added CBC encryption mode (configure --enable-cbc)

2025-12-17 12:00:56 +01:00 · 2014-01-28 12:20:30 +01:00
parent ad009a8142
commit 5ae1d07067
9 changed files with 166 additions and 65 deletions
--- a/include/pcp/config.h.in
+++ b/include/pcp/config.h.in
@@ -176,6 +176,9 @@
 /* Define to the version of this package. */
 #undef PACKAGE_VERSION

+/* Define if you want to enable CBC mode */
+#undef PCP_CBC
+
 /* Define to 1 if you have the ANSI C header files. */
 #undef STDC_HEADERS

--- a/include/pcp/defines.h
+++ b/include/pcp/defines.h
@@ -23,6 +23,8 @@
 #ifndef _DEFINES_H
 #define _DEFINES_H

+#include "config.h"
+
 typedef unsigned char   byte;           //  Single unsigned byte = 8 bits
 typedef unsigned short  dbyte;          //  Double byte = 16 bits
 typedef unsigned int    qbyte;          //  Quad byte = 32 bits
@@ -54,9 +56,6 @@ typedef unsigned int    qbyte;          //  Quad byte = 32 bits
 #define PCP_KEY_TYPE_SECRET     2
 #define PCP_KEY_TYPE_PUBLIC     3

-// how many times do we hash a passphrase
-#define HCYCLES 128000
-
 // save typing, dammit
 #define PCP_ENCRYPT_PAD crypto_secretbox_ZEROBYTES + crypto_secretbox_NONCEBYTES

@@ -68,11 +67,21 @@ typedef unsigned int    qbyte;          //  Quad byte = 32 bits
 #define PCP_SIG_VERSION 2

 // crypto file format stuff
-#define PCP_ASYM_CIPHER         5
-#define PCP_SYM_CIPHER          23
-#define PCP_BLOCK_SIZE          32 * 1024
-#define PCP_BLOCK_SIZE_IN       (PCP_BLOCK_SIZE) + 16 + crypto_secretbox_NONCEBYTES
+// enabled via config.h (configure --enable-cbc)
+#ifndef PCP_CBC
+#error cbc not enabled
+  #define PCP_ASYM_CIPHER         5
+  #define PCP_SYM_CIPHER          23
+  #define PCP_BLOCK_SIZE          32 * 1024
+#else
+// CBC mode, use smaller blocks
+  #define PCP_ASYM_CIPHER         7
+  #define PCP_SYM_CIPHER          25
+  #define PCP_BLOCK_SIZE          1 * 1024
+#endif
+
 #define PCP_CRYPTO_ADD          (crypto_box_ZEROBYTES - crypto_box_BOXZEROBYTES)
+#define PCP_BLOCK_SIZE_IN       (PCP_BLOCK_SIZE) + PCP_CRYPTO_ADD + crypto_secretbox_NONCEBYTES
 #define PCP_ASYM_RECIPIENT_SIZE crypto_secretbox_KEYBYTES + PCP_CRYPTO_ADD +  crypto_secretbox_NONCEBYTES
 //#define PCP_ASYM_ADD_SENDER_PUB

--- a/include/pcp/util.h
+++ b/include/pcp/util.h
@@ -20,7 +20,7 @@
 */


-// various helpers
+// various helpers, too small to put into own c

 #ifndef _HAVE_PCP_UTIL_H
 #define _HAVE_PCP_UTIL_H
@@ -58,4 +58,11 @@ static inline size_t _findoffset(unsigned char *bin, size_t binlen, char *sigsta
  return offset;
 }

+static inline void _xorbuf(unsigned char *iv, unsigned char *buf, size_t xlen) {
+  size_t i;
+  for (i = 0; i < xlen; ++i)
+   buf[i] = iv[i] ^ buf[i];
+}
+
+
 #endif // _HAVE_PCP_UTIL_H