mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21061 Commits
28 Branches
Tree: 6b2b416718
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6b2b416718'
${ noResults }
rspamd/src/libcryptobox/cryptobox.h

cryptobox.h 13KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. #ifndef CRYPTOBOX_H_

  17. #define CRYPTOBOX_H_

  18. 

  19. #include "config.h"

  20. 

  21. #include <sodium.h>

  22. 

  23. #ifdef __cplusplus

  24. extern "C" {

  25. #endif

  26. 

  27. struct rspamd_cryptobox_segment {

  28. 	guchar *data;

  29. 	gsize len;

  30. };

  31. 

  32. #if defined(__GNUC__) &&                                                                                 \

  33. 	((defined(__clang__) && (__clang_major__ >= 4 || (__clang_major__ >= 3 && __clang_minor__ >= 8))) || \

  34. 	 ((__GNUC__ == 4) && (__GNUC_MINOR__ >= 8) || (__GNUC__ > 4)))

  35. #define RSPAMD_HAS_TARGET_ATTR 1

  36. #endif

  37. 

  38. #define rspamd_cryptobox_MAX_NONCEBYTES 24

  39. #define rspamd_cryptobox_MAX_PKBYTES 65

  40. #define rspamd_cryptobox_MAX_SKBYTES 32

  41. #define rspamd_cryptobox_MAX_MACBYTES 16

  42. #define rspamd_cryptobox_MAX_NMBYTES 32

  43. #define rspamd_cryptobox_SIPKEYBYTES 16

  44. #define rspamd_cryptobox_HASHBYTES 64

  45. #define rspamd_cryptobox_HASHKEYBYTES 64

  46. #define rspamd_cryptobox_HASHSTATEBYTES sizeof(crypto_generichash_blake2b_state) + 64

  47. #define rspamd_cryptobox_MAX_SIGSKBYTES 64

  48. #define rspamd_cryptobox_MAX_SIGPKBYTES 32

  49. #define rspamd_cryptobox_MAX_SIGBYTES 72

  50. 

  51. #define CPUID_AVX2 0x1

  52. #define CPUID_AVX 0x2

  53. #define CPUID_SSE2 0x4

  54. #define CPUID_SSE3 0x8

  55. #define CPUID_SSSE3 0x10

  56. #define CPUID_SSE41 0x20

  57. #define CPUID_SSE42 0x40

  58. #define CPUID_RDRAND 0x80

  59. 

  60. typedef guchar rspamd_pk_t[rspamd_cryptobox_MAX_PKBYTES];

  61. typedef guchar rspamd_sk_t[rspamd_cryptobox_MAX_SKBYTES];

  62. typedef guchar rspamd_mac_t[rspamd_cryptobox_MAX_MACBYTES];

  63. typedef guchar rspamd_nm_t[rspamd_cryptobox_MAX_NMBYTES];

  64. typedef guchar rspamd_nonce_t[rspamd_cryptobox_MAX_NONCEBYTES];

  65. typedef guchar rspamd_sipkey_t[rspamd_cryptobox_SIPKEYBYTES];

  66. typedef guchar rspamd_signature_t[rspamd_cryptobox_MAX_SIGBYTES];

  67. typedef guchar rspamd_sig_pk_t[rspamd_cryptobox_MAX_SIGPKBYTES];

  68. typedef guchar rspamd_sig_sk_t[rspamd_cryptobox_MAX_SIGSKBYTES];

  69. 

  70. enum rspamd_cryptobox_mode {

  71. 	RSPAMD_CRYPTOBOX_MODE_25519 = 0,

  72. 	RSPAMD_CRYPTOBOX_MODE_NIST

  73. };

  74. 

  75. struct rspamd_cryptobox_library_ctx {

  76. 	gchar *cpu_extensions;

  77. 	const gchar *chacha20_impl;

  78. 	const gchar *base64_impl;

  79. 	unsigned long cpu_config;

  80. };

  81. 

  82. /**

  83.  * Init cryptobox library

  84.  */

  85. struct rspamd_cryptobox_library_ctx *rspamd_cryptobox_init(void);

  86. 

  87. void rspamd_cryptobox_deinit(struct rspamd_cryptobox_library_ctx *);

  88. /**

  89.  * Generate new keypair

  90.  * @param pk public key buffer

  91.  * @param sk secret key buffer

  92.  */

  93. void rspamd_cryptobox_keypair(rspamd_pk_t pk, rspamd_sk_t sk,

  94. 							  enum rspamd_cryptobox_mode mode);

  95. 

  96. /**

  97.  * Generate new keypair for signing

  98.  * @param pk public key buffer

  99.  * @param sk secret key buffer

  100.  */

  101. void rspamd_cryptobox_keypair_sig(rspamd_sig_pk_t pk, rspamd_sig_sk_t sk,

  102. 								  enum rspamd_cryptobox_mode mode);

  103. 

