GNUnet  0.11.x
abe.c
Go to the documentation of this file.
1 /*
2  This file is part of GNUnet. Copyright (C) 2001-2018 Christian Grothoff
3  (and other contributing authors)
4 
5  GNUnet is free software: you can redistribute it and/or modify it
6  under the terms of the GNU Affero General Public License as published
7  by the Free Software Foundation, either version 3 of the License,
8  or (at your option) any later version.
9 
10  GNUnet is distributed in the hope that it will be useful, but
11  WITHOUT ANY WARRANTY; without even the implied warranty of
12  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13  Affero General Public License for more details.
14 
15  You should have received a copy of the GNU Affero General Public License
16  along with this program. If not, see <http://www.gnu.org/licenses/>.
17 
18  SPDX-License-Identifier: AGPL3.0-or-later
19 
20  */
21 
29 #include "platform.h"
30 #include <pbc/pbc.h>
31 #include <gabe.h>
32 
33 #include "gnunet_crypto_lib.h"
34 #include "gnunet_abe_lib.h"
35 
36 struct GNUNET_ABE_AbeMasterKey
37 {
38  gabe_pub_t*pub;
39  gabe_msk_t*msk;
40 };
41 
42 struct GNUNET_ABE_AbeKey
43 {
44  gabe_pub_t*pub;
45  gabe_prv_t*prv;
46 };
47 
48 static int
49 init_aes (element_t k, int enc,
50  gcry_cipher_hd_t*handle,
51  struct GNUNET_CRYPTO_SymmetricSessionKey *key,
52  unsigned char*iv)
53 {
54  int rc;
55  int key_len;
56  unsigned char*key_buf;
57 
58  key_len = element_length_in_bytes (k) < 33 ? 3 : element_length_in_bytes (k);
59  key_buf = (unsigned char *) malloc (key_len);
60  element_to_bytes (key_buf, k);
61 
62  GNUNET_memcpy (key->aes_key, key_buf, GNUNET_CRYPTO_AES_KEY_LENGTH);
63  GNUNET_assert (0 ==
64  gcry_cipher_open (handle, GCRY_CIPHER_AES256,
65  GCRY_CIPHER_MODE_CFB, 0));
66  rc = gcry_cipher_setkey (*handle,
67  key->aes_key,
68  sizeof(key->aes_key));
69  GNUNET_assert ((0 == rc) || ((char) rc == GPG_ERR_WEAK_KEY));
70  memset (iv, 0, 16); // TODO make reasonable
71  rc = gcry_cipher_setiv (*handle,
72  iv,
73  16);
74  GNUNET_assert ((0 == rc) || ((char) rc == GPG_ERR_WEAK_KEY));
75 
76  free (key_buf);
77  return rc;
78 }
79 
80 
81 static int
82 aes_128_cbc_encrypt (char*pt,
83  int size,
84  element_t k,
85  char **ct)
86 {
87  gcry_cipher_hd_t handle;
88  struct GNUNET_CRYPTO_SymmetricSessionKey skey;
89  unsigned char iv[16];
90  char*buf;
91  int padding;
92  int buf_size;
93  uint8_t len[4];
94 
95  init_aes (k, 1, &handle, &skey, iv);
96 
97  /* TODO make less crufty */
98 
99  /* stuff in real length (big endian) before padding */
100  len[0] = (size & 0xff000000) >> 24;
101  len[1] = (size & 0xff0000) >> 16;
102  len[2] = (size & 0xff00) >> 8;
103  len[3] = (size & 0xff) >> 0;
104  padding = 16 - ((4 + size) % 16);
105  buf_size = 4 + size + padding;
106  buf = GNUNET_malloc (buf_size);
107  GNUNET_memcpy (buf, len, 4);
108  GNUNET_memcpy (buf + 4, pt, size);
109  *ct = GNUNET_malloc (buf_size);
110 
111  GNUNET_assert (0 == gcry_cipher_encrypt (handle, *ct, buf_size, buf,
112  buf_size));
113  gcry_cipher_close (handle);
114  // AES_cbc_encrypt(pt->data, ct->data, pt->len, &key, iv, AES_ENCRYPT);
115  GNUNET_free (buf);
116  return buf_size;
117 }
118 
119 
120 static int
