tor/src/common/crypto.h

/* Copyright 2001,2002 Roger Dingledine, Matej Pfajfar. */
/* See LICENSE for licensing information */
/* $Id$ */

#ifndef __CRYPTO_H
#define __CRYPTO_H

#include <stdio.h>
#include <openssl/rsa.h>
#include <openssl/dh.h>

/* available encryption primitives */
#define CRYPTO_CIPHER_IDENTITY 0
#define CRYPTO_CIPHER_DES 1
#define CRYPTO_CIPHER_RC4 2
#define CRYPTO_CIPHER_3DES 3
#define CRYPTO_CIPHER_AES_CTR 4

#define CRYPTO_PK_RSA 0

typedef struct crypto_pk_env_t crypto_pk_env_t;
typedef struct crypto_cipher_env_t crypto_cipher_env_t;

/* global state */
int crypto_global_init();
int crypto_global_cleanup();

/* environment setup */
crypto_pk_env_t *crypto_new_pk_env(int type);
void crypto_free_pk_env(crypto_pk_env_t *env);

crypto_cipher_env_t *crypto_new_cipher_env(int type);
void crypto_free_cipher_env(crypto_cipher_env_t *env);

/* public key crypto */
int crypto_pk_generate_key(crypto_pk_env_t *env);

int crypto_pk_read_private_key_from_file(crypto_pk_env_t *env, FILE *src);
int crypto_pk_read_public_key_from_file(crypto_pk_env_t *env, FILE *src);
int crypto_pk_write_public_key_to_string(crypto_pk_env_t *env, char **dest, int *len);
int crypto_pk_read_public_key_from_string(crypto_pk_env_t *env, char *src, int len);
int crypto_pk_write_private_key_to_file(crypto_pk_env_t *env, FILE *dest);
int crypto_pk_write_public_key_to_file(crypto_pk_env_t *env, FILE *dest);
int crypto_pk_check_key(crypto_pk_env_t *env);
int crypto_pk_read_private_key_from_filename(crypto_pk_env_t *env, const char *keyfile);

int crypto_pk_set_key(crypto_pk_env_t *env, unsigned char *key);
int crypto_pk_cmp_keys(crypto_pk_env_t *a, crypto_pk_env_t *b);
crypto_pk_env_t *crypto_pk_dup_key(crypto_pk_env_t *orig);
int crypto_pk_keysize(crypto_pk_env_t *env);

int crypto_pk_public_encrypt(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to, int padding);
int crypto_pk_private_decrypt(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to, int padding);
int crypto_pk_private_sign(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to);
int crypto_pk_public_checksig(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to);
#define FINGERPRINT_LEN 49
int crypto_pk_get_fingerprint(crypto_pk_env_t *pk, char *fp_out);

int base64_encode(char *dest, int destlen, char *src, int srclen);
int base64_decode(char *dest, int destlen, char *src, int srclen);

/* Key negotiation */
typedef struct crypto_dh_env_st {
  DH *dh;
} crypto_dh_env_t;

/* #define CRYPTO_DH_SIZE (1536 / 8) */
#define CRYPTO_DH_SIZE (1024 / 8)
crypto_dh_env_t *crypto_dh_new();
int crypto_dh_get_bytes(crypto_dh_env_t *dh);
int crypto_dh_get_public(crypto_dh_env_t *dh, char *pubkey_out, 
			 int pubkey_out_len);
int crypto_dh_compute_secret(crypto_dh_env_t *dh, 
			     char *pubkey, int pubkey_len,
			     char *secret_out, int secret_out_len);
void crypto_dh_free(crypto_dh_env_t *dh);

/* symmetric crypto */
int crypto_cipher_generate_key(crypto_cipher_env_t *env);
int crypto_cipher_set_iv(crypto_cipher_env_t *env, unsigned char *iv);
int crypto_cipher_set_key(crypto_cipher_env_t *env, unsigned char *key);
int crypto_cipher_encrypt_init_cipher(crypto_cipher_env_t *env);
int crypto_cipher_decrypt_init_cipher(crypto_cipher_env_t *env);
unsigned char *crypto_cipher_get_key(crypto_cipher_env_t *env);

int crypto_cipher_encrypt(crypto_cipher_env_t *env, unsigned char *from, unsigned int fromlen, unsigned char *to);
int crypto_cipher_decrypt(crypto_cipher_env_t *env, unsigned char *from, unsigned int fromlen, unsigned char *to);

/* only implemented for CRYPTO_CIPHER_AES_CTR */
int crypto_cipher_advance(crypto_cipher_env_t *env, long delta);

/* convenience function: wraps crypto_create_crypto_env, set_key, set_iv, and init. */
crypto_cipher_env_t *crypto_create_init_cipher(int cipher_type, char *key, char *iv, int encrypt_mode);

