GNUMessenger::CryptoManager Class Reference

The cryptography manager class. More...

#include <cryptography.h>

List of all members.

Public Member Functions
	CryptoManager (const string &pk)
	Default constructor.
CryptoSession *	createSession ()
	The crypto factory.
Static Public Member Functions
byte *	hash (const string &str, unsigned int &len, CryptDefines::Hashes type=CryptDefines::DefaultHash) throw (AlgoError)
	Generate a hash of the given std::string using the given hash type.
string	encode (const SecByteBlock &array, CryptDefines::Encoding enc=CryptDefines::DefaultEncoder) throw (AlgoError)
	Encode a byte array.
string	encode (const string &str, CryptDefines::Encoding enc=CryptDefines::DefaultEncoder)
byte *	decode (const string &input, unsigned int &outLen, CryptDefines::Encoding enc) throw (AlgoError)
	Decode a string to byte array.
string	hashEncode (const string &str, CryptDefines::Hashes type=CryptDefines::DefaultHash, CryptDefines::Encoding enc=CryptDefines::DefaultEncoder) throw (AlgoError)
	Hash and encode in one swoop.
byte *	generateRandom (const unsigned int size) throw (RNGError)
	Generate a specified number of bytes using the OS supplied random number generator.
byte *	encrypt (const SecByteBlock &data, const SecByteBlock &key, unsigned int &resultLen, const unsigned int blockSize=0, CryptDefines::BlockCipher cipher=CryptDefines::DefaultBC, CryptDefines::Mode mode=CryptDefines::DefaultMode) throw (RNGError, AlgoError, KeySizeError, BlockSizeError)
	Encrypt a data block with a key.
void	encryptToFileWithHMAC (const string &filename, const SecByteBlock &data, const SecByteBlock &key, const unsigned int blockSize=0, CryptDefines::BlockCipher bc=CryptDefines::DefaultBC, CryptDefines::Mode mode=CryptDefines::DefaultMode, CryptDefines::Hashes hash=CryptDefines::DefaultHash) throw (RNGError, AlgoError, KeySizeError, BlockSizeError, IOError)
	Encrypt a data block with a key.
byte *	compress (const SecByteBlock &data, unsigned int &resultLen, const unsigned int level=CryptDefines::DEFAULT_COMPRESS_LEVEL)
	Compress the data block with Zlib.
byte *	decompress (const SecByteBlock &data, unsigned int &resultLen)
	Decompress the data block with Zlib.
byte *	generateIV (const SecByteBlock &data, CryptDefines::Hashes hash=CryptDefines::DefaultHash)
	IV generation via hashing input data then XOR-ing it with itself.
unsigned int	testRNG (const unsigned int insize) throw (RNGError)
bool	encryptFile (const string &filename, const VBuffer &key, const string &data) throw (IOError)
string	decryptFile (const string &filename, const VBuffer &key) throw (InvalidPassword, AuthFailed)
string	hashEncode (const VBuffer &toHash, CryptDefines::Hashes hash=CryptDefines::DefaultHash, CryptDefines::Encoding enc=CryptDefines::DefaultEncoder)
VBuffer	hash (const VBuffer &toHash, CryptDefines::Hashes hash=CryptDefines::DefaultHash)
Static Protected Member Functions
HashTransformation *	getHash (CryptDefines::Hashes type) throw (AlgoError)
	This function is not a member function due to the problems with non-inline member templates.
SymmetricCipher *	getEncryptor (CryptDefines::BlockCipher cipher, CryptDefines::Mode mode) throw (AlgoError)

---

Detailed Description

The cryptography manager class.

This class creates keys, encrypts, and decrypts data.

In other words, a dummied down interface to Crypto++.

This class is usually associated with an active Contact. The static hashing functions and disk i/o are used by the login/ contact loading class.

Author:

Jesse Lovelace

Definition at line 62 of file cryptography.h.

