mirror of
https://gitlab.torproject.org/tpo/core/tor.git
synced 2024-11-30 23:53:32 +01:00
Move crypto_pk_obsolete_* functions into RSA module.
We moved the crypto_pk_obselete_* functions into crypto_rsa.[ch] because they fit better with the RSA module. Follows #24658. Signed-off-by: Fernando Fernandez Mancera <ffmancera@riseup.net>
This commit is contained in:
parent
541b6b2433
commit
0fad49e1c4
@ -398,150 +398,6 @@ crypto_cipher_free_(crypto_cipher_t *env)
|
||||
aes_cipher_free(env);
|
||||
}
|
||||
|
||||
/* public key crypto */
|
||||
|
||||
/** Perform a hybrid (public/secret) encryption on <b>fromlen</b>
|
||||
* bytes of data from <b>from</b>, with padding type 'padding',
|
||||
* storing the results on <b>to</b>.
|
||||
*
|
||||
* Returns the number of bytes written on success, -1 on failure.
|
||||
*
|
||||
* The encrypted data consists of:
|
||||
* - The source data, padded and encrypted with the public key, if the
|
||||
* padded source data is no longer than the public key, and <b>force</b>
|
||||
* is false, OR
|
||||
* - The beginning of the source data prefixed with a 16-byte symmetric key,
|
||||
* padded and encrypted with the public key; followed by the rest of
|
||||
* the source data encrypted in AES-CTR mode with the symmetric key.
|
||||
*
|
||||
* NOTE that this format does not authenticate the symmetrically encrypted
|
||||
* part of the data, and SHOULD NOT BE USED for new protocols.
|
||||
*/
|
||||
int
|
||||
crypto_pk_obsolete_public_hybrid_encrypt(crypto_pk_t *env,
|
||||
char *to, size_t tolen,
|
||||
const char *from,
|
||||
size_t fromlen,
|
||||
int padding, int force)
|
||||
{
|
||||
int overhead, outlen, r;
|
||||
size_t pkeylen, symlen;
|
||||
crypto_cipher_t *cipher = NULL;
|
||||
char *buf = NULL;
|
||||
|
||||
tor_assert(env);
|
||||
tor_assert(from);
|
||||
tor_assert(to);
|
||||
tor_assert(fromlen < SIZE_T_CEILING);
|
||||
|
||||
overhead = crypto_get_rsa_padding_overhead(crypto_get_rsa_padding(padding));
|
||||
pkeylen = crypto_pk_keysize(env);
|
||||
|
||||
if (!force && fromlen+overhead <= pkeylen) {
|
||||
/* It all fits in a single encrypt. */
|
||||
return crypto_pk_public_encrypt(env,to,
|
||||
tolen,
|
||||
from,fromlen,padding);
|
||||
}
|
||||
tor_assert(tolen >= fromlen + overhead + CIPHER_KEY_LEN);
|
||||
tor_assert(tolen >= pkeylen);
|
||||
|
||||
char key[CIPHER_KEY_LEN];
|
||||
crypto_rand(key, sizeof(key)); /* generate a new key. */
|
||||
cipher = crypto_cipher_new(key);
|
||||
|
||||
buf = tor_malloc(pkeylen+1);
|
||||
memcpy(buf, key, CIPHER_KEY_LEN);
|
||||
memcpy(buf+CIPHER_KEY_LEN, from, pkeylen-overhead-CIPHER_KEY_LEN);
|
||||
|
||||
/* Length of symmetrically encrypted data. */
|
||||
symlen = fromlen-(pkeylen-overhead-CIPHER_KEY_LEN);
|
||||
|
||||
outlen = crypto_pk_public_encrypt(env,to,tolen,buf,pkeylen-overhead,padding);
|
||||
if (outlen!=(int)pkeylen) {
|
||||
goto err;
|
||||
}
|
||||
r = crypto_cipher_encrypt(cipher, to+outlen,
|
||||
from+pkeylen-overhead-CIPHER_KEY_LEN, symlen);
|
||||
|
||||
if (r<0) goto err;
|
||||
memwipe(buf, 0, pkeylen);
|
||||
memwipe(key, 0, sizeof(key));
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
tor_assert(outlen+symlen < INT_MAX);
|
||||
return (int)(outlen + symlen);
|
||||
err:
|
||||
|
||||
memwipe(buf, 0, pkeylen);
|
||||
memwipe(key, 0, sizeof(key));
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
return -1;
|
||||
}
|
||||
|
||||
/** Invert crypto_pk_obsolete_public_hybrid_encrypt. Returns the number of
|
||||
* bytes written on success, -1 on failure.