  104. /**

  105.  * Encrypt data inplace adding signature to sig afterwards

  106.  * @param data input buffer

  107.  * @param pk remote pubkey

  108.  * @param sk local secret key

  109.  * @param sig output signature

  110.  */

  111. void rspamd_cryptobox_encrypt_inplace(guchar *data, gsize len,

  112. 									  const rspamd_nonce_t nonce,

  113. 									  const rspamd_pk_t pk, const rspamd_sk_t sk, rspamd_mac_t sig,

  114. 									  enum rspamd_cryptobox_mode mode);

  115. 

  116. /**

  117.  * Encrypt segments of data inplace adding signature to sig afterwards

  118.  * @param segments segments of data

  119.  * @param cnt count of segments

  120.  * @param pk remote pubkey

  121.  * @param sk local secret key

  122.  * @param sig output signature

  123.  */

  124. void rspamd_cryptobox_encryptv_inplace(struct rspamd_cryptobox_segment *segments,

  125. 									   gsize cnt,

  126. 									   const rspamd_nonce_t nonce,

  127. 									   const rspamd_pk_t pk, const rspamd_sk_t sk, rspamd_mac_t sig,

  128. 									   enum rspamd_cryptobox_mode mode);

  129. 

  130. 

  131. /**

  132.  * Decrypt and verify data chunk inplace

  133.  * @param data data to decrypt

  134.  * @param len length of data

  135.  * @param pk remote pubkey

  136.  * @param sk local privkey

  137.  * @param sig signature input

  138.  * @return TRUE if input has been verified successfully

  139.  */

  140. gboolean rspamd_cryptobox_decrypt_inplace(guchar *data, gsize len,

  141. 										  const rspamd_nonce_t nonce,

  142. 										  const rspamd_pk_t pk, const rspamd_sk_t sk, const rspamd_mac_t sig,

  143. 										  enum rspamd_cryptobox_mode mode);

  144. 

  145. /**

  146.  * Encrypt segments of data inplace adding signature to sig afterwards

  147.  * @param segments segments of data

  148.  * @param cnt count of segments

  149.  * @param pk remote pubkey

  150.  * @param sk local secret key

  151.  * @param sig output signature

  152.  */

  153. void rspamd_cryptobox_encrypt_nm_inplace(guchar *data, gsize len,

  154. 										 const rspamd_nonce_t nonce,

  155. 										 const rspamd_nm_t nm, rspamd_mac_t sig,

  156. 										 enum rspamd_cryptobox_mode mode);

  157. 

  158. /**

  159.  * Encrypt segments of data inplace adding signature to sig afterwards

  160.  * @param segments segments of data

  161.  * @param cnt count of segments

  162.  * @param pk remote pubkey

  163.  * @param sk local secret key

  164.  * @param sig output signature

  165.  */

  166. void rspamd_cryptobox_encryptv_nm_inplace(struct rspamd_cryptobox_segment *segments,

  167. 										  gsize cnt,

  168. 										  const rspamd_nonce_t nonce,

  169. 										  const rspamd_nm_t nm, rspamd_mac_t sig,

  170. 										  enum rspamd_cryptobox_mode mode);

  171. 

  172. 

  173. /**

  174.  * Decrypt and verify data chunk inplace

  175.  * @param data data to decrypt

  176.  * @param len length of data

  177.  * @param pk remote pubkey

  178.  * @param sk local privkey

  179.  * @param sig signature input

  180.  * @return TRUE if input has been verified successfully

  181.  */

  182. gboolean rspamd_cryptobox_decrypt_nm_inplace(guchar *data, gsize len,

  183. 											 const rspamd_nonce_t nonce,

  184. 											 const rspamd_nm_t nm, const rspamd_mac_t sig,

  185. 											 enum rspamd_cryptobox_mode mode);

  186. 

  187. /**

  188.  * Generate shared secret from local sk and remote pk

  189.  * @param nm shared secret

  190.  * @param pk remote pubkey

  191.  * @param sk local privkey

  192.  */

  193. void rspamd_cryptobox_nm(rspamd_nm_t nm, const rspamd_pk_t pk,

  194. 						 const rspamd_sk_t sk, enum rspamd_cryptobox_mode mode);

  195. 

  196. /**

  197.  * Create digital signature for the specified message and place result in `sig`

  198.  * @param sig signature target

  199.  * @param siglen_p pointer to signature length (might be NULL)

  200.  * @param m input message

  201.  * @param mlen input length

  202.  * @param sk secret key

  203.  */

  204. void rspamd_cryptobox_sign(guchar *sig, unsigned long long *siglen_p,

  205. 						   const guchar *m, gsize mlen,

  206. 						   const rspamd_sk_t sk,

  207. 						   enum rspamd_cryptobox_mode mode);

  208. 

