Finish crypto wrapping. Also provide wrappers for OpenSSL.

Disable libgcrypt by default. Since it doesn't support the OFB cipher mode,
we can't use it in a backwards compatible way.

src/gcrypt/cipher.c

@@ -0,0 +1,262 @@
+/*
+    cipher.c -- Symmetric block cipher handling
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#include "system.h"
+
+#include "cipher.h"
+#include "logger.h"
+#include "xalloc.h"
+
+static struct {
+	const char *name;
+	int algo;
+	int mode;
+	int nid;
+} ciphertable[] = {
+	{"none", GCRY_CIPHER_NONE, GCRY_CIPHER_MODE_NONE, 0},
+
+	{NULL, GCRY_CIPHER_BLOWFISH, GCRY_CIPHER_MODE_ECB, 92},
+	{"blowfish", GCRY_CIPHER_BLOWFISH, GCRY_CIPHER_MODE_CBC, 91},
+	{NULL, GCRY_CIPHER_BLOWFISH, GCRY_CIPHER_MODE_CFB, 93},
+	{NULL, GCRY_CIPHER_BLOWFISH, GCRY_CIPHER_MODE_OFB, 94},
+
+	{NULL, GCRY_CIPHER_AES, GCRY_CIPHER_MODE_ECB, 418},
+	{"aes", GCRY_CIPHER_AES, GCRY_CIPHER_MODE_CBC, 419},
+	{NULL, GCRY_CIPHER_AES, GCRY_CIPHER_MODE_CFB, 421},
+	{NULL, GCRY_CIPHER_AES, GCRY_CIPHER_MODE_OFB, 420},
+
+	{NULL, GCRY_CIPHER_AES192, GCRY_CIPHER_MODE_ECB, 422},
+	{"aes192", GCRY_CIPHER_AES192, GCRY_CIPHER_MODE_CBC, 423},
+	{NULL, GCRY_CIPHER_AES192, GCRY_CIPHER_MODE_CFB, 425},
+	{NULL, GCRY_CIPHER_AES192, GCRY_CIPHER_MODE_OFB, 424},
+
+	{NULL, GCRY_CIPHER_AES256, GCRY_CIPHER_MODE_ECB, 426},
+	{"aes256", GCRY_CIPHER_AES256, GCRY_CIPHER_MODE_CBC, 427},
+	{NULL, GCRY_CIPHER_AES256, GCRY_CIPHER_MODE_CFB, 429},
+	{NULL, GCRY_CIPHER_AES256, GCRY_CIPHER_MODE_OFB, 428},
+};
+
+static bool nametocipher(const char *name, int *algo, int *mode) {
+	int i;
+
+	for(i = 0; i < sizeof ciphertable / sizeof *ciphertable; i++) {
+		if(ciphertable[i].name && !strcasecmp(name, ciphertable[i].name)) {
+			*algo = ciphertable[i].algo;
+			*mode = ciphertable[i].mode;
+			return true;
+		}
+	}
+
+	return false;
+}
+
+static bool nidtocipher(int nid, int *algo, int *mode) {
+	int i;
+
+	for(i = 0; i < sizeof ciphertable / sizeof *ciphertable; i++) {
+		if(nid == ciphertable[i].nid) {
+			*algo = ciphertable[i].algo;
+			*mode = ciphertable[i].mode;
+			return true;
+		}
+	}
+
+	return false;
+}
+
+static bool ciphertonid(int algo, int mode, int *nid) {
+	int i;
+
+	for(i = 0; i < sizeof ciphertable / sizeof *ciphertable; i++) {
+		if(algo == ciphertable[i].algo && mode == ciphertable[i].mode) {
+			*nid = ciphertable[i].nid;
+			return true;
+		}
+	}
+
+	return false;
+}
+
+static bool cipher_open(cipher_t *cipher, int algo, int mode) {
+	gcry_error_t err;
+
+	if(!ciphertonid(algo, mode, &cipher->nid)) {
+		logger(LOG_DEBUG, _("Cipher %d mode %d has no corresponding nid!"), algo, mode);
+		return false;
+	}
+
+	if((err = gcry_cipher_open(&cipher->handle, algo, mode, 0))) {
+		logger(LOG_DEBUG, _("Unable to intialise cipher %d mode %d: %s"), algo, mode, gcry_strerror(err));
+		return false;
+	}
+
+	cipher->keylen = gcry_cipher_get_algo_keylen(algo);
+	if(mode == GCRY_CIPHER_MODE_ECB || mode == GCRY_CIPHER_MODE_CBC)
+		cipher->blklen = gcry_cipher_get_algo_blklen(algo);
+	else
+		cipher->blklen = 0;
+	cipher->key = xmalloc(cipher->keylen + cipher->blklen);
+
+	return true;
+}
+
+bool cipher_open_by_name(cipher_t *cipher, const char *name) {
+	int algo, mode;
+
+	if(!nametocipher(name, &algo, &mode)) {
+		logger(LOG_DEBUG, _("Unknown cipher name '%s'!"), name);
+		return false;
+	}
+
+	return cipher_open(cipher, algo, mode);
