504 lines
12 KiB
C
504 lines
12 KiB
C
/*
|
|
*****************************************************************************
|
|
*
|
|
* File: fko_funcs.c
|
|
*
|
|
* Author: Damien S. Stuart
|
|
*
|
|
* Purpose: General utility functions for libfko
|
|
*
|
|
* Copyright 2009-2010 Damien Stuart (dstuart@dstuart.org)
|
|
*
|
|
* License (GNU Public License):
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public License
|
|
* as published by the Free Software Foundation; either version 2
|
|
* of the License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program; if not, write to the Free Software
|
|
* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
|
|
* USA
|
|
*
|
|
*****************************************************************************
|
|
*/
|
|
#include "fko_common.h"
|
|
#include "fko.h"
|
|
#include "cipher_funcs.h"
|
|
#include "base64.h"
|
|
#include "digest.h"
|
|
|
|
/* Initialize an fko context.
|
|
*/
|
|
int
|
|
fko_new(fko_ctx_t *r_ctx)
|
|
{
|
|
fko_ctx_t ctx;
|
|
int res;
|
|
char *ver;
|
|
|
|
ctx = calloc(1, sizeof *ctx);
|
|
if(ctx == NULL)
|
|
return(FKO_ERROR_MEMORY_ALLOCATION);
|
|
|
|
/* Set default values and state.
|
|
*
|
|
* Note: We have to explicitly set the ctx->state to initialized
|
|
* just before making an fko_xxx function call, then set it
|
|
* back to zero just afer. During initialization, we need
|
|
* to make these functions think they are operating on an
|
|
* initialized context, or else they would fail.
|
|
*/
|
|
|
|
/* Set the version string.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
ver = strdup(FKO_PROTOCOL_VERSION);
|
|
ctx->initval = 0;
|
|
if(ver == NULL)
|
|
{
|
|
free(ctx);
|
|
return(FKO_ERROR_MEMORY_ALLOCATION);
|
|
}
|
|
|
|
ctx->version = ver;
|
|
|
|
/* Rand value.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_rand_value(ctx, NULL);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
/* Username.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_username(ctx, NULL);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
/* Timestamp.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_timestamp(ctx, 0);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
/* Default Digest Type.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_spa_digest_type(ctx, FKO_DEFAULT_DIGEST);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
/* Default Message Type.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_spa_message_type(ctx, FKO_DEFAULT_MSG_TYPE);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
/* Default Encryption Type.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_spa_encryption_type(ctx, FKO_DEFAULT_ENCRYPTION);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
/* Default Encryption Mode (Rijndael in EBC mode for backwards
|
|
* compatibility - it recommended to change this to CBC mode)
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_spa_encryption_mode(ctx, FKO_DEFAULT_ENC_MODE);
|
|
ctx->initval = 0;
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
|
|
#if HAVE_LIBGPGME
|
|
/* Set gpg signature verify on.
|
|
*/
|
|
ctx->verify_gpg_sigs = 1;
|
|
|
|
#endif /* HAVE_LIBGPGME */
|
|
|
|
/* Now we mean it.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
|
|
FKO_SET_CTX_INITIALIZED(ctx);
|
|
|
|
*r_ctx = ctx;
|
|
|
|
return(FKO_SUCCESS);
|
|
}
|
|
|
|
/* Initialize an fko context with external (encrypted/encoded) data.
|
|
* This is used to create a context with the purpose of decoding
|
|
* and parsing the provided data into the context data.
