📄 e_4758cca.c

📁 mediastreamer2是开源的网络传输媒体流的库
💻 C
📖 第 1 页 / 共 2 页
字号:
12 下一页
/* Author: Maurice Gittens <maurice@gittens.nl>                       *//* ==================================================================== * Copyright (c) 1999 The OpenSSL Project.  All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright *    notice, this list of conditions and the following disclaimer.  * * 2. Redistributions in binary form must reproduce the above copyright *    notice, this list of conditions and the following disclaimer in *    the documentation and/or other materials provided with the *    distribution. * * 3. All advertising materials mentioning features or use of this *    software must display the following acknowledgment: *    "This product includes software developed by the OpenSSL Project *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" * * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to *    endorse or promote products derived from this software without *    prior written permission. For written permission, please contact *    licensing@OpenSSL.org. * * 5. Products derived from this software may not be called "OpenSSL" *    nor may "OpenSSL" appear in their names without prior written *    permission of the OpenSSL Project. * * 6. Redistributions of any form whatsoever must retain the following *    acknowledgment: *    "This product includes software developed by the OpenSSL Project *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" * * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED * OF THE POSSIBILITY OF SUCH DAMAGE. * ==================================================================== * * This product includes cryptographic software written by Eric Young * (eay@cryptsoft.com).  This product includes software written by Tim * Hudson (tjh@cryptsoft.com). * */#include <stdio.h>#include <string.h>#include <openssl/crypto.h>#include <openssl/dso.h>#include <openssl/x509.h>#include <openssl/objects.h>#include <openssl/engine.h>#include <openssl/rand.h>#ifndef OPENSSL_NO_RSA#include <openssl/rsa.h>#endif#include <openssl/bn.h>#ifndef OPENSSL_NO_HW#ifndef OPENSSL_NO_HW_4758_CCA#ifdef FLAT_INC#include "hw_4758_cca.h"#else#include "vendor_defns/hw_4758_cca.h"#endif#include "e_4758cca_err.c"static int ibm_4758_cca_destroy(ENGINE *e);static int ibm_4758_cca_init(ENGINE *e);static int ibm_4758_cca_finish(ENGINE *e);static int ibm_4758_cca_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void));/* rsa functions *//*---------------*/#ifndef OPENSSL_NO_RSAstatic int cca_rsa_pub_enc(int flen, const unsigned char *from,		unsigned char *to, RSA *rsa,int padding);static int cca_rsa_priv_dec(int flen, const unsigned char *from,		unsigned char *to, RSA *rsa,int padding);static int cca_rsa_sign(int type, const unsigned char *m, unsigned int m_len,		unsigned char *sigret, unsigned int *siglen, const RSA *rsa);static int cca_rsa_verify(int dtype, const unsigned char *m, unsigned int m_len,		unsigned char *sigbuf, unsigned int siglen, const RSA *rsa);/* utility functions *//*-----------------------*/static EVP_PKEY *ibm_4758_load_privkey(ENGINE*, const char*,		UI_METHOD *ui_method, void *callback_data);static EVP_PKEY *ibm_4758_load_pubkey(ENGINE*, const char*,		UI_METHOD *ui_method, void *callback_data);static int getModulusAndExponent(const