PostgreSQL Source Code  git master
pgp-pubenc.c File Reference
#include "postgres.h"
#include "pgp.h"
#include "px.h"
Include dependency graph for pgp-pubenc.c:

Go to the source code of this file.

Functions

static int pad_eme_pkcs1_v15 (uint8 *data, int data_len, int res_len, uint8 **res_p)
 
static int create_secmsg (PGP_Context *ctx, PGP_MPI **msg_p, int full_bytes)
 
static int encrypt_and_write_elgamal (PGP_Context *ctx, PGP_PubKey *pk, PushFilter *pkt)
 
static int encrypt_and_write_rsa (PGP_Context *ctx, PGP_PubKey *pk, PushFilter *pkt)
 
int pgp_write_pubenc_sesskey (PGP_Context *ctx, PushFilter *dst)
 

Function Documentation

◆ create_secmsg()

static int create_secmsg ( PGP_Context ctx,
PGP_MPI **  msg_p,
int  full_bytes 
)
static

Definition at line 83 of file pgp-pubenc.c.

84 {
85  uint8 *secmsg;
86  int res,
87  i;
88  unsigned cksum = 0;
89  int klen = ctx->sess_key_len;
90  uint8 *padded = NULL;
91  PGP_MPI *m = NULL;
92 
93  /* calc checksum */
94  for (i = 0; i < klen; i++)
95  cksum += ctx->sess_key[i];
96 
97  /*
98  * create "secret message"
99  */
100  secmsg = palloc(klen + 3);
101  secmsg[0] = ctx->cipher_algo;
102  memcpy(secmsg + 1, ctx->sess_key, klen);
103  secmsg[klen + 1] = (cksum >> 8) & 0xFF;
104  secmsg[klen + 2] = cksum & 0xFF;
105 
106  /*
107  * now create a large integer of it
108  */
109  res = pad_eme_pkcs1_v15(secmsg, klen + 3, full_bytes, &padded);
110  if (res >= 0)
111  {
112  /* first byte will be 0x02 */
113  int full_bits = full_bytes * 8 - 6;
114 
115  res = pgp_mpi_create(padded, full_bits, &m);
116  }
117 
118  if (padded)
119  {
120  px_memset(padded, 0, full_bytes);
121  pfree(padded);
122  }
123  px_memset(secmsg, 0, klen + 3);
124  pfree(secmsg);
125 
126  if (res >= 0)
127  *msg_p = m;
128 
129  return res;
130 }
uint8_t uint8
Definition: c.h:483
int i
Definition: isn.c:72
void pfree(void *pointer)
Definition: mcxt.c:1521
void * palloc(Size size)
Definition: mcxt.c:1317
int pgp_mpi_create(uint8 *data, int bits, PGP_MPI **mpi)
Definition: pgp-mpi.c:56
static int pad_eme_pkcs1_v15(uint8 *data, int data_len, int res_len, uint8 **res_p)
Definition: pgp-pubenc.c:40
void px_memset(void *ptr, int c, size_t len)
Definition: px.c:123
unsigned sess_key_len
Definition: pgp.h:172
int cipher_algo
Definition: pgp.h:144
uint8 sess_key[PGP_MAX_KEY]
Definition: pgp.h:171
Definition: pgp.h:180

References PGP_Context::cipher_algo, i, pad_eme_pkcs1_v15(), palloc(), pfree(), pgp_mpi_create(), px_memset(), res, PGP_Context::sess_key, and PGP_Context::sess_key_len.

Referenced by encrypt_and_write_elgamal(), and encrypt_and_write_rsa().

◆ encrypt_and_write_elgamal()

static int encrypt_and_write_elgamal ( PGP_Context ctx,
PGP_PubKey pk,
PushFilter pkt 
)
static

Definition at line 133 of file pgp-pubenc.c.

