summaryrefslogtreecommitdiff
path: root/patches/gnutls/22_functional_s2k_with_GNU_dummy.diff
blob: 2d7e35d37082e9481963aad703fdebe08d78b3d3 (plain) 
    

  1. diff -ruN gnutls26-2.4.1.orig/lib/opencdk/opencdk.h gnutls26-2.4.1/lib/opencdk/opencdk.h
    2. 

  2. --- gnutls26-2.4.1.orig/lib/opencdk/opencdk.h   2008-06-30 16:45:51.000000000 -0400
    3. 

  3. +++ gnutls26-2.4.1/lib/opencdk/opencdk.h    2008-08-21 19:23:44.000000000 -0400
    4. 

  4. @@ -214,7 +214,11 @@
    5. 

  5.  enum cdk_s2k_type_t {
    6. 

  6.      CDK_S2K_SIMPLE     = 0,
    7. 

  7.      CDK_S2K_SALTED     = 1,
    8. 

  8. -    CDK_S2K_ITERSALTED = 3
    9. 

  9. +    CDK_S2K_ITERSALTED = 3,
    10. 

  10. +    CDK_S2K_GNU_EXT = 101 
    11. 

  11. + /* GNU S2K extensions: refer to DETAILS from GnuPG: 
    12. 

  12. +  http://cvs.gnupg.org/cgi-bin/viewcvs.cgi/trunk/doc/DETAILS?root=GnuPG
    13. 

  13. + */
    14. 

  14.  };
    15. 

  15.  
    16. 

  16.  
    17. 

  17. diff -ruN gnutls26-2.4.1.orig/lib/opencdk/read-packet.c gnutls26-2.4.1/lib/opencdk/read-packet.c
    18. 

  18. --- gnutls26-2.4.1.orig/lib/opencdk/read-packet.c   2008-06-30 16:45:51.000000000 -0400
    19. 

  19. +++ gnutls26-2.4.1/lib/opencdk/read-packet.c    2008-08-21 19:30:09.000000000 -0400
    20. 

  20. @@ -78,10 +78,35 @@
    21. 

  21.  }
    22. 

  22.  
    23. 

  23.  
    24. 

  24. -static int
    25. 

  25. +/* read about S2K at http://tools.ietf.org/html/rfc4880#section-3.7.1 */
    26. 

  26. +static cdk_error_t
    27. 

  27.  read_s2k (cdk_stream_t inp, cdk_s2k_t s2k)
    28. 

  28.  {
    29. 

  29. -  return CDK_Not_Implemented;
    30. 

  30. +  size_t nread;
    31. 

  31. +
    32. 

  32. +  s2k->mode = cdk_stream_getc (inp);
    33. 

  33. +  s2k->hash_algo = cdk_stream_getc (inp);
    34. 

  34. +  if (s2k->mode == CDK_S2K_SIMPLE) 
    35. 

  35. +      return 0;
    36. 

  36. +  else if (s2k->mode == CDK_S2K_SALTED || s2k->mode == CDK_S2K_ITERSALTED)
    37. 

  37. +    {
    38. 

  38. +      if (stream_read (inp, s2k->salt, DIM (s2k->salt), &nread))
    39. 

  39. +   return CDK_Inv_Packet;
    40. 

  40. +      if (nread != DIM (s2k->salt))
    41. 

  41. +   return CDK_Inv_Packet;
    42. 

  42. +      
    43. 

  43. +      if (s2k->mode == CDK_S2K_ITERSALTED)
    44. 

  44. +   s2k->count = cdk_stream_getc (inp);
    45. 

  45. +    }
    46. 

  46. +  else if (s2k->mode == CDK_S2K_GNU_EXT)
    47. 

  47. +    {
    48. 

  48. +      /* GNU extensions to the S2K : read DETAILS from gnupg */
    49. 

  49. +      return 0;
    50. 

  50. +    }
    51. 

  51. +  else
    52. 

  52. +    return CDK_Not_Implemented;
    53. 

  53. +
    54. 

  54. +  return 0;
    55. 

  55.  }
    56. 

  56.  
    57. 

  57.  
    58. 

  58. @@ -194,6 +219,7 @@
    59. 

  59.  static cdk_error_t
    60. 

  60.  read_symkey_enc (cdk_stream_t inp, size_t pktlen, cdk_pkt_symkey_enc_t ske)
    61. 

  61.  {
    62. 

  62. +  cdk_error_t ret;
    63. 

  63.    cdk_s2k_t s2k;
    64. 

  64.    size_t minlen;
    65. 

  65.    size_t nread, nleft;
    66. 

  66. @@ -213,7 +239,9 @@
    67. 

  67.      return CDK_Out_Of_Core;
    68. 

  68.    
    69. 

  69.    ske->cipher_algo = cdk_stream_getc (inp);
    70. 

  70. -  s2k->mode = cdk_stream_getc (inp);
    71. 

