[openssh.git] / scard.c

/*
 * Copyright (c) 2001 Markus Friedl.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 *
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

#ifdef SMARTCARD
#include "includes.h"
RCSID("$OpenBSD: scard.c,v 1.4 2001/07/02 22:40:17 markus Exp $");

#include <openssl/engine.h>
#include <sectok.h>

#include "key.h"
#include "log.h"
#include "xmalloc.h"
#include "scard.h"

#define CLA_SSH 0x05
#define INS_DECRYPT 0x10
#define INS_GET_KEYLENGTH 0x20
#define INS_GET_PUBKEY 0x30
#define INS_GET_RESPONSE 0xc0

#define MAX_BUF_SIZE 256

static int sc_fd = -1;
static int sc_reader_num = 0;
static int cla = 0x00;	/* class */

/* interface to libsectok */

static int 
sc_open(int num)
{
	u_char atr[256];
	int sw;

	if (sc_fd >= 0)
		return sc_fd;
	sc_reader_num = num;

	sc_fd = sectok_open(sc_reader_num, 0, NULL);
	if (sc_fd < 0) {
		error("sectok_open failed %d", sc_fd);
		return sc_fd;
	}
	if (sectok_reset(sc_fd, 0, atr, &sw) <= 0) {
		error("sectok_reset failed: %s", sectok_get_sw(sw));
		sc_fd = -1;
		return sc_fd;
	}
	debug("sc_open ok %d", sc_fd);
	return sc_fd;
}

static int 
sc_enable_applet(void)
{
	u_char contID[2], aid[MAX_BUF_SIZE];
	int i, len, sw, aid_len;

	len = sw = 0;
	contID[0] = 0x77;
	contID[1] = 0x78;

	if (sectok_selectfile(sc_fd, cla, root_fid, &sw) < 0) {
		error("sectok_selectfile root_fid failed: %s",
		    sectok_get_sw(sw));
		return -1;
	}
	if (sectok_selectfile(sc_fd, cla, contID, &sw) < 0) {
		error("sectok_selectfile failed: %s", sectok_get_sw(sw));
		return -1;
	}
	/* send appled id */
	for (i = 0; i < sizeof(aid); i++)
		aid[i] = 0x77;
	aid_len = 5;
	sectok_apdu(sc_fd, cla, 0xa4, 0x04, 0, aid_len, aid, 0, NULL, &sw);
	if (!sectok_swOK(sw)) {
		error("sectok_apdu failed: %s", sectok_get_sw(sw));
		return -1;
	}
	return 0;
}

static int 
sc_read_pubkey(Key * k)
{
	u_char buf[2], *n;
	char *p;
	int len, sw;

	len = sw = 0;

	/* get key size */
	sectok_apdu(sc_fd, CLA_SSH, INS_GET_KEYLENGTH, 0, 0, 0, NULL,
	     sizeof(buf), buf, &sw);
	if (!sectok_swOK(sw)) {
		error("could not obtain key length: %s", sectok_get_sw(sw));
		return -1;
	}
	len = (buf[0] << 8) | buf[1];
	len /= 8;
	debug("INS_GET_KEYLENGTH: len %d sw %s", len, sectok_get_sw(sw));

	n = xmalloc(len);
	/* get n */
	sectok_apdu(sc_fd, CLA_SSH, INS_GET_PUBKEY, 0, 0, 0, NULL, len, n, &sw);
	if (!sectok_swOK(sw)) {
		error("could not obtain public key: %s", sectok_get_sw(sw));
		xfree(n);
		return -1;
	}
	debug("INS_GET_KEYLENGTH: sw %s", sectok_get_sw(sw));

	if (BN_bin2bn(n, len, k->rsa->n) == NULL) {
		error("c_read_pubkey: BN_bin2bn failed");
		xfree(n);
		return -1;
	}
	xfree(n);

