doxygen/porter/crypto__windows_8c_source.html

#ifdef _WIN32


    #include <windows.h>

    #include <bcrypt.h>

    #include <string.h>


    #include "crypto.h"


/* BCrypt を使用した AES-256-GCM 暗号化の共通実装。

   is_encrypt: TRUE = 暗号化、FALSE = 復号 (タグ検証含む)。

   src/src_len: 暗号化時は平文、復号時は暗号文 (タグを除く)。

   tag: 暗号化時は出力バッファ、復号時は検証用入力バッファ。 */

static int bcrypt_aes_gcm(BOOL           is_encrypt,

                          uint8_t       *dst,

                          size_t        *dst_len,

                          const uint8_t *src,

                          size_t         src_len,

                          const uint8_t *key,

                          const uint8_t *nonce,

                          const uint8_t *aad,

                          size_t         aad_len,

                          uint8_t       *tag,

                          ULONG          tag_len)

{

    BCRYPT_ALG_HANDLE                  h_alg  = NULL;

    BCRYPT_KEY_HANDLE                  h_key  = NULL;

    NTSTATUS                           status;

    BCRYPT_AUTHENTICATED_CIPHER_MODE_INFO auth_info;

    ULONG                              out_len = 0;


    status = BCryptOpenAlgorithmProvider(&h_alg, BCRYPT_AES_ALGORITHM, NULL, 0);

    if (!BCRYPT_SUCCESS(status))

    {

        return -1;

    }


    status = BCryptSetProperty(h_alg, BCRYPT_CHAINING_MODE,

                               (PUCHAR)BCRYPT_CHAIN_MODE_GCM,

                               sizeof(BCRYPT_CHAIN_MODE_GCM), 0);

    if (!BCRYPT_SUCCESS(status))

    {

        BCryptCloseAlgorithmProvider(h_alg, 0);

        return -1;

    }


    status = BCryptGenerateSymmetricKey(h_alg, &h_key, NULL, 0,

                                        (PUCHAR)key, (ULONG)POTR_CRYPTO_KEY_SIZE, 0);

    if (!BCRYPT_SUCCESS(status))

    {

        BCryptCloseAlgorithmProvider(h_alg, 0);

        return -1;

    }


    BCRYPT_INIT_AUTH_MODE_INFO(auth_info);

    auth_info.pbNonce    = (PUCHAR)nonce;

    auth_info.cbNonce    = (ULONG)POTR_CRYPTO_NONCE_SIZE;

    auth_info.pbAuthData = (PUCHAR)aad;

    auth_info.cbAuthData = (aad != NULL) ? (ULONG)aad_len : 0U;

    auth_info.pbTag      = (PUCHAR)tag;

    auth_info.cbTag      = tag_len;


    if (is_encrypt)

    {

        status = BCryptEncrypt(h_key,

                               (PUCHAR)src, (ULONG)src_len,

                               &auth_info,

                               NULL, 0,

                               (PUCHAR)dst, (ULONG)*dst_len,

                               &out_len, 0);

    }

    else

    {

        status = BCryptDecrypt(h_key,

                               (PUCHAR)src, (ULONG)src_len,

                               &auth_info,

                               NULL, 0,

                               (PUCHAR)dst, (ULONG)*dst_len,

                               &out_len, 0);

    }


    BCryptDestroyKey(h_key);

    BCryptCloseAlgorithmProvider(h_alg, 0);


    if (!BCRYPT_SUCCESS(status))

    {

        return -1;

    }


    *dst_len = (size_t)out_len;

    return 0;

}


/* doxygen コメントはヘッダに記載 */

int potr_encrypt(uint8_t *dst, size_t *dst_len,

                 const uint8_t *src, size_t src_len,

                 const uint8_t *key,

                 const uint8_t *nonce,

                 const uint8_t *aad, size_t aad_len)

{

    uint8_t tag[POTR_CRYPTO_TAG_SIZE];

    size_t  enc_len;


    if (dst == NULL || dst_len == NULL || (src == NULL && src_len > 0)

        || key == NULL || nonce == NULL

        || *dst_len < src_len + POTR_CRYPTO_TAG_SIZE)

    {

        return -1;

    }


    enc_len = src_len;


    {

        /* BCrypt は src=NULL を受け付けないため、空バッファを用意する */

        static const uint8_t empty_src[1] = { 0 };

        const uint8_t *actual_src = (src != NULL) ? src : empty_src;


        if (bcrypt_aes_gcm(TRUE,

                           dst, &enc_len,

                           actual_src, src_len,

                           key, nonce,

                           aad, aad_len,

                           tag, (ULONG)POTR_CRYPTO_TAG_SIZE) != 0)

        {

            return -1;

        }

    }


    /* タグ (16B) を暗号文の直後に付加する */

    memcpy(dst + enc_len, tag, POTR_CRYPTO_TAG_SIZE);

