2 * RSA implementation just sufficient for ssh client-side
5 * Rewritten for more speed by Joris van Rantwijk, Jun 1999.
15 int makekey(unsigned char *data, struct RSAKey *result,
16 unsigned char **keystr, int order) {
17 unsigned char *p = data;
23 result->bits = (result->bits << 8) + *p++;
28 * order=0 means exponent then modulus (the keys sent by the
29 * server). order=1 means modulus then exponent (the keys
30 * stored in a keyfile).
34 p += ssh1_read_bignum(p, result ? &result->exponent : NULL);
36 result->bytes = (((p[0] << 8) + p[1]) + 7) / 8;
37 if (keystr) *keystr = p+2;
38 p += ssh1_read_bignum(p, result ? &result->modulus : NULL);
40 p += ssh1_read_bignum(p, result ? &result->exponent : NULL);
45 int makeprivate(unsigned char *data, struct RSAKey *result) {
46 return ssh1_read_bignum(data, &result->private_exponent);
49 void rsaencrypt(unsigned char *data, int length, struct RSAKey *key) {
54 memmove(data+key->bytes-length, data, length);
58 for (i = 2; i < key->bytes-length-1; i++) {
60 data[i] = random_byte();
61 } while (data[i] == 0);
63 data[key->bytes-length-1] = 0;
73 for (i=key->bytes; i-- ;) {
74 unsigned char byte = *p++;
81 modpow(b1, key->exponent, key->modulus, b2);
84 for (i=key->bytes; i-- ;) {
97 Bignum rsadecrypt(Bignum input, struct RSAKey *key) {
99 ret = newbn(key->modulus[0]);
100 modpow(input, key->private_exponent, key->modulus, ret);
104 int rsastr_len(struct RSAKey *key) {
109 return 4 * (ex[0]+md[0]) + 20;
112 void rsastr_fmt(char *str, struct RSAKey *key) {
114 int len = 0, i, nibbles;
115 static const char hex[] = "0123456789abcdef";
120 len += sprintf(str+len, "0x");
122 nibbles = (3 + ssh1_bignum_bitcount(ex))/4; if (nibbles<1) nibbles=1;
123 for (i=nibbles; i-- ;)
124 str[len++] = hex[(bignum_byte(ex, i/2) >> (4*(i%2))) & 0xF];
126 len += sprintf(str+len, ",0x");
128 nibbles = (3 + ssh1_bignum_bitcount(md))/4; if (nibbles<1) nibbles=1;
129 for (i=nibbles; i-- ;)
130 str[len++] = hex[(bignum_byte(md, i/2) >> (4*(i%2))) & 0xF];
136 * Generate a fingerprint string for the key. Compatible with the
137 * OpenSSH fingerprint code.
139 void rsa_fingerprint(char *str, int len, struct RSAKey *key) {
140 struct MD5Context md5c;
141 unsigned char digest[16];
142 char buffer[16*3+40];
146 numlen = ssh1_bignum_length(key->modulus) - 2;
147 for (i = numlen; i-- ;) {
148 unsigned char c = bignum_byte(key->modulus, i);
149 MD5Update(&md5c, &c, 1);
151 numlen = ssh1_bignum_length(key->exponent) - 2;
152 for (i = numlen; i-- ;) {
153 unsigned char c = bignum_byte(key->exponent, i);
154 MD5Update(&md5c, &c, 1);
156 MD5Final(digest, &md5c);
158 sprintf(buffer, "%d ", ssh1_bignum_bitcount(key->modulus));
159 for (i = 0; i < 16; i++)
160 sprintf(buffer+strlen(buffer), "%s%02x", i?":":"", digest[i]);
161 strncpy(str, buffer, len); str[len-1] = '\0';
163 if (key->comment && slen < len-1) {
165 strncpy(str+slen+1, key->comment, len-slen-1);
170 void freersakey(struct RSAKey *key) {
171 if (key->modulus) freebn(key->modulus);
172 if (key->exponent) freebn(key->exponent);
173 if (key->private_exponent) freebn(key->private_exponent);
174 if (key->comment) free(key->comment);