|
|
*/
|
|
int
|
|
fko_new_with_data(fko_ctx_t *r_ctx, const char * const enc_msg,
|
|
const char * const dec_key, const int dec_key_len,
|
|
int encryption_mode, const char * const hmac_key,
|
|
const int hmac_key_len)
|
|
{
|
|
fko_ctx_t ctx;
|
|
int res = FKO_SUCCESS; /* Are we optimistic or what? */
|
|
int enc_msg_len;
|
|
|
|
ctx = calloc(1, sizeof *ctx);
|
|
if(ctx == NULL)
|
|
return(FKO_ERROR_MEMORY_ALLOCATION);
|
|
|
|
enc_msg_len = strnlen(enc_msg, MAX_SPA_ENCODED_MSG_SIZE);
|
|
|
|
if(! is_valid_encoded_msg_len(enc_msg_len))
|
|
{
|
|
free(ctx);
|
|
return(FKO_ERROR_INVALID_DATA);
|
|
}
|
|
|
|
/* First, add the data to the context.
|
|
*/
|
|
ctx->encrypted_msg = strdup(enc_msg);
|
|
ctx->encrypted_msg_len = enc_msg_len;
|
|
|
|
if(ctx->encrypted_msg == NULL)
|
|
{
|
|
free(ctx);
|
|
return(FKO_ERROR_MEMORY_ALLOCATION);
|
|
}
|
|
|
|
/* Default Encryption Mode (Rijndael in CBC mode)
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
res = fko_set_spa_encryption_mode(ctx, encryption_mode);
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
ctx->initval = 0;
|
|
|
|
/* Check HMAC if the access stanza had an HMAC key
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
if(hmac_key_len > 0 && hmac_key != NULL)
|
|
res = fko_verify_hmac(ctx, hmac_key, hmac_key_len);
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
return res;
|
|
}
|
|
ctx->initval = 0;
|
|
|
|
/* Consider it initialized here.
|
|
*/
|
|
ctx->initval = FKO_CTX_INITIALIZED;
|
|
FKO_SET_CTX_INITIALIZED(ctx);
|
|
|
|
/* If a decryption key is provided, go ahead and decrypt and decode.
|
|
*/
|
|
if(dec_key != NULL)
|
|
{
|
|
res = fko_decrypt_spa_data(ctx, dec_key, dec_key_len);
|
|
|
|
if(res != FKO_SUCCESS)
|
|
{
|
|
fko_destroy(ctx);
|
|
*r_ctx = NULL; /* Make sure the caller ctx is null just in case */
|
|
return(res);
|
|
}
|
|
}
|
|
|
|
#if HAVE_LIBGPGME
|
|
/* Set gpg signature verify on.
|
|
*/
|
|
ctx->verify_gpg_sigs = 1;
|
|
|
|
#endif /* HAVE_LIBGPGME */
|
|
|
|
*r_ctx = ctx;
|
|
|
|
return(res);
|
|
}
|
|
|
|
/* Destroy a context and free its resources
|
|
*/
|
|
void
|
|
fko_destroy(fko_ctx_t ctx)
|
|
{
|
|
#if HAVE_LIBGPGME
|
|
fko_gpg_sig_t gsig, tgsig;
|
|
#endif
|
|
|
|
if(CTX_INITIALIZED(ctx))
|
|
{
|
|
if(ctx->rand_val != NULL)
|
|
free(ctx->rand_val);
|
|
|
|
if(ctx->username != NULL)
|
|
free(ctx->username);
|
|
|
|
if(ctx->version != NULL)
|
|
free(ctx->version);
|
|
|
|
if(ctx->message != NULL)
|
|
free(ctx->message);
|
|
|
|
if(ctx->nat_access != NULL)
