archive
/
tf2
mirror of https://github.com/sr2echa/TF2-Source-Code
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Team Fortress 2 Source Code as on 22/4/2020
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7 Commits
1 Branch
0 Tags
1.4 GiB
Tree: 51d17c74db
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '51d17c74db'
${ noResults }
tf2/tf2_src/external/crypto++-5.6.3/default.cpp

273 lines
8.5 KiB
Raw Normal View History

compressed some files
5 years ago
  1. // default.cpp - written and placed in the public domain by Wei Dai
  3. #include "pch.h"
  4. #include "config.h"
  6. #if CRYPTOPP_MSC_VERSION
  7. # pragma warning(disable: 4127 4189)
  8. #endif
  10. #include "cryptlib.h"
  11. #include "filters.h"
  12. #include "smartptr.h"
  13. #include "default.h"
  14. #include "queue.h"
  16. #include <time.h>
  17. #include <memory>
  19. NAMESPACE_BEGIN(CryptoPP)
  21. static const unsigned int MASH_ITERATIONS = 200;
  22. static const unsigned int SALTLENGTH = 8;
  23. static const unsigned int BLOCKSIZE = DefaultBlockCipher::Encryption::BLOCKSIZE;
  24. static const unsigned int KEYLENGTH = DefaultBlockCipher::Encryption::DEFAULT_KEYLENGTH;
  26. // The purpose of this function Mash() is to take an arbitrary length input
  27. // string and *deterministicly* produce an arbitrary length output string such
  28. // that (1) it looks random, (2) no information about the input is
  29. // deducible from it, and (3) it contains as much entropy as it can hold, or
  30. // the amount of entropy in the input string, whichever is smaller.
  32. static void Mash(const byte *in, size_t inLen, byte *out, size_t outLen, int iterations)
  33. {
  34. if (BytePrecision(outLen) > 2)
  35. throw InvalidArgument("Mash: output legnth too large");
  37. size_t bufSize = RoundUpToMultipleOf(outLen, (size_t)DefaultHashModule::DIGESTSIZE);
  38. byte b[2];
  39. SecByteBlock buf(bufSize);
  40. SecByteBlock outBuf(bufSize);
  41. DefaultHashModule hash;
  43. unsigned int i;
  44. for(i=0; i<outLen; i+=DefaultHashModule::DIGESTSIZE)
  45. {
  46. b[0] = (byte) (i >> 8);
  47. b[1] = (byte) i;
  48. hash.Update(b, 2);
  49. hash.Update(in, inLen);
  50. hash.Final(outBuf+i);
  51. }
  53. while (iterations-- > 1)
  54. {
  55. memcpy(buf, outBuf, bufSize);
  56. for (i=0; i<bufSize; i+=DefaultHashModule::DIGESTSIZE)
  57. {
  58. b[0] = (byte) (i >> 8);
  59. b[1] = (byte) i;
  60. hash.Update(b, 2);
  61. hash.Update(buf, bufSize);
  62. hash.Final(outBuf+i);
  63. }
  64. }
  66. memcpy(out, outBuf, outLen);
  67. }
  69. static void GenerateKeyIV(const byte *passphrase, size_t passphraseLength, const byte *salt, size_t saltLength, byte *key, byte *IV)
  70. {
  71. SecByteBlock temp(passphraseLength+saltLength);
  72. memcpy(temp, passphrase, passphraseLength);
  73. memcpy(temp+passphraseLength, salt, saltLength);
  74. SecByteBlock keyIV(KEYLENGTH+BLOCKSIZE);
  75. Mash(temp, passphraseLength + saltLength, keyIV, KEYLENGTH+BLOCKSIZE, MASH_ITERATIONS);
  76. memcpy(key, keyIV, KEYLENGTH);
  77. memcpy(IV, keyIV+KEYLENGTH, BLOCKSIZE);
  78. }
  80. // ********************************************************
  82. DefaultEncryptor::DefaultEncryptor(const char *passphrase, BufferedTransformation *attachment)
  83. : ProxyFilter(NULL, 0, 0, attachment), m_passphrase((const byte *)passphrase, strlen(passphrase))
  84. {
  85. }
  87. DefaultEncryptor::DefaultEncryptor(const byte *passphrase, size_t passphraseLength, BufferedTransformation *attachment)
