Главная Обзор Помощь
Вход
c
/
libtom.libtomcrypt
зеркало из https://github.com/libtom/libtomcrypt.git
2
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 0.98
Ветки Метки
libtom.libtomcr...
/
dsa_verify_key.c

dsa_verify_key.c 2.3 KB
Постоянная ссылка История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 
  1. /* LibTomCrypt, modular cryptographic library -- Tom St Denis
    2. 

  2.  *
    3. 

  3.  * LibTomCrypt is a library that provides various cryptographic
    4. 

  4.  * algorithms in a highly modular and flexible manner.
    5. 

  5.  *
    6. 

  6.  * The library is free for all purposes without any express
    7. 

  7.  * guarantee it works.
    8. 

  8.  *
    9. 

  9.  * Tom St Denis, [email protected], http://libtomcrypt.org
    10. 

  10.  */
    11. 

  11. #include "mycrypt.h"
    12. 

  12. 

  13. #ifdef MDSA
    14. 

  14. 

  15. int dsa_verify_key(dsa_key *key, int *stat)
    16. 

  16. {
    17. 

  17.    mp_int tmp, tmp2;
    18. 

  18.    int res, err;
    19. 

  19. 

  20.    _ARGCHK(key  != NULL);
    21. 

  21.    _ARGCHK(stat != NULL);
    22. 

  22. 

  23.    *stat = 0;
    24. 

  24. 

  25.    /* first make sure key->q and key->p are prime */
    26. 

  26.    if ((err = is_prime(&key->q, &res)) != CRYPT_OK) {
    27. 

  27.       return err;
    28. 

  28.    }
    29. 

  29.    if (res == 0) {
    30. 

  30.       return CRYPT_OK;
    31. 

  31.    }
    32. 

  32. 

  33. 

  34.    if ((err = is_prime(&key->p, &res)) != CRYPT_OK) {
    35. 

  35.       return err;
    36. 

  36.    }
    37. 

  37.    if (res == 0) {
    38. 

  38.       return CRYPT_OK;
    39. 

  39.    }
    40. 

  40. 

  41.    /* now make sure that g is not -1, 0 or 1 and <p */
    42. 

  42.    if (mp_cmp_d(&key->g, 0) == MP_EQ || mp_cmp_d(&key->g, 1) == MP_EQ) {
    43. 

  43.       return CRYPT_OK;
    44. 

  44.    }
    45. 

  45.    if ((err = mp_init_multi(&tmp, &tmp2, NULL)) != MP_OKAY)               { goto error; }
    46. 

  46.    if ((err = mp_sub_d(&key->p, 1, &tmp)) != MP_OKAY)                     { goto error; }
    47. 

  47.    if (mp_cmp(&tmp, &key->g) == MP_EQ || mp_cmp(&key->g, &key->p) != MP_LT) {
    48. 

  48.       err = CRYPT_OK;
    49. 

  49.       goto done;
    50. 

  50.    }
    51. 

  51. 

  52.    /* 1 < y < p-1 */
    53. 

  53.    if (!(mp_cmp_d(&key->y, 1) == MP_GT && mp_cmp(&key->y, &tmp) == MP_LT)) {
    54. 

  54.       err = CRYPT_OK;
    55. 

  55.       goto done;
    56. 

  56.    }
    57. 

  57. 

  58.    /* now we have to make sure that g^q = 1, and that p-1/q gives 0 remainder */
    59. 

  59.    if ((err = mp_div(&tmp, &key->q, &tmp, &tmp2)) != MP_OKAY)             { goto error; }
    60. 

  60.    if (mp_iszero(&tmp2) != MP_YES) {
    61. 

  61.       err = CRYPT_OK;
    62. 

  62.       goto done;
    63. 

  63.    }
    64. 

  64. 

  65.    if ((err = mp_exptmod(&key->g, &key->q, &key->p, &tmp)) != MP_OKAY)    { goto error; }
    66. 

  66.    if (mp_cmp_d(&tmp, 1) != MP_EQ) {
    67. 

  67.       err = CRYPT_OK;
    68. 

  68.       goto done;
    69. 

  69.    }
    70. 

  70. 

  71.    /* now we have to make sure that y^q = 1, this makes sure y \in g^x mod p */
    72. 

  72.    if ((err = mp_exptmod(&key->y, &key->q, &key->p, &tmp)) != MP_OKAY)       { goto error; }
    73. 

  73.    if (mp_cmp_d(&tmp, 1) != MP_EQ) {
    74. 

  74.       err = CRYPT_OK;
    75. 

  75.       goto done;
    76. 

  76.    }
    77. 

  77. 

  78.    /* at this point we are out of tests ;-( */
    79. 

  79.    err   = CRYPT_OK;
    80. 

  80.    *stat = 1;
    81. 

  81.    goto done;
    82. 

  82. error: err = mpi_to_ltc_error(err);
    83. 

  83. done : mp_clear_multi(&tmp, &tmp2, NULL);
    84. 

  84.    return err;
    85. 

  85. }
    86. 

  86. #endif
    87.