
679
680 if (status != 0)
681 return (ISC_FALSE);
682
683 #if USE_EVP
684 if ((rsa1->flags & RSA_FLAG_EXT_PKEY) != 0 ||
685 (rsa2->flags & RSA_FLAG_EXT_PKEY) != 0) {
686 if ((rsa1->flags & RSA_FLAG_EXT_PKEY) == 0 ||
687 (rsa2->flags & RSA_FLAG_EXT_PKEY) == 0)
688 return (ISC_FALSE);
689 /*
690 * Can't compare private parameters, BTW does it make sense?
691 */
692 return (ISC_TRUE);
693 }
694 #endif
695
696 if (rsa1->d != NULL || rsa2->d != NULL) {
697 if (rsa1->d == NULL || rsa2->d == NULL)
698 return (ISC_FALSE);
699 status = BN_cmp(rsa1->d, rsa2->d) ||
700 BN_cmp(rsa1->p, rsa2->p) ||
701 BN_cmp(rsa1->q, rsa2->q);
702
703 if (status != 0)
704 return (ISC_FALSE);
705 }
706 return (ISC_TRUE);
707 }
708
709 #if OPENSSL_VERSION_NUMBER > 0x00908000L
710 static int
711 progress_cb(int p, int n, BN_GENCB *cb)
712 {
713 union {
714 void *dptr;
715 void (*fptr)(int);
716 } u;
717
718 UNUSED(n);
719
720 u.dptr = cb->arg;
721 if (u.fptr != NULL)
722 u.fptr(p);
723 return (1);
724 }
725 #endif
726
727 static isc_result_t
728 opensslrsa_generate(dst_key_t *key, int exp, void (*callback)(int)) {
729 #if OPENSSL_VERSION_NUMBER > 0x00908000L
730 BN_GENCB cb;
731 union {
732 void *dptr;
733 void (*fptr)(int);
734 } u;
735 RSA *rsa = RSA_new();
736 BIGNUM *e = BN_new();
737 #if USE_EVP
738 EVP_PKEY *pkey = EVP_PKEY_new();
739 #endif
740
741 if (rsa == NULL || e == NULL)
742 goto err;
743 #if USE_EVP
744 if (pkey == NULL)
745 goto err;
746 if (!EVP_PKEY_set1_RSA(pkey, rsa))
747 goto err;
748 #endif
749
750 if (exp == 0) {
751 /* RSA_F4 0x10001 */
752 BN_set_bit(e, 0);
753 BN_set_bit(e, 16);
754 } else {
755 /* F5 0x100000001 */
756 BN_set_bit(e, 0);
757 BN_set_bit(e, 32);
758 }
759
760 if (callback == NULL) {
761 BN_GENCB_set_old(&cb, NULL, NULL);
762 } else {
763 u.fptr = callback;
764 BN_GENCB_set(&cb, &progress_cb, u.dptr);
765 }
766
767 if (RSA_generate_key_ex(rsa, key->key_size, e, &cb)) {
768 BN_free(e);
769 SET_FLAGS(rsa);
770 #if USE_EVP
771 key->keydata.pkey = pkey;
772
773 RSA_free(rsa);
774 #else
775 key->keydata.rsa = rsa;
776 #endif
777 return (ISC_R_SUCCESS);
778 }
779
780 err:
781 #if USE_EVP
782 if (pkey != NULL)
783 EVP_PKEY_free(pkey);
784 #endif
785 if (e != NULL)
786 BN_free(e);
787 if (rsa != NULL)
788 RSA_free(rsa);
789 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
790 #else
791 RSA *rsa;
792 unsigned long e;
793 #if USE_EVP
794 EVP_PKEY *pkey = EVP_PKEY_new();
795
796 UNUSED(callback);
797
798 if (pkey == NULL)
799 return (ISC_R_NOMEMORY);
800 #else
801 UNUSED(callback);
802 #endif
803
804 if (exp == 0)
805 e = RSA_F4;