134 {
135  int res;
136  PGP_MPI *m = NULL,
137  *c1 = NULL,
138  *c2 = NULL;
139 
140  /* create padded msg */
141  res = create_secmsg(ctx, &m, pk->pub.elg.p->bytes - 1);
142  if (res < 0)
143  goto err;
144 
145  /* encrypt it */
146  res = pgp_elgamal_encrypt(pk, m, &c1, &c2);
147  if (res < 0)
148  goto err;
149 
150  /* write out */
151  res = pgp_mpi_write(pkt, c1);
152  if (res < 0)
153  goto err;
154  res = pgp_mpi_write(pkt, c2);
155 
156 err:
157  pgp_mpi_free(m);
158  pgp_mpi_free(c1);
159  pgp_mpi_free(c2);
160  return res;
161 }
void err(int eval, const char *fmt,...)
Definition: err.c:43
int pgp_elgamal_encrypt(PGP_PubKey *pk, PGP_MPI *_m, PGP_MPI **c1_p, PGP_MPI **c2_p)
int pgp_mpi_free(PGP_MPI *mpi)
Definition: pgp-mpi.c:70
int pgp_mpi_write(PushFilter *dst, PGP_MPI *n)
Definition: pgp-mpi.c:105
static int create_secmsg(PGP_Context *ctx, PGP_MPI **msg_p, int full_bytes)
Definition: pgp-pubenc.c:83
struct PGP_PubKey::@0::@2 elg
union PGP_PubKey::@0 pub

References create_secmsg(), PGP_PubKey::elg, err(), pgp_elgamal_encrypt(), pgp_mpi_free(), pgp_mpi_write(), PGP_PubKey::pub, and res.

Referenced by pgp_write_pubenc_sesskey().

◆ encrypt_and_write_rsa()

static int encrypt_and_write_rsa ( PGP_Context ctx,
PGP_PubKey pk,
PushFilter pkt 
)
static

Definition at line 164 of file pgp-pubenc.c.

165 {
166  int res;
167  PGP_MPI *m = NULL,
168  *c = NULL;
169 
170  /* create padded msg */
171  res = create_secmsg(ctx, &m, pk->pub.rsa.n->bytes - 1);
172  if (res < 0)
173  goto err;
174 
175  /* encrypt it */
176  res = pgp_rsa_encrypt(pk, m, &c);
177  if (res < 0)
178  goto err;
179 
180  /* write out */
181  res = pgp_mpi_write(pkt, c);
182 
183 err:
184  pgp_mpi_free(m);
185  pgp_mpi_free(c);
186  return res;
187 }
int pgp_rsa_encrypt(PGP_PubKey *pk, PGP_MPI *_m, PGP_MPI **c_p)
char * c
struct PGP_PubKey::@0::@3 rsa

References create_secmsg(), err(), pgp_mpi_free(), pgp_mpi_write(), pgp_rsa_encrypt(), PGP_PubKey::pub, res, and PGP_PubKey::rsa.

Referenced by pgp_write_pubenc_sesskey().

◆ pad_eme_pkcs1_v15()

static int pad_eme_pkcs1_v15 ( uint8 data,
int  data_len,
int  res_len,
uint8 **  res_p 
)
static

Definition at line 40 of file pgp-pubenc.c.

41 {
42  uint8 *buf,
43  *p;
44  int pad_len = res_len - 2 - data_len;
45 
46  if (pad_len < 8)
47  return PXE_BUG;
48 
49  buf = palloc(res_len);
50  buf[0] = 0x02;
51 
52  if (!pg_strong_random(buf + 1, pad_len))
53  {
54  pfree(buf);
55  return PXE_NO_RANDOM;
56  }
57 
58  /* pad must not contain zero bytes */
59  p = buf + 1;
60  while (p < buf + 1 + pad_len)
61  {
62  if (*p == 0)
63  {
64  if (!pg_strong_random(p, 1))
65  {
66  px_memset(buf, 0, res_len);
67  pfree(buf);
68  return PXE_NO_RANDOM;
69  }
70  }
71  if (*p != 0)
72  p++;
73  }
74 
75  buf[pad_len + 1] = 0;
76  memcpy(buf + pad_len + 2, data, data_len);
77  *res_p = buf;
78 
79  return 0;
80 }
const void * data
static char * buf
Definition: pg_test_fsync.c:72
bool pg_strong_random(void *buf, size_t len)
#define PXE_BUG
Definition: px.h:58
#define PXE_NO_RANDOM
Definition: px.h:63

References buf, data, palloc(), pfree(), pg_strong_random(), px_memset(), PXE_BUG, and PXE_NO_RANDOM.

