mirror of
https://git.sr.ht/~thestr4ng3r/chiaki
synced 2025-08-14 18:57:07 -07:00
Fix GKCrypt and add tests
This commit is contained in:
Florian Märkl
parent
9fc743d81c
commit
1588e81b9e
3 changed files with 122 additions and 13 deletions
|
|
@ -40,8 +40,9 @@ typedef struct chiaki_gkcrypt_t {
|
|||
|
||||
struct chiaki_session_t;
|
||||
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_init(ChiakiGKCrypt *gkcrypt, struct chiaki_session_t *session, size_t key_buf_blocks, uint8_t index, uint8_t *handshake_key, uint8_t *ecdh_secret);
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_init(ChiakiGKCrypt *gkcrypt, ChiakiLog *log, size_t key_buf_blocks, uint8_t index, const uint8_t *handshake_key, const uint8_t *ecdh_secret);
|
||||
CHIAKI_EXPORT void chiaki_gkcrypt_fini(ChiakiGKCrypt *gkcrypt);
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_gen_key_stream(ChiakiGKCrypt *gkcrypt, size_t key_pos, uint8_t *buf, size_t buf_size);
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_decrypt(ChiakiGKCrypt *gkcrypt, size_t key_pos, uint8_t *buf, size_t buf_size);
|
||||
static inline ChiakiErrorCode chiaki_gkcrypt_encrypt(ChiakiGKCrypt *gkcrypt, size_t key_pos, uint8_t *buf, size_t buf_size) { return chiaki_gkcrypt_decrypt(gkcrypt, key_pos, buf, buf_size); }
|
||||
|
||||
|
|
|
|||
|
|
@ -27,12 +27,12 @@
|
|||
#include "utils.h"
|
||||
|
||||
|
||||
static ChiakiErrorCode gkcrypt_gen_key_iv(ChiakiGKCrypt *gkcrypt, uint8_t index, uint8_t *handshake_key, uint8_t *ecdh_secret);
|
||||
static ChiakiErrorCode gkcrypt_gen_key_iv(ChiakiGKCrypt *gkcrypt, uint8_t index, const uint8_t *handshake_key, const uint8_t *ecdh_secret);
|
||||
|
||||
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_init(ChiakiGKCrypt *gkcrypt, ChiakiSession *session, size_t key_buf_blocks, uint8_t index, uint8_t *handshake_key, uint8_t *ecdh_secret)
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_init(ChiakiGKCrypt *gkcrypt, ChiakiLog *log, size_t key_buf_blocks, uint8_t index, const uint8_t *handshake_key, const uint8_t *ecdh_secret)
|
||||
{
|
||||
gkcrypt->log = &session->log;
|
||||
gkcrypt->log = log;
|
||||
gkcrypt->key_buf_size = key_buf_blocks * CHIAKI_GKCRYPT_BLOCK_SIZE;
|
||||
gkcrypt->key_buf = malloc(gkcrypt->key_buf_size);
|
||||
if(!gkcrypt->key_buf)
|
||||
|
|
@ -42,6 +42,7 @@ CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_init(ChiakiGKCrypt *gkcrypt, Chiaki
|
|||
if(err != CHIAKI_ERR_SUCCESS)
|
||||
{
|
||||
CHIAKI_LOGE(gkcrypt->log, "GKCrypt failed to generate key and IV\n");
|
||||
free(gkcrypt->key_buf);
|
||||
return CHIAKI_ERR_UNKNOWN;
|
||||
}
|
||||
|
||||
|
|
@ -54,7 +55,7 @@ CHIAKI_EXPORT void chiaki_gkcrypt_fini(ChiakiGKCrypt *gkcrypt)
|
|||
}
|
||||
|
||||
|
||||
static ChiakiErrorCode gkcrypt_gen_key_iv(ChiakiGKCrypt *gkcrypt, uint8_t index, uint8_t *handshake_key, uint8_t *ecdh_secret)
