nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-09-22 14:04:58 +02:00
Code Issues Packages Projects Releases Wiki Activity
c31f5505da
tor/src/common/crypto.c

1248 lines
28 KiB
C
Raw Normal View History

Update LICENSE and copyright dates. svn:r560
2003-10-08 04:04:08 +02:00
/* Copyright 2001,2002,2003 Roger Dingledine, Matej Pfajfar. */
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
/* See LICENSE for licensing information */
/* $Id$ */
Make OP work on windows! (Also misc logging tweaks) svn:r1258
2004-03-11 07:19:08 +01:00
#include "../or/or.h"
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
#include <string.h>
#include <openssl/err.h>
#include <openssl/rsa.h>
#include <openssl/pem.h>
#include <openssl/evp.h>
#include <openssl/rand.h>
Backport to OpenSSL version 0.9.5 svn:r91
2002-09-03 21:16:02 +02:00
#include <openssl/opensslv.h>
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
#include <openssl/bn.h>
#include <openssl/dh.h>
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
#include <stdlib.h>
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
#include <assert.h>
Tests for crypto; more tests for buffers svn:r234
2003-04-16 17:24:09 +02:00
#include <stdio.h>
Remove minor biasing problem from crypto_pseudo_rand_int svn:r799
2003-11-12 05:28:30 +01:00
#include <limits.h>
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
#include "crypto.h"
#include "log.h"
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
#include "aes.h"
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
Make OP work on windows! (Also misc logging tweaks) svn:r1258
2004-03-11 07:19:08 +01:00
#ifdef MS_WINDOWS
#include <wincrypt.h>
#endif
Backport to OpenSSL version 0.9.5 svn:r91
2002-09-03 21:16:02 +02:00
#if OPENSSL_VERSION_NUMBER < 0x00905000l
#error "We require openssl >= 0.9.5"
#elif OPENSSL_VERSION_NUMBER < 0x00906000l
#define OPENSSL_095
#endif
/*
* Certain functions that return a success code in OpenSSL 0.9.6 return void
* (and don't indicate errors) in OpenSSL version 0.9.5.
*
* [OpenSSL 0.9.5 matters, because it ships with Redhat 6.2.]
*/
#ifdef OPENSSL_095
#define RETURN_SSL_OUTCOME(exp) (exp); return 0
#else
#define RETURN_SSL_OUTCOME(exp) return !(exp)
#endif
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
struct crypto_pk_env_t
{
int type;
int refs; /* reference counting; so we don't have to copy keys */
unsigned char *key;
/* auxiliary data structure(s) used by the underlying crypto library */
unsigned char *aux;
};
struct crypto_cipher_env_t
{
int type;
unsigned char *key;
unsigned char *iv;
/* auxiliary data structure(s) used by the underlying crypto library */
unsigned char *aux;
};
Start of port to win32. Missing are: - signal support - forking for DNS farm - changes for async IO - daemonizing In other words, some files still don't build, and the ones that do build, do nonblocking IO incorrectly. I'm also not checking in the project files till I have a good place for them. svn:r380
2003-08-12 05:08:41 +02:00
/* static INLINE const EVP_CIPHER *
crypto_cipher_evp_cipher(int type, int enc);
*/
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
static INLINE int
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
crypto_cipher_iv_length(int type) {
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
/*
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
printf("%d -> %d IV\n",type,
EVP_CIPHER_iv_length(crypto_cipher_evp_cipher(type,0)));
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
*/
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
switch(type)
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
{
case CRYPTO_CIPHER_IDENTITY: return 0;
case CRYPTO_CIPHER_DES: return 8;
case CRYPTO_CIPHER_RC4: return 16;
case CRYPTO_CIPHER_3DES: return 8;
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
case CRYPTO_CIPHER_AES_CTR: return 0;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
default: assert(0); return -1;
}
}
Start of port to win32. Missing are: - signal support - forking for DNS farm - changes for async IO - daemonizing In other words, some files still don't build, and the ones that do build, do nonblocking IO incorrectly. I'm also not checking in the project files till I have a good place for them. svn:r380
2003-08-12 05:08:41 +02:00
static INLINE int
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
crypto_cipher_key_length(int type) {
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
/*
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
printf("%d -> %d\n",type,
EVP_CIPHER_key_length(crypto_cipher_evp_cipher(type,0)));
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
*/
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
switch(type)
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
{
case CRYPTO_CIPHER_IDENTITY: return 0;
case CRYPTO_CIPHER_DES: return 8;
case CRYPTO_CIPHER_RC4: return 16;
case CRYPTO_CIPHER_3DES: return 16;
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
case CRYPTO_CIPHER_AES_CTR: return 16;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
default: assert(0); return -1;
}
}
Start of port to win32. Missing are: - signal support - forking for DNS farm - changes for async IO - daemonizing In other words, some files still don't build, and the ones that do build, do nonblocking IO incorrectly. I'm also not checking in the project files till I have a good place for them. svn:r380
2003-08-12 05:08:41 +02:00
static INLINE const EVP_CIPHER *
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
crypto_cipher_evp_cipher(int type, int enc) {
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
switch(type)
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
{
case CRYPTO_CIPHER_IDENTITY: return EVP_enc_null();
case CRYPTO_CIPHER_DES: return EVP_des_ofb();
case CRYPTO_CIPHER_RC4: return EVP_rc4();
case CRYPTO_CIPHER_3DES: return EVP_des_ede_ofb();
default: return NULL;
}
}
Cipher lists need to be colon separated. Also make initialization more bulletproof svn:r459
2003-09-15 21:38:52 +02:00
static int _crypto_global_initialized = 0;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int crypto_global_init()
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Cipher lists need to be colon separated. Also make initialization more bulletproof svn:r459
2003-09-15 21:38:52 +02:00
if (!_crypto_global_initialized) {
ERR_load_crypto_strings();
_crypto_global_initialized = 1;
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
int crypto_global_cleanup()
{
ERR_free_strings();
return 0;
}
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
crypto_pk_env_t *_crypto_new_pk_env_rsa(RSA *rsa)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
crypto_pk_env_t *env;
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
assert(rsa);
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
env = (crypto_pk_env_t *)tor_malloc(sizeof(crypto_pk_env_t));
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