unsigned char *token, long *exponentLength,		unsigned char *exponent, long *modulusLength,		long *modulusFieldLength, unsigned char *modulus);#endif/* RAND number functions *//*-----------------------*/static int cca_get_random_bytes(unsigned char*, int );static int cca_random_status(void);#ifndef OPENSSL_NO_RSAstatic void cca_ex_free(void *obj, void *item, CRYPTO_EX_DATA *ad,		int idx,long argl, void *argp);#endif/* Function pointers for CCA verbs *//*---------------------------------*/#ifndef OPENSSL_NO_RSAstatic F_KEYRECORDREAD keyRecordRead;static F_DIGITALSIGNATUREGENERATE digitalSignatureGenerate;static F_DIGITALSIGNATUREVERIFY digitalSignatureVerify;static F_PUBLICKEYEXTRACT publicKeyExtract;static F_PKAENCRYPT pkaEncrypt;static F_PKADECRYPT pkaDecrypt;#endifstatic F_RANDOMNUMBERGENERATE randomNumberGenerate;/* static variables *//*------------------*/static const char *CCA4758_LIB_NAME = NULL;static const char *get_CCA4758_LIB_NAME(void)	{	if(CCA4758_LIB_NAME)		return CCA4758_LIB_NAME;	return CCA_LIB_NAME;	}static void free_CCA4758_LIB_NAME(void)	{	if(CCA4758_LIB_NAME)		OPENSSL_free((void*)CCA4758_LIB_NAME);	CCA4758_LIB_NAME = NULL;	}static long set_CCA4758_LIB_NAME(const char *name)	{	free_CCA4758_LIB_NAME();	return (((CCA4758_LIB_NAME = BUF_strdup(name)) != NULL) ? 1 : 0);	}#ifndef OPENSSL_NO_RSAstatic const char* n_keyRecordRead = CSNDKRR;static const char* n_digitalSignatureGenerate = CSNDDSG;static const char* n_digitalSignatureVerify = CSNDDSV;static const char* n_publicKeyExtract = CSNDPKX;static const char* n_pkaEncrypt = CSNDPKE;static const char* n_pkaDecrypt = CSNDPKD;#endifstatic const char* n_randomNumberGenerate = CSNBRNG;#ifndef OPENSSL_NO_RSAstatic int hndidx = -1;#endifstatic DSO *dso = NULL;/* openssl engine initialization structures *//*------------------------------------------*/#define CCA4758_CMD_SO_PATH		ENGINE_CMD_BASEstatic const ENGINE_CMD_DEFN	cca4758_cmd_defns[] = {	{CCA4758_CMD_SO_PATH,		"SO_PATH",		"Specifies the path to the '4758cca' shared library",		ENGINE_CMD_FLAG_STRING},	{0, NULL, NULL, 0}	};#ifndef OPENSSL_NO_RSAstatic RSA_METHOD ibm_4758_cca_rsa =	{	"IBM 4758 CCA RSA method",	cca_rsa_pub_enc,	NULL,	NULL,	cca_rsa_priv_dec,	NULL, /*rsa_mod_exp,*/	NULL, /*mod_exp_mont,*/	NULL, /* init */	NULL, /* finish */	RSA_FLAG_SIGN_VER,	  /* flags */	NULL, /* app_data */	cca_rsa_sign, /* rsa_sign */	cca_rsa_verify, /* rsa_verify */	NULL /* rsa_keygen */	};#endifstatic RAND_METHOD ibm_4758_cca_rand =	{	/* "IBM 4758 RAND method", */	NULL, /* seed */	cca_get_random_bytes, /* get random bytes from the card */	NULL, /* cleanup */	NULL, /* add */	cca_get_random_bytes, /* pseudo rand */	cca_random_status, /* status */	};static const char *engine_4758_cca_id = "4758cca";static const char *engine_4758_cca_name = "IBM 4758 CCA hardware engine support";#ifndef OPENSSL_NO_DYNAMIC_ENGINE /* Compatibility hack, the dynamic library uses this form in the path */static const char *engine_4758_cca_id_alt = "4758_cca";#endif/* engine implementation *//*-----------------------*/static int bind_helper(ENGINE *e)	{	if(!ENGINE_set_id(e, engine_4758_cca_id) ||			!ENGINE_set_name(e, engine_4758_cca_name) ||#ifndef OPENSSL_NO_RSA			!ENGINE_set_RSA(e, &ibm_4758_cca_rsa) ||#endif			!ENGINE_set_RAND(e, &ibm_4758_cca_rand) ||			!ENGINE_set_destroy_function(e, ibm_4758_cca_destroy) ||			