feisty meow concerns codebase 2.140
rsa_crypto.cpp
Go to the documentation of this file.
1/*
2* Name : RSA public key encryption
3* Author : Chris Koeritz
4* Purpose:
5* Supports public (and private) key encryption and decryption using the
6* OpenSSL package's support for RSA encryption.
7****
8* Copyright (c) 2005-$now By Author. This program is free software; you can *
9* redistribute it and/or modify it under the terms of the GNU General Public *
10* License as published by the Free Software Foundation; either version 2 of *
11* the License or (at your option) any later version. This is online at: *
12* http://www.fsf.org/copyleft/gpl.html *
13* Please send any updates to: fred@gruntose.com *
14*/
15
16//note: rsa crypto provides a nice printing method... RSA_print_fp(stdout, private_key, 0);
17
18// notes from openssl docs: length to be encrypted in a chunk must be less than
19// RSA_size(rsa) - 11 for the PKCS #1 v1.5 based padding modes, less than
20// RSA_size(rsa) - 41 for RSA_PKCS1_OAEP_PADDING and exactly RSA_size(rsa)
21// for RSA_NO_PADDING.
22
23#include "rsa_crypto.h"
24#include "ssl_init.h"
25
26#include <basis/functions.h>
27#include <loggers/critical_events.h>
28#include <loggers/program_wide_logger.h>
29#include <mathematics/chaos.h>
30#include <structures/object_packers.h>
31#include <structures/static_memory_gremlin.h>
32
33#include <openssl/bn.h>
34#include <openssl/err.h>
35#include <openssl/rsa.h>
36
37using namespace basis;
38using namespace loggers;
39using namespace mathematics;
40using namespace structures;
41
42namespace crypto {
43
44//#define DEBUG_RSA_CRYPTO
45 // uncomment for noisier version.
46
47#ifdef DEBUG_RSA_CRYPTO
48 #undef LOG
49 #define LOG(s) CLASS_EMERGENCY_LOG(program_wide_logger::get(), s)
50#else
51 #undef LOG
52 #define LOG(s)
53#endif
54
55SAFE_STATIC(mutex, __single_stepper, )
56 // protects unsafe areas of rsa crypto from access by multiple threads at once.
57
58rsa_crypto::rsa_crypto(int key_size)
59: _key(NULL_POINTER)
60{
61 FUNCDEF("ctor(int)");
62 LOG("prior to generating key");
63 _key = generate_key(key_size); // generate_key initializes ssl for us.
64 LOG("after generating key");
65}
66
67rsa_crypto::rsa_crypto(const byte_array &key)
68: _key(NULL_POINTER)
69{
70 FUNCDEF("ctor(byte_array)");
71 static_ssl_initializer();
72 byte_array key_copy = key;
73 LOG("prior to set key");
74 set_key(key_copy);
75 LOG("after set key");
76}
77
78rsa_crypto::rsa_crypto(RSA *key)
79: _key(NULL_POINTER)
80{
81 FUNCDEF("ctor(RSA)");
82 static_ssl_initializer();
83 LOG("prior to set key");
84 set_key(key);
85 LOG("after set key");
86}
87
88rsa_crypto::rsa_crypto(const rsa_crypto &to_copy)
89: root_object(),
90 _key(NULL_POINTER)
91{
92 FUNCDEF("copy ctor");
93 static_ssl_initializer();
94 LOG("prior to set key");
95 set_key(to_copy._key);
96 LOG("after set key");
97}
98
99rsa_crypto::~rsa_crypto()
100{
101 FUNCDEF("destructor");
102 LOG("prior to rsa free");
103 auto_synchronizer mutt(__single_stepper());
104 RSA_free(_key);
105 LOG("after rsa free");
106}
107
108const rsa_crypto &rsa_crypto::operator = (const rsa_crypto &to_copy)
109{
110 if (this == &to_copy) return *this;
111 set_key(to_copy._key);
112 return *this;
113}
114
115RSA *rsa_crypto::generate_key(int key_size)
116{
117 FUNCDEF("generate_key");
118 if (key_size < 4) key_size = 4; // laughable lower default.
119 static_ssl_initializer();
120 LOG("into generate key");
121 auto_synchronizer mutt(__single_stepper());
122 RSA *to_return = RSA_new();
123 BIGNUM *e = BN_new();
124 BN_set_word(e, 65537);
125//hmmm: only one value of e?