+}
+
+bool cipher_open_by_nid(cipher_t *cipher, int nid) {
+	int algo, mode;
+
+	if(!nidtocipher(nid, &algo, &mode)) {
+		logger(LOG_DEBUG, _("Unknown cipher ID %d!"), nid);
+		return false;
+	}
+
+	return cipher_open(cipher, algo, mode);
+}
+
+bool cipher_open_blowfish_ofb(cipher_t *cipher) {
+	return cipher_open(cipher, GCRY_CIPHER_BLOWFISH, GCRY_CIPHER_MODE_OFB);
+}
+
+void cipher_close(cipher_t *cipher) {
+	if(cipher->handle) {
+		gcry_cipher_close(cipher->handle);
+		cipher->handle = NULL;
+	}
+
+	if(cipher->key) {
+		free(cipher->key);
+		cipher->key = NULL;
+	}
+}
+
+size_t cipher_keylength(const cipher_t *cipher) {
+	return cipher->keylen + cipher->blklen;
+}
+
+void cipher_get_key(const cipher_t *cipher, void *key) {
+	memcpy(key, cipher->key, cipher->keylen + cipher->blklen);
+}
+
+bool cipher_set_key(cipher_t *cipher, void *key, bool encrypt) {
+	memcpy(cipher->key, key, cipher->keylen + cipher->blklen);
+
+	gcry_cipher_setkey(cipher->handle, cipher->key, cipher->keylen);
+	gcry_cipher_setiv(cipher->handle, cipher->key + cipher->keylen, cipher->blklen);
+
+	return true;
+}
+
+bool cipher_set_key(cipher_t *cipher, void *key, size_t len, bool encrypt) {
+	memcpy(cipher->key, key + len - cipher->keylen, cipher->keylen + cipher->blklen);
+	memcpy(cipher->key + cipher->keylen, key + len - cipher->keylen - cipher->blklen, cipher->blklen);
+
+	gcry_cipher_setkey(cipher->handle, cipher->key, cipher->keylen);
+	gcry_cipher_setiv(cipher->handle, cipher->key + cipher->keylen, cipher->blklen);
+
+	return true;
+}
+
+bool cipher_regenerate_key(cipher_t *cipher, bool encrypt) {
+	gcry_create_nonce(cipher->key, cipher->keylen + cipher->blklen);
+
+	gcry_cipher_setkey(cipher->handle, cipher->key, cipher->keylen);
+	gcry_cipher_setiv(cipher->handle, cipher->key + cipher->keylen, cipher->blklen);
+
+	return true;
+}
+
+static bool cipher_add_padding(cipher_t *cipher, void *indata, size_t inlen, size_t *outlen) {
+	size_t reqlen;
+
+	if(cipher->blklen == 1) {
+		*outlen = inlen;
+		return true;
+	}
+
+	reqlen = ((inlen + 1) / cipher->blklen) * cipher->blklen;
+	if(reqlen > *outlen)
+		return false;
+
+	// add padding
+
+	*outlen = reqlen;
+	return true;
+}
+
+static bool cipher_remove_padding(cipher_t *cipher, void *indata, size_t inlen, size_t *outlen) {
+	size_t origlen;
+
+	if(cipher->blklen == 1) {
+		*outlen = inlen;
+		return true;
+	}
+
+	if(inlen % cipher->blklen)
+		return false;
+
+	// check and remove padding
+
+	*outlen = origlen;
+	return true;
+}
+
+bool cipher_encrypt(cipher_t *cipher, void *indata, size_t inlen, void *outdata, size_t *outlen, bool oneshot) {
+	gcry_error_t err;
+
+	// To be fixed
+
+	if((err = gcry_cipher_encrypt(cipher->handle, outdata, inlen, indata, inlen))) {
+		logger(LOG_ERR, _("Error while encrypting: %s"), gcry_strerror(err));
+		return false;
+	}
+
+	return true;
+}
+
+bool cipher_decrypt(cipher_t *cipher, void *indata, size_t inlen, void *outdata, size_t *outlen, bool oneshot) {
+	gcry_error_t err;
+
+	// To be fixed
+
+	if((err = gcry_cipher_decrypt(cipher->handle, outdata, inlen, indata, inlen))) {
+		logger(LOG_ERR, _("Error while decrypting: %s"), gcry_strerror(err));
+		return false;
+	}
+
+	return true;
+}
+
+int cipher_get_nid(const cipher_t *cipher) {
+	return cipher->nid;
+}
+
+bool cipher_active(const cipher_t *cipher) {
+	return cipher->nid != 0;
+}

src/gcrypt/cipher.h

@@ -0,0 +1,49 @@
+/*
+    cipher.h -- header file cipher.c
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#ifndef __TINC_CIPHER_H__
+#define __TINC_CIPHER_H__
+
+#include <gcrypt.h>
+
+typedef struct cipher {
+	gcry_cipher_hd_t handle;
+	char *key;
+	int nid;
+	uint16_t keylen;
+	uint16_t blklen;
+} cipher_t;
+
+extern bool cipher_open_by_name(struct cipher *, const char *);
+extern bool cipher_open_by_nid(struct cipher *, int);
+extern bool cipher_open_blowfish_ofb(struct cipher *);
+extern void cipher_close(struct cipher *);
+extern size_t cipher_keylength(const struct cipher *);
+extern void cipher_get_key(const struct cipher *, void *, bool);
+extern bool cipher_set_key(struct cipher *, void *, bool);
+extern bool cipher_set_key_from_rsa(struct cipher *, void *, size_t, bool);
+extern bool cipher_regenerate_key(struct cipher *);
+extern bool cipher_encrypt(struct cipher *, void *indata, size_t inlen, void *outdata, size_t *outlen, bool oneshot);
+extern bool cipher_decrypt(struct cipher *, void *indata, size_t inlen, void *outdata, size_t *outlen, bool oneshot);
+extern int cipher_get_nid(const struct cipher *);
+extern bool cipher_active(const struct cipher *);
+
+#endif

src/gcrypt/crypto.c

@@ -0,0 +1,36 @@
+/*
+    crypto.c -- Cryptographic miscellaneous functions and initialisation
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#include "system.h"
+
+#include <gcrypt.h>
+
+#include "crypto.h"
+
+void crypto_init() {
+}
+
+void crypto_exit() {
+}
+
+void randomize(void *out, size_t outlen) {
+	gcry_create_nonce(out, outlen);
+}

src/gcrypt/crypto.h

@@ -0,0 +1,29 @@
+/*
+    crypto.h -- header for crypto.c
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#ifndef __TINC_CRYPTO_H__
+#define __TINC_CRYPTO_H__
+
+extern void crypto_init();
+extern void crypto_exit();
+extern void randomize(void *, size_t);
+
+#endif