env->type = CRYPTO_PK_RSA;
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
env->refs = 1;
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
env->key = (unsigned char*)rsa;
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
env->aux = NULL;
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
return env;
}
RSA *_crypto_pk_env_get_rsa(crypto_pk_env_t *env)
{
if (env->type != CRYPTO_PK_RSA)
return NULL;
return (RSA*)env->key;
}
Simplify some code paths in TLS; cut down on memory leaks; use reasonable ciphers if not everyone has OpenSSL 0.9.7. svn:r442
2003-09-11 23:12:39 +02:00
EVP_PKEY *_crypto_pk_env_get_evp_pkey(crypto_pk_env_t *env)
{
RSA *key = NULL;
EVP_PKEY *pkey = NULL;
if (env->type != CRYPTO_PK_RSA)
return NULL;
assert(env->key);
if (!(key = RSAPrivateKey_dup((RSA*)env->key)))
goto error;
if (!(pkey = EVP_PKEY_new()))
goto error;
if (!(EVP_PKEY_assign_RSA(pkey, key)))
goto error;
return pkey;
error:
if (pkey)
EVP_PKEY_free(pkey);
if (key)
RSA_free(key);
return NULL;
}
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
crypto_pk_env_t *crypto_new_pk_env(int type)
{
RSA *rsa;
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
switch(type) {
case CRYPTO_PK_RSA:
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
rsa = RSA_new();
if (!rsa) return NULL;
return _crypto_new_pk_env_rsa(rsa);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return NULL;
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
}
void crypto_free_pk_env(crypto_pk_env_t *env)
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env);
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
if(--env->refs > 0)
return;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
if (env->key)
RSA_free((RSA *)env->key);
break;
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
break;
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
free(env);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
/* Create a new crypto_cipher_env_t for a given onion cipher type, key,
* iv, and encryption flag (1=encrypt, 0=decrypt). Return the crypto object
* on success; NULL on failure.
*/
crypto_cipher_env_t *
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
crypto_create_init_cipher(int cipher_type, char *key, char *iv, int encrypt_mode)
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
{
int r;
crypto_cipher_env_t *crypto = NULL;
if (! (crypto = crypto_new_cipher_env(cipher_type))) {
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN, "Unable to allocate crypto object");
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
return NULL;
}
if (crypto_cipher_set_key(crypto, key)) {
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN, "Unable to set key: %s", crypto_perror());
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
goto error;
}
if (crypto_cipher_set_iv(crypto, iv)) {
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN, "Unable to set iv: %s", crypto_perror());
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
goto error;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
if (encrypt_mode)
r = crypto_cipher_encrypt_init_cipher(crypto);
else
r = crypto_cipher_decrypt_init_cipher(crypto);
if (r) {
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN, "Unable to initialize cipher: %s", crypto_perror());
Add convenience functions to wrap create and init for symmetric ciphers; clean up error handling in onion.c svn:r131
2002-10-02 22:39:51 +02:00
goto error;
}
return crypto;
error:
if (crypto)
crypto_free_cipher_env(crypto);
return NULL;
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
crypto_cipher_env_t *crypto_new_cipher_env(int type)
{
crypto_cipher_env_t *env;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
int iv_len, key_len;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
env = (crypto_cipher_env_t *)tor_malloc(sizeof(crypto_cipher_env_t));
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
env->type = type;
env->key = NULL;
env->iv = NULL;
env->aux = NULL;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
iv_len = crypto_cipher_iv_length(type);
key_len = crypto_cipher_key_length(type);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
if (type == CRYPTO_CIPHER_AES_CTR) {
env->aux = (unsigned char *)aes_new_cipher();
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
} else if (! crypto_cipher_evp_cipher(type,0))
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
/* This is not an openssl cipher */
goto err;
else {
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
env->aux = (unsigned char *)tor_malloc(sizeof(EVP_CIPHER_CTX));
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
EVP_CIPHER_CTX_init((EVP_CIPHER_CTX *)env->aux);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
if(iv_len)
env->iv = (unsigned char *)tor_malloc(iv_len);
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
if(key_len)
env->key = (unsigned char *)tor_malloc(key_len);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Correct defeatest attitude in crypto_new_cipher_env svn:r201
2003-03-19 22:27:21 +01:00
return env;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
err:
if (env->key)
free(env->key);
if (env->iv)
free(env->iv);
if (env->aux)
free(env->aux);
if (env)
free(env);
return NULL;
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
void crypto_free_cipher_env(crypto_cipher_env_t *env)
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env);
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
if (env->type == CRYPTO_CIPHER_AES_CTR) {
assert(env->aux);
aes_free_cipher((aes_cnt_cipher_t*)env->aux);
env->aux = NULL;
} else if (crypto_cipher_evp_cipher(env->type,0)) {
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
/* This is an openssl cipher */
assert(env->aux);
EVP_CIPHER_CTX_cleanup((EVP_CIPHER_CTX *)env->aux);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
if (env->aux)
free((void *)env->aux);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
if (env->iv)
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
free((void *)env->iv);
if (env->key)
free((void *)env->key);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
free((void *)env);
}
/* public key crypto */
int crypto_pk_generate_key(crypto_pk_env_t *env)
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
if (env->key)
RSA_free((RSA *)env->key);
slight optimization on rsa exponent use 2**16+1 rather than 2**16 + 2**(-1) svn:r99
2002-09-05 21:04:47 +02:00
env->key = (unsigned char *)RSA_generate_key(1024,65537, NULL, NULL);
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
if (!env->key)
return -1;
break;
default:
return -1;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
int crypto_pk_read_private_key_from_file(crypto_pk_env_t *env, FILE *src)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && src);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
if (env->key)
don't leak memory on pk ops svn:r117
2002-09-28 00:13:22 +02:00