---

Member Function Documentation

byte * GNUMessenger::CryptoManager::compress (  const SecByteBlock &  data, unsigned int &  resultLen, const unsigned int  level = CryptDefines::DEFAULT_COMPRESS_LEVEL )  [static]

Compress the data block with Zlib. Parameters: data  Input data to compress. resultLen  A reference to the ending length. level  The compression level (higher takes longer and makes result smaller--hopefully). Returns: Byte array of resulting data. Definition at line 230 of file cryptography.cpp. { ZlibCompressor z(NULL, level); z.Put(data, data.size()); z.MessageEnd(); resultLen = z.MaxRetrievable(); byte * out = new byte[resultLen]; z.Get(out, z.MaxRetrievable()); return out; }

byte* GNUMessenger::CryptoManager::decode (  const string &  input, unsigned int &  outLen, CryptDefines::Encoding  enc )  throw (AlgoError) [static]

Decode a string to byte array. Parameters: input  The input string to decode. outLen  The final length of the byte array. See decodeLength() enc  The decoder to use. Returns: A byte array of the decoded data, owned by the caller.

byte * GNUMessenger::CryptoManager::decompress (  const SecByteBlock &  data, unsigned int &  resultLen )  [static]

Decompress the data block with Zlib. Parameters: data  Input data to compress. resultLen  A reference to the ending length. Returns: Byte array of resulting data. Definition at line 245 of file cryptography.cpp. { ZlibDecompressor inflate; inflate.Put(data, data.size()); inflate.MessageEnd(); resultLen = inflate.MaxRetrievable(); byte * out = new byte[resultLen]; inflate.Get(out, inflate.MaxRetrievable()); return out; }

string GNUMessenger::CryptoManager::encode (  const SecByteBlock &  array, CryptDefines::Encoding  enc = CryptDefines::DefaultEncoder )  throw (AlgoError) [static]

Encode a byte array. Parameters: array  The byte array to encode. enc  The encoder to use. Returns: A std::string object of the encoded data. Exceptions: AlgoError  is the specified encoder is invalid. Definition at line 298 of file cryptography.cpp. { string result; auto_ptr<SimpleProxyFilter> encoder; switch (type) { // @todo This isn't optimal case(CryptDefines::Base64): encoder.reset(new Base64Encoder(new StringSink(result))); break; case(CryptDefines::Base32): encoder.reset(new Base32Encoder(new StringSink(result))); break; case(CryptDefines::Hex): encoder.reset(new HexEncoder(new StringSink(result))); break; default: throw AlgoError("No such encoding system."); } encoder->Put(data, data.size()); encoder->MessageEnd(); return result; }

byte * GNUMessenger::CryptoManager::encrypt (  const SecByteBlock &  data, const SecByteBlock &  key, unsigned int &  resultLen, const unsigned int  blockSize = 0, CryptDefines::BlockCipher  cipher = CryptDefines::DefaultBC, CryptDefines::Mode  mode = CryptDefines::DefaultMode )  throw (RNGError, AlgoError, KeySizeError, BlockSizeError) [static]

Encrypt a data block with a key. Generates a random IV for the block cipher. Parameters: data  The data to encrypt. key  The key to encrypt with. blockSize  The size, in bytes, of a block for the ciper. 0 means default. resultLen  The length of the resulting byte array. Exceptions: RNGError  The OS RNG failed to allocate the requested number of bytes. AlgoError  The specified algorithm is invalid. KeySizeError  The key size is invalid for the ciper. BlockSizeError  The block size is invalid for this ciper Definition at line 259 of file cryptography.cpp. { auto_ptr<SymmetricCipher> theCipher(getEncryptor(cipher,mode)); if (!theCipher->IsValidKeyLength(key.size())) throw KeySizeError("Invalid key size for this cipher", theCipher->MinKeyLength(), theCipher->MaxKeyLength()); if (theCipher->IVRequirement() == theCipher->RANDOM_IV) LOG_DEBUG("Requires random IV"); SecByteBlock iv( generateIV( SecByteBlock( generateRandom(theCipher->MandatoryBlockSize()), theCipher->MandatoryBlockSize() ) ), theCipher->MandatoryBlockSize() ); theCipher->SetKeyWithIV(key, key.size(), iv); ArraySink cipherText; StreamTransformationFilter encryptor(*theCipher, &cipherText); encryptor.Put(data, data.size()); // input more plaintext here if needed encryptor.MessageEnd(); return NULL; }