806 else
807 e = 0x40000003;
808 rsa = RSA_generate_key(key->key_size, e, NULL, NULL);
809 if (rsa == NULL) {
810 #if USE_EVP
811 EVP_PKEY_free(pkey);
812 #endif
813 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
814 }
815 SET_FLAGS(rsa);
816 #if USE_EVP
817 if (!EVP_PKEY_set1_RSA(pkey, rsa)) {
818 EVP_PKEY_free(pkey);
819 RSA_free(rsa);
820 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
821 }
822 key->keydata.pkey = pkey;
823 RSA_free(rsa);
824 #else
825 key->keydata.rsa = rsa;
826 #endif
827
828 return (ISC_R_SUCCESS);
829 #endif
830 }
831
832 static isc_boolean_t
833 opensslrsa_isprivate(const dst_key_t *key) {
834 #if USE_EVP
835 RSA *rsa = EVP_PKEY_get1_RSA(key->keydata.pkey);
836 INSIST(rsa != NULL);
837 RSA_free(rsa);
838 /* key->keydata.pkey still has a reference so rsa is still valid. */
839 #else
840 RSA *rsa = key->keydata.rsa;
841 #endif
842 if (rsa != NULL && (rsa->flags & RSA_FLAG_EXT_PKEY) != 0)
843 return (ISC_TRUE);
844 return (ISC_TF(rsa != NULL && rsa->d != NULL));
845 }
846
847 static void
848 opensslrsa_destroy(dst_key_t *key) {
849 #if USE_EVP
850 EVP_PKEY *pkey = key->keydata.pkey;
851 EVP_PKEY_free(pkey);
852 key->keydata.pkey = NULL;
853 #else
854 RSA *rsa = key->keydata.rsa;
855 RSA_free(rsa);
856 key->keydata.rsa = NULL;
857 #endif
858 }
859
860
861 static isc_result_t
862 opensslrsa_todns(const dst_key_t *key, isc_buffer_t *data) {
863 isc_region_t r;
864 unsigned int e_bytes;
865 unsigned int mod_bytes;
866 isc_result_t ret;
867 RSA *rsa;
868 #if USE_EVP
869 EVP_PKEY *pkey;
870 #endif
871
872 #if USE_EVP
873 REQUIRE(key->keydata.pkey != NULL);
874 #else
875 REQUIRE(key->keydata.rsa != NULL);
876 #endif
877
878 #if USE_EVP
879 pkey = key->keydata.pkey;
880 rsa = EVP_PKEY_get1_RSA(pkey);
881 if (rsa == NULL)
882 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
883 #else
884 rsa = key->keydata.rsa;
885 #endif
886
887 isc_buffer_availableregion(data, &r);
888
889 e_bytes = BN_num_bytes(rsa->e);
890 mod_bytes = BN_num_bytes(rsa->n);
891
892 if (e_bytes < 256) { /*%< key exponent is <= 2040 bits */
893 if (r.length < 1)
894 DST_RET(ISC_R_NOSPACE);
895 isc_buffer_putuint8(data, (isc_uint8_t) e_bytes);
896 isc_region_consume(&r, 1);
897 } else {
898 if (r.length < 3)
899 DST_RET(ISC_R_NOSPACE);
900 isc_buffer_putuint8(data, 0);
901 isc_buffer_putuint16(data, (isc_uint16_t) e_bytes);
902 isc_region_consume(&r, 3);
903 }
904
905 if (r.length < e_bytes + mod_bytes)
906 DST_RET(ISC_R_NOSPACE);
907
908 BN_bn2bin(rsa->e, r.base);
909 isc_region_consume(&r, e_bytes);
910 BN_bn2bin(rsa->n, r.base);
911
912 isc_buffer_add(data, e_bytes + mod_bytes);
913
914 ret = ISC_R_SUCCESS;
915 err:
916 #if USE_EVP
917 if (rsa != NULL)
918 RSA_free(rsa);
919 #endif
920 return (ret);
921 }
922
923 static isc_result_t
924 opensslrsa_fromdns(dst_key_t *key, isc_buffer_t *data) {
925 RSA *rsa;
926 isc_region_t r;
927 unsigned int e_bytes;
928 #if USE_EVP
929 EVP_PKEY *pkey;
930 #endif
931
932 isc_buffer_remainingregion(data, &r);
933 if (r.length == 0)
934 return (ISC_R_SUCCESS);
935
936 rsa = RSA_new();
937 if (rsa == NULL)
938 return (dst__openssl_toresult(ISC_R_NOMEMORY));
939 SET_FLAGS(rsa);
940
941 if (r.length < 1) {
942 RSA_free(rsa);
943 return (DST_R_INVALIDPUBLICKEY);
944 }
945 e_bytes = *r.base++;
946 r.length--;
947
948 if (e_bytes == 0) {
949 if (r.length < 2) {
950 RSA_free(rsa);
951 return (DST_R_INVALIDPUBLICKEY);
952 }
953 e_bytes = ((*r.base++) << 8);
954 e_bytes += *r.base++;
955 r.length -= 2;
956 }
957
958 if (r.length < e_bytes) {
959 RSA_free(rsa);
960 return (DST_R_INVALIDPUBLICKEY);
961 }
962 rsa->e = BN_bin2bn(r.base, e_bytes, NULL);
963 r.base += e_bytes;
964 r.length -= e_bytes;
965
966 rsa->n = BN_bin2bn(r.base, r.length, NULL);
967
968 key->key_size = BN_num_bits(rsa->n);
969
970 isc_buffer_forward(data, r.length);
971
972 #if USE_EVP
973 pkey = EVP_PKEY_new();
974 if (pkey == NULL) {
975 RSA_free(rsa);
976 return (ISC_R_NOMEMORY);
977 }
978 if (!EVP_PKEY_set1_RSA(pkey, rsa)) {
979 EVP_PKEY_free(pkey);
980 RSA_free(rsa);
981 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
982 }
983 key->keydata.pkey = pkey;
984 RSA_free(rsa);
985 #else
986 key->keydata.rsa = rsa;
987 #endif
988
989 return (ISC_R_SUCCESS);
990 }
991
992 static isc_result_t
993 opensslrsa_tofile(const dst_key_t *key, const char *directory) {
994 int i;
995 RSA *rsa;
996 dst_private_t priv;
997 unsigned char *bufs[8];
998 isc_result_t result;
999
1000 #if USE_EVP
1001 if (key->keydata.pkey == NULL)
1002 return (DST_R_NULLKEY);
1003 rsa = EVP_PKEY_get1_RSA(key->keydata.pkey);
1004 if (rsa == NULL)
1005 return (dst__openssl_toresult(DST_R_OPENSSLFAILURE));
1006 #else
1007 if (key->keydata.rsa == NULL)
1008 return (DST_R_NULLKEY);
1009 rsa = key->keydata.rsa;
1010 #endif
1011
1012 for (i = 0; i < 8; i++) {
1013 bufs[i] = isc_mem_get(key->mctx, BN_num_bytes(rsa->n));
1014 if (bufs[i] == NULL) {
1015 result = ISC_R_NOMEMORY;
1016 goto fail;
1017 }
1018 }
1019
1020 i = 0;
1021
1022 priv.elements[i].tag = TAG_RSA_MODULUS;
1023 priv.elements[i].length = BN_num_bytes(rsa->n);
1024 BN_bn2bin(rsa->n, bufs[i]);
1025 priv.elements[i].data = bufs[i];