RSA_free((RSA *)env->key);
env->key = (unsigned char *)PEM_read_RSAPrivateKey(src, NULL, NULL, NULL);
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
if (!env->key)
return -1;
break;
default :
return -1;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483
2003-09-25 07:17:11 +02:00
int crypto_pk_read_private_key_from_filename(crypto_pk_env_t *env, const char *keyfile)
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
{
FILE *f_pr;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
assert(env && keyfile);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
finish enforcing the log convention svn:r494
2003-09-27 00:27:24 +02:00
if(strspn(keyfile,CONFIG_LEGAL_FILENAME_CHARACTERS) != strlen(keyfile)) {
/* filename contains nonlegal characters */
return -1;
}
/* open the keyfile */
f_pr=fopen(keyfile,"rb");
if (!f_pr)
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
finish enforcing the log convention svn:r494
2003-09-27 00:27:24 +02:00
/* read the private key */
if(crypto_pk_read_private_key_from_file(env, f_pr) < 0) {
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN,"Error reading private key : %s",crypto_perror());
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
fclose(f_pr);
finish enforcing the log convention svn:r494
2003-09-27 00:27:24 +02:00
return -1;
}
fclose(f_pr);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
finish enforcing the log convention svn:r494
2003-09-27 00:27:24 +02:00
/* check the private key */
switch(crypto_pk_check_key(env)) {
case 0:
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN,"Private key read but is invalid : %s.", crypto_perror());
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return -1;
finish enforcing the log convention svn:r494
2003-09-27 00:27:24 +02:00
case -1:
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN,"Private key read but validity checking failed : %s",crypto_perror());
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return -1;
finish enforcing the log convention svn:r494
2003-09-27 00:27:24 +02:00
/* case 1: fall through */
}
return 0;
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
}
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
int crypto_pk_read_public_key_from_file(crypto_pk_env_t *env, FILE *src)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && src);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
don't leak memory on pk ops svn:r117
2002-09-28 00:13:22 +02:00
if(env->key)
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
RSA_free((RSA *)env->key);
don't leak memory on pk ops svn:r117
2002-09-28 00:13:22 +02:00
env->key = (unsigned char *)PEM_read_RSAPublicKey(src, NULL, NULL, NULL);
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
if (!env->key)
return -1;
break;
default :
return -1;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
int crypto_pk_write_public_key_to_string(crypto_pk_env_t *env, char **dest, int *len) {
BUF_MEM *buf;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
BIO *b;
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
assert(env && env->key && dest);
switch(env->type) {
case CRYPTO_PK_RSA:
b = BIO_new(BIO_s_mem()); /* Create a memory BIO */
/* Now you can treat b as if it were a file. Just use the
clean up a broken comment in crypto.c svn:r351
2003-06-24 23:34:19 +02:00
* PEM_*_bio_* functions instead of the non-bio variants.
*/
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
if(!PEM_write_bio_RSAPublicKey(b, (RSA *)env->key))
return -1;
BIO_get_mem_ptr(b, &buf);
BIO_set_close(b, BIO_NOCLOSE); /* so BIO_free doesn't free buf */
BIO_free(b);
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
*dest = tor_malloc(buf->length+1);
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
memcpy(*dest, buf->data, buf->length);
(*dest)[buf->length] = 0; /* null terminate it */
*len = buf->length;
BUF_MEM_free(buf);
break;
default:
return -1;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
return 0;
}
Make router/directory parsing nondestructive and more const-friendly svn:r890
2003-12-09 00:45:37 +01:00
int crypto_pk_read_public_key_from_string(crypto_pk_env_t *env, const char *src, int len) {
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
BIO *b;
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
assert(env && src);
switch(env->type) {
case CRYPTO_PK_RSA:
b = BIO_new(BIO_s_mem()); /* Create a memory BIO */
BIO_write(b, src, len);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
RSA_free((RSA *)env->key);
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
env->key = (unsigned char *)PEM_read_bio_RSAPublicKey(b, NULL, NULL, NULL);
if(!env->key)
return -1;
BIO_free(b);
break;
default:
return -1;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
return 0;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int
crypto_pk_write_private_key_to_filename(crypto_pk_env_t *env,
Refactor common file code into util.c; add published to descriptors svn:r487
2003-09-26 20:27:35 +02:00
const char *fname)
{
BIO *bio;
char *cp;
long len;
Bugfixes in crypto_pk_write_private_key_to_filename svn:r489
2003-09-26 20:44:20 +02:00
char *s;
Refactor common file code into util.c; add published to descriptors svn:r487
2003-09-26 20:27:35 +02:00
int r;
assert(env->type == CRYPTO_PK_RSA);
if (!(bio = BIO_new(BIO_s_mem())))
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
if (PEM_write_bio_RSAPrivateKey(bio, (RSA*)env->key, NULL,NULL,0,NULL,NULL)
Bugfixes in crypto_pk_write_private_key_to_filename svn:r489
2003-09-26 20:44:20 +02:00
== 0) {
Refactor common file code into util.c; add published to descriptors svn:r487
2003-09-26 20:27:35 +02:00
BIO_free(bio);
return -1;
}
len = BIO_get_mem_data(bio, &cp);
Bugfixes in crypto_pk_write_private_key_to_filename svn:r489
2003-09-26 20:44:20 +02:00
s = tor_malloc(len+1);
strncpy(s, cp, len);
s[len] = '\0';
r = write_str_to_file(fname, s);
Refactor common file code into util.c; add published to descriptors svn:r487
2003-09-26 20:27:35 +02:00
BIO_free(bio);
Bugfixes in crypto_pk_write_private_key_to_filename svn:r489
2003-09-26 20:44:20 +02:00
free(s);
Refactor common file code into util.c; add published to descriptors svn:r487
2003-09-26 20:27:35 +02:00
return r;
}
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
int crypto_pk_write_private_key_to_file(crypto_pk_env_t *env, FILE *dest)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && dest);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
if (!env->key)
return -1;
if (PEM_write_RSAPrivateKey(dest, (RSA *)env->key, NULL, NULL, 0,0, NULL) == 0)
return -1;
break;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
default :
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
int crypto_pk_write_public_key_to_file(crypto_pk_env_t *env, FILE *dest)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && dest);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
if (!env->key)
return -1;
