openvpn3/tls__crypt_8hpp_source.html

//    OpenVPN -- An application to securely tunnel IP networks

//               over a single port, with support for SSL/TLS-based

//               session authentication and key exchange,

//               packet encryption, packet authentication, and

//               packet compression.

//

//    Copyright (C) 2012- OpenVPN Inc.

//

//    SPDX-License-Identifier: MPL-2.0 OR AGPL-3.0-only WITH openvpn3-openssl-exception

//


// OpenVPN TLS-Crypt classes


#ifndef OPENVPN_CRYPTO_TLSCRYPT_H

#define OPENVPN_CRYPTO_TLSCRYPT_H


#include <string>


#include <openvpn/common/size.hpp>

#include <openvpn/common/exception.hpp>

#include <openvpn/common/rc.hpp>

#include <openvpn/common/memneq.hpp>

#include <openvpn/crypto/static_key.hpp>

#include <openvpn/crypto/cryptoalgs.hpp>

#include <openvpn/crypto/packet_id_control.hpp>

#include <openvpn/ssl/psid.hpp>


namespace openvpn {


// OpenVPN protocol HMAC usage for HMAC/CTR integrity checking and tls-crypt


// Control packet format when tls-crypt is enabled:

// [OP]  [PSID]  [PID]  [HMAC] [...]


template <typename CRYPTO_API>


class TLSCrypt

{

  public:

    OPENVPN_SIMPLE_EXCEPTION(ovpn_tls_crypt_context_digest_size);

    OPENVPN_SIMPLE_EXCEPTION(ovpn_tls_crypt_context_bad_sizing);

    OPENVPN_SIMPLE_EXCEPTION(ovpn_tls_crypt_wrong_mode);


    TLSCrypt()

        : mode(CRYPTO_API::CipherContext::MODE_UNDEF)

    {

    }


    TLSCrypt(SSLLib::Ctx libctx, const CryptoAlgs::Type digest, const StaticKey &key_hmac, const CryptoAlgs::Type cipher, const StaticKey &key_crypt, const int mode)

    {

        init(libctx, digest, key_hmac, cipher, key_crypt, mode);

    }


    bool defined() const

    {

        return ctx_hmac.is_initialized() && ctx_crypt.is_initialized();

    }


    // size of out buffer to pass to hmac


    size_t output_hmac_size() const

    {

        return ctx_hmac.size();

    }


    void init(SSLLib::Ctx libctx, const CryptoAlgs::Type digest, const StaticKey &key_hmac, const CryptoAlgs::Type cipher, const StaticKey &key_crypt, const int mode_arg)

    {

        const CryptoAlgs::Alg &alg_hmac = CryptoAlgs::get(digest);


        // check that key is large enough

        if (key_hmac.size() < alg_hmac.size())

            throw ovpn_tls_crypt_context_digest_size();


        // initialize HMAC context with digest type and key

        ctx_hmac.init(digest, key_hmac.data(), alg_hmac.size());


        // initialize Cipher context with cipher, key and mode

        ctx_crypt.init(libctx, cipher, key_crypt.data(), mode_arg);


        mode = mode_arg;

    }


    bool hmac_gen(unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)

    {

        hmac_pre(header, header_len, payload, payload_len);

        ctx_hmac.final(header + header_len);


        return true;

    }


    bool hmac_cmp(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)

    {

        unsigned char local_hmac[CRYPTO_API::HMACContext::MAX_HMAC_SIZE];


        hmac_pre(header, header_len, payload, payload_len);

        ctx_hmac.final(local_hmac);


        return !crypto::memneq(header + header_len, local_hmac, output_hmac_size());

    }


    size_t encrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)

    {

        if (mode != CRYPTO_API::CipherContext::ENCRYPT)

            throw ovpn_tls_crypt_wrong_mode();


        return encrypt_decrypt(iv, out, olen, in, ilen);

    }


    size_t decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)

    {

        if (mode != CRYPTO_API::CipherContext::DECRYPT)

            throw ovpn_tls_crypt_wrong_mode();


        return encrypt_decrypt(iv, out, olen, in, ilen);

