source: EcnlProtoTool/trunk/openssl-1.1.0e/crypto/rsa/rsa_ssl.c@ 331

Last change on this file since 331 was 331, checked in by coas-nagasima, 6 years ago

prototoolに関連するプロジェクトをnewlibからmuslを使うよう変更・更新
ntshellをnewlibの下位の実装から、muslのsyscallの実装に変更・更新
以下のOSSをアップデート
・mruby-1.3.0
・musl-1.1.18
・onigmo-6.1.3
・tcc-0.9.27
以下のOSSを追加
・openssl-1.1.0e
・curl-7.57.0
・zlib-1.2.11
以下のmrbgemsを追加
・iij/mruby-digest
・iij/mruby-env
・iij/mruby-errno
・iij/mruby-iijson
・iij/mruby-ipaddr
・iij/mruby-mock
・iij/mruby-require
・iij/mruby-tls-openssl
  • Property svn:eol-style set to native
  • Property svn:mime-type set to text/x-csrc
File size: 2.5 KB
Line 
1/*
2 * Copyright 1995-2016 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the OpenSSL license (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10#include <stdio.h>
11#include "internal/cryptlib.h"
12#include <openssl/bn.h>
13#include <openssl/rsa.h>
14#include <openssl/rand.h>
15
16int RSA_padding_add_SSLv23(unsigned char *to, int tlen,
17 const unsigned char *from, int flen)
18{
19 int i, j;
20 unsigned char *p;
21
22 if (flen > (tlen - 11)) {
23 RSAerr(RSA_F_RSA_PADDING_ADD_SSLV23,
24 RSA_R_DATA_TOO_LARGE_FOR_KEY_SIZE);
25 return (0);
26 }
27
28 p = (unsigned char *)to;
29
30 *(p++) = 0;
31 *(p++) = 2; /* Public Key BT (Block Type) */
32
33 /* pad out with non-zero random data */
34 j = tlen - 3 - 8 - flen;
35
36 if (RAND_bytes(p, j) <= 0)
37 return (0);
38 for (i = 0; i < j; i++) {
39 if (*p == '\0')
40 do {
41 if (RAND_bytes(p, 1) <= 0)
42 return (0);
43 } while (*p == '\0');
44 p++;
45 }
46
47 memset(p, 3, 8);
48 p += 8;
49 *(p++) = '\0';
50
51 memcpy(p, from, (unsigned int)flen);
52 return (1);
53}
54
55int RSA_padding_check_SSLv23(unsigned char *to, int tlen,
56 const unsigned char *from, int flen, int num)
57{
58 int i, j, k;
59 const unsigned char *p;
60
61 p = from;
62 if (flen < 10) {
63 RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23, RSA_R_DATA_TOO_SMALL);
64 return (-1);
65 }
66 if ((num != (flen + 1)) || (*(p++) != 02)) {
67 RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23, RSA_R_BLOCK_TYPE_IS_NOT_02);
68 return (-1);
69 }
70
71 /* scan over padding data */
72 j = flen - 1; /* one for type */
73 for (i = 0; i < j; i++)
74 if (*(p++) == 0)
75 break;
76
77 if ((i == j) || (i < 8)) {
78 RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23,
79 RSA_R_NULL_BEFORE_BLOCK_MISSING);
80 return (-1);
81 }
82 for (k = -9; k < -1; k++) {
83 if (p[k] != 0x03)
84 break;
85 }
86 if (k == -1) {
87 RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23, RSA_R_SSLV3_ROLLBACK_ATTACK);
88 return (-1);
89 }
90
91 i++; /* Skip over the '\0' */
92 j -= i;
93 if (j > tlen) {
94 RSAerr(RSA_F_RSA_PADDING_CHECK_SSLV23, RSA_R_DATA_TOO_LARGE);
95 return (-1);
96 }
97 memcpy(to, p, (unsigned int)j);
98
99 return (j);
100}
Note: See TracBrowser for help on using the repository browser.