1026 i++;
1027
1028 priv.elements[i].tag = TAG_RSA_PUBLICEXPONENT;
1029 priv.elements[i].length = BN_num_bytes(rsa->e);
1030 BN_bn2bin(rsa->e, bufs[i]);
1031 priv.elements[i].data = bufs[i];
1032 i++;
1033
1034 if (rsa->d != NULL) {
1035 priv.elements[i].tag = TAG_RSA_PRIVATEEXPONENT;
1036 priv.elements[i].length = BN_num_bytes(rsa->d);
1037 BN_bn2bin(rsa->d, bufs[i]);
1038 priv.elements[i].data = bufs[i];
1039 i++;
1040 }
1041
1042 if (rsa->p != NULL) {
1043 priv.elements[i].tag = TAG_RSA_PRIME1;
1044 priv.elements[i].length = BN_num_bytes(rsa->p);
1045 BN_bn2bin(rsa->p, bufs[i]);
1046 priv.elements[i].data = bufs[i];
1047 i++;
1048 }
1049
1050 if (rsa->q != NULL) {
1051 priv.elements[i].tag = TAG_RSA_PRIME2;
1052 priv.elements[i].length = BN_num_bytes(rsa->q);
1053 BN_bn2bin(rsa->q, bufs[i]);
1054 priv.elements[i].data = bufs[i];
1055 i++;
1056 }
1057
1058 if (rsa->dmp1 != NULL) {
1059 priv.elements[i].tag = TAG_RSA_EXPONENT1;
1060 priv.elements[i].length = BN_num_bytes(rsa->dmp1);
1061 BN_bn2bin(rsa->dmp1, bufs[i]);
1062 priv.elements[i].data = bufs[i];
1063 i++;
1064 }
1065
1066 if (rsa->dmq1 != NULL) {
1067 priv.elements[i].tag = TAG_RSA_EXPONENT2;
1068 priv.elements[i].length = BN_num_bytes(rsa->dmq1);
1069 BN_bn2bin(rsa->dmq1, bufs[i]);
1070 priv.elements[i].data = bufs[i];
1071 i++;
1072 }
1073
1074 if (rsa->iqmp != NULL) {
1075 priv.elements[i].tag = TAG_RSA_COEFFICIENT;
1076 priv.elements[i].length = BN_num_bytes(rsa->iqmp);
1077 BN_bn2bin(rsa->iqmp, bufs[i]);
1078 priv.elements[i].data = bufs[i];
1079 i++;
1080 }
1081
1082 if (key->engine != NULL) {
1083 priv.elements[i].tag = TAG_RSA_ENGINE;
1084 priv.elements[i].length = strlen(key->engine) + 1;
1085 priv.elements[i].data = (unsigned char *)key->engine;
1086 i++;
1087 }
1088
1089 if (key->label != NULL) {
1090 priv.elements[i].tag = TAG_RSA_LABEL;
1091 priv.elements[i].length = strlen(key->label) + 1;
1092 priv.elements[i].data = (unsigned char *)key->label;
1093 i++;
1094 }
1095
1096
1097 priv.nelements = i;
1098 result = dst__privstruct_writefile(key, &priv, directory);
1099 fail:
1100 #if USE_EVP
1101 RSA_free(rsa);
1102 #endif
1103 for (i = 0; i < 8; i++) {
1104 if (bufs[i] == NULL)
1105 break;
1106 isc_mem_put(key->mctx, bufs[i], BN_num_bytes(rsa->n));
1107 }
1108 return (result);
1109 }
1110
1111 static isc_result_t
1112 rsa_check(RSA *rsa, RSA *pub)
1113 {
1114 /* Public parameters should be the same but if they are not set
1115 * copy them from the public key. */
1116 if (pub != NULL) {
1117 if (rsa->n != NULL) {
1118 if (BN_cmp(rsa->n, pub->n) != 0)
