diff options
| author | Rob Austein <sra@hactrn.net> | 2017-04-07 17:41:30 -0400 |
|---|---|---|
| committer | Rob Austein <sra@hactrn.net> | 2017-04-07 17:41:30 -0400 |
| commit | a031d726ccdd358cec63a7892b3ce1e88b201313 (patch) | |
| tree | 2c05feeff6a78d684ffc364dde1ab76bd533d5d0 /rpc_pkey.c | |
| parent | d52a62ab76003fffd04dfaee686aa1956e7b56a7 (diff) | |
Pull key type information from uploaded key in hal_rpc_pkey_load().
Now that we use PKCS #8 format for private keys, all key formats we
use include ASN.1 AlgorithmIdentifier field describing the key, so
specifying key type and curve as arguments to hal_rpc_pkey_load() is
neither necessary nor particularly useful.
Diffstat (limited to 'rpc_pkey.c')
| -rw-r--r-- | rpc_pkey.c | 18 |
1 files changed, 7 insertions, 11 deletions
@@ -268,26 +268,27 @@ static inline hal_error_t ks_open_from_flags(hal_ks_t **ks, const hal_key_flags_ * return a key handle and the name. */ -#warning Convert hal_rpc_pkey_load() to use hal_asn1_guess_key_type()? - static hal_error_t pkey_local_load(const hal_client_handle_t client, const hal_session_handle_t session, hal_pkey_handle_t *pkey, - const hal_key_type_t type, - const hal_curve_name_t curve, hal_uuid_t *name, const uint8_t * const der, const size_t der_len, const hal_key_flags_t flags) { - assert(pkey != NULL && name != NULL); + assert(pkey != NULL && name != NULL && der != NULL); + hal_curve_name_t curve; hal_pkey_slot_t *slot; + hal_key_type_t type; hal_ks_t *ks = NULL; hal_error_t err; if ((err = check_writable(client, flags)) != HAL_OK) return err; + if ((err = hal_asn1_guess_key_type(&type, &curve, der, der_len)) != HAL_OK) + return err; + if ((slot = alloc_slot(flags)) == NULL) return HAL_ERROR_NO_KEY_SLOTS_AVAILABLE; @@ -1188,8 +1189,6 @@ static hal_error_t pkey_local_import(const hal_client_handle_t client, size_t der_len, oid_len, data_len; const uint8_t *oid, *data; hal_rsa_key_t *rsa = NULL; - hal_curve_name_t curve; - hal_key_type_t type; hal_ks_t *ks = NULL; hal_error_t err; @@ -1253,10 +1252,7 @@ static hal_error_t pkey_local_import(const hal_client_handle_t client, if ((err = hal_aes_keyunwrap(NULL, kek, sizeof(kek), data, data_len, der, &der_len)) != HAL_OK) goto fail; - if ((err = hal_asn1_guess_key_type(&type, &curve, der, der_len)) != HAL_OK) - goto fail; - - err = pkey_local_load(client, session, pkey, type, curve, name, der, der_len, flags); + err = pkey_local_load(client, session, pkey, name, der, der_len, flags); fail: memset(rsabuf, 0, sizeof(rsabuf)); |