    *dst_len = enc_len + POTR_CRYPTO_TAG_SIZE;

    return 0;

}


/* doxygen コメントはヘッダに記載 */

int potr_decrypt(uint8_t *dst, size_t *dst_len,

                 const uint8_t *src, size_t src_len,

                 const uint8_t *key,

                 const uint8_t *nonce,

                 const uint8_t *aad, size_t aad_len)

{

    size_t plain_len;


    if (dst == NULL || dst_len == NULL || src == NULL

        || src_len < POTR_CRYPTO_TAG_SIZE

        || key == NULL || nonce == NULL)

    {

        return -1;

    }


    plain_len = src_len - POTR_CRYPTO_TAG_SIZE;


    if (plain_len > 0 && *dst_len < plain_len)

    {

        return -1;

    }


    /* タグは暗号文の末尾 POTR_CRYPTO_TAG_SIZE バイト。BCrypt がタグ検証を行う。

       STATUS_AUTH_TAG_MISMATCH 時は bcrypt_aes_gcm が -1 を返す。 */

    return bcrypt_aes_gcm(FALSE,

                          dst, dst_len,

                          src, plain_len,

                          key, nonce,

                          aad, aad_len,

                          (uint8_t *)(src + plain_len),

                          (ULONG)POTR_CRYPTO_TAG_SIZE);

}


/* doxygen コメントはヘッダに記載 */

int potr_passphrase_to_key(uint8_t *key,

                           const uint8_t *passphrase,

                           size_t passphrase_len)

{

    BCRYPT_ALG_HANDLE  h_alg  = NULL;

    BCRYPT_HASH_HANDLE h_hash = NULL;

    NTSTATUS           status;

    static const uint8_t empty[1] = { 0 };

    const uint8_t *data = (passphrase != NULL) ? passphrase : empty;

    ULONG          data_len = (passphrase != NULL) ? (ULONG)passphrase_len : 0UL;


    if (key == NULL || (passphrase == NULL && passphrase_len > 0))

    {

        return -1;

    }


    status = BCryptOpenAlgorithmProvider(&h_alg, BCRYPT_SHA256_ALGORITHM, NULL, 0);

    if (!BCRYPT_SUCCESS(status))

    {

        return -1;

    }


    status = BCryptCreateHash(h_alg, &h_hash, NULL, 0, NULL, 0, 0);

    if (!BCRYPT_SUCCESS(status))

    {

        BCryptCloseAlgorithmProvider(h_alg, 0);

        return -1;

    }


    status = BCryptHashData(h_hash, (PUCHAR)data, data_len, 0);

    if (!BCRYPT_SUCCESS(status))

    {

        BCryptDestroyHash(h_hash);

        BCryptCloseAlgorithmProvider(h_alg, 0);

        return -1;

    }


    status = BCryptFinishHash(h_hash, (PUCHAR)key, (ULONG)POTR_CRYPTO_KEY_SIZE, 0);


    BCryptDestroyHash(h_hash);

    BCryptCloseAlgorithmProvider(h_alg, 0);


    return BCRYPT_SUCCESS(status) ? 0 : -1;

}


#endif /* _WIN32 */

crypto.h
データ暗号化・復号モジュールの内部ヘッダー。

potr_passphrase_to_key
int potr_passphrase_to_key(uint8_t *key, const uint8_t *passphrase, size_t passphrase_len)
任意のパスフレーズを SHA-256 ハッシュにより AES-256 鍵に変換します。
Definition crypto_linux.c:213

potr_encrypt
int potr_encrypt(uint8_t *dst, size_t *dst_len, const uint8_t *src, size_t src_len, const uint8_t *key, const uint8_t *nonce, const uint8_t *aad, size_t aad_len)
AES-256-GCM でデータを暗号化します。
Definition crypto_linux.c:29

potr_decrypt
int potr_decrypt(uint8_t *dst, size_t *dst_len, const uint8_t *src, size_t src_len, const uint8_t *key, const uint8_t *nonce, const uint8_t *aad, size_t aad_len)
AES-256-GCM でデータを復号し、認証タグを検証します。
Definition crypto_linux.c:116

POTR_CRYPTO_NONCE_SIZE
#define POTR_CRYPTO_NONCE_SIZE
AES-256-GCM ノンスサイズ (バイト)。session_id (4B NBO) + flags (2B NBO) + seq_or_ack_num (4B NBO) + padding (2B...
Definition porter_const.h:86

POTR_CRYPTO_KEY_SIZE
#define POTR_CRYPTO_KEY_SIZE
AES-256-GCM 鍵サイズ (バイト)。設定ファイルの encrypt_key に 64 文字 hex で指定する。
Definition porter_const.h:85

POTR_CRYPTO_TAG_SIZE
#define POTR_CRYPTO_TAG_SIZE
AES-256-GCM 認証タグサイズ (バイト)。暗号文の直後に付加する。
Definition porter_const.h:87