  209. /**

  210.  * Verifies digital signature for the specified message using the specified

  211.  * pubkey

  212.  * @param sig signature source

  213.  * @param m input message

  214.  * @param mlen message length

  215.  * @param pk public key for verification

  216.  * @return true if signature is valid, false otherwise

  217.  */

  218. bool rspamd_cryptobox_verify(const guchar *sig,

  219. 							 gsize siglen,

  220. 							 const guchar *m,

  221. 							 gsize mlen,

  222. 							 const rspamd_pk_t pk,

  223. 							 enum rspamd_cryptobox_mode mode);

  224. 

  225. /**

  226.  * Securely clear the buffer specified

  227.  * @param buf buffer to zero

  228.  * @param buflen length of buffer

  229.  */

  230. 

  231. #define rspamd_explicit_memzero sodium_memzero

  232. 

  233. /**

  234.  * Constant time memcmp

  235.  * @param b1_

  236.  * @param b2_

  237.  * @param len

  238.  * @return

  239.  */

  240. #define rspamd_cryptobox_memcmp sodium_memcmp

  241. 

  242. /**

  243.  * Calculates siphash-2-4 for a message

  244.  * @param out (8 bytes output)

  245.  * @param in

  246.  * @param inlen

  247.  * @param k key (must be 16 bytes)

  248.  */

  249. void rspamd_cryptobox_siphash(unsigned char *out, const unsigned char *in,

  250. 							  unsigned long long inlen,

  251. 							  const rspamd_sipkey_t k);

  252. 

  253. enum rspamd_cryptobox_pbkdf_type {

  254. 	RSPAMD_CRYPTOBOX_PBKDF2 = 0,

  255. 	RSPAMD_CRYPTOBOX_CATENA

  256. };

  257. 

  258. 

  259. /**

  260.  * Derive key from password using the specified algorithm

  261.  * @param pass input password

  262.  * @param pass_len length of the password

  263.  * @param salt input salt

  264.  * @param salt_len length of salt

  265.  * @param key output key

  266.  * @param key_len size of the key

  267.  * @param complexity empiric number of complexity (rounds for pbkdf2 and garlic for catena)

  268.  * @return TRUE in case of success and FALSE if failed

  269.  */

  270. gboolean rspamd_cryptobox_pbkdf(const char *pass, gsize pass_len,

  271. 								const guint8 *salt, gsize salt_len,

  272. 								guint8 *key, gsize key_len,

  273. 								unsigned int complexity,

  274. 								enum rspamd_cryptobox_pbkdf_type type);

  275. 

  276. 

  277. /**

  278.  * Real size of rspamd cryptobox public key

  279.  */

  280. guint rspamd_cryptobox_pk_bytes(enum rspamd_cryptobox_mode mode);

  281. 

  282. /**

  283.  * Real size of rspamd cryptobox signing public key

  284.  */

  285. guint rspamd_cryptobox_pk_sig_bytes(enum rspamd_cryptobox_mode mode);

  286. 

  287. /**

  288.  * Real size of crypto nonce

  289.  */

  290. guint rspamd_cryptobox_nonce_bytes(enum rspamd_cryptobox_mode mode);

  291. 

  292. /**

  293.  * Real size of rspamd cryptobox secret key

  294.  */

  295. guint rspamd_cryptobox_sk_bytes(enum rspamd_cryptobox_mode mode);

  296. 

  297. /**

  298.  * Real size of rspamd cryptobox signing secret key

  299.  */

  300. guint rspamd_cryptobox_sk_sig_bytes(enum rspamd_cryptobox_mode mode);

  301. 

  302. /**

  303.  * Real size of rspamd cryptobox shared key

  304.  */

  305. guint rspamd_cryptobox_nm_bytes(enum rspamd_cryptobox_mode mode);

  306. 

  307. /**

  308.  * Real size of rspamd cryptobox MAC signature

  309.  */

  310. guint rspamd_cryptobox_mac_bytes(enum rspamd_cryptobox_mode mode);

  311. 

  312. /**

  313.  * Real size of rspamd cryptobox digital signature

  314.  */

  315. guint rspamd_cryptobox_signature_bytes(enum rspamd_cryptobox_mode mode);

  316. 

  317. /* Hash IUF interface */

  318. typedef crypto_generichash_blake2b_state rspamd_cryptobox_hash_state_t;

  319. 

  320. /**

  321.  * Init cryptobox hash state using key if needed, `st` must point to the buffer

  322.  * with at least rspamd_cryptobox_HASHSTATEBYTES bytes length. If keylen == 0, then

  323.  * non-keyed hash is generated

  324.  */

  325. void rspamd_cryptobox_hash_init(rspamd_cryptobox_hash_state_t *st,

  326. 								const guchar *key, gsize keylen);

  327. 

  328. /**

  329.  * Update hash with data portion

  330.  */

  331. void rspamd_cryptobox_hash_update(rspamd_cryptobox_hash_state_t *st,

  332. 								  const guchar *data, gsize len);

  333. 

  334. /**

  335.  * Output hash to the buffer of rspamd_cryptobox_HASHBYTES length

  336.  */

  337. void rspamd_cryptobox_hash_final(rspamd_cryptobox_hash_state_t *st, guchar *out);

  338. 

  339. /**

  340.  * One in all function

  341.  */

  342. void rspamd_cryptobox_hash(guchar *out,

  343. 						   const guchar *data,

  344. 						   gsize len,

  345. 						   const guchar *key,

  346. 						   gsize keylen);

  347. 

  348. enum rspamd_cryptobox_fast_hash_type {

  349. 	RSPAMD_CRYPTOBOX_XXHASH64 = 0,

  350. 	RSPAMD_CRYPTOBOX_XXHASH32,

  351. 	RSPAMD_CRYPTOBOX_XXHASH3,

  352. 	RSPAMD_CRYPTOBOX_MUMHASH,

  353. 	RSPAMD_CRYPTOBOX_T1HA,

  354. 	RSPAMD_CRYPTOBOX_HASHFAST,

  355. 	RSPAMD_CRYPTOBOX_HASHFAST_INDEPENDENT

  356. };

  357. 

  358. /* Non crypto hash IUF interface */

  359. typedef struct CRYPTO_ALIGN(64) rspamd_cryptobox_fast_hash_state_s {

  360. 	guchar opaque[576]; /* Required for xxhash3 */

  361. 	enum rspamd_cryptobox_fast_hash_type type;

  362. } rspamd_cryptobox_fast_hash_state_t;

  363. 

  364. 

  365. /**

  366.  * Creates a new cryptobox state properly aligned

  367.  * @return

  368.  */

  369. rspamd_cryptobox_fast_hash_state_t *rspamd_cryptobox_fast_hash_new(void);

  370. void rspamd_cryptobox_fast_hash_free(rspamd_cryptobox_fast_hash_state_t *st);

  371. 

  372. /**

  373.  * Init cryptobox hash state using key if needed, `st` must point to the buffer

  374.  * with at least rspamd_cryptobox_HASHSTATEBYTES bytes length. If keylen == 0, then

  375.  * non-keyed hash is generated

  376.  */

  377. void rspamd_cryptobox_fast_hash_init(rspamd_cryptobox_fast_hash_state_t *st,

  378. 									 uint64_t seed);

  379. 

  380. /**

  381.  * Init cryptobox hash state using key if needed, `st` must point to the buffer

  382.  * with at least rspamd_cryptobox_HASHSTATEBYTES bytes length. If keylen == 0, then

  383.  * non-keyed hash is generated

  384.  */

  385. void rspamd_cryptobox_fast_hash_init_specific(rspamd_cryptobox_fast_hash_state_t *st,

  386. 											  enum rspamd_cryptobox_fast_hash_type type,

  387. 											  uint64_t seed);

  388. 

  389. /**

  390.  * Update hash with data portion

  391.  */

  392. void rspamd_cryptobox_fast_hash_update(rspamd_cryptobox_fast_hash_state_t *st,

  393. 									   const void *data, gsize len);

  394. 

  395. /**

  396.  * Output hash to the buffer of rspamd_cryptobox_HASHBYTES length

  397.  */

  398. uint64_t rspamd_cryptobox_fast_hash_final(rspamd_cryptobox_fast_hash_state_t *st);

  399. 

  400. /**

  401.  * One in all function

  402.  */

  403. uint64_t rspamd_cryptobox_fast_hash(const void *data,

  404. 									gsize len, uint64_t seed);

  405. 

  406. /**

  407.  * Platform independent version

  408.  */

  409. uint64_t rspamd_cryptobox_fast_hash_specific(

  410. 	enum rspamd_cryptobox_fast_hash_type type,

  411. 	const void *data,

  412. 	gsize len, uint64_t seed);

  413. 

  414. /**

  415.  * Decode base64 using platform optimized code

  416.  * @param in

  417.  * @param inlen

  418.  * @param out

  419.  * @param outlen

  420.  * @return

  421.  */

  422. gboolean rspamd_cryptobox_base64_decode(const gchar *in, gsize inlen,

  423. 										guchar *out, gsize *outlen);

  424. 

  425. /**

  426.  * Returns TRUE if data looks like a valid base64 string

  427.  * @param in

  428.  * @param inlen

  429.  * @return

  430.  */

  431. gboolean rspamd_cryptobox_base64_is_valid(const gchar *in, gsize inlen);

  432. 

  433. #ifdef __cplusplus

  434. }

  435. #endif

  436. 

  437. #endif /* CRYPTOBOX_H_ */