mirror of
https://github.com/rsyslog/rsyslog.git
synced 2025-12-17 16:20:43 +01:00
766 lines
19 KiB
C
766 lines
19 KiB
C
/* gcry.c - rsyslog's libgcrypt based crypto provider
|
|
*
|
|
* Copyright 2013-2018 Adiscon GmbH.
|
|
*
|
|
* We need to store some additional information in support of encryption.
|
|
* For this, we create a side-file, which is named like the actual log
|
|
* file, but with the suffix ".encinfo" appended. It contains the following
|
|
* records:
|
|
* IV:<hex> The initial vector used at block start. Also indicates start
|
|
* start of block.
|
|
* END:<int> The end offset of the block, as uint64_t in decimal notation.
|
|
* This is used during encryption to know when the current
|
|
* encryption block ends.
|
|
* For the current implementation, there must always be an IV record
|
|
* followed by an END record. Each records is LF-terminated. Record
|
|
* types can simply be extended in the future by specifying new
|
|
* types (like "IV") before the colon.
|
|
* To identify a file as rsyslog encryption info file, it must start with
|
|
* the line "FILETYPE:rsyslog-enrcyption-info"
|
|
* There are some size constraints: the recordtype must be 31 bytes at
|
|
* most and the actual value (between : and LF) must be 1023 bytes at most.
|
|
*
|
|
* This file is part of rsyslog.
|
|
*
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
* -or-
|
|
* see COPYING.ASL20 in the source distribution
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
#if HAVE_CONFIG_H
|
|
#include "config.h"
|
|
#endif
|
|
#include <stdio.h>
|
|
#include <gcrypt.h>
|
|
#include <sys/stat.h>
|
|
#include <sys/uio.h>
|
|
#include <sys/types.h>
|
|
#include <unistd.h>
|
|
#include <fcntl.h>
|
|
#include <errno.h>
|
|
|
|
#include "rsyslog.h"
|
|
#include "srUtils.h"
|
|
#include "debug.h"
|
|
#include "libgcry.h"
|
|
|
|
#define READBUF_SIZE 4096 /* size of the read buffer */
|
|
|
|
static rsRetVal rsgcryBlkBegin(gcryfile gf);
|
|
|
|
int
|
|
rsgcryAlgoname2Algo(char *const __restrict__ algoname)
|
|
{
|
|
if(!strcmp((char*)algoname, "3DES")) return GCRY_CIPHER_3DES;
|
|
if(!strcmp((char*)algoname, "CAST5")) return GCRY_CIPHER_CAST5;
|
|
if(!strcmp((char*)algoname, "BLOWFISH")) return GCRY_CIPHER_BLOWFISH;
|
|
if(!strcmp((char*)algoname, "AES128")) return GCRY_CIPHER_AES128;
|
|
if(!strcmp((char*)algoname, "AES192")) return GCRY_CIPHER_AES192;
|
|
if(!strcmp((char*)algoname, "AES256")) return GCRY_CIPHER_AES256;
|
|
if(!strcmp((char*)algoname, "TWOFISH")) return GCRY_CIPHER_TWOFISH;
|
|
if(!strcmp((char*)algoname, "TWOFISH128")) return GCRY_CIPHER_TWOFISH128;
|
|
if(!strcmp((char*)algoname, "ARCFOUR")) return GCRY_CIPHER_ARCFOUR;
|
|
if(!strcmp((char*)algoname, "DES")) return GCRY_CIPHER_DES;