|
||||
*
|
||||
* NOTE that this format does not authenticate the symmetrically encrypted
|
||||
* part of the data, and SHOULD NOT BE USED for new protocols.
|
||||
*/
|
||||
int
|
||||
crypto_pk_obsolete_private_hybrid_decrypt(crypto_pk_t *env,
|
||||
char *to,
|
||||
size_t tolen,
|
||||
const char *from,
|
||||
size_t fromlen,
|
||||
int padding, int warnOnFailure)
|
||||
{
|
||||
int outlen, r;
|
||||
size_t pkeylen;
|
||||
crypto_cipher_t *cipher = NULL;
|
||||
char *buf = NULL;
|
||||
|
||||
tor_assert(fromlen < SIZE_T_CEILING);
|
||||
pkeylen = crypto_pk_keysize(env);
|
||||
|
||||
if (fromlen <= pkeylen) {
|
||||
return crypto_pk_private_decrypt(env,to,tolen,from,fromlen,padding,
|
||||
warnOnFailure);
|
||||
}
|
||||
|
||||
buf = tor_malloc(pkeylen);
|
||||
outlen = crypto_pk_private_decrypt(env,buf,pkeylen,from,pkeylen,padding,
|
||||
warnOnFailure);
|
||||
if (outlen<0) {
|
||||
log_fn(warnOnFailure?LOG_WARN:LOG_DEBUG, LD_CRYPTO,
|
||||
"Error decrypting public-key data");
|
||||
goto err;
|
||||
}
|
||||
if (outlen < CIPHER_KEY_LEN) {
|
||||
log_fn(warnOnFailure?LOG_WARN:LOG_INFO, LD_CRYPTO,
|
||||
"No room for a symmetric key");
|
||||
goto err;
|
||||
}
|
||||
cipher = crypto_cipher_new(buf);
|
||||
if (!cipher) {
|
||||
goto err;
|
||||
}
|
||||
memcpy(to,buf+CIPHER_KEY_LEN,outlen-CIPHER_KEY_LEN);
|
||||
outlen -= CIPHER_KEY_LEN;
|
||||
tor_assert(tolen - outlen >= fromlen - pkeylen);
|
||||
r = crypto_cipher_decrypt(cipher, to+outlen, from+pkeylen, fromlen-pkeylen);
|
||||
if (r<0)
|
||||
goto err;
|
||||
memwipe(buf,0,pkeylen);
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
tor_assert(outlen + fromlen < INT_MAX);
|
||||
return (int)(outlen + (fromlen-pkeylen));
|
||||
err:
|
||||
memwipe(buf,0,pkeylen);
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
return -1;
|
||||
}
|
||||
|
||||
/** Copy <b>in</b> to the <b>outlen</b>-byte buffer <b>out</b>, adding spaces
|
||||
* every four characters. */
|
||||
void
|
||||
|
@ -64,16 +64,6 @@ void crypto_cipher_free_(crypto_cipher_t *env);
|
||||
#define crypto_cipher_free(c) \
|
||||
FREE_AND_NULL(crypto_cipher_t, crypto_cipher_free_, (c))
|
||||
|
||||
/* public key crypto */
|
||||
int crypto_pk_obsolete_public_hybrid_encrypt(crypto_pk_t *env, char *to,
|
||||
size_t tolen,
|
||||
const char *from, size_t fromlen,
|
||||
int padding, int force);
|
||||
int crypto_pk_obsolete_private_hybrid_decrypt(crypto_pk_t *env, char *to,
|
||||
size_t tolen,
|
||||
const char *from, size_t fromlen,
|
||||
int padding, int warnOnFailure);
|
||||
|
||||
/* symmetric crypto */
|
||||
const char *crypto_cipher_get_key(crypto_cipher_t *env);
|
||||
|
||||
|
@ -627,6 +627,148 @@ crypto_pk_copy_full(crypto_pk_t *env)
|
||||
return crypto_new_pk_from_rsa_(new_key);
|
||||
}
|
||||
|
||||
/** Perform a hybrid (public/secret) encryption on <b>fromlen</b>
|
||||
* bytes of data from <b>from</b>, with padding type 'padding',
|
||||
* storing the results on <b>to</b>.