if (PEM_write_RSAPublicKey(dest, (RSA *)env->key) == 0)
return -1;
break;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
default :
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
int crypto_pk_check_key(crypto_pk_env_t *env)
{
assert(env);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
return RSA_check_key((RSA *)env->key);
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
default:
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
return -1;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
}
}
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
int crypto_pk_cmp_keys(crypto_pk_env_t *a, crypto_pk_env_t *b) {
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int result;
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
if (!a || !b)
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
if (!a->key || !b->key)
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
if (a->type != b->type)
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
switch(a->type) {
case CRYPTO_PK_RSA:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
assert(((RSA *)a->key)->n && ((RSA *)a->key)->e && ((RSA *)b->key)->n && ((RSA *)b->key)->e);
result = BN_cmp(((RSA *)a->key)->n, ((RSA *)b->key)->n);
if (result)
return result;
return BN_cmp(((RSA *)a->key)->e, ((RSA *)b->key)->e);
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
}
}
int crypto_pk_keysize(crypto_pk_env_t *env)
{
assert(env && env->key);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return RSA_size((RSA *)env->key);
}
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
crypto_pk_env_t *crypto_pk_dup_key(crypto_pk_env_t *env) {
assert(env && env->key);
switch(env->type) {
case CRYPTO_PK_RSA:
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
env->refs++;
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
break;
default:
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
return NULL;
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
laying the groundwork for dynamic router lists revamped the router reading section reference counting for crypto pk env's (so we can dup them) we now read and write pem pk keys from string rather than from FILE*, in anticipation of fetching directories over a socket (so now on startup we slurp in the whole file, then parse it as a string) fixed a bug in the proxy side, where you could get some circuits wedged if they showed up while the connection was being made svn:r110
2002-09-24 12:43:57 +02:00
return env;
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
int crypto_pk_public_encrypt(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to, int padding)
{
assert(env && from && to);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
case CRYPTO_PK_RSA:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return RSA_public_encrypt(fromlen, from, to, (RSA *)env->key, padding);
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
}
}
int crypto_pk_private_decrypt(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to, int padding)
{
assert(env && from && to);
Tests for crypto; more tests for buffers svn:r234
2003-04-16 17:24:09 +02:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
switch(env->type) {
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
case CRYPTO_PK_RSA:
if (!(((RSA*)env->key)->p))
return -1;
return RSA_private_decrypt(fromlen, from, to, (RSA *)env->key, padding);
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
}
}
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
int crypto_pk_public_checksig(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to)
{
assert(env && from && to);
switch(env->type) {
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
case CRYPTO_PK_RSA:
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
return RSA_public_decrypt(fromlen, from, to, (RSA *)env->key,
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
RSA_PKCS1_PADDING);
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
}
}
int crypto_pk_private_sign(crypto_pk_env_t *env, unsigned char *from, int fromlen, unsigned char *to)
{
assert(env && from && to);
switch(env->type) {
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
case CRYPTO_PK_RSA:
if (!(((RSA*)env->key)->p))
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
return RSA_private_encrypt(fromlen, from, to, (RSA *)env->key,
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
RSA_PKCS1_PADDING);
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
default:
fix formatting in crypto.c for my sanity svn:r411
2003-08-25 09:06:12 +02:00
return -1;
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
}
}
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
/* Encode the public portion of 'pk' into 'dest'. Return -1 on error,
* or the number of characters used on success.
clarifying comment for crypto_pk_get_fingerprint svn:r1243
2004-03-08 01:11:37 +01:00
*/
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
int crypto_pk_asn1_encode(crypto_pk_env_t *pk, char *dest, int dest_len)
{
int len;
len = i2d_RSAPublicKey((RSA*)pk->key, NULL);
if (len < 0 || len > dest_len)
return -1;
len = i2d_RSAPublicKey((RSA*)pk->key, (unsigned char**)&dest);
if (len < 0)
return -1;
return len;
}
/* Decode an ASN1-encoded public key from str.
*/
crypto_pk_env_t *crypto_pk_asn1_decode(const char *str, int len)
{
RSA *rsa;
Jump through a hoop, suppress a warning svn:r1398
2004-03-31 00:42:26 +02:00
/* This ifdef suppresses a type warning. Take out the first case once
* everybody is using openssl 0.9.7 or later.
*/
#if OPENSSL_VERSION_NUMBER < 0x00907000l
rsa = d2i_RSAPublicKey(NULL, (unsigned char**)&str, len);
#else
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
rsa = d2i_RSAPublicKey(NULL, (const unsigned char**)&str, len);
Jump through a hoop, suppress a warning svn:r1398
2004-03-31 00:42:26 +02:00
#endif
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
if (!rsa)
return NULL; /* XXXX log openssl error */
return _crypto_new_pk_env_rsa(rsa);
}
/* Given a private or public key pk, put a SHA1 hash of the public key into
* digest_out (must have 20 bytes of space).
*/
int crypto_pk_get_digest(crypto_pk_env_t *pk, char *digest_out)
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483
2003-09-25 07:17:11 +02:00
{
unsigned char *buf, *bufp;
int len;
assert(pk->type == CRYPTO_PK_RSA);
len = i2d_RSAPublicKey((RSA*)pk->key, NULL);
if (len < 0)
return -1;
buf = bufp = tor_malloc(len+1);
len = i2d_RSAPublicKey((RSA*)pk->key, &bufp);
if (len < 0) {
free(buf);
return -1;
}
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
if (crypto_SHA_digest(buf, len, digest_out) < 0) {
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483
2003-09-25 07:17:11 +02:00
free(buf);
return -1;
}
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
return 0;
}
/* Given a private or public key pk, put a fingerprint of the
* public key into fp_out (must have at least FINGERPRINT_LEN+1 bytes of
* space).