src/gcrypt/digest.c

@@ -0,0 +1,140 @@
+/*
+    digest.c -- Digest handling
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#include "system.h"
+
+#include "digest.h"
+#include "logger.h"
+
+static struct {
+	const char *name;
+	int algo;
+	int nid;
+} digesttable[] = {
+	{"none", GCRY_MD_NONE, 0},
+	{"sha1", GCRY_MD_SHA1, 64},
+	{"sha256", GCRY_MD_SHA256, 672},
+	{"sha384", GCRY_MD_SHA384, 673},
+	{"sha512", GCRY_MD_SHA512, 674},
+};
+
+static bool nametodigest(const char *name, int *algo) {
+	int i;
+
+	for(i = 0; i < sizeof digesttable / sizeof *digesttable; i++) {
+		if(digesttable[i].name && !strcasecmp(name, digesttable[i].name)) {
+			*algo = digesttable[i].algo;
+			return true;
+		}
+	}
+
+	return false;
+}
+
+static bool nidtodigest(int nid, int *algo) {
+	int i;
+
+	for(i = 0; i < sizeof digesttable / sizeof *digesttable; i++) {
+		if(nid == digesttable[i].nid) {
+			*algo = digesttable[i].algo;
+			return true;
+		}
+	}
+
+	return false;
+}
+
+static bool digesttonid(int algo, int *nid) {
+	int i;
+
+	for(i = 0; i < sizeof digesttable / sizeof *digesttable; i++) {
+		if(algo == digesttable[i].algo) {
+			*nid = digesttable[i].nid;
+			return true;
+		}
+	}
+
+	return false;
+}
+
+static bool digest_open(digest_t *digest, int algo) {
+	if(!digesttonid(algo, &digest->nid)) {
+		logger(LOG_DEBUG, _("Digest %d has no corresponding nid!"), algo);
+		return false;
+	}
+
+	digest->len = gcry_md_get_algo_dlen(algo);
+
+	return true;
+}
+
+bool digest_open_by_name(digest_t *digest, const char *name) {
+	int algo;
+
+	if(!nametodigest(name, &algo)) {
+		logger(LOG_DEBUG, _("Unknown digest name '%s'!"), name);
+		return false;
+	}
+
+	return digest_open(digest, algo);
+}
+
+bool digest_open_by_nid(digest_t *digest, int nid) {
+	int algo;
+
+	if(!nidtodigest(nid, &algo)) {
+		logger(LOG_DEBUG, _("Unknown digest ID %d!"), nid);
+		return false;
+	}
+
+	return digest_open(digest, algo);
+}
+
+bool digest_open_sha1(digest_t *digest) {
+	return digest_open(digest, GCRY_MD_SHA1);
+}
+
+void digest_close(digest_t *digest) {
+}
+
+bool digest_create(digest_t *digest, const void *indata, size_t inlen, void *outdata) {
+	gcry_md_hash_buffer(digest->algo, outdata, indata, inlen);
+	return true;
+}
+
+bool digest_verify(digest_t *digest, const void *indata, size_t inlen, const void *cmpdata) {
+	char outdata[digest->len];
+
+	gcry_md_hash_buffer(digest->algo, outdata, indata, inlen);
+	return !memcmp(cmpdata, outdata, digest->len);
+}
+
+int digest_get_nid(const digest_t *digest) {
+	return digest->nid;
+}
+
+size_t digest_length(const digest_t *digest) {
+	return digest->len;
+}
+
+bool digest_active(const digest_t *digest) {
+	return digest->algo != GCRY_MD_NONE;
+}

src/gcrypt/digest.h

@@ -0,0 +1,43 @@
+/*
+    digest.h -- header file digest.c
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#ifndef __TINC_DIGEST_H__
+#define __TINC_DIGEST_H__
+
+#include <gcrypt.h>
+
+typedef struct digest {
+	int algo;
+	int nid;
+	uint16_t len;
+} digest_t;
+
+static bool digest_open_by_name(struct digest *, const char *);
+static bool digest_open_by_nid(struct digest *, int);
+static bool digest_open_sha1(struct digest *);
+static void digest_close(struct digest *);
+static bool digest_create(struct digest *, const void *indata, size_t inlen, void *outdata);
+static bool digest_verify(struct digest *, const void *indata, size_t inlen, const void *digestdata);
+static int digest_get_nid(const struct digest *);
+static size_t digest_length(const struct digest *);
+static bool digest_active(const struct digest *);
+
+#endif

