diff options
| author | irungentoo <irungentoo@gmail.com> | 2013-08-14 07:10:14 -0700 |
|---|---|---|
| committer | irungentoo <irungentoo@gmail.com> | 2013-08-14 07:10:14 -0700 |
| commit | 0338c3c9e87bc7340c3d46f011df22740c7038ea (patch) | |
| tree | 7ee03729a44bbfaeca125c2200d9a2c78d033010 /core/net_crypto.c | |
| parent | 8eb8fb2ab5f703388be8987fd6b2cdf9dbc567e9 (diff) | |
| parent | a854a730ecd3b92426914d9bc30713ade92d5727 (diff) | |
Merge pull request #464 from slvr/crypto-fix
Incorrect constants: s/BOXZERO/ZERO/
Diffstat (limited to 'core/net_crypto.c')
| -rw-r--r-- | core/net_crypto.c | 76 |
1 files changed, 18 insertions, 58 deletions
diff --git a/core/net_crypto.c b/core/net_crypto.c index 07c43c40..ab18dd63 100644 --- a/core/net_crypto.c +++ b/core/net_crypto.c | |||
| @@ -71,33 +71,6 @@ uint8_t crypto_iszero(uint8_t *mem, uint32_t length) | |||
| 71 | return check; // We return zero if mem is made out of zeroes. | 71 | return check; // We return zero if mem is made out of zeroes. |
| 72 | } | 72 | } |
| 73 | 73 | ||
| 74 | /* encrypts plain of length length to encrypted of length + 16 using the | ||
| 75 | public key(32 bytes) of the receiver and the secret key of the sender and a 24 byte nonce | ||
| 76 | return -1 if there was a problem. | ||
| 77 | return length of encrypted data if everything was fine. */ | ||
| 78 | int encrypt_data(uint8_t *public_key, uint8_t *secret_key, uint8_t *nonce, | ||
| 79 | uint8_t *plain, uint32_t length, uint8_t *encrypted) | ||
| 80 | { | ||
| 81 | if (length + crypto_box_MACBYTES > MAX_DATA_SIZE || length == 0) | ||
| 82 | return -1; | ||
| 83 | |||
| 84 | uint8_t temp_plain[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES] = {0}; | ||
| 85 | uint8_t temp_encrypted[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES]; | ||
| 86 | |||
| 87 | memcpy(temp_plain + crypto_box_ZEROBYTES, plain, length); /* pad the message with 32 0 bytes. */ | ||
| 88 | |||
| 89 | crypto_box(temp_encrypted, temp_plain, length + crypto_box_ZEROBYTES, nonce, public_key, secret_key); | ||
| 90 | |||
| 91 | /* if encryption is successful the first crypto_box_BOXZEROBYTES of the message will be zero | ||
| 92 | apparently memcmp should not be used so we do this instead:*/ | ||
| 93 | if(crypto_iszero(temp_encrypted, crypto_box_BOXZEROBYTES) != 0) | ||
| 94 | return -1; | ||
| 95 | |||
| 96 | /* unpad the encrypted message */ | ||
| 97 | memcpy(encrypted, temp_encrypted + crypto_box_BOXZEROBYTES, length + crypto_box_MACBYTES); | ||
| 98 | return length - crypto_box_BOXZEROBYTES + crypto_box_ZEROBYTES; | ||
| 99 | } | ||
| 100 | |||
| 101 | /* Precomputes the shared key from their public_key and our secret_key. | 74 | /* Precomputes the shared key from their public_key and our secret_key. |
| 102 | This way we can avoid an expensive elliptic curve scalar multiply for each | 75 | This way we can avoid an expensive elliptic curve scalar multiply for each |
| 103 | encrypt/decrypt operation. | 76 | encrypt/decrypt operation. |
| @@ -114,7 +87,7 @@ int encrypt_data_fast(uint8_t *enc_key, uint8_t *nonce, | |||
| 114 | if (length + crypto_box_MACBYTES > MAX_DATA_SIZE || length == 0) | 87 | if (length + crypto_box_MACBYTES > MAX_DATA_SIZE || length == 0) |
| 115 | return -1; | 88 | return -1; |
| 116 | 89 | ||
| 117 | uint8_t temp_plain[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES] = {0}; | 90 | uint8_t temp_plain[MAX_DATA_SIZE + crypto_box_ZEROBYTES] = {0}; |
| 118 | uint8_t temp_encrypted[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES]; | 91 | uint8_t temp_encrypted[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES]; |
| 119 | 92 | ||
| 120 | memcpy(temp_plain + crypto_box_ZEROBYTES, plain, length); /* pad the message with 32 0 bytes. */ | 93 | memcpy(temp_plain + crypto_box_ZEROBYTES, plain, length); /* pad the message with 32 0 bytes. */ |
| @@ -129,35 +102,6 @@ int encrypt_data_fast(uint8_t *enc_key, uint8_t *nonce, | |||
| 129 | return length - crypto_box_BOXZEROBYTES + crypto_box_ZEROBYTES; | 102 | return length - crypto_box_BOXZEROBYTES + crypto_box_ZEROBYTES; |
| 130 | } | 103 | } |
| 131 | 104 | ||
