Merged branch v0.5-GenericTunneling into trunk (Rev. 6284 to 6410).

- adds turtle router as a generic tunneling service - made ftServer a client of the service. Now turtle file items are handled in ftServer - added new client: p3MsgService to send/recv pgp-encrypted distant messages - added new client: p3ChatService to perform private (AES-encrypted) distant chat through tunnels. - The GUI is disabled for now, since it needs some polishing before being fully usable. git-svn-id: http://svn.code.sf.net/p/retroshare/code/trunk@6411 b45a01b8-16f6-495d-af2f-9b41ad6348cc
2025-06-30 00:57:28 -04:00 · 2013-06-06 19:58:30 +00:00 · 2013-06-06 19:58:30 +00:00 · dc2521cf71
commit dc2521cf71
parent faac2987db 1450ae8a5e
62 changed files with 5031 additions and 1989 deletions
--- a/libretroshare/src/util/rsaes.cc
+++ b/libretroshare/src/util/rsaes.cc
@ -0,0 +1,138 @@
+/*
+ * libretroshare/src/utils: rsaes.cc
+ *
+ * AES crptography for RetroShare.
+ *
+ * Copyright 2013 by Cyril Soler
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Library General Public
+ * License Version 2 as published by the Free Software Foundation.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ * Library General Public License for more details.
+ *
+ * You should have received a copy of the GNU Library General Public
+ * License along with this library; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
+ * USA.
+ *
+ * Please report all bugs and problems to "csoler@users.sourceforge.net".
+ *
+ */
+
+#include <iostream>
+#include <openssl/evp.h>
+#include <openssl/aes.h>
+
+#include "rsaes.h"
+
+uint32_t RsAES::get_buffer_size(uint32_t n)
+{
+	return n + AES_BLOCK_SIZE ;
+}
+
+bool RsAES::aes_crypt_8_16(const uint8_t *input_data,uint32_t input_data_length,uint8_t key_data[16],uint8_t salt[8],uint8_t *output_data,uint32_t& output_data_length)
+{
+	int nrounds = 5;
+	uint8_t key[32], iv[32];
+
+	/*
+	 * Gen key & IV for AES 256 CBC mode. A SHA1 digest is used to hash the supplied key material.
+	 * nrounds is the number of times the we hash the material. More rounds are more secure but
+	 * slower.
+	 */
+	int i = EVP_BytesToKey(EVP_aes_256_cbc(), EVP_sha1(), salt, key_data, 16, nrounds, key, iv);
+
+	if (i != 32) 
+	{
+		printf("Key size is %d bits - should be 256 bits\n", i);
+		return false ;
+	}
+
+	EVP_CIPHER_CTX e_ctx ;
+	EVP_CIPHER_CTX_init(&e_ctx);
+	EVP_EncryptInit_ex(&e_ctx, EVP_aes_256_cbc(), NULL, key, iv);
+
+	/* max ciphertext len for a n bytes of plaintext is n + AES_BLOCK_SIZE -1 bytes */
+	int c_len = input_data_length + AES_BLOCK_SIZE ;
+	int f_len = 0;
+
+	if(output_data_length < (uint32_t)c_len)
+		return false ;
+
+	/* update ciphertext, c_len is filled with the length of ciphertext generated,
+	 *len is the size of plaintext in bytes */
+
+	if(!EVP_EncryptUpdate(&e_ctx, output_data, &c_len, input_data, input_data_length))
+	{
+		std::cerr << "RsAES: decryption failed at end. Check padding." << std::endl;
+		return false ;
+	}
+
+	/* update ciphertext with the final remaining bytes */
+	if(!EVP_EncryptFinal_ex(&e_ctx, output_data+c_len, &f_len))
+	{
+		std::cerr << "RsAES: decryption failed at end. Check padding." << std::endl;
+		return false ;
+	}
+
+	output_data_length = c_len + f_len;
+
+	return true;
+}
+
+bool RsAES::aes_decrypt_8_16(const uint8_t *input_data,uint32_t input_data_length,uint8_t key_data[16],uint8_t salt[8],uint8_t *output_data,uint32_t& output_data_length)
+{
+	int nrounds = 5;
+	uint8_t key[32], iv[32];
+
+	/*
+	 * Gen key & IV for AES 256 CBC mode. A SHA1 digest is used to hash the supplied key material.