126 int ret = RSA_generate_key_ex(to_return, key_size, e, NULL_POINTER);
127 if (!ret) {
128 continuable_error(static_class_name(), func,
129 a_sprintf("failed to generate a key of %d bits: error is %ld.", key_size, ERR_get_error()));
130 BN_free(e);
131 RSA_free(to_return);
132 return NULL;
133 }
134 LOG("after key generated");
135 BN_free(e);
136 return to_return;
137}
138
139bool rsa_crypto::check_key(RSA *key)
140{
141 auto_synchronizer mutt(__single_stepper());
142 return RSA_check_key(key) == 1;
143}
144
145bool rsa_crypto::set_key(byte_array &key)
146{
147 FUNCDEF("set_key [byte_array]");
148 if (!key.length()) return false;
149 auto_synchronizer mutt(__single_stepper());
150 if (_key) RSA_free(_key);
151 _key = RSA_new();
152 abyte type;
153 if (!structures::detach(key, type)) return false;
154 if ( (type != 'r') && (type != 'u') ) return false;
155 // get the public key bits first.
156 byte_array n;
157 if (!structures::detach(key, n)) return false;
158 BIGNUM *the_n = BN_bin2bn(n.access(), n.length(), NULL_POINTER);
159 if (!the_n) return false;
160 byte_array e;
161 if (!structures::detach(key, e)) return false;
162 BIGNUM *the_e = BN_bin2bn(e.access(), e.length(), NULL_POINTER);
163 if (!the_e) return false;
164
165 if (type == 'u') {
166 // done with public key.
167#ifdef NEWER_OPENSSL
168 RSA_set0_key(_key, the_n, the_e, NULL_POINTER);
169#else
170 _key->n = the_n; _key->e = the_e;
171#endif
172 return true;
173 }
174
175 // the rest is for a private key.
176 byte_array d;
177 if (!structures::detach(key, d)) return false;
178 BIGNUM *the_d = BN_bin2bn(d.access(), d.length(), NULL_POINTER);
179 if (!the_d) return false;
180
181 byte_array p;
182 if (!structures::detach(key, p)) return false;
183 BIGNUM *the_p = BN_bin2bn(p.access(), p.length(), NULL_POINTER);
184 if (!the_p) return false;
185 byte_array q;
186 if (!structures::detach(key, q)) return false;
187 BIGNUM *the_q = BN_bin2bn(q.access(), q.length(), NULL_POINTER);
188 if (!the_q) return false;
189 byte_array dmp1;
190 if (!structures::detach(key, dmp1)) return false;
191 BIGNUM *the_dmp1 = BN_bin2bn(dmp1.access(), dmp1.length(), NULL_POINTER);
192 if (!the_dmp1) return false;
193 byte_array dmq1;
194 if (!structures::detach(key, dmq1)) return false;
195 BIGNUM *the_dmq1 = BN_bin2bn(dmq1.access(), dmq1.length(), NULL_POINTER);
196 if (!the_dmq1) return false;
197 byte_array iqmp;
198 if (!structures::detach(key, iqmp)) return false;
199 BIGNUM *the_iqmp = BN_bin2bn(iqmp.access(), iqmp.length(), NULL_POINTER);
200 if (!the_iqmp) return false;
201
202 // we can set the n, e and d now.
203#ifdef NEWER_OPENSSL
204 int ret = RSA_set0_key(_key, the_n, the_e, the_d);
205 if (ret != 1) return false;
206 ret = RSA_set0_factors(_key, the_p, the_q);
207 if (ret != 1) return false;
208 ret = RSA_set0_crt_params(_key, the_dmp1, the_dmq1, the_iqmp);
209 if (ret != 1) return false;
210#else
211 _key->n = the_n; _key->e = the_e; _key->d = the_d;
212 _key->p = the_p; _key->q = the_q;
213 _key->dmp1 = the_dmp1; _key->dmq1 = the_dmq1; _key->iqmp = the_iqmp;
214#endif
215
216 int check = RSA_check_key(_key);
217 if (check != 1) {
218 continuable_error(static_class_name(), func, "failed to check the private "
219 "portion of the key!");
220 return false;
221 }
222
223 return true;
224}
225
226bool rsa_crypto::set_key(RSA *key)
227{
228 FUNCDEF("set_key [RSA]");
229 if (!key) return NULL_POINTER;
230 // test the incoming key.
231 auto_synchronizer mutt(__single_stepper());
232 int check = RSA_check_key(key);
233 if (check != 1) return false;
234 // clean out the old key.
235 if (_key) RSA_free(_key);
236 _key = RSAPrivateKey_dup(key);
237 if (!_key) {
238 continuable_error(static_class_name(), func, "failed to create a "
239 "duplicate of the key!");
240 return false;
241 }
242 return true;
243}
244
245bool rsa_crypto::public_key(byte_array &pubkey) const
246{
247 FUNCDEF("public_key");
248 if (!_key) return false;
249 structures::attach(pubkey, abyte('u')); // signal a public key.
250 // convert the two public portions into binary.
251 BIGNUM **the_n = new BIGNUM *, **the_e = new BIGNUM *, **the_d = new BIGNUM *;
252#ifdef NEWER_OPENSSL
253 RSA_get0_key(_key, (const BIGNUM **)the_n, (const BIGNUM **)the_e, (const BIGNUM **)the_d);
254#else
255 *the_n = _key->n; *the_e = _key->e; *the_d = _key->d;
256#endif
257 byte_array n(BN_num_bytes(*the_n));
258 int ret = BN_bn2bin(*the_n, n.access());
259 byte_array e(BN_num_bytes(*the_e));
260 ret = BN_bn2bin(*the_e, e.access());
261 // pack those two chunks.
262 structures::attach(pubkey, n);
263 structures::attach(pubkey, e);
264 WHACK(the_n); WHACK(the_e); WHACK(the_d);
265
266 return true;
267}
268
269bool rsa_crypto::private_key(byte_array &privkey) const
270{
271 FUNCDEF("private_key");
272 if (!_key) return false;
273 int posn = privkey.length();
274 bool worked = public_key(privkey); // get the public pieces first.
275 if (!worked) return false;
276 privkey[posn] = abyte('r'); // switch public key flag to private.
277 // convert the multiple private portions into binary.
278 //const BIGNUM **the_n = NULL_POINTER, **the_e = NULL_POINTER, **the_d = NULL_POINTER;
279 BIGNUM **the_n = new BIGNUM *, **the_e = new BIGNUM *, **the_d = new BIGNUM *;
280 BIGNUM **the_p = new BIGNUM *, **the_q = new BIGNUM *;
281 BIGNUM **the_dmp1 = new BIGNUM *, **the_dmq1 = new BIGNUM *, **the_iqmp = new BIGNUM *;
282#ifdef NEWER_OPENSSL
283 RSA_get0_key(_key, (const BIGNUM **)the_n, (const BIGNUM **)the_e, (const BIGNUM **)the_d);
284 RSA_get0_factors(_key, (const BIGNUM **)the_p, (const BIGNUM **)the_q);
285 RSA_get0_crt_params(_key, (const BIGNUM **)the_dmp1, (const BIGNUM **)the_dmq1, (const BIGNUM **)the_iqmp);
286#else
287 *the_n = _key->n; *the_e = _key->e; *the_d = _key->d;
288 *the_p = _key->p; *the_q = _key->q;
289 *the_dmp1 = _key->dmp1; *the_dmq1 = _key->dmq1; *the_iqmp = _key->iqmp;
290#endif
291 byte_array d(BN_num_bytes(*the_d));
292 int ret = BN_bn2bin(*the_d, d.access());
293 byte_array p(BN_num_bytes(*the_p));
294 ret = BN_bn2bin(*the_p, p.access());
295 byte_array q(BN_num_bytes(*the_q));
296 ret = BN_bn2bin(*the_q, q.access());
297 byte_array dmp1(BN_num_bytes(*the_dmp1));
298 ret = BN_bn2bin(*the_dmp1, dmp1.access());
299 byte_array dmq1(BN_num_bytes(*the_dmq1));
300 ret = BN_bn2bin(*the_dmq1, dmq1.access());
301 byte_array iqmp(BN_num_bytes(*the_iqmp));
302 ret = BN_bn2bin(*the_iqmp, iqmp.access());
303 // pack all those in now.
304 structures::attach(privkey, d);
305 structures::attach(privkey, p);
306 structures::attach(privkey, q);
307 structures::attach(privkey, dmp1);
308 structures::attach(privkey, dmq1);
309 structures::attach(privkey, iqmp);
310 return true;
311}
312
313bool rsa_crypto::public_encrypt(const byte_array &source,
314 byte_array &target) const
315{
316 FUNCDEF("public_encrypt");
317 target.reset();
318 if (!source.length()) return false;
319
320 auto_synchronizer mutt(__single_stepper());
321 const int max_chunk = RSA_size(_key) - 12;
322
323 byte_array encoded(RSA_size(_key));
324 for (int i = 0; i < source.length(); i += max_chunk) {
325 int edge = i + max_chunk - 1;
326 if (edge > source.last())
327 edge = source.last();
328 int next_chunk = edge - i + 1;
329 RSA_public_encrypt(next_chunk, &source[i],
330 encoded.access(), _key, RSA_PKCS1_PADDING);
331 target += encoded;
332 }
333 return true;
334}
335
336bool rsa_crypto::private_decrypt(const byte_array &source,
337 byte_array &target) const
338{
339 FUNCDEF("private_decrypt");
340 target.reset();
341 if (!source.length()) return false;
342
343 auto_synchronizer mutt(__single_stepper());
344 const int max_chunk = RSA_size(_key);
345
346 byte_array decoded(max_chunk);
347 for (int i = 0; i < source.length(); i += max_chunk) {
348 int edge = i + max_chunk - 1;
349 if (edge > source.last())
350 edge = source.last();
351 int next_chunk = edge - i + 1;
352 int dec_size = RSA_private_decrypt(next_chunk, &source[i],
353 decoded.access(), _key, RSA_PKCS1_PADDING);
354 if (dec_size < 0) return false; // that didn't work.
355 decoded.zap(dec_size, decoded.last());
356 target += decoded;
357 decoded.reset(max_chunk);
358 }
359 return true;
360}
361
362bool rsa_crypto::private_encrypt(const byte_array &source,
363 byte_array &target) const
364{
365 FUNCDEF("private_encrypt");
366 target.reset();
367 if (!source.length()) return false;
368
369 auto_synchronizer mutt(__single_stepper());
370 const int max_chunk = RSA_size(_key) - 12;
371
372 byte_array encoded(RSA_size(_key));
373 for (int i = 0; i < source.length(); i += max_chunk) {
374 int edge = i + max_chunk - 1;
375 if (edge > source.last())
376 edge = source.last();
377 int next_chunk = edge - i + 1;
378 RSA_private_encrypt(next_chunk, &source[i],
379 encoded.access(), _key, RSA_PKCS1_PADDING);
380 target += encoded;
381 }
382 return true;
383}
384
385bool rsa_crypto::public_decrypt(const byte_array &source,
386 byte_array &target) const
387{
388 FUNCDEF("public_decrypt");
389 target.reset();
390 if (!source.length()) return false;
391
392 auto_synchronizer mutt(__single_stepper());
393 const int max_chunk = RSA_size(_key);
394
395 byte_array decoded(max_chunk);
396 for (int i = 0; i < source.length(); i += max_chunk) {
397 int edge = i + max_chunk - 1;
398 if (edge > source.last())
399 edge = source.last();
400 int next_chunk = edge - i + 1;
401 int dec_size = RSA_public_decrypt(next_chunk, &source[i],
402 decoded.access(), _key, RSA_PKCS1_PADDING);
403 if (dec_size < 0) return false; // that didn't work.
404 decoded.zap(dec_size, decoded.last());
405 target += decoded;
406 decoded.reset(max_chunk);
407 }
408 return true;
409}
410
411} //namespace.
412
LOG
#define LOG(s)
Definition bookmark_tree.cpp:50
basis::a_sprintf
a_sprintf is a specialization of astring that provides printf style support.
Definition astring.h:440
basis::array::reset
void reset(int number=0, const contents *initial_contents=NULL_POINTER)
Resizes this array and sets the contents from an array of contents.
Definition array.h:349
basis::array::access
contents * access()
A non-constant access of the underlying C-array. BE REALLY CAREFUL.
Definition array.h:175
basis::array::length
int length() const
Returns the current reported length of the allocated C array.
Definition array.h:115
basis::array::zap
outcome zap(int start, int end)
Deletes from "this" the objects inclusively between "start" and "end".
Definition array.h:769
basis::array::last
int last() const
Returns the last valid element in the array.
Definition array.h:118
basis::auto_synchronizer
auto_synchronizer simplifies concurrent code by automatically unlocking.
Definition mutex.h:113
basis::byte_array
A very common template for a dynamic array of bytes.
Definition byte_array.h:36
crypto::rsa_crypto
Supports public key encryption and decryption.
Definition rsa_crypto.h:33
crypto::rsa_crypto::operator=
const rsa_crypto & operator=(const rsa_crypto &to_copy)
Definition rsa_crypto.cpp:108
crypto::rsa_crypto::public_encrypt
bool public_encrypt(const basis::byte_array &source, basis::byte_array &target) const
encrypts "source" using our public key and stores it in "target".
Definition rsa_crypto.cpp:313
crypto::rsa_crypto::set_key
bool set_key(basis::byte_array &key)
resets this object's key to "key".
Definition rsa_crypto.cpp:145
crypto::rsa_crypto::private_key
bool private_key(basis::byte_array &privkey) const
makes a copy of the private key held here.
Definition rsa_crypto.cpp:269
crypto::rsa_crypto::generate_key
static RSA * generate_key(int key_size)
creates a random RSA key using the lower-level openssl methods.
Definition rsa_crypto.cpp:115
crypto::rsa_crypto::private_decrypt
bool private_decrypt(const basis::byte_array &source, basis::byte_array &target) const
decrypts "source" using our private key and stores it in "target".
Definition rsa_crypto.cpp:336
crypto::rsa_crypto::public_decrypt
bool public_decrypt(const basis::byte_array &source, basis::byte_array &target) const
decrypts "source" using our public key and stores it in "target".
Definition rsa_crypto.cpp:385
crypto::rsa_crypto::check_key
bool check_key(RSA *key)
checks the RSA "key" provided for validity.
Definition rsa_crypto.cpp:139
crypto::rsa_crypto::private_encrypt
bool private_encrypt(const basis::byte_array &source, basis::byte_array &target) const
encrypts "source" using our private key and stores it in "target".
Definition rsa_crypto.cpp:362
crypto::rsa_crypto::~rsa_crypto
virtual ~rsa_crypto()
Definition rsa_crypto.cpp:99
crypto::rsa_crypto::public_key
bool public_key(basis::byte_array &pubkey) const
makes a copy of the public key held here.
Definition rsa_crypto.cpp:245
crypto::rsa_crypto::rsa_crypto
rsa_crypto(int key_size)
constructs using a randomized private key of the "key_size".
Definition rsa_crypto.cpp:58
critical_events.h
continuable_error
#define continuable_error(c, f, i)
Definition critical_events.h:82
NULL_POINTER
#define NULL_POINTER
The value representing a pointer to nothing.
Definition definitions.h:32
FUNCDEF
#define FUNCDEF(func_in)
FUNCDEF sets the name of a function (and plugs it into the callstack).
Definition enhance_cpp.h:54
basis
The guards collection helps in testing preconditions and reporting errors.
Definition array.h:30
basis::WHACK
void WHACK(contents *&ptr)
deletion with clearing of the pointer.
Definition functions.h:121
basis::abyte
unsigned char abyte
A fairly important unit which is seldom defined...
Definition definitions.h:51
crypto::static_ssl_initializer
const ssl_init & static_ssl_initializer()
the main method for accessing the SSL initialization support.
loggers
A logger that sends to the console screen using the standard output device.
Definition combo_logger.cpp:36
mathematics
An extension to floating point primitives providing approximate equality.
Definition averager.h:21
structures
A dynamic container class that holds any kind of object via pointers.
Definition amorph.h:55
structures::attach
void attach(byte_array &packed_form, const byte_array &to_attach)
Packs a byte_array "to_attach" into "packed_form".
Definition object_packers.cpp:49
structures::detach
bool detach(byte_array &packed_form, byte_array &to_detach)
Unpacks a byte_array "to_detach" from "packed_form".
Definition object_packers.cpp:55
object_packers.h
program_wide_logger.h
rsa_crypto.h
RSA
struct rsa_st RSA
Definition rsa_crypto.h:23
ssl_init.h
static_memory_gremlin.h
SAFE_STATIC
#define SAFE_STATIC(type, func_name, parms)
Statically defines a singleton object whose scope is the program's lifetime.
Definition static_memory_gremlin.h:129
static_class_name
#define static_class_name()
Definition windoze_helper.cpp:51