*/
int
crypto_pk_get_fingerprint(crypto_pk_env_t *pk, char *fp_out)
{
unsigned char *bufp;
unsigned char digest[20];
unsigned char buf[FINGERPRINT_LEN+1];
int i;
if (crypto_pk_get_digest(pk, digest)) {
return -1;
}
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483
2003-09-25 07:17:11 +02:00
bufp = buf;
for (i = 0; i < 20; ++i) {
sprintf(bufp,"%02X",digest[i]);
bufp += 2;
if (i%2 && i != 19) {
*bufp++ = ' ';
}
}
*bufp = '\0';
assert(strlen(buf) == FINGERPRINT_LEN);
Add code to parse fingerprint files and compare routers against fingerprint files. svn:r490
2003-09-26 22:41:23 +02:00
assert(crypto_pk_check_fingerprint_syntax(buf));
Refactor buffers; implement descriptors. 'buf_t' is now an opaque type defined in buffers.c . Router descriptors now include all keys; routers generate keys as needed on startup (in a newly defined "data directory"), and generate their own descriptors. Descriptors are now self-signed. Implementation is not complete: descriptors are never published; and upon receiving a descriptor, the directory doesn't do anything with it. At least "routers.or" and orkeygen are now obsolete, BTW. svn:r483
2003-09-25 07:17:11 +02:00
strcpy(fp_out, buf);
return 0;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int
Add code to parse fingerprint files and compare routers against fingerprint files. svn:r490
2003-09-26 22:41:23 +02:00
crypto_pk_check_fingerprint_syntax(const char *s)
{
int i;
for (i = 0; i < FINGERPRINT_LEN; ++i) {
if ((i%5) == 4) {
isspace and friends take an int. solaris cares. svn:r1303
2004-03-19 21:50:12 +01:00
if (!isspace((int)s[i])) return 0;
Add code to parse fingerprint files and compare routers against fingerprint files. svn:r490
2003-09-26 22:41:23 +02:00
} else {
isspace and friends take an int. solaris cares. svn:r1303
2004-03-19 21:50:12 +01:00
if (!isxdigit((int)s[i])) return 0;
Add code to parse fingerprint files and compare routers against fingerprint files. svn:r490
2003-09-26 22:41:23 +02:00
}
}
if (s[FINGERPRINT_LEN]) return 0;
return 1;
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
/* symmetric crypto */
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
int crypto_cipher_generate_key(crypto_cipher_env_t *env)
{
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
int key_len;
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
assert(env);
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
key_len = crypto_cipher_key_length(env->type);
if (key_len > 0)
return crypto_rand(key_len, env->key);
else if (key_len == 0)
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return 0;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
else
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return -1;
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
int crypto_cipher_set_iv(crypto_cipher_env_t *env, unsigned char *iv)
{
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
int iv_len;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && iv);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
iv_len = crypto_cipher_iv_length(env->type);
if (!iv_len)
return 0;
if (!env->iv)
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return -1;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
memcpy((void*)env->iv, (void*)iv, iv_len);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
int crypto_cipher_set_key(crypto_cipher_env_t *env, unsigned char *key)
{
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
int key_len;
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && key);
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
key_len = crypto_cipher_key_length(env->type);
if (!key_len)
return 0;
if (!env->key)
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
return -1;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
memcpy((void*)env->key, (void*)key, key_len);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
return 0;
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
Make crypto structures private to crypto.c svn:r437
2003-09-10 02:47:24 +02:00
unsigned char *crypto_cipher_get_key(crypto_cipher_env_t *env)
{
return env->key;
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
int crypto_cipher_encrypt_init_cipher(crypto_cipher_env_t *env)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
if (crypto_cipher_evp_cipher(env->type, 1)) {
RETURN_SSL_OUTCOME(EVP_EncryptInit((EVP_CIPHER_CTX *)env->aux,
more cleanup svn:r242
2003-04-17 01:22:05 +02:00
crypto_cipher_evp_cipher(env->type, 1),
env->key, env->iv));
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
} else if (env->type == CRYPTO_CIPHER_AES_CTR) {
aes_set_key((aes_cnt_cipher_t*)env->aux, env->key, 128);
return 0;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
} else {
return -1;
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
int crypto_cipher_decrypt_init_cipher(crypto_cipher_env_t *env)
{
assert(env);
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
if (crypto_cipher_evp_cipher(env->type, 0)) {
RETURN_SSL_OUTCOME(EVP_EncryptInit((EVP_CIPHER_CTX *)env->aux,
more cleanup svn:r242
2003-04-17 01:22:05 +02:00
crypto_cipher_evp_cipher(env->type, 0),
env->key, env->iv));
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
} else if (env->type == CRYPTO_CIPHER_AES_CTR) {
aes_set_key((aes_cnt_cipher_t*)env->aux, env->key, 128);
return 0;
Refactor block ciphers; add 3des svn:r196
2003-03-19 21:41:15 +01:00
} else {
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
return -1;
}
}
Port to MacOS X svn:r88
2002-09-03 20:44:24 +02:00
int crypto_cipher_encrypt(crypto_cipher_env_t *env, unsigned char *from, unsigned int fromlen, unsigned char *to)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
int tolen;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && from && to);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