1119 return (DST_R_INVALIDPRIVATEKEY);
1120 } else {
1121 rsa->n = pub->n;
1122 pub->n = NULL;
1123 }
1124 if (rsa->e != NULL) {
1125 if (BN_cmp(rsa->e, pub->e) != 0)
1126 return (DST_R_INVALIDPRIVATEKEY);
1127 } else {
1128 rsa->e = pub->e;
1129 pub->e = NULL;
1130 }
1131 }
1132 if (rsa->n == NULL || rsa->e == NULL)
1133 return (DST_R_INVALIDPRIVATEKEY);
1134 return (ISC_R_SUCCESS);
1135 }
1136
1137 static isc_result_t
1138 opensslrsa_parse(dst_key_t *key, isc_lex_t *lexer, dst_key_t *pub) {
1139 dst_private_t priv;
1140 isc_result_t ret;
1141 int i;
1142 RSA *rsa = NULL, *pubrsa = NULL;
1143 ENGINE *e = NULL;
1144 isc_mem_t *mctx = key->mctx;
1145 const char *engine = NULL, *label = NULL;
1146 EVP_PKEY *pkey = NULL;
1147
1148 #if USE_EVP
1149 if (pub != NULL && pub->keydata.pkey != NULL)
1150 pubrsa = EVP_PKEY_get1_RSA(pub->keydata.pkey);
1151 #else
1152 if (pub != NULL && pub->keydata.rsa != NULL) {
1153 pubrsa = pub->keydata.rsa;
1154 pub->keydata.rsa = NULL;
1155 }
1156 #endif
1157
1158 /* read private key file */
1159 ret = dst__privstruct_parse(key, DST_ALG_RSA, lexer, mctx, &priv);
1160 if (ret != ISC_R_SUCCESS)
1161 return (ret);
1162
1163 for (i = 0; i < priv.nelements; i++) {
1164 switch (priv.elements[i].tag) {
1165 case TAG_RSA_ENGINE:
1166 engine = (char *)priv.elements[i].data;
1167 break;
1168 case TAG_RSA_LABEL:
1169 label = (char *)priv.elements[i].data;
1170 break;
1171 default:
1172 break;
1173 }
1174 }
1175 /*
1176 * Is this key is stored in a HSM?
1177 * See if we can fetch it.
1178 */
1179 if (label != NULL) {
1180 if (engine == NULL)
1181 DST_RET(DST_R_NOENGINE);
1182 e = dst__openssl_getengine(engine);
1183 if (e == NULL)
1184 DST_RET(DST_R_NOENGINE);
1185 pkey = ENGINE_load_private_key(e, label, NULL, NULL);
1186 if (pkey == NULL) {
1187 /* ERR_print_errors_fp(stderr); */
1188 DST_RET(ISC_R_NOTFOUND);
1189 }
1190 key->engine = isc_mem_strdup(key->mctx, engine);
1191 if (key->engine == NULL)
1192 DST_RET(ISC_R_NOMEMORY);
1193 key->label = isc_mem_strdup(key->mctx, label);
1194 if (key->label == NULL)
1195 DST_RET(ISC_R_NOMEMORY);
1196 rsa = EVP_PKEY_get1_RSA(pkey);
1197 if (rsa == NULL)
1198 DST_RET(dst__openssl_toresult(DST_R_OPENSSLFAILURE));
1199 if (rsa_check(rsa, pubrsa) != ISC_R_SUCCESS)
1200 DST_RET(DST_R_INVALIDPRIVATEKEY);
1201 if (pubrsa != NULL)
1202 RSA_free(pubrsa);
1203 key->key_size = EVP_PKEY_bits(pkey);
1204 #if USE_EVP
1205 key->keydata.pkey = pkey;
1206 RSA_free(rsa);
1207 #else
1208 key->keydata.rsa = rsa;
1209 EVP_PKEY_free(pkey);
1210 #endif
1211 dst__privstruct_free(&priv, mctx);
