mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
21061 Commits
28 Branches
Tree: 6b2b416718
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6b2b416718'
${ noResults }
rspamd/src/libcryptobox/keypair.c

keypair.c 23KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #include "config.h"

  18. #include "libcryptobox/keypair.h"

  19. #include "libcryptobox/keypair_private.h"

  20. #include "libutil/str_util.h"

  21. #include "libutil/printf.h"

  22. #include "contrib/libottery/ottery.h"

  23. 

  24. const guchar encrypted_magic[7] = {'r', 'u', 'c', 'l', 'e', 'v', '1'};

  25. 

  26. static GQuark

  27. rspamd_keypair_quark(void)

  28. {

  29. 	return g_quark_from_static_string("rspamd-cryptobox-keypair");

  30. }

  31. 

  32. /**

  33.  * Returns specific private key for different keypair types

  34.  */

  35. static void *

  36. rspamd_cryptobox_keypair_sk(struct rspamd_cryptobox_keypair *kp,

  37. 							guint *len)

  38. {

  39. 	g_assert(kp != NULL);

  40. 

  41. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  42. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  43. 			*len = 32;

  44. 			return RSPAMD_CRYPTOBOX_KEYPAIR_25519(kp)->sk;

  45. 		}

  46. 		else {

  47. 			*len = 64;

  48. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_25519(kp)->sk;

  49. 		}

  50. 	}

  51. 	else {

  52. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  53. 			*len = 32;

  54. 			return RSPAMD_CRYPTOBOX_KEYPAIR_NIST(kp)->sk;

  55. 		}

  56. 		else {

  57. 			*len = 32;

  58. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_NIST(kp)->sk;

  59. 		}

  60. 	}

  61. 

  62. 	/* Not reached */

  63. 	return NULL;

  64. }

  65. 

  66. static void *

  67. rspamd_cryptobox_keypair_pk(struct rspamd_cryptobox_keypair *kp,

  68. 							guint *len)

  69. {

  70. 	g_assert(kp != NULL);

  71. 

  72. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  73. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  74. 			*len = 32;

  75. 			return RSPAMD_CRYPTOBOX_KEYPAIR_25519(kp)->pk;

  76. 		}

  77. 		else {

  78. 			*len = 32;

  79. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_25519(kp)->pk;

  80. 		}

  81. 	}

  82. 	else {

  83. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  84. 			*len = 65;

  85. 			return RSPAMD_CRYPTOBOX_KEYPAIR_NIST(kp)->pk;

  86. 		}

  87. 		else {

  88. 			*len = 65;

  89. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_NIST(kp)->pk;

  90. 		}

  91. 	}

  92. 

  93. 	/* Not reached */

  94. 	return NULL;

  95. }

  96. 

  97. static void *

  98. rspamd_cryptobox_pubkey_pk(const struct rspamd_cryptobox_pubkey *kp,

  99. 						   guint *len)

  100. {

  101. 	g_assert(kp != NULL);

  102. 

  103. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  104. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  105. 			*len = 32;

  106. 			return RSPAMD_CRYPTOBOX_PUBKEY_25519(kp)->pk;

  107. 		}

  108. 		else {

  109. 			*len = 32;

  110. 			return RSPAMD_CRYPTOBOX_PUBKEY_SIG_25519(kp)->pk;

  111. 		}

  112. 	}

  113. 	else {

  114. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  115. 			*len = 65;

  116. 			return RSPAMD_CRYPTOBOX_PUBKEY_NIST(kp)->pk;

  117. 		}

  118. 		else {

  119. 			*len = 65;

  120. 			return RSPAMD_CRYPTOBOX_PUBKEY_SIG_NIST(kp)->pk;

  121. 		}

  122. 	}

  123. 

  124. 	/* Not reached */

  125. 	return NULL;

  126. }

  127. 

  128. static struct rspamd_cryptobox_keypair *

  129. rspamd_cryptobox_keypair_alloc(enum rspamd_cryptobox_keypair_type type,

  130. 							   enum rspamd_cryptobox_mode alg)

  131. {

  132. 	struct rspamd_cryptobox_keypair *kp;

  133. 	guint size = 0;

  134. 

  135. 	if (alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  136. 		if (type == RSPAMD_KEYPAIR_KEX) {

  137. 			size = sizeof(struct rspamd_cryptobox_keypair_25519);

  138. 		}

  139. 		else {

  140. 			size = sizeof(struct rspamd_cryptobox_keypair_sig_25519);

  141. 		}

  142. 	}

  143. 	else {

  144. 		if (type == RSPAMD_KEYPAIR_KEX) {

  145. 			size = sizeof(struct rspamd_cryptobox_keypair_nist);

  146. 		}

  147. 		else {

  148. 			size = sizeof(struct rspamd_cryptobox_keypair_sig_nist);

  149. 		}

  150. 	}

  151. 

  152. 	g_assert(size >= sizeof(*kp));

  153. 

  154. 	if (posix_memalign((void **) &kp, 32, size) != 0) {

  155. 		abort();

  156. 	}

  157. 

  158. 	memset(kp, 0, size);

  159. 

  160. 	return kp;

  161. }

  162. 

  163. static struct rspamd_cryptobox_pubkey *

  164. rspamd_cryptobox_pubkey_alloc(enum rspamd_cryptobox_keypair_type type,

  165. 							  enum rspamd_cryptobox_mode alg)

  166. {

  167. 	struct rspamd_cryptobox_pubkey *pk;

  168. 	guint size = 0;

  169. 