if (env->type == CRYPTO_CIPHER_AES_CTR) {
aes_crypt((aes_cnt_cipher_t*)env->aux, from, fromlen, to);
return 0;
} else {
RETURN_SSL_OUTCOME(EVP_EncryptUpdate((EVP_CIPHER_CTX *)env->aux, to, &tolen, from, fromlen));
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Port to MacOS X svn:r88
2002-09-03 20:44:24 +02:00
int crypto_cipher_decrypt(crypto_cipher_env_t *env, unsigned char *from, unsigned int fromlen, unsigned char *to)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
int tolen;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(env && from && to);
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
if (env->type == CRYPTO_CIPHER_AES_CTR) {
aes_crypt((aes_cnt_cipher_t*)env->aux, from, fromlen, to);
return 0;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
} else {
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
RETURN_SSL_OUTCOME(EVP_DecryptUpdate((EVP_CIPHER_CTX *)env->aux, to, &tolen, from, fromlen));
}
}
add crypto_cipher_rewind to reverse crypto_cipher_advance svn:r957
2003-12-23 08:43:05 +01:00
int
crypto_cipher_rewind(crypto_cipher_env_t *env, long delta)
{
return crypto_cipher_advance(env, -delta);
}
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
int
crypto_cipher_advance(crypto_cipher_env_t *env, long delta)
{
if (env->type == CRYPTO_CIPHER_AES_CTR) {
aes_adjust_counter((aes_cnt_cipher_t*)env->aux, delta);
return 0;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
} else {
Add AES counter-mode support to the crypt library svn:r362
2003-06-30 21:18:32 +02:00
return -1;
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
/* SHA-1 */
Make router/directory parsing nondestructive and more const-friendly svn:r890
2003-12-09 00:45:37 +01:00
int crypto_SHA_digest(const unsigned char *m, int len, unsigned char *digest)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(m && digest);
return (SHA1(m,len,digest) == NULL);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
struct crypto_digest_env_t {
SHA_CTX d;
};
crypto_digest_env_t *
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
crypto_new_digest_env(int type)
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
{
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
crypto_digest_env_t *r;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
assert(type == CRYPTO_SHA1_DIGEST);
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
r = tor_malloc(sizeof(crypto_digest_env_t));
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
SHA1_Init(&r->d);
return r;
}
void
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
crypto_free_digest_env(crypto_digest_env_t *digest) {
add crypto_cipher_rewind to reverse crypto_cipher_advance svn:r957
2003-12-23 08:43:05 +01:00
if(digest)
free(digest);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
}
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
void
crypto_digest_add_bytes(crypto_digest_env_t *digest, const char *data,
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
size_t len)
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
{
assert(digest);
assert(data);
SHA1_Update(&digest->d, (void*)data, len);
}
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
void crypto_digest_get_digest(crypto_digest_env_t *digest,
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
char *out, size_t out_len)
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
{
static char r[SHA_DIGEST_LENGTH];
assert(digest && out);
assert(out_len <= SHA_DIGEST_LENGTH);
SHA1_Final(r, &digest->d);
memcpy(out, r, out_len);
}
crypto_digest_env_t *
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
crypto_digest_dup(const crypto_digest_env_t *digest)
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
{
crypto_digest_env_t *r;
assert(digest);
r = tor_malloc(sizeof(crypto_digest_env_t));
memcpy(r,digest,sizeof(crypto_digest_env_t));
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
return r;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
}
void
crypto_digest_assign(crypto_digest_env_t *into,
rename digest_copy to digest_dup, make it return, make gcc happier svn:r939
2003-12-16 06:47:21 +01:00
const crypto_digest_env_t *from)
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
{
assert(into && from);
memcpy(into,from,sizeof(crypto_digest_env_t));
}
/* DH */
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
static BIGNUM *dh_param_p = NULL;
static BIGNUM *dh_param_g = NULL;
static void init_dh_param() {
BIGNUM *p, *g;
int r;
if (dh_param_p && dh_param_g)
return;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
p = BN_new();
g = BN_new();
assert(p && g);
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
#if 0
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
/* This is from draft-ietf-ipsec-ike-modp-groups-05.txt. It's a safe
prime, and supposedly it equals:
2^1536 - 2^1472 - 1 + 2^64 * { [2^1406 pi] + 741804 }
*/
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
r = BN_hex2bn(&p,
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
"FFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD1"
"29024E088A67CC74020BBEA63B139B22514A08798E3404DD"
"EF9519B3CD3A431B302B0A6DF25F14374FE1356D6D51C245"
"E485B576625E7EC6F44C42E9A637ED6B0BFF5CB6F406B7ED"
"EE386BFB5A899FA5AE9F24117C4B1FE649286651ECE45B3D"
"C2007CB8A163BF0598DA48361C55D39A69163FA8FD24CF5F"
"83655D23DCA3AD961C62F356208552BB9ED529077096966D"
"670C354E4ABC9804F1746C08CA237327FFFFFFFFFFFFFFFF");
Decrease DH group length to 1024. (Roger, you may want to read section 1 of the IETF draft: a 1024-bit DH key probably reduces our cipher strength to ~80 bits.) svn:r269
2003-05-07 04:28:42 +02:00
#endif
/* This is from rfc2409, section 6.2. It's a safe prime, and
supposedly it equals:
2^1024 - 2^960 - 1 + 2^64 * { [2^894 pi] + 129093 }.