|
|
if(!strcmp((char*)algoname, "SERPENT128")) return GCRY_CIPHER_SERPENT128;
|
|
if(!strcmp((char*)algoname, "SERPENT192")) return GCRY_CIPHER_SERPENT192;
|
|
if(!strcmp((char*)algoname, "SERPENT256")) return GCRY_CIPHER_SERPENT256;
|
|
if(!strcmp((char*)algoname, "RFC2268_40")) return GCRY_CIPHER_RFC2268_40;
|
|
if(!strcmp((char*)algoname, "SEED")) return GCRY_CIPHER_SEED;
|
|
if(!strcmp((char*)algoname, "CAMELLIA128")) return GCRY_CIPHER_CAMELLIA128;
|
|
if(!strcmp((char*)algoname, "CAMELLIA192")) return GCRY_CIPHER_CAMELLIA192;
|
|
if(!strcmp((char*)algoname, "CAMELLIA256")) return GCRY_CIPHER_CAMELLIA256;
|
|
return GCRY_CIPHER_NONE;
|
|
}
|
|
|
|
int
|
|
rsgcryModename2Mode(char *const __restrict__ modename)
|
|
{
|
|
if(!strcmp((char*)modename, "ECB")) return GCRY_CIPHER_MODE_ECB;
|
|
if(!strcmp((char*)modename, "CFB")) return GCRY_CIPHER_MODE_CFB;
|
|
if(!strcmp((char*)modename, "CBC")) return GCRY_CIPHER_MODE_CBC;
|
|
if(!strcmp((char*)modename, "STREAM")) return GCRY_CIPHER_MODE_STREAM;
|
|
if(!strcmp((char*)modename, "OFB")) return GCRY_CIPHER_MODE_OFB;
|
|
if(!strcmp((char*)modename, "CTR")) return GCRY_CIPHER_MODE_CTR;
|
|
# ifdef GCRY_CIPHER_MODE_AESWRAP
|
|
if(!strcmp((char*)modename, "AESWRAP")) return GCRY_CIPHER_MODE_AESWRAP;
|
|
# endif
|
|
return GCRY_CIPHER_MODE_NONE;
|
|
}
|
|
static rsRetVal
|
|
eiWriteRec(gcryfile gf, const char *recHdr, size_t lenRecHdr, const char *buf, size_t lenBuf)
|
|
{
|
|
struct iovec iov[3];
|
|
ssize_t nwritten, towrite;
|
|
DEFiRet;
|
|
|
|
iov[0].iov_base = (void*)recHdr;
|
|
iov[0].iov_len = lenRecHdr;
|
|
iov[1].iov_base = (void*)buf;
|
|
iov[1].iov_len = lenBuf;
|
|
iov[2].iov_base = (void*)"\n";
|
|
iov[2].iov_len = 1;
|
|
towrite = iov[0].iov_len + iov[1].iov_len + iov[2].iov_len;
|
|
nwritten = writev(gf->fd, iov, sizeof(iov)/sizeof(struct iovec));
|
|
if(nwritten != towrite) {
|
|
DBGPRINTF("eiWrite%s: error writing file, towrite %d, "
|
|
"nwritten %d\n", recHdr, (int) towrite, (int) nwritten);
|
|
ABORT_FINALIZE(RS_RET_EI_WR_ERR);
|
|
}
|
|
DBGPRINTF("encryption info file %s: written %s, len %d\n",
|
|
recHdr, gf->eiName, (int) nwritten);
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
eiOpenRead(gcryfile gf)
|
|
{
|
|
DEFiRet;
|
|
gf->fd = open((char*)gf->eiName, O_RDONLY|O_NOCTTY|O_CLOEXEC);
|
|
if(gf->fd == -1) {
|
|
ABORT_FINALIZE(errno == ENOENT ? RS_RET_EI_NO_EXISTS : RS_RET_EI_OPN_ERR);
|
|
}
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
eiRead(gcryfile gf)
|
|
{
|
|
ssize_t nRead;
|
|
DEFiRet;
|
|
|
|
if(gf->readBuf == NULL) {
|
|
CHKmalloc(gf->readBuf = malloc(READBUF_SIZE));
|
|
}
|
|
|
|
nRead = read(gf->fd, gf->readBuf, READBUF_SIZE);
|
|
if(nRead <= 0) { /* TODO: provide specific EOF case? */