    }


  private:

    // assume length check on header has already been performed


    void hmac_pre(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)

    {

        ctx_hmac.reset();

        ctx_hmac.update(header, header_len);

        ctx_hmac.update(payload, payload_len);

    }


    size_t encrypt_decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)

    {

        ctx_crypt.reset(iv);


        size_t outlen = 0;


        if (!ctx_crypt.update(out, olen, in, ilen, outlen))

            return 0;


        if (!ctx_crypt.final(out + outlen, olen - outlen, outlen))

            return 0;


        return outlen;

    }


    typename CRYPTO_API::HMACContext ctx_hmac;

    typename CRYPTO_API::CipherContext ctx_crypt;

    int mode;

};


// OvpnHMAC wrapper API using dynamic polymorphism


class TLSCryptInstance : public RC<thread_unsafe_refcount>

{

  public:

    typedef RCPtr<TLSCryptInstance> Ptr;


    virtual void init(SSLLib::Ctx libctx, const StaticKey &key_hmac, const StaticKey &key_crypt) = 0;


    virtual size_t output_hmac_size() const = 0;


    virtual bool hmac_gen(unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len) = 0;


    virtual bool hmac_cmp(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len) = 0;


    virtual size_t encrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen) = 0;


    virtual size_t decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen) = 0;

};


class TLSCryptContext : public RC<thread_unsafe_refcount>

{

  public:

    typedef RCPtr<TLSCryptContext> Ptr;


    virtual size_t digest_size() const = 0;


    virtual size_t cipher_key_size() const = 0;


    virtual TLSCryptInstance::Ptr new_obj_send() = 0;


    virtual TLSCryptInstance::Ptr new_obj_recv() = 0;


    // This is the size of the header in a TLSCrypt-wrapped packets,

    // excluding the HMAC. Format:

    //

    // [OP]  [PSID]  [PID]  [HMAC] [...]

    //


    constexpr const static size_t hmac_offset = 1 + ProtoSessionID::SIZE + PacketIDControl::idsize;

};


class TLSCryptFactory : public RC<thread_unsafe_refcount>

{

  public:

    typedef RCPtr<TLSCryptFactory> Ptr;


    virtual TLSCryptContext::Ptr new_obj(SSLLib::Ctx libctx, const CryptoAlgs::Type digest_type, const CryptoAlgs::Type cipher_type) = 0;

};


// TLSCrypt wrapper implementation using dynamic polymorphism


template <typename CRYPTO_API>


class CryptoTLSCryptInstance : public TLSCryptInstance

{

  public:


    CryptoTLSCryptInstance(SSLLib::Ctx libctx_arg,

                           const CryptoAlgs::Type digest_arg,

                           const CryptoAlgs::Type cipher_arg,

                           int mode_arg)

        : digest(digest_arg),

          cipher(cipher_arg),

          mode(mode_arg),

          libctx(libctx_arg)

    {

    }


    void init(SSLLib::Ctx libctx, const StaticKey &key_hmac, const StaticKey &key_crypt)

    {

        tls_crypt.init(libctx, digest, key_hmac, cipher, key_crypt, mode);

    }


    size_t output_hmac_size() const

    {

        return tls_crypt.output_hmac_size();

    }


    bool hmac_gen(unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)

    {

        return tls_crypt.hmac_gen(header, header_len, payload, payload_len);

    }


    // verify the HMAC generated by hmac_gen, return true if verified


    bool hmac_cmp(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)

    {

        return tls_crypt.hmac_cmp(header, header_len, payload, payload_len);

    }


    size_t encrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)

    {

        return tls_crypt.encrypt(iv, out, olen, in, ilen);

    }


    size_t decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)

    {

        return tls_crypt.decrypt(iv, out, olen, in, ilen);

    }


  private:

    typename CryptoAlgs::Type digest;

    typename CryptoAlgs::Type cipher;

    int mode;

    TLSCrypt<CRYPTO_API> tls_crypt;

    SSLLib::Ctx libctx;