  170. 	if (alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  171. 		if (type == RSPAMD_KEYPAIR_KEX) {

  172. 			size = sizeof(struct rspamd_cryptobox_pubkey_25519);

  173. 		}

  174. 		else {

  175. 			size = sizeof(struct rspamd_cryptobox_pubkey_sig_25519);

  176. 		}

  177. 	}

  178. 	else {

  179. 		if (type == RSPAMD_KEYPAIR_KEX) {

  180. 			size = sizeof(struct rspamd_cryptobox_pubkey_nist);

  181. 		}

  182. 		else {

  183. 			size = sizeof(struct rspamd_cryptobox_pubkey_sig_nist);

  184. 		}

  185. 	}

  186. 

  187. 	g_assert(size >= sizeof(*pk));

  188. 

  189. 	if (posix_memalign((void **) &pk, 32, size) != 0) {

  190. 		abort();

  191. 	}

  192. 

  193. 	memset(pk, 0, size);

  194. 

  195. 	return pk;

  196. }

  197. 

  198. 

  199. void rspamd_cryptobox_nm_dtor(struct rspamd_cryptobox_nm *nm)

  200. {

  201. 	rspamd_explicit_memzero(nm->nm, sizeof(nm->nm));

  202. 	free(nm);

  203. }

  204. 

  205. void rspamd_cryptobox_keypair_dtor(struct rspamd_cryptobox_keypair *kp)

  206. {

  207. 	void *sk;

  208. 	guint len = 0;

  209. 

  210. 	sk = rspamd_cryptobox_keypair_sk(kp, &len);

  211. 	g_assert(sk != NULL && len > 0);

  212. 	rspamd_explicit_memzero(sk, len);

  213. 

  214. 	if (kp->extensions) {

  215. 		ucl_object_unref(kp->extensions);

  216. 	}

  217. 

  218. 	/* Not g_free as kp is aligned using posix_memalign */

  219. 	free(kp);

  220. }

  221. 

  222. void rspamd_cryptobox_pubkey_dtor(struct rspamd_cryptobox_pubkey *p)

  223. {

  224. 	if (p->nm) {

  225. 		REF_RELEASE(p->nm);

  226. 	}

  227. 

  228. 	/* Not g_free as p is aligned using posix_memalign */

  229. 	free(p);

  230. }

  231. 

  232. struct rspamd_cryptobox_keypair *

  233. rspamd_keypair_new(enum rspamd_cryptobox_keypair_type type,

  234. 				   enum rspamd_cryptobox_mode alg)

  235. {

  236. 	struct rspamd_cryptobox_keypair *kp;

  237. 	void *pk, *sk;

  238. 	guint size;

  239. 

  240. 	kp = rspamd_cryptobox_keypair_alloc(type, alg);

  241. 	kp->alg = alg;

  242. 	kp->type = type;

  243. 

  244. 	sk = rspamd_cryptobox_keypair_sk(kp, &size);

  245. 	pk = rspamd_cryptobox_keypair_pk(kp, &size);

  246. 

  247. 	if (type == RSPAMD_KEYPAIR_KEX) {

  248. 		rspamd_cryptobox_keypair(pk, sk, alg);

  249. 	}

  250. 	else {

  251. 		rspamd_cryptobox_keypair_sig(pk, sk, alg);

  252. 	}

  253. 

  254. 	rspamd_cryptobox_hash(kp->id, pk, size, NULL, 0);

  255. 

  256. 	REF_INIT_RETAIN(kp, rspamd_cryptobox_keypair_dtor);

  257. 

  258. 	return kp;

  259. }

  260. 

  261. 

  262. struct rspamd_cryptobox_keypair *

  263. rspamd_keypair_ref(struct rspamd_cryptobox_keypair *kp)

  264. {

  265. 	REF_RETAIN(kp);

  266. 	return kp;

  267. }

  268. 

  269. 

  270. void rspamd_keypair_unref(struct rspamd_cryptobox_keypair *kp)

  271. {

  272. 	REF_RELEASE(kp);

  273. }

  274. 

  275. 

  276. struct rspamd_cryptobox_pubkey *

  277. rspamd_pubkey_ref(struct rspamd_cryptobox_pubkey *kp)

  278. {

  279. 	REF_RETAIN(kp);

  280. 	return kp;

  281. }

  282. 

  283. void rspamd_pubkey_unref(struct rspamd_cryptobox_pubkey *kp)

  284. {

  285. 	REF_RELEASE(kp);

  286. }

  287. 

  288. enum rspamd_cryptobox_keypair_type

  289. rspamd_keypair_type(struct rspamd_cryptobox_keypair *kp)

  290. {

  291. 	g_assert(kp != NULL);

  292. 

  293. 	return kp->type;

  294. }

  295. 

  296. enum rspamd_cryptobox_keypair_type

  297. rspamd_pubkey_type(struct rspamd_cryptobox_pubkey *p)

  298. {

  299. 	g_assert(p != NULL);

  300. 

  301. 	return p->type;

  302. }

  303. 

  304. 

  305. enum rspamd_cryptobox_mode

  306. rspamd_keypair_alg(struct rspamd_cryptobox_keypair *kp)

  307. {

  308. 	g_assert(kp != NULL);

  309. 