Referenced by create_secmsg().

◆ pgp_write_pubenc_sesskey()

int pgp_write_pubenc_sesskey ( PGP_Context ctx,
PushFilter dst 
)

Definition at line 190 of file pgp-pubenc.c.

191 {
192  int res;
193  PGP_PubKey *pk = ctx->pub_key;
194  uint8 ver = 3;
195  PushFilter *pkt = NULL;
196  uint8 algo;
197 
198  if (pk == NULL)
199  {
200  px_debug("no pubkey?\n");
201  return PXE_BUG;
202  }
203 
204  algo = pk->algo;
205 
206  /*
207  * now write packet
208  */
210  if (res < 0)
211  goto err;
212  res = pushf_write(pkt, &ver, 1);
213  if (res < 0)
214  goto err;
215  res = pushf_write(pkt, pk->key_id, 8);
216  if (res < 0)
217  goto err;
218  res = pushf_write(pkt, &algo, 1);
219  if (res < 0)
220  goto err;
221 
222  switch (algo)
223  {
224  case PGP_PUB_ELG_ENCRYPT:
225  res = encrypt_and_write_elgamal(ctx, pk, pkt);
226  break;
227  case PGP_PUB_RSA_ENCRYPT:
229  res = encrypt_and_write_rsa(ctx, pk, pkt);
230  break;
231  }
232  if (res < 0)
233  goto err;
234 
235  /*
236  * done, signal packet end
237  */
238  res = pushf_flush(pkt);
239 err:
240  if (pkt)
241  pushf_free(pkt);
242 
243  return res;
244 }
int pushf_write(PushFilter *mp, const uint8 *data, int len)
Definition: mbuf.c:439
int pushf_flush(PushFilter *mp)
Definition: mbuf.c:499
void pushf_free(PushFilter *mp)
Definition: mbuf.c:395
int pgp_create_pkt_writer(PushFilter *dst, int tag, PushFilter **res_p)
Definition: pgp-encrypt.c:311
static int encrypt_and_write_elgamal(PGP_Context *ctx, PGP_PubKey *pk, PushFilter *pkt)
Definition: pgp-pubenc.c:133
static int encrypt_and_write_rsa(PGP_Context *ctx, PGP_PubKey *pk, PushFilter *pkt)
Definition: pgp-pubenc.c:164
@ PGP_PKT_PUBENCRYPTED_SESSKEY
Definition: pgp.h:47
@ PGP_PUB_RSA_ENCRYPT_SIGN
Definition: pgp.h:68
@ PGP_PUB_RSA_ENCRYPT
Definition: pgp.h:69
@ PGP_PUB_ELG_ENCRYPT
Definition: pgp.h:71
void px_debug(const char *fmt,...)
Definition: px.c:149
PGP_PubKey * pub_key
Definition: pgp.h:164
uint8 key_id[8]
Definition: pgp.h:235
uint8 algo
Definition: pgp.h:190

References PGP_PubKey::algo, encrypt_and_write_elgamal(), encrypt_and_write_rsa(), err(), PGP_PubKey::key_id, pgp_create_pkt_writer(), PGP_PKT_PUBENCRYPTED_SESSKEY, PGP_PUB_ELG_ENCRYPT, PGP_PUB_RSA_ENCRYPT, PGP_PUB_RSA_ENCRYPT_SIGN, PGP_Context::pub_key, pushf_flush(), pushf_free(), pushf_write(), px_debug(), PXE_BUG, and res.

Referenced by pgp_encrypt().