*/
Add initial interfaces and code for TLS support. Interfaces are right; code needs work and testing. svn:r424
2003-09-04 18:05:08 +02:00
/* See also rfc 3536 */
Decrease DH group length to 1024. (Roger, you may want to read section 1 of the IETF draft: a 1024-bit DH key probably reduces our cipher strength to ~80 bits.) svn:r269
2003-05-07 04:28:42 +02:00
r = BN_hex2bn(&p,
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
"FFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD129024E08"
"8A67CC74020BBEA63B139B22514A08798E3404DDEF9519B3CD3A431B"
"302B0A6DF25F14374FE1356D6D51C245E485B576625E7EC6F44C42E9"
"A637ED6B0BFF5CB6F406B7EDEE386BFB5A899FA5AE9F24117C4B1FE6"
"49286651ECE65381FFFFFFFFFFFFFFFF");
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
assert(r);
r = BN_set_word(g, 2);
assert(r);
dh_param_p = p;
dh_param_g = g;
}
crypto_dh_env_t *crypto_dh_new()
{
crypto_dh_env_t *res = NULL;
if (!dh_param_p)
init_dh_param();
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
replace malloc with tor_malloc; remove broken/unused crypto_pk_set_key svn:r292
2003-05-20 08:37:34 +02:00
res = tor_malloc(sizeof(crypto_dh_env_t));
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
res->dh = NULL;
if (!(res->dh = DH_new()))
goto err;
if (!(res->dh->p = BN_dup(dh_param_p)))
goto err;
if (!(res->dh->g = BN_dup(dh_param_g)))
goto err;
return res;
err:
if (res && res->dh) DH_free(res->dh); /* frees p and g too */
if (res) free(res);
return NULL;
}
int crypto_dh_get_bytes(crypto_dh_env_t *dh)
{
assert(dh);
return DH_size(dh->dh);
}
int crypto_dh_get_public(crypto_dh_env_t *dh, char *pubkey, int pubkey_len)
{
int bytes;
assert(dh);
if (!DH_generate_key(dh->dh))
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
assert(dh->dh->pub_key);
bytes = BN_num_bytes(dh->dh->pub_key);
if (pubkey_len < bytes)
return -1;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
memset(pubkey, 0, pubkey_len);
BN_bn2bin(dh->dh->pub_key, pubkey+(pubkey_len-bytes));
return 0;
}
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
#undef MIN
#define MIN(a,b) ((a)<(b)?(a):(b))
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int crypto_dh_compute_secret(crypto_dh_env_t *dh,
change crypto_digest_new_env to crypto_new_digest_env (and same with _free_) to match our conventions i think our conventions may be getting too ad hoc svn:r940
2003-12-16 09:13:26 +01:00
char *pubkey, int pubkey_len,
char *secret_out, int secret_bytes_out)
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
{
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
unsigned char hash[20];
unsigned char *secret_tmp = NULL;
BIGNUM *pubkey_bn = NULL;
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
int secret_len;
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
int i;
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
assert(dh);
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
assert(secret_bytes_out/20 <= 255);
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
if (!(pubkey_bn = BN_bin2bn(pubkey, pubkey_len, NULL)))
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
goto error;
secret_tmp = tor_malloc(crypto_dh_get_bytes(dh)+1);
secret_len = DH_compute_key(secret_tmp, pubkey_bn, dh->dh);
document an openssl gotcha svn:r947
2003-12-17 06:31:52 +01:00
/* sometimes secret_len might be less than 128, e.g., 127. that's ok. */
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
for (i = 0; i < secret_bytes_out; i += 20) {
secret_tmp[secret_len] = (unsigned char) i/20;
if (crypto_SHA_digest(secret_tmp, secret_len+1, hash))
goto error;
memcpy(secret_out+i, hash, MIN(20, secret_bytes_out-i));
}
secret_len = secret_bytes_out;
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
Be smarter about getting key matter from DH. Formerly, once we had g^xy, we took the last N bytes from g^xy. Now, we take SHA(g^xy || [0]) || SHA1(g^xy || [1]) || ... , in order to use all bits from g^xy equally, and generate as much key material as we need. svn:r370
2003-07-30 21:10:20 +02:00
goto done;
error:
secret_len = -1;
done:
if (pubkey_bn)
BN_free(pubkey_bn);
document an openssl gotcha svn:r947
2003-12-17 06:31:52 +01:00
tor_free(secret_tmp);
Fix the periodic bug that would make handshaking fail. The culprit: sometimes DH_calculate_key returns less than DH_KEY_LEN bytes; we needed to check the return value. svn:r322
2003-06-14 03:30:53 +02:00
return secret_len;
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
}
void crypto_dh_free(crypto_dh_env_t *dh)
{
assert(dh && dh->dh);
DH_free(dh->dh);
free(dh);
}
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
/* random numbers */
Get entropy in windows. svn:r1257
2004-03-11 06:14:06 +01:00
#ifdef MS_WINDOWS
int crypto_seed_rng()
{
static int provider_set = 0;
Make OP work on windows! (Also misc logging tweaks) svn:r1258
2004-03-11 07:19:08 +01:00
static HCRYPTPROV provider;
Get entropy in windows. svn:r1257
2004-03-11 06:14:06 +01:00
char buf[21];
if (!provider_set) {
if (!CryptAcquireContext(&provider, NULL, NULL, PROV_RSA_FULL, 0)) {
if (GetLastError() != NTE_BAD_KEYSET) {
more pesky tabs svn:r1265
2004-03-12 14:02:16 +01:00
log_fn(LOG_ERR,"Can't get CryptoAPI provider [1]");
return -1;
Get entropy in windows. svn:r1257
2004-03-11 06:14:06 +01:00
}
/* Yes, we need to try it twice. */
if (!CryptAcquireContext(&provider, NULL, NULL, PROV_RSA_FULL,
more pesky tabs svn:r1265
2004-03-12 14:02:16 +01:00
CRYPT_NEWKEYSET)) {
log_fn(LOG_ERR,"Can't get CryptoAPI provider [2]");
return -1;
Get entropy in windows. svn:r1257
2004-03-11 06:14:06 +01:00
}
}
provider_set = 1;
}
if (!CryptGenRandom(provider, 20, buf)) {
log_fn(LOG_ERR,"Can't get entropy from CryptoAPI.");
return -1;
}
RAND_seed(buf, 20);
/* And add the current screen state to the entopy pool for
* good measure. */
RAND_screen();
return 0;
}
#else
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
int crypto_seed_rng()
{
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
static char *filenames[] = {
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
"/dev/srandom", "/dev/urandom", "/dev/random", NULL
};
Use fread instead of fgets for binary data svn:r328