  71. +  ret = read_s2k(inp, s2k);
    72. 

  72. +  if (ret != 0)
    73. 

  73. +    return ret;
    74. 

  74.    switch (s2k->mode)
    75. 

  75.      {
    76. 

  76.      case CDK_S2K_SIMPLE    : minlen = 0; break;
    77. 

  77. @@ -225,18 +253,6 @@
    78. 

  78.        return CDK_Inv_Packet;
    79. 

  79.      }
    80. 

  80.    
    81. 

  81. -  s2k->hash_algo = cdk_stream_getc (inp);
    82. 

  82. -  if (s2k->mode == CDK_S2K_SALTED || s2k->mode == CDK_S2K_ITERSALTED)
    83. 

  83. -    {
    84. 

  84. -      if (stream_read (inp, s2k->salt, DIM (s2k->salt), &nread))
    85. 

  85. -   return CDK_Inv_Packet;
    86. 

  86. -      if (nread != DIM (s2k->salt))
    87. 

  87. -   return CDK_Inv_Packet;
    88. 

  88. -      
    89. 

  89. -      if (s2k->mode == CDK_S2K_ITERSALTED)
    90. 

  90. -   s2k->count = cdk_stream_getc (inp);
    91. 

  91. -    }
    92. 

  92. -  
    93. 

  93.    ske->seskeylen = pktlen - 4 - minlen;
    94. 

  94.    /* We check if there is an encrypted session key and if it fits into
    95. 

  95.       the buffer. The maximal key length is 256-bit. */
    96. 

  96. @@ -421,14 +437,19 @@
    97. 

  97.        rc = read_s2k (inp, sk->protect.s2k);
    98. 

  98.        if (rc) 
    99. 

  99.     return rc;
    100. 

  100. -      sk->protect.ivlen = gcry_cipher_get_algo_blklen (sk->protect.algo);
    101. 

  101. -      if (!sk->protect.ivlen)
    102. 

  102. -   return CDK_Inv_Packet;
    103. 

  103. -      rc = stream_read (inp, sk->protect.iv, sk->protect.ivlen, &nread);
    104. 

  104. -      if (rc)
    105. 

  105. -   return rc;
    106. 

  106. -      if (nread != sk->protect.ivlen)
    107. 

  107. -   return CDK_Inv_Packet;
    108. 

  108. +      /* refer to --export-secret-subkeys in gpg(1) */
    109. 

  109. +      if (sk->protect.s2k->mode == CDK_S2K_GNU_EXT) 
    110. 

  110. +   sk->protect.ivlen = 0;
    111. 

  111. +      else {
    112. 

  112. +   sk->protect.ivlen = gcry_cipher_get_algo_blklen (sk->protect.algo);
    113. 

  113. +   if (!sk->protect.ivlen)
    114. 

  114. +     return CDK_Inv_Packet;
    115. 

  115. +   rc = stream_read (inp, sk->protect.iv, sk->protect.ivlen, &nread);
    116. 

  116. +   if (rc)
    117. 

  117. +     return rc;
    118. 

  118. +   if (nread != sk->protect.ivlen)
    119. 

  119. +     return CDK_Inv_Packet;
    120. 

  120. +      }
    121. 

  121.      }
    122. 

  122.    else
    123. 

  123.      sk->protect.algo = sk->s2k_usage;
    124. 

  124. @@ -476,6 +497,22 @@
    125. 

  125.     return CDK_Out_Of_Core;
    126. 

  126.        if (stream_read (inp, sk->encdata, sk->enclen, &nread))
    127. 

  127.     return CDK_Inv_Packet;
    128. 

  128. +      /* Handle the GNU S2K extensions we know (just gnu-dummy right now): */
    129. 

  129. +      if (sk->protect.s2k->mode == CDK_S2K_GNU_EXT) {
    130. 

  130. +   unsigned char gnumode;
    131. 

  131. +   if ((sk->enclen < strlen("GNU") + 1) ||
    132. 

  132. +       (0 != memcmp("GNU", sk->encdata, strlen("GNU"))))
    133. 

  133. +     return CDK_Inv_Packet;
    134. 

  134. +   gnumode = sk->encdata[strlen("GNU")];
    135. 

  135. +   /* we only handle gnu-dummy (mode 1).
    136. 

  136. +      mode 2 should refer to external smart cards.
    137. 

  137. +   */
    138. 

  138. +   if (gnumode != 1)
    139. 

  139. +     return CDK_Inv_Packet;
    140. 

  140. +   /* gnu-dummy should have no more data */
    141. 

  141. +   if (sk->enclen != strlen("GNU") + 1)
    142. 

  142. +     return CDK_Inv_Packet;
    143. 

  143. +      }
    144. 

  144.        nskey = cdk_pk_get_nskey (sk->pk->pubkey_algo);
    145. 

  145.        if (!nskey)
    146. 

  146.     return CDK_Inv_Algo;
    147.
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-23 19:19:35 +0000