|
|
free(ctx->nat_access);
|
|
|
|
if(ctx->server_auth != NULL)
|
|
free(ctx->server_auth);
|
|
|
|
if(ctx->digest != NULL)
|
|
free(ctx->digest);
|
|
|
|
if(ctx->raw_digest != NULL)
|
|
free(ctx->raw_digest);
|
|
|
|
if(ctx->encoded_msg != NULL)
|
|
free(ctx->encoded_msg);
|
|
|
|
if(ctx->encrypted_msg != NULL)
|
|
free(ctx->encrypted_msg);
|
|
|
|
if(ctx->msg_hmac != NULL)
|
|
free(ctx->msg_hmac);
|
|
|
|
#if HAVE_LIBGPGME
|
|
if(ctx->gpg_exe != NULL)
|
|
free(ctx->gpg_exe);
|
|
|
|
if(ctx->gpg_home_dir != NULL)
|
|
free(ctx->gpg_home_dir);
|
|
|
|
if(ctx->gpg_recipient != NULL)
|
|
free(ctx->gpg_recipient);
|
|
|
|
if(ctx->gpg_signer != NULL)
|
|
free(ctx->gpg_signer);
|
|
|
|
if(ctx->recipient_key != NULL)
|
|
{
|
|
gpgme_key_unref(ctx->recipient_key);
|
|
}
|
|
|
|
if(ctx->signer_key != NULL)
|
|
{
|
|
gpgme_key_unref(ctx->signer_key);
|
|
}
|
|
|
|
if(ctx->gpg_ctx != NULL)
|
|
gpgme_release(ctx->gpg_ctx);
|
|
|
|
gsig = ctx->gpg_sigs;
|
|
while(gsig != NULL)
|
|
{
|
|
if(gsig->fpr != NULL)
|
|
free(gsig->fpr);
|
|
|
|
tgsig = gsig;
|
|
gsig = gsig->next;
|
|
|
|
free(tgsig);
|
|
}
|
|
|
|
#endif /* HAVE_LIBGPGME */
|
|
|
|
bzero(ctx, sizeof(*ctx));
|
|
}
|
|
|
|
free(ctx);
|
|
}
|
|
|
|
/* Generate Rijndael and HMAC keys from /dev/random and base64
|
|
* encode them
|
|
*/
|
|
int
|
|
fko_key_gen(char * const key_base64, char * const hmac_key_base64)
|
|
{
|
|
unsigned char key[RIJNDAEL_MAX_KEYSIZE];
|
|
unsigned char hmac_key[SHA256_BLOCK_LEN];
|
|
|
|
get_random_data(key, RIJNDAEL_MAX_KEYSIZE);
|
|
get_random_data(hmac_key, SHA256_BLOCK_LEN);
|
|
|
|
b64_encode(key, key_base64, RIJNDAEL_MAX_KEYSIZE);
|
|
b64_encode(hmac_key, hmac_key_base64, SHA256_BLOCK_LEN);
|
|
|
|
return(FKO_SUCCESS);
|
|
}
|
|
|
|
/* Provide an FKO wrapper around base64 encode/decode functions
|
|
*/
|
|
int
|
|
fko_base64_encode(unsigned char * const in, char * const out, int in_len)
|
|
{
|
|
return b64_encode(in, out, in_len);
|
|
}
|
|
|
|
int
|
|
fko_base64_decode(const char * const in, unsigned char *out)
|
|
{
|
|
return b64_decode(in, out);
|
|
}
|
|
|
|
/* Return the fko version
|
|
*/
|
|
int
|
|
fko_get_version(fko_ctx_t ctx, char **version)
|
|
{
|
|
/* Must be initialized
|
|
*/
|
|
if(!CTX_INITIALIZED(ctx))
|
|
return(FKO_ERROR_CTX_NOT_INITIALIZED);
|
|
|
|
*version = ctx->version;
|
|
|
|
return(FKO_SUCCESS);
|
|
}
|
|
|
|
/* Final update and encoding of data in the context.
|
|
* This does require all requisite fields be properly
|
|
* set.