};


template <typename CRYPTO_API>


class CryptoTLSCryptContext : public TLSCryptContext

{

  public:


    CryptoTLSCryptContext(SSLLib::Ctx libctx_arg, const CryptoAlgs::Type digest_type, const CryptoAlgs::Type cipher_type)

        : digest(digest_type),

          cipher(cipher_type),

          libctx(libctx_arg)

    {

    }


    size_t digest_size() const override

    {

        return CryptoAlgs::size(digest);

    }


    size_t cipher_key_size() const override

    {

        return CryptoAlgs::key_length(cipher);

    }


    TLSCryptInstance::Ptr new_obj_send() override

    {

        return new CryptoTLSCryptInstance<CRYPTO_API>(libctx, digest, cipher, CRYPTO_API::CipherContext::ENCRYPT);

    }


    TLSCryptInstance::Ptr new_obj_recv() override

    {

        return new CryptoTLSCryptInstance<CRYPTO_API>(libctx, digest, cipher, CRYPTO_API::CipherContext::DECRYPT);

    }


  private:

    CryptoAlgs::Type digest;

    CryptoAlgs::Type cipher;

    SSLLib::Ctx libctx;

};


template <typename CRYPTO_API>


class CryptoTLSCryptFactory : public TLSCryptFactory

{

  public:


    TLSCryptContext::Ptr new_obj(SSLLib::Ctx libctx, const CryptoAlgs::Type digest_type, const CryptoAlgs::Type cipher_type) override

    {

        return new CryptoTLSCryptContext<CRYPTO_API>(libctx, digest_type, cipher_type);

    }


};


} // namespace openvpn


#endif

openvpn::CipherContext
Definition cipher.hpp:28

openvpn::CryptoAlgs::Alg
Definition cryptoalgs.hpp:110

openvpn::CryptoAlgs::Alg::size
size_t size() const
Definition cryptoalgs.hpp:142

openvpn::CryptoTLSCryptContext
Definition tls_crypt.hpp:254

openvpn::CryptoTLSCryptContext::digest
CryptoAlgs::Type digest
Definition tls_crypt.hpp:284

openvpn::CryptoTLSCryptContext::CryptoTLSCryptContext
CryptoTLSCryptContext(SSLLib::Ctx libctx_arg, const CryptoAlgs::Type digest_type, const CryptoAlgs::Type cipher_type)
Definition tls_crypt.hpp:256

openvpn::CryptoTLSCryptContext::libctx
SSLLib::Ctx libctx
Definition tls_crypt.hpp:286

openvpn::CryptoTLSCryptContext::digest_size
size_t digest_size() const override
Definition tls_crypt.hpp:263

openvpn::CryptoTLSCryptContext::new_obj_send
TLSCryptInstance::Ptr new_obj_send() override
Definition tls_crypt.hpp:273

openvpn::CryptoTLSCryptContext::new_obj_recv
TLSCryptInstance::Ptr new_obj_recv() override
Definition tls_crypt.hpp:278

openvpn::CryptoTLSCryptContext::cipher_key_size
size_t cipher_key_size() const override
Definition tls_crypt.hpp:268

openvpn::CryptoTLSCryptContext::cipher
CryptoAlgs::Type cipher
Definition tls_crypt.hpp:285

openvpn::CryptoTLSCryptFactory
Definition tls_crypt.hpp:291

openvpn::CryptoTLSCryptFactory::new_obj
TLSCryptContext::Ptr new_obj(SSLLib::Ctx libctx, const CryptoAlgs::Type digest_type, const CryptoAlgs::Type cipher_type) override
Definition tls_crypt.hpp:293

openvpn::CryptoTLSCryptInstance
Definition tls_crypt.hpp:200

openvpn::CryptoTLSCryptInstance::output_hmac_size
size_t output_hmac_size() const
Definition tls_crypt.hpp:218

openvpn::CryptoTLSCryptInstance::hmac_gen
bool hmac_gen(unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)
Definition tls_crypt.hpp:223

