linux - Contrib clone of linux

Age	Commit message (Expand)	Author
2019-01-03	Remove 'type' argument from access_ok() function	Linus Torvalds
2018-06-12	alpha: Remove custom dec_and_lock() implementation	Sebastian Andrzej Siewior
2018-01-16	alpha: extend memset16 to EV6 optimised routines	Michael Cree
2017-11-02	License cleanup: add SPDX GPL-2.0 license identifier to files with no license	Greg Kroah-Hartman
2017-09-08	alpha: add support for memset16	Matthew Wilcox
2017-08-29	alpha: Fix typo in ev6-copy_user.S	Richard Henderson
2017-08-29	alpha: Package string routines together	Richard Henderson
2017-05-10	Merge tag 'kbuild-v4.12' of git://git.kernel.org/pub/scm/linux/kernel/git/mas...	Linus Torvalds
2017-05-03	alpha: make short build log available for division routines	Masahiro Yamada
2017-05-03	alpha: merge build rules of division routines	Masahiro Yamada
2017-05-03	alpha: add $(src)/ rather than $(obj)/ to make source file path	Masahiro Yamada
2017-03-28	alpha: add a helper for emitting exception table entries	Al Viro
2017-03-28	alpha: switch __copy_user() and __do_clean_user() to normal calling conventions	Al Viro
2016-12-24	Replace <asm/uaccess.h> with <linux/uaccess.h> globally	Linus Torvalds
2016-10-14	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/vir...	Linus Torvalds
2016-09-15	alpha: get rid of tail-zeroing in __copy_user()	Al Viro
2016-08-07	alpha: move exports to actual definitions	Al Viro
2016-03-13	ipv4: Update parameters for csum_tcpudp_magic to their original types	Alexander Duyck
2015-09-17	alpha: lib: export __delay	Sudip Mukherjee
2014-01-31	alpha: fix broken network checksum	Mikulas Patocka
2013-11-16	alpha: Prevent a NULL ptr dereference in csum_partial_copy.	Jay Estabrook
2013-11-16	alpha: Eliminate compiler warning from memset macro	Richard Henderson
2013-09-11	kernel-wide: fix missing validations on __get/__put/__copy_to/__copy_from_user()	Mathieu Desnoyers
2012-08-19	alpha: Use new generic strncpy_from_user() and strnlen_user()	Michael Cree
2012-03-28	Disintegrate asm/system.h for Alpha	David Howells
2011-07-26	atomic: use <linux/atomic.h>	Arun Sharma
2011-03-31	Fix common misspellings	Lucas De Marchi
2011-01-17	alpha: change to new Makefile flag variables	matt mooney
2008-01-28	remove __attribute_used__	Adrian Bunk
2007-12-17	alpha: strncpy/strncat fixes	Ivan Kokshaysky
2007-10-20	spelling fixes: arch/alpha/	Simon Arlott
2007-10-19	remove asm/bitops.h includes	Jiri Slaby
2007-10-14	kbuild: enable 'make CFLAGS=...' to add additional options to CC	Sam Ravnborg
2007-07-17	missing exports of csum_...	Al Viro
2007-06-24	alpha: fix alignment problem in csum_ipv6_magic()	Ivan Kokshaysky
2007-05-30	alpha: cleanup in bitops.h	Richard Henderson
2007-04-26	[STRING]: Move strcasecmp/strncasecmp to lib/string.c	David S. Miller
2006-12-02	[NET]: Alpha checksum annotations and cleanups.	Al Viro
2006-10-03	fix file specification in comments	Uwe Zeisberger
2006-06-30	Remove obsolete #include <linux/config.h>	Jörn Engel
2006-04-25	[PATCH] Alpha: strncpy() fix	Ivan Kokshaysky
2006-03-26	[PATCH] bitops: alpha: use config options instead of __alpha_fix__ and __alph...	Akinobu Mita
2005-09-09	kbuild: alpha,x86_64 use generic asm-offsets.h support	Sam Ravnborg
2005-04-16	Linux-2.6.12-rc2	Linus Torvalds

/* * Author: Tatu Ylonen <ylo@cs.hut.fi> * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland * All rights reserved * This file contains functions for reading and writing identity files, and * for reading the passphrase from the user. * * As far as I am concerned, the code I have written for this software * can be used freely for any purpose. Any derived versions of this * software must be clearly marked as such, and if the derived work is * incompatible with the protocol description in the RFC file, it must be * called by a name other than "ssh" or "Secure Shell". * * * Copyright (c) 2000 Markus Friedl. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ #include "includes.h" RCSID("$OpenBSD: authfile.c,v 1.43 2001/12/27 18:22:16 markus Exp $"); #include <openssl/err.h> #include <openssl/evp.h> #include <openssl/pem.h> #include "cipher.h" #include "xmalloc.h" #include "buffer.h" #include "bufaux.h" #include "key.h" #include "ssh.h" #include "log.h" #include "authfile.h" /* Version identification string for SSH v1 identity files. */ static const char authfile_id_string[] = "SSH PRIVATE KEY FILE FORMAT 1.1\n"; /* * Saves the authentication (private) key in a file, encrypting it with * passphrase. The identification of the file (lowest 64 bits of n) will * precede the key to provide identification of the key without needing a * passphrase. */ static int key_save_private_rsa1(Key *key, const char *filename, const char *passphrase, const char *comment) { Buffer buffer, encrypted; char buf[100], *cp; int fd, i; CipherContext ciphercontext; Cipher *cipher; u_int32_t rand; /* * If the passphrase is empty, use SSH_CIPHER_NONE to ease converting * to another cipher; otherwise use SSH_AUTHFILE_CIPHER. */ if (strcmp(passphrase, "") == 0) cipher = cipher_by_number(SSH_CIPHER_NONE); else cipher = cipher_by_number(SSH_AUTHFILE_CIPHER); if (cipher == NULL) fatal("save_private_key_rsa: bad cipher"); /* This buffer is used to built the secret part of the private key. */ buffer_init(&buffer); /* Put checkbytes for checking passphrase validity. */ rand = arc4random(); buf[0] = rand & 0xff; buf[1] = (rand >> 8) & 0xff; buf[2] = buf[0]; buf[3] = buf[1]; buffer_append(&buffer, buf, 4); /* * Store the private key (n and e will not be stored because they * will be stored in plain text, and storing them also in encrypted * format would just give known plaintext). */ buffer_put_bignum(&buffer, key->rsa->d); buffer_put_bignum(&buffer, key->rsa->iqmp); buffer_put_bignum(&buffer, key->rsa->q); /* reverse from SSL p */ buffer_put_bignum(&buffer, key->rsa->p); /* reverse from SSL q */ /* Pad the part to be encrypted until its size is a multiple of 8. */ while (buffer_len(&buffer) % 8 != 0) buffer_put_char(&buffer, 0); /* This buffer will be used to contain the data in the file. */ buffer_init(&encrypted); /* First store keyfile id string. */ for (i = 0; authfile_id_string[i]; i++) buffer_put_char(&encrypted, authfile_id_string[i]); buffer_put_char(&encrypted, 0); /* Store cipher type. */ buffer_put_char(&encrypted, cipher->number); buffer_put_int(&encrypted, 0); /* For future extension */ /* Store public key. This will be in plain text. */ buffer_put_int(&encrypted, BN_num_bits(key->rsa->n)); buffer_put_bignum(&encrypted, key->rsa->n); buffer_put_bignum(&encrypted, key->rsa->e); buffer_put_cstring(&encrypted, comment); /* Allocate space for the private part of the key in the buffer. */ cp = buffer_append_space(&encrypted, buffer_len(&buffer)); cipher_set_key_string(&ciphercontext, cipher, passphrase); cipher_encrypt(&ciphercontext, (u_char *) cp, (u_char *) buffer_ptr(&buffer), buffer_len(&buffer)); memset(&ciphercontext, 0, sizeof(ciphercontext)); /* Destroy temporary data. */ memset(buf, 0, sizeof(buf)); buffer_free(&buffer); fd = open(filename, O_WRONLY | O_CREAT | O_TRUNC, 0600); if (fd < 0) { error("open %s failed: %s.", filename, strerror(errno)); return 0; } if (write(fd, buffer_ptr(&encrypted), buffer_len(&encrypted)) != buffer_len(&encrypted)) { error("write to key file %s failed: %s", filename, strerror(errno)); buffer_free(&encrypted); close(fd); unlink(filename); return 0; } close(fd); buffer_free(&encrypted); return 1; } /* save SSH v2 key in OpenSSL PEM format */ static int key_save_private_pem(Key *key, const char *filename, const char *_passphrase, const char *comment) { FILE *fp; int fd; int success = 0; int len = strlen(_passphrase); char *passphrase = (len > 0) ? (char *)_passphrase : NULL; EVP_CIPHER *cipher = (len > 0) ? EVP_des_ede3_cbc() : NULL; if (len > 0 && len <= 4) { error("passphrase too short: have %d bytes, need > 4", len); return 0; } fd = open(filename, O_WRONLY | O_CREAT | O_TRUNC, 0600); if (fd < 0) { error("open %s failed: %s.", filename, strerror(errno)); return 0; } fp = fdopen(fd, "w"); if (fp == NULL ) { error("fdopen %s failed: %s.", filename, strerror(errno)); close(fd); return 0; } switch (key->type) { case KEY_DSA: success = PEM_write_DSAPrivateKey(fp, key->dsa, cipher, passphrase, len, NULL, NULL); break; case KEY_RSA: success = PEM_write_RSAPrivateKey(fp, key->rsa, cipher, passphrase, len, NULL, NULL); break; } fclose(fp); return success; } int key_save_private(Key *key, const char *filename