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
gf->readBufMaxIdx = (int16_t) nRead;
|
|
gf->readBufIdx = 0;
|
|
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
|
|
/* returns EOF on any kind of error */
|
|
static int
|
|
eiReadChar(gcryfile gf)
|
|
{
|
|
int c;
|
|
|
|
if(gf->readBufIdx >= gf->readBufMaxIdx) {
|
|
if(eiRead(gf) != RS_RET_OK) {
|
|
c = EOF;
|
|
goto finalize_it;
|
|
}
|
|
}
|
|
c = gf->readBuf[gf->readBufIdx++];
|
|
finalize_it:
|
|
return c;
|
|
}
|
|
|
|
|
|
static rsRetVal
|
|
eiCheckFiletype(gcryfile gf)
|
|
{
|
|
char hdrBuf[128];
|
|
size_t toRead, didRead;
|
|
sbool bNeedClose = 0;
|
|
DEFiRet;
|
|
|
|
if(gf->fd == -1) {
|
|
CHKiRet(eiOpenRead(gf));
|
|
assert(gf->fd != -1); /* cannot happen after successful return */
|
|
bNeedClose = 1;
|
|
}
|
|
|
|
if(Debug) memset(hdrBuf, 0, sizeof(hdrBuf)); /* for dbgprintf below! */
|
|
toRead = sizeof("FILETYPE:")-1 + sizeof(RSGCRY_FILETYPE_NAME)-1 + 1;
|
|
didRead = read(gf->fd, hdrBuf, toRead);
|
|
if(bNeedClose) {
|
|
close(gf->fd);
|
|
gf->fd = -1;
|
|
}
|
|
DBGPRINTF("eiCheckFiletype read %zd bytes: '%s'\n", didRead, hdrBuf);
|
|
if( didRead != toRead
|
|
|| strncmp(hdrBuf, "FILETYPE:" RSGCRY_FILETYPE_NAME "\n", toRead))
|
|
iRet = RS_RET_EI_INVLD_FILE;
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
/* rectype/value must be EIF_MAX_*_LEN+1 long!
|
|
* returns 0 on success or something else on error/EOF
|
|
*/
|
|
static rsRetVal
|
|
eiGetRecord(gcryfile gf, char *rectype, char *value)
|
|
{
|
|
unsigned short i, j;
|
|
int c;
|
|
DEFiRet;
|
|
|
|
c = eiReadChar(gf);
|
|
if(c == EOF) { ABORT_FINALIZE(RS_RET_NO_DATA); }
|
|
for(i = 0 ; i < EIF_MAX_RECTYPE_LEN ; ++i) {
|
|
if(c == ':' || c == EOF)
|
|
break;
|
|
rectype[i] = c;
|
|
c = eiReadChar(gf);
|
|
}
|
|
if(c != ':') { ABORT_FINALIZE(RS_RET_ERR); }
|
|
rectype[i] = '\0';
|
|
j = 0;
|
|
for(++i ; i < EIF_MAX_VALUE_LEN ; ++i, ++j) {
|
|
c = eiReadChar(gf);
|
|
if(c == '\n' || c == EOF)
|
|
break;
|
|
value[j] = c;
|
|
}
|
|
if(c != '\n') { ABORT_FINALIZE(RS_RET_ERR); }
|
|
value[j] = '\0';
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
eiGetIV(gcryfile gf, uchar *iv, size_t leniv)
|
|
{
|
|
char rectype[EIF_MAX_RECTYPE_LEN+1];
|
|
char value[EIF_MAX_VALUE_LEN+1];
|
|
size_t valueLen;
|
|
unsigned short i, j;
|
|
unsigned char nibble;
|
|
DEFiRet;
|
|
|
|
CHKiRet(eiGetRecord(gf, rectype, value));
|
|
const char *const cmp_IV = "IV"; // work-around for static analyzer
|
|
if(strcmp(rectype, cmp_IV)) {
|
|
DBGPRINTF("no IV record found when expected, record type "
|
|
"seen is '%s'\n", rectype);
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
valueLen = strlen(value);
|
|
if(valueLen/2 != leniv) {
|
|
