Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: dcc9fa8657
Branches Tags
tor
/
src
/
common
/
key.c

key.c 2.1 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889 
  1. /**
    2. 

  2.  * key.c 
    3. 

  3.  * Key management.
    4. 

  4.  *
    5. 

  5.  * Matej Pfajfar <mp292@cam.ac.uk>
    6. 

  6.  */
    7. 

  7. 

  8. /*
    9. 

  9.  * Changes :
    10. 

  10.  * $Log$
    11. 

  11.  * Revision 1.1  2002/06/26 22:45:50  arma
    12. 

  12.  * Initial revision
    13. 

  13.  *
    14. 

  14.  * Revision 1.5  2002/03/12 23:28:26  mp292
    15. 

  15.  * Removed calls to ERR_load_crypto_strings() (libcrypt).
    16. 

  16.  *
    17. 

  17.  * Revision 1.4  2002/01/27 19:23:03  mp292
    18. 

  18.  * Fixed a bug in parameter checking.
    19. 

  19.  *
    20. 

  20.  * Revision 1.3  2002/01/26 18:50:11  mp292
    21. 

  21.  * Reviewed according to Secure-Programs-HOWTO.
    22. 

  22.  *
    23. 

  23.  * Revision 1.2  2002/01/04 07:19:03  badbytes
    24. 

  24.  * Key generation moved to a separate utility (orkeygen).
    25. 

  25.  *
    26. 

  26.  * Revision 1.1  2001/12/14 12:16:33  badbytes
    27. 

  27.  * Added routine for reading a private key from a file.
    28. 

  28.  *
    29. 

  29.  */
    30. 

  30. 

  31. #include <string.h>
    32. 

  32. 

  33. #include <openssl/err.h>
    34. 

  34. #include <openssl/pem.h>
    35. 

  35. 

  36. #include "key.h"
    37. 

  37. #include "log.h"
    38. 

  38. #include "config.h"
    39. 

  39. 

  40. RSA *load_prkey(unsigned char *keyfile)
    41. 

  41. {
    42. 

  42.   RSA *rsa_private=NULL;
    43. 

  43.   FILE *f_pr;
    44. 

  44.   int retval = 0;
    45. 

  45.   
    46. 

  46.   if (keyfile) /* non-NULL filename */
    47. 

  47.   {
    48. 

  48.     if (strspn(keyfile,CONFIG_LEGAL_FILENAME_CHARACTERS) == strlen(keyfile)) /* filename contains legal characters only */
    49. 

  49.     {
    50. 

  50.       /* open the keyfile */
    51. 

  51.       f_pr=fopen(keyfile,"r");
    52. 

  52.       if (!f_pr)
    53. 

  53.       {
    54. 

  54. 	log(LOG_ERR,"Failed to open keyfile %s.",keyfile);
    55. 

  55. 	return NULL;
    56. 

  56.       }
    57. 

  57.       
    58. 

  58.       /* read the private key */
    59. 

  59.       rsa_private = PEM_read_RSAPrivateKey(f_pr,&rsa_private,NULL,NULL);
    60. 

  60.       fclose(f_pr);
    61. 

  61.       if (!rsa_private)
    62. 

  62.       {
    63. 

  63. 	log(LOG_ERR,"Error reading private key : %s",ERR_reason_error_string(ERR_get_error()));
    64. 

  64. 	return NULL;
    65. 

  65.       }
    66. 

  66.       
    67. 

  67.       /* check the private key */
    68. 

  68.       retval = RSA_check_key(rsa_private);
    69. 

  69.       if (retval == 0)
    70. 

  70.       {
    71. 

  71. 	log(LOG_ERR,"Private key read but is invalid : %s.", ERR_reason_error_string(ERR_get_error()));
    72. 

  72. 	RSA_free(rsa_private);
    73. 

  73. 	return NULL;
    74. 

  74.       }
    75. 

  75.       else if (retval == -1)
    76. 

  76.       {
    77. 

  77. 	log(LOG_ERR,"Private key read but validity checking failed : %s",ERR_reason_error_string(ERR_get_error()));
    78. 

  78. 	RSA_free(rsa_private);
    79. 

  79. 	return NULL;
    80. 

  80.       }
    81. 

  81.       else if (retval == 1)
    82. 

  82.       {
    83. 

  83. 	return rsa_private;
    84. 

  84.       }
    85. 

  85.     } /* filename contains legal characters only */
    86. 

  86.   }
    87. 

  87.   
    88. 

  88.   return NULL; /* report error */
    89. 

  89. }
    90.