121 aes_128_cbc_decrypt (char*ct,
122  int size,
123  element_t k,
124  char **pt)
125 {
126  struct GNUNET_CRYPTO_SymmetricSessionKey skey;
127  gcry_cipher_hd_t handle;
128  unsigned char iv[16];
129  char*tmp;
130  uint32_t len;
131 
132  init_aes (k, 1, &handle, &skey, iv);
133 
134  tmp = GNUNET_malloc (size);
135 
136  // AES_cbc_encrypt(ct->data, pt->data, ct->len, &key, iv, AES_DECRYPT);
137  GNUNET_assert (0 == gcry_cipher_decrypt (handle, tmp, size, ct, size));
138  gcry_cipher_close (handle);
139  /* TODO make less crufty */
140 
141  /* get real length */
142  len = 0;
143  len = len
144  | ((tmp[0]) << 24) | ((tmp[1]) << 16)
145  | ((tmp[2]) << 8) | ((tmp[3]) << 0);
146  /* truncate any garbage from the padding */
147  *pt = GNUNET_malloc (len);
148  GNUNET_memcpy (*pt, tmp + 4, len);
149  GNUNET_free (tmp);
150  return len;
151 }
152 
153 
160 struct GNUNET_ABE_AbeMasterKey*
161 GNUNET_ABE_cpabe_create_master_key (void)
162 {
163  struct GNUNET_ABE_AbeMasterKey*key;
164 
165  key = GNUNET_new (struct GNUNET_ABE_AbeMasterKey);
166  gabe_setup (&key->pub, &key->msk);
167  GNUNET_assert (NULL != key->pub);
168  GNUNET_assert (NULL != key->msk);
169  return key;
170 }
171 
172 
180 void
181 GNUNET_ABE_cpabe_delete_master_key (struct GNUNET_ABE_AbeMasterKey *key)
182 {
183  gabe_msk_free (key->msk);
184  gabe_pub_free (key->pub);
185  // GNUNET_free (key->msk);
186  // gabe_msk_free (key->msk); //For some reason free of pub implicit?
187  GNUNET_free (key);
188 }
189 
190 
199 struct GNUNET_ABE_AbeKey*
200 GNUNET_ABE_cpabe_create_key (struct GNUNET_ABE_AbeMasterKey *key,
201  char **attrs)
202 {
203  struct GNUNET_ABE_AbeKey *prv_key;
204  int size;
205  char *tmp;
206 
207  prv_key = GNUNET_new (struct GNUNET_ABE_AbeKey);
208  prv_key->prv = gabe_keygen (key->pub, key->msk, attrs);
209  size = gabe_pub_serialize (key->pub, &tmp);
210  prv_key->pub = gabe_pub_unserialize (tmp, size);
211  GNUNET_free (tmp);
212  GNUNET_assert (NULL != prv_key->prv);
213  return prv_key;
214 }
215 
216 
225 void
226 GNUNET_ABE_cpabe_delete_key (struct GNUNET_ABE_AbeKey *key,
227  int delete_pub)
228 {
229  // Memory management in gabe is buggy
230  gabe_prv_free (key->prv);
231  if (GNUNET_YES == delete_pub)
232  gabe_pub_free (key->pub);
233  GNUNET_free (key);
234 }
235 
236 
237 static ssize_t
238 write_cpabe (void **result,
239  uint32_t file_len,
240  char*cph_buf,
241  int cph_buf_len,
242  char*aes_buf,
243  int aes_buf_len)
244 {
245  char *ptr;
246  uint32_t *len;
247 
248  *result = GNUNET_malloc (12 + cph_buf_len + aes_buf_len);
249  ptr = *result;
250  len = (uint32_t *) ptr;
251  *len = htonl (file_len);
252  ptr += 4;
253  len = (uint32_t *) ptr;
254  *len = htonl (aes_buf_len);
255  ptr += 4;
256  GNUNET_memcpy (ptr, aes_buf, aes_buf_len);
257  ptr += aes_buf_len;
258  len = (uint32_t *) ptr;
259  *len = htonl (cph_buf_len);
260  ptr += 4;
261  GNUNET_memcpy (ptr, cph_buf, cph_buf_len);
262  return 12 + cph_buf_len + aes_buf_len;
263 }
264 
265 
266 static ssize_t
267 read_cpabe (const void *data,
268  char**cph_buf,
269  int *cph_buf_len,
270  char**aes_buf,
271  int *aes_buf_len)
272 {
273  int buf_len;
274  char *ptr;
275  uint32_t *len;
276 
277  ptr = (char *) data;
278  len = (uint32_t *) ptr;
279  buf_len = ntohl (*len);
280  ptr += 4;
281  len = (uint32_t *) ptr;
282  *aes_buf_len = ntohl (*len);
283  ptr += 4;
284  *aes_buf = GNUNET_malloc (*aes_buf_len);
285  GNUNET_memcpy (*aes_buf, ptr, *aes_buf_len);
286  ptr += *aes_buf_len;
287  len = (uint32_t *) ptr;
288  *cph_buf_len = ntohl (*len);
289  ptr += 4;
290  *cph_buf = GNUNET_malloc (*cph_buf_len);
291  GNUNET_memcpy (*cph_buf, ptr, *cph_buf_len);
292 
293  return buf_len;
294 }
295 
296 
308 ssize_t
309 GNUNET_ABE_cpabe_encrypt (const void *block,
310  size_t size,
311  const char *policy,
312  const struct GNUNET_ABE_AbeMasterKey *key,
313  void **result)
314 {
315  gabe_cph_t*cph;
316  char*plt;
317  char*cph_buf;
318  char*aes_buf;
319  element_t m;
320  int cph_buf_len;
321  int aes_buf_len;
322  ssize_t result_len;
323 
324  if (! (cph = gabe_enc (key->pub, m, (char *) policy)))
325  return GNUNET_SYSERR;
326  cph_buf_len = gabe_cph_serialize (cph,
327  &cph_buf);
328  gabe_cph_free (cph);
329  GNUNET_free (cph);
330  plt = GNUNET_memdup (block, size);
331  aes_buf_len = aes_128_cbc_encrypt (plt, size, m, &aes_buf);
332  GNUNET_free (plt);
333  element_clear (m);
334  result_len = write_cpabe (result, size, cph_buf, cph_buf_len, aes_buf,
335  aes_buf_len);
336  GNUNET_free (cph_buf);
337  GNUNET_free (aes_buf);
338  return result_len;
339 }
340 
341 
352 ssize_t
353 GNUNET_ABE_cpabe_decrypt (const void *block,
354  size_t size,
355  const struct GNUNET_ABE_AbeKey *key,
356  void **result)
357 {
358  char*aes_buf;
359  char*cph_buf;
360  gabe_cph_t*cph;
361  element_t m;
362  int cph_buf_size;
363  int aes_buf_size;
364  int plt_len;
365 
366  read_cpabe (block, &cph_buf, &cph_buf_size, &aes_buf, &aes_buf_size);
367  cph = gabe_cph_unserialize (key->pub, cph_buf, cph_buf_size);
368  if (! gabe_dec (key->pub, key->prv, cph, m))
369  {
370  GNUNET_log (GNUNET_ERROR_TYPE_DEBUG,
371  "%s\n", gabe_error ());
372  GNUNET_free (aes_buf);
373  GNUNET_free (cph_buf);
374  gabe_cph_free (cph);
375  GNUNET_free (cph);
376  element_clear (m);
377  return GNUNET_SYSERR;
378  }
379  gabe_cph_free (cph);
380  GNUNET_free (cph);
381  plt_len = aes_128_cbc_decrypt (aes_buf, aes_buf_size, m, (char **) result);
382  GNUNET_free (cph_buf);
383  GNUNET_free (aes_buf);
384  element_clear (m);
385  // freeing is buggy in gabe
386  // gabe_prv_free (prv);
387  // gabe_pub_free (pub);
388  return plt_len;
389 }
390 
391 
400 ssize_t
401 GNUNET_ABE_cpabe_serialize_key (const struct GNUNET_ABE_AbeKey *key,
402  void **result)
403 {
404  ssize_t len;
405  char *pub;
406  char *prv;
407  int pub_len;
408  int prv_len;
409 
410  pub_len = gabe_pub_serialize (key->pub, &pub);
411  prv_len = gabe_prv_serialize (key->prv, &prv);
412 
413  len = pub_len + prv_len + 12;
414  write_cpabe (result, len, pub, pub_len, prv, prv_len);
415 
416  GNUNET_free (pub);
417  GNUNET_free (prv);
418 
419  return len;
420 }
421 
422 
431 struct GNUNET_ABE_AbeKey*
432 GNUNET_ABE_cpabe_deserialize_key (const void *data,
433  size_t len)
434 {
435  struct GNUNET_ABE_AbeKey *key;
436  char *pub;
437  char *prv;
438  int prv_len;
439  int pub_len;
440 
441  key = GNUNET_new (struct GNUNET_ABE_AbeKey);
442  read_cpabe (data,
443  &pub,
444  &pub_len,
445  &prv,
446  &prv_len);
447  key->pub = gabe_pub_unserialize (pub, pub_len);
448  key->prv = gabe_prv_unserialize (key->pub, prv, prv_len);
449 
450  GNUNET_free (pub);
451  GNUNET_free (prv);
452  return key;
453 }
454 
455 
464 ssize_t
465 GNUNET_ABE_cpabe_serialize_master_key (const struct
466  GNUNET_ABE_AbeMasterKey *key,
467  void **result)
468 {
469  ssize_t len;
470  char *pub;
471  char *msk;
472  int pub_len;
473  int msk_len;
474 
475  pub_len = gabe_pub_serialize (key->pub, &pub);
476  msk_len = gabe_msk_serialize (key->msk, &msk);
477 
478  len = pub_len + msk_len + 12;
479  write_cpabe (result, len, pub, pub_len, msk, msk_len);
480 
481  GNUNET_free (pub);
482  GNUNET_free (msk);
483 
484  return len;
485 }
486 
487 
496 struct GNUNET_ABE_AbeMasterKey*
497 GNUNET_ABE_cpabe_deserialize_master_key (const void *data,
498  size_t len)
499 {
500  struct GNUNET_ABE_AbeMasterKey *key;
501  char *msk;
502  char *pub;
503  int msk_len;
504  int pub_len;
505 
506  key = GNUNET_new (struct GNUNET_ABE_AbeMasterKey);
507  read_cpabe (data,
508  &pub,
509  &pub_len,
510  &msk,
511  &msk_len);
512  key->pub = gabe_pub_unserialize (pub, pub_len);
513  key->msk = gabe_msk_unserialize (key->pub, msk, msk_len);
514 
515  GNUNET_free (pub);
516  GNUNET_free (msk);
517 
518  return key;
519 }
GNUNET_ABE_AbeKey::pub
gabe_pub_t * pub
Definition: abe.c:44
aes_128_cbc_decrypt
static int aes_128_cbc_decrypt(char *ct, int size, element_t k, char **pt)
Definition: abe.c:121
init_aes
static int init_aes(element_t k, int enc, gcry_cipher_hd_t *handle, struct GNUNET_CRYPTO_SymmetricSessionKey *key, unsigned char *iv)
Definition: abe.c:49
GNUNET_assert
#define GNUNET_assert(cond)
Use this for fatal errors that cannot be handled.
Definition: gnunet_common.h:852
GNUNET_ABE_cpabe_serialize_master_key
ssize_t GNUNET_ABE_cpabe_serialize_master_key(const struct GNUNET_ABE_AbeMasterKey *key, void **result)
Serialize an ABE master key.
Definition: abe.c:465
GNUNET_ABE_AbeMasterKey::msk
gabe_msk_t * msk
Definition: abe.c:39
GNUNET_memcpy
#define GNUNET_memcpy(dst, src, n)
Call memcpy() but check for n being 0 first.
Definition: gnunet_common.h:1203
GNUNET_memdup
#define GNUNET_memdup(buf, size)
Allocate and initialize a block of memory.
Definition: gnunet_common.h:1271
GNUNET_new
#define GNUNET_new(type)
Allocate a struct or union of the given type.
Definition: gnunet_common.h:1123
GNUNET_CRYPTO_SymmetricSessionKey::aes_key
unsigned char aes_key[(256/8)]
Actual key for AES.
Definition: gnunet_crypto_lib.h:285
m
static struct GNUNET_ARM_MonitorHandle * m
Monitor connection with ARM.
Definition: gnunet-arm.c:104
gnunet_crypto_lib.h
cryptographic primitives for GNUnet
GNUNET_CRYPTO_SymmetricSessionKey
type for session keys
Definition: gnunet_crypto_lib.h:280
GNUNET_ABE_cpabe_decrypt
ssize_t GNUNET_ABE_cpabe_decrypt(const void *block, size_t size, const struct GNUNET_ABE_AbeKey *key, void **result)
Decrypt a block using the ABE key.
Definition: abe.c:353
buf
static char buf[2048]
Definition: gnunet-service-testbed_meminfo.c:64
handle
static struct GNUNET_DNS_Handle * handle
Handle to transport service.
Definition: gnunet-dns-monitor.c:35
result
static int result
Global testing status.
Definition: gnunet-regex-profiler.c:244
GNUNET_ABE_cpabe_encrypt
ssize_t GNUNET_ABE_cpabe_encrypt(const void *block, size_t size, const char *policy, const struct GNUNET_ABE_AbeMasterKey *key, void **result)
Encrypt a block using sessionkey.
Definition: abe.c:309
GNUNET_ABE_cpabe_create_master_key
struct GNUNET_ABE_AbeMasterKey * GNUNET_ABE_cpabe_create_master_key(void)
Create a new CP-ABE master key.
Definition: abe.c:161
GNUNET_SYSERR
Definition: gnunet_common.h:85
GNUNET_ABE_AbeKey
Definition: abe.c:42
GNUNET_ABE_AbeKey::prv
gabe_prv_t * prv
Definition: abe.c:45
GNUNET_CRYPTO_AES_KEY_LENGTH
#define GNUNET_CRYPTO_AES_KEY_LENGTH
length of the sessionkey in bytes (256 BIT sessionkey)
Definition: gnunet_crypto_lib.h:101
key
struct GNUNET_HashCode key
The key used in the DHT.
Definition: gnunet-dht-put.c:37
GNUNET_ABE_cpabe_serialize_key
ssize_t GNUNET_ABE_cpabe_serialize_key(const struct GNUNET_ABE_AbeKey *key, void **result)
Serialize an ABE key.
Definition: abe.c:401
size
static unsigned int size
Size of the "table".
Definition: peer.c:67
write_cpabe
static ssize_t write_cpabe(void **result, uint32_t file_len, char *cph_buf, int cph_buf_len, char *aes_buf, int aes_buf_len)
Definition: abe.c:238
GNUNET_ABE_AbeMasterKey::pub
gabe_pub_t * pub
Definition: abe.c:38
GNUNET_ABE_cpabe_deserialize_master_key
struct GNUNET_ABE_AbeMasterKey * GNUNET_ABE_cpabe_deserialize_master_key(const void *data, size_t len)
Deserialize an ABE master key.
Definition: abe.c:497
GNUNET_ABE_cpabe_delete_master_key
void GNUNET_ABE_cpabe_delete_master_key(struct GNUNET_ABE_AbeMasterKey *key)
Delete a CP-ABE master key.
Definition: abe.c:181
aes_128_cbc_encrypt
static int aes_128_cbc_encrypt(char *pt, int size, element_t k, char **ct)
Definition: abe.c:82
GNUNET_ABE_cpabe_deserialize_key
struct GNUNET_ABE_AbeKey * GNUNET_ABE_cpabe_deserialize_key(const void *data, size_t len)
Deserialize a serialized ABE key.
Definition: abe.c:432
enc
static OpusEncoder * enc
OPUS encoder.
Definition: gnunet-helper-audio-record.c:206
GNUNET_log
#define GNUNET_log(kind,...)
Definition: gnunet_common.h:520
GNUNET_ERROR_TYPE_DEBUG
Definition: gnunet_common.h:398
GNUNET_ABE_AbeMasterKey
Definition: abe.c:36
read_cpabe
static ssize_t read_cpabe(const void *data, char **cph_buf, int *cph_buf_len, char **aes_buf, int *aes_buf_len)
Definition: abe.c:267
data
uint32_t data
The data value.
Definition: gnunet-helper-transport-wlan.c:90
gnunet_abe_lib.h
Attribute-Based Encryption primitives for GNUnet.
GNUNET_ABE_cpabe_delete_key
void GNUNET_ABE_cpabe_delete_key(struct GNUNET_ABE_AbeKey *key, int delete_pub)
Delete a CP-ABE key.
Definition: abe.c:226
GNUNET_YES
Definition: gnunet_common.h:89
GNUNET_malloc
#define GNUNET_malloc(size)
Wrapper around malloc.
Definition: gnunet_common.h:1261
GNUNET_ABE_cpabe_create_key
struct GNUNET_ABE_AbeKey * GNUNET_ABE_cpabe_create_key(struct GNUNET_ABE_AbeMasterKey *key, char **attrs)
Create a new CP-ABE key.
Definition: abe.c:200
GNUNET_free
#define GNUNET_free(ptr)
Wrapper around free.
Definition: gnunet_common.h:1321
len
uint16_t len
length of data (which is always a uint32_t, but presumably this can be used to specify that fewer byt...
Definition: gnunet-helper-transport-wlan.c:85
Generated by   doxygen 1.8.13