mirrors
/
tigervnc
mirror of https://github.com/TigerVNC/tigervnc.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 37 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4563 Commits
15 Branches
Tree: 484ae7a2ea
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '484ae7a2ea'
${ noResults }
tigervnc/common/rdr/AESInStream.cxx

AESInStream.cxx 2.6KB
Raw Blame History

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. /* Copyright (C) 2022 Dinglan Peng

  2.  * 

  3.  * This is free software; you can redistribute it and/or modify

  4.  * it under the terms of the GNU General Public License as published by

  5.  * the Free Software Foundation; either version 2 of the License, or

  6.  * (at your option) any later version.

  7.  * 

  8.  * This software is distributed in the hope that it will be useful,

  9.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  10.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  11.  * GNU General Public License for more details.

  12.  * 

  13.  * You should have received a copy of the GNU General Public License

  14.  * along with this software; if not, write to the Free Software

  15.  * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307,

  16.  * USA.

  17.  */

  18. 

  19. #ifdef HAVE_CONFIG_H

  20. #include <config.h>

  21. #endif

  22. 

  23. #include <assert.h>

  24. #include <rdr/AESInStream.h>

  25. #include <rdr/Exception.h>

  26. 

  27. #ifdef HAVE_NETTLE

  28. using namespace rdr;

  29. 

  30. AESInStream::AESInStream(InStream* _in, const U8* key, int _keySize)

  31.   : keySize(_keySize), in(_in), counter()

  32. {

  33.   if (keySize == 128)

  34.     EAX_SET_KEY(&eaxCtx128, aes128_set_encrypt_key, aes128_encrypt, key);

  35.   else if (keySize == 256)

  36.     EAX_SET_KEY(&eaxCtx256, aes256_set_encrypt_key, aes256_encrypt, key);

  37.   else

  38.     assert(!"incorrect key size");

  39. }

  40. 

  41. AESInStream::~AESInStream() {}

  42. 

  43. bool AESInStream::fillBuffer()

  44. {

  45.   if (!in->hasData(2))

  46.     return false;

  47.   const U8* ptr = in->getptr(2);

  48.   size_t length = ((int)ptr[0] << 8) | (int)ptr[1];

  49.   if (!in->hasData(2 + length + 16))

  50.     return false;

  51.   ensureSpace(length);

  52.   ptr = in->getptr(2 + length + 16);

  53.   const U8* ad = ptr;

  54.   const U8* data = ptr + 2;

  55.   const U8* mac = ptr + 2 + length;

  56.   U8 macComputed[16];

  57. 

  58.   if (keySize == 128) {

  59.     EAX_SET_NONCE(&eaxCtx128, aes128_encrypt, 16, counter);

  60.     EAX_UPDATE(&eaxCtx128, aes128_encrypt, 2, ad);

  61.     EAX_DECRYPT(&eaxCtx128, aes128_encrypt, length, (rdr::U8*)end, data);

  62.     EAX_DIGEST(&eaxCtx128, aes128_encrypt, 16, macComputed);

  63.   } else {

  64.     EAX_SET_NONCE(&eaxCtx256, aes256_encrypt, 16, counter);

  65.     EAX_UPDATE(&eaxCtx256, aes256_encrypt, 2, ad);

  66.     EAX_DECRYPT(&eaxCtx256, aes256_encrypt, length, (rdr::U8*)end, data);

  67.     EAX_DIGEST(&eaxCtx256, aes256_encrypt, 16, macComputed);

  68.   }

  69.   if (memcmp(mac, macComputed, 16) != 0)

  70.     throw Exception("AESInStream: failed to authenticate message");

  71.   in->setptr(2 + length + 16);

  72.   end += length;

  73. 

  74.   // Update nonce by incrementing the counter as a

  75.   // 128bit little endian unsigned integer

  76.   for (int i = 0; i < 16; ++i) {

  77.     // increment until there is no carry

  78.     if (++counter[i] != 0) {

  79.       break;

  80.     }

  81.   }

  82.   return true;

  83. }

  84. 

  85. #endif