1212 memset(&priv, 0, sizeof(priv));
1213 return (ISC_R_SUCCESS);
1214 }
1215
1216 rsa = RSA_new();
1217 if (rsa == NULL)
1218 DST_RET(ISC_R_NOMEMORY);
1219 SET_FLAGS(rsa);
1220
1221 #if USE_EVP
1222 pkey = EVP_PKEY_new();
1223 if (pkey == NULL)
1224 DST_RET(ISC_R_NOMEMORY);
1225 if (!EVP_PKEY_set1_RSA(pkey, rsa))
1226 DST_RET(ISC_R_FAILURE);
1227 key->keydata.pkey = pkey;
1228 #else
1229 key->keydata.rsa = rsa;
1230 #endif
1231
1232 for (i = 0; i < priv.nelements; i++) {
1233 BIGNUM *bn;
1234 switch (priv.elements[i].tag) {
1235 case TAG_RSA_ENGINE:
1236 continue;
1237 case TAG_RSA_LABEL:
1238 continue;
1239 case TAG_RSA_PIN:
1240 continue;
1241 default:
1242 bn = BN_bin2bn(priv.elements[i].data,
1243 priv.elements[i].length, NULL);
1244 if (bn == NULL)
1245 DST_RET(ISC_R_NOMEMORY);
1246 }
1247
1248 switch (priv.elements[i].tag) {
1249 case TAG_RSA_MODULUS:
1250 rsa->n = bn;
1251 break;
1252 case TAG_RSA_PUBLICEXPONENT:
1253 rsa->e = bn;
1254 break;
1255 case TAG_RSA_PRIVATEEXPONENT:
1256 rsa->d = bn;
1257 break;
1258 case TAG_RSA_PRIME1:
1259 rsa->p = bn;
1260 break;
1261 case TAG_RSA_PRIME2:
1262 rsa->q = bn;
1263 break;
1264 case TAG_RSA_EXPONENT1:
1265 rsa->dmp1 = bn;
1266 break;
1267 case TAG_RSA_EXPONENT2:
1268 rsa->dmq1 = bn;
1269 break;
1270 case TAG_RSA_COEFFICIENT:
1271 rsa->iqmp = bn;
1272 break;
1273 }
1274 }
1275 dst__privstruct_free(&priv, mctx);
1276 memset(&priv, 0, sizeof(priv));
1277
1278 if (rsa_check(rsa, pubrsa) != ISC_R_SUCCESS)
1279 DST_RET(DST_R_INVALIDPRIVATEKEY);
1280 key->key_size = BN_num_bits(rsa->n);
1281 if (pubrsa != NULL)
1282 RSA_free(pubrsa);
1283 #if USE_EVP
1284 RSA_free(rsa);
1285 #endif
1286
1287 return (ISC_R_SUCCESS);
1288
1289 err:
1290 #if USE_EVP
1291 if (pkey != NULL)
1292 EVP_PKEY_free(pkey);
1293 #endif
1294 if (rsa != NULL)
1295 RSA_free(rsa);
1296 if (pubrsa != NULL)
1297 RSA_free(pubrsa);
1298 opensslrsa_destroy(key);
1299 dst__privstruct_free(&priv, mctx);
1300 memset(&priv, 0, sizeof(priv));
1301 return (ret);
1302 }
1303
1304 static isc_result_t
1305 opensslrsa_fromlabel(dst_key_t *key, const char *engine, const char *label,
1306 const char *pin)
1307 {
1308 ENGINE *e = NULL;
1309 isc_result_t ret;
1310 EVP_PKEY *pkey = NULL;
1311 RSA *rsa = NULL, *pubrsa = NULL;
1312 char *colon;
1313
1314 UNUSED(pin);
1315
1316 if (engine == NULL)
1317 DST_RET(DST_R_NOENGINE);
1318 e = dst__openssl_getengine(engine);
1319 if (e == NULL)
1320 DST_RET(DST_R_NOENGINE);
1321 pkey = ENGINE_load_public_key(e, label, NULL, NULL);
1322 if (pkey != NULL) {
1323 pubrsa = EVP_PKEY_get1_RSA(pkey);
1324 EVP_PKEY_free(pkey);