	/* currently the java applet just stores 'n' */
	if (!BN_set_word(k->rsa->e, 35)) {
		error("c_read_pubkey: BN_set_word(e, 35) failed");
		return -1;
	}

	p = key_fingerprint(k, SSH_FP_MD5, SSH_FP_HEX);
	debug("fingerprint %d %s", key_size(k), p);
	xfree(p);

	return 0;
}

/* private key operations */

static int
sc_private_decrypt(int flen, u_char *from, u_char *to, RSA *rsa, int padding)
{
	u_char *padded = NULL;
	int sw, len, olen;

	debug("sc_private_decrypt called");

	olen = len = sw = 0;
	if (padding != RSA_PKCS1_PADDING)
		goto err;

	len = BN_num_bytes(rsa->n);
	padded = xmalloc(len);

	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, from, 0, NULL, &sw);
	if (!sectok_swOK(sw)) {
		error("sc_private_decrypt: INS_DECRYPT failed: %s",
		    sectok_get_sw(sw));
		goto err;
	}
	sectok_apdu(sc_fd, CLA_SSH, INS_GET_RESPONSE, 0, 0, 0, NULL,
	     len, padded, &sw);
	if (!sectok_swOK(sw)) {
		error("sc_private_decrypt: INS_GET_RESPONSE failed: %s",
		    sectok_get_sw(sw));
		goto err;
	}
	olen = RSA_padding_check_PKCS1_type_2(to, len, padded + 1, len - 1,
	    len);
err:
	if (padded)
		xfree(padded);
	return olen;
}

static int
sc_private_encrypt(int flen, u_char *from, u_char *to, RSA *rsa, int padding)
{
	u_char *padded = NULL;
	int sw, len;

	len = sw = 0;
	if (padding != RSA_PKCS1_PADDING)
		goto err;

	debug("sc_private_encrypt called");
	len = BN_num_bytes(rsa->n);
	padded = xmalloc(len);

	if (RSA_padding_add_PKCS1_type_1(padded, len, from, flen) <= 0) {
		error("RSA_padding_add_PKCS1_type_1 failed");
		goto err;
	}
	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, padded, 0, NULL, &sw);
	if (!sectok_swOK(sw)) {
		error("sc_private_decrypt: INS_DECRYPT failed: %s",
		    sectok_get_sw(sw));
		goto err;
	}
	sectok_apdu(sc_fd, CLA_SSH, INS_GET_RESPONSE, 0, 0, 0, NULL,
	     len, to, &sw);
	if (!sectok_swOK(sw)) {
		error("sc_private_decrypt: INS_GET_RESPONSE failed: %s",
		    sectok_get_sw(sw));
		goto err;
	}
err:
	if (padded)
		xfree(padded);
	return len;
}

/* engine for overloading private key operations */

static ENGINE *smart_engine = NULL;
static RSA_METHOD smart_rsa =
{
	"sectok",
	NULL,
	NULL,
	NULL,
	NULL,
	NULL,
	NULL,
	NULL,
	NULL,
	0,
	NULL,
};

ENGINE *
sc_get_engine(void)
{
	RSA_METHOD *def;

	def = RSA_get_default_openssl_method();

	/* overload */
	smart_rsa.rsa_priv_enc	= sc_private_encrypt;
	smart_rsa.rsa_priv_dec	= sc_private_decrypt;

	/* just use the OpenSSL version */
	smart_rsa.rsa_pub_enc   = def->rsa_pub_enc;
	smart_rsa.rsa_pub_dec   = def->rsa_pub_dec;
	smart_rsa.rsa_mod_exp	= def->rsa_mod_exp;
	smart_rsa.bn_mod_exp	= def->bn_mod_exp;
	smart_rsa.init		= def->init;
	smart_rsa.finish	= def->finish;
	smart_rsa.flags		= def->flags;
	smart_rsa.app_data	= def->app_data;
	smart_rsa.rsa_sign	= def->rsa_sign;
	smart_rsa.rsa_verify	= def->rsa_verify;

	smart_engine = ENGINE_new();