/* SHA-1 */
int crypto_SHA_digest(unsigned char *m, int len, unsigned char *digest);

/* random numbers */
int crypto_seed_rng();
int crypto_rand(unsigned int n, unsigned char *to);
int crypto_pseudo_rand(unsigned int n, unsigned char *to);

#define CRYPTO_PSEUDO_RAND_INT(v) crypto_pseudo_rand(sizeof(v),(char*)&(v))

/* errors */
char *crypto_perror();
#endif
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`/* Copyright 2001,2002 Roger Dingledine, Matej Pfajfar. */`
			`/* See LICENSE for licensing information */`
			`/* $Id$ */`

			`#ifndef __CRYPTO_H`
			`#define __CRYPTO_H`

Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76 2002-08-22 09:30:03 +02:00			`#include <stdio.h>`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`#include <openssl/rsa.h>`
Add initial interfaces and code for TLS support. Interfaces are right; code needs work and testing. svn:r424 2003-09-04 18:05:08 +02:00			`#include <openssl/dh.h>`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
			`/* available encryption primitives */`
			`#define CRYPTO_CIPHER_IDENTITY 0`
			`#define CRYPTO_CIPHER_DES 1`
			`#define CRYPTO_CIPHER_RC4 2`
Refactor block ciphers; add 3des svn:r196 2003-03-19 21:41:15 +01:00			`#define CRYPTO_CIPHER_3DES 3`
Add AES counter-mode support to the crypt library svn:r362 2003-06-30 21:18:32 +02:00			`#define CRYPTO_CIPHER_AES_CTR 4`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
			`#define CRYPTO_PK_RSA 0`

Make crypto structures private to crypto.c svn:r437 2003-09-10 02:47:24 +02:00			`typedef struct crypto_pk_env_t crypto_pk_env_t;`
			`typedef struct crypto_cipher_env_t crypto_cipher_env_t;`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
			`/* global state */`
			`int crypto_global_init();`
			`int crypto_global_cleanup();`

			`/* environment setup */`
			`crypto_pk_env_t *crypto_new_pk_env(int type);`
			`void crypto_free_pk_env(crypto_pk_env_t *env);`

			`crypto_cipher_env_t *crypto_new_cipher_env(int type);`
			`void crypto_free_cipher_env(crypto_cipher_env_t *env);`

			`/* public key crypto */`
			`int crypto_pk_generate_key(crypto_pk_env_t *env);`

laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110 2002-09-24 12:43:57 +02:00			`int crypto_pk_read_private_key_from_file(crypto_pk_env_t env, FILE src);`
			`int crypto_pk_read_public_key_from_file(crypto_pk_env_t env, FILE src);`
			`int crypto_pk_write_public_key_to_string(crypto_pk_env_t env, char dest, int len);`
			`int crypto_pk_read_public_key_from_string(crypto_pk_env_t env, char src, int len);`
			`int crypto_pk_write_private_key_to_file(crypto_pk_env_t env, FILE dest);`
			`int crypto_pk_write_public_key_to_file(crypto_pk_env_t env, FILE dest);`
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74 2002-07-25 10:17:22 +02:00			`int crypto_pk_check_key(crypto_pk_env_t *env);`
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483 2003-09-25 07:17:11 +02:00			`int crypto_pk_read_private_key_from_filename(crypto_pk_env_t env, const char keyfile);`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
			`int crypto_pk_set_key(crypto_pk_env_t env, unsigned char key);`
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76 2002-08-22 09:30:03 +02:00			`int crypto_pk_cmp_keys(crypto_pk_env_t a, crypto_pk_env_t b);`
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110 2002-09-24 12:43:57 +02:00			`crypto_pk_env_t crypto_pk_dup_key(crypto_pk_env_t orig);`
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76 2002-08-22 09:30:03 +02:00			`int crypto_pk_keysize(crypto_pk_env_t *env);`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74 2002-07-25 10:17:22 +02:00			`int crypto_pk_public_encrypt(crypto_pk_env_t env, unsigned char from, int fromlen, unsigned char *to, int padding);`
			`int crypto_pk_private_decrypt(crypto_pk_env_t env, unsigned char from, int fromlen, unsigned char *to, int padding);`
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268 2003-05-07 04:13:23 +02:00			`int crypto_pk_private_sign(crypto_pk_env_t env, unsigned char from, int fromlen, unsigned char *to);`
Tested backends for directory signing and checking. Directory parser completely refactored. Need documentation and integration. Explanitory mail forthcoming. svn:r271 2003-05-07 20:30:46 +02:00			`int crypto_pk_public_checksig(crypto_pk_env_t env, unsigned char from, int fromlen, unsigned char *to);`
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483 2003-09-25 07:17:11 +02:00			`#define FINGERPRINT_LEN 49`
			`int crypto_pk_get_fingerprint(crypto_pk_env_t pk, char fp_out);`
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268 2003-05-07 04:13:23 +02:00
			`int base64_encode(char dest, int destlen, char src, int srclen);`
			`int base64_decode(char dest, int destlen, char src, int srclen);`
Basic diffie-helman wrappers with fixed modulus and tests svn:r257 2003-05-01 02:53:46 +02:00
			`/* Key negotiation */`
Add initial interfaces and code for TLS support. Interfaces are right; code needs work and testing. svn:r424 2003-09-04 18:05:08 +02:00			`typedef struct crypto_dh_env_st {`
			`DH *dh;`
			`} crypto_dh_env_t;`

