2 * RSA implementation just sufficient for ssh client-side
5 * Rewritten for more speed by Joris van Rantwijk, Jun 1999.
15 int makekey(unsigned char *data
, struct RSAKey
*result
,
16 unsigned char **keystr
, int order
) {
17 unsigned char *p
= data
;
23 result
->bits
= (result
->bits
<< 8) + *p
++;
28 * order=0 means exponent then modulus (the keys sent by the
29 * server). order=1 means modulus then exponent (the keys
30 * stored in a keyfile).
34 p
+= ssh1_read_bignum(p
, result ?
&result
->exponent
: NULL
);
36 result
->bytes
= (((p
[0] << 8) + p
[1]) + 7) / 8;
37 if (keystr
) *keystr
= p
+2;
38 p
+= ssh1_read_bignum(p
, result ?
&result
->modulus
: NULL
);
40 p
+= ssh1_read_bignum(p
, result ?
&result
->exponent
: NULL
);
45 int makeprivate(unsigned char *data
, struct RSAKey
*result
) {
46 return ssh1_read_bignum(data
, &result
->private_exponent
);
49 void rsaencrypt(unsigned char *data
, int length
, struct RSAKey
*key
) {
54 memmove(data
+key
->bytes
-length
, data
, length
);
58 for (i
= 2; i
< key
->bytes
-length
-1; i
++) {
60 data
[i
] = random_byte();
61 } while (data
[i
] == 0);
63 data
[key
->bytes
-length
-1] = 0;
73 for (i
=key
->bytes
; i
-- ;) {
74 unsigned char byte
= *p
++;
81 modpow(b1
, key
->exponent
, key
->modulus
, b2
);
84 for (i
=key
->bytes
; i
-- ;) {
97 Bignum
rsadecrypt(Bignum input
, struct RSAKey
*key
) {
99 ret
= newbn(key
->modulus
[0]);
100 modpow(input
, key
->private_exponent
, key
->modulus
, ret
);
104 int rsastr_len(struct RSAKey
*key
) {
109 return 4 * (ex
[0]+md
[0]) + 20;
112 void rsastr_fmt(char *str
, struct RSAKey
*key
) {
114 int len
= 0, i
, nibbles
;
115 static const char hex
[] = "0123456789abcdef";
120 len
+= sprintf(str
+len
, "0x");
122 nibbles
= (3 + ssh1_bignum_bitcount(ex
))/4; if (nibbles
<1) nibbles
=1;
123 for (i
=nibbles
; i
-- ;)
124 str
[len
++] = hex
[(bignum_byte(ex
, i
/2) >> (4*(i
%2))) & 0xF];
126 len
+= sprintf(str
+len
, ",0x");
128 nibbles
= (3 + ssh1_bignum_bitcount(md
))/4; if (nibbles
<1) nibbles
=1;
129 for (i
=nibbles
; i
-- ;)
130 str
[len
++] = hex
[(bignum_byte(md
, i
/2) >> (4*(i
%2))) & 0xF];
136 * Generate a fingerprint string for the key. Compatible with the
137 * OpenSSH fingerprint code.
139 void rsa_fingerprint(char *str
, int len
, struct RSAKey
*key
) {
140 struct MD5Context md5c
;
141 unsigned char digest
[16];
142 char buffer
[16*3+40];
146 numlen
= ssh1_bignum_length(key
->modulus
) - 2;
147 for (i
= numlen
; i
-- ;) {
148 unsigned char c
= bignum_byte(key
->modulus
, i
);
149 MD5Update(&md5c
, &c
, 1);
151 numlen
= ssh1_bignum_length(key
->exponent
) - 2;
152 for (i
= numlen
; i
-- ;) {
153 unsigned char c
= bignum_byte(key
->exponent
, i
);
154 MD5Update(&md5c
, &c
, 1);
156 MD5Final(digest
, &md5c
);
158 sprintf(buffer
, "%d ", ssh1_bignum_bitcount(key
->modulus
));
159 for (i
= 0; i
< 16; i
++)
160 sprintf(buffer
+strlen(buffer
), "%s%02x", i?
":":"", digest
[i
]);
161 strncpy(str
, buffer
, len
); str
[len
-1] = '\0';
163 if (key
->comment
&& slen
< len
-1) {
165 strncpy(str
+slen
+1, key
->comment
, len
-slen
-1);
170 void freersakey(struct RSAKey
*key
) {
171 if (key
->modulus
) freebn(key
->modulus
);
172 if (key
->exponent
) freebn(key
->exponent
);
173 if (key
->private_exponent
) freebn(key
->private_exponent
);
174 if (key
->comment
) free(key
->comment
);