nasl_crypt_helper.c File Reference
#include "../misc//support.h"#include "nasl_crypto_helper.h"#include "nasl_debug.h"#include <assert.h>#include <ctype.h>#include <gcrypt.h>#include <glib.h>#include <gpg-error.h>#include <gvm/base/logging.h>#include <stddef.h>#include <stdlib.h>
Include dependency graph for nasl_crypt_helper.c:
Go to the source code of this file.
Functions | |
| void * | hmac_md5_for_prf (const void *key, int keylen, const void *buf, int buflen) |
| void * | hmac_sha1 (const void *key, int keylen, const void *buf, int buflen) |
| void * | hmac_sha256 (const void *key, int keylen, const void *buf, int buflen) |
| void * | hmac_sha384 (const void *key, int keylen, const void *buf, int buflen) |
| gpg_err_code_t | mac (const char *key, const size_t key_len, const char *data, const size_t data_len, const char *iv, const size_t iv_len, int algo, int flags, char **out, size_t *out_len) |
| static gcry_error_t | smb_sign (const int algo, const char *key, const size_t key_len, char *buf, const size_t buf_len, const char *iv, const size_t iv_len, char **out) |
| tree_cell * | nasl_smb_sign (const int algo, lex_ctxt *lexic) |
Function Documentation
◆ hmac_md5_for_prf()
| void * hmac_md5_for_prf | ( | const void * | key, |
| int | keylen, | ||
| const void * | buf, | ||
| int | buflen ) |
Definition at line 20 of file nasl_crypt_helper.c.
21{
22 void *signature = g_malloc0 (16);
23 gsize signlen = 16;
24 GHmac *hmac;
25
26 hmac = g_hmac_new (G_CHECKSUM_MD5, key, keylen);
27 g_hmac_update (hmac, buf, buflen);
28 g_hmac_get_digest (hmac, signature, &signlen);
29 g_hmac_unref (hmac);
30 return signature;
31}
Referenced by tls_prf().
Here is the caller graph for this function:
◆ hmac_sha1()
| void * hmac_sha1 | ( | const void * | key, |
| int | keylen, | ||
| const void * | buf, | ||
| int | buflen ) |
Definition at line 34 of file nasl_crypt_helper.c.
35{
36 void *signature = g_malloc0 (20);
37 gsize signlen = 20;
38 GHmac *hmac;
39
40 hmac = g_hmac_new (G_CHECKSUM_SHA1, key, keylen);
41 g_hmac_update (hmac, buf, buflen);
42 g_hmac_get_digest (hmac, signature, &signlen);
43 g_hmac_unref (hmac);
44 return signature;
45}
Referenced by tls_prf().
Here is the caller graph for this function:
◆ hmac_sha256()
| void * hmac_sha256 | ( | const void * | key, |
| int | keylen, | ||
| const void * | buf, | ||
| int | buflen ) |
Definition at line 48 of file nasl_crypt_helper.c.
49{
50 void *signature = g_malloc0 (32);
51 gsize signlen = 32;
52 GHmac *hmac;
53
54 hmac = g_hmac_new (G_CHECKSUM_SHA256, key, keylen);
55 g_hmac_update (hmac, buf, buflen);
56 g_hmac_get_digest (hmac, signature, &signlen);
57 g_hmac_unref (hmac);
58 return signature;
59}
Referenced by nasl_hmac_sha256(), smb_sign(), and tls_prf().
Here is the caller graph for this function:
◆ hmac_sha384()
| void * hmac_sha384 | ( | const void * | key, |
| int | keylen, | ||
| const void * | buf, | ||
| int | buflen ) |
Definition at line 62 of file nasl_crypt_helper.c.
63{
64 gcry_md_hd_t hd;
65 gcry_error_t err;
66 void *ret;
67
68 if (!buf || buflen <= 0)
69 return NULL;
70
71 err = gcry_md_open (&hd, GCRY_MD_SHA384, key ? GCRY_MD_FLAG_HMAC : 0);
72 if (err)
73 {
74 g_message ("nasl_gcrypt_hash(): gcry_md_open failed: %s/%s",
75 gcry_strsource (err), gcry_strerror (err));
76 return NULL;
77 }
78
79 if (key)
80 {
81 err = gcry_md_setkey (hd, key, keylen);
82 if (err)
83 {
84 g_message ("nasl_gcrypt_hash(): gcry_md_setkey failed: %s/%s",
85 gcry_strsource (err), gcry_strerror (err));
86 return NULL;
87 }
88 }
89
90 gcry_md_write (hd, buf, buflen);
91 ret = g_memdup2 (gcry_md_read (hd, 0), 48);
92 gcry_md_close (hd);
93 return ret;
94}
Referenced by tls_prf().
Here is the caller graph for this function:
◆ mac()
| gpg_err_code_t mac | ( | const char * | key, |
| const size_t | key_len, | ||
| const char * | data, | ||
| const size_t | data_len, | ||
| const char * | iv, | ||
| const size_t | iv_len, | ||
| int | algo, | ||
| int | flags, | ||
| char ** | out, | ||
| size_t * | out_len ) |
Definition at line 97 of file nasl_crypt_helper.c.