DBGPRINTF("length of IV is %zd, expected %zd\n",
|
|
valueLen/2, leniv);
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
|
|
for(i = j = 0 ; i < valueLen ; ++i) {
|
|
if(value[i] >= '0' && value[i] <= '9')
|
|
nibble = value[i] - '0';
|
|
else if(value[i] >= 'a' && value[i] <= 'f')
|
|
nibble = value[i] - 'a' + 10;
|
|
else {
|
|
DBGPRINTF("invalid IV '%s'\n", value);
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
if(i % 2 == 0)
|
|
iv[j] = nibble << 4;
|
|
else
|
|
iv[j++] |= nibble;
|
|
}
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
eiGetEND(gcryfile gf, off64_t *offs)
|
|
{
|
|
char rectype[EIF_MAX_RECTYPE_LEN+1];
|
|
char value[EIF_MAX_VALUE_LEN+1];
|
|
DEFiRet;
|
|
|
|
CHKiRet(eiGetRecord(gf, rectype, value));
|
|
const char *const const_END = "END"; // clang static analyzer work-around
|
|
if(strcmp(rectype, const_END)) {
|
|
DBGPRINTF("no END record found when expected, record type "
|
|
"seen is '%s'\n", rectype);
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
*offs = atoll(value);
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
eiOpenAppend(gcryfile gf)
|
|
{
|
|
rsRetVal localRet;
|
|
DEFiRet;
|
|
localRet = eiCheckFiletype(gf);
|
|
if(localRet == RS_RET_OK) {
|
|
gf->fd = open((char*)gf->eiName,
|
|
O_WRONLY|O_APPEND|O_NOCTTY|O_CLOEXEC, 0600);
|
|
if(gf->fd == -1) {
|
|
ABORT_FINALIZE(RS_RET_EI_OPN_ERR);
|
|
}
|
|
} else if(localRet == RS_RET_EI_NO_EXISTS) {
|
|
/* looks like we need to create a new file */
|
|
gf->fd = open((char*)gf->eiName,
|
|
O_WRONLY|O_CREAT|O_NOCTTY|O_CLOEXEC, 0600);
|
|
if(gf->fd == -1) {
|
|
ABORT_FINALIZE(RS_RET_EI_OPN_ERR);
|
|
}
|
|
CHKiRet(eiWriteRec(gf, "FILETYPE:", 9, RSGCRY_FILETYPE_NAME,
|
|
sizeof(RSGCRY_FILETYPE_NAME)-1));
|
|
} else {
|
|
gf->fd = -1;
|
|
ABORT_FINALIZE(localRet);
|
|
}
|
|
DBGPRINTF("encryption info file %s: opened as #%d\n",
|
|
gf->eiName, gf->fd);
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal __attribute__((nonnull(2)))
|
|
eiWriteIV(gcryfile gf, const uchar *const iv)
|
|
{
|
|
static const char hexchars[16] =
|
|
{'0','1','2','3','4','5','6','7','8','9','a','b','c','d','e','f'};
|
|
unsigned iSrc, iDst;
|
|
char hex[4096];
|
|
DEFiRet;
|
|
|
|
if(gf->blkLength > sizeof(hex)/2) {
|
|
DBGPRINTF("eiWriteIV: crypto block len way too large, aborting "
|
|
"write");
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
|
|
for(iSrc = iDst = 0 ; iSrc < gf->blkLength ; ++iSrc) {
|
|
hex[iDst++] = hexchars[iv[iSrc]>>4];
|
|
hex[iDst++] = hexchars[iv[iSrc]&0x0f];
|
|
}
|
|
|
|
iRet = eiWriteRec(gf, "IV:", 3, hex, gf->blkLength*2);
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
/* we do not return an error state, as we MUST close the file,
|
|
* no matter what happens.
|
|
*/
|
|
static void
|
|
eiClose(gcryfile gf, off64_t offsLogfile)
|
|
{
|
|
char offs[21];
|
|
size_t len;
|
|
if(gf->fd == -1)
|
|
return;
|
|
if(gf->openMode == 'w') {
|
|
/* 2^64 is 20 digits, so the snprintf buffer is large enough */
|
|
len = snprintf(offs, sizeof(offs), "%lld", (long long) offsLogfile);
|
|
eiWriteRec(gf, "END:", 4, offs, len);
|
|
}
|
|
gcry_cipher_close(gf->chd);
|
|
free(gf->readBuf);
|
|
close(gf->fd);
|
|
gf->fd = -1;
|
|
DBGPRINTF("encryption info file %s: closed\n", gf->eiName);
|
|
}
|
|
|
|
/* this returns the number of bytes left inside the block or -1, if the block
|
|
* size is unbounded. The function automatically handles end-of-block and begins
|
|
* to read the next block in this case.
|
|
*/
|
|
rsRetVal
|
|
gcryfileGetBytesLeftInBlock(gcryfile gf, ssize_t *left)
|
|
{
|
|
DEFiRet;
|
|
if(gf->bytesToBlkEnd == 0) {
|
|
DBGPRINTF("libgcry: end of current crypto block\n");
|
|
gcry_cipher_close(gf->chd);
|
|
CHKiRet(rsgcryBlkBegin(gf));
|
|
}
|
|
*left = gf->bytesToBlkEnd;
|
|
finalize_it:
|
|
// TODO: remove once this code is sufficiently well-proven
|
|
DBGPRINTF("gcryfileGetBytesLeftInBlock returns %lld, iRet %d\n", (long long) *left, iRet);
|
|
RETiRet;
|
|
}
|
|
|
|
/* this is a special functon for use by the rsyslog disk queue subsystem. It
|
|
* needs to have the capability to delete state when a queue file is rolled
|
|
* over. This simply generates the file name and deletes it. It must take care
|
|
* of "all" state files, which currently happens to be a single one.
|
|
*/
|
|
rsRetVal
|
|
gcryfileDeleteState(uchar *logfn)
|
|
{
|
|
char fn[MAXFNAME+1];
|
|
DEFiRet;
|
|
snprintf(fn, sizeof(fn), "%s%s", logfn, ENCINFO_SUFFIX);
|
|
fn[MAXFNAME] = '\0'; /* be on save side */
|
|
DBGPRINTF("crypto provider deletes state file '%s' on request\n", fn);
|
|
unlink(fn);
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
gcryfileConstruct(gcryctx ctx, gcryfile *pgf, uchar *logfn)
|
|
{
|
|
char fn[MAXFNAME+1];
|
|
gcryfile gf;
|
|
DEFiRet;
|
|
|
|
CHKmalloc(gf = calloc(1, sizeof(struct gcryfile_s)));
|
|
gf->ctx = ctx;
|
|
gf->fd = -1;
|
|
snprintf(fn, sizeof(fn), "%s%s", logfn, ENCINFO_SUFFIX);
|
|
fn[MAXFNAME] = '\0'; /* be on save side */
|
|
gf->eiName = (uchar*) strdup(fn);
|
|
*pgf = gf;
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
|
|
gcryctx
|
|
gcryCtxNew(void)
|
|
{
|
|
gcryctx ctx;
|
|
ctx = calloc(1, sizeof(struct gcryctx_s));
|
|
if(ctx != NULL) {
|
|
ctx->algo = GCRY_CIPHER_AES128;
|
|
ctx->mode = GCRY_CIPHER_MODE_CBC;
|
|
}
|
|
return ctx;
|
|
}
|
|
|
|
int
|
|
gcryfileDestruct(gcryfile gf, off64_t offsLogfile)
|
|
{
|
|
int r = 0;
|
|
if(gf == NULL)
|
|
goto done;
|
|
|
|
DBGPRINTF("libgcry: close file %s\n", gf->eiName);
|
|
eiClose(gf, offsLogfile);
|
|
if(gf->bDeleteOnClose) {
|
|
DBGPRINTF("unlink file '%s' due to bDeleteOnClose set\n", gf->eiName);
|
|
unlink((char*)gf->eiName);
|
|
}
|
|
free(gf->eiName);
|
|
free(gf);
|
|
done: return r;
|
|
}
|
|
void
|
|
rsgcryCtxDel(gcryctx ctx)
|
|
{
|
|
if(ctx != NULL) {
|
|
free(ctx->key);
|
|
free(ctx);
|
|
}
|
|
}
|
|
|
|
static void
|
|
addPadding(gcryfile pF, uchar *buf, size_t *plen)
|
|
{
|
|
unsigned i;
|
|
size_t nPad;
|
|
nPad = (pF->blkLength - *plen % pF->blkLength) % pF->blkLength;
|
|
DBGPRINTF("libgcry: addPadding %zd chars, blkLength %zd, mod %zd, pad %zd\n",
|
|
*plen, pF->blkLength, *plen % pF->blkLength, nPad);
|
|
for(i = 0 ; i < nPad ; ++i)
|
|
buf[(*plen)+i] = 0x00;
|
|
(*plen)+= nPad;
|
|
}
|
|
|
|
static void ATTR_NONNULL()
|
|
removePadding(uchar *const buf, size_t *const plen)
|
|
{
|
|
const size_t len = *plen;
|
|
size_t iSrc, iDst;
|
|
|
|
iSrc = 0;
|
|
/* skip to first NUL */
|
|
while(iSrc < len && buf[iSrc] == '\0') {
|
|
++iSrc;
|
|
}
|
|
iDst = iSrc;
|
|
|
|
while(iSrc < len) {
|
|
if(buf[iSrc] != 0x00)
|
|
buf[iDst++] = buf[iSrc];
|
|
++iSrc;
|
|
}
|
|
|
|
*plen = iDst;
|
|
}
|
|
|
|
/* returns 0 on succes, positive if key length does not match and key
|
|
* of return value size is required.
|
|
*/
|
|
int
|
|
rsgcrySetKey(gcryctx ctx, unsigned char *key, uint16_t keyLen)
|
|
{
|
|
uint16_t reqKeyLen;
|
|
int r;
|
|
|
|
reqKeyLen = gcry_cipher_get_algo_keylen(ctx->algo);
|
|
if(keyLen != reqKeyLen) {
|
|
r = reqKeyLen;
|
|
goto done;
|
|
}
|
|
ctx->keyLen = keyLen;
|
|
ctx->key = malloc(keyLen);
|
|
memcpy(ctx->key, key, keyLen);
|
|
r = 0;
|
|
done: return r;
|
|
}
|
|
|
|
rsRetVal
|
|
rsgcrySetMode(gcryctx ctx, uchar *modename)
|
|
{
|
|
int mode;
|
|
DEFiRet;
|
|
|
|
mode = rsgcryModename2Mode((char *)modename);
|
|
if(mode == GCRY_CIPHER_MODE_NONE) {
|
|
ABORT_FINALIZE(RS_RET_CRY_INVLD_MODE);
|
|
}
|
|
ctx->mode = mode;
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
rsRetVal
|
|
rsgcrySetAlgo(gcryctx ctx, uchar *algoname)
|
|
{
|
|
int algo;
|
|
DEFiRet;
|
|
|
|
algo = rsgcryAlgoname2Algo((char *)algoname);
|
|
if(algo == GCRY_CIPHER_NONE) {
|
|
ABORT_FINALIZE(RS_RET_CRY_INVLD_ALGO);
|
|
}
|
|
ctx->algo = algo;
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
/* We use random numbers to initiate the IV. Rsyslog runtime will ensure
|
|
* we get a sufficiently large number.
|
|
*/
|
|
#if defined(__clang__)
|
|
#pragma GCC diagnostic ignored "-Wunknown-attributes"
|
|
#endif
|
|
static rsRetVal
|
|
#if defined(__clang__)
|
|
__attribute__((no_sanitize("shift"))) /* IV shift causes known overflow */
|
|
#endif
|
|
seedIV(gcryfile gf, uchar **iv)
|
|
{
|
|
long rndnum = 0; /* keep compiler happy -- this value is always overriden */
|
|
DEFiRet;
|
|
|
|
CHKmalloc(*iv = calloc(1, gf->blkLength));
|
|
for(size_t i = 0 ; i < gf->blkLength; ++i) {
|
|
const int shift = (i % 4) * 8;
|
|
if(shift == 0) { /* need new random data? */
|
|
rndnum = randomNumber();
|
|
}
|
|
(*iv)[i] = 0xff & ((rndnum & (0xff << shift)) >> shift);
|
|
}
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
static rsRetVal
|
|
readIV(gcryfile gf, uchar **iv)
|
|
{
|
|
rsRetVal localRet;
|
|
DEFiRet;
|
|
|
|
if(gf->fd == -1) {
|
|
while(gf->fd == -1) {
|
|
localRet = eiOpenRead(gf);
|
|
if(localRet == RS_RET_EI_NO_EXISTS) {
|
|
/* wait until it is created */
|
|
srSleep(0, 10000);
|
|
} else {
|
|
CHKiRet(localRet);
|
|
}
|
|
}
|
|
CHKiRet(eiCheckFiletype(gf));
|
|
}
|
|
*iv = malloc(gf->blkLength); /* do NOT zero-out! */
|
|
iRet = eiGetIV(gf, *iv, (size_t) gf->blkLength);
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
/* this tries to read the END record. HOWEVER, no such record may be
|
|
* present, which is the case if we handle a currently-written to queue
|
|
* file. On the other hand, the queue file may contain multiple blocks. So
|
|
* what we do is try to see if there is a block end or not - and set the
|
|
* status accordingly. Note that once we found no end-of-block, we will never
|
|
* retry. This is because that case can never happen under current queue
|
|
* implementations. -- gerhards, 2013-05-16
|
|
*/
|
|
static rsRetVal
|
|
readBlkEnd(gcryfile gf)
|
|
{
|
|
off64_t blkEnd;
|
|
DEFiRet;
|
|
|
|
iRet = eiGetEND(gf, &blkEnd);
|
|
if(iRet == RS_RET_OK) {
|
|
gf->bytesToBlkEnd = (ssize_t) blkEnd;
|
|
} else if(iRet == RS_RET_NO_DATA) {
|
|
gf->bytesToBlkEnd = -1;
|
|
} else {
|
|
FINALIZE;
|
|
}
|
|
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
|
|
/* Read the block begin metadata and set our state variables accordingly. Can also
|
|
* be used to init the first block in write case.