	ENGINE_set_id(smart_engine, "sectok");
	ENGINE_set_name(smart_engine, "libsectok");
	ENGINE_set_RSA(smart_engine, &smart_rsa);
	ENGINE_set_DSA(smart_engine, DSA_get_default_openssl_method());
	ENGINE_set_DH(smart_engine, DH_get_default_openssl_method());
	ENGINE_set_RAND(smart_engine, RAND_SSLeay());
	ENGINE_set_BN_mod_exp(smart_engine, BN_mod_exp);

	return smart_engine;
}

Key *
sc_get_key(int sc_reader_num)
{
	Key *k;

	if (sc_open(sc_reader_num) < 0) {
		error("sc_open failed");
		return NULL;
	}
	if (sc_enable_applet() < 0) {
		error("sc_enable_applet failed");
		return NULL;
	}
	k = key_new(KEY_RSA);
	if (k == NULL) {
		return NULL;
	}
	if (sc_read_pubkey(k) < 0) {
		error("sc_read_pubkey failed");
		key_free(k);
		return NULL;
	}
	return k;
}
#endif
Commit	Line	Data
637b033d	1	/*
	2	* Copyright (c) 2001 Markus Friedl. All rights reserved.
	3	*
	4	* Redistribution and use in source and binary forms, with or without
	5	* modification, are permitted provided that the following conditions
	6	* are met:
	7	* 1. Redistributions of source code must retain the above copyright
	8	* notice, this list of conditions and the following disclaimer.
	9	* 2. Redistributions in binary form must reproduce the above copyright
	10	* notice, this list of conditions and the following disclaimer in the
	11	* documentation and/or other materials provided with the distribution.
	12	*
	13	* THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
	14	* IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
	15	* OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
	16	* IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
	17	* INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	18	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
	19	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
	20	* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
	21	* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
	22	* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	23	*/
	24
	25	#ifdef SMARTCARD
	26	#include "includes.h"
	27	RCSID("$OpenBSD: scard.c,v 1.4 2001/07/02 22:40:17 markus Exp $");
	28
	29	#include <openssl/engine.h>
	30	#include <sectok.h>
	31
	32	#include "key.h"
	33	#include "log.h"
	34	#include "xmalloc.h"
	35	#include "scard.h"
	36
	37	#define CLA_SSH 0x05
	38	#define INS_DECRYPT 0x10
	39	#define INS_GET_KEYLENGTH 0x20
	40	#define INS_GET_PUBKEY 0x30
	41	#define INS_GET_RESPONSE 0xc0
	42
	43	#define MAX_BUF_SIZE 256
	44
	45	static int sc_fd = -1;
	46	static int sc_reader_num = 0;
	47	static int cla = 0x00; /* class */
	48
	49	/* interface to libsectok */
	50
	51	static int
	52	sc_open(int num)
	53	{
	54	u_char atr[256];
	55	int sw;
	56
	57	if (sc_fd >= 0)
	58	return sc_fd;
	59	sc_reader_num = num;
	60
	61	sc_fd = sectok_open(sc_reader_num, 0, NULL);
	62	if (sc_fd < 0) {
	63	error("sectok_open failed %d", sc_fd);
	64	return sc_fd;
65	}
66	if (sectok_reset(sc_fd, 0, atr, &sw) <= 0) {
