fixed crypt+sign, now the sig contains the encrypted recipient list as well and is encrypted itself

2025-12-17 12:00:56 +01:00 · 2014-02-05 13:09:20 +01:00
parent 5707ecbf9c
commit a89b16a15c
5 changed files with 138 additions and 38 deletions
--- a/include/pcp/crypto.h
+++ b/include/pcp/crypto.h
@@ -58,8 +58,11 @@ size_t pcp_encrypt_file(FILE *in, FILE* out, pcp_key_t *s, pcp_pubkey_t *p, int

 size_t pcp_decrypt_file(FILE *in, FILE* out, pcp_key_t *s, unsigned char *symkey, int verify);

-size_t pcp_encrypt_file_sym(FILE *in, FILE* out, unsigned char *symkey, int havehead, pcp_key_t *signkey);
+size_t pcp_encrypt_file_sym(FILE *in, FILE* out, unsigned char *symkey, int havehead, pcp_rec_t *recsign);

-size_t pcp_decrypt_file_sym(FILE *in, FILE* out, unsigned char *symkey, pcp_pubkey_t *verifykey);
+size_t pcp_decrypt_file_sym(FILE *in, FILE* out, unsigned char *symkey, pcp_rec_t *recverify);
+
+pcp_rec_t *pcp_rec_new(unsigned char *cipher, size_t clen, pcp_key_t *secret, pcp_pubkey_t *pub);
+void pcp_rec_free(pcp_rec_t *r);

 #endif // _HAVE_PCP_CRYPTO_H
--- a/include/pcp/defines.h
+++ b/include/pcp/defines.h
@@ -81,7 +81,7 @@ typedef unsigned int    qbyte;          //  Quad byte = 32 bits

 #define PCP_CRYPTO_ADD          (crypto_box_ZEROBYTES - crypto_box_BOXZEROBYTES)
 #define PCP_BLOCK_SIZE_IN       (PCP_BLOCK_SIZE) + PCP_CRYPTO_ADD + crypto_secretbox_NONCEBYTES
-#define PCP_ASYM_RECIPIENT_SIZE crypto_secretbox_KEYBYTES + PCP_CRYPTO_ADD +  crypto_secretbox_NONCEBYTES
+#define PCP_ASYM_RECIPIENT_SIZE crypto_secretbox_KEYBYTES + PCP_CRYPTO_ADD + crypto_secretbox_NONCEBYTES
 //#define PCP_ASYM_ADD_SENDER_PUB

 // used for self encryption only
--- a/include/pcp/key.h
+++ b/include/pcp/key.h
@@ -113,10 +113,25 @@ struct _pbp_pubkey_t {
  char name[1024];
 };

+
 typedef struct _pcp_key_t pcp_key_t;
 typedef struct _pcp_pubkey_t pcp_pubkey_t;
 typedef struct _pbp_pubkey_t pbp_pubkey_t;

+/*
+  encrypted recipient list, required for crypt+sign
+  contains the encrypted recipients and the secret
+  key required for signing the message+recipients.
+*/
+struct _pcp_rec_t {
+  size_t ciphersize;
+  byte *cipher;
+  pcp_key_t *secret;
+  pcp_pubkey_t *pub;
+};
+
+typedef struct _pcp_rec_t pcp_rec_t;
+
 #define PCP_RAW_KEYSIZE    sizeof(pcp_key_t)    - sizeof(UT_hash_handle)
 #define PCP_RAW_PUBKEYSIZE sizeof(pcp_pubkey_t) - sizeof(UT_hash_handle)