!ENGINE_set_init_function(e, ibm_4758_cca_init) ||			!ENGINE_set_finish_function(e, ibm_4758_cca_finish) ||			!ENGINE_set_ctrl_function(e, ibm_4758_cca_ctrl) ||#ifndef OPENSSL_NO_RSA			!ENGINE_set_load_privkey_function(e, ibm_4758_load_privkey) ||			!ENGINE_set_load_pubkey_function(e, ibm_4758_load_pubkey) ||#endif			!ENGINE_set_cmd_defns(e, cca4758_cmd_defns))		return 0;	/* Ensure the error handling is set up */	ERR_load_CCA4758_strings();	return 1;	}#ifdef OPENSSL_NO_DYNAMIC_ENGINEstatic ENGINE *engine_4758_cca(void)	{	ENGINE *ret = ENGINE_new();	if(!ret)		return NULL;	if(!bind_helper(ret))		{		ENGINE_free(ret);		return NULL;		}	return ret;	}void ENGINE_load_4758cca(void)	{	ENGINE *e_4758 = engine_4758_cca();	if (!e_4758) return;	ENGINE_add(e_4758);	ENGINE_free(e_4758);	ERR_clear_error();   	}#endifstatic int ibm_4758_cca_destroy(ENGINE *e)	{	ERR_unload_CCA4758_strings();	free_CCA4758_LIB_NAME();	return 1;	}static int ibm_4758_cca_init(ENGINE *e)	{	if(dso)		{		CCA4758err(CCA4758_F_IBM_4758_CCA_INIT,CCA4758_R_ALREADY_LOADED);		goto err;		}	dso = DSO_load(NULL, get_CCA4758_LIB_NAME(), NULL, 0);	if(!dso)		{		CCA4758err(CCA4758_F_IBM_4758_CCA_INIT,CCA4758_R_DSO_FAILURE);		goto err;		}#ifndef OPENSSL_NO_RSA	if(!(keyRecordRead = (F_KEYRECORDREAD)				DSO_bind_func(dso, n_keyRecordRead)) ||			!(randomNumberGenerate = (F_RANDOMNUMBERGENERATE)				DSO_bind_func(dso, n_randomNumberGenerate)) ||			!(digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)				DSO_bind_func(dso, n_digitalSignatureGenerate)) ||			!(digitalSignatureVerify = (F_DIGITALSIGNATUREVERIFY)				DSO_bind_func(dso, n_digitalSignatureVerify)) ||			!(publicKeyExtract = (F_PUBLICKEYEXTRACT)				DSO_bind_func(dso, n_publicKeyExtract)) ||			!(pkaEncrypt = (F_PKAENCRYPT)				DSO_bind_func(dso, n_pkaEncrypt)) ||			!(pkaDecrypt = (F_PKADECRYPT)				DSO_bind_func(dso, n_pkaDecrypt)))		{		CCA4758err(CCA4758_F_IBM_4758_CCA_INIT,CCA4758_R_DSO_FAILURE);		goto err;		}#else	if(!(randomNumberGenerate = (F_RANDOMNUMBERGENERATE)				DSO_bind_func(dso, n_randomNumberGenerate)))		{		CCA4758err(CCA4758_F_IBM_4758_CCA_INIT,CCA4758_R_DSO_FAILURE);		goto err;		}#endif#ifndef OPENSSL_NO_RSA	hndidx = RSA_get_ex_new_index(0, "IBM 4758 CCA RSA key handle",		NULL, NULL, cca_ex_free);#endif	return 1;err:	if(dso)		DSO_free(dso);	dso = NULL;#ifndef OPENSSL_NO_RSA	keyRecordRead = (F_KEYRECORDREAD)0;	digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)0;	digitalSignatureVerify = (F_DIGITALSIGNATUREVERIFY)0;	publicKeyExtract = (F_PUBLICKEYEXTRACT)0;	pkaEncrypt = (F_PKAENCRYPT)0;	pkaDecrypt = (F_PKADECRYPT)0;#endif	randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0;	return 0;	}static int ibm_4758_cca_finish(ENGINE *e)	{	free_CCA4758_LIB_NAME();	if(!dso)		{		CCA4758err(CCA4758_F_IBM_4758_CCA_FINISH,				CCA4758_R_NOT_LOADED);		return 0;		}	if(!DSO_free(dso))		{		CCA4758err(CCA4758_F_IBM_4758_CCA_FINISH,				CCA4758_R_UNIT_FAILURE);		return 0;		}	dso = NULL;#ifndef OPENSSL_NO_RSA	keyRecordRead = (F_KEYRECORDREAD)0;	randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0;	digitalSignatureGenerate = (F_DIGITALSIGNATUREGENERATE)0;	digitalSignatureVerify = (F_DIGITALSIGNATUREVERIFY)0;	publicKeyExtract = (F_PUBLICKEYEXTRACT)0;	pkaEncrypt = (F_PKAENCRYPT)0;	pkaDecrypt = (F_PKADECRYPT)0;#endif	randomNumberGenerate = (F_RANDOMNUMBERGENERATE)0;	return 1;	}static int ibm_4758_cca_ctrl(ENGINE *e, int cmd, long i, void *p, void (*f)(void))	{	int initialised = ((dso == NULL) ? 