1
0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-25 01:02:24 +00:00

Clean up RSA and DSA host-key cache formatters.

These were both using the old-fashioned strategy of 'count up the
length first, then go back over the same data trying not to do
anything different', which these days I'm trying to replace with
strbufs.

Also, while I was in ssh.h, removed the prototype of rsasanitise()
which doesn't even exist any more.
This commit is contained in:
Simon Tatham 2018-12-31 13:45:48 +00:00
parent 5b0f32a100
commit 814665fb22
4 changed files with 39 additions and 87 deletions

4
ssh.h
View File

@ -506,9 +506,7 @@ void BinarySource_get_rsa_ssh1_priv(
bool rsa_ssh1_encrypt(unsigned char *data, int length, struct RSAKey *key); bool rsa_ssh1_encrypt(unsigned char *data, int length, struct RSAKey *key);
Bignum rsa_ssh1_decrypt(Bignum input, struct RSAKey *key); Bignum rsa_ssh1_decrypt(Bignum input, struct RSAKey *key);
bool rsa_ssh1_decrypt_pkcs1(Bignum input, struct RSAKey *key, strbuf *outbuf); bool rsa_ssh1_decrypt_pkcs1(Bignum input, struct RSAKey *key, strbuf *outbuf);
void rsasanitise(struct RSAKey *key); char *rsastr_fmt(struct RSAKey *key);
int rsastr_len(struct RSAKey *key);
void rsastr_fmt(char *str, struct RSAKey *key);
char *rsa_ssh1_fingerprint(struct RSAKey *key); char *rsa_ssh1_fingerprint(struct RSAKey *key);
bool rsa_verify(struct RSAKey *key); bool rsa_verify(struct RSAKey *key);
void rsa_ssh1_public_blob(BinarySink *bs, struct RSAKey *key, void rsa_ssh1_public_blob(BinarySink *bs, struct RSAKey *key,

View File

@ -222,10 +222,8 @@ static void ssh1_login_process_queue(PacketProtocolLayer *ppl)
/* /*
* First format the key into a string. * First format the key into a string.
*/ */
int len = rsastr_len(&s->hostkey);
char *fingerprint; char *fingerprint;
char *keystr = snewn(len, char); char *keystr = rsastr_fmt(&s->hostkey);
rsastr_fmt(keystr, &s->hostkey);
fingerprint = rsa_ssh1_fingerprint(&s->hostkey); fingerprint = rsa_ssh1_fingerprint(&s->hostkey);
/* First check against manually configured host keys. */ /* First check against manually configured host keys. */

View File

@ -54,54 +54,33 @@ static void dss_freekey(ssh_key *key)
sfree(dss); sfree(dss);
} }
static void append_hex_to_strbuf(strbuf *sb, Bignum *x)
{
if (sb->len > 0)
put_byte(sb, ',');
put_data(sb, "0x", 2);
int nibbles = (3 + bignum_bitcount(x)) / 4;
if (nibbles < 1)
nibbles = 1;
static const char hex[] = "0123456789abcdef";
for (int i = nibbles; i--;)
put_byte(sb, hex[(bignum_byte(x, i / 2) >> (4 * (i % 2))) & 0xF]);
}
static char *dss_cache_str(ssh_key *key) static char *dss_cache_str(ssh_key *key)
{ {
struct dss_key *dss = container_of(key, struct dss_key, sshk); struct dss_key *dss = container_of(key, struct dss_key, sshk);
char *p; strbuf *sb = strbuf_new();
int len, i, pos, nibbles;
static const char hex[] = "0123456789abcdef";
if (!dss->p) if (!dss->p)
return NULL; return NULL;
len = 8 + 4 + 1; /* 4 x "0x", punctuation, \0 */
len += 4 * (bignum_bitcount(dss->p) + 15) / 16;
len += 4 * (bignum_bitcount(dss->q) + 15) / 16;
len += 4 * (bignum_bitcount(dss->g) + 15) / 16;
len += 4 * (bignum_bitcount(dss->y) + 15) / 16;
p = snewn(len, char);
if (!p)
return NULL;
pos = 0; append_hex_to_strbuf(sb, dss->p);
pos += sprintf(p + pos, "0x"); append_hex_to_strbuf(sb, dss->q);
nibbles = (3 + bignum_bitcount(dss->p)) / 4; append_hex_to_strbuf(sb, dss->g);
if (nibbles < 1) append_hex_to_strbuf(sb, dss->y);
nibbles = 1;
for (i = nibbles; i--;) return strbuf_to_str(sb);
p[pos++] =
hex[(bignum_byte(dss->p, i / 2) >> (4 * (i % 2))) & 0xF];
pos += sprintf(p + pos, ",0x");
nibbles = (3 + bignum_bitcount(dss->q)) / 4;
if (nibbles < 1)
nibbles = 1;
for (i = nibbles; i--;)
p[pos++] =
hex[(bignum_byte(dss->q, i / 2) >> (4 * (i % 2))) & 0xF];
pos += sprintf(p + pos, ",0x");
nibbles = (3 + bignum_bitcount(dss->g)) / 4;
if (nibbles < 1)
nibbles = 1;
for (i = nibbles; i--;)
p[pos++] =
hex[(bignum_byte(dss->g, i / 2) >> (4 * (i % 2))) & 0xF];
pos += sprintf(p + pos, ",0x");
nibbles = (3 + bignum_bitcount(dss->y)) / 4;
if (nibbles < 1)
nibbles = 1;
for (i = nibbles; i--;)
p[pos++] =
hex[(bignum_byte(dss->y, i / 2) >> (4 * (i % 2))) & 0xF];
p[pos] = '\0';
return p;
} }
static bool dss_verify(ssh_key *key, ptrlen sig, ptrlen data) static bool dss_verify(ssh_key *key, ptrlen sig, ptrlen data)