  88. : ProxyFilter(NULL, 0, 0, attachment), m_passphrase(passphrase, passphraseLength)
  89. {
  90. }
  93. void DefaultEncryptor::FirstPut(const byte *)
  94. {
  95. // VC60 workaround: __LINE__ expansion bug
  96. CRYPTOPP_COMPILE_ASSERT_INSTANCE(SALTLENGTH <= DefaultHashModule::DIGESTSIZE, 1);
  97. CRYPTOPP_COMPILE_ASSERT_INSTANCE(BLOCKSIZE <= DefaultHashModule::DIGESTSIZE, 2);
  99. SecByteBlock salt(DefaultHashModule::DIGESTSIZE), keyCheck(DefaultHashModule::DIGESTSIZE);
  100. DefaultHashModule hash;
  102. // use hash(passphrase | time | clock) as salt
  103. hash.Update(m_passphrase, m_passphrase.size());
  104. time_t t=time(0);
  105. hash.Update((byte *)&t, sizeof(t));
  106. clock_t c=clock();
  107. hash.Update((byte *)&c, sizeof(c));
  108. hash.Final(salt);
  110. // use hash(passphrase | salt) as key check
  111. hash.Update(m_passphrase, m_passphrase.size());
  112. hash.Update(salt, SALTLENGTH);
  113. hash.Final(keyCheck);
  115. AttachedTransformation()->Put(salt, SALTLENGTH);
  117. // mash passphrase and salt together into key and IV
  118. SecByteBlock key(KEYLENGTH);
  119. SecByteBlock IV(BLOCKSIZE);
  120. GenerateKeyIV(m_passphrase, m_passphrase.size(), salt, SALTLENGTH, key, IV);
  122. m_cipher.SetKeyWithIV(key, key.size(), IV);
  123. SetFilter(new StreamTransformationFilter(m_cipher));
  125. m_filter->Put(keyCheck, BLOCKSIZE);
  126. }
  128. void DefaultEncryptor::LastPut(const byte *inString, size_t length)
  129. {
  130. CRYPTOPP_UNUSED(inString); CRYPTOPP_UNUSED(length);
  131. m_filter->MessageEnd();
  132. }
  134. // ********************************************************
  136. DefaultDecryptor::DefaultDecryptor(const char *p, BufferedTransformation *attachment, bool throwException)
  137. : ProxyFilter(NULL, SALTLENGTH+BLOCKSIZE, 0, attachment)
  138. , m_state(WAITING_FOR_KEYCHECK)
  139. , m_passphrase((const byte *)p, strlen(p))
  140. , m_throwException(throwException)
  141. {
  142. }
  144. DefaultDecryptor::DefaultDecryptor(const byte *passphrase, size_t passphraseLength, BufferedTransformation *attachment, bool throwException)
  145. : ProxyFilter(NULL, SALTLENGTH+BLOCKSIZE, 0, attachment)
  146. , m_state(WAITING_FOR_KEYCHECK)
  147. , m_passphrase(passphrase, passphraseLength)
  148. , m_throwException(throwException)
  149. {
  150. }
  152. void DefaultDecryptor::FirstPut(const byte *inString)
  153. {
  154. CheckKey(inString, inString+SALTLENGTH);
  155. }
  157. void DefaultDecryptor::LastPut(const byte *inString, size_t length)
  158. {
  159. CRYPTOPP_UNUSED(inString); CRYPTOPP_UNUSED(length);
  160. if (m_filter.get() == NULL)
  161. {
  162. m_state = KEY_BAD;
  163. if (m_throwException)
  164. throw KeyBadErr();
  165. }
  166. else
  167. {
  168. m_filter->MessageEnd();
  169. m_state = WAITING_FOR_KEYCHECK;
  170. }
  171. }
  173. void DefaultDecryptor::CheckKey(const byte *salt, const byte *keyCheck)
  174. {
  175. SecByteBlock check(STDMAX((unsigned int)2*BLOCKSIZE, (unsigned int)DefaultHashModule::DIGESTSIZE));
  177. DefaultHashModule hash;
  178. hash.Update(m_passphrase, m_passphrase.size());
  179. hash.Update(salt, SALTLENGTH);
  180. hash.Final(check);
  182. SecByteBlock key(KEYLENGTH);
  183. SecByteBlock IV(BLOCKSIZE);
  184. GenerateKeyIV(m_passphrase, m_passphrase.size(), salt, SALTLENGTH, key, IV);
  186. m_cipher.SetKeyWithIV(key, key.size(), IV);