2003-06-17 22:19:41 +02:00
int i, n;
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
char buf[21];
FILE *f;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
for (i = 0; filenames[i]; ++i) {
f = fopen(filenames[i], "rb");
if (!f) continue;
Change many files to new log_fn format svn:r333
2003-06-18 00:18:26 +02:00
log_fn(LOG_INFO, "Seeding RNG from %s", filenames[i]);
Use fread instead of fgets for binary data svn:r328
2003-06-17 22:19:41 +02:00
n = fread(buf, 1, 20, f);
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
fclose(f);
Use fread instead of fgets for binary data svn:r328
2003-06-17 22:19:41 +02:00
if (n != 20) {
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN, "Error reading from entropy source");
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
return -1;
}
RAND_seed(buf, 20);
return 0;
}
change WARNING to WARN svn:r570
2003-10-10 03:48:03 +02:00
log_fn(LOG_WARN, "Cannot seed RNG -- no entropy source found.");
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
return -1;
}
Get entropy in windows. svn:r1257
2004-03-11 06:14:06 +01:00
#endif
Add RNG seeding svn:r318
2003-06-13 23:13:37 +02:00
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
int crypto_rand(unsigned int n, unsigned char *to)
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(to);
Changed crypto calls to go through common/crypto.[hc] instead of calling OpenSSL directly. svn:r76
2002-08-22 09:30:03 +02:00
return (RAND_bytes(to, n) != 1);
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
Make crypto_pseudo_rand* never fail. svn:r797
2003-11-12 05:12:35 +01:00
void crypto_pseudo_rand(unsigned int n, unsigned char *to)
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
{
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
assert(to);
Make crypto_pseudo_rand* never fail. svn:r797
2003-11-12 05:12:35 +01:00
if (RAND_pseudo_bytes(to, n) == -1) {
log_fn(LOG_ERR, "RAND_pseudo_bytes failed unexpectedly.");
exit(1);
}
}
add a 'smartlist' building block that picks random elements from a list svn:r897
2003-12-13 02:42:44 +01:00
/* return a pseudo random number between 0 and max-1 */
Remove minor biasing problem from crypto_pseudo_rand_int svn:r799
2003-11-12 05:28:30 +01:00
int crypto_pseudo_rand_int(unsigned int max) {
Make crypto_pseudo_rand* never fail. svn:r797
2003-11-12 05:12:35 +01:00
unsigned int val;
Remove minor biasing problem from crypto_pseudo_rand_int svn:r799
2003-11-12 05:28:30 +01:00
unsigned int cutoff;
assert(max < UINT_MAX);
assert that nobody asks for a random number between 0 and -1 svn:r875
2003-12-03 09:08:07 +01:00
assert(max > 0); /* don't div by 0 */
Remove minor biasing problem from crypto_pseudo_rand_int svn:r799
2003-11-12 05:28:30 +01:00
/* We ignore any values that are >= 'cutoff,' to avoid biasing the
* distribution with clipping at the upper end of unsigned int's
* range.
*/
cutoff = UINT_MAX - (UINT_MAX%max);
while(1) {
crypto_pseudo_rand(sizeof(val), (unsigned char*) &val);
if (val < cutoff)
return val % max;
}
Added the crypto abstraction to libor. Need to test and change the code to use this instead of OpenSSL. svn:r74
2002-07-25 10:17:22 +02:00
}
/* errors */
char *crypto_perror()
{
return (char *)ERR_reason_error_string(ERR_get_error());
Beginnings of a crypto abstraction layer. svn:r73
2002-07-24 16:02:39 +02:00
}
Basic diffie-helman wrappers with fixed modulus and tests svn:r257
2003-05-01 02:53:46 +02:00
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int
Make router/directory parsing nondestructive and more const-friendly svn:r890
2003-12-09 00:45:37 +01:00
base64_encode(char *dest, int destlen, const char *src, int srclen)
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
{
EVP_ENCODE_CTX ctx;
int len, ret;
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
/* 48 bytes of input -> 64 bytes of output plus newline.
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
Plus one more byte, in case I'm wrong.
*/
if (destlen < ((srclen/48)+1)*66)
return -1;
EVP_EncodeInit(&ctx);
Make router/directory parsing nondestructive and more const-friendly svn:r890
2003-12-09 00:45:37 +01:00
EVP_EncodeUpdate(&ctx, dest, &len, (char*) src, srclen);
Tested backends for directory signing and checking. Directory parser completely refactored. Need documentation and integration. Explanitory mail forthcoming. svn:r271
2003-05-07 20:30:46 +02:00
EVP_EncodeFinal(&ctx, dest+len, &ret);
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
ret += len;
return ret;
}
Add more fine-grained SHA1 functionality. svn:r937
2003-12-16 06:29:04 +01:00
int
Make router/directory parsing nondestructive and more const-friendly svn:r890
2003-12-09 00:45:37 +01:00
base64_decode(char *dest, int destlen, const char *src, int srclen)
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
{
EVP_ENCODE_CTX ctx;
int len, ret;
/* 64 bytes of input -> *up to* 48 bytes of output.
Plus one more byte, in caes I'm wrong.
*/
if (destlen < ((srclen/64)+1)*49)
return -1;
EVP_DecodeInit(&ctx);
Make router/directory parsing nondestructive and more const-friendly svn:r890
2003-12-09 00:45:37 +01:00
EVP_DecodeUpdate(&ctx, dest, &len, (char*) src, srclen);
More work on directories. Signed directories not yet tested. No support for checking sigs yet svn:r268
2003-05-07 04:13:23 +02:00
EVP_DecodeFinal(&ctx, dest, &ret);
ret += len;
return ret;
}
Add more key manipulation functions, and base32 functions, to crypto svn:r1395
2004-03-30 21:47:32 +02:00
static const char BASE32_CHARS[] = "abcdefghijklmnopqrstuvwxyz012345";
int
base32_encode(char *dest, int destlen, const char *src, int srclen)
{
int nbits, i, bit, v, u;
nbits = srclen * 8;
if ((nbits%5) != 0)
/* We need an even multiple of 5 bits. */
return -1;
if ((nbits/5)+1 < destlen)
/* Not enough space. */
return -1;
for (i=0,bit=0; bit < nbits; ++i, bit+=5) {
/* set v to the 16-bit value starting at src[bits/8], 0-padded. */
v = ((unsigned char)src[bit/8]) << 8;
if (bit+5<nbits) v += src[(bit/8)+1];
/* set u to the 5-bit value at the bit'th bit of src. */
u = (v >> (11-(bit%8))) & 0x1F;
dest[i] = BASE32_CHARS[u];
}
dest[i] = '\0';
return 0;
}
Reference in New Issue Copy Permalink