1325 if (pubrsa == NULL)
1326 DST_RET(dst__openssl_toresult(DST_R_OPENSSLFAILURE));
1327 }
1328 pkey = ENGINE_load_private_key(e, label, NULL, NULL);
1329 if (pkey == NULL)
1330 DST_RET(ISC_R_NOTFOUND);
1331 if (engine != NULL) {
1332 key->engine = isc_mem_strdup(key->mctx, engine);
1333 if (key->engine == NULL)
1334 DST_RET(ISC_R_NOMEMORY);
1335 } else {
1336 key->engine = isc_mem_strdup(key->mctx, label);
1337 if (key->engine == NULL)
1338 DST_RET(ISC_R_NOMEMORY);
1339 colon = strchr(key->engine, ':');
1340 if (colon != NULL)
1341 *colon = '\0';
1342 }
1343 key->label = isc_mem_strdup(key->mctx, label);
1344 if (key->label == NULL)
1345 DST_RET(ISC_R_NOMEMORY);
1346 rsa = EVP_PKEY_get1_RSA(pkey);
1347 if (rsa == NULL)
1348 DST_RET(dst__openssl_toresult(DST_R_OPENSSLFAILURE));
1349 if (rsa_check(rsa, pubrsa) != ISC_R_SUCCESS)
1350 DST_RET(DST_R_INVALIDPRIVATEKEY);
1351 if (pubrsa != NULL)
1352 RSA_free(pubrsa);
1353 key->key_size = EVP_PKEY_bits(pkey);
1354 #if USE_EVP
1355 key->keydata.pkey = pkey;
1356 RSA_free(rsa);
1357 #else
1358 key->keydata.rsa = rsa;
1359 EVP_PKEY_free(pkey);
1360 #endif
1361 return (ISC_R_SUCCESS);
1362
1363 err:
1364 if (rsa != NULL)
1365 RSA_free(rsa);
1366 if (pubrsa != NULL)
1367 RSA_free(pubrsa);
1368 if (pkey != NULL)
1369 EVP_PKEY_free(pkey);
1370 return (ret);
1371 }
1372
1373 static dst_func_t opensslrsa_functions = {
1374 opensslrsa_createctx,
1375 opensslrsa_destroyctx,
1376 opensslrsa_adddata,
1377 opensslrsa_sign,
1378 opensslrsa_verify,
1379 NULL, /*%< computesecret */
1380 opensslrsa_compare,
1381 NULL, /*%< paramcompare */
1382 opensslrsa_generate,
1383 opensslrsa_isprivate,
1384 opensslrsa_destroy,
1385 opensslrsa_todns,
1386 opensslrsa_fromdns,
1387 opensslrsa_tofile,
1388 opensslrsa_parse,
1389 NULL, /*%< cleanup */
1390 opensslrsa_fromlabel,
1391 };
1392
1393 isc_result_t
1394 dst__opensslrsa_init(dst_func_t **funcp, unsigned char algorithm) {
1395 REQUIRE(funcp != NULL);
1396
1397 if (*funcp == NULL) {
1398 switch (algorithm) {
1399 case DST_ALG_RSASHA256:
1400 #if defined(HAVE_EVP_SHA256) || !USE_EVP
1401 *funcp = &opensslrsa_functions;
1402 #endif
1403 break;
1404 case DST_ALG_RSASHA512:
1405 #if defined(HAVE_EVP_SHA512) || !USE_EVP
1406 *funcp = &opensslrsa_functions;
1407 #endif
1408 break;
1409 default:
1410 *funcp = &opensslrsa_functions;
1411 break;
1412 }
1413 }
1414 return (ISC_R_SUCCESS);
1415 }
1416
1417 #else /* OPENSSL */
1418
1419 #include <isc/util.h>
1420
1421 EMPTY_TRANSLATION_UNIT
1422
1423 #endif /* OPENSSL */
1424 /*! \file */
NetBSD on the FriendlyARM MINI2440