crypto.h 3.4 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990
  1. /* Slitheen - a decoy routing system for censorship resistance
  2. * Copyright (C) 2017 Cecylia Bocovich (cbocovic@uwaterloo.ca)
  3. *
  4. * This program is free software: you can redistribute it and/or modify
  5. * it under the terms of the GNU General Public License as published by
  6. * the Free Software Foundation, version 3.
  7. *
  8. * This program is distributed in the hope that it will be useful,
  9. * but WITHOUT ANY WARRANTY; without even the implied warranty of
  10. * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  11. * GNU General Public License for more details.
  12. *
  13. * You should have received a copy of the GNU General Public License
  14. * along with this program. If not, see <http://www.gnu.org/licenses/>.
  15. *
  16. * Additional permission under GNU GPL version 3 section 7
  17. *
  18. * If you modify this Program, or any covered work, by linking or combining
  19. * it with the OpenSSL library (or a modified version of that library),
  20. * containing parts covered by the terms of the OpenSSL Licence and the
  21. * SSLeay license, the licensors of this Program grant you additional
  22. * permission to convey the resulting work. Corresponding Source for a
  23. * non-source form of such a combination shall include the source code
  24. * for the parts of the OpenSSL library used as well as that of the covered
  25. * work.
  26. */
  27. #ifndef CRYPTO_H
  28. #define CRYPTO_H
  29. #include "flow.h"
  30. #include "ptwist.h"
  31. #define n2s(c,s) ((s=(((unsigned int)(c[0]))<< 8)| \
  32. (((unsigned int)(c[1])) )),c+=2)
  33. /* Curves */
  34. #define X25519_KEYLEN 32
  35. #define X25519_BITS 253
  36. #define X25519_SECURITY_BITS 128
  37. #if OPENSSL_VERSION_NUMBER >= 0x1010000eL
  38. typedef struct {
  39. unsigned char pubkey[X25519_KEYLEN];
  40. unsigned char *privkey;
  41. } X25519_KEY;
  42. #endif
  43. int update_handshake_hash(flow *f, uint8_t *hs);
  44. int extract_parameters(flow *f, uint8_t *hs);
  45. int encrypt(flow *f, uint8_t *input, uint8_t *output, int32_t len, int32_t incoming, int32_t type, int32_t enc, uint8_t re);
  46. int fake_encrypt(flow *f, int32_t incoming);
  47. int extract_server_random(flow *f, uint8_t *hs);
  48. int compute_master_secret(flow *f);
  49. int PRF(flow *f, uint8_t *secret, int32_t secret_len,
  50. uint8_t *seed1, int32_t seed1_len,
  51. uint8_t *seed2, int32_t seed2_len,
  52. uint8_t *seed3, int32_t seed3_len,
  53. uint8_t *seed4, int32_t seed4_len,
  54. uint8_t *output, int32_t output_len);
  55. int mark_finished_hash(flow *f, uint8_t *hs);
  56. int init_ciphers(flow *f);
  57. void generate_client_super_keys(uint8_t *secret, client *c);
  58. int super_encrypt(client *c, uint8_t *data, uint32_t len);
  59. int check_handshake(struct packet_info *info);
  60. int check_tag(byte key[16], const byte privkey[PTWIST_BYTES],
  61. const byte tag[PTWIST_TAG_BYTES], const byte *context,
  62. size_t context_len);
  63. #define PRE_MASTER_MAX_LEN BUFSIZ
  64. #define SLITHEEN_KEYGEN_CONST "SLITHEEN_KEYGEN"
  65. #define SLITHEEN_KEYGEN_CONST_SIZE 15
  66. #define SLITHEEN_FINISHED_INPUT_CONST "SLITHEEN_FINISHED"
  67. #define SLITHEEN_FINISHED_INPUT_CONST_SIZE 17
  68. #define SLITHEEN_SUPER_SECRET_SIZE 16 //extracted from slitheen ID tag
  69. #define SLITHEEN_SUPER_CONST "SLITHEEN_SUPER_ENCRYPT"
  70. #define SLITHEEN_SUPER_CONST_SIZE 22
  71. #define TLS_MD_EXTENDED_MASTER_SECRET_CONST "extended master secret"
  72. #define TLS_MD_EXTENDED_MASTER_SECRET_CONST_SIZE 22
  73. int partial_aes_gcm_tls_cipher(flow *f, unsigned char *out, const unsigned char *in, size_t len, uint8_t env);
  74. void partial_aes_gcm_tls_tag(flow *f, unsigned char *tag, size_t len);
  75. #endif