  310. 	return kp->alg;

  311. }

  312. 

  313. enum rspamd_cryptobox_mode

  314. rspamd_pubkey_alg(struct rspamd_cryptobox_pubkey *p)

  315. {

  316. 	g_assert(p != NULL);

  317. 

  318. 	return p->alg;

  319. }

  320. 

  321. struct rspamd_cryptobox_pubkey *

  322. rspamd_pubkey_from_base32(const gchar *b32,

  323. 						  gsize len,

  324. 						  enum rspamd_cryptobox_keypair_type type,

  325. 						  enum rspamd_cryptobox_mode alg)

  326. {

  327. 	guchar *decoded;

  328. 	gsize dlen, expected_len;

  329. 	guint pklen;

  330. 	struct rspamd_cryptobox_pubkey *pk;

  331. 	guchar *pk_data;

  332. 

  333. 	g_assert(b32 != NULL);

  334. 

  335. 	if (len == 0) {

  336. 		len = strlen(b32);

  337. 	}

  338. 

  339. 	decoded = rspamd_decode_base32(b32, len, &dlen, RSPAMD_BASE32_DEFAULT);

  340. 

  341. 	if (decoded == NULL) {

  342. 		return NULL;

  343. 	}

  344. 

  345. 	expected_len = (type == RSPAMD_KEYPAIR_KEX) ? rspamd_cryptobox_pk_bytes(alg) : rspamd_cryptobox_pk_sig_bytes(alg);

  346. 

  347. 	if (dlen != expected_len) {

  348. 		g_free(decoded);

  349. 		return NULL;

  350. 	}

  351. 

  352. 	pk = rspamd_cryptobox_pubkey_alloc(type, alg);

  353. 	REF_INIT_RETAIN(pk, rspamd_cryptobox_pubkey_dtor);

  354. 	pk->alg = alg;

  355. 	pk->type = type;

  356. 	pk_data = rspamd_cryptobox_pubkey_pk(pk, &pklen);

  357. 

  358. 	memcpy(pk_data, decoded, pklen);

  359. 	g_free(decoded);

  360. 	rspamd_cryptobox_hash(pk->id, pk_data, pklen, NULL, 0);

  361. 

  362. 	return pk;

  363. }

  364. 

  365. struct rspamd_cryptobox_pubkey *

  366. rspamd_pubkey_from_hex(const gchar *hex,

  367. 					   gsize len,

  368. 					   enum rspamd_cryptobox_keypair_type type,

  369. 					   enum rspamd_cryptobox_mode alg)

  370. {

  371. 	guchar *decoded;

  372. 	gsize dlen, expected_len;

  373. 	guint pklen;

  374. 	struct rspamd_cryptobox_pubkey *pk;

  375. 	guchar *pk_data;

  376. 

  377. 	g_assert(hex != NULL);

  378. 

  379. 	if (len == 0) {

  380. 		len = strlen(hex);

  381. 	}

  382. 

  383. 	dlen = len / 2;

  384. 

  385. 	decoded = rspamd_decode_hex(hex, len);

  386. 

  387. 	if (decoded == NULL) {

  388. 		return NULL;

  389. 	}

  390. 

  391. 	expected_len = (type == RSPAMD_KEYPAIR_KEX) ? rspamd_cryptobox_pk_bytes(alg) : rspamd_cryptobox_pk_sig_bytes(alg);

  392. 

  393. 	if (dlen != expected_len) {

  394. 		g_free(decoded);

  395. 		return NULL;

  396. 	}

  397. 

  398. 	pk = rspamd_cryptobox_pubkey_alloc(type, alg);

  399. 	REF_INIT_RETAIN(pk, rspamd_cryptobox_pubkey_dtor);

  400. 	pk->alg = alg;

  401. 	pk->type = type;

  402. 	pk_data = rspamd_cryptobox_pubkey_pk(pk, &pklen);

  403. 

  404. 	memcpy(pk_data, decoded, pklen);

  405. 	g_free(decoded);

  406. 	rspamd_cryptobox_hash(pk->id, pk_data, pklen, NULL, 0);

  407. 

  408. 	return pk;

  409. }

  410. 

  411. struct rspamd_cryptobox_pubkey *

  412. rspamd_pubkey_from_bin(const guchar *raw,

  413. 					   gsize len,

  414. 					   enum rspamd_cryptobox_keypair_type type,

  415. 					   enum rspamd_cryptobox_mode alg)

  416. {

  417. 	gsize expected_len;

  418. 	guint pklen;

  419. 	struct rspamd_cryptobox_pubkey *pk;

  420. 	guchar *pk_data;

  421. 

  422. 	g_assert(raw != NULL && len > 0);

  423. 

  424. 	expected_len = (type == RSPAMD_KEYPAIR_KEX) ? rspamd_cryptobox_pk_bytes(alg) : rspamd_cryptobox_pk_sig_bytes(alg);

  425. 

  426. 	if (len != expected_len) {

  427. 		return NULL;

  428. 	}

  429. 

  430. 	pk = rspamd_cryptobox_pubkey_alloc(type, alg);

  431. 	REF_INIT_RETAIN(pk, rspamd_cryptobox_pubkey_dtor);

  432. 	pk->alg = alg;

  433. 	pk->type = type;

  434. 	pk_data = rspamd_cryptobox_pubkey_pk(pk, &pklen);

  435. 

  436. 	memcpy(pk_data, raw, pklen);

  437. 	rspamd_cryptobox_hash(pk->id, pk_data, pklen, NULL, 0);

  438. 

  439. 	return pk;

  440. }

  441. 

  442. 

  443. const guchar *

  444. rspamd_pubkey_get_nm(struct rspamd_cryptobox_pubkey *p,

  445. 					 struct rspamd_cryptobox_keypair *kp)

  446. {

  447. 	g_assert(p != NULL);

  448. 

  449. 	if (p->nm) {

  450. 		if (memcmp(kp->id, (const guchar *) &p->nm->sk_id, sizeof(uint64_t)) == 0) {

  451. 			return p->nm->nm;

  452. 		}

  453. 

  454. 		/* Wrong ID, need to recalculate */

  455. 		REF_RELEASE(p->nm);

  456. 		p->nm = NULL;

  457. 	}

  458. 

  459. 	return NULL;

  460. }

  461. 

  462. const guchar *

  463. rspamd_pubkey_calculate_nm(struct rspamd_cryptobox_pubkey *p,

  464. 						   struct rspamd_cryptobox_keypair *kp)

  465. {

  466. 	g_assert(kp->alg == p->alg);

  467. 	g_assert(kp->type == p->type);

  468. 	g_assert(p->type == RSPAMD_KEYPAIR_KEX);

  469. 

  470. 	if (p->nm == NULL) {

  471. 		if (posix_memalign((void **) &p->nm, 32, sizeof(*p->nm)) != 0) {

  472. 			abort();

  473. 		}

  474. 

  475. 		memcpy(&p->nm->sk_id, kp->id, sizeof(uint64_t));

  476. 		REF_INIT_RETAIN(p->nm, rspamd_cryptobox_nm_dtor);

  477. 	}

  478. 

  479. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  480. 		struct rspamd_cryptobox_pubkey_25519 *rk_25519 =

  481. 			RSPAMD_CRYPTOBOX_PUBKEY_25519(p);

  482. 		struct rspamd_cryptobox_keypair_25519 *sk_25519 =

  483. 			RSPAMD_CRYPTOBOX_KEYPAIR_25519(kp);

  484. 

  485. 		rspamd_cryptobox_nm(p->nm->nm, rk_25519->pk, sk_25519->sk, p->alg);

  486. 	}

  487. 	else {

  488. 		struct rspamd_cryptobox_pubkey_nist *rk_nist =

  489. 			RSPAMD_CRYPTOBOX_PUBKEY_NIST(p);

  490. 		struct rspamd_cryptobox_keypair_nist *sk_nist =

  491. 			RSPAMD_CRYPTOBOX_KEYPAIR_NIST(kp);

  492. 

  493. 		rspamd_cryptobox_nm(p->nm->nm, rk_nist->pk, sk_nist->sk, p->alg);

  494. 	}

  495. 

  496. 	return p->nm->nm;

  497. }

  498. 

  499. const guchar *

  500. rspamd_keypair_get_id(struct rspamd_cryptobox_keypair *kp)

  501. {

  502. 	g_assert(kp != NULL);

  503. 

  504. 	return kp->id;

  505. }

  506. 

  507. const ucl_object_t *

  508. rspamd_keypair_get_extensions(struct rspamd_cryptobox_keypair *kp)

  509. {

  510. 	g_assert(kp != NULL);

  511. 

  512. 	return kp->extensions;

  513. }

  514. 

  515. const guchar *

  516. rspamd_pubkey_get_id(struct rspamd_cryptobox_pubkey *pk)

  517. {

  518. 	g_assert(pk != NULL);

  519. 

  520. 	return pk->id;

  521. }

  522. 

  523. const guchar *

  524. rspamd_pubkey_get_pk(struct rspamd_cryptobox_pubkey *pk,

  525. 					 guint *len)

  526. {

  527. 	guchar *ret = NULL;

  528. 	guint rlen;

  529. 

  530. 	ret = rspamd_cryptobox_pubkey_pk(pk, &rlen);

  531. 

  532. 	if (len) {

  533. 		*len = rlen;

  534. 	}

  535. 

  536. 	return ret;

  537. }

  538. 

  539. static void

  540. rspamd_keypair_print_component(guchar *data, gsize datalen,

  541. 							   GString *res, guint how, const gchar *description)

  542. {

  543. 	gint olen, b32_len;

  544. 

  545. 	if (how & RSPAMD_KEYPAIR_HUMAN) {

  546. 		rspamd_printf_gstring(res, "%s: ", description);

  547. 	}

  548. 

  549. 	if (how & RSPAMD_KEYPAIR_BASE32) {

  550. 		b32_len = (datalen * 8 / 5) + 2;

  551. 		g_string_set_size(res, res->len + b32_len);

  552. 		res->len -= b32_len;

  553. 		olen = rspamd_encode_base32_buf(data, datalen, res->str + res->len,

  554. 										res->len + b32_len - 1, RSPAMD_BASE32_DEFAULT);

  555. 

  556. 		if (olen > 0) {

  557. 			res->len += olen;

  558. 			res->str[res->len] = '\0';

  559. 		}

  560. 	}

  561. 	else if (how & RSPAMD_KEYPAIR_HEX) {

  562. 		rspamd_printf_gstring(res, "%*xs", (gint) datalen, data);

  563. 	}

  564. 	else {

  565. 		g_string_append_len(res, data, datalen);

  566. 	}

  567. 

  568. 	if (how & RSPAMD_KEYPAIR_HUMAN) {

  569. 		g_string_append_c(res, '\n');

  570. 	}

  571. }

  572. 

  573. GString *

  574. rspamd_keypair_print(struct rspamd_cryptobox_keypair *kp, guint how)

  575. {

  576. 	GString *res;

  577. 	guint len;

  578. 	gpointer p;

  579. 

  580. 	g_assert(kp != NULL);

  581. 

  582. 	res = g_string_sized_new(63);

  583. 

  584. 	if ((how & RSPAMD_KEYPAIR_PUBKEY)) {

  585. 		p = rspamd_cryptobox_keypair_pk(kp, &len);

  586. 		rspamd_keypair_print_component(p, len, res, how, "Public key");

  587. 	}

  588. 	if ((how & RSPAMD_KEYPAIR_PRIVKEY)) {

  589. 		p = rspamd_cryptobox_keypair_sk(kp, &len);

  590. 		rspamd_keypair_print_component(p, len, res, how, "Private key");

  591. 	}

  592. 	if ((how & RSPAMD_KEYPAIR_ID_SHORT)) {

  593. 		rspamd_keypair_print_component(kp->id, RSPAMD_KEYPAIR_SHORT_ID_LEN,

  594. 									   res, how, "Short key ID");

  595. 	}

  596. 	if ((how & RSPAMD_KEYPAIR_ID)) {

  597. 		rspamd_keypair_print_component(kp->id, sizeof(kp->id), res, how, "Key ID");

  598. 	}

  599. 

  600. 	return res;

  601. }

  602. 

  603. GString *

  604. rspamd_pubkey_print(struct rspamd_cryptobox_pubkey *pk, guint how)

  605. {

  606. 	GString *res;

  607. 	guint len;

  608. 	gpointer p;

  609. 

  610. 	g_assert(pk != NULL);

  611. 

  612. 	res = g_string_sized_new(63);

  613. 

  614. 	if ((how & RSPAMD_KEYPAIR_PUBKEY)) {

  615. 		p = rspamd_cryptobox_pubkey_pk(pk, &len);

  616. 		rspamd_keypair_print_component(p, len, res, how, "Public key");

  617. 	}

  618. 	if ((how & RSPAMD_KEYPAIR_ID_SHORT)) {

  619. 		rspamd_keypair_print_component(pk->id, RSPAMD_KEYPAIR_SHORT_ID_LEN,

  620. 									   res, how, "Short key ID");

  621. 	}

  622. 	if ((how & RSPAMD_KEYPAIR_ID)) {

  623. 		rspamd_keypair_print_component(pk->id, sizeof(pk->id), res, how,

  624. 									   "Key ID");

  625. 	}

  626. 

  627. 	return res;

  628. }

  629. 

  630. const guchar *

  631. rspamd_keypair_component(struct rspamd_cryptobox_keypair *kp,

  632. 						 guint ncomp, guint *len)

  633. {

  634. 	guint rlen = 0;

  635. 	const guchar *ret = NULL;

  636. 

  637. 	g_assert(kp != NULL);

  638. 

  639. 	switch (ncomp) {

  640. 	case RSPAMD_KEYPAIR_COMPONENT_ID:

  641. 		rlen = sizeof(kp->id);

  642. 		ret = kp->id;

  643. 		break;

  644. 	case RSPAMD_KEYPAIR_COMPONENT_PK:

  645. 		ret = rspamd_cryptobox_keypair_pk(kp, &rlen);

  646. 		break;

  647. 	case RSPAMD_KEYPAIR_COMPONENT_SK:

  648. 		ret = rspamd_cryptobox_keypair_sk(kp, &rlen);

  649. 		break;

  650. 	}

  651. 

  652. 	if (len) {

  653. 		*len = rlen;

  654. 	}

  655. 

  656. 	return ret;

  657. }

  658. 

  659. struct rspamd_cryptobox_keypair *

  660. rspamd_keypair_from_ucl(const ucl_object_t *obj)

  661. {

  662. 	const ucl_object_t *privkey, *pubkey, *elt;

  663. 	const gchar *str;

  664. 	enum rspamd_cryptobox_keypair_type type = RSPAMD_KEYPAIR_KEX;

  665. 	enum rspamd_cryptobox_mode mode = RSPAMD_CRYPTOBOX_MODE_25519;

  666. 	gboolean is_hex = FALSE;

  667. 	struct rspamd_cryptobox_keypair *kp;

  668. 	guint len;

  669. 	gsize ucl_len;

  670. 	gint dec_len;

  671. 	gpointer target;

  672. 

  673. 	if (ucl_object_type(obj) != UCL_OBJECT) {

  674. 		return NULL;

  675. 	}

  676. 

  677. 	elt = ucl_object_lookup(obj, "keypair");

  678. 	if (elt != NULL) {

  679. 		obj = elt;

  680. 	}

  681. 

  682. 	pubkey = ucl_object_lookup_any(obj, "pubkey", "public", "public_key",

  683. 								   NULL);

  684. 	if (pubkey == NULL || ucl_object_type(pubkey) != UCL_STRING) {

  685. 		return NULL;

  686. 	}

  687. 

  688. 	privkey = ucl_object_lookup_any(obj, "privkey", "private", "private_key",

  689. 									"secret", "secret_key", NULL);

  690. 	if (privkey == NULL || ucl_object_type(privkey) != UCL_STRING) {

  691. 		return NULL;

  692. 	}

  693. 

  694. 	/* Optional fields */

  695. 	elt = ucl_object_lookup(obj, "type");

  696. 	if (elt && ucl_object_type(elt) == UCL_STRING) {

  697. 		str = ucl_object_tostring(elt);

  698. 

  699. 		if (g_ascii_strcasecmp(str, "kex") == 0) {

  700. 			type = RSPAMD_KEYPAIR_KEX;

  701. 		}

  702. 		else if (g_ascii_strcasecmp(str, "sign") == 0) {

  703. 			type = RSPAMD_KEYPAIR_SIGN;

  704. 		}

  705. 		/* TODO: handle errors */

  706. 	}

  707. 

  708. 	elt = ucl_object_lookup(obj, "algorithm");

  709. 	if (elt && ucl_object_type(elt) == UCL_STRING) {

  710. 		str = ucl_object_tostring(elt);

  711. 

  712. 		if (g_ascii_strcasecmp(str, "curve25519") == 0) {

  713. 			mode = RSPAMD_CRYPTOBOX_MODE_25519;

  714. 		}

  715. 		else if (g_ascii_strcasecmp(str, "nistp256") == 0) {

  716. 			mode = RSPAMD_CRYPTOBOX_MODE_NIST;

  717. 		}

  718. 		/* TODO: handle errors */

  719. 	}

  720. 

  721. 	elt = ucl_object_lookup(obj, "encoding");

  722. 	if (elt && ucl_object_type(elt) == UCL_STRING) {

  723. 		str = ucl_object_tostring(elt);

  724. 

  725. 		if (g_ascii_strcasecmp(str, "hex") == 0) {

  726. 			is_hex = TRUE;

  727. 		}

  728. 		/* TODO: handle errors */

  729. 	}

  730. 

  731. 	kp = rspamd_cryptobox_keypair_alloc(type, mode);

  732. 	kp->type = type;

  733. 	kp->alg = mode;

  734. 	REF_INIT_RETAIN(kp, rspamd_cryptobox_keypair_dtor);

  735. 	g_assert(kp != NULL);

  736. 

  737. 	target = rspamd_cryptobox_keypair_sk(kp, &len);

  738. 	str = ucl_object_tolstring(privkey, &ucl_len);

  739. 

  740. 	if (is_hex) {

  741. 		dec_len = rspamd_decode_hex_buf(str, ucl_len, target, len);

  742. 	}

  743. 	else {

  744. 		dec_len = rspamd_decode_base32_buf(str, ucl_len, target, len, RSPAMD_BASE32_DEFAULT);

  745. 	}

  746. 

  747. 	if (dec_len != (gint) len) {

  748. 		rspamd_keypair_unref(kp);

  749. 

  750. 		return NULL;

  751. 	}

  752. 

  753. 	target = rspamd_cryptobox_keypair_pk(kp, &len);

  754. 	str = ucl_object_tolstring(pubkey, &ucl_len);

  755. 

  756. 	if (is_hex) {

  757. 		dec_len = rspamd_decode_hex_buf(str, ucl_len, target, len);

  758. 	}

  759. 	else {

  760. 		dec_len = rspamd_decode_base32_buf(str, ucl_len, target, len, RSPAMD_BASE32_DEFAULT);

  761. 	}

  762. 

  763. 	if (dec_len != (gint) len) {

  764. 		rspamd_keypair_unref(kp);

  765. 

  766. 		return NULL;

  767. 	}

  768. 

  769. 	rspamd_cryptobox_hash(kp->id, target, len, NULL, 0);

  770. 

  771. 	elt = ucl_object_lookup(obj, "extensions");

  772. 	if (elt && ucl_object_type(elt) == UCL_OBJECT) {

  773. 		/* Use copy to avoid issues with the refcounts */

  774. 		kp->extensions = ucl_object_copy(elt);

  775. 	}

  776. 

  777. 	return kp;

  778. }

  779. 

  780. ucl_object_t *

  781. rspamd_keypair_to_ucl(struct rspamd_cryptobox_keypair *kp,

  782. 					  enum rspamd_keypair_dump_flags flags)

  783. {

  784. 	ucl_object_t *ucl_out, *elt;

  785. 	gint how = 0;

  786. 	GString *keypair_out;

  787. 	const gchar *encoding;

  788. 

  789. 	g_assert(kp != NULL);

  790. 

  791. 	if (flags & RSPAMD_KEYPAIR_DUMP_HEX) {

  792. 		how |= RSPAMD_KEYPAIR_HEX;

  793. 		encoding = "hex";

  794. 	}

  795. 	else {

  796. 		how |= RSPAMD_KEYPAIR_BASE32;

  797. 		encoding = "base32";

  798. 	}

  799. 

  800. 	if (flags & RSPAMD_KEYPAIR_DUMP_FLATTENED) {

  801. 		ucl_out = ucl_object_typed_new(UCL_OBJECT);

  802. 		elt = ucl_out;

  803. 	}

  804. 	else {

  805. 		ucl_out = ucl_object_typed_new(UCL_OBJECT);

  806. 		elt = ucl_object_typed_new(UCL_OBJECT);

  807. 		ucl_object_insert_key(ucl_out, elt, "keypair", 0, false);

  808. 	}

  809. 

  810. 

  811. 	/* pubkey part */

  812. 	keypair_out = rspamd_keypair_print(kp,

  813. 									   RSPAMD_KEYPAIR_PUBKEY | how);

  814. 	ucl_object_insert_key(elt,

  815. 						  ucl_object_fromlstring(keypair_out->str, keypair_out->len),

  816. 						  "pubkey", 0, false);

  817. 	g_string_free(keypair_out, TRUE);

  818. 

  819. 	if (!(flags & RSPAMD_KEYPAIR_DUMP_NO_SECRET)) {

  820. 		/* privkey part */

  821. 		keypair_out = rspamd_keypair_print(kp,

  822. 										   RSPAMD_KEYPAIR_PRIVKEY | how);

  823. 		ucl_object_insert_key(elt,

  824. 							  ucl_object_fromlstring(keypair_out->str, keypair_out->len),

  825. 							  "privkey", 0, false);

  826. 		g_string_free(keypair_out, TRUE);

  827. 	}

  828. 

  829. 	keypair_out = rspamd_keypair_print(kp,

  830. 									   RSPAMD_KEYPAIR_ID | how);

  831. 	ucl_object_insert_key(elt,

  832. 						  ucl_object_fromlstring(keypair_out->str, keypair_out->len),

  833. 						  "id", 0, false);

  834. 	g_string_free(keypair_out, TRUE);

  835. 

  836. 	ucl_object_insert_key(elt,

  837. 						  ucl_object_fromstring(encoding),

  838. 						  "encoding", 0, false);

  839. 

  840. 	ucl_object_insert_key(elt,

  841. 						  ucl_object_fromstring(

  842. 							  kp->alg == RSPAMD_CRYPTOBOX_MODE_NIST ? "nistp256" : "curve25519"),

  843. 						  "algorithm", 0, false);

  844. 

  845. 	ucl_object_insert_key(elt,

  846. 						  ucl_object_fromstring(

  847. 							  kp->type == RSPAMD_KEYPAIR_KEX ? "kex" : "sign"),

  848. 						  "type", 0, false);

  849. 

  850. 	if (kp->extensions) {

  851. 		ucl_object_insert_key(elt, ucl_object_copy(kp->extensions),

  852. 							  "extensions", 0, false);

  853. 	}

  854. 

  855. 	return ucl_out;

  856. }

  857. 

  858. gboolean

  859. rspamd_keypair_decrypt(struct rspamd_cryptobox_keypair *kp,

  860. 					   const guchar *in, gsize inlen,

  861. 					   guchar **out, gsize *outlen,

  862. 					   GError **err)

  863. {

  864. 	const guchar *nonce, *mac, *data, *pubkey;

  865. 

  866. 	g_assert(kp != NULL);

  867. 	g_assert(in != NULL);

  868. 

  869. 	if (kp->type != RSPAMD_KEYPAIR_KEX) {

  870. 		g_set_error(err, rspamd_keypair_quark(), EINVAL,

  871. 					"invalid keypair type");

  872. 

  873. 		return FALSE;

  874. 	}

  875. 

  876. 	if (inlen < sizeof(encrypted_magic) + rspamd_cryptobox_pk_bytes(kp->alg) +

  877. 					rspamd_cryptobox_mac_bytes(kp->alg) +

  878. 					rspamd_cryptobox_nonce_bytes(kp->alg)) {

  879. 		g_set_error(err, rspamd_keypair_quark(), E2BIG, "invalid size: too small");

  880. 

  881. 		return FALSE;

  882. 	}

  883. 

  884. 	if (memcmp(in, encrypted_magic, sizeof(encrypted_magic)) != 0) {

  885. 		g_set_error(err, rspamd_keypair_quark(), EINVAL,

  886. 					"invalid magic");

  887. 

  888. 		return FALSE;

  889. 	}

  890. 

  891. 	/* Set pointers */

  892. 	pubkey = in + sizeof(encrypted_magic);

  893. 	mac = pubkey + rspamd_cryptobox_pk_bytes(kp->alg);

  894. 	nonce = mac + rspamd_cryptobox_mac_bytes(kp->alg);

  895. 	data = nonce + rspamd_cryptobox_nonce_bytes(kp->alg);

  896. 

  897. 	if (data - in >= inlen) {

  898. 		g_set_error(err, rspamd_keypair_quark(), E2BIG, "invalid size: too small");

  899. 

  900. 		return FALSE;

  901. 	}

  902. 

  903. 	inlen -= data - in;

  904. 

  905. 	/* Allocate memory for output */

  906. 	*out = g_malloc(inlen);

  907. 	memcpy(*out, data, inlen);

  908. 

  909. 	if (!rspamd_cryptobox_decrypt_inplace(*out, inlen, nonce, pubkey,

  910. 										  rspamd_keypair_component(kp, RSPAMD_KEYPAIR_COMPONENT_SK, NULL),

  911. 										  mac, kp->alg)) {

  912. 		g_set_error(err, rspamd_keypair_quark(), EPERM, "verification failed");

  913. 		g_free(*out);

  914. 

  915. 		return FALSE;

  916. 	}

  917. 

  918. 	if (outlen) {

  919. 		*outlen = inlen;

  920. 	}

  921. 

  922. 	return TRUE;

  923. }

  924. 

  925. gboolean

  926. rspamd_keypair_encrypt(struct rspamd_cryptobox_keypair *kp,

  927. 					   const guchar *in, gsize inlen,

  928. 					   guchar **out, gsize *outlen,

  929. 					   GError **err)

  930. {

  931. 	guchar *nonce, *mac, *data, *pubkey;

  932. 	struct rspamd_cryptobox_keypair *local;

  933. 	gsize olen;

  934. 

  935. 	g_assert(kp != NULL);

  936. 	g_assert(in != NULL);

  937. 

  938. 	if (kp->type != RSPAMD_KEYPAIR_KEX) {

  939. 		g_set_error(err, rspamd_keypair_quark(), EINVAL,

  940. 					"invalid keypair type");

  941. 

  942. 		return FALSE;

  943. 	}

  944. 

  945. 	local = rspamd_keypair_new(kp->type, kp->alg);

  946. 

  947. 	olen = inlen + sizeof(encrypted_magic) +

  948. 		   rspamd_cryptobox_pk_bytes(kp->alg) +

  949. 		   rspamd_cryptobox_mac_bytes(kp->alg) +

  950. 		   rspamd_cryptobox_nonce_bytes(kp->alg);

  951. 	*out = g_malloc(olen);

  952. 	memcpy(*out, encrypted_magic, sizeof(encrypted_magic));

  953. 	pubkey = *out + sizeof(encrypted_magic);

  954. 	mac = pubkey + rspamd_cryptobox_pk_bytes(kp->alg);

  955. 	nonce = mac + rspamd_cryptobox_mac_bytes(kp->alg);

  956. 	data = nonce + rspamd_cryptobox_nonce_bytes(kp->alg);

  957. 

  958. 	ottery_rand_bytes(nonce, rspamd_cryptobox_nonce_bytes(kp->alg));

  959. 	memcpy(data, in, inlen);

  960. 	memcpy(pubkey, rspamd_keypair_component(kp, RSPAMD_KEYPAIR_COMPONENT_PK, NULL),

  961. 		   rspamd_cryptobox_pk_bytes(kp->alg));

  962. 	rspamd_cryptobox_encrypt_inplace(data, inlen, nonce, pubkey,

  963. 									 rspamd_keypair_component(local, RSPAMD_KEYPAIR_COMPONENT_SK, NULL),

  964. 									 mac, kp->alg);

  965. 	rspamd_keypair_unref(local);

  966. 

  967. 	if (outlen) {

  968. 		*outlen = olen;

  969. 	}

  970. 

  971. 	return TRUE;

  972. }

  973. 

  974. gboolean

  975. rspamd_pubkey_encrypt(struct rspamd_cryptobox_pubkey *pk,

  976. 					  const guchar *in, gsize inlen,

  977. 					  guchar **out, gsize *outlen,

  978. 					  GError **err)

  979. {

  980. 	guchar *nonce, *mac, *data, *pubkey;

  981. 	struct rspamd_cryptobox_keypair *local;

  982. 	gsize olen;

  983. 

  984. 	g_assert(pk != NULL);

  985. 	g_assert(in != NULL);

  986. 

  987. 	if (pk->type != RSPAMD_KEYPAIR_KEX) {

  988. 		g_set_error(err, rspamd_keypair_quark(), EINVAL,

  989. 					"invalid pubkey type");

  990. 

  991. 		return FALSE;

  992. 	}

  993. 

  994. 	local = rspamd_keypair_new(pk->type, pk->alg);

  995. 

  996. 	olen = inlen + sizeof(encrypted_magic) +

  997. 		   rspamd_cryptobox_pk_bytes(pk->alg) +

  998. 		   rspamd_cryptobox_mac_bytes(pk->alg) +

  999. 		   rspamd_cryptobox_nonce_bytes(pk->alg);

  1000. 	*out = g_malloc(olen);

  1001. 	memcpy(*out, encrypted_magic, sizeof(encrypted_magic));

  1002. 	pubkey = *out + sizeof(encrypted_magic);

  1003. 	mac = pubkey + rspamd_cryptobox_pk_bytes(pk->alg);

  1004. 	nonce = mac + rspamd_cryptobox_mac_bytes(pk->alg);

  1005. 	data = nonce + rspamd_cryptobox_nonce_bytes(pk->alg);

  1006. 

  1007. 	ottery_rand_bytes(nonce, rspamd_cryptobox_nonce_bytes(pk->alg));

  1008. 	memcpy(data, in, inlen);

  1009. 	memcpy(pubkey, rspamd_pubkey_get_pk(pk, NULL),

  1010. 		   rspamd_cryptobox_pk_bytes(pk->alg));

  1011. 	rspamd_cryptobox_encrypt_inplace(data, inlen, nonce, pubkey,

  1012. 									 rspamd_keypair_component(local, RSPAMD_KEYPAIR_COMPONENT_SK, NULL),

  1013. 									 mac, pk->alg);

  1014. 	rspamd_keypair_unref(local);

  1015. 

  1016. 	if (outlen) {

  1017. 		*outlen = olen;

  1018. 	}

  1019. 

  1020. 	return TRUE;

  1021. }