|
||||
*
|
||||
* Returns the number of bytes written on success, -1 on failure.
|
||||
*
|
||||
* The encrypted data consists of:
|
||||
* - The source data, padded and encrypted with the public key, if the
|
||||
* padded source data is no longer than the public key, and <b>force</b>
|
||||
* is false, OR
|
||||
* - The beginning of the source data prefixed with a 16-byte symmetric key,
|
||||
* padded and encrypted with the public key; followed by the rest of
|
||||
* the source data encrypted in AES-CTR mode with the symmetric key.
|
||||
*
|
||||
* NOTE that this format does not authenticate the symmetrically encrypted
|
||||
* part of the data, and SHOULD NOT BE USED for new protocols.
|
||||
*/
|
||||
int
|
||||
crypto_pk_obsolete_public_hybrid_encrypt(crypto_pk_t *env,
|
||||
char *to, size_t tolen,
|
||||
const char *from,
|
||||
size_t fromlen,
|
||||
int padding, int force)
|
||||
{
|
||||
int overhead, outlen, r;
|
||||
size_t pkeylen, symlen;
|
||||
crypto_cipher_t *cipher = NULL;
|
||||
char *buf = NULL;
|
||||
|
||||
tor_assert(env);
|
||||
tor_assert(from);
|
||||
tor_assert(to);
|
||||
tor_assert(fromlen < SIZE_T_CEILING);
|
||||
|
||||
overhead = crypto_get_rsa_padding_overhead(crypto_get_rsa_padding(padding));
|
||||
pkeylen = crypto_pk_keysize(env);
|
||||
|
||||
if (!force && fromlen+overhead <= pkeylen) {
|
||||
/* It all fits in a single encrypt. */
|
||||
return crypto_pk_public_encrypt(env,to,
|
||||
tolen,
|
||||
from,fromlen,padding);
|
||||
}
|
||||
tor_assert(tolen >= fromlen + overhead + CIPHER_KEY_LEN);
|
||||
tor_assert(tolen >= pkeylen);
|
||||
|
||||
char key[CIPHER_KEY_LEN];
|
||||
crypto_rand(key, sizeof(key)); /* generate a new key. */
|
||||
cipher = crypto_cipher_new(key);
|
||||
|
||||
buf = tor_malloc(pkeylen+1);
|
||||
memcpy(buf, key, CIPHER_KEY_LEN);
|
||||
memcpy(buf+CIPHER_KEY_LEN, from, pkeylen-overhead-CIPHER_KEY_LEN);
|
||||
|
||||
/* Length of symmetrically encrypted data. */
|
||||
symlen = fromlen-(pkeylen-overhead-CIPHER_KEY_LEN);
|
||||
|
||||
outlen = crypto_pk_public_encrypt(env,to,tolen,buf,pkeylen-overhead,padding);
|
||||
if (outlen!=(int)pkeylen) {
|
||||
goto err;
|
||||
}
|
||||
r = crypto_cipher_encrypt(cipher, to+outlen,
|
||||
from+pkeylen-overhead-CIPHER_KEY_LEN, symlen);
|
||||
|
||||
if (r<0) goto err;
|
||||
memwipe(buf, 0, pkeylen);
|
||||
memwipe(key, 0, sizeof(key));
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
tor_assert(outlen+symlen < INT_MAX);
|
||||
return (int)(outlen + symlen);
|
||||
err:
|
||||
|
||||
memwipe(buf, 0, pkeylen);
|
||||
memwipe(key, 0, sizeof(key));
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
return -1;
|
||||
}
|
||||
|
||||
/** Invert crypto_pk_obsolete_public_hybrid_encrypt. Returns the number of
|
||||
* bytes written on success, -1 on failure.