Decrease DH group length to 1024. (Roger, you may want to read section 1 of the IETF draft: a 1024-bit DH key probably reduces our cipher strength to ~80 bits.) svn:r269 2003-05-07 04:28:42 +02:00			`/* #define CRYPTO_DH_SIZE (1536 / 8) */`
			`#define CRYPTO_DH_SIZE (1024 / 8)`
Basic diffie-helman wrappers with fixed modulus and tests svn:r257 2003-05-01 02:53:46 +02:00			`crypto_dh_env_t *crypto_dh_new();`
			`int crypto_dh_get_bytes(crypto_dh_env_t *dh);`
			`int crypto_dh_get_public(crypto_dh_env_t dh, char pubkey_out,`
			`int pubkey_out_len);`
			`int crypto_dh_compute_secret(crypto_dh_env_t *dh,`
			`char *pubkey, int pubkey_len,`
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy \|\| [0]) \|\| SHA1(g^xy \|\| [1]) \|\| ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370 2003-07-30 21:10:20 +02:00			`char *secret_out, int secret_out_len);`
Basic diffie-helman wrappers with fixed modulus and tests svn:r257 2003-05-01 02:53:46 +02:00			`void crypto_dh_free(crypto_dh_env_t *dh);`

Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`/* symmetric crypto */`
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76 2002-08-22 09:30:03 +02:00			`int crypto_cipher_generate_key(crypto_cipher_env_t *env);`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`int crypto_cipher_set_iv(crypto_cipher_env_t env, unsigned char iv);`
			`int crypto_cipher_set_key(crypto_cipher_env_t env, unsigned char key);`
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74 2002-07-25 10:17:22 +02:00			`int crypto_cipher_encrypt_init_cipher(crypto_cipher_env_t *env);`
			`int crypto_cipher_decrypt_init_cipher(crypto_cipher_env_t *env);`
Make crypto structures private to crypto.c svn:r437 2003-09-10 02:47:24 +02:00			`unsigned char crypto_cipher_get_key(crypto_cipher_env_t env);`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
			`int crypto_cipher_encrypt(crypto_cipher_env_t env, unsigned char from, unsigned int fromlen, unsigned char *to);`
			`int crypto_cipher_decrypt(crypto_cipher_env_t env, unsigned char from, unsigned int fromlen, unsigned char *to);`

Add AES counter-mode support to the crypt library svn:r362 2003-06-30 21:18:32 +02:00			`/* only implemented for CRYPTO_CIPHER_AES_CTR */`
			`int crypto_cipher_advance(crypto_cipher_env_t *env, long delta);`

Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131 2002-10-02 22:39:51 +02:00			`/* convenience function: wraps crypto_create_crypto_env, set_key, set_iv, and init. */`
			`crypto_cipher_env_t crypto_create_init_cipher(int cipher_type, char key, char *iv, int encrypt_mode);`

Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`/* SHA-1 */`
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74 2002-07-25 10:17:22 +02:00			`int crypto_SHA_digest(unsigned char m, int len, unsigned char digest);`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00
			`/* random numbers */`
Add RNG seeding svn:r318 2003-06-13 23:13:37 +02:00			`int crypto_seed_rng();`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`int crypto_rand(unsigned int n, unsigned char *to);`
			`int crypto_pseudo_rand(unsigned int n, unsigned char *to);`

Choose correct abstraction for topic_foo. Abstract random-integer code svn:r249 2003-04-17 19:10:41 +02:00			`#define CRYPTO_PSEUDO_RAND_INT(v) crypto_pseudo_rand(sizeof(v),(char*)&(v))`

Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74 2002-07-25 10:17:22 +02:00			`/* errors */`
			`char *crypto_perror();`
Beginnings of a crypto abstraction layer. svn:r73 2002-07-24 16:02:39 +02:00			`#endif`