bool GNUMessenger::CryptoManager::encryptFile (  const string &  filename, const VBuffer &  key, const string &  data )  throw (IOError) [static]

Grow container to ciphertext size Definition at line 333 of file cryptography.cpp. { // generating random seed for iv SecByteBlock ivSeed(CryptDefines::IV_SEED_LENGTH); SecByteBlock realIv(CryptDefines::IV_LENGTH); AutoSeededRandomPool rng; rng.GenerateBlock(ivSeed, CryptDefines::IV_SEED_LENGTH); //creating actual iv, thanks to denis bider for this method SecByteBlock ivHash(SHA256::DIGESTSIZE); SHA256().CalculateDigest(ivHash, ivSeed, CryptDefines::IV_SEED_LENGTH); for (unsigned int i = 0; i != CryptDefines::IV_LENGTH; ++i) realIv[i] = ivHash[i] ^ ivHash[i+16]; //compress ZlibCompressor z(NULL,9); z.Put((const unsigned char *)data.c_str(), static_cast<unsigned int>(data.length())); z.MessageEnd(); SecByteBlock compressedPlainText(z.MaxRetrievable()); z.Get(compressedPlainText, compressedPlainText.size()); //encrypting SecByteBlock cipherText(compressedPlainText.size()); CBC_Mode<MARS>::Encryption enc(key.data(), key.size(), realIv.data()); StreamTransformationFilter encryptor(enc); encryptor.Put(compressedPlainText, compressedPlainText.size()); encryptor.MessageEnd(); cipherText.CleanGrow(encryptor.MaxRetrievable()); encryptor.Get(cipherText, cipherText.size()); // create HMAC SecByteBlock myMac(HMAC<SHA>::DIGESTSIZE); HMAC<SHA> themac(key.data(), key.size()); themac.Update(cipherText, cipherText.size()); themac.Final(myMac); // setup output file and encode the file as base64 try { Base64Encoder encoder(new FileSink(filename.c_str(), false)); encoder.Put(realIv, CryptDefines::IV_LENGTH); encoder.Put(cipherText, cipherText.size()); encoder.Put(myMac, HMAC<SHA>::DIGESTSIZE); encoder.MessageEnd(); } catch(CryptoPP::Exception &e) { throw IOError(e.what()); } return true; }

void GNUMessenger::CryptoManager::encryptToFileWithHMAC (  const string &  filename, const SecByteBlock &  data, const SecByteBlock &  key, const unsigned int  blockSize = 0, CryptDefines::BlockCipher  bc = CryptDefines::DefaultBC, CryptDefines::Mode  mode = CryptDefines::DefaultMode, CryptDefines::Hashes  hash = CryptDefines::DefaultHash )  throw (RNGError, AlgoError, KeySizeError, BlockSizeError, IOError) [static]

Encrypt a data block with a key. Generates a random IV for the block cipher; a SHA. Parameters: data  The data to encrypt. key  The key to encrypt with. blockSize  The size, in bytes, of a block for the ciper. 0 means default. resultLen  The length of the resulting byte array. bc  The block cipher algorithm to use. mode  The mode encryption mode to use. hash  The type of hash to use in the HMAC. Exceptions: RNGError  The OS RNG failed to allocate the requested number of bytes. AlgoError  The specified algorithm is invalid. KeySizeError  The key size is invalid for the ciper. BlockSizeError  The block size is invalid for this ciper IOError  There was an error with the filesystem.

byte * GNUMessenger::CryptoManager::generateIV (  const SecByteBlock &  data, CryptDefines::Hashes  hash = CryptDefines::DefaultHash )  [static]

IV generation via hashing input data then XOR-ing it with itself. This algorithm was sugguested by Denis Bider from the Crypto++ list. Parameters: data  The data to be worked on. type  The type of hash algorithm to use. Returns: Byte array of the same size as initial data. Definition at line 181 of file cryptography.cpp. References getHash(). { auto_ptr<HashTransformation> theHash(getHash(hash)); byte * result = new byte[theHash->DigestSize()]; SecByteBlock hashed(theHash->DigestSize()); theHash->CalculateDigest(hashed, data, data.size()); // digestsize should always be 2a = b for (unsigned int i = 0; i < theHash->DigestSize() / 2; i++) result[i] = hashed[i] ^ hashed[i+ (theHash->DigestSize() / 2)]; return result; } Here is the call graph for this function:

byte * GNUMessenger::CryptoManager::generateRandom (  const unsigned int  size  )  throw (RNGError) [static]

Generate a specified number of bytes using the OS supplied random number generator. Returns: A byte array. Exceptions: RNGError  The OS RNG can't get the required number of bytes. Definition at line 213 of file cryptography.cpp. { byte * result = new byte[size]; AutoSeededRandomPool rng; try { rng.GenerateBlock(result, size); } catch (OS_RNG_Err &e) { delete [] result; throw RNGError(e.what()); } return result; }

HashTransformation * GNUMessenger::CryptoManager::getHash (  CryptDefines::Hashes  type  )  throw (AlgoError) [static, protected]

This function is not a member function due to the problems with non-inline member templates. Parameters: The  type of hash. Returns: HashTransformation pointer. Exceptions: AlgoError  if algo is invalid. Definition at line 143 of file cryptography.cpp. Referenced by generateIV(). { switch (type) { case(CryptDefines::SHA1): return new SHA(); case(CryptDefines::SHA_256): return new SHA256(); case(CryptDefines::SHA_384): return new SHA384(); case(CryptDefines::SHA_512): return new SHA512(); case(CryptDefines::MD_2): return new MD2(); case(CryptDefines::MD_5): return new MD5(); case(CryptDefines::HAVAL_3): return new HAVAL3(); case(CryptDefines::HAVAL_4): return new HAVAL4(); case(CryptDefines::HAVAL_5): return new HAVAL5(); case(CryptDefines::RIPEMD_160): return new RIPEMD160(); case(CryptDefines::_TIGER): return new Tiger(); #ifdef IS_LITTLE_ENDIAN case(CryptDefines::PANAMA_HASH): return new PanamaHash<LittleEndian>(); #else case(CryptDefines::PANAMA_HASH): return new PanamaHash<BigEndian>(); #endif default: throw AlgoError("Invalid Hash Algorithm."); } }

byte * GNUMessenger::CryptoManager::hash (  const string &  str, unsigned int &  len, CryptDefines::Hashes  type = CryptDefines::DefaultHash )  throw (AlgoError) [static]

Generate a hash of the given std::string using the given hash type. Parameters: str  The std::string to hash type  The hash algo to use. len  The length of the byte array generated. Returns: The byte array. Exceptions: AlgoError  There was an error with the algorithm. Definition at line 170 of file cryptography.cpp. { auto_ptr<HashTransformation> theHash(getHash(hashType)); byte * result = new byte[theHash->DigestSize()]; theHash->CalculateDigest(result, (byte *)data.c_str(), data.length()); return result; }

string GNUMessenger::CryptoManager::hashEncode (  const string &  str, CryptDefines::Hashes  type = CryptDefines::DefaultHash, CryptDefines::Encoding  enc = CryptDefines::DefaultEncoder )  throw (AlgoError) [static]

Hash and encode in one swoop.

---

The documentation for this class was generated from the following files:

• cryptography.h
• cryptography.cpp

---