Ye_Ol_Pi_Shack
/
CppCMS
2
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 1 Wiki Activity
ChipMaster's trial hacks on C++CMS starting with v1.2.1. Not sure I'll follow on with the v2 since it looks to be breaking and mostly frivolous.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
313 Commits
2 Branches
13 MiB
 
 
 
 
 
 
Tree: 9c8df7ba46
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9c8df7ba46'
${ noResults }
CppCMS/aes_encryptor.cpp

111 lines
2.6 KiB
Raw Blame History 

  1. #include <assert.h>

  2. #include <stdio.h>

  3. 

  4. #include <string>

  5. #include <vector>

  6. #include <algorithm>

  7. #include "cppcms_error.h"

  8. #include "aes_encryptor.h"

  9. 

  10. #include "base64.h"

  11. 

  12. using namespace std;

  13. 

  14. namespace cppcms {

  15. 

  16. namespace aes {

  17. 

  18. namespace {

  19. class load {

  20. 	public:

  21. 	load() {

  22. 		gcry_check_version(NULL);

  23. 	}

  24. };

  25. 

  26. } // anon namespace

  27. 

  28. cipher::cipher(string k) :

  29. 	encryptor(k)

  30. {

  31. 	bool in=false,out=false;

  32. 	in=gcry_cipher_open(&hd_in,GCRY_CIPHER_AES,GCRY_CIPHER_MODE_CBC,0) == 0;

  33. 	out=gcry_cipher_open(&hd_out,GCRY_CIPHER_AES,GCRY_CIPHER_MODE_CBC,0) == 0;

  34. 	if(!in || !out){

  35. 		goto error_exit;

  36. 	}

  37. 

  38. 	if( gcry_cipher_setkey(hd_in,&key.front(),16) != 0) {

  39. 		goto error_exit;

  40. 	}

  41. 	if( gcry_cipher_setkey(hd_out,&key.front(),16) != 0)

  42. 		goto error_exit;

  43. 	char iv[16];

  44. 	gcry_create_nonce(iv,sizeof(iv));

  45. 	gcry_cipher_setiv(hd_out,iv,sizeof(iv));

  46. 	return;

  47. error_exit:

  48. 	if(in) gcry_cipher_close(hd_in);

  49. 	if(out) gcry_cipher_close(hd_out);

  50. 	throw cppcms_error("AES cipher initialization failed");

  51. }

  52. 

  53. cipher::~cipher()

  54. {

  55. 	gcry_cipher_close(hd_in);

  56. 	gcry_cipher_close(hd_out);

  57. }

  58. 

  59. string cipher::encrypt(string const &plain,time_t timeout)

  60. {

  61. 	size_t block_size=(plain.size() + 15) / 16 * 16;

  62. 

  63. 	vector<unsigned char> data(sizeof(aes_hdr)+sizeof(info)+block_size,0);

  64. 	copy(plain.begin(),plain.end(),data.begin() + sizeof(aes_hdr)+sizeof(info));

  65. 	aes_hdr &aes_header=*(aes_hdr*)(&data.front());

  66. 	info &header=*(info *)(&data.front()+sizeof(aes_hdr));

  67. 	header.timeout=timeout;

  68. 	header.size=plain.size();

  69. 	memset(&aes_header,0,16);

  70. 

  71. 	gcry_md_hash_buffer(GCRY_MD_MD5,&aes_header.md5,&header,block_size+sizeof(info));

  72. 	gcry_cipher_encrypt(hd_out,&data.front(),data.size(),NULL,0);

  73. 

  74. 	return base64_enc(data);

  75. }

  76. 

  77. bool cipher::decrypt(string const &cipher,string &plain,time_t *timeout)

  78. {

  79. 	vector<unsigned char> data;

  80. 	base64_dec(cipher,data);

  81. 	size_t norm_size=b64url::decoded_size(cipher.size());

  82. 	if(norm_size<sizeof(info)+sizeof(aes_hdr) || norm_size % 16 !=0)

  83. 		return false;

  84. 

  85. 	gcry_cipher_decrypt(hd_in,&data.front(),data.size(),NULL,0);

  86. 	gcry_cipher_reset(hd_in);

  87. 	vector<char> md5(16,0);

  88. 	gcry_md_hash_buffer(GCRY_MD_MD5,&md5.front(),&data.front()+sizeof(aes_hdr),data.size()-sizeof(aes_hdr));

  89. 	aes_hdr &aes_header = *(aes_hdr*)&data.front();

  90. 	if(!std::equal(md5.begin(),md5.end(),aes_header.md5)) {

  91. 		return false;

  92. 	}

  93. 	info &header=*(info *)(&data.front()+sizeof(aes_hdr));

  94. 	if(time(NULL)>header.timeout)

  95. 		return false;

  96. 	if(timeout) *timeout=header.timeout;

  97. 

  98. 	vector<unsigned char>::iterator data_start=data.begin()+sizeof(aes_hdr)+sizeof(info),

  99. 			data_end=data_start+header.size;

  100. 

  101. 	plain.assign(data_start,data_end);

  102. 	return true;

  103. }

  104. 

  105. 

  106. } // namespace aes

  107. 

  108. } // namespace cppcms

  109.