Home Explore Help
Sign In
c
/
libtom.libtomcrypt
mirror of https://github.com/libtom/libtomcrypt.git
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Add "Enter passphrase" support to `openssh-privkey`

Signed-off-by: Steffen Jaeckel <[email protected]>
Steffen Jaeckel 2 years ago
parent
9333d5c8a1
commit
934abdd82f
1 changed files with 66 additions and 7 deletions
Split View Show Diff Stats
  1. 66 7
      demos/openssh-privkey.c

+ 66 - 7
demos/openssh-privkey.c
View File 

@@ -8,38 +8,96 @@
 
 
 #include <tomcrypt.h>
 
 #include <stdarg.h>
 
-
 
-static int verbose = 0;
 
+#include <termios.h>
 
 
 #if defined(LTC_PEM_SSH)
 
 static void print_err(const char *fmt, ...)
 
 {
 
    va_list args;
 
 
-   if (!verbose) return;
 
-
 
    va_start(args, fmt);
 
    vfprintf(stderr, fmt, args);
 
+   va_end(args);
 
 }
 
 
 static void die_(int err, int line)
 
 {
 
-   verbose = 1;
 
    print_err("%3d: LTC sez %s\n", line, error_to_string(err));
 
    exit(EXIT_FAILURE);
 
 }
 
 
 #define die(i) do { die_(i, __LINE__); } while(0)
 
-#define DIE(s, ...) do { verbose = 1; print_err("%3d: " s "\n", __LINE__, ##__VA_ARGS__); exit(EXIT_FAILURE); } while(0)
 
+#define DIE(s, ...) do { print_err("%3d: " s "\n", __LINE__, ##__VA_ARGS__); exit(EXIT_FAILURE); } while(0)
 
+
 
+static char* getpassword(const char *prompt, size_t maxlen)
 
+{
 
+   char *wr, *end, *pass = XCALLOC(1, maxlen + 1);
 
+   struct termios tio;
 
+   tcflag_t c_lflag;
 
+   if (pass == NULL)
 
+      return NULL;
 
+   wr = pass;
 
+   end = pass + maxlen;
 
+
 
+   tcgetattr(0, &tio);
 
+   c_lflag = tio.c_lflag;
 
+   tio.c_lflag &= ~ECHO;
 
+   tcsetattr(0, TCSANOW, &tio);
 
+
 
+   printf("%s", prompt);
 
+   fflush(stdout);
 
+   while (pass < end) {
 
+      int c = getchar();
 
+      if (c == '\r' || c == '\n' || c == -1)
 
+         break;
 
+      *wr++ = c;
 
+   }
 
+   tio.c_lflag = c_lflag;
 
+   tcsetattr(0, TCSAFLUSH, &tio);
 
+   printf("\n");
 
+   return pass;
 
+}
 
 
 static int password_get(void **p, unsigned long *l, void *u)
 
 {
 
    (void)u;
 
-   *p = strdup("abc123");
 
+   *p = getpassword("Enter passphrase: ", 256);
 
    *l = strlen(*p);
 
    return 0;
 
 }
 
 
+static void print(ltc_pka_key *k)
 
+{
 
+   int err = CRYPT_OK;
 
+   unsigned char buf[256];
 
+   unsigned long lbuf = sizeof(buf);
 
+   char pubkey[256*4/3];
 
+   unsigned long lpubkey = sizeof(pubkey);
 
+   void *mpint = NULL;
 
+   switch (k->id) {
 
+      case LTC_PKA_ED25519:
 
+         ltc_mp.init(&mpint);
 
+         ltc_mp.unsigned_read(mpint, k->u.ed25519.pub, sizeof(k->u.ed25519.pub));
 
+         if ((err = ssh_encode_sequence_multi(buf, &lbuf,
 
+                                              LTC_SSHDATA_STRING, "ssh-ed25519", strlen("ssh-ed25519"),
 
+                                              LTC_SSHDATA_MPINT, mpint,
 
+                                              0, NULL)) != CRYPT_OK)
 
+            goto errout;
 
+         if ((err = base64_encode(buf, lbuf, pubkey, &lpubkey)) != CRYPT_OK)
 
+            goto errout;
 
+         printf("\rssh-ed25519 %s\n", pubkey);
 
+         break;
 
+      default:
 
+         print_err("Unsupported key type: %d\n", k->id);
 
+         break;
 
+   }
 
+errout:
 
+   if (mpint != NULL)
 
+      ltc_mp.deinit(mpint);
 
+   if (err != CRYPT_OK)
 
+      die(err);
 
+}
 
+
 
 int main(int argc, char **argv)
 
 {
 
    int err;
 
@@ -65,6 +123,7 @@ int main(int argc, char **argv)
 
    if ((err = pem_decode_openssh_filehandle(f, &k, &pw_ctx))) {
 
       die(err);
 
    }
 
+   print(&k);
 
    return EXIT_SUCCESS;
 
 }
 
 #else