  187. member_ptr<StreamTransformationFilter> decryptor(new StreamTransformationFilter(m_cipher));
  189. decryptor->Put(keyCheck, BLOCKSIZE);
  190. decryptor->ForceNextPut();
  191. decryptor->Get(check+BLOCKSIZE, BLOCKSIZE);
  193. SetFilter(decryptor.release());
  195. if (!VerifyBufsEqual(check, check+BLOCKSIZE, BLOCKSIZE))
  196. {
  197. m_state = KEY_BAD;
  198. if (m_throwException)
  199. throw KeyBadErr();
  200. }
  201. else
  202. m_state = KEY_GOOD;
  203. }
  205. // ********************************************************
  207. static DefaultMAC * NewDefaultEncryptorMAC(const byte *passphrase, size_t passphraseLength)
  208. {
  209. size_t macKeyLength = DefaultMAC::StaticGetValidKeyLength(16);
  210. SecByteBlock macKey(macKeyLength);
  211. // since the MAC is encrypted there is no reason to mash the passphrase for many iterations
  212. Mash(passphrase, passphraseLength, macKey, macKeyLength, 1);
  213. return new DefaultMAC(macKey, macKeyLength);
  214. }
  216. DefaultEncryptorWithMAC::DefaultEncryptorWithMAC(const char *passphrase, BufferedTransformation *attachment)
  217. : ProxyFilter(NULL, 0, 0, attachment)
  218. , m_mac(NewDefaultEncryptorMAC((const byte *)passphrase, strlen(passphrase)))
  219. {
  220. SetFilter(new HashFilter(*m_mac, new DefaultEncryptor(passphrase), true));
  221. }
  223. DefaultEncryptorWithMAC::DefaultEncryptorWithMAC(const byte *passphrase, size_t passphraseLength, BufferedTransformation *attachment)
  224. : ProxyFilter(NULL, 0, 0, attachment)
  225. , m_mac(NewDefaultEncryptorMAC(passphrase, passphraseLength))
  226. {
  227. SetFilter(new HashFilter(*m_mac, new DefaultEncryptor(passphrase, passphraseLength), true));
  228. }
  230. void DefaultEncryptorWithMAC::LastPut(const byte *inString, size_t length)
  231. {
  232. CRYPTOPP_UNUSED(inString); CRYPTOPP_UNUSED(length);
  233. m_filter->MessageEnd();
  234. }
  236. // ********************************************************
  238. DefaultDecryptorWithMAC::DefaultDecryptorWithMAC(const char *passphrase, BufferedTransformation *attachment, bool throwException)
  239. : ProxyFilter(NULL, 0, 0, attachment)
  240. , m_mac(NewDefaultEncryptorMAC((const byte *)passphrase, strlen(passphrase)))
  241. , m_throwException(throwException)
  242. {
  243. SetFilter(new DefaultDecryptor(passphrase, m_hashVerifier=new HashVerifier(*m_mac, NULL, HashVerifier::PUT_MESSAGE), throwException));
  244. }
  246. DefaultDecryptorWithMAC::DefaultDecryptorWithMAC(const byte *passphrase, size_t passphraseLength, BufferedTransformation *attachment, bool throwException)
  247. : ProxyFilter(NULL, 0, 0, attachment)
  248. , m_mac(NewDefaultEncryptorMAC(passphrase, passphraseLength))
  249. , m_throwException(throwException)
  250. {
  251. SetFilter(new DefaultDecryptor(passphrase, passphraseLength, m_hashVerifier=new HashVerifier(*m_mac, NULL, HashVerifier::PUT_MESSAGE), throwException));
  252. }
  254. DefaultDecryptor::State DefaultDecryptorWithMAC::CurrentState() const
  255. {
  256. return static_cast<const DefaultDecryptor *>(m_filter.get())->CurrentState();
  257. }
  259. bool DefaultDecryptorWithMAC::CheckLastMAC() const
  260. {
  261. return m_hashVerifier->GetLastResult();
  262. }
  264. void DefaultDecryptorWithMAC::LastPut(const byte *inString, size_t length)
  265. {
  266. CRYPTOPP_UNUSED(inString); CRYPTOPP_UNUSED(length);
  267. m_filter->MessageEnd();
  268. if (m_throwException && !CheckLastMAC())
  269. throw MACBadErr();
  270. }
  272. NAMESPACE_END