src/gcrypt/rsa.c

@@ -0,0 +1,294 @@
+/*
+    rsa.c -- RSA key handling
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#include "system.h"
+
+#include <gcrypt.h>
+
+#include "logger.h"
+#include "rsa.h"
+
+// Base64 encoding/decoding tables
+
+static const uint8_t b64d[128] = {
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0x3e, 0xff, 0xff, 0xff, 0x3f,
+  0x34, 0x35, 0x36, 0x37, 0x38, 0x39,
+  0x3a, 0x3b, 0x3c, 0x3d, 0xff, 0xff,
+  0xff, 0xff, 0xff, 0xff, 0xff, 0x00,
+  0x01, 0x02, 0x03, 0x04, 0x05, 0x06,
+  0x07, 0x08, 0x09, 0x0a, 0x0b, 0x0c,
+  0x0d, 0x0e, 0x0f, 0x10, 0x11, 0x12,
+  0x13, 0x14, 0x15, 0x16, 0x17, 0x18,
+  0x19, 0xff, 0xff, 0xff, 0xff, 0xff,
+  0xff, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e,
+  0x1f, 0x20, 0x21, 0x22, 0x23, 0x24,
+  0x25, 0x26, 0x27, 0x28, 0x29, 0x2a,
+  0x2b, 0x2c, 0x2d, 0x2e, 0x2f, 0x30,
+  0x31, 0x32, 0x33, 0xff, 0xff, 0xff,
+  0xff, 0xff
+};
+
+static const char b64e[64] = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/";
+
+// PEM encoding/decoding functions
+
+static bool pem_decode(FILE *fp, const char *header, uint8_t *buf, size_t size, size_t *outsize) {
+	bool decode = false;
+	char line[1024];
+	uint16_t word = 0;
+	int shift = 10;
+	size_t i, j = 0;
+
+	while(!feof(fp)) {
+		if(!fgets(line, sizeof line, fp))
+			return false;
+
+		if(!decode && !strncmp(line, "-----BEGIN ", 11)) {
+			if(!strncmp(line + 11, header, strlen(header)))
+				decode = true;
+			continue;
+		}
+
+		if(decode && !strncmp(line, "-----END", 8)) {
+			break;
+		}
+
+		if(!decode)
+			continue;
+
+		for(i = 0; line[i] >= ' '; i++) {
+			if(line[i] >= 128 || line[i] < 0 || b64d[(int)line[i]] == 0xff)
+				break;
+			word |= b64d[(int)line[i]] << shift;
+			shift -= 6;
+			if(shift <= 2) {
+				if(j > size) {
+					errno = ENOMEM;
+					return false;
+				}
+
+				buf[j++] = word >> 8;
+				word <<= 8;
+				shift += 8;
+			}
+		}
+	}
+
+	if(outsize)
+		*outsize = j;
+	return true;
+}
+
+
+// BER decoding functions
+
+static int ber_read_id(unsigned char **p, size_t *buflen) {
+	if(*buflen <= 0)
+		return -1;
+
+	if((**p & 0x1f) == 0x1f) {
+		int id = 0;
+		bool more;
+		while(*buflen > 0) {
+			id <<= 7;
+			id |= **p & 0x7f;
+			more = *(*p)++ & 0x80;
+			(*buflen)--;
+			if(!more)
+				break;
+		}
+		return id;
+	} else {
+		(*buflen)--;
+		return *(*p)++ & 0x1f;
+	}
+}
+
+static size_t ber_read_len(unsigned char **p, size_t *buflen) {
+	if(*buflen <= 0)
+		return -1;
+
+	if(**p & 0x80) {
+		size_t result = 0;
+		int len = *(*p)++ & 0x7f;
+		(*buflen)--;
+		if(len > *buflen)
+			return 0;
+
+		while(len--) {
+			result <<= 8;
+			result |= *(*p)++;
+			(*buflen)--;
+		}
+
+		return result;
+	} else {
+		(*buflen)--;
+		return *(*p)++;
+	}
+}
+	
+
+static bool ber_read_sequence(unsigned char **p, size_t *buflen, size_t *result) {
+	int tag = ber_read_id(p, buflen);
+	size_t len = ber_read_len(p, buflen);
+
+	if(tag == 0x10) {
+		if(result)
+			*result = len;
+		return true;
+	} else {
+		return false;
+	}
+}
+
+static bool ber_read_mpi(unsigned char **p, size_t *buflen, gcry_mpi_t *mpi) {
+	int tag = ber_read_id(p, buflen);
+	size_t len = ber_read_len(p, buflen);
+	gcry_error_t err = 0;
+
+	if(tag != 0x02 || len > *buflen)
+		return false;
+
+	if(mpi)
+		err = gcry_mpi_scan(mpi, GCRYMPI_FMT_USG, *p, len, NULL);
+	
+	*p += len;
+	*buflen -= len;
+