openvpn::CryptoTLSCryptInstance::CryptoTLSCryptInstance
CryptoTLSCryptInstance(SSLLib::Ctx libctx_arg, const CryptoAlgs::Type digest_arg, const CryptoAlgs::Type cipher_arg, int mode_arg)
Definition tls_crypt.hpp:202

openvpn::CryptoTLSCryptInstance::decrypt
size_t decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)
Definition tls_crypt.hpp:239

openvpn::CryptoTLSCryptInstance::encrypt
size_t encrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)
Definition tls_crypt.hpp:234

openvpn::CryptoTLSCryptInstance::cipher
CryptoAlgs::Type cipher
Definition tls_crypt.hpp:246

openvpn::CryptoTLSCryptInstance::libctx
SSLLib::Ctx libctx
Definition tls_crypt.hpp:249

openvpn::CryptoTLSCryptInstance::tls_crypt
TLSCrypt< CRYPTO_API > tls_crypt
Definition tls_crypt.hpp:248

openvpn::CryptoTLSCryptInstance::digest
CryptoAlgs::Type digest
Definition tls_crypt.hpp:245

openvpn::CryptoTLSCryptInstance::hmac_cmp
bool hmac_cmp(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)
Definition tls_crypt.hpp:229

openvpn::CryptoTLSCryptInstance::mode
int mode
Definition tls_crypt.hpp:247

openvpn::CryptoTLSCryptInstance::init
void init(SSLLib::Ctx libctx, const StaticKey &key_hmac, const StaticKey &key_crypt)
Definition tls_crypt.hpp:213

openvpn::ProtoSessionID::SIZE
@ SIZE
Definition psid.hpp:31

openvpn::RCPtr
The smart pointer class.
Definition rc.hpp:119

openvpn::RC
Reference count base class for objects tracked by RCPtr. Disallows copying and assignment.
Definition rc.hpp:912

openvpn::StaticKey
Definition static_key.hpp:31

openvpn::StaticKey::data
const unsigned char * data() const
Definition static_key.hpp:54

openvpn::StaticKey::size
size_t size() const
Definition static_key.hpp:50

openvpn::TLSCryptContext
Definition tls_crypt.hpp:165

openvpn::TLSCryptContext::cipher_key_size
virtual size_t cipher_key_size() const =0

openvpn::TLSCryptContext::Ptr
RCPtr< TLSCryptContext > Ptr
Definition tls_crypt.hpp:167

openvpn::TLSCryptContext::new_obj_send
virtual TLSCryptInstance::Ptr new_obj_send()=0

openvpn::TLSCryptContext::new_obj_recv
virtual TLSCryptInstance::Ptr new_obj_recv()=0

openvpn::TLSCryptContext::hmac_offset
constexpr static const size_t hmac_offset
Definition tls_crypt.hpp:183

openvpn::TLSCryptContext::digest_size
virtual size_t digest_size() const =0

openvpn::TLSCryptFactory
Definition tls_crypt.hpp:189

openvpn::TLSCryptFactory::Ptr
RCPtr< TLSCryptFactory > Ptr
Definition tls_crypt.hpp:191

openvpn::TLSCryptFactory::new_obj
virtual TLSCryptContext::Ptr new_obj(SSLLib::Ctx libctx, const CryptoAlgs::Type digest_type, const CryptoAlgs::Type cipher_type)=0

openvpn::TLSCryptInstance
Definition tls_crypt.hpp:147

openvpn::TLSCryptInstance::hmac_cmp
virtual bool hmac_cmp(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)=0

openvpn::TLSCryptInstance::output_hmac_size
virtual size_t output_hmac_size() const =0

openvpn::TLSCryptInstance::hmac_gen
virtual bool hmac_gen(unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)=0

openvpn::TLSCryptInstance::encrypt
virtual size_t encrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)=0

openvpn::TLSCryptInstance::init
virtual void init(SSLLib::Ctx libctx, const StaticKey &key_hmac, const StaticKey &key_crypt)=0

openvpn::TLSCryptInstance::decrypt
virtual size_t decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)=0

