boinc/lib/crypt_prog.C

162 lines
5.2 KiB
C

static volatile const char *BOINCrcsid="$Id$";
// The contents of this file are subject to the BOINC Public License
// Version 1.0 (the "License"); you may not use this file except in
// compliance with the License. You may obtain a copy of the License at
// http://boinc.berkeley.edu/license_1.0.txt
//
// Software distributed under the License is distributed on an "AS IS"
// basis, WITHOUT WARRANTY OF ANY KIND, either express or implied. See the
// License for the specific language governing rights and limitations
// under the License.
//
// The Original Code is the Berkeley Open Infrastructure for Network Computing.
//
// The Initial Developer of the Original Code is the SETI@home project.
// Portions created by the SETI@home project are Copyright (C) 2002
// University of California at Berkeley. All Rights Reserved.
//
// Contributor(s):
//
// utility program for encryption.
//
// -genkey n private_keyfile public_keyfile
// create a key pair with n bits (512 <= n <= 1024)
// write it in hex notation
// -sign file private_keyfile
// create a signature for a given file
// write it in hex notation
// -verify file signature_file public_keyfile
// verify a signature
// -test_crypt private_keyfile public_keyfile
// test encrypt/decrypt
#include <cstdio>
#include <cstdlib>
#include "rsaeuro.h"
#include "crypt.h"
void die(char* p) {
fprintf(stderr, "Error: %s\n", p);
exit(1);
}
void better_random_create(R_RANDOM_STRUCT* r) {
#ifdef __WINDOWS__
// in case we ever need this on Win
try {
HCRYPTPROV hCryptProv;
if(! CryptAcquireContext(&hCryptProv, NULL, NULL, PROV_RSA_FULL, 0)) {
throw except("cannot acquire crypt context");
}
if(! CryptGenRandom(hCryptProv, (DWORD) size, (BYTE *) buf_ptr)) {
CryptReleaseContext(hCryptProv, 0);
throw except("cannot generate random data");
}
CryptReleaseContext(hCryptProv, 0);
}
catch (except &e) {
throw except(e, "cannot get random data");
}
#endif
FILE* f = fopen("/dev/random", "r");
if (!f) {
fprintf(stderr, "can't open /dev/random\n");
exit(1);
}
fread(r->state, 16, 1, f);
fread(r->output, 16, 1, f);
fclose(f);
r->bytesNeeded = 0;
r->outputAvailable = 16;
}
int main(int argc, char** argv) {
R_RANDOM_STRUCT randomStruct;
R_RSA_PUBLIC_KEY public_key;
R_RSA_PRIVATE_KEY private_key;
R_RSA_PROTO_KEY protoKey;
int n, retval;
bool is_valid;
DATA_BLOCK signature, in, out;
unsigned char signature_buf[256], buf[256], buf2[256];
FILE *f, *fpriv, *fpub;
if (argc == 1) {
printf("missing command\n");
exit(1);
}
if (!strcmp(argv[1], "-genkey")) {
printf("creating keys in %s and %s\n", argv[3], argv[4]);
n = atoi(argv[2]);
//R_RandomCreate(&randomStruct);
better_random_create(&randomStruct);
protoKey.bits = n;
protoKey.useFermat4 = 1;
retval = R_GeneratePEMKeys(
&public_key, &private_key, &protoKey, &randomStruct
);
if (retval) die("R_GeneratePEMKeys\n");
fpriv = fopen(argv[3], "w");
if (!fpriv) die("fopen");
fpub = fopen(argv[4], "w");
if (!fpub) die("fopen");
print_key_hex(fpriv, (KEY*)&private_key, sizeof(private_key));
print_key_hex(fpub, (KEY*)&public_key, sizeof(public_key));
} else if (!strcmp(argv[1], "-sign")) {
fpriv = fopen(argv[3], "r");
if (!fpriv) die("fopen");
retval = scan_key_hex(fpriv, (KEY*)&private_key, sizeof(private_key));
if (retval) die("scan_key_hex\n");
signature.data = signature_buf;
signature.len = 256;
retval = sign_file(argv[2], private_key, signature);
print_hex_data(stdout, signature);
} else if (!strcmp(argv[1], "-verify")) {
fpub = fopen(argv[4], "r");
if (!fpub) die("fopen");
retval = scan_key_hex(fpub, (KEY*)&public_key, sizeof(public_key));
if (retval) die("read_public_key");
f = fopen(argv[3], "r");
signature.data = signature_buf;
signature.len = 256;
retval = scan_hex_data(f, signature);
if (retval) die("scan_hex_data");
retval = verify_file(argv[2], public_key, signature, is_valid);
if (retval) die("verify_file");
printf("file is %s\n", is_valid?"valid":"invalid");
} else if (!strcmp(argv[1], "-test_crypt")) {
fpriv = fopen(argv[2], "r");
if (!fpriv) die("fopen");
retval = scan_key_hex(fpriv, (KEY*)&private_key, sizeof(private_key));
if (retval) die("scan_key_hex\n");
fpub = fopen(argv[3], "r");
if (!fpub) die("fopen");
retval = scan_key_hex(fpub, (KEY*)&public_key, sizeof(public_key));
if (retval) die("read_public_key");
in.data = (unsigned char*) "foobar";
in.len = strlen((char*)in.data);
out.data = buf;
encrypt_private(private_key, in, out, n);
in = out;
out.data = buf2;
decrypt_public(public_key, in, out);
} else {
printf("unrecognized command\n");
}
return 0;
}