+	return mpi ? !err : true;
+}
+
+bool rsa_set_hex_public_key(rsa_t *rsa, char *n, char *e) {
+	gcry_error_t err = 0;
+
+	err = gcry_mpi_scan(&rsa->n, GCRY_FMT_HEX, n, 0, NULL)
+		?: gcry_mpi_scan(&rsa->e, GCRY_FMT_HEX, n, 0, NULL);
+
+	if(err) {
+		logger(LOG_ERR, _("Error while reading RSA public key: %s"), gcry_strerror(errno));
+		return false;
+	}
+}
+
+bool rsa_set_hex_private_key(rsa_t *rsa, char *n, char *e, char *d) {
+	gcry_error_t err = 0;
+
+	err = gcry_mpi_scan(&rsa->n, GCRY_FMT_HEX, n, 0, NULL)
+		?: gcry_mpi_scan(&rsa->e, GCRY_FMT_HEX, n, 0, NULL)
+		?: gcry_mpi_scan(&rsa->d, GCRY_FMT_HEX, n, 0, NULL);
+
+	if(err) {
+		logger(LOG_ERR, _("Error while reading RSA public key: %s"), gcry_strerror(errno));
+		return false;
+	}
+}
+
+// Read PEM RSA keys
+
+bool read_pem_rsa_public_key(rsa_t *rsa, FILE *fp) {
+	uint8_t derbuf[8096], *derp = derbuf;
+	size_t derlen;
+
+	if(!pem_decode(fp, "RSA PUBLIC KEY", derbuf, sizeof derbuf, &derlen)) {
+		logger(LOG_ERR, _("Unable to read RSA public key: %s"), strerror(errno));
+		return NULL;
+	}
+
+	if(!ber_read_sequence(&derp, &derlen, NULL)
+			|| !ber_read_mpi(&derp, &derlen, &rsa->n)
+			|| !ber_read_mpi(&derp, &derlen, &rsa->e)
+			|| derlen) {
+		logger(LOG_ERR, _("Error while decoding RSA public key"));
+		return NULL;
+	}
+
+	return true;
+}
+
+bool read_pem_rsa_private_key(rsa_t *rsa, FILE *fp) {
+	uint8_t derbuf[8096], *derp = derbuf;
+	size_t derlen;
+
+	if(!pem_decode(fp, "RSA PRIVATE KEY", derbuf, sizeof derbuf, &derlen)) {
+		logger(LOG_ERR, _("Unable to read RSA private key: %s"), strerror(errno));
+		return NULL;
+	}
+
+	if(!ber_read_sequence(&derp, &derlen, NULL)
+			|| !ber_read_mpi(&derp, &derlen, NULL)
+			|| !ber_read_mpi(&derp, &derlen, &rsa->n)
+			|| !ber_read_mpi(&derp, &derlen, &rsa->e)
+			|| !ber_read_mpi(&derp, &derlen, &rsa->d)
+			|| !ber_read_mpi(&derp, &derlen, NULL) // p
+			|| !ber_read_mpi(&derp, &derlen, NULL) // q
+			|| !ber_read_mpi(&derp, &derlen, NULL)
+			|| !ber_read_mpi(&derp, &derlen, NULL)
+			|| !ber_read_mpi(&derp, &derlen, NULL) // u
+			|| derlen) {
+		logger(LOG_ERR, _("Error while decoding RSA private key"));
+		return NULL;
+	}
+
+	return true;
+}
+
+size_t rsa_size(rsa_t *rsa) {
+	return (gcry_mpi_get_nbits(rsa->n) + 7) / 8;
+}
+
+/* Well, libgcrypt has functions to handle RSA keys, but they suck.
+ * So we just use libgcrypt's mpi functions, and do the math ourselves.
+ */
+
+// TODO: get rid of this macro, properly clean up gcry_ structures after use
+#define check(foo) { gcry_error_t err = (foo); if(err) {logger(LOG_ERR, "gcrypt error %s/%s at %s:%d\n", gcry_strsource(err), gcry_strerror(err), __FILE__, __LINE__); return false; }}
+
+bool rsa_public_encrypt(rsa_t *rsa, void *in, size_t len, void *out) {
+	gcry_mpi_t inmpi;
+	check(gcry_mpi_scan(&inmpi, GCRYMPI_FMT_USG, in, len, NULL));
+
+	gcry_mpi_t outmpi = gcry_mpi_new(len * 8);
+	gcry_mpi_powm(outmpi, inmpi, rsa->e, rsa->n);
+
+	check(gcry_mpi_print(GCRYMPI_FMT_USG, out,len, NULL, outmpi));
+
+	return true;
+}
+
+bool rsa_public_decrypt(rsa_t *rsa, void *in, size_t len, void *out) {
+	gcry_mpi_t inmpi;
+	check(gcry_mpi_scan(&inmpi, GCRYMPI_FMT_USG, in, len, NULL));
+
+	gcry_mpi_t outmpi = gcry_mpi_new(len * 8);
+	gcry_mpi_powm(outmpi, inmpi, rsa->d, rsa->n);
+
+	check(gcry_mpi_print(GCRYMPI_FMT_USG, out,len, NULL, outmpi));
+
+	return true;
+}