|
||||
*
|
||||
* NOTE that this format does not authenticate the symmetrically encrypted
|
||||
* part of the data, and SHOULD NOT BE USED for new protocols.
|
||||
*/
|
||||
int
|
||||
crypto_pk_obsolete_private_hybrid_decrypt(crypto_pk_t *env,
|
||||
char *to,
|
||||
size_t tolen,
|
||||
const char *from,
|
||||
size_t fromlen,
|
||||
int padding, int warnOnFailure)
|
||||
{
|
||||
int outlen, r;
|
||||
size_t pkeylen;
|
||||
crypto_cipher_t *cipher = NULL;
|
||||
char *buf = NULL;
|
||||
|
||||
tor_assert(fromlen < SIZE_T_CEILING);
|
||||
pkeylen = crypto_pk_keysize(env);
|
||||
|
||||
if (fromlen <= pkeylen) {
|
||||
return crypto_pk_private_decrypt(env,to,tolen,from,fromlen,padding,
|
||||
warnOnFailure);
|
||||
}
|
||||
|
||||
buf = tor_malloc(pkeylen);
|
||||
outlen = crypto_pk_private_decrypt(env,buf,pkeylen,from,pkeylen,padding,
|
||||
warnOnFailure);
|
||||
if (outlen<0) {
|
||||
log_fn(warnOnFailure?LOG_WARN:LOG_DEBUG, LD_CRYPTO,
|
||||
"Error decrypting public-key data");
|
||||
goto err;
|
||||
}
|
||||
if (outlen < CIPHER_KEY_LEN) {
|
||||
log_fn(warnOnFailure?LOG_WARN:LOG_INFO, LD_CRYPTO,
|
||||
"No room for a symmetric key");
|
||||
goto err;
|
||||
}
|
||||
cipher = crypto_cipher_new(buf);
|
||||
if (!cipher) {
|
||||
goto err;
|
||||
}
|
||||
memcpy(to,buf+CIPHER_KEY_LEN,outlen-CIPHER_KEY_LEN);
|
||||
outlen -= CIPHER_KEY_LEN;
|
||||
tor_assert(tolen - outlen >= fromlen - pkeylen);
|
||||
r = crypto_cipher_decrypt(cipher, to+outlen, from+pkeylen, fromlen-pkeylen);
|
||||
if (r<0)
|
||||
goto err;
|
||||
memwipe(buf,0,pkeylen);
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
tor_assert(outlen + fromlen < INT_MAX);
|
||||
return (int)(outlen + (fromlen-pkeylen));
|
||||
err:
|
||||
memwipe(buf,0,pkeylen);
|
||||
tor_free(buf);
|
||||
crypto_cipher_free(cipher);
|
||||
return -1;
|
||||
}
|
||||
|
||||
/** Encrypt <b>fromlen</b> bytes from <b>from</b> with the public key
|
||||
* in <b>env</b>, using the padding method <b>padding</b>. On success,
|
||||
* write the result to <b>to</b>, and return the number of bytes
|
||||
|
@ -69,6 +69,14 @@ crypto_pk_t *crypto_pk_dup_key(crypto_pk_t *orig);
|
||||
crypto_pk_t *crypto_pk_copy_full(crypto_pk_t *orig);
|
||||
int crypto_pk_key_is_private(const crypto_pk_t *key);
|
||||
int crypto_pk_public_exponent_ok(crypto_pk_t *env);
|
||||
int crypto_pk_obsolete_public_hybrid_encrypt(crypto_pk_t *env, char *to,
|
||||
size_t tolen,
|
||||
const char *from, size_t fromlen,
|
||||
int padding, int force);
|
||||
int crypto_pk_obsolete_private_hybrid_decrypt(crypto_pk_t *env, char *to,
|
||||
size_t tolen,
|
||||
const char *from, size_t fromlen,
|
||||
int padding, int warnOnFailure);
|
||||
int crypto_pk_public_encrypt(crypto_pk_t *env, char *to, size_t tolen,
|
||||
const char *from, size_t fromlen, int padding);
|
||||
int crypto_pk_private_decrypt(crypto_pk_t *env, char *to, size_t tolen,
|
||||
|
Loading…
Reference in New Issue
Block a user