4 * The secure anycast tunneling protocol (satp) defines a protocol used
5 * for communication between any combination of unicast and anycast
6 * tunnel endpoints. It has less protocol overhead than IPSec in Tunnel
7 * mode and allows tunneling of every ETHER TYPE protocol (e.g.
8 * ethernet, ip, arp ...). satp directly includes cryptography and
9 * message authentication based on the methodes used by SRTP. It is
10 * intended to deliver a generic, scaleable and secure solution for
11 * tunneling and relaying of packets of any protocol.
14 * Copyright (C) 2007-2008 Othmar Gsenger, Erwin Nindl,
15 * Christian Pointner <satp@wirdorange.org>
17 * This file is part of Anytun.
19 * Anytun is free software: you can redistribute it and/or modify
20 * it under the terms of the GNU General Public License version 3 as
21 * published by the Free Software Foundation.
23 * Anytun is distributed in the hope that it will be useful,
24 * but WITHOUT ANY WARRANTY; without even the implied warranty of
25 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
26 * GNU General Public License for more details.
28 * You should have received a copy of the GNU General Public License
29 * along with anytun. If not, see <http://www.gnu.org/licenses/>.
43 // TODO: in should be const but does not work with getBuf() :(
44 void Cipher::encrypt(PlainPacket
& in
, EncryptedPacket
& out
, seq_nr_t seq_nr
, sender_id_t sender_id
, mux_t mux
)
46 u_int32_t len
= cipher(in
, in
.getLength(), out
.getPayload(), out
.getPayloadLength(), seq_nr
, sender_id
, mux
);
47 out
.setSenderId(sender_id
);
50 out
.setPayloadLength(len
);
53 // TODO: in should be const but does not work with getBuf() :(
54 void Cipher::decrypt(EncryptedPacket
& in
, PlainPacket
& out
)
56 u_int32_t len
= decipher(in
.getPayload() , in
.getPayloadLength(), out
, out
.getLength(), in
.getSeqNr(), in
.getSenderId(), in
.getMux());
61 //******* NullCipher *******
63 u_int32_t
NullCipher::cipher(u_int8_t
* in
, u_int32_t ilen
, u_int8_t
* out
, u_int32_t olen
, seq_nr_t seq_nr
, sender_id_t sender_id
, mux_t mux
)
65 std::memcpy(out
, in
, (ilen
< olen
) ? ilen
: olen
);
66 return (ilen
< olen
) ? ilen
: olen
;
69 u_int32_t
NullCipher::decipher(u_int8_t
* in
, u_int32_t ilen
, u_int8_t
* out
, u_int32_t olen
, seq_nr_t seq_nr
, sender_id_t sender_id
, mux_t mux
)
71 std::memcpy(out
, in
, (ilen
< olen
) ? ilen
: olen
);
72 return (ilen
< olen
) ? ilen
: olen
;
76 //****** AesIcmCipher ******
78 AesIcmCipher::AesIcmCipher() : cipher_(NULL
)
80 // TODO: hardcoded keysize
81 gcry_error_t err
= gcry_cipher_open( &cipher_
, GCRY_CIPHER_AES128
, GCRY_CIPHER_MODE_CTR
, 0 );
83 char buf
[STERROR_TEXT_MAX
];
85 cLog
.msg(Log::PRIO_CRIT
) << "AesIcmCipher::AesIcmCipher: Failed to open cipher" << gpg_strerror_r(err
, buf
, STERROR_TEXT_MAX
);
90 AesIcmCipher::~AesIcmCipher()
93 gcry_cipher_close( cipher_
);
96 void AesIcmCipher::setKey(Buffer
& key
)
101 gcry_error_t err
= gcry_cipher_setkey( cipher_
, key
.getBuf(), key
.getLength() );
103 char buf
[STERROR_TEXT_MAX
];
105 cLog
.msg(Log::PRIO_ERR
) << "AesIcmCipher::setKey: Failed to set cipher key: " << gpg_strerror_r(err
, buf
, STERROR_TEXT_MAX
);
109 void AesIcmCipher::setSalt(Buffer
& salt
)
112 if(!salt_
[u_int32_t(0)])
113 salt_
[u_int32_t(0)] = 1; // TODO: this is a outstandingly ugly workaround
116 u_int32_t
AesIcmCipher::cipher(u_int8_t
* in
, u_int32_t ilen
, u_int8_t
* out
, u_int32_t olen
, seq_nr_t seq_nr
, sender_id_t sender_id
, mux_t mux
)
118 calc(in
, ilen
, out
, olen
, seq_nr
, sender_id
, mux
);
119 return (ilen
< olen
) ? ilen
: olen
;
122 u_int32_t
AesIcmCipher::decipher(u_int8_t
* in
, u_int32_t ilen
, u_int8_t
* out
, u_int32_t olen
, seq_nr_t seq_nr
, sender_id_t sender_id
, mux_t mux
)
124 calc(in
, ilen
, out
, olen
, seq_nr
, sender_id
, mux
);
125 return (ilen
< olen
) ? ilen
: olen
;
128 void AesIcmCipher::calc(u_int8_t
* in
, u_int32_t ilen
, u_int8_t
* out
, u_int32_t olen
, seq_nr_t seq_nr
, sender_id_t sender_id
, mux_t mux
)
133 gcry_error_t err
= gcry_cipher_reset( cipher_
);
135 char buf
[STERROR_TEXT_MAX
];
137 cLog
.msg(Log::PRIO_ERR
) << "AesIcmCipher: Failed to reset cipher: " << gpg_strerror_r(err
, buf
, STERROR_TEXT_MAX
);
141 // set the IV ( = CTR)
142 //==========================================================================
143 // // where the 128-bit integer value IV SHALL be defined by the SSRC, the
144 // // SRTP packet index i, and the SRTP session salting key k_s, as below.
146 // // IV = (k_s * 2^16) XOR (SSRC * 2^64) XOR (i * 2^16)
147 // // sizeof(k_s) = 112 bit, random
149 Mpi
ctr(128); // TODO: hardcoded size
150 Mpi
salt(salt_
.getBuf(), salt_
.getLength());
155 sid_mux
= sid_mux
^ mux_mpi
.mul2exp(16);
159 ctr
= salt
.mul2exp(16) ^ sid_mux
.mul2exp(64) ^ seq
.mul2exp(16); // TODO: hardcoded size
162 u_int8_t
*ctr_buf
= ctr
.getNewBuf(&written
); // TODO: hardcoded size
163 err
= gcry_cipher_setctr( cipher_
, ctr_buf
, written
); // TODO: hardcoded size
166 char buf
[STERROR_TEXT_MAX
];
168 cLog
.msg(Log::PRIO_ERR
) << "AesIcmCipher: Failed to set cipher CTR: " << gpg_strerror_r(err
, buf
, STERROR_TEXT_MAX
);
172 err
= gcry_cipher_encrypt( cipher_
, out
, olen
, in
, ilen
);
174 char buf
[STERROR_TEXT_MAX
];
176 cLog
.msg(Log::PRIO_ERR
) << "AesIcmCipher: Failed to generate cipher bitstream: " << gpg_strerror_r(err
, buf
, STERROR_TEXT_MAX
);