100{
101 // guardian
102 gpg_err_code_t result = 0;
103 gcry_mac_hd_t hd;
104 if (key == NULL || key_len < 1)
105 return GPG_ERR_MISSING_KEY;
106 if (data == NULL || data_len < 1)
107 return GPG_ERR_MISSING_VALUE;
108 if (out == NULL)
109 {
110 return GPG_ERR_GENERAL;
111 }
112 if ((result = gcry_mac_open (&hd, algo, flags, NULL)))
113 return result;
114 if ((result = gcry_mac_setkey (hd, key, key_len)))
115 goto cexit;
116 if (iv && (result = gcry_mac_setiv (hd, iv, iv_len)))
117 goto cexit;
118 if ((result = gcry_mac_write (hd, data, data_len)))
119 goto cexit;
120
121 *out_len = gcry_mac_get_algo_maclen (algo);
122 if ((*out = g_malloc0 (*out_len * sizeof (*out))) == NULL)
123 {
124 result = GPG_ERR_ENOMEM;
125 goto cexit;
126 }
127 if ((result = gcry_mac_read (hd, *out, out_len)))
128 goto cexit;
129
130cexit:
131 gcry_mac_close (hd);
132 return result;
133}
Referenced by get_local_mac_address_from_ip(), nasl_get_local_mac_address_from_ip(), nasl_mac(), nasl_send_arp_request(), smb_sign(), and socket_get_ssl_ciphersuite().
Here is the caller graph for this function:
◆ nasl_smb_sign()
Definition at line 179 of file nasl_crypt_helper.c.
180{
181 char *key, *buf, *iv, *res;
182 size_t keylen, buflen, ivlen;
183 gcry_error_t error;
184 tree_cell *retc = NULL;
185
192
194 {
195 case GPG_ERR_NO_ERROR:
198 retc->size = buflen;
199 break;
200 case GPG_ERR_MISSING_KEY:
201 case GPG_ERR_MISSING_VALUE:
203 break;
204 default:
206 }
207
208 return retc;
209}
static gcry_error_t smb_sign(const int algo, const char *key, const size_t key_len, char *buf, const size_t buf_len, const char *iv, const size_t iv_len, char **out)
Definition nasl_crypt_helper.c:136
long int get_var_size_by_name(lex_ctxt *, const char *)
Definition nasl_var.c:1138
struct TC tree_cell
union TC::@332262321161220155002104006201360276211317150140 x
References alloc_typed_cell(), CONST_DATA, get_str_var_by_name(), get_var_size_by_name(), nasl_perror(), TC::size, smb_sign(), TC::str_val, and TC::x.
Referenced by nasl_get_smb2_sign(), nasl_smb_cmac_aes_sign(), and nasl_smb_gmac_aes_sign().
Here is the call graph for this function:
Here is the caller graph for this function:
◆ smb_sign()
|
static |
Definition at line 136 of file nasl_crypt_helper.c.
138{
139 gcry_error_t error = GPG_ERR_NO_ERROR;
140 char *signature = NULL;
141 size_t signature_len;
142 if (buf == NULL || buf_len < 64)
143 {
144 return GPG_ERR_NO_VALUE;
145 }
146 if (key == NULL || key_len < 16)
147 return GPG_ERR_NO_KEY;
148 memset ((char *) buf + 48, 0, 16);
149 switch (algo)
150 {
151 case GCRY_MAC_GMAC_AES:
153 GCRY_MAC_FLAG_SECURE, &signature, &signature_len)))
154 goto exit;
155 break;
156 case GCRY_MAC_CMAC_AES:
158 GCRY_MAC_FLAG_SECURE, &signature, &signature_len)))
159 goto exit;
160 break;
161 case G_CHECKSUM_SHA256:
162 signature = hmac_sha256 (key, key_len, buf, buf_len);
163 break;
164 default:
165 // not defined;
166 error = GPG_ERR_UNKNOWN_ALGORITHM;
167 goto exit;
168 }
169 // TODO is 16 hard coded or should it be signature_len?
170 *out = g_malloc0 (buf_len);
171 memcpy (*out, buf, buf_len);
172 memcpy (*out + 48, signature, 16);
173 free (signature);
174exit:
175 return error;
176}
gpg_err_code_t mac(const char *key, const size_t key_len, const char *data, const size_t data_len, const char *iv, const size_t iv_len, int algo, int flags, char **out, size_t *out_len)
Definition nasl_crypt_helper.c:97
void * hmac_sha256(const void *key, int keylen, const void *buf, int buflen)
Definition nasl_crypt_helper.c:48
void free(void *)
References free(), hmac_sha256(), and mac().
Referenced by nasl_smb_sign().
Here is the call graph for this function:
Here is the caller graph for this function:
