current/html/XrdCryptosslCipher_8hh_source.html

#ifndef __CRYPTO_SSLCIPHER_H__

#define __CRYPTO_SSLCIPHER_H__

/******************************************************************************/

/*                                                                            */

/*                  X r d C r y p t o S s l C i p h e r . h h                 */

/*                                                                            */

/* (c) 2004 by the Board of Trustees of the Leland Stanford, Jr., University  */

/*   Produced by Gerri Ganis for CERN                                         */

/*                                                                            */

/* This file is part of the XRootD software suite.                            */

/*                                                                            */

/* XRootD is free software: you can redistribute it and/or modify it under    */

/* the terms of the GNU Lesser General Public License as published by the     */

/* Free Software Foundation, either version 3 of the License, or (at your     */

/* option) any later version.                                                 */

/*                                                                            */

/* XRootD is distributed in the hope that it will be useful, but WITHOUT      */

/* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or      */

/* FITNESS FOR A PARTICULAR PURPOSE.  See the GNU Lesser General Public       */

/* License for more details.                                                  */

/*                                                                            */

/* You should have received a copy of the GNU Lesser General Public License   */

/* along with XRootD in a file called COPYING.LESSER (LGPL license) and file  */

/* COPYING (GPL license).  If not, see <http://www.gnu.org/licenses/>.        */

/*                                                                            */

/* The copyright holder's institutional names and contributor's names may not */

/* be used to endorse or promote products derived from this software without  */

/* specific prior written permission of the institution or contributor.       */

/******************************************************************************/


/* ************************************************************************** */

/*                                                                            */

/* OpenSSL implementation of XrdCryptoCipher                                  */

/*                                                                            */

/* ************************************************************************** */


#include "XrdCrypto/XrdCryptoCipher.hh"


#include <openssl/evp.h>

#include <openssl/dh.h>


// This is not used as we no longer dynamically generate the DH parameters;

// see the comments in XrdCryptosslCipher.cc for more context.

// Purposely keeping it around to help make the issue visible to future readers

// of the code.

//

// #define kDHMINBITS 512


// ---------------------------------------------------------------------------//

//

// OpenSSL Cipher Implementation

//

// ---------------------------------------------------------------------------//


class XrdCryptosslCipher : public XrdCryptoCipher

{

private:

   char       *fIV;

   int         lIV;

   const EVP_CIPHER *cipher;

   EVP_CIPHER_CTX *ctx;

   EVP_PKEY   *fDH;

   bool        deflength;

   bool        valid;


   void        GenerateIV();

   int         EncDec(int encdec, const char *bin, int lin, char *out);

   void        PrintPublic(BIGNUM *pub);

   int         Publen();


public:

   XrdCryptosslCipher(const char *t, int l = 0);

   XrdCryptosslCipher(const char *t, int l, const char *k,

                                     int liv, const char *iv);

   XrdCryptosslCipher(XrdSutBucket *b);

   XrdCryptosslCipher(bool padded, int len, char *pub, int lpub, const char *t);

   XrdCryptosslCipher(const XrdCryptosslCipher &c);

   virtual ~XrdCryptosslCipher();


   // Finalize key computation (key agreement)

   bool Finalize(bool padded, char *pub, int lpub, const char *t);

   void Cleanup();


   // Validity

   bool IsValid() { return valid; }


   // Support

   static bool IsSupported(const char *cip);


   // Required buffer size for encrypt / decrypt operations on l bytes

   int EncOutLength(int l);

   int DecOutLength(int l);

   char *Public(int &lpub);


   // Additional getter

   XrdSutBucket *AsBucket();

   char *IV(int &l) const { l = lIV; return fIV; }

   bool IsDefaultLength() const { return deflength; }

   int  MaxIVLength() const;


   // Additional setter

   void  SetIV(int l, const char *iv);


   // Additional methods

   int Encrypt(const char *bin, int lin, char *out);

   int Decrypt(const char *bin, int lin, char *out);

   char *RefreshIV(int &l);

};


#endif

XrdCryptoCipher.hh

XrdCryptoCipher
Definition XrdCryptoCipher.hh:48

XrdCryptosslCipher
Definition XrdCryptosslCipher.hh:55

XrdCryptosslCipher::PrintPublic
void PrintPublic(BIGNUM *pub)

XrdCryptosslCipher::SetIV
void SetIV(int l, const char *iv)

XrdCryptosslCipher::deflength
bool deflength
Definition XrdCryptosslCipher.hh:62

XrdCryptosslCipher::IsSupported
static bool IsSupported(const char *cip)

XrdCryptosslCipher::XrdCryptosslCipher
XrdCryptosslCipher(const XrdCryptosslCipher &c)

XrdCryptosslCipher::EncOutLength
int EncOutLength(int l)

XrdCryptosslCipher::DecOutLength
int DecOutLength(int l)

XrdCryptosslCipher::XrdCryptosslCipher
XrdCryptosslCipher(const char *t, int l, const char *k, int liv, const char *iv)

XrdCryptosslCipher::fDH
EVP_PKEY * fDH
Definition XrdCryptosslCipher.hh:61

XrdCryptosslCipher::MaxIVLength
int MaxIVLength() const

XrdCryptosslCipher::EncDec
int EncDec(int encdec, const char *bin, int lin, char *out)

XrdCryptosslCipher::XrdCryptosslCipher
XrdCryptosslCipher(bool padded, int len, char *pub, int lpub, const char *t)

XrdCryptosslCipher::cipher
const EVP_CIPHER * cipher
Definition XrdCryptosslCipher.hh:59

XrdCryptosslCipher::AsBucket
XrdSutBucket * AsBucket()

XrdCryptosslCipher::XrdCryptosslCipher
XrdCryptosslCipher(XrdSutBucket *b)

XrdCryptosslCipher::GenerateIV
void GenerateIV()

XrdCryptosslCipher::~XrdCryptosslCipher
virtual ~XrdCryptosslCipher()

XrdCryptosslCipher::Encrypt
int Encrypt(const char *bin, int lin, char *out)

XrdCryptosslCipher::RefreshIV
char * RefreshIV(int &l)

XrdCryptosslCipher::Publen
int Publen()

XrdCryptosslCipher::ctx
EVP_CIPHER_CTX * ctx
Definition XrdCryptosslCipher.hh:60

XrdCryptosslCipher::XrdCryptosslCipher
XrdCryptosslCipher(const char *t, int l=0)

XrdCryptosslCipher::valid
bool valid
Definition XrdCryptosslCipher.hh:63

XrdCryptosslCipher::IsValid
bool IsValid()
Definition XrdCryptosslCipher.hh:84

XrdCryptosslCipher::IsDefaultLength
bool IsDefaultLength() const
Definition XrdCryptosslCipher.hh:97

XrdCryptosslCipher::Decrypt
int Decrypt(const char *bin, int lin, char *out)

XrdCryptosslCipher::fIV
char * fIV
Definition XrdCryptosslCipher.hh:57

XrdCryptosslCipher::IV
char * IV(int &l) const
Definition XrdCryptosslCipher.hh:96

XrdCryptosslCipher::lIV
int lIV
Definition XrdCryptosslCipher.hh:58

XrdCryptosslCipher::Public
char * Public(int &lpub)

XrdCryptosslCipher::Cleanup
void Cleanup()

XrdCryptosslCipher::Finalize
bool Finalize(bool padded, char *pub, int lpub, const char *t)

XrdSutBucket
Definition XrdSutBucket.hh:44