0 : 1);	switch(cmd)		{	case CCA4758_CMD_SO_PATH:		if(p == NULL)			{			CCA4758err(CCA4758_F_IBM_4758_CCA_CTRL,					ERR_R_PASSED_NULL_PARAMETER);			return 0;			}		if(initialised)			{			CCA4758err(CCA4758_F_IBM_4758_CCA_CTRL,					CCA4758_R_ALREADY_LOADED);			return 0;			}		return set_CCA4758_LIB_NAME((const char *)p);	default:		break;		}	CCA4758err(CCA4758_F_IBM_4758_CCA_CTRL,			CCA4758_R_COMMAND_NOT_IMPLEMENTED);	return 0;	}#ifndef OPENSSL_NO_RSA#define MAX_CCA_PKA_TOKEN_SIZE 2500static EVP_PKEY *ibm_4758_load_privkey(ENGINE* e, const char* key_id,			UI_METHOD *ui_method, void *callback_data)	{	RSA *rtmp = NULL;	EVP_PKEY *res = NULL;	unsigned char* keyToken = NULL;	unsigned char pubKeyToken[MAX_CCA_PKA_TOKEN_SIZE];	long pubKeyTokenLength = MAX_CCA_PKA_TOKEN_SIZE;	long keyTokenLength = MAX_CCA_PKA_TOKEN_SIZE;	long returnCode;	long reasonCode;	long exitDataLength = 0;	long ruleArrayLength = 0;	unsigned char exitData[8];	unsigned char ruleArray[8];	unsigned char keyLabel[64];	unsigned long keyLabelLength = strlen(key_id);	unsigned char modulus[256];	long modulusFieldLength = sizeof(modulus);	long modulusLength = 0;	unsigned char exponent[256];	long exponentLength = sizeof(exponent);	if (keyLabelLength > sizeof(keyLabel))		{		CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY,		CCA4758_R_SIZE_TOO_LARGE_OR_TOO_SMALL);		return NULL;		}	memset(keyLabel,' ', sizeof(keyLabel));	memcpy(keyLabel, key_id, keyLabelLength);	keyToken = OPENSSL_malloc(MAX_CCA_PKA_TOKEN_SIZE + sizeof(long));	if (!keyToken)		{		CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY,				ERR_R_MALLOC_FAILURE);		goto err;		}	keyRecordRead(&returnCode, &reasonCode, &exitDataLength,		exitData, &ruleArrayLength, ruleArray, keyLabel,		&keyTokenLength, keyToken+sizeof(long));	if (returnCode)		{		CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY,			CCA4758_R_FAILED_LOADING_PRIVATE_KEY);		goto err;		}	publicKeyExtract(&returnCode, &reasonCode, &exitDataLength,		exitData, &ruleArrayLength, ruleArray, &keyTokenLength,		keyToken+sizeof(long), &pubKeyTokenLength, pubKeyToken);	if (returnCode)		{		CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY,			CCA4758_R_FAILED_LOADING_PRIVATE_KEY);		goto err;		}	if (!getModulusAndExponent(pubKeyToken, &exponentLength,			exponent, &modulusLength, &modulusFieldLength,			modulus))		{		CCA4758err(CCA4758_F_IBM_4758_LOAD_PRIVKEY,			CCA4758_R_FAILED_LOADING_PRIVATE_KEY);		goto err;		}	(*(long*)keyToken) = keyTokenLength;	rtmp = RSA_new_method(e);	RSA_set_ex_data(rtmp, hndidx, (char *)keyToken);	rtmp->e = BN_bin2bn(exponent, exponentLength, NULL);	rtmp->n = BN_bin2bn(modulus, modulusFieldLength, NULL);	rtmp->flags |= RSA_FLAG_EXT_PKEY;	res = EVP_PKEY_new();	EVP_PKEY_assign_RSA(res, rtmp);	return res;err:	if (keyToken)		OPENSSL_free(keyToken);	if (res)		EVP_PKEY_free(res);	if (rtmp)		RSA_free(rtmp);	return NULL;	}static EVP_PKEY *ibm_4758_load_pubkey(ENGINE* e, const char* key_id,			UI_METHOD *ui_method, void *callback_data)	{	RSA *rtmp = NULL;	EVP_PKEY *res = NULL;	unsigned char* keyToken = NULL;	long keyTokenLength = MAX_CCA_PKA_TOKEN_SIZE;
12 下一页
⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -