mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19574 Commits
29 Branches
Tree: f11071b6a2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f11071b6a2'
${ noResults }
rspamd/src/libcryptobox/keypair.c

keypair.c 24KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #include "config.h"

  18. #include "libcryptobox/keypair.h"

  19. #include "libcryptobox/keypair_private.h"

  20. #include "libutil/str_util.h"

  21. #include "libutil/printf.h"

  22. #include "contrib/libottery/ottery.h"

  23. 

  24. const guchar encrypted_magic[7] = {'r', 'u', 'c', 'l', 'e', 'v', '1'};

  25. 

  26. static GQuark

  27. rspamd_keypair_quark (void)

  28. {

  29. 	return g_quark_from_static_string ("rspamd-cryptobox-keypair");

  30. }

  31. 

  32. /**

  33.  * Returns specific private key for different keypair types

  34.  */

  35. static void *

  36. rspamd_cryptobox_keypair_sk (struct rspamd_cryptobox_keypair *kp,

  37. 		guint *len)

  38. {

  39. 	g_assert (kp != NULL);

  40. 

  41. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  42. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  43. 			*len = 32;

  44. 			return RSPAMD_CRYPTOBOX_KEYPAIR_25519(kp)->sk;

  45. 		}

  46. 		else {

  47. 			*len = 64;

  48. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_25519(kp)->sk;

  49. 		}

  50. 	}

  51. 	else {

  52. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  53. 			*len = 32;

  54. 			return RSPAMD_CRYPTOBOX_KEYPAIR_NIST(kp)->sk;

  55. 		}

  56. 		else {

  57. 			*len = 32;

  58. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_NIST(kp)->sk;

  59. 		}

  60. 	}

  61. 

  62. 	/* Not reached */

  63. 	return NULL;

  64. }

  65. 

  66. static void *

  67. rspamd_cryptobox_keypair_pk (struct rspamd_cryptobox_keypair *kp,

  68. 		guint *len)

  69. {

  70. 	g_assert (kp != NULL);

  71. 

  72. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  73. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  74. 			*len = 32;

  75. 			return RSPAMD_CRYPTOBOX_KEYPAIR_25519(kp)->pk;

  76. 		}

  77. 		else {

  78. 			*len = 32;

  79. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_25519(kp)->pk;

  80. 		}

  81. 	}

  82. 	else {

  83. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  84. 			*len = 65;

  85. 			return RSPAMD_CRYPTOBOX_KEYPAIR_NIST(kp)->pk;

  86. 		}

  87. 		else {

  88. 			*len = 65;

  89. 			return RSPAMD_CRYPTOBOX_KEYPAIR_SIG_NIST(kp)->pk;

  90. 		}

  91. 	}

  92. 

  93. 	/* Not reached */

  94. 	return NULL;

  95. }

  96. 

  97. static void *

  98. rspamd_cryptobox_pubkey_pk (const struct rspamd_cryptobox_pubkey *kp,

  99. 		guint *len)

  100. {

  101. 	g_assert (kp != NULL);

  102. 

  103. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  104. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  105. 			*len = 32;

  106. 			return RSPAMD_CRYPTOBOX_PUBKEY_25519(kp)->pk;

  107. 		}

  108. 		else {

  109. 			*len = 32;

  110. 			return RSPAMD_CRYPTOBOX_PUBKEY_SIG_25519(kp)->pk;

  111. 		}

  112. 	}

  113. 	else {

  114. 		if (kp->type == RSPAMD_KEYPAIR_KEX) {

  115. 			*len = 65;

  116. 			return RSPAMD_CRYPTOBOX_PUBKEY_NIST(kp)->pk;

  117. 		}

  118. 		else {

  119. 			*len = 65;

  120. 			return RSPAMD_CRYPTOBOX_PUBKEY_SIG_NIST(kp)->pk;

  121. 		}

  122. 	}

  123. 

  124. 	/* Not reached */

  125. 	return NULL;

  126. }

  127. 

  128. static struct rspamd_cryptobox_keypair *

  129. rspamd_cryptobox_keypair_alloc (enum rspamd_cryptobox_keypair_type type,

  130. 		enum rspamd_cryptobox_mode alg)

  131. {

  132. 	struct rspamd_cryptobox_keypair *kp;

  133. 	guint size = 0;

  134. 

  135. 	if (alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  136. 		if (type == RSPAMD_KEYPAIR_KEX) {

  137. 			size = sizeof (struct rspamd_cryptobox_keypair_25519);

  138. 		}

  139. 		else {

  140. 			size = sizeof (struct rspamd_cryptobox_keypair_sig_25519);

  141. 		}

  142. 	}

  143. 	else {

  144. 		if (type == RSPAMD_KEYPAIR_KEX) {

  145. 			size = sizeof (struct rspamd_cryptobox_keypair_nist);

  146. 		}

  147. 		else {

  148. 			size = sizeof (struct rspamd_cryptobox_keypair_sig_nist);

  149. 		}

  150. 	}

  151. 

  152. 	g_assert (size >= sizeof (*kp));

  153. 

  154. 	if (posix_memalign ((void **)&kp, 32, size) != 0) {

  155. 		abort ();

  156. 	}

  157. 

  158. 	memset (kp, 0, size);

  159. 

  160. 	return kp;

  161. }

  162. 

  163. static struct rspamd_cryptobox_pubkey *

  164. rspamd_cryptobox_pubkey_alloc (enum rspamd_cryptobox_keypair_type type,

  165. 		enum rspamd_cryptobox_mode alg)

  166. {

  167. 	struct rspamd_cryptobox_pubkey *pk;

  168. 	guint size = 0;

  169. 

  170. 	if (alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  171. 		if (type == RSPAMD_KEYPAIR_KEX) {

  172. 			size = sizeof (struct rspamd_cryptobox_pubkey_25519);

  173. 		}

  174. 		else {

  175. 			size = sizeof (struct rspamd_cryptobox_pubkey_sig_25519);

  176. 		}

  177. 	}

  178. 	else {

  179. 		if (type == RSPAMD_KEYPAIR_KEX) {

  180. 			size = sizeof (struct rspamd_cryptobox_pubkey_nist);

  181. 		}

  182. 		else {

  183. 			size = sizeof (struct rspamd_cryptobox_pubkey_sig_nist);

  184. 		}

  185. 	}

  186. 

  187. 	g_assert (size >= sizeof (*pk));

  188. 

  189. 	if (posix_memalign ((void **)&pk, 32, size) != 0) {

  190. 		abort ();

  191. 	}

  192. 

  193. 	memset (pk, 0, size);

  194. 

  195. 	return pk;

  196. }

  197. 

  198. 

  199. void

  200. rspamd_cryptobox_nm_dtor (struct rspamd_cryptobox_nm *nm)

  201. {

  202. 	rspamd_explicit_memzero (nm->nm, sizeof (nm->nm));

  203. 	free (nm);

  204. }

  205. 

  206. void

  207. rspamd_cryptobox_keypair_dtor (struct rspamd_cryptobox_keypair *kp)

  208. {

  209. 	void *sk;

  210. 	guint len = 0;

  211. 

  212. 	sk = rspamd_cryptobox_keypair_sk (kp, &len);

  213. 	g_assert (sk != NULL && len > 0);

  214. 	rspamd_explicit_memzero (sk, len);

  215. 	/* Not g_free as kp is aligned using posix_memalign */

  216. 	free (kp);

  217. }

  218. 

  219. void

  220. rspamd_cryptobox_pubkey_dtor (struct rspamd_cryptobox_pubkey *p)

  221. {

  222. 	if (p->nm) {

  223. 		REF_RELEASE (p->nm);

  224. 	}

  225. 

  226. 	/* Not g_free as p is aligned using posix_memalign */

  227. 	free (p);

  228. }

  229. 

  230. struct rspamd_cryptobox_keypair*

  231. rspamd_keypair_new (enum rspamd_cryptobox_keypair_type type,

  232. 		enum rspamd_cryptobox_mode alg)

  233. {

  234. 	struct rspamd_cryptobox_keypair *kp;

  235. 	void *pk, *sk;

  236. 	guint size;

  237. 

  238. 	kp = rspamd_cryptobox_keypair_alloc (type, alg);

  239. 	kp->alg = alg;

  240. 	kp->type = type;

  241. 

  242. 	sk = rspamd_cryptobox_keypair_sk (kp, &size);

  243. 	pk = rspamd_cryptobox_keypair_pk (kp, &size);

  244. 

  245. 	if (type == RSPAMD_KEYPAIR_KEX) {

  246. 		rspamd_cryptobox_keypair (pk, sk, alg);

  247. 	}

  248. 	else {

  249. 		rspamd_cryptobox_keypair_sig (pk, sk, alg);

  250. 	}

  251. 

  252. 	rspamd_cryptobox_hash (kp->id, pk, size, NULL, 0);

  253. 

  254. 	REF_INIT_RETAIN (kp, rspamd_cryptobox_keypair_dtor);

  255. 

  256. 	return kp;

  257. }

  258. 

  259. 

  260. struct rspamd_cryptobox_keypair*

  261. rspamd_keypair_ref (struct rspamd_cryptobox_keypair *kp)

  262. {

  263. 	REF_RETAIN (kp);

  264. 	return kp;

  265. }

  266. 

  267. 

  268. void

  269. rspamd_keypair_unref (struct rspamd_cryptobox_keypair *kp)

  270. {

  271. 	REF_RELEASE (kp);

  272. }

  273. 

  274. 

  275. struct rspamd_cryptobox_pubkey*

  276. rspamd_pubkey_ref (struct rspamd_cryptobox_pubkey *kp)

  277. {

  278. 	REF_RETAIN (kp);

  279. 	return kp;

  280. }

  281. 

  282. void

  283. rspamd_pubkey_unref (struct rspamd_cryptobox_pubkey *kp)

  284. {

  285. 	REF_RELEASE (kp);

  286. }

  287. 

  288. enum rspamd_cryptobox_keypair_type

  289. rspamd_keypair_type (struct rspamd_cryptobox_keypair *kp)

  290. {

  291. 	g_assert (kp != NULL);

  292. 

  293. 	return kp->type;

  294. }

  295. 

  296. enum rspamd_cryptobox_keypair_type

  297. rspamd_pubkey_type (struct rspamd_cryptobox_pubkey *p)

  298. {

  299. 	g_assert (p != NULL);

  300. 

  301. 	return p->type;

  302. }

  303. 

  304. 

  305. enum rspamd_cryptobox_mode

  306. rspamd_keypair_alg (struct rspamd_cryptobox_keypair *kp)

  307. {

  308. 	g_assert (kp != NULL);

  309. 

  310. 	return kp->alg;

  311. }

  312. 

  313. enum rspamd_cryptobox_mode

  314. rspamd_pubkey_alg (struct rspamd_cryptobox_pubkey *p)

  315. {

  316. 	g_assert (p != NULL);

  317. 

  318. 	return p->alg;

  319. }

  320. 

  321. struct rspamd_cryptobox_pubkey*

  322. rspamd_pubkey_from_base32 (const gchar *b32,

  323. 		gsize len,

  324. 		enum rspamd_cryptobox_keypair_type type,

  325. 		enum rspamd_cryptobox_mode alg)

  326. {

  327. 	guchar *decoded;

  328. 	gsize dlen, expected_len;

  329. 	guint pklen;

  330. 	struct rspamd_cryptobox_pubkey *pk;

  331. 	guchar *pk_data;

  332. 

  333. 	g_assert (b32 != NULL);

  334. 

  335. 	if (len == 0) {

  336. 		len = strlen (b32);

  337. 	}

  338. 

  339. 	decoded = rspamd_decode_base32 (b32, len, &dlen, RSPAMD_BASE32_DEFAULT);

  340. 

  341. 	if (decoded == NULL) {

  342. 		return NULL;

  343. 	}

  344. 

  345. 	expected_len = (type == RSPAMD_KEYPAIR_KEX) ?

  346. 			rspamd_cryptobox_pk_bytes (alg) : rspamd_cryptobox_pk_sig_bytes (alg);

  347. 

  348. 	if (dlen != expected_len) {

  349. 		g_free (decoded);

  350. 		return NULL;

  351. 	}

  352. 

  353. 	pk = rspamd_cryptobox_pubkey_alloc (type, alg);

  354. 	REF_INIT_RETAIN (pk, rspamd_cryptobox_pubkey_dtor);

  355. 	pk->alg = alg;

  356. 	pk->type = type;

  357. 	pk_data = rspamd_cryptobox_pubkey_pk (pk, &pklen);

  358. 

  359. 	memcpy (pk_data, decoded, pklen);

  360. 	g_free (decoded);

  361. 	rspamd_cryptobox_hash (pk->id, pk_data, pklen, NULL, 0);

  362. 

  363. 	return pk;

  364. }

  365. 

  366. struct rspamd_cryptobox_pubkey*

  367. rspamd_pubkey_from_hex (const gchar *hex,

  368. 		gsize len,

  369. 		enum rspamd_cryptobox_keypair_type type,

  370. 		enum rspamd_cryptobox_mode alg)

  371. {

  372. 	guchar *decoded;

  373. 	gsize dlen, expected_len;

  374. 	guint pklen;

  375. 	struct rspamd_cryptobox_pubkey *pk;

  376. 	guchar *pk_data;

  377. 

  378. 	g_assert (hex != NULL);

  379. 

  380. 	if (len == 0) {

  381. 		len = strlen (hex);

  382. 	}

  383. 

  384. 	dlen = len / 2;

  385. 

  386. 	decoded = rspamd_decode_hex (hex, len);

  387. 

  388. 	if (decoded == NULL) {

  389. 		return NULL;

  390. 	}

  391. 

  392. 	expected_len = (type == RSPAMD_KEYPAIR_KEX) ?

  393. 			rspamd_cryptobox_pk_bytes (alg) : rspamd_cryptobox_pk_sig_bytes (alg);

  394. 

  395. 	if (dlen != expected_len) {

  396. 		g_free (decoded);

  397. 		return NULL;

  398. 	}

  399. 

  400. 	pk = rspamd_cryptobox_pubkey_alloc (type, alg);

  401. 	REF_INIT_RETAIN (pk, rspamd_cryptobox_pubkey_dtor);

  402. 	pk->alg = alg;

  403. 	pk->type = type;

  404. 	pk_data = rspamd_cryptobox_pubkey_pk (pk, &pklen);

  405. 

  406. 	memcpy (pk_data, decoded, pklen);

  407. 	g_free (decoded);

  408. 	rspamd_cryptobox_hash (pk->id, pk_data, pklen, NULL, 0);

  409. 

  410. 	return pk;

  411. }

  412. 

  413. struct rspamd_cryptobox_pubkey*

  414. rspamd_pubkey_from_bin (const guchar *raw,

  415. 		gsize len,

  416. 		enum rspamd_cryptobox_keypair_type type,

  417. 		enum rspamd_cryptobox_mode alg)

  418. {

  419. 	gsize expected_len;

  420. 	guint pklen;

  421. 	struct rspamd_cryptobox_pubkey *pk;

  422. 	guchar *pk_data;

  423. 

  424. 	g_assert (raw != NULL && len > 0);

  425. 

  426. 	expected_len = (type == RSPAMD_KEYPAIR_KEX) ?

  427. 			rspamd_cryptobox_pk_bytes (alg) : rspamd_cryptobox_pk_sig_bytes (alg);

  428. 

  429. 	if (len != expected_len) {

  430. 		return NULL;

  431. 	}

  432. 

  433. 	pk = rspamd_cryptobox_pubkey_alloc (type, alg);

  434. 	REF_INIT_RETAIN (pk, rspamd_cryptobox_pubkey_dtor);

  435. 	pk->alg = alg;

  436. 	pk->type = type;

  437. 	pk_data = rspamd_cryptobox_pubkey_pk (pk, &pklen);

  438. 

  439. 	memcpy (pk_data, raw, pklen);

  440. 	rspamd_cryptobox_hash (pk->id, pk_data, pklen, NULL, 0);

  441. 

  442. 	return pk;

  443. }

  444. 

  445. 

  446. const guchar *

  447. rspamd_pubkey_get_nm (struct rspamd_cryptobox_pubkey *p,

  448. 		struct rspamd_cryptobox_keypair *kp)

  449. {

  450. 	g_assert (p != NULL);

  451. 

  452. 	if (p->nm) {

  453. 		if (memcmp (kp->id, (const guchar *)&p->nm->sk_id, sizeof (guint64)) == 0) {

  454. 			return p->nm->nm;

  455. 		}

  456. 

  457. 		/* Wrong ID, need to recalculate */

  458. 		REF_RELEASE (p->nm);

  459. 		p->nm = NULL;

  460. 	}

  461. 

  462. 	return NULL;

  463. }

  464. 

  465. const guchar *

  466. rspamd_pubkey_calculate_nm (struct rspamd_cryptobox_pubkey *p,

  467. 		struct rspamd_cryptobox_keypair *kp)

  468. {

  469. 	g_assert (kp->alg == p->alg);

  470. 	g_assert (kp->type == p->type);

  471. 	g_assert (p->type == RSPAMD_KEYPAIR_KEX);

  472. 

  473. 	if (p->nm == NULL) {

  474. 		if (posix_memalign ((void **)&p->nm, 32, sizeof (*p->nm)) != 0) {

  475. 			abort ();

  476. 		}

  477. 

  478. 		memcpy (&p->nm->sk_id, kp->id, sizeof (guint64));

  479. 		REF_INIT_RETAIN (p->nm, rspamd_cryptobox_nm_dtor);

  480. 	}

  481. 

  482. 	if (kp->alg == RSPAMD_CRYPTOBOX_MODE_25519) {

  483. 		struct rspamd_cryptobox_pubkey_25519 *rk_25519 =

  484. 				RSPAMD_CRYPTOBOX_PUBKEY_25519(p);

  485. 		struct rspamd_cryptobox_keypair_25519 *sk_25519 =

  486. 				RSPAMD_CRYPTOBOX_KEYPAIR_25519(kp);

  487. 

  488. 		rspamd_cryptobox_nm (p->nm->nm, rk_25519->pk, sk_25519->sk, p->alg);

  489. 	}

  490. 	else {

  491. 		struct rspamd_cryptobox_pubkey_nist *rk_nist =

  492. 				RSPAMD_CRYPTOBOX_PUBKEY_NIST(p);

  493. 		struct rspamd_cryptobox_keypair_nist *sk_nist =

  494. 				RSPAMD_CRYPTOBOX_KEYPAIR_NIST(kp);

  495. 

  496. 		rspamd_cryptobox_nm (p->nm->nm, rk_nist->pk, sk_nist->sk, p->alg);

  497. 	}

  498. 

  499. 	return p->nm->nm;

  500. }

  501. 

  502. const guchar *

  503. rspamd_keypair_get_id (struct rspamd_cryptobox_keypair *kp)

  504. {

  505. 	g_assert (kp != NULL);

  506. 

  507. 	return kp->id;

  508. }

  509. 

  510. const guchar *

  511. rspamd_pubkey_get_id (struct rspamd_cryptobox_pubkey *pk)

  512. {

  513. 	g_assert (pk != NULL);

  514. 

  515. 	return pk->id;

  516. }

  517. 

  518. const guchar *

  519. rspamd_pubkey_get_pk (struct rspamd_cryptobox_pubkey *pk,

  520. 		guint *len)

  521. {

  522. 	guchar *ret = NULL;

  523. 	guint rlen;

  524. 

  525. 	ret = rspamd_cryptobox_pubkey_pk (pk, &rlen);

  526. 

  527. 	if (len) {

  528. 		*len = rlen;

  529. 	}

  530. 

  531. 	return ret;

  532. }

  533. 

  534. static void

  535. rspamd_keypair_print_component (guchar *data, gsize datalen,

  536. 		GString *res, guint how, const gchar *description)

  537. {

  538. 	gint olen, b32_len;

  539. 

  540. 	if (how & RSPAMD_KEYPAIR_HUMAN) {

  541. 		rspamd_printf_gstring (res, "%s: ", description);

  542. 	}

  543. 

  544. 	if (how & RSPAMD_KEYPAIR_BASE32) {

  545. 		b32_len = (datalen * 8 / 5) + 2;

  546. 		g_string_set_size (res, res->len + b32_len);

  547. 		res->len -= b32_len;

  548. 		olen = rspamd_encode_base32_buf (data, datalen, res->str + res->len,

  549. 				res->len + b32_len - 1, RSPAMD_BASE32_DEFAULT);

  550. 

  551. 		if (olen > 0) {

  552. 			res->len += olen;

  553. 			res->str[res->len] = '\0';

  554. 		}

  555. 	}

  556. 	else if (how & RSPAMD_KEYPAIR_HEX) {

  557. 		rspamd_printf_gstring (res, "%*xs", (gint)datalen, data);

  558. 	}

  559. 	else {

  560. 		g_string_append_len (res, data, datalen);

  561. 	}

  562. 

  563. 	if (how & RSPAMD_KEYPAIR_HUMAN) {

  564. 		g_string_append_c (res, '\n');

  565. 	}

  566. }

  567. 

  568. GString *

  569. rspamd_keypair_print (struct rspamd_cryptobox_keypair *kp, guint how)

  570. {

  571. 	GString *res;

  572. 	guint len;

  573. 	gpointer p;

  574. 

  575. 	g_assert (kp != NULL);

  576. 

  577. 	res = g_string_sized_new (63);

  578. 

  579. 	if ((how & RSPAMD_KEYPAIR_PUBKEY)) {

  580. 		p = rspamd_cryptobox_keypair_pk (kp, &len);

  581. 		rspamd_keypair_print_component (p, len, res, how, "Public key");

  582. 	}

  583. 	if ((how & RSPAMD_KEYPAIR_PRIVKEY)) {

  584. 		p = rspamd_cryptobox_keypair_sk (kp, &len);

  585. 		rspamd_keypair_print_component (p, len, res, how, "Private key");

  586. 	}

  587. 	if ((how & RSPAMD_KEYPAIR_ID_SHORT)) {

  588. 		rspamd_keypair_print_component (kp->id, RSPAMD_KEYPAIR_SHORT_ID_LEN,

  589. 				res, how, "Short key ID");

  590. 	}

  591. 	if ((how & RSPAMD_KEYPAIR_ID)) {

  592. 		rspamd_keypair_print_component (kp->id, sizeof (kp->id), res, how, "Key ID");

  593. 	}

  594. 

  595. 	return res;

  596. }

  597. 

  598. GString *

  599. rspamd_pubkey_print (struct rspamd_cryptobox_pubkey *pk, guint how)

  600. {

  601. 	GString *res;

  602. 	guint len;

  603. 	gpointer p;

  604. 

  605. 	g_assert (pk != NULL);

  606. 

  607. 	res = g_string_sized_new (63);

  608. 

  609. 	if ((how & RSPAMD_KEYPAIR_PUBKEY)) {

  610. 		p = rspamd_cryptobox_pubkey_pk (pk, &len);

  611. 		rspamd_keypair_print_component (p, len, res, how, "Public key");

  612. 	}

  613. 	if ((how & RSPAMD_KEYPAIR_ID_SHORT)) {

  614. 		rspamd_keypair_print_component (pk->id, RSPAMD_KEYPAIR_SHORT_ID_LEN,

  615. 				res, how, "Short key ID");

  616. 	}

  617. 	if ((how & RSPAMD_KEYPAIR_ID)) {

  618. 		rspamd_keypair_print_component (pk->id, sizeof (pk->id), res, how,

  619. 				"Key ID");

  620. 	}

  621. 

  622. 	return res;

  623. }

  624. 

  625. const guchar *

  626. rspamd_keypair_component (struct rspamd_cryptobox_keypair *kp,

  627. 		guint ncomp, guint *len)

  628. {

  629. 	guint rlen = 0;

  630. 	const guchar *ret = NULL;

  631. 

  632. 	g_assert (kp != NULL);

  633. 

  634. 	switch (ncomp) {

  635. 	case RSPAMD_KEYPAIR_COMPONENT_ID:

  636. 		rlen = sizeof (kp->id);

  637. 		ret = kp->id;

  638. 		break;

  639. 	case RSPAMD_KEYPAIR_COMPONENT_PK:

  640. 		ret = rspamd_cryptobox_keypair_pk (kp, &rlen);

  641. 		break;

  642. 	case RSPAMD_KEYPAIR_COMPONENT_SK:

  643. 		ret = rspamd_cryptobox_keypair_sk (kp, &rlen);

  644. 		break;

  645. 	}

  646. 

  647. 	if (len) {

  648. 		*len = rlen;

  649. 	}

  650. 

  651. 	return ret;

  652. }

  653. 

  654. struct rspamd_cryptobox_keypair *

  655. rspamd_keypair_from_ucl (const ucl_object_t *obj)

  656. {

  657. 	const ucl_object_t *privkey, *pubkey, *elt;

  658. 	const gchar *str;

  659. 	enum rspamd_cryptobox_keypair_type type = RSPAMD_KEYPAIR_KEX;

  660. 	enum rspamd_cryptobox_mode mode = RSPAMD_CRYPTOBOX_MODE_25519;

  661. 	gboolean is_hex = FALSE;

  662. 	struct rspamd_cryptobox_keypair *kp;

  663. 	guint len;

  664. 	gsize ucl_len;

  665. 	gint dec_len;

  666. 	gpointer target;

  667. 

  668. 	if (ucl_object_type (obj) != UCL_OBJECT) {

  669. 		return NULL;

  670. 	}

  671. 

  672. 	elt = ucl_object_lookup (obj, "keypair");

  673. 	if (elt != NULL) {

  674. 		obj = elt;

  675. 	}

  676. 

  677. 	pubkey = ucl_object_lookup_any (obj, "pubkey", "public", "public_key",

  678. 			NULL);

  679. 	if (pubkey == NULL || ucl_object_type (pubkey) != UCL_STRING) {

  680. 		return NULL;

  681. 	}

  682. 

  683. 	privkey = ucl_object_lookup_any (obj, "privkey", "private", "private_key",

  684. 			"secret", "secret_key", NULL);

  685. 	if (privkey == NULL || ucl_object_type (privkey) != UCL_STRING) {

  686. 		return NULL;

  687. 	}

  688. 

  689. 	/* Optional fields */

  690. 	elt = ucl_object_lookup (obj, "type");

  691. 	if (elt && ucl_object_type (elt) == UCL_STRING) {

  692. 		str = ucl_object_tostring (elt);

  693. 

  694. 		if (g_ascii_strcasecmp (str, "kex") == 0) {

  695. 			type = RSPAMD_KEYPAIR_KEX;

  696. 		}

  697. 		else if (g_ascii_strcasecmp (str, "sign") == 0) {

  698. 			type = RSPAMD_KEYPAIR_SIGN;

  699. 		}

  700. 		/* TODO: handle errors */

  701. 	}

  702. 

  703. 	elt = ucl_object_lookup (obj, "algorithm");

  704. 	if (elt && ucl_object_type (elt) == UCL_STRING) {

  705. 		str = ucl_object_tostring (elt);

  706. 

  707. 		if (g_ascii_strcasecmp (str, "curve25519") == 0) {

  708. 			mode = RSPAMD_CRYPTOBOX_MODE_25519;

  709. 		}

  710. 		else if (g_ascii_strcasecmp (str, "nistp256") == 0) {

  711. 			mode = RSPAMD_CRYPTOBOX_MODE_NIST;

  712. 		}

  713. 		/* TODO: handle errors */

  714. 	}

  715. 

  716. 	elt = ucl_object_lookup (obj, "encoding");

  717. 	if (elt && ucl_object_type (elt) == UCL_STRING) {

  718. 		str = ucl_object_tostring (elt);

  719. 

  720. 		if (g_ascii_strcasecmp (str, "hex") == 0) {

  721. 			is_hex = TRUE;

  722. 		}

  723. 		/* TODO: handle errors */

  724. 	}

  725. 

  726. 	kp = rspamd_cryptobox_keypair_alloc (type, mode);

  727. 	kp->type = type;

  728. 	kp->alg = mode;

  729. 	REF_INIT_RETAIN (kp, rspamd_cryptobox_keypair_dtor);

  730. 	g_assert (kp != NULL);

  731. 

  732. 	target = rspamd_cryptobox_keypair_sk (kp, &len);

  733. 	str = ucl_object_tolstring (privkey, &ucl_len);

  734. 

  735. 	if (is_hex) {

  736. 		dec_len = rspamd_decode_hex_buf (str, ucl_len, target, len);

  737. 	}

  738. 	else {

  739. 		dec_len = rspamd_decode_base32_buf (str, ucl_len, target, len, RSPAMD_BASE32_DEFAULT);

  740. 	}

  741. 

  742. 	if (dec_len != (gint)len) {

  743. 		rspamd_keypair_unref (kp);

  744. 

  745. 		return NULL;

  746. 	}

  747. 

  748. 	target = rspamd_cryptobox_keypair_pk (kp, &len);

  749. 	str = ucl_object_tolstring (pubkey, &ucl_len);

  750. 

  751. 	if (is_hex) {

  752. 		dec_len = rspamd_decode_hex_buf (str, ucl_len, target, len);

  753. 	}

  754. 	else {

  755. 		dec_len = rspamd_decode_base32_buf (str, ucl_len, target, len, RSPAMD_BASE32_DEFAULT);

  756. 	}

  757. 

  758. 	if (dec_len != (gint)len) {

  759. 		rspamd_keypair_unref (kp);

  760. 

  761. 		return NULL;

  762. 	}

  763. 

  764. 	rspamd_cryptobox_hash (kp->id, target, len, NULL, 0);

  765. 

  766. 	return kp;

  767. }

  768. 

  769. ucl_object_t *

  770. rspamd_keypair_to_ucl (struct rspamd_cryptobox_keypair *kp,

  771. 		gboolean is_hex)

  772. {

  773. 	ucl_object_t *ucl_out, *elt;

  774. 	gint how = 0;

  775. 	GString *keypair_out;

  776. 	const gchar *encoding;

  777. 

  778. 	g_assert (kp != NULL);

  779. 

  780. 	if (is_hex) {

  781. 		how |= RSPAMD_KEYPAIR_HEX;

  782. 		encoding = "hex";

  783. 	}

  784. 	else {

  785. 		how |= RSPAMD_KEYPAIR_BASE32;

  786. 		encoding = "base32";

  787. 	}

  788. 

  789. 	ucl_out = ucl_object_typed_new (UCL_OBJECT);

  790. 	elt = ucl_object_typed_new (UCL_OBJECT);

  791. 	ucl_object_insert_key (ucl_out, elt, "keypair", 0, false);

  792. 

  793. 	/* pubkey part */

  794. 	keypair_out = rspamd_keypair_print (kp,

  795. 			RSPAMD_KEYPAIR_PUBKEY|how);

  796. 	ucl_object_insert_key (elt,

  797. 			ucl_object_fromlstring (keypair_out->str, keypair_out->len),

  798. 			"pubkey", 0, false);

  799. 	g_string_free (keypair_out, TRUE);

  800. 

  801. 	/* privkey part */

  802. 	keypair_out = rspamd_keypair_print (kp,

  803. 			RSPAMD_KEYPAIR_PRIVKEY|how);

  804. 	ucl_object_insert_key (elt,

  805. 			ucl_object_fromlstring (keypair_out->str, keypair_out->len),

  806. 			"privkey", 0, false);

  807. 	g_string_free (keypair_out, TRUE);

  808. 

  809. 	keypair_out = rspamd_keypair_print (kp,

  810. 			RSPAMD_KEYPAIR_ID|how);

  811. 	ucl_object_insert_key (elt,

  812. 			ucl_object_fromlstring (keypair_out->str, keypair_out->len),

  813. 			"id", 0, false);

  814. 	g_string_free (keypair_out, TRUE);

  815. 

  816. 	ucl_object_insert_key (elt,

  817. 			ucl_object_fromstring (encoding),

  818. 			"encoding", 0, false);

  819. 

  820. 	ucl_object_insert_key (elt,

  821. 			ucl_object_fromstring (

  822. 					kp->alg == RSPAMD_CRYPTOBOX_MODE_NIST ?

  823. 							"nistp256" : "curve25519"),

  824. 					"algorithm", 0, false);

  825. 

  826. 	ucl_object_insert_key (elt,

  827. 			ucl_object_fromstring (

  828. 					kp->type == RSPAMD_KEYPAIR_KEX ?

  829. 							"kex" : "sign"),

  830. 					"type", 0, false);

  831. 

  832. 	return ucl_out;

  833. }

  834. 

  835. gboolean

  836. rspamd_keypair_sign (struct rspamd_cryptobox_keypair *kp,

  837. 		const void *data, gsize len, guchar **sig, gsize *outlen,

  838. 		GError **err)

  839. {

  840. 	unsigned long long siglen;

  841. 	guint sklen;

  842. 

  843. 	g_assert (kp != NULL);

  844. 	g_assert (data != NULL);

  845. 	g_assert (sig != NULL);

  846. 

  847. 	if (kp->type != RSPAMD_KEYPAIR_SIGN) {

  848. 		g_set_error (err, rspamd_keypair_quark (), EINVAL,

  849. 				"invalid keypair: expected signature pair");

  850. 

  851. 		return FALSE;

  852. 	}

  853. 

  854. 	siglen = rspamd_cryptobox_signature_bytes (kp->alg);

  855. 	*sig = g_malloc (siglen);

  856. 	rspamd_cryptobox_sign (*sig, &siglen, data, len,

  857. 			rspamd_cryptobox_keypair_sk (kp, &sklen), kp->alg);

  858. 

  859. 	if (outlen != NULL) {

  860. 		*outlen = siglen;

  861. 	}

  862. 

  863. 	return TRUE;

  864. }

  865. 

  866. gboolean

  867. rspamd_keypair_verify (struct rspamd_cryptobox_pubkey *pk,

  868. 		const void *data, gsize len, const guchar *sig, gsize siglen,

  869. 		GError **err)

  870. {

  871. 	guint pklen;

  872. 

  873. 	g_assert (pk != NULL);

  874. 	g_assert (data != NULL);

  875. 	g_assert (sig != NULL);

  876. 

  877. 	if (pk->type != RSPAMD_KEYPAIR_SIGN) {

  878. 		g_set_error (err, rspamd_keypair_quark (), EINVAL,

  879. 				"invalid keypair: expected signature pair");

  880. 

  881. 		return FALSE;

  882. 	}

  883. 

  884. 	if (siglen != rspamd_cryptobox_signature_bytes (pk->alg)) {

  885. 		g_set_error (err, rspamd_keypair_quark (), E2BIG,

  886. 				"invalid signature length: %d; expected %d",

  887. 				(int)siglen, (int) rspamd_cryptobox_signature_bytes (pk->alg));

  888. 

  889. 		return FALSE;

  890. 	}

  891. 

  892. 	if (!rspamd_cryptobox_verify (sig, siglen, data, len,

  893. 			rspamd_cryptobox_pubkey_pk (pk, &pklen), pk->alg)) {

  894. 		g_set_error (err, rspamd_keypair_quark (), EPERM,

  895. 				"signature verification failed");

  896. 

  897. 		return FALSE;

  898. 	}

  899. 

  900. 	return TRUE;

  901. }

  902. 

  903. gboolean

  904. rspamd_pubkey_equal (const struct rspamd_cryptobox_pubkey *k1,

  905. 		const struct rspamd_cryptobox_pubkey *k2)

  906. {

  907. 	guchar *p1 = NULL, *p2 = NULL;

  908. 	guint len1, len2;

  909. 

  910. 

  911. 	if (k1->alg == k2->alg && k1->type == k2->type) {

  912. 		p1 = rspamd_cryptobox_pubkey_pk (k1, &len1);

  913. 		p2 = rspamd_cryptobox_pubkey_pk (k2, &len2);

  914. 

  915. 		if (len1 == len2) {

  916. 			return (memcmp (p1, p2, len1) == 0);

  917. 		}

  918. 	}

  919. 

  920. 	return FALSE;

  921. }

  922. 

  923. gboolean

  924. rspamd_keypair_decrypt (struct rspamd_cryptobox_keypair *kp,

  925. 						const guchar *in, gsize inlen,

  926. 						guchar **out, gsize *outlen,

  927. 						GError **err)

  928. {

  929. 	const guchar *nonce, *mac, *data, *pubkey;

  930. 

  931. 	g_assert (kp != NULL);

  932. 	g_assert (in != NULL);

  933. 

  934. 	if (kp->type != RSPAMD_KEYPAIR_KEX) {

  935. 		g_set_error (err, rspamd_keypair_quark (), EINVAL,

  936. 				"invalid keypair type");

  937. 

  938. 		return FALSE;

  939. 	}

  940. 

  941. 	if (inlen < sizeof (encrypted_magic) + rspamd_cryptobox_pk_bytes (kp->alg) +

  942. 				rspamd_cryptobox_mac_bytes (kp->alg) +

  943. 				rspamd_cryptobox_nonce_bytes (kp->alg)) {

  944. 		g_set_error (err, rspamd_keypair_quark (), E2BIG, "invalid size: too small");

  945. 

  946. 		return FALSE;

  947. 	}

  948. 

  949. 	if (memcmp (in, encrypted_magic, sizeof (encrypted_magic)) != 0) {

  950. 		g_set_error (err, rspamd_keypair_quark (), EINVAL,

  951. 				"invalid magic");

  952. 

  953. 		return FALSE;

  954. 	}

  955. 

  956. 	/* Set pointers */

  957. 	pubkey = in + sizeof (encrypted_magic);

  958. 	mac = pubkey + rspamd_cryptobox_pk_bytes (kp->alg);

  959. 	nonce = mac + rspamd_cryptobox_mac_bytes (kp->alg);

  960. 	data = nonce + rspamd_cryptobox_nonce_bytes (kp->alg);

  961. 

  962. 	if (data - in >= inlen) {

  963. 		g_set_error (err, rspamd_keypair_quark (), E2BIG, "invalid size: too small");

  964. 

  965. 		return FALSE;

  966. 	}

  967. 

  968. 	inlen -= data - in;

  969. 

  970. 	/* Allocate memory for output */

  971. 	*out = g_malloc (inlen);

  972. 	memcpy (*out, data, inlen);

  973. 

  974. 	if (!rspamd_cryptobox_decrypt_inplace (*out, inlen, nonce, pubkey,

  975. 			rspamd_keypair_component (kp, RSPAMD_KEYPAIR_COMPONENT_SK, NULL),

  976. 			mac, kp->alg)) {

  977. 		g_set_error (err, rspamd_keypair_quark (), EPERM, "verification failed");

  978. 		g_free (*out);

  979. 

  980. 		return FALSE;

  981. 	}

  982. 

  983. 	if (outlen) {

  984. 		*outlen = inlen;

  985. 	}

  986. 

  987. 	return TRUE;

  988. }

  989. 

  990. gboolean

  991. rspamd_keypair_encrypt (struct rspamd_cryptobox_keypair *kp,

  992. 						const guchar *in, gsize inlen,

  993. 						guchar **out, gsize *outlen,

  994. 						GError **err)

  995. {

  996. 	guchar *nonce, *mac, *data, *pubkey;

  997. 	struct rspamd_cryptobox_keypair *local;

  998. 	gsize olen;

  999. 

  1000. 	g_assert (kp != NULL);

  1001. 	g_assert (in != NULL);

  1002. 

  1003. 	if (kp->type != RSPAMD_KEYPAIR_KEX) {

  1004. 		g_set_error (err, rspamd_keypair_quark (), EINVAL,

  1005. 				"invalid keypair type");

  1006. 

  1007. 		return FALSE;

  1008. 	}

  1009. 

  1010. 	local = rspamd_keypair_new (kp->type, kp->alg);

  1011. 

  1012. 	olen = inlen + sizeof (encrypted_magic) +

  1013. 			rspamd_cryptobox_pk_bytes (kp->alg) +

  1014. 			rspamd_cryptobox_mac_bytes (kp->alg) +

  1015. 			rspamd_cryptobox_nonce_bytes (kp->alg);

  1016. 	*out = g_malloc (olen);

  1017. 	memcpy (*out, encrypted_magic, sizeof (encrypted_magic));

  1018. 	pubkey = *out + sizeof (encrypted_magic);

  1019. 	mac = pubkey + rspamd_cryptobox_pk_bytes (kp->alg);

  1020. 	nonce = mac + rspamd_cryptobox_mac_bytes (kp->alg);

  1021. 	data = nonce + rspamd_cryptobox_nonce_bytes (kp->alg);

  1022. 

  1023. 	ottery_rand_bytes (nonce, rspamd_cryptobox_nonce_bytes (kp->alg));

  1024. 	memcpy (data, in, inlen);

  1025. 	memcpy (pubkey, rspamd_keypair_component (kp,

  1026. 			RSPAMD_KEYPAIR_COMPONENT_PK, NULL),

  1027. 			rspamd_cryptobox_pk_bytes (kp->alg));

  1028. 	rspamd_cryptobox_encrypt_inplace (data, inlen, nonce, pubkey,

  1029. 			rspamd_keypair_component (local, RSPAMD_KEYPAIR_COMPONENT_SK, NULL),

  1030. 			mac, kp->alg);

  1031. 	rspamd_keypair_unref (local);

  1032. 

  1033. 	if (outlen) {

  1034. 		*outlen = olen;

  1035. 	}

  1036. 

  1037. 	return TRUE;

  1038. }

  1039. 

  1040. gboolean

  1041. rspamd_pubkey_encrypt (struct rspamd_cryptobox_pubkey *pk,

  1042. 						const guchar *in, gsize inlen,

  1043. 						guchar **out, gsize *outlen,

  1044. 						GError **err)

  1045. {

  1046. 	guchar *nonce, *mac, *data, *pubkey;

  1047. 	struct rspamd_cryptobox_keypair *local;

  1048. 	gsize olen;

  1049. 

  1050. 	g_assert (pk != NULL);

  1051. 	g_assert (in != NULL);

  1052. 

  1053. 	if (pk->type != RSPAMD_KEYPAIR_KEX) {

  1054. 		g_set_error (err, rspamd_keypair_quark (), EINVAL,

  1055. 				"invalid pubkey type");

  1056. 

  1057. 		return FALSE;

  1058. 	}

  1059. 

  1060. 	local = rspamd_keypair_new (pk->type, pk->alg);

  1061. 

  1062. 	olen = inlen + sizeof (encrypted_magic) +

  1063. 		   rspamd_cryptobox_pk_bytes (pk->alg) +

  1064. 		   rspamd_cryptobox_mac_bytes (pk->alg) +

  1065. 		   rspamd_cryptobox_nonce_bytes (pk->alg);

  1066. 	*out = g_malloc (olen);

  1067. 	memcpy (*out, encrypted_magic, sizeof (encrypted_magic));

  1068. 	pubkey = *out + sizeof (encrypted_magic);

  1069. 	mac = pubkey + rspamd_cryptobox_pk_bytes (pk->alg);

  1070. 	nonce = mac + rspamd_cryptobox_mac_bytes (pk->alg);

  1071. 	data = nonce + rspamd_cryptobox_nonce_bytes (pk->alg);

  1072. 

  1073. 	ottery_rand_bytes (nonce, rspamd_cryptobox_nonce_bytes (pk->alg));

  1074. 	memcpy (data, in, inlen);

  1075. 	memcpy (pubkey, rspamd_pubkey_get_pk (pk, NULL),

  1076. 			rspamd_cryptobox_pk_bytes (pk->alg));

  1077. 	rspamd_cryptobox_encrypt_inplace (data, inlen, nonce, pubkey,

  1078. 			rspamd_keypair_component (local, RSPAMD_KEYPAIR_COMPONENT_SK, NULL),

  1079. 			mac, pk->alg);

  1080. 	rspamd_keypair_unref (local);

  1081. 

  1082. 	if (outlen) {

  1083. 		*outlen = olen;

  1084. 	}

  1085. 

  1086. 	return TRUE;

  1087. }