+	 * nrounds is the number of times the we hash the material. More rounds are more secure but
+	 * slower.
+	 */
+	int i = EVP_BytesToKey(EVP_aes_256_cbc(), EVP_sha1(), salt, key_data, 16, nrounds, key, iv);
+
+	if (i != 32) 
+	{
+		printf("Key size is %d bits - should be 256 bits\n", i);
+		return false ;
+	}
+
+	EVP_CIPHER_CTX e_ctx ;
+	EVP_CIPHER_CTX_init(&e_ctx);
+	EVP_DecryptInit_ex(&e_ctx, EVP_aes_256_cbc(), NULL, key, iv);
+
+	/* max ciphertext len for a n bytes of plaintext is n + AES_BLOCK_SIZE -1 bytes */
+	int c_len = input_data_length + AES_BLOCK_SIZE ;
+	int f_len = 0;
+
+	if(output_data_length < (uint32_t)c_len)
+		return false ;
+
+	output_data_length = c_len ;
+
+	/* update ciphertext, c_len is filled with the length of ciphertext generated,
+	 *len is the size of plaintext in bytes */
+
+	if(! EVP_DecryptUpdate(&e_ctx, output_data, &c_len, input_data, input_data_length))
+	{
+		std::cerr << "RsAES: decryption failed." << std::endl;
+		return false ;
+	}
+
+	/* update ciphertext with the final remaining bytes */
+	if(!EVP_DecryptFinal_ex(&e_ctx, output_data+c_len, &f_len))
+	{
+		std::cerr << "RsAES: decryption failed at end. Check padding." << std::endl;
+		return false ;
+	}
+
+	output_data_length = c_len + f_len;
+
+	return true;
+}
+
--- a/libretroshare/src/util/rsaes.h
+++ b/libretroshare/src/util/rsaes.h
@ -0,0 +1,47 @@
+/*
+ * libretroshare/src/utils: rsaescrypt.h
+ *
+ * AES crptography for RetroShare.
+ *
+ * Copyright 2013 by Cyril Soler
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Library General Public
+ * License Version 2 as published by the Free Software Foundation.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+ * Library General Public License for more details.
+ *
+ * You should have received a copy of the GNU Library General Public
+ * License along with this library; if not, write to the Free Software
+ * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307
+ * USA.
+ *
+ * Please report all bugs and problems to "csoler@users.sourceforge.net".
+ *
+ */
+
+#include <stdint.h>
+
+class RsAES
+{
+	public:
+		// Crypt/decrypt data using a 16 bytes key and a 8 bytes salt.
+		//
+		//		output_data allocation is left to the client. The size should be at least RsAES::get_buffer_size(input_data_length)
+		//
+		//	Return value:
+		//		true: encryption/decryption ok
+		//
+		//		false: encryption/decryption went bad. Check buffer size.
+		//
+		static bool   aes_crypt_8_16(const uint8_t *input_data,uint32_t input_data_length,uint8_t key[16],uint8_t salt[8],uint8_t *output_data,uint32_t& output_data_length) ;
+		static bool aes_decrypt_8_16(const uint8_t *input_data,uint32_t input_data_length,uint8_t key[16],uint8_t salt[8],uint8_t *output_data,uint32_t& output_data_length) ;
+
+		// computes the safe buffer size to store encrypted/decrypted data for the given input stream size
+		//
+		static uint32_t get_buffer_size(uint32_t size) ;
+};
+
--- a/libretroshare/src/util/rsrandom.cc
+++ b/libretroshare/src/util/rsrandom.cc
@ -51,6 +51,10 @@ bool RSRandom::seed(uint32_t s)
 	return true ;
 }

+void RSRandom::random_bytes(unsigned char *data,uint32_t size) 
+{
+	RAND_bytes(data,size) ;
+}
 void RSRandom::locked_next_state() 
 {
 #ifdef RSRANDOM_USE_SSL
--- a/libretroshare/src/util/rsrandom.h
+++ b/libretroshare/src/util/rsrandom.h
@ -46,6 +46,7 @@ class RSRandom
 		static bool     seed(uint32_t s) ;

 		static std::string random_alphaNumericString(uint32_t length) ; 
+		static void random_bytes(unsigned char *data,uint32_t length) ; 

 	private:
 		static RsMutex rndMtx ;