|
||||
static ChiakiErrorCode gkcrypt_gen_key_iv(ChiakiGKCrypt *gkcrypt, uint8_t index, const uint8_t *handshake_key, const uint8_t *ecdh_secret)
|
||||
{
|
||||
uint8_t data[3 + CHIAKI_HANDSHAKE_KEY_SIZE + 2];
|
||||
data[0] = 1;
|
||||
|
|
@ -66,7 +67,7 @@ static ChiakiErrorCode gkcrypt_gen_key_iv(ChiakiGKCrypt *gkcrypt, uint8_t index,
|
|||
|
||||
uint8_t hmac[CHIAKI_GKCRYPT_BLOCK_SIZE*2];
|
||||
size_t hmac_size = sizeof(hmac);
|
||||
if(!HMAC(EVP_sha256(), handshake_key, CHIAKI_HANDSHAKE_KEY_SIZE, ecdh_secret, CHIAKI_ECDH_SECRET_SIZE, hmac, (unsigned int *)&hmac_size))
|
||||
if(!HMAC(EVP_sha256(), ecdh_secret, CHIAKI_ECDH_SECRET_SIZE, data, sizeof(data), hmac, (unsigned int *)&hmac_size))
|
||||
return CHIAKI_ERR_UNKNOWN;
|
||||
|
||||
assert(hmac_size == sizeof(hmac));
|
||||
|
|
@ -79,17 +80,20 @@ static ChiakiErrorCode gkcrypt_gen_key_iv(ChiakiGKCrypt *gkcrypt, uint8_t index,
|
|||
|
||||
static inline void counter_add(uint8_t *out, const uint8_t *base, int v)
|
||||
{
|
||||
size_t i=CHIAKI_GKCRYPT_BLOCK_SIZE;
|
||||
size_t i=0;
|
||||
do
|
||||
{
|
||||
i--;
|
||||
int r = (int)base[i] + v;
|
||||
out[i] = (uint8_t)(r & 0xff);
|
||||
v = r >> 8;
|
||||
} while(i>0 && v);
|
||||
i++;
|
||||
} while(i<CHIAKI_GKCRYPT_BLOCK_SIZE && v);
|
||||
|
||||
if(i < CHIAKI_GKCRYPT_BLOCK_SIZE)
|
||||
memcpy(out + i, base + i, CHIAKI_GKCRYPT_BLOCK_SIZE - i);
|
||||
}
|
||||
|
||||
static ChiakiErrorCode gkcrypt_gen_key_stream(ChiakiGKCrypt *gkcrypt, size_t key_pos, uint8_t *buf, size_t buf_size)
|
||||
CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_gen_key_stream(ChiakiGKCrypt *gkcrypt, size_t key_pos, uint8_t *buf, size_t buf_size)
|
||||
{
|
||||
assert(key_pos % CHIAKI_GKCRYPT_BLOCK_SIZE == 0);
|
||||
assert(buf_size % CHIAKI_GKCRYPT_BLOCK_SIZE == 0);
|
||||
|
|
@ -110,8 +114,10 @@ static ChiakiErrorCode gkcrypt_gen_key_stream(ChiakiGKCrypt *gkcrypt, size_t key
|
|||
return CHIAKI_ERR_UNKNOWN;
|
||||
}
|
||||
|
||||
int counter_offset = (int)(key_pos / CHIAKI_GKCRYPT_BLOCK_SIZE);
|
||||
|
||||
for(uint8_t *cur = buf, *end = buf + buf_size; cur < end; cur += CHIAKI_GKCRYPT_BLOCK_SIZE)
|
||||
counter_add(cur, gkcrypt->iv, (int)key_pos++);
|
||||
counter_add(cur, gkcrypt->iv, counter_offset++);
|
||||
|
||||
int outl;
|
||||
EVP_EncryptUpdate(ctx, buf, &outl, buf, (int)buf_size);
|
||||
|
|
@ -134,7 +140,7 @@ CHIAKI_EXPORT ChiakiErrorCode chiaki_gkcrypt_decrypt(ChiakiGKCrypt *gkcrypt, siz
|
|||
if(!key_stream)
|
||||
return CHIAKI_ERR_MEMORY;
|
||||
|
||||
ChiakiErrorCode err = gkcrypt_gen_key_stream(gkcrypt, key_pos - padding_pre, key_stream, full_size);
|
||||
ChiakiErrorCode err = chiaki_gkcrypt_gen_key_stream(gkcrypt, key_pos - padding_pre, key_stream, full_size);
|
||||
if(err != CHIAKI_ERR_SUCCESS)
|
||||
{
|
||||
free(key_stream);
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue