2014-01-04 06:24:20 +04:00
|
|
|
|
#include <time.h>
|
|
|
|
|
|
#include <stdio.h>
|
2013-12-21 05:22:55 +04:00
|
|
|
|
#include <cryptopp/sha.h>
|
|
|
|
|
|
#include <cryptopp/osrng.h>
|
|
|
|
|
|
#include <cryptopp/dh.h>
|
|
|
|
|
|
#include <cryptopp/dsa.h>
|
|
|
|
|
|
#include "CryptoConst.h"
|
|
|
|
|
|
#include "Identity.h"
|
2014-04-07 21:47:40 +04:00
|
|
|
|
#include "base64.h"
|
2013-12-21 05:22:55 +04:00
|
|
|
|
|
|
|
|
|
|
namespace i2p
|
|
|
|
|
|
{
|
|
|
|
|
|
namespace data
|
|
|
|
|
|
{
|
2013-12-22 20:29:57 +04:00
|
|
|
|
Identity& Identity::operator=(const Keys& keys)
|
|
|
|
|
|
{
|
|
|
|
|
|
// copy public and signing keys together
|
|
|
|
|
|
memcpy (publicKey, keys.publicKey, sizeof (publicKey) + sizeof (signingKey));
|
2014-08-06 19:09:06 +04:00
|
|
|
|
memset (&certificate, 0, sizeof (certificate));
|
2013-12-22 20:29:57 +04:00
|
|
|
|
return *this;
|
2014-04-07 21:47:40 +04:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
bool Identity::FromBase64 (const std::string& s)
|
|
|
|
|
|
{
|
2014-08-06 19:09:06 +04:00
|
|
|
|
size_t count = Base64ToByteStream (s.c_str(), s.length(), publicKey, DEFAULT_IDENTITY_SIZE);
|
|
|
|
|
|
return count == DEFAULT_IDENTITY_SIZE;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
size_t Identity::FromBuffer (const uint8_t * buf, size_t len)
|
|
|
|
|
|
{
|
|
|
|
|
|
memcpy (publicKey, buf, DEFAULT_IDENTITY_SIZE);
|
|
|
|
|
|
// TODO: process certificate
|
|
|
|
|
|
return DEFAULT_IDENTITY_SIZE;
|
2014-04-07 22:01:24 +04:00
|
|
|
|
}
|
|
|
|
|
|
|
2014-08-22 05:57:24 +04:00
|
|
|
|
IdentityEx::IdentityEx ():
|
|
|
|
|
|
m_Verifier (nullptr), m_ExtendedLen (0), m_ExtendedBuffer (nullptr)
|
|
|
|
|
|
{
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::IdentityEx (const uint8_t * buf, size_t len):
|
|
|
|
|
|
m_Verifier (nullptr), m_ExtendedLen (0), m_ExtendedBuffer (nullptr)
|
|
|
|
|
|
{
|
|
|
|
|
|
FromBuffer (buf, len);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::IdentityEx (const IdentityEx& other):
|
|
|
|
|
|
m_Verifier (nullptr), m_ExtendedBuffer (nullptr)
|
|
|
|
|
|
{
|
|
|
|
|
|
*this = other;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx::~IdentityEx ()
|
|
|
|
|
|
{
|
|
|
|
|
|
delete m_Verifier;
|
|
|
|
|
|
delete[] m_ExtendedBuffer;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
IdentityEx& IdentityEx::operator=(const IdentityEx& other)
|
|
|
|
|
|
{
|
|
|
|
|
|
memcpy (&m_StandardIdentity, &other.m_StandardIdentity, DEFAULT_IDENTITY_SIZE);
|
|
|
|
|
|
m_IdentHash = other.m_IdentHash;
|
|
|
|
|
|
|
|
|
|
|
|
delete[] m_ExtendedBuffer;
|
|
|
|
|
|
m_ExtendedLen = other.m_ExtendedLen;
|
|
|
|
|
|
if (m_ExtendedLen > 0)
|
|
|
|
|
|
{
|
|
|
|
|
|
m_ExtendedBuffer = new uint8_t[m_ExtendedLen];
|
|
|
|
|
|
memcpy (m_ExtendedBuffer, other.m_ExtendedBuffer, m_ExtendedLen);
|
|
|
|
|
|
}
|
|
|
|
|
|
else
|
|
|
|
|
|
m_ExtendedBuffer = nullptr;
|
2014-08-23 16:41:06 +04:00
|
|
|
|
|
|
|
|
|
|
delete m_Verifier;
|
|
|
|
|
|
CreateVerifier ();
|
|
|
|
|
|
|
2014-08-22 05:57:24 +04:00
|
|
|
|
return *this;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-08-23 07:02:48 +04:00
|
|
|
|
IdentityEx& IdentityEx::operator=(const Identity& standard)
|
|
|
|
|
|
{
|
|
|
|
|
|
m_StandardIdentity = standard;
|
|
|
|
|
|
m_IdentHash = m_StandardIdentity.Hash ();
|
|
|
|
|
|
|
|
|
|
|
|
delete[] m_ExtendedBuffer;
|
|
|
|
|
|
m_ExtendedBuffer = nullptr;
|
|
|
|
|
|
m_ExtendedLen = 0;
|
2014-08-23 16:41:06 +04:00
|
|
|
|
|
|
|
|
|
|
delete m_Verifier;
|
|
|
|
|
|
CreateVerifier ();
|
2014-08-23 07:02:48 +04:00
|
|
|
|
|
|
|
|
|
|
return *this;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-08-22 05:57:24 +04:00
|
|
|
|
size_t IdentityEx::FromBuffer (const uint8_t * buf, size_t len)
|
|
|
|
|
|
{
|
|
|
|
|
|
memcpy (&m_StandardIdentity, buf, DEFAULT_IDENTITY_SIZE);
|
2014-08-23 16:41:06 +04:00
|
|
|
|
|
|
|
|
|
|
delete[] m_ExtendedBuffer;
|
2014-08-22 05:57:24 +04:00
|
|
|
|
if (m_StandardIdentity.certificate.length)
|
|
|
|
|
|
{
|
|
|
|
|
|
m_ExtendedLen = be16toh (m_StandardIdentity.certificate.length);
|
|
|
|
|
|
m_ExtendedBuffer = new uint8_t[m_ExtendedLen];
|
|
|
|
|
|
memcpy (m_ExtendedBuffer, buf + DEFAULT_IDENTITY_SIZE, m_ExtendedLen);
|
|
|
|
|
|
}
|
|
|
|
|
|
else
|
|
|
|
|
|
{
|
|
|
|
|
|
m_ExtendedLen = 0;
|
|
|
|
|
|
m_ExtendedBuffer = nullptr;
|
|
|
|
|
|
}
|
|
|
|
|
|
CryptoPP::SHA256().CalculateDigest(m_IdentHash, buf, GetFullLen ());
|
2014-08-23 16:41:06 +04:00
|
|
|
|
|
|
|
|
|
|
delete m_Verifier;
|
|
|
|
|
|
CreateVerifier ();
|
|
|
|
|
|
|
2014-08-22 05:57:24 +04:00
|
|
|
|
return GetFullLen ();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-08-23 07:02:48 +04:00
|
|
|
|
size_t IdentityEx::ToBuffer (uint8_t * buf, size_t len) const
|
|
|
|
|
|
{
|
|
|
|
|
|
memcpy (buf, &m_StandardIdentity, DEFAULT_IDENTITY_SIZE);
|
|
|
|
|
|
if (m_ExtendedLen > 0 && m_ExtendedBuffer)
|
|
|
|
|
|
memcpy (buf + DEFAULT_IDENTITY_SIZE, m_ExtendedBuffer, m_ExtendedLen);
|
|
|
|
|
|
return GetFullLen ();
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
size_t IdentityEx::GetSigningPublicKeyLen () const
|
2014-08-22 05:57:24 +04:00
|
|
|
|
{
|
|
|
|
|
|
if (m_Verifier)
|
|
|
|
|
|
return m_Verifier->GetPublicKeyLen ();
|
|
|
|
|
|
return 128;
|
|
|
|
|
|
}
|
2014-08-23 03:47:29 +04:00
|
|
|
|
|
2014-08-23 07:02:48 +04:00
|
|
|
|
size_t IdentityEx::GetSignatureLen () const
|
2014-08-23 03:47:29 +04:00
|
|
|
|
{
|
|
|
|
|
|
if (m_Verifier)
|
|
|
|
|
|
return m_Verifier->GetSignatureLen ();
|
|
|
|
|
|
return 40;
|
|
|
|
|
|
}
|
2014-08-23 16:41:06 +04:00
|
|
|
|
bool IdentityEx::Verify (const uint8_t * buf, size_t len, const uint8_t * signature) const
|
2014-08-22 05:57:24 +04:00
|
|
|
|
{
|
|
|
|
|
|
if (m_Verifier)
|
|
|
|
|
|
return m_Verifier->Verify (buf, len, signature);
|
|
|
|
|
|
return false;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-08-23 16:41:06 +04:00
|
|
|
|
void IdentityEx::CreateVerifier ()
|
2014-08-22 05:57:24 +04:00
|
|
|
|
{
|
|
|
|
|
|
switch (m_StandardIdentity.certificate.type)
|
|
|
|
|
|
{
|
|
|
|
|
|
case CERTIFICATE_TYPE_NULL:
|
|
|
|
|
|
m_Verifier = new i2p::crypto::DSAVerifier (m_StandardIdentity.signingKey);
|
|
|
|
|
|
break;
|
|
|
|
|
|
case CERTIFICATE_TYPE_KEY:
|
|
|
|
|
|
{
|
|
|
|
|
|
if (m_ExtendedBuffer)
|
|
|
|
|
|
{
|
|
|
|
|
|
uint16_t keyType = be16toh (*(uint16_t *)m_ExtendedBuffer); // sigining key
|
|
|
|
|
|
switch (keyType)
|
|
|
|
|
|
{
|
|
|
|
|
|
case PUBLIC_KEY_TYPE_DSA_SHA1:
|
|
|
|
|
|
m_Verifier = new i2p::crypto::DSAVerifier (m_StandardIdentity.signingKey);
|
|
|
|
|
|
break;
|
|
|
|
|
|
case PUBLIC_KEY_TYPE_ECDSA_SHA256_P256:
|
2014-08-22 18:34:39 +04:00
|
|
|
|
m_Verifier = new i2p::crypto::ECDSAP256Verifier (m_StandardIdentity.signingKey + 64);
|
2014-08-22 05:57:24 +04:00
|
|
|
|
break;
|
|
|
|
|
|
default:
|
|
|
|
|
|
LogPrint ("Signing key type ", keyType, " is not supported");
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
else
|
|
|
|
|
|
LogPrint ("Missing certificate payload");
|
|
|
|
|
|
break;
|
|
|
|
|
|
}
|
|
|
|
|
|
default:
|
|
|
|
|
|
LogPrint ("Certificate type ", m_StandardIdentity.certificate.type, " is not supported");
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-05-03 23:29:00 +04:00
|
|
|
|
IdentHash Identity::Hash() const
|
2014-04-07 22:01:24 +04:00
|
|
|
|
{
|
|
|
|
|
|
IdentHash hash;
|
2014-08-06 19:09:06 +04:00
|
|
|
|
CryptoPP::SHA256().CalculateDigest(hash, publicKey, DEFAULT_IDENTITY_SIZE);
|
2014-04-07 22:01:24 +04:00
|
|
|
|
return hash;
|
2013-12-22 20:29:57 +04:00
|
|
|
|
}
|
|
|
|
|
|
|
2014-03-20 00:44:03 +04:00
|
|
|
|
PrivateKeys& PrivateKeys::operator=(const Keys& keys)
|
|
|
|
|
|
{
|
2014-08-24 00:06:56 +04:00
|
|
|
|
m_Public = Identity (keys);
|
|
|
|
|
|
memcpy (m_PrivateKey, keys.privateKey, 256); // 256
|
|
|
|
|
|
memcpy (m_SigningPrivateKey, keys.signingPrivateKey, 20); // 20 - DSA
|
2014-03-20 00:44:03 +04:00
|
|
|
|
return *this;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-08-24 00:06:56 +04:00
|
|
|
|
size_t PrivateKeys::FromBuffer (const uint8_t * buf, size_t len)
|
|
|
|
|
|
{
|
|
|
|
|
|
size_t ret = m_Public.FromBuffer (buf, len);
|
|
|
|
|
|
memcpy (m_PrivateKey, buf + ret, 256); // private key always 256
|
|
|
|
|
|
ret += 256;
|
|
|
|
|
|
size_t signingPrivateKeySize = m_Public.GetSignatureLen ()/2; // 20 for DSA
|
|
|
|
|
|
memcpy (m_SigningPrivateKey, buf + ret, signingPrivateKeySize);
|
|
|
|
|
|
ret += signingPrivateKeySize;
|
|
|
|
|
|
return ret;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
size_t PrivateKeys::ToBuffer (uint8_t * buf, size_t len) const
|
|
|
|
|
|
{
|
|
|
|
|
|
size_t ret = m_Public.ToBuffer (buf, len);
|
|
|
|
|
|
memcpy (buf + ret, m_PrivateKey, 256); // private key always 256
|
|
|
|
|
|
ret += 256;
|
|
|
|
|
|
size_t signingPrivateKeySize = m_Public.GetSignatureLen ()/2; // 20 for DSA
|
|
|
|
|
|
memcpy (buf + ret, m_SigningPrivateKey, signingPrivateKeySize);
|
|
|
|
|
|
ret += signingPrivateKeySize;
|
|
|
|
|
|
return ret;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2013-12-21 05:22:55 +04:00
|
|
|
|
Keys CreateRandomKeys ()
|
|
|
|
|
|
{
|
|
|
|
|
|
Keys keys;
|
|
|
|
|
|
CryptoPP::AutoSeededRandomPool rnd;
|
|
|
|
|
|
|
|
|
|
|
|
// encryption
|
|
|
|
|
|
CryptoPP::DH dh (i2p::crypto::elgp, i2p::crypto::elgg);
|
|
|
|
|
|
dh.GenerateKeyPair(rnd, keys.privateKey, keys.publicKey);
|
|
|
|
|
|
|
|
|
|
|
|
// signing
|
|
|
|
|
|
CryptoPP::DSA::PrivateKey privateKey;
|
|
|
|
|
|
CryptoPP::DSA::PublicKey publicKey;
|
|
|
|
|
|
privateKey.Initialize (rnd, i2p::crypto::dsap, i2p::crypto::dsaq, i2p::crypto::dsag);
|
|
|
|
|
|
privateKey.MakePublicKey (publicKey);
|
|
|
|
|
|
privateKey.GetPrivateExponent ().Encode (keys.signingPrivateKey, 20);
|
|
|
|
|
|
publicKey.GetPublicElement ().Encode (keys.signingKey, 128);
|
|
|
|
|
|
|
|
|
|
|
|
return keys;
|
|
|
|
|
|
}
|
2014-01-04 06:24:20 +04:00
|
|
|
|
|
2014-04-04 21:30:13 +04:00
|
|
|
|
void CreateRandomDHKeysPair (DHKeysPair * keys)
|
|
|
|
|
|
{
|
|
|
|
|
|
if (!keys) return;
|
|
|
|
|
|
CryptoPP::AutoSeededRandomPool rnd;
|
|
|
|
|
|
CryptoPP::DH dh (i2p::crypto::elgp, i2p::crypto::elgg);
|
|
|
|
|
|
dh.GenerateKeyPair(rnd, keys->privateKey, keys->publicKey);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
2014-01-04 06:24:20 +04:00
|
|
|
|
RoutingKey CreateRoutingKey (const IdentHash& ident)
|
|
|
|
|
|
{
|
|
|
|
|
|
uint8_t buf[41]; // ident + yyyymmdd
|
|
|
|
|
|
memcpy (buf, (const uint8_t *)ident, 32);
|
|
|
|
|
|
time_t t = time (nullptr);
|
|
|
|
|
|
struct tm tm;
|
2014-01-10 01:29:06 +04:00
|
|
|
|
// WARNING!!! check if it is correct
|
|
|
|
|
|
#ifdef _WIN32
|
|
|
|
|
|
gmtime_s(&tm, &t);
|
|
|
|
|
|
// <20><><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD>-<2D><> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> sprintf'<27><>. <20><><EFBFBD><EFBFBD><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD> <20><><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?
|
|
|
|
|
|
// http://msdn.microsoft.com/en-us/library/ce3zzk1k.aspx
|
|
|
|
|
|
sprintf_s((char *)(buf + 32), 9, "%4i%2i%2i", tm.tm_year, tm.tm_mon, tm.tm_mday);
|
|
|
|
|
|
#else
|
|
|
|
|
|
gmtime_r(&t, &tm);
|
|
|
|
|
|
// <20><><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD>-<2D><> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD> sprintf'<27><>. <20><><EFBFBD><EFBFBD><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD> <20><><EFBFBD> <20><><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>?
|
|
|
|
|
|
sprintf((char *)(buf + 32), "%4i%2i%2i", tm.tm_year, tm.tm_mon, tm.tm_mday);
|
|
|
|
|
|
#endif
|
2014-01-04 06:24:20 +04:00
|
|
|
|
RoutingKey key;
|
|
|
|
|
|
CryptoPP::SHA256().CalculateDigest(key.hash, buf, 40);
|
|
|
|
|
|
return key;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
XORMetric operator^(const RoutingKey& key1, const RoutingKey& key2)
|
|
|
|
|
|
{
|
|
|
|
|
|
XORMetric m;
|
2014-06-04 03:57:42 +04:00
|
|
|
|
m.metric_ll[0] = key1.hash_ll[0] ^ key2.hash_ll[0];
|
|
|
|
|
|
m.metric_ll[1] = key1.hash_ll[1] ^ key2.hash_ll[1];
|
|
|
|
|
|
m.metric_ll[2] = key1.hash_ll[2] ^ key2.hash_ll[2];
|
|
|
|
|
|
m.metric_ll[3] = key1.hash_ll[3] ^ key2.hash_ll[3];
|
2014-01-04 06:24:20 +04:00
|
|
|
|
return m;
|
|
|
|
|
|
}
|
2013-12-21 05:22:55 +04:00
|
|
|
|
}
|
|
|
|
|
|
}
|