67	error("sectok_reset failed: %s", sectok_get_sw(sw));
68	sc_fd = -1;
69	return sc_fd;
70	}
71	debug("sc_open ok %d", sc_fd);
72	return sc_fd;
73	}
74
75	static int
76	sc_enable_applet(void)
77	{
78	u_char contID[2], aid[MAX_BUF_SIZE];
79	int i, len, sw, aid_len;
80
81	len = sw = 0;
82	contID[0] = 0x77;
83	contID[1] = 0x78;
84
85	if (sectok_selectfile(sc_fd, cla, root_fid, &sw) < 0) {
86	error("sectok_selectfile root_fid failed: %s",
87	sectok_get_sw(sw));
88	return -1;
89	}
90	if (sectok_selectfile(sc_fd, cla, contID, &sw) < 0) {
91	error("sectok_selectfile failed: %s", sectok_get_sw(sw));
92	return -1;
93	}
94	/* send appled id */
95	for (i = 0; i < sizeof(aid); i++)
96	aid[i] = 0x77;
97	aid_len = 5;
98	sectok_apdu(sc_fd, cla, 0xa4, 0x04, 0, aid_len, aid, 0, NULL, &sw);
99	if (!sectok_swOK(sw)) {
100	error("sectok_apdu failed: %s", sectok_get_sw(sw));
101	return -1;
102	}
103	return 0;
104	}
105
106	static int
107	sc_read_pubkey(Key * k)
108	{
109	u_char buf[2], *n;
110	char *p;
111	int len, sw;
112
113	len = sw = 0;
114
115	/* get key size */
116	sectok_apdu(sc_fd, CLA_SSH, INS_GET_KEYLENGTH, 0, 0, 0, NULL,
117	sizeof(buf), buf, &sw);
118	if (!sectok_swOK(sw)) {
119	error("could not obtain key length: %s", sectok_get_sw(sw));
120	return -1;
121	}
122	len = (buf[0] << 8) \| buf[1];
123	len /= 8;
124	debug("INS_GET_KEYLENGTH: len %d sw %s", len, sectok_get_sw(sw));
125
126	n = xmalloc(len);
127	/* get n */
128	sectok_apdu(sc_fd, CLA_SSH, INS_GET_PUBKEY, 0, 0, 0, NULL, len, n, &sw);
129	if (!sectok_swOK(sw)) {
130	error("could not obtain public key: %s", sectok_get_sw(sw));
131	xfree(n);
132	return -1;
133	}
134	debug("INS_GET_KEYLENGTH: sw %s", sectok_get_sw(sw));
135
136	if (BN_bin2bn(n, len, k->rsa->n) == NULL) {
137	error("c_read_pubkey: BN_bin2bn failed");
138	xfree(n);
139	return -1;
140	}
141	xfree(n);
142
143	/* currently the java applet just stores 'n' */
144	if (!BN_set_word(k->rsa->e, 35)) {
145	error("c_read_pubkey: BN_set_word(e, 35) failed");
146	return -1;
147	}
148
149	p = key_fingerprint(k, SSH_FP_MD5, SSH_FP_HEX);
150	debug("fingerprint %d %s", key_size(k), p);
151	xfree(p);
152
153	return 0;
154	}
155
156	/* private key operations */
157
158	static int
159	sc_private_decrypt(int flen, u_char from, u_char to, RSA *rsa, int padding)
160	{
161	u_char *padded = NULL;
162	int sw, len, olen;
163
164	debug("sc_private_decrypt called");
165
166	olen = len = sw = 0;
167	if (padding != RSA_PKCS1_PADDING)
168	goto err;
169
170	len = BN_num_bytes(rsa->n);
171	padded = xmalloc(len);
172
173	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, from, 0, NULL, &sw);
174	if (!sectok_swOK(sw)) {
175	error("sc_private_decrypt: INS_DECRYPT failed: %s",
176	sectok_get_sw(sw));
177	goto err;
178	}
179	sectok_apdu(sc_fd, CLA_SSH, INS_GET_RESPONSE, 0, 0, 0, NULL,
180	len, padded, &sw);
181	if (!sectok_swOK(sw)) {
182	error("sc_private_decrypt: INS_GET_RESPONSE failed: %s",
183	sectok_get_sw(sw));
184	goto err;
185	}
186	olen = RSA_padding_check_PKCS1_type_2(to, len, padded + 1, len - 1,
187	len);
188	err:
189	if (padded)
190	xfree(padded);
191	return olen;
192	}
193
194	static int
195	sc_private_encrypt(int flen, u_char from, u_char to, RSA *rsa, int padding)
196	{
197	u_char *padded = NULL;
198	int sw, len;
199
200	len = sw = 0;
201	if (padding != RSA_PKCS1_PADDING)
202	goto err;
203
204	debug("sc_private_encrypt called");
205	len = BN_num_bytes(rsa->n);
206	padded = xmalloc(len);
207
208	if (RSA_padding_add_PKCS1_type_1(padded, len, from, flen) <= 0) {
209	error("RSA_padding_add_PKCS1_type_1 failed");
210	goto err;
211	}
212	sectok_apdu(sc_fd, CLA_SSH, INS_DECRYPT, 0, 0, len, padded, 0, NULL, &sw);
213	if (!sectok_swOK(sw)) {
214	error("sc_private_decrypt: INS_DECRYPT failed: %s",
215	sectok_get_sw(sw));
216	goto err;
217	}
218	sectok_apdu(sc_fd, CLA_SSH, INS_GET_RESPONSE, 0, 0, 0, NULL,
219	len, to, &sw);
220	if (!sectok_swOK(sw)) {
221	error("sc_private_decrypt: INS_GET_RESPONSE failed: %s",
222	sectok_get_sw(sw));
223	goto err;
224	}
225	err:
226	if (padded)
227	xfree(padded);
228	return len;
229	}
230
231	/* engine for overloading private key operations */
232
233	static ENGINE *smart_engine = NULL;
234	static RSA_METHOD smart_rsa =
235	{
236	"sectok",
237	NULL,
238	NULL,
239	NULL,
240	NULL,
241	NULL,
242	NULL,
243	NULL,
244	NULL,
245	0,
246	NULL,
247	};
248
249	ENGINE *
250	sc_get_engine(void)
251	{
252	RSA_METHOD *def;
253
254	def = RSA_get_default_openssl_method();
255
256	/* overload */
257	smart_rsa.rsa_priv_enc = sc_private_encrypt;
258	smart_rsa.rsa_priv_dec = sc_private_decrypt;
259
260	/* just use the OpenSSL version */
261	smart_rsa.rsa_pub_enc = def->rsa_pub_enc;
262	smart_rsa.rsa_pub_dec = def->rsa_pub_dec;
263	smart_rsa.rsa_mod_exp = def->rsa_mod_exp;
264	smart_rsa.bn_mod_exp = def->bn_mod_exp;
265	smart_rsa.init = def->init;
266	smart_rsa.finish = def->finish;
267	smart_rsa.flags = def->flags;
268	smart_rsa.app_data = def->app_data;
269	smart_rsa.rsa_sign = def->rsa_sign;
270	smart_rsa.rsa_verify = def->rsa_verify;
271
272	smart_engine = ENGINE_new();
273
274	ENGINE_set_id(smart_engine, "sectok");
275	ENGINE_set_name(smart_engine, "libsectok");
276	ENGINE_set_RSA(smart_engine, &smart_rsa);
277	ENGINE_set_DSA(smart_engine, DSA_get_default_openssl_method());
278	ENGINE_set_DH(smart_engine, DH_get_default_openssl_method());
279	ENGINE_set_RAND(smart_engine, RAND_SSLeay());
280	ENGINE_set_BN_mod_exp(smart_engine, BN_mod_exp);
281
282	return smart_engine;
283	}
284
285	Key *
286	sc_get_key(int sc_reader_num)
287	{
288	Key *k;
289
290	if (sc_open(sc_reader_num) < 0) {
291	error("sc_open failed");
292	return NULL;
293	}
294	if (sc_enable_applet() < 0) {
295	error("sc_enable_applet failed");
296	return NULL;
297	}
298	k = key_new(KEY_RSA);
299	if (k == NULL) {
300	return NULL;
301	}
302	if (sc_read_pubkey(k) < 0) {
303	error("sc_read_pubkey failed");
304	key_free(k);
305	return NULL;
306	}
307	return k;
308	}
309	#endif