openvpn::TLSCryptInstance::Ptr
RCPtr< TLSCryptInstance > Ptr
Definition tls_crypt.hpp:149

openvpn::TLSCrypt
Definition tls_crypt.hpp:37

openvpn::TLSCrypt::TLSCrypt
TLSCrypt()
Definition tls_crypt.hpp:43

openvpn::TLSCrypt::init
void init(SSLLib::Ctx libctx, const CryptoAlgs::Type digest, const StaticKey &key_hmac, const CryptoAlgs::Type cipher, const StaticKey &key_crypt, const int mode_arg)
Definition tls_crypt.hpp:64

openvpn::TLSCrypt::hmac_pre
void hmac_pre(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)
Definition tls_crypt.hpp:117

openvpn::TLSCrypt::encrypt_decrypt
size_t encrypt_decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)
Definition tls_crypt.hpp:124

openvpn::TLSCrypt::OPENVPN_SIMPLE_EXCEPTION
OPENVPN_SIMPLE_EXCEPTION(ovpn_tls_crypt_wrong_mode)

openvpn::TLSCrypt::TLSCrypt
TLSCrypt(SSLLib::Ctx libctx, const CryptoAlgs::Type digest, const StaticKey &key_hmac, const CryptoAlgs::Type cipher, const StaticKey &key_crypt, const int mode)
Definition tls_crypt.hpp:48

openvpn::TLSCrypt::ctx_crypt
CRYPTO_API::CipherContext ctx_crypt
Definition tls_crypt.hpp:140

openvpn::TLSCrypt::OPENVPN_SIMPLE_EXCEPTION
OPENVPN_SIMPLE_EXCEPTION(ovpn_tls_crypt_context_bad_sizing)

openvpn::TLSCrypt::defined
bool defined() const
Definition tls_crypt.hpp:53

openvpn::TLSCrypt::hmac_gen
bool hmac_gen(unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)
Definition tls_crypt.hpp:81

openvpn::TLSCrypt::OPENVPN_SIMPLE_EXCEPTION
OPENVPN_SIMPLE_EXCEPTION(ovpn_tls_crypt_context_digest_size)

openvpn::TLSCrypt::ctx_hmac
CRYPTO_API::HMACContext ctx_hmac
Definition tls_crypt.hpp:139

openvpn::TLSCrypt::decrypt
size_t decrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)
Definition tls_crypt.hpp:107

openvpn::TLSCrypt::encrypt
size_t encrypt(const unsigned char *iv, unsigned char *out, const size_t olen, const unsigned char *in, const size_t ilen)
Definition tls_crypt.hpp:99

openvpn::TLSCrypt::hmac_cmp
bool hmac_cmp(const unsigned char *header, const size_t header_len, const unsigned char *payload, const size_t payload_len)
Definition tls_crypt.hpp:89

openvpn::TLSCrypt::output_hmac_size
size_t output_hmac_size() const
Definition tls_crypt.hpp:59

openvpn::TLSCrypt::mode
int mode
Definition tls_crypt.hpp:141

cryptoalgs.hpp

exception.hpp

memneq.hpp

openvpn::CryptoAlgs::Type
Type
Definition cryptoalgs.hpp:56

openvpn::CryptoAlgs::get
const Alg & get(const Type type)
Definition cryptoalgs.hpp:237

openvpn::CryptoAlgs::key_length
size_t key_length(const Type type)
Definition cryptoalgs.hpp:275

openvpn::CryptoAlgs::size
size_t size(const Type type)
Definition cryptoalgs.hpp:269

openvpn::SSLLib::Ctx
void * Ctx
Definition definitions.hpp:26

openvpn::crypto::memneq
bool memneq(const void *a, const void *b, size_t size)
Definition memneq.hpp:79

openvpn
Definition ovpncli.cpp:97

packet_id_control.hpp

psid.hpp

rc.hpp

size.hpp

static_key.hpp

openvpn::PacketIDControl::idsize
static constexpr size_t idsize
Definition packet_id_control.hpp:61

out
static std::stringstream out
Definition test_path.cpp:10