|
|
*/
|
|
int
|
|
fko_spa_data_final(fko_ctx_t ctx,
|
|
const char * const enc_key, const int enc_key_len,
|
|
const char * const hmac_key, const int hmac_key_len)
|
|
{
|
|
char *tbuf;
|
|
int res = 0, data_with_hmac_len = 0;
|
|
|
|
/* Must be initialized
|
|
*/
|
|
if(!CTX_INITIALIZED(ctx))
|
|
return(FKO_ERROR_CTX_NOT_INITIALIZED);
|
|
|
|
res = fko_encrypt_spa_data(ctx, enc_key, enc_key_len);
|
|
|
|
/* Now calculate hmac if so configured
|
|
*/
|
|
if (res == FKO_SUCCESS &&
|
|
ctx->hmac_mode != FKO_HMAC_UNKNOWN && hmac_key != NULL)
|
|
{
|
|
res = fko_calculate_hmac(ctx, hmac_key, hmac_key_len);
|
|
|
|
if (res == FKO_SUCCESS)
|
|
{
|
|
/* Now that we have the hmac, append it to the
|
|
* encrypted data (which has already been base64-encoded
|
|
* and the trailing '=' chars stripped off).
|
|
*/
|
|
data_with_hmac_len
|
|
= ctx->encrypted_msg_len+1+ctx->msg_hmac_len+1;
|
|
|
|
tbuf = realloc(ctx->encrypted_msg, data_with_hmac_len);
|
|
if (tbuf == NULL)
|
|
return(FKO_ERROR_MEMORY_ALLOCATION);
|
|
|
|
strlcat(tbuf, ctx->msg_hmac, data_with_hmac_len);
|
|
|
|
ctx->encrypted_msg = tbuf;
|
|
}
|
|
}
|
|
|
|
return res;
|
|
}
|
|
|
|
/* Return the fko SPA encrypted data.
|
|
*/
|
|
int
|
|
fko_get_spa_data(fko_ctx_t ctx, char **spa_data)
|
|
{
|
|
/* Must be initialized
|
|
*/
|
|
if(!CTX_INITIALIZED(ctx))
|
|
return(FKO_ERROR_CTX_NOT_INITIALIZED);
|
|
|
|
/* We expect to have encrypted data to process. If not, we bail.
|
|
*/
|
|
if(ctx->encrypted_msg == NULL || ! is_valid_encoded_msg_len(
|
|
strnlen(ctx->encrypted_msg, MAX_SPA_ENCODED_MSG_SIZE)))
|
|
return(FKO_ERROR_MISSING_ENCODED_DATA);
|
|
|
|
*spa_data = ctx->encrypted_msg;
|
|
|
|
/* Notice we omit the first 10 bytes if Rijndael encryption is
|
|
* used (to eliminate the consistent 'Salted__' string), and
|
|
* in GnuPG mode we eliminate the consistent 'hQ' base64 encoded
|
|
* prefix
|
|
*/
|
|
if(ctx->encryption_type == FKO_ENCRYPTION_RIJNDAEL)
|
|
*spa_data += B64_RIJNDAEL_SALT_STR_LEN;
|
|
else if(ctx->encryption_type == FKO_ENCRYPTION_GPG)
|
|
*spa_data += B64_GPG_PREFIX_STR_LEN;
|
|
|
|
return(FKO_SUCCESS);
|
|
}
|
|
|
|
/* Set the fko SPA encrypted data.
|
|
*/
|
|
int
|
|
fko_set_spa_data(fko_ctx_t ctx, const char * const enc_msg)
|
|
{
|
|
int enc_msg_len;
|
|
|
|
/* Must be initialized
|
|
*/
|
|
if(!CTX_INITIALIZED(ctx))
|
|
return FKO_ERROR_CTX_NOT_INITIALIZED;
|
|
|
|
enc_msg_len = strnlen(enc_msg, MAX_SPA_ENCODED_MSG_SIZE);
|
|
|
|
if(! is_valid_encoded_msg_len(enc_msg_len))
|
|
return(FKO_ERROR_INVALID_DATA);
|
|
|
|
/* First, add the data to the context.
|
|
*/
|
|
ctx->encrypted_msg = strdup(enc_msg);
|
|
ctx->encrypted_msg_len = enc_msg_len;
|
|
|
|
if(ctx->encrypted_msg == NULL)
|
|
return(FKO_ERROR_MEMORY_ALLOCATION);
|
|
|
|
return(FKO_SUCCESS);
|
|
}
|
|
|
|
/***EOF***/
|