monkee.ch/snac2
1
0
Fork 0
mirror of https://codeberg.org/grunfink/snac2.git synced 2024-11-22 13:25:04 +00:00
Code Issues Projects Releases Packages Wiki Activity

Backport from xs.

Browse source
This commit is contained in:
default 2022-09-29 14:16:20 +02:00
parent f124d7accb
commit c680f15d4e
1 changed files with 42 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

45
xs_openssl.h
View file

@ -12,6 +12,7 @@ d_char *xs_rsa_genkey(int bits);
d_char *xs_rsa_sign(char *secret, char *mem, int size); d_char *xs_rsa_sign(char *secret, char *mem, int size);
int xs_rsa_verify(char *pubkey, char *mem, int size, char *b64sig); int xs_rsa_verify(char *pubkey, char *mem, int size, char *b64sig);
d_char *xs_evp_sign(char *secret, char *mem, int size); d_char *xs_evp_sign(char *secret, char *mem, int size);
int xs_evp_verify(char *pubkey, char *mem, int size, char *b64sig);
#ifdef XS_IMPLEMENTATION #ifdef XS_IMPLEMENTATION
@ -157,7 +158,7 @@ int xs_rsa_verify(char *pubkey, char *mem, int size, char *b64sig)
rsa = PEM_read_bio_RSA_PUBKEY(b, NULL, NULL, NULL); rsa = PEM_read_bio_RSA_PUBKEY(b, NULL, NULL, NULL);
if (rsa != NULL) { if (rsa != NULL) {
d_char *sig = NULL; xs *sig = NULL;
int s_size; int s_size;
/* de-base64 */ /* de-base64 */
@ -166,8 +167,6 @@ int xs_rsa_verify(char *pubkey, char *mem, int size, char *b64sig)
if (sig != NULL) if (sig != NULL)
r = RSA_verify(NID_sha256, (unsigned char *)mem, size, r = RSA_verify(NID_sha256, (unsigned char *)mem, size,
(unsigned char *)sig, s_size, rsa); (unsigned char *)sig, s_size, rsa);
free(sig);
} }
BIO_free(b); BIO_free(b);
@ -210,6 +209,7 @@ d_char *xs_evp_sign(char *secret, char *mem, int size)
signature = xs_base64_enc((char *)sig, sig_len); signature = xs_base64_enc((char *)sig, sig_len);
EVP_MD_CTX_free(mdctx); EVP_MD_CTX_free(mdctx);
EVP_PKEY_free(pkey);
BIO_free(b); BIO_free(b);
free(sig); free(sig);
@ -217,6 +217,45 @@ d_char *xs_evp_sign(char *secret, char *mem, int size)
} }
int xs_evp_verify(char *pubkey, char *mem, int size, char *b64sig)
/* verifies a base64 block, returns non-zero on ok */
{
int r = 0;
BIO *b;
EVP_PKEY *pkey;
EVP_MD_CTX *mdctx;
const EVP_MD *md;
/* un-PEM the key */
b = BIO_new_mem_buf(pubkey, strlen(pubkey));
pkey = PEM_read_bio_PUBKEY(b, NULL, NULL, NULL);
md = EVP_get_digestbyname("sha256");
mdctx = EVP_MD_CTX_new();
if (pkey != NULL) {
xs *sig = NULL;
int s_size;
/* de-base64 */
sig = xs_base64_dec(b64sig, &s_size);
if (sig != NULL) {
EVP_VerifyInit(mdctx, md);
EVP_VerifyUpdate(mdctx, mem, size);
r = EVP_VerifyFinal(mdctx, (unsigned char *)sig, s_size, pkey);
}
}
EVP_MD_CTX_free(mdctx);
EVP_PKEY_free(pkey);
BIO_free(b);
return r;
}
#endif /* XS_IMPLEMENTATION */ #endif /* XS_IMPLEMENTATION */
#endif /* _XS_OPENSSL_H */ #endif /* _XS_OPENSSL_H */