2010-09-11 19:49:30 +02:00
|
|
|
/*
|
|
|
|
|
* Copyright (C) 2010 Felix Geyer <debfx@fobos.de>
|
|
|
|
|
*
|
|
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
|
* the Free Software Foundation, either version 2 or (at your option)
|
|
|
|
|
* version 3 of the License.
|
|
|
|
|
*
|
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include "Crypto.h"
|
|
|
|
|
|
2013-10-03 15:18:16 +02:00
|
|
|
#include <QMutex>
|
2010-09-11 19:49:30 +02:00
|
|
|
|
|
|
|
|
#include <gcrypt.h>
|
|
|
|
|
|
2014-06-15 11:17:40 +02:00
|
|
|
#include "config-keepassx.h"
|
|
|
|
|
#include "crypto/CryptoHash.h"
|
|
|
|
|
#include "crypto/SymmetricCipher.h"
|
|
|
|
|
|
2010-09-13 23:16:28 +02:00
|
|
|
bool Crypto::m_initalized(false);
|
2014-06-15 11:17:40 +02:00
|
|
|
QString Crypto::m_errorStr;
|
2010-09-11 19:49:30 +02:00
|
|
|
|
2014-01-12 12:39:39 +01:00
|
|
|
#if !defined(GCRYPT_VERSION_NUMBER) || (GCRYPT_VERSION_NUMBER < 0x010600)
|
2010-11-21 23:11:16 +01:00
|
|
|
static int gcry_qt_mutex_init(void** p_sys)
|
2010-09-11 19:49:30 +02:00
|
|
|
{
|
|
|
|
|
*p_sys = new QMutex();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-21 23:11:16 +01:00
|
|
|
static int gcry_qt_mutex_destroy(void** p_sys)
|
2010-09-11 19:49:30 +02:00
|
|
|
{
|
|
|
|
|
delete reinterpret_cast<QMutex*>(*p_sys);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-21 23:11:16 +01:00
|
|
|
static int gcry_qt_mutex_lock(void** p_sys)
|
2010-09-11 19:49:30 +02:00
|
|
|
{
|
|
|
|
|
reinterpret_cast<QMutex*>(*p_sys)->lock();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-21 23:11:16 +01:00
|
|
|
static int gcry_qt_mutex_unlock(void** p_sys)
|
2010-09-11 19:49:30 +02:00
|
|
|
{
|
|
|
|
|
reinterpret_cast<QMutex*>(*p_sys)->unlock();
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static const struct gcry_thread_cbs gcry_threads_qt =
|
|
|
|
|
{
|
|
|
|
|
GCRY_THREAD_OPTION_USER,
|
2010-09-18 20:31:14 +02:00
|
|
|
0,
|
2010-09-11 19:49:30 +02:00
|
|
|
gcry_qt_mutex_init,
|
|
|
|
|
gcry_qt_mutex_destroy,
|
|
|
|
|
gcry_qt_mutex_lock,
|
2010-09-18 20:31:14 +02:00
|
|
|
gcry_qt_mutex_unlock,
|
|
|
|
|
0, 0, 0, 0, 0, 0, 0, 0
|
2010-09-11 19:49:30 +02:00
|
|
|
};
|
2014-01-12 12:39:39 +01:00
|
|
|
#endif
|
2010-09-11 19:49:30 +02:00
|
|
|
|
|
|
|
|
Crypto::Crypto()
|
|
|
|
|
{
|
|
|
|
|
}
|
|
|
|
|
|
2014-06-15 11:17:40 +02:00
|
|
|
bool Crypto::init()
|
2010-09-11 19:49:30 +02:00
|
|
|
{
|
2010-09-13 23:16:28 +02:00
|
|
|
if (m_initalized) {
|
2010-11-21 16:19:27 +01:00
|
|
|
qWarning("Crypto::init: already initalized");
|
2014-06-15 11:17:40 +02:00
|
|
|
return true;
|
2010-09-11 19:49:30 +02:00
|
|
|
}
|
|
|
|
|
|
2014-01-12 12:39:39 +01:00
|
|
|
// libgcrypt >= 1.6 doesn't allow custom thread callbacks anymore.
|
|
|
|
|
#if !defined(GCRYPT_VERSION_NUMBER) || (GCRYPT_VERSION_NUMBER < 0x010600)
|
2010-09-11 19:49:30 +02:00
|
|
|
gcry_control(GCRYCTL_SET_THREAD_CBS, &gcry_threads_qt);
|
2014-01-12 12:39:39 +01:00
|
|
|
#endif
|
2010-09-11 19:49:30 +02:00
|
|
|
gcry_check_version(0);
|
|
|
|
|
gcry_control(GCRYCTL_INITIALIZATION_FINISHED, 0);
|
|
|
|
|
|
2014-06-15 11:17:40 +02:00
|
|
|
if (!checkAlgorithms()) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// has to be set before testing Crypto classes
|
2010-09-13 23:16:28 +02:00
|
|
|
m_initalized = true;
|
2014-06-15 11:17:40 +02:00
|
|
|
|
|
|
|
|
if (!selfTest()) {
|
|
|
|
|
m_initalized = false;
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
2010-09-11 19:49:30 +02:00
|
|
|
}
|
|
|
|
|
|
2011-11-20 10:24:12 +01:00
|
|
|
bool Crypto::initalized()
|
|
|
|
|
{
|
|
|
|
|
return m_initalized;
|
|
|
|
|
}
|
|
|
|
|
|
2014-06-15 11:17:40 +02:00
|
|
|
QString Crypto::errorString()
|
|
|
|
|
{
|
|
|
|
|
return m_errorStr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool Crypto::backendSelfTest()
|
2010-09-11 19:49:30 +02:00
|
|
|
{
|
|
|
|
|
return (gcry_control(GCRYCTL_SELFTEST) == 0);
|
|
|
|
|
}
|
2014-06-15 11:17:40 +02:00
|
|
|
|
|
|
|
|
bool Crypto::checkAlgorithms()
|
|
|
|
|
{
|
|
|
|
|
if (gcry_cipher_algo_info(GCRY_CIPHER_AES256, GCRYCTL_TEST_ALGO, Q_NULLPTR, Q_NULLPTR) != 0) {
|
|
|
|
|
m_errorStr = "GCRY_CIPHER_AES256 not found.";
|
|
|
|
|
qWarning("Crypto::checkAlgorithms: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if (gcry_cipher_algo_info(GCRY_CIPHER_TWOFISH, GCRYCTL_TEST_ALGO, Q_NULLPTR, Q_NULLPTR) != 0) {
|
|
|
|
|
m_errorStr = "GCRY_CIPHER_TWOFISH not found.";
|
|
|
|
|
qWarning("Crypto::checkAlgorithms: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
#ifdef GCRYPT_HAS_SALSA20
|
|
|
|
|
if (gcry_cipher_algo_info(GCRY_CIPHER_SALSA20, GCRYCTL_TEST_ALGO, Q_NULLPTR, Q_NULLPTR) != 0) {
|
|
|
|
|
m_errorStr = "GCRY_CIPHER_SALSA20 not found.";
|
|
|
|
|
qWarning("Crypto::checkAlgorithms: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
if (gcry_md_test_algo(GCRY_MD_SHA256) != 0) {
|
|
|
|
|
m_errorStr = "GCRY_MD_SHA256 not found.";
|
|
|
|
|
qWarning("Crypto::checkAlgorithms: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bool Crypto::selfTest()
|
|
|
|
|
{
|
|
|
|
|
QByteArray sha256Test = CryptoHash::hash("abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq",
|
|
|
|
|
CryptoHash::Sha256);
|
|
|
|
|
|
|
|
|
|
if (sha256Test != QByteArray::fromHex("248D6A61D20638B8E5C026930C3E6039A33CE45964FF2167F6ECEDD419DB06C1")) {
|
|
|
|
|
m_errorStr = "SHA-256 mismatch.";
|
|
|
|
|
qWarning("Crypto::selfTest: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
QByteArray key = QByteArray::fromHex("603deb1015ca71be2b73aef0857d77811f352c073b6108d72d9810a30914dff4");
|
|
|
|
|
QByteArray iv = QByteArray::fromHex("000102030405060708090a0b0c0d0e0f");
|
|
|
|
|
QByteArray plainText = QByteArray::fromHex("6bc1bee22e409f96e93d7e117393172a");
|
|
|
|
|
plainText.append(QByteArray::fromHex("ae2d8a571e03ac9c9eb76fac45af8e51"));
|
|
|
|
|
QByteArray cipherText = QByteArray::fromHex("f58c4c04d6e5f1ba779eabfb5f7bfbd6");
|
|
|
|
|
cipherText.append(QByteArray::fromHex("9cfc4e967edb808d679f777bc6702c7d"));
|
|
|
|
|
|
|
|
|
|
SymmetricCipher aes256Encrypt(SymmetricCipher::Aes256, SymmetricCipher::Cbc, SymmetricCipher::Encrypt, key, iv);
|
|
|
|
|
if (aes256Encrypt.process(plainText) != cipherText) {
|
|
|
|
|
m_errorStr = "AES-256 encryption mismatch.";
|
|
|
|
|
qWarning("Crypto::selfTest: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SymmetricCipher aes256Descrypt(SymmetricCipher::Aes256, SymmetricCipher::Cbc, SymmetricCipher::Decrypt, key, iv);
|
|
|
|
|
if (aes256Descrypt.process(cipherText) != plainText) {
|
|
|
|
|
m_errorStr = "AES-256 decryption mismatch.";
|
|
|
|
|
qWarning("Crypto::selfTest: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-05-09 18:15:01 +02:00
|
|
|
// Twofish
|
|
|
|
|
cipherText = QByteArray::fromHex("e0227c3cc80f3cb1b2ed847cc6f57d3c");
|
|
|
|
|
cipherText.append(QByteArray::fromHex("657b1e7960b30fb7c8d62e72ae37c3a0"));
|
|
|
|
|
|
|
|
|
|
SymmetricCipher twofishEncrypt(SymmetricCipher::Twofish, SymmetricCipher::Cbc, SymmetricCipher::Encrypt, key, iv);
|
|
|
|
|
if (twofishEncrypt.process(plainText) != cipherText) {
|
|
|
|
|
m_errorStr = "Twofish encryption mismatch.";
|
|
|
|
|
qWarning("Crypto::selfTest: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SymmetricCipher twofishDecrypt(SymmetricCipher::Twofish, SymmetricCipher::Cbc, SymmetricCipher::Decrypt, key, iv);
|
|
|
|
|
if (twofishDecrypt.process(cipherText) != plainText) {
|
|
|
|
|
m_errorStr = "Twofish decryption mismatch.";
|
|
|
|
|
qWarning("Crypto::selfTest: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2014-06-15 11:17:40 +02:00
|
|
|
QByteArray salsa20Key = QByteArray::fromHex("F3F4F5F6F7F8F9FAFBFCFDFEFF000102030405060708090A0B0C0D0E0F101112");
|
|
|
|
|
QByteArray salsa20iv = QByteArray::fromHex("0000000000000000");
|
|
|
|
|
QByteArray salsa20Plain = QByteArray::fromHex("00000000000000000000000000000000");
|
|
|
|
|
QByteArray salsa20Cipher = QByteArray::fromHex("B4C0AFA503BE7FC29A62058166D56F8F");
|
|
|
|
|
|
|
|
|
|
SymmetricCipher salsa20Stream(SymmetricCipher::Salsa20, SymmetricCipher::Stream,
|
|
|
|
|
SymmetricCipher::Encrypt, salsa20Key, salsa20iv);
|
|
|
|
|
|
|
|
|
|
if (salsa20Stream.process(salsa20Plain) != salsa20Cipher) {
|
|
|
|
|
m_errorStr = "Salsa20 stream cipher mismatch.";
|
|
|
|
|
qWarning("Crypto::selfTest: %s", qPrintable(m_errorStr));
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