View File

@ -321,44 +321,27 @@ bool rsa_ssh1_decrypt_pkcs1(Bignum input, struct RSAKey *key, strbuf *outbuf)
return success; return success;
} }
int rsastr_len(struct RSAKey *key) static void append_hex_to_strbuf(strbuf *sb, Bignum *x)
{ {
Bignum md, ex; if (sb->len > 0)
int mdlen, exlen; put_byte(sb, ',');
put_data(sb, "0x", 2);
md = key->modulus; int nibbles = (3 + bignum_bitcount(x)) / 4;
ex = key->exponent; if (nibbles < 1)
mdlen = (bignum_bitcount(md) + 15) / 16; nibbles = 1;
exlen = (bignum_bitcount(ex) + 15) / 16; static const char hex[] = "0123456789abcdef";
return 4 * (mdlen + exlen) + 20; for (int i = nibbles; i--;)
put_byte(sb, hex[(bignum_byte(x, i / 2) >> (4 * (i % 2))) & 0xF]);
} }
void rsastr_fmt(char *str, struct RSAKey *key) char *rsastr_fmt(struct RSAKey *key)
{ {
Bignum md, ex; strbuf *sb = strbuf_new();
int len = 0, i, nibbles;
static const char hex[] = "0123456789abcdef";
md = key->modulus; append_hex_to_strbuf(sb, key->exponent);
ex = key->exponent; append_hex_to_strbuf(sb, key->modulus);
len += sprintf(str + len, "0x"); return strbuf_to_str(sb);
nibbles = (3 + bignum_bitcount(ex)) / 4;
if (nibbles < 1)
nibbles = 1;
for (i = nibbles; i--;)
str[len++] = hex[(bignum_byte(ex, i / 2) >> (4 * (i % 2))) & 0xF];
len += sprintf(str + len, ",0x");
nibbles = (3 + bignum_bitcount(md)) / 4;
if (nibbles < 1)
nibbles = 1;
for (i = nibbles; i--;)
str[len++] = hex[(bignum_byte(md, i / 2) >> (4 * (i % 2))) & 0xF];
str[len] = '\0';
} }
/* /*
@ -564,13 +547,7 @@ static void rsa2_freekey(ssh_key *key)
static char *rsa2_cache_str(ssh_key *key) static char *rsa2_cache_str(ssh_key *key)
{ {
struct RSAKey *rsa = container_of(key, struct RSAKey, sshk); struct RSAKey *rsa = container_of(key, struct RSAKey, sshk);
char *p; return rsastr_fmt(rsa);
int len;
len = rsastr_len(rsa);
p = snewn(len, char);
rsastr_fmt(p, rsa);
return p;
} }
static void rsa2_public_blob(ssh_key *key, BinarySink *bs) static void rsa2_public_blob(ssh_key *key, BinarySink *bs)