src/gcrypt/rsa.h

@@ -0,0 +1,41 @@
+/*
+    rsa.h -- RSA key handling
+    Copyright (C) 2007 Guus Sliepen <guus@tinc-vpn.org>
+
+    This program is free software; you can redistribute it and/or modify
+    it under the terms of the GNU General Public License as published by
+    the Free Software Foundation; either version 2 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU General Public License for more details.
+
+    You should have received a copy of the GNU General Public License
+    along with this program; if not, write to the Free Software
+    Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+
+    $Id$
+*/
+
+#ifndef __TINC_RSA_H__
+#define __TINC_RSA_H__
+
+#include <gcrypt.h>
+
+typedef struct rsa {
+	gcry_mpi_t n;
+	gcry_mpi_t e;
+	gcry_mpi_t d;
+} rsa_t;
+
+extern bool rsa_set_hex_public_key(rsa_t *rsa, char *n, char *e);
+extern bool rsa_set_hex_private_key(rsa_t *rsa, char *n, char *e, char *d);
+extern bool rsa_read_pem_public_key(rsa_t *rsa, FILE *fp);
+extern bool rsa_read_pem_private_key(rsa_t *rsa, FILE *fp);
+extern size_t rsa_size(rsa_t *rsa);
+extern bool rsa_public_encrypt(rsa_t *rsa, void *in, size_t len, void *out);
+extern bool rsa_private_decrypt(rsa_t *rsa, void *in, size_t len, void *out);
+
+#endif