|
|
*/
|
|
static rsRetVal
|
|
rsgcryBlkBegin(gcryfile gf)
|
|
{
|
|
gcry_error_t gcryError;
|
|
uchar *iv = NULL;
|
|
DEFiRet;
|
|
const char openMode = gf->openMode;
|
|
|
|
gcryError = gcry_cipher_open(&gf->chd, gf->ctx->algo, gf->ctx->mode, 0);
|
|
if (gcryError) {
|
|
DBGPRINTF("gcry_cipher_open failed: %s/%s\n",
|
|
gcry_strsource(gcryError), gcry_strerror(gcryError));
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
|
|
gcryError = gcry_cipher_setkey(gf->chd, gf->ctx->key, gf->ctx->keyLen);
|
|
if (gcryError) {
|
|
DBGPRINTF("gcry_cipher_setkey failed: %s/%s\n",
|
|
gcry_strsource(gcryError), gcry_strerror(gcryError));
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
|
|
if(openMode == 'r') {
|
|
readIV(gf, &iv);
|
|
readBlkEnd(gf);
|
|
} else {
|
|
CHKiRet(seedIV(gf, &iv));
|
|
}
|
|
|
|
gcryError = gcry_cipher_setiv(gf->chd, iv, gf->blkLength);
|
|
if (gcryError) {
|
|
DBGPRINTF("gcry_cipher_setiv failed: %s/%s\n",
|
|
gcry_strsource(gcryError), gcry_strerror(gcryError));
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
|
|
if(openMode == 'w') {
|
|
CHKiRet(eiOpenAppend(gf));
|
|
CHKiRet(eiWriteIV(gf, iv));
|
|
}
|
|
finalize_it:
|
|
free(iv);
|
|
RETiRet;
|
|
}
|
|
|
|
rsRetVal
|
|
rsgcryInitCrypt(gcryctx ctx, gcryfile *pgf, uchar *fname, char openMode)
|
|
{
|
|
gcryfile gf = NULL;
|
|
DEFiRet;
|
|
|
|
CHKiRet(gcryfileConstruct(ctx, &gf, fname));
|
|
gf->openMode = openMode;
|
|
gf->blkLength = gcry_cipher_get_algo_blklen(ctx->algo);
|
|
CHKiRet(rsgcryBlkBegin(gf));
|
|
*pgf = gf;
|
|
finalize_it:
|
|
if(iRet != RS_RET_OK && gf != NULL)
|
|
gcryfileDestruct(gf, -1);
|
|
RETiRet;
|
|
}
|
|
|
|
rsRetVal
|
|
rsgcryEncrypt(gcryfile pF, uchar *buf, size_t *len)
|
|
{
|
|
int gcryError;
|
|
DEFiRet;
|
|
|
|
if(*len == 0)
|
|
FINALIZE;
|
|
|
|
addPadding(pF, buf, len);
|
|
gcryError = gcry_cipher_encrypt(pF->chd, buf, *len, NULL, 0);
|
|
if(gcryError) {
|
|
dbgprintf("gcry_cipher_encrypt failed: %s/%s\n",
|
|
gcry_strsource(gcryError),
|
|
gcry_strerror(gcryError));
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
/* TODO: handle multiple blocks
|
|
* test-read END record; if present, store offset, else unbounded (current active block)
|
|
* when decrypting, check if bound is reached. If yes, split into two blocks, get new IV for
|
|
* second one.
|
|
*/
|
|
rsRetVal
|
|
rsgcryDecrypt(gcryfile pF, uchar *buf, size_t *len)
|
|
{
|
|
gcry_error_t gcryError;
|
|
DEFiRet;
|
|
|
|
if(pF->bytesToBlkEnd != -1)
|
|
pF->bytesToBlkEnd -= *len;
|
|
gcryError = gcry_cipher_decrypt(pF->chd, buf, *len, NULL, 0);
|
|
if(gcryError) {
|
|
DBGPRINTF("gcry_cipher_decrypt failed: %s/%s\n",
|
|
gcry_strsource(gcryError),
|
|
gcry_strerror(gcryError));
|
|
ABORT_FINALIZE(RS_RET_ERR);
|
|
}
|
|
removePadding(buf, len);
|
|
// TODO: remove dbgprintf once things are sufficently stable -- rgerhards, 2013-05-16
|
|
dbgprintf("libgcry: decrypted, bytesToBlkEnd %lld, buffer is now '%50.50s'\n",
|
|
(long long) pF->bytesToBlkEnd, buf);
|
|
|
|
finalize_it:
|
|
RETiRet;
|
|
}
|
|
|
|
|
|
|
|
/* module-init dummy for potential later use */
|
|
int
|
|
rsgcryInit(void)
|
|
{
|
|
return 0;
|
|
}
|
|
|
|
/* module-deinit dummy for potential later use */
|
|
void
|
|
rsgcryExit(void)
|
|
{
|
|
return;
|
|
}
|