Add EC_KEY_oct2priv and EC_KEY_priv2oct
New functions EC_KEY_oct2priv and EC_KEY_priv2oct. These are private key equivalents of EC_POINT_oct2point and EC_POINT_point2oct which convert between the private key octet format and EC_KEY. Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
This commit is contained in:
Dr. Stephen Henson
@@ -548,3 +548,56 @@ int EC_KEY_oct2key(EC_KEY *key, const unsigned char *buf, size_t len,
|
|||||||
return 0;
|
return 0;
|
||||||
return EC_POINT_oct2point(key->group, key->pub_key, buf, len, ctx);
|
return EC_POINT_oct2point(key->group, key->pub_key, buf, len, ctx);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
size_t EC_KEY_priv2oct(const EC_KEY *eckey, unsigned char *buf, size_t len)
|
||||||
|
{
|
||||||
|
size_t buf_len, bn_len;
|
||||||
|
if (eckey->group == NULL || eckey->group->meth == NULL)
|
||||||
|
return 0;
|
||||||
|
|
||||||
|
buf_len = (EC_GROUP_get_degree(eckey->group) + 7) / 8;
|
||||||
|
if (eckey->priv_key == NULL)
|
||||||
|
return 0;
|
||||||
|
if (buf == NULL)
|
||||||
|
return buf_len;
|
||||||
|
else if (len < buf_len)
|
||||||
|
return 0;
|
||||||
|
|
||||||
|
bn_len = (size_t)BN_num_bytes(eckey->priv_key);
|
||||||
|
|
||||||
|
/* Octetstring may need leading zeros if BN is to short */
|
||||||
|
|
||||||
|
if (bn_len > buf_len) {
|
||||||
|
ECerr(EC_F_I2D_ECPRIVATEKEY, EC_R_BUFFER_TOO_SMALL);
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
|
if (!BN_bn2bin(eckey->priv_key, buf + buf_len - bn_len)) {
|
||||||
|
ECerr(EC_F_I2D_ECPRIVATEKEY, ERR_R_BN_LIB);
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
|
||||||
|
if (buf_len - bn_len > 0)
|
||||||
|
memset(buf, 0, buf_len - bn_len);
|
||||||
|
|
||||||
|
return buf_len;
|
||||||
|
}
|
||||||
|
|
||||||
|
int EC_KEY_oct2priv(EC_KEY *eckey, unsigned char *buf, size_t len)
|
||||||
|
{
|
||||||
|
if (eckey->group == NULL || eckey->group->meth == NULL)
|
||||||
|
return 0;
|
||||||
|
|
||||||
|
if (eckey->priv_key == NULL)
|
||||||
|
eckey->priv_key = BN_secure_new();
|
||||||
|
if (eckey->priv_key == NULL) {
|
||||||
|
ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_MALLOC_FAILURE);
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
eckey->priv_key = BN_bin2bn(buf, len, eckey->priv_key);
|
||||||
|
if (eckey->priv_key == NULL) {
|
||||||
|
ECerr(EC_F_D2I_ECPRIVATEKEY, ERR_R_BN_LIB);
|
||||||
|
return 0;
|
||||||
|
}
|
||||||
|
return 1;
|
||||||
|
}
|
||||||
|
|||||||
@@ -934,6 +934,26 @@ size_t EC_KEY_key2buf(const EC_KEY *key, point_conversion_form_t form,
|
|||||||
int EC_KEY_oct2key(EC_KEY *key, const unsigned char *buf, size_t len,
|
int EC_KEY_oct2key(EC_KEY *key, const unsigned char *buf, size_t len,
|
||||||
BN_CTX *ctx);
|
BN_CTX *ctx);
|
||||||
|
|
||||||
|
/** Decodes an EC_KEY private key from an octet string
|
||||||
|
* \param key key to decode
|
||||||
|
* \param buf memory buffer with the encoded private key
|
||||||
|
* \param len length of the encoded key
|
||||||
|
* \return 1 on success and 0 if an error occurred
|
||||||
|
*/
|
||||||
|
|
||||||
|
int EC_KEY_oct2priv(EC_KEY *key, unsigned char *buf, size_t len);
|
||||||
|
|
||||||
|
/** Encodes a EC_KEY private key to an octet string
|
||||||
|
* \param key key to encode
|
||||||
|
* \param buf memory buffer for the result. If NULL the function returns
|
||||||
|
* required buffer size.
|
||||||
|
* \param len length of the memory buffer
|
||||||
|
* \return the length of the encoded octet string or 0 if an error occurred
|
||||||
|
*/
|
||||||
|
|
||||||
|
size_t EC_KEY_priv2oct(const EC_KEY *key, unsigned char *buf, size_t len);
|
||||||
|
|
||||||
|
|
||||||
/********************************************************************/
|
/********************************************************************/
|
||||||
/* de- and encoding functions for SEC1 ECPrivateKey */
|
/* de- and encoding functions for SEC1 ECPrivateKey */
|
||||||
/********************************************************************/
|
/********************************************************************/
|
||||||
|
|||||||
Reference in New Issue
Block a user