| 132 | /* decrypts encrypted of length length to plain of length length - 16 using the | ||
| 133 | public key(32 bytes) of the sender, the secret key of the receiver and a 24 byte nonce | ||
| 134 | return -1 if there was a problem(decryption failed) | ||
| 135 | return length of plain data if everything was fine. */ | ||
| 136 | int decrypt_data(uint8_t *public_key, uint8_t *secret_key, uint8_t *nonce, | ||
| 137 | uint8_t *encrypted, uint32_t length, uint8_t *plain) | ||
| 138 | { | ||
| 139 | if (length > MAX_DATA_SIZE || length <= crypto_box_BOXZEROBYTES) | ||
| 140 | return -1; | ||
| 141 | |||
| 142 | uint8_t temp_plain[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES]; | ||
| 143 | uint8_t temp_encrypted[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES] = {0}; | ||
| 144 | |||
| 145 | memcpy(temp_encrypted + crypto_box_BOXZEROBYTES, encrypted, length); /* pad the message with 16 0 bytes. */ | ||
| 146 | |||
| 147 | if (crypto_box_open(temp_plain, temp_encrypted, length + crypto_box_BOXZEROBYTES, | ||
| 148 | nonce, public_key, secret_key) == -1) | ||
| 149 | return -1; | ||
| 150 | |||
| 151 | /* if decryption is successful the first crypto_box_ZEROBYTES of the message will be zero | ||
| 152 | apparently memcmp should not be used so we do this instead:*/ | ||
| 153 | if(crypto_iszero(temp_plain, crypto_box_ZEROBYTES) != 0) | ||
| 154 | return -1; | ||
| 155 | |||
| 156 | /* unpad the plain message */ | ||
| 157 | memcpy(plain, temp_plain + crypto_box_ZEROBYTES, length - crypto_box_MACBYTES); | ||
| 158 | return length - crypto_box_ZEROBYTES + crypto_box_BOXZEROBYTES; | ||
| 159 | } | ||
| 160 | |||
| 161 | /* Fast decrypt. Depends on enc_ley from encrypt_precompute. */ | 105 | /* Fast decrypt. Depends on enc_ley from encrypt_precompute. */ |
| 162 | int decrypt_data_fast(uint8_t *enc_key, uint8_t *nonce, | 106 | int decrypt_data_fast(uint8_t *enc_key, uint8_t *nonce, |
| 163 | uint8_t *encrypted, uint32_t length, uint8_t *plain) | 107 | uint8_t *encrypted, uint32_t length, uint8_t *plain) |
| @@ -165,7 +109,7 @@ int decrypt_data_fast(uint8_t *enc_key, uint8_t *nonce, | |||
| 165 | if (length > MAX_DATA_SIZE || length <= crypto_box_BOXZEROBYTES) | 109 | if (length > MAX_DATA_SIZE || length <= crypto_box_BOXZEROBYTES) |
| 166 | return -1; | 110 | return -1; |
| 167 | 111 | ||
| 168 | uint8_t temp_plain[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES]; | 112 | uint8_t temp_plain[MAX_DATA_SIZE + crypto_box_ZEROBYTES]; |
| 169 | uint8_t temp_encrypted[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES] = {0}; | 113 | uint8_t temp_encrypted[MAX_DATA_SIZE + crypto_box_BOXZEROBYTES] = {0}; |
| 170 | 114 | ||
| 171 | memcpy(temp_encrypted + crypto_box_BOXZEROBYTES, encrypted, length); /* pad the message with 16 0 bytes. */ | 115 | memcpy(temp_encrypted + crypto_box_BOXZEROBYTES, encrypted, length); /* pad the message with 16 0 bytes. */ |
| @@ -184,6 +128,22 @@ int decrypt_data_fast(uint8_t *enc_key, uint8_t *nonce, | |||
| 184 | return length - crypto_box_ZEROBYTES + crypto_box_BOXZEROBYTES; | 128 | return length - crypto_box_ZEROBYTES + crypto_box_BOXZEROBYTES; |
| 185 | } | 129 | } |
| 186 | 130 | ||
| 131 | int encrypt_data(uint8_t *public_key, uint8_t *secret_key, uint8_t *nonce, | ||
| 132 | uint8_t *plain, uint32_t length, uint8_t *encrypted) | ||
| 133 | { | ||
| 134 | uint8_t k[crypto_box_BEFORENMBYTES]; | ||
| 135 | encrypt_precompute(public_key, secret_key, k); | ||
| 136 | return encrypt_data_fast(k, nonce, plain, length, encrypted); | ||
| 137 | } | ||
| 138 | |||
| 139 | int decrypt_data(uint8_t *public_key, uint8_t *secret_key, uint8_t *nonce, | ||
| 140 | uint8_t *encrypted, uint32_t length, uint8_t *plain) | ||
| 141 | { | ||
| 142 | uint8_t k[crypto_box_BEFORENMBYTES]; | ||
| 143 | encrypt_precompute(public_key, secret_key, k); | ||
| 144 | return decrypt_data_fast(k, nonce, encrypted, length, plain); | ||
| 145 | } | ||
| 146 | |||
| 187 | /* increment the given nonce by 1 */ | 147 | /* increment the given nonce by 1 */ |
| 188 | static void increment_nonce(uint8_t *nonce) | 148 | static void increment_nonce(uint8_t *nonce) |
| 189 | { | 149 | { |