-/* $OpenBSD: ssh-ed25519.c,v 1.19 2022/10/28 00:44:44 djm Exp $ */
+/* $OpenBSD: ssh-ed25519.c,v 1.20 2025/07/24 06:12:08 djm Exp $ */
/*
* Copyright (c) 2013 Markus Friedl <markus@openbsd.org>
*
const char *alg, const char *sk_provider, const char *sk_pin, u_int compat)
{
u_char *sig = NULL;
- size_t slen = 0, len;
+ size_t slen = 0;
unsigned long long smlen;
int r, ret;
- struct sshbuf *b = NULL;
if (lenp != NULL)
*lenp = 0;
r = SSH_ERR_INVALID_ARGUMENT; /* XXX better error? */
goto out;
}
+ if ((r = ssh_ed25519_encode_store_sig(sig, smlen - datalen,
+ sigp, lenp)) != 0)
+ goto out;
+
+ /* success */
+ r = 0;
+ out:
+ freezero(sig, slen);
+ return r;
+}
+
+int
+ssh_ed25519_encode_store_sig(const u_char *sig, size_t slen,
+ u_char **sigp, size_t *lenp)
+{
+ struct sshbuf *b = NULL;
+ int r = -1;
+ size_t len;
+
+ if (lenp != NULL)
+ *lenp = 0;
+ if (sigp != NULL)
+ *sigp = NULL;
+
+ if (slen != crypto_sign_ed25519_BYTES)
+ return SSH_ERR_INVALID_ARGUMENT;
+
/* encode signature */
if ((b = sshbuf_new()) == NULL) {
r = SSH_ERR_ALLOC_FAIL;
goto out;
}
if ((r = sshbuf_put_cstring(b, "ssh-ed25519")) != 0 ||
- (r = sshbuf_put_string(b, sig, smlen - datalen)) != 0)
+ (r = sshbuf_put_string(b, sig, slen)) != 0)
goto out;
len = sshbuf_len(b);
if (sigp != NULL) {
r = 0;
out:
sshbuf_free(b);
- if (sig != NULL)
- freezero(sig, slen);
-
return r;
}
-/* $OpenBSD: sshkey.h,v 1.68 2025/07/24 05:44:55 djm Exp $ */
+/* $OpenBSD: sshkey.h,v 1.69 2025/07/24 06:12:08 djm Exp $ */
/*
* Copyright (c) 2000, 2001 Markus Friedl. All rights reserved.
u_char **, size_t *);
int ssh_ecdsa_encode_store_sig(const struct sshkey *,
const BIGNUM *, const BIGNUM *, u_char **, size_t *);
+int ssh_ed25519_encode_store_sig(const u_char *, size_t,
+ u_char **, size_t *);
/* XXX should be internal, but used by ssh-keygen */
int ssh_rsa_complete_crt_parameters(const BIGNUM *, const BIGNUM *,
const BIGNUM *, const BIGNUM *, BIGNUM **, BIGNUM **);
projects / thirdparty / openssh-portable.git / commitdiff
